last executing test programs:

2m36.693144088s ago: executing program 3 (id=6961):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003a80)={0x0, 0x0, &(0x7f0000003a40)={&(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16, @ANYBLOB="01002abd7000fbdbdf250200006714000180100001"], 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x24040004)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x100, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = socket(0x23, 0x80805, 0x0)
bind$auto(r1, &(0x7f0000000000)=@in={0x2, 0x4e22, @remote}, 0x3)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/memory_tiering/memory_tier4/nodelist\x00', 0x22100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000080)=""/247, 0xf7)
prctl$auto(0x3e, 0x4, 0x0, 0x7fffffffffffffff, 0x10000)
mmap$auto(0x0, 0x1000, 0xdf, 0xebd, 0x401, 0xc001)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x4000000000001, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x20000002, 0xfffffffffffffffe]}, 0x0)
socket(0x1a, 0x4, 0x6)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0xc, 0x2495dae0, 0x6]}, 0x0)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r3, &(0x7f0000001500)="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", 0xc9d)
socket(0x2, 0x1, 0x100)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@ax25={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x4}, 0x51)

2m35.423517118s ago: executing program 3 (id=6968):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/saved_tgids\x00', 0x0, 0x0)
pread64$auto(r0, 0x0, 0x6, 0x1)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0xe8)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
lseek$auto(0x3, 0x0, 0x1)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x3e, 0x0, 0x110)
msgctl$auto_MSG_INFO(0x5, 0xc, &(0x7f0000000280)={{0x9, 0xffffffffffffffff, 0xffffffffffffffff, 0x2, 0x287f, 0x2, 0x3}, 0x0, 0x0, 0x7fffffff, 0x9, 0x8, 0xffffffff, 0xfffffffffffffffe, 0x7fff, 0xfc2, 0x27f, @inferred, @raw=0x9})
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x1ac}}, 0x40000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x1e, 0x4, 0x0)
r4 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r4, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
listen$auto(r3, 0x1)
recvmmsg$auto(0x4, &(0x7f0000000200)={{0x0, 0x4, 0x0, 0x4, 0x0, 0x8, 0x800}, 0x1000}, 0xffffffff, 0x0, 0x0)

2m35.206758829s ago: executing program 3 (id=6969):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
msync$auto(0x0, 0x2000000005, 0x6)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
membarrier$auto(0x2, 0x0, 0x9)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0xc02, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, r0, 0x300000000000)
socket(0xa, 0x3, 0x3b)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio6\x00', 0x8a240, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0xc8201, 0x0)
select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0x8d, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xc2c02, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r1, 0xc0185500, 0x0)
mlockall$auto(0x1)
mprotect$auto(0x1ffffffff000, 0x100004, 0x6)

2m34.723610619s ago: executing program 1 (id=6970):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x40401, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0x4008ae6a, 0x38)

2m34.518188997s ago: executing program 1 (id=6972):
mmap$auto(0x0, 0x6, 0x4000000000df, 0xeb1, 0x400, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f000000c380)={0x63, 0x0, 0xbde, 0x7fffffffefff, 0xfffffffffffffffe, 0x9702, 0x0, 0x50b301a, 0x4, 0x5f, 0x0, 0x8})
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000180)="af3006a2dbc9bd946179b725be38e4aa3b45bbe4feeb941d45699ff89f61f52bc3c471ab33ac0c012760a8477c", 0x2d)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x24048040}, 0x10804)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
brk$auto(0xffffffffffffff66)

2m34.128124572s ago: executing program 1 (id=6975):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40080, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
r0 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/infiniband_mad/abi_version\x00', 0x20100, 0x0)
socket(0x2, 0x1, 0x0)
socket(0x10, 0x2, 0xc)
r1 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYBLOB="01"], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x80)
write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef)

2m33.956908368s ago: executing program 1 (id=6976):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
lseek$auto(r0, 0x4, 0x73)
socket(0x11, 0x80003, 0x300)
openat$auto_suspend_stats_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x20800, 0x0)
unshare$auto(0x40000080)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/tracing/set_event\x00', 0x20c8c2, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x44, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x43e4192870541633, 0x0)
mmap$auto(0x0, 0x9, 0x24de, 0x16, 0x401, 0xd5be)
ioctl$auto(0xffffffffffffffff, 0xc0585605, 0x38)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r3 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x5, 0xb}, 0x800009}, 0x3, 0x20000000)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)
shmctl$auto(0x0, 0xd, 0x0)
recvmmsg$auto(0x3, 0x0, 0xfffe, 0x6, 0x0)

2m33.465695542s ago: executing program 1 (id=6977):
openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x6e642, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/zram0\x00\x00', 0x100000a3d9)

2m33.260138869s ago: executing program 1 (id=6979):
mmap$auto(0x0, 0xda, 0x3, 0xeb0, 0xfffffffffffffffa, 0x8000)
r0 = open(&(0x7f00000001c0)='./cgroup\x00', 0x0, 0x103)
r1 = socket(0x1d, 0x3, 0x1)
r2 = getsockopt$auto(r1, 0x6, 0x755, 0x0, 0x0)
getdents64$auto(r0, 0x0, 0xb012)
getdents64$auto(r0, 0x0, 0x18)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r3, 0x300, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_MODULE_FW_FLASH_FILE_NAME={0x6, 0x2, ':\x00'}, @ETHTOOL_A_MODULE_FW_FLASH_PASSWORD={0x8, 0x3, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x804}, 0x800)

2m32.554657218s ago: executing program 3 (id=6986):
openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci1/hci1:201\x00', 0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4)
ioctl$auto(0xffffffffffffffff, 0x2285, 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
eventfd$auto(0x8e)
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0xffffffffffffffff)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x10d242, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(r1, 0x4020ae76, r2)

2m32.147875474s ago: executing program 3 (id=6989):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0x1, 0x0)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @local}, 0x6a)
listen$auto(0x3, 0x81)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x3ffffffffd)
mmap$auto(0x0, 0x7, 0x3, 0x12, 0xffffffffffffffff, 0x7)
openat$nci(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, 0x0, &(0x7f0000000200)=0x1, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf})
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0x8)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.net/notify_on_release\x00', 0x101042, 0x0)
write$auto(r3, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4)
ioctl$auto(r2, 0x540a, 0x0)
close_range$auto(0x2, 0x8, 0x0)

2m31.070364256s ago: executing program 3 (id=6994):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/eql/ifalias\x00', 0xb02, 0x0)
mmap$auto(0x0, 0x24000a, 0x2, 0x9b72, r0, 0x28000)
execve$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv6/conf/bridge_slave_0/mldv2_unsolicited_report_interval\x00', 0x40001, 0x0)
ftruncate$auto(0x3, 0x400180200000)
mmap$auto(0xa, 0x40009, 0x5, 0x10, 0xffffffffffffffff, 0x9)
write$auto(0xffffffffffffffff, &(0x7f0000000300)='.o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x90180, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2deb43, 0x0)
faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0x7)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x2, 0x401, 0x1000, 0x8000000000000011, 0xffffffffffffffff, 0x5)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0xc40, 0x0)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000100), 0xffffffffffffffff)
r4 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim1/health/break_health\x00', 0x149081, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYRES64, @ANYRES32=r3, @ANYRES64=r2, @ANYBLOB="894f844ea904ebea19000000120001640043005af77d2e758fa4192512ca500000"], 0x4c}, 0x1, 0x0, 0x0, 0x4dac570dbc48b4a8}, 0x4004c844)
write$auto(r4, 0x0, 0x1ff)
prctl$auto_PR_SCHED_CORE_GET(0x9, 0x0, 0x0, 0x0, 0x26fa)
openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x411a02, 0x0)
write$auto(r6, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)

2m16.071943026s ago: executing program 32 (id=6994):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/eql/ifalias\x00', 0xb02, 0x0)
mmap$auto(0x0, 0x24000a, 0x2, 0x9b72, r0, 0x28000)
execve$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv6/conf/bridge_slave_0/mldv2_unsolicited_report_interval\x00', 0x40001, 0x0)
ftruncate$auto(0x3, 0x400180200000)
mmap$auto(0xa, 0x40009, 0x5, 0x10, 0xffffffffffffffff, 0x9)
write$auto(0xffffffffffffffff, &(0x7f0000000300)='.o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x90180, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2deb43, 0x0)
faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0x7)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x2, 0x401, 0x1000, 0x8000000000000011, 0xffffffffffffffff, 0x5)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0xc40, 0x0)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000100), 0xffffffffffffffff)
r4 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim1/health/break_health\x00', 0x149081, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYRES64, @ANYRES32=r3, @ANYRES64=r2, @ANYBLOB="894f844ea904ebea19000000120001640043005af77d2e758fa4192512ca500000"], 0x4c}, 0x1, 0x0, 0x0, 0x4dac570dbc48b4a8}, 0x4004c844)
write$auto(r4, 0x0, 0x1ff)
prctl$auto_PR_SCHED_CORE_GET(0x9, 0x0, 0x0, 0x0, 0x26fa)
openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x411a02, 0x0)
write$auto(r6, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)

5.644404382s ago: executing program 0 (id=7547):
mmap$auto(0x0, 0x6d548b53, 0xdf, 0xc937, 0x401, 0x3)
mmap$auto(0x1, 0x20009, 0x8, 0xeb1, 0x7f, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
epoll_create$auto(0x4)
mmap$auto(0x0, 0x40109, 0x5, 0x9b72, 0x7, 0x28000)
r0 = prctl$auto(0xfffffffe, 0x7fffffff, 0x0, 0xffffffffffffff8c, 0x7)
fcntl$auto_F_ADD_SEALS(r0, 0x409, 0x7fff)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0xf, 0xebe0, 0x4, 0x172cc4b0, 0xffffffffffffffff, 0x5)
r2 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r2, 0x6, 0x0, 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram1/queue/read_ahead_kb\x00', 0x181482, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
madvise$auto(0x0, 0x2003f0, 0x18)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0xb8, 0x1, 0x4, 0x8001, 0xffffffffffffffff, 0xa, "2af051d514e78a20d8dc6b36c83ce63f", <r3=>0x0, 0xffffffffffffffff, 0x7, 0x7, 0x7, 0xfffffffffffffff9}, 0xf)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r3, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92)
ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000040)={0x2})

4.314587178s ago: executing program 0 (id=7553):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fsconfig$auto_SHMEM_HUGE_NEVER(r0, 0x39, &(0x7f0000000100)='\x00', &(0x7f0000000140)="f279fd9c3139ec22c7d5ad8c695dcf87eed8099703ec92ec67d1f456e8c9cdd4a121bc686955aac1d55e924a55d19b8b962017f67ce74496a667e0803325f25e2bb02ae04cfffeca8b23cbecf95c6e6cf7", 0x0)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000062c0), r0)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f00000000c0)={0xfffffffffffffffd, 0x0, &(0x7f0000006340)={&(0x7f0000000000)={0x14, r1, 0x38f, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4044040}, 0x4000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a0080"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='J'], 0x1ac}}, 0x40000)
sendmmsg$auto(r2, &(0x7f0000000080)={{0x0, 0xfffffffe, &(0x7f00000002c0)={0x0, 0xc5}, 0x1, 0x0, 0x0, 0x9}, 0x107}, 0x3, 0x0)

4.071804069s ago: executing program 0 (id=7554):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0x1, 0x0)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, 0x0, 0x6a)
listen$auto(0x3, 0x81)
sendmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x3ffffffffd)
r1 = socket(0xa, 0x1, 0x0)
mmap$auto(0x0, 0x7, 0x3, 0x12, r1, 0x7)
openat$nci(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, 0x0, &(0x7f0000000200)=0x1, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf})
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0x8)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.net/notify_on_release\x00', 0x101042, 0x0)
write$auto(r4, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4)
ioctl$auto(r3, 0x540a, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/inject\x00', 0x40482, 0x0)
writev$auto(r5, &(0x7f0000000000)={&(0x7f0000000000), 0x4}, 0x2)

3.539072298s ago: executing program 0 (id=7555):
mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0)
r1 = openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000080), 0x2003, 0x0)
ioctl$auto(r1, 0x6f2d, 0xffffffffffffffff)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
unshare$auto(0x40000080)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0x4010ae42, 0x38)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, 0x0, 0x1fe, 0xd)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x2, 0x4020009, 0x800006, 0x7fffffffffffffff, 0xffffffffffffffff, 0x3)
r2 = socket(0x11, 0x80003, 0x81)
setsockopt$auto(r2, 0x2, 0xf4, 0x0, 0x8)
setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x8)
pipe$auto(0x0)
unshare$auto(0x40000080)
r3 = open(0x0, 0x22240, 0x154)
fcntl$auto(r3, 0x400, 0x1)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ram14\x00', 0x400, 0x0)
ioctl$auto(r4, 0x401870cc, r4)
execve$auto(0x0, 0x0, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x8, 0x3c83, 0x9b72, r0, 0x8000)
setsockopt$auto(0x3, 0x11, 0x20, 0x0, 0x4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r2)
sendmsg$auto_NL80211_CMD_START_NAN(r5, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000001540)=ANY=[@ANYBLOB="28120000", @ANYRES16=r6, @ANYBLOB="00012cbd7000fddbdf257300000008002201f154d5560800db00", @ANYRES32=r3, @ANYBLOB="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"/4767], 0x1228}, 0x1, 0x0, 0x0, 0x4000881}, 0x4045)

2.439068763s ago: executing program 2 (id=7561):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram11\x00', 0x14be02, 0x0)
mmap$auto(0x20000004, 0x4, 0x3, 0xbd6, r0, 0x4)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
write$auto(r2, 0x0, 0x30fe)
fcntl$auto(r2, 0x7, 0x0)
preadv2$auto(r1, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
pread64$auto(r3, 0x0, 0x101, 0x81)
mmap$auto(0x0, 0x40020009, 0xdd6, 0xefb3, 0x401, 0x8000)
openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/tracing_on\x00', 0xc2182, 0x0)
write$auto(r3, 0x0, 0xd29)
rseq$auto(0x0, 0x1, 0x3, 0xff)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8df41, 0x0)
sendmsg$auto_NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYRES16=r3, @ANYRES64], 0x1c}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7fff, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0x4000000f, 0x2df, 0x500, 0x81, 0x103, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x10001, 0x40, 0x76c5, 0x8, 0x8000000000000000}})
io_uring_register$auto(0x2, 0x12, 0x0, 0x0)
write$auto(r4, &(0x7f0000000100)='//\xf2\x00cu\x102\x18\xe2\fv\xe3Tr\xa7\xa9\v\xfd\xa7:\x83O\xabL\x88#\"#\xf8<;E-\xd7z\b\x00\x00\x00\x00@\x00\x00])@\xe30\x95>^kw\x83~\xbe\xa0jZ\xa4', 0x80000000)
mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x6, 0xc4)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
read$auto(0x3, 0x0, 0x7)
ioctl$auto_BLKFLSBUF(0xffffffffffffffff, 0x1261, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x10, 0x2, 0x4)

1.976343834s ago: executing program 2 (id=7562):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
socketpair$auto(0x1, 0x5, 0x0, 0x0) (async)
setsockopt$auto(0x3, 0x1, 0x1d, 0x0, 0x9)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) (async)
r0 = getpid() (async)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/suspend_stats/failed_freeze\x00', 0x123000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)=""/48, 0x30) (async, rerun: 32)
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) (async, rerun: 32)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) (async, rerun: 64)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd) (rerun: 64)

1.502372874s ago: executing program 0 (id=7563):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
lseek$auto(r0, 0x4, 0x73)
socket(0x11, 0x80003, 0x300)
openat$auto_suspend_stats_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x20800, 0x0)
unshare$auto(0x40000080)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/tracing/set_event\x00', 0x20c8c2, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x44, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x43e4192870541633, 0x0)
ioctl$auto(0xffffffffffffffff, 0xc0585605, 0x38)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r2 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x5, 0xb}, 0x800009}, 0x3, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ff)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)
shmctl$auto(0x0, 0xd, 0x0)
recvmmsg$auto(0x3, 0x0, 0xfffe, 0x6, 0x0)

1.023646255s ago: executing program 2 (id=7564):
socket(0x2, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/pci0000:00/0000:00:04.0/broken_parity_status\x00', 0xc3002, 0x0)
sendfile$auto(r0, r0, 0x0, 0x3)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x20009, 0xffffffffffffffff, 0x100000eb1, 0x40000000000a1, 0x8000)
socket(0x1, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0xfffffffffffffff8, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event2\x00', 0x0, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x40000000000a5, 0x80000008000)
sendmmsg$auto(0x3, 0x0, 0x5, 0xffb)
ioctl$auto_EVIOCSREP(r1, 0x40084503, 0x0)

941.282884ms ago: executing program 2 (id=7565):
r0 = socket(0x1d, 0x2, 0x6)
r1 = socket(0x2, 0x1, 0x0)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r3, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f00000000c0)={0x38, r2, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@ETHTOOL_A_TSINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}]}, @ETHTOOL_A_TSINFO_HWTSTAMP_PROVIDER={0xc, 0x7, 0x0, 0x1, [@ETHTOOL_A_TS_HWTSTAMP_PROVIDER_INDEX={0x8, 0x1, 0x6}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x802}, 0x4000000)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r4=>0x0})
bind$auto(r0, &(0x7f0000000040)=@can={0x1d, r4, 0xfd}, 0x6a)
r5 = socket(0x2000000000000021, 0x2, 0x10000000000002)
setsockopt$auto(r5, 0x110, 0x4, 0x0, 0x4)
write$auto(0x3, 0x0, 0xffd8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
fanotify_init$auto(0x65, 0x2)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ILA_CMD_ADD(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="010028bd7000fdbcdf2501"], 0x1c}}, 0x40000)
sendmsg$auto_ILA_CMD_FLUSH(r6, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000540)={0x14, r8, 0x1, 0x2, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4000004}, 0x40844)
r9 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r10 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000100), r9)
sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r9, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x4c, r10, 0x200, 0x70bd2d, 0x25dfdbfe, {}, [@NFC_ATTR_SE_APDU={0x38, 0x19, "2db690516cb652b8120b509e63dd0a0b4813d4946d144fcc611a824d011748602f4eea625e38aace9c89df7d6f8e01803715c5b1"}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4}, 0x24000000)
sendmsg$auto_NFC_CMD_LLC_GET_PARAMS(r5, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x24, r10, 0x4, 0x70bd2b, 0x25dfdbff, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0x6}, @NFC_ATTR_VENDOR_SUBCMD={0x8, 0x1e, 0xa7a3}]}, 0x24}, 0x1, 0x0, 0x0, 0x804}, 0x24048814)

452.468996ms ago: executing program 2 (id=7566):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x1, 0x20009, 0x8, 0xeb1, 0x7f, 0x8000)
rseq$auto(0x0, 0xfffffff5, 0x0, 0x5)
mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
readv$auto(0x3, &(0x7f0000000080)={0x0, 0x4}, 0x1dc)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x40401, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0xc)
socket(0x2, 0x1, 0x0)
setsockopt$auto(0x6, 0x8000000000000006, 0x10, 0x0, 0x7ffffc)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0x4010ae67, 0x38)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x60040, 0x0)
ioctl$auto_XFS_IOC_FSCOUNTS(0xffffffffffffffff, 0x80205871, &(0x7f0000000040)={0x2, 0x4, 0xfffffffffffffffa, 0x8})
close_range$auto(0x2, 0x8, 0x0)

307.886833ms ago: executing program 2 (id=7567):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
futex$auto(&(0x7f0000000080)=0x1, 0xb, 0x1, 0x0, 0x0, 0xfffffffa)
lstat$auto(0x0, 0x0)
ioctl$auto_FBIO_CURSOR(0xffffffffffffffff, 0xc0684608, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x1, 0x4000000000df, 0xeb1, 0x401, 0x8000)
futex$auto(&(0x7f0000000080)=0x1, 0xb, 0x1, 0x0, 0x0, 0xfffffffa)
mmap$auto(0xb71f, 0x4, 0x4, 0x16, 0xffffffffffffffff, 0x6)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x801, 0x100)
preadv$auto(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x6}, 0x7, 0xbbf, 0x69bf)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec8\x00', 0x101901, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000100)={'\x00', 0xfffc, 0x6, 0x40, 0x9b4, 0x7, "00000000000001000000ffffffe500", "0400", '\x00', '\x00', ["00000f0008b330ac007abfc1", "0000000000000300", "0800000000000000000000ec", "0017000000ef00"]})
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3, @empty}, 0x51)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000300)='/d\x00'/12, 0x100000a3d9)
sysfs$auto(0x2, 0x10000000000000e, 0x0)
openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x218141, 0x0)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x801, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x848000000015, 0x805, 0x0)
socket(0xa, 0x3, 0x100)

0s ago: executing program 0 (id=7568):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
r0 = socket(0x2, 0x2, 0x0)
ioctl$auto_FS_IOC_UNRESVSP64(r0, 0x4030582b, 0x9)
r1 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
write$auto(r1, &(0x7f0000000c40)='gthtool\x00', 0x5)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1000001, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x8, 0x1, 0x2, 0x4, 0x15f4da0e, 0x3, 0xd08, 0xc, 0x8, 0x4, 0x6d3f, 0x9, 0x2, 0x4000000000000d]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0xa, 0x2, 0x3a)
sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x18, 0x0, 0x400, 0x70bd27, 0x25dfdbfd, {}, [@OVS_FLOW_ATTR_PROBE={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
read$auto(r0, 0x0, 0x2000000000007)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0)
readv$auto(r0, &(0x7f00000000c0)={&(0x7f0000000400)="aee0b8e7c69c10e0c15742274204589e770aa7bd9d154e2363b0a92cdbd7e1885256c7756ed772fccd69cc41139b9f49703273217b1e2a030229337f3a304580cdede355c5ece4a729acee9debbc3a43646fa0fad699a1d078e159824acc83f0394296878a879c334f1c7d2614a17b53f2b83d8b019f910d0f126e640828b27bdf06a634f84df5eb051358cc117b8b6f471c8587d3c2288847", 0x3}, 0x7)
read$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000000)=""/65, 0x41)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
madvise$auto(0x0, 0x20499d, 0x9)
mmap$auto(0x0, 0x20005, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
io_uring_setup$auto(0x52, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

kernel console output (not intermixed with test programs):

