last executing test programs:

7.052109716s ago: executing program 2 (id=1643):
r0 = socket(0x11, 0x80003, 0x300)
open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x0)
prctl$auto(0x1000000001c, 0x5, 0x100000000, 0x400000000009, 0x3fffffffff)
setreuid$auto(0x0, 0x5)
fcntl$auto(r0, 0x400, 0x0)
setresuid$auto(0x0, 0xee01, 0x8080)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x163)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
r1 = prctl$auto(0x76, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x18, 0x3, 0x2)
sendmmsg$auto(0x3, 0x0, 0x5, 0xc51)
mmap$auto(0x800000000000000, 0xe983, 0xf08, 0x7ffe, 0x401, 0x400000000008000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x8b, 0x0, 0x0)
epoll_create$auto(0x4)
sendmmsg$auto(r1, 0x0, 0x6, 0x80000000)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
r2 = socket(0x11, 0x80003, 0x300)
sendfile$auto(0x1, r2, 0x0, 0x8fb5)
ioctl$auto(0xc8, 0x400454ce, 0xffffffffffffffff)
fcntl$auto(0x0, 0x408, 0x100000)
setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, &(0x7f0000000080)='nlctrl\x00', 0x2)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0x1a, 0xa, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)

6.66492202s ago: executing program 0 (id=1644):
pwrite64$auto(0xffffffffffffffff, &(0x7f0000000100)='B\x00\x00\x00\x00\x00\x00\x001\x00', 0xe, 0x7) (async)
r0 = semctl$auto(0x1, 0x7, 0x2, 0xffffffffffffff7e)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'sit0\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'netdevsim0\x00', <r3=>0x0})
sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="00042bbd7000fcdbdf250200000008000900", @ANYRES32=r2, @ANYBLOB="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", @ANYRES32=r0, @ANYBLOB='\b\x00\t\x00', @ANYRES32=r3, @ANYBLOB="0800050001000000080005000600000008000200", @ANYRES32=r0, @ANYBLOB="0800070004000000"], 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x4000) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r4) (async)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x4d}) (async)
r6 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000340), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r6, 0xc004743e, 0x0) (async)
r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r7], 0x1ac}}, 0x40000)
ioctl$auto_PPPIOCSPASS(r6, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x30, 0xff, 0x0, @raw=0xfffff030}}) (async)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000580)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002abd7000fbdbdf25040000002d0011002f50136a450cf972f5a3d28479f92a9b221ca46c2d19fda4f47902c296fa844c12cd83f712d3c41e5d0000002c001a800800010087030000200004801c000180050007000900000004000a00040004000400020004000400c82bc65a47cf0b69a07e58b414bcb1153f8e18de0f915c3ba0af0e31ed76e5736181978e51e6fea78a7471bd08cc772223c602593e490844e6ea2e6e352a3d22a5f5ce9b1e26cbb486775ba690e68ae30ee0fe4d63ab94"], 0x70}, 0x1, 0x0, 0x0, 0x4008040}, 0x40800) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x84)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) (async)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f00000001c0)=':,\x00', 0x0, 0x0) (async)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (async)
listen$auto(0xffffffffffffffff, 0x9)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
unshare$auto(0x40000080) (async)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async)
madvise$auto(0x0, 0x400053, 0x9) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x80003, 0x300) (async)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) (async)
ioctl$auto(0x3, 0x800005411, 0x38)

5.383123416s ago: executing program 0 (id=1645):
close_range$auto(0x2, 0x8, 0x0)
fstat$auto(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x5, 0x8, 0x7, <r0=>0xee01, 0xffffffffffffffff, 0x0, 0x0, 0x6b, 0x3, 0xfff, 0xf, 0x3ff, 0x800, 0x8, 0x10, 0x75cf9a9a})
r1 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/block/nbd11/sched/write2_next_rq\x00', 0x2, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r1, &(0x7f0000003a40)=""/4096, 0x1000)
setfsuid$auto(r0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
ioctl$auto(0x3, 0x80045300, 0x38)
sendmsg$auto_IPVS_CMD_ZERO(0xffffffffffffffff, 0xffffffffffffffff, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c680300", @ANYRES16=r3, @ANYBLOB="1b0026bd7000fddbdf2503000000040008000c00038008000c00", @ANYRES32, @ANYBLOB="12000100016a76f37bf001ca220000010000000004000280"], 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/reboot/cpu\x00', 0x1a1842, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
mmap$auto(0x0, 0xf92e, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
statmount$auto(&(0x7f0000000040)={0x1f, @raw, 0x80000002, 0x0, 0x8}, 0x0, 0x7ffffffff000, 0x0)

4.681665382s ago: executing program 0 (id=1652):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x80000000, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
mmap$auto(0x80, 0x2020809, 0x0, 0xeb1, r0, 0xf)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0xb60)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xffffeffe, 0x2)
io_uring_setup$auto(0x59, 0x0)
open(0x0, 0x64842, 0x0)
io_uring_setup$auto(0x3, 0x0)
io_uring_register$auto(0x2, 0x14, &(0x7f0000000000), 0x1)
pwrite64$auto(0xffffffffffffffff, 0x0, 0x400000, 0xc)
socket(0xa, 0x5, 0x84)
gettid()
mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2)
accept4$auto(0xffffffffffffffff, 0x0, 0x0, 0xffffffff)
mprotect$auto(0x0, 0x806121, 0x8)
connect$auto(0xffffffffffffffff, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x50)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x5aa3)
rename$auto(&(0x7f0000000100)='./cgroup\x00', &(0x7f00000000c0)='./file0\x00')
open(&(0x7f0000000040)='./file0\x00', 0x1e9e02, 0x61)
set_robust_list$auto(0x0, 0x94)

4.653230719s ago: executing program 2 (id=1653):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
statx$auto(0x2, 0x0, 0x1000, 0xbdfa, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x40, 0x83)
read$auto(r1, 0x0, 0xf6c1)
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_ABORT_SCAN(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r2, 0x100, 0x70bd28, 0x25dfdbfb, {}, [@NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40)
r3 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
shmctl$auto_IPC_STAT(0x7, 0x2, &(0x7f0000000140)={{0x1, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2, 0x7, 0x8000}, 0x7, 0xd, 0x7, 0x8, @inferred, @inferred, 0x8b0, 0x0, &(0x7f0000000040)="4aef9baea09b570798f131ce7a923337b3fa8ea102b214cd03fec8b4b5bdccb764c85bb0275c44aae470c44d6fadec66806744f4547086a3a014ebc2c2457ed6fd5b827bec81b583120010000052aff5348917328eb1933d4db54154e87ff87c1c7ef01fe88a1027fc638b8fc92b8f9d1fa535ac62eb900730f31a112ec1e0dd9a48980648eb83a5ec9c8348bb596e7515747eff2a8406bb74a50a4c0f837f23287fa671be82926d595498ee681cfe20fe5e073cbba7ef0c049dab8cc5e25ee7", &(0x7f0000000100)})
sendmsg$auto_NL802154_CMD_GET_SEC_DEV(r0, &(0x7f0000000880)={&(0x7f0000000000), 0xc, &(0x7f0000000840)={&(0x7f00000008c0)={0x1754, r2, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@NL802154_ATTR_SUPPORTED_COMMANDS={0x11ab, 0x19, 0x0, 0x1, [@generic="d21da243029467f6782de70ccbffdd4a0c943289cd027a3d4ae6f6df9dc96fda52d2b936d04cf6c2cf715e19a57d9e0847eb4dbd2154865f14e32b976184b4da82ac872f2d1b2422f66983898ae68ddae4d5f767f708b33c0a6ae78f8ae7f923d685bc", @typed={0x4, 0x136}, @nested={0x1140, 0x28, 0x0, 0x1, [@nested={0x4, 0xb9}, @nested={0x4, 0x114}, @nested={0x4, 0xa}, @nested={0x112d, 0x54, 0x0, 0x1, [@typed={0x4, 0x25}, @generic="d4ca65485f0643babeca847a75aa6e637b1491afaab08ee61ead145ed886d6a55ac54fde0ae129f202eda9ab7348ef142a84b652697e573a3c60ecf523bae8dfc9ea7210ed6a7467e35e03be0ca13b686d7fca307626f43d10cfc100916cdbad5c1b926958bceaac0a233e4ae642bcfaa3cf412e943cc323bd16ec3a637aa87310e8bbb553d965382be09520b104e9993d69b05935107be937d707ad24d7dcc1395ef7dbff", @typed={0x8, 0x118, 0x0, 0x0, @fd=r3}, @nested={0x14, 0xcc, 0x0, 0x1, [@typed={0xc, 0x95, 0x0, 0x0, @u64=0x59}, @nested={0x4, 0x77}]}, @nested={0x1063, 0x5, 0x0, 0x1, [@generic="27d71d0cf13c7a5c484e45f5757ea5", @typed={0x8, 0x2a, 0x0, 0x0, @u32=0x9}, @generic="32628209ad8dbed3995bffb5695fb67bac8c1506bab9d6605fd3d7eb93684d304568e16d035934aabb9a404b5b1e8108844bb23f78930607", @typed={0x8, 0xbb, 0x0, 0x0, @ipv4=@loopback}, @generic="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", @typed={0x8, 0xca, 0x0, 0x0, @str='[&}\x00'}]}]}]}]}, @NL802154_ATTR_SEC_DEVICE={0x1d7, 0x2e, 0x0, 0x1, [@generic="0befadd8054758ccf5a45caf6ead03acc11641b0be3bba8bae1ec4141589c946f1707adf36918105c0e8474aa8f08afbf9f18e1bc54553a05fe671f9efeefc985d55d306f84fe9e0664b4797d502c5bdcfc3ed58c6342c139c9ab6850c331c3f1411ead2687a3cc8baecd7d8c5f6b0142b87449ff0794501acaa1b64a6445556f58a2a904041ba8de79c83dcf055182f3e21c621b36748cae32c4d3813e588603315d31b8fcb177e558071", @nested={0x127, 0x40, 0x0, 0x1, [@nested={0x4, 0x14d}, @nested={0x4, 0x131}, @nested={0x4, 0x158}, @generic="69194073f77d07eed29beee88a622b4d9d2edb2c4bf8db7d15978d1d1c6b8f6ee03c10a1672abd307f7b8bb47e42eece02e4edcc7e536f32f2c877789981f57c3669a61485ce9fe85cd332e55d34f2a1012d5e83f7f463411f636a865d3334495730e1198799fc29ae2f9ca292c3fd943d8beb8767c97e2662ab95e608b7dce1e721d53a95b7bb8ae91a0453c8a422", @typed={0x84, 0x10c, 0x0, 0x0, @binary="0e87712c8c097a1cc88b170ba4b52bacbc78224cb93e4eed7447d0944070206fdd0a2a67396f3d12c0a20ff10d92253a58e4e6d22b189af6343a0ebf47f9feb3f050cc59d82cf859ca7603925901819d76610c80437d3f732f15099dfbbc310d780ad0fd97d8d2c1a73cfebed933be14bb9e7e3525880a66eed8d7a64c313c98"}, @nested={0x4, 0x31}]}]}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x8}, @NL802154_ATTR_SEC_DEVICE={0x8e, 0x2e, 0x0, 0x1, [@generic="0a169fb8a64382066901facca6f9c39ddc78683b9ce0e69eca90be541c20b3e0509dc938429771cea01c4fb82c2cccd8943ae991e13366775b35e6cd65753689479846468f5c75c98e36f67714a1836dba778a8a65664a8eebce9750d76779c6a3a6b3728db938cdb05d9453f889", @typed={0x14, 0x5c, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @typed={0x8, 0xfd, 0x0, 0x0, @u32=0x6}]}, @NL802154_ATTR_PAN_ID={0x6}, @NL802154_ATTR_NETNS_FD={0x8, 0x1d, r3}, @NL802154_ATTR_COORDINATOR={0x2fa, 0x1e, 0x0, 0x1, [@nested={0x101, 0x5d, 0x0, 0x1, [@typed={0x14, 0x155, 0x0, 0x0, @ipv6=@mcast1}, @typed={0x7, 0xf8, 0x0, 0x0, @str='(}\x00'}, @generic="82aa825e9cf0ee4e0bed7a68c008b03b58c988729db6992b5e9dd148fbef6d542c1010461623b947dc6b4f93f16645e4d7f1ceda93979762580e939bb0aba6a899c04e2c4a00df3d883b5b0af24fcf38282b649034a0a9cd674893aa426365b25754215014a288fc9c108a95f4b215fc1689345e5f5ab65bb54ae747944ce533110b80e19db4", @generic="65f0c0c34df98903e7642fbb662b345489b63aa8415488707b8ebc2ee24cc04b1e06c36da90da2f09b0653f0b92871756ea48ea813053fc6285290b966151213298d694f735ebb3426a4cc973a71f5f2f9c703", @nested={0x4, 0x10b}, @nested={0x4, 0xd6}]}, @nested={0x10a, 0xe9, 0x0, 0x1, [@nested={0x4, 0x13d}, @nested={0x4, 0x144}, @typed={0x8, 0x10e, 0x0, 0x0, @uid=r4}, @generic="0c6a6435c5e1e771d547d02995b1904ec8ea60307217b1d382cd4456ae6224f2686f648263e392c875114fb6a52d29770df2cbcf601de5498086e4a45e3d2da154e9a9e1d8e3c977e31bf94c71e352f706465edf8ad84a5b6c426b0d5246053448e3a0a68397604ffc2ab4bfbbf7f4558a195d0dbdd936665fa5cd2fb07a78f2704d13ee26d5b377a629eac37f2bf8e778efd3923ba2c397bd86b443194687ef62b158dd1dde58d6d2daa66acfd1a473e1969c9a490d2d5155a4881252ab5355297c1df893f19b44c57dec8fff252be64125f4c44a169c576135ca1d314874658148fbe715d76bdd51f11be062103a805e93", @nested={0x4, 0x89}]}, @generic="6aaff6225d5d3773e5bb07b9f36d50fbf871aea1ebf632176a97573ec2ceb028265dad4a9f1be78f5a975dff6f5bdc905e22691b935fd9d8694f636882514b78927d72b6747e94388bd759defbd17ed9d759af32a481d9b1ebc5c8c4497f1cce6cd99291932f284235d2e66fa65ec50f7024339a23924ae6010da8609eaff71c57176b6e3f1589a29c481e2744889c841ae720a31255c9851a87c4e918476a65c67355be265f896757e74986b7166615aad4", @typed={0x32, 0x155, 0x0, 0x0, @binary="054987af8d94964af8f898f64b6840eb3e627769eef7c640696e45823769627e3f46733f4a266f94c37bb16e9529"}]}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x40}, @NL802154_ATTR_SEC_ENABLED={0x5}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x2}]}, 0x1754}, 0x1, 0x0, 0x0, 0x8040}, 0x40000)

4.282637649s ago: executing program 2 (id=1654):
r0 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
setsockopt$auto(r0, 0x1, 0x12, &(0x7f0000000400)='\'\ak\xb6\xc8\vFx\xed\xd6\xf8\x00\x10\xa4#\x92`\xdb\xafL\x0f\xfbUV\xa6KH]Cv\xbf\xf2a\v', 0xeb66)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
unshare$auto(0x40000080)
ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000280)=0x5)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
socket(0x18, 0x800, 0x2) (async)
r1 = socket(0x18, 0x800, 0x2)
r2 = prctl$auto(0x3e, 0xfffffffffffffffe, 0x0, 0x8007, 0xc)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x100000a3d9) (async)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x100000a3d9)
getsockopt$auto_SO_RCVLOWAT(r2, 0x0, 0x12, &(0x7f0000000180)='\x00', &(0x7f00000001c0)=0x19a)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
select$auto(0x1000000d, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x7, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x2, 0x62, 0x80000000, 0x0, 0x6d3f, 0x8001, 0xa, 0xfffffffffffffffe]}, 0x0)
mlockall$auto(0x5)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x1}, 0x7)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
close_range$auto(r2, r0, 0x0) (async)
close_range$auto(r2, r0, 0x0)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f00000000c0), 0x109002, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video67\x00', 0x169001, 0x0)
ioctl$auto(r3, 0xc0285629, r1)
mmap$auto(0xfffffffffffffffc, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0xfffffffffffffffc, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
socket(0x2, 0x80802, 0x0) (async)
socket(0x2, 0x80802, 0x0)
socket(0x2b, 0x1, 0x0) (async)
socket(0x2b, 0x1, 0x0)
ioctl$auto_BTRFS_IOC_ENCODED_WRITE_32(r2, 0x40789440, &(0x7f00000000c0)={0x6754, 0x5, 0xaf7, 0x8, 0x2, 0x4, 0x5800000000000000, 0xeea, 0x8, "57ef0f1414cd3c1c67b49c20aa95bbbfd2b68fae19263df84167c68a423e889e2cbcb6b41dc07aa2dfffe24c19d2b2c3a50f4133f72a36f28bbcf4c8ec369de0"})

3.966975291s ago: executing program 1 (id=1657):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r0 = socket(0x2, 0x1, 0x0)
setsockopt$auto(r0, 0x6, 0x9, 0x0, 0x7fffffff)
r1 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r1, 0x29, 0x18, 0x0, 0x2)
getsockopt$auto(r0, 0x6, 0x9, 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty4\x00', 0x400c0, 0x0)

3.808651573s ago: executing program 1 (id=1658):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x44000, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0x19, 0xfffffffffffffffa, 0x8000)
ioctl$auto_SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_NAME_TABLE_GET(r0, 0x0, 0x40084)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8402, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
unshare$auto(0x21)
prctl$auto(0x3e, 0xfffffffffffffffe, 0x0, 0x298, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket(0x2a, 0x4, 0x82)
sendto$auto(r1, 0x0, 0x401, 0x7f, 0x0, 0x2b1e6b8d)
listmount$auto(0x0, 0x0, 0x4, 0x101)
init_module$auto(0x0, 0xffff9, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/tty6\x00', 0x0, 0x0)
r2 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
read$auto_rng_chrdev_ops_core(r2, 0x0, 0x0)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8, 0x8000)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace\x00', 0x20c40, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0)

3.58169927s ago: executing program 3 (id=1660):
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (async)
bpf$auto(0x0, 0x0, 0x14)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv6/conf/default/ignore_routes_with_linkdown\x00', 0x42a81, 0x0)
pwrite64$auto(r0, &(0x7f0000000000)='/proc/sys/net/ipv6/coX\t/all/forwarding\x00', 0x1, 0x2) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x2)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2c, 0x1, 0x0)
listen$auto(0x3, 0x81) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
openat$auto_page_owner_stack_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000140), 0x121140, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000880)='/dev/input/event0\x00', 0x40100, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7) (async)
ioctl$auto_EVIOCGMASK(r2, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x9}) (async)
io_uring_setup$auto(0x6, 0x0) (async)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff) (async)
r3 = prctl$auto(0x3ff, 0x4, 0x0, 0x5, 0x7) (async)
madvise$auto(0x3, 0xffffffffffff0005, 0x3)
madvise$auto(0x0, 0x2003f2, 0x15)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) (async)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYRES8=r3, @ANYRES16, @ANYBLOB="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"], 0x14}}, 0x24048004) (async)
madvise$auto(0x0, 0x7, 0x6)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0) (async)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) (async)
mmap$auto(0x0, 0x6, 0x7, 0xeb1, 0x401, 0x26) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)

2.963432059s ago: executing program 1 (id=1661):
mmap$auto(0x8891, 0x4, 0x800000000000d, 0x20000000040eb4, 0xffffffffffffffff, 0x4)
r0 = socket(0xa, 0x3, 0x3b)
mmap$auto(0x0, 0x200009, 0x2, 0x48eb1, 0xffffffffffffffff, 0x300000000000)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
madvise$auto(0x0, 0x6, 0x66)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lseek$auto(0x3, 0x7fffffffffffffff, 0x0)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40ebe, 0xffffffffffffffff, 0x300000000000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0xe779, 0x400000000007, 0xdf, 0x13, 0xffffffffffffffff, 0x0)
socket(0xa, 0x1, 0x84)
socket(0x28, 0x5, 0x0)
bind$auto(0x3, 0x0, 0x6a)
fsconfig$auto_SHMEM_HUGE_FORCE(r0, 0x4, &(0x7f0000000040)='/dev/ttyS2\x00', &(0x7f0000000080)="6b56f7a01ea1820cb076359726a8b12afde70a43e221475f088590259ccdc3fb8f303e7f85de28540df071440f17f572e88e8d701b5ff859d514cceaf9146c8a507b", 0xfffffffffffffffe)
clock_nanosleep$auto(0x8, 0x0, 0x0, 0x0)
io_uring_setup$auto(0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
io_uring_setup$auto(0x100006, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
setresuid$auto(0x8, 0x8, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001800), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_RECONFIGURE(r2, &(0x7f00000019c0)={0x0, 0x0, &(0x7f0000001980)={&(0x7f0000001840)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="010027bd700900dbdf2503000000"], 0x14}, 0x1, 0x0, 0x0, 0x11}, 0x40000)
write$auto(r1, &(0x7f0000000180)='7\x00\\\xa0\x04|4\x00\x00\x03\x00\x00\x00\x10\x01\x00\x00\x00\x00\x00\x00\x00\x00rRVr\xc4O\xdc1\x9b%\x10Z\'\xb9\'\xa3stC<s\xbf\xf4\xf37o\xec\f\xf4\xde\x06\xb4x\xcep|\xa1\xd5\xc3r\x8d\xe5\xda#\f\xa7-\xaf@\xc3x\xa2\"h\xec\xa0\x9ay\'\x99\xca\x9a\xa6\xda6\xb3E\xe1-\x17I!J\xf0\xb7\xc9O\xe9f\x93~\xce\x0e\x8c\xfa\xe3\x89\xca\xf5\xa2\xd2t\x84\xf8`e\x16\xf49\x9aVBa~i\xb9s\x00\x00\x00\x00\x00\x00\x00\x00\n\x04>=\x85\xc6\xf6\x13 \xeb\xff%\x11\x82\x05\xdfV\x02\xca&\xd8$<\xab&\xc8B-\xcc\x15\x04&\x13;\xfe\xbdQ\xaa\x16o\x1f\xc7\x94\xa3\xc9\x9a\xe1d\xf5\n\xe2\x88\x84\vT?\x98\xa2\x00'/206, 0x5)
getsockopt$auto_SO_SNDTIMEO_NEW(r1, 0x8, 0x43, 0x0, 0x0)
keyctl$auto(0x12, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1)

