last executing test programs:

5m2.32430268s ago: executing program 2 (id=661):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000180), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x5, 0x8000)
r2 = socket(0x2, 0xa, 0x300)
recvmmsg$auto(r2, 0x0, 0x9, 0x22, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/oom_score_adj\x00', 0x102, 0x0)
read$auto(r3, 0x0, 0x2)
clone$auto(0xcc13, 0x9, &(0x7f0000000000)=0x7f, &(0x7f0000000040)=0x8, 0xffffffffffffffff)
write$auto(0x3, 0x0, 0xfffffdef)
sendmsg$auto_IPVS_CMD_SET_CONFIG(r0, &(0x7f0000004980)={0x0, 0x0, &(0x7f0000004940)={&(0x7f0000001180)={0x1c, r1, 0x401, 0x70bd2a, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x54b470e5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x840)

5m2.074538988s ago: executing program 2 (id=663):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r0 = open(0x0, 0x10677d, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001040)='/sys/devices/pnp0/00:01/resources\x00', 0x424440, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)=""/4096, 0x1000)
r2 = ioctl$auto_TUNGETFILTER(r0, 0x801054db, &(0x7f00000010c0)={0x7, &(0x7f0000001080)={0x2, 0x80, 0x1, @raw=0x5}})
r3 = socket(0xa, 0x2, 0x3a)
bpf$auto(0x5, &(0x7f0000000100)=@bpf_attr_5={@target_fd=r3, r0, 0xa, 0xffffffff, r0, @relative_fd=r0, 0x1ff}, 0x100)
r4 = socket(0x2, 0x4, 0x0)
r5 = socket(0x2b, 0x1, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x6600, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f00000000c0))
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
rename$auto(&(0x7f0000001100)='./file0\x00', &(0x7f0000001140)='./file0\x00')
sendmmsg$auto(r5, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000)
io_uring_setup$auto(0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/tty42\x00', 0x101e81, 0x0)
syz_genetlink_get_family_id$auto_nfc(0x0, r5)
setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9)
setsockopt$auto(r4, 0x80000, 0x21, 0x0, 0x7)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
mmap$auto(0x0, 0x2020008, 0xffffffffffffffff, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x4000007f)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.2/usb3/3-0:1.0/bInterfaceClass\x00', 0xa0600, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
r6 = gettid()
r7 = waitid$auto_P_PGID(0x2, r6, &(0x7f00000000c0)={@_si_pad}, 0x5, &(0x7f0000000240)={{0x7, 0x4}, {0x49, 0x8}, 0x7ff, 0x6, 0x0, 0xfff, 0x4, 0x44b, 0x3, 0x3, 0x5e6, 0x1200000000000000, 0xfffffffffffffff9, 0x8, 0xa3c, 0xa4})
prctl$auto_PR_SCHED_CORE_CREATE(0x0, 0x1, r7, 0xfc, 0xa)
syz_genetlink_get_family_id$auto_l2tp(0x0, r2)

5m0.576373454s ago: executing program 2 (id=669):
r0 = openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/o2hb/failed_regions\x00', 0x8000, 0x0)
mmap$auto(0x0, 0xfffffffffffffffd, 0x9, 0xeb6, r0, 0x7fff)
shmat$auto(0x10000, &(0x7f0000000280)='(\x00', 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
pread64$auto(r1, 0x0, 0x3, 0x800000000000000)
r2 = socket(0xa, 0x3, 0x73)
setsockopt$auto(r2, 0x29, 0x1, 0x0, 0x3)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0x20000080)
capset$auto(0x0, 0x0)
r3 = clone3$auto(0x0, 0xfff)
unshare$auto(0x400000a0)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, 0x0, 0x301000, 0x0)
ioctl$auto(0x4000000000000c8, 0x400454d9, 0x3)
shmctl$auto_SHM_LOCK(0xfffffffd, 0xb, &(0x7f00000001c0)={{0x2, 0xffffffffffffffff, 0xee01, 0x3, 0x4, 0x6, 0x40}, 0x80000001, 0x71, 0x7, 0x400, @inferred, @raw=0x3, 0x2, 0x0, 0x0, &(0x7f0000000180)="6aa9f450cd41400ff19ce80c38955761650847da1d19a473ea07"})
shmctl$auto_IPC_RMID(0x0, 0x0, 0x0)
openat$auto_fops_u64_ro_(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/zswap/reject_compress_fail\x00', 0x10000, 0x0)
unshare$auto(0x40000080)
r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0)
r5 = pidfd_open$auto(0x1, 0x0)
fchmod$auto(r5, 0x5)
ioctl$auto_BTRFS_IOC_ENCODED_WRITE(r5, 0x40809440, &(0x7f0000000300)={&(0x7f00000000c0)={&(0x7f0000000080)="8c333f0392f50da1bb5b7f6987f243158af38c0048c0239de1e2e0", 0x28}, 0x0, 0x8000, 0x281de680, 0x1c, 0xfffffffffffffff8, 0x7, 0x80000003, 0x4, "d2384b65140e47e77c6b503db8f1a6883740341da5edf0c01f108eb560ab184cfc22ccf071b975c04d5aa173a5705984bf833a4a23e7279c2a50161763df7796"})
ioctl$auto(r4, 0x800064b9, 0x1e6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa142, 0x0)
fsconfig$auto_SHMEM_HUGE_ALWAYS(r5, 0xad8, &(0x7f0000000100)='/^\x00', &(0x7f0000000140)="2193edb6913a81951a60f646", 0x1)
r6 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/cec10\x00', 0x101901, 0x0)
ioctl$auto_CEC_TRANSMIT(r6, 0xc0386105, &(0x7f0000000000)={0x80006, 0x3, 0x7, 0x1, 0x2, 0x7fffffff, "9b2189084142725dff0d933475a77466", 0xb, 0x5, 0x9, 0x5, 0x2, 0x4, 0x2})
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r6, 0xc05c6104, 0x0)
prctl$auto(0x1, 0x16fffffd, r3, 0x0, 0x3)

4m59.644215966s ago: executing program 2 (id=671):
ioctl$auto(0xc8, 0x800454d3, 0x5c8d)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000002340), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_SET(r1, &(0x7f0000002480)={0x0, 0x0, &(0x7f0000002440)={&(0x7f0000000140)=ANY=[@ANYBLOB="c8000000", @ANYRES16=r2, @ANYBLOB="010025bd7000fed3df250200000004000200a8000480a40029800800018085f65a9a99254957ed216f0700000000000000dfe0e5df120af1ed82a3e1853978af5f1138750308c11f71036c698f56bcc01b530611839459fa777c291f0070003335f9601f4ba9ae40e3cb521cfacc5c7fd444da486781f5dd37e9c6e01bebb7032428ff442526cd06c6119eb75c6be9926baafcd97bfaebea6c51f0d8a272ef8e26c14dd1a91218d09320c6a6c4561a7685283350da364c4c0d620800010005000000"], 0xc8}, 0x1, 0x0, 0x0, 0x48000}, 0x4000)
sendmsg$auto_OVS_METER_CMD_DEL(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xa0280061}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, r2, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@OVS_METER_ATTR_BANDS={0x30, 0x4, 0x0, 0x1, [@nested={0x2c, 0x29, 0x0, 0x1, [@typed={0x8, 0x88, 0x0, 0x0, @u32=0xd60}, @typed={0x14, 0x118, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @nested={0x4, 0xa}, @nested={0x4, 0x53}, @typed={0x4, 0x38}]}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000}, 0x20000001)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/boot_params/data\x00', 0x2c40, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000001c00)=""/4109, 0x100d)
socket(0x10, 0x2, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x894}, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r4)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0xa)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/bConfigurationValue\x00', 0x63102, 0x0)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x101100, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
r7 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r6, 0x541c, r7)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000011c0)=ANY=[], 0x1058}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r8 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="05082dbd7000fbdbdf257e0000000800db00", @ANYRES32=r8, @ANYBLOB="0c002e0108000000000000"], 0x28}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000)
recvfrom$auto(r1, 0x0, 0x8000000003, 0xfffff4a5, 0x0, 0xfffffffffffffffd)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r5, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r4, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)

4m58.526064484s ago: executing program 2 (id=676):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, &(0x7f0000000080)={0xd4})
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
mmap$auto(0x0, 0x40000c, 0x45bd, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)

4m58.190150172s ago: executing program 2 (id=680):
socket(0xa, 0x801, 0x84) (async)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async)
mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000) (async)
close_range$auto(0x0, 0xffffffffffffffff, 0x2) (async)
getcwd$auto(0x0, 0xffffffffffffffff)
fanotify_init$auto(0xc00, 0x2000000000002)
r0 = open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98)
fanotify_mark$auto(0x400000000000, 0x105, 0xf2b, r0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22) (async)
socket(0xa, 0x5, 0x0) (async)
inotify_init1$auto(0x3000000000000) (async)
inotify_add_watch$auto(0x4, 0x0, 0xe6e) (async)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x20600, 0x0) (async)
socket(0xa, 0x1, 0x84) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
setresuid$auto(0x0, 0x7, 0x8080)
setfsuid$auto(0x0) (async)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/kallsyms\x00', 0x20100, 0x0)
r2 = socket(0x10, 0x2, 0x0) (async)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="0600", @ANYRES16=0x0, @ANYBLOB="010025bd"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='B'], 0x1ac}}, 0x40000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
read$auto(0x3, 0x0, 0xf3c)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x4000, &(0x7f0000000100)={0x0, 0x96bc}, 0x2, 0x0, 0x7, 0x4}, 0x9}, 0x7, 0x4008) (async)
pread64$auto(r1, 0x0, 0x8, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0xc) (async)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @loopback}, 0x1c)

4m43.1153798s ago: executing program 32 (id=680):
socket(0xa, 0x801, 0x84) (async)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async)
mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000) (async)
close_range$auto(0x0, 0xffffffffffffffff, 0x2) (async)
getcwd$auto(0x0, 0xffffffffffffffff)
fanotify_init$auto(0xc00, 0x2000000000002)
r0 = open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98)
fanotify_mark$auto(0x400000000000, 0x105, 0xf2b, r0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22) (async)
socket(0xa, 0x5, 0x0) (async)
inotify_init1$auto(0x3000000000000) (async)
inotify_add_watch$auto(0x4, 0x0, 0xe6e) (async)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x20600, 0x0) (async)
socket(0xa, 0x1, 0x84) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
setresuid$auto(0x0, 0x7, 0x8080)
setfsuid$auto(0x0) (async)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/kallsyms\x00', 0x20100, 0x0)
r2 = socket(0x10, 0x2, 0x0) (async)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="0600", @ANYRES16=0x0, @ANYBLOB="010025bd"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='B'], 0x1ac}}, 0x40000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
read$auto(0x3, 0x0, 0xf3c)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x4000, &(0x7f0000000100)={0x0, 0x96bc}, 0x2, 0x0, 0x7, 0x4}, 0x9}, 0x7, 0x4008) (async)
pread64$auto(r1, 0x0, 0x8, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0xc) (async)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @loopback}, 0x1c)

10.190434208s ago: executing program 4 (id=1770):
r0 = socket(0xa, 0x4, 0x9000300)
r1 = bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000)=@raw_tracepoint={0x401, <r2=>0xffffffffffffffff, 0x0, 0x47}, 0x0)
sendfile$auto(0x1, r1, 0x0, 0x8fb5)
fanotify_init$auto(0x1, 0x2)
r3 = socket(0x2d, 0x800, 0x0)
bind$auto(r3, 0x0, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0x20499d, 0x9)
socket(0x29, 0xa, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x5)
close_range$auto(0x2, 0x8, 0x0)
getsockopt$auto_SO_TYPE(0xffffffffffffffff, 0xf, 0x3, &(0x7f0000000140)='$\x00', 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0xffffffff, 0xc5c)
madvise$auto(0x110c230000, 0x8031ca, 0x9)
madvise$auto(0x110d230000, 0x1, 0x9)
socket(0x0, 0x1, 0x8)
r4 = socket(0x2b, 0x1, 0x1)
fsconfig$auto_XFS_DAX_INODE(r4, 0x1, &(0x7f00000000c0)='$\x00', &(0x7f0000000100)="6ecea9e20b84d700b2866fb32c5438636dffa7b54cfe66edba5f08743e660076f1268cb45372a9c6f9754493a394a8553efc", 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000005c0), 0x2000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_GSTATUS(r5, 0xc0505405, &(0x7f00000003c0)={{0x1, 0xfffffffe, 0x10001, 0x3}, 0x101, 0x4, 0x8001, "1b2be85a6b6d7d3340b7aa99dad2fe2d68f658f3bf0b9c0500"})
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x22, 0x2, 0x2)
getsockopt$auto(r4, 0x0, 0x80, 0x0, 0x0)
ioctl$auto_BTRFS_IOC_ADD_DEV(r2, 0x5000940a, &(0x7f0000000180)={@raw, "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"})

7.231106809s ago: executing program 1 (id=1775):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0x400000000e31, 0xffffffffffffffff, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0xfd, 0xffb, 0x8000000008011, 0x3, 0x8000)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0x2003f2, 0x15)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x81, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)

7.192041039s ago: executing program 3 (id=1776):
ioctl$auto(0xc8, 0x800454d3, 0x5c8d)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000002340), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_SET(r1, &(0x7f0000002480)={0x0, 0x0, &(0x7f0000002440)={&(0x7f0000000140)=ANY=[@ANYBLOB="c8000000", @ANYRES16=r2, @ANYBLOB="010025bd7000fed3df250200000004000200a8000480a40029800800018085f65a9a99254957ed216f0700000000000000dfe0e5df120af1ed82a3e1853978af5f1138750308c11f71036c698f56bcc01b530611839459fa777c291f0070003335f9601f4ba9ae40e3cb521cfacc5c7fd444da486781f5dd37e9c6e01bebb7032428ff442526cd06c6119eb75c6be9926baafcd97bfaebea6c51f0d8a272ef8e26c14dd1a91218d09320c6a6c4561a7685283350da364c4c0d620800010005000000"], 0xc8}, 0x1, 0x0, 0x0, 0x48000}, 0x4000)
sendmsg$auto_OVS_METER_CMD_DEL(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xa0280061}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, r2, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@OVS_METER_ATTR_BANDS={0x30, 0x4, 0x0, 0x1, [@nested={0x2c, 0x29, 0x0, 0x1, [@typed={0x8, 0x88, 0x0, 0x0, @u32=0xd60}, @typed={0x14, 0x118, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @nested={0x4, 0xa}, @nested={0x4, 0x53}, @typed={0x4, 0x38}]}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000}, 0x20000001)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/boot_params/data\x00', 0x2c40, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000001c00)=""/4109, 0x100d)
socket(0x10, 0x2, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x894}, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r4)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0xa)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/bConfigurationValue\x00', 0x63102, 0x0)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x101100, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
r7 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r6, 0x541c, r7)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000011c0)=ANY=[], 0x1058}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r8 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="05082dbd7000fbdbdf257e0000000800db00", @ANYRES32=r8, @ANYBLOB="0c002e010800000000000000"], 0x28}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000)
recvfrom$auto(r1, 0x0, 0x8000000003, 0xfffff4a5, 0x0, 0xfffffffffffffffd)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r5, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r4, 0x0, 0x10a, 0x6, 0x0)

7.115371145s ago: executing program 0 (id=1777):
socket(0x15, 0x5, 0x3)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r0 = pidfd_open$auto(0x1, 0x0)
r1 = socket(0x1d, 0x3, 0x1)
setsockopt$auto(r1, 0x65, 0x3, 0x0, 0x4)
setns(r0, 0x60020000)
madvise$auto(0x800, 0x3, 0x4)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xe8, 0x5, 0x2, 0x1, 0x2, 0x4, 0x7, 0x8, 0x9, 0x100000000000000a, 0x2, 0xa, 0x2000fca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
mmap$auto(0x0, 0x40009, 0xfff, 0x9b72, 0xffffffffffffffff, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='-\x00', @ANYBLOB=']'], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

6.873261722s ago: executing program 0 (id=1778):
r0 = openat$auto_tracing_saved_cmdlines_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/saved_cmdlines\x00', 0x501001, 0x0)
write$auto(r0, &(0x7f0000000080)='/dev/vmci\x00', 0x8)
mmap$auto(0x0, 0x404008, 0xdf, 0x9b72, 0x2, 0x8000)
getcwd$auto(0x0, 0x80)
r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0)
recvmmsg$auto(r1, &(0x7f00000011c0)={{&(0x7f00000000c0)="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", 0x0, &(0x7f0000001140)={&(0x7f00000010c0)="c9f75a6d38da2fba70344a32cb2ba42eb3bf580813941bd7c83624a30123cb981782c0eeac574df90aa5d19768b7e9abb46155afb7364bed47b414c16146b35fa0b23b4e14e7d9b0e4d9ce5be5595060b8e811cd"}, 0x3, &(0x7f0000001180), 0xf, 0x4}}, 0x4, 0x8, &(0x7f0000001200)={0x2, 0x10000})
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6)
mmap$auto(0x0, 0xfff, 0x80000000000000df, 0xeb1, 0x401, 0x8000)
adjtimex$auto(0x0)
ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r1, 0x7a8, 0x0)

6.36813675s ago: executing program 4 (id=1779):
socket(0xa, 0x1, 0x6)
setsockopt$auto(0x3, 0x0, 0xb, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x20009, 0xdd, 0xd7c, 0x405, 0x8000)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0)
read$auto(r0, &(0x7f0000000040)='/dev/snd/seq\x00', 0x7)
setfsgid$auto(0x0)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000240)={0x5d, 0x3, 0x4e15, 0x787, 0x7fff, 0x7, 0xb08, 0xc8c, 0x8, 0x1, 0xffff, 0x7fffffff})
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00', 0x0, 0x0)
pread64$auto(r1, &(0x7f0000000040)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\x8d\xa8\xcfM9\\\xd6\xcfUq\x05#\xed\x1c\xd1G\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xbasG\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1', 0x3ff, 0x9)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x5)
capget$auto(&(0x7f00000001c0)={0x694, <r3=>0x0}, &(0x7f0000000200)={0x7f, 0x2040000, 0x5})
prctl$auto_PR_SET_MM_START_CODE(0x40, 0x1, r3, 0x4, 0x2000000000005)
setreuid$auto(0x7, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x40880, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
r5 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/kvm/max_mmu_rmap_size\x00', 0xa2500, 0x0)
read$auto_stat_fops_per_vm_kvm_main(r5, 0x0, 0x0)
r6 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000140), 0x410100, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto_VHOST_SET_MEM_TABLE(r6, 0x4008af03, &(0x7f0000000180)={0x3})
ioctl$auto_VHOST_NET_SET_BACKEND(r2, 0x4008af30, 0x0)

6.224423084s ago: executing program 0 (id=1780):
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x0)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000040))
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
write$auto_rb_simple_fops_trace(r2, &(0x7f0000000400)="416d23c22541f392ef9b29d44df98e49351b85c809c512284e46d404b144e21f1cd36a6c392840705d211b60c62a4b37d84c130c3f0cb3c5aacb4fb3724283c2c9915c78ac66f4de3ba2491f6bffc7fb0154f97b2e64c83f7eb1d9c3996d9489f485c5f4b008f906a770b540ded75019a985c451efe9b25ecd2c5844cc9083fb48cb600caa37d436794f907fc49ff7188239ce1bfac93bc822997943305444c5d5a71d76a86b68eb84c734c9e46a5d6da75edad04b8cd8db9276d05b258c5c3ce7f5eea45c6cbb4cabceba17b029d7c31c1a3472a72c594e86479c0eb25e93fc6e5738277af8d016a93599ab517b9ecec4a861e4da971794a5997c46", 0xfc)
syz_genetlink_get_family_id$auto_nl80211(0x0, r3)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2})
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000080))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r5, 0x114, 0x2720, 0xfffffffffffffffc, 0x0)
statmount$auto(0x0, &(0x7f0000000040)={0x1, 0x4, 0x0, 0x828, 0x9, 0x8000000000000000, 0x9f, 0x7, 0x9, 0x8, 0x2, 0x9, 0x3, 0x8, 0x0, 0x200000000000f, 0x100, 0x1, 0x10001, 0x2cf8, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc]}, 0xe3c, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='N\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x6, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x4}, 0x8, 0x1)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)

6.013352375s ago: executing program 3 (id=1781):
unshare$auto(0x8)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0xa, 0x5, 0x84)
getsockopt$auto(r2, 0x84, 0x1d, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f80, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
pidfd_send_signal$auto_PIDFD_SIGNAL_THREAD(r1, 0x1ff, &(0x7f0000000280)={@_si_pad}, 0x1)
fsopen$auto(0x0, 0x1)
prctl$auto(0x1000000003b, 0x1, 0x4, 0xd73, 0xb)
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000000), r4)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x101200, 0x0)
sendmsg$auto_OVS_DP_CMD_SET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010085e2d172b2a07d399a0138281f0c2628bd70ff7f000000000000000000000049274025d0dd0e46c40efd3f37898853d17f139e1f20bb405bf8e194e881960e48440b243a3c19901c647ebd5e27df0048c248ca71f707595bbbef43a8ae1ec6768f4267ff51955a7d3636f358e0f5d576326b1de8428432a7711f7463bbdb366ddb9ee3e826f83b0caf95da72fb9b9b2edd0fc2bfa980ead3edd0d0e0d51450322138e3febd17fc5dbe91a4d9c98982004e430800000000000000dd93926c467c805e8067cd3579b669526a042b05d6ee", @ANYRES32=0x0, @ANYBLOB], 0x1c}}, 0x0)
lstat$auto(&(0x7f0000000080)='./file0\x00', &(0x7f0000000300)={0x0, 0x9, 0x1, 0x3, 0x0, 0x0, 0x0, 0xf, 0x49bf, 0x7, 0x6, 0x8, 0x4, 0x4, 0x5, 0x6, 0x4fa8})
syz_genetlink_get_family_id$auto_ethtool(0x0, r1)
r6 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r6, 0x65, 0x6, 0xffffffffffffffff, 0x0)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r7, r7, 0x0, 0x3)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

5.967325214s ago: executing program 4 (id=1782):
inotify_init1$auto(0x3000000000000)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
io_uring_setup$auto(0xa, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
close_range$auto(0x2, 0xa, 0x0)
open(0x0, 0xa240, 0x15e)
open(0x0, 0x161342, 0x100)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2b, 0x1, 0x0)
mremap$auto(0x0, 0x7, 0x3fd6, 0x0, 0x1ffffffe)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
r1 = open(0x0, 0x4242, 0xe1d2b27bdc14aabc)
fallocate$auto(r1, 0x0, 0x7, 0x4cbd5d)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0)
ioctl$auto_BLKTRACESETUP(r2, 0xc0481273, &(0x7f00000000c0)={"ef65ce6c00cf81000000ffffffffffffff291d000000000700000000000300", 0x3ff, 0x408, 0xfff, 0x400004, 0x200000000040000d})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
write$auto_console_fops_tty_io(r4, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef)
ioctl$auto(r3, 0x4b67, 0x1)
getsockopt$auto(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/machinecheck/machinecheck0/cmci_disabled\x00', 0x2062, 0x0)

2.394458616s ago: executing program 4 (id=1783):
r0 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000280), r0)
sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000380)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x24, r1, 0x20, 0x70bd28, 0x25dfdbfb, {}, [@NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0xa}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x80004}]}, 0x24}, 0x1, 0x0, 0x0, 0x24004043}, 0x4004010)
r2 = socket(0x10, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="243d13b7ce22bbc6fb42537337", @ANYRES16=r5, @ANYBLOB="01002dbd7000fcdbdf250100000008000a0008000000080009009c781e01"], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r6=>0x0})
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x58, 0x0, 0x800, 0x70bd2d, 0x25dfdbfe, {}, [@HSR_A_IF2_AGE={0x8, 0x4, 0xab7}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8, 0x2, r6}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @HSR_A_NODE_ADDR={0xa, 0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @HSR_A_NODE_ADDR={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}}, @HSR_A_IFINDEX={0x8, 0x2, r6}]}, 0x58}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='^\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r7 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_MEM_TABLE(r7, 0x4001af84, 0x0)
ioctl$auto_VHOST_SET_OWNER(r7, 0xaf01, 0x0)
ioctl$auto_VHOST_SET_OWNER(r7, 0xaf01, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/cpu0/topology/core_id\x00', 0x101000, 0x0)
read$auto(r8, &(0x7f0000000000)='/\v5s/kernel/debuw/lru\b\x00en\x00', 0xd)
socket(0x2, 0x1, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon35\x00', 0x42000, 0x0)
mmap$auto(0x0, 0x400006, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x100000000000025, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
getcwd$auto(0x0, 0xffffffffffffffff)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0)

