last executing test programs:

4m41.031835859s ago: executing program 0 (id=834):
socket(0x2, 0x3, 0xa)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001980)={0x3c, r1, 0x1b, 0x70bc26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x4}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}, @OVS_PACKET_ATTR_MRU={0x6, 0x9, 0xfffc}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xde, 0x9b72, 0x2, 0x8000)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0xc, 0x0, 0x4)
listen$auto(0x3, 0x81)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x1, 0x0)
openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, 0x0, 0x101200, 0x0)
socketpair$auto(0x1f, 0x4, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
select$auto(0x8, &(0x7f0000000240)={[0x8, 0x4, 0x4, 0x4, 0xffffffffffff7fff, 0x7ffd, 0x4, 0x5, 0x8000000000000000, 0x34, 0x6, 0x0, 0x5, 0x5, 0x3, 0x5]}, 0x0, 0x0, 0x0)
ioctl$auto_IMADDTIMER(r2, 0x80044940, 0x0)

4m38.472389756s ago: executing program 0 (id=839):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_DISCONNECT(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000013c0)={&(0x7f0000000240)={0x1c, r1, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x2004c890)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000440), 0x50400, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
socket(0x2, 0x3, 0x2)
setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4)
setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r2, 0x4068aea3, &(0x7f0000000080)={0xd5})
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r4, 0x10f, 0x85, 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r5 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)
poll$auto(&(0x7f0000000000)={0xffffffffffffffff, 0xe7f1, 0x1723}, 0x8, 0x2)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
signalfd$auto(r5, &(0x7f00000003c0)={0x2}, 0x6)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r8=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, r6, 0x1, 0x70bd26, 0x25dfdbfd, {0x2, 0x0, 0xfd}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004081}, 0x20000084)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r7, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x48200}, 0xc, &(0x7f0000000340)={&(0x7f00000000c0)={0x268, 0x0, 0x4, 0x70bd2d, 0x25dfdbfd, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x250, 0x2, 0x0, 0x1, [@typed={0x4, 0x145}, @generic="4efa526917b7cc374693c5324c0002d0cb3c7cf164ce7f11ca989f023a7195930b6725b07885075354a385a11fb1f134024c30c68c52972c3e6b595bd6a453598f73083c4c2b9aad6ddfe24f0ec3c8254585537394c94624d8cb23167f5e848c4420c329047398b175fe80bc78ada1f5dd4442a52a71976d2be0baa045075adb01f0ff544f114256d21f30", @generic="b21b662bcc147ffab59528c3f73e85016d8ddbb4d0163520285899fa4a64ca5a37caf9f5a8ca611c44c2dc8863018d5b846062941d182f4bb3d85a8f003a1ff6c6d99017d8025462d5e0c651c1acf1303daae5bf2f474ab0759e953de820513d4dba888d0d715db46ba5cbc609cb4ed0c48a0f685f1a3b69d95cbcc2f6096b74f313722f462e0092d9fa08c36d7e4ccad5cb9815cbe9da97ee362571046d01784ca29b0994f2186ab3a8d11eb4ff1d8ab4e2c0416bb463c65d1acc69e9cc22115202a211590ab4fa4cac1e2e5f090c1151e8f3dc25046fead03240ee892578da21638e2308", @generic="889ff0882e9e6e564e5610eae0a98bd9315fe56be239719aef91a196b69ea2bdec1e7fb00acf701732e38dc98048aa5c5243a8e7951295508999705d26170854bbe64639ceb9521a510ba4128a09a39bdff9dcad670fefbbd493dbf8374dd2e992ea52af075feca9d469e1277fae6f38332315de0ed78a286af15730b4d13cee156dcf841b44799eb5c1dc114cdaca65bf1e174eb51bf807329893008b8f4714039750c7f34d49d6c7d14fb088300ae8", @generic="78cd7a06c3cefa026d59da779d688583e26e4c84", @typed={0x14, 0x1e, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}]}, 0x268}, 0x1, 0x0, 0x0, 0x20000000}, 0x88dc)

4m38.200669874s ago: executing program 0 (id=841):
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (rerun: 64)
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto_EVIOCGMASK(r0, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x9}) (async)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000280)='/dev/input/event0\x00', 0x0, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x5, 0x2, 0x0, 0x2f7, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000380), 0x82002, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
r1 = open(&(0x7f0000000000)='&&\x00', 0x0, 0xa)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x902, 0x0)
write$auto_snd_pcm_oss_f_reg_pcm_oss(r2, &(0x7f0000000080)="c2", 0x1) (async)
write$auto(r1, 0x0, 0xfffffdf1)
linkat$auto(r1, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) (async, rerun: 32)
r3 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) (rerun: 32)
write$auto_fuse_dev_operations_fuse_i(r3, &(0x7f0000000100)="1100"/17, 0x11) (async)
fsetxattr$auto(r3, &(0x7f0000000180)=':\xbf+<\x8a}\x00\xeb\xfa\xe6\x8d\x02\\VD\x04\x00\x00\x00*\x80\xa4\xf4vql\xa9\x05o\xf7\x9e\xfd\xf7\x00\x00\x00\x00[8/Z>n\xf5F\xbf\xd3\xefi\x91\x88\x1daIuXz\xc3o\xa2\xa8\xf7\xb6`\xf5e;4\xbek\xf9\xec%\xbc\xd4\xfc`\xb9\n\xb5\xa5V\x98\x14]\x8a\x03\xd9\x9dAC\xc5\xe3\xb7`', 0x0, 0x8, 0x1) (async, rerun: 64)
mprotect$auto(0x0, 0x8000000000000001, 0x8) (async, rerun: 64)
rename$auto(&(0x7f0000000040)='&&\x00', &(0x7f00000000c0)='&&\x00') (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), r4) (async, rerun: 64)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r6=>0x0}) (rerun: 64)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000200)={0x20, r5, 0xd0d58b333228212f, 0x70bd2a, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r6}, @NL80211_ATTR_SCAN_FREQ_KHZ={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x2000c041}, 0x20004080) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_STOP_NAN(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x7c, r5, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@NL80211_ATTR_BSSID={0x4e, 0xf5, "7e8773f9b5120ed5f6b79e4d9ecc530ce243a0c94e65098d9ffcda201bfb90b8114289016f52b8f602c61d059c09f13f875a9f72fb068de674f75a07f167abb6d85e389c4677c05d31d3"}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "7858cf019f274e67c2c59c10"}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7ff}]}, 0x7c}, 0x1, 0x0, 0x0, 0x240080d0}, 0x4800) (rerun: 64)

4m32.760216517s ago: executing program 0 (id=847):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/pci0000:00/0000:00:04.0/broken_parity_status\x00', 0xc3002, 0x0)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, 0x0, 0x4044054)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000640)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000a40)=ANY=[@ANYBLOB="78030000", @ANYRES16, @ANYBLOB="000126bd7000ffdbdf2505000000340001801400020076657468305f766972745f7769666900140002006d6163766c616e300000000000000000080003000b0000007800018008000100", @ANYRES32, @ANYBLOB="e50003000100000000ec16e2", @ANYRES32=0x0, @ANYBLOB="140002006261746164763000000000000000000008000100", @ANYRES32, @ANYBLOB="08000300070000001400020073797a6b616c6c6572300000000000001400020074756e6c3000000000000000000000000500020007000000b00203801c00d080040039800800a200", @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYBLOB='\b\x00;\x00', @ANYRES32=0x0, @ANYBLOB="08006e000600000008004900", @ANYRES32, @ANYBLOB="eb2157a465975d3312af340688b5e12fee85e737aa23330b77029c849ec8656e0aafd3f60209bae4a6984715a8fa9d925c4915f2e3959a34984b16f8c7d198aa4648f90988c75fb679275dad369dc8eddec41cb60676da793e3531d7a0550b1f6b9b288aed72862cd52fdba5fecc544876cdb9b1fdf46a423e3b913fd92a2d895ea2eae255eb995784f04e5cfbb9ba823ceaf7748d53f5ce7af3f64fdf43537cd07b9b4d5d08000f00ffffff7f00000004002080"], 0x378}, 0x1, 0x0, 0x0, 0x40}, 0x2000041)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x802, 0x0, 0x1, 0x0, 0x2, 0x3}, 0x7}, 0x5, 0xcad7)
shutdown$auto(0x200000003, 0x2)
semctl$auto(0xc, 0x2, 0x13, 0x4)
ioctl$auto_BLKPG(0xffffffffffffffff, 0x1269, 0x300)
r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon28\x00', 0x101000, 0x0)
ioctl$auto_MON_IOCQ_RING_SIZE(r1, 0x9205, 0x0)

4m32.171812584s ago: executing program 0 (id=848):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/pci0000:00/0000:00:04.0/broken_parity_status\x00', 0xc3002, 0x0)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, 0x0, 0x4044054)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000640)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000a40)=ANY=[@ANYBLOB="78030000", @ANYRES16, @ANYBLOB="000126bd7000ffdbdf2505000000340001801400020076657468305f766972745f7769666900140002006d6163766c616e300000000000000000080003000b0000007800018008000100", @ANYRES32, @ANYBLOB="e50003000100000000ec16e2", @ANYRES32=0x0, @ANYBLOB="140002006261746164763000000000000000000008000100", @ANYRES32, @ANYBLOB="08000300070000001400020073797a6b616c6c6572300000000000001400020074756e6c3000000000000000000000000500020007000000b00203801c00d080040039800800a200", @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYBLOB='\b\x00;\x00', @ANYRES32=0x0, @ANYBLOB="08006e000600000008004900", @ANYRES32, @ANYBLOB="eb2157a465975d3312af340688b5e12fee85e737aa23330b77029c849ec8656e0aafd3f60209bae4a6984715a8fa9d925c4915f2e3959a34984b16f8c7d198aa4648f90988c75fb679275dad369dc8eddec41cb60676da793e3531d7a0550b1f6b9b288aed72862cd52fdba5fecc544876cdb9b1fdf46a423e3b913fd92a2d895ea2eae255eb995784f04e5cfbb9ba823ceaf7748d53f5ce7af3f64fdf43537cd07b9b4d5d08000f00ffffff7f00000004002080"], 0x378}, 0x1, 0x0, 0x0, 0x40}, 0x2000041)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x802, 0x0, 0x1, 0x0, 0x2, 0x3}, 0x7}, 0x5, 0xcad7)
shutdown$auto(0x200000003, 0x2)
semctl$auto(0xc, 0x2, 0x13, 0x4)
ioctl$auto_BLKPG(0xffffffffffffffff, 0x1269, 0x300)
r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon28\x00', 0x101000, 0x0)
ioctl$auto_MON_IOCQ_RING_SIZE(r1, 0x9205, 0x0)

4m31.310227159s ago: executing program 0 (id=851):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
swapon$auto(&(0x7f0000000000)='/dev//oop7\x00', 0x4)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000000)={0x14, r1, 0x1, 0x870bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec11\x00', 0x2, 0x0)

4m16.065450999s ago: executing program 32 (id=851):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
swapon$auto(&(0x7f0000000000)='/dev//oop7\x00', 0x4)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000000)={0x14, r1, 0x1, 0x870bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec11\x00', 0x2, 0x0)

2m35.344005501s ago: executing program 4 (id=1118):
ioctl$auto_BLKTRACESETUP2(0xffffffffffffffff, 0xc0481273, &(0x7f0000000500)={"0815f17f5b9ecb8a8ac46fbfa3cb6d6522baa61ba58996ac2421bb3565a6f66e", 0x8, 0x1, 0x7ff, 0xcf08, 0x9, <r0=>0xffffffffffffffff})
sendmsg$auto_OVS_FLOW_CMD_NEW(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000580)={&(0x7f0000000e00)={0x56c, 0x0, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@OVS_FLOW_ATTR_MASK={0x558, 0x7, 0x0, 0x1, [@typed={0x13, 0x38, 0x0, 0x0, @str='/dev/dri/card0\x00'}, @nested={0x95, 0x33, 0x0, 0x1, [@generic="e45987a87bbb9d9ef2d30b643b38bdbfa4bedebf2a2c76748526c2b5d6af75c8fc42db87f22ab051340ab341efb6ce4224f5e431349a1edc8ced2e78d4122fde751d95bbca203695c85b5e947cc983c096aaff379437ad390526f53b0ea0c12fcddd78bdd559cd31ea4ca5c6ff589990fc64588bbcf344e222b13a1315e6f2a85f3414c65bc70dc543531b877c", @nested={0x4, 0xe1}]}, @generic="f1a9588a245b2498f1318196f0d7e0c3b9a7774a31ab7db7021f6b4386a6848e2d05caed51d53065bde890fa03525c2f6d0f11f922f5fedfc91b1feb8bcac68253f1d326a47f35c4f3fbc536a18ce3ac324889c33d4570d528fdd7f49c51a28ca37052db134377724036bef90c491ae1ffe2ab29da500efba565add5444ab80ce6d8ca6aafb454395232eeda6ad7faa39fb646adfcb3ca990486e0c536c4cca89d", @generic="39b50117b75f8b7ff02b2a81573fc752cf2870173e3fdc2d448e21a96efcec4d5cc5ebec047ad60411001a46eda07ed438621641c286e2808f6a858ec08c1e79bcec6f251c218a87be89ede585d92f2958479d510bd219368e05d30fa9dbfd789c326edf089046b48d016a2b39812c53685b6df9f9fcdf8364bd80ba9afc2b196575bbf479b64fd9eedcde1c64103daf2da256180fb49e39b4f860ba491297f6f0e03371a2b83893723195d1b19e6253c8fe64cb39605cbd6354c83e4102", @generic="34b24175e1e4eb4b4223ec7b6505cf20508707884b4bf509e9e3627230b3136a8fd38300ba9eb44971dcf023bfe3f9de82af1e3f5d5f6804ba203d7826aaafe860b6771a28e782a7dc76429f248478494c3801f9e02bcaf403b90fdadee8420e6cc762eb49a31865024ec6684dbb177ad23a7113c730acb387c81788c82870ffe8b34b4b76c8d1375eadaa83a5be5313dac8fc124b9a5e9aee6863031a95f94a8edd66ac6967950012c669baa91291af4a6b7406fdcc54554f303709b23f02ad358c57459fc3", @nested={0xae, 0x26, 0x0, 0x1, [@nested={0x4, 0xa7}, @generic="773a68996c2b3c1b7e88c03f20b469ca77e9d344957416ace574d2867b092887afed9656fcbaf74d95431781e6b94d0bca43ecb560e1246a91d0d150f1455257a551b544f019464e47661851728429d608686f9d9e1fa52a7e10f430e1f7e587791347a21a059401f4e766538602e9e7f55835df74f11c83d44a691ab3f10097bcc1bf7938b8d938140ee4b8f18508c2931c686cc8991ee8", @generic="359e32b86bcbce0b8da402a19a83"]}, @typed={0x8, 0x10f, 0x0, 0x0, @pid=r0}, @generic="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", @nested={0x6e, 0xa0, 0x0, 0x1, [@typed={0x8, 0x37, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x4, 0x61}, @nested={0x4, 0xf5}, @generic="cfd8a1307ef2dd87a9be48a90bc66f732d2f16ba185959921ba505f9e05cd864de1936157bf3ccae3eae37c76dba6295d6f136a9d18308e74115ccd5f1038a806f866b83998d2e9b5caff7cbfa9b1c34db3afbc4573a6d3f0c61"]}, @nested={0x5a, 0x24, 0x0, 0x1, [@generic="d11066729d88b9610bd2f6493a49e4db127ba1dbc1043e88cc91cc774e70ef29db09a5a9341d07507e05", @typed={0x8, 0xe3, 0x0, 0x0, @uid}, @nested={0x4, 0x3}, @typed={0xc, 0x1c, 0x0, 0x0, @u64=0x1}, @typed={0x14, 0xc6, 0x0, 0x0, @ipv6=@private0}, @generic]}]}]}, 0x56c}, 0x1, 0x0, 0x0, 0x200000c0}, 0x40801)
sigaltstack$auto(&(0x7f0000000000)={0x0, 0x80000001, 0x8000000000000004}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = getpid()
mmap$auto(0x0, 0x5, 0xeacc, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/pagemap\x00', 0x181002, 0x0)
ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x100000001, 0xfffffffffffffffe, 0x1, 0x8, 0xc00, 0x2c, 0x2c, 0x8, 0x1})
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x7)
r4 = gettid()
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r5 = open(0x0, 0x163340, 0x6a)
mount$auto(0x0, 0x0, 0x0, 0x29ecea06, 0x0)
rt_tgsigqueueinfo$auto(r1, r4, 0x21, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x7, 0x1, 0x1007181, 0x8a0d, 0x4, 0x7, 0x7, 0x89, 0x26, 0x4, 0x200000000000, 0xfffffffffffff343, 0xfffffffffffffffa, 0x500000000000000, 0x0, 0x0, 0xfffffffffffffffe, 0x6, 0x401, 0x22000, 0x9, 0xfffffffc, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x9, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3a, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xe]}, 0x9, 0xd)
r6 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r6, 0xfffffff7effffd04, &(0x7f00000001c0))
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x121d02, 0x0)
eventfd$auto(0x3)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/offline\x00', 0x800, 0x0)
read$auto(r7, &(0x7f00000000c0)='/sys/devices/platform/vhci_hcd.7/usb23/23-0:1.0/ep_81/interval\x00', 0x3)
close_range$auto(0x2, 0x8, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(r5, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2508080}, 0xc, &(0x7f0000000100)={&(0x7f0000000380)={0xfc, 0x0, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x3}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x2}, @NL802154_ATTR_SEC_DEVKEY={0xc0, 0x2f, 0x0, 0x1, [@nested={0xb9, 0x30, 0x0, 0x1, [@typed={0x4, 0x5f}, @generic="cd71fd52a132d5525e0673dac9e00f804e27330b8cef8927c2deacc817b4004b2dd7b904d174c1a0e9b251d511f4d516d95a7842d9078066f9dbd39e517757185178c9a9bd135d4fe1a87681ceaf125825ae66414d2430b43eca74af0fd6f17984bed2a15b7a8cbd73919c96dbc86a2df52f90ba20302f7be03affd94dab7306f3dc7afa1491ecd544468fc51a06888e3ae2fc970d44ffeee7158021e22f8d1829979083fb", @nested={0x4, 0xb8}, @typed={0x8, 0x98, 0x0, 0x0, @u32=0x3}]}]}, @NL802154_ATTR_SCAN_DURATION={0x5}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x9}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x9}]}, 0xfc}, 0x1, 0x0, 0x0, 0x4040050}, 0x0)
sendmsg$auto_HWSIM_CMD_FRAME(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000600)=ANY=[@ANYBLOB="8979778388b44c12ea", @ANYRES16=r9, @ANYBLOB="030426bd7000f9dbdb25020000001c000300afcc6f65fdd72aaaf6232ed2dd183765b06bef62cb03c3460a000100196f88149b0c000008000500050000000800060008000000"], 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
membarrier$auto(0x1, 0x5, 0x804)

2m35.224379984s ago: executing program 4 (id=1119):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00', 0x0, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

2m34.986677144s ago: executing program 4 (id=1120):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000080), 0x2003, 0x0)
r0 = socket(0xa, 0x2, 0x0)
setsockopt$auto(r0, 0x29, 0xb, 0x0, 0xca6)
close_range$auto(0x2, 0x8, 0x0)
r1 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0)
bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, 0x21ea, 0x7ff, 0x3, 0x0, 0x80000001, r1}, 0x6f4)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/set_event\x00', 0x20c0, 0x0)

2m28.626714354s ago: executing program 4 (id=1131):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
read$auto_fragmentation_threshold_ops_(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/memory15/online\x00', 0xa001, 0x0)
write$auto(r0, &(0x7f0000000140)='0[.[\x00', 0xcd04)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x401, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_DRAIN(0xffffffffffffffff, 0x40045731, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prctl$auto(0x39, 0x0, 0x0, 0x0, 0x0)
ioctl$auto(0x3, 0xae41, 0x38)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/anycast6\x00', 0x101940, 0x0)
pread64$auto(r1, 0x0, 0x1ff, 0x5)

2m27.565803899s ago: executing program 4 (id=1133):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0x80000e9e, 0x1, 0xd, 0xfffffffffffffffb, 0x100000000, 0x2c2, 0x800002017d, 0x4, 0x40, 0xd, 0xd59, 0xfb, 0xff, 0x21, 0x100000005]}, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) (async)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) (async)
unshare$auto(0x40000080) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
getxattr$auto(0x0, &(0x7f0000000300)='\\&\x00', 0x0, 0x5) (async)
write$auto(r1, &(0x7f0000001200)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x19U\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x81\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xecWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\xfbJ7\xd1\xdc\xe1\x80yi\xef\x91M\xfbB\x97\x80\x9a\xbep\x86\x93\xcc4\xe5\xba\x015I\x1d\r\xdf\xc1Q\x8eM\xa6\t$\xb7ZR\xdcs\x94\xccn\x05\xb8\x06', 0x500000a3d9) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async, rerun: 64)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async, rerun: 64)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
madvise$auto(0x1afd, 0x7fffffff, 0x4) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) (async)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00') (async)
madvise$auto(0x0, 0x200007, 0x19)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) (async, rerun: 32)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) (async)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) (async)
mkdir$auto(&(0x7f0000000200)='}[,&*}/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc001) (async)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0) (async)
mmap$auto(0x0, 0x4020009, 0x2, 0xeb1, 0x401, 0x8000) (async)
bpf$auto(0x2, &(0x7f0000000380)=@token_create={0x5315}, 0x1)

