last executing test programs:

2m57.657069119s ago: executing program 0 (id=519):
r0 = socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000051c0)={&(0x7f0000000f40)={0x14, 0x0, 0x301, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x24000055}, 0x4)
sendmsg$auto_TIPC_NL_BEARER_SET(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000080)={&(0x7f0000000280)={0x33c, 0x0, 0x8, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_UNSPEC={0x9d, 0x0, "98d47bc64d7001fd42f253f89747fa30451fe6222ad49fae9770ab4674d94dc72c96a10b03be65dd27011f8d7724dbfb25a3bc554ee8291eea5937718837274215b59e584191ac1d9de2b3b8f75dd1ebf93c1d85193daca886ae41ab8c3bc8c335a49dadcfe3e74ff2269e3436579d35164c8d4be2399462c6b2dbf715ec9a6b4dea236adf02b8e5446d75a247934a8f6d52f214c6bbc85bca"}, @TIPC_NLA_LINK={0x4}, @TIPC_NLA_UNSPEC={0x47, 0x0, "e109b54ed0f6b212adc188098af17104ce776e065bc8d8626514830d11576f9ff757eb136d8913aa3cdba47bdcb898c68a1d2d79665c7044e878fb6cf774c0541f971e"}, @TIPC_NLA_NAME_TABLE={0xb8, 0x8, 0x0, 0x1, [@nested={0x8, 0x36, 0x0, 0x1, [@nested={0x4, 0x1b}]}, @nested={0xa3, 0x140, 0x0, 0x1, [@generic="52514d11f7a2fa4c7e18d01625a027d961f8ba4bfcdf2d71f0660b60a5273bd36f30b7c652bc20ae6ba05d68914cdb86f41ee0cecc707d84647806d99247e610ebb1ec30ba0c75bf071d0dc3eead9f", @typed={0x14, 0xca, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @nested={0x4, 0x14}, @typed={0x33, 0x5c, 0x0, 0x0, @str='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00'}, @nested={0x4, 0x114}]}, @typed={0x8, 0x35, 0x0, 0x0, @fd=r0}]}, @TIPC_NLA_UNSPEC={0x4b, 0x0, "4640f7469a8f4ecf07ee0b966a66a5e130229680fbd43288d9669c6cd0c512ad7428366bd1411912aece8eea94cb7335aa4fb78037f6bbc4a45fd9ecf1edcdfe668651887da2b8"}, @TIPC_NLA_MEDIA={0x135, 0x5, 0x0, 0x1, [@generic="d5f4cbf7", @generic="1488724468a3ebeb0012c57580f873841ee37d8179f374b018c04105a8d980dee7e5f3b098efc31c8fabeb3f8b1443f717894e4915ef8cb00876888034cb5c42305cb64490bf4bdd42c7ad52413d666f83d7ab5041b3709319ab1b3de6e42e2217e43ae17fe466783aa1bc0ab7b25a15a50ae8dee45844a707a80a2e087410e725f8f8eacdb7c36e442bc59690", @nested={0x9d, 0xe9, 0x0, 0x1, [@generic="824b902d15e408d5b67e629f091af914f52af89056ba39ef2a5050078ac4c8d6ee90f3efc7a588461c8a98cb23b034173689c98014bd1f300a89260e7ce9fa1ca84b41d6efe846c95605ad1a1b780efeaa75ee8f9324f6d93e4f0f33cd2cdf05b389c7c1505757f154944ce30088d12e380d8a439ceea7953bd5107bcf5915efb97780cbd048d1d6e932668a93d16313a870ac5473", @nested={0x4, 0x14c}]}]}]}, 0x33c}, 0x1, 0x0, 0x0, 0x40400c0}, 0x20000804)
connect$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x4003, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
sendmmsg$auto(0x3, 0x0, 0x9a5, 0x47ffff7a)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0)
mmap$auto(0x0, 0x3, 0x1000000000001, 0x8000000008011, 0x3, 0x0)
socket(0x2c, 0x2, 0x3b)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x0)
r1 = socket(0xa, 0x3, 0xff)
connect$auto(r1, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/firmware/acpi/tables/FACS\x00', 0x80000, 0x0)
read$auto(r2, 0x0, 0x24)
ioctl$auto_AUTOFS_IOC_ASKUMOUNT(0xffffffffffffffff, 0x80049370, &(0x7f0000000200)=0x579b)
write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000001680), 0x0)
syz_clone3(0x0, 0x0)
madvise$auto(0x5, 0x7, 0x100000000)
mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000240), 0x2000, 0x0)
io_uring_setup$auto(0x2, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, 0x0)
openat$auto_sync_info_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0xc0042, 0x0)

2m54.850152119s ago: executing program 0 (id=526):
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x60401, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/stat\x00', 0x82a02, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8081, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/filter\x00', 0x2, 0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)

2m54.551289455s ago: executing program 0 (id=529):
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="01012b"], 0x20}, 0x1, 0x0, 0x0, 0x60040440}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x10, 0x2, 0x4)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/advisor_target_scan_time\x00', 0x201, 0x0)
read$auto(r1, 0x0, 0x1f40)
write$auto(r2, 0x0, 0xfdef)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffdcb, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200040c4}, 0x440c5)
lstat$auto(0x0, &(0x7f0000000180)={0x6, 0x43, 0x8, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0xd7, 0x7, 0x8004, 0x5, 0x5, 0x7, 0x4, 0x61, 0x103})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef)

2m54.332325639s ago: executing program 0 (id=531):
r0 = openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/tracing_cpumask\x00', 0x90801, 0x0)
mmap$auto(0x0, 0x0, 0x4000000000df, 0x40eb1, r0, 0x300000000000)
socket(0xa, 0x3, 0x3b)
mmap$auto(0x0, 0x200009, 0x2, 0x48eb1, 0xffffffffffffffff, 0x300000000000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@tipc=@name={0x1e, 0x2, 0x2, {{0x0, 0x1}}}, 0x66)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x6, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
close_range$auto(0x2, r1, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(r1, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x2, 0x0, 0x400}, 0x4}, 0xfff, 0xb07e)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
write$auto(0x3, 0x0, 0xfdef)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7ffd)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
mount$auto(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2005, 0x0)
io_uring_setup$auto(0x1, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)

2m53.551654805s ago: executing program 0 (id=536):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptya0\x00', 0x290141, 0x0)
mmap$auto(0x0, 0x8, 0x3, 0xeb1, r0, 0x4000008000) (async)
pread64$auto(0xffffffffffffffff, 0x0, 0x100000002, 0x100000001) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async, rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (async)
io_uring_setup$auto(0x6, 0x0) (async)
r1 = socket(0xa, 0x1, 0x84)
fcntl$auto_F_SETSIG(r1, 0xa, 0x10)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/domainname\x00', 0x88042, 0x0)
sendfile$auto(r2, r2, 0x0, 0xd021)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
close_range$auto(0x0, 0xffffeffe, 0x2) (async, rerun: 32)
pipe$auto(0x0) (rerun: 32)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) (async, rerun: 32)
setsockopt$auto_SO_TIMESTAMPING_NEW(r1, 0x1, 0x41, &(0x7f0000000100)='/dev/ptya0\x00', 0xfffffffd) (async, rerun: 32)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xffeb}, 0x1, 0x0, 0x5, 0x7}, 0x8}, 0xffffffff, 0xb00) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x10000000eb1, 0x401, 0x8000) (async, rerun: 64)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) (rerun: 64)

2m52.51125006s ago: executing program 0 (id=539):
mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x7)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
madvise$auto(0x110c230000, 0x1, 0x9)
getrandom$auto(0x0, 0x3, 0x80000001)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0) (async)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) (async)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/card0\x00', 0x82100, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000480)='/dev/dri/card0\x00', 0x60200, 0x0)
openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vgem/clients\x00', 0x60440, 0x0) (async)
r1 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vgem/clients\x00', 0x60440, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
exit$auto(0x7)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x1}, 0x7)
read$auto_drm_debugfs_entry_fops_drm_debugfs(r1, &(0x7f00000001c0)=""/155, 0x9b) (async)
read$auto_drm_debugfs_entry_fops_drm_debugfs(r1, &(0x7f00000001c0)=""/155, 0x9b)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84) (async)
socket(0xa, 0x1, 0x84)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e21, @loopback}, 0x54)
socketcall$auto_SYS_ACCEPT(0x5, &(0x7f0000000000)=0x3) (async)
r2 = socketcall$auto_SYS_ACCEPT(0x5, &(0x7f0000000000)=0x3)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'wg0\x00'})
socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'ip6gre0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'ip6gre0\x00'})
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x10008, 0x4000000000df, 0xeb1, r0, 0x1000000008000)
recvmmsg$auto(r4, 0x0, 0x7ffffff9, 0x70da, 0x0)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r2, 0x0, 0x22000000) (async)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r2, 0x0, 0x22000000)
ioctl$auto_IOC_PR_RELEASE(r2, 0x401070ca, &(0x7f0000000000)={0x7, 0x7ff, 0x11})
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)

2m37.221653349s ago: executing program 32 (id=539):
mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x7)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
madvise$auto(0x110c230000, 0x1, 0x9)
getrandom$auto(0x0, 0x3, 0x80000001)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0) (async)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) (async)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/card0\x00', 0x82100, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000480)='/dev/dri/card0\x00', 0x60200, 0x0)
openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vgem/clients\x00', 0x60440, 0x0) (async)
r1 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vgem/clients\x00', 0x60440, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
exit$auto(0x7)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x1}, 0x7)
read$auto_drm_debugfs_entry_fops_drm_debugfs(r1, &(0x7f00000001c0)=""/155, 0x9b) (async)
read$auto_drm_debugfs_entry_fops_drm_debugfs(r1, &(0x7f00000001c0)=""/155, 0x9b)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84) (async)
socket(0xa, 0x1, 0x84)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e21, @loopback}, 0x54)
socketcall$auto_SYS_ACCEPT(0x5, &(0x7f0000000000)=0x3) (async)
r2 = socketcall$auto_SYS_ACCEPT(0x5, &(0x7f0000000000)=0x3)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'wg0\x00'})
socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'ip6gre0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'ip6gre0\x00'})
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x10008, 0x4000000000df, 0xeb1, r0, 0x1000000008000)
recvmmsg$auto(r4, 0x0, 0x7ffffff9, 0x70da, 0x0)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r2, 0x0, 0x22000000) (async)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r2, 0x0, 0x22000000)
ioctl$auto_IOC_PR_RELEASE(r2, 0x401070ca, &(0x7f0000000000)={0x7, 0x7ff, 0x11})
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)

35.87399402s ago: executing program 4 (id=992):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
pread64$auto(0xffffffffffffffff, 0x0, 0x1, 0x401)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0)
read$auto(r0, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(0x3, 0x4b34, 0x3)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x242e40, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x210201, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x4020c0, 0x140)
keyctl$auto(0xf, 0xfffff7ffffffffff, 0x0, 0x8, 0x8)
read$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0)
arch_prctl$auto(0x5001, 0x800)
semctl$auto(0x201, 0x2, 0x13, 0x1)
setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x5, 0x20000284)
init_module$auto(0x0, 0xffff9, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r1, 0x100000001, 0x7ff)
ptrace$auto_PTRACE_PEEKSIGINFO(0x4209, r1, 0x8, 0x6)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/tty6\x00', 0x0, 0x0)
read$auto_tracing_fops_trace(0xffffffffffffffff, &(0x7f0000000280)=""/249, 0xf9)
read$auto_rng_chrdev_ops_core(0xffffffffffffffff, 0x0, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
setgroups$auto(0xe32, 0x0)

35.308438442s ago: executing program 4 (id=997):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
r0 = openat$auto_ftrace_event_id_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/id\x00', 0x1, 0x0)
mmap$auto(0xffffffffffffffff, 0x58, 0xde, 0x15, r0, 0x100000000007ffc)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0x3, 0xae41, 0xffffffffffffffff)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/mode\x00', 0x121102, 0x0)
write$auto(r1, &(0x7f0000000040)='\\\x00', 0x2)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000)

32.934263998s ago: executing program 4 (id=1008):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = setfsuid$auto(0xee00)
r2 = setfsuid$auto(0xee01)
setresuid$auto(r1, r2, r1)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000200)='/proc/modules\x00', 0x389e81, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0xe0182, 0x0)
write$auto(0x3, 0x0, 0x100082)
close_range$auto(0x2, 0x8, 0x0)
setresuid$auto(r2, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x848000000015, 0x805, 0x0)
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x6b)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @loopback}, 0x55)
sendmsg$auto_OVS_DP_CMD_GET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x100000}, 0x1, 0x0, 0x0, 0x50}, 0x0)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mbind$auto(0x1000000000, 0xa, 0x4, 0x0, 0x2000000006, 0x524b)
socket(0x2000000000000021, 0x2, 0x10000000000002)

31.239755472s ago: executing program 4 (id=1013):
r0 = openat$auto_sco_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x242, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002640)='/sys/kernel/debug/tracing/set_event_pid\x00', 0x2002, 0x0)
r1 = openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/buffer_size_kb\x00', 0x40, 0x0)
readv$auto(r1, &(0x7f0000000140)={0x0, 0x3}, 0x1)
r2 = syz_clone(0x20020000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs$namespace(r2, 0x0)
r3 = openat$auto_rts_threshold_ops_(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ieee80211/phy13/rts_threshold\x00', 0x0, 0x0)
r4 = openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/trace_marker\x00', 0x341, 0x0)
write$auto_tracing_mark_fops_trace(r4, 0x0, 0x0)
pread64$auto(r3, 0x0, 0x440, 0xf25)
write$auto(0x3, 0x0, 0xfdef)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'bond0\x00'})
r5 = openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'vlan0\x00'})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'veth1_to_batadv\x00'})
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000900)={&(0x7f0000000240)=ANY=[], 0x560}, 0x1, 0x0, 0x0, 0x40008e1}, 0x80)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x800, 0x0)
select$auto(0x4, 0x0, &(0x7f0000000080)={[0x6, 0xe9e, 0x4, 0x5, 0x1000, 0x100000001, 0xf, 0xf, 0xfffffffffffffffc, 0x40, 0xc4, 0xd59, 0x2, 0xff, 0x1, 0x80080001]}, 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0xa40, 0x0)
ioctl$auto(r5, 0x5521, r1)
openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000380), 0x10000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b)
r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x40440, 0x0)
r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
ioctl$auto(r7, 0x4b3d, 0xffffffffffffffff)
ioctl$auto_SNDCTL_DSP_CHANNELS(r6, 0xc0045006, &(0x7f00000001c0))
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/tcp\x00', 0x400, 0x0)
readv$auto(r6, &(0x7f0000000200)={0x0, 0xfffc}, 0x3)

30.236833395s ago: executing program 4 (id=1021):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000080), r0)
socket(0x10, 0x2, 0x9)
socket(0x2, 0x1, 0x106)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio1\x00', 0x80e42, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001fc, 0x7, 0xd3e, 0x1, 0x9687, 0x100000000000003, 0x95f4da0a, 0x6, 0x3, 0x62, 0x5, 0x5, 0x6d3f, 0x7, 0x6, 0x6]}, 0x0)
socket(0xa, 0x801, 0x84)
socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sda1\x00', 0x48100, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop15\x00', 0x6600, 0x0)
openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
socket(0xa, 0x5, 0x84)
socket(0x2, 0x2, 0x0)
socketpair$auto(0xffffffff, 0x2, 0x63, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0xc8e03, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r2, 0x84, 0x82, 0x0, 0x0)
ioctl$auto(0x3, 0x40106f52, r1)

29.210020921s ago: executing program 4 (id=1025):
r0 = socket(0x18, 0x5, 0x3a)
bind$auto(r0, &(0x7f0000000040)=@generic={0xa, "2c551d000000ff00"}, 0x66) (async)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
io_uring_setup$auto(0x1, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r1 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, <r3=>r2}, 0x6a)
sendto$auto(r1, 0x0, 0xc, 0xfffffff8, &(0x7f0000000440)=@can={0x1d, r3}, 0x36)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async)
mmap$auto(0x4, 0x200000001, 0x4000000000df, 0x40ebe, r0, 0x300004000000) (async)
r4 = socket(0x10, 0x2, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004)
io_uring_setup$auto(0x8, &(0x7f0000000100)={0x158, 0x1, 0x1, 0x10, 0x7, 0x6, r4, [0x31, 0x2, 0x6], {0x9, 0x1, 0x8000, 0x3, 0xb, 0xe, 0x1, 0x742, 0xd3}, {0x7f, 0xd, 0x6, 0x4, 0x0, 0x5, 0xc4, 0x1, 0xffff}})
timer_create$auto(0x3, 0x0, 0x0)
io_uring_setup$auto(0x40000002c55, 0x0) (async)
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
r5 = socket(0xa, 0x801, 0x84) (rerun: 64)
getsockopt$auto(r5, 0x84, 0x80, 0x0, 0x0) (async, rerun: 32)
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0x8001) (async, rerun: 32)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0)
mmap$auto(0x0, 0xf, 0x3, 0xeb1, 0xffffffffffffffff, 0x10000000008000) (async)
r6 = open(&(0x7f0000000200)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06\x00', 0x0, 0x6f)
getdents64$auto(r6, 0x0, 0x18)

14.039000911s ago: executing program 33 (id=1025):
r0 = socket(0x18, 0x5, 0x3a)
bind$auto(r0, &(0x7f0000000040)=@generic={0xa, "2c551d000000ff00"}, 0x66) (async)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
io_uring_setup$auto(0x1, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r1 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, <r3=>r2}, 0x6a)
sendto$auto(r1, 0x0, 0xc, 0xfffffff8, &(0x7f0000000440)=@can={0x1d, r3}, 0x36)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async)
mmap$auto(0x4, 0x200000001, 0x4000000000df, 0x40ebe, r0, 0x300004000000) (async)
r4 = socket(0x10, 0x2, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004)
io_uring_setup$auto(0x8, &(0x7f0000000100)={0x158, 0x1, 0x1, 0x10, 0x7, 0x6, r4, [0x31, 0x2, 0x6], {0x9, 0x1, 0x8000, 0x3, 0xb, 0xe, 0x1, 0x742, 0xd3}, {0x7f, 0xd, 0x6, 0x4, 0x0, 0x5, 0xc4, 0x1, 0xffff}})
timer_create$auto(0x3, 0x0, 0x0)
io_uring_setup$auto(0x40000002c55, 0x0) (async)
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
r5 = socket(0xa, 0x801, 0x84) (rerun: 64)
getsockopt$auto(r5, 0x84, 0x80, 0x0, 0x0) (async, rerun: 32)
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0x8001) (async, rerun: 32)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0)
mmap$auto(0x0, 0xf, 0x3, 0xeb1, 0xffffffffffffffff, 0x10000000008000) (async)
r6 = open(&(0x7f0000000200)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06\x00', 0x0, 0x6f)
getdents64$auto(r6, 0x0, 0x18)

8.314189509s ago: executing program 3 (id=1097):
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
write$auto(r1, &(0x7f00000001c0)='\'+\x00', 0x9)
sendfile$auto(r1, r1, 0x0, 0x400000000006)
close_range$auto(r0, r1, 0x9)

7.306433738s ago: executing program 3 (id=1099):
mmap$auto(0x5, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x3)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000)
write$auto(r0, 0x0, 0x2)
getrlimit$auto(0x3, 0x0)
fdatasync$auto(r0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/035/001\x00', 0x1102, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xc8d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\xc6\x00\x89\te\x8d\a\xfb\\n\x89C:\x84D\x10u\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k', 0x100000a3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ea182, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0x8001, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x10b142, 0x0)
bind$auto(0x3, 0x0, 0x6b)
mmap$auto(0x0, 0x8, 0x404000040000df, 0x40eb1, r1, 0x300000000000)
listmount$auto(0x0, 0x0, 0x0, 0x3)
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x460802, 0x0)
write$auto_console_fops_tty_io(r2, &(0x7f0000000000)="c80d1b5d399b3f", 0xfdef)

5.594606555s ago: executing program 2 (id=1102):
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
mbind$auto(0x1000000000, 0xa, 0x5, 0x0, 0x2000000006, 0x209)
socket(0xa, 0x2, 0x10000000000002)

4.916040444s ago: executing program 2 (id=1103):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
waitid$auto_P_ALL(0x0, 0x1000, &(0x7f0000000100)={@siginfo_0_0={0x101, 0x1, 0x2, @_sigsys={&(0x7f0000000040)="428f7390bb4884a02956a0180e7630e4114f4374a324949ab5874d88caffdfaf6082ae686f47fcaaddf253190e08b29fdb4afceee5a94b5233b2b536b47f589d702a84dc90059434990284fbfae0c32a443e51cef212bf9bf63608f3b95e60c1a950fef5053ab563799094f394e5f8396c5f425ec301b2e2d26c327b0afe6f4a29d9b11d8405", 0x5, 0x9a}}}, 0x6, &(0x7f0000000180)={{0x2}, {0x8, 0x18000}, 0xfffffffffffffffb, 0xfffffffffffffff9, 0xea, 0x8, 0x0, 0x100, 0x2, 0x5, 0xbee, 0x1, 0x6, 0x1, 0x5, 0xfffffffffffffffd})

4.624812684s ago: executing program 2 (id=1104):
r0 = socket(0x2, 0x3, 0xa)
getsockopt$auto(r0, 0x0, 0x30, 0x0, 0x0)

4.601678562s ago: executing program 1 (id=1105):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/jfs/loglevel\x00', 0xc0000, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0x4020009, 0xdf, 0x18, 0xffffffffffffffff, 0x8000)
r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x9, 0x3, 0xffffffffffffffff, 0x100, 0x7fffffff)
mmap$auto(0x0, 0x200006, 0x7, 0x40eb1, r0, 0x300000000000)
mq_open$auto(0x0, 0x62, 0xfffc, 0x0)
r1 = socket(0xa, 0x80803, 0x6)
bind$auto(r1, &(0x7f0000000040)=@generic={0xa, "2c551d000000fe8000"}, 0x1b)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x0, 0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/sctp/rto_beta_exp_divisor\x00', 0xa0081, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r3, 0x0, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r2, 0x4c03, 0x0)
waitid$auto(0x9, 0xffffffffffffffff, 0x0, 0x9, &(0x7f00000001c0)={{0x4, 0x4000000000002}, {0x3}, 0xffffffffffffff74, 0x3ff, 0x4, 0x3, 0x4, 0x3, 0x7c3, 0x6, 0x1, 0x3, 0x9, 0x2, 0x9, 0x200})
r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000000), 0x2802, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r4, 0xfffffff7effffd08, &(0x7f00000001c0))
poll$auto(0x0, 0x6, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x4b0200, 0x0)
r6 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000002c0)={'macsec0\x00', <r7=>0x0})
sendmsg$auto_MACSEC_CMD_ADD_RXSC(r5, &(0x7f0000004100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010026bd7000fcdbdf2501000000180002800c0001003f0000000000000008000200", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r7, @ANYBLOB="de01d8037b2acddd81047d7a71a570c6f51e81249da9f1c0ae16a270ce202f3a3306806776d45235df9d91321465f5a498f376111e0103f5eeda3eca7fa44e0f012e77a5bd8b1d958a5520ded05e0d6302aaf032c7c6ad4e03a8aa8a75bcfa7f23427c45b8948a4589ce73"], 0x34}, 0x1, 0x0, 0x0, 0x20040801}, 0x4000040)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
pread64$auto(0xffffffffffffffff, 0x0, 0x1fffe001, 0xb)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000140), r8)
sendmsg$auto_CTRL_CMD_GETPOLICY(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="01032cb570006aeb340673f3101fec0000000000002d7cb25d0000000000000000a39c3ff72f1252c0e75df4e71928b3e191228e3d257d5bda07cab92395d62b8b5a3f5adb25bf5da628d6b82c068bda87d0291e351bdcfa979cde0c1285812c2399a1c8d710854a376eca0a3f641811fafbe4a5292cc2ae68cb5c0e34e31a1fe48ddb3b0e58827d3583a49c137b8ef442b4fda1b7778d23f9b88c40bfb4188b86844c1ce1fb1a6fd3991aa93b8f411fbe09e43a4caf5709ed6788411e98b3b3106f268aae6b29a47bc17d45dce3c58e4760889cbb32ef9ea6565c"], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/netdevsim/netdevsim3/hwstats/l3/disable_ifindex\x00', 0x1242, 0x0)
r10 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/batadv0/mcast_solicit\x00', 0x2000, 0x0)
read$auto(r10, 0x0, 0x3ff)