1.88383193s ago: executing program 3 (id=1784):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
fcntl$auto_F_GETOWN(0xffffffffffffffff, 0x9, 0x2)
capset$auto(0x0, 0x0)
r1 = socket(0x22, 0x2, 0x1)
statmount$auto(0x0, &(0x7f0000000580)={0xa, 0x1, 0xb267, 0x759, 0x5, 0x7, 0x87, 0x7, 0xfffffffffffffffd, 0x8, 0x9, 0x80003, 0x4, 0x200000000005, 0x384, 0x9, 0xb11, 0x10006, 0x400007f, 0x7, 0x0, 0x400000f, 0x2, 0x200, 0x0, 0x84, 0xffffffffffffffff, 0x0, 0x3, 0x0, 0xac79, [0xffffffffffefffff, 0x7, 0x0, 0x25c3, 0x0, 0x0, 0x802000000000, 0x0, 0x0, 0xfffffffffffffffd, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x80000000, 0x0, 0xffffff7ffffffffd, 0xfffffffffffff526, 0x0, 0x0, 0x0, 0x40000000000004ac, 0x100000, 0x0, 0x0, 0x400, 0x5, 0x0, 0x196fc46e, 0x2, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x40000000000, 0x4, 0x0, 0x101, 0x0, 0x0, 0xffffffffffdffffd], "91a231dcbe16243a6265ab9ec0e8a54f1631556b40c10a5a07930f487417f7824332d15a6a69e81487932365b8302a9fc1a7e91ed1c0d961b34666253847bea63abb48e868887d6d8aa023235a3c44cdbeccd1b553881c7b0e599c1d96519ce985dfdce4d6471eb497ae0f5fe565"}, 0x1fa, 0x11)
r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000000), 0x28002, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffff7effffd05, &(0x7f00000001c0))
fstat$auto(r1, 0x0)
r3 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0)
ioctl$auto(r3, 0x3b87, 0x38)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000540), r0)
sendmsg$auto_ETHTOOL_MSG_TSCONFIG_SET(r0, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a40)={&(0x7f0000000000)=ANY=[@ANYBLOB="2ce289ebc6fade363af517071ace05ed02cc2825b48cde3f1fc8fb6882000000", @ANYRES16=r4, @ANYBLOB="010029bd7000fddbdf252f00000018000180140002007465616d5f736c6176655f3000000000"], 0x2c}, 0x1, 0x0, 0x0, 0xc084}, 0x4000)

1.771790135s ago: executing program 1 (id=1785):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/devices/pci0000:00/0000:00:03.0/virtio0/modalias\x00', 0x12bf40, 0x0)
r0 = socket(0x2, 0x3, 0xa)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x65, 0x1, 0x0, 0x800)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x102, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20000004}, 0x4000884)
lstat$auto(0x0, &(0x7f0000000180)={0xe, 0xfffffffffffffffe, 0x100000001, 0x1000, 0x0, 0x0, 0x0, 0x200fa98, 0x8, 0x7fffffffffffffff, 0x8000000004, 0x100000007fffffff, 0x5, 0x0, 0x7, 0x4, 0xb})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000380), 0x400, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/tty/ptycb/dev\x00', 0xa3182, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x21, 0x2, 0x2)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f80, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000fc0)=ANY=[@ANYBLOB="1c000000", @ANYRES8=r5, @ANYBLOB="010025bd7000fedbc4256300000008000300", @ANYRES32=r5], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x90)
ioctl$auto(0x3, 0x40a0aec9, r2)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000140), r0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)

1.565791271s ago: executing program 3 (id=1786):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cpu.stat\x00', 0x8040, 0x0)
sendfile$auto(0x2, r0, 0x0, 0x400000000000c3e0)

1.399404145s ago: executing program 1 (id=1787):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66) (async)
mremap$auto(0x1ff000, 0xff, 0x843, 0x3, 0xfffff000) (async)
ioctl$auto_TUNGETIFF2(0xffffffffffffffff, 0x800454d2, &(0x7f0000000040)=0x8) (async)
waitid$auto(0x8, 0xffffffffffffffff, &(0x7f0000000100)={@siginfo_0_0={0xffff, 0x413, 0x0, @_sigsys={0x0, 0x0, 0x3ff}}}, 0x7fff, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
rseq$auto(0x0, 0x8000, 0x0, 0x6) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async)
clock_gettime$auto(0x8, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
write$auto(0x3, 0x0, 0x1) (async)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xa00, 0x0, 0xfffffffffffffffd) (async)
write$auto(0x3, 0x0, 0xfffffdef) (async)
write$auto(0x1, 0x0, 0x80000000) (async)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0xfffffffffffffffb, 0x66)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
vmsplice$auto(0x2, &(0x7f00000000c0)={0x0, 0x7ff}, 0x8000000000000001, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mremap$auto(0xfffff000, 0x4, 0x1, 0x7, 0x1ff000) (async)
r1 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0)
pwrite64$auto(r1, 0x0, 0x400000, 0xc)

1.397293628s ago: executing program 3 (id=1788):
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0xa, 0x2, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x18, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x240202, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r3, 0x5000aea5, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000006700)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="13002ebd70fad0c4819a96185f0008000300", @ANYRES32=r5, @ANYBLOB='\b\x00&'], 0x24}, 0x1, 0x0, 0x0, 0x4c0d4}, 0x20040894)
r6 = openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
connect$auto(0x3, 0x0, 0x58)
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
syz_genetlink_get_family_id$auto_802_15_4_mac(0x0, 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000b80), r7)
sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(r7, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000bc0)={0x1c, r8, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x40040)
getsockopt$auto_SO_PROTOCOL(r6, 0xfffffff8, 0x26, &(0x7f0000000240)='\x00', &(0x7f00000002c0)=0x1d36)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/bus/i2c/drivers/twl/unbind\x00', 0x200000, 0x0)

1.306277357s ago: executing program 0 (id=1789):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001080)='/dev/vbi14\x00', 0x103840, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0) (async, rerun: 64)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) (rerun: 64)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/003/001\x00', 0x42082, 0x0) (async)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x802, 0x0) (async)
memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/config/nullb/features\x00', 0x189002, 0x0)
write$auto(r0, &(0x7f0000000080)='\x00\x00s\xa6\xc2\x1d\a\r\x05`\xa6\xfef\xa3\x00\x00q,h\xa2\x99;\xd9S\xbb\x81\xaa2\xa4oJ\x15\xd0\xc8\'h\x8d\x9f&\xc7\xde\xb3\x03\x8eB\x9e%h\xf4\xa5\xfdt{\x82t\xc9\xf9\xf8\xe6\xee}`\xd9\xd8\n\xee\x7f\xbb\x04\x17\xca\x1f~\xaf<\xe7f[*\x02\t\x8f\'t\xbe\xd1\x94\x17\x82\x9c\xb2\xb7\xda\xb0\xc1s\xbeR\x82\x14\xe3Oi\xda3V\t\xe3\xa4d@\xe9\x823P\x9cS\xb3\xe5nz\x99?\xb8\xcb\xcd\x88)\xf9:\x16UB\x15\x1a9\xe05%{X\x1a\\-\xad\xce\x91;\f\xc6\xf43\xcd\x92N\xf9\x97\xcf\x8d\xd1l\xfb\x9d\xa8 \xf3\x99+\x0f\x9eX\xc4\x8a\xf3\x86\x8b \xe6j\xa1\x0e\xf7\xf7\x12\r\xcc\xf2m\xf5\x84\x9b\xf5\rp\x8c\xc9X\xd6u0\xd2\x97f|\b\x17\'F\x1b\xb9\xe9f\xfbo\x9d\xb2\xc0\x8b|j\x00;\xb6\xee\xeb<#`\xa34\"cD\xcd\xea\a\b\xb2o\x93\xbd\xdc\xd4\xe7\xfaca\xf3\x9eW\xf2\xc9\x8e\xeb^^T\x8d\xf3\tk\x03\xacs\xd0!\xbd\xc3G\x8f\xdf\xc9\xa0\xca\xeb\xc22;GH\xdf \x91\x88\x99\xf8m\xa2\x1e\x81\xfd\x82\x9a\x92\x97\x1f\xb8^\x9eF\x18\xcas\x9a\xeaED\x19\xfb\xd3\x94|4\xfc\xb0\x7fx$\xc7\xb2\x9cW\xc0\xdd\x16\x16\xaf\xb2@\x81:\x99\xf8\x8b\xe9!\xd2X\xf1~\xbb\x13', 0x100400a3db) (async)
socket(0x18, 0x80000, 0x2) (async)
sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0100f9020000fbdbdf250100000008000b00ac141420080001"], 0x24}, 0x1, 0x0, 0x0, 0x14}, 0x0) (async, rerun: 32)
r1 = socket(0x11, 0xa, 0x9) (rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/controlC0\x00', 0x880, 0x0) (async, rerun: 32)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x8800, 0x0) (async, rerun: 32)
socket(0xa, 0x2, 0x0) (async, rerun: 64)
open_tree$auto(0xffffffffffffffff, 0x0, 0x3) (async, rerun: 64)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001280)='/dev/sequencer2\x00', 0x0, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r3 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x0, 0x0)
ioctl$auto(r3, 0x921064a5, r3) (async)
r4 = socket(0xb, 0x2, 0x4) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r5 = clone3$auto(0x0, 0x1)
prctl$auto(0x3e, 0x1, r5, 0x1, 0x0)
sendmsg$auto_NL80211_CMD_REGISTER_FRAME(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c00000014797da04bbe5da2afdfd7c73f88dca05431e7b77555d76aeca83f94b4c1b212e7195cf61ef0fbf28b0c4bbd14975cb9f2d58a666501ff3a8fec0d99f51206eafc8231", @ANYRES16=0x0, @ANYBLOB="00042bbd7000fddbdf253a00000008005200", @ANYRES32=r5, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x842) (async)
socket(0x10, 0x2, 0xc) (async)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r1, @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x2000c082)
write$auto(r4, &(0x7f0000000000)='-\x00', 0xfdef)

1.1753107s ago: executing program 1 (id=1790):
r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0x10000, 0x2)
r1 = mq_open$auto(&(0x7f00000000c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00\x00', 0x62, 0xfffc, 0x0)
mq_timedsend$auto(r1, 0x0, 0x2000, 0x9, 0x0)
r2 = openat2$auto(r0, 0x0, 0x0, 0xef)
sendmsg$auto_IEEE802154_ADD_IFACE(r2, 0x0, 0x525a05df5b8ef67a)
r3 = socket(0x0, 0x1, 0x7)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x2c402, 0x0)
r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000002c0), r3)
sendmsg$auto_NL802154_CMD_GET_SEC_DEV(r3, &(0x7f00000006c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000440)={0x208, r5, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@NL802154_ATTR_SCAN_DONE_REASON={0x5}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x7ff}, @NL802154_ATTR_SUPPORTED_CHANNEL={0x8, 0x16, 0x8}, @NL802154_ATTR_SEC_OUT_KEY_ID={0x1d4, 0x2b, 0x0, 0x1, [@typed={0x4, 0x2e}, @nested={0x1c3, 0x1, 0x0, 0x1, [@generic="ec3082efed03337e16333f87280b6418547573473c7186a21625615526920aba8eaab3e666034d87a63c2d8d07cfec5353443b94c756cc5a8b3811fd4ff9258d41078be47b9ba2ba94a48c7260602a4956ecf0f88c9adf431be6a61e0b89e5157519ae1b4f25cf7af238cde2ce21285a17c0c94f7144e5495431c57b2dcba482734cf943b1f9ae76c9f4c81529264b90041192e1c579c93034a333b7c9d38adefe491cf2e9f88fd909fcfcf0416df4ddf8accc547296675a5d59f59c8380f04287416703eff21c84019faa8944", @nested={0x4, 0x154}, @generic="e79151e5d599ea7533108e4ef1f54ce6a9b336cff73607d4613f0a676c50be4bc7f4593d44a5d28029f1378e7fe3fe4c673e333f6a7e70be32fc734ea257dc", @nested={0x4, 0xb3}, @nested={0x4, 0x137}, @generic="9a6374c94ee4bd90a5bd1c05b738085e378104c6d5a3be90ec176be11693535aa06a5bc9603e333a675ae60f7c475cfff8a530519b2809943fa8710691708667795d93a0a441412607f5af1b5ccfeca79653819c3188731728d9d4eb318185aec3ae682b5418c3f9c4be8af93f820abac18eb22fcf53b4320d4a29cc42b4c5e47663b330f75a8bae79626a52c0e91b1716ad56bdfd44c41e5d12674a2b5a0c327f5369d8787a73", @generic]}, @typed={0x6, 0x114, 0x0, 0x0, @str='[\x00'}]}, @NL802154_ATTR_SCAN_CHANNELS={0x8, 0x21, 0x8}]}, 0x208}, 0x1, 0x0, 0x0, 0x1}, 0x40040)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
sendfile$auto(0xffffffffffffffff, r4, 0x0, 0x1fff5)
close_range$auto(0x2, 0x8, 0x0)
r6 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000180), r2)
sendmsg$auto_NFC_CMD_GET_SE(r1, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, r6, 0x4, 0x70bd27, 0x25dfdbff, {}, [@NFC_ATTR_LLC_PARAM_MIUX={0x6}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0x3}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x88801}, 0x0)

1.048931342s ago: executing program 0 (id=1791):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x15, 0x5, 0x0)
socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x20005, 0x1, 0xeb1, 0x401, 0xc)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
r0 = socket(0xa, 0x805, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
getsockopt$auto(r0, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0)
setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90)
r1 = socket(0x2, 0x1, 0x106)
getsockopt$auto_SO_BINDTOIFINDEX(r1, 0x1, 0x3e, &(0x7f0000000080)='/dev/audio1\x00', &(0x7f00000000c0)=0x8)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
r2 = bpf$auto(0x0, 0x0, 0x6f3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x8, 0x0, 0x7, 0x0, 0xfffffffffffffffd, 0x200}, 0x5}, 0x3, 0x4, 0x0)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC0\x00', 0x2000, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r3, 0xc4c85512, &(0x7f00000007c0)={{@raw=0x7, 0x8, 0x4, 0xa2, "c6e47a44a36664a5e709f0e4c97056bc9fa32c617bb88dc98fa7591aefc4647f5af349f8e1e79c823b22958f"}, 0x1, @enumerated=@item=[0x0, 0x3, 0x1, 0x381, 0x6, 0x3ff, 0x800010, 0x6, 0x10001, 0xefe, 0xfffffffa, 0x5, 0x8001, 0x62f, 0x101, 0x4, 0x200, 0xfffffff0, 0x1000, 0x7, 0x3, 0x3, 0x0, 0x6, 0xb94, 0xffffffff, 0x1, 0x7, 0x3, 0xe8, 0xe, 0x0, 0x1, 0x46f, 0x8, 0x1, 0x6, 0x4, 0x6, 0x808, 0x8, 0x9, 0x65b, 0x9, 0x7, 0x81, 0x1ce8, 0x9, 0x34b9, 0xfff, 0x5, 0x4, 0x2, 0x1000, 0x9, 0x3, 0x400, 0xd, 0x0, 0x0, 0x207d, 0x120000, 0x5, 0x5, 0x4, 0x80, 0x6ed, 0x0, 0x3, 0x1, 0x2006, 0x4, 0x8, 0x1, 0x4003ff, 0x5, 0x8, 0x6, 0x5e05, 0xa, 0x2, 0x5, 0x400, 0x6, 0x4, 0x9, 0x29, 0x8, 0x30971ad3, 0xd, 0x78e, 0x1, 0x0, 0x8001, 0x20000, 0x44, 0x0, 0x4, 0x5, 0xfffff43e, 0x0, 0x4f000, 0xfe, 0x5, 0x4, 0xd49e923b, 0x4, 0x80000000, 0x77, 0xf2, 0x0, 0x7fffffff, 0x7f77, 0x9, 0x5b, 0x8, 0x10001, 0x8, 0x0, 0xc2, 0x0, 0x5, 0x1000, 0x1, 0x8, 0x400, 0x9, 0x3], "4570dcfd140074f863fc1385c4fd7abe6fce96c0b442897f58fd7d975d164deff4eef5b9f9173fa400163669eae95125d4bd68ca54ca1b0aefb60ffa8d501b1329af8d4108ac145aa564c6e7a09ea1b2dfae0f309c6ea508833d7d134b13d8cb3ef95bf5ed43801c280c02a5a853512e6f730d43226f00af1c5ac268ecc1d18f"})
poll$auto(&(0x7f0000000040)={<r4=>0xffffffffffffffff, 0x7ff, 0x200}, 0x100, 0x6)
mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='nfs4\x00', 0x200, &(0x7f00000001c0))
r5 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000100), 0x8040, 0x0)
io_uring_setup$auto(0x9, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r5, 0x403c6f2b, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_XFS_IOC_EXCHANGE_RANGE(r4, 0x40285881, &(0x7f0000000140)={<r6=>r2, 0x0, 0x20, 0x7, 0xf0d, 0x2})
sendmsg$auto(r6, &(0x7f0000000640)={&(0x7f0000000400)="d48842bd8c3e0a244af1fbf41be564171d44fd653b1a120d482a433b9042ba2eee646acbd8583c24b70bd2026d087fa9ec3b3801285e61c3680cba76e69419a3e1b41c88b8dca2954f27541a0bdec26c4c9080", 0x2, &(0x7f0000000580)={&(0x7f0000000480)="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", 0x8000000000000004}, 0x2, &(0x7f00000005c0)="fc2d4abe7a9517d8c7a76ae3e78faf948badb78eb0753ef19f7b713f2817a761f859eb3110ce3eea3780b0b1034d05c130536698188451d20dea595b00a0d23ac498c3c63fd7f23fa7215a6fcf20ef266e35bb7b65d0ae79109a14a74a228e686c5a922bd30bbb2b2bed80f9db4db7c6", 0x2000000006, 0x80000001}, 0x6503)

976.228749ms ago: executing program 3 (id=1792):
socket(0x10, 0x2, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0)
r1 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x22202, 0x0)
pread64$auto(r0, 0x0, 0x81, 0x8000000000009)
read$auto_mon_fops_text_t_mon_text(r1, 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0x0, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4)
ioctl$auto_OSS_GETVERSION2(r2, 0x80044d76, &(0x7f00000001c0)="cada103d276f26ea0262bbfab778cc42bec998b1defc5027dc0e860fbdeb1901f28df7a7bf6e5c02dedd91780be003cc023d0998b8692efc4c9d49678329e8d1c6fd9fae30429649cc9ea4251b578aca8ac9681564188537f11a8adab8728d7b7afd94e8f5e07dbed5edaddd2fda88cd046ffcc91902f19704cf6a7d0c862c9966d9943468bf")
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x840042, 0x0)
write$auto_ocfs2_control_fops_stack_user(r3, &(0x7f0000003900)='\t', 0x1)
mmap$auto(0x0, 0x2020002, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
sendfile$auto(0xffffffffffffffff, 0x3, 0x0, 0xc01)
clock_nanosleep$auto(0xfffffff2, 0x5, 0x0, 0x0)
fsopen$auto(0x0, 0x401)
mmap$auto(0x0, 0x400009, 0xffb, 0x8000000008011, 0x3, 0x0)
mmap$auto(0x0, 0x5, 0x7fffffff, 0x8000000008011, 0x3, 0x2000000000)
mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xfffffffffffeffff, 0x15)
gettid()
r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(r4, 0x5523, r4)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
close_range$auto(0x2, 0x8, 0x0)

882.678765ms ago: executing program 1 (id=1793):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x64842, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/ptyq3\x00', 0x40001, 0x0)
ioctl$auto(0x3, 0x80045439, 0x10000000000402)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
mlockall$auto(0x7)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/ram0/queue/physical_block_size\x00', 0x82200, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/162, 0xa2)
mremap$auto(0x0, 0x4, 0x5, 0x7, 0x100000000)
madvise$auto(0x200000, 0x380, 0x15)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0xa7b7306f9384c896, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mremap$auto(0x0, 0x2, 0x2, 0x7, 0x401)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0x200007, 0x8)

693.370419ms ago: executing program 4 (id=1794):
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
write$auto(0x3, 0x0, 0x1)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000200)={0x14, 0x0, 0x1, 0x70bd2a, 0x25dfdbfb}, 0x14}}, 0x44040)
ioctl$auto(0xffffffffffffffff, 0xc0c0128e, 0xffffffffffffffff)
shutdown$auto(0x200000003, 0x2)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/bond0/bonding/slaves\x00', 0x80002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r1, &(0x7f0000000000)='-/', 0x2)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x11f, 0x0, 0xfffffffffffffffd)

254.793298ms ago: executing program 4 (id=1795):
mmap$auto(0x0, 0x200000ffffffff, 0x80000000, 0x91e, 0xffffffffffffffff, 0x0)
r0 = socketpair$auto(0x7, 0xce, 0x8000000000000000, 0x0)
r1 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r1, 0x84, 0x11, 0x0, &(0x7f0000000000)=0x28000000)
mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000180), r1)
sendmsg$auto_OVS_VPORT_CMD_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x44040}, 0xc0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0)
ioctl$auto(r2, 0x1000, 0x1e2)
sendmsg$auto_GTP_CMD_NEWPDP(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x4085}, 0x4000804)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0xf, 0x9, 0x63, 0x0, 0x0, 0x0, 0x0, 0x401, 0x1003, 0xfffffffffffffffd, 0x7ffffffb, 0x9, 0xffffffff7ffffffc, 0x8009, 0xb, 0x200000100106})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
shmget$auto(0x8, 0x10565, 0x7ff)
r4 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0004, 0x14)
madvise$auto(0x0, 0x200007, 0x8)
mmap$auto(0x0, 0x4000009, 0x6, 0xfb1, r0, 0x8002)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008000}, 0x20000010)
socket(0x29, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xfffffff9, 0x10, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f0000000080)={0x1, "36a2662b59209f6bd4aafa4ed15fdb9c791daf044ae6ff089930def80ce28999", @inferred=<r5=>0xffffffffffffffff})
ppoll$auto(&(0x7f0000000100)={r5, 0x3ff, 0x4}, 0x1, 0x0, 0x0, 0x8)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22)
utimensat$auto(r6, &(0x7f0000001c80)='\x00', &(0x7f0000001cc0)={0x23, 0x7fff}, 0x1000)

102.614389ms ago: executing program 1 (id=1796):
r0 = mq_open$auto(&(0x7f00000001c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00'/133, 0x62, 0x7, 0x0)
mq_timedreceive$auto(r0, 0x0, 0x4dcd, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = mq_open$auto(&(0x7f00000000c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00\x00', 0x62, 0xfffc, 0x0)
mq_timedsend$auto(r1, 0x0, 0x2000, 0x9, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x5, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r2 = openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0)
write$auto_uhid_fops_uhid(r2, 0x0, 0xfccd) (async)
write$auto_uhid_fops_uhid(r2, 0x0, 0xfccd)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/downdelay\x00', 0x10b142, 0x0) (async)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/downdelay\x00', 0x10b142, 0x0)
sendfile$auto(r3, r3, 0x0, 0x4) (async)
sendfile$auto(r3, r3, 0x0, 0x4)
prlimit64$auto(0x0, 0x7, &(0x7f0000000380)={0xd, 0x44}, &(0x7f00000003c0)={0xd, 0xa})
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/tty1\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2, 0x20000000000003, 0x19, 0xfffffffffffffffb, 0x7fff) (async)
mmap$auto(0x0, 0x2, 0x20000000000003, 0x19, 0xfffffffffffffffb, 0x7fff)
socket(0x2b, 0x1, 0x2)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
r4 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0)
write$auto(r4, &(0x7f0000000280)='d\n\x1e\x9f\xd0\x92l\x98\x92!Fc\x9c?\xado^\x9b\xf4\x9c\xa8\xd2gn\x1a\xd7\x1c\xe8)\xefA\x7f\xc2x\xd0\x18gS\x1c\xca\xb9\x84\x1ec\xd4>\xc2\xfej\t\x89u\xcb(\x95_3\xdfo\xdc\xa5;t\x05q$zmM\xae\xdb\x1f\xeb\xffe\x91\xd5\xd2[\xa5_F\xc4X\xec\xdb\xdc\x01\xc2d\xa1\x8b\xed=\xb0\x88\xa8\xdc\xef\x12\x96\xe3\xcfh\v\xb0\xee\xc7\x99tl2\x0e\x13mjH,\xcda\xcab.\x03\xe7\xa4z\xcaA\x89\xe3\xf6\x8aT\x87\x80\xda\xf5wA\xb5\xe2\x99\xd5n\xa0\x8a\x91K_\xf0~\b\v\xd1W\x97\xd9\x8c}\xff4\xff\tAK\xc4\x16\x13,9}-_\x00\x80\xd2\xfc\x98?\'\xaf\xccyRou\xa1\x12\x9fwZ\x1c\f\xcck\xdb-\xd7;\xbf\xbf\xbe\x04*L\x1e\x9c\x8fVb\xb8\xb4\xa2|\x88\x1e\bX\xba_O\x87f.\xc2\xfa\x01R\xefB\xe9\xf4Xc\x98\xe7', 0x2)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={<r5=>0xe, 0x4, 0x400, 0x10001, 0x8, 0xc, 0xffffffffffffffff, 0x9, 0x7ff}, 0xee)
close_range$auto(0x2, 0x8, 0x5) (async)
close_range$auto(0x2, 0x8, 0x5)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x40001, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x40001, 0x0)
prctl$auto(0xbe, 0x4, 0x0, 0x1, 0x0)
mmap$auto(0xff, 0x6, 0xdf, 0x9b72, r0, 0x8002)
fcntl$auto_F_NOTIFY(0xffffffffffffffff, 0x402, 0x9000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f00, 0x0) (async)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f00, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
prctl$auto(0x38, 0x3, r5, 0x0, 0x3)
shutdown$auto(0x200000003, 0x2)