2m25.116560322s ago: executing program 4 (id=1135):
socket(0x2, 0x3, 0xa)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001980)={0x3c, r1, 0x1b, 0x70bc26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x4}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}, @OVS_PACKET_ATTR_MRU={0x6, 0x9, 0xfffc}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xde, 0x9b72, 0x2, 0x8000)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0xc, 0x0, 0x4)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
select$auto(0x8, &(0x7f0000000240)={[0x8, 0x4, 0x4, 0x4, 0xffffffffffff7fff, 0x7ffd, 0x4, 0x5, 0x8000000000000000, 0x34, 0x6, 0x0, 0x5, 0x5, 0x3, 0x5]}, 0x0, 0x0, 0x0)
ioctl$auto_IMADDTIMER(r2, 0x80044940, 0x0)

2m9.949609837s ago: executing program 33 (id=1135):
socket(0x2, 0x3, 0xa)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001980)={0x3c, r1, 0x1b, 0x70bc26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x4}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}, @OVS_PACKET_ATTR_MRU={0x6, 0x9, 0xfffc}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xde, 0x9b72, 0x2, 0x8000)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0xc, 0x0, 0x4)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
select$auto(0x8, &(0x7f0000000240)={[0x8, 0x4, 0x4, 0x4, 0xffffffffffff7fff, 0x7ffd, 0x4, 0x5, 0x8000000000000000, 0x34, 0x6, 0x0, 0x5, 0x5, 0x3, 0x5]}, 0x0, 0x0, 0x0)
ioctl$auto_IMADDTIMER(r2, 0x80044940, 0x0)

15.15018193s ago: executing program 3 (id=1452):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mbind$auto(0xfffffffffffffc01, 0xc000000000, 0x6fedf9c9, 0x0, 0x92, 0x3)
r0 = memfd_secret$auto(0x0)
fcntl$auto_F_UNLCK(r0, 0x8, 0x2)
mbind$auto(0x5, 0x5, 0x3, &(0x7f0000000000)=0x5, 0x40, 0x0)
r1 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, 0x0, 0xa4a02, 0x0)
ioctl$auto_TCSBRK2(0xffffffffffffffff, 0x5409, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000000), r2)
sendmsg$auto_NL802154_CMD_GET_INTERFACE(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)={0x14, r3, 0x305, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004010}, 0x4040008)
r4 = geteuid()
keyctl$auto(0x1e, r4, r4, 0x0, 0x7)
sendmsg$auto_NL802154_CMD_DEL_SEC_DEVKEY(0xffffffffffffffff, 0x0, 0x44040)
setreuid$auto(0x0, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x24000802)
syz_genetlink_get_family_id$auto_ila(&(0x7f00000018c0), r2)
r5 = gettid()
r6 = getpid()
rt_tgsigqueueinfo$auto(r6, r5, 0x1, 0x0)
getpgid$auto(0x0)
sendmsg$auto_IPVS_CMD_SET_DEST(r1, 0x0, 0x20048840)
clone$auto(0x7, 0x2000400000d, 0xfffffffffffffffc, 0x0, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

13.280173857s ago: executing program 3 (id=1459):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/usbcore/parameters/quirks\x00', 0x1c1643, 0x0)
semctl$auto(0x2, 0x1000005, 0x0, 0x45ab)
r0 = socket(0xa, 0xa, 0xa4)
setsockopt$auto(r0, 0x10000000084, 0x0, 0x0, 0x10)

12.751224694s ago: executing program 2 (id=1463):
mmap$auto(0x0, 0x4020008, 0xd7, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x68ca81, 0x0)
ioctl$auto_BLKDISCARDZEROES(r0, 0x127c, 0x0)

12.457211449s ago: executing program 2 (id=1465):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
readv$auto(0x3, &(0x7f0000000600)={0x0, 0x4}, 0x1da)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r0, 0x84, 0x4, 0x0, &(0x7f0000000080)=0x9c8)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)

12.283134098s ago: executing program 2 (id=1466):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) (async)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/workqueue/parameters/default_affinity_scope\x00', 0x1a9242, 0x0) (async)
r2 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/loop9/hctx0/active\x00', 0x800, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r2, &(0x7f00000002c0)=""/243, 0xf3) (async)
sendfile$auto(r1, r1, 0x0, 0x5)

12.241148703s ago: executing program 3 (id=1467):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/input/event2\x00', 0x2c07c2, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/amidi2\x00', 0x80400, 0x0)
getsockopt$auto_SO_KEEPALIVE(0xffffffffffffffff, 0xffffffff, 0x9, &(0x7f0000000080)='&)\x00', &(0x7f0000000100)=0x3)
ioctl$auto(0x3, 0x5d, r0)
ioctl$auto_KVM_GET_MSRS(r1, 0xc028ae92, &(0x7f0000000040)={0x7})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0xa, 0x6, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
pidfd_open$auto(0x1, 0x0)
socket(0xa, 0x1, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x10, 0x2, 0x4)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x8)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/dummy_hcd.0/usbmon/usbmon1/dev\x00', 0x8302, 0x0)
socketpair$auto(0xeecb, 0xc, 0x204, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x430002, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000600)='/sys/kernel/profiling\x00', 0xa001, 0x0)
write$auto(r3, 0x0, 0x2fb)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)

11.789341396s ago: executing program 2 (id=1469):
r0 = socket$auto(0x4, 0x138, 0x4)
ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r0, 0x7af, 0x0)
io_setup$auto(0x7ffe, &(0x7f0000000000))

10.121555079s ago: executing program 2 (id=1471):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x0, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/scsi/sg/debug\x00', 0x100, 0x0)
pread64$auto(r0, 0x0, 0x6, 0x3)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x7)
process_madvise$auto_MADV_MERGEABLE(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0xc000000000}, 0xffffffffffff40db, 0xc, 0xa587)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_ptdump_curusr_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x7c8401, 0x0)
mmap$auto(0x0, 0x2020009, 0x8, 0xf8, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
connect$auto(0xffffffffffffffff, 0x0, 0x9b4)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0xf49, 0x7fffffffffffffff, 0xdf, 0xed1, r2, 0x1000005)
sysfs$auto(0x2, 0x15, 0x0)
fsopen$auto(0x0, 0x1)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
select$auto(0x9, 0x0, 0x0, &(0x7f0000000040)={[0xc, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0x1]}, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x4, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video10\x00', 0x100, 0x0)
readv$auto(r3, &(0x7f0000000040)={&(0x7f0000000100)="210d5c8ae50cff67940460ca4fe59aaf7b00f36473f8d761b80362cb13b29ef8dc2574bd656799667dbf2396eb43203d17e2ed"}, 0x8)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x11, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)

9.516214573s ago: executing program 3 (id=1473):
mincore$auto(0x1000, 0x8001, 0x0)
socket(0x15, 0x5, 0xfffffffd)
syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002)
eventfd$auto(0x8e)
r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
write$auto_proc_mem_operations_base(r0, &(0x7f0000001680)="a7", 0xfffffc96)
syz_open_procfs$namespace(0x0, 0x0)
mmap$auto(0x0, 0x400, 0xfffffffffffffffa, 0xeb1, 0x401, 0x8000)
sethostname$auto(0x0, 0xfffffff8)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/net/bond0/bonding/arp_all_targets\x00', 0x140902, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x15, 0x5, 0x0)
open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x42842, 0x95)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x2a482, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/advisor_max_cpu\x00', 0xa001, 0x0)
socket(0x1e, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x3, 0x7fff)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
memfd_create$auto(0x0, 0x2)
socket(0xa, 0x2, 0x0)
fsconfig$auto_FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, &(0x7f00000000c0)='/sys/kernel/mm/ksm/advisor_max_cpu\x00', &(0x7f0000000100)="a71220d833fc57e989b49a82599f9b97ed11cde09fc4a35f6b85f31ba4f43170fb59896c5bfa1cdcba746f206030de45315f5deffb97bf6aa3e102ed9be7bc651a9285632d0e3a5b629283", 0x7)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0)

9.149810339s ago: executing program 2 (id=1474):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x4000008000)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0)
pread64$auto(r2, 0x0, 0x800003, 0x1)
setrlimit$auto(0x1, 0x0)
mlockall$auto(0x7)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty0\x00', 0x102, 0x0)
writev$auto(r3, &(0x7f0000000040)={&(0x7f0000000000), 0xff}, 0x1)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x141000, 0x0)
sendmsg$auto_NFSD_CMD_VERSION_SET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0xf8, r1, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@NFSD_A_SERVER_PROTO_VERSION={0x28, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_MINOR={0x8, 0x2, 0xa00000}, @NFSD_A_VERSION_MAJOR={0x8}, @NFSD_A_VERSION_MAJOR={0x8}, @NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_MAJOR={0x8, 0x1, 0x54db5d01}]}, @NFSD_A_SERVER_PROTO_VERSION={0x34, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_MINOR={0x8, 0x2, 0x4de}, @NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_MINOR={0x8}, @NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_MAJOR={0x8, 0x1, 0x4}, @NFSD_A_VERSION_ENABLED={0x4}]}, @NFSD_A_SERVER_PROTO_VERSION={0x4}, @NFSD_A_SERVER_PROTO_VERSION={0x18, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_MAJOR={0x8, 0x1, 0xfffffff8}, @NFSD_A_VERSION_MINOR={0x8, 0x2, 0x976}]}, @NFSD_A_SERVER_PROTO_VERSION={0x2c, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_MAJOR={0x8, 0x1, 0x240}, @NFSD_A_VERSION_MINOR={0x8, 0x2, 0xfff}, @NFSD_A_VERSION_MINOR={0x8, 0x2, 0x3}, @NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_MAJOR={0x8, 0x1, 0x200}]}, @NFSD_A_SERVER_PROTO_VERSION={0x24, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_MAJOR={0x8, 0x1, 0x2}, @NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_MINOR={0x8, 0x2, 0xe}, @NFSD_A_VERSION_ENABLED={0x4}]}, @NFSD_A_SERVER_PROTO_VERSION={0x1c, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_MAJOR={0x8, 0x1, 0x5}, @NFSD_A_VERSION_MAJOR={0x8, 0x1, 0xe8d}, @NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_ENABLED={0x4}]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x24000001}, 0x100488c8)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
getrlimit$auto(0x9, &(0x7f0000000040)={0x0, 0xf8f})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r4 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r4, 0x107, 0x12, 0x0, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x9, 0x1, 0x4)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptyxb\x00', 0xa000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0)
unshare$auto(0x40000080)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_LINK_RESET_STATS(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000003e00)={&(0x7f0000000800)={0x20, r6, 0x935, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0xc, 0x4, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@typed={0x4, 0xea}]}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x0)
openat$auto_trace_time_stamp_mode_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/timestamp_mode\x00', 0x105100, 0x0)

5.468439269s ago: executing program 3 (id=1480):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x149e42, 0x0)
mmap$auto(0x0, 0x810002, 0xffb, 0x8000000008011, 0x3, 0x8000)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x81000)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000000), r0)
recvmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230)
socket(0x2, 0x1, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20000800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x80002, 0x73)

5.348364896s ago: executing program 5 (id=1481):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00', 0x0, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socketpair$auto(0x5, 0xffff, 0x6, &(0x7f0000000040)=0x6)
socket(0x2d, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0x3, 0x89e0, 0x91)
ioctl$auto(0x3, 0x89e0, 0x91)
readv$auto(r0, &(0x7f0000000a80)={0x0, 0xffff}, 0xb)

5.104343294s ago: executing program 5 (id=1482):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x0, 0x4, 0x5)
r0 = io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000600), 0x142, 0x0)
writev$auto(r1, &(0x7f0000000c00)={&(0x7f0000000180)="eb2b84628f1122188d03594237c6ff6ae52660608ec2baca887d6fc1abce4897c5f12a899c001e4ed0531f6c11513d3bc210171b5909d76a537dd78adbc00d851c3c0105e5ebc2b8ee97af2a3b5a6914a4076c01e8a4b08180423d15a9bf02684e5abbabf70ae9529469eb1940bf370fe1e9a1e71f61ffeffa3e7b134c2d290fcf04c0a0ddde644f110e3baf04f50a411ca31a0bedb78a7514fa1dc97c2c7cfdf2ea7c9f0998be3bfbfb075e37da93130bc46dbf75f27fcb5f1a3a32f74a447dee5d80000000", 0x7}, 0x4)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x2, 0x0)
r2 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x26241, 0x20)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
ioctl$auto_FS_IOC_FSSETXATTR(r1, 0x401c5820, 0x4)
socket(0x2, 0x1, 0x106)
listen$auto(0x3, 0x81)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
close_range$auto(r0, r2, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
socket(0x0, 0x4, 0x5) (async)
io_uring_setup$auto(0x6, 0x0) (async)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000600), 0x142, 0x0) (async)
writev$auto(r1, &(0x7f0000000c00)={&(0x7f0000000180)="eb2b84628f1122188d03594237c6ff6ae52660608ec2baca887d6fc1abce4897c5f12a899c001e4ed0531f6c11513d3bc210171b5909d76a537dd78adbc00d851c3c0105e5ebc2b8ee97af2a3b5a6914a4076c01e8a4b08180423d15a9bf02684e5abbabf70ae9529469eb1940bf370fe1e9a1e71f61ffeffa3e7b134c2d290fcf04c0a0ddde644f110e3baf04f50a411ca31a0bedb78a7514fa1dc97c2c7cfdf2ea7c9f0998be3bfbfb075e37da93130bc46dbf75f27fcb5f1a3a32f74a447dee5d80000000", 0x7}, 0x4) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
open(0x0, 0x22240, 0x155) (async)
socket(0x2, 0x2, 0x0) (async)
socket(0x2, 0x1, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
open(0x0, 0x26241, 0x20) (async)
socket(0x2, 0x1, 0x106) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) (async)
ioctl$auto_FS_IOC_FSSETXATTR(r1, 0x401c5820, 0x4) (async)
socket(0x2, 0x1, 0x106) (async)
listen$auto(0x3, 0x81) (async)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) (async)
close_range$auto(r0, r2, 0x0) (async)

4.50251744s ago: executing program 5 (id=1484):
socket(0x1, 0x0, 0x1)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x800000404, 0x8000)
socketpair$auto(0x1001, 0x3, 0x7fff, 0x0) (async)
socketpair$auto(0x1001, 0x3, 0x7fff, 0x0)
remap_file_pages$auto(0x6a27, 0x100001000, 0xfffffffffffffffd, 0xb77, 0x66a)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2903c2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x2)
socket(0x10, 0x2, 0x0) (async)
socket(0x10, 0x2, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv6/neigh/virt_wifi0/unres_qlen_bytes\x00', 0x4001, 0x0) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv6/neigh/virt_wifi0/unres_qlen_bytes\x00', 0x4001, 0x0)
r0 = socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
connect$auto(r0, &(0x7f0000000080)=@generic={0xa, "509235679a5532c63bacddae0710"}, 0x54)
write$auto(0xffffffffffffffff, 0x0, 0x6) (async)
write$auto(0xffffffffffffffff, 0x0, 0x6)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video43\x00', 0x24840, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
rt_sigtimedwait$auto(&(0x7f00000010c0)={0x2dda}, &(0x7f00000011c0)={@siginfo_0_0={0x3, 0x10001, 0x18, @_sigsys={&(0x7f0000001100)="b8b596e2b833f004e2b356f49dd9b4b4519cb39912e1267c3d4e9b764015e94859ecc3802c0ad16152e8eb033bcde2594d4268bb4537e6b99eea8cddd953e044c067ebbfb4e02de3f99f3c6b55bea2971d10651e8ef9379ccdb5f2f806daa1370329b78e1f5b648ff59282bd918933e78b2fbe6e5780b63fb16d8fcc8ed6f706f4ef0ccca231a9a7d01c390b80be336cdd7c39fd589bd25f6127e8369efe77641fd354fc20d637416ee5cbc0f1972ff5476cbb7cf338b36a8982dade5c7594", 0x7, 0x4}}}, &(0x7f0000001240)={0x0, 0x7fffffffffffffff}, 0x8) (async)
rt_sigtimedwait$auto(&(0x7f00000010c0)={0x2dda}, &(0x7f00000011c0)={@siginfo_0_0={0x3, 0x10001, 0x18, @_sigsys={&(0x7f0000001100)="b8b596e2b833f004e2b356f49dd9b4b4519cb39912e1267c3d4e9b764015e94859ecc3802c0ad16152e8eb033bcde2594d4268bb4537e6b99eea8cddd953e044c067ebbfb4e02de3f99f3c6b55bea2971d10651e8ef9379ccdb5f2f806daa1370329b78e1f5b648ff59282bd918933e78b2fbe6e5780b63fb16d8fcc8ed6f706f4ef0ccca231a9a7d01c390b80be336cdd7c39fd589bd25f6127e8369efe77641fd354fc20d637416ee5cbc0f1972ff5476cbb7cf338b36a8982dade5c7594", 0x7, 0x4}}}, &(0x7f0000001240)={0x0, 0x7fffffffffffffff}, 0x8)
write$auto(r1, 0x0, 0x80000000)
mmap$auto(0x2916, 0x400008, 0x20000000000000de, 0x9b72, 0xffffffffffffffff, 0x0) (async)
mmap$auto(0x2916, 0x400008, 0x20000000000000de, 0x9b72, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile$auto(r2, r2, 0x0, 0x7ffff003) (async)
sendfile$auto(r2, r2, 0x0, 0x7ffff003)
vmsplice$auto(0x2, &(0x7f00000000c0)={0x0, 0x7ff}, 0x8000000000000001, 0x0) (async)
vmsplice$auto(0x2, &(0x7f00000000c0)={0x0, 0x7ff}, 0x8000000000000001, 0x0)
write$auto(0x1, 0x0, 0x80000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x801, 0x0)
socket(0xf, 0x3, 0x2)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72)

3.818682665s ago: executing program 1 (id=1485):
mmap$auto(0x0, 0x202000c, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x80002, 0x0)
r0 = socket(0x2, 0x1, 0x106)
sendmsg$auto_OVS_VPORT_CMD_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4100}, 0x20000000)
setsockopt$auto(r0, 0x6, 0x6, &(0x7f0000000180)='*\x1b\xfe>\xfe\n\x885w\xda\xafw\xe96Q\xdf%\f\xc8\xa48\xa1l\xd6\\)\xa2\xce\x0f\xba\xb8\xfb\xabA\x0evd\xff\x9e\'\xda\xd0\xe9h\xaa;\xef?\xca\xf3tI\xc9\xe6+,\x1b\xd5H\xb9\x15}\xaf\xb0', 0x8)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'dvmrp1\x00'})
bind$auto(0xffffffffffffffff, &(0x7f0000000280)=@xdp={0x2c, 0x7, 0x0, 0x32}, 0x2b04)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:04.0/numa_node\x00', 0x1a3b02, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
keyctl$auto_KEYCTL_SETPERM(0x5, 0xfffffffffffffffb, 0x200, 0x1, 0x100)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, 0x0, 0x4800)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/swradio12\x00', 0x0, 0x0)
poll$auto(&(0x7f00000001c0)={r1, 0xffff, 0x29}, 0x3, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
keyctl$auto_KEYCTL_SETPERM(0x5, 0x4, 0x7, 0x2, 0xcc90)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
madvise$auto(0x0, 0x2003f0, 0x15)
io_uring_setup$auto(0x1, 0x0)
close_range$auto(r1, r1, 0x0)
socketcall$auto_SYS_SOCKETPAIR(0x8, &(0x7f0000000040)=0xfffffffffffff001)
madvise$auto(0x0, 0x2003f2, 0x15)
r3 = getsid$auto(0x0)
process_vm_readv$auto(r3, &(0x7f00000000c0)={&(0x7f0000000000)="d611943f42bf3cdcaee3eff3d7219a48fd519450a7ac1eb4e128b8ff4c5eb82f43ec890d420e96be069ca0f89b6eff70f72d27449dd03b454cf820c51a904c89685b6a176fd2fad297ddb1b60d3b9eb018d5ec53c66a0dccb9d135b82f25023fe5e1a2adf7c8d04e9faf8050a7643dac8cbfd8bd507631e7c2a4b636b96a2272ff086c66a1aed04ece1236a324573582801ca2bba35b701d8cb0ed08b2eb", 0x4}, 0x5, &(0x7f0000000180)={&(0x7f0000000100)="5a7d13da84ebb930fc87d68075d057582cc3aaecf34446e49f0ad8331b89fb6e74172ed800e9505530df2605", 0x400}, 0x7fffffffffffffff, 0x5)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)

2.689356977s ago: executing program 5 (id=1486):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x0, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x200eb1, 0x401, 0x8000)
futex_waitv$auto(&(0x7f0000000180)={0x3fb, 0x6, 0x2, 0xfff}, 0x3, 0xbffffffc, 0x0, 0x81) (async)
bpf$auto(0x5, &(0x7f0000000100)=@task_fd_query={0x2, 0x2, 0x4, 0x0, 0x85, 0x7, 0x9, 0x6, 0x8001}, 0x101)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/fs/jfs/TxAnchor\x00', 0x80000, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r2, &(0x7f0000000180)=""/250, 0xfa)
sendmsg$auto_WG_CMD_SET_DEVICE(0xffffffffffffffff, 0x0, 0x810)
mmap$auto(0x0, 0x9d90, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$auto_PPPIOCSMRU(r4, 0xc004743e, 0x0) (async)
ioctl$auto_PPPIOCSPASS(r4, 0x40107447, &(0x7f0000000080)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(r4, 0x40107447, &(0x7f0000000000)={0x9, &(0x7f0000000040)={0x15, 0x0, 0x1}}) (async)
ioctl$auto_TUNSETVNETLE(r3, 0x400454dc, &(0x7f0000000040)=0xfffffff7) (async)
recvmmsg$auto(r3, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
r5 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/trigger\x00', 0x40440, 0x0)
getsockopt$auto_SO_TIMESTAMPING_OLD(r5, 0x4, 0x25, &(0x7f00000000c0)='/dev/nbd8\x00', &(0x7f0000000340)=0x1)
ioctl$auto(r0, 0xc0c0128e, r1)