4.316700395s ago: executing program 2 (id=1106):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/workqueue/cpumask_isolated\x00', 0x8000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/194, 0xc2)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = io_uring_setup$auto(0xb, 0x0)
r2 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
close_range$auto(0x0, 0xffffeffe, 0x2)
openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, 0x0, 0x181441, 0x0)
socket(0xa, 0x1, 0x84)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000894}, 0x4000000)
bpf$auto(0x8000000, &(0x7f00000001c0)=@test={r3, 0xffff, 0xfffff0b6, 0xffff, 0x84, 0xac5, 0x2, 0x36242398, 0xfffff5b2, 0x3bb, 0x1c00000000000000, 0xffff, 0x6, 0x81, 0x68198}, 0x6)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x0)
rt_tgsigqueueinfo$auto(0x3, 0x96, 0x3, &(0x7f0000000180)={@siginfo_0_0={0x80000000, 0x7, 0x8000, @_kill={0xffffffffffffffff}}})
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000280), r1)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x602, 0x1)
open(&(0x7f0000000000)=':-.\x00', 0x1652c2, 0xe1d2b27bdc14aa98)
r4 = inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(r4, 0x0, 0x8000)
openat$dir(0xffffffffffffff9c, &(0x7f00000004c0)='v#\xd5\xaf>=\x14\xe6%\xf7\x8a\x8d\x9a\xae\x1a\xd6\xa8\xb8\x1d\xf5(\xb0\x1f\xbd\xcbV\n\"\xe3V\xfeP\xceN\xb2\xc32\xaf\xcc\x80\xfa\xf0\xd4\xd9|\xfe\x03y\xd16\x17\x99R\xca\xe5\xf4\xb4T\xfcv\xfc\xe6\x9cv\a\x00\xc2a\x16\xd1\x8a\x80\x90\x87\xa5s\x10\xed\x93\xd4\x15=\xc0\x1f\x0e\xb0\x18v}\x03!\xf0I\xe3}\x90\x9b\x92[\xfe2<7\xd3\x81\x9a~\xcd\r\x19\x9e\x10(5\xfd\x8b\x82\xd4\xc85\xc3\x93t\t\xd0\x9d\xca^n\xf3\xcb>\x1bO\xcej\xe0\xef\xf2\xd7\xc2}\x18\xd9`AO\x95<\x9aH\vu\xae\xd4\xea\x12\xb8\xd1\n\x01\x83r\x85\xbf*\x18\xa7 S:R\x14\x89Z3\x94\x8bP)\x00', 0x40140, 0x12d)

3.827184816s ago: executing program 2 (id=1107):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0xffffffffffffffff, 0x300000000000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/netdevsim/netdevsim3/hwstats/l3/disable_ifindex\x00', 0x1242, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/batadv0/mcast_solicit\x00', 0x2000, 0x0)
read$auto(r1, 0x0, 0x3ff)
write$auto(r0, 0x0, 0x9) (fail_nth: 2)

3.533551224s ago: executing program 3 (id=1108):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b3f", 0xfdef)

2.462076572s ago: executing program 1 (id=1109):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000080), r0)
socket(0x10, 0x2, 0x9)
socket(0x2, 0x1, 0x106)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001fc, 0x7, 0xd3e, 0x1, 0x9687, 0x100000000000003, 0x95f4da0a, 0x6, 0x3, 0x62, 0x5, 0x5, 0x6d3f, 0x7, 0x6, 0x6]}, 0x0)
socket(0xa, 0x801, 0x84)
socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sda1\x00', 0x48100, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop15\x00', 0x6600, 0x0)
openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
socket(0xa, 0x5, 0x84)
socket(0x2, 0x2, 0x0)
socketpair$auto(0xffffffff, 0x2, 0x63, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0xc8e03, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r2, 0x84, 0x82, 0x0, 0x0)
ioctl$auto(0x3, 0x40106f52, r1)

2.448951398s ago: executing program 3 (id=1110):
mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/034/001\x00', 0xa901, 0x0)
r1 = eventfd2$auto(0x7, 0xffffffff)
r2 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_DEL(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x118000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r2, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_KBPS={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB32(r0, 0x802c550a, &(0x7f0000000300)=ANY=[@ANYBLOB="020000060000e6ff040000000100400008"])
ioctl$auto(r0, 0x4008550c, r0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/net/bond0/bonding/mii_status\x00', 0x80000, 0x0)
setfsuid$auto(0xee00)
fchown$auto(r3, 0x0, 0xee01)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x0, 0x10000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x5)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)

1.801146215s ago: executing program 1 (id=1111):
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x8, 0xf, 0x3, 0xeb1, 0xfffffffffffffffa, 0x20008000)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000680)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82902, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x404000, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x0)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x3, 0x0)
removexattr$auto(&(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000380)='.\x8a}\xca\x01^\x00')
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x3a)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x0)
io_uring_setup$auto(0x6, 0x0)
socketpair$auto(0xc6, 0x3, 0xfff, &(0x7f0000000000)=0x1)
close_range$auto(0x2, 0x8, 0x0)
r4 = socket(0x11, 0x3, 0x9)
sendmsg$auto_CIFS_GENL_CMD_SWN_NOTIFY(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000340)={&(0x7f0000000200)={0x13c, 0x0, 0x800, 0x70bd26, 0x25dfdbfe, {}, [@CIFS_GENL_ATTR_SWN_SHARE_NAME_NOTIFY={0x4}, @CIFS_GENL_ATTR_SWN_SHARE_NAME_NOTIFY={0x4}, @CIFS_GENL_ATTR_SWN_NOTIFICATION_TYPE={0x8, 0xc, 0xfffffff9}, @CIFS_GENL_ATTR_SWN_IP={0x84, 0x4, @pppol2tpin6={0x18, 0x1, {0x0, r2, 0x0, 0x4, 0x2, 0x4, {0xa, 0x4e20, 0xc, @local, 0x8}}}}, @CIFS_GENL_ATTR_SWN_IP={0x84, 0x4, @sco}, @CIFS_GENL_ATTR_SWN_PASSWORD={0x5, 0xa, '^'}, @CIFS_GENL_ATTR_SWN_RESOURCE_STATE={0x8, 0xd, 0x8}]}, 0x13c}, 0x1, 0x0, 0x0, 0x24001}, 0x20000010)
close_range$auto(r0, r4, 0x0)
r5 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r5, 0x107, 0x14, 0x0, 0x4)
sendmmsg$auto(r1, &(0x7f0000000400)={{&(0x7f0000000000), 0x205aa, &(0x7f0000000100)={0x0, 0x4b}, 0x1, 0x0, 0x5, 0x1060}, 0x7}, 0x7, 0x100)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r3)

1.650908915s ago: executing program 5 (id=1079):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x2, 0x0) (async)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) (async)
sendmmsg$auto(0x3, 0x0, 0xffffffff, 0x406)

1.612000463s ago: executing program 1 (id=1112):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptyc1\x00', 0x0, 0x0)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/kvm/mmu_pde_zapped\x00', 0x1, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv6/conf/gretap0/accept_ra_min_lft\x00', 0x20180, 0x0)
read$auto(r0, 0x0, 0x6)
write$auto(0x3, 0x0, 0x1)
mmap$auto(0x0, 0x428, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xffffeffe, 0x2)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x181902, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x1e, &(0x7f0000000180), 0x1)

1.497419479s ago: executing program 3 (id=1113):
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
write$auto(r1, &(0x7f00000001c0)='\'+\x00', 0x9)
sendfile$auto(r1, r1, 0x0, 0x400000000006)
close_range$auto(r0, r1, 0x9)

1.367061233s ago: executing program 5 (id=1114):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
pread64$auto(0xffffffffffffffff, 0x0, 0x1, 0x401)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0)
read$auto(r0, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(0x3, 0x4b34, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x210201, 0x0)
unshare$auto(0x40000080)
open(&(0x7f00000000c0)='./file0\x00', 0x4020c0, 0x140)
keyctl$auto(0xf, 0xfffff7ffffffffff, 0x0, 0x8, 0x8)
read$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0)
arch_prctl$auto(0x5001, 0x800)
semctl$auto(0x201, 0x2, 0x13, 0x1)
setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x5, 0x20000284)
init_module$auto(0x0, 0xffff9, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r1, 0x100000001, 0x7ff)
ptrace$auto_PTRACE_PEEKSIGINFO(0x4209, r1, 0x8, 0x6)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/tty6\x00', 0x0, 0x0)
read$auto_tracing_fops_trace(0xffffffffffffffff, &(0x7f0000000280)=""/249, 0xf9)
read$auto_rng_chrdev_ops_core(0xffffffffffffffff, 0x0, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
setgroups$auto(0xe32, 0x0)

1.096861123s ago: executing program 2 (id=1115):
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x10182, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video67\x00', 0x81400, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x4, &(0x7f0000000180)={0x0, 0xfe8}, 0x3, 0x0, 0x7, 0x6}, 0x4}, 0x2, 0x7)
fcntl$auto_F_SETFL(r0, 0x4, 0x1)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdd, 0x9b72, 0x2, 0x20000000008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x81004000000008dd, 0x1000000eb1, r1, 0x0)
unshare$auto(0x40000080)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000f80)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/hid\x00', 0x0, 0x0)
pread64$auto(r2, 0x0, 0x3fc, 0x4000000000000006)
readahead$auto(r1, 0x2, 0x10001)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x200200, 0x0)
socket(0x10, 0x2, 0x0)
r3 = socket(0xa, 0x2, 0x88)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$auto(0x0, &(0x7f0000000200)=@link_update={r3, @new_prog_fd=0x4, 0x8, @old_map_fd=r3}, 0xa3)
mbind$auto(0x1000000000, 0xa, 0x4, 0x0, 0x2000000006, 0x524b)
socket(0x2000000000000021, 0x2, 0x10000000000002)

872.927828ms ago: executing program 1 (id=1116):
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0x1)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
writev$auto(0x3, &(0x7f00000000c0)={0x0, 0x8}, 0x80000000000000e)
r1 = timerfd_create$auto(0x9, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14)
connect$auto(0x4, 0x0, 0x10)
r3 = setfsuid$auto(0xee01)
setresuid$auto(0x0, r3, 0x0)
timerfd_settime$auto(r1, 0x0, &(0x7f0000000000)={{0x10, 0x3ff}, {0x10, 0x9}}, 0x0)
r4 = getpid()
process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={0x0, 0xffffffff}, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sched_setattr$auto(0x0, &(0x7f00000002c0)={0x1000, 0x50, 0x1d, 0xa9, 0x0, 0xc, 0x9, 0x9, 0xb, 0x6}, 0x0)

548.118017ms ago: executing program 3 (id=1117):
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
write$auto(r1, &(0x7f00000001c0)='\'+\x00', 0x9)
sendfile$auto(r1, r1, 0x0, 0x400000000006)
close_range$auto(r0, r1, 0x9)

0s ago: executing program 1 (id=1118):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000080), r0)
socket(0x10, 0x2, 0x9)
socket(0x2, 0x1, 0x106)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001fc, 0x7, 0xd3e, 0x1, 0x9687, 0x100000000000003, 0x95f4da0a, 0x6, 0x3, 0x62, 0x5, 0x5, 0x6d3f, 0x7, 0x6, 0x6]}, 0x0)
socket(0xa, 0x801, 0x84)
socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sda1\x00', 0x48100, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop15\x00', 0x6600, 0x0)
openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
socket(0xa, 0x5, 0x84)
socket(0x2, 0x2, 0x0)
socketpair$auto(0xffffffff, 0x2, 0x63, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0xc8e03, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r2, 0x84, 0x82, 0x0, 0x0)
ioctl$auto(0x3, 0x40106f52, r1)

kernel console output (not intermixed with test programs):