0s ago: executing program 0 (id=1797):
socket(0x29, 0x5, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x40, 0x0)
read$auto(r0, 0x0, 0x10001)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
pipe$auto(&(0x7f0000000080)=0xe7da)
dup2$auto(0x0, 0x4)
openat$auto_minstrel_ht_stat_csv_fops_rc80211_minstrel_ht_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ieee80211/phy7/netdev:wlan0/stations/08:02:11:00:00:01/rc_stats_csv\x00', 0x385600, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(0xffffffffffffffff, 0x7af, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x7fffffffe000, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182, 0x0)
keyctl$auto(0x9, 0x0, 0xfffffffffffffffd, 0x0, 0x1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0xe3, 0x0)
close_range$auto(0x2, 0x8, 0x2)
read$auto(r1, 0x0, 0x7)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x20802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000080), 0xffffffffffffffff)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x102, 0x0)
shmctl$auto_SHM_STAT_ANY(0x10001, 0xf, &(0x7f0000000580)={{0x90, 0xee01, <r3=>0xffffffffffffffff, 0x5, 0x80, 0x7, 0x7ff}, 0x8, 0x7fffffff, 0xffffffffffffff81, 0x7, @raw=0x4, @raw=0x9, 0xc03, 0x0, &(0x7f0000000500), 0x0})
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
r4 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
ioctl$auto_BLKPG2(r4, 0x1269, 0x0)
ioctl$auto_MEMGETINFO(r4, 0x80204d01, 0x0)
msgctl$auto_IPC_RMID(0x2000000, 0x0, &(0x7f0000000600)={{0x7f, 0x0, r3, 0x9, 0x101, 0x9, 0xe4f}, &(0x7f00000004c0)=0x6, &(0x7f0000000540)=0x8, 0x3, 0x4, 0x5, 0xffffffffffffffff, 0x8, 0xffb0, 0x1, 0x0, @inferred, @raw=0x10000})

kernel console output (not intermixed with test programs):