2.064511811s ago: executing program 5 (id=1487):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(r0, &(0x7f0000006940)={0x0, 0x0, &(0x7f0000006900)={&(0x7f0000000000)={0x34, r1, 0x1, 0x70bd29, 0x25dfdbff, {}, [@HWSIM_ATTR_FLAGS={0x8, 0x4, 0x1}, @HWSIM_ATTR_ADDR_TRANSMITTER={0xa, 0x2, "a060292f83d9"}, @HWSIM_ATTR_COOKIE={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000041}, 0x800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone3(&(0x7f0000000100)={0x2100000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000000), 0x202000, 0x0)
ioctl$auto_BTRFS_IOC_FORGET_DEV(r2, 0x50009405, &(0x7f0000000180)={@inferred, "888449c31b0229593a461cc33b681ba38522acb34847bf6d24c0c486f92310c9893d5226bc516ebcdb837862c07f23fc3d5fb729ec67f0bc31f6c7201780b9de1a8177d8d357750a28b073b0fdee0684f52bc85a8f52a2c6db787e2b62e9ebccaf5b10c06d36f031faaa0ec6d917dcbb8a13ca9ec9fb299ecdb62ad5310f44d9044f9b477c65ab45307f7db9293e4f895be1fd92e805826d21e1a73fb70d8bd504ac7733bf9b585db557793ba8a74b992a3af6fb99a22d77f190d951f0e40392b5dfb6461ce28cbef7cac7347c8052f2c9949cf340f398f63a354ee8ac2cd6a8db275c015279f14c2517f1eb16a9c0ef13d84411e665532720865f8b961334fa0f521361f565630e4e0749f57e7d4b341417b1b69ffd39c8ecdc0825878d0e9b245898fa5c5f4e35786dbeb354e8a47357fb63fa8eaed3757197efce788bc29d797a15204d4f12806fef1da67eaa6b0a4584c0a50d33fb386a5a5b439bb637c249fab27e2c4ee6553cd3760e7da4c1646233129bd7da5910c44dd6972c985b2b524fa0d716b82a4464deca847c702da852a0e5aff166487bda429dbe66e0b54d3fbd5d97a764412765ff62941e917d437bb675f742521f300e6dc070dacfc0f5b38352f2d3780afe3446ad786382760ec5b62c0aff6b44e54b43f91aa8b8e03c730dfe488278dcbe5d144745d1f26c663dc07544bcb3932af8af315d8d7e86ffd1740daf2ff8d6584f40454c7a7fb7622a2cb8a05d1f680f148ff5681f5f37aa7caa946211106c95b60ffa0baab75095e12b52ad32e9809358ae2cd873c3cc6bc568df656cbf0e36ae3718af3251075ff27e6777dc1e278d9ed06245d4e84bf48f8f48dba7368d357e871d97abb659bce4f5aefbc6ebbb0b16015a6f318e6e4aa1b45aceec469634933daf97164f95988b0a788d3e06745c3a2bffe205364e4729c979b9076671702b4df29aad6d65aa790818ede94a2a1ca0e32ac57d0a5d2c9f8b77e32e33831adb1d339a87b78a4b097e221bedfc17d8b45f1bde88a85b7a5e61fea96fabb07465c9fc2259f7413b1d709fe74d05e5fda00454ff525dc87113b5f334df1410488172ebd905d817b139c86fa7515d6fc7e8299136317d126d41e073d482e9de5fdadcc371e87152003f199ed555a907a7ca05f7a63781602cbc3d2da4272436a5ab4a99438233b3e0440a7ac5cac0e62fbd0dc3aec2674c16b206e05ddc402d7694e8c6e1c2201c5f0b4045e7d9e1fe791187aca524ba527e147cf00a5a14203478d4b4af58d501c64605afe97dbfbb08cc830b2822d9ec0e12a02ac6dd5187e34c57d27d8c714094ccea6f86ec029fdbcb87918d50e42fafa52b87443bd09f66f017f1a8693f6ec060b1264fbe88434767b1b45f33e2e2dc9aaa5539d317407bb77fe3984fb550ae1b4411ef0fb7268ab6028863030f4581f97b07474b8e2d4afd03997390cfa1432889ac3586ff441fb642e2c6a8c5ceca348cba421f5c5ba40d95a1f5b8a78cd7246eea723fc7cf2aa3d3f76c29c9aec60d3d61214d326864bc124ac999a4e89eec3282e958ba4f2e54dca727c10932845451baa9bda119356f025a3d2e7ac976436aa73d7c454f42068a51e540f9ca9809a0a357f74676b5880b92565c744f34aa672a23f4daa879e2a5ad28732541c62f266a1ca88cf66a3fe4323e7a2939df8c7a1806e504de26b4ae9da765d765cf2314c517bd79381d62e91e3d44aaa113a453264d30f7dbb6674a862336d88a1074ba80129555bdd7841748cbafc87b6de61237943f48747ba7b661e8ce9dfd7a7895fd1956812851d8a99d36d069b9be8a1169f09275aacd2e28c8177deefc41cf9f6cdb690a191f3ce9dc6a7d3211d84857a8a83f373410032974299d1322eb3922175a1def3c35f3a0f650646b04cb36ad25af26332f096911129d276215fb53df6761fd6903d1a140b6ad00d8ba6c4cc4f90b062d68025e00398bba40e80b57b63f2a275aa52a1ec9fb3a5693fa09b2a875f900feee41ba80b2cad7bda00c72d70b51482a8053c37ce8305c260585d1a9ec35dc8ebbb3770393f5a5c640ece56dd7f447137b730f7a8f60c78237711069fc9ff8bbf24aa40f8e42f79729b590955e8162502b548b1cfadff9379ed01523a3fdd2515d895a90406ba49cd68e0e11d914e5c72cc0d37a33ee590f31ca64e71ce91bf55cf4d96937ee1bff185eea1156a4c132dc9be420d03256ecae5cf3f5ee2a63ac5281d1f149104c5f0fab829e907cc080b3eb8fe6c1c4dfeec23e2f4a122711447af3377c04f95fa9edfe473ef5703d537d2d0c0284a26dc9a63d840015ee614188b91383065e73cfa3eff80707196862d1769800f5f13347180c7942297ef1f68448fd163625030559074713c9c22b6963aa54054a4c6ebf5b8c3ff4c0630c9859d5306ba3a9398faa5ad78b52aad6f6c42ab6d240c2706f3d84568cab533a965581fd6060d059911b4011b4c0f3e66f717b563765ebb747ccd31cbbb9525c0bca0df939456d043bfecdf6803f4c8ac9bb9d6e8dceba94dd7b63082618bf19c4eee06f702199c6bfdf55df2affd9635413bfddf7a67c99bc13bdb2115e869c9de843e56b44070ae0fc23177308837f2084d79819bcf8d8c8cdf5beba32d0c434fc5aa1f0cf9061dc693ad42c6369a83a96529dd5b3d46319687710b02e87e6e820ac55d5190290690a75dcf1db7ef87a61c5a2efed839184a7ec46a1af47509d72d5a00c2a93055632512f919c476e2e2c78e8f3669a9008d090b56cc2eff55b72ccbc66a272af84bbae6ca656bdcd0f69fa15e619a482f3fbf71ed09759d73ff8232bf05efb02587a943a95b7d2aedfc0744bf99bb764539bcde986adc1f2d4b12bfc09013da858543eaa280d027cdc5e8d8ae269a19409c1d076e2b51cda457d33a002837480d5c961d1e01b5fd29537fd5bfed0e81cfd30f0bedbcaf795569eb8ce6c3a9d13c272a4531092c1d7c8f17360df4a3d3fa9b01246bb71dbd5dcaadf67d8846094af56dc0797cf1897f1f4cfd5d5df29a092a7ce22f0167f5e052e6fbbd4c3ced47b7852886655f0b9c28305cc25076fef3ec6fd6acb1b3f2b4afb32b6eb003ae2a02f2a8ad61d6fc7038901bc61d00982c795619c42b8ae8be82163f4ecedc6437d0618ceaadd004373887ece4108103b55c140af8194b7ff55c87c7d1b448c7325e3f4fe26eaffbba9b6902321e191431a65f4d76414a8c93227be8a811e9ebcbe5be2e1b249d92a557f0531475570fd04e593336b8c199ad6b28ff92d8ca3303e64985bc98c8c129f703406e1c4f3e3bd5a20ee7c3455f62717355ebccf2a7a373e41a47fceb06706d1f4ef3457f1e5df968f5f0c62efcca1d6ebada54d4e783e76a7928607fba49179186c3692193e10135e021f57e9dd86d26340f66fa5e87fe886f921c97ad471c40c6761505d8be8382a64e6edf18da1066970102d1250eb62de70734f9b5faf22944c73e4d802b095ede4bda6e1a3c45e2bf28bf232e6ec02698e00ab61e9213abe39a7c151e0acf416c8fd31c4e9631fdd54e843997a45cb9e318a008d32601b6b6c6b9ed5101b112995ad6d3a9d2d7e569d4db5e7e8756b958574ab82d6f5aa10b2f11baea68d4f114fa3a23f349d213b6bd4b904f4b8b351398929592903d0c77512d20e972c368369f22364cb0ac29c2464dcc64b5e5294b6a54fe234b79c632ef973347e150527c85240c0841832cefdf172004a391e41b86d0fdfcb2b2f60ce1646e158390eed8a48a3e24122c41a1bf0aa13ef0871e43f1e7e297f15842d6211df8ba21970a661c3195fd0722a9378a1ff641ffd8c8c3af6a7c5b97f156649bb4e6cbc01fea899e24e2478098f896cd1d47888588c9c85b4d63ed298933300d1b592c58dba2459a47f09661790f693fd7695cc58fe7c7d1eedeb876d69ec035b5733d8404336694cc92bd72d93d2576ca5817640459cffb21d353d262f3ab86e5737af7dd708d73e22366af8599ffca0b85f2cada51dbb2da4e5b3bd1bf07c74e4f45ab6f862d3ce4128aff1804ee3ba9e45337a2034a953f2de0d829be6bd06f61fe1b1522af9ca4e18145c7526e44c982ff3daf8e6da122b6b16041d631553616f042fcc52ac4486a9b67dba288e5aba7620bdd269b717d4b681b156cafbe0e38ed149285f6173747451964ae2e9323c59c3e15b14262f748065a26619c7d093e444b58cec989de574678f6ac20b970ac7aa32a8902fa1ddf3b5f222fcc0ffea12889bb78fbcdc9eb3c4a4fbd4296f779e12ad13b346231e537b2b24f858e35a017e058263636b107a8d8dd7d9fd316ea71f3a1fb4a9b8e829dbfac1df453b44a7320b2e2a5aa694c0f99c5121c6aaa03e23b1e66608829f0c58a5b79346bef1980b21c36e1bedf18e49d39a6fd8c00e5e3a25542aedd35b7389ca5decb98190af6045a3b6e2168e900c8cd8383472edde954d46d89ea44d250ebf6c271700fb3ebd42eb478a7c516008373f8937ce585528b78006dcd59eafad8745303b606851a356403c5cda7ba0c1444d7b2ed7a72fec24dedf05b055a92bedf979dc5d66ba6ec809246766f0f8999770640a39d0dd1e63f74459a87db19f96f039d952786201b82032d8d3831e157a0c3eec6a13da1bfa80f6ad3a061dc848d25ee508fb1ab7825474776082efc6a5be9c9957487afe0b91bd5a0b30caf9a2f421954b9d2ba91de3b896f8dd60336a832eb019b4cd00bea8b4de30e467588dcf52f37b3d65cbded63f0b888c0624e99b4a90bd54bef00a9d418d09d879fcb2bf9ecb30f4e79f7e5bbe76b7ff33a11d9cb4585f0306f0a6e2a369ff4cccb63cc791a68baa9d5b6d551e17c1dab81d685e69c8cf5f28eb625fa6752f61041d2428bcfe1bc3b20b211a54d41dfe4da12dd528ebdaa69ccbc48be9904fb989225c2a0b8125f788e03f4ed7aa53c96a05a113dec6748d599567aee33692d206fcb6fa85b76ba9d50ceab5a389e052332f59bf7e9393c9991fd322d74aad8905cf6c45071ecff9e423435ae16a22af57b4132bbc902162befb13977aa4ebe1e8912dbf856d2d3c8c308bf72a5a407f975a646500b89f12485e51ad135a73eb92525666442d9b2b3c68b84e64917ce4a90b5461f9c26a1a4f13df921d632adc083148e1f32eeabed2c3726d01ac9d836507d38cbccf3ad81321be3205775ee0db2d62fde1f09d0735121ed03c49fdc04668085d8d3b46c9ce4e42d35ea0b6cd335dd4fba527b9686b49afd17b9466bdaad8b893017d0d79fdd8604b072830918818ff1a8faa7c8907e26f7a6d001edfc615fb955e7d6f038dd62618ec7bf778d72972c92bdec2b34a9b80af385f87f3da3e3c4032540fc1d28d8df191792790ffba758afadefbe56cef60107eb1c54d4b491de774dfc5fee50802235f91bfcbda44ad8d0819f6dcd0860437fee195e47a800291cabf3d0b5aef27d051d2d8f11f2e4a9d3f52300213017e8486e6dd92010d5e9453ae40754636e8aefc9f979aadf2deb24702bd84d1d16754097ee519a2aeefe57b4b7664bddd5530c70ddd677d08fbf421086d6581300577c9fd54be1446b191aefba46a07f4bbd3af6d2e6419d3375a510978ac95ac2582dee62dbdf11cf91f8b627c775876e7f15e846de0b95d97565f3171f4187b331ec2be276332a5b5b373efae837aadc412e46c4dea9502dc8c3bea280c5ffa2b442fad56af964087db91fb3eea9fadfb272467c18c10ff66f93f4d17c2ccf4a7e1c5ae7875322d909e75"})
r3 = socket(0x2, 0x1, 0x0)
sendmmsg$auto(r3, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x4, 0x0, 0x7ffe, 0x1}, 0xca15}, 0x8, 0x20000000)

1.724496994s ago: executing program 1 (id=1488):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x15, 0x5, 0x0) (async)
r0 = socket(0x15, 0x5, 0x0)
setreuid$auto(0x9, 0x1)
r1 = geteuid()
keyctl$auto(0x1f, r1, r1, 0x5, 0x8)
getsockopt$auto(r0, 0x114, 0xfffffffb, 0xfffffffffffffffc, 0x0) (async)
getsockopt$auto(r0, 0x114, 0xfffffffb, 0xfffffffffffffffc, 0x0)

1.521225676s ago: executing program 1 (id=1489):
openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, 0x0, 0x5a1380, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) (async, rerun: 64)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e) (async, rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) (async)
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, 0x0, 0x11d802, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008) (async)
read$auto_hwsim_fops_ps_(0xffffffffffffffff, &(0x7f0000000180)=""/115, 0x73)
r0 = socket(0x2b, 0x2, 0x81)
ioctl$auto(r0, 0x89a0, 0x4) (async)
r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) (async)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00') (async, rerun: 64)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (rerun: 64)
write$auto(r2, &(0x7f0000000080)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (async)
socket(0x2, 0x2, 0x88) (async)
close_range$auto(0x2, 0x8, 0x0)
getcwd$auto(0x0, 0xffffffffffffffff) (async)
unlinkat$auto(0xffffffffffffffff, 0x0, 0x200) (async)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) (async, rerun: 32)
unshare$auto(0x200000001) (async, rerun: 32)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000040)=0x5) (async, rerun: 32)
r4 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) (rerun: 32)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r4, 0xc1105517, &(0x7f0000000580)={{@raw=0x7fffffff, 0xf0ee, 0x20009, 0x3, "790eaa833e6fc65b6b3cf705001900ffff8eac2cdafc1f64010043eeb0b0530300000000000e00", @raw=0x1}, 0x4, 0x966, 0x3, @raw=0x404, @integer={0x800000000000400e, 0x2000000b752, 0x1}, "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1183bedbd31b642b4051b078fa1c1c61c329794e5311121c760cb9611c78e6947a99807bcc1"}) (async)
ioctl$auto_TIOCGEXCL2(r1, 0x80045440, &(0x7f0000000080)=0x3) (async)
close_range$auto(0x2, 0x8, 0x0)

1.186421873s ago: executing program 1 (id=1490):
ioctl$auto_BLKTRACESETUP2(0xffffffffffffffff, 0xc0481273, &(0x7f0000000500)={"0815f17f5b9ecb8a8ac46fbfa3cb6d6522baa61ba58996ac2421bb3565a6f66e", 0x8, 0x1, 0x7ff, 0xcf08, 0x9, <r0=>0xffffffffffffffff})
sendmsg$auto_OVS_FLOW_CMD_NEW(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000580)={&(0x7f0000000e00)={0x5d0, 0x0, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@OVS_FLOW_ATTR_MASK={0x5bc, 0x7, 0x0, 0x1, [@typed={0x13, 0x38, 0x0, 0x0, @str='/dev/dri/card0\x00'}, @nested={0x95, 0x33, 0x0, 0x1, [@generic="e45987a87bbb9d9ef2d30b643b38bdbfa4bedebf2a2c76748526c2b5d6af75c8fc42db87f22ab051340ab341efb6ce4224f5e431349a1edc8ced2e78d4122fde751d95bbca203695c85b5e947cc983c096aaff379437ad390526f53b0ea0c12fcddd78bdd559cd31ea4ca5c6ff589990fc64588bbcf344e222b13a1315e6f2a85f3414c65bc70dc543531b877c", @nested={0x4, 0xe1}]}, @generic="f1a9588a245b2498f1318196f0d7e0c3b9a7774a31ab7db7021f6b4386a6848e2d05caed51d53065bde890fa03525c2f6d0f11f922f5fedfc91b1feb8bcac68253f1d326a47f35c4f3fbc536a18ce3ac324889c33d4570d528fdd7f49c51a28ca37052db134377724036bef90c491ae1ffe2ab29da500efba565add5444ab80ce6d8ca6aafb454395232eeda6ad7faa39fb646adfcb3ca990486e0c536c4cca89d", @generic="39b50117b75f8b7ff02b2a81573fc752cf2870173e3fdc2d448e21a96efcec4d5cc5ebec047ad60411001a46eda07ed438621641c286e2808f6a858ec08c1e79bcec6f251c218a87be89ede585d92f2958479d510bd219368e05d30fa9dbfd789c326edf089046b48d016a2b39812c53685b6df9f9fcdf8364bd80ba9afc2b196575bbf479b64fd9eedcde1c64103daf2da256180fb49e39b4f860ba491297f6f0e03371a2b83893723195d1b19e6253c8fe64cb39605cbd6354c83e4102", @generic="34b24175e1e4eb4b4223ec7b6505cf20508707884b4bf509e9e3627230b3136a8fd38300ba9eb44971dcf023bfe3f9de82af1e3f5d5f6804ba203d7826aaafe860b6771a28e782a7dc76429f248478494c3801f9e02bcaf403b90fdadee8420e6cc762eb49a31865024ec6684dbb177ad23a7113c730acb387c81788c82870ffe8b34b4b76c8d1375eadaa83a5be5313dac8fc124b9a5e9aee6863031a95f94a8edd66ac6967950012c669baa91291af4a6b7406fdcc54554f303709b23f02ad358c57459fc3", @nested={0xae, 0x26, 0x0, 0x1, [@nested={0x4, 0xa7}, @generic="773a68996c2b3c1b7e88c03f20b469ca77e9d344957416ace574d2867b092887afed9656fcbaf74d95431781e6b94d0bca43ecb560e1246a91d0d150f1455257a551b544f019464e47661851728429d608686f9d9e1fa52a7e10f430e1f7e587791347a21a059401f4e766538602e9e7f55835df74f11c83d44a691ab3f10097bcc1bf7938b8d938140ee4b8f18508c2931c686cc8991ee8", @generic="359e32b86bcbce0b8da402a19a83"]}, @typed={0x8, 0x10f, 0x0, 0x0, @pid=r0}, @generic="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", @nested={0x6e, 0xa0, 0x0, 0x1, [@typed={0x8, 0x37, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x4, 0x61}, @nested={0x4, 0xf5}, @generic="cfd8a1307ef2dd87a9be48a90bc66f732d2f16ba185959921ba505f9e05cd864de1936157bf3ccae3eae37c76dba6295d6f136a9d18308e74115ccd5f1038a806f866b83998d2e9b5caff7cbfa9b1c34db3afbc4573a6d3f0c61"]}, @nested={0xbf, 0x24, 0x0, 0x1, [@typed={0x8, 0xe3, 0x0, 0x0, @uid}, @nested={0x4, 0x3}, @typed={0xc, 0x1c, 0x0, 0x0, @u64=0x1}, @typed={0x14, 0xc6, 0x0, 0x0, @ipv6=@private0}, @generic="8555ec5c251c50e1d0e1ee00a48f5bb74152c918bf9895101cd47f8b231999e715b49593129da664d820c174803e84981b21f90a9c077787d94aacda7f86ee88fb603145bf0dcf3dbf51554f690379e5689b591249cd5d2b4d640e54c00329b9d6c6be5066a78246d6015b5300ca221b72025f42d2d2d7cd65554baf0f30e82d3ba3040d88ae1682ac87b67857cf6d"]}]}]}, 0x5d0}, 0x1, 0x0, 0x0, 0x200000c0}, 0x40801)
sigaltstack$auto(&(0x7f0000000000)={0x0, 0x80000001, 0x8000000000000004}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = getpid()
mmap$auto(0x0, 0x5, 0xeacc, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/pagemap\x00', 0x181002, 0x0)
ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x100000001, 0xfffffffffffffffe, 0x1, 0x8, 0xc00, 0x2c, 0x2c, 0x8, 0x1})
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x7)
r4 = gettid()
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r5 = open(0x0, 0x163340, 0x6a)
mount$auto(0x0, 0x0, 0x0, 0x29ecea06, 0x0)
rt_tgsigqueueinfo$auto(r1, r4, 0x21, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x7, 0x1, 0x1007181, 0x8a0d, 0x4, 0x7, 0x7, 0x89, 0x26, 0x4, 0x200000000000, 0xfffffffffffff343, 0xfffffffffffffffa, 0x500000000000000, 0x0, 0x0, 0xfffffffffffffffe, 0x6, 0x401, 0x22000, 0x9, 0xfffffffc, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x9, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3a, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xe]}, 0x9, 0xd)
r6 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r6, 0xfffffff7effffd04, &(0x7f00000001c0))
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x121d02, 0x0)
eventfd$auto(0x3)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/offline\x00', 0x800, 0x0)
read$auto(r7, &(0x7f00000000c0)='/sys/devices/platform/vhci_hcd.7/usb23/23-0:1.0/ep_81/interval\x00', 0x3)
close_range$auto(0x2, 0x8, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(r5, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2508080}, 0xc, &(0x7f0000000100)={&(0x7f0000000380)={0xfc, 0x0, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x3}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x2}, @NL802154_ATTR_SEC_DEVKEY={0xc0, 0x2f, 0x0, 0x1, [@nested={0xb9, 0x30, 0x0, 0x1, [@typed={0x4, 0x5f}, @generic="cd71fd52a132d5525e0673dac9e00f804e27330b8cef8927c2deacc817b4004b2dd7b904d174c1a0e9b251d511f4d516d95a7842d9078066f9dbd39e517757185178c9a9bd135d4fe1a87681ceaf125825ae66414d2430b43eca74af0fd6f17984bed2a15b7a8cbd73919c96dbc86a2df52f90ba20302f7be03affd94dab7306f3dc7afa1491ecd544468fc51a06888e3ae2fc970d44ffeee7158021e22f8d1829979083fb", @nested={0x4, 0xb8}, @typed={0x8, 0x98, 0x0, 0x0, @u32=0x3}]}]}, @NL802154_ATTR_SCAN_DURATION={0x5}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x9}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x9}]}, 0xfc}, 0x1, 0x0, 0x0, 0x4040050}, 0x0)
sendmsg$auto_HWSIM_CMD_FRAME(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000600)=ANY=[@ANYBLOB="8979778388b44c12ea", @ANYRES16=r9, @ANYBLOB="030426bd7000f9dbdb25020000001c000300afcc6f65fdd72aaaf6232ed2dd183765b06bef62cb03c3460a000100196f88149b0c000008000500050000000800060008000000"], 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
membarrier$auto(0x1, 0x5, 0x804)

