last executing test programs:

510.536387ms ago: executing program 0 (id=322):
clock_getres(0x0, &(0x7f0000000000))

491.70025ms ago: executing program 0 (id=327):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sev', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sev', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sev', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sev', 0x800, 0x0)

418.397273ms ago: executing program 0 (id=330):
eventfd(0x0)

413.536688ms ago: executing program 0 (id=333):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhci', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhci', 0x800, 0x0)

357.506001ms ago: executing program 4 (id=336):
gettid()

357.041771ms ago: executing program 4 (id=339):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fb0', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fb0', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0', 0x800, 0x0)

298.35699ms ago: executing program 0 (id=342):
socket$inet_dccp(0x2, 0x6, 0x0)

297.756866ms ago: executing program 1 (id=345):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/bluetooth/6lowpan_enable', 0x2, 0x0)

297.637553ms ago: executing program 4 (id=346):
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000))

269.905485ms ago: executing program 1 (id=347):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)

258.848126ms ago: executing program 3 (id=349):
move_pages(0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000000), 0x0)

201.414206ms ago: executing program 4 (id=350):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/validatetrans', 0x1, 0x0)

200.956316ms ago: executing program 2 (id=351):
socket$inet_icmp_raw(0x2, 0x3, 0x1)

200.831545ms ago: executing program 3 (id=352):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/access', 0x2, 0x0)

200.723828ms ago: executing program 4 (id=353):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vfio/vfio', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vfio/vfio', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vfio/vfio', 0x800, 0x0)

197.219051ms ago: executing program 2 (id=354):
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)

164.172454ms ago: executing program 3 (id=355):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng', 0x800, 0x0)

114.842025ms ago: executing program 2 (id=356):
stat(&(0x7f0000000000), &(0x7f0000000000))

114.665809ms ago: executing program 4 (id=357):
pause()

114.569515ms ago: executing program 1 (id=358):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/relabel', 0x2, 0x0)

114.340056ms ago: executing program 3 (id=359):
socket$kcm(0x29, 0x2, 0x0)

114.243217ms ago: executing program 2 (id=360):
semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000000))

89.613492ms ago: executing program 1 (id=361):
getcwd(&(0x7f0000000000), 0x0)

81.858734ms ago: executing program 3 (id=362):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/i915', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/i915', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/i915', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/i915', 0x800, 0x0)

22.651698ms ago: executing program 2 (id=363):
setreuid(0x0, 0x0)

22.510138ms ago: executing program 1 (id=364):
close(0xffffffffffffffff)

22.430497ms ago: executing program 3 (id=365):
getrandom(&(0x7f0000000000), 0x0, 0x0)

22.379884ms ago: executing program 2 (id=366):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse', 0x2, 0x0)

2.09072ms ago: executing program 1 (id=367):
socket$unix(0x1, 0x1, 0x0)