2.381939609s ago: executing program 3 (id=1662):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
r0 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
select$auto(0xfad2, &(0x7f0000000140)={[0x1, 0x5bb, 0x8, 0x1, 0x5, 0xc, 0x81, 0x7fff, 0x4, 0x0, 0x4, 0x3, 0x7fffffff, 0x6, 0x1d, 0xffffffff]}, &(0x7f0000000200)={[0x5, 0x80000000, 0x3, 0x2, 0x10000, 0xffffffff, 0x2, 0x2, 0x7, 0x3, 0xf4, 0x0, 0x1a, 0x3ff, 0x0, 0x2]}, &(0x7f00000002c0)={[0x87a0, 0xe, 0xcd6f, 0x1d2, 0x1000, 0x2, 0xe, 0x0, 0x0, 0x5, 0x9, 0x8, 0x140, 0xf, 0x9, 0x3]}, &(0x7f00000000c0)={0xe, 0x24})
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/queue/scheduler\x00', 0x103a42, 0x0)
syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000100), 0xffffffffffffffff)
fanotify_mark$auto(0xffffffffffffffff, 0x72d, 0x800, 0xffffffffffffffff, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x0, 0x0)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/fail_io_timeout/probability\x00', 0x20000, 0x0)
read$auto(r0, 0x0, 0x2)
r1 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
write$auto(r1, 0x0, 0x9)

2.274872847s ago: executing program 2 (id=1663):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x800, 0x800000d)
prctl$auto(0x3e, 0xffffffff, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0x100000a3d9)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000ac0), 0xffffffffffffffff)
unshare$auto(0x40000080)
capset$auto(0x0, &(0x7f0000000040)={0x4, 0x80000000, 0x40045})
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/pcm1c/xrun_debug\x00', 0x109a00, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioprio_set$auto(0x3, 0x0, 0x4b34)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000140), r3)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', <r5=>0x0})
sendmsg$auto_NET_SHAPER_CMD_GROUP(r3, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f00000000c0)=ANY=[@ANYRESHEX=r2, @ANYRES16=r4, @ANYBLOB="010029bd7000fedbdf25040000000c000180080001000100000004000a8008000800", @ANYRES32=r5, @ANYBLOB="0c0003000100000000000000"], 0x38}, 0x1, 0x0, 0x0, 0x44000}, 0x14)
keyctl$auto_KEYCTL_REJECT(0x13, 0x4, 0x7, 0x200, 0x10000)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
madvise$auto(0x800000, 0xc, 0x19)
mbind$auto(0x2000, 0x100000004, 0x10000000a, 0x0, 0x4, 0x2)
sendmsg$auto_SMC_NETLINK_GET_SYS_INFO(r2, 0x0, 0x18)
pread64$auto(r1, 0x0, 0x201, 0xc000)
mmap$auto(0x2e, 0x2020009, 0x3, 0xfffffffffffffffd, r2, 0x8000)
madvise$auto(0xffffffffffffffff, 0x2, 0x20019)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/013/001\x00', 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x80, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)

2.272548028s ago: executing program 3 (id=1664):
socket(0x11, 0x80003, 0x300)
sysfs$auto(0x2, 0x100000000000029, 0x0)
connect$auto(0x3, 0x0, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x200, 0xe982, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sysfs$auto(0x0, 0x5, 0x5)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x88)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
r1 = epoll_create$auto(0x8800001)
epoll_ctl$auto(r1, 0x1, r0, 0x0)
write$auto(0x3, 0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x3, 0x3a)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b03, 0x0)
socket(0xa, 0x1, 0x100)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen_full\x00', 0xe0003, 0x0)
r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x0, 0x0)
ioctl$auto_FUSE_DEV_IOC_CLONE(r2, 0xe503, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x1, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x4000000000c, 0x2, 0x6]}, 0x0)

2.083817752s ago: executing program 3 (id=1665):
unshare$auto(0x40000080)
prctl$auto(0x10000000024, 0x0, 0xfffffffffffffffa, 0x7, 0x80001)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video17\x00', 0x80800, 0x0)
openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/netdevsim/netdevsim1/health/break_health\x00', 0x40440, 0x0)
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer1\x00', 0x180, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0)
select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0xc, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
dup2$auto(0x5, 0x4)

2.010772978s ago: executing program 1 (id=1666):
socket(0xa, 0x5, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="04001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x900, 0x0)
ioctl$auto_BLKROGET(r0, 0x125e, 0xfdfdffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
socket(0x1e, 0x4, 0x0)
userfaultfd$auto(0x1)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptya1\x00', 0x20080, 0x0)
io_uring_setup$auto(0x1000, 0x0)
readv$auto(0x3, &(0x7f0000000040)={0x0, 0x36a}, 0x3)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x28, 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x48500, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
select$auto(0x16, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x7, 0x10, 0x1, 0x948b, 0xffffffffffffffff, 0x15f4da08, 0x5, 0x7, 0x64, 0x10001, 0x8, 0x80000000000b, 0x9, 0x4f4, 0x8]}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)

1.853235769s ago: executing program 2 (id=1667):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
getrlimit$auto(0x3, 0x0)
ioctl$auto_BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0)
lseek$auto(0x3, 0xffffffffff800002, 0x10)
ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8)
unshare$auto(0x40000080)
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)="b2", 0x1)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1)
r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto(r3, 0x40044620, 0xffffffffffffffff)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/lock_policy\x00', 0x82, 0x0)
sendfile$auto(r4, r4, 0x0, 0x5)
getsockopt$auto_SO_MAX_PACING_RATE(r3, 0x87, 0x2f, &(0x7f0000000040)='&-\x00', &(0x7f0000000080)=0x1c)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket(0x22, 0x2, 0x2)

1.505684908s ago: executing program 0 (id=1668):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
getrlimit$auto(0x3, 0x0)
ioctl$auto_BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0)
lseek$auto(0x3, 0xffffffffff800002, 0x10)
ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8)
unshare$auto(0x40000080)
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)="b2", 0x1)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1)
r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto(r3, 0x40044620, 0xffffffffffffffff)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/lock_policy\x00', 0x82, 0x0)
sendfile$auto(r4, r4, 0x0, 0x5)
getsockopt$auto_SO_MAX_PACING_RATE(r3, 0x87, 0x2f, &(0x7f0000000040)='&-\x00', &(0x7f0000000080)=0x1c)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket(0x22, 0x2, 0x2)

1.115183209s ago: executing program 2 (id=1669):
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="72010000", @ANYRESOCT], 0x1ac}}, 0x0)
socket(0x10, 0x2, 0x0)
openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_ETHTOOL_MSG_PLCA_SET_CFG(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20008800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x20, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_PLCA_NODE_CNT={0x8, 0x5, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={0x0}, 0x1, 0x0, 0x0, 0x802}, 0x4000000)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/003/001\x00', 0x42082, 0x0)
mmap$auto(0x0, 0xffff, 0x80, 0x20eb4, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000000002003)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
socket(0x2, 0x1, 0x0)
prctl$auto(0x3e, 0x6, 0x0, 0x1, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0)
ioctl$auto_BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000240)={"6c00cf81000300ffffffffffffff291d00", 0x3f7, 0x408, 0xffc, 0x400004, 0x200000000040000b})
mprotect$auto(0x1ffffffff000, 0x100018, 0x4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8002)
pread64$auto(0xffffffffffffffff, 0x0, 0x40000000f42c, 0x80002)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
ustat$auto(0x801, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x11, 0x1, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x12b882, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0x40a0ae49, 0x38)

1.04638426s ago: executing program 1 (id=1670):
mmap$auto(0x0, 0x400008, 0xdf, 0xfffffffffffffc10, 0xffffffffffffffff, 0x800008000)
r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
r1 = fcntl$auto(r0, 0x400, 0x1)
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
fcntl$auto(0x3, 0x8, 0x9ebfffffffffffff)
fcntl$auto(0x3, 0x4, 0xa553)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cpu.pressure\x00', 0x183142, 0x0)
sendfile$auto(r1, r2, 0x0, 0xc01)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
keyctl$auto(0x5, 0x0, 0x0, 0xffffffffffffffff, 0x2)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
ioctl$auto_BLKTRACESTOP(r3, 0x1275, 0x0)
r4 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000f40), 0x2100, 0x0)
ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(r4, 0x80489439, &(0x7f0000000f80)=[{0x3ff, 0x2, 0x8000000000000000}, {0x5, 0x5, 0x2}, {0xa6, 0x1, 0x2}])
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0)
r5 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ieee80211/phy8/wep_iv\x00', 0x183400, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(r5, 0x0, 0x0)
statmount$auto(0x0, 0x0, 0x1fe, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x51c, 0x8000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x7, 0x12, 0xffffffffffffffff, 0xf4e)
mmap$auto(0x3, 0x9, 0x7, 0xeb1, 0x404, 0x10008000)
r6 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r6, &(0x7f0000000840)="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", 0xdd4)

1.039214298s ago: executing program 3 (id=1671):
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x0)
unshare$auto(0x8000000)
semget$auto(0x0, 0x2e4a, 0x8000)
sysfs$auto(0x2, 0x16, 0x0)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
shmdt$auto(0x0)
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
inotify_init1$auto(0x2)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
ioctl$auto_SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000080))
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
socket(0x1f, 0x6, 0x106)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
r1 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$auto_UBI_IOCATT(r1, 0x40186f40, &(0x7f0000000080)={0xffffffff, 0x1d, 0x7, 0x70, 0x4, 0x1})
mmap$auto(0x4000000000, 0x40005, 0xab, 0x15e, 0x7, 0x28000)
sysfs$auto(0x2, 0xd, 0x0)
r2 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r2, 0x69, 0x0, 0x0, 0x0)
fsconfig$auto_FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f0000000300)='\v\'\bn\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x1e7\xbb\xedO#\x14mC\x97\x06\xd9bZ\xddL\'\x03\x00\xff\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\xc6\xc0\x8b\xc0CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xed<\x86[c4%\xa3\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6\b\xe5\xaaJ+\x02\x9b#\xa9\x9b\x17\x82\xd7\xee\xd1\xbf2\x03\x00\x00\x00\x00\x00\x00\x00B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\x00\x00\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\xb2\x1d\xb3\xef#\xcb}b\x90\xafR\xf5\x8cg\x95A\x89\x8d\x9a\xfcV\x9bm\xd4\x82\x7f9\x12\x98\x1c\x8e\x1f\xdc\xe5Y\x7f\xe8\xe1g%\xb8\xf9b!\xc8\xa0\xf7\x06\xbb\xdf\x1d\xfb\x00\x979\x8e\xd0AP\xbf\x1fM\x1fd~\xeeS^8v\x80\x1b\xb1I\xb1\xa4\x89\xc7\x9d\xf2P\x04\x99N{\x9a\xfa\xf3\xcb\xc3Bx\xb5\xb8*\xa0-\xda\x84\xc5S\xe2\xc6\x92/\xed\xc2\xceK\xad\x00\x00*)Hh\x8d\x06cQ\xf1\x9d\xad\r}\x15e\x18\x06\xe3\xd2\xe4Q', &(0x7f0000000280), 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x401, 0x0)

441.112702ms ago: executing program 0 (id=1672):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000100), 0xffffffffffffffff)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'dvmrp0\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'geneve1\x00', <r3=>0x0})
sendmsg$auto_ILA_CMD_DEL(r1, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x42ed8b413c36141}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x48, 0x0, 0x111, 0x70bd27, 0x21c2, {}, [@ILA_ATTR_CSUM_MODE={0x5, 0x7, 0x7}, @ILA_ATTR_IFINDEX={0x8, 0x4, r2}, @ILA_ATTR_IFINDEX={0x8, 0x4, r3}, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0xfb}, @ILA_ATTR_LOCATOR_MATCH={0xc, 0x3, 0xe}, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x1}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0xc010)
setsockopt$auto(0x400000000000003, 0x29, 0xcd, 0x0, 0x567)
setsockopt$auto(0x400000000000003, 0x29, 0xcd, 0x0, 0x567)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
mmap$auto(0xfffff000, 0x400008, 0x200, 0x9b72, 0x2, 0x8000)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x110c230000, 0xa588, 0x6)
mremap$auto(0x110c231000, 0x0, 0x101, 0x3, 0x0)
move_pages$auto(0x0, 0x9, 0x0, 0x0, 0x0, 0x2)
r4 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
sendmsg$auto_VDPA_CMD_DEV_VSTATS_GET(0xffffffffffffffff, 0x0, 0x8041)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xe}, 0xffff34ea}, 0x5, 0x2)
socketpair$auto(0x10000, 0x3, 0x403, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x4)
io_submit$auto(0x5, 0x6, &(0x7f0000000180)=0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0xbad7, 0x0, 0x1, 0x0, 0x0, 0x3}, 0x7}, 0x3, 0xcad7)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)

39.410166ms ago: executing program 3 (id=1673):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x7ffd)
r0 = io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/notify_on_release\x00', 0x121281, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000000)='\x00', 0x1)
ioctl$auto_TUNGETIFF(r0, 0x800454d2, &(0x7f0000000100)=0x798)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1400, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r2, 0x0)
ioctl$auto_tracing_buffers_fops_trace(r2, 0x5220, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
write$auto(0xffffffffffffffff, 0x0, 0x1e1)

33.183636ms ago: executing program 1 (id=1674):
socket(0x11, 0x80003, 0x300)
sysfs$auto(0x2, 0x100000000000029, 0x0)
connect$auto(0x3, 0x0, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x200, 0xe982, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sysfs$auto(0x0, 0x5, 0x5)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x88)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
r1 = epoll_create$auto(0x8800001)
epoll_ctl$auto(r1, 0x1, r0, 0x0)
write$auto(0x3, 0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x3, 0x3a)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b03, 0x0)
socket(0xa, 0x1, 0x100)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen_full\x00', 0xe0003, 0x0)
r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x0, 0x0)
ioctl$auto_FUSE_DEV_IOC_CLONE(r2, 0xe503, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x1, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x4000000000c, 0x2, 0x6]}, 0x0)

0s ago: executing program 0 (id=1675):
ioctl$auto_BLKROTATIONAL(0xffffffffffffffff, 0x127e, 0x0)
mmap$auto(0x0, 0x20009, 0x7ff, 0x40000000000eb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mount$auto(0x0, &(0x7f0000000280)=':,\x00', &(0x7f0000000340)='nfsd\x00\xee\x1a\x8fg\x1b\x04\xad>\x96\xe9IG\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6\x00\x00\x00\x00\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd\x14\x81\xbe\xab\xed\x00\x00I\x830_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xees\xf0\xc2\xad\xae\x99\xeb\xc5\xf0\"\x92\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9\xe8\xb2\x05\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oi|\x04\x93N\xfa\x17\xf3b\xf6E*\xc9\xdd.q\xdbAX\xf6\xfaD\xcdz\xbc~\xf30LE\xb5\x18Wf\xd3\x9b\\\x1c\xbb^\xfb9\xe5\x1b:\xa4\xdd\x81\x91\\\xbc\x1fUl\xfa)\xbf\x9dPV\xae\xa9\x9c)\x01|\xfe\xd0!Rx\a\xc4\xb1$\x8eE\xc2j\x83sLS\xa8H\xf6\xf2,R\x90:\x8fx\xab\x90\xfe$h\x80!\xe2\nY#\xee\x1b}O=\x8bn\xd7zZ\x18\xa7\x9e~\x94k\x8e\xdba\xf2\xc3G\x8egR3\x1d\x01J\x87\x14(}\f\xb1}%N|z,\xbe\x1fB\xd3\xeb\xec\x83X\x8f\x97\x95\xfd\xed\xe6wt\x1d\xb3\xa8\xfb)L~}\x9f\xbf\xd0\xc9\x9d\x82-C\xc3Ez@\x8c\xbf\xa2 \x88\\\r6M\x83G\x9fO\x14\xe8\x81lI\xb5\xa5\xf4e\xb8\xa0\xfa\xb7\xc10\xe7\xe3\x96g>!\n.\xc8-Z\x9b\v\x9eN$\xaa\xff\xbc\xaenF,\xf6\xc1', 0x7, 0x0)
mount$auto(0x0, &(0x7f0000000140)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8002, 0x0, 0x6)
rseq$auto(&(0x7f0000000300)={0xd, 0x401, 0x0, 0x20000006, 0xe}, 0x8002, 0x1, 0x6)
shmctl$auto_SHM_STAT_ANY(0x3, 0xf, &(0x7f00000006c0)={{0x6, <r0=>0xee00, 0xee01, 0x0, 0x8, 0x5, 0x5}, 0x2, 0x75f, 0x2, 0xb, @raw=0x9b2, @raw=0x3, 0x9289, 0x0, &(0x7f0000000580)="15ad3afcfe7a414472ff955ad772055ed633cfad10a3a81bac44d8d73646ae6533fdd137857076aba6378df8d2d3432da091cf79cb82df2db1536af23597c21749999641ef5d482a6c796d8f669160a1ab1c76cf1aff01b46c54d728d7", &(0x7f0000000600)="1634620dc48b9be45cfddab1866395f2de76e2dbe93e8d435ba1ba484725c781e5898caf56dab54e93b0b43d6206969c2327b509062d18d338d3716a0b804977e3b1b6f89eb99bbbfe9d049f7e0808575348f6cb117ef0a07de9929dab5431f98271c1144bb898287f9c9a582b2cea26090fd5ee69238572d218fbc87436896ab02df6df080eddf0ca9fb61f86112d3cfa49b501e5bcae58576a1a88c1325c8fb80a4b39973a946c37c959"})
r1 = setfsgid$auto(0x0)
setresgid$auto(r1, 0x0, r1)
lstat$auto(&(0x7f0000000540)=':,\x00', &(0x7f0000000740)={0x2, 0xb, 0x2, 0xd, r0, r1, 0x0, 0x2, 0x1, 0x9, 0x5, 0x2, 0xffffffffffffffc0, 0x93, 0x3, 0x101, 0x7f})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_METER_CMD_DEL(r2, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f0000002e00)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x4008084}, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x80a, 0x0)
write$auto_tracing_thresh_fops_trace(0xffffffffffffffff, &(0x7f00000000c0)="97da00c4025a92d4c6d563227366d1cfe0266d72d5", 0x15)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x7f, 0x1d2d, 0x6, 0xffff, 0x15f4da0e, 0x6, 0xc, 0xfffffffffffffffd, 0x8, 0x4, 0xfca, 0x9, 0xfffffffffffffffe, 0x4000000000000d]}, 0x0)
socket(0x2c, 0x1, 0x3)
mmap$auto(0x0, 0xfffffffffffffff7, 0x5, 0x19, 0xffffffffffffffff, 0x7)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000700)
unshare$auto(0x40000080)
faccessat$auto(0xffffffffffffffff, &(0x7f0000000040)=':,\x00', 0x80000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

kernel console output (not intermixed with test programs):