4490
[ 3008.982721][T12706]  ? __pfx___might_resched+0x10/0x10
[ 3008.982741][T12706]  ? rcu_is_watching+0x12/0xc0
[ 3008.982760][T12706]  ? trace_contention_end+0xdd/0x130
[ 3008.982787][T12706]  netlink_rcv_skb+0x158/0x420
[ 3008.982815][T12706]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[ 3008.982841][T12706]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3008.982868][T12706]  ? __pfx___mutex_lock+0x10/0x10
[ 3008.982910][T12706]  xfrm_netlink_rcv+0x71/0x90
[ 3008.982933][T12706]  netlink_unicast+0x5a7/0x870
[ 3008.982964][T12706]  ? __pfx_netlink_unicast+0x10/0x10
[ 3008.982993][T12706]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[ 3008.983019][T12706]  ? __lock_acquire+0xb97/0x1ce0
[ 3008.983054][T12706]  netlink_sendmsg+0x8d1/0xdd0
[ 3008.983086][T12706]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3008.983117][T12706]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 3008.983140][T12706]  ____sys_sendmsg+0xa98/0xc70
[ 3008.983161][T12706]  ? copy_msghdr_from_user+0x10a/0x160
[ 3008.983189][T12706]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 3008.983219][T12706]  ___sys_sendmsg+0x134/0x1d0
[ 3008.983248][T12706]  ? __pfx____sys_sendmsg+0x10/0x10
[ 3008.983301][T12706]  __sys_sendmsg+0x16d/0x220
[ 3008.983329][T12706]  ? __pfx___sys_sendmsg+0x10/0x10
[ 3008.983370][T12706]  do_syscall_64+0xcd/0x4c0
[ 3008.983400][T12706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3008.983418][T12706] RIP: 0033:0x7f96b238eec9
[ 3008.983433][T12706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3008.983450][T12706] RSP: 002b:00007f96b3239038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3008.983468][T12706] RAX: ffffffffffffffda RBX: 00007f96b25e6090 RCX: 00007f96b238eec9
[ 3008.983479][T12706] RDX: 000000002404c810 RSI: 0000200000000240 RDI: 0000000000000003
[ 3008.983490][T12706] RBP: 00007f96b3239090 R08: 0000000000000000 R09: 0000000000000000
[ 3008.983501][T12706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3008.983511][T12706] R13: 00007f96b25e6128 R14: 00007f96b25e6090 R15: 00007ffdc89d3b98
[ 3008.983533][T12706]  </TASK>
[ 3009.725250][ T5973] Bluetooth: hci3: command 0x0406 tx timeout
[ 3009.731423][ T5973] Bluetooth: hci2: command 0x0406 tx timeout
[ 3009.737584][ T5973] Bluetooth: hci4: command 0x0406 tx timeout
[ 3009.743727][ T5973] Bluetooth: hci0: command 0x0406 tx timeout
[ 3009.868155][T12715] capability: warning: `syz.1.6283' uses 32-bit capabilities (legacy support in use)
[ 3009.936836][T12719] FAULT_INJECTION: forcing a failure.
[ 3009.936836][T12719] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3009.975914][T12719] CPU: 0 UID: 0 PID: 12719 Comm: syz.3.6287 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3009.975947][T12719] Tainted: [U]=USER
[ 3009.975953][T12719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3009.975965][T12719] Call Trace:
[ 3009.975972][T12719]  <TASK>
[ 3009.975980][T12719]  dump_stack_lvl+0x16c/0x1f0
[ 3009.976012][T12719]  should_fail_ex+0x512/0x640
[ 3009.976045][T12719]  _copy_from_user+0x2e/0xd0
[ 3009.976066][T12719]  copy_msghdr_from_user+0x98/0x160
[ 3009.976102][T12719]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 3009.976133][T12719]  ? find_held_lock+0x2b/0x80
[ 3009.976152][T12719]  ? futex_unqueue+0x133/0x2c0
[ 3009.976178][T12719]  ___sys_sendmsg+0xfe/0x1d0
[ 3009.976207][T12719]  ? __pfx____sys_sendmsg+0x10/0x10
[ 3009.976245][T12719]  ? find_held_lock+0x2b/0x80
[ 3009.976276][T12719]  __sys_sendmmsg+0x200/0x420
[ 3009.976306][T12719]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 3009.976340][T12719]  ? __pfx_do_futex+0x10/0x10
[ 3009.976375][T12719]  ? xfd_validate_state+0x61/0x180
[ 3009.976407][T12719]  __x64_sys_sendmmsg+0x9c/0x100
[ 3009.976434][T12719]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3009.976461][T12719]  do_syscall_64+0xcd/0x4c0
[ 3009.976490][T12719]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3009.976509][T12719] RIP: 0033:0x7f96b238eec9
[ 3009.976524][T12719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3009.976541][T12719] RSP: 002b:00007f96b3239038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 3009.976559][T12719] RAX: ffffffffffffffda RBX: 00007f96b25e6090 RCX: 00007f96b238eec9
[ 3009.976571][T12719] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[ 3009.976582][T12719] RBP: 00007f96b2411f91 R08: 0000000000000000 R09: 0000000000000000
[ 3009.976592][T12719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3009.976603][T12719] R13: 00007f96b25e6128 R14: 00007f96b25e6090 R15: 00007ffdc89d3b98
[ 3009.976624][T12719]  </TASK>
[ 3014.117990][T12808] binder: 12807:12808 ioctl c0306201 0 returned -14
[ 3014.704973][T12820] FAULT_INJECTION: forcing a failure.
[ 3014.704973][T12820] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3014.772913][T12820] CPU: 0 UID: 0 PID: 12820 Comm: syz.3.6312 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3014.772944][T12820] Tainted: [U]=USER
[ 3014.772950][T12820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3014.772961][T12820] Call Trace:
[ 3014.772968][T12820]  <TASK>
[ 3014.772975][T12820]  dump_stack_lvl+0x16c/0x1f0
[ 3014.773014][T12820]  should_fail_ex+0x512/0x640
[ 3014.773045][T12820]  _copy_from_user+0x2e/0xd0
[ 3014.773065][T12820]  __x64_sys_timer_create+0x10d/0x1d0
[ 3014.773093][T12820]  ? __pfx___x64_sys_timer_create+0x10/0x10
[ 3014.773129][T12820]  do_syscall_64+0xcd/0x4c0
[ 3014.773159][T12820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3014.773177][T12820] RIP: 0033:0x7f96b238eec9
[ 3014.773192][T12820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3014.773210][T12820] RSP: 002b:00007f96b325a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000de
[ 3014.773231][T12820] RAX: ffffffffffffffda RBX: 00007f96b25e5fa0 RCX: 00007f96b238eec9
[ 3014.773243][T12820] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000000
[ 3014.773254][T12820] RBP: 00007f96b325a090 R08: 0000000000000000 R09: 0000000000000000
[ 3014.773264][T12820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3014.773275][T12820] R13: 00007f96b25e6038 R14: 00007f96b25e5fa0 R15: 00007ffdc89d3b98
[ 3014.773296][T12820]  </TASK>
[ 3016.961699][T12886] FAULT_INJECTION: forcing a failure.
[ 3016.961699][T12886] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3017.078094][T12886] CPU: 0 UID: 0 PID: 12886 Comm: syz.2.6323 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3017.078125][T12886] Tainted: [U]=USER
[ 3017.078131][T12886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3017.078141][T12886] Call Trace:
[ 3017.078148][T12886]  <TASK>
[ 3017.078155][T12886]  dump_stack_lvl+0x16c/0x1f0
[ 3017.078187][T12886]  should_fail_ex+0x512/0x640
[ 3017.078219][T12886]  should_fail_alloc_page+0xe7/0x130
[ 3017.078245][T12886]  prepare_alloc_pages+0x3c2/0x610
[ 3017.078276][T12886]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 3017.078304][T12886]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3017.078336][T12886]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3017.078361][T12886]  ? mas_next_slot+0x12d3/0x21b0
[ 3017.078387][T12886]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3017.078415][T12886]  ? policy_nodemask+0xea/0x4e0
[ 3017.078442][T12886]  alloc_pages_mpol+0x1fb/0x550
[ 3017.078466][T12886]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3017.078497][T12886]  alloc_pages_noprof+0x131/0x390
[ 3017.078521][T12886]  pte_alloc_one+0x1c/0x3a0
[ 3017.078541][T12886]  __pte_alloc+0x6d/0x3c0
[ 3017.078566][T12886]  ? __pfx___pte_alloc+0x10/0x10
[ 3017.078590][T12886]  ? __lock_acquire+0x62e/0x1ce0
[ 3017.078619][T12886]  do_pte_missing+0x285a/0x3ba0
[ 3017.078639][T12886]  ? mtree_range_walk+0x718/0xc00
[ 3017.078665][T12886]  ? find_held_lock+0x2b/0x80
[ 3017.078684][T12886]  __handle_mm_fault+0x152a/0x2a50
[ 3017.078710][T12886]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3017.078747][T12886]  handle_mm_fault+0x589/0xd10
[ 3017.078770][T12886]  __get_user_pages+0x551/0x34a0
[ 3017.078806][T12886]  ? __pfx___get_user_pages+0x10/0x10
[ 3017.078840][T12886]  populate_vma_page_range+0x267/0x3f0
[ 3017.078871][T12886]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 3017.078899][T12886]  ? __pfx_find_vma_intersection+0x10/0x10
[ 3017.078926][T12886]  ? do_mmap+0x69c/0x1210
[ 3017.078954][T12886]  __mm_populate+0x1d8/0x380
[ 3017.078972][T12886]  ? __pfx___mm_populate+0x10/0x10
[ 3017.078990][T12886]  ? up_write+0x1b2/0x520
[ 3017.079028][T12886]  vm_mmap_pgoff+0x37f/0x470
[ 3017.079057][T12886]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 3017.079084][T12886]  ? __fget_files+0x20e/0x3c0
[ 3017.079111][T12886]  ksys_mmap_pgoff+0x7d/0x5c0
[ 3017.079137][T12886]  ? __pfx_ksys_write+0x10/0x10
[ 3017.079160][T12886]  __x64_sys_mmap+0x125/0x190
[ 3017.079191][T12886]  do_syscall_64+0xcd/0x4c0
[ 3017.079220][T12886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3017.079238][T12886] RIP: 0033:0x7f4a92b8eec9
[ 3017.079253][T12886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3017.079270][T12886] RSP: 002b:00007f4a93a2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 3017.079287][T12886] RAX: ffffffffffffffda RBX: 00007f4a92de6270 RCX: 00007f4a92b8eec9
[ 3017.079299][T12886] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 3017.079310][T12886] RBP: 00007f4a93a2a090 R08: 0000000000000002 R09: 0000000000008000
[ 3017.079320][T12886] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001
[ 3017.079331][T12886] R13: 00007f4a92de6308 R14: 00007f4a92de6270 R15: 00007fffd6b09ad8
[ 3017.079353][T12886]  </TASK>
[ 3018.085576][T12897] Invalid ELF header magic: != ELF
[ 3018.435159][T12905] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6329'.
[ 3019.429023][T12918] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6332'.
[ 3019.778819][T12931] serio: Serial port pty6
[ 3021.433716][T12969] netlink: 'syz.1.6343': attribute type 1 has an invalid length.
[ 3021.713851][T12966] Invalid ELF header magic: != ELF
[ 3021.832694][ T5187] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[ 3021.832725][ T5187] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260
[ 3021.852459][ T5187] Bluetooth: hci4: Unknown advertising packet type: 0x7f
[ 3021.852485][ T5187] Bluetooth: hci4: adv larger than maximum supported
[ 3021.859639][ T5187] Bluetooth: hci4: adv larger than maximum supported
[ 3021.870593][ T5187] Bluetooth: hci4: Malformed LE Event: 0x0d
[ 3022.695495][T12999] FAULT_INJECTION: forcing a failure.
[ 3022.695495][T12999] name failslab, interval 1, probability 0, space 0, times 0
[ 3022.764323][T12999] CPU: 0 UID: 0 PID: 12999 Comm: syz.3.6350 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3022.764355][T12999] Tainted: [U]=USER
[ 3022.764361][T12999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3022.764372][T12999] Call Trace:
[ 3022.764378][T12999]  <TASK>
[ 3022.764386][T12999]  dump_stack_lvl+0x16c/0x1f0
[ 3022.764418][T12999]  should_fail_ex+0x512/0x640
[ 3022.764445][T12999]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[ 3022.764470][T12999]  should_failslab+0xc2/0x120
[ 3022.764494][T12999]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 3022.764516][T12999]  ? __alloc_skb+0x2b2/0x380
[ 3022.764546][T12999]  __alloc_skb+0x2b2/0x380
[ 3022.764571][T12999]  ? __pfx___alloc_skb+0x10/0x10
[ 3022.764600][T12999]  ? __lock_acquire+0x62e/0x1ce0
[ 3022.764627][T12999]  tipc_buf_acquire+0x26/0xe0
[ 3022.764649][T12999]  tipc_msg_build+0x112/0x1150
[ 3022.764676][T12999]  ? __pfx_tipc_msg_build+0x10/0x10
[ 3022.764709][T12999]  tipc_send_group_bcast+0x7cc/0xa50
[ 3022.764745][T12999]  ? __pfx_tipc_send_group_bcast+0x10/0x10
[ 3022.764775][T12999]  ? __pfx_tipc_sk_filter_rcv+0x10/0x10
[ 3022.764797][T12999]  ? __pfx_woken_wake_function+0x10/0x10
[ 3022.764834][T12999]  ? __pfx_aa_label_sk_perm+0x10/0x10
[ 3022.764857][T12999]  ? __pfx_tipc_node_distr_xmit+0x10/0x10
[ 3022.764887][T12999]  __tipc_sendmsg+0x4ab/0x19a0
[ 3022.764920][T12999]  ? __lock_acquire+0xb97/0x1ce0
[ 3022.764947][T12999]  ? __pfx___tipc_sendmsg+0x10/0x10
[ 3022.764968][T12999]  ? __lock_acquire+0xb97/0x1ce0
[ 3022.765010][T12999]  ? __local_bh_enable_ip+0xa4/0x120
[ 3022.765036][T12999]  tipc_sendmsg+0x4f/0x70
[ 3022.765057][T12999]  ____sys_sendmsg+0xa98/0xc70
[ 3022.765079][T12999]  ? copy_msghdr_from_user+0x10a/0x160
[ 3022.765107][T12999]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 3022.765132][T12999]  ? kfree+0x24f/0x4d0
[ 3022.765154][T12999]  ___sys_sendmsg+0x134/0x1d0
[ 3022.765184][T12999]  ? __pfx____sys_sendmsg+0x10/0x10
[ 3022.765230][T12999]  ? __pfx___might_resched+0x10/0x10
[ 3022.765253][T12999]  __sys_sendmmsg+0x200/0x420
[ 3022.765284][T12999]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 3022.765318][T12999]  ? __pfx_do_futex+0x10/0x10
[ 3022.765341][T12999]  ? rcu_is_watching+0x12/0xc0
[ 3022.765371][T12999]  ? xfd_validate_state+0x61/0x180
[ 3022.765397][T12999]  ? __sys_setsockopt+0x140/0x1a0
[ 3022.765426][T12999]  __x64_sys_sendmmsg+0x9c/0x100
[ 3022.765454][T12999]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3022.765481][T12999]  do_syscall_64+0xcd/0x4c0
[ 3022.765510][T12999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3022.765529][T12999] RIP: 0033:0x7f96b238eec9
[ 3022.765544][T12999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3022.765562][T12999] RSP: 002b:00007f96b325a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 3022.765580][T12999] RAX: ffffffffffffffda RBX: 00007f96b25e5fa0 RCX: 00007f96b238eec9
[ 3022.765592][T12999] RDX: 0000000000000002 RSI: 0000200000000000 RDI: 0000000000000003
[ 3022.765603][T12999] RBP: 00007f96b2411f91 R08: 0000000000000000 R09: 0000000000000000
[ 3022.765613][T12999] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000000
[ 3022.765624][T12999] R13: 00007f96b25e6038 R14: 00007f96b25e5fa0 R15: 00007ffdc89d3b98
[ 3022.765646][T12999]  </TASK>
[ 3023.420083][T13001] random: crng reseeded on system resumption
[ 3023.794203][T13014] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6355'.
[ 3025.918752][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 3025.925122][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[ 3026.941380][T13067] FAULT_INJECTION: forcing a failure.
[ 3026.941380][T13067] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3027.022894][T13067] CPU: 0 UID: 0 PID: 13067 Comm: syz.3.6361 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3027.022929][T13067] Tainted: [U]=USER
[ 3027.022936][T13067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3027.022946][T13067] Call Trace:
[ 3027.022953][T13067]  <TASK>
[ 3027.022960][T13067]  dump_stack_lvl+0x16c/0x1f0
[ 3027.022993][T13067]  should_fail_ex+0x512/0x640
[ 3027.023025][T13067]  _copy_from_user+0x2e/0xd0
[ 3027.023045][T13067]  copy_msghdr_from_user+0x98/0x160
[ 3027.023073][T13067]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 3027.023105][T13067]  ? __pfx__kstrtoull+0x10/0x10
[ 3027.023133][T13067]  ___sys_sendmsg+0xfe/0x1d0
[ 3027.023162][T13067]  ? __pfx____sys_sendmsg+0x10/0x10
[ 3027.023199][T13067]  ? find_held_lock+0x2b/0x80
[ 3027.023232][T13067]  __sys_sendmmsg+0x200/0x420
[ 3027.023262][T13067]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 3027.023297][T13067]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 3027.023335][T13067]  ? fput+0x9b/0xd0
[ 3027.023360][T13067]  ? ksys_write+0x1ac/0x250
[ 3027.023381][T13067]  ? __pfx_ksys_write+0x10/0x10
[ 3027.023406][T13067]  __x64_sys_sendmmsg+0x9c/0x100
[ 3027.023433][T13067]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3027.023459][T13067]  do_syscall_64+0xcd/0x4c0
[ 3027.023489][T13067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3027.023507][T13067] RIP: 0033:0x7f96b238eec9
[ 3027.023523][T13067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3027.023541][T13067] RSP: 002b:00007f96b325a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 3027.023558][T13067] RAX: ffffffffffffffda RBX: 00007f96b25e5fa0 RCX: 00007f96b238eec9
[ 3027.023570][T13067] RDX: 0000000000000005 RSI: 0000200000000100 RDI: 0000000000000003
[ 3027.023580][T13067] RBP: 00007f96b325a090 R08: 0000000000000000 R09: 0000000000000000
[ 3027.023591][T13067] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001
[ 3027.023601][T13067] R13: 00007f96b25e6038 R14: 00007f96b25e5fa0 R15: 00007ffdc89d3b98
[ 3027.023624][T13067]  </TASK>
[ 3087.360745][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 3087.367133][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[ 3148.798600][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 3148.804956][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[ 3210.239507][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 3210.248985][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[ 3254.798186][T13186] __vm_enough_memory: pid: 13186, comm: syz.1.6377, bytes: 4398046511104 not enough memory for the allocation
[ 3255.052994][   T30] audit: type=1800 audit(4294967527.930:4): pid=13178 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.6376" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[ 3256.290156][T13215] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6381'.
[ 3258.688961][T13244] ksmbd: Unknown IPC event: 14, ignore.
[ 3263.921485][T13308] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6397'.
[ 3263.980622][T13308] netlink: 25 bytes leftover after parsing attributes in process `syz.1.6397'.
[ 3264.940843][T13317] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6400'.
[ 3268.601586][T13353] FAULT_INJECTION: forcing a failure.
[ 3268.601586][T13353] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3268.715853][T13353] CPU: 0 UID: 0 PID: 13353 Comm: syz.3.6408 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3268.715885][T13353] Tainted: [U]=USER
[ 3268.715891][T13353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3268.715902][T13353] Call Trace:
[ 3268.715908][T13353]  <TASK>
[ 3268.715916][T13353]  dump_stack_lvl+0x16c/0x1f0
[ 3268.715950][T13353]  should_fail_ex+0x512/0x640
[ 3268.715982][T13353]  _copy_from_iter+0x29f/0x1720
[ 3268.716004][T13353]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3268.716034][T13353]  ? __pfx__copy_from_iter+0x10/0x10
[ 3268.716054][T13353]  ? alloc_pages_mpol+0x25a/0x550
[ 3268.716087][T13353]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3268.716116][T13353]  copy_page_from_iter+0xde/0x180
[ 3268.716139][T13353]  anon_pipe_write+0xbe7/0x1a90
[ 3268.716170][T13353]  ? __pfx_anon_pipe_write+0x10/0x10
[ 3268.716195][T13353]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 3268.716218][T13353]  ? bpf_lsm_file_permission+0x9/0x10
[ 3268.716244][T13353]  ? security_file_permission+0x71/0x210
[ 3268.716271][T13353]  ? rw_verify_area+0xcf/0x6c0
[ 3268.716292][T13353]  vfs_write+0x7d3/0x11d0
[ 3268.716314][T13353]  ? __pfx_anon_pipe_write+0x10/0x10
[ 3268.716339][T13353]  ? __pfx_vfs_write+0x10/0x10
[ 3268.716358][T13353]  ? find_held_lock+0x2b/0x80
[ 3268.716390][T13353]  ksys_write+0x1f8/0x250
[ 3268.716410][T13353]  ? __pfx_ksys_write+0x10/0x10
[ 3268.716438][T13353]  do_syscall_64+0xcd/0x4c0
[ 3268.716468][T13353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3268.716486][T13353] RIP: 0033:0x7f96b238eec9
[ 3268.716501][T13353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3268.716520][T13353] RSP: 002b:00007f96b325a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 3268.716537][T13353] RAX: ffffffffffffffda RBX: 00007f96b25e5fa0 RCX: 00007f96b238eec9