0s ago: executing program 0 (id=368):
flock(0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.71' (ED25519) to the list of known hosts.
[   70.518890][ T5812] cgroup: Unknown subsys name 'net'
[   70.759258][ T5812] cgroup: Unknown subsys name 'cpuset'
[   70.813937][ T5812] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   71.501896][ T1334] ieee802154 phy0 wpan0: encryption failed: -22
[   71.502018][ T1334] ieee802154 phy1 wpan1: encryption failed: -22
[   72.507700][ T5812] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   77.709153][ T6079] mmap: syz.2.237 (6079) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   79.195303][ T6212] ------------[ cut here ]------------
[   79.195316][ T6212] fud->pq.processing
[   79.195329][ T6212] WARNING: fs/fuse/dev.c:482 at fuse_dev_install_with_pq+0x23b/0x270, CPU#0: syz.2.366/6212
[   79.195369][ T6212] Modules linked in:
[   79.195401][ T6212] CPU: 0 UID: 0 PID: 6212 Comm: syz.2.366 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[   79.195419][ T6212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[   79.195431][ T6212] RIP: 0010:fuse_dev_install_with_pq+0x23b/0x270
[   79.195455][ T6212] Code: 85 6d fe ff ff e8 55 84 84 fe 4d 85 ed 0f 94 c0 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 36 84 84 fe 90 <0f> 0b 90 41 80 3c 2e 00 0f 85 8a fe ff ff e9 8d fe ff ff 44 89 f1
[   79.195469][ T6212] RSP: 0018:ffffc90005647660 EFLAGS: 00010293
[   79.195484][ T6212] RAX: ffffffff83401a0a RBX: ffff8880203ef000 RCX: ffff88801df59ec0
[   79.195497][ T6212] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   79.195507][ T6212] RBP: dffffc0000000000 R08: ffff88802be3440f R09: 1ffff110057c6881
[   79.195519][ T6212] R10: dffffc0000000000 R11: ffffed10057c6882 R12: ffff88803f4c2000
[   79.195531][ T6212] R13: ffff88802be34498 R14: 1ffff110057c6893 R15: ffff88802be34400
[   79.195544][ T6212] FS:  0000555586a5e500(0000) GS:ffff888125ebc000(0000) knlGS:0000000000000000
[   79.195558][ T6212] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   79.195570][ T6212] CR2: 00007f4a2a9b56b8 CR3: 00000000352d2000 CR4: 00000000003526f0
[   79.195584][ T6212] Call Trace:
[   79.195595][ T6212]  <TASK>
[   79.195607][ T6212]  fuse_dev_alloc_install+0x61/0x80
[   79.195631][ T6212]  cuse_channel_open+0x124/0x7b0
[   79.195656][ T6212]  ? __pfx_cuse_channel_open+0x10/0x10
[   79.195673][ T6212]  misc_open+0x2de/0x350
[   79.195701][ T6212]  chrdev_open+0x4d0/0x5f0
[   79.195720][ T6212]  ? __pfx_chrdev_open+0x10/0x10
[   79.195738][ T6212]  ? fsnotify_open_perm_and_set_mode+0x13b/0x6e0
[   79.195767][ T6212]  ? __pfx_chrdev_open+0x10/0x10
[   79.195784][ T6212]  do_dentry_open+0x83d/0x13e0
[   79.195813][ T6212]  vfs_open+0x3b/0x350
[   79.195829][ T6212]  ? path_openat+0x2e2b/0x38a0
[   79.195853][ T6212]  path_openat+0x2e43/0x38a0
[   79.195905][ T6212]  ? __pfx_path_openat+0x10/0x10
[   79.195932][ T6212]  ? kasan_save_track+0x4f/0x80
[   79.195951][ T6212]  ? kasan_save_track+0x3e/0x80
[   79.195971][ T6212]  ? __kasan_slab_alloc+0x6c/0x80
[   79.195992][ T6212]  ? kmem_cache_alloc_noprof+0x33b/0x680
[   79.196023][ T6212]  ? do_raw_spin_lock+0x12b/0x2f0
[   79.196051][ T6212]  do_file_open+0x23e/0x4a0
[   79.196073][ T6212]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[   79.196102][ T6212]  ? __pfx_do_file_open+0x10/0x10
[   79.196122][ T6212]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[   79.196173][ T6212]  ? alloc_fd+0x64e/0x6c0
[   79.196204][ T6212]  do_sys_openat2+0x113/0x200
[   79.196228][ T6212]  ? __pfx_do_sys_openat2+0x10/0x10
[   79.196249][ T6212]  ? exc_page_fault+0x6a/0xc0
[   79.196278][ T6212]  ? do_user_addr_fault+0xc6f/0x1340
[   79.196301][ T6212]  __x64_sys_openat+0x138/0x170
[   79.196325][ T6212]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.196345][ T6212]  do_syscall_64+0x15f/0xf80
[   79.196361][ T6212]  ? trace_irq_disable+0x3b/0x140
[   79.196381][ T6212]  ? clear_bhb_loop+0x40/0x90
[   79.196403][ T6212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.196420][ T6212] RIP: 0033:0x7f184d1ac819
[   79.196443][ T6212] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   79.196457][ T6212] RSP: 002b:00007ffc4ae9d5e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   79.196474][ T6212] RAX: ffffffffffffffda RBX: 00007f184d425fa0 RCX: 00007f184d1ac819
[   79.196487][ T6212] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[   79.196499][ T6212] RBP: 00007f184d242c91 R08: 0000000000000000 R09: 0000000000000000
[   79.196510][ T6212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   79.196520][ T6212] R13: 00007f184d425fac R14: 00007f184d425fa0 R15: 00007f184d425fa0
[   79.196550][ T6212]  </TASK>