get_signal+0x1ec7/0x21e0
[  209.733660][ T7947]  ? __pfx_get_signal+0x10/0x10
[  209.733693][ T7947]  ? do_futex+0x192/0x350
[  209.733727][ T7947]  arch_do_signal_or_restart+0x91/0x770
[  209.733759][ T7947]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  209.733797][ T7947]  ? __pfx___x64_sys_futex+0x10/0x10
[  209.733835][ T7947]  exit_to_user_mode_loop+0x86/0x4a0
[  209.733870][ T7947]  do_syscall_64+0x668/0xf80
[  209.733892][ T7947]  ? clear_bhb_loop+0x40/0x90
[  209.733923][ T7947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.733947][ T7947] RIP: 0033:0x7f64c139c799
[  209.733965][ T7947] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  209.733987][ T7947] RSP: 002b:00007f64c22390e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  209.734008][ T7947] RAX: fffffffffffffe00 RBX: 00007f64c1615fa8 RCX: 00007f64c139c799
[  209.734023][ T7947] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f64c1615fa8
[  209.734037][ T7947] RBP: 00007f64c1615fa0 R08: 0000000000000000 R09: 0000000000000000
[  209.734050][ T7947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  209.734063][ T7947] R13: 00007f64c1616038 R14: 00007fff154be990 R15: 00007fff154bea78
[  209.734092][ T7947]  </TASK>
[  210.547990][ T7954] HfR: entered promiscuous mode
[  214.556418][ T7990] FAULT_INJECTION: forcing a failure.
[  214.556418][ T7990] name failslab, interval 1, probability 0, space 0, times 0
[  214.634027][ T7990] CPU: 0 UID: 0 PID: 7990 Comm: syz.3.520 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  214.634064][ T7990] Tainted: [L]=SOFTLOCKUP
[  214.634072][ T7990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  214.634086][ T7990] Call Trace:
[  214.634099][ T7990]  <TASK>
[  214.634108][ T7990]  dump_stack_lvl+0x100/0x190
[  214.634148][ T7990]  should_fail_ex.cold+0x5/0xa
[  214.634177][ T7990]  should_failslab+0xc2/0x120
[  214.634204][ T7990]  __kmalloc_cache_noprof+0x7a/0x6f0
[  214.634242][ T7990]  ? sctp_add_bind_addr+0xae/0x3e0
[  214.634283][ T7990]  sctp_add_bind_addr+0xae/0x3e0
[  214.634320][ T7990]  sctp_copy_local_addr_list+0x349/0x550
[  214.634363][ T7990]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  214.634405][ T7990]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  214.634430][ T7990]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  214.634457][ T7990]  sctp_bind_addr_copy+0xe0/0x530
[  214.634498][ T7990]  sctp_connect_new_asoc+0x1c9/0x770
[  214.634529][ T7990]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  214.634556][ T7990]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  214.634580][ T7990]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  214.634609][ T7990]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  214.634636][ T7990]  sctp_sendmsg+0x171a/0x22b0
[  214.634671][ T7990]  ? __pfx_sctp_sendmsg+0x10/0x10
[  214.634705][ T7990]  ? aa_sk_perm+0x309/0xaa0
[  214.634774][ T7990]  ? __pfx_aa_sk_perm+0x10/0x10
[  214.634802][ T7990]  ? __might_fault+0xc5/0x140
[  214.634844][ T7990]  ? __pfx_sctp_sendmsg+0x10/0x10
[  214.634874][ T7990]  inet_sendmsg+0x11c/0x140
[  214.634905][ T7990]  __sys_sendto+0x446/0x4b0
[  214.634938][ T7990]  ? __pfx_inet_sendmsg+0x10/0x10
[  214.634967][ T7990]  ? __pfx___sys_sendto+0x10/0x10
[  214.635024][ T7990]  ? ksys_write+0x1ac/0x250
[  214.635046][ T7990]  ? __pfx_ksys_write+0x10/0x10
[  214.635072][ T7990]  __x64_sys_sendto+0xe0/0x1c0
[  214.635105][ T7990]  ? do_syscall_64+0x95/0xf80
[  214.635127][ T7990]  ? lockdep_hardirqs_on+0x78/0x100
[  214.635164][ T7990]  do_syscall_64+0x106/0xf80
[  214.635184][ T7990]  ? clear_bhb_loop+0x40/0x90
[  214.635214][ T7990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.635243][ T7990] RIP: 0033:0x7ff40359c799
[  214.635262][ T7990] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  214.635284][ T7990] RSP: 002b:00007ff404439028 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  214.635306][ T7990] RAX: ffffffffffffffda RBX: 00007ff403815fa0 RCX: 00007ff40359c799
[  214.635321][ T7990] RDX: 000000000002000f RSI: 0000000000000000 RDI: 0000000000000003
[  214.635334][ T7990] RBP: 00007ff404439090 R08: 0000200000000000 R09: 000000000000001c
[  214.635348][ T7990] R10: 0000000000000101 R11: 0000000000000246 R12: 0000000000000001
[  214.635361][ T7990] R13: 00007ff403816038 R14: 00007ff403815fa0 R15: 00007ffcabd6fe28
[  214.635390][ T7990]  </TASK>
[  217.344789][ T8039] FAULT_INJECTION: forcing a failure.
[  217.344789][ T8039] name fail_futex, interval 1, probability 0, space 0, times 0
[  217.428784][ T8039] CPU: 0 UID: 0 PID: 8039 Comm: syz.3.535 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  217.428820][ T8039] Tainted: [L]=SOFTLOCKUP
[  217.428828][ T8039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  217.428842][ T8039] Call Trace:
[  217.428849][ T8039]  <TASK>
[  217.428857][ T8039]  dump_stack_lvl+0x100/0x190
[  217.428897][ T8039]  should_fail_ex.cold+0x5/0xa
[  217.428925][ T8039]  get_futex_key+0x1d2/0x1620
[  217.428959][ T8039]  ? __pfx_get_futex_key+0x10/0x10
[  217.428986][ T8039]  ? lock_acquire+0x1cf/0x380
[  217.429027][ T8039]  futex_wake+0xea/0x530
[  217.429066][ T8039]  ? __pfx_futex_wake+0x10/0x10
[  217.429103][ T8039]  ? exit_mm_release+0x19/0x30
[  217.429150][ T8039]  do_futex+0x32b/0x350
[  217.429181][ T8039]  ? __pfx_do_futex+0x10/0x10
[  217.429210][ T8039]  ? __might_fault+0xc5/0x140
[  217.429252][ T8039]  mm_release+0x24a/0x2f0
[  217.429277][ T8039]  do_exit+0x704/0x2b60
[  217.429313][ T8039]  ? __pfx_do_exit+0x10/0x10
[  217.429344][ T8039]  ? do_raw_spin_lock+0x128/0x260
[  217.429379][ T8039]  ? find_held_lock+0x2b/0x80
[  217.429400][ T8039]  ? get_signal+0x7e0/0x21e0
[  217.429428][ T8039]  do_group_exit+0xd5/0x2a0
[  217.429462][ T8039]  get_signal+0x1ec7/0x21e0
[  217.429498][ T8039]  ? __pfx_get_signal+0x10/0x10
[  217.429524][ T8039]  ? do_futex+0x192/0x350
[  217.429558][ T8039]  arch_do_signal_or_restart+0x91/0x770
[  217.429590][ T8039]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  217.429627][ T8039]  ? __pfx___x64_sys_futex+0x10/0x10
[  217.429665][ T8039]  exit_to_user_mode_loop+0x86/0x4a0
[  217.429700][ T8039]  do_syscall_64+0x668/0xf80
[  217.429721][ T8039]  ? clear_bhb_loop+0x40/0x90
[  217.429750][ T8039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.429774][ T8039] RIP: 0033:0x7ff40359c799
[  217.429793][ T8039] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  217.429814][ T8039] RSP: 002b:00007ff4044390e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  217.429835][ T8039] RAX: fffffffffffffe00 RBX: 00007ff403815fa8 RCX: 00007ff40359c799
[  217.429851][ T8039] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff403815fa8
[  217.429865][ T8039] RBP: 00007ff403815fa0 R08: 0000000000000000 R09: 0000000000000000
[  217.429879][ T8039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  217.429892][ T8039] R13: 00007ff403816038 R14: 00007ffcabd6fd40 R15: 00007ffcabd6fe28
[  217.429939][ T8039]  </TASK>
[  217.678714][ T8043] netlink: 'syz.1.534': attribute type 2 has an invalid length.
[  218.320612][ T8067] mmap: syz.0.539 (8067) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  220.047315][ T8097] : Can't lookup blockdev
[  221.248313][ T8137] FAULT_INJECTION: forcing a failure.
[  221.248313][ T8137] name fail_futex, interval 1, probability 0, space 0, times 0
[  221.324574][ T8137] CPU: 0 UID: 0 PID: 8137 Comm: syz.2.550 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  221.324610][ T8137] Tainted: [L]=SOFTLOCKUP
[  221.324618][ T8137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  221.324631][ T8137] Call Trace:
[  221.324639][ T8137]  <TASK>
[  221.324647][ T8137]  dump_stack_lvl+0x100/0x190
[  221.324688][ T8137]  should_fail_ex.cold+0x5/0xa
[  221.324716][ T8137]  get_futex_key+0x1d2/0x1620
[  221.324749][ T8137]  ? __pfx_get_futex_key+0x10/0x10
[  221.324775][ T8137]  ? lock_acquire+0x1cf/0x380
[  221.324816][ T8137]  futex_wake+0xea/0x530
[  221.324861][ T8137]  ? __pfx_futex_wake+0x10/0x10
[  221.324898][ T8137]  ? exit_mm_release+0x19/0x30
[  221.324934][ T8137]  do_futex+0x32b/0x350
[  221.324966][ T8137]  ? __pfx_do_futex+0x10/0x10
[  221.324995][ T8137]  ? __might_fault+0xc5/0x140
[  221.325042][ T8137]  mm_release+0x24a/0x2f0
[  221.325066][ T8137]  do_exit+0x704/0x2b60
[  221.325102][ T8137]  ? __pfx_do_exit+0x10/0x10
[  221.325133][ T8137]  ? do_raw_spin_lock+0x128/0x260
[  221.325168][ T8137]  ? find_held_lock+0x2b/0x80
[  221.325189][ T8137]  ? get_signal+0x7e0/0x21e0
[  221.325217][ T8137]  do_group_exit+0xd5/0x2a0
[  221.325251][ T8137]  get_signal+0x1ec7/0x21e0
[  221.325286][ T8137]  ? __pfx_get_signal+0x10/0x10
[  221.325312][ T8137]  ? do_futex+0x192/0x350
[  221.325346][ T8137]  arch_do_signal_or_restart+0x91/0x770
[  221.325378][ T8137]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  221.325416][ T8137]  ? __pfx___x64_sys_futex+0x10/0x10
[  221.325453][ T8137]  exit_to_user_mode_loop+0x86/0x4a0
[  221.325489][ T8137]  do_syscall_64+0x668/0xf80
[  221.325510][ T8137]  ? clear_bhb_loop+0x40/0x90
[  221.325540][ T8137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.325564][ T8137] RIP: 0033:0x7f5a1619c799
[  221.325582][ T8137] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  221.325604][ T8137] RSP: 002b:00007f5a16fba0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  221.325625][ T8137] RAX: fffffffffffffe00 RBX: 00007f5a16415fa8 RCX: 00007f5a1619c799
[  221.325640][ T8137] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5a16415fa8
[  221.325654][ T8137] RBP: 00007f5a16415fa0 R08: 0000000000000000 R09: 0000000000000000
[  221.325667][ T8137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  221.325681][ T8137] R13: 00007f5a16416038 R14: 00007ffcacd6b890 R15: 00007ffcacd6b978
[  221.325710][ T8137]  </TASK>
[  224.444803][ T8180] Invalid ELF header magic: != ELF
[  225.873528][ T8190] futex_wake_op: syz.1.562 tries to shift op by -2048; fix this program
[  225.953682][ T8190] futex_wake_op: syz.1.562 tries to shift op by -2048; fix this program
[  226.237710][ T8190] netlink: 8 bytes leftover after parsing attributes in process `syz.1.562'.
[  228.114828][ T8214] syz.1.568: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  228.246139][ T5838] Bluetooth: hci0: ACL packet too small
[  228.304893][ T8214] CPU: 0 UID: 0 PID: 8214 Comm: syz.1.568 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  228.304933][ T8214] Tainted: [L]=SOFTLOCKUP
[  228.304941][ T8214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  228.304957][ T8214] Call Trace:
[  228.304965][ T8214]  <TASK>
[  228.304973][ T8214]  dump_stack_lvl+0x100/0x190
[  228.305017][ T8214]  warn_alloc.cold+0x95/0x1c1
[  228.305060][ T8214]  ? __pfx_warn_alloc+0x10/0x10
[  228.305101][ T8214]  ? __lock_acquire+0xd73/0x2630
[  228.305150][ T8214]  __vmalloc_node_range_noprof+0x1252/0x1530
[  228.305187][ T8214]  ? rcu_is_watching+0x12/0xc0
[  228.305227][ T8214]  ? trace_contention_end+0x140/0x180
[  228.305263][ T8214]  ? dvb_dvr_do_ioctl+0x15d/0x270
[  228.305293][ T8214]  ? dvb_dvr_do_ioctl+0x7e/0x270
[  228.305319][ T8214]  ? tomoyo_path_number_perm+0x28f/0x580
[  228.305349][ T8214]  ? tomoyo_path_number_perm+0x28f/0x580
[  228.305381][ T8214]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  228.305414][ T8214]  ? __pfx___mutex_lock+0x10/0x10
[  228.305444][ T8214]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  228.305474][ T8214]  ? futex_wait+0x125/0x380
[  228.305517][ T8214]  ? dvb_dvr_do_ioctl+0x15d/0x270
[  228.305543][ T8214]  __vmalloc_node_noprof+0xad/0xf0
[  228.305583][ T8214]  ? dvb_dvr_do_ioctl+0x15d/0x270
[  228.305614][ T8214]  dvb_dvr_do_ioctl+0x15d/0x270
[  228.305646][ T8214]  dvb_usercopy+0x167/0x340
[  228.305672][ T8214]  ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[  228.305701][ T8214]  ? __pfx_dvb_usercopy+0x10/0x10
[  228.305738][ T8214]  ? __fget_files+0x21f/0x3d0
[  228.305769][ T8214]  dvb_dvr_ioctl+0x29/0x40
[  228.305794][ T8214]  ? __pfx_dvb_dvr_ioctl+0x10/0x10
[  228.305821][ T8214]  __x64_sys_ioctl+0x18e/0x210
[  228.305861][ T8214]  do_syscall_64+0x106/0xf80
[  228.305883][ T8214]  ? clear_bhb_loop+0x40/0x90
[  228.305913][ T8214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.305939][ T8214] RIP: 0033:0x7f127099c799
[  228.305958][ T8214] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  228.305982][ T8214] RSP: 002b:00007f12718a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  228.306005][ T8214] RAX: ffffffffffffffda RBX: 00007f1270c15fa0 RCX: 00007f127099c799
[  228.306021][ T8214] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000007
[  228.306036][ T8214] RBP: 00007f1270a32c99 R08: 0000000000000000 R09: 0000000000000000
[  228.306051][ T8214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  228.306065][ T8214] R13: 00007f1270c16038 R14: 00007f1270c15fa0 R15: 00007ffe0d0557f8
[  228.306096][ T8214]  </TASK>
[  228.306117][ T8214] Mem-Info:
[  228.717371][ T8216] bridge0: port 3(batadv0) entered blocking state
[  228.822505][ T8216] bridge0: port 3(batadv0) entered disabled state
[  228.928096][ T8216] batadv0: entered allmulticast mode
[  229.045285][ T8216] batadv0: entered promiscuous mode
[  229.051181][ T8216] bridge0: port 3(batadv0) entered blocking state
[  229.057918][ T8216] bridge0: port 3(batadv0) entered forwarding state
[  229.173867][ T7555] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  229.183724][ T7555] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  229.993473][ T8222] FAULT_INJECTION: forcing a failure.
[  229.993473][ T8222] name failslab, interval 1, probability 0, space 0, times 0
[  230.089156][ T8222] CPU: 0 UID: 0 PID: 8222 Comm: syz.2.569 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  230.089196][ T8222] Tainted: [L]=SOFTLOCKUP
[  230.089209][ T8222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  230.089223][ T8222] Call Trace:
[  230.089231][ T8222]  <TASK>
[  230.089240][ T8222]  dump_stack_lvl+0x100/0x190
[  230.089283][ T8222]  should_fail_ex.cold+0x5/0xa
[  230.089313][ T8222]  should_failslab+0xc2/0x120
[  230.089341][ T8222]  __kmalloc_node_noprof+0xe6/0x850
[  230.089380][ T8222]  ? get_callchain_buffers+0x1e5/0x380
[  230.089419][ T8222]  get_callchain_buffers+0x1e5/0x380
[  230.089451][ T8222]  ? security_capable+0x80/0x260
[  230.089494][ T8222]  stack_map_alloc+0x316/0x610
[  230.089525][ T8222]  ? __pfx_stack_map_mem_usage+0x10/0x10
[  230.089555][ T8222]  map_create+0x84e/0x2ba0
[  230.089578][ T8222]  ? futex_unqueue+0x13d/0x2c0
[  230.089612][ T8222]  ? __futex_wait+0x256/0x300
[  230.089658][ T8222]  ? __pfx_map_create+0x10/0x10
[  230.089681][ T8222]  ? __might_fault+0xc5/0x140
[  230.089717][ T8222]  ? __might_fault+0xc5/0x140
[  230.089766][ T8222]  __sys_bpf+0x2091/0x4b90
[  230.089799][ T8222]  ? __pfx___sys_bpf+0x10/0x10
[  230.089828][ T8222]  ? __pfx_futex_wait+0x10/0x10
[  230.089874][ T8222]  ? ksys_write+0x190/0x250
[  230.089905][ T8222]  ? do_futex+0x192/0x350
[  230.089956][ T8222]  ? xfd_validate_state+0x129/0x190
[  230.090001][ T8222]  __x64_sys_bpf+0x7b/0xc0
[  230.090031][ T8222]  ? lockdep_hardirqs_on+0x78/0x100
[  230.090072][ T8222]  do_syscall_64+0x106/0xf80
[  230.090094][ T8222]  ? clear_bhb_loop+0x40/0x90
[  230.090127][ T8222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.090153][ T8222] RIP: 0033:0x7f5a1619c799
[  230.090172][ T8222] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  230.090205][ T8222] RSP: 002b:00007f5a16fba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  230.090228][ T8222] RAX: ffffffffffffffda RBX: 00007f5a16415fa0 RCX: 00007f5a1619c799
[  230.090244][ T8222] RDX: 00000000000006f4 RSI: 0000200000000580 RDI: 0000000000000000
[  230.090259][ T8222] RBP: 00007f5a16232c99 R08: 0000000000000000 R09: 0000000000000000
[  230.090274][ T8222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  230.090288][ T8222] R13: 00007f5a16416038 R14: 00007f5a16415fa0 R15: 00007ffcacd6b978
[  230.090319][ T8222]  </TASK>
[  231.196806][ T8224] Invalid ELF header magic: != ELF
[  231.262587][ T8214] active_anon:4257 inactive_anon:34847 isolated_anon:0
[  231.262587][ T8214]  active_file:21466 inactive_file:38774 isolated_file:0
[  231.262587][ T8214]  unevictable:768 dirty:346 writeback:104
[  231.262587][ T8214]  slab_reclaimable:11082 slab_unreclaimable:91932
[  231.262587][ T8214]  mapped:36832 shmem:22270 pagetables:1293
[  231.262587][ T8214]  sec_pagetables:0 bounce:0
[  231.262587][ T8214]  kernel_misc_reclaimable:0
[  231.262587][ T8214]  free:1285786 free_pcp:21614 free_cma:0
[  231.789939][ T8214] Node 0 active_anon:17028kB inactive_anon:120512kB active_file:85856kB inactive_file:154904kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:136512kB dirty:1592kB writeback:0kB shmem:72880kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12384kB pagetables:5060kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  232.112389][ T8214] Node 1 active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:192kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:164kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  232.394946][ T8214] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  232.687189][ T8214] lowmem_reserve[]: 0 2477 2478 2478 2478
[  232.732393][ T8214] Node 0 DMA32 free:1218320kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:17028kB inactive_anon:98564kB active_file:90044kB inactive_file:160964kB unevictable:1536kB writepending:12012kB zspages:0kB present:3129332kB managed:2537300kB mlocked:0kB bounce:0kB free_pcp:78668kB local_pcp:78668kB free_cma:0kB
[  233.002322][ T8214] lowmem_reserve[]: 0 0 1 1 1
[  233.031802][ T8214] Node 0 Normal free:4kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1056kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  233.224888][ T8214] lowmem_reserve[]: 0 0 0 0 0
[  233.263531][ T8214] Node 1 Normal free:3943220kB boost:0kB min:55832kB low:69788kB high:83744kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:192kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  233.384194][ T8214] lowmem_reserve[]: 0 0 0 0 0
[  233.399351][ T8214] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  233.442368][ T8214] Node 0 DMA32: 7287*4kB (UM) 2719*8kB (UM) 1510*16kB (UM) 835*32kB (UME) 433*64kB (UM) 222*128kB (UME) 135*256kB (UM) 93*512kB (UM) 41*1024kB (UME) 2*2048kB (UE) 229*4096kB (M) = 1224148kB
[  233.522715][ T8214] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  233.573740][ T8214] Node 1 Normal: 1*4kB (M) 4*8kB (UM) 15*16kB (UM) 15*32kB (UM) 7*64kB (UM) 5*128kB (UM) 2*256kB (M) 3*512kB (UM) 1*1024kB (M) 1*2048kB (U) 961*4096kB (M) = 3943220kB
[  233.652722][ T8214] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  233.714243][ T8214] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  233.762385][ T8214] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  233.802772][ T8214] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  233.849565][ T8214] 75151 total pagecache pages
[  233.888987][ T8214] 7 pages in swap cache
[  233.918457][ T8214] Free swap  = 124996kB
[  233.952775][ T8214] Total swap = 124996kB
[  233.957277][ T8214] 2097051 pages RAM
[  233.977370][ T8214] 0 pages HighMem/MovableOnly
[  233.997608][ T8214] 430847 pages reserved
[  234.009388][ T8214] 0 pages cma reserved
[  234.121081][   T51] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  234.130118][   T51] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  234.138316][   T51] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  234.146484][   T51] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  234.164948][   T51] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  235.007591][ T8245] chnl_net:caif_netlink_parms(): no params data found
[  235.464856][ T8245] bridge0: port 1(bridge_slave_0) entered blocking state
[  235.484681][ T8245] bridge0: port 1(bridge_slave_0) entered disabled state
[  235.491951][ T8245] bridge_slave_0: entered allmulticast mode
[  235.582443][ T8245] bridge_slave_0: entered promiscuous mode
[  235.621401][ T8245] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.665651][ T8245] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.700401][ T8245] bridge_slave_1: entered allmulticast mode
[  235.757945][ T8245] bridge_slave_1: entered promiscuous mode
[  235.957826][ T8245] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  236.003955][   T29] audit: type=1800 audit(1774668149.139:5): pid=8273 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.582" name="dbroot" dev="configfs" ino=18870 res=0 errno=0
[  236.040605][ T8245] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  236.262412][   T51] Bluetooth: hci4: command tx timeout
[  236.269954][ T8245] team0: Port device team_slave_0 added
[  236.325056][ T8245] team0: Port device team_slave_1 added
[  236.489912][ T8245] batman_adv: batadv0: Adding interface: batadv_slave_0
[  236.540647][ T8245] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  236.672287][ T8245] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  236.751657][ T8245] batman_adv: batadv0: Adding interface: batadv_slave_1
[  236.782386][ T8245] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  236.915492][ T8245] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  237.258309][ T8245] hsr_slave_0: entered promiscuous mode
[  237.304383][ T8245] hsr_slave_1: entered promiscuous mode
[  237.310659][ T8245] debugfs: 'hsr0' already exists in 'hsr'
[  237.362307][ T8245] Cannot create hsr debugfs directory
[  237.613784][ T8287] FAULT_INJECTION: forcing a failure.
[  237.613784][ T8287] name failslab, interval 1, probability 0, space 0, times 0
[  237.694746][ T8287] CPU: 0 UID: 0 PID: 8287 Comm: syz.2.586 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  237.694785][ T8287] Tainted: [L]=SOFTLOCKUP
[  237.694794][ T8287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  237.694809][ T8287] Call Trace:
[  237.694816][ T8287]  <TASK>