[ 3268.716549][T13353] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[ 3268.716560][T13353] RBP: 00007f96b2411f91 R08: 0000000000000000 R09: 0000000000000000
[ 3268.716571][T13353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3268.716581][T13353] R13: 00007f96b25e6038 R14: 00007f96b25e5fa0 R15: 00007ffdc89d3b98
[ 3268.716603][T13353]  </TASK>
[ 3271.686149][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 3271.699024][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[ 3274.448099][T13431] netlink: 334 bytes leftover after parsing attributes in process `syz.1.6420'.
[ 3275.478576][T13442] netlink: 334 bytes leftover after parsing attributes in process `syz.2.6422'.
[ 3275.631190][T13444] FAULT_INJECTION: forcing a failure.
[ 3275.631190][T13444] name failslab, interval 1, probability 0, space 0, times 0
[ 3275.693162][T13444] CPU: 0 UID: 0 PID: 13444 Comm: syz.3.6423 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3275.693196][T13444] Tainted: [U]=USER
[ 3275.693202][T13444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3275.693213][T13444] Call Trace:
[ 3275.693220][T13444]  <TASK>
[ 3275.693227][T13444]  dump_stack_lvl+0x16c/0x1f0
[ 3275.693259][T13444]  should_fail_ex+0x512/0x640
[ 3275.693287][T13444]  ? __kmalloc_noprof+0xbf/0x510
[ 3275.693311][T13444]  ? __netlink_kernel_create+0x17f/0x750
[ 3275.693337][T13444]  should_failslab+0xc2/0x120
[ 3275.693361][T13444]  __kmalloc_noprof+0xd2/0x510
[ 3275.693387][T13444]  __netlink_kernel_create+0x17f/0x750
[ 3275.693417][T13444]  ? __pfx___netlink_kernel_create+0x10/0x10
[ 3275.693450][T13444]  ? __pfx_genl_pernet_init+0x10/0x10
[ 3275.693468][T13444]  genl_pernet_init+0xbd/0x170
[ 3275.693487][T13444]  ? __pfx_genl_pernet_init+0x10/0x10
[ 3275.693504][T13444]  ? lockdep_init_map_type+0x5c/0x280
[ 3275.693529][T13444]  ? __pfx_genl_rcv+0x10/0x10
[ 3275.693545][T13444]  ? __pfx_genl_bind+0x10/0x10
[ 3275.693560][T13444]  ? __pfx_genl_unbind+0x10/0x10
[ 3275.693575][T13444]  ? __pfx_genl_release+0x10/0x10
[ 3275.693594][T13444]  ? debug_mutex_init+0x37/0x70
[ 3275.693615][T13444]  ops_init+0x1df/0x5f0
[ 3275.693645][T13444]  setup_net+0x10f/0x380
[ 3275.693659][T13444]  ? lockdep_init_map_type+0x5c/0x280
[ 3275.693685][T13444]  ? __pfx_setup_net+0x10/0x10
[ 3275.693702][T13444]  ? debug_mutex_init+0x37/0x70
[ 3275.693723][T13444]  copy_net_ns+0x2a6/0x5f0
[ 3275.693744][T13444]  create_new_namespaces+0x3ea/0xa90
[ 3275.693770][T13444]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 3275.693794][T13444]  ksys_unshare+0x45b/0xa40
[ 3275.693820][T13444]  ? __pfx_ksys_unshare+0x10/0x10
[ 3275.693845][T13444]  ? xfd_validate_state+0x61/0x180
[ 3275.693878][T13444]  __x64_sys_unshare+0x31/0x40
[ 3275.693903][T13444]  do_syscall_64+0xcd/0x4c0
[ 3275.693933][T13444]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3275.693951][T13444] RIP: 0033:0x7f96b238eec9
[ 3275.693966][T13444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3275.693984][T13444] RSP: 002b:00007f96b325a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 3275.694010][T13444] RAX: ffffffffffffffda RBX: 00007f96b25e5fa0 RCX: 00007f96b238eec9
[ 3275.694022][T13444] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 3275.694033][T13444] RBP: 00007f96b2411f91 R08: 0000000000000000 R09: 0000000000000000
[ 3275.694044][T13444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3275.694054][T13444] R13: 00007f96b25e6038 R14: 00007f96b25e5fa0 R15: 00007ffdc89d3b98
[ 3275.694077][T13444]  </TASK>
[ 3276.504283][T13452] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1259
[ 3277.107901][T13459] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6425'.
[ 3277.219767][T13456] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1260
[ 3277.689064][   T30] audit: type=1800 audit(4294967550.570:5): pid=13472 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.6427" name="features" dev="configfs" ino=202473 res=0 errno=0
[ 3280.246030][T13502] input: f¬
 as /devices/virtual/input/input1261
[ 3283.015022][T13534] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6444'.
[ 3287.916115][T13589] zswap: compressor  not available
[ 3289.298600][T13609] random: crng reseeded on system resumption
[ 3297.334426][T13710] input: f¬
 as /devices/virtual/input/input1262
[ 3298.922475][T13746] netlink: 32 bytes leftover after parsing attributes in process `syz.0.6494'.
[ 3299.346368][T13760] FAULT_INJECTION: forcing a failure.
[ 3299.346368][T13760] name failslab, interval 1, probability 0, space 0, times 0
[ 3299.438276][T13760] CPU: 0 UID: 0 PID: 13760 Comm: syz.2.6500 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3299.438308][T13760] Tainted: [U]=USER
[ 3299.438315][T13760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3299.438326][T13760] Call Trace:
[ 3299.438333][T13760]  <TASK>
[ 3299.438341][T13760]  dump_stack_lvl+0x16c/0x1f0
[ 3299.438374][T13760]  should_fail_ex+0x512/0x640
[ 3299.438402][T13760]  ? __kmalloc_noprof+0xbf/0x510
[ 3299.438426][T13760]  ? __netlink_kernel_create+0x17f/0x750
[ 3299.438453][T13760]  should_failslab+0xc2/0x120
[ 3299.438478][T13760]  __kmalloc_noprof+0xd2/0x510
[ 3299.438504][T13760]  __netlink_kernel_create+0x17f/0x750
[ 3299.438549][T13760]  ? __pfx___netlink_kernel_create+0x10/0x10
[ 3299.438583][T13760]  ? __pfx_genl_pernet_init+0x10/0x10
[ 3299.438602][T13760]  genl_pernet_init+0xbd/0x170
[ 3299.438621][T13760]  ? __pfx_genl_pernet_init+0x10/0x10
[ 3299.438639][T13760]  ? lockdep_init_map_type+0x5c/0x280
[ 3299.438665][T13760]  ? __pfx_genl_rcv+0x10/0x10
[ 3299.438681][T13760]  ? __pfx_genl_bind+0x10/0x10
[ 3299.438697][T13760]  ? __pfx_genl_unbind+0x10/0x10
[ 3299.438712][T13760]  ? __pfx_genl_release+0x10/0x10
[ 3299.438731][T13760]  ? debug_mutex_init+0x37/0x70
[ 3299.438751][T13760]  ops_init+0x1df/0x5f0
[ 3299.438782][T13760]  setup_net+0x10f/0x380
[ 3299.438796][T13760]  ? lockdep_init_map_type+0x5c/0x280
[ 3299.438830][T13760]  ? __pfx_setup_net+0x10/0x10
[ 3299.438848][T13760]  ? debug_mutex_init+0x37/0x70
[ 3299.438869][T13760]  copy_net_ns+0x2a6/0x5f0
[ 3299.438891][T13760]  create_new_namespaces+0x3ea/0xa90
[ 3299.438918][T13760]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 3299.438941][T13760]  ksys_unshare+0x45b/0xa40
[ 3299.438967][T13760]  ? __pfx_ksys_unshare+0x10/0x10
[ 3299.438993][T13760]  ? xfd_validate_state+0x61/0x180
[ 3299.439026][T13760]  __x64_sys_unshare+0x31/0x40
[ 3299.439051][T13760]  do_syscall_64+0xcd/0x4c0
[ 3299.439081][T13760]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3299.439099][T13760] RIP: 0033:0x7f4a92b8eec9
[ 3299.439114][T13760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3299.439131][T13760] RSP: 002b:00007f4a93a8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 3299.439150][T13760] RAX: ffffffffffffffda RBX: 00007f4a92de5fa0 RCX: 00007f4a92b8eec9
[ 3299.439162][T13760] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 3299.439172][T13760] RBP: 00007f4a92c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 3299.439183][T13760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3299.439194][T13760] R13: 00007f4a92de6038 R14: 00007f4a92de5fa0 R15: 00007fffd6b09ad8
[ 3299.439217][T13760]  </TASK>
[ 3300.608573][T13773] zram: Can't change algorithm for initialized device
[ 3301.371860][T13791] FAULT_INJECTION: forcing a failure.
[ 3301.371860][T13791] name fail_futex, interval 1, probability 0, space 0, times 0
[ 3301.443598][T13791] CPU: 0 UID: 0 PID: 13791 Comm: syz.3.6508 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3301.443631][T13791] Tainted: [U]=USER
[ 3301.443638][T13791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3301.443649][T13791] Call Trace:
[ 3301.443657][T13791]  <TASK>
[ 3301.443664][T13791]  dump_stack_lvl+0x16c/0x1f0
[ 3301.443696][T13791]  should_fail_ex+0x512/0x640
[ 3301.443729][T13791]  get_futex_key+0x1d0/0x1560
[ 3301.443756][T13791]  ? __pfx_get_futex_key+0x10/0x10
[ 3301.443776][T13791]  ? __pfx_mas_prev+0x10/0x10
[ 3301.443810][T13791]  futex_wait_setup+0x9d/0x550
[ 3301.443854][T13791]  __futex_wait+0x194/0x2f0
[ 3301.443882][T13791]  ? __pfx___futex_wait+0x10/0x10
[ 3301.443914][T13791]  ? __pfx_futex_wake_mark+0x10/0x10
[ 3301.443944][T13791]  ? futex_private_hash_put+0x176/0x300
[ 3301.443969][T13791]  ? futex_private_hash_put+0x18a/0x300
[ 3301.443993][T13791]  futex_wait+0xe8/0x380
[ 3301.444020][T13791]  ? __pfx_futex_wait+0x10/0x10
[ 3301.444045][T13791]  ? __pfx___up_read+0x10/0x10
[ 3301.444078][T13791]  ? madvise_unlock+0x7c/0x220
[ 3301.444107][T13791]  do_futex+0x229/0x350
[ 3301.444131][T13791]  ? __pfx_do_futex+0x10/0x10
[ 3301.444155][T13791]  ? __sys_connect+0xe0/0x160
[ 3301.444182][T13791]  __x64_sys_futex+0x1e0/0x4c0
[ 3301.444208][T13791]  ? __pfx___x64_sys_futex+0x10/0x10
[ 3301.444231][T13791]  ? xfd_validate_state+0x61/0x180
[ 3301.444258][T13791]  ? __pfx_do_writev+0x10/0x10
[ 3301.444284][T13791]  do_syscall_64+0xcd/0x4c0
[ 3301.444313][T13791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3301.444331][T13791] RIP: 0033:0x7f96b238eec9
[ 3301.444346][T13791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3301.444364][T13791] RSP: 002b:00007f96b325a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 3301.444382][T13791] RAX: ffffffffffffffda RBX: 00007f96b25e5fa8 RCX: 00007f96b238eec9
[ 3301.444394][T13791] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f96b25e5fa8
[ 3301.444404][T13791] RBP: 00007f96b25e5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 3301.444415][T13791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3301.444426][T13791] R13: 00007f96b25e6038 R14: 00007ffdc89d3ab0 R15: 00007ffdc89d3b98
[ 3301.444447][T13791]  </TASK>
[ 3303.360940][T13834] __vm_enough_memory: pid: 13834, comm: syz.3.6522, bytes: 4398046511104 not enough memory for the allocation
[ 3303.545603][T13826] zswap: compressor  not available
[ 3304.714736][T13869] __vm_enough_memory: pid: 13869, comm: syz.0.6531, bytes: 4398046511104 not enough memory for the allocation
[ 3307.439659][T13930] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6547'.
[ 3308.272430][T13943] input: f¬
 as /devices/virtual/input/input1263
[ 3308.289269][T13945] FAULT_INJECTION: forcing a failure.
[ 3308.289269][T13945] name fail_futex, interval 1, probability 0, space 0, times 0
[ 3308.367286][T13945] CPU: 0 UID: 0 PID: 13945 Comm: syz.3.6551 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3308.367318][T13945] Tainted: [U]=USER
[ 3308.367325][T13945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3308.367336][T13945] Call Trace:
[ 3308.367342][T13945]  <TASK>
[ 3308.367350][T13945]  dump_stack_lvl+0x16c/0x1f0
[ 3308.367382][T13945]  should_fail_ex+0x512/0x640
[ 3308.367414][T13945]  get_futex_key+0x1d0/0x1560
[ 3308.367440][T13945]  ? __pfx_get_futex_key+0x10/0x10
[ 3308.367459][T13945]  ? __pfx_mas_prev+0x10/0x10
[ 3308.367493][T13945]  futex_wait_setup+0x9d/0x550
[ 3308.367527][T13945]  __futex_wait+0x194/0x2f0
[ 3308.367555][T13945]  ? __pfx___futex_wait+0x10/0x10
[ 3308.367586][T13945]  ? __pfx_futex_wake_mark+0x10/0x10
[ 3308.367615][T13945]  ? futex_private_hash_put+0x176/0x300
[ 3308.367640][T13945]  ? futex_private_hash_put+0x18a/0x300
[ 3308.367664][T13945]  futex_wait+0xe8/0x380
[ 3308.367691][T13945]  ? __pfx_futex_wait+0x10/0x10
[ 3308.367723][T13945]  ? __pfx___up_read+0x10/0x10
[ 3308.367765][T13945]  ? madvise_unlock+0x7c/0x220
[ 3308.367794][T13945]  do_futex+0x229/0x350
[ 3308.367819][T13945]  ? __pfx_do_futex+0x10/0x10
[ 3308.367848][T13945]  __x64_sys_futex+0x1e0/0x4c0
[ 3308.367874][T13945]  ? __pfx___x64_sys_futex+0x10/0x10
[ 3308.367899][T13945]  ? xfd_validate_state+0x61/0x180
[ 3308.367925][T13945]  ? __pfx_ksys_write+0x10/0x10
[ 3308.367953][T13945]  do_syscall_64+0xcd/0x4c0
[ 3308.367982][T13945]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3308.368000][T13945] RIP: 0033:0x7f96b238eec9
[ 3308.368015][T13945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3308.368032][T13945] RSP: 002b:00007f96b325a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 3308.368050][T13945] RAX: ffffffffffffffda RBX: 00007f96b25e5fa8 RCX: 00007f96b238eec9
[ 3308.368062][T13945] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f96b25e5fa8
[ 3308.368073][T13945] RBP: 00007f96b25e5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 3308.368083][T13945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3308.368094][T13945] R13: 00007f96b25e6038 R14: 00007ffdc89d3ab0 R15: 00007ffdc89d3b98
[ 3308.368116][T13945]  </TASK>
[ 3309.198686][T13956] binder: 13953:13956 unknown command 0
[ 3309.221930][T13956] binder: 13953:13956 ioctl c0306201 200000000000 returned -22
[ 3309.679951][T13971] serio: Serial port pty6
[ 3310.483101][T14002] FAULT_INJECTION: forcing a failure.
[ 3310.483101][T14002] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3310.552221][T14002] CPU: 0 UID: 0 PID: 14002 Comm: syz.2.6569 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3310.552254][T14002] Tainted: [U]=USER
[ 3310.552261][T14002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3310.552271][T14002] Call Trace:
[ 3310.552278][T14002]  <TASK>
[ 3310.552285][T14002]  dump_stack_lvl+0x16c/0x1f0
[ 3310.552318][T14002]  should_fail_ex+0x512/0x640
[ 3310.552350][T14002]  _copy_from_user+0x2e/0xd0
[ 3310.552372][T14002]  copy_msghdr_from_user+0x98/0x160
[ 3310.552400][T14002]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 3310.552430][T14002]  ? find_held_lock+0x2b/0x80
[ 3310.552450][T14002]  ? futex_unqueue+0x133/0x2c0
[ 3310.552475][T14002]  ___sys_sendmsg+0xfe/0x1d0
[ 3310.552503][T14002]  ? __pfx____sys_sendmsg+0x10/0x10
[ 3310.552541][T14002]  ? find_held_lock+0x2b/0x80
[ 3310.552573][T14002]  __sys_sendmmsg+0x200/0x420
[ 3310.552602][T14002]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 3310.552645][T14002]  ? __pfx_do_futex+0x10/0x10
[ 3310.552668][T14002]  ? rcu_is_watching+0x12/0xc0
[ 3310.552698][T14002]  ? xfd_validate_state+0x61/0x180
[ 3310.552730][T14002]  ? __sys_setsockopt+0x140/0x1a0
[ 3310.552769][T14002]  __x64_sys_sendmmsg+0x9c/0x100
[ 3310.552797][T14002]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3310.552824][T14002]  do_syscall_64+0xcd/0x4c0
[ 3310.552854][T14002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3310.552873][T14002] RIP: 0033:0x7f4a92b8eec9
[ 3310.552889][T14002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3310.552907][T14002] RSP: 002b:00007f4a93a8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 3310.552926][T14002] RAX: ffffffffffffffda RBX: 00007f4a92de5fa0 RCX: 00007f4a92b8eec9
[ 3310.552938][T14002] RDX: 0000000000000002 RSI: 0000200000000000 RDI: 0000000000000003
[ 3310.552949][T14002] RBP: 00007f4a92c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 3310.552959][T14002] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000000
[ 3310.552970][T14002] R13: 00007f4a92de6038 R14: 00007f4a92de5fa0 R15: 00007fffd6b09ad8
[ 3310.552993][T14002]  </TASK>
[ 3310.849629][T14006] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6571'.
[ 3312.939679][T14051] serio: Serial port pty6
[ 3313.200161][T14059] input: f¬
 as /devices/virtual/input/input1264
[ 3314.143131][T14078] __vm_enough_memory: pid: 14078, comm: syz.2.6590, bytes: 4398046511104 not enough memory for the allocation
[ 3315.605720][T14113] input: f¬
 as /devices/virtual/input/input1265
[ 3316.273283][T14106] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6598'.
[ 3318.099681][T14167] __vm_enough_memory: pid: 14167, comm: syz.1.6613, bytes: 4398046511104 not enough memory for the allocation
[ 3318.328815][T14171] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6614'.
[ 3318.382834][T14171] netlink: 25 bytes leftover after parsing attributes in process `syz.0.6614'.
[ 3320.502301][T14222] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6625'.
[ 3320.514057][T14194] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6619'.
[ 3321.066160][T14242] __vm_enough_memory: pid: 14242, comm: syz.1.6632, bytes: 4398046511104 not enough memory for the allocation
[ 3323.434768][T14291] __vm_enough_memory: pid: 14291, comm: syz.3.6643, bytes: 4398046511104 not enough memory for the allocation
[ 3324.863947][T14312] FAULT_INJECTION: forcing a failure.
[ 3324.863947][T14312] name fail_futex, interval 1, probability 0, space 0, times 0
[ 3324.938730][T14312] CPU: 0 UID: 0 PID: 14312 Comm: syz.2.6649 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3324.938761][T14312] Tainted: [U]=USER
[ 3324.938767][T14312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3324.938777][T14312] Call Trace:
[ 3324.938783][T14312]  <TASK>
[ 3324.938791][T14312]  dump_stack_lvl+0x16c/0x1f0
[ 3324.938822][T14312]  should_fail_ex+0x512/0x640
[ 3324.938854][T14312]  get_futex_key+0x293/0x1560
[ 3324.938878][T14312]  ? __pfx_get_futex_key+0x10/0x10
[ 3324.938900][T14312]  ? __mutex_trylock_common+0xe9/0x250
[ 3324.938932][T14312]  futex_wake+0xea/0x530
[ 3324.938961][T14312]  ? __pfx_futex_wake+0x10/0x10
[ 3324.938996][T14312]  do_futex+0x1e3/0x350
[ 3324.939020][T14312]  ? __pfx_do_futex+0x10/0x10
[ 3324.939040][T14312]  ? __might_fault+0xe3/0x190
[ 3324.939067][T14312]  mm_release+0x24e/0x300
[ 3324.939094][T14312]  do_exit+0x68e/0x2bf0
[ 3324.939124][T14312]  ? __pfx_do_exit+0x10/0x10
[ 3324.939149][T14312]  ? do_raw_spin_lock+0x12c/0x2b0
[ 3324.939176][T14312]  ? find_held_lock+0x2b/0x80
[ 3324.939197][T14312]  do_group_exit+0xd3/0x2a0
[ 3324.939225][T14312]  get_signal+0x2673/0x26d0
[ 3324.939248][T14312]  ? __pfx_do_recvmmsg+0x10/0x10
[ 3324.939277][T14312]  ? __pfx___might_resched+0x10/0x10
[ 3324.939297][T14312]  ? __pfx_get_signal+0x10/0x10
[ 3324.939318][T14312]  ? do_futex+0x122/0x350
[ 3324.939341][T14312]  ? __pfx_do_futex+0x10/0x10
[ 3324.939365][T14312]  arch_do_signal_or_restart+0x8f/0x790
[ 3324.939391][T14312]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 3324.939421][T14312]  ? xfd_validate_state+0x61/0x180
[ 3324.939447][T14312]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 3324.939480][T14312]  exit_to_user_mode_loop+0x84/0x110
[ 3324.939509][T14312]  do_syscall_64+0x41c/0x4c0
[ 3324.939539][T14312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3324.939557][T14312] RIP: 0033:0x7f4a92b8eec9
[ 3324.939572][T14312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3324.939590][T14312] RSP: 002b:00007f4a93a8d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 3324.939608][T14312] RAX: fffffffffffffe00 RBX: 00007f4a92de5fa8 RCX: 00007f4a92b8eec9
[ 3324.939620][T14312] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4a92de5fa8
[ 3324.939638][T14312] RBP: 00007f4a92de5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 3324.939649][T14312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3324.939660][T14312] R13: 00007f4a92de6038 R14: 00007fffd6b099f0 R15: 00007fffd6b09ad8
[ 3324.939683][T14312]  </TASK>
[ 3326.469900][T14330] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6654'.
[ 3327.035087][T14341] FAULT_INJECTION: forcing a failure.
[ 3327.035087][T14341] name failslab, interval 1, probability 0, space 0, times 0
[ 3327.051255][T14344] FAULT_INJECTION: forcing a failure.
[ 3327.051255][T14344] name failslab, interval 1, probability 0, space 0, times 0
[ 3327.130072][T14341] CPU: 0 UID: 0 PID: 14341 Comm: syz.2.6658 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3327.130105][T14341] Tainted: [U]=USER
[ 3327.130111][T14341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3327.130122][T14341] Call Trace:
[ 3327.130129][T14341]  <TASK>
[ 3327.130136][T14341]  dump_stack_lvl+0x16c/0x1f0
[ 3327.130169][T14341]  should_fail_ex+0x512/0x640
[ 3327.130196][T14341]  ? __kmalloc_noprof+0xbf/0x510
[ 3327.130220][T14341]  ? sk_prot_alloc+0x1a8/0x2a0
[ 3327.130239][T14341]  should_failslab+0xc2/0x120
[ 3327.130263][T14341]  __kmalloc_noprof+0xd2/0x510
[ 3327.130284][T14341]  ? evm_inode_alloc_security+0x49/0xc0
[ 3327.130309][T14341]  sk_prot_alloc+0x1a8/0x2a0
[ 3327.130331][T14341]  sk_alloc+0x36/0xc20
[ 3327.130357][T14341]  __netlink_create+0x5e/0x2c0
[ 3327.130383][T14341]  __netlink_kernel_create+0xed/0x750
[ 3327.130412][T14341]  ? __pfx___netlink_kernel_create+0x10/0x10
[ 3327.130447][T14341]  uevent_net_init+0xf8/0x350
[ 3327.130467][T14341]  ? __pfx_uevent_net_init+0x10/0x10
[ 3327.130488][T14341]  ? __pfx_uevent_net_rcv+0x10/0x10
[ 3327.130513][T14341]  ? __pfx_uevent_net_init+0x10/0x10
[ 3327.130531][T14341]  ops_init+0x1df/0x5f0
[ 3327.130561][T14341]  setup_net+0x10f/0x380
[ 3327.130576][T14341]  ? lockdep_init_map_type+0x5c/0x280
[ 3327.130602][T14341]  ? __pfx_setup_net+0x10/0x10
[ 3327.130619][T14341]  ? debug_mutex_init+0x37/0x70
[ 3327.130640][T14341]  copy_net_ns+0x2a6/0x5f0
[ 3327.130661][T14341]  create_new_namespaces+0x3ea/0xa90
[ 3327.130688][T14341]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 3327.130712][T14341]  ksys_unshare+0x45b/0xa40
[ 3327.130738][T14341]  ? __pfx_ksys_unshare+0x10/0x10
[ 3327.130764][T14341]  ? xfd_validate_state+0x61/0x180
[ 3327.130797][T14341]  __x64_sys_unshare+0x31/0x40
[ 3327.130822][T14341]  do_syscall_64+0xcd/0x4c0
[ 3327.130852][T14341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3327.130870][T14341] RIP: 0033:0x7f4a92b8eec9
[ 3327.130894][T14341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3327.130913][T14341] RSP: 002b:00007f4a93a8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 3327.130931][T14341] RAX: ffffffffffffffda RBX: 00007f4a92de5fa0 RCX: 00007f4a92b8eec9
[ 3327.130943][T14341] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 3327.130955][T14341] RBP: 00007f4a92c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 3327.130967][T14341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3327.130978][T14341] R13: 00007f4a92de6038 R14: 00007f4a92de5fa0 R15: 00007fffd6b09ad8
[ 3327.131001][T14341]  </TASK>
[ 3327.131048][T14341] kobject_uevent: unable to create netlink socket!
[ 3327.407408][T14344] CPU: 0 UID: 0 PID: 14344 Comm: syz.3.6657 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3327.407442][T14344] Tainted: [U]=USER
[ 3327.407449][T14344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3327.407460][T14344] Call Trace:
[ 3327.407468][T14344]  <TASK>
[ 3327.407476][T14344]  dump_stack_lvl+0x16c/0x1f0
[ 3327.407509][T14344]  should_fail_ex+0x512/0x640
[ 3327.407538][T14344]  ? __kmalloc_noprof+0xbf/0x510
[ 3327.407562][T14344]  ? lsm_blob_alloc+0x68/0x90
[ 3327.407578][T14344]  should_failslab+0xc2/0x120
[ 3327.407603][T14344]  __kmalloc_noprof+0xd2/0x510
[ 3327.407630][T14344]  lsm_blob_alloc+0x68/0x90
[ 3327.407647][T14344]  security_sk_alloc+0x30/0x270
[ 3327.407669][T14344]  sk_prot_alloc+0x1c7/0x2a0
[ 3327.407691][T14344]  sk_alloc+0x36/0xc20
[ 3327.407725][T14344]  __netlink_create+0x5e/0x2c0
[ 3327.407751][T14344]  __netlink_kernel_create+0xed/0x750
[ 3327.407787][T14344]  ? __pfx___netlink_kernel_create+0x10/0x10
[ 3327.407815][T14344]  ? find_held_lock+0x2b/0x80
[ 3327.407834][T14344]  ? audit_net_init+0x190/0x440
[ 3327.407861][T14344]  audit_net_init+0x1ae/0x440
[ 3327.407883][T14344]  ? __pfx_audit_net_init+0x10/0x10
[ 3327.407915][T14344]  ? __pfx_audit_receive+0x10/0x10
[ 3327.407939][T14344]  ? __pfx_audit_multicast_bind+0x10/0x10
[ 3327.407963][T14344]  ? __pfx_audit_multicast_unbind+0x10/0x10
[ 3327.407988][T14344]  ? __kmalloc_noprof+0x242/0x510
[ 3327.408015][T14344]  ? __pfx_audit_net_init+0x10/0x10
[ 3327.408036][T14344]  ops_init+0x1df/0x5f0
[ 3327.408067][T14344]  setup_net+0x10f/0x380
[ 3327.408083][T14344]  ? lockdep_init_map_type+0x5c/0x280
[ 3327.408109][T14344]  ? __pfx_setup_net+0x10/0x10
[ 3327.408127][T14344]  ? debug_mutex_init+0x37/0x70
[ 3327.408149][T14344]  copy_net_ns+0x2a6/0x5f0
[ 3327.408171][T14344]  create_new_namespaces+0x3ea/0xa90
[ 3327.408198][T14344]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 3327.408222][T14344]  ksys_unshare+0x45b/0xa40
[ 3327.408251][T14344]  ? __pfx_ksys_unshare+0x10/0x10
[ 3327.408277][T14344]  ? xfd_validate_state+0x61/0x180
[ 3327.408310][T14344]  __x64_sys_unshare+0x31/0x40
[ 3327.408335][T14344]  do_syscall_64+0xcd/0x4c0
[ 3327.408365][T14344]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3327.408384][T14344] RIP: 0033:0x7f96b238eec9
[ 3327.408400][T14344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3327.408418][T14344] RSP: 002b:00007f96b325a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 3327.408436][T14344] RAX: ffffffffffffffda RBX: 00007f96b25e5fa0 RCX: 00007f96b238eec9
[ 3327.408448][T14344] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 3327.408459][T14344] RBP: 00007f96b2411f91 R08: 0000000000000000 R09: 0000000000000000
[ 3327.408470][T14344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3327.408480][T14344] R13: 00007f96b25e6038 R14: 00007f96b25e5fa0 R15: 00007ffdc89d3b98
[ 3327.408503][T14344]  </TASK>
[ 3328.552015][T14344] audit: cannot initialize netlink socket in namespace
[ 3328.970969][T14378] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6666'.
[ 3330.749454][T14418] input: f¬
 as /devices/virtual/input/input1266
[ 3332.394534][ T5187] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[ 3332.394563][ T5187] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260
[ 3332.409737][ T5187] Bluetooth: hci3: Unknown advertising packet type: 0x7f
[ 3332.409761][ T5187] Bluetooth: hci3: adv larger than maximum supported
[ 3332.419289][ T5187] Bluetooth: hci3: adv larger than maximum supported
[ 3332.426334][ T5187] Bluetooth: hci3: Malformed LE Event: 0x0d
[ 3332.909667][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 3332.916007][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[ 3334.698351][T14503] __vm_enough_memory: pid: 14503, comm: syz.3.6691, bytes: 4398046511104 not enough memory for the allocation
[ 3335.013816][T14511] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6694'.
[ 3335.059154][T14511] netlink: 25 bytes leftover after parsing attributes in process `syz.1.6694'.
[ 3337.338670][T14550] __vm_enough_memory: pid: 14550, comm: syz.2.6707, bytes: 4398046511104 not enough memory for the allocation
[ 3337.422374][T14554] FAULT_INJECTION: forcing a failure.
[ 3337.422374][T14554] name failslab, interval 1, probability 0, space 0, times 0
[ 3337.444662][T14554] CPU: 0 UID: 0 PID: 14554 Comm: syz.3.6709 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3337.444696][T14554] Tainted: [U]=USER
[ 3337.444703][T14554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3337.444713][T14554] Call Trace:
[ 3337.444721][T14554]  <TASK>
[ 3337.444728][T14554]  dump_stack_lvl+0x16c/0x1f0
[ 3337.444770][T14554]  should_fail_ex+0x512/0x640
[ 3337.444799][T14554]  ? fs_reclaim_acquire+0xae/0x150
[ 3337.444830][T14554]  should_failslab+0xc2/0x120
[ 3337.444855][T14554]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 3337.444878][T14554]  ? jbd2__journal_start+0x193/0x6a0
[ 3337.444911][T14554]  jbd2__journal_start+0x193/0x6a0
[ 3337.444944][T14554]  __ext4_journal_start_sb+0x195/0x690
[ 3337.444968][T14554]  ? ext4_punch_hole+0x77e/0x1080
[ 3337.444996][T14554]  ext4_punch_hole+0x77e/0x1080
[ 3337.445027][T14554]  ext4_fallocate+0x22d7/0x37a0
[ 3337.445063][T14554]  ? __pfx_ext4_fallocate+0x10/0x10
[ 3337.445090][T14554]  vfs_fallocate+0x5b1/0x10e0
[ 3337.445116][T14554]  ? __pfx_vfs_fallocate+0x10/0x10
[ 3337.445138][T14554]  ? madvise_vma_behavior+0x2b20/0x2d60
[ 3337.445170][T14554]  madvise_vma_behavior+0x2ad7/0x2d60
[ 3337.445199][T14554]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[ 3337.445232][T14554]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 3337.445261][T14554]  ? __pfx_mas_prev+0x10/0x10
[ 3337.445295][T14554]  ? find_vma_prev+0xda/0x160
[ 3337.445319][T14554]  ? find_held_lock+0x2b/0x80
[ 3337.445338][T14554]  ? __pfx_find_vma_prev+0x10/0x10
[ 3337.445364][T14554]  ? futex_unqueue+0x133/0x2c0
[ 3337.445393][T14554]  ? __futex_wait+0x24c/0x2f0
[ 3337.445422][T14554]  madvise_walk_vmas+0x31f/0x9c0
[ 3337.445453][T14554]  ? __pfx_madvise_walk_vmas+0x10/0x10
[ 3337.445487][T14554]  madvise_do_behavior+0x1e2/0x530
[ 3337.445512][T14554]  ? futex_private_hash_put+0x18a/0x300
[ 3337.445535][T14554]  ? __pfx_madvise_do_behavior+0x10/0x10
[ 3337.445563][T14554]  ? down_read+0x13d/0x480
[ 3337.445592][T14554]  do_madvise+0x176/0x240
[ 3337.445618][T14554]  ? __pfx_do_madvise+0x10/0x10
[ 3337.445643][T14554]  ? do_futex+0x122/0x350
[ 3337.445682][T14554]  ? xfd_validate_state+0x61/0x180
[ 3337.445708][T14554]  ? __pfx_ksys_write+0x10/0x10
[ 3337.445734][T14554]  __x64_sys_madvise+0xa9/0x110
[ 3337.445766][T14554]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3337.445793][T14554]  do_syscall_64+0xcd/0x4c0
[ 3337.445822][T14554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3337.445841][T14554] RIP: 0033:0x7f96b238eec9
[ 3337.445857][T14554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3337.445889][T14554] RSP: 002b:00007f96b325a038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[ 3337.445908][T14554] RAX: ffffffffffffffda RBX: 00007f96b25e5fa0 RCX: 00007f96b238eec9
[ 3337.445920][T14554] RDX: 0000000000000009 RSI: 0000000000000001 RDI: 000000110c230000
[ 3337.445931][T14554] RBP: 00007f96b2411f91 R08: 0000000000000000 R09: 0000000000000000
[ 3337.445942][T14554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3337.445953][T14554] R13: 00007f96b25e6038 R14: 00007f96b25e5fa0 R15: 00007ffdc89d3b98
[ 3337.445977][T14554]  </TASK>
[ 3337.764721][T14554] EXT4-fs error (device sda1) in ext4_punch_hole:4467: Out of memory
[ 3339.720831][T14585] sd 0:0:1:0: PR command failed: 1026
[ 3339.772169][T14585] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[ 3339.827609][T14585] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 3340.021077][T14592] __vm_enough_memory: pid: 14592, comm: syz.2.6718, bytes: 4398046511104 not enough memory for the allocation
[ 3341.666130][T14620] __vm_enough_memory: pid: 14620, comm: syz.1.6727, bytes: 4398046511104 not enough memory for the allocation
[ 3342.573055][T14639] __vm_enough_memory: pid: 14639, comm: syz.3.6732, bytes: 4398046511104 not enough memory for the allocation
[ 3346.702405][T14687] __vm_enough_memory: pid: 14687, comm: syz.0.6745, bytes: 4398046511104 not enough memory for the allocation
[ 3346.776228][T14689] __vm_enough_memory: pid: 14689, comm: syz.2.6746, bytes: 4398046511104 not enough memory for the allocation
[ 3349.549167][T14734] FAULT_INJECTION: forcing a failure.
[ 3349.549167][T14734] name failslab, interval 1, probability 0, space 0, times 0
[ 3349.603798][T14734] CPU: 0 UID: 0 PID: 14734 Comm: syz.2.6757 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3349.603831][T14734] Tainted: [U]=USER
[ 3349.603838][T14734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3349.603848][T14734] Call Trace:
[ 3349.603855][T14734]  <TASK>
[ 3349.603864][T14734]  dump_stack_lvl+0x16c/0x1f0
[ 3349.603897][T14734]  should_fail_ex+0x512/0x640
[ 3349.603925][T14734]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 3349.603947][T14734]  should_failslab+0xc2/0x120
[ 3349.603972][T14734]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 3349.603990][T14734]  ? audit_net_init+0x190/0x440
[ 3349.604011][T14734]  ? uevent_net_init+0xd3/0x350
[ 3349.604034][T14734]  uevent_net_init+0xd3/0x350
[ 3349.604053][T14734]  ? __pfx_uevent_net_init+0x10/0x10
[ 3349.604074][T14734]  ? __pfx_uevent_net_rcv+0x10/0x10
[ 3349.604099][T14734]  ? __pfx_uevent_net_init+0x10/0x10
[ 3349.604117][T14734]  ops_init+0x1df/0x5f0
[ 3349.604147][T14734]  setup_net+0x10f/0x380
[ 3349.604162][T14734]  ? lockdep_init_map_type+0x5c/0x280
[ 3349.604188][T14734]  ? __pfx_setup_net+0x10/0x10
[ 3349.604206][T14734]  ? debug_mutex_init+0x37/0x70
[ 3349.604227][T14734]  copy_net_ns+0x2a6/0x5f0
[ 3349.604248][T14734]  create_new_namespaces+0x3ea/0xa90
[ 3349.604274][T14734]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 3349.604297][T14734]  ksys_unshare+0x45b/0xa40
[ 3349.604322][T14734]  ? __pfx_ksys_unshare+0x10/0x10
[ 3349.604347][T14734]  ? xfd_validate_state+0x61/0x180
[ 3349.604381][T14734]  __x64_sys_unshare+0x31/0x40
[ 3349.604405][T14734]  do_syscall_64+0xcd/0x4c0
[ 3349.604434][T14734]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3349.604460][T14734] RIP: 0033:0x7f4a92b8eec9
[ 3349.604476][T14734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3349.604494][T14734] RSP: 002b:00007f4a93a8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 3349.604513][T14734] RAX: ffffffffffffffda RBX: 00007f4a92de5fa0 RCX: 00007f4a92b8eec9
[ 3349.604525][T14734] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 3349.604536][T14734] RBP: 00007f4a92c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 3349.604548][T14734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3349.604560][T14734] R13: 00007f4a92de6038 R14: 00007f4a92de5fa0 R15: 00007fffd6b09ad8
[ 3349.604583][T14734]  </TASK>
[ 3350.563304][T14751] input: f¬
 as /devices/virtual/input/input1267
[ 3351.967273][T14780] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6771'.
[ 3352.026639][T14781] netlink: 25 bytes leftover after parsing attributes in process `syz.3.6771'.
[ 3353.475983][T14811] __vm_enough_memory: pid: 14811, comm: syz.3.6777, bytes: 4398046511104 not enough memory for the allocation
[ 3354.289585][T14826] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6782'.
[ 3356.142193][T14853] FAULT_INJECTION: forcing a failure.
[ 3356.142193][T14853] name failslab, interval 1, probability 0, space 0, times 0
[ 3356.247254][T14853] CPU: 0 UID: 0 PID: 14853 Comm: syz.3.6789 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3356.247286][T14853] Tainted: [U]=USER
[ 3356.247292][T14853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3356.247302][T14853] Call Trace:
[ 3356.247310][T14853]  <TASK>
[ 3356.247318][T14853]  dump_stack_lvl+0x16c/0x1f0
[ 3356.247349][T14853]  should_fail_ex+0x512/0x640
[ 3356.247378][T14853]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[ 3356.247403][T14853]  should_failslab+0xc2/0x120
[ 3356.247428][T14853]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[ 3356.247451][T14853]  ? sock_alloc_inode+0x25/0x1c0
[ 3356.247472][T14853]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 3356.247490][T14853]  sock_alloc_inode+0x25/0x1c0
[ 3356.247508][T14853]  alloc_inode+0x61/0x240
[ 3356.247535][T14853]  sock_alloc+0x40/0x280
[ 3356.247552][T14853]  sock_create_lite+0x82/0x120
[ 3356.247571][T14853]  __netlink_kernel_create+0xbd/0x750
[ 3356.247602][T14853]  ? __pfx___netlink_kernel_create+0x10/0x10
[ 3356.247648][T14853]  uevent_net_init+0xf8/0x350
[ 3356.247668][T14853]  ? __pfx_uevent_net_init+0x10/0x10
[ 3356.247689][T14853]  ? __pfx_uevent_net_rcv+0x10/0x10
[ 3356.247715][T14853]  ? __pfx_uevent_net_init+0x10/0x10
[ 3356.247738][T14853]  ops_init+0x1df/0x5f0
[ 3356.247768][T14853]  setup_net+0x10f/0x380
[ 3356.247782][T14853]  ? lockdep_init_map_type+0x5c/0x280
[ 3356.247808][T14853]  ? __pfx_setup_net+0x10/0x10
[ 3356.247825][T14853]  ? debug_mutex_init+0x37/0x70
[ 3356.247851][T14853]  copy_net_ns+0x2a6/0x5f0
[ 3356.247873][T14853]  create_new_namespaces+0x3ea/0xa90
[ 3356.247900][T14853]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 3356.247924][T14853]  ksys_unshare+0x45b/0xa40
[ 3356.247949][T14853]  ? __pfx_ksys_unshare+0x10/0x10
[ 3356.247975][T14853]  ? xfd_validate_state+0x61/0x180
[ 3356.248009][T14853]  __x64_sys_unshare+0x31/0x40
[ 3356.248033][T14853]  do_syscall_64+0xcd/0x4c0
[ 3356.248063][T14853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3356.248081][T14853] RIP: 0033:0x7f96b238eec9
[ 3356.248097][T14853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3356.248114][T14853] RSP: 002b:00007f96b325a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 3356.248132][T14853] RAX: ffffffffffffffda RBX: 00007f96b25e5fa0 RCX: 00007f96b238eec9
[ 3356.248144][T14853] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 3356.248154][T14853] RBP: 00007f96b2411f91 R08: 0000000000000000 R09: 0000000000000000
[ 3356.248165][T14853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3356.248175][T14853] R13: 00007f96b25e6038 R14: 00007f96b25e5fa0 R15: 00007ffdc89d3b98
[ 3356.248198][T14853]  </TASK>
[ 3357.024452][T14865] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6793'.
[ 3357.399419][T14853] kobject_uevent: unable to create netlink socket!
[ 3357.573833][T14874] FAULT_INJECTION: forcing a failure.
[ 3357.573833][T14874] name failslab, interval 1, probability 0, space 0, times 0
[ 3357.633953][T14874] CPU: 0 UID: 0 PID: 14874 Comm: syz.3.6796 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3357.633986][T14874] Tainted: [U]=USER
[ 3357.633992][T14874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3357.634003][T14874] Call Trace:
[ 3357.634010][T14874]  <TASK>
[ 3357.634018][T14874]  dump_stack_lvl+0x16c/0x1f0
[ 3357.634051][T14874]  should_fail_ex+0x512/0x640
[ 3357.634080][T14874]  ? fs_reclaim_acquire+0xae/0x150
[ 3357.634109][T14874]  should_failslab+0xc2/0x120
[ 3357.634135][T14874]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 3357.634158][T14874]  ? jbd2__journal_start+0x193/0x6a0
[ 3357.634191][T14874]  jbd2__journal_start+0x193/0x6a0
[ 3357.634223][T14874]  __ext4_journal_start_sb+0x195/0x690
[ 3357.634247][T14874]  ? ext4_punch_hole+0x77e/0x1080
[ 3357.634275][T14874]  ext4_punch_hole+0x77e/0x1080
[ 3357.634306][T14874]  ext4_fallocate+0x22d7/0x37a0
[ 3357.634349][T14874]  ? __pfx_ext4_fallocate+0x10/0x10
[ 3357.634377][T14874]  vfs_fallocate+0x5b1/0x10e0
[ 3357.634402][T14874]  ? __pfx_vfs_fallocate+0x10/0x10
[ 3357.634425][T14874]  ? madvise_vma_behavior+0x2b20/0x2d60
[ 3357.634456][T14874]  madvise_vma_behavior+0x2ad7/0x2d60
[ 3357.634486][T14874]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[ 3357.634514][T14874]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 3357.634543][T14874]  ? __pfx_mas_prev+0x10/0x10
[ 3357.634577][T14874]  ? find_vma_prev+0xda/0x160
[ 3357.634602][T14874]  ? find_held_lock+0x2b/0x80
[ 3357.634621][T14874]  ? __pfx_find_vma_prev+0x10/0x10
[ 3357.634647][T14874]  ? futex_unqueue+0x133/0x2c0
[ 3357.634674][T14874]  ? __futex_wait+0x24c/0x2f0
[ 3357.634704][T14874]  madvise_walk_vmas+0x31f/0x9c0
[ 3357.634734][T14874]  ? __pfx_madvise_walk_vmas+0x10/0x10
[ 3357.634768][T14874]  madvise_do_behavior+0x1e2/0x530
[ 3357.634793][T14874]  ? futex_private_hash_put+0x18a/0x300
[ 3357.634816][T14874]  ? __pfx_madvise_do_behavior+0x10/0x10
[ 3357.634844][T14874]  ? down_read+0x13d/0x480
[ 3357.634872][T14874]  do_madvise+0x176/0x240
[ 3357.634898][T14874]  ? __pfx_do_madvise+0x10/0x10
[ 3357.634927][T14874]  ? do_futex+0x122/0x350
[ 3357.634967][T14874]  ? xfd_validate_state+0x61/0x180
[ 3357.634993][T14874]  ? __pfx_ksys_write+0x10/0x10
[ 3357.635018][T14874]  __x64_sys_madvise+0xa9/0x110
[ 3357.635044][T14874]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3357.635070][T14874]  do_syscall_64+0xcd/0x4c0