R09: 0000000000000000
[  355.318522][T10658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  355.318532][T10658] R13: 00007f447ae16128 R14: 00007f447ae16090 R15: 00007ffc70e48038
[  355.318554][T10658]  </TASK>
[  355.747352][T10656] zswap: compressor û not available
[  356.297734][T10673] can: request_module (can-proto-5) failed.
[  358.426773][T10707] netlink: 'syz.1.1035': attribute type 23 has an invalid length.
[  358.496312][T10700] openvswitch: netlink: Unknown VXLAN extension attribute 0
[  359.562197][T10728] FAULT_INJECTION: forcing a failure.
[  359.562197][T10728] name failslab, interval 1, probability 0, space 0, times 0
[  359.575085][T10728] CPU: 0 UID: 0 PID: 10728 Comm: syz.3.1041 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  359.575117][T10728] Tainted: [L]=SOFTLOCKUP
[  359.575123][T10728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  359.575133][T10728] Call Trace:
[  359.575142][T10728]  <TASK>
[  359.575149][T10728]  dump_stack_lvl+0x100/0x190
[  359.575183][T10728]  should_fail_ex.cold+0x5/0xa
[  359.575206][T10728]  should_failslab+0xc2/0x120
[  359.575227][T10728]  __kmalloc_cache_noprof+0x7a/0x6f0
[  359.575251][T10728]  ? tipc_service_create+0xb1/0x340
[  359.575284][T10728]  tipc_service_create+0xb1/0x340
[  359.575312][T10728]  ? tipc_service_find+0x161/0x1c0
[  359.575342][T10728]  tipc_nametbl_insert_publ+0xeca/0x1570
[  359.575379][T10728]  tipc_nametbl_publish+0x137/0x260
[  359.575411][T10728]  tipc_sk_publish+0x1d8/0x430
[  359.575430][T10728]  ? __pfx_tipc_sk_publish+0x10/0x10
[  359.575450][T10728]  ? __local_bh_enable_ip+0x9e/0x120
[  359.575475][T10728]  tipc_sk_bind+0x16f/0x380
[  359.575495][T10728]  tipc_bind+0x18d/0x280
[  359.575514][T10728]  __sys_bind+0x1a9/0x260
[  359.575540][T10728]  ? __pfx___sys_bind+0x10/0x10
[  359.575578][T10728]  __x64_sys_bind+0x72/0xb0
[  359.575603][T10728]  ? lockdep_hardirqs_on+0x78/0x100
[  359.575630][T10728]  do_syscall_64+0x10b/0xf80
[  359.575655][T10728]  ? clear_bhb_loop+0x40/0x90
[  359.575677][T10728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.575695][T10728] RIP: 0033:0x7f53f139c819
[  359.575711][T10728] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  359.575729][T10728] RSP: 002b:00007f53f2260028 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  359.575747][T10728] RAX: ffffffffffffffda RBX: 00007f53f1615fa0 RCX: 00007f53f139c819
[  359.575758][T10728] RDX: 0000000000000066 RSI: 0000200000000040 RDI: 0000000000000003
[  359.575769][T10728] RBP: 00007f53f1432c91 R08: 0000000000000000 R09: 0000000000000000
[  359.575779][T10728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  359.575789][T10728] R13: 00007f53f1616038 R14: 00007f53f1615fa0 R15: 00007ffc3872a218
[  359.575810][T10728]  </TASK>
[  359.575818][T10728] tipc: Service creation failed, no memory
[  360.552317][T10745] netlink: 'syz.4.1043': attribute type 23 has an invalid length.
[  360.813987][ T5827] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  361.339660][ T5827] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  362.371545][ T5827] Bluetooth: hci1: unexpected event for opcode 0x7c89
[  363.385572][T10813] netlink: 'syz.4.1057': attribute type 23 has an invalid length.
[  363.476866][ T5827] Bluetooth: hci2: unexpected event for opcode 0x7c89
[  365.042930][T10846] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1072'.
[  365.394456][T10848] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12
[  365.802940][T10845] random: crng reseeded on system resumption
[  365.969489][T10853] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13
[  369.193385][T10902] netlink: 'syz.3.1074': attribute type 23 has an invalid length.
[  369.665690][T10911] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1077'.
[  370.898822][T10911] random: crng reseeded on system resumption
[  371.297329][T10929] netlink: 'syz.0.1081': attribute type 23 has an invalid length.
[  372.451766][T10947] FAULT_INJECTION: forcing a failure.
[  372.451766][T10947] name failslab, interval 1, probability 0, space 0, times 0
[  372.518954][T10947] CPU: 0 UID: 0 PID: 10947 Comm: syz.0.1086 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  372.518985][T10947] Tainted: [L]=SOFTLOCKUP
[  372.518991][T10947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  372.519005][T10947] Call Trace:
[  372.519011][T10947]  <TASK>
[  372.519018][T10947]  dump_stack_lvl+0x100/0x190
[  372.519053][T10947]  should_fail_ex.cold+0x5/0xa
[  372.519075][T10947]  should_failslab+0xc2/0x120
[  372.519094][T10947]  __kvmalloc_node_noprof+0xfa/0xa00
[  372.519121][T10947]  ? traverse.part.0.constprop.0+0x397/0x650
[  372.519156][T10947]  traverse.part.0.constprop.0+0x397/0x650
[  372.519191][T10947]  seq_read_iter+0x93f/0x1270
[  372.519220][T10947]  ? aa_file_perm+0x7f3/0x14d0
[  372.519253][T10947]  seq_read+0x33b/0x4c0
[  372.519280][T10947]  ? __pfx_seq_read+0x10/0x10
[  372.519320][T10947]  ? __pfx_seq_read+0x10/0x10
[  372.519347][T10947]  proc_reg_read+0x240/0x330
[  372.519364][T10947]  ? __pfx_proc_reg_read+0x10/0x10
[  372.519381][T10947]  vfs_read+0x1e4/0xb30
[  372.519400][T10947]  ? __pfx_vfs_read+0x10/0x10
[  372.519414][T10947]  ? find_held_lock+0x2b/0x80
[  372.519435][T10947]  ? __fget_files+0x215/0x3d0
[  372.519451][T10947]  ? __fget_files+0x215/0x3d0
[  372.519471][T10947]  ? __fget_files+0x21f/0x3d0
[  372.519493][T10947]  __x64_sys_pread64+0x1eb/0x250
[  372.519511][T10947]  ? __pfx___x64_sys_pread64+0x10/0x10
[  372.519531][T10947]  ? rcu_is_watching+0x12/0xc0
[  372.519554][T10947]  do_syscall_64+0x10b/0xf80
[  372.519580][T10947]  ? clear_bhb_loop+0x40/0x90
[  372.519601][T10947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.519619][T10947] RIP: 0033:0x7fbf5699c819
[  372.519634][T10947] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  372.519651][T10947] RSP: 002b:00007fbf577f0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  372.519669][T10947] RAX: ffffffffffffffda RBX: 00007fbf56c15fa0 RCX: 00007fbf5699c819
[  372.519680][T10947] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000007
[  372.519690][T10947] RBP: 00007fbf577f0090 R08: 0000000000000000 R09: 0000000000000000
[  372.519700][T10947] R10: 000000000000ffff R11: 0000000000000246 R12: 0000000000000001
[  372.519710][T10947] R13: 00007fbf56c16038 R14: 00007fbf56c15fa0 R15: 00007fff010989e8
[  372.519734][T10947]  </TASK>
[  373.330618][T10958] FAULT_INJECTION: forcing a failure.
[  373.330618][T10958] name failslab, interval 1, probability 0, space 0, times 0
[  373.422225][T10958] CPU: 0 UID: 0 PID: 10958 Comm: syz.4.1088 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  373.422257][T10958] Tainted: [L]=SOFTLOCKUP
[  373.422263][T10958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  373.422274][T10958] Call Trace:
[  373.422280][T10958]  <TASK>
[  373.422288][T10958]  dump_stack_lvl+0x100/0x190
[  373.422323][T10958]  should_fail_ex.cold+0x5/0xa
[  373.422346][T10958]  should_failslab+0xc2/0x120
[  373.422366][T10958]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  373.422393][T10958]  ? security_file_alloc+0x34/0x2c0
[  373.422418][T10958]  ? trace_kmem_cache_alloc+0xd5/0x100
[  373.422441][T10958]  security_file_alloc+0x34/0x2c0
[  373.422466][T10958]  init_file+0x95/0x480
[  373.422488][T10958]  alloc_empty_file+0x79/0x1c0
[  373.422511][T10958]  path_openat+0xe8/0x31a0
[  373.422528][T10958]  ? kasan_save_stack+0x3f/0x50
[  373.422554][T10958]  ? kasan_save_stack+0x30/0x50
[  373.422580][T10958]  ? kasan_save_track+0x14/0x30
[  373.422607][T10958]  ? __kasan_slab_alloc+0x89/0x90
[  373.422623][T10958]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  373.422648][T10958]  ? do_getname+0x35/0x390
[  373.422669][T10958]  ? do_sys_openat2+0xc5/0x1e0
[  373.422692][T10958]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.422719][T10958]  ? __pfx_path_openat+0x10/0x10
[  373.422745][T10958]  do_file_open+0x20e/0x430
[  373.422766][T10958]  ? __pfx_do_file_open+0x10/0x10
[  373.422799][T10958]  ? alloc_fd+0x476/0x790
[  373.422819][T10958]  ? do_getname+0x191/0x390
[  373.422843][T10958]  do_sys_openat2+0x10d/0x1e0
[  373.422866][T10958]  ? __pfx_do_sys_openat2+0x10/0x10
[  373.422897][T10958]  __x64_sys_openat+0x12d/0x210
[  373.422921][T10958]  ? __pfx___x64_sys_openat+0x10/0x10
[  373.422949][T10958]  ? rcu_is_watching+0x12/0xc0
[  373.422973][T10958]  do_syscall_64+0x10b/0xf80
[  373.423000][T10958]  ? clear_bhb_loop+0x40/0x90
[  373.423021][T10958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.423039][T10958] RIP: 0033:0x7f447ab9c819
[  373.423056][T10958] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  373.423073][T10958] RSP: 002b:00007f447b9c4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  373.423092][T10958] RAX: ffffffffffffffda RBX: 00007f447ae16090 RCX: 00007f447ab9c819
[  373.423103][T10958] RDX: 0000000000002002 RSI: 0000200000000c40 RDI: ffffffffffffff9c
[  373.423114][T10958] RBP: 00007f447ac32c91 R08: 0000000000000000 R09: 0000000000000000
[  373.423124][T10958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  373.423135][T10958] R13: 00007f447ae16128 R14: 00007f447ae16090 R15: 00007ffc70e48038
[  373.423157][T10958]  </TASK>
[  374.192275][T10952] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  374.230771][T10952] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  374.250167][T10952] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  374.271651][T10952] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  374.293230][T10952] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  374.368773][T10952] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  374.938749][T10969] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1090'.
[  375.461283][T10969] random: crng reseeded on system resumption
[  375.545190][T10969] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1090'.
[  375.554407][T10982] netlink: 'syz.1.1093': attribute type 23 has an invalid length.
[  376.041469][T10994] futex_wake_op: syz.4.1095 tries to shift op by -2048; fix this program
[  376.074590][ T5827] Bluetooth: hci1: unexpected event for opcode 0x7c89
[  376.115421][T10994] futex_wake_op: syz.4.1095 tries to shift op by -2048; fix this program
[  376.189532][T11000] 0x000000000001-0x000000020000 : ""
[  376.275328][T11000] ftl_cs: FTL header corrupt!
[  376.282359][ T5827] Bluetooth: hci4: command 0x0c1a tx timeout
[  376.289176][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout
[  376.295266][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout
[  377.059706][T11020] FAULT_INJECTION: forcing a failure.
[  377.059706][T11020] name failslab, interval 1, probability 0, space 0, times 0
[  377.168784][T11025] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1103'.
[  377.207860][T11020] CPU: 0 UID: 0 PID: 11020 Comm: syz.4.1100 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  377.207891][T11020] Tainted: [L]=SOFTLOCKUP
[  377.207897][T11020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  377.207907][T11020] Call Trace:
[  377.207913][T11020]  <TASK>
[  377.207920][T11020]  dump_stack_lvl+0x100/0x190
[  377.207955][T11020]  should_fail_ex.cold+0x5/0xa
[  377.207977][T11020]  ? tomoyo_realpath_from_path+0xb6/0x690
[  377.208004][T11020]  should_failslab+0xc2/0x120
[  377.208023][T11020]  __kmalloc_noprof+0xe0/0x850
[  377.208048][T11020]  ? kfree+0x1dd/0x6c0
[  377.208073][T11020]  tomoyo_realpath_from_path+0xb6/0x690
[  377.208105][T11020]  tomoyo_path_number_perm+0x23c/0x580
[  377.208127][T11020]  ? tomoyo_path_number_perm+0x22e/0x580
[  377.208151][T11020]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  377.208195][T11020]  ? find_held_lock+0x2b/0x80
[  377.208216][T11020]  ? __fget_files+0x215/0x3d0
[  377.208232][T11020]  ? hook_file_ioctl_common+0x149/0x410
[  377.208255][T11020]  ? __fget_files+0x215/0x3d0
[  377.208275][T11020]  ? __fget_files+0x21f/0x3d0
[  377.208295][T11020]  security_file_ioctl+0xd3/0x230
[  377.208318][T11020]  __x64_sys_ioctl+0xb7/0x210
[  377.208345][T11020]  do_syscall_64+0x10b/0xf80
[  377.208371][T11020]  ? clear_bhb_loop+0x40/0x90
[  377.208392][T11020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.208411][T11020] RIP: 0033:0x7f447ab9c819
[  377.208426][T11020] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  377.208444][T11020] RSP: 002b:00007f447b9a3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  377.208461][T11020] RAX: ffffffffffffffda RBX: 00007f447ae16180 RCX: 00007f447ab9c819
[  377.208472][T11020] RDX: 0000000000000006 RSI: 00000000921064a0 RDI: 0000000000000006
[  377.208483][T11020] RBP: 00007f447b9a3090 R08: 0000000000000000 R09: 0000000000000000
[  377.208492][T11020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  377.208502][T11020] R13: 00007f447ae16218 R14: 00007f447ae16180 R15: 00007ffc70e48038
[  377.208524][T11020]  </TASK>
[  377.208531][T11020] ERROR: Out of memory at tomoyo_realpath_from_path.
[  377.647658][T11030] random: crng reseeded on system resumption
[  378.051111][T11039] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1105'.
[  378.362517][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout
[  378.751241][T11038] random: crng reseeded on system resumption
[  378.844535][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  378.851016][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  379.082568][T11057] netlink: 'syz.0.1107': attribute type 23 has an invalid length.
[  379.593532][T11065] FAULT_INJECTION: forcing a failure.
[  379.593532][T11065] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  379.660136][T11065] CPU: 0 UID: 0 PID: 11065 Comm: syz.4.1109 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  379.660168][T11065] Tainted: [L]=SOFTLOCKUP
[  379.660174][T11065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  379.660184][T11065] Call Trace:
[  379.660190][T11065]  <TASK>
[  379.660198][T11065]  dump_stack_lvl+0x100/0x190
[  379.660237][T11065]  should_fail_ex.cold+0x5/0xa
[  379.660259][T11065]  _copy_to_user+0x32/0xd0
[  379.660282][T11065]  simple_read_from_buffer+0xcb/0x170
[  379.660313][T11065]  proc_fail_nth_read+0x1af/0x230
[  379.660338][T11065]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  379.660363][T11065]  ? rw_verify_area+0xce/0x6d0
[  379.660389][T11065]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  379.660412][T11065]  vfs_read+0x1e4/0xb30
[  379.660431][T11065]  ? __pfx_vfs_read+0x10/0x10
[  379.660446][T11065]  ? __fget_files+0x215/0x3d0
[  379.660467][T11065]  ? __fget_files+0x21f/0x3d0
[  379.660490][T11065]  ksys_read+0x12a/0x250
[  379.660506][T11065]  ? __pfx_ksys_read+0x10/0x10
[  379.660524][T11065]  ? rcu_is_watching+0x12/0xc0
[  379.660547][T11065]  do_syscall_64+0x10b/0xf80
[  379.660573][T11065]  ? clear_bhb_loop+0x40/0x90
[  379.660595][T11065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.660613][T11065] RIP: 0033:0x7f447ab5d04e
[  379.660628][T11065] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  379.660646][T11065] RSP: 002b:00007f447b9e4fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  379.660670][T11065] RAX: ffffffffffffffda RBX: 00007f447b9e56c0 RCX: 00007f447ab5d04e
[  379.660681][T11065] RDX: 000000000000000f RSI: 00007f447b9e50a0 RDI: 0000000000000008
[  379.660691][T11065] RBP: 00007f447b9e5090 R08: 0000000000000000 R09: 0000000000000000
[  379.660701][T11065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  379.660711][T11065] R13: 00007f447ae16038 R14: 00007f447ae15fa0 R15: 00007ffc70e48038
[  379.660733][T11065]  </TASK>
[  380.407094][T11071] FAULT_INJECTION: forcing a failure.
[  380.407094][T11071] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  380.455743][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout
[  380.552459][T11071] CPU: 0 UID: 0 PID: 11071 Comm: syz.0.1110 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  380.552490][T11071] Tainted: [L]=SOFTLOCKUP
[  380.552497][T11071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  380.552507][T11071] Call Trace:
[  380.552513][T11071]  <TASK>
[  380.552521][T11071]  dump_stack_lvl+0x100/0x190
[  380.552556][T11071]  should_fail_ex.cold+0x5/0xa
[  380.552575][T11071]  ? prepare_alloc_pages+0x16d/0x5f0
[  380.552599][T11071]  should_fail_alloc_page+0xeb/0x140
[  380.552619][T11071]  prepare_alloc_pages+0x1f0/0x5f0
[  380.552663][T11071]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  380.552698][T11071]  ? find_held_lock+0x2b/0x80
[  380.552721][T11071]  ? ima_match_policy+0x8c4/0x2350
[  380.552745][T11071]  ? ima_match_policy+0x8c4/0x2350
[  380.552773][T11071]  ? ima_match_policy+0x8ce/0x2350
[  380.552797][T11071]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  380.552839][T11071]  ? vma_is_special_huge+0x23f/0x2d0
[  380.552858][T11071]  ? __pfx_vma_is_special_huge+0x10/0x10
[  380.552876][T11071]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  380.552903][T11071]  ? policy_nodemask+0xed/0x4f0
[  380.552924][T11071]  alloc_pages_mpol+0x1fb/0x540
[  380.552944][T11071]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  380.552965][T11071]  ? __pfx___thp_vma_allowable_orders+0x10/0x10
[  380.552991][T11071]  alloc_pages_noprof+0x1a/0x160
[  380.553013][T11071]  __pmd_alloc+0x3b/0x950
[  380.553037][T11071]  __handle_mm_fault+0xa9c/0x2a00
[  380.553065][T11071]  ? mt_find+0x45e/0x8e0
[  380.553082][T11071]  ? __pfx___handle_mm_fault+0x10/0x10
[  380.553106][T11071]  ? __pfx_mt_find+0x10/0x10
[  380.553134][T11071]  ? find_vma+0xbf/0x140
[  380.553151][T11071]  ? __pfx_find_vma+0x10/0x10
[  380.553171][T11071]  handle_mm_fault+0x36d/0xa20
[  380.553201][T11071]  do_user_addr_fault+0x74c/0x12f0
[  380.553224][T11071]  ? trace_page_fault_kernel+0x7a/0x200
[  380.553246][T11071]  exc_page_fault+0x6f/0xd0
[  380.553273][T11071]  asm_exc_page_fault+0x26/0x30
[  380.553291][T11071] RIP: 0010:rep_movs_alternative+0x11/0x90
[  380.553312][T11071] Code: e9 54 9b 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f
[  380.553330][T11071] RSP: 0018:ffffc9000535fb40 EFLAGS: 00050202
[  380.553345][T11071] RAX: 0000000000000030 RBX: 0000000000000000 RCX: 0000000000000002
[  380.553356][T11071] RDX: 0000000000000001 RSI: ffff888059f12c00 RDI: 0000000000000000
[  380.553366][T11071] RBP: ffffc9000535fd80 R08: 0000000000000000 R09: ffffed100b3e2580
[  380.553377][T11071] R10: ffff888059f12c01 R11: 0000000000000000 R12: 0000000000000002
[  380.553388][T11071] R13: 00007ffffffff000 R14: ffff888059f12c00 R15: 0000000000000002
[  380.553410][T11071]  _copy_to_iter+0x391/0x1720
[  380.553436][T11071]  ? __pfx__copy_to_iter+0x10/0x10
[  380.553458][T11071]  ? __pfx_proc_dou8vec_minmax+0x10/0x10
[  380.553478][T11071]  ? __kvmalloc_node_noprof+0x37b/0xa00
[  380.553504][T11071]  ? proc_sys_call_handler+0x2c7/0x5a0
[  380.553529][T11071]  proc_sys_call_handler+0x381/0x5a0
[  380.553550][T11071]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  380.553571][T11071]  ? rw_verify_area+0xce/0x6d0
[  380.553597][T11071]  ? __pfx_proc_sys_read+0x10/0x10
[  380.553616][T11071]  vfs_read+0x825/0xb30
[  380.553635][T11071]  ? __pfx_vfs_read+0x10/0x10
[  380.553672][T11071]  ksys_read+0x12a/0x250
[  380.553688][T11071]  ? __pfx_ksys_read+0x10/0x10
[  380.553706][T11071]  ? rcu_is_watching+0x12/0xc0
[  380.553729][T11071]  do_syscall_64+0x10b/0xf80
[  380.553754][T11071]  ? clear_bhb_loop+0x40/0x90
[  380.553776][T11071]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.553794][T11071] RIP: 0033:0x7fbf5699c819
[  380.553809][T11071] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  380.553826][T11071] RSP: 002b:00007fbf577cf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  380.553842][T11071] RAX: ffffffffffffffda RBX: 00007fbf56c16090 RCX: 00007fbf5699c819
[  380.553852][T11071] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000004
[  380.553863][T11071] RBP: 00007fbf56a32c91 R08: 0000000000000000 R09: 0000000000000000
[  380.553873][T11071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  380.553883][T11071] R13: 00007fbf56c16128 R14: 00007fbf56c16090 R15: 00007fff010989e8
[  380.553906][T11071]  </TASK>
[  381.995545][T11095] netlink: 'syz.4.1115': attribute type 23 has an invalid length.
[  383.133940][T11115] netlink: 'syz.4.1119': attribute type 23 has an invalid length.
[  384.359775][T11129] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  386.151944][T11161] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1130'.
[  386.383210][T11169] FAULT_INJECTION: forcing a failure.
[  386.383210][T11169] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  386.453323][T11161] random: crng reseeded on system resumption
[  386.459464][T11169] CPU: 0 UID: 0 PID: 11169 Comm: syz.3.1131 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  386.459494][T11169] Tainted: [L]=SOFTLOCKUP
[  386.459500][T11169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  386.459511][T11169] Call Trace:
[  386.459518][T11169]  <TASK>
[  386.459525][T11169]  dump_stack_lvl+0x100/0x190
[  386.459568][T11169]  should_fail_ex.cold+0x5/0xa
[  386.459588][T11169]  ? prepare_alloc_pages+0x16d/0x5f0
[  386.459611][T11169]  should_fail_alloc_page+0xeb/0x140
[  386.459632][T11169]  prepare_alloc_pages+0x1f0/0x5f0
[  386.459656][T11169]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  386.459685][T11169]  ? vma_set_page_prot+0xb1/0x120
[  386.459707][T11169]  ? __mmap_region+0xc85/0x2dc0
[  386.459735][T11169]  ? __pfx___mmap_region+0x10/0x10
[  386.459763][T11169]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  386.459796][T11169]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  386.459830][T11169]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  386.459855][T11169]  ? policy_nodemask+0xed/0x4f0
[  386.459875][T11169]  alloc_pages_mpol+0x1fb/0x540
[  386.459896][T11169]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  386.459921][T11169]  alloc_pages_noprof+0x1a/0x160
[  386.459943][T11169]  __pmd_alloc+0x3b/0x950
[  386.459965][T11169]  __handle_mm_fault+0xa9c/0x2a00
[  386.459993][T11169]  ? mt_find+0x45e/0x8e0
[  386.460010][T11169]  ? __pfx___handle_mm_fault+0x10/0x10
[  386.460034][T11169]  ? __pfx_mt_find+0x10/0x10
[  386.460067][T11169]  handle_mm_fault+0x36d/0xa20
[  386.460095][T11169]  __get_user_pages+0x1178/0x32a0
[  386.460124][T11169]  ? __pfx___get_user_pages+0x10/0x10
[  386.460150][T11169]  populate_vma_page_range+0x267/0x3f0
[  386.460173][T11169]  ? __pfx_populate_vma_page_range+0x10/0x10
[  386.460194][T11169]  ? __pfx_find_vma_intersection+0x10/0x10
[  386.460215][T11169]  ? do_mmap+0x93f/0x12f0
[  386.460241][T11169]  __mm_populate+0x107/0x3a0
[  386.460265][T11169]  ? __pfx___mm_populate+0x10/0x10
[  386.460288][T11169]  ? up_write+0x28c/0x4f0
[  386.460309][T11169]  vm_mmap_pgoff+0x37f/0x470
[  386.460332][T11169]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  386.460354][T11169]  ? do_futex+0x192/0x350
[  386.460372][T11169]  ? __pfx_do_futex+0x10/0x10
[  386.460395][T11169]  ksys_mmap_pgoff+0xe4/0x610
[  386.460415][T11169]  ? __x64_sys_futex+0x358/0x4d0
[  386.460433][T11169]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  386.460452][T11169]  ? xfd_validate_state+0x129/0x190
[  386.460469][T11169]  ? ksys_read+0x1ac/0x250
[  386.460489][T11169]  __x64_sys_mmap+0x125/0x190
[  386.460510][T11169]  do_syscall_64+0x10b/0xf80
[  386.460535][T11169]  ? clear_bhb_loop+0x40/0x90
[  386.460557][T11169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.460582][T11169] RIP: 0033:0x7f53f139c819
[  386.460598][T11169] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  386.460615][T11169] RSP: 002b:00007f53f223f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  386.460633][T11169] RAX: ffffffffffffffda RBX: 00007f53f1616090 RCX: 00007f53f139c819
[  386.460644][T11169] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  386.460655][T11169] RBP: 00007f53f1432c91 R08: 0000000000000002 R09: 0000000000008000
[  386.460665][T11169] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  386.460676][T11169] R13: 00007f53f1616128 R14: 00007f53f1616090 R15: 00007ffc3872a218
[  386.460699][T11169]  </TASK>
[  387.005348][T11177] netlink: zone id is out of range
[  387.010994][T11177] netlink: zone id is out of range
[  387.017410][T11177] netlink: zone id is out of range
[  387.030548][T11177] netlink: set zone limit has 8 unknown bytes
[  387.042082][T11177] netlink: zone id is out of range
[  387.047258][T11177] netlink: zone id is out of range
[  387.052543][T11177] netlink: zone id is out of range
[  387.057655][T11177] netlink: zone id is out of range
[  387.062819][T11177] netlink: zone id is out of range
[  387.067949][T11177] netlink: zone id is out of range
[  387.081905][T11178] netlink: 'syz.1.1132': attribute type 23 has an invalid length.
[  389.358351][T11221] FAULT_INJECTION: forcing a failure.
[  389.358351][T11221] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  389.448310][T11221] CPU: 0 UID: 0 PID: 11221 Comm: syz.1.1142 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  389.448342][T11221] Tainted: [L]=SOFTLOCKUP
[  389.448348][T11221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  389.448359][T11221] Call Trace:
[  389.448365][T11221]  <TASK>
[  389.448374][T11221]  dump_stack_lvl+0x100/0x190
[  389.448409][T11221]  should_fail_ex.cold+0x5/0xa
[  389.448429][T11221]  ? prepare_alloc_pages+0x16d/0x5f0
[  389.448452][T11221]  should_fail_alloc_page+0xeb/0x140
[  389.448473][T11221]  prepare_alloc_pages+0x1f0/0x5f0
[  389.448497][T11221]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  389.448525][T11221]  ? stack_trace_save+0x8e/0xc0
[  389.448548][T11221]  ? __pfx_stack_trace_save+0x10/0x10
[  389.448570][T11221]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  389.448597][T11221]  ? stack_depot_save_flags+0x27/0x9d0
[  389.448624][T11221]  ? __bfs+0x150/0x2a0
[  389.448651][T11221]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  389.448679][T11221]  ? do_user_addr_fault+0x74c/0x12f0
[  389.448699][T11221]  ? exc_page_fault+0x6f/0xd0
[  389.448724][T11221]  ? __bfs+0x150/0x2a0