 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  252.462855][ T8874] RSP: 002b:00007f40cd251028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  252.462871][ T8874] RAX: ffffffffffffffda RBX: 00007f40cc615fa0 RCX: 00007f40cc39aeb9
[  252.462881][ T8874] RDX: 000000000000000c RSI: 00002000000001c0 RDI: 0000000000000004
[  252.462889][ T8874] RBP: 00007f40cd251090 R08: 0000000000000000 R09: 0000000000000000
[  252.462898][ T8874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  252.462906][ T8874] R13: 00007f40cc616038 R14: 00007f40cc615fa0 R15: 00007ffc4a4101d8
[  252.462925][ T8874]  </TASK>
[  253.511699][ T8886] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  253.520227][ T8886] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  253.558843][ T8886] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  253.571399][ T8886] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  253.668926][ T8886] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  254.392153][ T8917] netlink: 'syz.1.623': attribute type 11 has an invalid length.
[  254.451926][ T8917] netlink: 'syz.1.623': attribute type 11 has an invalid length.
[  254.490346][ T8917] netlink: 'syz.1.623': attribute type 11 has an invalid length.
[  254.498088][ T8917] netlink: 'syz.1.623': attribute type 11 has an invalid length.
[  254.551791][ T8917] netlink: 'syz.1.623': attribute type 11 has an invalid length.
[  255.122010][   T52] Bluetooth: hci0: command 0x0c1a tx timeout
[  255.599764][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  255.608394][ T5828] Bluetooth: hci2: command 0x0c1a tx timeout
[  255.679901][ T5828] Bluetooth: hci1: command 0x0c1a tx timeout
[  256.337871][ T8954] can: request_module (can-proto-0) failed.
[  256.973551][ T8971] netlink: 'syz.3.634': attribute type 11 has an invalid length.
[  257.031664][ T8971] netlink: 'syz.3.634': attribute type 11 has an invalid length.
[  257.101629][ T8971] netlink: 'syz.3.634': attribute type 11 has an invalid length.
[  257.154147][ T8971] netlink: 'syz.3.634': attribute type 11 has an invalid length.
[  257.215077][ T8971] netlink: 'syz.3.634': attribute type 11 has an invalid length.
[  257.683445][ T5828] Bluetooth: hci3: command 0x0c1a tx timeout
[  258.507984][ T9011] block nbd1: Unsupported socket: should be TCP or UNIX.
[  260.802991][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  260.809950][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  261.019733][ T9059] netlink: 11 bytes leftover after parsing attributes in process `syz.2.655'.
[  261.856847][ T9039] kexec: Could not allocate control_code_buffer
[  261.859252][ T5828] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  262.066747][ T9076] binder: 9075:9076 ioctl 4018620d ffffffffffffffff returned -22
[  262.271486][ T9074] zswap: compressor  not available
[  263.560685][ T9090] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  264.430527][ T9110] binder: 9109:9110 ioctl 4018620d ffffffffffffffff returned -22
[  264.586017][ T9114] netlink: 28 bytes leftover after parsing attributes in process `syz.3.665'.
[  264.799687][ T5828] Bluetooth: hci0: command 0x0c1a tx timeout
[  265.599666][ T5828] Bluetooth: hci2: command 0x0c1a tx timeout
[  265.609410][ T9090] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  265.638266][ T9090] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  265.652078][ T9090] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  267.679592][   T52] Bluetooth: hci1: command 0x0c1a tx timeout
[  267.685622][ T5828] Bluetooth: hci3: command 0x0c1a tx timeout
[  267.691659][ T5832] Bluetooth: hci2: command 0x0c1a tx timeout
[  268.517183][ T9175] random: crng reseeded on system resumption
[  268.757674][ T9176] hub 1-0:1.0: USB hub found
[  268.910377][ T9176] hub 1-0:1.0: 1 port detected
[  269.861026][ T9195] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff
[  269.886232][ T9196] FAULT_INJECTION: forcing a failure.
[  269.886232][ T9196] name failslab, interval 1, probability 0, space 0, times 0
[  269.955914][ T9196] CPU: 0 UID: 0 PID: 9196 Comm: syz.1.684 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  269.955938][ T9196] Tainted: [L]=SOFTLOCKUP
[  269.955943][ T9196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  269.955952][ T9196] Call Trace:
[  269.955957][ T9196]  <TASK>
[  269.955963][ T9196]  dump_stack_lvl+0x100/0x190
[  269.955986][ T9196]  should_fail_ex.cold+0x5/0xa
[  269.956011][ T9196]  should_failslab+0xc2/0x120
[  269.956032][ T9196]  kmem_cache_alloc_noprof+0x83/0x780
[  269.956052][ T9196]  ? __do_sys_getcwd+0xe4/0x990
[  269.956077][ T9196]  ? __do_sys_getcwd+0xe4/0x990
[  269.956097][ T9196]  ? fdget+0x18b/0x210
[  269.956111][ T9196]  __do_sys_getcwd+0xe4/0x990
[  269.956136][ T9196]  ? __x64_sys_futex+0x34f/0x4d0
[  269.956156][ T9196]  ? __x64_sys_futex+0x358/0x4d0
[  269.956175][ T9196]  ? __pfx___do_sys_getcwd+0x10/0x10
[  269.956206][ T9196]  do_syscall_64+0xc9/0xf80
[  269.956225][ T9196]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.956240][ T9196] RIP: 0033:0x7f41c199aeb9
[  269.956252][ T9196] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  269.956266][ T9196] RSP: 002b:00007f41c28ce028 EFLAGS: 00000246 ORIG_RAX: 000000000000004f
[  269.956280][ T9196] RAX: ffffffffffffffda RBX: 00007f41c1c15fa0 RCX: 00007f41c199aeb9
[  269.956289][ T9196] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000000
[  269.956298][ T9196] RBP: 00007f41c1a08c1f R08: 0000000000000000 R09: 0000000000000000
[  269.956306][ T9196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  269.956314][ T9196] R13: 00007f41c1c16038 R14: 00007f41c1c15fa0 R15: 00007fff15de6958
[  269.956332][ T9196]  </TASK>
[  272.164256][ T9265] vhci_hcd vhci_hcd.2: invalid port number 16
[  272.198934][ T9265] vhci_hcd vhci_hcd.2: invalid port number 16
[  272.870636][ T9245] kexec: Could not allocate control_code_buffer
[  273.200144][ T5828] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  273.737398][ T9299] binder: 9296:9299 ioctl 4018620d ffffffffffffffff returned -22
[  276.217024][ T9339] FAULT_INJECTION: forcing a failure.
[  276.217024][ T9339] name failslab, interval 1, probability 0, space 0, times 0
[  276.297479][ T9339] CPU: 0 UID: 0 PID: 9339 Comm: syz.2.715 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  276.297506][ T9339] Tainted: [L]=SOFTLOCKUP
[  276.297512][ T9339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  276.297521][ T9339] Call Trace:
[  276.297526][ T9339]  <TASK>
[  276.297531][ T9339]  dump_stack_lvl+0x100/0x190
[  276.297554][ T9339]  should_fail_ex.cold+0x5/0xa
[  276.297579][ T9339]  should_failslab+0xc2/0x120
[  276.297600][ T9339]  __kmalloc_cache_noprof+0x80/0x810
[  276.297616][ T9339]  ? create_filter_start.constprop.0+0x81/0x310
[  276.297639][ T9339]  ? __pfx___might_resched+0x10/0x10
[  276.297665][ T9339]  ? create_filter_start.constprop.0+0x81/0x310
[  276.297688][ T9339]  create_filter_start.constprop.0+0x81/0x310
[  276.297714][ T9339]  create_filter+0xb5/0x210
[  276.297737][ T9339]  ? __pfx_create_filter+0x10/0x10
[  276.297759][ T9339]  ? __pfx___mutex_lock+0x10/0x10
[  276.297778][ T9339]  ? find_held_lock+0x2b/0x80
[  276.297796][ T9339]  apply_event_filter+0x220/0x500
[  276.297810][ T9339]  ? __pfx_apply_event_filter+0x10/0x10
[  276.297830][ T9339]  event_filter_write+0x16d/0x290
[  276.297850][ T9339]  vfs_write+0x2aa/0x1070
[  276.297868][ T9339]  ? __pfx_event_filter_write+0x10/0x10
[  276.297888][ T9339]  ? __pfx_vfs_write+0x10/0x10
[  276.297903][ T9339]  ? find_held_lock+0x2b/0x80
[  276.297918][ T9339]  ? __fget_files+0x215/0x3d0
[  276.297937][ T9339]  ? __fget_files+0x21f/0x3d0
[  276.297963][ T9339]  ksys_write+0x12a/0x250
[  276.297980][ T9339]  ? __pfx_ksys_write+0x10/0x10
[  276.298003][ T9339]  do_syscall_64+0xc9/0xf80
[  276.298023][ T9339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.298038][ T9339] RIP: 0033:0x7f7872f9aeb9
[  276.298058][ T9339] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  276.298073][ T9339] RSP: 002b:00007f7873ead028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  276.298089][ T9339] RAX: ffffffffffffffda RBX: 00007f7873215fa0 RCX: 00007f7872f9aeb9
[  276.298100][ T9339] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003
[  276.298109][ T9339] RBP: 00007f7873008c1f R08: 0000000000000000 R09: 0000000000000000
[  276.298118][ T9339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  276.298127][ T9339] R13: 00007f7873216038 R14: 00007f7873215fa0 R15: 00007ffdd33be928
[  276.298147][ T9339]  </TASK>
[  276.876917][   T52] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  277.523188][ T9362] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  277.593675][ T9362] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  277.684281][ T9362] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  277.722328][ T9366] binder: 9365:9366 ioctl 4018620d ffffffffffffffff returned -22
[  277.779308][ T9362] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  278.066041][ T9374] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  278.180638][ T9374] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  278.339933][ T9374] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  278.447057][ T9374] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  278.683280][ T9385] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  278.794943][ T9388] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15
[  278.839663][ T9385] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  278.953338][ T9385] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  279.002544][ T9391] netlink: 8 bytes leftover after parsing attributes in process `syz.1.727'.
[  279.068658][ T9385] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  279.112387][ T9396] block2mtd: illegal erase size
[  279.196559][ T9399] crash hp: kexec_trylock() failed, kdump image may be inaccurate
[  279.269324][ T9397] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  279.373665][ T9397] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  279.418423][ T9397] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  279.515370][ T9397] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  279.745409][ T9406] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  279.868903][ T9406] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  279.960070][ T9406] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  280.056735][ T9417] [U]  
[  280.059678][ T9417] [U] 
[  280.062352][ T9417] [U] 
[  280.065017][ T9417] [U] 
[  280.067809][ T9406] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  280.141460][ T9417] [U] 
[  280.144174][ T9417] [U] 
[  280.146846][ T9417] [U] 
[  280.149515][ T9417] [U] 
[  280.243882][ T9417] [U] 
[  280.246587][ T9417] [U] 
[  280.249257][ T9417] [U] 
[  280.251929][ T9417] [U] 
[  280.300434][ T9417] [U] 
[  280.303146][ T9417] [U] 
[  280.305817][ T9417] [U] 
[  280.308484][ T9417] [U] 
[  280.349026][ T9417] [U] 
[  280.351735][ T9417] [U] 
[  280.354406][ T9417] [U] 
[  280.357072][ T9417] [U] 
[  280.426326][ T9417] [U] 
[  280.429040][ T9417] [U] 
[  280.431711][ T9417] [U] 
[  280.434382][ T9417] [U] 
[  280.472280][ T9417] [U] 
[  280.474998][ T9417] [U] 
[  280.477673][ T9417] [U] 
[  280.480344][ T9417] [U] 
[  280.498553][ T9391] kexec: Could not allocate control_code_buffer
[  280.518724][ T9417] [U] 
[  280.521424][ T9417] [U] 
[  280.524093][ T9417] [U] 
[  280.526769][ T9417] [U] 
[  280.555059][ T9417] [U] 
[  280.557768][ T9417] [U] 
[  280.560440][ T9417] [U] 
[  280.563110][ T9417] [U] 
[  280.597176][ T9417] [U] 
[  280.599893][ T9417] [U] 
[  280.602561][ T9417] [U] 
[  280.605228][ T9417] [U] 
[  280.632124][ T9417] [U] 
[  280.634834][ T9417] [U] 
[  280.637503][ T9417] [U] 
[  280.640170][ T9417] [U] 
[  280.669703][ T9417] [U] 
[  280.672420][ T9417] [U] 
[  280.675099][ T9417] [U] 
[  280.677769][ T9417] [U] 
[  280.720271][ T9417] [U] 
[  280.722981][ T9417] [U] 
[  280.725654][ T9417] [U] 
[  280.728323][ T9417] [U] 
[  280.766336][ T9417] [U] 
[  280.769048][ T9417] [U] 
[  280.771718][ T9417] [U] 
[  280.774389][ T9417] [U] 
[  280.808670][ T9417] [U] 
[  280.811383][ T9417] [U] 
[  280.814062][ T9417] [U] 
[  280.816744][ T9417] [U] 
[  280.860833][ T9417] [U] 
[  280.863544][ T9417] [U] 
[  280.866213][ T9417] [U] 
[  280.868892][ T9417] [U] 
[  280.944947][ T9417] [U] 
[  280.947654][ T9417] [U] 
[  280.950335][ T9417] [U] 
[  280.953002][ T9417] [U] 
[  281.005972][ T9417] [U] 
[  281.519224][ T9445] binder: 9444:9445 ioctl 4018620d ffffffffffffffff returned -22
[  281.704459][ T9449] block2mtd: illegal erase size
[  283.805324][   T52] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  283.812787][   T52] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  283.941113][ T9512] writes to the poll attribute are ignored.
[  283.971939][ T9512] please use driver specific parameters instead.
[  284.266493][ T9512] netlink: 4 bytes leftover after parsing attributes in process `syz.2.756'.
[  284.314782][ T9512] netlink: 25 bytes leftover after parsing attributes in process `syz.2.756'.
[  284.357983][ T9529] netlink: 'syz.3.760': attribute type 11 has an invalid length.
[  284.425629][ T9529] netlink: 'syz.3.760': attribute type 11 has an invalid length.
[  284.511037][ T9529] netlink: 'syz.3.760': attribute type 11 has an invalid length.
[  284.527900][   T30] audit: type=1800 audit(1770364684.057:12): pid=9534 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.761" name="features" dev="configfs" ino=30529 res=0 errno=0
[  284.591381][ T9529] netlink: 'syz.3.760': attribute type 11 has an invalid length.
[  284.658786][ T9529] netlink: 'syz.3.760': attribute type 11 has an invalid length.
[  286.199157][ T9570] zswap: compressor  not available
[  286.330584][ T9585] FAULT_INJECTION: forcing a failure.
[  286.330584][ T9585] name failslab, interval 1, probability 0, space 0, times 0
[  286.433101][ T9585] CPU: 0 UID: 0 PID: 9585 Comm: syz.0.775 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  286.433125][ T9585] Tainted: [L]=SOFTLOCKUP
[  286.433131][ T9585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  286.433140][ T9585] Call Trace:
[  286.433145][ T9585]  <TASK>
[  286.433150][ T9585]  dump_stack_lvl+0x100/0x190
[  286.433172][ T9585]  should_fail_ex.cold+0x5/0xa
[  286.433197][ T9585]  should_failslab+0xc2/0x120
[  286.433221][ T9585]  kmem_cache_alloc_noprof+0x83/0x780
[  286.433241][ T9585]  ? futex_wait+0x125/0x380
[  286.433254][ T9585]  ? prepare_creds+0x2c/0x950
[  286.433271][ T9585]  ? prepare_creds+0x2c/0x950
[  286.433287][ T9585]  prepare_creds+0x2c/0x950
[  286.433302][ T9585]  lookup_user_key+0x8e9/0x1300
[  286.433325][ T9585]  ? __pfx_lookup_user_key+0x10/0x10
[  286.433346][ T9585]  ? do_futex+0x192/0x350
[  286.433367][ T9585]  ? __pfx_do_futex+0x10/0x10
[  286.433387][ T9585]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  286.433411][ T9585]  ? __x64_sys_futex+0x34f/0x4d0
[  286.433430][ T9585]  ? __x64_sys_futex+0x358/0x4d0
[  286.433450][ T9585]  ? fput+0x79/0x100
[  286.433472][ T9585]  keyctl_watch_key+0x52/0x500
[  286.433493][ T9585]  __do_sys_keyctl+0x29f/0x5a0
[  286.433514][ T9585]  do_syscall_64+0xc9/0xf80
[  286.433534][ T9585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.433549][ T9585] RIP: 0033:0x7fab3619aeb9
[  286.433561][ T9585] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  286.433575][ T9585] RSP: 002b:00007fab370f0028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  286.433589][ T9585] RAX: ffffffffffffffda RBX: 00007fab36415fa0 RCX: 00007fab3619aeb9
[  286.433599][ T9585] RDX: 0000000000000005 RSI: ffffffffffffffff RDI: 0200000000000020
[  286.433608][ T9585] RBP: 00007fab36208c1f R08: 0000000000000008 R09: 0000000000000000
[  286.433617][ T9585] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  286.433625][ T9585] R13: 00007fab36416038 R14: 00007fab36415fa0 R15: 00007ffe62f993a8
[  286.433643][ T9585]  </TASK>
[  287.297415][ T9607] FAULT_INJECTION: forcing a failure.
[  287.297415][ T9607] name failslab, interval 1, probability 0, space 0, times 0
[  287.348562][ T9607] CPU: 0 UID: 0 PID: 9607 Comm: syz.2.779 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  287.348590][ T9607] Tainted: [L]=SOFTLOCKUP
[  287.348595][ T9607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  287.348604][ T9607] Call Trace:
[  287.348609][ T9607]  <TASK>
[  287.348615][ T9607]  dump_stack_lvl+0x100/0x190
[  287.348640][ T9607]  should_fail_ex.cold+0x5/0xa
[  287.348665][ T9607]  should_failslab+0xc2/0x120
[  287.348687][ T9607]  __kmalloc_node_track_caller_noprof+0xf9/0x9d0
[  287.348709][ T9607]  ? vidtv_psi_short_event_desc_init+0x429/0x5f0
[  287.348738][ T9607]  ? kstrdup+0x51/0xe0
[  287.348755][ T9607]  kstrdup+0x51/0xe0
[  287.348774][ T9607]  vidtv_psi_short_event_desc_init+0x429/0x5f0
[  287.348802][ T9607]  vidtv_psi_desc_clone+0x33f/0x5d0
[  287.348819][ T9607]  vidtv_channel_si_init+0x764/0x18d0
[  287.348843][ T9607]  vidtv_mux_init+0x526/0xbf0
[  287.348863][ T9607]  vidtv_start_feed+0x33e/0x4c0
[  287.348885][ T9607]  ? __pfx_vidtv_start_feed+0x10/0x10
[  287.348906][ T9607]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  287.348929][ T9607]  ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10
[  287.348954][ T9607]  ? mark_held_locks+0x40/0x70
[  287.348976][ T9607]  ? __pfx_vidtv_start_feed+0x10/0x10
[  287.348997][ T9607]  dmx_ts_feed_start_filtering+0xf6/0x220
[  287.349024][ T9607]  dvb_dmxdev_start_feed+0x273/0x3f0
[  287.349046][ T9607]  dvb_dmxdev_filter_start+0x1b6/0xdd0
[  287.349070][ T9607]  ? dvb_dmxdev_add_pid+0x2a1/0x380
[  287.349092][ T9607]  dvb_demux_do_ioctl+0xe64/0x1200
[  287.349119][ T9607]  dvb_usercopy+0x167/0x340
[  287.349137][ T9607]  ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[  287.349159][ T9607]  ? __pfx_dvb_usercopy+0x10/0x10
[  287.349185][ T9607]  ? __fget_files+0x21f/0x3d0
[  287.349205][ T9607]  dvb_demux_ioctl+0x29/0x40
[  287.349232][ T9607]  ? __pfx_dvb_demux_ioctl+0x10/0x10
[  287.349253][ T9607]  __x64_sys_ioctl+0x18e/0x210
[  287.349278][ T9607]  do_syscall_64+0xc9/0xf80
[  287.349299][ T9607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.349313][ T9607] RIP: 0033:0x7f7872f9aeb9
[  287.349326][ T9607] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  287.349340][ T9607] RSP: 002b:00007f7873ead028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  287.349355][ T9607] RAX: ffffffffffffffda RBX: 00007f7873215fa0 RCX: 00007f7872f9aeb9
[  287.349364][ T9607] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003
[  287.349373][ T9607] RBP: 00007f7873008c1f R08: 0000000000000000 R09: 0000000000000000
[  287.349382][ T9607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  287.349390][ T9607] R13: 00007f7873216038 R14: 00007f7873215fa0 R15: 00007ffdd33be928
[  287.349410][ T9607]  </TASK>
[  289.284060][ T9624] binder: 9623:9624 ioctl 4018620d ffffffffffffffff returned -22
[  290.626611][ T9649] FAULT_INJECTION: forcing a failure.
[  290.626611][ T9649] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  290.748914][ T9649] CPU: 0 UID: 0 PID: 9649 Comm: syz.0.789 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  290.748941][ T9649] Tainted: [L]=SOFTLOCKUP
[  290.748946][ T9649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  290.748962][ T9649] Call Trace:
[  290.748968][ T9649]  <TASK>
[  290.748974][ T9649]  dump_stack_lvl+0x100/0x190
[  290.748998][ T9649]  should_fail_ex.cold+0x5/0xa
[  290.749020][ T9649]  ? prepare_alloc_pages+0x16d/0x5f0
[  290.749045][ T9649]  should_fail_alloc_page+0xeb/0x140
[  290.749066][ T9649]  prepare_alloc_pages+0x1f0/0x5f0
[  290.749091][ T9649]  __alloc_frozen_pages_noprof+0x193/0x2410
[  290.749109][ T9649]  ? mark_held_locks+0x40/0x70
[  290.749128][ T9649]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  290.749145][ T9649]  ? lockdep_hardirqs_on+0x78/0x100
[  290.749162][ T9649]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  290.749178][ T9649]  ? stack_depot_save_flags+0x3f8/0x9c0
[  290.749202][ T9649]  ? __alloc_frozen_pages_noprof+0x2a0/0x2410
[  290.749221][ T9649]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  290.749239][ T9649]  ? kasan_save_track+0x14/0x30
[  290.749256][ T9649]  ? kmem_cache_alloc_noprof+0x2ad/0x780
[  290.749275][ T9649]  ? __handle_mm_fault+0xa99/0x2b50
[  290.749290][ T9649]  ? handle_mm_fault+0x36d/0xa20
[  290.749304][ T9649]  ? fixup_user_fault+0x199/0x510
[  290.749323][ T9649]  ? fault_in_user_writeable+0x70/0xe0
[  290.749342][ T9649]  ? futex_lock_pi+0x682/0x7b0
[  290.749362][ T9649]  ? do_futex+0x18a/0x350
[  290.749380][ T9649]  ? __x64_sys_futex+0x34f/0x4d0
[  290.749407][ T9649]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  290.749424][ T9649]  ? policy_nodemask+0xed/0x4f0