[ 3357.635101][T14874]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3357.635119][T14874] RIP: 0033:0x7f96b238eec9
[ 3357.635135][T14874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3357.635153][T14874] RSP: 002b:00007f96b325a038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[ 3357.635172][T14874] RAX: ffffffffffffffda RBX: 00007f96b25e5fa0 RCX: 00007f96b238eec9
[ 3357.635184][T14874] RDX: 0000000000000009 RSI: 0000000000000001 RDI: 000000110c230000
[ 3357.635194][T14874] RBP: 00007f96b2411f91 R08: 0000000000000000 R09: 0000000000000000
[ 3357.635205][T14874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3357.635215][T14874] R13: 00007f96b25e6038 R14: 00007f96b25e5fa0 R15: 00007ffdc89d3b98
[ 3357.635239][T14874]  </TASK>
[ 3357.637486][T14874] EXT4-fs error (device sda1) in ext4_punch_hole:4467: Out of memory
[ 3358.305585][T14885] __vm_enough_memory: pid: 14885, comm: syz.1.6799, bytes: 4398046511104 not enough memory for the allocation
[ 3358.687761][T14897] FAULT_INJECTION: forcing a failure.
[ 3358.687761][T14897] name failslab, interval 1, probability 0, space 0, times 0
[ 3358.761808][T14897] CPU: 0 UID: 0 PID: 14897 Comm: syz.3.6803 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3358.761851][T14897] Tainted: [U]=USER
[ 3358.761858][T14897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3358.761869][T14897] Call Trace:
[ 3358.761876][T14897]  <TASK>
[ 3358.761884][T14897]  dump_stack_lvl+0x16c/0x1f0
[ 3358.761917][T14897]  should_fail_ex+0x512/0x640
[ 3358.761946][T14897]  ? fs_reclaim_acquire+0xae/0x150
[ 3358.761976][T14897]  should_failslab+0xc2/0x120
[ 3358.762001][T14897]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 3358.762024][T14897]  ? security_inode_alloc+0x3b/0x2b0
[ 3358.762049][T14897]  security_inode_alloc+0x3b/0x2b0
[ 3358.762071][T14897]  inode_init_always_gfp+0xce4/0x1030
[ 3358.762096][T14897]  alloc_inode+0x86/0x240
[ 3358.762122][T14897]  sock_alloc+0x40/0x280
[ 3358.762141][T14897]  sock_create_lite+0x82/0x120
[ 3358.762161][T14897]  __netlink_kernel_create+0xbd/0x750
[ 3358.762191][T14897]  ? __pfx___netlink_kernel_create+0x10/0x10
[ 3358.762226][T14897]  uevent_net_init+0xf8/0x350
[ 3358.762246][T14897]  ? __pfx_uevent_net_init+0x10/0x10
[ 3358.762267][T14897]  ? __pfx_uevent_net_rcv+0x10/0x10
[ 3358.762293][T14897]  ? __pfx_uevent_net_init+0x10/0x10
[ 3358.762311][T14897]  ops_init+0x1df/0x5f0
[ 3358.762341][T14897]  setup_net+0x10f/0x380
[ 3358.762355][T14897]  ? lockdep_init_map_type+0x5c/0x280
[ 3358.762382][T14897]  ? __pfx_setup_net+0x10/0x10
[ 3358.762412][T14897]  ? debug_mutex_init+0x37/0x70
[ 3358.762433][T14897]  copy_net_ns+0x2a6/0x5f0
[ 3358.762455][T14897]  create_new_namespaces+0x3ea/0xa90
[ 3358.762482][T14897]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 3358.762511][T14897]  ksys_unshare+0x45b/0xa40
[ 3358.762542][T14897]  ? __pfx_ksys_unshare+0x10/0x10
[ 3358.762568][T14897]  ? xfd_validate_state+0x61/0x180
[ 3358.762602][T14897]  __x64_sys_unshare+0x31/0x40
[ 3358.762627][T14897]  do_syscall_64+0xcd/0x4c0
[ 3358.762656][T14897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3358.762675][T14897] RIP: 0033:0x7f96b238eec9
[ 3358.762690][T14897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3358.762708][T14897] RSP: 002b:00007f96b325a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 3358.762727][T14897] RAX: ffffffffffffffda RBX: 00007f96b25e5fa0 RCX: 00007f96b238eec9
[ 3358.762738][T14897] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 3358.762749][T14897] RBP: 00007f96b2411f91 R08: 0000000000000000 R09: 0000000000000000
[ 3358.762760][T14897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3358.762770][T14897] R13: 00007f96b25e6038 R14: 00007f96b25e5fa0 R15: 00007ffdc89d3b98
[ 3358.762793][T14897]  </TASK>
[ 3359.297998][T14897] kobject_uevent: unable to create netlink socket!
[ 3364.236131][T14969] serio: Serial port pty6
[ 3364.890855][T14987] __vm_enough_memory: pid: 14987, comm: syz.2.6827, bytes: 4398046511104 not enough memory for the allocation
[ 3364.923537][T14988] __vm_enough_memory: pid: 14988, comm: syz.0.6828, bytes: 4398046511104 not enough memory for the allocation
[ 3367.122336][T15025] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6838'.
[ 3367.365226][T15033] FAULT_INJECTION: forcing a failure.
[ 3367.365226][T15033] name failslab, interval 1, probability 0, space 0, times 0
[ 3367.425559][T15033] CPU: 0 UID: 0 PID: 15033 Comm: syz.3.6842 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3367.425592][T15033] Tainted: [U]=USER
[ 3367.425599][T15033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3367.425610][T15033] Call Trace:
[ 3367.425617][T15033]  <TASK>
[ 3367.425625][T15033]  dump_stack_lvl+0x16c/0x1f0
[ 3367.425659][T15033]  should_fail_ex+0x512/0x640
[ 3367.425687][T15033]  ? fs_reclaim_acquire+0xae/0x150
[ 3367.425717][T15033]  should_failslab+0xc2/0x120
[ 3367.425742][T15033]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 3367.425764][T15033]  ? inode_set_ctime_current+0x2a1/0x8f0
[ 3367.425788][T15033]  ? jbd2__journal_start+0x193/0x6a0
[ 3367.425821][T15033]  jbd2__journal_start+0x193/0x6a0
[ 3367.425856][T15033]  __ext4_journal_start_sb+0x195/0x690
[ 3367.425880][T15033]  ? ext4_dirty_inode+0xa1/0x130
[ 3367.425906][T15033]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 3367.425932][T15033]  ext4_dirty_inode+0xa1/0x130
[ 3367.425960][T15033]  ? rcu_is_watching+0x12/0xc0
[ 3367.425980][T15033]  __mark_inode_dirty+0x1eb/0xe40
[ 3367.426012][T15033]  generic_update_time+0xcf/0xf0
[ 3367.426038][T15033]  file_modified+0x207/0x240
[ 3367.426065][T15033]  ext4_fallocate+0x24a/0x37a0
[ 3367.426101][T15033]  ? __pfx_ext4_fallocate+0x10/0x10
[ 3367.426128][T15033]  vfs_fallocate+0x5b1/0x10e0
[ 3367.426152][T15033]  ? __pfx_vfs_fallocate+0x10/0x10
[ 3367.426177][T15033]  ? madvise_vma_behavior+0x2b20/0x2d60
[ 3367.426208][T15033]  madvise_vma_behavior+0x2ad7/0x2d60
[ 3367.426249][T15033]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[ 3367.426282][T15033]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 3367.426310][T15033]  ? __pfx_mas_prev+0x10/0x10
[ 3367.426349][T15033]  ? find_vma_prev+0xda/0x160
[ 3367.426375][T15033]  ? find_held_lock+0x2b/0x80
[ 3367.426392][T15033]  ? __pfx_find_vma_prev+0x10/0x10
[ 3367.426418][T15033]  ? futex_unqueue+0x133/0x2c0
[ 3367.426447][T15033]  ? __futex_wait+0x24c/0x2f0
[ 3367.426479][T15033]  madvise_walk_vmas+0x31f/0x9c0
[ 3367.426509][T15033]  ? __pfx_madvise_walk_vmas+0x10/0x10
[ 3367.426542][T15033]  madvise_do_behavior+0x1e2/0x530
[ 3367.426568][T15033]  ? futex_private_hash_put+0x18a/0x300
[ 3367.426591][T15033]  ? __pfx_madvise_do_behavior+0x10/0x10
[ 3367.426619][T15033]  ? down_read+0x13d/0x480
[ 3367.426647][T15033]  do_madvise+0x176/0x240
[ 3367.426672][T15033]  ? __pfx_do_madvise+0x10/0x10
[ 3367.426698][T15033]  ? do_futex+0x122/0x350
[ 3367.426735][T15033]  ? xfd_validate_state+0x61/0x180
[ 3367.426761][T15033]  ? __pfx_ksys_write+0x10/0x10
[ 3367.426786][T15033]  __x64_sys_madvise+0xa9/0x110
[ 3367.426812][T15033]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3367.426839][T15033]  do_syscall_64+0xcd/0x4c0
[ 3367.426869][T15033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3367.426888][T15033] RIP: 0033:0x7f96b238eec9
[ 3367.426903][T15033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3367.426921][T15033] RSP: 002b:00007f96b325a038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[ 3367.426938][T15033] RAX: ffffffffffffffda RBX: 00007f96b25e5fa0 RCX: 00007f96b238eec9
[ 3367.426950][T15033] RDX: 0000000000000009 RSI: 0000000000000001 RDI: 000000110c230000
[ 3367.426960][T15033] RBP: 00007f96b2411f91 R08: 0000000000000000 R09: 0000000000000000
[ 3367.426971][T15033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3367.426982][T15033] R13: 00007f96b25e6038 R14: 00007f96b25e5fa0 R15: 00007ffdc89d3b98
[ 3367.427004][T15033]  </TASK>
[ 3367.831969][T15035] __vm_enough_memory: pid: 15035, comm: syz.1.6840, bytes: 4398046511104 not enough memory for the allocation
[ 3369.213321][T15060] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6849'.
[ 3369.289686][T15063] input: f¬
 as /devices/virtual/input/input1268
[ 3369.376557][T15066] __vm_enough_memory: pid: 15066, comm: syz.3.6851, bytes: 4398046511104 not enough memory for the allocation
[ 3371.941820][T15107] input: f¬
 as /devices/virtual/input/input1269
[ 3377.929573][T15206] input: f¬
 as /devices/virtual/input/input1270
[ 3379.250139][T15238] FAULT_INJECTION: forcing a failure.
[ 3379.250139][T15238] name fail_futex, interval 1, probability 0, space 0, times 0
[ 3379.332042][T15238] CPU: 0 UID: 0 PID: 15238 Comm: syz.2.6903 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3379.332075][T15238] Tainted: [U]=USER
[ 3379.332081][T15238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3379.332092][T15238] Call Trace:
[ 3379.332099][T15238]  <TASK>
[ 3379.332106][T15238]  dump_stack_lvl+0x16c/0x1f0
[ 3379.332139][T15238]  should_fail_ex+0x512/0x640
[ 3379.332171][T15238]  get_futex_key+0x1d0/0x1560
[ 3379.332206][T15238]  ? __pfx_get_futex_key+0x10/0x10
[ 3379.332226][T15238]  ? __pfx_mas_prev+0x10/0x10
[ 3379.332261][T15238]  futex_wait_setup+0x9d/0x550
[ 3379.332295][T15238]  __futex_wait+0x194/0x2f0
[ 3379.332323][T15238]  ? __pfx___futex_wait+0x10/0x10
[ 3379.332354][T15238]  ? __pfx_futex_wake_mark+0x10/0x10
[ 3379.332385][T15238]  ? futex_private_hash_put+0x176/0x300
[ 3379.332410][T15238]  ? futex_private_hash_put+0x18a/0x300
[ 3379.332434][T15238]  futex_wait+0xe8/0x380
[ 3379.332461][T15238]  ? __pfx_futex_wait+0x10/0x10
[ 3379.332487][T15238]  ? __pfx___up_read+0x10/0x10
[ 3379.332520][T15238]  ? madvise_unlock+0x7c/0x220
[ 3379.332548][T15238]  do_futex+0x229/0x350
[ 3379.332572][T15238]  ? __pfx_do_futex+0x10/0x10
[ 3379.332600][T15238]  __x64_sys_futex+0x1e0/0x4c0
[ 3379.332627][T15238]  ? __pfx___x64_sys_futex+0x10/0x10
[ 3379.332650][T15238]  ? xfd_validate_state+0x61/0x180
[ 3379.332676][T15238]  ? __pfx_ksys_write+0x10/0x10
[ 3379.332703][T15238]  do_syscall_64+0xcd/0x4c0
[ 3379.332733][T15238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3379.332751][T15238] RIP: 0033:0x7f4a92b8eec9
[ 3379.332767][T15238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3379.332784][T15238] RSP: 002b:00007f4a93a8d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 3379.332802][T15238] RAX: ffffffffffffffda RBX: 00007f4a92de5fa8 RCX: 00007f4a92b8eec9
[ 3379.332814][T15238] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4a92de5fa8
[ 3379.332825][T15238] RBP: 00007f4a92de5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 3379.332836][T15238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3379.332846][T15238] R13: 00007f4a92de6038 R14: 00007fffd6b099f0 R15: 00007fffd6b09ad8
[ 3379.332868][T15238]  </TASK>
[ 3379.916470][T15241] input: f¬
 as /devices/virtual/input/input1271
[ 3380.817020][T15264] futex_wake_op: syz.1.6911 tries to shift op by -9; fix this program
[ 3381.783666][T15289] __vm_enough_memory: pid: 15289, comm: syz.3.6914, bytes: 4398046511104 not enough memory for the allocation
[ 3382.481307][T15296] __vm_enough_memory: pid: 15296, comm: syz.2.6924, bytes: 4398046511104 not enough memory for the allocation
[ 3382.719176][T15301] __vm_enough_memory: pid: 15301, comm: syz.0.6917, bytes: 4398046511104 not enough memory for the allocation
[ 3383.327747][T15310] serio: Serial port pty6
[ 3384.992612][T15344] __vm_enough_memory: pid: 15344, comm: syz.1.6929, bytes: 4398046511104 not enough memory for the allocation
[ 3385.692990][T15361] ICMPv6: process `syz.3.6935' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[ 3386.755476][T15383] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6939'.
[ 3389.806724][T15452] serio: Serial port pty6
[ 3392.783965][T15509] serio: Serial port pty6
[ 3394.024183][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 3394.030502][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[ 3395.274558][ T5973] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 3395.284429][ T5973] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 3395.293219][ T5973] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 3395.302232][ T5973] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 3395.310411][ T5973] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 3395.531314][T15385] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3395.807808][T15385] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3395.948609][T15385] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3396.059063][T15385] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3396.535458][T15557] chnl_net:caif_netlink_parms(): no params data found
[ 3396.566156][T15586] input: f¬
 as /devices/virtual/input/input1272
[ 3396.597710][T15588] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7000'.
[ 3396.636478][T15588] netlink: 25 bytes leftover after parsing attributes in process `syz.2.7000'.
[ 3396.838412][T15557] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3396.869402][T15557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3396.888435][T15557] bridge_slave_0: entered allmulticast mode
[ 3396.896220][T15557] bridge_slave_0: entered promiscuous mode
[ 3396.940699][T15557] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3396.969492][T15557] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3396.994505][T15557] bridge_slave_1: entered allmulticast mode
[ 3397.020515][T15557] bridge_slave_1: entered promiscuous mode
[ 3397.185616][T15557] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3397.232928][T15557] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3397.364147][ T5973] Bluetooth: hci0: command tx timeout
[ 3397.382441][T15557] team0: Port device team_slave_0 added
[ 3397.419146][T15557] team0: Port device team_slave_1 added
[ 3397.548598][T15557] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3397.580204][T15557] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3397.684904][T15557] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3397.733124][T15557] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3397.760213][T15557] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3397.846017][T15557] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3397.884901][T15605] serio: Serial port pty6
[ 3398.065727][T15557] hsr_slave_0: entered promiscuous mode
[ 3398.087758][T15557] hsr_slave_1: entered promiscuous mode
[ 3398.113256][T15557] debugfs: 'hsr0' already exists in 'hsr'
[ 3398.119024][T15557] Cannot create hsr debugfs directory
[ 3398.508184][T15618] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7008'.
[ 3398.517846][T15618] netlink: 25 bytes leftover after parsing attributes in process `syz.2.7008'.
[ 3399.433388][ T5973] Bluetooth: hci0: command tx timeout
[ 3401.503774][ T5973] Bluetooth: hci0: command tx timeout
[ 3402.551662][T15683] FAULT_INJECTION: forcing a failure.
[ 3402.551662][T15683] name failslab, interval 1, probability 0, space 0, times 0
[ 3402.564500][T15683] CPU: 0 UID: 0 PID: 15683 Comm: syz.2.7025 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3402.564529][T15683] Tainted: [U]=USER
[ 3402.564535][T15683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3402.564545][T15683] Call Trace:
[ 3402.564551][T15683]  <TASK>
[ 3402.564558][T15683]  dump_stack_lvl+0x16c/0x1f0
[ 3402.564590][T15683]  should_fail_ex+0x512/0x640
[ 3402.564618][T15683]  ? fs_reclaim_acquire+0xae/0x150
[ 3402.564647][T15683]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 3402.564673][T15683]  should_failslab+0xc2/0x120
[ 3402.564697][T15683]  __kmalloc_noprof+0xd2/0x510
[ 3402.564723][T15683]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 3402.564752][T15683]  ? tomoyo_profile+0x47/0x60
[ 3402.564771][T15683]  tomoyo_path_number_perm+0x245/0x580
[ 3402.564792][T15683]  ? tomoyo_path_number_perm+0x237/0x580
[ 3402.564816][T15683]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 3402.564840][T15683]  ? find_held_lock+0x2b/0x80
[ 3402.564877][T15683]  ? find_held_lock+0x2b/0x80
[ 3402.564894][T15683]  ? hook_file_ioctl_common+0x145/0x410
[ 3402.564923][T15683]  ? __fget_files+0x20e/0x3c0
[ 3402.564947][T15683]  security_file_ioctl+0x9b/0x240
[ 3402.564972][T15683]  __x64_sys_ioctl+0xb7/0x210
[ 3402.565002][T15683]  do_syscall_64+0xcd/0x4c0
[ 3402.565032][T15683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3402.565050][T15683] RIP: 0033:0x7f4a92b8eec9
[ 3402.565071][T15683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3402.565089][T15683] RSP: 002b:00007f4a93a8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3402.565106][T15683] RAX: ffffffffffffffda RBX: 00007f4a92de5fa0 RCX: 00007f4a92b8eec9
[ 3402.565118][T15683] RDX: 0000000000000008 RSI: 0000000000005452 RDI: 0000000000000003
[ 3402.565128][T15683] RBP: 00007f4a93a8d090 R08: 0000000000000000 R09: 0000000000000000
[ 3402.565139][T15683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3402.565149][T15683] R13: 00007f4a92de6038 R14: 00007f4a92de5fa0 R15: 00007fffd6b09ad8
[ 3402.565171][T15683]  </TASK>
[ 3402.565179][T15683] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 3403.572234][ T5973] Bluetooth: hci0: command tx timeout
[ 3406.313714][T15724] serio: Serial port pty6
[ 3408.097214][T15746] tipc: Failed to clone mcast rcv buffer
[ 3408.153333][T15748] __vm_enough_memory: pid: 15748, comm: syz.2.7042, bytes: 4398046511104 not enough memory for the allocation
[ 3410.815123][T15790] serio: Serial port pty6
[ 3411.453655][ T5187] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 3411.465823][ T5187] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 3411.476384][ T5187] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 3411.487795][ T5187] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 3411.495579][ T5187] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 3412.165392][T15796] chnl_net:caif_netlink_parms(): no params data found
[ 3412.485520][T15796] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3412.524932][T15796] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3412.562943][T15796] bridge_slave_0: entered allmulticast mode
[ 3412.593884][T15796] bridge_slave_0: entered promiscuous mode
[ 3412.625482][T15796] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3412.632619][T15796] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3412.669820][T15812] __vm_enough_memory: pid: 15812, comm: syz.0.7057, bytes: 4398046511104 not enough memory for the allocation
[ 3412.694151][T15796] bridge_slave_1: entered allmulticast mode
[ 3412.711539][T15796] bridge_slave_1: entered promiscuous mode
[ 3412.810769][T15796] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3412.858330][T15796] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3412.998989][T15796] team0: Port device team_slave_0 added
[ 3413.043025][T15796] team0: Port device team_slave_1 added
[ 3413.166046][T15796] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3413.189913][T15796] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3413.300828][T15796] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3413.357924][T15796] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3413.388005][T15796] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3413.503205][T15796] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3413.521269][ T5187] Bluetooth: hci1: command tx timeout
[ 3413.693975][T15796] hsr_slave_0: entered promiscuous mode
[ 3413.725289][T15796] hsr_slave_1: entered promiscuous mode