[  389.448753][T11221]  ? usbdev_ioctl+0xbf5/0x3aa0
[  389.448770][T11221]  ? __x64_sys_ioctl+0x18e/0x210
[  389.448807][T11221]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  389.448834][T11221]  ? policy_nodemask+0xed/0x4f0
[  389.448855][T11221]  alloc_pages_mpol+0x1fb/0x540
[  389.448875][T11221]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  389.448894][T11221]  ? __thp_vma_allowable_orders+0x1d9/0xe90
[  389.448918][T11221]  ? do_raw_spin_lock+0x128/0x260
[  389.448940][T11221]  alloc_pages_noprof+0x1a/0x160
[  389.448963][T11221]  pte_alloc_one+0x1c/0x3d0
[  389.448987][T11221]  do_fault+0x86c/0x1750
[  389.449007][T11221]  ? __pmd_alloc+0x3fb/0x950
[  389.449029][T11221]  __handle_mm_fault+0x187d/0x2a00
[  389.449057][T11221]  ? mt_find+0x45e/0x8e0
[  389.449074][T11221]  ? __pfx___handle_mm_fault+0x10/0x10
[  389.449097][T11221]  ? __pfx_mt_find+0x10/0x10
[  389.449125][T11221]  ? find_vma+0xbf/0x140
[  389.449141][T11221]  ? __pfx_find_vma+0x10/0x10
[  389.449161][T11221]  handle_mm_fault+0x36d/0xa20
[  389.449190][T11221]  do_user_addr_fault+0x74c/0x12f0
[  389.449214][T11221]  ? trace_page_fault_kernel+0x7a/0x200
[  389.449235][T11221]  exc_page_fault+0x6f/0xd0
[  389.449262][T11221]  asm_exc_page_fault+0x26/0x30
[  389.449280][T11221] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  389.449306][T11221] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  389.449324][T11221] RSP: 0018:ffffc90003e7fa30 EFLAGS: 00050202
[  389.449339][T11221] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000108
[  389.449350][T11221] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90003e7fa98
[  389.449360][T11221] RBP: 0000000000000108 R08: 0000000000000001 R09: fffff520007cff73
[  389.449371][T11221] R10: ffffc90003e7fb9f R11: 0000000000000000 R12: 0000000000000000
[  389.449381][T11221] R13: ffffc90003e7fa98 R14: 0000000000000000 R15: ffff888055520c00
[  389.449404][T11221]  _copy_from_user+0x98/0xd0
[  389.449426][T11221]  proc_disconnect_claim+0xa6/0x390
[  389.449455][T11221]  ? rcu_is_watching+0x12/0xc0
[  389.449475][T11221]  ? __pfx_proc_disconnect_claim+0x10/0x10
[  389.449523][T11221]  ? find_held_lock+0x2b/0x80
[  389.449544][T11221]  ? tomoyo_path_number_perm+0x28f/0x580
[  389.449567][T11221]  ? tomoyo_path_number_perm+0x28f/0x580
[  389.449595][T11221]  usbdev_ioctl+0xbf5/0x3aa0
[  389.449618][T11221]  ? __pfx_usbdev_ioctl+0x10/0x10
[  389.449640][T11221]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  389.449666][T11221]  ? do_vfs_ioctl+0x226/0x13e0
[  389.449692][T11221]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  389.449723][T11221]  ? find_held_lock+0x2b/0x80
[  389.449753][T11221]  ? __fget_files+0x215/0x3d0
[  389.449769][T11221]  ? hook_file_ioctl_common+0x149/0x410
[  389.449797][T11221]  ? __fget_files+0x21f/0x3d0
[  389.449818][T11221]  ? __pfx_usbdev_ioctl+0x10/0x10
[  389.449838][T11221]  __x64_sys_ioctl+0x18e/0x210
[  389.449866][T11221]  do_syscall_64+0x10b/0xf80
[  389.449893][T11221]  ? clear_bhb_loop+0x40/0x90
[  389.449915][T11221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.449934][T11221] RIP: 0033:0x7f6682d9c819
[  389.449949][T11221] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  389.449966][T11221] RSP: 002b:00007f6683cba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  389.449982][T11221] RAX: ffffffffffffffda RBX: 00007f6683016090 RCX: 00007f6682d9c819
[  389.449993][T11221] RDX: 0000000000000000 RSI: 000000008108551b RDI: 0000000000000004
[  389.450003][T11221] RBP: 00007f6682e32c91 R08: 0000000000000000 R09: 0000000000000000
[  389.450014][T11221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  389.450024][T11221] R13: 00007f6683016128 R14: 00007f6683016090 R15: 00007ffe5880d878
[  389.450047][T11221]  </TASK>
[  390.349913][T11233] netlink: 'syz.0.1145': attribute type 23 has an invalid length.
[  390.885473][ T5839] Bluetooth: hci4: unexpected event for opcode 0x7c89
[  391.013517][T11241] netlink: 'syz.1.1147': attribute type 1 has an invalid length.
[  391.094250][ T5839] Bluetooth: hci1: unexpected event for opcode 0x7c89
[  391.574142][T11257] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1152'.
[  392.842575][ T5839] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  394.626288][T11315] FAULT_INJECTION: forcing a failure.
[  394.626288][T11315] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  394.752384][T11315] CPU: 0 UID: 0 PID: 11315 Comm: syz.0.1167 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  394.752427][T11315] Tainted: [L]=SOFTLOCKUP
[  394.752433][T11315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  394.752444][T11315] Call Trace:
[  394.752451][T11315]  <TASK>
[  394.752459][T11315]  dump_stack_lvl+0x100/0x190
[  394.752495][T11315]  should_fail_ex.cold+0x5/0xa
[  394.752515][T11315]  ? prepare_alloc_pages+0x16d/0x5f0
[  394.752538][T11315]  should_fail_alloc_page+0xeb/0x140
[  394.752560][T11315]  prepare_alloc_pages+0x1f0/0x5f0
[  394.752585][T11315]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  394.752612][T11315]  ? __dev_queue_xmit+0xa10/0x4950
[  394.752642][T11315]  ? __lock_acquire+0x4a5/0x2630
[  394.752673][T11315]  ? __pfx___dev_queue_xmit+0x10/0x10
[  394.752701][T11315]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  394.752728][T11315]  ? __local_bh_enable_ip+0x9e/0x120
[  394.752752][T11315]  ? __lock_acquire+0x4a5/0x2630
[  394.752786][T11315]  ? __lock_acquire+0x4a5/0x2630
[  394.752817][T11315]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  394.752843][T11315]  ? policy_nodemask+0xed/0x4f0
[  394.752864][T11315]  alloc_pages_mpol+0x1fb/0x540
[  394.752884][T11315]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  394.752909][T11315]  folio_alloc_mpol_noprof+0x36/0x260
[  394.752933][T11315]  shmem_alloc_folio+0x135/0x160
[  394.752957][T11315]  shmem_alloc_and_add_folio+0x371/0xd40
[  394.752990][T11315]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  394.753020][T11315]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  394.753052][T11315]  shmem_get_folio_gfp+0x6ab/0x1900
[  394.753085][T11315]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  394.753113][T11315]  ? filemap_map_pages+0x9c1/0x2140
[  394.753144][T11315]  shmem_fault+0x1f9/0xa20
[  394.753173][T11315]  ? __pfx_shmem_fault+0x10/0x10
[  394.753203][T11315]  ? __pfx_filemap_map_pages+0x10/0x10
[  394.753234][T11315]  ? find_held_lock+0x2b/0x80
[  394.753258][T11315]  __do_fault+0x10b/0x440
[  394.753276][T11315]  do_fault+0xa99/0x1750
[  394.753300][T11315]  __handle_mm_fault+0x187d/0x2a00
[  394.753329][T11315]  ? mt_find+0x45e/0x8e0
[  394.753346][T11315]  ? __pfx___handle_mm_fault+0x10/0x10
[  394.753370][T11315]  ? __pfx_mt_find+0x10/0x10
[  394.753405][T11315]  ? find_vma+0xbf/0x140
[  394.753422][T11315]  ? __pfx_find_vma+0x10/0x10
[  394.753442][T11315]  handle_mm_fault+0x36d/0xa20
[  394.753471][T11315]  do_user_addr_fault+0x74c/0x12f0
[  394.753495][T11315]  ? trace_page_fault_kernel+0x7a/0x200
[  394.753519][T11315]  exc_page_fault+0x6f/0xd0
[  394.753546][T11315]  asm_exc_page_fault+0x26/0x30
[  394.753564][T11315] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  394.753586][T11315] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  394.753603][T11315] RSP: 0018:ffffc900036e7888 EFLAGS: 00050206
[  394.753618][T11315] RAX: 0000000000000001 RBX: ffff88807bc68000 RCX: 0000000000007000
[  394.753630][T11315] RDX: 0000000000000001 RSI: 0000000000001000 RDI: ffff88807bc69000
[  394.753640][T11315] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100f78dfff
[  394.753651][T11315] R10: ffff88807bc6ffff R11: 0000000000000000 R12: ffffc900036e7c40
[  394.753661][T11315] R13: 0000000000000000 R14: 0000000000008000 R15: 0000000000000000
[  394.753683][T11315]  _copy_from_iter+0x355/0x1690
[  394.753708][T11315]  ? __pfx_tcp_leave_memory_pressure+0x10/0x10
[  394.753734][T11315]  ? sk_leave_memory_pressure+0x81/0x140
[  394.753759][T11315]  ? __pfx__copy_from_iter+0x10/0x10
[  394.753780][T11315]  ? alloc_pages_noprof+0xf9/0x160
[  394.753805][T11315]  ? __sk_mem_schedule+0xd0/0x100
[  394.753829][T11315]  tcp_sendmsg_locked+0xcab/0x4500
[  394.753869][T11315]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  394.753898][T11315]  ? do_raw_spin_lock+0x128/0x260
[  394.753917][T11315]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  394.753942][T11315]  ? __local_bh_enable_ip+0x9e/0x120
[  394.753966][T11315]  tcp_sendmsg+0x2e/0x50
[  394.753990][T11315]  ? __pfx_tcp_sendmsg+0x10/0x10
[  394.754015][T11315]  inet_sendmsg+0xb9/0x140
[  394.754041][T11315]  sock_write_iter+0x4ea/0x5a0
[  394.754063][T11315]  ? __pfx_inet_sendmsg+0x10/0x10
[  394.754088][T11315]  ? __pfx_sock_write_iter+0x10/0x10
[  394.754118][T11315]  ? bpf_lsm_file_permission+0x9/0x10
[  394.754145][T11315]  ? security_file_permission+0x76/0x210
[  394.754171][T11315]  ? rw_verify_area+0xce/0x6d0
[  394.754198][T11315]  vfs_write+0x6ac/0x1070
[  394.754215][T11315]  ? __pfx_sock_write_iter+0x10/0x10
[  394.754241][T11315]  ? __pfx_vfs_write+0x10/0x10
[  394.754255][T11315]  ? find_held_lock+0x2b/0x80
[  394.754291][T11315]  ksys_write+0x1f8/0x250
[  394.754308][T11315]  ? __pfx_ksys_write+0x10/0x10
[  394.754326][T11315]  ? rcu_is_watching+0x12/0xc0
[  394.754349][T11315]  do_syscall_64+0x10b/0xf80
[  394.754375][T11315]  ? clear_bhb_loop+0x40/0x90
[  394.754403][T11315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.754421][T11315] RIP: 0033:0x7fbf5699c819
[  394.754437][T11315] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  394.754454][T11315] RSP: 002b:00007fbf577f0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  394.754470][T11315] RAX: ffffffffffffffda RBX: 00007fbf56c15fa0 RCX: 00007fbf5699c819
[  394.754482][T11315] RDX: 0000000000400003 RSI: 0000000000000000 RDI: 0000000000000006
[  394.754493][T11315] RBP: 00007fbf56a32c91 R08: 0000000000000000 R09: 0000000000000000
[  394.754503][T11315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  394.754513][T11315] R13: 00007fbf56c16038 R14: 00007fbf56c15fa0 R15: 00007fff010989e8
[  394.754536][T11315]  </TASK>
[  396.222798][T11327] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1170'.
[  396.389664][T11327] random: crng reseeded on system resumption
[  397.137191][ T5839] Bluetooth: hci4: unexpected event for opcode 0x7c89
[  397.956899][T11375] netlink: 'syz.0.1180': attribute type 23 has an invalid length.
[  398.313826][T11380] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1182'.
[  398.776697][T11380] random: crng reseeded on system resumption
[  398.873374][T11391] net_ratelimit: 5 callbacks suppressed
[  398.873392][T11391] netlink: zone id is out of range
[  398.939193][T11391] netlink: zone id is out of range
[  398.982847][T11391] netlink: zone id is out of range
[  399.020397][T11397] netlink: zone id is out of range
[  399.092704][T11397] netlink: zone id is out of range
[  399.148323][T11397] netlink: zone id is out of range
[  399.185070][T11391] netlink: set zone limit has 8 unknown bytes
[  399.229442][T11397] netlink: zone id is out of range
[  399.263803][T11397] netlink: zone id is out of range
[  399.293505][T11397] netlink: zone id is out of range
[  399.629776][ T5839] Bluetooth: hci4: unexpected event for opcode 0x7c89
[  401.196610][T11434] netlink: 'syz.0.1196': attribute type 23 has an invalid length.
[  401.884111][T11438] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1197'.
[  402.229423][T11438] random: crng reseeded on system resumption
[  403.234909][   T30] audit: type=1804 audit(4294967327.690:10): pid=11477 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1209" name="/newroot/315/file0" dev="tmpfs" ino=1655 res=1 errno=0
[  403.303748][T11485] netlink: 'syz.3.1208': attribute type 23 has an invalid length.
[  403.354816][   T30] audit: type=1804 audit(4294967327.720:11): pid=11477 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1209" name="/newroot/315/file0" dev="tmpfs" ino=1655 res=1 errno=0
[  403.717380][T11492] FAULT_INJECTION: forcing a failure.
[  403.717380][T11492] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  403.868014][T11492] CPU: 0 UID: 0 PID: 11492 Comm: syz.0.1211 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  403.868047][T11492] Tainted: [L]=SOFTLOCKUP
[  403.868053][T11492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  403.868063][T11492] Call Trace:
[  403.868069][T11492]  <TASK>
[  403.868076][T11492]  dump_stack_lvl+0x100/0x190
[  403.868111][T11492]  should_fail_ex.cold+0x5/0xa
[  403.868131][T11492]  ? prepare_alloc_pages+0x16d/0x5f0
[  403.868154][T11492]  should_fail_alloc_page+0xeb/0x140
[  403.868176][T11492]  prepare_alloc_pages+0x1f0/0x5f0
[  403.868201][T11492]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  403.868234][T11492]  ? __lock_acquire+0x4a5/0x2630
[  403.868277][T11492]  ? __lock_acquire+0x4a5/0x2630
[  403.868305][T11492]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  403.868343][T11492]  ? find_held_lock+0x2b/0x80
[  403.868365][T11492]  ? is_bpf_text_address+0x8a/0x1a0
[  403.868389][T11492]  ? is_bpf_text_address+0x8a/0x1a0
[  403.868412][T11492]  ? bpf_ksym_find+0x124/0x1c0
[  403.868430][T11492]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  403.868455][T11492]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  403.868481][T11492]  ? policy_nodemask+0xed/0x4f0
[  403.868501][T11492]  alloc_pages_mpol+0x1fb/0x540
[  403.868521][T11492]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  403.868546][T11492]  folio_alloc_mpol_noprof+0x36/0x260
[  403.868570][T11492]  shmem_alloc_folio+0x135/0x160
[  403.868595][T11492]  shmem_alloc_and_add_folio+0x371/0xd40
[  403.868628][T11492]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  403.868658][T11492]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  403.868691][T11492]  shmem_get_folio_gfp+0x6ab/0x1900
[  403.868723][T11492]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  403.868751][T11492]  ? css_rstat_updated+0x1ce/0x5a0
[  403.868778][T11492]  ? __pfx_css_rstat_updated+0x10/0x10
[  403.868807][T11492]  shmem_fault+0x1f9/0xa20
[  403.868836][T11492]  ? __pfx_shmem_fault+0x10/0x10
[  403.868861][T11492]  ? rcu_is_watching+0x12/0xc0
[  403.868883][T11492]  ? find_held_lock+0x2b/0x80
[  403.868904][T11492]  ? rcu_read_unlock+0x17/0x60
[  403.868924][T11492]  ? rcu_read_unlock+0x17/0x60
[  403.868949][T11492]  ? __pfx_filemap_map_pages+0x10/0x10
[  403.868975][T11492]  __do_fault+0x10b/0x440
[  403.868994][T11492]  do_fault+0x2db/0x1750
[  403.869014][T11492]  ? __pmd_alloc+0x3fb/0x950
[  403.869037][T11492]  __handle_mm_fault+0x187d/0x2a00
[  403.869065][T11492]  ? mt_find+0x45e/0x8e0
[  403.869083][T11492]  ? __pfx___handle_mm_fault+0x10/0x10
[  403.869106][T11492]  ? __pfx_mt_find+0x10/0x10
[  403.869135][T11492]  ? find_vma+0xbf/0x140
[  403.869151][T11492]  ? __pfx_find_vma+0x10/0x10
[  403.869171][T11492]  handle_mm_fault+0x36d/0xa20
[  403.869200][T11492]  do_user_addr_fault+0x74c/0x12f0
[  403.869224][T11492]  ? trace_page_fault_kernel+0x7a/0x200
[  403.869246][T11492]  exc_page_fault+0x6f/0xd0
[  403.869281][T11492]  asm_exc_page_fault+0x26/0x30
[  403.869299][T11492] RIP: 0010:rep_movs_alternative+0x11/0x90
[  403.869322][T11492] Code: e9 54 9b 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f
[  403.869340][T11492] RSP: 0018:ffffc900053bfb40 EFLAGS: 00050202
[  403.869356][T11492] RAX: 0000000000000030 RBX: 0000000000000000 RCX: 0000000000000002
[  403.869367][T11492] RDX: 0000000000000001 RSI: ffff88802d409c00 RDI: 0000000000000000
[  403.869378][T11492] RBP: ffffc900053bfd80 R08: 0000000000000000 R09: ffffed1005a81380
[  403.869389][T11492] R10: ffff88802d409c01 R11: 0000000000000000 R12: 0000000000000002
[  403.869399][T11492] R13: 00007ffffffff000 R14: ffff88802d409c00 R15: 0000000000000002
[  403.869422][T11492]  _copy_to_iter+0x391/0x1720
[  403.869449][T11492]  ? __pfx__copy_to_iter+0x10/0x10
[  403.869471][T11492]  ? __pfx_proc_dou8vec_minmax+0x10/0x10
[  403.869491][T11492]  ? __kvmalloc_node_noprof+0x37b/0xa00
[  403.869518][T11492]  ? proc_sys_call_handler+0x2c7/0x5a0
[  403.869543][T11492]  proc_sys_call_handler+0x381/0x5a0
[  403.869563][T11492]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  403.869586][T11492]  ? rw_verify_area+0xce/0x6d0
[  403.869612][T11492]  ? __pfx_proc_sys_read+0x10/0x10
[  403.869631][T11492]  vfs_read+0x825/0xb30
[  403.869650][T11492]  ? __pfx_vfs_read+0x10/0x10
[  403.869680][T11492]  ksys_read+0x12a/0x250
[  403.869697][T11492]  ? __pfx_ksys_read+0x10/0x10
[  403.869715][T11492]  ? rcu_is_watching+0x12/0xc0
[  403.869738][T11492]  do_syscall_64+0x10b/0xf80
[  403.869769][T11492]  ? clear_bhb_loop+0x40/0x90
[  403.869790][T11492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.869808][T11492] RIP: 0033:0x7fbf5699c819
[  403.869824][T11492] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  403.869841][T11492] RSP: 002b:00007fbf577cf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  403.869856][T11492] RAX: ffffffffffffffda RBX: 00007fbf56c16090 RCX: 00007fbf5699c819
[  403.869868][T11492] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000004
[  403.869878][T11492] RBP: 00007fbf56a32c91 R08: 0000000000000000 R09: 0000000000000000
[  403.869888][T11492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  403.869900][T11492] R13: 00007fbf56c16128 R14: 00007fbf56c16090 R15: 00007fff010989e8
[  403.869923][T11492]  </TASK>
[  406.759286][T11513] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1212'.
[  407.106412][T11513] random: crng reseeded on system resumption
[  407.368410][T11527] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  407.871770][ T5839] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  408.045797][T11542] net_ratelimit: 20 callbacks suppressed
[  408.045815][T11542] netlink: zone id is out of range
[  408.136053][T11544] netlink: zone id is out of range
[  408.153057][T11542] netlink: zone id is out of range
[  408.170783][T11544] netlink: zone id is out of range
[  408.213238][T11544] netlink: zone id is out of range
[  408.242529][T11542] netlink: zone id is out of range
[  408.274176][T11544] netlink: zone id is out of range
[  408.318527][T11544] netlink: zone id is out of range
[  408.343165][T11552] blktrace: Concurrent blktraces are not allowed on loop2
[  408.369500][T11542] netlink: set zone limit has 8 unknown bytes
[  408.411680][T11544] netlink: zone id is out of range
[  408.559496][T11555] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1230'.
[  409.348951][T11572] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1234'.
[  409.518351][T11572] bridge0: port 4(vlan0) entered disabled state
[  409.555335][T11579] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1233'.
[  409.622735][T11583] FAULT_INJECTION: forcing a failure.
[  409.622735][T11583] name failslab, interval 1, probability 0, space 0, times 0
[  409.653673][T11572] vlan0 (unregistering): left allmulticast mode
[  409.673241][T11583] CPU: 0 UID: 0 PID: 11583 Comm: syz.1.1238 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  409.673279][T11583] Tainted: [L]=SOFTLOCKUP
[  409.673285][T11583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  409.673296][T11583] Call Trace:
[  409.673302][T11583]  <TASK>
[  409.673309][T11583]  dump_stack_lvl+0x100/0x190
[  409.673344][T11583]  should_fail_ex.cold+0x5/0xa
[  409.673368][T11583]  should_failslab+0xc2/0x120
[  409.673387][T11583]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  409.673413][T11583]  ? ptlock_alloc+0x1f/0x70
[  409.673441][T11583]  ? __pfx_filemap_map_pages+0x10/0x10
[  409.673467][T11583]  ptlock_alloc+0x1f/0x70
[  409.673491][T11583]  pte_alloc_one+0x82/0x3d0
[  409.673515][T11583]  __do_fault+0x26c/0x440
[  409.673533][T11583]  do_fault+0x2db/0x1750
[  409.673553][T11583]  ? __pmd_alloc+0x3fb/0x950
[  409.673575][T11583]  __handle_mm_fault+0x187d/0x2a00
[  409.673604][T11583]  ? mt_find+0x45e/0x8e0
[  409.673621][T11583]  ? __pfx___handle_mm_fault+0x10/0x10
[  409.673645][T11583]  ? __pfx_mt_find+0x10/0x10
[  409.673673][T11583]  ? find_vma+0xbf/0x140
[  409.673691][T11583]  ? __pfx_find_vma+0x10/0x10
[  409.673711][T11583]  handle_mm_fault+0x36d/0xa20
[  409.673740][T11583]  do_user_addr_fault+0x74c/0x12f0
[  409.673763][T11583]  ? trace_page_fault_kernel+0x7a/0x200
[  409.673785][T11583]  exc_page_fault+0x6f/0xd0
[  409.673812][T11583]  asm_exc_page_fault+0x26/0x30
[  409.673830][T11583] RIP: 0010:rep_movs_alternative+0x11/0x90
[  409.673851][T11583] Code: e9 54 9b 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f
[  409.673869][T11583] RSP: 0018:ffffc90004f27b40 EFLAGS: 00050202
[  409.673885][T11583] RAX: 0000000000000030 RBX: 0000000000000000 RCX: 0000000000000002
[  409.673895][T11583] RDX: 0000000000000001 RSI: ffff888078debc00 RDI: 0000000000000000
[  409.673906][T11583] RBP: ffffc90004f27d80 R08: 0000000000000000 R09: ffffed100f1bd780
[  409.673917][T11583] R10: ffff888078debc01 R11: 0000000000000000 R12: 0000000000000002
[  409.673927][T11583] R13: 00007ffffffff000 R14: ffff888078debc00 R15: 0000000000000002
[  409.673949][T11583]  _copy_to_iter+0x391/0x1720
[  409.673975][T11583]  ? __pfx__copy_to_iter+0x10/0x10
[  409.673996][T11583]  ? __pfx_proc_dou8vec_minmax+0x10/0x10
[  409.674017][T11583]  ? __kvmalloc_node_noprof+0x37b/0xa00
[  409.674043][T11583]  ? proc_sys_call_handler+0x2c7/0x5a0
[  409.674067][T11583]  proc_sys_call_handler+0x381/0x5a0
[  409.674087][T11583]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  409.674109][T11583]  ? rw_verify_area+0xce/0x6d0
[  409.674135][T11583]  ? __pfx_proc_sys_read+0x10/0x10
[  409.674154][T11583]  vfs_read+0x825/0xb30
[  409.674173][T11583]  ? __pfx_vfs_read+0x10/0x10
[  409.674202][T11583]  ksys_read+0x12a/0x250
[  409.674218][T11583]  ? __pfx_ksys_read+0x10/0x10
[  409.674236][T11583]  ? rcu_is_watching+0x12/0xc0
[  409.674265][T11583]  do_syscall_64+0x10b/0xf80
[  409.674290][T11583]  ? clear_bhb_loop+0x40/0x90
[  409.674311][T11583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.674329][T11583] RIP: 0033:0x7f6682d9c819
[  409.674344][T11583] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  409.674361][T11583] RSP: 002b:00007f6683cba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  409.674377][T11583] RAX: ffffffffffffffda RBX: 00007f6683016090 RCX: 00007f6682d9c819
[  409.674388][T11583] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000004
[  409.674399][T11583] RBP: 00007f6682e32c91 R08: 0000000000000000 R09: 0000000000000000
[  409.674410][T11583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  409.674421][T11583] R13: 00007f6683016128 R14: 00007f6683016090 R15: 00007ffe5880d878
[  409.674444][T11583]  </TASK>
[  409.680021][T11572] veth0_vlan (unregistering): left allmulticast mode
[  410.417821][T11579] random: crng reseeded on system resumption
[  410.611445][T11572] vlan0 (unregistering): left promiscuous mode
[  410.624514][T11572] bridge0: port 4(vlan0) entered disabled state
[  411.412874][T11598] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1243'.
[  411.479958][T11598] team_slave_0: entered allmulticast mode
[  412.084700][T11615] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1248'.
[  412.424242][T11621] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input14
[  412.475989][T11615] random: crng reseeded on system resumption
[  412.547798][T11623] device-mapper: ioctl: Unable to rename non-existent device,  to „
[  413.753962][T11650] netlink: 346 bytes leftover after parsing attributes in process `syz.3.1255'.
[  414.534646][T11662] net_ratelimit: 5 callbacks suppressed
[  414.534664][T11662] netlink: zone id is out of range
[  414.580942][T11662] netlink: zone id is out of range
[  414.597774][T11662] netlink: zone id is out of range
[  414.652445][T11663] netlink: zone id is out of range
[  414.719143][T11663] netlink: zone id is out of range
[  414.785512][T11662] netlink: set zone limit has 8 unknown bytes
[  414.819516][T11663] netlink: zone id is out of range
[  414.851234][T11663] netlink: zone id is out of range
[  414.899069][T11663] netlink: zone id is out of range
[  414.937865][T11663] netlink: zone id is out of range
[  415.328442][T11676] cifs: Unknown parameter 'T.ŸÜÛæ¨Å¼c[ŸÐê€$â��æµÈ)ü±UóÑnEó-Ê™¾l®öÚ-ºŒ	�-¾_€™¯Ôåáª5Zäoåé¢mžÐfwYÍhº*/ÿxD
lÝ©Š×ígÕkÇ�Aí³ùÏ7ÍØØ9’�ôXöa/fê_ÿAR£ˆ™�‘ÈxM	‚v¬—pÿ±$^;ôØq‡3±«£n졵-
6�©+e„k�„¾ñÇ<°kœcÔ)n.üeMÍ÷Na¨�t®ÐSMÎÆ1,™úuÍê*Ù‹1‡4M++j³ˆ×¹ç:|:/³+'Šm/úC
[  415.328442][T11676] Ö!‰÷S»—gƒ‡ŒÐ@ΪMLîÝT¾w.‡œlÉ;Õ_-:Q÷y•K¶N½ïMz>‘l*[çG˜§ÜC°ŠH‚ž¸®Fx^ÉÄ’©’Pktkëyÿøývû¼e'
[  415.372807][T11677] blktrace: Concurrent blktraces are not allowed on loop2
[  415.793898][ T5839] Bluetooth: hci2: unexpected event for opcode 0x7c89
[  419.439358][T11743] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1277'.
[  420.073120][T11743] random: crng reseeded on system resumption
[  420.420986][T11759] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  420.666003][T11764] random: crng reseeded on system resumption
[  420.705206][T11762] FAULT_INJECTION: forcing a failure.
[  420.705206][T11762] name failslab, interval 1, probability 0, space 0, times 0
[  420.775839][T11762] CPU: 0 UID: 0 PID: 11762 Comm: syz.4.1281 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  420.775873][T11762] Tainted: [L]=SOFTLOCKUP
[  420.775879][T11762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  420.775890][T11762] Call Trace:
[  420.775897][T11762]  <TASK>
[  420.775904][T11762]  dump_stack_lvl+0x100/0x190
[  420.775940][T11762]  should_fail_ex.cold+0x5/0xa
[  420.775963][T11762]  ? memcg_list_lru_alloc+0x4ec/0x740
[  420.775991][T11762]  should_failslab+0xc2/0x120
[  420.776011][T11762]  __kmalloc_noprof+0xe0/0x850
[  420.776046][T11762]  ? configfs_create+0xd9/0x370
[  420.776068][T11762]  memcg_list_lru_alloc+0x4ec/0x740
[  420.776102][T11762]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[  420.776133][T11762]  ? rcu_read_unlock+0x17/0x60
[  420.776160][T11762]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  420.776196][T11762]  __memcg_slab_post_alloc_hook+0x15d/0xdf0