[  290.749446][ T9649]  alloc_pages_mpol+0x1fb/0x550
[  290.749467][ T9649]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  290.749496][ T9649]  ? __pfx_filemap_map_pages+0x10/0x10
[  290.749514][ T9649]  alloc_pages_noprof+0x131/0x390
[  290.749536][ T9649]  pte_alloc_one+0x1e/0x3e0
[  290.749556][ T9649]  __do_fault+0x359/0x550
[  290.749577][ T9649]  ? __pfx_filemap_map_pages+0x10/0x10
[  290.749595][ T9649]  do_fault+0x2db/0x1990
[  290.749616][ T9649]  ? __pmd_alloc+0x6aa/0x9c0
[  290.749639][ T9649]  __handle_mm_fault+0x1807/0x2b50
[  290.749658][ T9649]  ? mt_find+0x45e/0x8e0
[  290.749678][ T9649]  ? __pfx___handle_mm_fault+0x10/0x10
[  290.749693][ T9649]  ? __pfx_mt_find+0x10/0x10
[  290.749710][ T9649]  ? __lock_acquire+0x4a5/0x2630
[  290.749738][ T9649]  ? find_vma+0xbf/0x140
[  290.749757][ T9649]  ? __pfx_find_vma+0x10/0x10
[  290.749778][ T9649]  handle_mm_fault+0x36d/0xa20
[  290.749798][ T9649]  fixup_user_fault+0x199/0x510
[  290.749822][ T9649]  fault_in_user_writeable+0x70/0xe0
[  290.749842][ T9649]  futex_lock_pi+0x682/0x7b0
[  290.749867][ T9649]  ? __pfx_futex_lock_pi+0x10/0x10
[  290.749888][ T9649]  ? preempt_schedule_common+0x42/0xc0
[  290.749905][ T9649]  ? preempt_schedule_thunk+0x16/0x30
[  290.749928][ T9649]  ? __pfx_try_to_wake_up+0x10/0x10
[  290.749953][ T9649]  ? futex_private_hash_put+0x107/0x1c0
[  290.749975][ T9649]  ? __pfx_futex_wake_mark+0x10/0x10
[  290.750003][ T9649]  ? ksys_write+0x190/0x250
[  290.750019][ T9649]  ? ksys_write+0x190/0x250
[  290.750040][ T9649]  do_futex+0x18a/0x350
[  290.750061][ T9649]  ? __pfx_do_futex+0x10/0x10
[  290.750085][ T9649]  __x64_sys_futex+0x34f/0x4d0
[  290.750107][ T9649]  ? fput+0x79/0x100
[  290.750126][ T9649]  ? __pfx___x64_sys_futex+0x10/0x10
[  290.750145][ T9649]  ? xfd_validate_state+0x129/0x190
[  290.750174][ T9649]  do_syscall_64+0xc9/0xf80
[  290.750193][ T9649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.750209][ T9649] RIP: 0033:0x7fab3619aeb9
[  290.750222][ T9649] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  290.750237][ T9649] RSP: 002b:00007fab370cf028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  290.750253][ T9649] RAX: ffffffffffffffda RBX: 00007fab36416090 RCX: 00007fab3619aeb9
[  290.750263][ T9649] RDX: 0000000000000008 RSI: 0000000000000086 RDI: 0000000000000000
[  290.750272][ T9649] RBP: 00007fab36208c1f R08: 0000000000000000 R09: 0000000000000007
[  290.750281][ T9649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  290.750290][ T9649] R13: 00007fab36416128 R14: 00007fab36416090 R15: 00007ffe62f993a8
[  290.750310][ T9649]  </TASK>
[  292.565976][ T9695] EXT4-fs warning: 2 callbacks suppressed
[  292.565990][ T9695] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  292.684450][ T9695] EXT4-fs error: 2 callbacks suppressed
[  292.684464][ T9695] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  292.774322][ T9695] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  292.846970][ T9695] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  292.903309][ T9709] netlink: 342 bytes leftover after parsing attributes in process `syz.1.806'.
[  293.028481][ T9710] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  293.150287][ T9710] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  293.249969][ T9710] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  293.326379][ T9710] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  293.723245][ T9722] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  293.810417][ T9713] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  293.829764][ T9713] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  293.840058][ T9722] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  293.909194][ T9722] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  293.978108][ T9713] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  293.985965][ T9713] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  293.993162][ T9722] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  294.060825][ T9713] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  294.119257][ T9713] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  294.325422][ T9732] binder: 9731:9732 ioctl 4018620d ffffffffffffffff returned -22
[  294.724705][ T9747] FAULT_INJECTION: forcing a failure.
[  294.724705][ T9747] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  294.808585][ T9747] CPU: 0 UID: 0 PID: 9747 Comm: syz.3.814 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  294.808611][ T9747] Tainted: [L]=SOFTLOCKUP
[  294.808616][ T9747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  294.808625][ T9747] Call Trace:
[  294.808630][ T9747]  <TASK>
[  294.808635][ T9747]  dump_stack_lvl+0x100/0x190
[  294.808657][ T9747]  should_fail_ex.cold+0x5/0xa
[  294.808682][ T9747]  _copy_from_user+0x2e/0xd0
[  294.808714][ T9747]  __x64_sys_cachestat+0x18a/0x5f0
[  294.808739][ T9747]  ? __pfx___x64_sys_cachestat+0x10/0x10
[  294.808765][ T9747]  ? do_user_addr_fault+0x8d6/0x12f0
[  294.808787][ T9747]  do_syscall_64+0xc9/0xf80
[  294.808807][ T9747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.808822][ T9747] RIP: 0033:0x7f40cc39aeb9
[  294.808834][ T9747] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  294.808848][ T9747] RSP: 002b:00007f40cd20f028 EFLAGS: 00000246 ORIG_RAX: 00000000000001c3
[  294.808863][ T9747] RAX: ffffffffffffffda RBX: 00007f40cc616180 RCX: 00007f40cc39aeb9
[  294.808872][ T9747] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  294.808881][ T9747] RBP: 00007f40cd20f090 R08: 0000000000000000 R09: 0000000000000000
[  294.808890][ T9747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  294.808898][ T9747] R13: 00007f40cc616218 R14: 00007f40cc616180 R15: 00007ffc4a4101d8
[  294.808917][ T9747]  </TASK>
[  295.839639][   T52] Bluetooth: hci0: command 0x0c1a tx timeout
[  296.001753][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  296.008311][ T5828] Bluetooth: hci2: command 0x0c1a tx timeout
[  296.080648][   T52] Bluetooth: hci1: command 0x0c1a tx timeout
[  296.177737][ T9773] FAULT_INJECTION: forcing a failure.
[  296.177737][ T9773] name failslab, interval 1, probability 0, space 0, times 0
[  296.255599][ T9773] CPU: 0 UID: 0 PID: 9773 Comm: syz.2.820 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  296.255625][ T9773] Tainted: [L]=SOFTLOCKUP
[  296.255631][ T9773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  296.255640][ T9773] Call Trace:
[  296.255646][ T9773]  <TASK>
[  296.255652][ T9773]  dump_stack_lvl+0x100/0x190
[  296.255675][ T9773]  should_fail_ex.cold+0x5/0xa
[  296.255700][ T9773]  should_failslab+0xc2/0x120
[  296.255721][ T9773]  __kmalloc_cache_noprof+0x80/0x810
[  296.255738][ T9773]  ? cgroup_file_open+0x92/0x460
[  296.255758][ T9773]  ? cgroup_file_open+0x92/0x460
[  296.255775][ T9773]  cgroup_file_open+0x92/0x460
[  296.255791][ T9773]  ? __pfx_cgroup_file_open+0x10/0x10
[  296.255810][ T9773]  kernfs_fop_open+0x8b5/0xd50
[  296.255831][ T9773]  do_dentry_open+0x73e/0x1570
[  296.255848][ T9773]  ? __pfx_kernfs_fop_open+0x10/0x10
[  296.255864][ T9773]  ? security_inode_permission+0xbf/0x250
[  296.255889][ T9773]  vfs_open+0x82/0x3f0
[  296.255913][ T9773]  path_openat+0x21dc/0x3120
[  296.255937][ T9773]  ? __pfx_path_openat+0x10/0x10
[  296.255961][ T9773]  do_filp_open+0x1f7/0x420
[  296.255980][ T9773]  ? __pfx_do_filp_open+0x10/0x10
[  296.256010][ T9773]  ? _raw_spin_unlock+0x28/0x50
[  296.256026][ T9773]  ? alloc_fd+0x476/0x790
[  296.256047][ T9773]  do_sys_openat2+0x12e/0x220
[  296.256070][ T9773]  ? __pfx_do_sys_openat2+0x10/0x10
[  296.256100][ T9773]  __x64_sys_openat+0x12d/0x210
[  296.256122][ T9773]  ? __pfx___x64_sys_openat+0x10/0x10
[  296.256144][ T9773]  ? xfd_validate_state+0x129/0x190
[  296.256173][ T9773]  do_syscall_64+0xc9/0xf80
[  296.256192][ T9773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.256207][ T9773] RIP: 0033:0x7f7872f9aeb9
[  296.256220][ T9773] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  296.256234][ T9773] RSP: 002b:00007f7873ead028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  296.256249][ T9773] RAX: ffffffffffffffda RBX: 00007f7873215fa0 RCX: 00007f7872f9aeb9
[  296.256258][ T9773] RDX: 0000000000182b02 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  296.256268][ T9773] RBP: 00007f7873008c1f R08: 0000000000000000 R09: 0000000000000000
[  296.256277][ T9773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  296.256286][ T9773] R13: 00007f7873216038 R14: 00007f7873215fa0 R15: 00007ffdd33be928
[  296.256306][ T9773]  </TASK>
[  296.591933][ T9781] netlink: 44 bytes leftover after parsing attributes in process `syz.3.825'.
[  296.601711][ T9781] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !P&��r��҄y�*�"�l-���y–��
[  296.682468][ T9786] vivid-003: =================  START STATUS  =================
[  296.690371][ T9786] vivid-003: Radio HW Seek Mode: Bounded
[  296.696090][ T9786] vivid-003: Radio Programmable HW Seek: false
[  296.702255][ T9786] vivid-003: RDS Rx I/O Mode: Block I/O
[  296.707812][ T9786] vivid-003: Generate RBDS Instead of RDS: false
[  296.714176][ T9786] vivid-003: RDS Reception: true
[  296.719120][ T9786] vivid-003: RDS Program Type: 0 inactive
[  296.725126][ T9786] vivid-003: RDS PS Name:  inactive
[  296.731640][ T9786] vivid-003: RDS Radio Text:  inactive
[  296.737118][ T9786] vivid-003: RDS Traffic Announcement: false inactive
[  296.751265][ T9786] vivid-003: RDS Traffic Program: false inactive
[  296.786968][ T9786] vivid-003: RDS Music: false inactive
[  296.820057][ T9786] vivid-003: ==================  END STATUS  ==================
[  297.125852][ T9793] FAULT_INJECTION: forcing a failure.
[  297.125852][ T9793] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  297.159601][ T9793] CPU: 0 UID: 0 PID: 9793 Comm: syz.1.826 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  297.159628][ T9793] Tainted: [L]=SOFTLOCKUP
[  297.159634][ T9793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  297.159642][ T9793] Call Trace:
[  297.159647][ T9793]  <TASK>
[  297.159652][ T9793]  dump_stack_lvl+0x100/0x190
[  297.159674][ T9793]  should_fail_ex.cold+0x5/0xa
[  297.159699][ T9793]  _copy_to_user+0x32/0xd0
[  297.159723][ T9793]  __x64_sys_cachestat+0x302/0x5f0
[  297.159748][ T9793]  ? __pfx___x64_sys_cachestat+0x10/0x10
[  297.159779][ T9793]  do_syscall_64+0xc9/0xf80
[  297.159800][ T9793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.159815][ T9793] RIP: 0033:0x7f41c199aeb9
[  297.159828][ T9793] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  297.159842][ T9793] RSP: 002b:00007f41c28ce028 EFLAGS: 00000246 ORIG_RAX: 00000000000001c3
[  297.159856][ T9793] RAX: ffffffffffffffda RBX: 00007f41c1c15fa0 RCX: 00007f41c199aeb9
[  297.159866][ T9793] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  297.159875][ T9793] RBP: 00007f41c28ce090 R08: 0000000000000000 R09: 0000000000000000
[  297.159883][ T9793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  297.159892][ T9793] R13: 00007f41c1c16038 R14: 00007f41c1c15fa0 R15: 00007fff15de6958
[  297.159910][ T9793]  </TASK>
[  297.919654][   T52] Bluetooth: hci0: command 0x0c1a tx timeout
[  298.159565][   T52] Bluetooth: hci1: command 0x0c1a tx timeout
[  299.150348][ T9823] netlink: 'syz.2.834': attribute type 11 has an invalid length.
[  299.201459][ T9823] netlink: 'syz.2.834': attribute type 11 has an invalid length.
[  299.236162][ T9823] netlink: 'syz.2.834': attribute type 11 has an invalid length.
[  299.266651][ T9823] netlink: 'syz.2.834': attribute type 11 has an invalid length.
[  299.313108][ T9823] netlink: 'syz.2.834': attribute type 11 has an invalid length.
[  299.805015][ T9836] FAULT_INJECTION: forcing a failure.
[  299.805015][ T9836] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  299.981640][ T9836] CPU: 0 UID: 0 PID: 9836 Comm: syz.2.837 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  299.981666][ T9836] Tainted: [L]=SOFTLOCKUP
[  299.981671][ T9836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  299.981680][ T9836] Call Trace:
[  299.981685][ T9836]  <TASK>
[  299.981691][ T9836]  dump_stack_lvl+0x100/0x190
[  299.981712][ T9836]  should_fail_ex.cold+0x5/0xa
[  299.981737][ T9836]  _copy_to_user+0x32/0xd0
[  299.981761][ T9836]  simple_read_from_buffer+0xcb/0x170
[  299.981779][ T9836]  proc_fail_nth_read+0x1af/0x230
[  299.981797][ T9836]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  299.981815][ T9836]  ? rw_verify_area+0xce/0x6d0
[  299.981829][ T9836]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  299.981847][ T9836]  vfs_read+0x1e4/0xb30
[  299.981865][ T9836]  ? __pfx_vfs_read+0x10/0x10
[  299.981880][ T9836]  ? find_held_lock+0x2b/0x80
[  299.981895][ T9836]  ? __fget_files+0x215/0x3d0
[  299.981915][ T9836]  ? __fget_files+0x21f/0x3d0
[  299.981936][ T9836]  ksys_read+0x12a/0x250
[  299.981952][ T9836]  ? __pfx_ksys_read+0x10/0x10
[  299.981973][ T9836]  do_syscall_64+0xc9/0xf80
[  299.981993][ T9836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  299.982008][ T9836] RIP: 0033:0x7f7872f5b78e
[  299.982021][ T9836] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  299.982034][ T9836] RSP: 002b:00007f7873e6afe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  299.982049][ T9836] RAX: ffffffffffffffda RBX: 00007f7873e6b6c0 RCX: 00007f7872f5b78e
[  299.982059][ T9836] RDX: 000000000000000f RSI: 00007f7873e6b0a0 RDI: 0000000000000007
[  299.982067][ T9836] RBP: 00007f7873e6b090 R08: 0000000000000000 R09: 0000000000000000
[  299.982076][ T9836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  299.982084][ T9836] R13: 00007f7873216218 R14: 00007f7873216180 R15: 00007ffdd33be928
[  299.982103][ T9836]  </TASK>
[  300.789058][ T9846] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16
[  300.947061][ T9849] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17
[  301.283333][ T9862] netlink: 'syz.2.846': attribute type 11 has an invalid length.
[  301.338465][ T9862] netlink: 'syz.2.846': attribute type 11 has an invalid length.
[  301.414255][ T9862] netlink: 'syz.2.846': attribute type 11 has an invalid length.
[  301.463859][ T9862] netlink: 'syz.2.846': attribute type 11 has an invalid length.
[  301.511699][ T9862] netlink: 'syz.2.846': attribute type 11 has an invalid length.
[  301.986339][ T9865] bcache: register_bcache() error : Not a bcache superblock (bad offset)
[  302.761825][ T9889] FAULT_INJECTION: forcing a failure.
[  302.761825][ T9889] name fail_futex, interval 1, probability 0, space 0, times 0
[  302.841486][ T9889] CPU: 0 UID: 0 PID: 9889 Comm: syz.1.854 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  302.841512][ T9889] Tainted: [L]=SOFTLOCKUP
[  302.841518][ T9889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  302.841527][ T9889] Call Trace:
[  302.841532][ T9889]  <TASK>
[  302.841538][ T9889]  dump_stack_lvl+0x100/0x190
[  302.841561][ T9889]  should_fail_ex.cold+0x5/0xa
[  302.841587][ T9889]  get_futex_key+0x1d2/0x1620
[  302.841610][ T9889]  ? __pfx_get_futex_key+0x10/0x10
[  302.841634][ T9889]  futex_wake+0xea/0x530
[  302.841656][ T9889]  ? rcu_is_watching+0x12/0xc0
[  302.841672][ T9889]  ? lockdep_hardirqs_on+0x78/0x100
[  302.841689][ T9889]  ? __pfx_futex_wake+0x10/0x10
[  302.841713][ T9889]  ? fd_install+0x223/0x580
[  302.841729][ T9889]  ? putname+0xf5/0x1a0
[  302.841751][ T9889]  do_futex+0x32b/0x350
[  302.841772][ T9889]  ? __pfx_do_futex+0x10/0x10
[  302.841790][ T9889]  ? __pfx_do_sys_openat2+0x10/0x10
[  302.841817][ T9889]  __x64_sys_futex+0x34f/0x4d0
[  302.841837][ T9889]  ? __x64_sys_openat+0x12d/0x210
[  302.841860][ T9889]  ? __pfx___x64_sys_futex+0x10/0x10
[  302.841879][ T9889]  ? xfd_validate_state+0x129/0x190
[  302.841908][ T9889]  do_syscall_64+0xc9/0xf80
[  302.841927][ T9889]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.841942][ T9889] RIP: 0033:0x7f41c199aeb9
[  302.841954][ T9889] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  302.841968][ T9889] RSP: 002b:00007f41c28ce0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  302.841983][ T9889] RAX: ffffffffffffffda RBX: 00007f41c1c15fa8 RCX: 00007f41c199aeb9
[  302.841993][ T9889] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f41c1c15fac
[  302.842002][ T9889] RBP: 00007f41c1c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  302.842010][ T9889] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[  302.842019][ T9889] R13: 00007f41c1c16038 R14: 00007fff15de6870 R15: 00007fff15de6958
[  302.842048][ T9889]  </TASK>
[  303.269203][ T9893] binder: 9892:9893 ioctl 4018620d ffffffffffffffff returned -22
[  305.914816][ T9955] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4096.0.4294967288), cmd(3)
[  306.458155][   T30] audit: type=1800 audit(1770364705.987:13): pid=9967 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.870" name="dbroot" dev="configfs" ino=33011 res=0 errno=0
[  306.481882][ T9967] netlink: 28 bytes leftover after parsing attributes in process `syz.1.870'.
[  306.539714][ T9966] netlink: 28 bytes leftover after parsing attributes in process `syz.1.870'.
[  306.808127][ T9966] team0: Port device team_slave_1 removed
[  307.222565][   T52] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  307.707969][   T52] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  308.932264][T10018] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  309.026215][T10018] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  309.116255][T10018] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  309.232514][T10018] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  309.440688][   T52] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  309.493126][T10028] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  309.628498][T10028] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  309.705358][T10028] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  309.803827][T10028] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  310.079437][T10039] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  310.156091][T10039] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  310.228752][T10039] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  310.315876][T10039] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  310.432011][T10043] netlink: 'syz.1.889': attribute type 5 has an invalid length.
[  310.781066][T10050] FAULT_INJECTION: forcing a failure.
[  310.781066][T10050] name fail_futex, interval 1, probability 0, space 0, times 0
[  310.843683][T10050] CPU: 0 UID: 0 PID: 10050 Comm: syz.2.890 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  310.843711][T10050] Tainted: [L]=SOFTLOCKUP
[  310.843717][T10050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  310.843726][T10050] Call Trace:
[  310.843731][T10050]  <TASK>
[  310.843737][T10050]  dump_stack_lvl+0x100/0x190
[  310.843760][T10050]  should_fail_ex.cold+0x5/0xa
[  310.843786][T10050]  get_futex_key+0x1d2/0x1620
[  310.843808][T10050]  ? __pfx_get_futex_key+0x10/0x10
[  310.843833][T10050]  futex_wake+0xea/0x530
[  310.843857][T10050]  ? rcu_is_watching+0x12/0xc0
[  310.843872][T10050]  ? lockdep_hardirqs_on+0x78/0x100
[  310.843890][T10050]  ? __pfx_futex_wake+0x10/0x10
[  310.843915][T10050]  ? fd_install+0x223/0x580
[  310.843930][T10050]  ? putname+0xf5/0x1a0
[  310.843952][T10050]  do_futex+0x32b/0x350
[  310.843973][T10050]  ? __pfx_do_futex+0x10/0x10
[  310.843991][T10050]  ? __pfx_do_sys_openat2+0x10/0x10
[  310.844015][T10050]  ? __fget_files+0x21f/0x3d0
[  310.844032][T10050]  __x64_sys_futex+0x34f/0x4d0
[  310.844053][T10050]  ? __x64_sys_openat+0x12d/0x210
[  310.844074][T10050]  ? __pfx___x64_sys_futex+0x10/0x10
[  310.844094][T10050]  ? xfd_validate_state+0x129/0x190
[  310.844123][T10050]  do_syscall_64+0xc9/0xf80
[  310.844142][T10050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.844157][T10050] RIP: 0033:0x7f7872f9aeb9
[  310.844170][T10050] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  310.844184][T10050] RSP: 002b:00007f7873ead0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  310.844198][T10050] RAX: ffffffffffffffda RBX: 00007f7873215fa8 RCX: 00007f7872f9aeb9
[  310.844208][T10050] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7873215fac
[  310.844217][T10050] RBP: 00007f7873215fa0 R08: 0000000000000000 R09: 0000000000000000
[  310.844226][T10050] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000
[  310.844234][T10050] R13: 00007f7873216038 R14: 00007ffdd33be840 R15: 00007ffdd33be928
[  310.844253][T10050]  </TASK>
[  311.712563][T10068] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  312.430767][   T52] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  312.756793][T10090] FAULT_INJECTION: forcing a failure.