912.094401ms ago: executing program 1 (id=1491):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00', 0x0, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\x13\x12dQ\x01y\xeb', 0x7e)
listen$auto(r1, 0x1f64b57d)
unshare$auto(0x40000080)
r2 = accept$auto(r0, &(0x7f0000000040)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, &(0x7f0000000080)=0x80000001)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_CRIT_PROTOCOL_STOP(r2, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r3, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40080}, 0x4000)
poll$auto(&(0x7f0000002340)={0xca, 0x10, 0x3b}, 0x2, 0x2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

276.137953ms ago: executing program 5 (id=1492):
mmap$auto(0x0, 0x400008, 0x2, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xd0, 0x0, 0x4)

160.93916ms ago: executing program 3 (id=1493):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_clone3(0x0, 0x0)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000040)="5f74ab2fc43781e047140a5cbc3ac5229b90633d9cddda9efb1f2c3d5d1e63f3fb5acf079b9336319d009cb514679a42eaca52b81c166d19625d173c26ece6542f2fb29712f4fb9072fc432b4cf3e6f5a7f3c9f91ee88ba5fa11d48fd3658e8f44f8423b4cd02bbec912ed34f9f4b19b03d4c62b24ede44c0c76c34edf7bde061903c2ee4c64110ac668239fa53ba42933ae74c3d173663248ff0945dd2e405e0d378b5a8e4643a7bc3b35a7248431450ca8901467ea6dc5d86de1e90f869f6a04ac10043676f3b2c7f1339b2d7468133fb8447d17846b6b78079ecc31d7d0f74caa4a3db1ac4d312bfdb34bd331f1f771a2396108561a52153d63a7b2a3a077a7e4c1a22bcb23e1f3e511fee310baa67904d2aad4d6671e8b77c7720e37e84e0efecb60a35f188cbe8b8b2fb3967b78aa482aabb103f23083baa9b2ae653731d5993db4054233dea4af25795e12eb4d6b046bdeea6adce8626e0def15dd32b0ec16a85d93e1dea980794033f4b46973062c64c0209f9d3efc6ea7704c8e8dfea8cdfbe2cb1e367bf634a1952190e0660994f79f0c622d47ee8f93ce1c2852db907ae68a29bcc960b26e0e634173287fd012c4bb3063c41d35c92e896b44080bc5a98e90907cd1d01cc0708019cc1c93c71f29bfe841c873ad2aa0565dfaeb86c8b8e58ea2075de2a562ba1b5dc4ca452df21f25453b7c7f9a3e31547f4e803cefbac3b94715f2ab1f9fc66570244472f2f29deb9bdf6dc5b18d54e3c2264f9598f2ea749d170a66d351acf003c3f37fe74a09a8a964ce2818e4b4efd1eb0e3bca5dfd2a053eeb5735b96d282d2e03866bd6581b5e5e541c74f0b92b932b234ac117342f156b4b23fc6dcbc92ada00ce404f54443b6e7fdac9acb79e5258a865ced633ff5356d13a3e9923bcd8e6d177c9fb8618f9393798d90d70c78207e40f95bb2b0a9308f29f4331bbdfc1021dface5a740473b462c47286fee1c9d0036c78134e108b5b218d3022fd277e1cdf0cdf8cd4b37d74c8dd47e00e50fcf8d336978a0e7624f94b8fdcd1c9459201231f343c7cb602083aa5", 0x2f8)
ioctl$auto_SNDCTL_SEQ_SYNC(r0, 0x5101, 0x0)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x4000000000000000)
sendto$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3)
ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(0xffffffffffffffff, 0x80083314, 0x0)
r1 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_ADD(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x3c, r1, 0x200, 0x70bd2b, 0x25dfdbfe, {}, [@THERMAL_GENL_ATTR_CPU_CAPABILITY_PERFORMANCE={0x8, 0x16, 0x8}, @THERMAL_GENL_ATTR_TZ_MODE={0x8, 0x9, 0x2}, @THERMAL_GENL_ATTR_CPU_CAPABILITY_EFFICIENCY={0x8, 0x17, 0x6}, @THERMAL_GENL_ATTR_CDEV_CUR_STATE={0x8, 0x10, 0x15c00}, @THERMAL_GENL_ATTR_THRESHOLD_TEMP={0x8, 0x19, 0x100}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4008080}, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeba, 0x401, 0x8402)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
timer_create$auto(0x3, 0x0, 0x0)
io_uring_setup$auto(0x40000002c55, 0x0)
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0xa, 0x801, 0x84)
shutdown$auto(0xffffffffffffffff, 0x2)
socket(0xa, 0x1, 0x100)
r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r2, 0x0, 0x7ff, 0x400)
unshare$auto(0x40000082)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_WG_CMD_SET_DEVICE(r4, 0x0, 0x810)

0s ago: executing program 1 (id=1494):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x129002, 0x0)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'virt_wifi0\x00', <r2=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000880)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="130026bd7000fddbdf250200000008000300", @ANYRES32=r2, @ANYBLOB='\b\x00a'], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x0)
sendmsg$auto_NL80211_CMD_START_P2P_DEVICE(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="b4020000", @ANYRES16=r0, @ANYBLOB="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"], 0x2b4}, 0x1, 0x0, 0x0, 0x400c811}, 0x4050)
r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x80800, 0x0)
ioctl$auto_VHOST_SET_LOG_BASE(r3, 0x4008af04, &(0x7f0000000200)=0x66b)
r4 = socket(0x2c, 0x3, 0x0)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), r5)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c0000008586d1facc2f3adae74f9ba75b19fa21d651827f08bed918eaa68d1ee113338c287c7f67279766a3048d8b1dec2c52963daf2623dfcf196bb478e5b5c006b1f56a8be2a16cdfe8dc1e89f2f8f9ff19e39f6a7b829856651b", @ANYRES16=r6, @ANYBLOB="251729bd7000fedbdf250100000008000300", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x41001}, 0x64810)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'pim6reg1\x00'})
fcntl$auto_F_GETOWN(r4, 0x9, 0x3)
waitid$auto_P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000140)={@_si_pad}, 0x6, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x20009, 0x4000000000e2, 0xeb1, 0x401, 0x8000)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0)
r8 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
r9 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRES64, @ANYRES8=r9], 0x1ac}}, 0x40000)
recvmmsg$auto(r9, &(0x7f0000000140)={{0x0, 0x3, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x2000000200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)
write$auto_proc_clear_refs_operations_internal(r8, 0x0, 0xffffff4b)
madvise$auto(0x0, 0x20499d, 0x9)
listmount$auto(&(0x7f0000000100)={0x20, @raw, 0xffffffffffffffff, 0xfffffffffffffff7}, 0x0, 0xf4240, 0x1)

kernel console output (not intermixed with test programs):