[  420.776223][T11762]  ? kasan_save_track+0x14/0x30
[  420.776253][T11762]  kmem_cache_alloc_lru_noprof+0x592/0x6e0
[  420.776280][T11762]  ? alloc_inode+0x183/0x250
[  420.776310][T11762]  alloc_inode+0x183/0x250
[  420.776335][T11762]  new_inode+0x22/0x1c0
[  420.776361][T11762]  configfs_new_inode+0x24/0x4a0
[  420.776381][T11762]  configfs_create+0xd9/0x370
[  420.776401][T11762]  configfs_lookup+0x38f/0x780
[  420.776425][T11762]  lookup_open.isra.0+0x631/0x11b0
[  420.776457][T11762]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  420.776497][T11762]  ? mnt_get_write_access+0x1e9/0x2f0
[  420.776525][T11762]  path_openat+0xa98/0x31a0
[  420.776552][T11762]  ? __pfx_path_openat+0x10/0x10
[  420.776579][T11762]  do_file_open+0x20e/0x430
[  420.776600][T11762]  ? __pfx_do_file_open+0x10/0x10
[  420.776635][T11762]  ? alloc_fd+0x476/0x790
[  420.776655][T11762]  ? do_getname+0x191/0x390
[  420.776680][T11762]  do_sys_openat2+0x10d/0x1e0
[  420.776704][T11762]  ? __pfx_do_sys_openat2+0x10/0x10
[  420.776736][T11762]  __x64_sys_openat+0x12d/0x210
[  420.776761][T11762]  ? __pfx___x64_sys_openat+0x10/0x10
[  420.776784][T11762]  ? ksys_read+0x1ac/0x250
[  420.776803][T11762]  ? rcu_is_watching+0x12/0xc0
[  420.776826][T11762]  do_syscall_64+0x10b/0xf80
[  420.776852][T11762]  ? clear_bhb_loop+0x40/0x90
[  420.776874][T11762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.776893][T11762] RIP: 0033:0x7f447ab9c819
[  420.776909][T11762] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  420.776928][T11762] RSP: 002b:00007f447b9c4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  420.776946][T11762] RAX: ffffffffffffffda RBX: 00007f447ae16090 RCX: 00007f447ab9c819
[  420.776958][T11762] RDX: 0000000000189002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  420.776968][T11762] RBP: 00007f447ac32c91 R08: 0000000000000000 R09: 0000000000000000
[  420.776979][T11762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  420.776989][T11762] R13: 00007f447ae16128 R14: 00007f447ae16090 R15: 00007ffc70e48038
[  420.777012][T11762]  </TASK>
[  421.426225][T11765] hub 1-0:1.0: USB hub found
[  421.477322][T11765] hub 1-0:1.0: 1 port detected
[  422.534874][T11780] blktrace: Concurrent blktraces are not allowed on loop2
[  422.902519][T11793] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  425.499564][T11842] blktrace: Concurrent blktraces are not allowed on loop2
[  428.123799][T11868] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1306'.
[  430.502438][T11868] random: crng reseeded on system resumption
[  430.605395][T11901] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1312'.
[  430.693169][T11902] blktrace: Concurrent blktraces are not allowed on loop2
[  431.784176][T11901] random: crng reseeded on system resumption
[  433.263290][T11947] FAULT_INJECTION: forcing a failure.
[  433.263290][T11947] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  433.335282][T11947] CPU: 0 UID: 0 PID: 11947 Comm: syz.4.1322 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  433.335313][T11947] Tainted: [L]=SOFTLOCKUP
[  433.335319][T11947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  433.335329][T11947] Call Trace:
[  433.335335][T11947]  <TASK>
[  433.335343][T11947]  dump_stack_lvl+0x100/0x190
[  433.335377][T11947]  should_fail_ex.cold+0x5/0xa
[  433.335400][T11947]  _copy_to_user+0x32/0xd0
[  433.335424][T11947]  simple_read_from_buffer+0xcb/0x170
[  433.335454][T11947]  proc_fail_nth_read+0x1af/0x230
[  433.335479][T11947]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  433.335504][T11947]  ? rw_verify_area+0xce/0x6d0
[  433.335530][T11947]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  433.335553][T11947]  vfs_read+0x1e4/0xb30
[  433.335571][T11947]  ? __pfx_vfs_read+0x10/0x10
[  433.335586][T11947]  ? __fget_files+0x215/0x3d0
[  433.335608][T11947]  ? __fget_files+0x21f/0x3d0
[  433.335630][T11947]  ksys_read+0x12a/0x250
[  433.335646][T11947]  ? __pfx_ksys_read+0x10/0x10
[  433.335668][T11947]  ? rcu_is_watching+0x12/0xc0
[  433.335691][T11947]  do_syscall_64+0x10b/0xf80
[  433.335717][T11947]  ? clear_bhb_loop+0x40/0x90
[  433.335739][T11947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  433.335757][T11947] RIP: 0033:0x7f447ab5d04e
[  433.335773][T11947] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  433.335790][T11947] RSP: 002b:00007f447b9c3fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  433.335814][T11947] RAX: ffffffffffffffda RBX: 00007f447b9c46c0 RCX: 00007f447ab5d04e
[  433.335825][T11947] RDX: 000000000000000f RSI: 00007f447b9c40a0 RDI: 0000000000000006
[  433.335835][T11947] RBP: 00007f447b9c4090 R08: 0000000000000000 R09: 0000000000000000
[  433.335845][T11947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  433.335855][T11947] R13: 00007f447ae16128 R14: 00007f447ae16090 R15: 00007ffc70e48038
[  433.335884][T11947]  </TASK>
[  435.469074][T11979] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1329'.
[  435.502857][T11966] FAULT_INJECTION: forcing a failure.
[  435.502857][T11966] name fail_futex, interval 1, probability 0, space 0, times 0
[  435.563476][T11966] CPU: 0 UID: 0 PID: 11966 Comm: syz.4.1325 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  435.563507][T11966] Tainted: [L]=SOFTLOCKUP
[  435.563513][T11966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  435.563523][T11966] Call Trace:
[  435.563529][T11966]  <TASK>
[  435.563536][T11966]  dump_stack_lvl+0x100/0x190
[  435.563570][T11966]  should_fail_ex.cold+0x5/0xa
[  435.563594][T11966]  get_futex_key+0x295/0x1510
[  435.563626][T11966]  ? __pfx_get_futex_key+0x10/0x10
[  435.563653][T11966]  ? lock_acquire+0x1b1/0x370
[  435.563686][T11966]  futex_wake+0xea/0x530
[  435.563709][T11966]  ? __pfx_futex_wake+0x10/0x10
[  435.563730][T11966]  ? exit_mm_release+0x19/0x30
[  435.563760][T11966]  do_futex+0x32b/0x350
[  435.563778][T11966]  ? __pfx_do_futex+0x10/0x10
[  435.563795][T11966]  ? __might_fault+0xc5/0x140
[  435.563825][T11966]  mm_release+0x24a/0x2f0
[  435.563846][T11966]  do_exit+0x707/0x2a60
[  435.563875][T11966]  ? __pfx_do_exit+0x10/0x10
[  435.563901][T11966]  ? do_raw_spin_lock+0x128/0x260
[  435.563926][T11966]  ? find_held_lock+0x2b/0x80
[  435.563947][T11966]  ? get_signal+0x7e0/0x21e0
[  435.563970][T11966]  do_group_exit+0xd5/0x2a0
[  435.563998][T11966]  get_signal+0x1ec7/0x21e0
[  435.564027][T11966]  ? __pfx_get_signal+0x10/0x10
[  435.564049][T11966]  ? do_futex+0x192/0x350
[  435.564069][T11966]  arch_do_signal_or_restart+0x91/0x770
[  435.564096][T11966]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  435.564127][T11966]  ? __pfx___x64_sys_futex+0x10/0x10
[  435.564145][T11966]  ? rcu_is_watching+0x12/0xc0
[  435.564168][T11966]  exit_to_user_mode_loop+0x86/0x4a0
[  435.564195][T11966]  ? do_syscall_64+0x519/0xf80
[  435.564223][T11966]  do_syscall_64+0x6f2/0xf80
[  435.564247][T11966]  ? clear_bhb_loop+0x40/0x90
[  435.564269][T11966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  435.564287][T11966] RIP: 0033:0x7f447ab9c819
[  435.564302][T11966] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  435.564320][T11966] RSP: 002b:00007f447b9c40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  435.564337][T11966] RAX: fffffffffffffe00 RBX: 00007f447ae16098 RCX: 00007f447ab9c819
[  435.564349][T11966] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f447ae16098
[  435.564359][T11966] RBP: 00007f447ae16090 R08: 0000000000000000 R09: 0000000000000000
[  435.564369][T11966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  435.564379][T11966] R13: 00007f447ae16128 R14: 00007ffc70e47f50 R15: 00007ffc70e48038
[  435.564400][T11966]  </TASK>
[  436.238493][T11985] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1330'.
[  436.650986][T11985] random: crng reseeded on system resumption
[  437.854407][T12011] netlink: 'syz.4.1336': attribute type 23 has an invalid length.
[  438.385133][T12004] FAULT_INJECTION: forcing a failure.
[  438.385133][T12004] name failslab, interval 1, probability 0, space 0, times 0
[  438.721973][T12004] CPU: 0 UID: 0 PID: 12004 Comm: syz.3.1335 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  438.722005][T12004] Tainted: [L]=SOFTLOCKUP
[  438.722012][T12004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  438.722023][T12004] Call Trace:
[  438.722029][T12004]  <TASK>
[  438.722036][T12004]  dump_stack_lvl+0x100/0x190
[  438.722071][T12004]  should_fail_ex.cold+0x5/0xa
[  438.722093][T12004]  ? constrain_params_by_rules+0x175/0xcc0
[  438.722121][T12004]  should_failslab+0xc2/0x120
[  438.722139][T12004]  __kmalloc_noprof+0xe0/0x850
[  438.722164][T12004]  ? unwind_get_return_address+0x59/0xa0
[  438.722192][T12004]  constrain_params_by_rules+0x175/0xcc0
[  438.722225][T12004]  ? stack_trace_save+0x8e/0xc0
[  438.722251][T12004]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  438.722284][T12004]  ? __kasan_kmalloc+0xaa/0xb0
[  438.722309][T12004]  ? snd_pcm_oss_change_params_locked+0x81c/0x39f0
[  438.722334][T12004]  ? snd_pcm_oss_make_ready+0xeb/0x1b0
[  438.722358][T12004]  ? snd_pcm_oss_sync+0x1de/0x840
[  438.722389][T12004]  ? snd_interval_refine+0x2d0/0x580
[  438.722416][T12004]  snd_pcm_hw_refine+0x7e7/0xad0
[  438.722448][T12004]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  438.722486][T12004]  ? snd_interval_refine+0x2d0/0x580
[  438.722508][T12004]  snd_pcm_oss_change_params_locked+0xdb3/0x39f0
[  438.722544][T12004]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  438.722569][T12004]  ? __pfx___mutex_lock+0x10/0x10
[  438.722597][T12004]  ? task_work_add+0x201/0x3b0
[  438.722626][T12004]  ? __pfx_task_work_add+0x10/0x10
[  438.722667][T12004]  snd_pcm_oss_make_ready+0xeb/0x1b0
[  438.722694][T12004]  snd_pcm_oss_sync+0x1de/0x840
[  438.722722][T12004]  snd_pcm_oss_release+0x238/0x300
[  438.722747][T12004]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  438.722773][T12004]  __fput+0x3ff/0xb50
[  438.722821][T12004]  task_work_run+0x150/0x240
[  438.722840][T12004]  ? __pfx_task_work_run+0x10/0x10
[  438.722859][T12004]  ? rcu_is_watching+0x12/0xc0
[  438.722889][T12004]  exit_to_user_mode_loop+0x100/0x4a0
[  438.722917][T12004]  ? do_syscall_64+0x519/0xf80
[  438.722945][T12004]  do_syscall_64+0x6f2/0xf80
[  438.722971][T12004]  ? clear_bhb_loop+0x40/0x90
[  438.722993][T12004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.723012][T12004] RIP: 0033:0x7f53f139c819
[  438.723027][T12004] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  438.723045][T12004] RSP: 002b:00007f53f223f028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  438.723063][T12004] RAX: 0000000000000000 RBX: 00007f53f1616090 RCX: 00007f53f139c819
[  438.723074][T12004] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  438.723084][T12004] RBP: 00007f53f1432c91 R08: 0000000000000000 R09: 0000000000000000
[  438.723094][T12004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  438.723104][T12004] R13: 00007f53f1616128 R14: 00007f53f1616090 R15: 00007ffc3872a218
[  438.723127][T12004]  </TASK>
[  440.033711][T12040] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1341'.
[  440.069029][T12039] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1341'.
[  440.284225][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  440.291886][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  440.451086][T12052] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  440.832116][T12060] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1346'.
[  441.837674][T12081] zswap: compressor û not available
[  442.204285][T12096] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  443.537497][ T5839] Bluetooth: hci4: unexpected event for opcode 0x7c89
[  445.453328][T12153] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1364'.
[  445.976574][T12160] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1365'.
[  446.133633][ T5839] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  446.675699][T12170] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1367'.
[  446.951652][T12177] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1369'.
[  447.277574][T12177] random: crng reseeded on system resumption
[  447.639734][T12130] kexec: Could not allocate control_code_buffer
[  447.683922][T12184] FAULT_INJECTION: forcing a failure.
[  447.683922][T12184] name failslab, interval 1, probability 0, space 0, times 0
[  447.849946][T12184] CPU: 0 UID: 0 PID: 12184 Comm: syz.1.1371 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  447.849979][T12184] Tainted: [L]=SOFTLOCKUP
[  447.849986][T12184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  447.850004][T12184] Call Trace:
[  447.850010][T12184]  <TASK>
[  447.850018][T12184]  dump_stack_lvl+0x100/0x190
[  447.850054][T12184]  should_fail_ex.cold+0x5/0xa
[  447.850078][T12184]  should_failslab+0xc2/0x120
[  447.850097][T12184]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  447.850125][T12184]  ? __d_alloc+0x34/0xa80
[  447.850149][T12184]  __d_alloc+0x34/0xa80
[  447.850171][T12184]  d_alloc_pseudo+0x1c/0xc0
[  447.850197][T12184]  alloc_file_pseudo+0xcf/0x230
[  447.850225][T12184]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  447.850256][T12184]  __shmem_file_setup+0x205/0x460
[  447.850280][T12184]  ? __pfx___shmem_file_setup+0x10/0x10
[  447.850306][T12184]  ? vm_area_alloc+0x1f/0x160
[  447.850341][T12184]  shmem_zero_setup+0x96/0x1b0
[  447.850372][T12184]  __mmap_region+0x2590/0x2dc0
[  447.850404][T12184]  ? __pfx___mmap_region+0x10/0x10
[  447.850444][T12184]  ? find_held_lock+0x2b/0x80
[  447.850466][T12184]  ? debug_object_activate+0x331/0x490
[  447.850486][T12184]  ? debug_object_activate+0x331/0x490
[  447.850507][T12184]  ? do_raw_spin_unlock+0x145/0x1e0
[  447.850528][T12184]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  447.850562][T12184]  ? find_held_lock+0x2b/0x80
[  447.850595][T12184]  ? rcu_is_watching+0x12/0xc0
[  447.850615][T12184]  ? finish_task_switch.isra.0+0x2cb/0x1010
[  447.850638][T12184]  ? lockdep_hardirqs_on+0x78/0x100
[  447.850707][T12184]  mmap_region+0x35d/0x620
[  447.850734][T12184]  ? rcu_is_watching+0x12/0xc0
[  447.850754][T12184]  ? __pfx_mmap_region+0x10/0x10
[  447.850785][T12184]  ? cap_mmap_addr+0x4b/0x120
[  447.850803][T12184]  ? bpf_lsm_mmap_addr+0x9/0x30
[  447.850819][T12184]  ? security_mmap_addr+0x71/0x1e0
[  447.850844][T12184]  ? __get_unmapped_area+0x255/0x3e0
[  447.850867][T12184]  do_mmap+0xc63/0x12f0
[  447.850892][T12184]  ? __pfx_do_mmap+0x10/0x10
[  447.850912][T12184]  ? __pfx_down_write_killable+0x10/0x10
[  447.850935][T12184]  vm_mmap_pgoff+0x29e/0x470
[  447.850960][T12184]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  447.850982][T12184]  ? do_futex+0x192/0x350
[  447.851001][T12184]  ? __pfx_do_futex+0x10/0x10
[  447.851019][T12184]  ? fd_install+0x223/0x580
[  447.851038][T12184]  ksys_mmap_pgoff+0xe4/0x610
[  447.851057][T12184]  ? __x64_sys_futex+0x358/0x4d0
[  447.851076][T12184]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  447.851095][T12184]  ? xfd_validate_state+0x129/0x190
[  447.851117][T12184]  __x64_sys_mmap+0x125/0x190
[  447.851138][T12184]  do_syscall_64+0x10b/0xf80
[  447.851163][T12184]  ? clear_bhb_loop+0x40/0x90
[  447.851185][T12184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  447.851203][T12184] RIP: 0033:0x7f6682d9c819
[  447.851220][T12184] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  447.851237][T12184] RSP: 002b:00007f6683cba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  447.851255][T12184] RAX: ffffffffffffffda RBX: 00007f6683016090 RCX: 00007f6682d9c819
[  447.851267][T12184] RDX: 0000000000000003 RSI: 000000000002000d RDI: 0000000000000000
[  447.851277][T12184] RBP: 00007f6682e32c91 R08: 0000000000000404 R09: 0000100010008000
[  447.851288][T12184] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  447.851298][T12184] R13: 00007f6683016128 R14: 00007f6683016090 R15: 00007ffe5880d878
[  447.851321][T12184]  </TASK>
[  449.072883][T12198] netlink: 'syz.0.1373': attribute type 23 has an invalid length.
[  452.677721][T12244] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1384'.
[  453.258490][T12244] random: crng reseeded on system resumption
[  453.412328][T12254] FAULT_INJECTION: forcing a failure.
[  453.412328][T12254] name fail_futex, interval 1, probability 0, space 0, times 0
[  453.577544][T12254] CPU: 0 UID: 0 PID: 12254 Comm: syz.0.1386 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  453.577576][T12254] Tainted: [L]=SOFTLOCKUP
[  453.577583][T12254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  453.577599][T12254] Call Trace:
[  453.577605][T12254]  <TASK>
[  453.577612][T12254]  dump_stack_lvl+0x100/0x190
[  453.577647][T12254]  should_fail_ex.cold+0x5/0xa
[  453.577670][T12254]  get_futex_key+0x1d2/0x1510
[  453.577710][T12254]  ? __pfx_get_futex_key+0x10/0x10
[  453.577745][T12254]  futex_wake+0xea/0x530
[  453.577769][T12254]  ? __pfx_futex_wake+0x10/0x10
[  453.577794][T12254]  ? errseq_sample+0x51/0x70
[  453.577815][T12254]  ? file_init_path+0x48e/0x670
[  453.577842][T12254]  do_futex+0x32b/0x350
[  453.577860][T12254]  ? __pfx_do_futex+0x10/0x10
[  453.577878][T12254]  ? fd_install+0x223/0x580
[  453.577899][T12254]  __x64_sys_futex+0x34f/0x4d0
[  453.577918][T12254]  ? __sys_socket+0xac/0x260
[  453.577943][T12254]  ? __pfx___x64_sys_futex+0x10/0x10
[  453.577965][T12254]  ? rcu_is_watching+0x12/0xc0
[  453.577988][T12254]  do_syscall_64+0x10b/0xf80
[  453.578014][T12254]  ? clear_bhb_loop+0x40/0x90
[  453.578036][T12254]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.578055][T12254] RIP: 0033:0x7fbf5699c819
[  453.578071][T12254] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  453.578089][T12254] RSP: 002b:00007fbf577cf0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  453.578107][T12254] RAX: ffffffffffffffda RBX: 00007fbf56c16098 RCX: 00007fbf5699c819
[  453.578118][T12254] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbf56c1609c
[  453.578129][T12254] RBP: 00007fbf56c16090 R08: 0000000000000001 R09: 0000000000000000
[  453.578139][T12254] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  453.578149][T12254] R13: 00007fbf56c16128 R14: 00007fff01098900 R15: 00007fff010989e8
[  453.578171][T12254]  </TASK>
[  454.841616][ T5839] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  455.939672][T12281] FAULT_INJECTION: forcing a failure.
[  455.939672][T12281] name failslab, interval 1, probability 0, space 0, times 0
[  456.017559][T12281] CPU: 0 UID: 0 PID: 12281 Comm: syz.4.1393 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  456.017591][T12281] Tainted: [L]=SOFTLOCKUP
[  456.017598][T12281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  456.017617][T12281] Call Trace:
[  456.017623][T12281]  <TASK>
[  456.017630][T12281]  dump_stack_lvl+0x100/0x190
[  456.017670][T12281]  should_fail_ex.cold+0x5/0xa
[  456.017694][T12281]  should_failslab+0xc2/0x120
[  456.017714][T12281]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  456.017739][T12281]  ? copy_net_ns+0xe8/0x7c0
[  456.017764][T12281]  copy_net_ns+0xe8/0x7c0
[  456.017784][T12281]  ? copy_cgroup_ns+0x71/0x970
[  456.017814][T12281]  create_new_namespaces+0x3ea/0xac0
[  456.017842][T12281]  unshare_nsproxy_namespaces+0xf2/0x220
[  456.017866][T12281]  ksys_unshare+0x438/0xab0
[  456.017893][T12281]  ? __pfx_ksys_unshare+0x10/0x10
[  456.017917][T12281]  ? xfd_validate_state+0x129/0x190
[  456.017942][T12281]  __x64_sys_unshare+0x31/0x40
[  456.017967][T12281]  do_syscall_64+0x10b/0xf80
[  456.017993][T12281]  ? clear_bhb_loop+0x40/0x90
[  456.018014][T12281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.018032][T12281] RIP: 0033:0x7f447ab9c819
[  456.018048][T12281] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  456.018065][T12281] RSP: 002b:00007f447b9e5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  456.018084][T12281] RAX: ffffffffffffffda RBX: 00007f447ae15fa0 RCX: 00007f447ab9c819
[  456.018095][T12281] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  456.018106][T12281] RBP: 00007f447ac32c91 R08: 0000000000000000 R09: 0000000000000000
[  456.018116][T12281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  456.018127][T12281] R13: 00007f447ae16038 R14: 00007f447ae15fa0 R15: 00007ffc70e48038
[  456.018150][T12281]  </TASK>
[  456.777950][T12302] netlink: 'syz.3.1395': attribute type 23 has an invalid length.
[  456.849127][T12305] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1396'.
[  457.290872][ T5839] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  457.549555][T12305] random: crng reseeded on system resumption
[  460.111654][T12363] netlink: 'syz.1.1410': attribute type 23 has an invalid length.
[  460.669290][T12371] FAULT_INJECTION: forcing a failure.
[  460.669290][T12371] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  460.851496][T12371] CPU: 0 UID: 0 PID: 12371 Comm: syz.3.1412 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  460.851527][T12371] Tainted: [L]=SOFTLOCKUP
[  460.851534][T12371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  460.851544][T12371] Call Trace:
[  460.851550][T12371]  <TASK>
[  460.851557][T12371]  dump_stack_lvl+0x100/0x190
[  460.851590][T12371]  should_fail_ex.cold+0x5/0xa
[  460.851619][T12371]  _copy_from_user+0x2e/0xd0
[  460.851641][T12371]  __x64_sys_signalfd+0xfc/0x1a0
[  460.851665][T12371]  ? __pfx___x64_sys_signalfd+0x10/0x10
[  460.851687][T12371]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  460.851714][T12371]  ? syscall_user_dispatch+0x76/0x130
[  460.851735][T12371]  do_syscall_64+0x10b/0xf80
[  460.851761][T12371]  ? clear_bhb_loop+0x40/0x90
[  460.851782][T12371]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.851800][T12371] RIP: 0033:0x7f53f139c819
[  460.851815][T12371] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  460.851833][T12371] RSP: 002b:00007f53f223f028 EFLAGS: 00000246 ORIG_RAX: 000000000000011a
[  460.851850][T12371] RAX: ffffffffffffffda RBX: 00007f53f1616090 RCX: 00007f53f139c819
[  460.851861][T12371] RDX: 0000000000000008 RSI: 0000000000000000 RDI: ffffffffffffffff
[  460.851871][T12371] RBP: 00007f53f223f090 R08: 0000000000000000 R09: 0000000000000000
[  460.851881][T12371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  460.851891][T12371] R13: 00007f53f1616128 R14: 00007f53f1616090 R15: 00007ffc3872a218
[  460.851912][T12371]  </TASK>
[  461.503341][T12384] netlink: 'syz.0.1414': attribute type 23 has an invalid length.
[  462.571740][T12403] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1419'.
[  463.132493][T12403] random: crng reseeded on system resumption
[  463.750967][T12419] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1423'.
[  463.793877][T12419] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1423'.
[  464.561394][T12419] binder: 12417:12419 ioctl c018620c 200000000300 returned -22
[  465.085839][T12445] zram: Removed device: zram0
[  466.059925][T12459] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1432'.
[  466.878747][T12457] random: crng reseeded on system resumption
[  467.266591][T12469] usb usb37: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  467.340639][T12473] NFSD: Failed to start, no listeners configured.
[  467.392032][T12469] vhci_hcd vhci_hcd.2: invalid port number 111
[  467.503690][T12469] vhci_hcd vhci_hcd.2: invalid port number 111
[  467.832503][T12486] FAULT_INJECTION: forcing a failure.
[  467.832503][T12486] name failslab, interval 1, probability 0, space 0, times 0
[  467.973144][T12486] CPU: 0 UID: 0 PID: 12486 Comm: syz.0.1437 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  467.973175][T12486] Tainted: [L]=SOFTLOCKUP
[  467.973182][T12486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  467.973192][T12486] Call Trace:
[  467.973199][T12486]  <TASK>
[  467.973206][T12486]  dump_stack_lvl+0x100/0x190
[  467.973240][T12486]  should_fail_ex.cold+0x5/0xa
[  467.973263][T12486]  should_failslab+0xc2/0x120
[  467.973282][T12486]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  467.973309][T12486]  ? __d_alloc+0x34/0xa80
[  467.973334][T12486]  __d_alloc+0x34/0xa80
[  467.973356][T12486]  d_alloc_pseudo+0x1c/0xc0
[  467.973381][T12486]  alloc_file_pseudo+0xcf/0x230
[  467.973405][T12486]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  467.973427][T12486]  ? alloc_fd+0x476/0x790
[  467.973446][T12486]  ? do_raw_spin_unlock+0x145/0x1e0
[  467.973468][T12486]  __anon_inode_getfile+0xe8/0x280
[  467.973494][T12486]  anon_inode_getfile_fmode+0x37/0xa0
[  467.973519][T12486]  do_signalfd4+0x1ed/0x480
[  467.973545][T12486]  __x64_sys_signalfd+0x120/0x1a0
[  467.973569][T12486]  ? __pfx___x64_sys_signalfd+0x10/0x10
[  467.973592][T12486]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  467.973618][T12486]  ? syscall_user_dispatch+0x76/0x130
[  467.973640][T12486]  do_syscall_64+0x10b/0xf80
[  467.973666][T12486]  ? clear_bhb_loop+0x40/0x90
[  467.973688][T12486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.973706][T12486] RIP: 0033:0x7fbf5699c819
[  467.973721][T12486] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  467.973739][T12486] RSP: 002b:00007fbf577cf028 EFLAGS: 00000246 ORIG_RAX: 000000000000011a
[  467.973756][T12486] RAX: ffffffffffffffda RBX: 00007fbf56c16090 RCX: 00007fbf5699c819
[  467.973768][T12486] RDX: 0000000000000008 RSI: 0000000000000000 RDI: ffffffffffffffff
[  467.973778][T12486] RBP: 00007fbf577cf090 R08: 0000000000000000 R09: 0000000000000000
[  467.973795][T12486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  467.973805][T12486] R13: 00007fbf56c16128 R14: 00007fbf56c16090 R15: 00007fff010989e8
[  467.973826][T12486]  </TASK>
[  468.923763][T12495] random: crng reseeded on system resumption
[  469.713200][T12496] hub 1-0:1.0: USB hub found
[  469.814511][T12496] hub 1-0:1.0: 1 port detected
[  469.863074][T12509] netlink: 'syz.1.1442': attribute type 23 has an invalid length.
[  470.065663][T12514] blktrace: Concurrent blktraces are not allowed on loop2
[  470.974448][T12526] FAULT_INJECTION: forcing a failure.