[ 3413.737899][T15822] FAULT_INJECTION: forcing a failure.
[ 3413.737899][T15822] name failslab, interval 1, probability 0, space 0, times 0
[ 3413.750652][T15822] CPU: 0 UID: 0 PID: 15822 Comm: syz.2.7060 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3413.750682][T15822] Tainted: [U]=USER
[ 3413.750688][T15822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3413.750699][T15822] Call Trace:
[ 3413.750706][T15822]  <TASK>
[ 3413.750713][T15822]  dump_stack_lvl+0x16c/0x1f0
[ 3413.750745][T15822]  should_fail_ex+0x512/0x640
[ 3413.750777][T15822]  should_failslab+0xc2/0x120
[ 3413.750802][T15822]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 3413.750823][T15822]  ? tipc_dest_push+0x148/0x310
[ 3413.750851][T15822]  ? kasan_save_track+0x14/0x30
[ 3413.750875][T15822]  tipc_dest_push+0x148/0x310
[ 3413.750905][T15822]  tipc_nametbl_lookup_mcast_sockets+0x2b8/0x500
[ 3413.750948][T15822]  tipc_sk_mcast_rcv+0x4e6/0xfa0
[ 3413.750975][T15822]  ? __pfx_tipc_sk_mcast_rcv+0x10/0x10
[ 3413.751008][T15822]  ? find_held_lock+0x2b/0x80
[ 3413.751028][T15822]  ? tipc_mcast_xmit+0x6d5/0xfe0
[ 3413.751052][T15822]  tipc_mcast_xmit+0x711/0xfe0
[ 3413.751071][T15822]  ? __pfx__copy_from_iter+0x10/0x10
[ 3413.751090][T15822]  ? __pfx___alloc_skb+0x10/0x10
[ 3413.751119][T15822]  ? __pfx_tipc_mcast_xmit+0x10/0x10
[ 3413.751157][T15822]  ? mark_held_locks+0x49/0x80
[ 3413.751183][T15822]  ? tipc_send_group_bcast+0x803/0xa50
[ 3413.751211][T15822]  tipc_send_group_bcast+0x803/0xa50
[ 3413.751249][T15822]  ? __pfx_tipc_send_group_bcast+0x10/0x10
[ 3413.751279][T15822]  ? __pfx_tipc_sk_filter_rcv+0x10/0x10
[ 3413.751300][T15822]  ? __pfx_woken_wake_function+0x10/0x10
[ 3413.751337][T15822]  ? __pfx_aa_label_sk_perm+0x10/0x10
[ 3413.751367][T15822]  __tipc_sendmsg+0x4ab/0x19a0
[ 3413.751385][T15822]  ? __lock_acquire+0xb97/0x1ce0
[ 3413.751415][T15822]  ? __pfx___tipc_sendmsg+0x10/0x10
[ 3413.751434][T15822]  ? __lock_acquire+0xb97/0x1ce0
[ 3413.751475][T15822]  ? __local_bh_enable_ip+0xa4/0x120
[ 3413.751500][T15822]  tipc_sendmsg+0x4f/0x70
[ 3413.751520][T15822]  ____sys_sendmsg+0xa98/0xc70
[ 3413.751543][T15822]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 3413.751573][T15822]  ___sys_sendmsg+0x134/0x1d0
[ 3413.751601][T15822]  ? __pfx____sys_sendmsg+0x10/0x10
[ 3413.751638][T15822]  ? find_held_lock+0x2b/0x80
[ 3413.751668][T15822]  __sys_sendmmsg+0x200/0x420
[ 3413.751699][T15822]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 3413.751732][T15822]  ? __pfx_do_futex+0x10/0x10
[ 3413.751755][T15822]  ? rcu_is_watching+0x12/0xc0
[ 3413.751784][T15822]  ? xfd_validate_state+0x61/0x180
[ 3413.751810][T15822]  ? __sys_setsockopt+0x140/0x1a0
[ 3413.751839][T15822]  __x64_sys_sendmmsg+0x9c/0x100
[ 3413.751865][T15822]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3413.751892][T15822]  do_syscall_64+0xcd/0x4c0
[ 3413.751921][T15822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3413.751949][T15822] RIP: 0033:0x7f4a92b8eec9
[ 3413.751964][T15822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3413.751982][T15822] RSP: 002b:00007f4a93a8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 3413.752000][T15822] RAX: ffffffffffffffda RBX: 00007f4a92de5fa0 RCX: 00007f4a92b8eec9
[ 3413.752012][T15822] RDX: 0000000000000002 RSI: 0000200000000000 RDI: 0000000000000003
[ 3413.752024][T15822] RBP: 00007f4a92c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 3413.752035][T15822] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000000
[ 3413.752046][T15822] R13: 00007f4a92de6038 R14: 00007f4a92de5fa0 R15: 00007fffd6b09ad8
[ 3413.752068][T15822]  </TASK>
[ 3414.089741][T15796] debugfs: 'hsr0' already exists in 'hsr'
[ 3414.095481][T15796] Cannot create hsr debugfs directory
[ 3414.338531][T15827] FAULT_INJECTION: forcing a failure.
[ 3414.338531][T15827] name failslab, interval 1, probability 0, space 0, times 0
[ 3414.351247][T15827] CPU: 0 UID: 0 PID: 15827 Comm: syz.2.7063 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3414.351279][T15827] Tainted: [U]=USER
[ 3414.351285][T15827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3414.351296][T15827] Call Trace:
[ 3414.351304][T15827]  <TASK>
[ 3414.351312][T15827]  dump_stack_lvl+0x16c/0x1f0
[ 3414.351344][T15827]  should_fail_ex+0x512/0x640
[ 3414.351373][T15827]  ? fs_reclaim_acquire+0xae/0x150
[ 3414.351403][T15827]  should_failslab+0xc2/0x120
[ 3414.351427][T15827]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 3414.351451][T15827]  ? jbd2__journal_start+0x193/0x6a0
[ 3414.351484][T15827]  jbd2__journal_start+0x193/0x6a0
[ 3414.351515][T15827]  __ext4_journal_start_sb+0x195/0x690
[ 3414.351539][T15827]  ? ext4_punch_hole+0x77e/0x1080
[ 3414.351567][T15827]  ext4_punch_hole+0x77e/0x1080
[ 3414.351597][T15827]  ext4_fallocate+0x22d7/0x37a0
[ 3414.351632][T15827]  ? __pfx_ext4_fallocate+0x10/0x10
[ 3414.351659][T15827]  vfs_fallocate+0x5b1/0x10e0
[ 3414.351685][T15827]  ? __pfx_vfs_fallocate+0x10/0x10
[ 3414.351707][T15827]  ? madvise_vma_behavior+0x2b20/0x2d60
[ 3414.351738][T15827]  madvise_vma_behavior+0x2ad7/0x2d60
[ 3414.351768][T15827]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[ 3414.351795][T15827]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 3414.351823][T15827]  ? __pfx_mas_prev+0x10/0x10
[ 3414.351856][T15827]  ? find_vma_prev+0xda/0x160
[ 3414.351880][T15827]  ? find_held_lock+0x2b/0x80
[ 3414.351898][T15827]  ? __pfx_find_vma_prev+0x10/0x10
[ 3414.351934][T15827]  ? futex_unqueue+0x133/0x2c0
[ 3414.351963][T15827]  ? __futex_wait+0x24c/0x2f0
[ 3414.351994][T15827]  madvise_walk_vmas+0x31f/0x9c0
[ 3414.352025][T15827]  ? __pfx_madvise_walk_vmas+0x10/0x10
[ 3414.352058][T15827]  madvise_do_behavior+0x1e2/0x530
[ 3414.352083][T15827]  ? futex_private_hash_put+0x18a/0x300
[ 3414.352108][T15827]  ? __pfx_madvise_do_behavior+0x10/0x10
[ 3414.352135][T15827]  ? down_read+0x13d/0x480
[ 3414.352165][T15827]  do_madvise+0x176/0x240
[ 3414.352191][T15827]  ? __pfx_do_madvise+0x10/0x10
[ 3414.352216][T15827]  ? do_futex+0x122/0x350
[ 3414.352253][T15827]  ? xfd_validate_state+0x61/0x180
[ 3414.352279][T15827]  ? __pfx_ksys_write+0x10/0x10
[ 3414.352304][T15827]  __x64_sys_madvise+0xa9/0x110
[ 3414.352330][T15827]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3414.352357][T15827]  do_syscall_64+0xcd/0x4c0
[ 3414.352386][T15827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3414.352405][T15827] RIP: 0033:0x7f4a92b8eec9
[ 3414.352421][T15827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3414.352440][T15827] RSP: 002b:00007f4a93a8d038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[ 3414.352457][T15827] RAX: ffffffffffffffda RBX: 00007f4a92de5fa0 RCX: 00007f4a92b8eec9
[ 3414.352469][T15827] RDX: 0000000000000009 RSI: 0000000000000001 RDI: 000000110c230000
[ 3414.352480][T15827] RBP: 00007f4a92c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 3414.352491][T15827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3414.352501][T15827] R13: 00007f4a92de6038 R14: 00007f4a92de5fa0 R15: 00007fffd6b09ad8
[ 3414.352524][T15827]  </TASK>
[ 3414.352534][T15827] EXT4-fs error (device sda1) in ext4_punch_hole:4467: Out of memory
[ 3415.589986][ T5187] Bluetooth: hci1: command tx timeout
[ 3415.806175][T15846] serio: Serial port pty6
[ 3415.936019][T15850] FAULT_INJECTION: forcing a failure.
[ 3415.936019][T15850] name failslab, interval 1, probability 0, space 0, times 0
[ 3415.972964][T15850] CPU: 0 UID: 0 PID: 15850 Comm: syz.2.7068 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3415.972997][T15850] Tainted: [U]=USER
[ 3415.973003][T15850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3415.973014][T15850] Call Trace:
[ 3415.973021][T15850]  <TASK>
[ 3415.973029][T15850]  dump_stack_lvl+0x16c/0x1f0
[ 3415.973061][T15850]  should_fail_ex+0x512/0x640
[ 3415.973089][T15850]  ? __kmalloc_noprof+0xbf/0x510
[ 3415.973113][T15850]  ? ops_init+0x77/0x5f0
[ 3415.973139][T15850]  should_failslab+0xc2/0x120
[ 3415.973163][T15850]  __kmalloc_noprof+0xd2/0x510
[ 3415.973185][T15850]  ? __raw_spin_lock_init+0x3a/0x110
[ 3415.973217][T15850]  ops_init+0x77/0x5f0
[ 3415.973248][T15850]  setup_net+0x10f/0x380
[ 3415.973262][T15850]  ? lockdep_init_map_type+0x5c/0x280
[ 3415.973288][T15850]  ? __pfx_setup_net+0x10/0x10
[ 3415.973305][T15850]  ? debug_mutex_init+0x37/0x70
[ 3415.973326][T15850]  copy_net_ns+0x2a6/0x5f0
[ 3415.973347][T15850]  create_new_namespaces+0x3ea/0xa90
[ 3415.973373][T15850]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 3415.973397][T15850]  ksys_unshare+0x45b/0xa40
[ 3415.973423][T15850]  ? __pfx_ksys_unshare+0x10/0x10
[ 3415.973448][T15850]  ? xfd_validate_state+0x61/0x180
[ 3415.973481][T15850]  __x64_sys_unshare+0x31/0x40
[ 3415.973506][T15850]  do_syscall_64+0xcd/0x4c0
[ 3415.973536][T15850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3415.973554][T15850] RIP: 0033:0x7f4a92b8eec9
[ 3415.973570][T15850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3415.973587][T15850] RSP: 002b:00007f4a93a8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 3415.973605][T15850] RAX: ffffffffffffffda RBX: 00007f4a92de5fa0 RCX: 00007f4a92b8eec9
[ 3415.973616][T15850] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 3415.973627][T15850] RBP: 00007f4a92c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 3415.973637][T15850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3415.973648][T15850] R13: 00007f4a92de6038 R14: 00007f4a92de5fa0 R15: 00007fffd6b09ad8
[ 3415.973670][T15850]  </TASK>
[ 3416.286819][T15855] input: f¬
 as /devices/virtual/input/input1273
[ 3416.534137][T15860] Invalid ELF header magic: != ELF
[ 3417.660358][ T5187] Bluetooth: hci1: command tx timeout
[ 3417.707944][T15881] input: f¬
 as /devices/virtual/input/input1274
[ 3419.728364][ T5187] Bluetooth: hci1: command tx timeout
[ 3421.431347][T15929] input: f¬
 as /devices/virtual/input/input1276
[ 3422.022669][T15938] ecryptfs_parse_packet_length: Error parsing packet length
[ 3422.044781][T15938] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[ 3424.291799][T15980] serio: Serial port pty6
[ 3424.699564][T15982] __vm_enough_memory: pid: 15982, comm: syz.2.7101, bytes: 4398046511104 not enough memory for the allocation
[ 3425.636542][T15997] FAULT_INJECTION: forcing a failure.
[ 3425.636542][T15997] name fail_futex, interval 1, probability 0, space 0, times 0
[ 3425.671309][T15997] CPU: 0 UID: 0 PID: 15997 Comm: syz.2.7106 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3425.671342][T15997] Tainted: [U]=USER
[ 3425.671349][T15997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3425.671361][T15997] Call Trace:
[ 3425.671367][T15997]  <TASK>
[ 3425.671375][T15997]  dump_stack_lvl+0x16c/0x1f0
[ 3425.671407][T15997]  should_fail_ex+0x512/0x640
[ 3425.671439][T15997]  get_futex_key+0x1d0/0x1560
[ 3425.671465][T15997]  ? __pfx_get_futex_key+0x10/0x10
[ 3425.671486][T15997]  ? do_raw_spin_lock+0x12c/0x2b0
[ 3425.671517][T15997]  ? reacquire_held_locks+0xcd/0x1f0
[ 3425.671544][T15997]  futex_wake+0xea/0x530
[ 3425.671571][T15997]  ? find_held_lock+0x2b/0x80
[ 3425.671589][T15997]  ? __pfx_futex_wake+0x10/0x10
[ 3425.671613][T15997]  ? tipc_setsockopt+0x324/0xdb0
[ 3425.671631][T15997]  ? __local_bh_enable_ip+0xa4/0x120
[ 3425.671653][T15997]  ? tipc_setsockopt+0x324/0xdb0
[ 3425.671669][T15997]  ? __local_bh_enable_ip+0xa4/0x120
[ 3425.671690][T15997]  ? tipc_setsockopt+0x5de/0xdb0
[ 3425.671711][T15997]  do_futex+0x1e3/0x350
[ 3425.671734][T15997]  ? __pfx_do_futex+0x10/0x10
[ 3425.671757][T15997]  ? rcu_is_watching+0x12/0xc0
[ 3425.671775][T15997]  ? kfree+0x24f/0x4d0
[ 3425.671795][T15997]  __x64_sys_futex+0x1e0/0x4c0
[ 3425.671821][T15997]  ? __pfx___x64_sys_futex+0x10/0x10
[ 3425.671845][T15997]  ? __sys_setsockopt+0x140/0x1a0
[ 3425.671877][T15997]  do_syscall_64+0xcd/0x4c0
[ 3425.671915][T15997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3425.671934][T15997] RIP: 0033:0x7f4a92b8eec9
[ 3425.671949][T15997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3425.671968][T15997] RSP: 002b:00007f4a93a8d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 3425.671986][T15997] RAX: ffffffffffffffda RBX: 00007f4a92de5fa8 RCX: 00007f4a92b8eec9
[ 3425.671999][T15997] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4a92de5fac
[ 3425.672010][T15997] RBP: 00007f4a92de5fa0 R08: 00007f4a93a8e000 R09: 0000000000000000
[ 3425.672021][T15997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3425.672032][T15997] R13: 00007f4a92de6038 R14: 00007fffd6b099f0 R15: 00007fffd6b09ad8
[ 3425.672055][T15997]  </TASK>
[ 3426.818806][T16007] FAULT_INJECTION: forcing a failure.
[ 3426.818806][T16007] name failslab, interval 1, probability 0, space 0, times 0
[ 3426.835284][T16007] CPU: 0 UID: 0 PID: 16007 Comm: syz.2.7109 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3426.835315][T16007] Tainted: [U]=USER
[ 3426.835322][T16007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3426.835332][T16007] Call Trace:
[ 3426.835338][T16007]  <TASK>
[ 3426.835346][T16007]  dump_stack_lvl+0x16c/0x1f0
[ 3426.835379][T16007]  should_fail_ex+0x512/0x640
[ 3426.835408][T16007]  ? fs_reclaim_acquire+0xae/0x150
[ 3426.835438][T16007]  should_failslab+0xc2/0x120
[ 3426.835463][T16007]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 3426.835485][T16007]  ? inode_set_ctime_current+0x2a1/0x8f0
[ 3426.835510][T16007]  ? jbd2__journal_start+0x193/0x6a0
[ 3426.835542][T16007]  jbd2__journal_start+0x193/0x6a0
[ 3426.835574][T16007]  __ext4_journal_start_sb+0x195/0x690
[ 3426.835598][T16007]  ? ext4_dirty_inode+0xa1/0x130
[ 3426.835626][T16007]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 3426.835652][T16007]  ext4_dirty_inode+0xa1/0x130
[ 3426.835677][T16007]  ? rcu_is_watching+0x12/0xc0
[ 3426.835701][T16007]  __mark_inode_dirty+0x1eb/0xe40
[ 3426.835730][T16007]  generic_update_time+0xcf/0xf0
[ 3426.835756][T16007]  file_modified+0x207/0x240
[ 3426.835781][T16007]  ext4_fallocate+0x24a/0x37a0
[ 3426.835817][T16007]  ? __pfx_ext4_fallocate+0x10/0x10
[ 3426.835844][T16007]  vfs_fallocate+0x5b1/0x10e0
[ 3426.835870][T16007]  ? __pfx_vfs_fallocate+0x10/0x10
[ 3426.835892][T16007]  ? madvise_vma_behavior+0x2b20/0x2d60
[ 3426.835924][T16007]  madvise_vma_behavior+0x2ad7/0x2d60
[ 3426.835953][T16007]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[ 3426.835981][T16007]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 3426.836010][T16007]  ? __pfx_mas_prev+0x10/0x10
[ 3426.836042][T16007]  ? find_vma_prev+0xda/0x160
[ 3426.836066][T16007]  ? find_held_lock+0x2b/0x80
[ 3426.836084][T16007]  ? __pfx_find_vma_prev+0x10/0x10
[ 3426.836110][T16007]  ? futex_unqueue+0x133/0x2c0
[ 3426.836145][T16007]  ? __futex_wait+0x24c/0x2f0
[ 3426.836175][T16007]  madvise_walk_vmas+0x31f/0x9c0
[ 3426.836205][T16007]  ? __pfx_madvise_walk_vmas+0x10/0x10
[ 3426.836239][T16007]  madvise_do_behavior+0x1e2/0x530
[ 3426.836264][T16007]  ? futex_private_hash_put+0x18a/0x300
[ 3426.836287][T16007]  ? __pfx_madvise_do_behavior+0x10/0x10
[ 3426.836315][T16007]  ? down_read+0x13d/0x480
[ 3426.836344][T16007]  do_madvise+0x176/0x240
[ 3426.836371][T16007]  ? __pfx_do_madvise+0x10/0x10
[ 3426.836397][T16007]  ? do_futex+0x122/0x350
[ 3426.836436][T16007]  ? xfd_validate_state+0x61/0x180
[ 3426.836461][T16007]  ? __pfx_ksys_write+0x10/0x10
[ 3426.836487][T16007]  __x64_sys_madvise+0xa9/0x110
[ 3426.836512][T16007]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3426.836538][T16007]  do_syscall_64+0xcd/0x4c0
[ 3426.836567][T16007]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3426.836586][T16007] RIP: 0033:0x7f4a92b8eec9
[ 3426.836601][T16007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3426.836619][T16007] RSP: 002b:00007f4a93a8d038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[ 3426.836637][T16007] RAX: ffffffffffffffda RBX: 00007f4a92de5fa0 RCX: 00007f4a92b8eec9
[ 3426.836649][T16007] RDX: 0000000000000009 RSI: 0000000000000001 RDI: 000000110c230000
[ 3426.836660][T16007] RBP: 00007f4a92c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 3426.836670][T16007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3426.836681][T16007] R13: 00007f4a92de6038 R14: 00007f4a92de5fa0 R15: 00007fffd6b09ad8
[ 3426.836705][T16007]  </TASK>
[ 3427.251301][T16009] serio: Serial port pty6
[ 3429.299262][T16055] serio: Serial port pty6
[ 3430.053951][T16062] netlink: 100 bytes leftover after parsing attributes in process `syz.2.7126'.
[ 3431.605572][T16086] serio: Serial port pty6
[ 3431.846919][T16093] netlink: 'syz.0.7136': attribute type 2 has an invalid length.
[ 3435.232528][   T30] audit: type=1804 audit(4294967406.627:6): pid=16130 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.7146" name="/newroot/591/file0" dev="tmpfs" ino=3079 res=1 errno=0
[ 3435.314982][   T30] audit: type=1800 audit(4294967406.647:7): pid=16130 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.7146" name="file0" dev="tmpfs" ino=3079 res=0 errno=0
[ 3436.408754][T16153] FAULT_INJECTION: forcing a failure.
[ 3436.408754][T16153] name failslab, interval 1, probability 0, space 0, times 0
[ 3436.442144][T16153] CPU: 0 UID: 0 PID: 16153 Comm: syz.2.7150 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3436.442176][T16153] Tainted: [U]=USER
[ 3436.442182][T16153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3436.442193][T16153] Call Trace:
[ 3436.442200][T16153]  <TASK>
[ 3436.442207][T16153]  dump_stack_lvl+0x16c/0x1f0
[ 3436.442240][T16153]  should_fail_ex+0x512/0x640
[ 3436.442269][T16153]  ? fs_reclaim_acquire+0xae/0x150
[ 3436.442299][T16153]  should_failslab+0xc2/0x120
[ 3436.442323][T16153]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 3436.442346][T16153]  ? inode_set_ctime_current+0x2a1/0x8f0
[ 3436.442371][T16153]  ? jbd2__journal_start+0x193/0x6a0
[ 3436.442403][T16153]  jbd2__journal_start+0x193/0x6a0
[ 3436.442436][T16153]  __ext4_journal_start_sb+0x195/0x690
[ 3436.442460][T16153]  ? ext4_dirty_inode+0xa1/0x130
[ 3436.442488][T16153]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 3436.442513][T16153]  ext4_dirty_inode+0xa1/0x130
[ 3436.442538][T16153]  ? rcu_is_watching+0x12/0xc0
[ 3436.442558][T16153]  __mark_inode_dirty+0x1eb/0xe40
[ 3436.442588][T16153]  generic_update_time+0xcf/0xf0
[ 3436.442614][T16153]  file_modified+0x207/0x240
[ 3436.442640][T16153]  ext4_fallocate+0x24a/0x37a0
[ 3436.442675][T16153]  ? __pfx_ext4_fallocate+0x10/0x10
[ 3436.442702][T16153]  vfs_fallocate+0x5b1/0x10e0
[ 3436.442727][T16153]  ? __pfx_vfs_fallocate+0x10/0x10
[ 3436.442750][T16153]  ? madvise_vma_behavior+0x2b20/0x2d60
[ 3436.442781][T16153]  madvise_vma_behavior+0x2ad7/0x2d60
[ 3436.442819][T16153]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[ 3436.442847][T16153]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 3436.442876][T16153]  ? __pfx_mas_prev+0x10/0x10
[ 3436.442909][T16153]  ? find_vma_prev+0xda/0x160
[ 3436.442934][T16153]  ? find_held_lock+0x2b/0x80
[ 3436.442952][T16153]  ? __pfx_find_vma_prev+0x10/0x10
[ 3436.442979][T16153]  ? futex_unqueue+0x133/0x2c0
[ 3436.443008][T16153]  ? __futex_wait+0x24c/0x2f0
[ 3436.443038][T16153]  madvise_walk_vmas+0x31f/0x9c0
[ 3436.443070][T16153]  ? __pfx_madvise_walk_vmas+0x10/0x10
[ 3436.443102][T16153]  madvise_do_behavior+0x1e2/0x530
[ 3436.443127][T16153]  ? futex_private_hash_put+0x18a/0x300
[ 3436.443150][T16153]  ? __pfx_madvise_do_behavior+0x10/0x10
[ 3436.443178][T16153]  ? down_read+0x13d/0x480
[ 3436.443206][T16153]  do_madvise+0x176/0x240