70][T11202] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  539.403038][T11202] page dumped because: unmovable page
[  539.434870][T11202] page_owner tracks the page as allocated
[  539.440654][T11202] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5216, tgid 5216 (udevadm), ts 42919089502, free_ts 34828086581
[  539.573095][T11202]  post_alloc_hook+0x1af/0x220
[  539.577961][T11202]  get_page_from_freelist+0xd0b/0x31a0
[  539.621813][T11202]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  539.703286][T11202]  alloc_pages_mpol+0x1fb/0x550
[  539.708343][T11202]  new_slab+0x2c3/0x430
[  539.712557][T11202]  ___slab_alloc+0xe18/0x1c90
[  539.783185][T11202]  __slab_alloc.constprop.0+0x63/0x110
[  539.816505][T11202]  kmem_cache_alloc_lru_noprof+0x451/0x770
[  539.822644][T11202]  alloc_inode+0xc3/0x240
[  539.883374][T11202]  iget_locked+0x1d9/0x6d0
[  539.887962][T11202]  kernfs_get_inode+0x46/0x470
[  539.892838][T11202]  kernfs_iop_lookup+0x1a7/0x2d0
[  540.025123][T11205] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1225'.
[  540.051514][T11202]  lookup_open.isra.0+0x4e2/0x1780
[  540.077614][T11202]  path_openat+0x12bb/0x3140
[  540.082308][T11202]  do_filp_open+0x20b/0x470
[  540.113407][T11205] bridge0: port 2(bridge_slave_1) entered blocking state
[  540.120570][T11205] bridge0: port 2(bridge_slave_1) entered forwarding state
[  540.128336][T11205] bridge0: port 1(bridge_slave_0) entered blocking state
[  540.135643][T11205] bridge0: port 1(bridge_slave_0) entered forwarding state
[  540.147755][T11202]  do_sys_openat2+0x121/0x290
[  540.175297][T11202] page last free pid 1 tgid 1 stack trace:
[  540.185983][T11205] bridge0: entered promiscuous mode
[  540.191353][T11205] bridge0: entered allmulticast mode
[  540.310965][T11202]  __free_frozen_pages+0x7df/0x1170
[  540.347225][T11202]  free_contig_range+0x183/0x4a0
[  540.352439][T11202]  destroy_args+0xb95/0x14e0
[  540.451760][T11202]  debug_vm_pgtable+0x2220/0x38d0
[  540.451829][T11202]  do_one_initcall+0x123/0x680
[  540.451878][T11202]  kernel_init_freeable+0x5c8/0x920
[  540.451909][T11202]  kernel_init+0x1c/0x2b0
[  540.451946][T11202]  ret_from_fork+0x983/0xb10
[  540.451977][T11202]  ret_from_fork_asm+0x1a/0x30
[  541.551557][T11231] FAULT_INJECTION: forcing a failure.
[  541.551557][T11231] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  541.628463][T11231] CPU: 0 UID: 0 PID: 11231 Comm: syz.2.1230 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  541.628496][T11231] Tainted: [L]=SOFTLOCKUP
[  541.628503][T11231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  541.628514][T11231] Call Trace:
[  541.628521][T11231]  <TASK>
[  541.628529][T11231]  dump_stack_lvl+0x16c/0x1f0
[  541.628561][T11231]  should_fail_ex+0x512/0x640
[  541.628585][T11231]  _copy_to_iter+0x463/0x1710
[  541.628608][T11231]  ? established_get_first+0x4ee/0x700
[  541.628628][T11231]  ? __pfx__copy_to_iter+0x10/0x10
[  541.628651][T11231]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  541.628684][T11231]  seq_read_iter+0xd02/0x12d0
[  541.628718][T11231]  seq_read+0x3a3/0x570
[  541.628743][T11231]  ? __pfx_seq_read+0x10/0x10
[  541.628770][T11231]  ? __lock_acquire+0x436/0x2890
[  541.628787][T11231]  ? import_ubuf+0x1b6/0x220
[  541.628812][T11231]  ? __pfx_seq_read+0x10/0x10
[  541.628836][T11231]  proc_reg_read+0x240/0x330
[  541.628860][T11231]  ? __pfx_proc_reg_read+0x10/0x10
[  541.628882][T11231]  vfs_readv+0x5c1/0x8b0
[  541.628911][T11231]  ? __pfx_vfs_readv+0x10/0x10
[  541.628934][T11231]  ? fdget_pos+0x2a2/0x370
[  541.628975][T11231]  ? __fget_files+0x20e/0x3c0
[  541.629004][T11231]  ? __fget_files+0x1d0/0x3c0
[  541.629035][T11231]  ? do_readv+0x132/0x340
[  541.629057][T11231]  do_readv+0x132/0x340
[  541.629080][T11231]  ? __pfx_do_readv+0x10/0x10
[  541.629111][T11231]  do_syscall_64+0xcd/0xf80
[  541.629146][T11231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  541.629165][T11231] RIP: 0033:0x7f0d4118f7c9
[  541.629181][T11231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  541.629199][T11231] RSP: 002b:00007f0d3f3ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  541.629218][T11231] RAX: ffffffffffffffda RBX: 00007f0d413e5fa0 RCX: 00007f0d4118f7c9
[  541.629230][T11231] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[  541.629241][T11231] RBP: 00007f0d3f3ee090 R08: 0000000000000000 R09: 0000000000000000
[  541.629252][T11231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  541.629263][T11231] R13: 00007f0d413e6038 R14: 00007f0d413e5fa0 R15: 00007ffcbca2b558
[  541.629287][T11231]  </TASK>
[  541.931312][ T5876] Process accounting resumed
[  542.151971][T11238] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  542.267899][T11238] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  542.320827][T11238] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  542.333353][T11238] page_type: f5(slab)
[  542.338976][T11238] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  542.348438][T11238] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  542.371517][T11238] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  542.469534][T11238] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  542.518533][T11238] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  542.585018][T11238] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  542.619582][T11238] page dumped because: unmovable page
[  542.633138][T11238] page_owner tracks the page as allocated
[  542.644494][T11238] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5216, tgid 5216 (udevadm), ts 42919089502, free_ts 34828086581
[  542.669005][T11238]  post_alloc_hook+0x1af/0x220
[  542.673854][T11238]  get_page_from_freelist+0xd0b/0x31a0
[  542.679978][T11238]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  542.686380][T11238]  alloc_pages_mpol+0x1fb/0x550
[  542.691417][T11238]  new_slab+0x2c3/0x430
[  542.731186][T11238]  ___slab_alloc+0xe18/0x1c90
[  542.752503][T11238]  __slab_alloc.constprop.0+0x63/0x110
[  542.766997][T11238]  kmem_cache_alloc_lru_noprof+0x451/0x770
[  542.814307][T11238]  alloc_inode+0xc3/0x240
[  542.836205][T11238]  iget_locked+0x1d9/0x6d0
[  542.840729][T11238]  kernfs_get_inode+0x46/0x470
[  542.928627][T11238]  kernfs_iop_lookup+0x1a7/0x2d0
[  542.971330][T11238]  lookup_open.isra.0+0x4e2/0x1780
[  542.994771][T11238]  path_openat+0x12bb/0x3140
[  542.999556][T11238]  do_filp_open+0x20b/0x470
[  543.112409][T11238]  do_sys_openat2+0x121/0x290
[  543.143271][T11238] page last free pid 1 tgid 1 stack trace:
[  543.149331][T11238]  __free_frozen_pages+0x7df/0x1170
[  543.154701][T11238]  free_contig_range+0x183/0x4a0
[  543.176208][T11238]  destroy_args+0xb95/0x14e0
[  543.180997][T11238]  debug_vm_pgtable+0x2220/0x38d0
[  543.200957][T11238]  do_one_initcall+0x123/0x680
[  543.224872][T11238]  kernel_init_freeable+0x5c8/0x920
[  543.230433][T11238]  kernel_init+0x1c/0x2b0
[  543.234805][T11238]  ret_from_fork+0x983/0xb10
[  543.249572][T11238]  ret_from_fork_asm+0x1a/0x30
[  546.381723][ T5839] Bluetooth: hci1: Malformed LE Event: 0x1d
[  546.873121][T11272] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  546.892944][T11272] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  546.916865][T11272] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  546.924506][T11272] page_type: f5(slab)
[  547.055558][T11272] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  547.106943][T11272] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  547.115634][T11272] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  547.204630][ T5839] Bluetooth: hci1: unexpected event 0x3e length: 508 > 260
[  547.204675][ T5839] Bluetooth: hci1: unexpected subevent 0x02 length: 507 > 260
[  547.222887][ T5839] Bluetooth: hci1: Dropping invalid advertising data
[  547.230280][ T5839] Bluetooth: hci1: unknown advertising packet type: 0xe9
[  547.231272][ T5839] Bluetooth: hci1: Dropping invalid advertising data
[  547.245508][ T5839] Bluetooth: hci1: Malformed LE Event: 0x02
[  547.362135][T11272] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  547.439847][T11272] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  547.479544][T11272] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  547.546586][T11272] page dumped because: unmovable page
[  547.620879][T11272] page_owner tracks the page as allocated
[  547.647574][T11272] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5216, tgid 5216 (udevadm), ts 42919089502, free_ts 34828086581
[  547.711944][T11272]  post_alloc_hook+0x1af/0x220
[  547.731206][T11272]  get_page_from_freelist+0xd0b/0x31a0
[  547.753845][T11272]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  547.811956][T11272]  alloc_pages_mpol+0x1fb/0x550
[  547.827478][T11272]  new_slab+0x2c3/0x430
[  547.831831][T11272]  ___slab_alloc+0xe18/0x1c90
[  547.887005][T11272]  __slab_alloc.constprop.0+0x63/0x110
[  547.907235][T11272]  kmem_cache_alloc_lru_noprof+0x451/0x770
[  547.960060][T11272]  alloc_inode+0xc3/0x240
[  547.964495][T11272]  iget_locked+0x1d9/0x6d0
[  547.977382][T11272]  kernfs_get_inode+0x46/0x470
[  547.982342][T11272]  kernfs_iop_lookup+0x1a7/0x2d0
[  547.990551][T11272]  lookup_open.isra.0+0x4e2/0x1780
[  547.995740][T11272]  path_openat+0x12bb/0x3140
[  548.037665][T11272]  do_filp_open+0x20b/0x470
[  548.042372][T11272]  do_sys_openat2+0x121/0x290
[  548.047117][T11272] page last free pid 1 tgid 1 stack trace:
[  548.067913][T11272]  __free_frozen_pages+0x7df/0x1170
[  548.088896][T11272]  free_contig_range+0x183/0x4a0
[  548.093926][T11272]  destroy_args+0xb95/0x14e0
[  548.107969][T11272]  debug_vm_pgtable+0x2220/0x38d0
[  548.132055][T11272]  do_one_initcall+0x123/0x680
[  548.167731][T11272]  kernel_init_freeable+0x5c8/0x920
[  548.173028][T11272]  kernel_init+0x1c/0x2b0
[  548.197410][T11272]  ret_from_fork+0x983/0xb10
[  548.205683][T11272]  ret_from_fork_asm+0x1a/0x30
[  548.397628][T11301] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  548.417575][T11301] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  548.448686][T11301] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  548.466869][T11301] page_type: f5(slab)
[  548.477863][T11301] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  548.486544][T11301] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  548.539443][T11301] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  548.587747][T11301] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  548.596513][T11301] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  548.707922][T11301] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  548.716774][T11301] page dumped because: unmovable page
[  548.807408][T11301] page_owner tracks the page as allocated
[  548.866348][T11301] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5216, tgid 5216 (udevadm), ts 42919089502, free_ts 34828086581
[  548.917745][T11301]  post_alloc_hook+0x1af/0x220
[  548.922862][T11301]  get_page_from_freelist+0xd0b/0x31a0
[  548.933052][T11301]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  548.947756][T11301]  alloc_pages_mpol+0x1fb/0x550
[  548.973771][T11301]  new_slab+0x2c3/0x430
[  549.004242][T11301]  ___slab_alloc+0xe18/0x1c90
[  549.011641][T11301]  __slab_alloc.constprop.0+0x63/0x110
[  549.054910][T11301]  kmem_cache_alloc_lru_noprof+0x451/0x770
[  549.067844][T11301]  alloc_inode+0xc3/0x240
[  549.087874][T11301]  iget_locked+0x1d9/0x6d0
[  549.108120][T11301]  kernfs_get_inode+0x46/0x470
[  549.146510][T11301]  kernfs_iop_lookup+0x1a7/0x2d0
[  549.152594][T11301]  lookup_open.isra.0+0x4e2/0x1780
[  549.174836][T11301]  path_openat+0x12bb/0x3140
[  549.202013][T11301]  do_filp_open+0x20b/0x470
[  549.218173][T11301]  do_sys_openat2+0x121/0x290
[  549.254217][T11301] page last free pid 1 tgid 1 stack trace:
[  549.270372][T11301]  __free_frozen_pages+0x7df/0x1170
[  549.317971][T11301]  free_contig_range+0x183/0x4a0
[  549.367059][T11301]  destroy_args+0xb95/0x14e0
[  549.392853][T11301]  debug_vm_pgtable+0x2220/0x38d0
[  549.433425][T11301]  do_one_initcall+0x123/0x680
[  549.450560][T11301]  kernel_init_freeable+0x5c8/0x920
[  549.477448][T11301]  kernel_init+0x1c/0x2b0
[  549.494346][T11301]  ret_from_fork+0x983/0xb10
[  549.514477][T11301]  ret_from_fork_asm+0x1a/0x30
[  550.360194][T11329] netlink: 'syz.1.1253': attribute type 11 has an invalid length.
[  550.391383][T11329] netlink: 'syz.1.1253': attribute type 11 has an invalid length.
[  550.414136][T11329] netlink: 'syz.1.1253': attribute type 11 has an invalid length.
[  550.479877][   T43] smpboot: CPU 0 is now offline
[  551.189098][T11338] futex_wake_op: syz.2.1256 tries to shift op by -2048; fix this program
[  551.200711][T11331] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1254'.
[  551.216634][T11338] futex_wake_op: syz.2.1256 tries to shift op by -2048; fix this program
[  551.956591][T11347] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  552.064147][T11347] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  552.114119][T11347] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  552.229394][T11347] page_type: f5(slab)
[  552.291366][T11347] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  552.337346][T11344] binder: BINDER_SET_CONTEXT_MGR already set
[  552.361178][T11344] binder: 11343:11344 ioctl 4018620d 9 returned -16
[  552.392182][T11347] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  552.527545][T11347] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  552.677756][T11347] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  552.778932][T11347] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  552.917274][T11347] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  552.999839][T11347] page dumped because: unmovable page
[  553.044550][T11347] page_owner tracks the page as allocated
[  553.160788][T11374] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13
[  553.222328][T11347] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5216, tgid 5216 (udevadm), ts 42919089502, free_ts 34828086581
[  553.840247][T11347]  post_alloc_hook+0x1af/0x220
[  553.880239][T11347]  get_page_from_freelist+0xd0b/0x31a0
[  553.903618][T11347]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  553.909561][T11347]  alloc_pages_mpol+0x1fb/0x550
[  553.960561][T11347]  new_slab+0x2c3/0x430
[  553.970686][T11347]  ___slab_alloc+0xe18/0x1c90
[  553.975496][T11347]  __slab_alloc.constprop.0+0x63/0x110
[  554.013384][T11347]  kmem_cache_alloc_lru_noprof+0x451/0x770
[  554.056698][T11347]  alloc_inode+0xc3/0x240
[  554.096649][T11347]  iget_locked+0x1d9/0x6d0
[  554.123606][T11347]  kernfs_get_inode+0x46/0x470
[  554.128420][T11347]  kernfs_iop_lookup+0x1a7/0x2d0
[  554.191011][T11347]  lookup_open.isra.0+0x4e2/0x1780
[  554.226534][T11347]  path_openat+0x12bb/0x3140
[  554.246760][T11347]  do_filp_open+0x20b/0x470
[  554.308254][T11347]  do_sys_openat2+0x121/0x290
[  554.318524][T11347] page last free pid 1 tgid 1 stack trace:
[  554.368530][T11347]  __free_frozen_pages+0x7df/0x1170
[  554.375496][T11372] rnbd_client L213: map_device: Parameters missing
[  554.424818][T11347]  free_contig_range+0x183/0x4a0
[  554.429870][T11347]  destroy_args+0xb95/0x14e0
[  554.478589][T11347]  debug_vm_pgtable+0x2220/0x38d0
[  554.522459][T11347]  do_one_initcall+0x123/0x680
[  554.540627][T11347]  kernel_init_freeable+0x5c8/0x920
[  554.551998][T11347]  kernel_init+0x1c/0x2b0
[  554.573122][T11347]  ret_from_fork+0x983/0xb10
[  554.631700][T11347]  ret_from_fork_asm+0x1a/0x30
[  555.469955][T11375] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14
[  556.506585][T11412] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1269'.
[  558.336130][T11443] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  558.408027][T11443] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  558.508916][T11443] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  558.533958][T11443] page_type: f5(slab)
[  558.537987][T11443] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  558.577957][T11443] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  558.600055][T11443] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  558.619620][T11443] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  558.639661][T11443] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  558.659278][T11443] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  558.691628][T11443] page dumped because: unmovable page
[  558.709882][T11443] page_owner tracks the page as allocated
[  558.724188][T11455] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1278'.
[  558.752767][T11443] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5216, tgid 5216 (udevadm), ts 42919089502, free_ts 34828086581
[  558.814067][T11443]  post_alloc_hook+0x1af/0x220
[  558.833585][T11443]  get_page_from_freelist+0xd0b/0x31a0
[  558.850137][T11443]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  558.858306][T11443]  alloc_pages_mpol+0x1fb/0x550
[  558.863718][T11443]  new_slab+0x2c3/0x430
[  558.868094][T11443]  ___slab_alloc+0xe18/0x1c90
[  558.888831][T11443]  __slab_alloc.constprop.0+0x63/0x110
[  558.908906][T11443]  kmem_cache_alloc_lru_noprof+0x451/0x770
[  558.936852][T11443]  alloc_inode+0xc3/0x240
[  558.943311][T11443]  iget_locked+0x1d9/0x6d0
[  558.947915][T11443]  kernfs_get_inode+0x46/0x470
[  558.953581][T11443]  kernfs_iop_lookup+0x1a7/0x2d0
[  558.958680][T11443]  lookup_open.isra.0+0x4e2/0x1780
[  558.964393][T11443]  path_openat+0x12bb/0x3140
[  558.969200][T11443]  do_filp_open+0x20b/0x470
[  558.974061][T11443]  do_sys_openat2+0x121/0x290
[  558.978852][T11443] page last free pid 1 tgid 1 stack trace:
[  558.986340][T11443]  __free_frozen_pages+0x7df/0x1170
[  558.992406][T11443]  free_contig_range+0x183/0x4a0
[  559.019319][T11443]  destroy_args+0xb95/0x14e0
[  559.042399][T11443]  debug_vm_pgtable+0x2220/0x38d0
[  559.054328][T11443]  do_one_initcall+0x123/0x680
[  559.065918][T11443]  kernel_init_freeable+0x5c8/0x920
[  559.076707][T11443]  kernel_init+0x1c/0x2b0
[  559.093358][T11443]  ret_from_fork+0x983/0xb10
[  559.113887][T11443]  ret_from_fork_asm+0x1a/0x30
[  560.695403][T11478] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  560.747851][T11478] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  560.832113][T11478] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  560.937299][T11478] page_type: f5(slab)
[  560.941410][T11478] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  561.061626][T11478] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  561.213738][T11478] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  561.268219][T11478] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  561.327716][T11478] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  561.365901][T11478] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  561.380226][T11478] page dumped because: unmovable page
[  561.385993][T11478] page_owner tracks the page as allocated
[  561.391787][T11478] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5216, tgid 5216 (udevadm), ts 42919089502, free_ts 34828086581
[  561.415436][T11478]  post_alloc_hook+0x1af/0x220
[  561.420246][T11478]  get_page_from_freelist+0xd0b/0x31a0
[  561.426237][T11478]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  561.432147][T11478]  alloc_pages_mpol+0x1fb/0x550
[  561.437908][T11478]  new_slab+0x2c3/0x430
[  561.442078][T11478]  ___slab_alloc+0xe18/0x1c90
[  561.450399][T11478]  __slab_alloc.constprop.0+0x63/0x110
[  561.457935][T11478]  kmem_cache_alloc_lru_noprof+0x451/0x770
[  561.463817][T11478]  alloc_inode+0xc3/0x240
[  561.469825][T11478]  iget_locked+0x1d9/0x6d0
[  561.475388][T11478]  kernfs_get_inode+0x46/0x470
[  561.480639][T11478]  kernfs_iop_lookup+0x1a7/0x2d0
[  561.485857][T11478]  lookup_open.isra.0+0x4e2/0x1780
[  561.491189][T11478]  path_openat+0x12bb/0x3140
[  561.495957][T11478]  do_filp_open+0x20b/0x470
[  561.500485][T11478]  do_sys_openat2+0x121/0x290
[  561.505724][T11478] page last free pid 1 tgid 1 stack trace:
[  561.511583][T11478]  __free_frozen_pages+0x7df/0x1170
[  561.517190][T11478]  free_contig_range+0x183/0x4a0
[  561.522192][T11478]  destroy_args+0xb95/0x14e0
[  561.527198][T11478]  debug_vm_pgtable+0x2220/0x38d0
[  561.532307][T11478]  do_one_initcall+0x123/0x680
[  561.537549][T11478]  kernel_init_freeable+0x5c8/0x920
[  561.542835][T11478]  kernel_init+0x1c/0x2b0
[  561.548813][T11478]  ret_from_fork+0x983/0xb10
[  561.554817][T11478]  ret_from_fork_asm+0x1a/0x30
[  562.700419][T11502] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  562.755561][T11502] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  562.820190][T11502] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  562.851368][T11502] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  562.877807][T11502] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  562.914975][T11502] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  562.938339][T11502] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  562.966749][T11502] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  563.008762][T11502] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  563.040112][T11502] CPU0 is offline.
[  563.072612][T11495] [U] ^\