[  470.974448][T12526] name failslab, interval 1, probability 0, space 0, times 0
[  471.017723][T12528] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1447'.
[  471.156907][T12526] CPU: 0 UID: 0 PID: 12526 Comm: syz.4.1446 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  471.156939][T12526] Tainted: [L]=SOFTLOCKUP
[  471.156945][T12526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  471.156955][T12526] Call Trace:
[  471.156961][T12526]  <TASK>
[  471.156968][T12526]  dump_stack_lvl+0x100/0x190
[  471.157003][T12526]  should_fail_ex.cold+0x5/0xa
[  471.157025][T12526]  should_failslab+0xc2/0x120
[  471.157044][T12526]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  471.157070][T12526]  ? alloc_empty_file+0x5b/0x1c0
[  471.157096][T12526]  alloc_empty_file+0x5b/0x1c0
[  471.157119][T12526]  alloc_file_pseudo+0x13a/0x230
[  471.157143][T12526]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  471.157165][T12526]  ? alloc_fd+0x476/0x790
[  471.157183][T12526]  ? do_raw_spin_unlock+0x145/0x1e0
[  471.157205][T12526]  __anon_inode_getfile+0xe8/0x280
[  471.157231][T12526]  anon_inode_getfile_fmode+0x37/0xa0
[  471.157255][T12526]  do_signalfd4+0x1ed/0x480
[  471.157280][T12526]  __x64_sys_signalfd+0x120/0x1a0
[  471.157303][T12526]  ? __pfx___x64_sys_signalfd+0x10/0x10
[  471.157325][T12526]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  471.157352][T12526]  ? syscall_user_dispatch+0x76/0x130
[  471.157373][T12526]  do_syscall_64+0x10b/0xf80
[  471.157399][T12526]  ? clear_bhb_loop+0x40/0x90
[  471.157420][T12526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  471.157438][T12526] RIP: 0033:0x7f447ab9c819
[  471.157453][T12526] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  471.157470][T12526] RSP: 002b:00007f447b9c4028 EFLAGS: 00000246 ORIG_RAX: 000000000000011a
[  471.157496][T12526] RAX: ffffffffffffffda RBX: 00007f447ae16090 RCX: 00007f447ab9c819
[  471.157507][T12526] RDX: 0000000000000008 RSI: 0000000000000000 RDI: ffffffffffffffff
[  471.157517][T12526] RBP: 00007f447b9c4090 R08: 0000000000000000 R09: 0000000000000000
[  471.157527][T12526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  471.157537][T12526] R13: 00007f447ae16128 R14: 00007f447ae16090 R15: 00007ffc70e48038
[  471.157558][T12526]  </TASK>
[  472.107319][T12536] netlink: 'syz.1.1449': attribute type 23 has an invalid length.
[  474.459589][T12563] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1455'.
[  475.267663][T12580] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1459'.
[  475.905977][T12592] netlink: 'syz.3.1461': attribute type 23 has an invalid length.
[  476.765292][T12601] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  478.138371][T12625] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1467'.
[  478.196067][T12625] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1467'.
[  478.999639][ T5839] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  479.527925][T12648] netlink: 'syz.1.1471': attribute type 23 has an invalid length.
[  481.138880][T12664] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  481.469187][T12669] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1475'.
[  481.651704][T12674] FAULT_INJECTION: forcing a failure.
[  481.651704][T12674] name failslab, interval 1, probability 0, space 0, times 0
[  481.726968][T12674] CPU: 0 UID: 0 PID: 12674 Comm: syz.3.1476 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  481.726998][T12674] Tainted: [L]=SOFTLOCKUP
[  481.727004][T12674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  481.727015][T12674] Call Trace:
[  481.727021][T12674]  <TASK>
[  481.727029][T12674]  dump_stack_lvl+0x100/0x190
[  481.727065][T12674]  should_fail_ex.cold+0x5/0xa
[  481.727087][T12674]  should_failslab+0xc2/0x120
[  481.727107][T12674]  __kvmalloc_node_noprof+0xfa/0xa00
[  481.727136][T12674]  ? bucket_table_alloc.isra.0+0x88/0x460
[  481.727161][T12674]  bucket_table_alloc.isra.0+0x88/0x460
[  481.727182][T12674]  rhashtable_init_noprof+0x43b/0x7d0
[  481.727200][T12674]  ? kasan_save_track+0x14/0x30
[  481.727229][T12674]  ? __pfx_seg6_net_init+0x10/0x10
[  481.727246][T12674]  seg6_net_init+0x109/0x1c0
[  481.727264][T12674]  ops_init+0x1e2/0x5f0
[  481.727291][T12674]  setup_net+0x118/0x3a0
[  481.727310][T12674]  ? __pfx_setup_net+0x10/0x10
[  481.727330][T12674]  ? mutex_init_lockdep+0xf1/0x120
[  481.727352][T12674]  copy_net_ns+0x46f/0x7c0
[  481.727376][T12674]  create_new_namespaces+0x3ea/0xac0
[  481.727404][T12674]  unshare_nsproxy_namespaces+0xf2/0x220
[  481.727429][T12674]  ksys_unshare+0x438/0xab0
[  481.727456][T12674]  ? __pfx_ksys_unshare+0x10/0x10
[  481.727481][T12674]  ? xfd_validate_state+0x129/0x190
[  481.727507][T12674]  __x64_sys_unshare+0x31/0x40
[  481.727532][T12674]  do_syscall_64+0x10b/0xf80
[  481.727559][T12674]  ? clear_bhb_loop+0x40/0x90
[  481.727581][T12674]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.727607][T12674] RIP: 0033:0x7f53f139c819
[  481.727623][T12674] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  481.727641][T12674] RSP: 002b:00007f53f2260028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  481.727660][T12674] RAX: ffffffffffffffda RBX: 00007f53f1615fa0 RCX: 00007f53f139c819
[  481.727672][T12674] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  481.727683][T12674] RBP: 00007f53f1432c91 R08: 0000000000000000 R09: 0000000000000000
[  481.727694][T12674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  481.727704][T12674] R13: 00007f53f1616038 R14: 00007f53f1615fa0 R15: 00007ffc3872a218
[  481.727727][T12674]  </TASK>
[  482.018382][T12668] random: crng reseeded on system resumption
[  482.039401][T12675] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1476'.
[  482.643499][T12695] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1482'.
[  482.689516][T12697] blktrace: Concurrent blktraces are not allowed on loop2
[  482.766305][T12698] netlink: 'syz.0.1481': attribute type 23 has an invalid length.
[  483.139967][T12705] blktrace: Concurrent blktraces are not allowed on loop2
[  483.439361][T12693] random: crng reseeded on system resumption
[  483.656838][T12695] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1482'.
[  484.614939][T12708] Process accounting resumed
[  485.481245][T12737] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1491'.
[  485.537086][T12737] hsr_slave_0: left promiscuous mode
[  485.558033][T12737] hsr_slave_1: left promiscuous mode
[  487.337082][T12773] blktrace: Concurrent blktraces are not allowed on loop2
[  488.039489][T12780] netlink: 'syz.4.1500': attribute type 1 has an invalid length.
[  488.597986][T12797] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1503'.
[  488.676762][T12800] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  489.249484][T12794] random: crng reseeded on system resumption
[  489.510496][T12797] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1503'.
[  491.016006][T12826] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1510'.
[  491.337595][T12832] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1509'.
[  491.607286][T12826] random: crng reseeded on system resumption
[  491.796576][T12826] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1510'.
[  491.898725][T12838] sg_write: data in/out 262364/16 bytes for SCSI command 0x61-- guessing data in;
[  491.898725][T12838]    program syz.3.1512 not setting count and/or reply_len properly
[  491.933549][T12832] random: crng reseeded on system resumption
[  492.097348][T12832] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1509'.
[  494.884433][T12895] netlink: 'syz.3.1523': attribute type 23 has an invalid length.
[  495.185536][T12902] netlink: 'syz.0.1525': attribute type 23 has an invalid length.
[  495.385703][T12873] futex_wake_op: syz.1.1520 tries to shift op by -2048; fix this program
[  497.377457][T12946] FAULT_INJECTION: forcing a failure.
[  497.377457][T12946] name failslab, interval 1, probability 0, space 0, times 0
[  497.392817][T12948] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  497.436303][T12946] CPU: 0 UID: 0 PID: 12946 Comm: syz.3.1534 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  497.436336][T12946] Tainted: [L]=SOFTLOCKUP
[  497.436343][T12946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  497.436353][T12946] Call Trace:
[  497.436360][T12946]  <TASK>
[  497.436368][T12946]  dump_stack_lvl+0x100/0x190
[  497.436403][T12946]  should_fail_ex.cold+0x5/0xa
[  497.436426][T12946]  should_failslab+0xc2/0x120
[  497.436446][T12946]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  497.436472][T12946]  ? ptlock_alloc+0x1f/0x70
[  497.436496][T12946]  ? do_raw_spin_lock+0x128/0x260
[  497.436518][T12946]  ptlock_alloc+0x1f/0x70
[  497.436541][T12946]  pte_alloc_one+0x82/0x3d0
[  497.436566][T12946]  do_fault+0x86c/0x1750
[  497.436586][T12946]  ? __pmd_alloc+0x3fb/0x950
[  497.436608][T12946]  __handle_mm_fault+0x187d/0x2a00
[  497.436636][T12946]  ? mt_find+0x45e/0x8e0
[  497.436654][T12946]  ? __pfx___handle_mm_fault+0x10/0x10
[  497.436677][T12946]  ? __pfx_mt_find+0x10/0x10
[  497.436704][T12946]  ? find_vma+0xbf/0x140
[  497.436721][T12946]  ? __pfx_find_vma+0x10/0x10
[  497.436741][T12946]  handle_mm_fault+0x36d/0xa20
[  497.436770][T12946]  do_user_addr_fault+0x74c/0x12f0
[  497.436793][T12946]  ? trace_page_fault_kernel+0x7a/0x200
[  497.436815][T12946]  exc_page_fault+0x6f/0xd0
[  497.436842][T12946]  asm_exc_page_fault+0x26/0x30
[  497.436859][T12946] RIP: 0010:rep_movs_alternative+0x30/0x90
[  497.436881][T12946] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  497.436899][T12946] RSP: 0018:ffffc900033e7e38 EFLAGS: 00050202
[  497.436914][T12946] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 000000000000000c
[  497.436924][T12946] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc900033e7e90
[  497.436934][T12946] RBP: 000000000000000c R08: 0000000000000001 R09: fffff5200067cfd3
[  497.436944][T12946] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  497.436954][T12946] R13: ffffc900033e7e90 R14: 0000000000000001 R15: 0000000000000005
[  497.436975][T12946]  _copy_from_user+0x98/0xd0
[  497.436998][T12946]  __x64_sys_epoll_ctl+0x131/0x1e0
[  497.437025][T12946]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  497.437049][T12946]  ? rcu_is_watching+0x12/0xc0
[  497.437072][T12946]  do_syscall_64+0x10b/0xf80
[  497.437098][T12946]  ? clear_bhb_loop+0x40/0x90
[  497.437127][T12946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  497.437146][T12946] RIP: 0033:0x7f53f139c819
[  497.437161][T12946] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  497.437178][T12946] RSP: 002b:00007f53f2260028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  497.437194][T12946] RAX: ffffffffffffffda RBX: 00007f53f1615fa0 RCX: 00007f53f139c819
[  497.437206][T12946] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000005
[  497.437216][T12946] RBP: 00007f53f1432c91 R08: 0000000000000000 R09: 0000000000000000
[  497.437226][T12946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  497.437237][T12946] R13: 00007f53f1616038 R14: 00007f53f1615fa0 R15: 00007ffc3872a218
[  497.437260][T12946]  </TASK>
[  497.439357][ T5839] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  498.904657][T12977] ptp ptp0: new virtual clock ptp1
[  498.927519][T12977] ptp ptp0: guarantee physical clock free running
[  499.130738][T12983] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1544'.
[  499.750938][T12983] random: crng reseeded on system resumption
[  500.577231][T13008] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1551'.
[  501.219952][T13008] random: crng reseeded on system resumption
[  501.456900][T13009] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1551'.
[  501.655547][T13025] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1555'.
[  501.724819][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  501.734636][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  501.844973][T13029] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1556'.
[  502.348159][T13024] random: crng reseeded on system resumption
[  503.098058][ T5839] Bluetooth: hci4: unexpected event for opcode 0x7c89
[  503.168887][T13055] FAULT_INJECTION: forcing a failure.
[  503.168887][T13055] name failslab, interval 1, probability 0, space 0, times 0
[  503.273259][T13055] CPU: 0 UID: 0 PID: 13055 Comm: syz.1.1571 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  503.273291][T13055] Tainted: [L]=SOFTLOCKUP
[  503.273297][T13055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  503.273307][T13055] Call Trace:
[  503.273313][T13055]  <TASK>
[  503.273320][T13055]  dump_stack_lvl+0x100/0x190
[  503.273356][T13055]  should_fail_ex.cold+0x5/0xa
[  503.273380][T13055]  should_failslab+0xc2/0x120
[  503.273399][T13055]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  503.273427][T13055]  ? alloc_empty_file+0x5b/0x1c0
[  503.273449][T13055]  ? __pfx_stack_trace_save+0x10/0x10
[  503.273476][T13055]  alloc_empty_file+0x5b/0x1c0
[  503.273499][T13055]  path_openat+0xe8/0x31a0
[  503.273516][T13055]  ? kasan_save_stack+0x3f/0x50
[  503.273543][T13055]  ? kasan_save_stack+0x30/0x50
[  503.273570][T13055]  ? kasan_save_track+0x14/0x30
[  503.273596][T13055]  ? __kasan_slab_alloc+0x89/0x90
[  503.273612][T13055]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  503.273637][T13055]  ? do_getname+0x35/0x390
[  503.273658][T13055]  ? do_sys_openat2+0xc5/0x1e0
[  503.273681][T13055]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  503.273702][T13055]  ? __pfx_path_openat+0x10/0x10
[  503.273728][T13055]  do_file_open+0x20e/0x430
[  503.273749][T13055]  ? __pfx_do_file_open+0x10/0x10
[  503.273789][T13055]  ? alloc_fd+0x476/0x790
[  503.273808][T13055]  ? do_getname+0x191/0x390
[  503.273833][T13055]  do_sys_openat2+0x10d/0x1e0
[  503.273856][T13055]  ? __pfx_do_sys_openat2+0x10/0x10
[  503.273888][T13055]  __x64_sys_openat+0x12d/0x210
[  503.273913][T13055]  ? __pfx___x64_sys_openat+0x10/0x10
[  503.273936][T13055]  ? ksys_read+0x1ac/0x250
[  503.273955][T13055]  ? rcu_is_watching+0x12/0xc0
[  503.273978][T13055]  do_syscall_64+0x10b/0xf80
[  503.274005][T13055]  ? clear_bhb_loop+0x40/0x90
[  503.274026][T13055]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  503.274051][T13055] RIP: 0033:0x7f6682d9c819
[  503.274068][T13055] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  503.274085][T13055] RSP: 002b:00007f6683cba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  503.274104][T13055] RAX: ffffffffffffffda RBX: 00007f6683016090 RCX: 00007f6682d9c819
[  503.274115][T13055] RDX: 0000000000189002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  503.274127][T13055] RBP: 00007f6682e32c91 R08: 0000000000000000 R09: 0000000000000000
[  503.274138][T13055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  503.274149][T13055] R13: 00007f6683016128 R14: 00007f6683016090 R15: 00007ffe5880d878
[  503.274172][T13055]  </TASK>
[  503.632702][T13066] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1565'.
[  503.827201][T13066] bridge0: port 3(vlan0) entered disabled state
[  503.943355][T13066] vlan0 (unregistering): left allmulticast mode
[  503.975191][T13066] veth0_vlan (unregistering): left allmulticast mode
[  504.015140][T13066] vlan0 (unregistering): left promiscuous mode
[  504.047755][T13066] bridge0: port 3(vlan0) entered disabled state
[  505.161042][T13095] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1573'.
[  505.849437][T13093] random: crng reseeded on system resumption
[  505.998408][T13114] FAULT_INJECTION: forcing a failure.
[  505.998408][T13114] name failslab, interval 1, probability 0, space 0, times 0
[  506.078116][T13114] CPU: 0 UID: 0 PID: 13114 Comm: syz.1.1584 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  506.078148][T13114] Tainted: [L]=SOFTLOCKUP
[  506.078155][T13114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  506.078165][T13114] Call Trace:
[  506.078172][T13114]  <TASK>
[  506.078179][T13114]  dump_stack_lvl+0x100/0x190
[  506.078215][T13114]  should_fail_ex.cold+0x5/0xa
[  506.078239][T13114]  should_failslab+0xc2/0x120
[  506.078259][T13114]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  506.078286][T13114]  ? do_timer_create+0x209/0x1480
[  506.078310][T13114]  do_timer_create+0x209/0x1480
[  506.078332][T13114]  ? do_futex+0x192/0x350
[  506.078349][T13114]  ? __pfx_do_timer_create+0x10/0x10
[  506.078368][T13114]  ? __pfx_do_futex+0x10/0x10
[  506.078387][T13114]  ? find_held_lock+0x2b/0x80
[  506.078413][T13114]  __x64_sys_timer_create+0x199/0x1d0
[  506.078434][T13114]  ? __pfx___x64_sys_timer_create+0x10/0x10
[  506.078455][T13114]  ? xfd_validate_state+0x129/0x190
[  506.078476][T13114]  ? rcu_is_watching+0x12/0xc0
[  506.078499][T13114]  do_syscall_64+0x10b/0xf80
[  506.078526][T13114]  ? clear_bhb_loop+0x40/0x90
[  506.078547][T13114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  506.078566][T13114] RIP: 0033:0x7f6682d9c819
[  506.078586][T13114] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  506.078604][T13114] RSP: 002b:00007f6683cdb028 EFLAGS: 00000246 ORIG_RAX: 00000000000000de
[  506.078622][T13114] RAX: ffffffffffffffda RBX: 00007f6683015fa0 RCX: 00007f6682d9c819
[  506.078633][T13114] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  506.078643][T13114] RBP: 00007f6682e32c91 R08: 0000000000000000 R09: 0000000000000000
[  506.078654][T13114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  506.078664][T13114] R13: 00007f6683016038 R14: 00007f6683015fa0 R15: 00007ffe5880d878
[  506.078687][T13114]  </TASK>
[  507.456749][T13139] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  507.726309][T13143] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1583'.
[  507.877228][T13147] netlink: 'syz.1.1586': attribute type 16 has an invalid length.
[  507.908013][T13147] netlink: 306 bytes leftover after parsing attributes in process `syz.1.1586'.
[  507.995034][T13143] random: crng reseeded on system resumption
[  508.369505][T13152] nbd: socks must be embedded in a SOCK_ITEM attr
[  508.416437][T13152] block nbd0: shutting down sockets
[  508.446403][T13160] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1587'.
[  508.610991][T13165] blktrace: Concurrent blktraces are not allowed on loop2
[  508.821904][T13159] zswap: compressor û not available
[  508.933501][T13159] crash hp: kexec_trylock() failed, kdump image may be inaccurate
[  509.527723][T13181] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  510.104602][T13195] FAULT_INJECTION: forcing a failure.
[  510.104602][T13195] name failslab, interval 1, probability 0, space 0, times 0
[  510.183967][T13195] CPU: 0 UID: 0 PID: 13195 Comm: syz.4.1596 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  510.184004][T13195] Tainted: [L]=SOFTLOCKUP
[  510.184011][T13195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  510.184022][T13195] Call Trace:
[  510.184028][T13195]  <TASK>
[  510.184036][T13195]  dump_stack_lvl+0x100/0x190
[  510.184072][T13195]  should_fail_ex.cold+0x5/0xa
[  510.184096][T13195]  should_failslab+0xc2/0x120
[  510.184116][T13195]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  510.184143][T13195]  ? __proc_create+0x2cb/0x8c0
[  510.184166][T13195]  __proc_create+0x2cb/0x8c0
[  510.184185][T13195]  ? __pfx___proc_create+0x10/0x10
[  510.184205][T13195]  ? _raw_write_unlock+0x28/0x50
[  510.184237][T13195]  proc_create_reg+0x75/0x170
[  510.184258][T13195]  proc_create_net_data+0x8e/0x1c0
[  510.184279][T13195]  ? __pfx_proc_create_net_data+0x10/0x10
[  510.184298][T13195]  ? __pfx_uevent_net_rcv+0x10/0x10
[  510.184320][T13195]  ? __pfx_dev_proc_net_init+0x10/0x10
[  510.184338][T13195]  ? __pfx_dev_mc_net_init+0x10/0x10
[  510.184366][T13195]  dev_mc_net_init+0x50/0x80
[  510.184394][T13195]  ops_init+0x1e2/0x5f0
[  510.184415][T13195]  setup_net+0x118/0x3a0
[  510.184435][T13195]  ? __pfx_setup_net+0x10/0x10
[  510.184454][T13195]  ? mutex_init_lockdep+0xf1/0x120
[  510.184475][T13195]  copy_net_ns+0x46f/0x7c0
[  510.184498][T13195]  create_new_namespaces+0x3ea/0xac0
[  510.184531][T13195]  unshare_nsproxy_namespaces+0xf2/0x220
[  510.184555][T13195]  ksys_unshare+0x438/0xab0
[  510.184582][T13195]  ? __pfx_ksys_unshare+0x10/0x10
[  510.184606][T13195]  ? xfd_validate_state+0x129/0x190
[  510.184631][T13195]  __x64_sys_unshare+0x31/0x40
[  510.184656][T13195]  do_syscall_64+0x10b/0xf80
[  510.184681][T13195]  ? clear_bhb_loop+0x40/0x90
[  510.184703][T13195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  510.184721][T13195] RIP: 0033:0x7f447ab9c819
[  510.184737][T13195] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  510.184755][T13195] RSP: 002b:00007f447b9c4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  510.184773][T13195] RAX: ffffffffffffffda RBX: 00007f447ae16090 RCX: 00007f447ab9c819
[  510.184784][T13195] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  510.184795][T13195] RBP: 00007f447ac32c91 R08: 0000000000000000 R09: 0000000000000000
[  510.184805][T13195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  510.184815][T13195] R13: 00007f447ae16128 R14: 00007f447ae16090 R15: 00007ffc70e48038
[  510.184838][T13195]  </TASK>
[  510.895596][T13212] net_ratelimit: 5 callbacks suppressed
[  510.895613][T13212] openvswitch: netlink: Multiple metadata blocks provided
[  511.008110][ T5839] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  511.071830][T13219] futex_wake_op: syz.1.1598 tries to shift op by -2048; fix this program
[  511.103287][T13219] futex_wake_op: syz.1.1598 tries to shift op by -2048; fix this program
[  511.774683][T13156] kexec: Could not allocate control_code_buffer
[  512.000937][T13229] netlink: 'syz.4.1600': attribute type 23 has an invalid length.
[  512.318723][T13242] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  512.443162][ T5149] Bluetooth: hci1: unexpected event for opcode 0x7c89
[  512.756644][T13247] random: crng reseeded on system resumption
[  513.050100][T13255] nfs: Unknown parameter '¥'
[  513.232089][T13259] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1608'.
[  513.537983][T13259] random: crng reseeded on system resumption
[  514.125500][T13281] netlink: 'syz.1.1611': attribute type 23 has an invalid length.
[  514.416054][T13288] blktrace: Concurrent blktraces are not allowed on loop2
[  515.291512][T13264] Process accounting paused
[  516.619029][T13321] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1619'.
[  517.005517][T13328] random: crng reseeded on system resumption
[  517.790057][T13338] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1625'.
[  518.381477][T13348] can: request_module (can-proto-0) failed.
[  518.834960][T13338] random: crng reseeded on system resumption
[  518.948670][T13366] usb usb3: usbfs: process 13366 (syz.0.1629) did not claim interface 0 before use
[  519.238523][T13372] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1631'.
[  519.499109][T13372] random: crng reseeded on system resumption
[  520.253604][ T5149] Bluetooth: hci1: unexpected event for opcode 0x7c89
[  520.818132][T13405] netlink: 'syz.0.1639': attribute type 23 has an invalid length.
[  522.119376][T13425] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1642'.
[  522.375162][T13425] random: crng reseeded on system resumption
[  523.264004][T13443] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1648'.
[  523.346461][T13440] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1646'.
[  523.890055][T13443] random: crng reseeded on system resumption
[  524.385678][ T5149] Bluetooth: hci1: unexpected event for opcode 0x7c89
[  524.399713][T13456] blktrace: Concurrent blktraces are not allowed on loop2
[  524.701147][T13467] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1653'.
[  526.962654][T13514] random: crng reseeded on system resumption
[  527.084420][T13517] Unrecognized hibernate image header format!
[  527.129165][T13517] PM: hibernation: Image mismatch: architecture specific data
[  527.144446][T13518] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1665'.
[  527.654446][T13529] syz.0.1667 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  528.206197][T13543] blktrace: Concurrent blktraces are not allowed on loop2
[  528.702457][ T5149] Bluetooth: hci1: unexpected event for opcode 0x7c89
[  529.293793][T13564] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1675'.
[  529.584560][T13562] random: crng reseeded on system resumption
[  529.971512][T13569] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1677'.
[  530.045759][T13572] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1677'.
[  531.425261][T13612] EXT4-fs error (device sda1): trigger_test_error:130: comm syz.4.1687: 7
[  531.658025][T13619] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  532.636523][T13641] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1695'.
[  533.960138][T13669] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  534.515178][T13677] input: f¬
 as /devices/virtual/input/input16
[  534.638699][T13665] can: request_module (can-proto-0) failed.
[  536.256491][T13723] netlink: 'syz.3.1710': attribute type 23 has an invalid length.
[  537.038253][T13738] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1714'.
[  537.374413][T13738] random: crng reseeded on system resumption
[  538.282044][T13758] netlink: 354 bytes leftover after parsing attributes in process `syz.4.1720'.
[  540.282453][ T5149] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  540.397242][T13796] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1728'.
[  540.756780][T13796] random: crng reseeded on system resumption
[  541.497472][T13814] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1732'.
[  541.583237][ T5149] Bluetooth: hci3: unexpected subevent 0x18 length: 123 > 19
[  541.590812][ T5149] Bluetooth: hci3: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00
[  541.698827][T13813] netlink: Unknown conntrack attr (type=19, max=9)
[  543.663176][T13856] netlink: 'syz.0.1739': attribute type 23 has an invalid length.