[  237.694826][ T8287]  dump_stack_lvl+0x100/0x190
[  237.694869][ T8287]  should_fail_ex.cold+0x5/0xa
[  237.694900][ T8287]  should_failslab+0xc2/0x120
[  237.694928][ T8287]  __kmalloc_node_noprof+0xe6/0x850
[  237.694967][ T8287]  ? get_callchain_buffers+0x1e5/0x380
[  237.695006][ T8287]  get_callchain_buffers+0x1e5/0x380
[  237.695038][ T8287]  ? security_capable+0x80/0x260
[  237.695082][ T8287]  stack_map_alloc+0x316/0x610
[  237.695113][ T8287]  ? __pfx_stack_map_mem_usage+0x10/0x10
[  237.695143][ T8287]  map_create+0x84e/0x2ba0
[  237.695166][ T8287]  ? futex_unqueue+0x13d/0x2c0
[  237.695199][ T8287]  ? __futex_wait+0x256/0x300
[  237.695245][ T8287]  ? __pfx_map_create+0x10/0x10
[  237.695268][ T8287]  ? __might_fault+0xc5/0x140
[  237.695304][ T8287]  ? __might_fault+0xc5/0x140
[  237.695351][ T8287]  __sys_bpf+0x2091/0x4b90
[  237.695385][ T8287]  ? __pfx___sys_bpf+0x10/0x10
[  237.695414][ T8287]  ? __pfx_futex_wait+0x10/0x10
[  237.695460][ T8287]  ? ksys_write+0x190/0x250
[  237.695490][ T8287]  ? do_futex+0x192/0x350
[  237.695540][ T8287]  ? xfd_validate_state+0x129/0x190
[  237.695592][ T8287]  __x64_sys_bpf+0x7b/0xc0
[  237.695622][ T8287]  ? lockdep_hardirqs_on+0x78/0x100
[  237.695664][ T8287]  do_syscall_64+0x106/0xf80
[  237.695686][ T8287]  ? clear_bhb_loop+0x40/0x90
[  237.695716][ T8287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.695745][ T8287] RIP: 0033:0x7f5a1619c799
[  237.695765][ T8287] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  237.695788][ T8287] RSP: 002b:00007f5a16fba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  237.695811][ T8287] RAX: ffffffffffffffda RBX: 00007f5a16415fa0 RCX: 00007f5a1619c799
[  237.695828][ T8287] RDX: 00000000000006f4 RSI: 0000200000000580 RDI: 0000000000000000
[  237.695842][ T8287] RBP: 00007f5a16232c99 R08: 0000000000000000 R09: 0000000000000000
[  237.695857][ T8287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  237.695871][ T8287] R13: 00007f5a16416038 R14: 00007f5a16415fa0 R15: 00007ffcacd6b978
[  237.695903][ T8287]  </TASK>
[  238.402289][   T51] Bluetooth: hci4: command tx timeout
[  239.406583][ T8245] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  239.467769][ T8245] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  239.643757][ T8245] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  239.700000][ T8245] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  239.796639][ T8300] bridge0: port 3(batadv0) entered blocking state
[  239.872444][ T8300] bridge0: port 3(batadv0) entered disabled state
[  239.959990][ T8300] batadv0: entered allmulticast mode
[  240.024019][ T8300] batadv0: entered promiscuous mode
[  240.029905][ T8300] bridge0: port 3(batadv0) entered blocking state
[  240.036490][ T8300] bridge0: port 3(batadv0) entered forwarding state
[  240.412668][ T7554] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  240.421924][ T7554] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  240.437727][   T51] Bluetooth: hci4: command tx timeout
[  240.790301][ T8245] 8021q: adding VLAN 0 to HW filter on device bond0
[  240.808128][ T8314] netlink: 8 bytes leftover after parsing attributes in process `syz.1.592'.
[  240.895293][ T8245] 8021q: adding VLAN 0 to HW filter on device team0
[  240.946671][ T7550] bridge0: port 1(bridge_slave_0) entered blocking state
[  240.953877][ T7550] bridge0: port 1(bridge_slave_0) entered forwarding state
[  241.080011][ T7550] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.087280][ T7550] bridge0: port 2(bridge_slave_1) entered forwarding state
[  241.276921][ T8245] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  241.305656][ T8321] input: jJǸ-�¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input8
[  242.237923][ T8245] 8021q: adding VLAN 0 to HW filter on device batadv0
[  242.508173][   T51] Bluetooth: hci4: command tx timeout
[  243.224777][ T8337] Invalid ELF header magic: != ELF
[  243.526519][ T8245] veth0_vlan: entered promiscuous mode
[  243.591015][ T8245] veth1_vlan: entered promiscuous mode
[  244.234170][ T8245] veth0_macvtap: entered promiscuous mode
[  244.266528][ T8355] vivid-007: =================  START STATUS  =================
[  244.291325][ T8245] veth1_macvtap: entered promiscuous mode
[  244.309220][ T8355] vivid-007: Generate PTS: true
[  244.326317][ T8348] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  244.339759][ T8355] vivid-007: Generate SCR: true
[  244.354458][ T8348] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  244.372566][ T8355] tpg source WxH: 320x240 (Y'CbCr)
[  244.380389][ T8245] batman_adv: batadv0: Interface activated: batadv_slave_0
[  244.388509][ T8348] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  244.398005][ T8355] tpg field: 1
[  244.408147][ T8355] tpg crop: (0,0)/320x240
[  244.413428][ T8348] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  244.434758][ T8355] tpg compose: (0,0)/320x240
[  244.439530][ T8245] batman_adv: batadv0: Interface activated: batadv_slave_1
[  244.454530][ T8348] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  244.463530][ T8355] tpg colorspace: 8
[  244.476626][ T8348] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  244.484595][ T8355] tpg transfer function: 0/0
[  244.509252][ T7555] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  244.518721][ T8355] tpg Y'CbCr encoding: 0/0
[  244.525548][ T8348] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  244.541730][ T8355] tpg quantization: 0/0
[  244.546897][ T7555] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  244.568717][ T8355] tpg RGB range: 0/2
[  244.589608][ T8355] vivid-007: ==================  END STATUS  ==================
[  244.642446][ T7555] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  244.702381][ T7555] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  245.082563][ T7555] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  245.125067][ T7555] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  245.147388][ T8368] FAULT_INJECTION: forcing a failure.
[  245.147388][ T8368] name failslab, interval 1, probability 0, space 0, times 0
[  245.203902][ T8368] CPU: 0 UID: 0 PID: 8368 Comm: syz.2.606 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  245.203941][ T8368] Tainted: [L]=SOFTLOCKUP
[  245.203949][ T8368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  245.203974][ T8368] Call Trace:
[  245.203982][ T8368]  <TASK>
[  245.203991][ T8368]  dump_stack_lvl+0x100/0x190
[  245.204034][ T8368]  should_fail_ex.cold+0x5/0xa
[  245.204065][ T8368]  should_failslab+0xc2/0x120
[  245.204092][ T8368]  __kmalloc_node_noprof+0xe6/0x850
[  245.204133][ T8368]  ? get_callchain_buffers+0x1e5/0x380
[  245.204172][ T8368]  get_callchain_buffers+0x1e5/0x380
[  245.204203][ T8368]  ? security_capable+0x80/0x260
[  245.204246][ T8368]  stack_map_alloc+0x316/0x610
[  245.204283][ T8368]  ? __pfx_stack_map_mem_usage+0x10/0x10
[  245.204313][ T8368]  map_create+0x84e/0x2ba0
[  245.204348][ T8368]  ? futex_unqueue+0x13d/0x2c0
[  245.204381][ T8368]  ? __futex_wait+0x256/0x300
[  245.204428][ T8368]  ? __pfx_map_create+0x10/0x10
[  245.204452][ T8368]  ? __might_fault+0xc5/0x140
[  245.204488][ T8368]  ? __might_fault+0xc5/0x140
[  245.204536][ T8368]  __sys_bpf+0x2091/0x4b90
[  245.204570][ T8368]  ? __pfx___sys_bpf+0x10/0x10
[  245.204599][ T8368]  ? __pfx_futex_wait+0x10/0x10
[  245.204646][ T8368]  ? ksys_write+0x190/0x250
[  245.204676][ T8368]  ? do_futex+0x192/0x350
[  245.204726][ T8368]  ? xfd_validate_state+0x129/0x190
[  245.204770][ T8368]  __x64_sys_bpf+0x7b/0xc0
[  245.204800][ T8368]  ? lockdep_hardirqs_on+0x78/0x100
[  245.204841][ T8368]  do_syscall_64+0x106/0xf80
[  245.204863][ T8368]  ? clear_bhb_loop+0x40/0x90
[  245.204920][ T8368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.204946][ T8368] RIP: 0033:0x7f5a1619c799
[  245.204966][ T8368] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  245.204990][ T8368] RSP: 002b:00007f5a16fba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  245.205013][ T8368] RAX: ffffffffffffffda RBX: 00007f5a16415fa0 RCX: 00007f5a1619c799
[  245.205029][ T8368] RDX: 00000000000000a8 RSI: 0000200000000580 RDI: 0000000000000000
[  245.205044][ T8368] RBP: 00007f5a16232c99 R08: 0000000000000000 R09: 0000000000000000
[  245.205058][ T8368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  245.205072][ T8368] R13: 00007f5a16416038 R14: 00007f5a16415fa0 R15: 00007ffcacd6b978
[  245.205103][ T8368]  </TASK>
[  245.786266][   T51] Bluetooth: hci0: command 0x0c1a tx timeout
[  245.863305][ T7554] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  245.871175][ T7554] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  246.428109][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  246.435196][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout
[  246.441323][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout
[  246.515813][ T5838] Bluetooth: hci4: command 0x0c1a tx timeout
[  246.593646][ T8380] netlink: 8 bytes leftover after parsing attributes in process `syz.2.609'.
[  248.586137][ T5838] Bluetooth: hci4: command 0x0c1a tx timeout
[  249.014568][ T8421] delete_channel: no stack
[  250.666391][ T5838] Bluetooth: hci4: command 0x0c1a tx timeout
[  251.418345][ T8452] FAULT_INJECTION: forcing a failure.
[  251.418345][ T8452] name failslab, interval 1, probability 0, space 0, times 0
[  251.477097][ T8452] CPU: 0 UID: 0 PID: 8452 Comm: syz.1.623 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  251.477136][ T8452] Tainted: [L]=SOFTLOCKUP
[  251.477145][ T8452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  251.477160][ T8452] Call Trace:
[  251.477168][ T8452]  <TASK>
[  251.477177][ T8452]  dump_stack_lvl+0x100/0x190
[  251.477222][ T8452]  should_fail_ex.cold+0x5/0xa
[  251.477252][ T8452]  should_failslab+0xc2/0x120
[  251.477279][ T8452]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  251.477318][ T8452]  ? sk_prot_alloc+0x60/0x2a0
[  251.477352][ T8452]  sk_prot_alloc+0x60/0x2a0
[  251.477381][ T8452]  sk_alloc+0x36/0xe80
[  251.477418][ T8452]  rxrpc_create+0x116/0x8d0
[  251.477457][ T8452]  __sock_create+0x339/0x860
[  251.477493][ T8452]  __sys_socket+0x14d/0x260
[  251.477524][ T8452]  ? __pfx___sys_socket+0x10/0x10
[  251.477564][ T8452]  __x64_sys_socket+0x72/0xb0
[  251.477595][ T8452]  ? lockdep_hardirqs_on+0x78/0x100
[  251.477645][ T8452]  do_syscall_64+0x106/0xf80
[  251.477667][ T8452]  ? clear_bhb_loop+0x40/0x90
[  251.477698][ T8452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.477724][ T8452] RIP: 0033:0x7f127099c799
[  251.477744][ T8452] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  251.477767][ T8452] RSP: 002b:00007f12718a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  251.477791][ T8452] RAX: ffffffffffffffda RBX: 00007f1270c15fa0 RCX: 00007f127099c799
[  251.477807][ T8452] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[  251.477822][ T8452] RBP: 00007f1270a32c99 R08: 0000000000000000 R09: 0000000000000000
[  251.477837][ T8452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  251.477851][ T8452] R13: 00007f1270c16038 R14: 00007f1270c15fa0 R15: 00007ffe0d0557f8
[  251.477882][ T8452]  </TASK>
[  252.484749][ T8461] Invalid ELF header magic: != ELF
[  253.606773][ T8480] netlink: 4 bytes leftover after parsing attributes in process `syz.1.630'.
[  253.663225][ T8480] netlink: 25 bytes leftover after parsing attributes in process `syz.1.630'.
[  255.283653][ T8509] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  255.311146][ T8509] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  255.321469][ T8509] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  255.331649][ T8467] FAULT_INJECTION: forcing a failure.
[  255.331649][ T8467] name failslab, interval 1, probability 0, space 0, times 0
[  255.352550][ T8509] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  255.574802][ T8467] CPU: 0 UID: 0 PID: 8467 Comm: syz.4.626 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  255.574842][ T8467] Tainted: [L]=SOFTLOCKUP
[  255.574851][ T8467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  255.574865][ T8467] Call Trace:
[  255.574873][ T8467]  <TASK>
[  255.574882][ T8467]  dump_stack_lvl+0x100/0x190
[  255.574924][ T8467]  should_fail_ex.cold+0x5/0xa
[  255.574954][ T8467]  should_failslab+0xc2/0x120
[  255.574982][ T8467]  __kmalloc_node_noprof+0xe6/0x850
[  255.575021][ T8467]  ? alloc_slab_obj_exts+0xae/0x260
[  255.575061][ T8467]  alloc_slab_obj_exts+0xae/0x260
[  255.575102][ T8467]  __memcg_slab_post_alloc_hook+0x246/0x990
[  255.575140][ T8467]  ? kasan_save_track+0x14/0x30
[  255.575166][ T8467]  kmem_cache_alloc_noprof+0x58a/0x6e0
[  255.575204][ T8467]  ? do_epoll_ctl+0x2434/0x36a0
[  255.575245][ T8467]  do_epoll_ctl+0x2434/0x36a0
[  255.575285][ T8467]  ? __pfx_do_epoll_ctl+0x10/0x10
[  255.575311][ T8467]  ? find_held_lock+0x2b/0x80
[  255.575335][ T8467]  ? __might_fault+0xc5/0x140
[  255.575372][ T8467]  ? __might_fault+0xc5/0x140
[  255.575419][ T8467]  ? __x64_sys_epoll_ctl+0x15c/0x1e0
[  255.575446][ T8467]  __x64_sys_epoll_ctl+0x15c/0x1e0
[  255.575475][ T8467]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  255.575512][ T8467]  do_syscall_64+0x106/0xf80
[  255.575535][ T8467]  ? clear_bhb_loop+0x40/0x90
[  255.575565][ T8467]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  255.575590][ T8467] RIP: 0033:0x7f540479c799
[  255.575610][ T8467] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  255.575633][ T8467] RSP: 002b:00007f54056b5028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  255.575656][ T8467] RAX: ffffffffffffffda RBX: 00007f5404a16090 RCX: 00007f540479c799
[  255.575672][ T8467] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000005
[  255.575686][ T8467] RBP: 00007f5404832c99 R08: 0000000000000000 R09: 0000000000000000
[  255.575701][ T8467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  255.575715][ T8467] R13: 00007f5404a16128 R14: 00007f5404a16090 R15: 00007ffca9b9d798
[  255.575745][ T8467]  </TASK>
[  256.163566][ T8513] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  256.170746][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  256.177941][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  256.302364][ T8513] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  256.422551][ T8513] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  256.428717][ T8513] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  256.886525][ T8537] tipc: Started in network mode
[  256.946600][ T8537] tipc: Node identity ffffffff, cluster identity 4711
[  257.008680][ T8537] tipc: Node number set to 4294967295
[  257.463384][   T51] Bluetooth: hci0: command 0x0c1a tx timeout
[  257.797572][ T8549] FAULT_INJECTION: forcing a failure.
[  257.797572][ T8549] name failslab, interval 1, probability 0, space 0, times 0
[  257.889298][ T8549] CPU: 0 UID: 0 PID: 8549 Comm: syz.4.645 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  257.889342][ T8549] Tainted: [L]=SOFTLOCKUP
[  257.889349][ T8549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  257.889363][ T8549] Call Trace:
[  257.889371][ T8549]  <TASK>
[  257.889379][ T8549]  dump_stack_lvl+0x100/0x190
[  257.889421][ T8549]  should_fail_ex.cold+0x5/0xa
[  257.889450][ T8549]  should_failslab+0xc2/0x120
[  257.889477][ T8549]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  257.889514][ T8549]  ? __pmd_alloc+0xbf/0x950
[  257.889550][ T8549]  __pmd_alloc+0xbf/0x950
[  257.889581][ T8549]  __handle_mm_fault+0xa99/0x2b60
[  257.889618][ T8549]  ? mt_find+0x45e/0x8e0
[  257.889643][ T8549]  ? __pfx___handle_mm_fault+0x10/0x10
[  257.889674][ T8549]  ? __pfx_mt_find+0x10/0x10
[  257.889713][ T8549]  ? find_vma+0xbf/0x140
[  257.889735][ T8549]  ? __pfx_find_vma+0x10/0x10
[  257.889762][ T8549]  handle_mm_fault+0x36d/0xa20
[  257.889800][ T8549]  do_user_addr_fault+0x74c/0x12f0
[  257.889832][ T8549]  exc_page_fault+0x6f/0xd0
[  257.889871][ T8549]  asm_exc_page_fault+0x26/0x30
[  257.889894][ T8549] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  257.889924][ T8549] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 cf 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  257.889946][ T8549] RSP: 0018:ffffc90004607d68 EFLAGS: 00050202
[  257.889965][ T8549] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 000000000000006a
[  257.889978][ T8549] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90004607df0
[  257.889992][ T8549] RBP: 000000000000006a R08: 0000000000000001 R09: fffff520008c0fcb
[  257.890006][ T8549] R10: ffffc90004607e59 R11: 0000000000000000 R12: 0000000000000000
[  257.890019][ T8549] R13: ffffc90004607df0 R14: ffff88807d764c40 R15: ffff8880781da840
[  257.890049][ T8549]  _copy_from_user+0x98/0xd0
[  257.890080][ T8549]  move_addr_to_kernel+0x65/0x170
[  257.890111][ T8549]  __sys_bind+0x11d/0x260
[  257.890142][ T8549]  ? __pfx___sys_bind+0x10/0x10
[  257.890170][ T8549]  ? __fget_files+0x21f/0x3d0
[  257.890203][ T8549]  ? __pfx_ksys_write+0x10/0x10
[  257.890232][ T8549]  __x64_sys_bind+0x72/0xb0
[  257.890261][ T8549]  ? lockdep_hardirqs_on+0x78/0x100
[  257.890299][ T8549]  do_syscall_64+0x106/0xf80
[  257.890319][ T8549]  ? clear_bhb_loop+0x40/0x90
[  257.890354][ T8549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.890377][ T8549] RIP: 0033:0x7f540479c799
[  257.890395][ T8549] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  257.890416][ T8549] RSP: 002b:00007f54056d6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  257.890436][ T8549] RAX: ffffffffffffffda RBX: 00007f5404a15fa0 RCX: 00007f540479c799
[  257.890451][ T8549] RDX: 000000000000006a RSI: 0000000000000000 RDI: 0000000000000003
[  257.890464][ T8549] RBP: 00007f54056d6090 R08: 0000000000000000 R09: 0000000000000000
[  257.890477][ T8549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  257.890490][ T8549] R13: 00007f5404a16038 R14: 00007f5404a15fa0 R15: 00007ffca9b9d798
[  257.890519][ T8549]  </TASK>
[  258.752396][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  258.758451][   T51] Bluetooth: hci4: command 0x0c1a tx timeout
[  258.764732][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  259.130103][ T8554] Invalid ELF header magic: != ELF
[  260.078282][ T8569] FAULT_INJECTION: forcing a failure.
[  260.078282][ T8569] name fail_futex, interval 1, probability 0, space 0, times 0
[  260.174221][ T8569] CPU: 0 UID: 0 PID: 8569 Comm: syz.1.651 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  260.174260][ T8569] Tainted: [L]=SOFTLOCKUP
[  260.174269][ T8569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  260.174283][ T8569] Call Trace:
[  260.174291][ T8569]  <TASK>
[  260.174300][ T8569]  dump_stack_lvl+0x100/0x190
[  260.174343][ T8569]  should_fail_ex.cold+0x5/0xa
[  260.174372][ T8569]  get_futex_key+0x1d2/0x1620
[  260.174407][ T8569]  ? __pfx_get_futex_key+0x10/0x10
[  260.174449][ T8569]  futex_wait_setup+0x83/0x510
[  260.174497][ T8569]  __futex_wait+0x19f/0x300
[  260.174539][ T8569]  ? __pfx___futex_wait+0x10/0x10
[  260.174578][ T8569]  ? __fget_files+0x215/0x3d0
[  260.174606][ T8569]  ? __pfx_futex_wake_mark+0x10/0x10
[  260.174649][ T8569]  ? futex_hash+0x2c5/0x380
[  260.174688][ T8569]  futex_wait+0xed/0x380
[  260.174728][ T8569]  ? __pfx_futex_wait+0x10/0x10
[  260.174774][ T8569]  ? __lock_acquire+0x4a5/0x2630
[  260.174814][ T8569]  do_futex+0x1ef/0x350
[  260.174857][ T8569]  ? __pfx_do_futex+0x10/0x10
[  260.174905][ T8569]  __x64_sys_futex+0x34f/0x4d0
[  260.174943][ T8569]  ? __pfx___x64_sys_futex+0x10/0x10
[  260.174989][ T8569]  do_syscall_64+0x106/0xf80
[  260.175012][ T8569]  ? clear_bhb_loop+0x40/0x90
[  260.175042][ T8569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.175068][ T8569] RIP: 0033:0x7f127099c799
[  260.175088][ T8569] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  260.175117][ T8569] RSP: 002b:00007f12718a60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  260.175141][ T8569] RAX: ffffffffffffffda RBX: 00007f1270c15fa8 RCX: 00007f127099c799
[  260.175157][ T8569] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1270c15fa8
[  260.175171][ T8569] RBP: 00007f1270c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  260.175186][ T8569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  260.175200][ T8569] R13: 00007f1270c16038 R14: 00007ffe0d055710 R15: 00007ffe0d0557f8
[  260.175232][ T8569]  </TASK>
[  261.335605][ T8580] block nbd8: shutting down sockets
[  261.474492][ T8586] netlink: NAT attribute type 0 has unexpected length (129 != 0)
[  262.477269][ T8611] netlink: 12 bytes leftover after parsing attributes in process `syz.1.663'.
[  262.677992][ T8621] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  264.469765][ T8656] capability: warning: `syz.4.670' uses 32-bit capabilities (legacy support in use)
[  266.747703][ T8691] Invalid ELF header magic: != ELF
[  267.996551][ T8722] FAULT_INJECTION: forcing a failure.
[  267.996551][ T8722] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  268.104655][ T8722] CPU: 0 UID: 0 PID: 8722 Comm: syz.3.681 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  268.104693][ T8722] Tainted: [L]=SOFTLOCKUP
[  268.104701][ T8722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  268.104715][ T8722] Call Trace:
[  268.104722][ T8722]  <TASK>
[  268.104731][ T8722]  dump_stack_lvl+0x100/0x190
[  268.104771][ T8722]  should_fail_ex.cold+0x5/0xa
[  268.104796][ T8722]  ? prepare_alloc_pages+0x16d/0x5f0
[  268.104827][ T8722]  should_fail_alloc_page+0xeb/0x140
[  268.104855][ T8722]  prepare_alloc_pages+0x1f0/0x5f0
[  268.104889][ T8722]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  268.104933][ T8722]  ? __lock_acquire+0x4a5/0x2630
[  268.104968][ T8722]  ? __lock_acquire+0x4a5/0x2630
[  268.105001][ T8722]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  268.105041][ T8722]  ? __lock_acquire+0x4a5/0x2630
[  268.105086][ T8722]  ? find_held_lock+0x2b/0x80