[  312.756793][T10090] name fail_futex, interval 1, probability 0, space 0, times 0
[  312.801819][T10090] CPU: 0 UID: 0 PID: 10090 Comm: syz.3.901 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  312.801845][T10090] Tainted: [L]=SOFTLOCKUP
[  312.801850][T10090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  312.801859][T10090] Call Trace:
[  312.801864][T10090]  <TASK>
[  312.801870][T10090]  dump_stack_lvl+0x100/0x190
[  312.801892][T10090]  should_fail_ex.cold+0x5/0xa
[  312.801917][T10090]  get_futex_key+0x1d2/0x1620
[  312.801938][T10090]  ? __pfx_get_futex_key+0x10/0x10
[  312.801963][T10090]  futex_wake+0xea/0x530
[  312.801985][T10090]  ? rcu_is_watching+0x12/0xc0
[  312.802000][T10090]  ? lockdep_hardirqs_on+0x78/0x100
[  312.802018][T10090]  ? __pfx_futex_wake+0x10/0x10
[  312.802042][T10090]  ? fd_install+0x223/0x580
[  312.802057][T10090]  ? putname+0xf5/0x1a0
[  312.802081][T10090]  do_futex+0x32b/0x350
[  312.802101][T10090]  ? __pfx_do_futex+0x10/0x10
[  312.802119][T10090]  ? __pfx_do_sys_openat2+0x10/0x10
[  312.802142][T10090]  ? __fget_files+0x21f/0x3d0
[  312.802160][T10090]  __x64_sys_futex+0x34f/0x4d0
[  312.802181][T10090]  ? __x64_sys_openat+0x12d/0x210
[  312.802203][T10090]  ? __pfx___x64_sys_futex+0x10/0x10
[  312.802222][T10090]  ? xfd_validate_state+0x129/0x190
[  312.802251][T10090]  do_syscall_64+0xc9/0xf80
[  312.802270][T10090]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.802285][T10090] RIP: 0033:0x7f40cc39aeb9
[  312.802298][T10090] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  312.802312][T10090] RSP: 002b:00007f40cd2510e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  312.802333][T10090] RAX: ffffffffffffffda RBX: 00007f40cc615fa8 RCX: 00007f40cc39aeb9
[  312.802343][T10090] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f40cc615fac
[  312.802352][T10090] RBP: 00007f40cc615fa0 R08: 0000000000000000 R09: 0000000000000000
[  312.802361][T10090] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000
[  312.802370][T10090] R13: 00007f40cc616038 R14: 00007ffc4a4100f0 R15: 00007ffc4a4101d8
[  312.802390][T10090]  </TASK>
[  313.405991][T10098] ubi0: attaching mtd1
[  313.434745][T10098] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[  314.462697][T10121] netlink: 'syz.3.905': attribute type 5 has an invalid length.
[  314.605544][T10121] netlink: 'syz.3.905': attribute type 1 has an invalid length.
[  315.535476][T10161] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  315.801663][T10161] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  315.965414][T10161] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  316.076660][T10161] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  316.216184][T10163] hub 1-0:1.0: USB hub found
[  316.309871][T10163] hub 1-0:1.0: 1 port detected
[  316.335295][T10172] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  316.474328][T10172] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  316.551363][T10172] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  316.624031][T10172] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  316.813751][T10181] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  316.912990][T10181] EXT4-fs error (device sda1): htree_dirblock_to_tree:1051: inode #268: comm dhcpcd-run-hook: Directory block failed checksum
[  316.983596][T10181] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #268: comm dhcpcd-run-hook: No space for directory leaf checksum. Please run e2fsck -D.
[  317.102753][T10181] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #268: comm dhcpcd-run-hook: checksumming directory block 0
[  320.008352][T10233] FAULT_INJECTION: forcing a failure.
[  320.008352][T10233] name failslab, interval 1, probability 0, space 0, times 0
[  320.091057][T10233] CPU: 0 UID: 0 PID: 10233 Comm: syz.3.926 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  320.091084][T10233] Tainted: [L]=SOFTLOCKUP
[  320.091089][T10233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  320.091098][T10233] Call Trace:
[  320.091103][T10233]  <TASK>
[  320.091110][T10233]  dump_stack_lvl+0x100/0x190
[  320.091135][T10233]  should_fail_ex.cold+0x5/0xa
[  320.091160][T10233]  should_failslab+0xc2/0x120
[  320.091182][T10233]  __kmalloc_node_track_caller_noprof+0xf9/0x9d0
[  320.091204][T10233]  ? vidtv_psi_desc_clone+0x3aa/0x5d0
[  320.091221][T10233]  ? kmemdup_noprof+0x29/0x60
[  320.091239][T10233]  kmemdup_noprof+0x29/0x60
[  320.091257][T10233]  vidtv_psi_desc_clone+0x3aa/0x5d0
[  320.091274][T10233]  vidtv_channel_si_init+0x12ef/0x18d0
[  320.091299][T10233]  vidtv_mux_init+0x526/0xbf0
[  320.091319][T10233]  vidtv_start_feed+0x33e/0x4c0
[  320.091341][T10233]  ? __pfx_vidtv_start_feed+0x10/0x10
[  320.091361][T10233]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  320.091384][T10233]  ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10
[  320.091409][T10233]  ? mark_held_locks+0x40/0x70
[  320.091431][T10233]  ? __pfx_vidtv_start_feed+0x10/0x10
[  320.091452][T10233]  dmx_ts_feed_start_filtering+0xf6/0x220
[  320.091479][T10233]  dvb_dmxdev_start_feed+0x273/0x3f0
[  320.091501][T10233]  dvb_dmxdev_filter_start+0x1b6/0xdd0
[  320.091524][T10233]  ? dvb_dmxdev_add_pid+0x2a1/0x380
[  320.091546][T10233]  dvb_demux_do_ioctl+0xe64/0x1200
[  320.091573][T10233]  dvb_usercopy+0x167/0x340
[  320.091591][T10233]  ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[  320.091614][T10233]  ? __pfx_dvb_usercopy+0x10/0x10
[  320.091640][T10233]  ? __fget_files+0x21f/0x3d0
[  320.091660][T10233]  dvb_demux_ioctl+0x29/0x40
[  320.091678][T10233]  ? __pfx_dvb_demux_ioctl+0x10/0x10
[  320.091697][T10233]  __x64_sys_ioctl+0x18e/0x210
[  320.091722][T10233]  do_syscall_64+0xc9/0xf80
[  320.091742][T10233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.091757][T10233] RIP: 0033:0x7f40cc39aeb9
[  320.091771][T10233] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  320.091794][T10233] RSP: 002b:00007f40cd230028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  320.091809][T10233] RAX: ffffffffffffffda RBX: 00007f40cc616090 RCX: 00007f40cc39aeb9
[  320.091820][T10233] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003
[  320.091829][T10233] RBP: 00007f40cc408c1f R08: 0000000000000000 R09: 0000000000000000
[  320.091839][T10233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  320.091847][T10233] R13: 00007f40cc616128 R14: 00007f40cc616090 R15: 00007ffc4a4101d8
[  320.091868][T10233]  </TASK>
[  321.251145][   T52] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  321.258607][   T52] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  321.806127][T10255] netlink: 12 bytes leftover after parsing attributes in process `syz.2.931'.
[  321.986869][T10255] nbd: must specify a size in bytes for the device
[  322.248360][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  322.264504][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  322.937562][T10279] netlink: 28 bytes leftover after parsing attributes in process `syz.2.936'.
[  323.087782][T10281] netlink: 346 bytes leftover after parsing attributes in process `syz.2.936'.
[  323.587826][ T5828] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  323.596704][ T5828] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  324.202801][T10296] netlink: 8 bytes leftover after parsing attributes in process `syz.3.940'.
[  324.612033][T10301] futex_wake_op: syz.1.942 tries to shift op by -2048; fix this program
[  324.670214][T10301] futex_wake_op: syz.1.942 tries to shift op by -2048; fix this program
[  325.472124][ T5828] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  325.480678][ T5828] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  326.797314][T10348] netlink: 20 bytes leftover after parsing attributes in process `syz.0.953'.
[  328.448101][T10391] netlink: 28 bytes leftover after parsing attributes in process `syz.0.961'.
[  328.462649][ T5828] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  328.470159][ T5828] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  328.538414][T10391] bridge_slave_1: left allmulticast mode
[  328.583719][T10391] bridge_slave_1: left promiscuous mode
[  328.619361][T10391] bridge0: port 2(bridge_slave_1) entered disabled state
[  328.652935][T10391] bridge_slave_0: left allmulticast mode
[  328.701359][T10391] bridge_slave_0: left promiscuous mode
[  328.736565][T10391] bridge0: port 1(bridge_slave_0) entered disabled state
[  328.936546][T10398] binder: 10397:10398 ioctl 4018620d ffffffffffffffff returned -22
[  332.311646][T10482] snd_virmidi snd_virmidi.0: control 61678:131081:3:y�:1 is already present
[  332.334662][T10478] binder: 10476:10478 ioctl 4018620d ffffffffffffffff returned -22
[  332.660540][T10489] netlink: 350 bytes leftover after parsing attributes in process `syz.2.986'.
[  332.751838][T10474] bridge0: port 4(team0) entered blocking state
[  332.864466][T10474] bridge0: port 4(team0) entered disabled state
[  332.951977][T10474] team0: entered allmulticast mode
[  333.025933][T10474] team_slave_0: entered allmulticast mode
[  333.120414][T10474] team_slave_1: entered allmulticast mode
[  333.208681][T10474] team0: entered promiscuous mode
[  333.262638][T10474] team_slave_0: entered promiscuous mode
[  333.317095][T10474] team_slave_1: entered promiscuous mode
[  333.382159][T10474] bridge0: port 4(team0) entered blocking state
[  333.388512][T10474] bridge0: port 4(team0) entered forwarding state
[  334.942088][T10519] netlink: 8 bytes leftover after parsing attributes in process `syz.3.992'.
[  335.373810][T10514] hub 1-0:1.0: USB hub found
[  335.457459][T10514] hub 1-0:1.0: 1 port detected
[  335.637013][T10536] nvme_fcloop: unknown parameter or missing value '7'
[  336.131217][T10552] usbcore.quirks: string doesn't fit in 127 chars.
[  336.364776][T10562] binder: 10561:10562 ioctl 4018620d ffffffffffffffff returned -22
[  336.429611][T10564] queue_state_write: operation too long
[  336.504960][T10564] queue_state_write: use 'run', 'start' or 'kick'
[  337.096572][T10582] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input18
[  337.635113][T10590] FAULT_INJECTION: forcing a failure.
[  337.635113][T10590] name failslab, interval 1, probability 0, space 0, times 0
[  337.718117][T10590] CPU: 0 UID: 0 PID: 10590 Comm: syz.2.1009 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  337.718143][T10590] Tainted: [L]=SOFTLOCKUP
[  337.718148][T10590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  337.718158][T10590] Call Trace:
[  337.718163][T10590]  <TASK>
[  337.718168][T10590]  dump_stack_lvl+0x100/0x190
[  337.718191][T10590]  should_fail_ex.cold+0x5/0xa
[  337.718216][T10590]  should_failslab+0xc2/0x120
[  337.718237][T10590]  ? tomoyo_realpath_from_path+0xb6/0x690
[  337.718253][T10590]  __kmalloc_noprof+0xf6/0x9c0
[  337.718273][T10590]  ? tomoyo_realpath_from_path+0xb6/0x690
[  337.718287][T10590]  tomoyo_realpath_from_path+0xb6/0x690
[  337.718307][T10590]  tomoyo_path_number_perm+0x23c/0x580
[  337.718328][T10590]  ? tomoyo_path_number_perm+0x22e/0x580
[  337.718350][T10590]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  337.718390][T10590]  ? find_held_lock+0x2b/0x80
[  337.718404][T10590]  ? hook_file_ioctl_common+0x146/0x410
[  337.718426][T10590]  ? __fget_files+0x215/0x3d0
[  337.718446][T10590]  ? __fget_files+0x21f/0x3d0
[  337.718465][T10590]  security_file_ioctl+0xd3/0x230
[  337.718487][T10590]  __x64_sys_ioctl+0xb7/0x210
[  337.718512][T10590]  do_syscall_64+0xc9/0xf80
[  337.718532][T10590]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.718553][T10590] RIP: 0033:0x7f7872f9aeb9
[  337.718565][T10590] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  337.718580][T10590] RSP: 002b:00007f7873ead028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  337.718595][T10590] RAX: ffffffffffffffda RBX: 00007f7873215fa0 RCX: 00007f7872f9aeb9
[  337.718605][T10590] RDX: 0000000000000004 RSI: 00000000c0383e04 RDI: 0000000000000003
[  337.718613][T10590] RBP: 00007f7873ead090 R08: 0000000000000000 R09: 0000000000000000
[  337.718622][T10590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  337.718630][T10590] R13: 00007f7873216038 R14: 00007f7873215fa0 R15: 00007ffdd33be928
[  337.718649][T10590]  </TASK>
[  337.718656][T10590] ERROR: Out of memory at tomoyo_realpath_from_path.
[  338.250974][T10601] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  338.300491][T10601] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  338.389971][T10597] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78c02
[  338.489597][T10597] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  338.554797][T10597] page_type: f2(table)
[  338.579180][T10597] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  338.691111][T10597] raw: 0000000000000000 ffff88807d7ff0c0 00000001f2000000 0000000000000000
[  338.829632][T10597] page dumped because: unmovable page
[  338.989066][T10597] page_owner tracks the page as allocated
[  339.000163][T10609] random: crng reseeded on system resumption
[  339.080276][T10597] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), pid 5812, tgid 5812 (syz-executor), ts 78244104293, free_ts 78242598413
[  339.189553][T10597]  post_alloc_hook+0x1e1/0x250
[  339.223873][T10597]  get_page_from_freelist+0xe3d/0x2e10
[  339.287071][T10597]  __alloc_frozen_pages_noprof+0x26c/0x2410
[  339.343404][T10597]  alloc_pages_mpol+0x1fb/0x550
[  339.376337][T10622] batman_adv: Routing algorithm '7' is not supported
[  339.383267][T10597]  alloc_pages_noprof+0x131/0x390
[  339.408707][T10597]  pte_alloc_one+0x1e/0x3e0
[  339.442486][T10597]  __pte_alloc+0x6d/0x3f0
[  339.466424][T10597]  move_page_tables+0x24eb/0x43e0
[  339.486556][T10597]  relocate_vma_down+0x289/0x4d0
[  339.508726][T10597]  setup_arg_pages+0x536/0xb60
[  339.538557][T10597]  load_elf_binary+0xb75/0x5110
[  339.568863][T10597]  bprm_execve+0x8fb/0x1620
[  339.589014][T10597]  do_execveat_common.isra.0+0x4dc/0x5b0
[  339.613588][T10597]  __x64_sys_execve+0x8e/0xb0
[  339.636013][T10597]  do_syscall_64+0xc9/0xf80
[  339.656118][T10597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.688543][T10597] page last free pid 5812 tgid 5812 stack trace:
[  339.715040][T10597]  __free_frozen_pages+0x822/0x1130
[  339.727497][T10597]  tlb_finish_mmu+0x27d/0x810
[  339.738860][T10597]  exit_mmap+0x3c5/0xae0
[  339.747602][T10597]  __mmput+0x12a/0x410
[  339.756055][T10597]  mmput+0x67/0x80
[  339.767302][T10597]  begin_new_exec+0x10f0/0x3840
[  339.777748][T10597]  load_elf_binary+0x8f7/0x5110
[  339.788236][T10597]  bprm_execve+0x8fb/0x1620
[  339.797239][T10597]  do_execveat_common.isra.0+0x4dc/0x5b0
[  339.809493][T10597]  __x64_sys_execve+0x8e/0xb0
[  339.819702][T10597]  do_syscall_64+0xc9/0xf80
[  339.824209][T10597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.021629][T10628] FAULT_INJECTION: forcing a failure.
[  340.021629][T10628] name failslab, interval 1, probability 0, space 0, times 0
[  340.112098][T10628] CPU: 0 UID: 0 PID: 10628 Comm: syz.3.1019 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  340.112124][T10628] Tainted: [L]=SOFTLOCKUP
[  340.112130][T10628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  340.112139][T10628] Call Trace:
[  340.112144][T10628]  <TASK>
[  340.112150][T10628]  dump_stack_lvl+0x100/0x190
[  340.112173][T10628]  should_fail_ex.cold+0x5/0xa
[  340.112199][T10628]  should_failslab+0xc2/0x120
[  340.112220][T10628]  kmem_cache_alloc_node_noprof+0x8c/0x880
[  340.112242][T10628]  ? __alloc_skb+0x156/0x410
[  340.112265][T10628]  ? __alloc_skb+0x156/0x410
[  340.112283][T10628]  __alloc_skb+0x156/0x410
[  340.112306][T10628]  ? __alloc_skb+0x35d/0x410
[  340.112326][T10628]  ? __pfx___alloc_skb+0x10/0x10
[  340.112345][T10628]  ? rcu_is_watching+0x12/0xc0
[  340.112361][T10628]  ? alloc_loc_track+0x70/0xb0
[  340.112380][T10628]  ? kmem_cache_alloc_noprof+0x2ff/0x780
[  340.112400][T10628]  ? audit_log_start+0x29d/0x930
[  340.112420][T10628]  ? lockdep_init_map_type+0x5c/0x250
[  340.112444][T10628]  audit_log_start+0x350/0x930
[  340.112467][T10628]  ? __pfx_audit_log_start+0x10/0x10
[  340.112497][T10628]  integrity_audit_message+0x10c/0x4f0
[  340.112514][T10628]  ? take_dentry_name_snapshot+0x30b/0x7c0
[  340.112536][T10628]  ? __pfx_integrity_audit_message+0x10/0x10
[  340.112554][T10628]  ? take_dentry_name_snapshot+0x310/0x7c0
[  340.112578][T10628]  integrity_audit_msg+0x41/0x60
[  340.112596][T10628]  ima_collect_measurement+0x72a/0xa40
[  340.112616][T10628]  ? do_filp_open+0x1f7/0x420
[  340.112638][T10628]  ? __pfx_ima_collect_measurement+0x10/0x10
[  340.112658][T10628]  ? lock_acquire+0x17c/0x330
[  340.112686][T10628]  ? process_measurement+0x5cd/0x2400
[  340.112704][T10628]  ? is_bad_inode+0xd/0x40
[  340.112717][T10628]  ? xattr_resolve_name+0x27d/0x3f0
[  340.112736][T10628]  ? vfs_getxattr_alloc+0xec/0x350
[  340.112756][T10628]  ? ima_get_hash_algo+0x22d/0x400
[  340.112772][T10628]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  340.112793][T10628]  ? process_measurement+0xe24/0x2400
[  340.112809][T10628]  process_measurement+0xe24/0x2400
[  340.112831][T10628]  ? path_openat+0x21dc/0x3120
[  340.112848][T10628]  ? __pfx_process_measurement+0x10/0x10
[  340.112866][T10628]  ? __lock_acquire+0x4a5/0x2630
[  340.112909][T10628]  ? __configfs_open_file+0x6ca/0x9c0
[  340.112931][T10628]  ? inode_to_bdi+0x9e/0x160
[  340.112954][T10628]  ima_file_check+0xca/0x110
[  340.112972][T10628]  ? __pfx_ima_file_check+0x10/0x10
[  340.112996][T10628]  security_file_post_open+0xc4/0x210
[  340.113019][T10628]  path_openat+0x1564/0x3120
[  340.113043][T10628]  ? __pfx_path_openat+0x10/0x10
[  340.113067][T10628]  do_filp_open+0x1f7/0x420
[  340.113086][T10628]  ? __pfx_do_filp_open+0x10/0x10
[  340.113117][T10628]  ? _raw_spin_unlock+0x28/0x50
[  340.113138][T10628]  ? alloc_fd+0x476/0x790
[  340.113170][T10628]  do_sys_openat2+0x12e/0x220
[  340.113193][T10628]  ? __pfx_do_sys_openat2+0x10/0x10
[  340.113216][T10628]  ? __fget_files+0x21f/0x3d0
[  340.113236][T10628]  __x64_sys_openat+0x12d/0x210
[  340.113258][T10628]  ? __pfx___x64_sys_openat+0x10/0x10
[  340.113280][T10628]  ? xfd_validate_state+0x129/0x190
[  340.113329][T10628]  do_syscall_64+0xc9/0xf80
[  340.113349][T10628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.113365][T10628] RIP: 0033:0x7f40cc39aeb9
[  340.113379][T10628] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  340.113393][T10628] RSP: 002b:00007f40cd251028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  340.113409][T10628] RAX: ffffffffffffffda RBX: 00007f40cc615fa0 RCX: 00007f40cc39aeb9
[  340.113419][T10628] RDX: 0000000000040240 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  340.113429][T10628] RBP: 00007f40cc408c1f R08: 0000000000000000 R09: 0000000000000000
[  340.113438][T10628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  340.113446][T10628] R13: 00007f40cc616038 R14: 00007f40cc615fa0 R15: 00007ffc4a4101d8
[  340.113467][T10628]  </TASK>
[  340.504611][T10628] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[  340.512325][T10628] audit: out of memory in audit_log_start
[  340.710958][T10637] Invalid ELF header magic: != ELF
[  340.850426][T10640] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1023'.
[  341.728825][T10656] nbd: illegal input index 37139
[  341.868839][   T30] audit: type=1804 audit(1770364741.397:14): pid=10658 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1022" name="/newroot/236/file0" dev="tmpfs" ino=1263 res=1 errno=0
[  341.964236][   T30] audit: type=1804 audit(1770364741.437:15): pid=10659 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1022" name="/newroot/236/file0" dev="tmpfs" ino=1263 res=1 errno=0
[  342.509100][T10676] binder: 10674:10676 ioctl 4018620d ffffffffffffffff returned -22
[  343.458464][T10701] misc userio: No port type given on /dev/userio
[  343.484466][T10696] FAULT_INJECTION: forcing a failure.
[  343.484466][T10696] name fail_futex, interval 1, probability 0, space 0, times 0
[  343.549769][T10696] CPU: 0 UID: 0 PID: 10696 Comm: syz.0.1037 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  343.549794][T10696] Tainted: [L]=SOFTLOCKUP
[  343.549800][T10696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  343.549810][T10696] Call Trace:
[  343.549815][T10696]  <TASK>
[  343.549820][T10696]  dump_stack_lvl+0x100/0x190
[  343.549843][T10696]  should_fail_ex.cold+0x5/0xa
[  343.549868][T10696]  get_futex_key+0x1d2/0x1620
[  343.549890][T10696]  ? __pfx_get_futex_key+0x10/0x10
[  343.549911][T10696]  ? kfree+0x1c7/0x690
[  343.549925][T10696]  ? loop_control_ioctl+0xae/0x620
[  343.549939][T10696]  ? __x64_sys_ioctl+0x18e/0x210
[  343.549960][T10696]  ? do_syscall_64+0xc9/0xf80
[  343.549977][T10696]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.549996][T10696]  futex_wait_setup+0x81/0x500