[  544.301317][   T30] audit: type=1807 audit(1843104530.250:12): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0
[  544.345821][T13872] blktrace: Concurrent blktraces are not allowed on loop2
[  544.431345][   T30] audit: type=1802 audit(1843104530.390:13): pid=13868 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.1744" res=0 errno=0
[  544.449494][T13868] ima: policy update failed
[  544.470866][T13878] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1745'.
[  544.522165][   T30] audit: type=1802 audit(1843104530.420:14): pid=13868 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1744" res=0 errno=0
[  544.560238][ T5149] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  546.267356][T13894] Process accounting resumed
[  546.699881][T13931] blktrace: Concurrent blktraces are not allowed on loop2
[  546.730763][T13921] netlink: 'syz.1.1755': attribute type 23 has an invalid length.
[  547.090550][T13924] hub 1-0:1.0: USB hub found
[  547.164699][T13924] hub 1-0:1.0: 1 port detected
[  547.958362][T13953] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1761'.
[  547.989608][T13949] =======================================================
[  547.989608][T13949] WARNING: The mand mount option has been deprecated and
[  547.989608][T13949]          and is ignored by this kernel. Remove the mand
[  547.989608][T13949]          option from the mount to silence this warning.
[  547.989608][T13949] =======================================================
[  548.259228][T13953] random: crng reseeded on system resumption
[  548.893532][T13965] FAULT_INJECTION: forcing a failure.
[  548.893532][T13965] name failslab, interval 1, probability 0, space 0, times 0
[  548.906636][T13965] CPU: 0 UID: 0 PID: 13965 Comm: syz.0.1764 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  548.906665][T13965] Tainted: [L]=SOFTLOCKUP
[  548.906672][T13965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  548.906681][T13965] Call Trace:
[  548.906689][T13965]  <TASK>
[  548.906695][T13965]  dump_stack_lvl+0x100/0x190
[  548.906729][T13965]  should_fail_ex.cold+0x5/0xa
[  548.906752][T13965]  should_failslab+0xc2/0x120
[  548.906771][T13965]  __kmalloc_cache_noprof+0x7a/0x6f0
[  548.906794][T13965]  ? snd_ctl_notify+0x38a/0x6b0
[  548.906817][T13965]  snd_ctl_notify+0x38a/0x6b0
[  548.906841][T13965]  snd_ctl_notify_one+0x15a/0x250
[  548.906860][T13965]  ? __pfx_snd_ctl_notify_one+0x10/0x10
[  548.906884][T13965]  ? mark_held_locks+0x40/0x70
[  548.906914][T13965]  __snd_ctl_add_replace+0x5f3/0x830
[  548.906938][T13965]  ? __pfx___snd_ctl_add_replace+0x10/0x10
[  548.906962][T13965]  ? __kmalloc_noprof+0x320/0x850
[  548.906988][T13965]  ? snd_ctl_new+0x13c/0x1a0
[  548.907008][T13965]  snd_ctl_elem_add+0x83c/0x1470
[  548.907034][T13965]  ? __might_fault+0xc5/0x140
[  548.907058][T13965]  ? __might_fault+0xc5/0x140
[  548.907083][T13965]  ? __pfx_snd_ctl_elem_add+0x10/0x10
[  548.907109][T13965]  snd_ctl_elem_add_user+0xc5/0x170
[  548.907130][T13965]  ? __pfx_snd_ctl_elem_add_user+0x10/0x10
[  548.907151][T13965]  ? find_held_lock+0x2b/0x80
[  548.907189][T13965]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  548.907215][T13965]  ? do_vfs_ioctl+0x226/0x13e0
[  548.907242][T13965]  snd_ctl_ioctl+0xb68/0x1290
[  548.907263][T13965]  ? __pfx_snd_ctl_ioctl+0x10/0x10
[  548.907286][T13965]  ? find_held_lock+0x2b/0x80
[  548.907307][T13965]  ? __fget_files+0x215/0x3d0
[  548.907322][T13965]  ? hook_file_ioctl_common+0x149/0x410
[  548.907350][T13965]  ? __fget_files+0x21f/0x3d0
[  548.907369][T13965]  ? __pfx_snd_ctl_ioctl+0x10/0x10
[  548.907391][T13965]  __x64_sys_ioctl+0x18e/0x210
[  548.907418][T13965]  do_syscall_64+0x10b/0xf80
[  548.907451][T13965]  ? clear_bhb_loop+0x40/0x90
[  548.907472][T13965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  548.907490][T13965] RIP: 0033:0x7fbf5699c819
[  548.907506][T13965] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  548.907523][T13965] RSP: 002b:00007fbf577f0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  548.907541][T13965] RAX: ffffffffffffffda RBX: 00007fbf56c15fa0 RCX: 00007fbf5699c819
[  548.907552][T13965] RDX: 0000200000000580 RSI: 00000000c1105517 RDI: 0000000000000008
[  548.907562][T13965] RBP: 00007fbf56a32c91 R08: 0000000000000000 R09: 0000000000000000
[  548.907573][T13965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  548.907583][T13965] R13: 00007fbf56c16038 R14: 00007fbf56c15fa0 R15: 00007fff010989e8
[  548.907604][T13965]  </TASK>
[  548.907615][T13965] snd_virmidi snd_virmidi.0: No memory available to allocate event
[  550.710125][T14001] FAULT_INJECTION: forcing a failure.
[  550.710125][T14001] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  550.776296][T14001] CPU: 0 UID: 0 PID: 14001 Comm: syz.3.1772 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  550.776328][T14001] Tainted: [L]=SOFTLOCKUP
[  550.776335][T14001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  550.776345][T14001] Call Trace:
[  550.776352][T14001]  <TASK>
[  550.776359][T14001]  dump_stack_lvl+0x100/0x190
[  550.776402][T14001]  should_fail_ex.cold+0x5/0xa
[  550.776426][T14001]  _copy_from_user+0x2e/0xd0
[  550.776449][T14001]  copy_msghdr_from_user+0x9f/0x4f0
[  550.776476][T14001]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  550.776505][T14001]  ? rcu_is_watching+0x12/0xc0
[  550.776525][T14001]  ? ___sys_recvmsg+0x177/0x1a0
[  550.776548][T14001]  ? kfree+0x1dd/0x6c0
[  550.776569][T14001]  ? irqentry_exit+0x246/0x790
[  550.776599][T14001]  ___sys_recvmsg+0xdd/0x1a0
[  550.776624][T14001]  ? __pfx____sys_recvmsg+0x10/0x10
[  550.776660][T14001]  ? __pfx___might_resched+0x10/0x10
[  550.776683][T14001]  do_recvmmsg+0x301/0x760
[  550.776710][T14001]  ? __pfx_do_recvmmsg+0x10/0x10
[  550.776739][T14001]  ? do_futex+0x192/0x350
[  550.776765][T14001]  ? __x64_sys_futex+0x34f/0x4d0
[  550.776785][T14001]  __x64_sys_recvmmsg+0x22a/0x280
[  550.776807][T14001]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  550.776828][T14001]  ? rcu_is_watching+0x12/0xc0
[  550.776851][T14001]  do_syscall_64+0x10b/0xf80
[  550.776876][T14001]  ? clear_bhb_loop+0x40/0x90
[  550.776897][T14001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.776915][T14001] RIP: 0033:0x7f53f139c819
[  550.776931][T14001] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  550.776949][T14001] RSP: 002b:00007f53f2260028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  550.776966][T14001] RAX: ffffffffffffffda RBX: 00007f53f1615fa0 RCX: 00007f53f139c819
[  550.776978][T14001] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  550.776988][T14001] RBP: 00007f53f1432c91 R08: 0000000000000000 R09: 0000000000000000
[  550.776998][T14001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  550.777008][T14001] R13: 00007f53f1616038 R14: 00007f53f1615fa0 R15: 00007ffc3872a218
[  550.777030][T14001]  </TASK>
[  551.296630][T14008] FAULT_INJECTION: forcing a failure.
[  551.296630][T14008] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  551.312536][T14008] CPU: 0 UID: 0 PID: 14008 Comm: syz.0.1773 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  551.312566][T14008] Tainted: [L]=SOFTLOCKUP
[  551.312573][T14008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  551.312583][T14008] Call Trace:
[  551.312589][T14008]  <TASK>
[  551.312597][T14008]  dump_stack_lvl+0x100/0x190
[  551.312640][T14008]  should_fail_ex.cold+0x5/0xa
[  551.312660][T14008]  ? prepare_alloc_pages+0x16d/0x5f0
[  551.312685][T14008]  should_fail_alloc_page+0xeb/0x140
[  551.312707][T14008]  prepare_alloc_pages+0x1f0/0x5f0
[  551.312731][T14008]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  551.312760][T14008]  ? stack_trace_save+0x8e/0xc0
[  551.312783][T14008]  ? __pfx_stack_trace_save+0x10/0x10
[  551.312805][T14008]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  551.312833][T14008]  ? stack_depot_save_flags+0x27/0x9d0
[  551.312863][T14008]  ? kasan_save_stack+0x3f/0x50
[  551.312889][T14008]  ? kasan_save_stack+0x30/0x50
[  551.312915][T14008]  ? kasan_save_track+0x14/0x30
[  551.312941][T14008]  ? __kasan_slab_alloc+0x89/0x90
[  551.312957][T14008]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  551.312984][T14008]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  551.313011][T14008]  ? do_user_addr_fault+0x74c/0x12f0
[  551.313030][T14008]  ? exc_page_fault+0x6f/0xd0
[  551.313055][T14008]  ? asm_exc_page_fault+0x26/0x30
[  551.313072][T14008]  ? _copy_from_user+0x98/0xd0
[  551.313092][T14008]  ? do_syscall_64+0x10b/0xf80
[  551.313117][T14008]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.313146][T14008]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  551.313172][T14008]  ? policy_nodemask+0xed/0x4f0
[  551.313193][T14008]  alloc_pages_mpol+0x1fb/0x540
[  551.313214][T14008]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  551.313232][T14008]  ? __thp_vma_allowable_orders+0x1d9/0xe90
[  551.313255][T14008]  ? do_raw_spin_lock+0x128/0x260
[  551.313276][T14008]  alloc_pages_noprof+0x1a/0x160
[  551.313299][T14008]  pte_alloc_one+0x1c/0x3d0
[  551.313322][T14008]  do_fault+0x86c/0x1750
[  551.313343][T14008]  ? __pmd_alloc+0x3fb/0x950
[  551.313365][T14008]  __handle_mm_fault+0x187d/0x2a00
[  551.313393][T14008]  ? mt_find+0x45e/0x8e0
[  551.313410][T14008]  ? __pfx___handle_mm_fault+0x10/0x10
[  551.313433][T14008]  ? __pfx_mt_find+0x10/0x10
[  551.313460][T14008]  ? find_vma+0xbf/0x140
[  551.313477][T14008]  ? __pfx_find_vma+0x10/0x10
[  551.313497][T14008]  handle_mm_fault+0x36d/0xa20
[  551.313531][T14008]  do_user_addr_fault+0x74c/0x12f0
[  551.313554][T14008]  ? trace_page_fault_kernel+0x7a/0x200
[  551.313576][T14008]  exc_page_fault+0x6f/0xd0
[  551.313609][T14008]  asm_exc_page_fault+0x26/0x30
[  551.313626][T14008] RIP: 0010:rep_movs_alternative+0x30/0x90
[  551.313648][T14008] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  551.313665][T14008] RSP: 0018:ffffc9000531fd68 EFLAGS: 00050212
[  551.313680][T14008] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000010
[  551.313691][T14008] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc9000531fe30
[  551.313701][T14008] RBP: 0000000000000010 R08: 0000000000000001 R09: fffff52000a63fc7
[  551.313712][T14008] R10: ffffc9000531fe3f R11: 0000000000000000 R12: 0000000000000000
[  551.313723][T14008] R13: ffffc9000531fe30 R14: 0000000000000001 R15: 0000000000000000
[  551.313746][T14008]  _copy_from_user+0x98/0xd0
[  551.313768][T14008]  __do_sys_io_uring_register+0xd7c/0x1bd0
[  551.313797][T14008]  ? __pfx_do_futex+0x10/0x10
[  551.313816][T14008]  ? __do_sys_statmount+0xb65/0x2490
[  551.313845][T14008]  ? __pfx___do_sys_io_uring_register+0x10/0x10
[  551.313877][T14008]  ? __x64_sys_futex+0x34f/0x4d0
[  551.313894][T14008]  ? __x64_sys_futex+0x358/0x4d0
[  551.313913][T14008]  ? xfd_validate_state+0x129/0x190
[  551.313930][T14008]  ? ksys_write+0x1ac/0x250
[  551.313950][T14008]  ? rcu_is_watching+0x12/0xc0
[  551.313973][T14008]  do_syscall_64+0x10b/0xf80
[  551.313999][T14008]  ? clear_bhb_loop+0x40/0x90
[  551.314021][T14008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.314039][T14008] RIP: 0033:0x7fbf5699c819
[  551.314054][T14008] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  551.314071][T14008] RSP: 002b:00007fbf5778d028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  551.314087][T14008] RAX: ffffffffffffffda RBX: 00007fbf56c16270 RCX: 00007fbf5699c819
[  551.314098][T14008] RDX: 0000000000000000 RSI: 000000000000000b RDI: ffffffffffffffff
[  551.314109][T14008] RBP: 00007fbf56a32c91 R08: 0000000000000000 R09: 0000000000000000
[  551.314119][T14008] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  551.314129][T14008] R13: 00007fbf56c16308 R14: 00007fbf56c16270 R15: 00007fff010989e8
[  551.314152][T14008]  </TASK>
[  552.642453][T14017] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  552.883208][T14022] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1776'.
[  552.964224][T14025] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1777'.
[  553.544435][T14022] random: crng reseeded on system resumption
[  554.313372][T14045] blktrace: Concurrent blktraces are not allowed on loop2
[  557.118603][ T8000] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:19: bg 2: bad block bitmap checksum
[  557.422684][ T8000] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 925 with max blocks 8 with error 74
[  557.835232][ T8000] EXT4-fs (sda1): This should not happen!! Data will be lost
[  557.835232][ T8000] 
[  558.250100][T14060] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  559.545786][T14099] bond0: no command found in slaves file - use +ifname or -ifname
[  559.569164][T14093] zswap: compressor  not available
[  560.017382][T14107] bridge0: port 3(bond0) entered blocking state
[  560.037199][T14107] bridge0: port 3(bond0) entered disabled state
[  560.062832][T14107] bond0: entered allmulticast mode
[  560.089937][T14107] bond_slave_0: entered allmulticast mode
[  560.137508][T14117] futex_wake_op: syz.0.1797 tries to shift op by -2048; fix this program
[  560.151834][T14107] bond_slave_1: entered allmulticast mode
[  560.175664][T14117] futex_wake_op: syz.0.1797 tries to shift op by -2048; fix this program
[  560.203324][T14107] bond0: entered promiscuous mode
[  560.220003][T14117] 0x000000000001-0x000000020000 : ""
[  560.245036][T14117] FAULT_INJECTION: forcing a failure.
[  560.245036][T14117] name failslab, interval 1, probability 0, space 0, times 0
[  560.265610][T14107] bond_slave_0: entered promiscuous mode
[  560.314929][T14107] bond_slave_1: entered promiscuous mode
[  560.327527][T14117] CPU: 0 UID: 0 PID: 14117 Comm: syz.0.1797 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  560.327558][T14117] Tainted: [L]=SOFTLOCKUP
[  560.327565][T14117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  560.327576][T14117] Call Trace:
[  560.327583][T14117]  <TASK>
[  560.327590][T14117]  dump_stack_lvl+0x100/0x190
[  560.327625][T14117]  should_fail_ex.cold+0x5/0xa
[  560.327650][T14117]  should_failslab+0xc2/0x120
[  560.327671][T14117]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  560.327700][T14117]  ? kstrdup_const+0x63/0x80
[  560.327715][T14117]  ? find_held_lock+0x2b/0x80
[  560.327737][T14117]  ? is_bpf_text_address+0x8a/0x1a0
[  560.327764][T14117]  kstrdup+0x51/0xe0
[  560.327781][T14117]  kstrdup_const+0x63/0x80
[  560.327798][T14117]  __kernfs_new_node+0x9b/0x9f0
[  560.327825][T14117]  ? __kernel_text_address+0xd/0x30
[  560.327845][T14117]  ? arch_stack_walk+0xa6/0xf0
[  560.327866][T14117]  ? __pfx___kernfs_new_node+0x10/0x10
[  560.327900][T14117]  ? find_held_lock+0x2b/0x80
[  560.327921][T14117]  ? kernfs_root+0xee/0x2a0
[  560.327947][T14117]  ? kernfs_root+0xee/0x2a0
[  560.327978][T14117]  kernfs_new_node+0x11b/0x1a0
[  560.328001][T14117]  kernfs_create_dir_ns+0x4c/0x1a0
[  560.328023][T14117]  sysfs_create_dir_ns+0x13a/0x2b0
[  560.328051][T14117]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  560.328077][T14117]  ? find_held_lock+0x2b/0x80
[  560.328098][T14117]  ? kobject_add_internal+0x25f/0x930
[  560.328117][T14117]  ? kobject_add_internal+0x25f/0x930
[  560.328138][T14117]  ? class_dir_child_ns_type+0xd/0x60
[  560.328166][T14117]  kobject_add_internal+0x2c8/0x930
[  560.328189][T14117]  kobject_add+0x16a/0x1e0
[  560.328208][T14117]  ? __pfx_kobject_add+0x10/0x10
[  560.328230][T14117]  ? kobject_put+0xb9/0x640
[  560.328253][T14117]  device_add+0x294/0x1920
[  560.328288][T14117]  ? lockdep_init_map_type+0x5c/0x250
[  560.328317][T14117]  ? __pfx_device_add+0x10/0x10
[  560.328342][T14117]  ? lockdep_init_map_type+0x5c/0x250
[  560.328376][T14117]  ? __init_waitqueue_head+0xca/0x150
[  560.328405][T14117]  add_mtd_device+0x928/0x17a0
[  560.328432][T14117]  ? __pfx_add_mtd_device+0x10/0x10
[  560.328458][T14117]  mtd_add_partition+0x30a/0x660
[  560.328483][T14117]  ? __pfx_mtd_add_partition+0x10/0x10
[  560.328505][T14117]  ? __might_fault+0xc5/0x140
[  560.328529][T14117]  ? __might_fault+0xc5/0x140
[  560.328563][T14117]  mtdchar_blkpg_ioctl+0x207/0x250
[  560.328587][T14117]  ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10
[  560.328631][T14117]  mtdchar_ioctl+0x1670/0x1fd0
[  560.328659][T14117]  ? __pfx_mtdchar_ioctl+0x10/0x10
[  560.328685][T14117]  ? lock_acquire+0x1b1/0x370
[  560.328717][T14117]  ? trace_contention_end+0x122/0x170
[  560.328737][T14117]  ? mtdchar_unlocked_ioctl+0xa2/0xf0
[  560.328763][T14117]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  560.328791][T14117]  ? __pfx___mutex_lock+0x10/0x10
[  560.328835][T14117]  mtdchar_unlocked_ioctl+0xb0/0xf0
[  560.328859][T14117]  ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10
[  560.328886][T14117]  __x64_sys_ioctl+0x18e/0x210
[  560.328914][T14117]  do_syscall_64+0x10b/0xf80
[  560.328939][T14117]  ? clear_bhb_loop+0x40/0x90
[  560.328961][T14117]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  560.328988][T14117] RIP: 0033:0x7fbf5699c819
[  560.329011][T14117] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  560.329029][T14117] RSP: 002b:00007fbf577cf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  560.329048][T14117] RAX: ffffffffffffffda RBX: 00007fbf56c16090 RCX: 00007fbf5699c819
[  560.329061][T14117] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000004
[  560.329071][T14117] RBP: 00007fbf56a32c91 R08: 0000000000000000 R09: 0000000000000000
[  560.329082][T14117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  560.329093][T14117] R13: 00007fbf56c16128 R14: 00007fbf56c16090 R15: 00007fff010989e8
[  560.329116][T14117]  </TASK>
[  560.746819][T14117] kobject: kobject_add_internal failed for mtd3 (error: -12 parent: mtd)
[  560.755825][T14117] ------------[ cut here ]------------
[  560.761890][T14117] !list_empty(&mtd->part.node)
[  560.761902][T14117] WARNING: drivers/mtd/mtdpart.c:38 at release_mtd_partition+0x71/0x90, CPU#0: syz.0.1797/14117
[  560.777467][T14117] Modules linked in:
[  560.781857][T14117] CPU: 0 UID: 0 PID: 14117 Comm: syz.0.1797 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  560.793020][T14117] Tainted: [L]=SOFTLOCKUP
[  560.797422][T14117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  560.807619][T14117] RIP: 0010:release_mtd_partition+0x71/0x90
[  560.813767][T14117] Code: 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 1e 48 8b 7b 38 e8 1f b2 d9 fb 48 89 df 5b 5d e9 15 b2 d9 fb e8 30 93 79 fb 90 <0f> 0b 90 eb c2 e8 85 73 e5 fb eb db 48 89 ef e8 7b 73 e5 fb eb a5
[  560.833528][T14117] RSP: 0018:ffffc90004ea7818 EFLAGS: 00010287
[  560.839620][T14117] RAX: 000000000002d00a RBX: ffff888022af5000 RCX: ffffc9000f6f3000
[  560.847633][T14117] RDX: 0000000000080000 RSI: ffffffff868f3230 RDI: ffff888022af5000
[  560.855734][T14117] RBP: ffff888022af56a0 R08: 0000000000000001 R09: 0000000000000001
[  560.864696][T14117] R10: 0000000000000003 R11: ffffffff81000130 R12: 0000000000000000
[  560.873062][T14117] R13: dffffc0000000000 R14: ffff8880216bb2e0 R15: 0000000000000000
[  560.881171][T14117] FS:  00007fbf577cf6c0(0000) GS:ffff8881242f6000(0000) knlGS:0000000000000000
[  560.890467][T14117] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  560.897064][T14117] CR2: 00007fd86c912e9c CR3: 0000000059da6000 CR4: 00000000003526f0
[  560.905270][T14117] Call Trace:
[  560.908908][T14117]  <TASK>
[  560.911957][T14117]  mtd_release+0xa0/0xd0
[  560.916229][T14117]  ? __pfx_mtd_release+0x10/0x10
[  560.921248][T14117]  device_release+0xd2/0x270
[  560.925951][T14117]  kobject_put+0x1f7/0x640
[  560.930398][T14117]  put_device+0x1f/0x30
[  560.934668][T14117]  add_mtd_device+0xbd7/0x17a0
[  560.939458][T14117]  ? __pfx_add_mtd_device+0x10/0x10
[  560.944709][T14117]  mtd_add_partition+0x30a/0x660
[  560.949695][T14117]  ? __pfx_mtd_add_partition+0x10/0x10
[  560.955293][T14117]  ? __might_fault+0xc5/0x140
[  560.959985][T14117]  ? __might_fault+0xc5/0x140
[  560.964803][T14117]  mtdchar_blkpg_ioctl+0x207/0x250
[  560.970517][T14117]  ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10
[  560.976181][T14117]  mtdchar_ioctl+0x1670/0x1fd0
[  560.981413][T14117]  ? __pfx_mtdchar_ioctl+0x10/0x10
[  560.986790][T14117]  ? lock_acquire+0x1b1/0x370
[  560.991697][T14117]  ? trace_contention_end+0x122/0x170
[  560.997077][T14117]  ? mtdchar_unlocked_ioctl+0xa2/0xf0
[  561.002707][T14117]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  561.007746][T14117]  ? __pfx___mutex_lock+0x10/0x10
[  561.012925][T14117]  mtdchar_unlocked_ioctl+0xb0/0xf0
[  561.018314][T14117]  ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10
[  561.024251][T14117]  __x64_sys_ioctl+0x18e/0x210
[  561.029046][T14117]  do_syscall_64+0x10b/0xf80
[  561.033720][T14117]  ? clear_bhb_loop+0x40/0x90
[  561.038522][T14117]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  561.044452][T14117] RIP: 0033:0x7fbf5699c819
[  561.048893][T14117] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  561.069299][T14117] RSP: 002b:00007fbf577cf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  561.078146][T14117] RAX: ffffffffffffffda RBX: 00007fbf56c16090 RCX: 00007fbf5699c819
[  561.086347][T14117] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000004
[  561.094575][T14117] RBP: 00007fbf56a32c91 R08: 0000000000000000 R09: 0000000000000000
[  561.103389][T14117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  561.111487][T14117] R13: 00007fbf56c16128 R14: 00007fbf56c16090 R15: 00007fff010989e8
[  561.119555][T14117]  </TASK>
[  561.122620][T14117] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  561.129992][T14117] CPU: 0 UID: 0 PID: 14117 Comm: syz.0.1797 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  561.140941][T14117] Tainted: [L]=SOFTLOCKUP
[  561.145261][T14117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  561.155321][T14117] Call Trace:
[  561.158602][T14117]  <TASK>
[  561.161540][T14117]  dump_stack_lvl+0x100/0x190
[  561.166324][T14117]  vpanic+0x552/0x970
[  561.170310][T14117]  ? __pfx_vpanic+0x10/0x10
[  561.174908][T14117]  panic+0xd1/0xe0
[  561.178631][T14117]  ? __pfx_panic+0x10/0x10
[  561.183157][T14117]  check_panic_on_warn.cold+0x19/0x34
[  561.188532][T14117]  ? release_mtd_partition+0x71/0x90
[  561.193953][T14117]  __warn.cold+0x191/0x328
[  561.198505][T14117]  __report_bug+0x296/0x3d0
[  561.203101][T14117]  ? release_mtd_partition+0x71/0x90
[  561.208394][T14117]  ? __pfx___report_bug+0x10/0x10
[  561.213436][T14117]  ? delete_node+0x20a/0x8f0
[  561.218119][T14117]  ? release_mtd_partition+0x71/0x90
[  561.223442][T14117]  report_bug+0xb2/0x220
[  561.227696][T14117]  ? release_mtd_partition+0x71/0x90
[  561.233004][T14117]  handle_bug+0x16a/0x2a0
[  561.237342][T14117]  exc_invalid_op+0x17/0x50
[  561.241933][T14117]  asm_exc_invalid_op+0x1a/0x20
[  561.246873][T14117] RIP: 0010:release_mtd_partition+0x71/0x90
[  561.253125][T14117] Code: 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 1e 48 8b 7b 38 e8 1f b2 d9 fb 48 89 df 5b 5d e9 15 b2 d9 fb e8 30 93 79 fb 90 <0f> 0b 90 eb c2 e8 85 73 e5 fb eb db 48 89 ef e8 7b 73 e5 fb eb a5
[  561.272733][T14117] RSP: 0018:ffffc90004ea7818 EFLAGS: 00010287
[  561.278886][T14117] RAX: 000000000002d00a RBX: ffff888022af5000 RCX: ffffc9000f6f3000
[  561.286869][T14117] RDX: 0000000000080000 RSI: ffffffff868f3230 RDI: ffff888022af5000
[  561.294842][T14117] RBP: ffff888022af56a0 R08: 0000000000000001 R09: 0000000000000001
[  561.302917][T14117] R10: 0000000000000003 R11: ffffffff81000130 R12: 0000000000000000
[  561.310888][T14117] R13: dffffc0000000000 R14: ffff8880216bb2e0 R15: 0000000000000000
[  561.318858][T14117]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  561.324930][T14117]  ? release_mtd_partition+0x70/0x90
[  561.330220][T14117]  ? release_mtd_partition+0x70/0x90
[  561.335608][T14117]  mtd_release+0xa0/0xd0
[  561.339949][T14117]  ? __pfx_mtd_release+0x10/0x10
[  561.344981][T14117]  device_release+0xd2/0x270
[  561.349660][T14117]  kobject_put+0x1f7/0x640
[  561.354175][T14117]  put_device+0x1f/0x30
[  561.358339][T14117]  add_mtd_device+0xbd7/0x17a0
[  561.363114][T14117]  ? __pfx_add_mtd_device+0x10/0x10
[  561.368495][T14117]  mtd_add_partition+0x30a/0x660
[  561.373628][T14117]  ? __pfx_mtd_add_partition+0x10/0x10
[  561.379146][T14117]  ? __might_fault+0xc5/0x140
[  561.383834][T14117]  ? __might_fault+0xc5/0x140
[  561.388529][T14117]  mtdchar_blkpg_ioctl+0x207/0x250
[  561.393650][T14117]  ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10
[  561.399312][T14117]  mtdchar_ioctl+0x1670/0x1fd0
[  561.404085][T14117]  ? __pfx_mtdchar_ioctl+0x10/0x10
[  561.409299][T14117]  ? lock_acquire+0x1b1/0x370
[  561.413993][T14117]  ? trace_contention_end+0x122/0x170
[  561.419631][T14117]  ? mtdchar_unlocked_ioctl+0xa2/0xf0
[  561.425023][T14117]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  561.430186][T14117]  ? __pfx___mutex_lock+0x10/0x10
[  561.435246][T14117]  mtdchar_unlocked_ioctl+0xb0/0xf0
[  561.440467][T14117]  ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10
[  561.446373][T14117]  __x64_sys_ioctl+0x18e/0x210
[  561.451153][T14117]  do_syscall_64+0x10b/0xf80
[  561.455760][T14117]  ? clear_bhb_loop+0x40/0x90
[  561.460533][T14117]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  561.466430][T14117] RIP: 0033:0x7fbf5699c819
[  561.470862][T14117] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  561.491443][T14117] RSP: 002b:00007fbf577cf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  561.500212][T14117] RAX: ffffffffffffffda RBX: 00007fbf56c16090 RCX: 00007fbf5699c819
[  561.508270][T14117] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000004
[  561.516448][T14117] RBP: 00007fbf56a32c91 R08: 0000000000000000 R09: 0000000000000000
[  561.524424][T14117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  561.532393][T14117] R13: 00007fbf56c16128 R14: 00007fbf56c16090 R15: 00007fff010989e8
[  561.540378][T14117]  </TASK>
[  561.543549][T14117] Kernel Offset: disabled
[  561.547872][T14117] Rebooting in 86400 seconds..