[  268.105108][ T8722]  ? is_bpf_text_address+0x8a/0x1a0
[  268.105145][ T8722]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  268.105172][ T8722]  ? policy_nodemask+0xed/0x4f0
[  268.105200][ T8722]  alloc_pages_mpol+0x1fb/0x550
[  268.105228][ T8722]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  268.105253][ T8722]  ? arch_stack_walk+0xa6/0xf0
[  268.105284][ T8722]  folio_alloc_mpol_noprof+0x36/0x340
[  268.105323][ T8722]  shmem_alloc_folio+0x135/0x160
[  268.105355][ T8722]  shmem_alloc_and_add_folio+0x371/0xd40
[  268.105400][ T8722]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  268.105440][ T8722]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  268.105485][ T8722]  shmem_get_folio_gfp+0x6ab/0x1900
[  268.105528][ T8722]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  268.105567][ T8722]  ? filemap_map_pages+0xe69/0x2020
[  268.105609][ T8722]  shmem_fault+0x1f9/0xa20
[  268.105645][ T8722]  ? __lock_acquire+0x4a5/0x2630
[  268.105676][ T8722]  ? __pfx_shmem_fault+0x10/0x10
[  268.105715][ T8722]  ? rcu_is_watching+0x12/0xc0
[  268.105753][ T8722]  ? __pfx_filemap_map_pages+0x10/0x10
[  268.105798][ T8722]  __do_fault+0x10d/0x550
[  268.105824][ T8722]  do_fault+0xabb/0x1990
[  268.105852][ T8722]  ? __pmd_alloc+0x3fb/0x950
[  268.105882][ T8722]  __handle_mm_fault+0x180f/0x2b60
[  268.105920][ T8722]  ? mt_find+0x45e/0x8e0
[  268.105946][ T8722]  ? __pfx___handle_mm_fault+0x10/0x10
[  268.105978][ T8722]  ? __pfx_mt_find+0x10/0x10
[  268.106017][ T8722]  ? find_vma+0xbf/0x140
[  268.106040][ T8722]  ? __pfx_find_vma+0x10/0x10
[  268.106067][ T8722]  handle_mm_fault+0x36d/0xa20
[  268.106106][ T8722]  do_user_addr_fault+0x74c/0x12f0
[  268.106138][ T8722]  exc_page_fault+0x6f/0xd0
[  268.106191][ T8722]  asm_exc_page_fault+0x26/0x30
[  268.106214][ T8722] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  268.106245][ T8722] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 cf 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  268.106268][ T8722] RSP: 0018:ffffc900036b7d68 EFLAGS: 00050202
[  268.106286][ T8722] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 000000000000006a
[  268.106307][ T8722] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc900036b7df0
[  268.106321][ T8722] RBP: 000000000000006a R08: 0000000000000001 R09: fffff520006d6fcb
[  268.106335][ T8722] R10: ffffc900036b7e59 R11: 0000000000000000 R12: 0000000000000000
[  268.106349][ T8722] R13: ffffc900036b7df0 R14: ffff88807b66b340 R15: ffff888078201cc0
[  268.106379][ T8722]  _copy_from_user+0x98/0xd0
[  268.106411][ T8722]  move_addr_to_kernel+0x65/0x170
[  268.106443][ T8722]  __sys_bind+0x11d/0x260
[  268.106474][ T8722]  ? __pfx___sys_bind+0x10/0x10
[  268.106502][ T8722]  ? __fget_files+0x21f/0x3d0
[  268.106536][ T8722]  ? __pfx_ksys_write+0x10/0x10
[  268.106565][ T8722]  __x64_sys_bind+0x72/0xb0
[  268.106594][ T8722]  ? lockdep_hardirqs_on+0x78/0x100
[  268.106632][ T8722]  do_syscall_64+0x106/0xf80
[  268.106653][ T8722]  ? clear_bhb_loop+0x40/0x90
[  268.106682][ T8722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.106705][ T8722] RIP: 0033:0x7ff40359c799
[  268.106724][ T8722] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  268.106746][ T8722] RSP: 002b:00007ff404439028 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  268.106766][ T8722] RAX: ffffffffffffffda RBX: 00007ff403815fa0 RCX: 00007ff40359c799
[  268.106781][ T8722] RDX: 000000000000006a RSI: 0000000000000000 RDI: 0000000000000003
[  268.106794][ T8722] RBP: 00007ff404439090 R08: 0000000000000000 R09: 0000000000000000
[  268.106808][ T8722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  268.106822][ T8722] R13: 00007ff403816038 R14: 00007ff403815fa0 R15: 00007ffcabd6fe28
[  268.106851][ T8722]  </TASK>
[  269.363211][ T8733] NFSD: Failed to start, no listeners configured.
[  269.576560][ T8737] FAULT_INJECTION: forcing a failure.
[  269.576560][ T8737] name failslab, interval 1, probability 0, space 0, times 0
[  269.605913][ T8737] CPU: 0 UID: 0 PID: 8737 Comm: syz.2.685 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  269.605955][ T8737] Tainted: [L]=SOFTLOCKUP
[  269.605964][ T8737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  269.605979][ T8737] Call Trace:
[  269.605987][ T8737]  <TASK>
[  269.605996][ T8737]  dump_stack_lvl+0x100/0x190
[  269.606040][ T8737]  should_fail_ex.cold+0x5/0xa
[  269.606084][ T8737]  ? ima_write_template_field_data+0x59/0x1d0
[  269.606121][ T8737]  should_failslab+0xc2/0x120
[  269.606148][ T8737]  __kmalloc_noprof+0xe0/0x850
[  269.606194][ T8737]  ima_write_template_field_data+0x59/0x1d0
[  269.606235][ T8737]  ima_eventname_init_common+0x1c6/0x2a0
[  269.606280][ T8737]  ? __pfx_ima_eventname_init_common+0x10/0x10
[  269.606323][ T8737]  ? __kmalloc_noprof+0x320/0x850
[  269.606369][ T8737]  ima_alloc_init_template+0x399/0x6d0
[  269.606405][ T8737]  ima_store_measurement+0x1e3/0x5b0
[  269.606437][ T8737]  ? __pfx_ima_store_measurement+0x10/0x10
[  269.606478][ T8737]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  269.606524][ T8737]  process_measurement+0x19cc/0x2350
[  269.606560][ T8737]  ? __pfx_process_measurement+0x10/0x10
[  269.606591][ T8737]  ? trace_contention_end+0x140/0x180
[  269.606632][ T8737]  ? tracing_check_open_get_tr.part.0+0x101/0x170
[  269.606702][ T8737]  ? tracing_check_open_get_tr.part.0+0x106/0x170
[  269.606742][ T8737]  ? inode_to_bdi+0x9e/0x160
[  269.606772][ T8737]  ima_file_check+0xcc/0x120
[  269.606797][ T8737]  ? __pfx_ima_file_check+0x10/0x10
[  269.606835][ T8737]  security_file_post_open+0xc4/0x210
[  269.606867][ T8737]  path_openat+0x1418/0x31a0
[  269.606904][ T8737]  ? __pfx_path_openat+0x10/0x10
[  269.606942][ T8737]  do_file_open+0x20e/0x430
[  269.606972][ T8737]  ? __pfx_do_file_open+0x10/0x10
[  269.607020][ T8737]  ? alloc_fd+0x476/0x790
[  269.607048][ T8737]  ? do_getname+0x191/0x390
[  269.607083][ T8737]  do_sys_openat2+0x10d/0x1e0
[  269.607119][ T8737]  ? __pfx_do_sys_openat2+0x10/0x10
[  269.607156][ T8737]  ? __fget_files+0x21f/0x3d0
[  269.607186][ T8737]  __x64_sys_openat+0x12d/0x210
[  269.607222][ T8737]  ? __pfx___x64_sys_openat+0x10/0x10
[  269.607275][ T8737]  do_syscall_64+0x106/0xf80
[  269.607299][ T8737]  ? clear_bhb_loop+0x40/0x90
[  269.607330][ T8737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.607356][ T8737] RIP: 0033:0x7f5a1619c799
[  269.607376][ T8737] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  269.607401][ T8737] RSP: 002b:00007f5a16fba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  269.607425][ T8737] RAX: ffffffffffffffda RBX: 00007f5a16415fa0 RCX: 00007f5a1619c799
[  269.607441][ T8737] RDX: 0000000000040000 RSI: 0000200000001200 RDI: ffffffffffffff9c
[  269.607457][ T8737] RBP: 00007f5a16232c99 R08: 0000000000000000 R09: 0000000000000000
[  269.607472][ T8737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  269.607487][ T8737] R13: 00007f5a16416038 R14: 00007f5a16415fa0 R15: 00007ffcacd6b978
[  269.607519][ T8737]  </TASK>
[  270.235191][   T29] audit: type=1804 audit(1774668182.739:6): pid=8737 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.685" name="/newroot/sys/kernel/debug/tracing/tracing_on" dev="tracefs" ino=1911 res=0 errno=0
[  272.582725][ T8779] netlink: 'syz.4.692': attribute type 2 has an invalid length.
[  272.637279][ T8779] netlink: 'syz.4.692': attribute type 3 has an invalid length.
[  272.687713][ T8779] netlink: 158 bytes leftover after parsing attributes in process `syz.4.692'.
[  272.743009][ T8779] netlink: 4 bytes leftover after parsing attributes in process `syz.4.692'.
[  274.149583][ T8772] FAULT_INJECTION: forcing a failure.
[  274.149583][ T8772] name failslab, interval 1, probability 0, space 0, times 0
[  274.283439][ T8772] CPU: 0 UID: 0 PID: 8772 Comm: syz.3.690 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  274.283479][ T8772] Tainted: [L]=SOFTLOCKUP
[  274.283488][ T8772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  274.283502][ T8772] Call Trace:
[  274.283510][ T8772]  <TASK>
[  274.283519][ T8772]  dump_stack_lvl+0x100/0x190
[  274.283562][ T8772]  should_fail_ex.cold+0x5/0xa
[  274.283593][ T8772]  should_failslab+0xc2/0x120
[  274.283620][ T8772]  __kmalloc_cache_noprof+0x7a/0x6f0
[  274.283654][ T8772]  ? wakeup_source_register+0x4c/0x3e0
[  274.283686][ T8772]  wakeup_source_register+0x4c/0x3e0
[  274.283713][ T8772]  ep_create_wakeup_source+0x1df/0x2e0
[  274.283741][ T8772]  ? __pfx_ep_create_wakeup_source+0x10/0x10
[  274.283771][ T8772]  ? do_epoll_ctl+0x1012/0x36a0
[  274.283797][ T8772]  ? do_epoll_ctl+0x1012/0x36a0
[  274.283831][ T8772]  do_epoll_ctl+0x1eee/0x36a0
[  274.283870][ T8772]  ? __pfx_do_epoll_ctl+0x10/0x10
[  274.283903][ T8772]  ? find_held_lock+0x2b/0x80
[  274.283928][ T8772]  ? __might_fault+0xc5/0x140
[  274.283970][ T8772]  ? __might_fault+0xc5/0x140
[  274.284018][ T8772]  ? __x64_sys_epoll_ctl+0x15c/0x1e0
[  274.284045][ T8772]  __x64_sys_epoll_ctl+0x15c/0x1e0
[  274.284075][ T8772]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  274.284112][ T8772]  do_syscall_64+0x106/0xf80
[  274.284135][ T8772]  ? clear_bhb_loop+0x40/0x90
[  274.284165][ T8772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.284196][ T8772] RIP: 0033:0x7ff40359c799
[  274.284217][ T8772] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  274.284241][ T8772] RSP: 002b:00007ff404418028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  274.284265][ T8772] RAX: ffffffffffffffda RBX: 00007ff403816090 RCX: 00007ff40359c799
[  274.284281][ T8772] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000005
[  274.284296][ T8772] RBP: 00007ff403632c99 R08: 0000000000000000 R09: 0000000000000000
[  274.284311][ T8772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  274.284326][ T8772] R13: 00007ff403816128 R14: 00007ff403816090 R15: 00007ffcabd6fe28
[  274.284358][ T8772]  </TASK>
[  280.288938][ T8837] program syz.1.707 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  281.513840][ T8878] kexec: Could not allocate control_code_buffer
[  282.256209][ T8907] FAULT_INJECTION: forcing a failure.
[  282.256209][ T8907] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  282.386106][ T8907] CPU: 0 UID: 8 PID: 8907 Comm: syz.2.722 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  282.386147][ T8907] Tainted: [L]=SOFTLOCKUP
[  282.386156][ T8907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  282.386172][ T8907] Call Trace:
[  282.386179][ T8907]  <TASK>
[  282.386188][ T8907]  dump_stack_lvl+0x100/0x190
[  282.386231][ T8907]  should_fail_ex.cold+0x5/0xa
[  282.386261][ T8907]  _copy_to_iter+0x1f3/0x1720
[  282.386295][ T8907]  ? __pfx___skb_try_recv_datagram+0x10/0x10
[  282.386334][ T8907]  ? __pfx__copy_to_iter+0x10/0x10
[  282.386375][ T8907]  ? __skb_recv_datagram+0x1b2/0x220
[  282.386415][ T8907]  simple_copy_to_iter+0x46/0x90
[  282.386448][ T8907]  __skb_datagram_iter+0x129/0x900
[  282.386479][ T8907]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  282.386516][ T8907]  ? skb_recv_datagram+0x88/0xc0
[  282.386552][ T8907]  skb_copy_datagram_iter+0xa1/0x270
[  282.386590][ T8907]  netlink_recvmsg+0x27e/0xa90
[  282.386634][ T8907]  ? __pfx_netlink_recvmsg+0x10/0x10
[  282.386673][ T8907]  ? __fget_files+0x215/0x3d0
[  282.386697][ T8907]  ? __fget_files+0x215/0x3d0
[  282.386725][ T8907]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  282.386752][ T8907]  ? __pfx_netlink_recvmsg+0x10/0x10
[  282.386795][ T8907]  sock_recvmsg+0x1a4/0x1f0
[  282.386825][ T8907]  __sys_recvfrom+0x200/0x300
[  282.386863][ T8907]  ? __pfx___sys_recvfrom+0x10/0x10
[  282.386909][ T8907]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  282.386936][ T8907]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  282.386983][ T8907]  __x64_sys_recvfrom+0xe0/0x1c0
[  282.387019][ T8907]  ? do_syscall_64+0x95/0xf80
[  282.387043][ T8907]  ? lockdep_hardirqs_on+0x78/0x100
[  282.387084][ T8907]  do_syscall_64+0x106/0xf80
[  282.387106][ T8907]  ? clear_bhb_loop+0x40/0x90
[  282.387140][ T8907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.387165][ T8907] RIP: 0033:0x7f5a1615cfce
[  282.387186][ T8907] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  282.387211][ T8907] RSP: 002b:00007f5a16fb8ee8 EFLAGS: 00000246 ORIG_RAX: 000000000000002d
[  282.387234][ T8907] RAX: ffffffffffffffda RBX: 00007f5a16fba6c0 RCX: 00007f5a1615cfce
[  282.387251][ T8907] RDX: 0000000000001000 RSI: 00007f5a16fb9000 RDI: 0000000000000002
[  282.387266][ T8907] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  282.387281][ T8907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000100
[  282.387296][ T8907] R13: 00007f5a16fb8fb0 R14: 0000000000000013 R15: 0000000000000000
[  282.387327][ T8907]  </TASK>
[  283.354586][ T8913] NFSD: Failed to start, no listeners configured.
[  284.232418][ T5838] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  286.844726][ T8976] netlink: 72 bytes leftover after parsing attributes in process `syz.2.734'.
[  287.594556][ T8935] program syz.3.727 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  289.087731][ T9019] FAULT_INJECTION: forcing a failure.
[  289.087731][ T9019] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  289.259900][ T9019] CPU: 0 UID: 0 PID: 9019 Comm: syz.2.744 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  289.259938][ T9019] Tainted: [L]=SOFTLOCKUP
[  289.259946][ T9019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  289.259960][ T9019] Call Trace:
[  289.259967][ T9019]  <TASK>
[  289.259976][ T9019]  dump_stack_lvl+0x100/0x190
[  289.260017][ T9019]  should_fail_ex.cold+0x5/0xa
[  289.260046][ T9019]  _copy_from_user+0x2e/0xd0
[  289.260077][ T9019]  __sys_bpf+0x243/0x4b90
[  289.260108][ T9019]  ? __pfx___sys_bpf+0x10/0x10
[  289.260133][ T9019]  ? proc_fail_nth_write+0x9f/0x220
[  289.260164][ T9019]  ? find_held_lock+0x2b/0x80
[  289.260194][ T9019]  ? find_held_lock+0x2b/0x80
[  289.260216][ T9019]  ? ksys_write+0x190/0x250
[  289.260245][ T9019]  ? __mutex_unlock_slowpath+0x15c/0x790
[  289.260280][ T9019]  ? __fget_files+0x215/0x3d0
[  289.260316][ T9019]  ? fput+0x79/0x100
[  289.260344][ T9019]  ? ksys_write+0x1ac/0x250
[  289.260366][ T9019]  ? __pfx_ksys_write+0x10/0x10
[  289.260393][ T9019]  __x64_sys_bpf+0x7b/0xc0
[  289.260420][ T9019]  ? lockdep_hardirqs_on+0x78/0x100
[  289.260459][ T9019]  do_syscall_64+0x106/0xf80
[  289.260479][ T9019]  ? clear_bhb_loop+0x40/0x90
[  289.260508][ T9019]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.260532][ T9019] RIP: 0033:0x7f5a1619c799
[  289.260551][ T9019] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  289.260574][ T9019] RSP: 002b:00007f5a16f99028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  289.260595][ T9019] RAX: ffffffffffffffda RBX: 00007f5a16416090 RCX: 00007f5a1619c799
[  289.260611][ T9019] RDX: 000000000000000c RSI: 00002000000001c0 RDI: 0000000000000002
[  289.260625][ T9019] RBP: 00007f5a16f99090 R08: 0000000000000000 R09: 0000000000000000
[  289.260639][ T9019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  289.260652][ T9019] R13: 00007f5a16416128 R14: 00007f5a16416090 R15: 00007ffcacd6b978
[  289.260681][ T9019]  </TASK>
[  289.535296][ T9025] netlink: 72 bytes leftover after parsing attributes in process `syz.4.745'.
[  291.433980][ T9054] vivid-007: =================  START STATUS  =================
[  291.441889][ T9054] vivid-007: Generate PTS: true
[  291.509617][ T9054] vivid-007: Generate SCR: true
[  291.530237][ T9054] tpg source WxH: 320x240 (Y'CbCr)
[  291.556995][ T9054] tpg field: 1
[  291.595150][ T9054] tpg crop: (0,0)/320x240
[  291.616633][ T9058] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  291.629408][ T9054] tpg compose: (0,0)/320x240
[  291.652375][ T9054] tpg colorspace: 8
[  291.662555][ T9054] tpg transfer function: 0/0
[  291.677861][ T9054] tpg Y'CbCr encoding: 0/0
[  291.698358][ T9054] tpg quantization: 0/0
[  291.729310][ T9054] tpg RGB range: 0/2
[  291.747385][ T9054] vivid-007: ==================  END STATUS  ==================
[  292.985729][ T9085] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10
[  293.167060][ T9087] netlink: 8 bytes leftover after parsing attributes in process `syz.1.757'.
[  294.096546][ T9089] Invalid ELF header magic: != ELF
[  296.057858][ T9110] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11
[  297.212395][ T9116] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12
[  299.000726][ T9145] FAULT_INJECTION: forcing a failure.
[  299.000726][ T9145] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  299.056405][ T9145] CPU: 0 UID: 0 PID: 9145 Comm: syz.1.770 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  299.056445][ T9145] Tainted: [L]=SOFTLOCKUP
[  299.056453][ T9145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  299.056468][ T9145] Call Trace:
[  299.056475][ T9145]  <TASK>
[  299.056484][ T9145]  dump_stack_lvl+0x100/0x190
[  299.056527][ T9145]  should_fail_ex.cold+0x5/0xa
[  299.056556][ T9145]  _copy_to_user+0x32/0xd0
[  299.056589][ T9145]  syslog_print_all+0x1cd/0x3f0
[  299.056626][ T9145]  ? __pfx_syslog_print_all+0x10/0x10
[  299.056673][ T9145]  ? bpf_lsm_capable+0x9/0x10
[  299.056699][ T9145]  ? security_capable+0x80/0x260
[  299.056742][ T9145]  do_syslog+0x350/0x6d0
[  299.056779][ T9145]  ? __pfx_do_syslog+0x10/0x10
[  299.056832][ T9145]  __x64_sys_syslog+0x74/0xb0
[  299.056868][ T9145]  ? lockdep_hardirqs_on+0x78/0x100
[  299.056907][ T9145]  do_syscall_64+0x106/0xf80
[  299.056929][ T9145]  ? clear_bhb_loop+0x40/0x90
[  299.056958][ T9145]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  299.056982][ T9145] RIP: 0033:0x7f127099c799
[  299.057001][ T9145] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  299.057024][ T9145] RSP: 002b:00007f12718a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000067
[  299.057046][ T9145] RAX: ffffffffffffffda RBX: 00007f1270c15fa0 RCX: 00007f127099c799
[  299.057062][ T9145] RDX: 00000000000000f4 RSI: 0000200000000040 RDI: 0000000000000004
[  299.057076][ T9145] RBP: 00007f1270a32c99 R08: 0000000000000000 R09: 0000000000000000
[  299.057096][ T9145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  299.057110][ T9145] R13: 00007f1270c16038 R14: 00007f1270c15fa0 R15: 00007ffe0d0557f8
[  299.057148][ T9145]  </TASK>
[  299.305435][ T9143] Invalid ELF header magic: != ELF
[  301.842967][ T9184] Invalid ELF header magic: != ELF
[  301.862001][ T9195] random: crng reseeded on system resumption
[  303.587305][ T9234] Invalid ELF header magic: != ELF
[  306.293223][ T9289] netlink: 4 bytes leftover after parsing attributes in process `syz.1.809'.
[  306.322726][ T9289] netlink: 25 bytes leftover after parsing attributes in process `syz.1.809'.
[  308.638015][ T9339] FAULT_INJECTION: forcing a failure.
[  308.638015][ T9339] name failslab, interval 1, probability 0, space 0, times 0
[  308.702658][ T9339] CPU: 0 UID: 0 PID: 9339 Comm: syz.4.823 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  308.702699][ T9339] Tainted: [L]=SOFTLOCKUP
[  308.702708][ T9339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  308.702723][ T9339] Call Trace:
[  308.702731][ T9339]  <TASK>
[  308.702740][ T9339]  dump_stack_lvl+0x100/0x190
[  308.702783][ T9339]  should_fail_ex.cold+0x5/0xa
[  308.702813][ T9339]  should_failslab+0xc2/0x120
[  308.702841][ T9339]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  308.702879][ T9339]  ? sk_prot_alloc+0x60/0x2a0
[  308.702912][ T9339]  sk_prot_alloc+0x60/0x2a0
[  308.702941][ T9339]  sk_alloc+0x36/0xe80
[  308.702978][ T9339]  rxrpc_create+0x116/0x8d0
[  308.703017][ T9339]  __sock_create+0x339/0x860
[  308.703052][ T9339]  __sys_socket+0x14d/0x260
[  308.703084][ T9339]  ? __pfx___sys_socket+0x10/0x10
[  308.703122][ T9339]  __x64_sys_socket+0x72/0xb0
[  308.703152][ T9339]  ? lockdep_hardirqs_on+0x78/0x100
[  308.703211][ T9339]  do_syscall_64+0x106/0xf80
[  308.703234][ T9339]  ? clear_bhb_loop+0x40/0x90
[  308.703265][ T9339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.703291][ T9339] RIP: 0033:0x7f540479c799
[  308.703311][ T9339] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  308.703336][ T9339] RSP: 002b:00007f54056d6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  308.703360][ T9339] RAX: ffffffffffffffda RBX: 00007f5404a15fa0 RCX: 00007f540479c799
[  308.703376][ T9339] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[  308.703391][ T9339] RBP: 00007f5404832c99 R08: 0000000000000000 R09: 0000000000000000
[  308.703406][ T9339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  308.703421][ T9339] R13: 00007f5404a16038 R14: 00007f5404a15fa0 R15: 00007ffca9b9d798
[  308.703451][ T9339]  </TASK>
[  309.195508][ T9344] netlink: 116 bytes leftover after parsing attributes in process `syz.3.821'.
[  309.380761][ T9336] netlink: 8 bytes leftover after parsing attributes in process `syz.3.821'.
[  309.506214][ T9336] netlink: 12 bytes leftover after parsing attributes in process `syz.3.821'.
[  309.664188][ T9346] Invalid ELF header magic: != ELF
[  310.414219][ T9363] FAULT_INJECTION: forcing a failure.
[  310.414219][ T9363] name failslab, interval 1, probability 0, space 0, times 0
[  310.460999][ T9363] CPU: 0 UID: 0 PID: 9363 Comm: syz.2.827 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  310.461039][ T9363] Tainted: [L]=SOFTLOCKUP
[  310.461048][ T9363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  310.461063][ T9363] Call Trace:
[  310.461071][ T9363]  <TASK>
[  310.461080][ T9363]  dump_stack_lvl+0x100/0x190
[  310.461123][ T9363]  should_fail_ex.cold+0x5/0xa
[  310.461154][ T9363]  should_failslab+0xc2/0x120
[  310.461181][ T9363]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  310.461220][ T9363]  ? sk_prot_alloc+0x60/0x2a0
[  310.461266][ T9363]  sk_prot_alloc+0x60/0x2a0
[  310.461300][ T9363]  sk_alloc+0x36/0xe80
[  310.461337][ T9363]  rxrpc_create+0x116/0x8d0