[  343.550023][T10696]  __futex_wait+0x19f/0x300
[  343.550039][T10696]  ? __pfx___futex_wait+0x10/0x10
[  343.550056][T10696]  ? __pfx_futex_wake_mark+0x10/0x10
[  343.550082][T10696]  ? futex_hash+0x2c5/0x380
[  343.550106][T10696]  futex_wait+0xed/0x380
[  343.550120][T10696]  ? __pfx_futex_wait+0x10/0x10
[  343.550144][T10696]  do_futex+0x1ef/0x350
[  343.550164][T10696]  ? __pfx_do_futex+0x10/0x10
[  343.550185][T10696]  ? find_held_lock+0x2b/0x80
[  343.550202][T10696]  __x64_sys_futex+0x34f/0x4d0
[  343.550223][T10696]  ? __pfx_loop_control_ioctl+0x10/0x10
[  343.550237][T10696]  ? __pfx___x64_sys_futex+0x10/0x10
[  343.550259][T10696]  ? fput+0x79/0x100
[  343.550281][T10696]  do_syscall_64+0xc9/0xf80
[  343.550300][T10696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.550315][T10696] RIP: 0033:0x7fab3619aeb9
[  343.550328][T10696] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  343.550342][T10696] RSP: 002b:00007fab370f00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  343.550356][T10696] RAX: ffffffffffffffda RBX: 00007fab36415fa8 RCX: 00007fab3619aeb9
[  343.550366][T10696] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fab36415fa8
[  343.550375][T10696] RBP: 00007fab36415fa0 R08: 0000000000000000 R09: 0000000000000000
[  343.550383][T10696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  343.550391][T10696] R13: 00007fab36416038 R14: 00007ffe62f992c0 R15: 00007ffe62f993a8
[  343.550411][T10696]  </TASK>
[  346.277352][T10747] Invalid ELF header magic: != ELF
[  346.553206][T10756] ucma_write: process 1021 (syz.3.1052) changed security contexts after opening file descriptor, this is not allowed.
[  346.988235][T10764] futex_wake_op: syz.3.1053 tries to shift op by -2048; fix this program
[  347.088420][T10764] futex_wake_op: syz.3.1053 tries to shift op by -2048; fix this program
[  348.377841][T10783] zswap: compressor  not available
[  353.498837][T10881] can: request_module (can-proto-5) failed.
[  355.844935][T10939] netlink: 'syz.1.1098': attribute type 1 has an invalid length.
[  357.327578][ T7314] [drm:drm_crtc_add_crc_entry] *ERROR* Overflow of CRC buffer, userspace reads too slow.
[  357.856812][T10973] random: crng reseeded on system resumption
[  359.616140][T11004] Kernel: The 'panic_print' parameter is now deprecated. Please use 'panic_sys_info' and 'panic_console_replay' instead.
[  360.718827][T11043] futex_wake_op: syz.1.1121 tries to shift op by -2048; fix this program
[  360.870189][T11043] futex_wake_op: syz.1.1121 tries to shift op by -2048; fix this program
[  361.956646][    C0] vcan0: j1939_tp_rxtimer: 0xffff888028c9ac00: rx timeout, send abort
[  361.966181][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888028c9ac00: 0x0ffff: (3) A timeout occurred and this is the connection abort to close the session.
[  363.045772][T11071] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  363.544202][T11081] binder: BINDER_SET_CONTEXT_MGR already set
[  363.584195][T11081] binder: 11077:11081 ioctl 4018620d 9 returned -16
[  363.659340][T11086] FAULT_INJECTION: forcing a failure.
[  363.659340][T11086] name failslab, interval 1, probability 0, space 0, times 0
[  363.794768][T11086] CPU: 0 UID: 0 PID: 11086 Comm: syz.2.1132 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  363.794794][T11086] Tainted: [L]=SOFTLOCKUP
[  363.794799][T11086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  363.794851][T11086] Call Trace:
[  363.794856][T11086]  <TASK>
[  363.794862][T11086]  dump_stack_lvl+0x100/0x190
[  363.794885][T11086]  should_fail_ex.cold+0x5/0xa
[  363.794911][T11086]  should_failslab+0xc2/0x120
[  363.794932][T11086]  kmem_cache_alloc_lru_noprof+0x8e/0x7d0
[  363.794952][T11086]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  363.794970][T11086]  ? sock_alloc_inode+0x25/0x1c0
[  363.794993][T11086]  ? __pfx_sock_alloc_inode+0x10/0x10
[  363.795007][T11086]  ? sock_alloc_inode+0x25/0x1c0
[  363.795021][T11086]  sock_alloc_inode+0x25/0x1c0
[  363.795035][T11086]  alloc_inode+0x68/0x250
[  363.795058][T11086]  sock_alloc+0x44/0x280
[  363.795070][T11086]  ? security_socket_create+0x7f/0x250
[  363.795090][T11086]  __sock_create+0xc2/0x860
[  363.795110][T11086]  smc_create_clcsk+0x37/0xd0
[  363.795126][T11086]  ? __pfx_smc_inet_init_sock+0x10/0x10
[  363.795149][T11086]  inet_create+0x94c/0x1060
[  363.795166][T11086]  ? inet_create+0x94/0x1060
[  363.795186][T11086]  __sock_create+0x339/0x860
[  363.795206][T11086]  __sys_socket+0x14d/0x260
[  363.795221][T11086]  ? fput+0x79/0x100
[  363.795240][T11086]  ? __pfx___sys_socket+0x10/0x10
[  363.795256][T11086]  ? xfd_validate_state+0x129/0x190
[  363.795283][T11086]  __x64_sys_socket+0x72/0xb0
[  363.795300][T11086]  ? lockdep_hardirqs_on+0x78/0x100
[  363.795316][T11086]  do_syscall_64+0xc9/0xf80
[  363.795335][T11086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.795350][T11086] RIP: 0033:0x7f7872f9aeb9
[  363.795363][T11086] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  363.795377][T11086] RSP: 002b:00007f7873ead028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  363.795392][T11086] RAX: ffffffffffffffda RBX: 00007f7873215fa0 RCX: 00007f7872f9aeb9
[  363.795402][T11086] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002
[  363.795410][T11086] RBP: 00007f7873008c1f R08: 0000000000000000 R09: 0000000000000000
[  363.795419][T11086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  363.795427][T11086] R13: 00007f7873216038 R14: 00007f7873215fa0 R15: 00007ffdd33be928
[  363.795446][T11086]  </TASK>
[  363.795466][T11086] socket: no more sockets
[  365.263394][T11109] ovs_: entered promiscuous mode
[  365.509250][T11120] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1141'.
[  365.538970][T11120] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1141'.
[  365.615874][T11123] netlink: 'syz.3.1141': attribute type 3 has an invalid length.
[  365.722071][T11123] netlink: 290 bytes leftover after parsing attributes in process `syz.3.1141'.
[  366.248887][T11138] vhci_hcd vhci_hcd.2: invalid port number 16
[  366.368651][T11138] vhci_hcd vhci_hcd.2: invalid port number 16
[  366.950441][T11169] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  367.310563][T11182] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1148'.
[  367.968486][T11193] FAULT_INJECTION: forcing a failure.
[  367.968486][T11193] name failslab, interval 1, probability 0, space 0, times 0
[  367.981353][T11193] CPU: 0 UID: 0 PID: 11193 Comm: syz.0.1151 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  367.981378][T11193] Tainted: [L]=SOFTLOCKUP
[  367.981384][T11193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  367.981393][T11193] Call Trace:
[  367.981399][T11193]  <TASK>
[  367.981404][T11193]  dump_stack_lvl+0x100/0x190
[  367.981427][T11193]  should_fail_ex.cold+0x5/0xa
[  367.981453][T11193]  should_failslab+0xc2/0x120
[  367.981473][T11193]  __kmalloc_cache_noprof+0x80/0x810
[  367.981489][T11193]  ? net_generic+0xea/0x2a0
[  367.981509][T11193]  ? tipc_service_create+0xb1/0x340
[  367.981533][T11193]  ? tipc_service_create+0xb1/0x340
[  367.981553][T11193]  tipc_service_create+0xb1/0x340
[  367.981573][T11193]  ? tipc_service_find+0x161/0x1c0
[  367.981593][T11193]  tipc_nametbl_subscribe+0x892/0xa80
[  367.981620][T11193]  ? __pfx_tipc_nametbl_subscribe+0x10/0x10
[  367.981644][T11193]  ? lockdep_init_map_type+0x5c/0x250
[  367.981667][T11193]  tipc_sub_subscribe+0x4ba/0x730
[  367.981688][T11193]  tipc_conn_rcv_sub+0x21e/0x3d0
[  367.981707][T11193]  tipc_topsrv_kern_subscr+0x20b/0x3c0
[  367.981726][T11193]  ? __pfx_tipc_topsrv_kern_subscr+0x10/0x10
[  367.981746][T11193]  ? net_generic+0xea/0x2a0
[  367.981768][T11193]  tipc_group_create+0x4ab/0x660
[  367.981789][T11193]  tipc_setsockopt+0x611/0xe30
[  367.981812][T11193]  ? __pfx_tipc_setsockopt+0x10/0x10
[  367.981841][T11193]  ? __pfx_tipc_setsockopt+0x10/0x10
[  367.981864][T11193]  do_sock_setsockopt+0xf3/0x1d0
[  367.981882][T11193]  __sys_setsockopt+0x119/0x190
[  367.981906][T11193]  __x64_sys_setsockopt+0xbd/0x160
[  367.981926][T11193]  ? do_syscall_64+0x94/0xf80
[  367.981943][T11193]  ? lockdep_hardirqs_on+0x78/0x100
[  367.981960][T11193]  do_syscall_64+0xc9/0xf80
[  367.981978][T11193]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.981994][T11193] RIP: 0033:0x7fab3619aeb9
[  367.982007][T11193] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  367.982021][T11193] RSP: 002b:00007fab370f0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  367.982036][T11193] RAX: ffffffffffffffda RBX: 00007fab36415fa0 RCX: 00007fab3619aeb9
[  367.982046][T11193] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000003
[  367.982055][T11193] RBP: 00007fab36208c1f R08: 0000000000000014 R09: 0000000000000000
[  367.982064][T11193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  367.982073][T11193] R13: 00007fab36416038 R14: 00007fab36415fa0 R15: 00007ffe62f993a8
[  367.982092][T11193]  </TASK>
[  367.982108][T11193] tipc: Service creation failed, no memory
[  368.236214][T11193] tipc: Failed to subscribe for {923732384,0,4294967295}
[  369.875895][T11241] binder: 11240:11241 ioctl 4018620d ffffffffffffffff returned -22
[  370.214570][T11252] NFSD: Failed to start, no listeners configured.
[  371.151853][   T30] audit: type=1800 audit(1770383114.684:16): pid=11274 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1168" name="features" dev="configfs" ino=41316 res=0 errno=0
[  371.385288][T11279] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  372.179381][T11308] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  374.137122][ T5828] Bluetooth: hci0: unexpected subevent 0x01 length: 127 > 18
[  374.145257][ T5828] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  375.750931][T11365] FAULT_INJECTION: forcing a failure.
[  375.750931][T11365] name failslab, interval 1, probability 0, space 0, times 0
[  375.794177][T11365] CPU: 0 UID: 0 PID: 11365 Comm: syz.1.1190 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  375.794204][T11365] Tainted: [L]=SOFTLOCKUP
[  375.794209][T11365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  375.794218][T11365] Call Trace:
[  375.794222][T11365]  <TASK>
[  375.794228][T11365]  dump_stack_lvl+0x100/0x190
[  375.794251][T11365]  should_fail_ex.cold+0x5/0xa
[  375.794276][T11365]  should_failslab+0xc2/0x120
[  375.794297][T11365]  ? __register_sysctl_table+0xac/0x1650
[  375.794320][T11365]  __kmalloc_noprof+0xf6/0x9c0
[  375.794334][T11365]  ? __pfx_vsnprintf+0x10/0x10
[  375.794355][T11365]  ? __register_sysctl_table+0xac/0x1650
[  375.794377][T11365]  __register_sysctl_table+0xac/0x1650
[  375.794400][T11365]  ? is_module_address+0x5f/0xf0
[  375.794428][T11365]  ? __pfx___register_sysctl_table+0x10/0x10
[  375.794450][T11365]  ? is_module_address+0x69/0xf0
[  375.794470][T11365]  ? register_net_sysctl_sz+0x222/0x430
[  375.794497][T11365]  __devinet_sysctl_register+0x1b9/0x360
[  375.794516][T11365]  ? __pfx___devinet_sysctl_register+0x10/0x10
[  375.794535][T11365]  ? __asan_memcpy+0x3c/0x60
[  375.794552][T11365]  devinet_init_net+0x334/0x8d0
[  375.794569][T11365]  ? __pfx_devinet_init_net+0x10/0x10
[  375.794583][T11365]  ops_init+0x1e2/0x5f0
[  375.794608][T11365]  setup_net+0x118/0x3a0
[  375.794621][T11365]  ? __pfx_setup_net+0x10/0x10
[  375.794633][T11365]  ? lockdep_init_map_type+0x5c/0x250
[  375.794654][T11365]  ? mutex_init_lockep+0x110/0x150
[  375.794677][T11365]  copy_net_ns+0x46f/0x7c0
[  375.794694][T11365]  create_new_namespaces+0x3ea/0xab0
[  375.794722][T11365]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  375.794741][T11365]  ksys_unshare+0x455/0xab0
[  375.794764][T11365]  ? __pfx_ksys_unshare+0x10/0x10
[  375.794784][T11365]  ? xfd_validate_state+0x129/0x190
[  375.794813][T11365]  __x64_sys_unshare+0x31/0x40
[  375.794834][T11365]  do_syscall_64+0xc9/0xf80
[  375.794853][T11365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.794868][T11365] RIP: 0033:0x7f41c199aeb9
[  375.794881][T11365] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  375.794894][T11365] RSP: 002b:00007f41c28ce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  375.794909][T11365] RAX: ffffffffffffffda RBX: 00007f41c1c15fa0 RCX: 00007f41c199aeb9
[  375.794919][T11365] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  375.794927][T11365] RBP: 00007f41c1a08c1f R08: 0000000000000000 R09: 0000000000000000
[  375.794936][T11365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  375.794944][T11365] R13: 00007f41c1c16038 R14: 00007f41c1c15fa0 R15: 00007fff15de6958
[  375.794964][T11365]  </TASK>
[  377.047171][T11385] FAULT_INJECTION: forcing a failure.
[  377.047171][T11385] name failslab, interval 1, probability 0, space 0, times 0
[  377.114859][T11385] CPU: 0 UID: 0 PID: 11385 Comm: syz.1.1194 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  377.114886][T11385] Tainted: [L]=SOFTLOCKUP
[  377.114891][T11385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  377.114901][T11385] Call Trace:
[  377.114906][T11385]  <TASK>
[  377.114912][T11385]  dump_stack_lvl+0x100/0x190
[  377.114934][T11385]  should_fail_ex.cold+0x5/0xa
[  377.114960][T11385]  should_failslab+0xc2/0x120
[  377.114981][T11385]  kmem_cache_alloc_noprof+0x83/0x780
[  377.115000][T11385]  ? d_instantiate+0x90/0xb0
[  377.115020][T11385]  ? alloc_empty_file+0x55/0x1c0
[  377.115044][T11385]  ? alloc_empty_file+0x55/0x1c0
[  377.115064][T11385]  alloc_empty_file+0x55/0x1c0
[  377.115085][T11385]  alloc_file_pseudo+0x13a/0x230
[  377.115107][T11385]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  377.115138][T11385]  __shmem_file_setup+0x1a3/0x330
[  377.115155][T11385]  shmem_zero_setup+0x93/0x1b0
[  377.115176][T11385]  __mmap_region+0x2101/0x2820
[  377.115195][T11385]  ? set_next_entity+0x11a/0x9b0
[  377.115217][T11385]  ? __pfx___mmap_region+0x10/0x10
[  377.115247][T11385]  ? finish_task_switch.isra.0+0x1ff/0xb70
[  377.115263][T11385]  ? finish_task_switch.isra.0+0x1ff/0xb70
[  377.115289][T11385]  ? __schedule+0xff6/0x5e10
[  377.115328][T11385]  ? mm_get_unmapped_area_vmflags+0xd7/0x130
[  377.115351][T11385]  ? rcu_is_watching+0x12/0xc0
[  377.115370][T11385]  mmap_region+0x180/0x3e0
[  377.115392][T11385]  do_mmap+0xc63/0x12f0
[  377.115417][T11385]  ? __pfx_do_mmap+0x10/0x10
[  377.115438][T11385]  ? __pfx_down_write_killable+0x10/0x10
[  377.115461][T11385]  vm_mmap_pgoff+0x29e/0x470
[  377.115486][T11385]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  377.115511][T11385]  ? __x64_sys_futex+0x34f/0x4d0
[  377.115531][T11385]  ? __x64_sys_futex+0x358/0x4d0
[  377.115553][T11385]  ksys_mmap_pgoff+0x7d/0x5b0
[  377.115585][T11385]  __x64_sys_mmap+0x125/0x190
[  377.115603][T11385]  do_syscall_64+0xc9/0xf80
[  377.115622][T11385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.115637][T11385] RIP: 0033:0x7f41c199aeb9
[  377.115650][T11385] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  377.115664][T11385] RSP: 002b:00007f41c28ce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  377.115679][T11385] RAX: ffffffffffffffda RBX: 00007f41c1c15fa0 RCX: 00007f41c199aeb9
[  377.115689][T11385] RDX: 00000000000000df RSI: 00000000000000f4 RDI: 0000000000000000
[  377.115698][T11385] RBP: 00007f41c1a08c1f R08: 0000000000000006 R09: 0000000000008000
[  377.115707][T11385] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  377.115716][T11385] R13: 00007f41c1c16038 R14: 00007f41c1c15fa0 R15: 00007fff15de6958
[  377.115736][T11385]  </TASK>
[  377.733939][   T30] audit: type=1806 audit(1770383121.244:17): xattr="" res=-22
[  378.901191][T11406] alloc_netdev: Unable to allocate device with zero queues
[  379.326574][T11417] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input20
[  379.927325][T11427] netlink: 206 bytes leftover after parsing attributes in process `syz.1.1203'.
[  381.806524][T11435] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  382.079062][T11457] FAULT_INJECTION: forcing a failure.
[  382.079062][T11457] name failslab, interval 1, probability 0, space 0, times 0
[  382.148373][T11459] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1210'.
[  382.157774][T11457] CPU: 0 UID: 0 PID: 11457 Comm: syz.0.1208 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  382.157799][T11457] Tainted: [L]=SOFTLOCKUP
[  382.157804][T11457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  382.157813][T11457] Call Trace:
[  382.157818][T11457]  <TASK>
[  382.157824][T11457]  dump_stack_lvl+0x100/0x190
[  382.157847][T11457]  should_fail_ex.cold+0x5/0xa
[  382.157872][T11457]  should_failslab+0xc2/0x120
[  382.157893][T11457]  kmem_cache_alloc_noprof+0x83/0x780
[  382.157913][T11457]  ? __proc_create+0xc2/0x8c0
[  382.157935][T11457]  ? __proc_create+0x2cb/0x8c0
[  382.157960][T11457]  ? __proc_create+0x2cb/0x8c0
[  382.157980][T11457]  __proc_create+0x2cb/0x8c0
[  382.158003][T11457]  ? __pfx___proc_create+0x10/0x10
[  382.158032][T11457]  _proc_mkdir+0xb9/0x210
[  382.158046][T11457]  ? __pfx__proc_mkdir+0x10/0x10
[  382.158058][T11457]  ? proc_net_ns_init+0x42/0x420
[  382.158076][T11457]  ? __pfx_netfilter_net_init+0x10/0x10
[  382.158097][T11457]  netfilter_net_init+0x37b/0x4a0
[  382.158117][T11457]  ? sysctl_net_init+0x27/0x30
[  382.158138][T11457]  ops_init+0x1e2/0x5f0
[  382.158162][T11457]  setup_net+0x118/0x3a0
[  382.158176][T11457]  ? __pfx_setup_net+0x10/0x10
[  382.158189][T11457]  ? lockdep_init_map_type+0x5c/0x250
[  382.158222][T11457]  ? mutex_init_lockep+0x110/0x150
[  382.158248][T11457]  copy_net_ns+0x46f/0x7c0
[  382.158265][T11457]  create_new_namespaces+0x3ea/0xab0
[  382.158288][T11457]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  382.158306][T11457]  ksys_unshare+0x455/0xab0
[  382.158328][T11457]  ? __pfx_ksys_unshare+0x10/0x10
[  382.158348][T11457]  ? xfd_validate_state+0x129/0x190
[  382.158377][T11457]  __x64_sys_unshare+0x31/0x40
[  382.158396][T11457]  do_syscall_64+0xc9/0xf80
[  382.158416][T11457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.158431][T11457] RIP: 0033:0x7fab3619aeb9
[  382.158444][T11457] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  382.158459][T11457] RSP: 002b:00007fab370cf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  382.158473][T11457] RAX: ffffffffffffffda RBX: 00007fab36416090 RCX: 00007fab3619aeb9
[  382.158483][T11457] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  382.158492][T11457] RBP: 00007fab36208c1f R08: 0000000000000000 R09: 0000000000000000
[  382.158501][T11457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  382.158510][T11457] R13: 00007fab36416128 R14: 00007fab36416090 R15: 00007ffe62f993a8
[  382.158530][T11457]  </TASK>
[  382.158547][T11457] cannot create netfilter proc entry
[  382.437132][T11459] HfR: entered promiscuous mode
[  382.458186][T11459] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1210'.
[  382.513030][T11460] netlink: 'syz.2.1210': attribute type 1 has an invalid length.
[  382.532841][T11459] HfR: left promiscuous mode
[  382.540417][T11460] nbd: error processing sock list
[  382.557266][T11462] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input21
[  382.577012][T11406] netdevsim netdevsim100: probe with driver netdevsim failed with error -12
[  383.203398][T11481] random: crng reseeded on system resumption
[  383.308225][T11485] binder: 11484:11485 ioctl 4018620d ffffffffffffffff returned -22
[  383.699869][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  383.706625][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  384.976240][T11518] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1222'.
[  385.858326][ T5828] Bluetooth: hci0: hcon ffff888058b70000 sent 1 < count 256
[  385.869005][   T30] audit: type=1804 audit(1770383129.404:18): pid=11522 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1224" name="/newroot/300/file0" dev="tmpfs" ino=1597 res=1 errno=0
[  386.297712][T11540] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  386.956934][T11554] binder: 11553:11554 ioctl 4018620d ffffffffffffffff returned -22
[  387.299679][T11558] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22
[  391.030324][T11647] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1251'.
[  391.249339][T11647] team0: Port device team_slave_0 removed
[  392.527826][T11663] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1255'.
[  392.831869][T11678] vhci_hcd vhci_hcd.2: SetHubDepth req not supported for USB 2.0 roothub
[  393.072886][T11685] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1261'.
[  393.274795][T11689] FAULT_INJECTION: forcing a failure.
[  393.274795][T11689] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  393.327567][T11689] CPU: 0 UID: 0 PID: 11689 Comm: syz.1.1262 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  393.327592][T11689] Tainted: [L]=SOFTLOCKUP