[  563.922146][T11524] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1295'.
[  564.452791][   T30] audit: type=1804 audit(1765732163.089:7): pid=11538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1296" name="/newroot/332/file0" dev="tmpfs" ino=1750 res=1 errno=0
[  564.556536][   T30] audit: type=1804 audit(1765732163.169:8): pid=11527 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1296" name="/newroot/332/file0" dev="tmpfs" ino=1750 res=1 errno=0
[  564.736775][   T52] Bluetooth: hci2: command 0x0406 tx timeout
[  564.815994][   T52] Bluetooth: hci0: command 0x0406 tx timeout
[  564.842602][   T30] audit: type=1800 audit(1765732163.479:9): pid=11541 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1299" name="members" dev="configfs" ino=39282 res=0 errno=0
[  564.898310][ T5846] Bluetooth: hci1: command 0x0406 tx timeout
[  564.904888][   T52] Bluetooth: hci3: command 0x0406 tx timeout
[  564.975971][ T5846] Bluetooth: hci4: command 0x0c1a tx timeout
[  564.982373][   T52] Bluetooth: hci5: command 0x0c1a tx timeout
[  565.224804][ T5836] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  565.264885][ T5836] CPU: 1 UID: 0 PID: 5836 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  565.264918][ T5836] Tainted: [L]=SOFTLOCKUP
[  565.264925][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  565.264936][ T5836] Call Trace:
[  565.264943][ T5836]  <TASK>
[  565.264950][ T5836]  dump_stack_lvl+0x16c/0x1f0
[  565.264983][ T5836]  dump_header+0x101/0x960
[  565.265006][ T5836]  oom_kill_process+0x176/0x910
[  565.265029][ T5836]  out_of_memory+0x350/0x1700
[  565.265049][ T5836]  ? __lock_acquire+0x436/0x2890
[  565.265071][ T5836]  ? __pfx_out_of_memory+0x10/0x10
[  565.265097][ T5836]  mem_cgroup_out_of_memory+0x118/0x130
[  565.265120][ T5836]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  565.265147][ T5836]  ? do_raw_spin_unlock+0x172/0x230
[  565.265172][ T5836]  try_charge_memcg+0x695/0xd30
[  565.265205][ T5836]  ? __pfx_try_charge_memcg+0x10/0x10
[  565.265239][ T5836]  ? find_held_lock+0x2b/0x80
[  565.265266][ T5836]  charge_memcg+0x8a/0x230
[  565.265294][ T5836]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  565.265316][ T5836]  __read_swap_cache_async+0x397/0x500
[  565.265342][ T5836]  ? __pfx___read_swap_cache_async+0x10/0x10
[  565.265366][ T5836]  ? mlock_drain_local+0x22d/0x4e0
[  565.265394][ T5836]  swap_cluster_readahead+0x528/0x770
[  565.265423][ T5836]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  565.265449][ T5836]  ? trace_pelt_se_tp+0xed/0x130
[  565.265467][ T5836]  ? __update_load_avg_se+0x3fb/0x940
[  565.265499][ T5836]  ? update_load_avg+0x233/0x2220
[  565.265527][ T5836]  ? get_vma_policy+0x242/0x3c0
[  565.265546][ T5836]  swapin_readahead+0x160/0x1220
[  565.265576][ T5836]  ? __pfx_swapin_readahead+0x10/0x10
[  565.265599][ T5836]  ? find_held_lock+0x2b/0x80
[  565.265622][ T5836]  ? swap_cache_get_folio+0x267/0x8e0
[  565.265642][ T5836]  ? swap_cache_get_folio+0x267/0x8e0
[  565.265662][ T5836]  ? swap_cache_get_folio+0x267/0x8e0
[  565.265685][ T5836]  ? swap_cache_get_folio+0x267/0x8e0
[  565.265706][ T5836]  ? swap_cache_get_folio+0x293/0x8e0
[  565.265728][ T5836]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  565.265749][ T5836]  ? __pfx_get_swap_device+0x10/0x10
[  565.265781][ T5836]  ? rcu_read_unlock+0x2d/0xb0
[  565.265806][ T5836]  ? do_swap_page+0x962/0x64a0
[  565.265827][ T5836]  do_swap_page+0x962/0x64a0
[  565.265849][ T5836]  ? __lock_acquire+0x436/0x2890
[  565.265872][ T5836]  ? __pfx_do_swap_page+0x10/0x10
[  565.265893][ T5836]  ? __pfx_default_wake_function+0x10/0x10
[  565.265921][ T5836]  ? rcu_is_watching+0x12/0xc0
[  565.265946][ T5836]  ? __free_object+0x286/0x410
[  565.265974][ T5836]  ? rcu_is_watching+0x12/0xc0
[  565.266000][ T5836]  ? ___pte_offset_map+0x175/0x380
[  565.266029][ T5836]  __handle_mm_fault+0x19cb/0x2bb0
[  565.266052][ T5836]  ? reacquire_held_locks+0xcd/0x1f0
[  565.266070][ T5836]  ? __pfx___handle_mm_fault+0x10/0x10
[  565.266093][ T5836]  ? lock_vma_under_rcu+0x176/0x580
[  565.266119][ T5836]  ? get_timespec64+0x136/0x1b0
[  565.266143][ T5836]  handle_mm_fault+0x3fe/0xad0
[  565.266167][ T5836]  do_user_addr_fault+0x60c/0x1370
[  565.266192][ T5836]  ? rcu_is_watching+0x12/0xc0
[  565.266220][ T5836]  exc_page_fault+0x64/0xc0
[  565.266247][ T5836]  asm_exc_page_fault+0x26/0x30
[  565.266266][ T5836] RIP: 0033:0x7f13413c2088
[  565.266282][ T5836] Code: 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[  565.266301][ T5836] RSP: 002b:00007ffd5ab81670 EFLAGS: 00010293
[  565.266316][ T5836] RAX: 0000000000000000 RBX: 00000000000004d3 RCX: 00007f13413c2085
[  565.266328][ T5836] RDX: 00007ffd5ab816b0 RSI: 0000000000000000 RDI: 0000000000000000
[  565.266339][ T5836] RBP: 00007ffd5ab8171c R08: 0000000000000000 R09: 0000000000000000
[  565.266351][ T5836] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000001388
[  565.266362][ T5836] R13: 00000000000927c0 R14: 0000000000089bb3 R15: 00007ffd5ab81770
[  565.266386][ T5836]  </TASK>
[  565.901311][ T5839] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[  566.326538][T11544] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  566.335587][T11544] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  566.349237][ T5836] memory: usage 3072kB, limit 3072kB, failcnt 198398
[  566.355939][ T5836] memory+swap: usage 3652kB, limit 9007199254740988kB, failcnt 0
[  566.365711][T11544] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  566.374492][T11544] page_type: f5(slab)
[  566.378859][T11544] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  566.389324][ T5836] kmem: usage 3000kB, limit 9007199254740988kB, failcnt 0
[  566.409217][T11544] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  566.419363][ T5836] Memory cgroup stats for /syz3:
[  566.419483][ T5836] cache 0
[  566.436533][T11544] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  566.448999][ T5836] rss 0
[  566.451802][ T5836] rss_huge 0
[  566.461052][ T5836] shmem 0
[  566.467724][T11544] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  566.486531][ T5836] mapped_file 0
[  566.490116][ T5836] dirty 0
[  566.497951][T11544] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  566.507966][ T5836] writeback 0
[  566.511380][ T5836] workingset_refault_anon 13715
[  566.516312][ T5836] workingset_refault_file 100812
[  566.532370][T11544] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  566.546042][ T5836] swap 593920
[  566.556730][ T5836] swapcached 65536
[  566.560602][ T5836] pgpgin 347130
[  566.564240][T11544] page dumped because: unmovable page
[  566.578370][T11544] page_owner tracks the page as allocated
[  566.586603][ T5836] pgpgout 349158
[  566.594618][ T5836] pgfault 237615
[  566.598691][T11544] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5216, tgid 5216 (udevadm), ts 42919089502, free_ts 34828086581
[  566.630376][ T5836] pgmajfault 9299
[  566.636018][ T5836] inactive_anon 0
[  566.644264][ T5836] active_anon 65536
[  566.656854][ T5836] inactive_file 0
[  566.666640][ T5836] active_file 0
[  566.671661][ T5836] unevictable 0
[  566.675925][T11544]  post_alloc_hook+0x1af/0x220
[  566.681799][ T5836] hierarchical_memory_limit 3145728
[  566.690255][T11544]  get_page_from_freelist+0xd0b/0x31a0
[  566.700332][ T5836] hierarchical_memsw_limit 9223372036854771712
[  566.716663][T11544]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  566.722793][ T5836] total_cache 0
[  566.726277][ T5836] total_rss 0
[  566.729783][T11544]  alloc_pages_mpol+0x1fb/0x550
[  566.742106][ T5836] total_rss_huge 0
[  566.745951][T11544]  new_slab+0x2c3/0x430
[  566.753101][ T5836] total_shmem 0
[  566.760981][T11544]  ___slab_alloc+0xe18/0x1c90
[  566.765683][T11544]  __slab_alloc.constprop.0+0x63/0x110
[  566.772388][ T5836] total_mapped_file 0
[  566.781731][ T5836] total_dirty 0
[  566.788447][ T5836] total_writeback 0
[  566.792268][ T5836] total_workingset_refault_anon 13715
[  566.799198][T11544]  kmem_cache_alloc_lru_noprof+0x451/0x770
[  566.811987][T11544]  alloc_inode+0xc3/0x240
[  566.816467][T11544]  iget_locked+0x1d9/0x6d0
[  566.823481][ T5836] total_workingset_refault_file 100812
[  566.835174][ T5836] total_swap 593920
[  566.841491][T11544]  kernfs_get_inode+0x46/0x470
[  566.851696][ T5836] total_swapcached 65536
[  566.856024][ T5836] total_pgpgin 347130
[  566.864534][T11544]  kernfs_iop_lookup+0x1a7/0x2d0
[  566.875747][T11544]  lookup_open.isra.0+0x4e2/0x1780
[  566.884325][ T5836] total_pgpgout 349158
[  566.892047][ T5836] total_pgfault 237615
[  566.897798][   T52] Bluetooth: hci0: command 0x0406 tx timeout
[  566.907431][T11544]  path_openat+0x12bb/0x3140
[  566.916240][ T5836] total_pgmajfault 9299
[  566.920565][T11544]  do_filp_open+0x20b/0x470
[  566.930708][T11544]  do_sys_openat2+0x121/0x290
[  566.935539][ T5836] total_inactive_anon 0
[  566.944233][ T5836] total_active_anon 65536
[  566.950655][T11544] page last free pid 1 tgid 1 stack trace:
[  566.956486][T11544]  __free_frozen_pages+0x7df/0x1170
[  566.966602][ T5836] total_inactive_file 0
[  566.981859][ T5836] total_active_file 0
[  566.985893][ T5836] total_unevictable 0
[  566.994098][T11544]  free_contig_range+0x183/0x4a0
[  567.003524][ T5836] anon_cost 0
[  567.010350][T11544]  destroy_args+0xb95/0x14e0
[  567.016936][ T5836] file_cost 0
[  567.020239][ T5836] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1297,pid=11530,uid=0
[  567.035658][T11544]  debug_vm_pgtable+0x2220/0x38d0
[  567.045844][T11544]  do_one_initcall+0x123/0x680
[  567.056996][   T52] Bluetooth: hci5: command 0x0c1a tx timeout
[  567.073312][T11544]  kernel_init_freeable+0x5c8/0x920
[  567.085530][T11544]  kernel_init+0x1c/0x2b0
[  567.091665][ T5836] Memory cgroup out of memory: Killed process 11530 (syz.3.1297) total-vm:102032kB, anon-rss:1268kB, file-rss:21820kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[  567.114170][T11544]  ret_from_fork+0x983/0xb10
[  567.124275][T11544]  ret_from_fork_asm+0x1a/0x30
[  567.220387][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  567.226847][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  567.948573][T11578] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16
[  569.141531][   T52] Bluetooth: hci5: command 0x0c1a tx timeout
[  571.515916][T11633] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  571.605268][T11633] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  571.673238][T11637] vivid-007: =================  START STATUS  =================
[  571.742405][T11633] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  571.778469][T11637] vivid-007: Enable Output Cropping: true
[  571.856991][T11637] vivid-007: Enable Output Composing: true
[  571.879301][T11633] page_type: f5(slab)
[  571.923135][T11633] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  571.979273][T11637] vivid-007: Enable Output Scaler: true
[  572.016179][T11637] vivid-007: Tx RGB Quantization Range: Automatic
[  572.058293][T11633] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  572.128027][T11637] vivid-007: Transmit Mode: HDMI
[  572.139838][T11642] FAULT_INJECTION: forcing a failure.
[  572.139838][T11642] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  572.184831][T11633] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  572.220553][T11642] CPU: 1 UID: 0 PID: 11642 Comm: syz.5.1317 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  572.220586][T11642] Tainted: [L]=SOFTLOCKUP
[  572.220592][T11642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  572.220603][T11642] Call Trace:
[  572.220610][T11642]  <TASK>
[  572.220618][T11642]  dump_stack_lvl+0x16c/0x1f0
[  572.220651][T11642]  should_fail_ex+0x512/0x640
[  572.220674][T11642]  should_fail_alloc_page+0xe7/0x130
[  572.220713][T11642]  prepare_alloc_pages+0x401/0x670
[  572.220741][T11642]  ? __kernel_text_address+0xd/0x40
[  572.220766][T11642]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  572.220791][T11642]  ? register_lock_class+0x41/0x4b0
[  572.220815][T11642]  ? __lock_acquire+0x436/0x2890
[  572.220833][T11642]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  572.220866][T11642]  ? __pfx___might_resched+0x10/0x10
[  572.220893][T11642]  ? rcu_is_watching+0x12/0xc0
[  572.220919][T11642]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  572.220949][T11642]  ? policy_nodemask+0xea/0x4e0
[  572.220979][T11642]  alloc_pages_mpol+0x1fb/0x550
[  572.221008][T11642]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  572.221036][T11642]  ? __mutex_unlock_slowpath+0x161/0x790
[  572.221069][T11642]  ___kmalloc_large_node+0x10c/0x150
[  572.221102][T11642]  __kmalloc_large_node_noprof+0x1c/0x70
[  572.221134][T11642]  __kmalloc_noprof.cold+0xc/0x62
[  572.221162][T11642]  ? __pfx_nfs4blocklayout_net_init+0x10/0x10
[  572.221188][T11642]  ? ops_init+0x77/0x5f0
[  572.221216][T11642]  ? ops_init+0x77/0x5f0
[  572.221237][T11642]  ops_init+0x77/0x5f0
[  572.221263][T11642]  setup_net+0x11d/0x3a0
[  572.221288][T11642]  ? __pfx_setup_net+0x10/0x10
[  572.221311][T11642]  ? lockdep_init_map_type+0x5c/0x270
[  572.221330][T11642]  ? mutex_init_lockep+0x110/0x150
[  572.221352][T11642]  copy_net_ns+0x351/0x7c0
[  572.221382][T11642]  create_new_namespaces+0x3ea/0xab0
[  572.221412][T11642]  copy_namespaces+0x468/0x570
[  572.221438][T11642]  copy_process+0x2a70/0x7430
[  572.221475][T11642]  ? __pfx_copy_process+0x10/0x10
[  572.221507][T11642]  ? futex_private_hash_put+0x160/0x1b0
[  572.221530][T11642]  kernel_clone+0xfc/0x910
[  572.221560][T11642]  ? __pfx_kernel_clone+0x10/0x10
[  572.221599][T11642]  __do_sys_clone+0xce/0x120
[  572.221626][T11642]  ? __pfx___do_sys_clone+0x10/0x10
[  572.221654][T11642]  ? find_held_lock+0x2b/0x80
[  572.221685][T11642]  ? xfd_validate_state+0x61/0x180
[  572.221715][T11642]  do_syscall_64+0xcd/0xf80
[  572.221744][T11642]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.221762][T11642] RIP: 0033:0x7f72e858f7c9
[  572.221779][T11642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  572.221797][T11642] RSP: 002b:00007f72e93ecfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  572.221816][T11642] RAX: ffffffffffffffda RBX: 00007f72e87e6180 RCX: 00007f72e858f7c9
[  572.221828][T11642] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211
[  572.221839][T11642] RBP: 00007f72e8613f91 R08: 0000000000000000 R09: 0000000000000000
[  572.221851][T11642] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  572.221862][T11642] R13: 00007f72e87e6218 R14: 00007f72e87e6180 R15: 00007ffea2bcdd08
[  572.221885][T11642]  </TASK>
[  572.567106][T11637] vivid-007: Hotplug Present: 0x00000000
[  572.574422][T11641] FAULT_INJECTION: forcing a failure.
[  572.574422][T11641] name failslab, interval 1, probability 0, space 0, times 0
[  572.599611][T11637] vivid-007: RxSense Present: 0x00000000
[  572.605285][T11637] vivid-007: EDID Present: 0x00000000
[  572.629398][T11633] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  572.640479][T11641] CPU: 1 UID: 0 PID: 11641 Comm: syz.2.1318 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  572.640513][T11641] Tainted: [L]=SOFTLOCKUP
[  572.640520][T11641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  572.640532][T11641] Call Trace:
[  572.640539][T11641]  <TASK>
[  572.640547][T11641]  dump_stack_lvl+0x16c/0x1f0
[  572.640580][T11641]  should_fail_ex+0x512/0x640
[  572.640601][T11641]  ? __kmalloc_cache_noprof+0x5f/0x800
[  572.640626][T11641]  should_failslab+0xc2/0x120
[  572.640654][T11641]  __kmalloc_cache_noprof+0x80/0x800
[  572.640676][T11641]  ? nci_allocate_device+0x105/0x460
[  572.640700][T11641]  ? nci_allocate_device+0x105/0x460
[  572.640728][T11641]  nci_allocate_device+0x105/0x460
[  572.640750][T11641]  virtual_ncidev_open+0x6f/0x220
[  572.640782][T11641]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  572.640812][T11641]  misc_open+0x26d/0x450
[  572.640834][T11641]  ? __pfx_misc_open+0x10/0x10
[  572.640854][T11641]  chrdev_open+0x234/0x6a0
[  572.640882][T11641]  ? __pfx_apparmor_file_open+0x10/0x10
[  572.640903][T11641]  ? __pfx_chrdev_open+0x10/0x10
[  572.640933][T11641]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  572.640967][T11641]  do_dentry_open+0x748/0x1590
[  572.640994][T11641]  ? __pfx_chrdev_open+0x10/0x10
[  572.641027][T11641]  vfs_open+0x82/0x3f0
[  572.641049][T11641]  path_openat+0x2078/0x3140
[  572.641084][T11641]  ? __pfx_path_openat+0x10/0x10
[  572.641119][T11641]  do_filp_open+0x20b/0x470
[  572.641148][T11641]  ? __pfx_do_filp_open+0x10/0x10
[  572.641190][T11641]  ? alloc_fd+0x471/0x7d0
[  572.641223][T11641]  do_sys_openat2+0x121/0x290
[  572.641243][T11641]  ? __pfx_do_sys_openat2+0x10/0x10
[  572.641272][T11641]  __x64_sys_openat+0x174/0x210
[  572.641294][T11641]  ? __pfx___x64_sys_openat+0x10/0x10
[  572.641324][T11641]  do_syscall_64+0xcd/0xf80
[  572.641353][T11641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.641372][T11641] RIP: 0033:0x7f0d4118f7c9
[  572.641388][T11641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  572.641407][T11641] RSP: 002b:00007f0d3f3ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  572.641425][T11641] RAX: ffffffffffffffda RBX: 00007f0d413e5fa0 RCX: 00007f0d4118f7c9
[  572.641437][T11641] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  572.641449][T11641] RBP: 00007f0d41213f91 R08: 0000000000000000 R09: 0000000000000000
[  572.641460][T11641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  572.641471][T11641] R13: 00007f0d413e6038 R14: 00007f0d413e5fa0 R15: 00007ffcbca2b558
[  572.641494][T11641]  </TASK>
[  573.190006][T11633] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  573.199148][T11633] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  573.218547][T11637] vivid-007: ==================  END STATUS  ==================
[  573.253065][T11633] page dumped because: unmovable page
[  573.273294][T11633] page_owner tracks the page as allocated
[  573.279338][T11633] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5216, tgid 5216 (udevadm), ts 42919089502, free_ts 34828086581
[  573.379798][T11633]  post_alloc_hook+0x1af/0x220
[  573.385706][T11633]  get_page_from_freelist+0xd0b/0x31a0
[  573.391842][T11633]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  573.397786][T11633]  alloc_pages_mpol+0x1fb/0x550
[  573.402748][T11633]  new_slab+0x2c3/0x430
[  573.406930][T11633]  ___slab_alloc+0xe18/0x1c90
[  573.411657][T11633]  __slab_alloc.constprop.0+0x63/0x110
[  573.417346][T11633]  kmem_cache_alloc_lru_noprof+0x451/0x770
[  573.424827][T11633]  alloc_inode+0xc3/0x240
[  573.431292][T11633]  iget_locked+0x1d9/0x6d0
[  573.437473][T11633]  kernfs_get_inode+0x46/0x470
[  573.446447][T11633]  kernfs_iop_lookup+0x1a7/0x2d0
[  573.452276][T11633]  lookup_open.isra.0+0x4e2/0x1780
[  573.458133][T11633]  path_openat+0x12bb/0x3140
[  573.465877][T11633]  do_filp_open+0x20b/0x470
[  573.470623][T11633]  do_sys_openat2+0x121/0x290
[  573.475349][T11633] page last free pid 1 tgid 1 stack trace:
[  573.481320][T11633]  __free_frozen_pages+0x7df/0x1170
[  573.486525][T11633]  free_contig_range+0x183/0x4a0
[  573.491549][T11633]  destroy_args+0xb95/0x14e0
[  573.496155][T11633]  debug_vm_pgtable+0x2220/0x38d0
[  573.501651][T11633]  do_one_initcall+0x123/0x680
[  573.506435][T11633]  kernel_init_freeable+0x5c8/0x920
[  573.512507][T11633]  kernel_init+0x1c/0x2b0
[  573.516854][T11633]  ret_from_fork+0x983/0xb10
[  573.521553][T11633]  ret_from_fork_asm+0x1a/0x30
[  574.529516][T11669] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1321'.
[  574.563446][T11660] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1321'.
[  575.190665][T11681] usb usb36: usbfs: process 11681 (syz.2.1328) did not claim interface 0 before use
[  575.362510][T11687] FAULT_INJECTION: forcing a failure.
[  575.362510][T11687] name failslab, interval 1, probability 0, space 0, times 0
[  575.444794][T11687] CPU: 1 UID: 0 PID: 11687 Comm: syz.3.1329 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  575.444827][T11687] Tainted: [L]=SOFTLOCKUP
[  575.444835][T11687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  575.444846][T11687] Call Trace:
[  575.444853][T11687]  <TASK>
[  575.444861][T11687]  dump_stack_lvl+0x16c/0x1f0
[  575.444894][T11687]  should_fail_ex+0x512/0x640
[  575.444915][T11687]  ? kmem_cache_alloc_noprof+0x62/0x770
[  575.444941][T11687]  should_failslab+0xc2/0x120
[  575.444977][T11687]  kmem_cache_alloc_noprof+0x83/0x770
[  575.445000][T11687]  ? alloc_empty_file+0x55/0x1e0
[  575.445023][T11687]  ? alloc_empty_file+0x55/0x1e0
[  575.445042][T11687]  alloc_empty_file+0x55/0x1e0
[  575.445062][T11687]  alloc_file_pseudo+0x13a/0x230
[  575.445083][T11687]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  575.445101][T11687]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  575.445133][T11687]  create_pipe_files+0x36d/0x9a0
[  575.445164][T11687]  do_pipe2+0xaf/0x1c0
[  575.445192][T11687]  ? __pfx_do_pipe2+0x10/0x10
[  575.445220][T11687]  ? xfd_validate_state+0x61/0x180
[  575.445237][T11687]  ? __pfx_ksys_write+0x10/0x10
[  575.445268][T11687]  __x64_sys_pipe+0x33/0x50
[  575.445296][T11687]  do_syscall_64+0xcd/0xf80