[  310.461377][ T9363]  __sock_create+0x339/0x860
[  310.461413][ T9363]  __sys_socket+0x14d/0x260
[  310.461444][ T9363]  ? __pfx___sys_socket+0x10/0x10
[  310.461494][ T9363]  __x64_sys_socket+0x72/0xb0
[  310.461525][ T9363]  ? lockdep_hardirqs_on+0x78/0x100
[  310.461568][ T9363]  do_syscall_64+0x106/0xf80
[  310.461590][ T9363]  ? clear_bhb_loop+0x40/0x90
[  310.461620][ T9363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.461647][ T9363] RIP: 0033:0x7f5a1619c799
[  310.461667][ T9363] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  310.461691][ T9363] RSP: 002b:00007f5a16fba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  310.461715][ T9363] RAX: ffffffffffffffda RBX: 00007f5a16415fa0 RCX: 00007f5a1619c799
[  310.461731][ T9363] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[  310.461747][ T9363] RBP: 00007f5a16232c99 R08: 0000000000000000 R09: 0000000000000000
[  310.461762][ T9363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  310.461778][ T9363] R13: 00007f5a16416038 R14: 00007f5a16415fa0 R15: 00007ffcacd6b978
[  310.461809][ T9363]  </TASK>
[  311.402594][ T9377] netlink: 8 bytes leftover after parsing attributes in process `syz.4.831'.
[  312.561111][ T9394] block nbd7: not configured, cannot reconfigure
[  313.174276][ T9405] Invalid ELF header magic: != ELF
[  314.770993][ T9433] FAULT_INJECTION: forcing a failure.
[  314.770993][ T9433] name fail_futex, interval 1, probability 0, space 0, times 0
[  314.849748][ T9433] CPU: 0 UID: 0 PID: 9433 Comm: syz.4.844 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  314.849785][ T9433] Tainted: [L]=SOFTLOCKUP
[  314.849793][ T9433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  314.849807][ T9433] Call Trace:
[  314.849815][ T9433]  <TASK>
[  314.849824][ T9433]  dump_stack_lvl+0x100/0x190
[  314.849872][ T9433]  should_fail_ex.cold+0x5/0xa
[  314.849904][ T9433]  should_fail_futex+0x4c/0x60
[  314.849935][ T9433]  __x64_sys_futex+0x1f0/0x4d0
[  314.849971][ T9433]  ? __pfx___x64_sys_futex+0x10/0x10
[  314.850014][ T9433]  do_syscall_64+0x106/0xf80
[  314.850036][ T9433]  ? clear_bhb_loop+0x40/0x90
[  314.850065][ T9433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.850090][ T9433] RIP: 0033:0x7f540479c799
[  314.850109][ T9433] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  314.850132][ T9433] RSP: 002b:00007ffca9b9d8f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  314.850154][ T9433] RAX: ffffffffffffffda RBX: 000000000004cd54 RCX: 00007f540479c799
[  314.850169][ T9433] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5404a15fac
[  314.850183][ T9433] RBP: 0000000000000032 R08: 0000000000000000 R09: 0000000000000000
[  314.850197][ T9433] R10: 00007ffca9b9da00 R11: 0000000000000246 R12: 00007ffca9b9da20
[  314.850212][ T9433] R13: 00007f5404a15fac R14: 000000000004cd86 R15: 00007ffca9b9da00
[  314.850241][ T9433]  </TASK>
[  315.289666][ T9433] FAULT_INJECTION: forcing a failure.
[  315.289666][ T9433] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  315.342395][ T9433] CPU: 0 UID: 0 PID: 9433 Comm: syz.4.844 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  315.342433][ T9433] Tainted: [L]=SOFTLOCKUP
[  315.342441][ T9433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  315.342455][ T9433] Call Trace:
[  315.342462][ T9433]  <TASK>
[  315.342471][ T9433]  dump_stack_lvl+0x100/0x190
[  315.342511][ T9433]  should_fail_ex.cold+0x5/0xa
[  315.342540][ T9433]  _copy_from_user+0x2e/0xd0
[  315.342572][ T9433]  get_timespec64+0x8b/0x1b0
[  315.342599][ T9433]  ? __pfx_get_timespec64+0x10/0x10
[  315.342625][ T9433]  ? ktime_get+0x200/0x300
[  315.342657][ T9433]  __x64_sys_futex+0x21a/0x4d0
[  315.342710][ T9433]  ? __pfx___x64_sys_futex+0x10/0x10
[  315.342754][ T9433]  do_syscall_64+0x106/0xf80
[  315.342775][ T9433]  ? clear_bhb_loop+0x40/0x90
[  315.342804][ T9433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.342829][ T9433] RIP: 0033:0x7f540479c799
[  315.342848][ T9433] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  315.342876][ T9433] RSP: 002b:00007ffca9b9d8f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  315.342898][ T9433] RAX: ffffffffffffffda RBX: 000000000004cf5b RCX: 00007f540479c799
[  315.342913][ T9433] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5404a15fac
[  315.342927][ T9433] RBP: 0000000000000032 R08: 0000000000000000 R09: 0000000000000000
[  315.342940][ T9433] R10: 00007ffca9b9da00 R11: 0000000000000246 R12: 00007ffca9b9da20
[  315.342955][ T9433] R13: 00007f5404a15fac R14: 000000000004cf8d R15: 00007ffca9b9da00
[  315.342984][ T9433]  </TASK>
[  316.350664][ T9456] FAULT_INJECTION: forcing a failure.
[  316.350664][ T9456] name failslab, interval 1, probability 0, space 0, times 0
[  316.442400][ T9456] CPU: 0 UID: 0 PID: 9456 Comm: syz.4.849 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  316.442440][ T9456] Tainted: [L]=SOFTLOCKUP
[  316.442449][ T9456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  316.442465][ T9456] Call Trace:
[  316.442473][ T9456]  <TASK>
[  316.442483][ T9456]  dump_stack_lvl+0x100/0x190
[  316.442526][ T9456]  should_fail_ex.cold+0x5/0xa
[  316.442557][ T9456]  should_failslab+0xc2/0x120
[  316.442584][ T9456]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  316.442646][ T9456]  ? __d_alloc+0x34/0xa80
[  316.442675][ T9456]  ? __pfx_stack_trace_save+0x10/0x10
[  316.442707][ T9456]  __d_alloc+0x34/0xa80
[  316.442745][ T9456]  d_alloc_parallel+0x111/0x14e0
[  316.442793][ T9456]  ? find_held_lock+0x2b/0x80
[  316.442817][ T9456]  ? __d_lookup+0x25c/0x4a0
[  316.442855][ T9456]  ? __pfx_d_alloc_parallel+0x10/0x10
[  316.442897][ T9456]  ? __d_lookup+0x266/0x4a0
[  316.442942][ T9456]  lookup_open.isra.0+0x57c/0x11b0
[  316.442988][ T9456]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  316.443044][ T9456]  ? mnt_get_write_access+0x1e9/0x2f0
[  316.443084][ T9456]  path_openat+0xa98/0x31a0
[  316.443121][ T9456]  ? __pfx_path_openat+0x10/0x10
[  316.443159][ T9456]  do_file_open+0x20e/0x430
[  316.443188][ T9456]  ? __pfx_do_file_open+0x10/0x10
[  316.443236][ T9456]  ? alloc_fd+0x476/0x790
[  316.443264][ T9456]  ? do_getname+0x191/0x390
[  316.443300][ T9456]  do_sys_openat2+0x10d/0x1e0
[  316.443337][ T9456]  ? __pfx_do_sys_openat2+0x10/0x10
[  316.443383][ T9456]  __x64_sys_openat+0x12d/0x210
[  316.443419][ T9456]  ? __pfx___x64_sys_openat+0x10/0x10
[  316.443466][ T9456]  do_syscall_64+0x106/0xf80
[  316.443490][ T9456]  ? clear_bhb_loop+0x40/0x90
[  316.443520][ T9456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.443547][ T9456] RIP: 0033:0x7f540479c799
[  316.443568][ T9456] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  316.443593][ T9456] RSP: 002b:00007f54056d6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  316.443616][ T9456] RAX: ffffffffffffffda RBX: 00007f5404a15fa0 RCX: 00007f540479c799
[  316.443633][ T9456] RDX: 0000000000000680 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  316.443649][ T9456] RBP: 00007f5404832c99 R08: 0000000000000000 R09: 0000000000000000
[  316.443664][ T9456] R10: 00000000000001d3 R11: 0000000000000246 R12: 0000000000000000
[  316.443679][ T9456] R13: 00007f5404a16038 R14: 00007f5404a15fa0 R15: 00007ffca9b9d798
[  316.443711][ T9456]  </TASK>
[  317.346735][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  317.353346][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  318.332725][ T9479] FAULT_INJECTION: forcing a failure.
[  318.332725][ T9479] name failslab, interval 1, probability 0, space 0, times 0
[  318.433757][ T9479] CPU: 0 UID: 0 PID: 9479 Comm: syz.4.856 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  318.433798][ T9479] Tainted: [L]=SOFTLOCKUP
[  318.433807][ T9479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  318.433822][ T9479] Call Trace:
[  318.433831][ T9479]  <TASK>
[  318.433840][ T9479]  dump_stack_lvl+0x100/0x190
[  318.433884][ T9479]  should_fail_ex.cold+0x5/0xa
[  318.433913][ T9479]  ? tomoyo_realpath_from_path+0xb6/0x690
[  318.433950][ T9479]  should_failslab+0xc2/0x120
[  318.433978][ T9479]  __kmalloc_noprof+0xe0/0x850
[  318.434024][ T9479]  tomoyo_realpath_from_path+0xb6/0x690
[  318.434068][ T9479]  tomoyo_check_open_permission+0x2af/0x3c0
[  318.434101][ T9479]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  318.434161][ T9479]  ? do_raw_spin_lock+0x128/0x260
[  318.434203][ T9479]  ? path_get+0x61/0x80
[  318.434237][ T9479]  tomoyo_file_open+0x6b/0x90
[  318.434278][ T9479]  security_file_open+0xb5/0x1e0
[  318.434313][ T9479]  do_dentry_open+0x5aa/0x1660
[  318.434341][ T9479]  ? security_inode_permission+0xbf/0x250
[  318.434376][ T9479]  vfs_open+0x82/0x3f0
[  318.434413][ T9479]  path_openat+0x208c/0x31a0
[  318.434450][ T9479]  ? __pfx_path_openat+0x10/0x10
[  318.434488][ T9479]  do_file_open+0x20e/0x430
[  318.434517][ T9479]  ? __pfx_do_file_open+0x10/0x10
[  318.434565][ T9479]  ? alloc_fd+0x476/0x790
[  318.434594][ T9479]  ? do_getname+0x191/0x390
[  318.434638][ T9479]  do_sys_openat2+0x10d/0x1e0
[  318.434672][ T9479]  ? __pfx_do_sys_openat2+0x10/0x10
[  318.434718][ T9479]  __x64_sys_openat+0x12d/0x210
[  318.434755][ T9479]  ? __pfx___x64_sys_openat+0x10/0x10
[  318.434802][ T9479]  do_syscall_64+0x106/0xf80
[  318.434825][ T9479]  ? clear_bhb_loop+0x40/0x90
[  318.434856][ T9479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.434882][ T9479] RIP: 0033:0x7f540479c799
[  318.434903][ T9479] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  318.434927][ T9479] RSP: 002b:00007f54056d6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  318.434951][ T9479] RAX: ffffffffffffffda RBX: 00007f5404a15fa0 RCX: 00007f540479c799
[  318.434968][ T9479] RDX: 0000000000008002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  318.434984][ T9479] RBP: 00007f5404832c99 R08: 0000000000000000 R09: 0000000000000000
[  318.434999][ T9479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  318.435014][ T9479] R13: 00007f5404a16038 R14: 00007f5404a15fa0 R15: 00007ffca9b9d798
[  318.435045][ T9479]  </TASK>
[  318.435055][ T9479] ERROR: Out of memory at tomoyo_realpath_from_path.
[  320.133152][ T9498] block nbd7: not configured, cannot reconfigure
[  320.174918][ T9499] input: f¬
 as /devices/virtual/input/input14
[  320.889900][ T9512] mkiss: ax0: crc mode is auto.
[  322.449467][ T9534] FAULT_INJECTION: forcing a failure.
[  322.449467][ T9534] name failslab, interval 1, probability 0, space 0, times 0
[  322.581349][ T9534] CPU: 0 UID: 0 PID: 9534 Comm: syz.3.869 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  322.581390][ T9534] Tainted: [L]=SOFTLOCKUP
[  322.581399][ T9534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  322.581414][ T9534] Call Trace:
[  322.581422][ T9534]  <TASK>
[  322.581432][ T9534]  dump_stack_lvl+0x100/0x190
[  322.581474][ T9534]  should_fail_ex.cold+0x5/0xa
[  322.581504][ T9534]  should_failslab+0xc2/0x120
[  322.581531][ T9534]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  322.581578][ T9534]  ? __d_alloc+0x34/0xa80
[  322.581613][ T9534]  __d_alloc+0x34/0xa80
[  322.581645][ T9534]  d_alloc_pseudo+0x1c/0xc0
[  322.581683][ T9534]  alloc_file_pseudo+0xcf/0x230
[  322.581718][ T9534]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  322.581752][ T9534]  ? alloc_fd+0x476/0x790
[  322.581783][ T9534]  sock_alloc_file+0x50/0x210
[  322.581809][ T9534]  __sys_socket+0x1c0/0x260
[  322.581841][ T9534]  ? __pfx___sys_socket+0x10/0x10
[  322.581881][ T9534]  __x64_sys_socket+0x72/0xb0
[  322.581911][ T9534]  ? lockdep_hardirqs_on+0x78/0x100
[  322.581953][ T9534]  do_syscall_64+0x106/0xf80
[  322.581976][ T9534]  ? clear_bhb_loop+0x40/0x90
[  322.582007][ T9534]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.582033][ T9534] RIP: 0033:0x7ff40359c799
[  322.582058][ T9534] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  322.582083][ T9534] RSP: 002b:00007ff404439028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  322.582107][ T9534] RAX: ffffffffffffffda RBX: 00007ff403815fa0 RCX: 00007ff40359c799
[  322.582123][ T9534] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[  322.582139][ T9534] RBP: 00007ff403632c99 R08: 0000000000000000 R09: 0000000000000000
[  322.582174][ T9534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  322.582188][ T9534] R13: 00007ff403816038 R14: 00007ff403815fa0 R15: 00007ffcabd6fe28
[  322.582220][ T9534]  </TASK>
[  326.264760][ T9586] program syz.1.880 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  327.320282][ T9605] Invalid ELF header magic: != ELF
[  327.361167][ T9609] FAULT_INJECTION: forcing a failure.
[  327.361167][ T9609] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  327.528949][ T9609] CPU: 0 UID: 0 PID: 9609 Comm: syz.2.885 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  327.528987][ T9609] Tainted: [L]=SOFTLOCKUP
[  327.528996][ T9609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  327.529010][ T9609] Call Trace:
[  327.529017][ T9609]  <TASK>
[  327.529026][ T9609]  dump_stack_lvl+0x100/0x190
[  327.529066][ T9609]  should_fail_ex.cold+0x5/0xa
[  327.529095][ T9609]  _copy_to_user+0x32/0xd0
[  327.529127][ T9609]  simple_read_from_buffer+0xcb/0x170
[  327.529168][ T9609]  proc_fail_nth_read+0x1af/0x230
[  327.529200][ T9609]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  327.529232][ T9609]  ? rw_verify_area+0xce/0x6d0
[  327.529267][ T9609]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  327.529297][ T9609]  vfs_read+0x1e4/0xb30
[  327.529324][ T9609]  ? __pfx_vfs_read+0x10/0x10
[  327.529345][ T9609]  ? __fget_files+0x215/0x3d0
[  327.529374][ T9609]  ? __fget_files+0x21f/0x3d0
[  327.529405][ T9609]  ksys_read+0x12a/0x250
[  327.529428][ T9609]  ? __pfx_ksys_read+0x10/0x10
[  327.529462][ T9609]  do_syscall_64+0x106/0xf80
[  327.529483][ T9609]  ? clear_bhb_loop+0x40/0x90
[  327.529513][ T9609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.529537][ T9609] RIP: 0033:0x7f5a1615cfce
[  327.529556][ T9609] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  327.529579][ T9609] RSP: 002b:00007f5a16fb9fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  327.529600][ T9609] RAX: ffffffffffffffda RBX: 00007f5a16fba6c0 RCX: 00007f5a1615cfce
[  327.529616][ T9609] RDX: 000000000000000f RSI: 00007f5a16fba0a0 RDI: 0000000000000004
[  327.529630][ T9609] RBP: 00007f5a16fba090 R08: 0000000000000000 R09: 0000000000000000
[  327.529644][ T9609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  327.529658][ T9609] R13: 00007f5a16416038 R14: 00007f5a16415fa0 R15: 00007ffcacd6b978
[  327.529687][ T9609]  </TASK>
[  328.945792][ T9624] program syz.4.890 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  331.406451][ T9671] overlayfs: missing 'lowerdir'
[  331.703804][   T51] Bluetooth: hci0: unexpected event for opcode 0x7c89
[  332.848808][ T9707] sctp: [Deprecated]: syz.4.909 (pid 9707) Use of int in max_burst socket option deprecated.
[  332.848808][ T9707] Use struct sctp_assoc_value instead
[  333.450088][ T9717] random: crng reseeded on system resumption
[  334.013962][   T51] Bluetooth: hci4: unexpected event 0x04 length: 64 > 10
[  334.014128][   T51] Bluetooth: hci4: connection err: -111
[  334.222472][ T9722] netlink: 28 bytes leftover after parsing attributes in process `syz.3.915'.
[  334.281480][ T9722] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  334.281537][ T9722] batman_adv: batadv0: Removing interface: batadv_slave_0
[  334.288447][ T9722] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  334.288474][ T9722] batman_adv: batadv0: Removing interface: batadv_slave_1
[  334.313676][ T9722] bridge0: port 3(batadv0) entered disabled state
[  334.334976][ T9722] batadv0 (unregistering): left allmulticast mode
[  334.335005][ T9722] batadv0 (unregistering): left promiscuous mode
[  334.335070][ T9722] bridge0: port 3(batadv0) entered disabled state
[  334.469728][ T9723] Invalid ELF header magic: != ELF
[  337.965047][ T9791] netlink: 28 bytes leftover after parsing attributes in process `syz.4.932'.
[  338.942405][ T9814] netlink: 4 bytes leftover after parsing attributes in process `syz.1.940'.
[  338.983303][ T9814] netlink: 354 bytes leftover after parsing attributes in process `syz.1.940'.
[  340.714306][ T9844] FAULT_INJECTION: forcing a failure.
[  340.714306][ T9844] name failslab, interval 1, probability 0, space 0, times 0
[  340.795993][ T9844] CPU: 0 UID: 0 PID: 9844 Comm: syz.2.948 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  340.796041][ T9844] Tainted: [L]=SOFTLOCKUP
[  340.796050][ T9844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  340.796066][ T9844] Call Trace:
[  340.796073][ T9844]  <TASK>
[  340.796082][ T9844]  dump_stack_lvl+0x100/0x190
[  340.796125][ T9844]  should_fail_ex.cold+0x5/0xa
[  340.796155][ T9844]  should_failslab+0xc2/0x120
[  340.796183][ T9844]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  340.796224][ T9844]  ? shmem_alloc_inode+0x25/0x50
[  340.796256][ T9844]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  340.796288][ T9844]  shmem_alloc_inode+0x25/0x50
[  340.796316][ T9844]  alloc_inode+0x68/0x250
[  340.796351][ T9844]  new_inode+0x22/0x1c0
[  340.796383][ T9844]  ? trace_kmem_cache_alloc+0xf3/0x120
[  340.796414][ T9844]  shmem_get_inode+0x212/0x1040
[  340.796452][ T9844]  ? __pfx_shmem_get_inode+0x10/0x10
[  340.796486][ T9844]  ? rcu_is_watching+0x12/0xc0
[  340.796524][ T9844]  ? percpu_counter_add_batch+0xb9/0x230
[  340.796565][ T9844]  __shmem_file_setup+0x3ac/0x490
[  340.796602][ T9844]  ? __pfx___shmem_file_setup+0x10/0x10
[  340.796643][ T9844]  ? vm_area_alloc+0x1f/0x160
[  340.796681][ T9844]  shmem_zero_setup+0x96/0x1b0
[  340.796707][ T9844]  __mmap_region+0x2198/0x29e0
[  340.796750][ T9844]  ? __pfx___mmap_region+0x10/0x10
[  340.796790][ T9844]  ? __lock_acquire+0x4a5/0x2630
[  340.796824][ T9844]  ? __pfx_css_rstat_updated+0x10/0x10
[  340.796853][ T9844]  ? tomoyo_check_open_permission+0x1db/0x3c0
[  340.796894][ T9844]  ? __lock_acquire+0x4a5/0x2630
[  340.796927][ T9844]  ? find_held_lock+0x2b/0x80
[  340.796963][ T9844]  ? find_held_lock+0x2b/0x80
[  340.796986][ T9844]  ? finish_task_switch.isra.0+0x200/0xb80
[  340.797015][ T9844]  ? finish_task_switch.isra.0+0x200/0xb80
[  340.797061][ T9844]  ? trace_sched_exit_tp+0x13a/0x180
[  340.797094][ T9844]  ? __schedule+0x1000/0x6120
[  340.797170][ T9844]  ? rcu_is_watching+0x12/0xc0
[  340.797209][ T9844]  ? cap_capable+0x107/0x460
[  340.797238][ T9844]  mmap_region+0x180/0x3e0
[  340.797283][ T9844]  do_mmap+0xc63/0x12f0
[  340.797317][ T9844]  ? __pfx_do_mmap+0x10/0x10
[  340.797346][ T9844]  ? __pfx_down_write_killable+0x10/0x10
[  340.797381][ T9844]  vm_mmap_pgoff+0x29e/0x470
[  340.797415][ T9844]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  340.797447][ T9844]  ? do_futex+0x192/0x350
[  340.797481][ T9844]  ? __pfx_do_futex+0x10/0x10
[  340.797520][ T9844]  ksys_mmap_pgoff+0xe1/0x650
[  340.797553][ T9844]  ? __x64_sys_futex+0x34f/0x4d0
[  340.797586][ T9844]  ? __x64_sys_futex+0x358/0x4d0
[  340.797621][ T9844]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  340.797650][ T9844]  ? xfd_validate_state+0x129/0x190
[  340.797693][ T9844]  __x64_sys_mmap+0x125/0x190
[  340.797736][ T9844]  do_syscall_64+0x106/0xf80
[  340.797758][ T9844]  ? clear_bhb_loop+0x40/0x90
[  340.797789][ T9844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.797814][ T9844] RIP: 0033:0x7f5a1619c799
[  340.797835][ T9844] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  340.797860][ T9844] RSP: 002b:00007f5a16fba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  340.797884][ T9844] RAX: ffffffffffffffda RBX: 00007f5a16415fa0 RCX: 00007f5a1619c799
[  340.797902][ T9844] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  340.797918][ T9844] RBP: 00007f5a16232c99 R08: fffffffffffffffa R09: 0000000000008000
[  340.797935][ T9844] R10: 0800000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  340.797951][ T9844] R13: 00007f5a16416038 R14: 00007f5a16415fa0 R15: 00007ffcacd6b978
[  340.797982][ T9844]  </TASK>
[  343.904069][ T9866] FAULT_INJECTION: forcing a failure.
[  343.904069][ T9866] name failslab, interval 1, probability 0, space 0, times 0
[  343.949508][ T9866] CPU: 0 UID: 0 PID: 9866 Comm: syz.2.956 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  343.949549][ T9866] Tainted: [L]=SOFTLOCKUP
[  343.949558][ T9866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  343.949573][ T9866] Call Trace:
[  343.949581][ T9866]  <TASK>
[  343.949590][ T9866]  dump_stack_lvl+0x100/0x190
[  343.949633][ T9866]  should_fail_ex.cold+0x5/0xa
[  343.949666][ T9866]  should_failslab+0xc2/0x120
[  343.949695][ T9866]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  343.949734][ T9866]  ? __kernfs_new_node+0xd2/0x960
[  343.949781][ T9866]  ? kstrdup+0xb3/0xe0
[  343.949807][ T9866]  __kernfs_new_node+0xd2/0x960
[  343.949849][ T9866]  ? __pfx___kernfs_new_node+0x10/0x10
[  343.949894][ T9866]  ? find_held_lock+0x2b/0x80
[  343.949918][ T9866]  ? kernfs_root+0xee/0x2a0
[  343.949954][ T9866]  ? kernfs_root+0xee/0x2a0
[  343.949997][ T9866]  kernfs_new_node+0x11b/0x1a0
[  343.950026][ T9866]  __kernfs_create_file+0x53/0x350
[  343.950060][ T9866]  cgroup_addrm_files+0x4d8/0xb90
[  343.950113][ T9866]  ? __pfx_cgroup_addrm_files+0x10/0x10
[  343.950154][ T9866]  ? __pfx___xa_store+0x10/0x10
[  343.950191][ T9866]  ? do_raw_spin_unlock+0x145/0x1e0
[  343.950236][ T9866]  css_populate_dir+0x161/0x590
[  343.950271][ T9866]  cgroup_apply_control_enable+0x40a/0xbd0
[  343.950324][ T9866]  cgroup_mkdir+0x57f/0x1330
[  343.950351][ T9866]  ? __pfx_cgroup_mkdir+0x10/0x10
[  343.950377][ T9866]  kernfs_iop_mkdir+0x111/0x190
[  343.950399][ T9866]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  343.950438][ T9866]  vfs_mkdir+0x361/0x850
[  343.950486][ T9866]  filename_mkdirat+0x48b/0x5e0
[  343.950520][ T9866]  ? __pfx_filename_mkdirat+0x10/0x10