[  393.327597][T11689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  393.327606][T11689] Call Trace:
[  393.327611][T11689]  <TASK>
[  393.327617][T11689]  dump_stack_lvl+0x100/0x190
[  393.327638][T11689]  should_fail_ex.cold+0x5/0xa
[  393.327663][T11689]  strncpy_from_user+0x3b/0x2d0
[  393.327686][T11689]  getname_flags.part.0+0x8f/0x540
[  393.327712][T11689]  getname_flags+0x93/0xf0
[  393.327727][T11689]  do_sys_openat2+0xc5/0x220
[  393.327751][T11689]  ? __pfx_do_sys_openat2+0x10/0x10
[  393.327772][T11689]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  393.327794][T11689]  ? __fget_files+0x21f/0x3d0
[  393.327813][T11689]  __x64_sys_openat+0x12d/0x210
[  393.327838][T11689]  ? __pfx___x64_sys_openat+0x10/0x10
[  393.327860][T11689]  ? ksys_write+0x1ac/0x250
[  393.327882][T11689]  do_syscall_64+0xc9/0xf80
[  393.327902][T11689]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  393.327917][T11689] RIP: 0033:0x7f41c199aeb9
[  393.327929][T11689] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  393.327943][T11689] RSP: 002b:00007f41c28ce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  393.327958][T11689] RAX: ffffffffffffffda RBX: 00007f41c1c15fa0 RCX: 00007f41c199aeb9
[  393.327967][T11689] RDX: 0000000000182b02 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  393.327976][T11689] RBP: 00007f41c28ce090 R08: 0000000000000000 R09: 0000000000000000
[  393.327985][T11689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  393.327993][T11689] R13: 00007f41c1c16038 R14: 00007f41c1c15fa0 R15: 00007fff15de6958
[  393.328011][T11689]  </TASK>
[  394.180151][T11705] Format for deleting device is "id" (uint).
[  396.378604][T11754] sysfs_service_op_show: Client not running :-5:
[  397.381244][T11776] NFSD: Failed to start, no listeners configured.
[  398.384189][T11797] vhci_hcd vhci_hcd.2: invalid port number 16
[  398.422498][T11797] vhci_hcd vhci_hcd.2: invalid port number 16
[  398.769659][T11806] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1292'.
[  399.677988][ T5828] Bluetooth: hci0: Malformed LE Event: 0x0b
[  400.479925][T11840] futex_wake_op: syz.1.1299 tries to shift op by -2048; fix this program
[  400.529603][T11840] futex_wake_op: syz.1.1299 tries to shift op by -2048; fix this program
[  400.575004][T11840] 0x000000000001-0x000000020000 : ""
[  400.619935][T11840] ftl_cs: FTL header corrupt!
[  404.880915][T11901] binder: 11900:11901 ioctl 4018620d ffffffffffffffff returned -22
[  405.048757][T11899] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input23
[  405.941661][T11857] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  406.200202][T11920] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(2583053210.994442331.2300720632), cmd(12)
[  406.259367][T11922] kAFS: Invalid Command on /proc/fs/afs/cells file
[  406.266997][T11921] blktrace: Concurrent blktraces are not allowed on nbd8
[  407.755581][T11946] binder: 11945:11946 ioctl 4018620d ffffffffffffffff returned -22
[  407.796346][T11944] random: crng reseeded on system resumption
[  409.932192][T11987] binder: 11986:11987 ioctl 4018620d ffffffffffffffff returned -22
[  409.957475][T11990] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  410.172526][T11991] futex_wake_op: syz.2.1335 tries to shift op by -2048; fix this program
[  410.270126][T11991] futex_wake_op: syz.2.1335 tries to shift op by -2048; fix this program
[  410.914522][T12005] tipc: Can't bind to reserved service type 0
[  410.935537][T12005] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  411.959610][T12025] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1345'.
[  413.020279][ T5877] Process accounting resumed
[  413.042487][ T5877] Process accounting resumed
[  413.081713][ T5877] Process accounting resumed
[  413.113765][ T5877] Process accounting resumed
[  413.148948][ T5877] Process accounting resumed
[  413.182359][ T5877] Process accounting resumed
[  413.237342][    T9] Process accounting resumed
[  413.265113][    T9] Process accounting resumed
[  413.309938][    T9] Process accounting resumed
[  413.357745][    T9] Process accounting resumed
[  413.388307][    T9] Process accounting resumed
[  413.415607][    T9] Process accounting resumed
[  413.466346][    T9] Process accounting resumed
[  413.548195][T12043] Process accounting resumed
[  413.916755][T12067] netlink: 'syz.1.1355': attribute type 1 has an invalid length.
[  414.023144][T12075] binder: 12074:12075 ioctl 4018620d ffffffffffffffff returned -22
[  414.456265][T12084] blktrace: Concurrent blktraces are not allowed on nbd8
[  415.246780][T12105] random: crng reseeded on system resumption
[  415.661000][T12105] hub 1-0:1.0: USB hub found
[  415.746014][T12105] hub 1-0:1.0: 1 port detected
[  416.992073][T12134] blktrace: Concurrent blktraces are not allowed on nbd8
[  417.002892][T12137] : Can't lookup blockdev
[  417.114148][T12126] blktrace: Concurrent blktraces are not allowed on loop2
[  417.408702][T12148] input: f�
 as /devices/virtual/input/input25
[  417.850463][T12158] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1375'.
[  418.007752][T12161] FAULT_INJECTION: forcing a failure.
[  418.007752][T12161] name failslab, interval 1, probability 0, space 0, times 0
[  418.051803][T12161] CPU: 0 UID: 0 PID: 12161 Comm: syz.1.1376 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  418.051828][T12161] Tainted: [L]=SOFTLOCKUP
[  418.051833][T12161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  418.051842][T12161] Call Trace:
[  418.051847][T12161]  <TASK>
[  418.051852][T12161]  dump_stack_lvl+0x100/0x190
[  418.051876][T12161]  should_fail_ex.cold+0x5/0xa
[  418.051901][T12161]  should_failslab+0xc2/0x120
[  418.051923][T12161]  __kmalloc_cache_noprof+0x80/0x810
[  418.051939][T12161]  ? cgroup_file_open+0x92/0x460
[  418.051960][T12161]  ? cgroup_file_open+0x92/0x460
[  418.051977][T12161]  cgroup_file_open+0x92/0x460
[  418.051993][T12161]  ? __pfx_cgroup_file_open+0x10/0x10
[  418.052011][T12161]  kernfs_fop_open+0x8b5/0xd50
[  418.052032][T12161]  do_dentry_open+0x73e/0x1570
[  418.052050][T12161]  ? __pfx_kernfs_fop_open+0x10/0x10
[  418.052066][T12161]  ? security_inode_permission+0xbf/0x250
[  418.052091][T12161]  vfs_open+0x82/0x3f0
[  418.052115][T12161]  path_openat+0x21dc/0x3120
[  418.052139][T12161]  ? __pfx_path_openat+0x10/0x10
[  418.052163][T12161]  do_filp_open+0x1f7/0x420
[  418.052182][T12161]  ? __pfx_do_filp_open+0x10/0x10
[  418.052212][T12161]  ? _raw_spin_unlock+0x28/0x50
[  418.052228][T12161]  ? alloc_fd+0x476/0x790
[  418.052250][T12161]  do_sys_openat2+0x12e/0x220
[  418.052272][T12161]  ? __pfx_do_sys_openat2+0x10/0x10
[  418.052293][T12161]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  418.052314][T12161]  ? __fget_files+0x21f/0x3d0
[  418.052333][T12161]  __x64_sys_openat+0x12d/0x210
[  418.052356][T12161]  ? __pfx___x64_sys_openat+0x10/0x10
[  418.052378][T12161]  ? ksys_write+0x1ac/0x250
[  418.052400][T12161]  do_syscall_64+0xc9/0xf80
[  418.052420][T12161]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  418.052435][T12161] RIP: 0033:0x7f41c199aeb9
[  418.052448][T12161] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  418.052462][T12161] RSP: 002b:00007f41c28ce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  418.052476][T12161] RAX: ffffffffffffffda RBX: 00007f41c1c15fa0 RCX: 00007f41c199aeb9
[  418.052486][T12161] RDX: 0000000000182b02 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  418.052495][T12161] RBP: 00007f41c28ce090 R08: 0000000000000000 R09: 0000000000000000
[  418.052504][T12161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  418.052512][T12161] R13: 00007f41c1c16038 R14: 00007f41c1c15fa0 R15: 00007fff15de6958
[  418.052538][T12161]  </TASK>
[  419.119553][   T30] audit: type=1800 audit(1770401506.645:19): pid=12175 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1377" name="dbroot" dev="configfs" ino=47565 res=0 errno=0
[  419.913191][T12187] blktrace: Concurrent blktraces are not allowed on nbd8
[  420.034481][T12186] blktrace: Concurrent blktraces are not allowed on loop2
[  420.895190][T12213] binder: 12211:12213 ioctl 4018620d ffffffffffffffff returned -22
[  422.419114][T12240] FAULT_INJECTION: forcing a failure.
[  422.419114][T12240] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  422.484985][T12240] CPU: 0 UID: 0 PID: 12240 Comm: syz.3.1393 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  422.485012][T12240] Tainted: [L]=SOFTLOCKUP
[  422.485018][T12240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  422.485031][T12240] Call Trace:
[  422.485036][T12240]  <TASK>
[  422.485042][T12240]  dump_stack_lvl+0x100/0x190
[  422.485066][T12240]  should_fail_ex.cold+0x5/0xa
[  422.485091][T12240]  _copy_from_iter+0x1f4/0x1690
[  422.485115][T12240]  ? __alloc_skb+0x220/0x410
[  422.485135][T12240]  ? __alloc_skb+0x35d/0x410
[  422.485154][T12240]  ? __pfx__copy_from_iter+0x10/0x10
[  422.485181][T12240]  ? netlink_autobind.isra.0+0xb0/0x370
[  422.485211][T12240]  netlink_sendmsg+0x808/0xda0
[  422.485237][T12240]  ? __pfx_netlink_sendmsg+0x10/0x10
[  422.485258][T12240]  ? __import_iovec+0x1d2/0x640
[  422.485282][T12240]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  422.485303][T12240]  ____sys_sendmsg+0xa54/0xc30
[  422.485322][T12240]  ? __pfx_____sys_sendmsg+0x10/0x10
[  422.485337][T12240]  ? __pfx___futex_wait+0x10/0x10
[  422.485354][T12240]  ? __pfx_futex_wake_mark+0x10/0x10
[  422.485380][T12240]  ___sys_sendmsg+0x190/0x1e0
[  422.485398][T12240]  ? __pfx____sys_sendmsg+0x10/0x10
[  422.485424][T12240]  ? find_held_lock+0x2b/0x80
[  422.485450][T12240]  __sys_sendmsg+0x170/0x220
[  422.485471][T12240]  ? __pfx___sys_sendmsg+0x10/0x10
[  422.485492][T12240]  ? __x64_sys_futex+0x34f/0x4d0
[  422.485523][T12240]  do_syscall_64+0xc9/0xf80
[  422.485543][T12240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  422.485558][T12240] RIP: 0033:0x7f40cc39aeb9
[  422.485571][T12240] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  422.485585][T12240] RSP: 002b:00007f40cd251028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  422.485601][T12240] RAX: ffffffffffffffda RBX: 00007f40cc615fa0 RCX: 00007f40cc39aeb9
[  422.485611][T12240] RDX: 0000000020000000 RSI: 0000200000000380 RDI: 0000000000000005
[  422.485620][T12240] RBP: 00007f40cc408c1f R08: 0000000000000000 R09: 0000000000000000
[  422.485629][T12240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  422.485637][T12240] R13: 00007f40cc616038 R14: 00007f40cc615fa0 R15: 00007ffc4a4101d8
[  422.485656][T12240]  </TASK>
[  423.009782][T12240] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1393'.
[  423.039528][   T30] audit: type=1800 audit(1770401510.535:20): pid=12240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1393" name="dbroot" dev="configfs" ino=48003 res=0 errno=0
[  423.159732][T12246] FAULT_INJECTION: forcing a failure.
[  423.159732][T12246] name failslab, interval 1, probability 0, space 0, times 0
[  423.198865][T12246] CPU: 0 UID: 0 PID: 12246 Comm: syz.2.1394 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  423.198891][T12246] Tainted: [L]=SOFTLOCKUP
[  423.198897][T12246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  423.198906][T12246] Call Trace:
[  423.198911][T12246]  <TASK>
[  423.198917][T12246]  dump_stack_lvl+0x100/0x190
[  423.198940][T12246]  should_fail_ex.cold+0x5/0xa
[  423.198965][T12246]  should_failslab+0xc2/0x120
[  423.198987][T12246]  kmem_cache_alloc_noprof+0x83/0x780
[  423.199006][T12246]  ? mutex_init_lockep+0x110/0x150
[  423.199026][T12246]  ? seq_open+0x55/0x170
[  423.199049][T12246]  ? seq_open+0x55/0x170
[  423.199068][T12246]  seq_open+0x55/0x170
[  423.199090][T12246]  blk_mq_debugfs_open+0x106/0x1b0
[  423.199110][T12246]  ? __pfx_blk_mq_debugfs_open+0x10/0x10
[  423.199133][T12246]  full_proxy_open_regular+0x1b6/0x370
[  423.199151][T12246]  do_dentry_open+0x73e/0x1570
[  423.199169][T12246]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  423.199185][T12246]  ? security_inode_permission+0xbf/0x250
[  423.199210][T12246]  vfs_open+0x82/0x3f0
[  423.199233][T12246]  path_openat+0x21dc/0x3120
[  423.199256][T12246]  ? __pfx_path_openat+0x10/0x10
[  423.199280][T12246]  do_filp_open+0x1f7/0x420
[  423.199298][T12246]  ? __pfx_do_filp_open+0x10/0x10
[  423.199328][T12246]  ? _raw_spin_unlock+0x28/0x50
[  423.199343][T12246]  ? alloc_fd+0x476/0x790
[  423.199365][T12246]  do_sys_openat2+0x12e/0x220
[  423.199387][T12246]  ? __pfx_do_sys_openat2+0x10/0x10
[  423.199415][T12246]  ? __fget_files+0x21f/0x3d0
[  423.199434][T12246]  __x64_sys_openat+0x12d/0x210
[  423.199457][T12246]  ? __pfx___x64_sys_openat+0x10/0x10
[  423.199478][T12246]  ? xfd_validate_state+0x129/0x190
[  423.199506][T12246]  do_syscall_64+0xc9/0xf80
[  423.199526][T12246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.199541][T12246] RIP: 0033:0x7f7872f9aeb9
[  423.199554][T12246] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  423.199568][T12246] RSP: 002b:00007f7873ead028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  423.199583][T12246] RAX: ffffffffffffffda RBX: 00007f7873215fa0 RCX: 00007f7872f9aeb9
[  423.199593][T12246] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  423.199602][T12246] RBP: 00007f7873008c1f R08: 0000000000000000 R09: 0000000000000000
[  423.199611][T12246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  423.199620][T12246] R13: 00007f7873216038 R14: 00007f7873215fa0 R15: 00007ffdd33be928
[  423.199639][T12246]  </TASK>
[  423.696248][T12249] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  423.705938][T12248] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  423.888437][T12240] team_slave_1 (unregistering): left promiscuous mode
[  423.926736][T12240] team_slave_1 (unregistering): left allmulticast mode
[  423.992426][T12240] team0: Port device team_slave_1 removed
[  424.297219][T12266] CIFS: VFS: Unsupported security flags: 0x110
[  424.823948][T12280] Invalid ELF header magic: != ELF
[  425.263615][T12298] FAULT_INJECTION: forcing a failure.
[  425.263615][T12298] name fail_futex, interval 1, probability 0, space 0, times 0
[  425.338699][T12298] CPU: 0 UID: 0 PID: 12298 Comm: syz.1.1409 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  425.338726][T12298] Tainted: [L]=SOFTLOCKUP
[  425.338731][T12298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  425.338741][T12298] Call Trace:
[  425.338746][T12298]  <TASK>
[  425.338753][T12298]  dump_stack_lvl+0x100/0x190
[  425.338776][T12298]  should_fail_ex.cold+0x5/0xa
[  425.338801][T12298]  get_futex_key+0x1d2/0x1620
[  425.338823][T12298]  ? __pfx_get_futex_key+0x10/0x10
[  425.338842][T12298]  ? find_held_lock+0x2b/0x80
[  425.338857][T12298]  ? trace_ignore_this_task+0xbc/0x100
[  425.338873][T12298]  ? trace_ignore_this_task+0xbc/0x100
[  425.338893][T12298]  futex_wait_setup+0x81/0x500
[  425.338912][T12298]  __futex_wait+0x19f/0x300
[  425.338928][T12298]  ? __pfx___futex_wait+0x10/0x10
[  425.338940][T12298]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  425.338957][T12298]  ? lockdep_hardirqs_on+0x78/0x100
[  425.338976][T12298]  ? __pfx_futex_wake_mark+0x10/0x10
[  425.339009][T12298]  ? find_held_lock+0x2b/0x80
[  425.339023][T12298]  ? futex_wake+0x456/0x530
[  425.339050][T12298]  futex_wait+0xed/0x380
[  425.339064][T12298]  ? __pfx_futex_wait+0x10/0x10
[  425.339083][T12298]  ? __lock_acquire+0x4a5/0x2630
[  425.339102][T12298]  ? up_write+0x290/0x4f0
[  425.339125][T12298]  do_futex+0x1ef/0x350
[  425.339146][T12298]  ? __pfx_do_futex+0x10/0x10
[  425.339167][T12298]  ? find_held_lock+0x2b/0x80
[  425.339183][T12298]  __x64_sys_futex+0x34f/0x4d0
[  425.339204][T12298]  ? __fget_files+0x21f/0x3d0
[  425.339220][T12298]  ? __pfx___x64_sys_futex+0x10/0x10
[  425.339246][T12298]  ? fdget+0x18b/0x210
[  425.339265][T12298]  do_syscall_64+0xc9/0xf80
[  425.339284][T12298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.339299][T12298] RIP: 0033:0x7f41c199aeb9
[  425.339312][T12298] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  425.339326][T12298] RSP: 002b:00007f41c28ce0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  425.339341][T12298] RAX: ffffffffffffffda RBX: 00007f41c1c15fa8 RCX: 00007f41c199aeb9
[  425.339351][T12298] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f41c1c15fa8
[  425.339360][T12298] RBP: 00007f41c1c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  425.339369][T12298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  425.339381][T12298] R13: 00007f41c1c16038 R14: 00007fff15de6870 R15: 00007fff15de6958
[  425.339400][T12298]  </TASK>
[  425.675693][T12300] random: crng reseeded on system resumption
[  426.755220][T12331] FAULT_INJECTION: forcing a failure.
[  426.755220][T12331] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  426.845328][T12331] CPU: 0 UID: 0 PID: 12331 Comm: syz.3.1418 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  426.845354][T12331] Tainted: [L]=SOFTLOCKUP
[  426.845360][T12331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  426.845368][T12331] Call Trace:
[  426.845374][T12331]  <TASK>
[  426.845379][T12331]  dump_stack_lvl+0x100/0x190
[  426.845401][T12331]  should_fail_ex.cold+0x5/0xa
[  426.845427][T12331]  _copy_to_user+0x32/0xd0
[  426.845451][T12331]  simple_read_from_buffer+0xcb/0x170
[  426.845468][T12331]  proc_fail_nth_read+0x1af/0x230
[  426.845487][T12331]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  426.845505][T12331]  ? rw_verify_area+0xce/0x6d0
[  426.845520][T12331]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  426.845537][T12331]  vfs_read+0x1e4/0xb30
[  426.845556][T12331]  ? __pfx_vfs_read+0x10/0x10
[  426.845570][T12331]  ? find_held_lock+0x2b/0x80
[  426.845585][T12331]  ? __fget_files+0x215/0x3d0
[  426.845605][T12331]  ? __fget_files+0x21f/0x3d0
[  426.845625][T12331]  ksys_read+0x12a/0x250
[  426.845641][T12331]  ? __pfx_ksys_read+0x10/0x10
[  426.845663][T12331]  do_syscall_64+0xc9/0xf80
[  426.845683][T12331]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.845698][T12331] RIP: 0033:0x7f40cc35b78e
[  426.845711][T12331] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  426.845724][T12331] RSP: 002b:00007f40cd250fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  426.845739][T12331] RAX: ffffffffffffffda RBX: 00007f40cd2516c0 RCX: 00007f40cc35b78e
[  426.845749][T12331] RDX: 000000000000000f RSI: 00007f40cd2510a0 RDI: 0000000000000005
[  426.845757][T12331] RBP: 00007f40cd251090 R08: 0000000000000000 R09: 0000000000000000
[  426.845766][T12331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  426.845774][T12331] R13: 00007f40cc616038 R14: 00007f40cc615fa0 R15: 00007ffc4a4101d8
[  426.845793][T12331]  </TASK>
[  427.941695][T12340] Invalid ELF header magic: != ELF
[  429.041232][T12354] NFSD: Failed to start, no listeners configured.
[  429.562461][ T7288] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:33: bg 2: bad block bitmap checksum
[  429.621493][ T7288] EXT4-fs (sda1): Delayed block allocation failed for inode 2026 at logical offset 8 with max blocks 2 with error 74
[  429.690768][ T7288] EXT4-fs (sda1): This should not happen!! Data will be lost
[  429.690768][ T7288] 
[  430.786009][T12376] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  431.325181][T12402] random: crng reseeded on system resumption
[  431.685671][T12407] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  432.672898][T12428] binder: 12426:12428 ioctl 4018620d ffffffffffffffff returned -22
[  434.545532][T12465] binder: 12464:12465 ioctl c0306201 200000000000 returned -11
[  436.010358][T12490] input: f�
 as /devices/virtual/input/input27
[  437.665069][T12522] blktrace: Concurrent blktraces are not allowed on nbd8
[  437.780628][T12522] blktrace: Concurrent blktraces are not allowed on loop2
[  437.975619][T12526] blktrace: Concurrent blktraces are not allowed on nbd8
[  438.361853][T12536] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1463'.
[  438.556778][T12540] binder: 12539:12540 ioctl 4018620d ffffffffffffffff returned -22
[  440.104032][T12544] ima: policy update failed
[  440.241628][   T30] audit: type=1802 audit(1770401527.775:21): pid=12544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1467" res=0 errno=0
[  441.616489][T12604] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  441.633380][T12604] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  441.668350][T12604] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  441.689025][T12604] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  441.703709][T12604] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  441.711320][T12604] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  441.719291][T12604] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  441.727522][T12604] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  442.841740][T12657] random: crng reseeded on system resumption