[ 3436.443231][T16153]  ? __pfx_do_madvise+0x10/0x10
[ 3436.443257][T16153]  ? do_futex+0x122/0x350
[ 3436.443294][T16153]  ? xfd_validate_state+0x61/0x180
[ 3436.443320][T16153]  ? __pfx_ksys_write+0x10/0x10
[ 3436.443345][T16153]  __x64_sys_madvise+0xa9/0x110
[ 3436.443370][T16153]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3436.443397][T16153]  do_syscall_64+0xcd/0x4c0
[ 3436.443427][T16153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3436.443445][T16153] RIP: 0033:0x7f4a92b8eec9
[ 3436.443461][T16153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3436.443479][T16153] RSP: 002b:00007f4a93a8d038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[ 3436.443498][T16153] RAX: ffffffffffffffda RBX: 00007f4a92de5fa0 RCX: 00007f4a92b8eec9
[ 3436.443510][T16153] RDX: 0000000000000009 RSI: 0000000000000001 RDI: 000000110c230000
[ 3436.443521][T16153] RBP: 00007f4a92c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 3436.443532][T16153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3436.443542][T16153] R13: 00007f4a92de6038 R14: 00007f4a92de5fa0 R15: 00007fffd6b09ad8
[ 3436.443565][T16153]  </TASK>
[ 3438.120390][T16177] __vm_enough_memory: pid: 16177, comm: syz.2.7159, bytes: 4398046511104 not enough memory for the allocation
[ 3438.346601][T16186] FAULT_INJECTION: forcing a failure.
[ 3438.346601][T16186] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3438.380377][T16186] CPU: 0 UID: 0 PID: 16186 Comm: syz.2.7163 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3438.380408][T16186] Tainted: [U]=USER
[ 3438.380414][T16186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3438.380425][T16186] Call Trace:
[ 3438.380432][T16186]  <TASK>
[ 3438.380439][T16186]  dump_stack_lvl+0x16c/0x1f0
[ 3438.380471][T16186]  should_fail_ex+0x512/0x640
[ 3438.380502][T16186]  _copy_to_user+0x32/0xd0
[ 3438.380524][T16186]  simple_read_from_buffer+0xcb/0x170
[ 3438.380545][T16186]  proc_fail_nth_read+0x197/0x240
[ 3438.380565][T16186]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3438.380586][T16186]  ? rw_verify_area+0xcf/0x6c0
[ 3438.380604][T16186]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3438.380624][T16186]  vfs_read+0x1e1/0xcf0
[ 3438.380647][T16186]  ? __pfx___mutex_lock+0x10/0x10
[ 3438.380681][T16186]  ? __pfx_vfs_read+0x10/0x10
[ 3438.380708][T16186]  ? __fget_files+0x20e/0x3c0
[ 3438.380734][T16186]  ksys_read+0x12a/0x250
[ 3438.380754][T16186]  ? __pfx_ksys_read+0x10/0x10
[ 3438.380793][T16186]  do_syscall_64+0xcd/0x4c0
[ 3438.380823][T16186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3438.380842][T16186] RIP: 0033:0x7f4a92b8d8dc
[ 3438.380857][T16186] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 3438.380876][T16186] RSP: 002b:00007f4a93a8d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3438.380893][T16186] RAX: ffffffffffffffda RBX: 00007f4a92de5fa0 RCX: 00007f4a92b8d8dc
[ 3438.380904][T16186] RDX: 000000000000000f RSI: 00007f4a93a8d0a0 RDI: 0000000000000005
[ 3438.380914][T16186] RBP: 00007f4a93a8d090 R08: 0000000000000000 R09: 0000000000000000
[ 3438.380925][T16186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3438.380935][T16186] R13: 00007f4a92de6038 R14: 00007f4a92de5fa0 R15: 00007fffd6b09ad8
[ 3438.380958][T16186]  </TASK>
[ 3438.930112][T16192] serio: Serial port pty6
[ 3441.550441][T16242] __vm_enough_memory: pid: 16242, comm: syz.2.7177, bytes: 4398046511104 not enough memory for the allocation
[ 3441.877536][ T5187] Bluetooth: hci3: unexpected event 0x01 length: 5 > 1
[ 3448.238406][T16317] bond0: Unable to set peer notification delay as MII monitoring is disabled
[ 3449.119512][   T30] audit: type=1804 audit(4294967420.579:8): pid=16329 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.7196" name="/newroot/593/file0" dev="tmpfs" ino=3123 res=1 errno=0
[ 3449.163411][   T30] audit: type=1804 audit(4294967420.609:9): pid=16329 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.7196" name="/newroot/593/file0" dev="tmpfs" ino=3123 res=1 errno=0
[ 3449.356397][T16334] __vm_enough_memory: pid: 16334, comm: syz.0.7197, bytes: 4398046511104 not enough memory for the allocation
[ 3449.782673][T16338] input: f¬
 as /devices/virtual/input/input1281
[ 3449.869306][T16340] misc userio: No port type given on /dev/userio
[ 3451.994826][T16380] IPVS: length: 131 != 4272
[ 3453.415786][T16403] __vm_enough_memory: pid: 16403, comm: syz.0.7219, bytes: 4398046511104 not enough memory for the allocation
[ 3454.683855][ T5973] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 3454.699792][ T5973] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 3454.712237][ T5973] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 3454.723171][ T5973] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 3454.732425][ T5973] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 3455.159813][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 3455.173505][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[ 3455.348109][T16419] chnl_net:caif_netlink_parms(): no params data found
[ 3455.664741][T16419] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3455.700310][T16419] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3455.729443][T16419] bridge_slave_0: entered allmulticast mode
[ 3455.757452][T16419] bridge_slave_0: entered promiscuous mode
[ 3455.793138][T16419] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3455.807733][T16419] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3455.825539][T16419] bridge_slave_1: entered allmulticast mode
[ 3455.846428][T16419] bridge_slave_1: entered promiscuous mode
[ 3455.928466][T16419] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3455.957333][T16419] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3456.051389][T16419] team0: Port device team_slave_0 added
[ 3456.071385][T16419] team0: Port device team_slave_1 added
[ 3456.176841][T16419] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3456.213413][T16419] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3456.303503][T16419] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3456.358352][T16419] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3456.394710][T16419] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3456.522257][T16419] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3456.724260][T16419] hsr_slave_0: entered promiscuous mode
[ 3456.749298][T16419] hsr_slave_1: entered promiscuous mode
[ 3456.780110][T16419] debugfs: 'hsr0' already exists in 'hsr'
[ 3456.799918][T16419] Cannot create hsr debugfs directory
[ 3456.820577][ T5973] Bluetooth: hci5: command tx timeout
[ 3458.884237][ T5973] Bluetooth: hci5: command tx timeout
[ 3460.611505][ T5973] Bluetooth: hci3: Received unexpected HCI Event 0x00
[ 3460.618816][ T5973] Bluetooth: hci3: ACL packet for unknown connection handle 0
[ 3460.953593][ T5973] Bluetooth: hci5: command tx timeout
[ 3461.258198][T16527] misc userio: No port type given on /dev/userio
[ 3462.363554][T16543] input: f¬
 as /devices/virtual/input/input1284
[ 3463.022843][ T5973] Bluetooth: hci5: command tx timeout
[ 3466.702390][T16608] input: f¬
 as /devices/virtual/input/input1285
[ 3467.611734][T16631] Invalid ELF header magic: != ELF
[ 3468.364143][T16634] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7270'.
[ 3468.948594][T16645] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7272'.
[ 3470.148545][T16668] overlayfs: missing 'lowerdir'
[ 3471.642842][ T5187] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 3471.658888][ T5187] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 3471.667398][ T5187] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 3471.676597][ T5187] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 3471.684097][ T5187] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 3472.333540][T16684] chnl_net:caif_netlink_parms(): no params data found
[ 3472.630171][T16684] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3472.657661][T16684] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3472.686172][T16684] bridge_slave_0: entered allmulticast mode
[ 3472.726951][T16684] bridge_slave_0: entered promiscuous mode
[ 3472.749723][T16684] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3472.776044][T16684] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3472.820085][T16684] bridge_slave_1: entered allmulticast mode
[ 3472.845893][T16684] bridge_slave_1: entered promiscuous mode
[ 3472.966708][T16684] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3473.025223][T16684] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3473.116424][T16684] team0: Port device team_slave_0 added
[ 3473.152958][T16684] team0: Port device team_slave_1 added
[ 3473.234659][T16684] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3473.257233][T16684] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3473.360771][T16684] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3473.398976][T16684] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3473.438877][T16684] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3473.519595][T16684] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3473.718963][T16684] hsr_slave_0: entered promiscuous mode
[ 3473.744088][T16684] hsr_slave_1: entered promiscuous mode
[ 3473.768234][ T5187] Bluetooth: hci6: command tx timeout
[ 3473.777234][T16684] debugfs: 'hsr0' already exists in 'hsr'
[ 3473.782984][T16684] Cannot create hsr debugfs directory
[ 3474.128392][T16730] Invalid ELF header magic: != ELF
[ 3475.212093][T16752] program syz.0.7300 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 3475.836630][ T5187] Bluetooth: hci6: command tx timeout
[ 3477.905588][ T5187] Bluetooth: hci6: command tx timeout
[ 3479.979866][ T5187] Bluetooth: hci6: command tx timeout
[ 3496.582721][T16982] kexec: Could not allocate control_code_buffer
[ 3502.761758][T17099] netlink: 'syz.2.7386': attribute type 11 has an invalid length.
[ 3502.780129][T17099] netlink: 'syz.2.7386': attribute type 11 has an invalid length.
[ 3502.796141][T17099] netlink: 'syz.2.7386': attribute type 11 has an invalid length.
[ 3502.814601][T17099] netlink: 'syz.2.7386': attribute type 11 has an invalid length.
[ 3508.110792][T17195] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7415'.
[ 3508.186825][T17197] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7416'.
[ 3509.499342][T17213] netlink: 'syz.2.7421': attribute type 11 has an invalid length.
[ 3509.517449][T17213] netlink: 316 bytes leftover after parsing attributes in process `syz.2.7421'.
[ 3514.446573][ T5973] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 3514.466022][ T5973] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 3514.476488][ T5973] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 3514.487499][ T5973] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 3514.497297][ T5973] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 3514.758838][T17301] netlink: 186 bytes leftover after parsing attributes in process `syz.0.7444'.
[ 3515.040042][T17297] chnl_net:caif_netlink_parms(): no params data found
[ 3515.341011][T17297] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3515.368215][T17297] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3515.389789][T17297] bridge_slave_0: entered allmulticast mode
[ 3515.410230][T17297] bridge_slave_0: entered promiscuous mode
[ 3515.435871][T17297] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3515.476744][T17297] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3515.508506][T17297] bridge_slave_1: entered allmulticast mode
[ 3515.534562][T17297] bridge_slave_1: entered promiscuous mode
[ 3515.545951][T17320] ima: policy update failed
[ 3515.599397][   T30] audit: type=1802 audit(4294967316.058:10): pid=17320 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.7449" res=0 errno=0
[ 3515.684870][T17297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3515.731644][T17297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3515.881254][T17297] team0: Port device team_slave_0 added
[ 3515.973077][T17297] team0: Port device team_slave_1 added
[ 3516.138388][T17297] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3516.145372][T17297] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3516.282683][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 3516.289802][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[ 3516.319051][T17297] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3516.371961][T17297] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3516.390935][T17297] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3516.494642][T17297] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3516.510973][ T5973] Bluetooth: hci7: command tx timeout
[ 3516.692412][T17297] hsr_slave_0: entered promiscuous mode
[ 3516.729394][T17297] hsr_slave_1: entered promiscuous mode
[ 3516.757967][T17297] debugfs: 'hsr0' already exists in 'hsr'
[ 3516.788199][T17297] Cannot create hsr debugfs directory
[ 3517.675661][T17352] netlink: 'syz.0.7456': attribute type 11 has an invalid length.
[ 3518.339366][ T5973] Bluetooth: hci0: command 0x0406 tx timeout
[ 3518.574315][ T5187] Bluetooth: hci7: command tx timeout
[ 3520.643538][ T5187] Bluetooth: hci7: command tx timeout
[ 3522.712586][ T5187] Bluetooth: hci7: command tx timeout
[ 3531.496946][ T5973] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 3531.510795][ T5973] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 3531.519605][ T5973] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 3531.527858][ T5973] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 3531.535763][ T5973] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 3532.386925][T17568] chnl_net:caif_netlink_parms(): no params data found
[ 3532.719321][T17568] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3532.756534][T17568] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3532.785840][T17568] bridge_slave_0: entered allmulticast mode
[ 3532.815963][T17568] bridge_slave_0: entered promiscuous mode
[ 3532.846649][T17568] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3532.879357][T17568] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3532.912841][T17568] bridge_slave_1: entered allmulticast mode
[ 3532.934993][T17568] bridge_slave_1: entered promiscuous mode
[ 3533.080573][T17568] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3533.126089][T17568] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3533.289458][T17568] team0: Port device team_slave_0 added
[ 3533.335469][T17568] team0: Port device team_slave_1 added
[ 3533.475526][T17568] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3533.503182][T17568] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3533.603400][T17568] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3533.615771][ T5973] Bluetooth: hci8: command tx timeout
[ 3533.622071][ T5973] Bluetooth: hci1: command 0x0406 tx timeout
[ 3533.677903][T17568] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3533.709178][T17568] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3533.813011][T17568] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3534.046819][T17568] hsr_slave_0: entered promiscuous mode
[ 3534.077809][T17568] hsr_slave_1: entered promiscuous mode
[ 3534.107270][T17568] debugfs: 'hsr0' already exists in 'hsr'
[ 3534.138790][T17568] Cannot create hsr debugfs directory
[ 3535.134569][T17618] __vm_enough_memory: pid: 17618, comm: syz.0.7525, bytes: 4398046511104 not enough memory for the allocation
[ 3535.488498][T17620] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7526'.
[ 3535.685612][T17590] Bluetooth: hci8: command tx timeout
[ 3537.754372][T17590] Bluetooth: hci8: command tx timeout
[ 3539.310413][T17658] openvswitch: netlink: Invalid MD length 0 for MD type 0
[ 3539.334041][T17659] openvswitch: netlink: Invalid MD length 0 for MD type 0
[ 3539.727013][T17667] netlink: 'syz.2.7539': attribute type 1 has an invalid length.
[ 3539.823426][T17590] Bluetooth: hci8: command tx timeout
[ 3542.757101][T17715] netlink: 342 bytes leftover after parsing attributes in process `syz.0.7553'.
[ 3542.843564][   T30] audit: type=1800 audit(4294967343.440:11): pid=17716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.7552" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[ 3543.460563][T17726] syz.0.7555: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 3543.508816][T17726] CPU: 0 UID: 0 PID: 17726 Comm: syz.0.7555 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3543.508850][T17726] Tainted: [U]=USER
[ 3543.508857][T17726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3543.508868][T17726] Call Trace:
[ 3543.508875][T17726]  <TASK>
[ 3543.508883][T17726]  dump_stack_lvl+0x16c/0x1f0
[ 3543.508916][T17726]  warn_alloc+0x248/0x3a0
[ 3543.508939][T17726]  ? __pfx_warn_alloc+0x10/0x10
[ 3543.508983][T17726]  ? dvb_dvr_do_ioctl+0x15d/0x290
[ 3543.509003][T17726]  __vmalloc_node_range_noprof+0xff5/0x14b0
[ 3543.509022][T17726]  ? __pfx___might_resched+0x10/0x10
[ 3543.509044][T17726]  ? rcu_is_watching+0x12/0xc0
[ 3543.509063][T17726]  ? trace_contention_end+0xdd/0x130
[ 3543.509089][T17726]  ? dvb_dvr_do_ioctl+0x15d/0x290
[ 3543.509108][T17726]  ? tomoyo_path_number_perm+0x295/0x580
[ 3543.509135][T17726]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 3543.509153][T17726]  ? __pfx___mutex_lock+0x10/0x10
[ 3543.509182][T17726]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 3543.509209][T17726]  ? dvb_dvr_do_ioctl+0x15d/0x290
[ 3543.509226][T17726]  __vmalloc_node_noprof+0xad/0xf0
[ 3543.509243][T17726]  ? dvb_dvr_do_ioctl+0x15d/0x290
[ 3543.509263][T17726]  dvb_dvr_do_ioctl+0x15d/0x290
[ 3543.509285][T17726]  dvb_usercopy+0x164/0x340
[ 3543.509301][T17726]  ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[ 3543.509320][T17726]  ? __pfx_dvb_usercopy+0x10/0x10
[ 3543.509345][T17726]  ? __fget_files+0x20e/0x3c0
[ 3543.509370][T17726]  dvb_dvr_ioctl+0x29/0x40
[ 3543.509386][T17726]  ? __pfx_dvb_dvr_ioctl+0x10/0x10
[ 3543.509403][T17726]  __x64_sys_ioctl+0x18b/0x210
[ 3543.509434][T17726]  do_syscall_64+0xcd/0x4c0
[ 3543.509464][T17726]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3543.509482][T17726] RIP: 0033:0x7f5e9558eec9
[ 3543.509498][T17726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3543.509515][T17726] RSP: 002b:00007f5e96452038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3543.509532][T17726] RAX: ffffffffffffffda RBX: 00007f5e957e5fa0 RCX: 00007f5e9558eec9
[ 3543.509544][T17726] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000002
[ 3543.509555][T17726] RBP: 00007f5e95611f91 R08: 0000000000000000 R09: 0000000000000000
[ 3543.509566][T17726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3543.509576][T17726] R13: 00007f5e957e6038 R14: 00007f5e957e5fa0 R15: 00007ffc8655a038
[ 3543.509598][T17726]  </TASK>
[ 3543.509605][T17726] Mem-Info:
[ 3544.093156][T17726] active_anon:17250 inactive_anon:20 isolated_anon:0
[ 3544.093156][T17726]  active_file:5135 inactive_file:53426 isolated_file:0
[ 3544.093156][T17726]  unevictable:768 dirty:265 writeback:0
[ 3544.093156][T17726]  slab_reclaimable:15107 slab_unreclaimable:140452
[ 3544.093156][T17726]  mapped:53077 shmem:6834 pagetables:1360
[ 3544.093156][T17726]  sec_pagetables:0 bounce:0
[ 3544.093156][T17726]  kernel_misc_reclaimable:0
[ 3544.093156][T17726]  free:1208786 free_pcp:9677 free_cma:0