[  575.445324][T11687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  575.445343][T11687] RIP: 0033:0x7f134138f7c9
[  575.445360][T11687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  575.445379][T11687] RSP: 002b:00007f13421ba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  575.445398][T11687] RAX: ffffffffffffffda RBX: 00007f13415e5fa0 RCX: 00007f134138f7c9
[  575.445410][T11687] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  575.445421][T11687] RBP: 00007f1341413f91 R08: 0000000000000000 R09: 0000000000000000
[  575.445433][T11687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  575.445444][T11687] R13: 00007f13415e6038 R14: 00007f13415e5fa0 R15: 00007ffd5ab81358
[  575.445466][T11687]  </TASK>
[  577.901545][T11699] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  578.004104][T11699] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  578.115103][T11699] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  578.231029][T11699] page_type: f5(slab)
[  578.250463][T11699] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  578.353114][T11699] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  578.416487][T11712] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1336'.
[  578.467555][T11699] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  578.606314][T11699] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  578.737058][T11699] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  578.841816][T11699] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  578.914430][T11699] page dumped because: unmovable page
[  578.937202][T11699] page_owner tracks the page as allocated
[  578.967587][T11699] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5216, tgid 5216 (udevadm), ts 42919089502, free_ts 34828086581
[  579.083011][T11699]  post_alloc_hook+0x1af/0x220
[  579.093115][T11699]  get_page_from_freelist+0xd0b/0x31a0
[  579.121397][T11699]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  579.182131][T11699]  alloc_pages_mpol+0x1fb/0x550
[  579.226334][T11699]  new_slab+0x2c3/0x430
[  579.276038][T11699]  ___slab_alloc+0xe18/0x1c90
[  579.344353][T11699]  __slab_alloc.constprop.0+0x63/0x110
[  579.370201][T11699]  kmem_cache_alloc_lru_noprof+0x451/0x770
[  579.471152][T11699]  alloc_inode+0xc3/0x240
[  579.489566][T11699]  iget_locked+0x1d9/0x6d0
[  579.523085][T11699]  kernfs_get_inode+0x46/0x470
[  579.527891][T11699]  kernfs_iop_lookup+0x1a7/0x2d0
[  579.591340][T11699]  lookup_open.isra.0+0x4e2/0x1780
[  579.597646][T11699]  path_openat+0x12bb/0x3140
[  579.613129][T11699]  do_filp_open+0x20b/0x470
[  579.627924][T11699]  do_sys_openat2+0x121/0x290
[  579.632664][T11699] page last free pid 1 tgid 1 stack trace:
[  579.700813][T11699]  __free_frozen_pages+0x7df/0x1170
[  579.716732][T11699]  free_contig_range+0x183/0x4a0
[  579.780378][T11699]  destroy_args+0xb95/0x14e0
[  579.849736][T11699]  debug_vm_pgtable+0x2220/0x38d0
[  579.899844][T11699]  do_one_initcall+0x123/0x680
[  579.949573][T11699]  kernel_init_freeable+0x5c8/0x920
[  579.991366][T11699]  kernel_init+0x1c/0x2b0
[  580.070731][T11699]  ret_from_fork+0x983/0xb10
[  580.123219][T11699]  ret_from_fork_asm+0x1a/0x30
[  581.398995][T11753] vhci_hcd vhci_hcd.0: invalid port number 16
[  581.904508][T11758] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1343'.
[  589.434323][T11813] cougar: G6 mapped to space
[  589.485652][T11816] cougar: G6 mapped to space
[  591.920629][T11840] netlink: 50 bytes leftover after parsing attributes in process `syz.2.1365'.
[  594.032986][T11867] netlink: 226 bytes leftover after parsing attributes in process `syz.1.1372'.
[  594.203493][T11867] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1372'.
[  594.304626][T11867] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check.
[  598.468789][T11805] syz.1.1357 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  598.643144][T11805] CPU: 1 UID: 0 PID: 11805 Comm: syz.1.1357 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  598.643181][T11805] Tainted: [L]=SOFTLOCKUP
[  598.643188][T11805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  598.643199][T11805] Call Trace:
[  598.643207][T11805]  <TASK>
[  598.643214][T11805]  dump_stack_lvl+0x16c/0x1f0
[  598.643252][T11805]  dump_header+0x101/0x960
[  598.643276][T11805]  oom_kill_process+0x176/0x910
[  598.643303][T11805]  out_of_memory+0x350/0x1700
[  598.643324][T11805]  ? __lock_acquire+0x436/0x2890
[  598.643345][T11805]  ? __pfx_out_of_memory+0x10/0x10
[  598.643378][T11805]  mem_cgroup_out_of_memory+0x118/0x130
[  598.643400][T11805]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  598.643428][T11805]  ? do_raw_spin_unlock+0x172/0x230
[  598.643458][T11805]  try_charge_memcg+0x695/0xd30
[  598.643490][T11805]  ? __pfx_try_charge_memcg+0x10/0x10
[  598.643519][T11805]  ? __print_lock_name+0x61/0xe0
[  598.643544][T11805]  ? rcu_read_unlock+0x17/0x60
[  598.643574][T11805]  charge_memcg+0x8a/0x230
[  598.643603][T11805]  __mem_cgroup_charge+0x2b/0x1e0
[  598.643624][T11805]  shmem_alloc_and_add_folio+0x50c/0xc20
[  598.643652][T11805]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  598.643676][T11805]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  598.643709][T11805]  shmem_get_folio_gfp+0x67f/0x1610
[  598.643737][T11805]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  598.643759][T11805]  ? filemap_map_pages+0x12dd/0x1e00
[  598.643784][T11805]  shmem_fault+0x1fe/0xa00
[  598.643805][T11805]  ? __pfx_shmem_fault+0x10/0x10
[  598.643833][T11805]  ? __pfx_filemap_map_pages+0x10/0x10
[  598.643860][T11805]  ? __pfx_filemap_map_pages+0x10/0x10
[  598.643879][T11805]  __do_fault+0x10d/0x490
[  598.643902][T11805]  ? __pfx_filemap_map_pages+0x10/0x10
[  598.643922][T11805]  do_fault+0xae4/0x1ad0
[  598.643947][T11805]  ? __pfx_filemap_map_pages+0x10/0x10
[  598.643972][T11805]  __handle_mm_fault+0x1919/0x2bb0
[  598.643995][T11805]  ? reacquire_held_locks+0xcd/0x1f0
[  598.644014][T11805]  ? __pfx___handle_mm_fault+0x10/0x10
[  598.644036][T11805]  ? lock_vma_under_rcu+0x176/0x580
[  598.644062][T11805]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  598.644094][T11805]  handle_mm_fault+0x3fe/0xad0
[  598.644117][T11805]  do_user_addr_fault+0x60c/0x1370
[  598.644142][T11805]  ? rcu_is_watching+0x12/0xc0
[  598.644171][T11805]  exc_page_fault+0x64/0xc0
[  598.644198][T11805]  asm_exc_page_fault+0x26/0x30
[  598.644216][T11805] RIP: 0033:0x227f000
[  598.644237][T11805] Code: Unable to access opcode bytes at 0x227efd6.
[  598.644245][T11805] RSP: 002b:0000000000000011 EFLAGS: 00010246
[  598.644260][T11805] RAX: 0000000000000000 RBX: 00007ffb2a7e5fa0 RCX: 00007ffb2a58f7c9
[  598.644272][T11805] RDX: 9999999999999999 RSI: 0000000000000009 RDI: 0000000100000008
[  598.644284][T11805] RBP: 00007ffb2a613f91 R08: 0000000004000006 R09: 0000000000000000
[  598.644295][T11805] R10: ffffffff81000000 R11: 0000000000000246 R12: 0000000000000000
[  598.644306][T11805] R13: 00007ffb2a7e6038 R14: 00007ffb2a7e5fa0 R15: 00007ffdd9bb6a28
[  598.644322][T11805]  ? 0xffffffff81000000
[  598.644343][T11805]  </TASK>
[  598.644350][T11805] memory: usage 2472kB, limit 3072kB, failcnt 161068
[  599.902861][T11805] memory+swap: usage 5776kB, limit 9007199254740988kB, failcnt 0
[  599.937120][T11805] kmem: usage 1708kB, limit 9007199254740988kB, failcnt 0
[  599.968845][T11805] Memory cgroup stats for /syz1:
[  599.968970][T11805] cache 413696
[  600.009186][T11805] rss 831488
[  600.024954][T11805] rss_huge 0
[  600.028359][T11805] shmem 413696
[  600.031831][T11805] mapped_file 413696
[  600.078571][T11805] dirty 0
[  600.123355][T11805] writeback 0
[  600.127209][T11805] workingset_refault_anon 12407
[  600.132064][T11805] workingset_refault_file 63020
[  600.156635][T11805] swap 2768896
[  600.160063][T11805] swapcached 151552
[  600.179516][T11805] pgpgin 302922
[  600.183000][T11805] pgpgout 302581
[  600.217356][T11805] pgfault 262397
[  600.221031][T11805] pgmajfault 8379
[  600.237718][T11805] inactive_anon 995328
[  600.241818][T11805] active_anon 401408
[  600.416436][T11805] inactive_file 0
[  600.429219][T11805] active_file 0
[  600.445283][T11805] unevictable 0
[  600.453274][T11805] hierarchical_memory_limit 3145728
[  600.470587][T11805] hierarchical_memsw_limit 9223372036854771712
[  600.493290][T11805] total_cache 413696
[  600.506594][T11805] total_rss 831488
[  600.519856][T11805] total_rss_huge 0
[  600.535626][T11805] total_shmem 413696
[  600.550577][T11805] total_mapped_file 413696
[  600.564091][T11805] total_dirty 0
[  600.575309][T11805] total_writeback 0
[  600.592972][T11805] total_workingset_refault_anon 12407
[  600.611515][T11805] total_workingset_refault_file 63020
[  600.629776][T11805] total_swap 2768896
[  600.646679][T11805] total_swapcached 151552
[  600.667215][T11805] total_pgpgin 302922
[  600.677323][T11805] total_pgpgout 302581
[  600.689698][T11805] total_pgfault 262397
[  600.707022][T11805] total_pgmajfault 8379
[  600.716705][T11805] total_inactive_anon 995328
[  600.732220][T11805] total_active_anon 401408
[  600.748683][T11805] total_inactive_file 0
[  600.763950][T11805] total_active_file 0
[  600.778658][T11805] total_unevictable 0
[  600.793003][T11805] anon_cost 0
[  600.804675][T11805] file_cost 0
[  600.815982][T11805] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1378,pid=11890,uid=0
[  600.848879][T11805] Memory cgroup out of memory: Killed process 11890 (syz.1.1378) total-vm:106268kB, anon-rss:1908kB, file-rss:21796kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:1000
[  600.890998][T11646] syz.3.1316 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  600.912066][T11646] CPU: 1 UID: 0 PID: 11646 Comm: syz.3.1316 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  600.912098][T11646] Tainted: [L]=SOFTLOCKUP
[  600.912105][T11646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  600.912116][T11646] Call Trace:
[  600.912123][T11646]  <TASK>
[  600.912130][T11646]  dump_stack_lvl+0x16c/0x1f0
[  600.912163][T11646]  dump_header+0x101/0x960
[  600.912186][T11646]  oom_kill_process+0x176/0x910
[  600.912209][T11646]  out_of_memory+0x350/0x1700
[  600.912229][T11646]  ? __lock_acquire+0x436/0x2890
[  600.912250][T11646]  ? __pfx_out_of_memory+0x10/0x10
[  600.912277][T11646]  mem_cgroup_out_of_memory+0x118/0x130
[  600.912300][T11646]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  600.912328][T11646]  ? do_raw_spin_unlock+0x172/0x230
[  600.912365][T11646]  try_charge_memcg+0x695/0xd30
[  600.912399][T11646]  ? __pfx_try_charge_memcg+0x10/0x10
[  600.912428][T11646]  ? __print_lock_name+0x61/0xe0
[  600.912453][T11646]  ? rcu_read_unlock+0x17/0x60
[  600.912475][T11646]  charge_memcg+0x8a/0x230
[  600.912504][T11646]  __mem_cgroup_charge+0x2b/0x1e0
[  600.912523][T11646]  filemap_add_folio+0xe6/0x610
[  600.912546][T11646]  ? __pfx_filemap_add_folio+0x10/0x10
[  600.912574][T11646]  __filemap_get_folio_mpol+0x511/0xc60
[  600.912603][T11646]  filemap_fault+0x684/0x29d0
[  600.912629][T11646]  ? __pfx_filemap_fault+0x10/0x10
[  600.912662][T11646]  ? __pfx_filemap_map_pages+0x10/0x10
[  600.912681][T11646]  __do_fault+0x10d/0x490
[  600.912705][T11646]  ? __pfx_filemap_map_pages+0x10/0x10
[  600.912724][T11646]  do_fault+0xae4/0x1ad0
[  600.912754][T11646]  ? __pfx_filemap_map_pages+0x10/0x10
[  600.912779][T11646]  __handle_mm_fault+0x1919/0x2bb0
[  600.912805][T11646]  ? __pfx___handle_mm_fault+0x10/0x10
[  600.912826][T11646]  ? __pte_offset_map_lock+0x174/0x310
[  600.912853][T11646]  ? find_held_lock+0x2b/0x80
[  600.912884][T11646]  ? follow_page_pte+0x5cf/0x1390
[  600.912917][T11646]  handle_mm_fault+0x3fe/0xad0
[  600.912941][T11646]  __get_user_pages+0x54e/0x3590
[  600.912978][T11646]  ? __pfx___get_user_pages+0x10/0x10
[  600.913006][T11646]  ? __kernel_write_iter+0x5a5/0xb10
[  600.913038][T11646]  get_dump_page+0x257/0x3d0
[  600.913066][T11646]  ? __pfx_get_dump_page+0x10/0x10
[  600.913095][T11646]  ? dump_user_range+0x756/0xb70
[  600.913123][T11646]  ? get_dump_page+0x270/0x3d0
[  600.913155][T11646]  dump_user_range+0x195/0xb70
[  600.913188][T11646]  ? __pfx_dump_user_range+0x10/0x10
[  600.913223][T11646]  ? elf_coredump_extra_notes_write+0xbd/0x4f0
[  600.913249][T11646]  ? __pfx_writenote+0x10/0x10
[  600.913284][T11646]  elf_core_dump+0x29c3/0x3c10
[  600.913325][T11646]  ? __pfx_elf_core_dump+0x10/0x10
[  600.913359][T11646]  ? kasan_save_stack+0x33/0x60
[  600.913382][T11646]  ? kasan_save_track+0x14/0x30
[  600.913405][T11646]  ? __kasan_kmalloc+0xaa/0xb0
[  600.913428][T11646]  ? __kvmalloc_node_noprof+0x3ac/0xa40
[  600.913452][T11646]  ? vfs_coredump+0x1dd9/0x55e0
[  600.913478][T11646]  ? arch_do_signal_or_restart+0x8f/0x7a0
[  600.913504][T11646]  ? irqentry_exit+0x38a/0x8c0
[  600.913530][T11646]  ? asm_exc_page_fault+0x26/0x30
[  600.913553][T11646]  ? 0xffffffffff600000
[  600.913607][T11646]  ? vfs_coredump+0x2b85/0x55e0
[  600.913634][T11646]  vfs_coredump+0x2b85/0x55e0
[  600.913669][T11646]  ? __pfx_vfs_coredump+0x10/0x10
[  600.913695][T11646]  ? __lock_acquire+0x436/0x2890
[  600.913717][T11646]  ? __lock_acquire+0x436/0x2890
[  600.913737][T11646]  ? lock_acquire+0x179/0x330
[  600.913759][T11646]  ? lock_acquire+0x179/0x330
[  600.913791][T11646]  ? arch_stack_walk+0xa6/0x100
[  600.913822][T11646]  ? stack_trace_save+0x8e/0xc0
[  600.913852][T11646]  ? __pfx_stack_trace_save+0x10/0x10
[  600.913881][T11646]  ? stack_depot_save_flags+0x29/0x9b0
[  600.913903][T11646]  ? __lock_acquire+0x436/0x2890
[  600.913922][T11646]  ? kasan_save_stack+0x42/0x60
[  600.913984][T11646]  ? proc_coredump_connector+0x2d1/0x4f0
[  600.914013][T11646]  ? __pfx_proc_coredump_connector+0x10/0x10
[  600.914047][T11646]  ? rcu_is_watching+0x12/0xc0
[  600.914077][T11646]  get_signal+0x22e1/0x26d0
[  600.914111][T11646]  ? __pfx_get_signal+0x10/0x10
[  600.914143][T11646]  arch_do_signal_or_restart+0x8f/0x7a0
[  600.914170][T11646]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  600.914204][T11646]  ? do_user_addr_fault+0x926/0x1370
[  600.914232][T11646]  irqentry_exit+0x38a/0x8c0
[  600.914262][T11646]  asm_exc_page_fault+0x26/0x30
[  600.914279][T11646] RIP: 0033:0x1000
[  600.914299][T11646] Code: Unable to access opcode bytes at 0xfd6.
[  600.914307][T11646] RSP: 002b:000000000000000f EFLAGS: 00010246
[  600.914323][T11646] RAX: 0000000000000000 RBX: 00007f13415e6180 RCX: 00007f134138f7c9
[  600.914335][T11646] RDX: 0000200000000000 RSI: 0000000000000007 RDI: 0000000000008001
[  600.914353][T11646] RBP: 00007f1341413f91 R08: 0000000000005edd R09: 0000000000000000
[  600.914364][T11646] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000000
[  600.914376][T11646] R13: 00007f13415e6218 R14: 00007f13415e6180 R15: 00007ffd5ab81358
[  600.914401][T11646]  </TASK>
[  601.790004][T11898] FAULT_INJECTION: forcing a failure.
[  601.790004][T11898] name failslab, interval 1, probability 0, space 0, times 0
[  601.809876][T11898] CPU: 1 UID: 0 PID: 11898 Comm: syz.3.1382 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  601.809909][T11898] Tainted: [L]=SOFTLOCKUP
[  601.809917][T11898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  601.809928][T11898] Call Trace:
[  601.809935][T11898]  <TASK>
[  601.809944][T11898]  dump_stack_lvl+0x16c/0x1f0
[  601.809977][T11898]  should_fail_ex+0x512/0x640
[  601.809998][T11898]  ? __kmalloc_noprof+0xca/0x910
[  601.810022][T11898]  should_failslab+0xc2/0x120
[  601.810050][T11898]  __kmalloc_noprof+0xeb/0x910
[  601.810070][T11898]  ? lsm_blob_alloc+0x68/0x90
[  601.810100][T11898]  ? lsm_blob_alloc+0x68/0x90
[  601.810125][T11898]  lsm_blob_alloc+0x68/0x90
[  601.810152][T11898]  security_prepare_creds+0x2f/0x270
[  601.810179][T11898]  prepare_creds+0x5d6/0x940
[  601.810203][T11898]  __sys_setresuid+0x46d/0x1160
[  601.810228][T11898]  ? rcu_is_watching+0x12/0xc0
[  601.810256][T11898]  do_syscall_64+0xcd/0xf80
[  601.810285][T11898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  601.810325][T11898] RIP: 0033:0x7f134138f7c9
[  601.810341][T11898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  601.810360][T11898] RSP: 002b:00007f13421ba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000075
[  601.810379][T11898] RAX: ffffffffffffffda RBX: 00007f13415e5fa0 RCX: 00007f134138f7c9
[  601.810398][T11898] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: ffffffffffffffff
[  601.810411][T11898] RBP: 00007f1341413f91 R08: 0000000000000000 R09: 0000000000000000
[  601.810423][T11898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  601.810434][T11898] R13: 00007f13415e6038 R14: 00007f13415e5fa0 R15: 00007ffd5ab81358
[  601.810459][T11898]  </TASK>
[  602.000123][T11646] memory: usage 1968kB, limit 3072kB, failcnt 218507
[  602.007045][T11646] memory+swap: usage 29960kB, limit 9007199254740988kB, failcnt 0
[  602.016507][T11646] kmem: usage 1248kB, limit 9007199254740988kB, failcnt 0
[  602.024623][T11646] Memory cgroup stats for /syz3:
[  602.024752][T11646] cache 286720
[  602.033495][T11646] rss 184320
[  602.037541][T11646] rss_huge 0
[  602.040911][T11646] shmem 282624
[  602.045052][T11646] mapped_file 0
[  602.048599][T11646] dirty 0
[  602.051710][T11646] writeback 0
[  602.055489][T11646] workingset_refault_anon 14403
[  602.060595][T11646] workingset_refault_file 121719
[  602.065811][T11646] swap 28663808
[  602.069270][T11646] swapcached 159744
[  602.073168][T11646] pgpgin 387304
[  602.077105][T11646] pgpgout 389194
[  602.080735][T11646] pgfault 246804
[  602.084631][T11646] pgmajfault 9899
[  602.088316][T11646] inactive_anon 77824
[  602.092388][T11646] active_anon 528384
[  602.096964][T11646] inactive_file 0
[  602.100642][T11646] active_file 4096
[  602.108218][T11646] unevictable 0
[  602.111762][T11646] hierarchical_memory_limit 3145728
[  602.118438][T11646] hierarchical_memsw_limit 9223372036854771712
[  602.125542][T11646] total_cache 286720
[  602.129437][T11646] total_rss 184320
[  602.133163][T11646] total_rss_huge 0
[  602.137285][T11646] total_shmem 282624
[  602.141270][T11646] total_mapped_file 0
[  602.145534][T11646] total_dirty 0
[  602.149611][T11646] total_writeback 0
[  602.153716][T11646] total_workingset_refault_anon 14403
[  602.159818][T11646] total_workingset_refault_file 121719
[  602.165536][T11646] total_swap 28663808
[  602.169615][T11646] total_swapcached 159744
[  602.174243][T11646] total_pgpgin 387304
[  602.178731][T11646] total_pgpgout 389194
[  602.182897][T11646] total_pgfault 246804
[  602.187414][T11646] total_pgmajfault 9899
[  602.191913][T11646] total_inactive_anon 77824
[  602.196993][T11646] total_active_anon 528384
[  602.201557][T11646] total_inactive_file 0
[  602.206173][T11646] total_active_file 4096
[  602.210429][T11646] total_unevictable 0
[  602.219575][T11646] anon_cost 0
[  602.222872][T11646] file_cost 0
[  602.227603][T11646] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1316,pid=11646,uid=0
[  602.242778][T11646] Memory cgroup out of memory: Killed process 11646 (syz.3.1316) total-vm:110772kB, anon-rss:1184kB, file-rss:30668kB, shmem-rss:0kB, UID:0 pgtables:196kB oom_score_adj:1000
[  602.271127][T11896] syz.5.1380 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  602.305024][T11896] CPU: 1 UID: 0 PID: 11896 Comm: syz.5.1380 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  602.305056][T11896] Tainted: [L]=SOFTLOCKUP
[  602.305063][T11896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  602.305074][T11896] Call Trace:
[  602.305081][T11896]  <TASK>
[  602.305088][T11896]  dump_stack_lvl+0x16c/0x1f0
[  602.305121][T11896]  dump_header+0x101/0x960
[  602.305144][T11896]  oom_kill_process+0x176/0x910
[  602.305166][T11896]  out_of_memory+0x350/0x1700
[  602.305191][T11896]  ? __pfx_out_of_memory+0x10/0x10
[  602.305217][T11896]  mem_cgroup_out_of_memory+0x118/0x130
[  602.305240][T11896]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  602.305266][T11896]  ? do_raw_spin_unlock+0x172/0x230
[  602.305292][T11896]  try_charge_memcg+0x695/0xd30
[  602.305326][T11896]  ? __pfx_try_charge_memcg+0x10/0x10
[  602.305355][T11896]  ? rcu_read_unlock+0x11/0x60
[  602.305375][T11896]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  602.305409][T11896]  __memcg_kmem_charge_page+0xda/0x420
[  602.305441][T11896]  memcg_charge_kernel_stack+0xc3/0x1f0
[  602.305471][T11896]  copy_process+0xf07/0x7430
[  602.305499][T11896]  ? __page_table_check_ptes_set+0x1b1/0x4e0
[  602.305533][T11896]  ? __pfx_copy_process+0x10/0x10
[  602.305566][T11896]  ? _copy_from_user+0x59/0xd0
[  602.305589][T11896]  kernel_clone+0xfc/0x910
[  602.305616][T11896]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  602.305638][T11896]  ? __pfx_kernel_clone+0x10/0x10
[  602.305671][T11896]  ? __lock_acquire+0x436/0x2890
[  602.305693][T11896]  __do_sys_clone3+0x212/0x290
[  602.305721][T11896]  ? __pfx___do_sys_clone3+0x10/0x10
[  602.305777][T11896]  do_syscall_64+0xcd/0xf80
[  602.305806][T11896]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  602.305825][T11896] RIP: 0033:0x7f72e85c3f09
[  602.305842][T11896] Code: ee 08 00 48 8d 3d dc ee 08 00 e8 f2 28 f6 ff 66 90 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[  602.305861][T11896] RSP: 002b:00007ffea2bcdbd8 EFLAGS: 00000206 ORIG_RAX: 00000000000001b3