[  343.950549][ T9866]  ? strncpy_from_user+0x19d/0x2d0
[  343.950583][ T9866]  ? do_getname+0x191/0x390
[  343.950623][ T9866]  __x64_sys_mkdir+0x6b/0x90
[  343.950653][ T9866]  do_syscall_64+0x106/0xf80
[  343.950675][ T9866]  ? clear_bhb_loop+0x40/0x90
[  343.950706][ T9866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.950732][ T9866] RIP: 0033:0x7f5a1619c799
[  343.950760][ T9866] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  343.950784][ T9866] RSP: 002b:00007f5a16fba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  343.950808][ T9866] RAX: ffffffffffffffda RBX: 00007f5a16415fa0 RCX: 00007f5a1619c799
[  343.950824][ T9866] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000
[  343.950840][ T9866] RBP: 00007f5a16232c99 R08: 0000000000000000 R09: 0000000000000000
[  343.950855][ T9866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  343.950870][ T9866] R13: 00007f5a16416038 R14: 00007f5a16415fa0 R15: 00007ffcacd6b978
[  343.950902][ T9866]  </TASK>
[  343.950931][ T9866] cgroup: cgroup_addrm_files: failed to add usage_in_bytes, err=-12
[  346.170236][ T9897] bond0: option mode: unable to set because the bond device is up
[  346.467976][ T9901] netlink: 28 bytes leftover after parsing attributes in process `syz.1.962'.
[  347.101438][ T9919] netlink: 4 bytes leftover after parsing attributes in process `syz.4.967'.
[  347.151380][ T9917] netlink: 4 bytes leftover after parsing attributes in process `syz.4.967'.
[  348.166470][ T9932] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16
[  348.265069][ T9935] Invalid ELF header magic: != ELF
[  348.991145][ T9948] futex_wake_op: syz.1.974 tries to shift op by -2048; fix this program
[  349.082117][ T9948] netlink: 36 bytes leftover after parsing attributes in process `syz.1.974'.
[  350.466191][ T9963] Invalid ELF header magic: != ELF
[  351.710125][ T9983] bond0: invalid ARP target specified
[  351.804755][ T9983] netlink: 28 bytes leftover after parsing attributes in process `syz.3.985'.
[  352.082675][ T9986] FAULT_INJECTION: forcing a failure.
[  352.082675][ T9986] name failslab, interval 1, probability 0, space 0, times 0
[  352.129992][ T9986] CPU: 0 UID: 0 PID: 9986 Comm: syz.3.986 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  352.130033][ T9986] Tainted: [L]=SOFTLOCKUP
[  352.130041][ T9986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  352.130058][ T9986] Call Trace:
[  352.130066][ T9986]  <TASK>
[  352.130075][ T9986]  dump_stack_lvl+0x100/0x190
[  352.130127][ T9986]  should_fail_ex.cold+0x5/0xa
[  352.130161][ T9986]  should_failslab+0xc2/0x120
[  352.130190][ T9986]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  352.130231][ T9986]  ? shmem_alloc_inode+0x25/0x50
[  352.130264][ T9986]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  352.130294][ T9986]  shmem_alloc_inode+0x25/0x50
[  352.130323][ T9986]  alloc_inode+0x68/0x250
[  352.130359][ T9986]  new_inode+0x22/0x1c0
[  352.130391][ T9986]  ? trace_kmem_cache_alloc+0xf3/0x120
[  352.130423][ T9986]  shmem_get_inode+0x212/0x1040
[  352.130460][ T9986]  ? __pfx_shmem_get_inode+0x10/0x10
[  352.130494][ T9986]  ? rcu_is_watching+0x12/0xc0
[  352.130532][ T9986]  ? percpu_counter_add_batch+0xb9/0x230
[  352.130573][ T9986]  __shmem_file_setup+0x3ac/0x490
[  352.130609][ T9986]  ? __pfx___shmem_file_setup+0x10/0x10
[  352.130650][ T9986]  ? vm_area_alloc+0x1f/0x160
[  352.130689][ T9986]  shmem_zero_setup+0x96/0x1b0
[  352.130714][ T9986]  __mmap_region+0x2198/0x29e0
[  352.130757][ T9986]  ? __pfx___mmap_region+0x10/0x10
[  352.130797][ T9986]  ? __lock_acquire+0x4a5/0x2630
[  352.130830][ T9986]  ? __pfx_css_rstat_updated+0x10/0x10
[  352.130870][ T9986]  ? __lock_acquire+0x4a5/0x2630
[  352.130902][ T9986]  ? find_held_lock+0x2b/0x80
[  352.130938][ T9986]  ? find_held_lock+0x2b/0x80
[  352.130962][ T9986]  ? finish_task_switch.isra.0+0x200/0xb80
[  352.130990][ T9986]  ? finish_task_switch.isra.0+0x200/0xb80
[  352.131029][ T9986]  ? trace_sched_exit_tp+0x13a/0x180
[  352.131061][ T9986]  ? __schedule+0x1000/0x6120
[  352.131142][ T9986]  ? rcu_is_watching+0x12/0xc0
[  352.131183][ T9986]  ? cap_capable+0x107/0x460
[  352.131212][ T9986]  mmap_region+0x180/0x3e0
[  352.131256][ T9986]  do_mmap+0xc63/0x12f0
[  352.131290][ T9986]  ? __pfx_do_mmap+0x10/0x10
[  352.131319][ T9986]  ? __pfx_down_write_killable+0x10/0x10
[  352.131354][ T9986]  vm_mmap_pgoff+0x29e/0x470
[  352.131389][ T9986]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  352.131420][ T9986]  ? do_futex+0x192/0x350
[  352.131454][ T9986]  ? __pfx_do_futex+0x10/0x10
[  352.131493][ T9986]  ksys_mmap_pgoff+0xe1/0x650
[  352.131521][ T9986]  ? __x64_sys_futex+0x34f/0x4d0
[  352.131554][ T9986]  ? __x64_sys_futex+0x358/0x4d0
[  352.131588][ T9986]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  352.131617][ T9986]  ? xfd_validate_state+0x129/0x190
[  352.131660][ T9986]  __x64_sys_mmap+0x125/0x190
[  352.131702][ T9986]  do_syscall_64+0x106/0xf80
[  352.131724][ T9986]  ? clear_bhb_loop+0x40/0x90
[  352.131755][ T9986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.131781][ T9986] RIP: 0033:0x7ff40359c799
[  352.131802][ T9986] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  352.131827][ T9986] RSP: 002b:00007ff404439028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  352.131851][ T9986] RAX: ffffffffffffffda RBX: 00007ff403815fa0 RCX: 00007ff40359c799
[  352.131868][ T9986] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  352.131883][ T9986] RBP: 00007ff403632c99 R08: fffffffffffffffa R09: 0000000000008000
[  352.131899][ T9986] R10: 0800000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  352.131915][ T9986] R13: 00007ff403816038 R14: 00007ff403815fa0 R15: 00007ffcabd6fe28
[  352.131946][ T9986]  </TASK>
[  354.005872][T10011] FAULT_INJECTION: forcing a failure.
[  354.005872][T10011] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  354.083582][T10011] CPU: 0 UID: 0 PID: 10011 Comm: syz.4.991 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  354.083623][T10011] Tainted: [L]=SOFTLOCKUP
[  354.083631][T10011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  354.083647][T10011] Call Trace:
[  354.083654][T10011]  <TASK>
[  354.083664][T10011]  dump_stack_lvl+0x100/0x190
[  354.083707][T10011]  should_fail_ex.cold+0x5/0xa
[  354.083733][T10011]  ? prepare_alloc_pages+0x16d/0x5f0
[  354.083766][T10011]  should_fail_alloc_page+0xeb/0x140
[  354.083797][T10011]  prepare_alloc_pages+0x1f0/0x5f0
[  354.083827][T10011]  ? bpf_ksym_find+0x124/0x1c0
[  354.083861][T10011]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  354.083904][T10011]  ? __kernel_text_address+0xd/0x30
[  354.083943][T10011]  ? unwind_get_return_address+0x59/0xa0
[  354.083972][T10011]  ? arch_stack_walk+0xa6/0xf0
[  354.084007][T10011]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  354.084069][T10011]  ? stack_trace_save+0x8e/0xc0
[  354.084095][T10011]  ? __pfx_stack_trace_save+0x10/0x10
[  354.084122][T10011]  ? stack_depot_save_flags+0x27/0x9d0
[  354.084157][T10011]  ? mas_store_prealloc+0x893/0xfb0
[  354.084190][T10011]  ? kasan_save_stack+0x30/0x50
[  354.084212][T10011]  ? kasan_save_track+0x14/0x30
[  354.084233][T10011]  ? __kasan_slab_alloc+0x89/0x90
[  354.084257][T10011]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  354.084296][T10011]  ? __pmd_alloc+0xbf/0x950
[  354.084324][T10011]  ? __handle_mm_fault+0xa99/0x2b60
[  354.084358][T10011]  ? handle_mm_fault+0x36d/0xa20
[  354.084391][T10011]  ? __get_user_pages+0xf9c/0x34d0
[  354.084418][T10011]  ? populate_vma_page_range+0x267/0x3f0
[  354.084449][T10011]  ? __mm_populate+0x107/0x3a0
[  354.084478][T10011]  ? vm_mmap_pgoff+0x37f/0x470
[  354.084505][T10011]  ? ksys_mmap_pgoff+0xe1/0x650
[  354.084534][T10011]  ? __x64_sys_mmap+0x125/0x190
[  354.084571][T10011]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  354.084599][T10011]  ? policy_nodemask+0xed/0x4f0
[  354.084629][T10011]  alloc_pages_mpol+0x1fb/0x550
[  354.084658][T10011]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  354.084694][T10011]  alloc_pages_noprof+0x131/0x390
[  354.084723][T10011]  pte_alloc_one+0x1c/0x3d0
[  354.084753][T10011]  __pte_alloc+0x6d/0x3e0
[  354.084779][T10011]  ? __pfx___pte_alloc+0x10/0x10
[  354.084807][T10011]  ? do_raw_spin_lock+0x128/0x260
[  354.084845][T10011]  ? find_held_lock+0x2b/0x80
[  354.084871][T10011]  do_anonymous_page+0x13cc/0x1fb0
[  354.084908][T10011]  ? do_raw_spin_unlock+0x145/0x1e0
[  354.084948][T10011]  ? _raw_spin_unlock+0x28/0x50
[  354.084984][T10011]  ? __pmd_alloc+0x3fb/0x950
[  354.085016][T10011]  __handle_mm_fault+0x1d42/0x2b60
[  354.085062][T10011]  ? mt_find+0x45e/0x8e0
[  354.085088][T10011]  ? __pfx___handle_mm_fault+0x10/0x10
[  354.085123][T10011]  ? __pfx_mt_find+0x10/0x10
[  354.085171][T10011]  handle_mm_fault+0x36d/0xa20
[  354.085213][T10011]  __get_user_pages+0xf9c/0x34d0
[  354.085253][T10011]  ? __pfx___get_user_pages+0x10/0x10
[  354.085291][T10011]  populate_vma_page_range+0x267/0x3f0
[  354.085325][T10011]  ? __pfx_populate_vma_page_range+0x10/0x10
[  354.085357][T10011]  ? __pfx_find_vma_intersection+0x10/0x10
[  354.085386][T10011]  ? do_mmap+0x93f/0x12f0
[  354.085418][T10011]  __mm_populate+0x107/0x3a0
[  354.085450][T10011]  ? __pfx___mm_populate+0x10/0x10
[  354.085484][T10011]  ? up_write+0x290/0x4f0
[  354.085523][T10011]  vm_mmap_pgoff+0x37f/0x470
[  354.085556][T10011]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  354.085588][T10011]  ? do_futex+0x192/0x350
[  354.085622][T10011]  ? __pfx_do_futex+0x10/0x10
[  354.085661][T10011]  ksys_mmap_pgoff+0xe1/0x650
[  354.085689][T10011]  ? __x64_sys_futex+0x34f/0x4d0
[  354.085722][T10011]  ? __x64_sys_futex+0x358/0x4d0
[  354.085756][T10011]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  354.085785][T10011]  ? xfd_validate_state+0x129/0x190
[  354.085828][T10011]  __x64_sys_mmap+0x125/0x190
[  354.085870][T10011]  do_syscall_64+0x106/0xf80
[  354.085892][T10011]  ? clear_bhb_loop+0x40/0x90
[  354.085923][T10011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  354.085949][T10011] RIP: 0033:0x7f540479c799
[  354.085970][T10011] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  354.085994][T10011] RSP: 002b:00007f54056d6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  354.086018][T10011] RAX: ffffffffffffffda RBX: 00007f5404a15fa0 RCX: 00007f540479c799
[  354.086060][T10011] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  354.086076][T10011] RBP: 00007f5404832c99 R08: ffffffffffffffff R09: 0000000000000000
[  354.086092][T10011] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  354.086106][T10011] R13: 00007f5404a16038 R14: 00007f5404a15fa0 R15: 00007ffca9b9d798
[  354.086138][T10011]  </TASK>
[  355.077640][T10016] Invalid ELF header magic: != ELF
[  355.165968][T10019] raw_sendmsg: syz.3.993 forgot to set AF_INET. Fix it!
[  355.176309][T10023] bond0: invalid ARP target specified
[  355.238353][T10023] netlink: 28 bytes leftover after parsing attributes in process `syz.2.995'.
[  355.292976][T10023] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  355.312259][T10023] batman_adv: batadv0: Removing interface: batadv_slave_0
[  355.346486][T10023] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  355.384002][T10023] batman_adv: batadv0: Removing interface: batadv_slave_1
[  355.415635][T10023] bridge0: port 3(batadv0) entered disabled state
[  355.483786][T10023] batadv0 (unregistering): left allmulticast mode
[  355.492304][T10023] batadv0 (unregistering): left promiscuous mode
[  355.518070][T10023] bridge0: port 3(batadv0) entered disabled state
[  355.847744][T10038] FAULT_INJECTION: forcing a failure.
[  355.847744][T10038] name failslab, interval 1, probability 0, space 0, times 0
[  355.914210][T10038] CPU: 0 UID: 0 PID: 10038 Comm: syz.2.998 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  355.914250][T10038] Tainted: [L]=SOFTLOCKUP
[  355.914258][T10038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  355.914274][T10038] Call Trace:
[  355.914281][T10038]  <TASK>
[  355.914290][T10038]  dump_stack_lvl+0x100/0x190
[  355.914333][T10038]  should_fail_ex.cold+0x5/0xa
[  355.914363][T10038]  should_failslab+0xc2/0x120
[  355.914391][T10038]  __kmalloc_cache_noprof+0x7a/0x6f0
[  355.914426][T10038]  ? __request_module+0x2b7/0x6c0
[  355.914461][T10038]  ? lockdep_hardirqs_on+0x78/0x100
[  355.914507][T10038]  __request_module+0x2b7/0x6c0
[  355.914549][T10038]  ? __pfx___request_module+0x10/0x10
[  355.914599][T10038]  ? find_held_lock+0x2b/0x80
[  355.914622][T10038]  ? inet6_create+0xba3/0x12b0
[  355.914669][T10038]  inet6_create+0xd69/0x12b0
[  355.914711][T10038]  ? inet6_create+0x7f/0x12b0
[  355.914754][T10038]  __sock_create+0x339/0x860
[  355.914789][T10038]  __sys_socket+0x14d/0x260
[  355.914821][T10038]  ? __pfx___sys_socket+0x10/0x10
[  355.914871][T10038]  __x64_sys_socket+0x72/0xb0
[  355.914902][T10038]  ? lockdep_hardirqs_on+0x78/0x100
[  355.914943][T10038]  do_syscall_64+0x106/0xf80
[  355.914965][T10038]  ? clear_bhb_loop+0x40/0x90
[  355.914996][T10038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.915022][T10038] RIP: 0033:0x7f5a1619c799
[  355.915042][T10038] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  355.915066][T10038] RSP: 002b:00007f5a16fba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  355.915089][T10038] RAX: ffffffffffffffda RBX: 00007f5a16415fa0 RCX: 00007f5a1619c799
[  355.915106][T10038] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 000000000000000a
[  355.915128][T10038] RBP: 00007f5a16232c99 R08: 0000000000000000 R09: 0000000000000000
[  355.915143][T10038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  355.915158][T10038] R13: 00007f5a16416038 R14: 00007f5a16415fa0 R15: 00007ffcacd6b978
[  355.915190][T10038]  </TASK>
[  357.459289][T10059] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3456254174 (3456254174 ns) > initial count (2671155079 ns). Using initial count to start timer.
[  358.243332][T10080] FAULT_INJECTION: forcing a failure.
[  358.243332][T10080] name failslab, interval 1, probability 0, space 0, times 0
[  358.388748][T10080] CPU: 0 UID: 0 PID: 10080 Comm: syz.4.1008 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  358.388789][T10080] Tainted: [L]=SOFTLOCKUP
[  358.388798][T10080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  358.388813][T10080] Call Trace:
[  358.388821][T10080]  <TASK>
[  358.388830][T10080]  dump_stack_lvl+0x100/0x190
[  358.388873][T10080]  should_fail_ex.cold+0x5/0xa
[  358.388903][T10080]  should_failslab+0xc2/0x120
[  358.388930][T10080]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  358.388969][T10080]  ? sk_prot_alloc+0x60/0x2a0
[  358.389002][T10080]  sk_prot_alloc+0x60/0x2a0
[  358.389032][T10080]  sk_alloc+0x36/0xe80
[  358.389069][T10080]  rxrpc_create+0x116/0x8d0
[  358.389108][T10080]  __sock_create+0x339/0x860
[  358.389144][T10080]  __sys_socket+0x14d/0x260
[  358.389176][T10080]  ? __pfx___sys_socket+0x10/0x10
[  358.389216][T10080]  __x64_sys_socket+0x72/0xb0
[  358.389247][T10080]  ? lockdep_hardirqs_on+0x78/0x100
[  358.389288][T10080]  do_syscall_64+0x106/0xf80
[  358.389311][T10080]  ? clear_bhb_loop+0x40/0x90
[  358.389341][T10080]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.389367][T10080] RIP: 0033:0x7f540479c799
[  358.389387][T10080] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  358.389412][T10080] RSP: 002b:00007f5405694028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  358.389435][T10080] RAX: ffffffffffffffda RBX: 00007f5404a16180 RCX: 00007f540479c799
[  358.389452][T10080] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[  358.389468][T10080] RBP: 00007f5404832c99 R08: 0000000000000000 R09: 0000000000000000
[  358.389483][T10080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  358.389498][T10080] R13: 00007f5404a16218 R14: 00007f5404a16180 R15: 00007ffca9b9d798
[  358.389528][T10080]  </TASK>
[  359.083050][T10091] Invalid ELF header magic: != ELF
[  359.900754][T10107] bond0: invalid ARP target specified
[  360.406877][T10111] bond0: invalid ARP target specified
[  360.665038][T10113] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3456254174 (3456254174 ns) > initial count (2671155079 ns). Using initial count to start timer.
[  360.988653][T10117] Invalid ELF header magic: != ELF
[  361.678272][T10139] Invalid ELF header magic: != ELF
[  364.378182][T10186] mkiss: ax0: crc mode is auto.
[  365.506679][T10204] Invalid ELF header magic: != ELF
[  365.815086][T10210] bond0: invalid ARP target specified
[  366.223751][T10215] FAULT_INJECTION: forcing a failure.
[  366.223751][T10215] name failslab, interval 1, probability 0, space 0, times 0
[  366.289557][T10215] CPU: 0 UID: 0 PID: 10215 Comm: syz.1.1040 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  366.289597][T10215] Tainted: [L]=SOFTLOCKUP
[  366.289606][T10215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  366.289625][T10215] Call Trace:
[  366.289635][T10215]  <TASK>
[  366.289645][T10215]  dump_stack_lvl+0x100/0x190
[  366.289687][T10215]  should_fail_ex.cold+0x5/0xa
[  366.289723][T10215]  should_failslab+0xc2/0x120
[  366.289752][T10215]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  366.289793][T10215]  ? __d_alloc+0x34/0xa80
[  366.289829][T10215]  __d_alloc+0x34/0xa80
[  366.289860][T10215]  d_alloc_pseudo+0x1c/0xc0
[  366.289898][T10215]  alloc_file_pseudo+0xcf/0x230
[  366.289933][T10215]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  366.289975][T10215]  __shmem_file_setup+0x221/0x490
[  366.290012][T10215]  ? __pfx___shmem_file_setup+0x10/0x10
[  366.290053][T10215]  ? vm_area_alloc+0x1f/0x160
[  366.290092][T10215]  shmem_zero_setup+0x96/0x1b0
[  366.290123][T10215]  __mmap_region+0x2198/0x29e0
[  366.290166][T10215]  ? __pfx___mmap_region+0x10/0x10
[  366.290202][T10215]  ? process_measurement+0x1f4/0x2350
[  366.290230][T10215]  ? tomoyo_check_open_permission+0x1db/0x3c0
[  366.290305][T10215]  ? lockdep_hardirqs_on+0x78/0x100
[  366.290346][T10215]  ? finish_task_switch.isra.0+0x205/0xb80
[  366.290376][T10215]  ? rcu_is_watching+0x12/0xc0
[  366.290452][T10215]  ? rcu_is_watching+0x12/0xc0
[  366.290491][T10215]  ? cap_capable+0x107/0x460
[  366.290519][T10215]  mmap_region+0x180/0x3e0
[  366.290564][T10215]  do_mmap+0xc63/0x12f0
[  366.290598][T10215]  ? __pfx_do_mmap+0x10/0x10
[  366.290626][T10215]  ? __pfx_down_write_killable+0x10/0x10
[  366.290661][T10215]  vm_mmap_pgoff+0x29e/0x470
[  366.290696][T10215]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  366.290727][T10215]  ? do_futex+0x192/0x350
[  366.290761][T10215]  ? __pfx_do_futex+0x10/0x10
[  366.290800][T10215]  ksys_mmap_pgoff+0xe1/0x650
[  366.290828][T10215]  ? __x64_sys_futex+0x34f/0x4d0
[  366.290860][T10215]  ? __x64_sys_futex+0x358/0x4d0
[  366.290895][T10215]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  366.290923][T10215]  ? xfd_validate_state+0x129/0x190
[  366.290966][T10215]  __x64_sys_mmap+0x125/0x190
[  366.291008][T10215]  do_syscall_64+0x106/0xf80
[  366.291030][T10215]  ? clear_bhb_loop+0x40/0x90
[  366.291061][T10215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.291087][T10215] RIP: 0033:0x7f127099c799
[  366.291115][T10215] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  366.291140][T10215] RSP: 002b:00007f12718a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  366.291168][T10215] RAX: ffffffffffffffda RBX: 00007f1270c15fa0 RCX: 00007f127099c799
[  366.291184][T10215] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  366.291200][T10215] RBP: 00007f1270a32c99 R08: fffffffffffffffa R09: 0000000000008000
[  366.291218][T10215] R10: 0000009000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  366.291234][T10215] R13: 00007f1270c16038 R14: 00007f1270c15fa0 R15: 00007ffe0d0557f8
[  366.291267][T10215]  </TASK>
[  366.988763][T10215] netlink: 354 bytes leftover after parsing attributes in process `syz.1.1040'.
[  367.599358][T10238] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1044'.
[  368.062616][T10242] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1045'.
[  368.071636][T10242] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  368.192467][T10242] batman_adv: batadv0: Removing interface: batadv_slave_0
[  368.257586][T10242] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  368.284646][T10242] batman_adv: batadv0: Removing interface: batadv_slave_1
[  368.885480][T10254] Invalid ELF header magic: != ELF
[  369.913332][T10268] bond0: invalid ARP target specified
[  369.983421][T10268] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1052'.
[  371.569501][T10296] bond0: invalid ARP target specified
[  372.280248][T10306] bond0: invalid ARP target specified
[  372.349205][T10306] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1063'.
[  374.339168][T10329] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1069'.
[  374.531397][T10333] bond0: invalid ARP target specified
[  374.608739][T10333] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1070'.
[  375.349087][T10348] Invalid ELF header magic: != ELF
[  375.390201][T10344] Invalid ELF header magic: != ELF
[  376.927174][T10363] Invalid ELF header magic: != ELF
[  377.167636][T10369] FAULT_INJECTION: forcing a failure.
[  377.167636][T10369] name failslab, interval 1, probability 0, space 0, times 0
[  377.228069][T10369] CPU: 0 UID: 0 PID: 10369 Comm: syz.2.1080 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  377.228110][T10369] Tainted: [L]=SOFTLOCKUP
[  377.228118][T10369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  377.228133][T10369] Call Trace:
[  377.228141][T10369]  <TASK>
[  377.228150][T10369]  dump_stack_lvl+0x100/0x190
[  377.228194][T10369]  should_fail_ex.cold+0x5/0xa
[  377.228225][T10369]  should_failslab+0xc2/0x120
[  377.228263][T10369]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  377.228303][T10369]  ? sk_prot_alloc+0x60/0x2a0