[   79.196559][ T6212] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   79.196573][ T6212] CPU: 0 UID: 0 PID: 6212 Comm: syz.2.366 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[   79.196592][ T6212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[   79.196601][ T6212] Call Trace:
[   79.196608][ T6212]  <TASK>
[   79.196615][ T6212]  vpanic+0x56c/0xa60
[   79.196636][ T6212]  ? __pfx__printk+0x10/0x10
[   79.196659][ T6212]  ? __pfx_vpanic+0x10/0x10
[   79.196676][ T6212]  ? is_bpf_text_address+0x292/0x2b0
[   79.196698][ T6212]  ? is_bpf_text_address+0x26/0x2b0
[   79.196727][ T6212]  panic+0xc5/0xd0
[   79.196745][ T6212]  ? __pfx_panic+0x10/0x10
[   79.196780][ T6212]  __warn+0x315/0x4c0
[   79.196798][ T6212]  ? fuse_dev_install_with_pq+0x23b/0x270
[   79.196823][ T6212]  ? fuse_dev_install_with_pq+0x23b/0x270
[   79.196847][ T6212]  __report_bug+0x29a/0x540
[   79.196878][ T6212]  ? fuse_dev_install_with_pq+0x23b/0x270
[   79.196900][ T6212]  ? __pfx___report_bug+0x10/0x10
[   79.196925][ T6212]  ? __pfx_rtlock_slowlock_locked+0x10/0x10
[   79.196951][ T6212]  ? rt_spin_lock+0x1e0/0x400
[   79.196974][ T6212]  ? rt_spin_lock+0x1e0/0x400
[   79.197016][ T6212]  ? fuse_dev_install_with_pq+0x23b/0x270
[   79.197039][ T6212]  report_bug+0x16a/0x220
[   79.197065][ T6212]  ? fuse_dev_install_with_pq+0x23b/0x270
[   79.197086][ T6212]  ? fuse_dev_install_with_pq+0x23d/0x270
[   79.197107][ T6212]  handle_bug+0x9c/0x200
[   79.197125][ T6212]  exc_invalid_op+0x1a/0x50
[   79.197148][ T6212]  asm_exc_invalid_op+0x1a/0x20
[   79.197164][ T6212] RIP: 0010:fuse_dev_install_with_pq+0x23b/0x270
[   79.197187][ T6212] Code: 85 6d fe ff ff e8 55 84 84 fe 4d 85 ed 0f 94 c0 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 36 84 84 fe 90 <0f> 0b 90 41 80 3c 2e 00 0f 85 8a fe ff ff e9 8d fe ff ff 44 89 f1
[   79.197200][ T6212] RSP: 0018:ffffc90005647660 EFLAGS: 00010293
[   79.197215][ T6212] RAX: ffffffff83401a0a RBX: ffff8880203ef000 RCX: ffff88801df59ec0
[   79.197229][ T6212] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   79.197240][ T6212] RBP: dffffc0000000000 R08: ffff88802be3440f R09: 1ffff110057c6881
[   79.197253][ T6212] R10: dffffc0000000000 R11: ffffed10057c6882 R12: ffff88803f4c2000
[   79.197265][ T6212] R13: ffff88802be34498 R14: 1ffff110057c6893 R15: ffff88802be34400
[   79.197287][ T6212]  ? fuse_dev_install_with_pq+0x23a/0x270
[   79.197323][ T6212]  fuse_dev_alloc_install+0x61/0x80
[   79.197347][ T6212]  cuse_channel_open+0x124/0x7b0
[   79.197371][ T6212]  ? __pfx_cuse_channel_open+0x10/0x10
[   79.197388][ T6212]  misc_open+0x2de/0x350
[   79.197417][ T6212]  chrdev_open+0x4d0/0x5f0
[   79.197437][ T6212]  ? __pfx_chrdev_open+0x10/0x10
[   79.197456][ T6212]  ? fsnotify_open_perm_and_set_mode+0x13b/0x6e0
[   79.197485][ T6212]  ? __pfx_chrdev_open+0x10/0x10
[   79.197501][ T6212]  do_dentry_open+0x83d/0x13e0
[   79.197534][ T6212]  vfs_open+0x3b/0x350
[   79.197551][ T6212]  ? path_openat+0x2e2b/0x38a0
[   79.197577][ T6212]  path_openat+0x2e43/0x38a0
[   79.197630][ T6212]  ? __pfx_path_openat+0x10/0x10
[   79.197655][ T6212]  ? kasan_save_track+0x4f/0x80
[   79.197674][ T6212]  ? kasan_save_track+0x3e/0x80
[   79.197691][ T6212]  ? __kasan_slab_alloc+0x6c/0x80
[   79.197711][ T6212]  ? kmem_cache_alloc_noprof+0x33b/0x680
[   79.197741][ T6212]  ? do_raw_spin_lock+0x12b/0x2f0
[   79.197771][ T6212]  do_file_open+0x23e/0x4a0
[   79.197793][ T6212]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[   79.197821][ T6212]  ? __pfx_do_file_open+0x10/0x10
[   79.197841][ T6212]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[   79.197883][ T6212]  ? alloc_fd+0x64e/0x6c0
[   79.197912][ T6212]  do_sys_openat2+0x113/0x200
[   79.197935][ T6212]  ? __pfx_do_sys_openat2+0x10/0x10
[   79.197957][ T6212]  ? exc_page_fault+0x6a/0xc0
[   79.197986][ T6212]  ? do_user_addr_fault+0xc6f/0x1340
[   79.198009][ T6212]  __x64_sys_openat+0x138/0x170
[   79.198033][ T6212]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.198051][ T6212]  do_syscall_64+0x15f/0xf80
[   79.198067][ T6212]  ? trace_irq_disable+0x3b/0x140
[   79.198088][ T6212]  ? clear_bhb_loop+0x40/0x90
[   79.198110][ T6212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.198127][ T6212] RIP: 0033:0x7f184d1ac819
[   79.198150][ T6212] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   79.198165][ T6212] RSP: 002b:00007ffc4ae9d5e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   79.198182][ T6212] RAX: ffffffffffffffda RBX: 00007f184d425fa0 RCX: 00007f184d1ac819
[   79.198196][ T6212] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[   79.198208][ T6212] RBP: 00007f184d242c91 R08: 0000000000000000 R09: 0000000000000000
[   79.198219][ T6212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   79.198230][ T6212] R13: 00007f184d425fac R14: 00007f184d425fa0 R15: 00007f184d425fa0
[   79.198261][ T6212]  </TASK>
[   79.199098][ T6212] Kernel Offset: disabled