[ 3544.360607][T17726] Node 0 active_anon:69104kB inactive_anon:80kB active_file:20540kB inactive_file:213568kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:212308kB dirty:1108kB writeback:0kB shmem:25800kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:14928kB pagetables:5368kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 3544.557661][T17726] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:176kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 3544.713338][T17726] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3544.906858][T17726] lowmem_reserve[]: 0 2480 2481 2481 2481
[ 3544.951254][T17726] Node 0 DMA32 free:927592kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52596kB inactive_anon:80kB active_file:20584kB inactive_file:212252kB unevictable:1536kB writepending:1376kB present:3129332kB managed:2539528kB mlocked:0kB bounce:0kB free_pcp:42628kB local_pcp:42628kB free_cma:0kB
[ 3545.078243][T17726] lowmem_reserve[]: 0 0 1 1 1
[ 3545.092609][T17726] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1316kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:16kB free_cma:0kB
[ 3545.169218][T17726] lowmem_reserve[]: 0 0 0 0 0
[ 3545.173967][T17726] Node 1 Normal free:3900040kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:1960kB local_pcp:1960kB free_cma:0kB
[ 3545.242166][T17726] lowmem_reserve[]: 0 0 0 0 0
[ 3545.249047][T17726] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 3545.266728][T17726] Node 0 DMA32: 2973*4kB (UM) 1386*8kB (UME) 1169*16kB (UME) 803*32kB (UME) 426*64kB (UME) 255*128kB (UME) 120*256kB (UME) 46*512kB (UME) 22*1024kB (ME) 3*2048kB (ME) 175*4096kB (M) = 927028kB
[ 3545.291286][T17726] Node 0 Normal: 2*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[ 3545.303645][T17726] Node 1 Normal: 9*4kB (ME) 10*8kB (ME) 8*16kB (UME) 24*32kB (UME) 81*64kB (UM) 35*128kB (UME) 9*256kB (UM) 8*512kB (UME) 2*1024kB (UE) 3*2048kB (UME) 946*4096kB (UM) = 3900084kB
[ 3545.328692][T17726] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 3545.341166][T17726] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[ 3545.354149][T17726] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 3545.369415][T17726] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[ 3545.379125][T17726] 61330 total pagecache pages
[ 3545.383906][T17726] 22 pages in swap cache
[ 3545.392888][T17726] Free swap  = 124780kB
[ 3545.400438][T17726] Total swap = 124996kB
[ 3545.409310][T17726] 2097051 pages RAM
[ 3545.413209][T17726] 0 pages HighMem/MovableOnly
[ 3545.418301][T17726] 430207 pages reserved
[ 3545.422513][T17726] 0 pages cma reserved
[ 3546.287628][T17765] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7565'.
[ 3547.464029][   T31] INFO: task kworker/u8:2:15385 blocked for more than 143 seconds.
[ 3547.473594][   T31]       Tainted: G     U              syzkaller #0
[ 3547.485618][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3547.497968][   T31] task:kworker/u8:2    state:D stack:25912 pid:15385 tgid:15385 ppid:2      task_flags:0x4208060 flags:0x00004000
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 3547.511753][   T31] Workqueue: netns cleanup_net
[ 3547.530589][   T31] Call Trace:
[ 3547.558008][   T31]  <TASK>
[ 3547.573157][   T31]  __schedule+0x1190/0x5de0
[ 3547.590914][   T31]  ? __lock_acquire+0x62e/0x1ce0
[ 3547.610424][   T31]  ? __pfx___schedule+0x10/0x10
[ 3547.619743][   T31]  ? find_held_lock+0x2b/0x80
[ 3547.634746][   T31]  ? schedule+0x2d7/0x3a0
[ 3547.649982][   T31]  schedule+0xe7/0x3a0
[ 3547.659792][   T31]  schedule_timeout+0x257/0x290
[ 3547.676334][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[ 3547.696655][   T31]  ? mark_held_locks+0x49/0x80
[ 3547.704371][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 3547.718913][   T31]  __wait_for_common+0x2fc/0x4e0
[ 3547.729432][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[ 3547.745255][   T31]  ? __pfx___wait_for_common+0x10/0x10
[ 3547.762869][   T31]  remove_one+0x312/0x420
[ 3547.836909][   T31]  ? find_next_child+0x18f/0x280
[ 3547.871535][   T31]  __simple_recursive_removal+0x158/0x610
[ 3547.931303][   T31]  ? __pfx_remove_one+0x10/0x10
[ 3547.936216][   T31]  debugfs_remove+0x5d/0x80
[ 3547.940750][   T31]  nsim_dev_health_exit+0x3b/0xe0
[ 3548.001102][   T31]  nsim_dev_reload_destroy+0x144/0x4d0
[ 3548.006619][   T31]  nsim_dev_reload_down+0x6e/0xd0
[ 3548.040529][   T31]  devlink_reload+0x1a1/0x7c0
[ 3548.045251][   T31]  ? __pfx_devlink_reload+0x10/0x10
[ 3548.078293][   T31]  devlink_pernet_pre_exit+0x1a0/0x2b0
[ 3548.099099][   T31]  ? __pfx_devlink_pernet_pre_exit+0x10/0x10
[ 3548.125729][   T31]  ? up_write+0x1b2/0x520
[ 3548.136721][   T31]  ? kobject_put+0xab/0x5a0
[ 3548.145102][   T31]  ? __pfx_devlink_pernet_pre_exit+0x10/0x10
[ 3548.153544][   T31]  ops_undo_list+0x187/0xab0
[ 3548.158152][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[ 3548.165720][   T31]  ? cleanup_net+0x334/0x890
[ 3548.172672][   T31]  ? idr_destroy+0x62/0x2e0
[ 3548.177192][   T31]  cleanup_net+0x408/0x890
[ 3548.186997][   T31]  ? __pfx_cleanup_net+0x10/0x10
[ 3548.195842][   T31]  ? rcu_is_watching+0x12/0xc0
[ 3548.203505][   T31]  process_one_work+0x9cf/0x1b70
[ 3548.208480][   T31]  ? __pfx_batadv_nc_worker+0x10/0x10
[ 3548.217122][   T31]  ? __pfx_process_one_work+0x10/0x10
[ 3548.225023][   T31]  ? assign_work+0x1a0/0x250
[ 3548.232030][   T31]  worker_thread+0x6c8/0xf10
[ 3548.236639][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 3548.244169][   T31]  kthread+0x3c5/0x780
[ 3548.248262][   T31]  ? __pfx_kthread+0x10/0x10
[ 3548.255347][   T31]  ? rcu_is_watching+0x12/0xc0
[ 3548.262627][   T31]  ? __pfx_kthread+0x10/0x10
[ 3548.267260][   T31]  ret_from_fork+0x56d/0x730
[ 3548.274371][   T31]  ? __pfx_kthread+0x10/0x10
[ 3548.278985][   T31]  ret_from_fork_asm+0x1a/0x30
[ 3548.288378][   T31]  </TASK>
[ 3548.305248][   T31] INFO: task syz-executor:15557 blocked for more than 144 seconds.
[ 3548.369022][   T31]       Tainted: G     U              syzkaller #0
[ 3548.375558][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3548.419056][   T31] task:syz-executor    state:D stack:23992 pid:15557 tgid:15557 ppid:1      task_flags:0x400140 flags:0x00004004
[ 3548.452660][   T31] Call Trace:
[ 3548.455976][   T31]  <TASK>
[ 3548.472630][   T31]  __schedule+0x1190/0x5de0
[ 3548.477180][   T31]  ? register_lock_class+0x41/0x4c0
[ 3548.518091][   T31]  ? __lock_acquire+0x62e/0x1ce0
[ 3548.523089][   T31]  ? __pfx___schedule+0x10/0x10
[ 3548.537918][   T31]  ? find_held_lock+0x2b/0x80
[ 3548.542639][   T31]  ? schedule+0x2d7/0x3a0
[ 3548.546984][   T31]  ? device_del+0xa0/0x9f0
[ 3548.577605][   T31]  schedule+0xe7/0x3a0
[ 3548.582330][   T31]  schedule_preempt_disabled+0x13/0x30
[ 3548.611873][   T31]  __mutex_lock+0x81b/0x1060
[ 3548.616523][   T31]  ? device_del+0xa0/0x9f0
[ 3548.631743][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 3548.636824][   T31]  ? mark_held_locks+0x49/0x80
[ 3548.657668][   T31]  ? device_del+0xa0/0x9f0
[ 3548.662162][   T31]  device_del+0xa0/0x9f0
[ 3548.666437][   T31]  ? __pfx_ida_free+0x10/0x10
[ 3548.697314][   T31]  ? __pfx_device_del+0x10/0x10
[ 3548.702223][   T31]  device_unregister+0x1d/0xc0
[ 3548.717009][   T31]  del_device_store+0x355/0x4a0
[ 3548.721927][   T31]  ? __pfx_del_device_store+0x10/0x10
[ 3548.752404][   T31]  ? find_held_lock+0x2b/0x80
[ 3548.773152][   T31]  ? sysfs_file_kobj+0xe4/0x290
[ 3548.778393][   T31]  ? __pfx_del_device_store+0x10/0x10
[ 3548.783787][   T31]  bus_attr_store+0x71/0xb0
[ 3548.797361][   T31]  ? __pfx_bus_attr_store+0x10/0x10
[ 3548.802602][   T31]  sysfs_kf_write+0xef/0x150
[ 3548.811007][   T31]  kernfs_fop_write_iter+0x3ac/0x570
[ 3548.816314][   T31]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 3548.823477][   T31]  vfs_write+0x7d3/0x11d0
[ 3548.831684][   T31]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 3548.838887][   T31]  ? __pfx_vfs_write+0x10/0x10
[ 3548.843792][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 3548.852810][   T31]  ? find_held_lock+0x2b/0x80
[ 3548.860288][   T31]  ksys_write+0x12a/0x250
[ 3548.864646][   T31]  ? __pfx_ksys_write+0x10/0x10
[ 3548.873364][   T31]  do_syscall_64+0xcd/0x4c0
[ 3548.878950][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3548.884850][   T31] RIP: 0033:0x7f1fdfb8d97f
[ 3548.895070][   T31] RSP: 002b:00007fff15a24460 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 3548.905350][   T31] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f1fdfb8d97f
[ 3548.917911][   T31] RDX: 0000000000000001 RSI: 00007fff15a244b0 RDI: 0000000000000005
[ 3548.928770][   T31] RBP: 00007f1fdfc13239 R08: 0000000000000000 R09: 00007fff15a242b7
[ 3548.939212][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 3548.949595][   T31] R13: 00007fff15a244b0 R14: 00007f1fe0914620 R15: 0000000000000003
[ 3548.960009][   T31]  </TASK>
[ 3549.006132][   T31] INFO: task syz.3.6994:15571 blocked for more than 144 seconds.
[ 3549.013893][   T31]       Tainted: G     U              syzkaller #0
[ 3549.059016][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3549.078524][   T31] task:syz.3.6994      state:D stack:25512 pid:15571 tgid:15569 ppid:4491   task_flags:0x400140 flags:0x00004004
[ 3549.119816][   T31] Call Trace:
[ 3549.123128][   T31]  <TASK>
[ 3549.126413][   T31]  __schedule+0x1190/0x5de0
[ 3549.130947][   T31]  ? __lock_acquire+0x62e/0x1ce0
[ 3549.150478][   T31]  ? __pfx___schedule+0x10/0x10
[ 3549.164857][   T31]  ? find_held_lock+0x2b/0x80
[ 3549.169569][   T31]  ? schedule+0x2d7/0x3a0
[ 3549.173907][   T31]  ? devlink_health_report+0x3ba/0x9c0
[ 3549.198737][   T31]  schedule+0xe7/0x3a0
[ 3549.202889][   T31]  schedule_preempt_disabled+0x13/0x30
[ 3549.238642][   T31]  __mutex_lock+0x81b/0x1060
[ 3549.243288][   T31]  ? devlink_health_report+0x3ba/0x9c0
[ 3549.271941][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 3549.284033][   T31]  ? devlink_health_report+0x3ba/0x9c0
[ 3549.289525][   T31]  devlink_health_report+0x3ba/0x9c0
[ 3549.318196][   T31]  ? __pfx_devlink_health_report+0x10/0x10
[ 3549.338589][   T31]  ? _copy_from_user+0x59/0xd0
[ 3549.343396][   T31]  nsim_dev_health_break_write+0x166/0x210
[ 3549.359510][   T31]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[ 3549.366204][   T31]  full_proxy_write+0x12e/0x1a0
[ 3549.371082][   T31]  ? __pfx_full_proxy_write+0x10/0x10
[ 3549.382349][   T31]  vfs_write+0x29d/0x11d0
[ 3549.387246][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 3549.392296][   T31]  ? __pfx_vfs_write+0x10/0x10
[ 3549.403621][   T31]  ? __fget_files+0x20e/0x3c0
[ 3549.408332][   T31]  ksys_write+0x12a/0x250
[ 3549.412668][   T31]  ? __pfx_ksys_write+0x10/0x10
[ 3549.421965][   T31]  do_syscall_64+0xcd/0x4c0
[ 3549.426678][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3549.432581][   T31] RIP: 0033:0x7f96b238eec9
[ 3549.442636][   T31] RSP: 002b:00007f96b325a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 3549.452032][   T31] RAX: ffffffffffffffda RBX: 00007f96b25e5fa0 RCX: 00007f96b238eec9
[ 3549.464754][   T31] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000004
[ 3549.472736][   T31] RBP: 00007f96b2411f91 R08: 0000000000000000 R09: 0000000000000000
[ 3549.485293][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3549.495366][   T31] R13: 00007f96b25e6038 R14: 00007f96b25e5fa0 R15: 00007ffdc89d3b98
[ 3549.508325][   T31]  </TASK>
[ 3549.540356][   T31] 
[ 3549.540356][   T31] Showing all locks held in the system:
[ 3549.571465][   T31] 3 locks held by kworker/0:0/9:
[ 3549.579000][   T31]  #0: ffff88801b880d48 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 3549.595222][   T31]  #1: ffffc900000e7d10 ((work_completion)(&data->fib_event_work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 3549.611474][   T31]  #2: ffff88804bc62240 (&data->fib_lock){+.+.}-{4:4}, at: nsim_fib_event_work+0x1bb/0x2e80
[ 3549.630590][   T31] 1 lock held by khungtaskd/31:
[ 3549.635697][   T31]  #0: ffffffff8e5c1420 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[ 3549.650539][   T31] 6 locks held by kworker/u8:2/15385:
[ 3549.657370][   T31]  #0: ffff88801c6fe948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 3549.672139][   T31]  #1: ffffc9000452fd10 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 3549.686630][   T31]  #2: ffffffff90372a90 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xad/0x890
[ 3549.696457][   T31]  #3: ffff8880752e40e8 (&dev->mutex){....}-{4:4}, at: devlink_pernet_pre_exit+0x12c/0x2b0
[ 3549.713029][   T31]  #4: ffff8880752e6250 (&devlink->lock_key#12){+.+.}-{4:4}, at: devlink_pernet_pre_exit+0x136/0x2b0
[ 3549.727558][   T31]  #5: ffff888076f0f950 (&sb->s_type->i_mutex_key#3/2){+.+.}-{4:4}, at: __simple_recursive_removal+0x354/0x610
[ 3549.744519][   T31] 5 locks held by syz-executor/15557:
[ 3549.749939][   T31]  #0: ffff888034ff8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 3549.761194][   T31]  #1: ffff88801294ec88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[ 3549.777487][   T31]  #2: ffff888027eca878 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[ 3549.787941][   T31]  #3: ffffffff8f8f78c8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 3549.803140][   T31]  #4: ffff8880752e40e8 (&dev->mutex){....}-{4:4}, at: device_del+0xa0/0x9f0
[ 3549.817072][   T31] 3 locks held by syz.3.6994/15571:
[ 3549.824328][   T31]  #0: ffff88804a3b1b38 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[ 3549.836329][   T31]  #1: ffff888140ef8428 (sb_writers#8){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 3549.847462][   T31]  #2: ffff8880752e6250 (&devlink->lock_key#12){+.+.}-{4:4}, at: devlink_health_report+0x3ba/0x9c0
[ 3549.864028][   T31] 2 locks held by getty/15607:
[ 3549.868849][   T31]  #0: ffff88814dc960a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 3549.880519][   T31]  #1: ffffc900030242f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[ 3549.897274][   T31] 4 locks held by syz-executor/15796:
[ 3549.903072][   T31]  #0: ffff888034ff8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 3549.918726][   T31]  #1: ffff888033828c88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[ 3549.928753][   T31]  #2: ffff888027eca878 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[ 3549.943577][   T31]  #3: ffffffff8f8f78c8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 3549.956402][   T31] 4 locks held by syz-executor/16419:
[ 3549.965474][   T31]  #0: ffff888034ff8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 3549.976065][   T31]  #1: ffff88802a4e4488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[ 3549.989076][   T31]  #2: ffff888027eca878 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[ 3550.005388][   T31]  #3: ffffffff8f8f78c8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 3550.027960][   T31] 4 locks held by syz-executor/16684:
[ 3550.033756][   T31]  #0: ffff888034ff8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 3550.047204][   T31]  #1: ffff888028116888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[ 3550.057506][   T31]  #2: ffff888027eca878 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[ 3550.072463][   T31]  #3: ffffffff8f8f78c8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 3550.084855][   T31] 1 lock held by syz.2.7426/17227:
[ 3550.094949][   T31]  #0: ffffffff8e5cc880 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x48/0x6e0
[ 3550.106845][   T31] 4 locks held by syz-executor/17297:
[ 3550.119209][   T31]  #0: ffff888034ff8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 3550.134118][   T31]  #1: ffff88805f4ad088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[ 3550.145222][   T31]  #2: ffff888027eca878 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[ 3550.158866][   T31]  #3: ffffffff8f8f78c8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 3550.175144][   T31] 4 locks held by syz-executor/17568:
[ 3550.181083][   T31]  #0: ffff888034ff8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 3550.194557][   T31]  #1: ffff88805b500488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[ 3550.204516][   T31]  #2: ffff888027eca878 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[ 3550.222836][   T31]  #3: ffffffff8f8f78c8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 3550.235653][   T31] 2 locks held by syz.0.7568/17773:
[ 3550.243367][   T31]  #0: ffffffff90388d88 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x230
[ 3550.255407][   T31]  #1: ffffffff8e5cc9b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x284/0x3c0
[ 3550.274483][   T31] 
[ 3550.276826][   T31] =============================================
[ 3550.276826][   T31] 
[ 3550.307577][   T31] NMI backtrace for cpu 0
[ 3550.307598][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3550.307624][   T31] Tainted: [U]=USER
[ 3550.307630][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3550.307640][   T31] Call Trace:
[ 3550.307647][   T31]  <TASK>
[ 3550.307654][   T31]  dump_stack_lvl+0x116/0x1f0
[ 3550.307685][   T31]  nmi_cpu_backtrace+0x27b/0x390
[ 3550.307706][   T31]  ? _raw_spin_unlock_irqrestore+0x61/0x80
[ 3550.307732][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 3550.307760][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[ 3550.307784][   T31]  watchdog+0xf0e/0x1260
[ 3550.307817][   T31]  ? __pfx_watchdog+0x10/0x10
[ 3550.307841][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3550.307891][   T31]  ? __kthread_parkme+0x19e/0x250
[ 3550.307915][   T31]  ? __pfx_watchdog+0x10/0x10
[ 3550.307941][   T31]  kthread+0x3c5/0x780
[ 3550.307967][   T31]  ? __pfx_kthread+0x10/0x10
[ 3550.307999][   T31]  ? rcu_is_watching+0x12/0xc0
[ 3550.308017][   T31]  ? __pfx_kthread+0x10/0x10
[ 3550.308044][   T31]  ret_from_fork+0x56d/0x730
[ 3550.308070][   T31]  ? __pfx_kthread+0x10/0x10
[ 3550.308096][   T31]  ret_from_fork_asm+0x1a/0x30
[ 3550.308127][   T31]  </TASK>
[ 3550.308136][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 3550.436169][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 3550.446846][   T31] Tainted: [U]=USER
[ 3550.450643][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 3550.460693][   T31] Call Trace:
[ 3550.463972][   T31]  <TASK>
[ 3550.466922][   T31]  dump_stack_lvl+0x3d/0x1f0
[ 3550.471534][   T31]  vpanic+0x6e8/0x7a0
[ 3550.475525][   T31]  ? __pfx_vpanic+0x10/0x10
[ 3550.480056][   T31]  panic+0xca/0xd0
[ 3550.483782][   T31]  ? __pfx_panic+0x10/0x10
[ 3550.488205][   T31]  ? nmi_backtrace_stall_check+0x6e/0x540
[ 3550.493925][   T31]  ? irq_work_queue+0xce/0x100
[ 3550.498718][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 3550.504705][   T31]  ? __wake_up_klogd.part.0+0x99/0xf0
[ 3550.510086][   T31]  ? watchdog+0xd78/0x1260
[ 3550.514528][   T31]  ? watchdog+0xd6b/0x1260
[ 3550.518954][   T31]  watchdog+0xd89/0x1260
[ 3550.523222][   T31]  ? __pfx_watchdog+0x10/0x10
[ 3550.527915][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3550.533125][   T31]  ? __kthread_parkme+0x19e/0x250
[ 3550.538171][   T31]  ? __pfx_watchdog+0x10/0x10
[ 3550.542856][   T31]  kthread+0x3c5/0x780
[ 3550.546936][   T31]  ? __pfx_kthread+0x10/0x10
[ 3550.551537][   T31]  ? rcu_is_watching+0x12/0xc0
[ 3550.556305][   T31]  ? __pfx_kthread+0x10/0x10
[ 3550.561008][   T31]  ret_from_fork+0x56d/0x730
[ 3550.565607][   T31]  ? __pfx_kthread+0x10/0x10
[ 3550.570204][   T31]  ret_from_fork_asm+0x1a/0x30
[ 3550.574984][   T31]  </TASK>
[ 3550.578062][   T31] Kernel Offset: disabled
[ 3550.582380][   T31] Rebooting in 86400 seconds..