[  442.961097][ T5828] Bluetooth: hci0: command 0x0c1a tx timeout
[  443.377001][T12675] FAULT_INJECTION: forcing a failure.
[  443.377001][T12675] name failslab, interval 1, probability 0, space 0, times 0
[  443.441844][T12675] CPU: 0 UID: 0 PID: 12675 Comm: syz.2.1493 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  443.441869][T12675] Tainted: [L]=SOFTLOCKUP
[  443.441875][T12675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  443.441883][T12675] Call Trace:
[  443.441889][T12675]  <TASK>
[  443.441894][T12675]  dump_stack_lvl+0x100/0x190
[  443.441916][T12675]  should_fail_ex.cold+0x5/0xa
[  443.441938][T12675]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  443.441954][T12675]  should_failslab+0xc2/0x120
[  443.441976][T12675]  kmem_cache_alloc_noprof+0x83/0x780
[  443.441996][T12675]  ? skb_clone+0x190/0x400
[  443.442021][T12675]  ? skb_clone+0x190/0x400
[  443.442041][T12675]  skb_clone+0x190/0x400
[  443.442063][T12675]  netlink_deliver_tap+0xaed/0xcc0
[  443.442090][T12675]  netlink_unicast+0x650/0x870
[  443.442115][T12675]  ? __pfx_netlink_unicast+0x10/0x10
[  443.442145][T12675]  netlink_sendmsg+0x8b0/0xda0
[  443.442171][T12675]  ? __pfx_netlink_sendmsg+0x10/0x10
[  443.442192][T12675]  ? __import_iovec+0x1d2/0x640
[  443.442216][T12675]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  443.442238][T12675]  ____sys_sendmsg+0xa54/0xc30
[  443.442257][T12675]  ? __pfx_____sys_sendmsg+0x10/0x10
[  443.442272][T12675]  ? __pfx___futex_wait+0x10/0x10
[  443.442289][T12675]  ? __pfx_futex_wake_mark+0x10/0x10
[  443.442316][T12675]  ___sys_sendmsg+0x190/0x1e0
[  443.442334][T12675]  ? __pfx____sys_sendmsg+0x10/0x10
[  443.442360][T12675]  ? find_held_lock+0x2b/0x80
[  443.442391][T12675]  __sys_sendmsg+0x170/0x220
[  443.442414][T12675]  ? __pfx___sys_sendmsg+0x10/0x10
[  443.442435][T12675]  ? __x64_sys_futex+0x34f/0x4d0
[  443.442466][T12675]  do_syscall_64+0xc9/0xf80
[  443.442486][T12675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  443.442501][T12675] RIP: 0033:0x7f7872f9aeb9
[  443.442514][T12675] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  443.442528][T12675] RSP: 002b:00007f7873ead028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  443.442543][T12675] RAX: ffffffffffffffda RBX: 00007f7873215fa0 RCX: 00007f7872f9aeb9
[  443.442552][T12675] RDX: 0000000000048010 RSI: 0000200000000240 RDI: 0000000000000004
[  443.442561][T12675] RBP: 00007f7873008c1f R08: 0000000000000000 R09: 0000000000000000
[  443.442569][T12675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  443.442578][T12675] R13: 00007f7873216038 R14: 00007f7873215fa0 R15: 00007ffdd33be928
[  443.442597][T12675]  </TASK>
[  443.715440][ T5828] Bluetooth: hci2: command 0x0c1a tx timeout
[  443.806872][   T52] Bluetooth: hci1: command 0x0c1a tx timeout
[  443.813132][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  443.877581][T12688] binder: 12682:12688 ioctl c018620c 0 returned -1
[  444.598448][T12696] random: crng reseeded on system resumption
[  444.862104][T12697] netlink: 'syz.0.1495': attribute type 11 has an invalid length.
[  444.881163][T12673] Process accounting paused
[  444.949507][T12697] netlink: 'syz.0.1495': attribute type 11 has an invalid length.
[  445.039714][ T5828] Bluetooth: hci0: command 0x0c1a tx timeout
[  445.124741][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  445.131098][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  445.596068][T12722] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1506'.
[  445.670497][T12724] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1506'.
[  445.759622][ T5828] Bluetooth: hci2: command 0x0c1a tx timeout
[  445.775992][T12720] NFSD: Failed to start, no listeners configured.
[  445.839934][ T5828] Bluetooth: hci3: command 0x0c1a tx timeout
[  445.845956][ T5828] Bluetooth: hci1: command 0x0c1a tx timeout
[  446.274155][T12734] random: crng reseeded on system resumption
[  446.696873][   T30] audit: type=1800 audit(1770401534.225:22): pid=12738 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1510" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  447.503427][T12753] IPVS: length: 131 != 8
[  447.546355][T12755] binder: 12754:12755 ioctl 4018620d ffffffffffffffff returned -22
[  447.975198][T12764] blktrace: Concurrent blktraces are not allowed on nbd8
[  448.382480][T12768] zswap: compressor  not available
[  449.345378][T12806] binder: 12805:12806 ioctl 4018620d ffffffffffffffff returned -22
[  449.464799][T12808] random: crng reseeded on system resumption
[  449.620838][T12810] hub 1-0:1.0: USB hub found
[  449.667885][T12810] hub 1-0:1.0: 1 port detected
[  450.915847][T12825] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  451.408620][T12836] blktrace: Concurrent blktraces are not allowed on nbd8
[  451.932508][T12814] ima: policy update failed
[  451.994612][   T30] audit: type=1802 audit(1770401539.525:23): pid=12814 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1526" res=0 errno=0
[  455.155598][T12903] Invalid ELF header magic: != ELF
[  455.668408][T12918] ima: policy update failed
[  455.809457][   T30] audit: type=1802 audit(1770401543.335:24): pid=12918 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1548" res=0 errno=0
[  456.979885][T12936] binder: 12935:12936 ioctl 4018620d ffffffffffffffff returned -22
[  457.579305][T12948] nvme_fabrics: missing parameter 'transport=%s'
[  457.605597][T12948] nvme_fabrics: missing parameter 'nqn=%s'
[  457.646907][T12934] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  458.449563][T12967] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1560'.
[  459.174615][T12986] blktrace: Concurrent blktraces are not allowed on nbd8
[  461.640103][T13040] XFS: Clearing xfsstats
[  461.690062][T13045] futex_wake_op: syz.1.1577 tries to shift op by -2048; fix this program
[  464.021908][T13072] binder: 13071:13072 ioctl 4018620d ffffffffffffffff returned -22
[  464.438498][T13084] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1586'.
[  464.496590][T13084] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  464.659454][T13084] batman_adv: batadv0: Removing interface: batadv_slave_0
[  464.695598][T13084] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  464.773376][T13094] blktrace: Concurrent blktraces are not allowed on nbd8
[  464.816390][T13084] batman_adv: batadv0: Removing interface: batadv_slave_1
[  464.925972][T13094] blktrace: Concurrent blktraces are not allowed on loop2
[  464.977549][T13098] binder: 13097:13098 ioctl 4018620d ffffffffffffffff returned -22
[  467.470999][T13155] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  468.293848][T13167] FAULT_INJECTION: forcing a failure.
[  468.293848][T13167] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  468.380580][T13167] CPU: 0 UID: 0 PID: 13167 Comm: syz.1.1603 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  468.380606][T13167] Tainted: [L]=SOFTLOCKUP
[  468.380611][T13167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  468.380619][T13167] Call Trace:
[  468.380624][T13167]  <TASK>
[  468.380630][T13167]  dump_stack_lvl+0x100/0x190
[  468.380653][T13167]  should_fail_ex.cold+0x5/0xa
[  468.380677][T13167]  _copy_from_user+0x2e/0xd0
[  468.380700][T13167]  get_timespec64+0x8b/0x1b0
[  468.380719][T13167]  ? __pfx_get_timespec64+0x10/0x10
[  468.380736][T13167]  ? ktime_get+0x200/0x300
[  468.380757][T13167]  __x64_sys_futex+0x21a/0x4d0
[  468.380780][T13167]  ? __pfx___x64_sys_futex+0x10/0x10
[  468.380807][T13167]  ? xfd_validate_state+0x129/0x190
[  468.380837][T13167]  do_syscall_64+0xc9/0xf80
[  468.380857][T13167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  468.380872][T13167] RIP: 0033:0x7f41c199aeb9
[  468.380884][T13167] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  468.380898][T13167] RSP: 002b:00007fff15de6ab8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  468.380912][T13167] RAX: ffffffffffffffda RBX: 000000000007251e RCX: 00007f41c199aeb9
[  468.380922][T13167] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f41c1c1618c
[  468.380931][T13167] RBP: 0000000000000032 R08: 0000000000000000 R09: 0000000000000000
[  468.380939][T13167] R10: 00007fff15de6bc0 R11: 0000000000000246 R12: 00007fff15de6be0
[  468.380948][T13167] R13: 00007f41c1c1618c R14: 0000000000072550 R15: 00007fff15de6bc0
[  468.380967][T13167]  </TASK>
[  469.746291][T13198] Invalid ELF header magic: != ELF
[  469.919809][T13204] blktrace: Concurrent blktraces are not allowed on nbd8
[  470.037185][T13204] blktrace: Concurrent blktraces are not allowed on loop2
[  470.533329][T13211] random: crng reseeded on system resumption
[  470.762896][T13217] binder: 13216:13217 ioctl 4018620d ffffffffffffffff returned -22
[  470.900331][T13220] binder: 13219:13220 ioctl 4018620d ffffffffffffffff returned -22
[  471.974582][ T5828] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  471.982140][ T5828] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff
[  473.850058][T13281] binder: 13280:13281 ioctl 4018620d ffffffffffffffff returned -22
[  474.402005][T13290] Invalid ELF header magic: != ELF
[  474.822335][T13298] nfs: Bad value for 'source'
[  474.944040][T13303] random: crng reseeded on system resumption
[  475.675457][T13281] Process accounting resumed
[  476.212265][T13329] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  476.289727][T13329] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0
[  476.485607][T13329] vhci_hcd vhci_hcd.2: invalid port number 252
[  476.567275][T13329] vhci_hcd vhci_hcd.2: default hub control req: 040f v0772 i00fc l2
[  476.656158][T13339] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE�r��҄y�*�"�l-���y–��L̓���]'
[  476.716581][T13339] CPU: 0 UID: 0 PID: 13339 Comm: syz.0.1644 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  476.716607][T13339] Tainted: [L]=SOFTLOCKUP
[  476.716613][T13339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  476.716621][T13339] Call Trace:
[  476.716626][T13339]  <TASK>
[  476.716632][T13339]  dump_stack_lvl+0x100/0x190
[  476.716654][T13339]  sysfs_warn_dup.cold+0x1c/0x28
[  476.716674][T13339]  sysfs_do_create_link_sd+0x113/0x140
[  476.716697][T13339]  sysfs_create_link+0x61/0xc0
[  476.716717][T13339]  device_add+0x675/0x1950
[  476.716740][T13339]  ? __pfx_device_add+0x10/0x10
[  476.716760][T13339]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  476.716778][T13339]  ? ieee80211_set_bitrate_flags+0x41b/0x6b0
[  476.716802][T13339]  wiphy_register+0x1e58/0x2d30
[  476.716825][T13339]  ? __rtnl_unlock+0xb9/0xf0
[  476.716845][T13339]  ? __pfx_wiphy_register+0x10/0x10
[  476.716869][T13339]  ? __asan_memset+0x23/0x50
[  476.716885][T13339]  ? minstrel_ht_alloc+0x5e6/0x7f0
[  476.716914][T13339]  ieee80211_register_hw+0x2c11/0x4040
[  476.716946][T13339]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  476.716969][T13339]  ? __pfx___debug_object_init+0x10/0x10
[  476.716992][T13339]  ? find_held_lock+0x2b/0x80
[  476.717006][T13339]  ? net_generic+0xea/0x2a0
[  476.717024][T13339]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  476.717041][T13339]  ? __hrtimer_setup+0x178/0x280
[  476.717065][T13339]  mac80211_hwsim_new_radio+0x2847/0x57c0
[  476.717099][T13339]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  476.717127][T13339]  hwsim_new_radio_nl+0xc1f/0x1340
[  476.717147][T13339]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  476.717167][T13339]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  476.717200][T13339]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  476.717216][T13339]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  476.717237][T13339]  genl_family_rcv_msg_doit+0x214/0x300
[  476.717255][T13339]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  476.717271][T13339]  ? genl_get_cmd+0x3ef/0x720
[  476.717290][T13339]  ? bpf_lsm_capable+0x9/0x10
[  476.717303][T13339]  ? security_capable+0x80/0x260
[  476.717322][T13339]  ? ns_capable+0xd2/0xf0
[  476.717340][T13339]  genl_rcv_msg+0x560/0x800
[  476.717358][T13339]  ? __pfx_genl_rcv_msg+0x10/0x10
[  476.717374][T13339]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  476.717398][T13339]  ? __lock_acquire+0x4a5/0x2630
[  476.717421][T13339]  netlink_rcv_skb+0x159/0x420
[  476.717434][T13339]  ? __pfx_genl_rcv_msg+0x10/0x10
[  476.717451][T13339]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  476.717472][T13339]  ? netlink_deliver_tap+0x1ae/0xcc0
[  476.717497][T13339]  genl_rcv+0x28/0x40
[  476.717511][T13339]  netlink_unicast+0x5aa/0x870
[  476.717536][T13339]  ? __pfx_netlink_unicast+0x10/0x10
[  476.717558][T13339]  ? __pfx___might_resched+0x10/0x10
[  476.717581][T13339]  ? __lock_acquire+0x4a5/0x2630
[  476.717605][T13339]  netlink_sendmsg+0x8b0/0xda0
[  476.717632][T13339]  ? __pfx_netlink_sendmsg+0x10/0x10
[  476.717653][T13339]  ? __import_iovec+0x1d2/0x640
[  476.717677][T13339]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  476.717699][T13339]  ____sys_sendmsg+0xa54/0xc30
[  476.717719][T13339]  ? __pfx_____sys_sendmsg+0x10/0x10
[  476.717738][T13339]  ? rcu_read_unlock+0x2d/0xb0
[  476.717759][T13339]  ___sys_sendmsg+0x190/0x1e0
[  476.717778][T13339]  ? __pfx____sys_sendmsg+0x10/0x10
[  476.717805][T13339]  ? find_held_lock+0x2b/0x80
[  476.717834][T13339]  __sys_sendmsg+0x170/0x220
[  476.717857][T13339]  ? __pfx___sys_sendmsg+0x10/0x10
[  476.717878][T13339]  ? _raw_spin_unlock_irq+0x2e/0x50
[  476.717900][T13339]  ? do_user_addr_fault+0x8d6/0x12f0
[  476.717921][T13339]  do_syscall_64+0xc9/0xf80
[  476.717940][T13339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.717956][T13339] RIP: 0033:0x7fab3619aeb9
[  476.717968][T13339] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  476.717982][T13339] RSP: 002b:00007fab370cf028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  476.717997][T13339] RAX: ffffffffffffffda RBX: 00007fab36416090 RCX: 00007fab3619aeb9
[  476.718010][T13339] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003
[  476.718019][T13339] RBP: 00007fab36208c1f R08: 0000000000000000 R09: 0000000000000000
[  476.718028][T13339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  476.718036][T13339] R13: 00007fab36416128 R14: 00007fab36416090 R15: 00007ffe62f993a8
[  476.718056][T13339]  </TASK>
[  478.633891][T13370] blktrace: Concurrent blktraces are not allowed on nbd8
[  479.493312][T13392] Invalid ELF header magic: != ELF
[  480.917588][T13411] random: crng reseeded on system resumption
[  483.190433][T13457] ------------[ cut here ]------------
[  483.196171][T13457] !reader
[  483.196188][T13457] WARNING: kernel/trace/ring_buffer.c:7363 at ring_buffer_map_get_reader+0x659/0x880, CPU#0: syz.3.1673/13457
[  483.210725][T13457] Modules linked in:
[  483.214810][T13457] CPU: 0 UID: 0 PID: 13457 Comm: syz.3.1673 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  483.225739][T13457] Tainted: [L]=SOFTLOCKUP
[  483.230045][T13457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  483.240080][T13457] RIP: 0010:ring_buffer_map_get_reader+0x659/0x880
[  483.246572][T13457] Code: ff e8 4b e1 fb ff 48 8d 3d 94 da b0 0e 4c 89 fe 67 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 28 e1 fb ff 90 <0f> 0b 90 e8 1f e1 fb ff 48 89 df 31 db e8 85 13 fe ff 48 8b 74 24
[  483.266163][T13457] RSP: 0018:ffffc90003f0fd98 EFLAGS: 00010083
[  483.272214][T13457] RAX: 00000000000007bf RBX: ffff88813fe28800 RCX: ffffc9000cfdd000
[  483.280178][T13457] RDX: 0000000000080000 RSI: ffffffff820a6998 RDI: ffff88807d191e80
[  483.288151][T13457] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000
[  483.296112][T13457] R10: 0000000000000000 R11: ffff88813fe288b0 R12: ffff88813fe288b0
[  483.304070][T13457] R13: dffffc0000000000 R14: ffff88813fe28990 R15: ffff88813fe28818
[  483.312030][T13457] FS:  00007f40cd2516c0(0000) GS:ffff8881245e3000(0000) knlGS:0000000000000000
[  483.320947][T13457] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  483.327517][T13457] CR2: 0000001b31018ff8 CR3: 00000000308f4000 CR4: 00000000003526f0
[  483.335473][T13457] Call Trace:
[  483.338735][T13457]  <TASK>
[  483.341656][T13457]  ? __pfx_ring_buffer_map_get_reader+0x10/0x10
[  483.347892][T13457]  ? __fget_files+0x21f/0x3d0
[  483.352555][T13457]  tracing_buffers_ioctl+0x30d/0x400
[  483.357831][T13457]  ? __pfx_tracing_buffers_ioctl+0x10/0x10
[  483.363627][T13457]  __x64_sys_ioctl+0x18e/0x210
[  483.368387][T13457]  do_syscall_64+0xc9/0xf80
[  483.372879][T13457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.378755][T13457] RIP: 0033:0x7f40cc39aeb9
[  483.383153][T13457] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  483.402747][T13457] RSP: 002b:00007f40cd251028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  483.411143][T13457] RAX: ffffffffffffffda RBX: 00007f40cc615fa0 RCX: 00007f40cc39aeb9
[  483.419094][T13457] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000002
[  483.427045][T13457] RBP: 00007f40cc408c1f R08: 0000000000000000 R09: 0000000000000000
[  483.434996][T13457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  483.442944][T13457] R13: 00007f40cc616038 R14: 00007f40cc615fa0 R15: 00007ffc4a4101d8
[  483.450907][T13457]  </TASK>
[  483.453909][T13457] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  483.461173][T13457] CPU: 0 UID: 0 PID: 13457 Comm: syz.3.1673 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  483.472094][T13457] Tainted: [L]=SOFTLOCKUP
[  483.476395][T13457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  483.486428][T13457] Call Trace:
[  483.489690][T13457]  <TASK>
[  483.492601][T13457]  dump_stack_lvl+0x100/0x190
[  483.497272][T13457]  vpanic+0x20d/0x630
[  483.501236][T13457]  panic+0xd1/0xd1
[  483.504936][T13457]  ? __pfx_panic+0x10/0x10
[  483.509339][T13457]  check_panic_on_warn.cold+0x19/0x34
[  483.514695][T13457]  ? ring_buffer_map_get_reader+0x659/0x880
[  483.520573][T13457]  __warn.cold+0x191/0x2f8
[  483.524976][T13457]  __report_bug+0x296/0x3d0
[  483.529462][T13457]  ? ring_buffer_map_get_reader+0x659/0x880
[  483.535340][T13457]  ? __pfx___report_bug+0x10/0x10
[  483.540345][T13457]  ? check_noncircular+0x97/0x160
[  483.545356][T13457]  ? add_lock_to_list+0x99/0x110
[  483.550280][T13457]  ? lockdep_unlock+0x5a/0xc0
[  483.554939][T13457]  ? rb_set_head_page+0x1e6/0x2f0
[  483.559950][T13457]  ? ring_buffer_map_get_reader+0x659/0x880
[  483.565825][T13457]  report_bug+0xb2/0x220
[  483.570049][T13457]  ? ring_buffer_map_get_reader+0x659/0x880
[  483.575921][T13457]  handle_bug+0x166/0x2a0
[  483.580238][T13457]  exc_invalid_op+0x17/0x50
[  483.584726][T13457]  asm_exc_invalid_op+0x1a/0x20
[  483.589555][T13457] RIP: 0010:ring_buffer_map_get_reader+0x659/0x880
[  483.596038][T13457] Code: ff e8 4b e1 fb ff 48 8d 3d 94 da b0 0e 4c 89 fe 67 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 28 e1 fb ff 90 <0f> 0b 90 e8 1f e1 fb ff 48 89 df 31 db e8 85 13 fe ff 48 8b 74 24
[  483.615625][T13457] RSP: 0018:ffffc90003f0fd98 EFLAGS: 00010083
[  483.621677][T13457] RAX: 00000000000007bf RBX: ffff88813fe28800 RCX: ffffc9000cfdd000
[  483.629628][T13457] RDX: 0000000000080000 RSI: ffffffff820a6998 RDI: ffff88807d191e80
[  483.637581][T13457] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000
[  483.645530][T13457] R10: 0000000000000000 R11: ffff88813fe288b0 R12: ffff88813fe288b0
[  483.653486][T13457] R13: dffffc0000000000 R14: ffff88813fe28990 R15: ffff88813fe28818
[  483.661443][T13457]  ? ring_buffer_map_get_reader+0x658/0x880
[  483.667328][T13457]  ? ring_buffer_map_get_reader+0x658/0x880
[  483.673207][T13457]  ? __pfx_ring_buffer_map_get_reader+0x10/0x10
[  483.679433][T13457]  ? __fget_files+0x21f/0x3d0
[  483.684095][T13457]  tracing_buffers_ioctl+0x30d/0x400
[  483.689365][T13457]  ? __pfx_tracing_buffers_ioctl+0x10/0x10
[  483.695160][T13457]  __x64_sys_ioctl+0x18e/0x210
[  483.699915][T13457]  do_syscall_64+0xc9/0xf80
[  483.704403][T13457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.710281][T13457] RIP: 0033:0x7f40cc39aeb9
[  483.714679][T13457] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  483.734269][T13457] RSP: 002b:00007f40cd251028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  483.742662][T13457] RAX: ffffffffffffffda RBX: 00007f40cc615fa0 RCX: 00007f40cc39aeb9
[  483.750611][T13457] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000002
[  483.758562][T13457] RBP: 00007f40cc408c1f R08: 0000000000000000 R09: 0000000000000000
[  483.766518][T13457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  483.774468][T13457] R13: 00007f40cc616038 R14: 00007f40cc615fa0 R15: 00007ffc4a4101d8
[  483.782428][T13457]  </TASK>
[  483.785489][T13457] Kernel Offset: disabled
[  483.789799][T13457] Rebooting in 86400 seconds..