[  377.228337][T10369]  sk_prot_alloc+0x60/0x2a0
[  377.228367][T10369]  sk_alloc+0x36/0xe80
[  377.228403][T10369]  inet_create+0x3a0/0x1060
[  377.228437][T10369]  ? inet_create+0x94/0x1060
[  377.228471][T10369]  __sock_create+0x339/0x860
[  377.228507][T10369]  __sys_socket+0x14d/0x260
[  377.228539][T10369]  ? __pfx___sys_socket+0x10/0x10
[  377.228580][T10369]  __x64_sys_socket+0x72/0xb0
[  377.228611][T10369]  ? lockdep_hardirqs_on+0x78/0x100
[  377.228653][T10369]  do_syscall_64+0x106/0xf80
[  377.228675][T10369]  ? clear_bhb_loop+0x40/0x90
[  377.228706][T10369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.228732][T10369] RIP: 0033:0x7f5a1619c799
[  377.228753][T10369] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  377.228777][T10369] RSP: 002b:00007f5a16fba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  377.228801][T10369] RAX: ffffffffffffffda RBX: 00007f5a16415fa0 RCX: 00007f5a1619c799
[  377.228817][T10369] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[  377.228832][T10369] RBP: 00007f5a16232c99 R08: 0000000000000000 R09: 0000000000000000
[  377.228847][T10369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  377.228862][T10369] R13: 00007f5a16416038 R14: 00007f5a16415fa0 R15: 00007ffcacd6b978
[  377.228893][T10369]  </TASK>
[  377.999262][T10375] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1083'.
[  378.134025][T10378] bond0: invalid ARP target specified
[  378.182897][T10378] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1084'.
[  378.415183][ T5838] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  378.429686][ T5838] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  378.438157][ T5838] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  378.456081][ T5838] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  378.477630][ T5838] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  378.732743][T10386] bond0: invalid ARP target specified
[  378.756608][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  378.763068][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  378.821445][T10382] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1081'.
[  378.869698][T10386] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1086'.
[  379.586419][T10379] chnl_net:caif_netlink_parms(): no params data found
[  380.375525][T10379] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.375614][T10379] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.375753][T10379] bridge_slave_0: entered allmulticast mode
[  380.402515][T10379] bridge_slave_0: entered promiscuous mode
[  380.407239][T10379] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.407321][T10379] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.407628][T10379] bridge_slave_1: entered allmulticast mode
[  380.422438][T10379] bridge_slave_1: entered promiscuous mode
[  380.580647][T10379] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  380.583398][ T5838] Bluetooth: hci1: command tx timeout
[  380.604641][T10379] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  380.720574][T10379] team0: Port device team_slave_0 added
[  380.770811][T10379] team0: Port device team_slave_1 added
[  380.922418][T10379] batman_adv: batadv0: Adding interface: batadv_slave_0
[  380.922439][T10379] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  380.922471][T10379] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  380.929436][T10379] batman_adv: batadv0: Adding interface: batadv_slave_1
[  380.929457][T10379] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  380.929488][T10379] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  381.157583][T10379] hsr_slave_0: entered promiscuous mode
[  381.158413][T10379] hsr_slave_1: entered promiscuous mode
[  381.158968][T10379] debugfs: 'hsr0' already exists in 'hsr'
[  381.158992][T10379] Cannot create hsr debugfs directory
[  382.276723][T10379] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  382.340793][T10379] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  382.434173][T10379] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  382.514142][T10379] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  382.663405][ T5838] Bluetooth: hci1: command tx timeout
[  382.979985][T10379] 8021q: adding VLAN 0 to HW filter on device bond0
[  383.130871][T10379] 8021q: adding VLAN 0 to HW filter on device team0
[  383.183739][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  383.190960][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  383.272858][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  383.280092][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  384.054558][T10456] Invalid ELF header magic: != ELF
[  384.144031][T10458] Invalid ELF header magic: != ELF
[  384.460050][T10379] 8021q: adding VLAN 0 to HW filter on device batadv0
[  384.746281][ T5838] Bluetooth: hci1: command tx timeout
[  386.064335][T10379] veth0_vlan: entered promiscuous mode
[  386.284749][T10379] veth1_vlan: entered promiscuous mode
[  386.390960][T10379] veth0_macvtap: entered promiscuous mode
[  386.504836][T10488] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations!
[  386.518531][T10379] veth1_macvtap: entered promiscuous mode
[  386.629684][T10379] batman_adv: batadv0: Interface activated: batadv_slave_0
[  386.649934][T10487] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff
[  386.720607][T10379] batman_adv: batadv0: Interface activated: batadv_slave_1
[  386.787847][T10488] netlink: 'syz.1.1105': attribute type 2 has an invalid length.
[  386.814253][ T7556] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  386.834362][ T5838] Bluetooth: hci1: command tx timeout
[  386.874720][ T7556] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  387.024067][ T7556] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  387.073420][ T7556] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  387.188741][T10496] FAULT_INJECTION: forcing a failure.
[  387.188741][T10496] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  387.311848][T10496] CPU: 0 UID: 0 PID: 10496 Comm: syz.2.1107 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  387.311886][T10496] Tainted: [L]=SOFTLOCKUP
[  387.311895][T10496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  387.311909][T10496] Call Trace:
[  387.311916][T10496]  <TASK>
[  387.311925][T10496]  dump_stack_lvl+0x100/0x190
[  387.311966][T10496]  should_fail_ex.cold+0x5/0xa
[  387.311990][T10496]  ? prepare_alloc_pages+0x16d/0x5f0
[  387.312021][T10496]  should_fail_alloc_page+0xeb/0x140
[  387.312049][T10496]  prepare_alloc_pages+0x1f0/0x5f0
[  387.312082][T10496]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  387.312123][T10496]  ? look_up_lock_class+0x64/0x120
[  387.312169][T10496]  ? register_lock_class+0x40/0x560
[  387.312200][T10496]  ? find_held_lock+0x2b/0x80
[  387.312222][T10496]  ? ima_match_policy+0x8c4/0x2350
[  387.312251][T10496]  ? ima_match_policy+0x8c4/0x2350
[  387.312284][T10496]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  387.312339][T10496]  ? __pfx___might_resched+0x10/0x10
[  387.312381][T10496]  ? find_held_lock+0x2b/0x80
[  387.312403][T10496]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  387.312430][T10496]  ? policy_nodemask+0xed/0x4f0
[  387.312457][T10496]  alloc_pages_mpol+0x1fb/0x550
[  387.312484][T10496]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  387.312519][T10496]  alloc_pages_noprof+0x131/0x390
[  387.312645][T10496]  __pmd_alloc+0x3b/0x950
[  387.312678][T10496]  __handle_mm_fault+0xa99/0x2b60
[  387.312716][T10496]  ? mt_find+0x45e/0x8e0
[  387.312742][T10496]  ? __pfx___handle_mm_fault+0x10/0x10
[  387.312774][T10496]  ? __pfx_mt_find+0x10/0x10
[  387.312818][T10496]  ? find_vma+0xbf/0x140
[  387.312840][T10496]  ? __pfx_find_vma+0x10/0x10
[  387.312867][T10496]  handle_mm_fault+0x36d/0xa20
[  387.312907][T10496]  do_user_addr_fault+0x74c/0x12f0
[  387.312939][T10496]  exc_page_fault+0x6f/0xd0
[  387.312978][T10496]  asm_exc_page_fault+0x26/0x30
[  387.313002][T10496] RIP: 0010:rep_movs_alternative+0x30/0x90
[  387.313034][T10496] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 fd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  387.313056][T10496] RSP: 0018:ffffc90003637b10 EFLAGS: 00050202
[  387.313074][T10496] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000009
[  387.313088][T10496] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90003637b70
[  387.313103][T10496] RBP: 0000000000000009 R08: 0000000000000001 R09: fffff520006c6f6f
[  387.313117][T10496] R10: ffffc90003637b78 R11: 0000000000000000 R12: 0000000000000000
[  387.313131][T10496] R13: ffffc90003637b70 R14: ffffc90003637c58 R15: ffffc90003637b70
[  387.313161][T10496]  _copy_from_user+0x98/0xd0
[  387.313193][T10496]  kstrtoint_from_user+0xd6/0x1d0
[  387.313232][T10496]  ? __pfx_kstrtoint_from_user+0x10/0x10
[  387.313271][T10496]  ? __lock_acquire+0x4a5/0x2630
[  387.313308][T10496]  ? __lock_acquire+0x4a5/0x2630
[  387.313343][T10496]  nsim_dev_hwstats_do_write+0xb6/0xbb0
[  387.313378][T10496]  ? __debugfs_file_get+0x1fc/0x860
[  387.313414][T10496]  ? __pfx_nsim_dev_hwstats_do_write+0x10/0x10
[  387.313456][T10496]  short_proxy_write+0x133/0x1a0
[  387.313496][T10496]  vfs_write+0x2aa/0x1070
[  387.313521][T10496]  ? __pfx_short_proxy_write+0x10/0x10
[  387.313567][T10496]  ? __pfx_vfs_write+0x10/0x10
[  387.313589][T10496]  ? __fget_files+0x215/0x3d0
[  387.313625][T10496]  ? __fget_files+0x21f/0x3d0
[  387.313657][T10496]  ksys_write+0x12a/0x250
[  387.313680][T10496]  ? __pfx_ksys_write+0x10/0x10
[  387.313711][T10496]  do_syscall_64+0x106/0xf80
[  387.313733][T10496]  ? clear_bhb_loop+0x40/0x90
[  387.313761][T10496]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.313785][T10496] RIP: 0033:0x7f5a1619c799
[  387.313804][T10496] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  387.313826][T10496] RSP: 002b:00007f5a16fba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  387.313847][T10496] RAX: ffffffffffffffda RBX: 00007f5a16415fa0 RCX: 00007f5a1619c799
[  387.313862][T10496] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 0000000000000004
[  387.313875][T10496] RBP: 00007f5a16fba090 R08: 0000000000000000 R09: 0000000000000000
[  387.313889][T10496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  387.313902][T10496] R13: 00007f5a16416038 R14: 00007f5a16415fa0 R15: 00007ffcacd6b978
[  387.313932][T10496]  </TASK>
[  388.540665][ T7550] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  388.550564][ T7554] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  388.587790][ T7554] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  388.615192][ T7550] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  388.833857][T10508] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4)
[  389.774485][T10523] Invalid ELF header magic: != ELF
[  391.098095][T10540] ==================================================================
[  391.106231][T10540] BUG: KASAN: slab-use-after-free in dvb_device_open+0x33f/0x3b0
[  391.113977][T10540] Read of size 8 at addr ffff88802cbfbe18 by task syz.1.1118/10540
[  391.121893][T10540] 
[  391.124246][T10540] CPU: 0 UID: 0 PID: 10540 Comm: syz.1.1118 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  391.124288][T10540] Tainted: [L]=SOFTLOCKUP
[  391.124297][T10540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  391.124313][T10540] Call Trace:
[  391.124323][T10540]  <TASK>
[  391.124332][T10540]  dump_stack_lvl+0x100/0x190
[  391.124372][T10540]  print_report+0x156/0x4c9
[  391.124409][T10540]  ? __virt_addr_valid+0x81/0x620
[  391.124442][T10540]  ? __phys_addr+0xe8/0x180
[  391.124475][T10540]  ? dvb_device_open+0x33f/0x3b0
[  391.124499][T10540]  kasan_report+0xdf/0x1e0
[  391.124526][T10540]  ? dvb_device_open+0x33f/0x3b0
[  391.124553][T10540]  ? __pfx_dvb_device_open+0x10/0x10
[  391.124588][T10540]  dvb_device_open+0x33f/0x3b0
[  391.124613][T10540]  ? __pfx_dvb_device_open+0x10/0x10
[  391.124639][T10540]  chrdev_open+0x234/0x6a0
[  391.124665][T10540]  ? __pfx_apparmor_file_open+0x10/0x10
[  391.124692][T10540]  ? __pfx_chrdev_open+0x10/0x10
[  391.124720][T10540]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  391.124752][T10540]  do_dentry_open+0x6d8/0x1660
[  391.124778][T10540]  ? __pfx_chrdev_open+0x10/0x10
[  391.124808][T10540]  vfs_open+0x82/0x3f0
[  391.124841][T10540]  path_openat+0x208c/0x31a0
[  391.124872][T10540]  ? __pfx_path_openat+0x10/0x10
[  391.124905][T10540]  do_file_open+0x20e/0x430
[  391.124932][T10540]  ? __pfx_do_file_open+0x10/0x10
[  391.124969][T10540]  ? alloc_fd+0x476/0x790
[  391.124995][T10540]  ? do_getname+0x191/0x390
[  391.125028][T10540]  do_sys_openat2+0x10d/0x1e0
[  391.125062][T10540]  ? __pfx_do_sys_openat2+0x10/0x10
[  391.125097][T10540]  ? blkcg_maybe_throttle_current+0x5df/0xeb0
[  391.125141][T10540]  __x64_sys_openat+0x12d/0x210
[  391.125176][T10540]  ? __pfx___x64_sys_openat+0x10/0x10
[  391.125217][T10540]  do_syscall_64+0x106/0xf80
[  391.125240][T10540]  ? clear_bhb_loop+0x40/0x90
[  391.125269][T10540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.125295][T10540] RIP: 0033:0x7f127099c799
[  391.125316][T10540] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  391.125340][T10540] RSP: 002b:00007f1271864028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  391.125364][T10540] RAX: ffffffffffffffda RBX: 00007f1270c16180 RCX: 00007f127099c799
[  391.125381][T10540] RDX: 00000000000c8e03 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  391.125397][T10540] RBP: 00007f1270a32c99 R08: 0000000000000000 R09: 0000000000000000
[  391.125413][T10540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  391.125428][T10540] R13: 00007f1270c16218 R14: 00007f1270c16180 R15: 00007ffe0d0557f8
[  391.125453][T10540]  </TASK>
[  391.125462][T10540] 
[  391.389091][T10540] Allocated by task 1:
[  391.393247][T10540]  kasan_save_stack+0x30/0x50
[  391.397969][T10540]  kasan_save_track+0x14/0x30
[  391.402668][T10540]  __kasan_kmalloc+0xaa/0xb0
[  391.407294][T10540]  dvb_register_device+0x1d6/0x1e20
[  391.412523][T10540]  dvb_register_frontend+0x5a8/0x8a0
[  391.417849][T10540]  vidtv_bridge_probe+0x44b/0xa30
[  391.422894][T10540]  platform_probe+0x106/0x1d0
[  391.427596][T10540]  really_probe+0x241/0xa60
[  391.432112][T10540]  __driver_probe_device+0x1de/0x400
[  391.437558][T10540]  driver_probe_device+0x4c/0x1b0
[  391.442597][T10540]  __driver_attach+0x21f/0x5d0
[  391.447372][T10540]  bus_for_each_dev+0x13e/0x1d0
[  391.452258][T10540]  bus_add_driver+0x305/0x5b0
[  391.456957][T10540]  driver_register+0x1e2/0x360
[  391.461743][T10540]  vidtv_bridge_init+0x38/0x70
[  391.466515][T10540]  do_one_initcall+0x11d/0x760
[  391.471392][T10540]  kernel_init_freeable+0x6e5/0x7a0
[  391.476613][T10540]  kernel_init+0x1f/0x1e0
[  391.481101][T10540]  ret_from_fork+0x754/0xd80
[  391.485733][T10540]  ret_from_fork_asm+0x1a/0x30
[  391.490516][T10540] 
[  391.492844][T10540] Freed by task 10508:
[  391.496923][T10540]  kasan_save_stack+0x30/0x50
[  391.501707][T10540]  kasan_save_track+0x14/0x30
[  391.506486][T10540]  kasan_save_free_info+0x3b/0x70
[  391.511708][T10540]  __kasan_slab_free+0x5f/0x80
[  391.516567][T10540]  kfree+0x1f6/0x6b0
[  391.520484][T10540]  dvb_device_put.part.0+0x57/0x90
[  391.525629][T10540]  dvb_device_open+0x2ba/0x3b0
[  391.530407][T10540]  chrdev_open+0x234/0x6a0
[  391.534836][T10540]  do_dentry_open+0x6d8/0x1660
[  391.539608][T10540]  vfs_open+0x82/0x3f0
[  391.543708][T10540]  path_openat+0x208c/0x31a0
[  391.548308][T10540]  do_file_open+0x20e/0x430
[  391.553087][T10540]  do_sys_openat2+0x10d/0x1e0
[  391.557781][T10540]  __x64_sys_openat+0x12d/0x210
[  391.562663][T10540]  do_syscall_64+0x106/0xf80
[  391.567261][T10540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.573168][T10540] 
[  391.575490][T10540] The buggy address belongs to the object at ffff88802cbfbe00
[  391.575490][T10540]  which belongs to the cache kmalloc-256 of size 256
[  391.589552][T10540] The buggy address is located 24 bytes inside of
[  391.589552][T10540]  freed 256-byte region [ffff88802cbfbe00, ffff88802cbfbf00)
[  391.603269][T10540] 
[  391.605603][T10540] The buggy address belongs to the physical page:
[  391.612012][T10540] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2cbfa
[  391.620872][T10540] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  391.629374][T10540] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  391.636933][T10540] page_type: f5(slab)
[  391.640924][T10540] raw: 00fff00000000040 ffff88813fe39b40 dead000000000122 0000000000000000
[  391.649611][T10540] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  391.658291][T10540] head: 00fff00000000040 ffff88813fe39b40 dead000000000122 0000000000000000
[  391.666970][T10540] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  391.675651][T10540] head: 00fff00000000001 ffffea0000b2fe81 00000000ffffffff 00000000ffffffff
[  391.684328][T10540] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  391.693173][T10540] page dumped because: kasan: bad access detected
[  391.699641][T10540] page_owner tracks the page as allocated
[  391.705623][T10540] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 18354811493, free_ts 0
[  391.725801][T10540]  post_alloc_hook+0x153/0x170
[  391.730593][T10540]  get_page_from_freelist+0x111d/0x3140
[  391.736275][T10540]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  391.742192][T10540]  new_slab+0xa6/0x6b0
[  391.746280][T10540]  refill_objects+0x26b/0x400
[  391.750978][T10540]  __pcs_replace_empty_main+0x1ab/0x660
[  391.756544][T10540]  __kmalloc_cache_noprof+0x493/0x6f0
[  391.761937][T10540]  bus_add_driver+0x92/0x5b0
[  391.766535][T10540]  driver_register+0x1e2/0x360
[  391.771315][T10540]  usb_register_driver+0x21c/0x3e0
[  391.776570][T10540]  do_one_initcall+0x11d/0x760
[  391.781449][T10540]  kernel_init_freeable+0x6e5/0x7a0
[  391.786673][T10540]  kernel_init+0x1f/0x1e0
[  391.791024][T10540]  ret_from_fork+0x754/0xd80
[  391.795640][T10540]  ret_from_fork_asm+0x1a/0x30
[  391.800423][T10540] page_owner free stack trace missing
[  391.805813][T10540] 
[  391.808159][T10540] Memory state around the buggy address:
[  391.813805][T10540]  ffff88802cbfbd00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  391.821879][T10540]  ffff88802cbfbd80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  391.830035][T10540] >ffff88802cbfbe00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  391.838100][T10540]                             ^
[  391.842954][T10540]  ffff88802cbfbe80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  391.851035][T10540]  ffff88802cbfbf00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  391.859110][T10540] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  394.658842][ T7551] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.792352][T10540] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  394.799782][T10540] CPU: 0 UID: 0 PID: 10540 Comm: syz.1.1118 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  394.810740][T10540] Tainted: [L]=SOFTLOCKUP
[  394.815157][T10540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  394.825651][T10540] Call Trace:
[  394.828942][T10540]  <TASK>
[  394.831888][T10540]  dump_stack_lvl+0x100/0x190
[  394.836615][T10540]  vpanic+0x552/0x970
[  394.840627][T10540]  ? __pfx_vpanic+0x10/0x10
[  394.845181][T10540]  ? dvb_device_open+0x33f/0x3b0
[  394.850234][T10540]  panic+0xd1/0xe0
[  394.853996][T10540]  ? __pfx_panic+0x10/0x10
[  394.858431][T10540]  ? dvb_device_open+0x33f/0x3b0
[  394.863411][T10540]  ? preempt_schedule_common+0x42/0xc0
[  394.868992][T10540]  check_panic_on_warn.cold+0x19/0x34
[  394.874556][T10540]  end_report.part.0+0x3a/0x90
[  394.879342][T10540]  kasan_report.cold+0xe/0x18
[  394.884058][T10540]  ? dvb_device_open+0x33f/0x3b0
[  394.889009][T10540]  ? __pfx_dvb_device_open+0x10/0x10
[  394.894307][T10540]  dvb_device_open+0x33f/0x3b0
[  394.899086][T10540]  ? __pfx_dvb_device_open+0x10/0x10
[  394.904467][T10540]  chrdev_open+0x234/0x6a0
[  394.908911][T10540]  ? __pfx_apparmor_file_open+0x10/0x10
[  394.914684][T10540]  ? __pfx_chrdev_open+0x10/0x10
[  394.919653][T10540]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  394.926011][T10540]  do_dentry_open+0x6d8/0x1660
[  394.930817][T10540]  ? __pfx_chrdev_open+0x10/0x10
[  394.935786][T10540]  vfs_open+0x82/0x3f0
[  394.939883][T10540]  path_openat+0x208c/0x31a0
[  394.944522][T10540]  ? __pfx_path_openat+0x10/0x10
[  394.949495][T10540]  do_file_open+0x20e/0x430
[  394.954064][T10540]  ? __pfx_do_file_open+0x10/0x10
[  394.959307][T10540]  ? alloc_fd+0x476/0x790
[  394.963765][T10540]  ? do_getname+0x191/0x390
[  394.968302][T10540]  do_sys_openat2+0x10d/0x1e0
[  394.973008][T10540]  ? __pfx_do_sys_openat2+0x10/0x10
[  394.978231][T10540]  ? blkcg_maybe_throttle_current+0x5df/0xeb0
[  394.984327][T10540]  __x64_sys_openat+0x12d/0x210
[  394.989199][T10540]  ? __pfx___x64_sys_openat+0x10/0x10
[  394.994598][T10540]  do_syscall_64+0x106/0xf80
[  394.999196][T10540]  ? clear_bhb_loop+0x40/0x90
[  395.003905][T10540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  395.009814][T10540] RIP: 0033:0x7f127099c799
[  395.014246][T10540] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  395.033867][T10540] RSP: 002b:00007f1271864028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  395.042466][T10540] RAX: ffffffffffffffda RBX: 00007f1270c16180 RCX: 00007f127099c799
[  395.050481][T10540] RDX: 00000000000c8e03 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  395.058460][T10540] RBP: 00007f1270a32c99 R08: 0000000000000000 R09: 0000000000000000
[  395.066442][T10540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  395.074437][T10540] R13: 00007f1270c16218 R14: 00007f1270c16180 R15: 00007ffe0d0557f8
[  395.082426][T10540]  </TASK>
[  395.085523][T10540] Kernel Offset: disabled
[  395.089859][T10540] Rebooting in 86400 seconds..