[  602.305879][T11896] RAX: ffffffffffffffda RBX: 00007f72e8546300 RCX: 00007f72e85c3f09
[  602.305892][T11896] RDX: 00007f72e8546300 RSI: 0000000000000058 RDI: 00007ffea2bcdc20
[  602.305903][T11896] RBP: 00007f72e942f6c0 R08: 00007f72e942f6c0 R09: 00007ffea2bcdd07
[  602.305915][T11896] R10: 0000000000000008 R11: 0000000000000206 R12: ffffffffffffffa8
[  602.305926][T11896] R13: 000000000000000b R14: 00007ffea2bcdc20 R15: 00007ffea2bcdd08
[  602.305949][T11896]  </TASK>
[  602.305956][T11896] memory: usage 2772kB, limit 3072kB, failcnt 31871
[  602.713589][   T52] block nbd0: Receive control failed (result -107)
[  602.999163][T11908] binder: 11906:11908 ioctl c0401273 200000000480 returned -22
[  603.115879][T11896] memory+swap: usage 34216kB, limit 9007199254740988kB, failcnt 0
[  603.142182][T11896] kmem: usage 1108kB, limit 9007199254740988kB, failcnt 0
[  603.162521][T11896] Memory cgroup stats for /syz5:
[  603.162647][T11896] cache 1556480
[  603.193103][T11896] rss 86016
[  603.201993][T11896] rss_huge 0
[  603.211891][T11896] shmem 1544192
[  603.224950][T11896] mapped_file 0
[  603.230733][T11896] dirty 0
[  603.239493][T11896] writeback 0
[  603.251731][T11896] workingset_refault_anon 2433
[  603.264400][T11896] workingset_refault_file 17815
[  603.277554][T11896] swap 32202752
[  603.286694][T11896] swapcached 57344
[  603.296187][T11896] pgpgin 60843
[  603.303959][T11896] pgpgout 73203
[  603.312810][T11896] pgfault 34280
[  603.321707][T11896] pgmajfault 1765
[  603.332909][T11896] inactive_anon 991232
[  603.343232][T11896] active_anon 696320
[  603.356329][T11896] inactive_file 0
[  603.365091][T11896] active_file 12288
[  603.376202][T11896] unevictable 0
[  603.383197][T11896] hierarchical_memory_limit 3145728
[  603.394116][T11896] hierarchical_memsw_limit 9223372036854771712
[  603.407659][T11896] total_cache 1556480
[  603.416660][T11896] total_rss 86016
[  603.425178][T11896] total_rss_huge 0
[  603.432306][T11896] total_shmem 1544192
[  603.445505][T11896] total_mapped_file 0
[  603.453065][T11896] total_dirty 0
[  603.461699][T11896] total_writeback 0
[  603.474660][T11896] total_workingset_refault_anon 2433
[  603.487507][T11896] total_workingset_refault_file 17815
[  603.499532][T11896] total_swap 32202752
[  603.508005][T11896] total_swapcached 57344
[  603.517896][T11896] total_pgpgin 60843
[  603.527646][T11896] total_pgpgout 73203
[  603.536196][T11896] total_pgfault 34280
[  603.544721][T11896] total_pgmajfault 1765
[  603.559499][T11896] total_inactive_anon 991232
[  603.569598][T11896] total_active_anon 696320
[  603.585032][T11896] total_inactive_file 0
[  603.602439][T11896] total_active_file 12288
[  603.615413][T11896] total_unevictable 0
[  603.628268][T11896] anon_cost 0
[  603.643090][T11896] file_cost 0
[  603.653628][T11896] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.1361,pid=11823,uid=0
[  603.701606][T11896] Memory cgroup out of memory: Killed process 11823 (syz.5.1361) total-vm:104140kB, anon-rss:1140kB, file-rss:22704kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:1000
[  606.073121][T11957] .^: entered promiscuous mode
[  606.712021][T11971] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1401'.
[  606.776064][T11970] input: jJǸí¸ü;9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input17
[  607.728992][T10136] netdevsim netdevsim1335 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  613.173967][T12060] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1422'.
[  613.223271][T12060] vlan1: entered promiscuous mode
[  613.255876][T12060] vlan1: entered allmulticast mode
[  613.284858][T12060] veth0_vlan: entered allmulticast mode
[  614.651890][T12081] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  617.276950][T12107] syz.5.1433 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  617.317525][T12107] CPU: 1 UID: 0 PID: 12107 Comm: syz.5.1433 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  617.317557][T12107] Tainted: [L]=SOFTLOCKUP
[  617.317564][T12107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  617.317575][T12107] Call Trace:
[  617.317582][T12107]  <TASK>
[  617.317589][T12107]  dump_stack_lvl+0x16c/0x1f0
[  617.317621][T12107]  dump_header+0x101/0x960
[  617.317644][T12107]  oom_kill_process+0x176/0x910
[  617.317666][T12107]  out_of_memory+0x350/0x1700
[  617.317686][T12107]  ? __lock_acquire+0x436/0x2890
[  617.317707][T12107]  ? __pfx_out_of_memory+0x10/0x10
[  617.317733][T12107]  mem_cgroup_out_of_memory+0x118/0x130
[  617.317756][T12107]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  617.317783][T12107]  ? do_raw_spin_unlock+0x172/0x230
[  617.317808][T12107]  try_charge_memcg+0x695/0xd30
[  617.317841][T12107]  ? __pfx_try_charge_memcg+0x10/0x10
[  617.317874][T12107]  ? find_held_lock+0x2b/0x80
[  617.317901][T12107]  charge_memcg+0x8a/0x230
[  617.317930][T12107]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  617.317951][T12107]  __read_swap_cache_async+0x397/0x500
[  617.317978][T12107]  ? __pfx___read_swap_cache_async+0x10/0x10
[  617.318010][T12107]  swap_cluster_readahead+0x432/0x770
[  617.318031][T12107]  ? should_fail_alloc_page+0xee/0x130
[  617.318065][T12107]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  617.318088][T12107]  ? __alloc_frozen_pages_noprof+0x292/0x2430
[  617.318119][T12107]  ? __lock_acquire+0x436/0x2890
[  617.318145][T12107]  ? get_vma_policy+0x242/0x3c0
[  617.318164][T12107]  swapin_readahead+0x160/0x1220
[  617.318190][T12107]  ? __lock_acquire+0x436/0x2890
[  617.318209][T12107]  ? __pfx_swapin_readahead+0x10/0x10
[  617.318233][T12107]  ? find_held_lock+0x2b/0x80
[  617.318255][T12107]  ? swap_cache_get_folio+0x267/0x8e0
[  617.318276][T12107]  ? swap_cache_get_folio+0x267/0x8e0
[  617.318296][T12107]  ? swap_cache_get_folio+0x267/0x8e0
[  617.318326][T12107]  ? swap_cache_get_folio+0x267/0x8e0
[  617.318347][T12107]  ? swap_cache_get_folio+0x293/0x8e0
[  617.318369][T12107]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  617.318390][T12107]  ? __pfx_get_swap_device+0x10/0x10
[  617.318416][T12107]  ? rcu_read_unlock+0x2d/0xb0
[  617.318441][T12107]  ? do_swap_page+0x962/0x64a0
[  617.318458][T12107]  do_swap_page+0x962/0x64a0
[  617.318480][T12107]  ? __lock_acquire+0x436/0x2890
[  617.318500][T12107]  ? __page_table_check_ptes_set+0x1b1/0x4e0
[  617.318527][T12107]  ? __pfx_do_swap_page+0x10/0x10
[  617.318548][T12107]  ? __pfx_default_wake_function+0x10/0x10
[  617.318577][T12107]  ? do_anonymous_page+0xb04/0x2190
[  617.318597][T12107]  ? rcu_is_watching+0x12/0xc0
[  617.318623][T12107]  ? ___pte_offset_map+0x175/0x380
[  617.318651][T12107]  __handle_mm_fault+0x19cb/0x2bb0
[  617.318675][T12107]  ? reacquire_held_locks+0xcd/0x1f0
[  617.318693][T12107]  ? __pfx___handle_mm_fault+0x10/0x10
[  617.318715][T12107]  ? lock_vma_under_rcu+0x176/0x580
[  617.318740][T12107]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  617.318772][T12107]  handle_mm_fault+0x3fe/0xad0
[  617.318795][T12107]  do_user_addr_fault+0x60c/0x1370
[  617.318820][T12107]  ? rcu_is_watching+0x12/0xc0
[  617.318848][T12107]  exc_page_fault+0x64/0xc0
[  617.318875][T12107]  asm_exc_page_fault+0x26/0x30
[  617.318894][T12107] RIP: 0033:0x7f72e844d756
[  617.318910][T12107] Code: 29 45 38 1c 10 75 23 83 c0 01 44 39 d0 75 dc 48 89 f0 25 ff 1f 00 00 49 89 34 c1 41 88 3c 00 31 c0 c3 66 90 41 38 3c 10 74 0b <41> 88 3c 10 31 c0 49 89 34 d1 c3 b8 01 00 00 00 c3 66 0f 1f 84 00
[  617.318928][T12107] RSP: 002b:00007ffea2bcdd38 EFLAGS: 00010246
[  617.318944][T12107] RAX: 00000000845b537f RBX: 00007f72e9315720 RCX: 0000000000000000
[  617.318956][T12107] RDX: 000000000000137f RSI: ffffffff845b537f RDI: 0000000000000000
[  617.318968][T12107] RBP: ffffffff845b537f R08: 00007f72e87d0000 R09: 00007f72e87d2000
[  617.318980][T12107] R10: 00000000845b5383 R11: 0000000000000000 R12: 0000000000000000
[  617.318991][T12107] R13: 0000000000000011 R14: ffffffff845b570b R15: 0000000000000011
[  617.319003][T12107]  ? security_mmap_file+0x87b/0x990
[  617.319027][T12107]  ? security_mmap_file+0x4ef/0x990
[  617.319053][T12107]  ? security_mmap_file+0x4ef/0x990
[  617.319080][T12107]  </TASK>
[  617.319087][T12107] memory: usage 3072kB, limit 3072kB, failcnt 173483
[  617.987560][T12107] memory+swap: usage 2852kB, limit 9007199254740988kB, failcnt 0
[  618.016805][T12107] kmem: usage 1900kB, limit 9007199254740988kB, failcnt 0
[  618.172345][T12107] Memory cgroup stats for /syz1:
[  618.172481][T12107] cache 126976
[  618.200001][T12111] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  618.212618][T12107] rss 4096
[  618.215671][T12107] rss_huge 0
[  618.223158][T12111] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  618.262671][T12111] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  618.273247][T12107] shmem 4096
[  618.276587][T12107] mapped_file 4096
[  618.280425][T12107] dirty 0
[  618.284588][T12111] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  618.349266][T12111] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  618.377351][T12107] writeback 0
[  618.390037][T12107] workingset_refault_anon 12675
[  618.395269][T12111] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  618.425191][T12107] workingset_refault_file 63076
[  618.430264][T12107] swap 294912
[  618.441579][T12111] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  618.463183][T12111] CPU0 is offline.
[  618.496484][T12107] swapcached 147456
[  618.535208][T12107] pgpgin 322780
[  618.555405][T12107] pgpgout 322712
[  618.558982][T12107] pgfault 283535
[  618.635685][T12107] pgmajfault 8632
[  618.639519][T12107] inactive_anon 147456
[  618.708098][T12107] active_anon 8192
[  618.755321][T12107] inactive_file 0
[  618.800555][T12107] active_file 122880
[  618.841667][T12107] unevictable 0
[  618.888392][T12107] hierarchical_memory_limit 3145728
[  618.941495][T12107] hierarchical_memsw_limit 9223372036854771712
[  619.005594][T12107] total_cache 126976
[  619.055794][T12107] total_rss 4096
[  619.100069][T12107] total_rss_huge 0
[  619.127605][T12107] total_shmem 4096
[  619.169802][T12107] total_mapped_file 4096
[  619.215012][T12107] total_dirty 0
[  619.218504][T12107] total_writeback 0
[  619.222306][T12107] total_workingset_refault_anon 12675
[  619.328938][T12107] total_workingset_refault_file 63076
[  619.376886][T12107] total_swap 294912
[  619.405483][T12107] total_swapcached 147456
[  619.409996][T12107] total_pgpgin 322780
[  619.449973][T12107] total_pgpgout 322712
[  619.484756][T12107] total_pgfault 283535
[  619.510361][T12107] total_pgmajfault 8632
[  619.525747][T12107] total_inactive_anon 147456
[  619.537849][T12107] total_active_anon 8192
[  619.606154][T12107] total_inactive_file 0
[  619.636296][T12107] total_active_file 122880
[  619.672336][T12107] total_unevictable 0
[  619.711521][T12107] anon_cost 0
[  619.744783][T12107] file_cost 0
[  619.769593][T12107] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1432,pid=12103,uid=0
[  619.846824][T12107] Memory cgroup out of memory: OOM victim 12103 (syz.1.1432) is already exiting. Skip killing the task
[  619.871020][T12123] syz.3.1436 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  619.889445][T12123] CPU: 1 UID: 0 PID: 12123 Comm: syz.3.1436 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  619.889479][T12123] Tainted: [L]=SOFTLOCKUP
[  619.889486][T12123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  619.889498][T12123] Call Trace:
[  619.889505][T12123]  <TASK>
[  619.889513][T12123]  dump_stack_lvl+0x16c/0x1f0
[  619.889553][T12123]  dump_header+0x101/0x960
[  619.889578][T12123]  oom_kill_process+0x176/0x910
[  619.889601][T12123]  out_of_memory+0x350/0x1700
[  619.889623][T12123]  ? __lock_acquire+0x436/0x2890
[  619.889645][T12123]  ? __pfx_out_of_memory+0x10/0x10
[  619.889672][T12123]  mem_cgroup_out_of_memory+0x118/0x130
[  619.889696][T12123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  619.889724][T12123]  ? do_raw_spin_unlock+0x172/0x230
[  619.889751][T12123]  try_charge_memcg+0x695/0xd30
[  619.889785][T12123]  ? __pfx_try_charge_memcg+0x10/0x10
[  619.889822][T12123]  ? __print_lock_name+0x61/0xe0
[  619.889848][T12123]  ? rcu_read_unlock+0x17/0x60
[  619.889872][T12123]  charge_memcg+0x8a/0x230
[  619.889902][T12123]  __mem_cgroup_charge+0x2b/0x1e0
[  619.889922][T12123]  do_anonymous_page+0xca9/0x2190
[  619.889951][T12123]  __handle_mm_fault+0x1ecf/0x2bb0
[  619.889977][T12123]  ? __pfx___handle_mm_fault+0x10/0x10
[  619.889999][T12123]  ? __pte_offset_map_lock+0x174/0x310
[  619.890028][T12123]  ? find_held_lock+0x2b/0x80
[  619.890060][T12123]  ? follow_page_pte+0x5cf/0x1390
[  619.890121][T12123]  handle_mm_fault+0x3fe/0xad0
[  619.890146][T12123]  __get_user_pages+0x54e/0x3590
[  619.890183][T12123]  ? __pfx___get_user_pages+0x10/0x10
[  619.890219][T12123]  populate_vma_page_range+0x267/0x3f0
[  619.890252][T12123]  ? __pfx_populate_vma_page_range+0x10/0x10
[  619.890282][T12123]  ? __pfx_find_vma_intersection+0x10/0x10
[  619.890316][T12123]  ? do_mmap+0x69c/0x1210
[  619.890346][T12123]  __mm_populate+0x1d8/0x380
[  619.890378][T12123]  ? __pfx___mm_populate+0x10/0x10
[  619.890410][T12123]  ? up_write+0x282/0x4e0
[  619.890433][T12123]  vm_mmap_pgoff+0x37f/0x470
[  619.890463][T12123]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  619.890490][T12123]  ? fd_install+0x223/0x570
[  619.890521][T12123]  ? __x64_sys_futex+0x1e0/0x4c0
[  619.890543][T12123]  ? __x64_sys_futex+0x1e9/0x4c0
[  619.890568][T12123]  ksys_mmap_pgoff+0x7d/0x5c0
[  619.890597][T12123]  ? xfd_validate_state+0x61/0x180
[  619.890619][T12123]  __x64_sys_mmap+0x125/0x190
[  619.890642][T12123]  do_syscall_64+0xcd/0xf80
[  619.890681][T12123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.890701][T12123] RIP: 0033:0x7f134138f7c9
[  619.890718][T12123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  619.890738][T12123] RSP: 002b:00007f13421ba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  619.890757][T12123] RAX: ffffffffffffffda RBX: 00007f13415e5fa0 RCX: 00007f134138f7c9
[  619.890770][T12123] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  619.890782][T12123] RBP: 00007f1341413f91 R08: 0000000000000002 R09: 0000000000008000
[  619.890794][T12123] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  619.890805][T12123] R13: 00007f13415e6038 R14: 00007f13415e5fa0 R15: 00007ffd5ab81358
[  619.890830][T12123]  </TASK>
[  619.890838][T12123] memory: usage 3072kB, limit 3072kB, failcnt 222304
[  620.238025][   T52] Bluetooth: hci2: command 0x0406 tx timeout
[  620.368610][ T5846] Bluetooth: hci1: command 0x0406 tx timeout
[  620.375965][   T52] Bluetooth: hci0: command 0x0406 tx timeout
[  620.403452][ T5839] Bluetooth: hci3: command 0x0406 tx timeout
[  620.477445][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout
[  620.483616][ T5846] Bluetooth: hci5: command 0x0c1a tx timeout
[  620.655499][T12123] memory+swap: usage 5476kB, limit 9007199254740988kB, failcnt 0
[  620.674356][T12123] kmem: usage 1132kB, limit 9007199254740988kB, failcnt 0
[  620.689463][T12123] Memory cgroup stats for /syz3:
[  620.690414][T12123] cache 0
[  620.708543][T12123] rss 1855488
[  620.711860][T12123] rss_huge 0
[  620.722391][T12123] shmem 0
[  620.728917][T12123] mapped_file 0
[  620.732406][T12123] dirty 0
[  620.742877][T12123] writeback 0
[  620.750891][T12123] workingset_refault_anon 14618
[  620.761426][T12123] workingset_refault_file 121720
[  620.774951][T12123] swap 2461696
[  620.778433][T12123] swapcached 131072
[  620.791023][T12123] pgpgin 395431
[  620.798932][T12123] pgpgout 396990
[  620.810112][T12123] pgfault 257472
[  620.818082][T12123] pgmajfault 10081
[  620.826996][T12123] inactive_anon 1839104
[  620.831179][T12123] active_anon 147456
[  620.849494][T12123] inactive_file 0
[  620.853155][T12123] active_file 0
[  620.866194][T12123] unevictable 0
[  620.874842][T12123] hierarchical_memory_limit 3145728
[  620.885969][T12123] hierarchical_memsw_limit 9223372036854771712
[  620.899471][T12123] total_cache 0
[  620.907020][T12123] total_rss 1855488
[  620.918795][T12123] total_rss_huge 0
[  620.934854][T12123] total_shmem 0
[  620.942615][T12123] total_mapped_file 0
[  620.951123][T12123] total_dirty 0
[  620.958701][T12123] total_writeback 0
[  620.967703][T12123] total_workingset_refault_anon 14618
[  620.980022][T12123] total_workingset_refault_file 121720
[  620.991761][T12123] total_swap 2461696
[  621.000960][T12123] total_swapcached 131072
[  621.011666][T12123] total_pgpgin 395431
[  621.020088][T12123] total_pgpgout 396990
[  621.033809][T12123] total_pgfault 257472
[  621.042356][T12123] total_pgmajfault 10081
[  621.051743][T12123] total_inactive_anon 1839104
[  621.061719][T12123] total_active_anon 147456
[  621.072253][T12123] total_inactive_file 0
[  621.082664][T12123] total_active_file 0
[  621.091767][T12123] total_unevictable 0
[  621.100877][T12123] anon_cost 0
[  621.108730][T12123] file_cost 0
[  621.115984][T12123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1436,pid=12122,uid=0
[  621.150847][T12123] Memory cgroup out of memory: Killed process 12122 (syz.3.1436) total-vm:106132kB, anon-rss:2932kB, file-rss:21820kB, shmem-rss:0kB, UID:0 pgtables:148kB oom_score_adj:1000
[  621.215837][T12124] syz.1.1437 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  621.230705][T12124] CPU: 1 UID: 0 PID: 12124 Comm: syz.1.1437 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  621.230736][T12124] Tainted: [L]=SOFTLOCKUP
[  621.230743][T12124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  621.230754][T12124] Call Trace:
[  621.230767][T12124]  <TASK>
[  621.230774][T12124]  dump_stack_lvl+0x16c/0x1f0
[  621.230805][T12124]  dump_header+0x101/0x960
[  621.230828][T12124]  oom_kill_process+0x176/0x910
[  621.230850][T12124]  out_of_memory+0x350/0x1700
[  621.230871][T12124]  ? __lock_acquire+0x436/0x2890
[  621.230892][T12124]  ? __pfx_out_of_memory+0x10/0x10
[  621.230918][T12124]  mem_cgroup_out_of_memory+0x118/0x130
[  621.230941][T12124]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  621.230967][T12124]  ? do_raw_spin_unlock+0x172/0x230
[  621.230993][T12124]  try_charge_memcg+0x695/0xd30
[  621.231026][T12124]  ? __pfx_try_charge_memcg+0x10/0x10
[  621.231059][T12124]  ? find_held_lock+0x2b/0x80
[  621.231087][T12124]  charge_memcg+0x8a/0x230
[  621.231116][T12124]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  621.231138][T12124]  __read_swap_cache_async+0x397/0x500
[  621.231164][T12124]  ? __pfx___read_swap_cache_async+0x10/0x10
[  621.231188][T12124]  ? __lock_acquire+0x436/0x2890
[  621.231211][T12124]  swap_cluster_readahead+0x432/0x770
[  621.231240][T12124]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  621.231265][T12124]  ? __lock_acquire+0x436/0x2890
[  621.231283][T12124]  ? _raw_spin_unlock+0x28/0x50
[  621.231314][T12124]  ? get_vma_policy+0x242/0x3c0
[  621.231333][T12124]  swapin_readahead+0x160/0x1220
[  621.231369][T12124]  ? __pfx_swapin_readahead+0x10/0x10
[  621.231393][T12124]  ? find_held_lock+0x2b/0x80
[  621.231416][T12124]  ? swap_cache_get_folio+0x267/0x8e0
[  621.231437][T12124]  ? swap_cache_get_folio+0x267/0x8e0
[  621.231456][T12124]  ? swap_cache_get_folio+0x267/0x8e0
[  621.231479][T12124]  ? swap_cache_get_folio+0x267/0x8e0
[  621.231500][T12124]  ? swap_cache_get_folio+0x293/0x8e0
[  621.231523][T12124]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  621.231543][T12124]  ? __pfx_get_swap_device+0x10/0x10
[  621.231570][T12124]  ? rcu_read_unlock+0x2d/0xb0
[  621.231594][T12124]  ? do_swap_page+0x962/0x64a0
[  621.231612][T12124]  do_swap_page+0x962/0x64a0
[  621.231633][T12124]  ? __lock_acquire+0x436/0x2890
[  621.231656][T12124]  ? __pfx_do_swap_page+0x10/0x10
[  621.231677][T12124]  ? __pfx_default_wake_function+0x10/0x10
[  621.231705][T12124]  ? futex_hash+0x2c5/0x380
[  621.231726][T12124]  ? rcu_is_watching+0x12/0xc0
[  621.231752][T12124]  ? ___pte_offset_map+0x175/0x380
[  621.231780][T12124]  __handle_mm_fault+0x19cb/0x2bb0
[  621.231803][T12124]  ? reacquire_held_locks+0xcd/0x1f0
[  621.231822][T12124]  ? __pfx___handle_mm_fault+0x10/0x10
[  621.231844][T12124]  ? lock_vma_under_rcu+0x176/0x580
[  621.231870][T12124]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  621.231902][T12124]  handle_mm_fault+0x3fe/0xad0
[  621.231925][T12124]  do_user_addr_fault+0x60c/0x1370
[  621.231950][T12124]  ? rcu_is_watching+0x12/0xc0
[  621.231978][T12124]  exc_page_fault+0x64/0xc0
[  621.232006][T12124]  asm_exc_page_fault+0x26/0x30
[  621.232024][T12124] RIP: 0033:0x7ffb2a5468ce
[  621.232041][T12124] Code: 31 ff 4d 01 f2 41 0f 92 c7 72 a6 48 8b 44 24 08 48 8d 84 06 00 08 00 00 4c 01 f0 48 21 d8 49 39 c2 72 8e 31 c0 be 01 00 00 00 <f0> 0f b1 35 aa 6d dd 00 0f 85 26 0a 00 00 c1 e1 02 48 8b 05 ba 6d
[  621.232059][T12124] RSP: 002b:00007ffdd9bb69d0 EFLAGS: 00010246
[  621.232074][T12124] RAX: 0000000000000000 RBX: fffffffffffff000 RCX: 0000000000000006
[  621.232086][T12124] RDX: 000000000000003f RSI: 0000000000000001 RDI: 00007ffdd9bb6b18
[  621.232097][T12124] RBP: 0000000000000000 R08: 000000000000000e R09: 00007ffb2a7e5fb0
[  621.232108][T12124] R10: 0000000000021000 R11: 0000000000020000 R12: 00007ffdd9bb6b20
[  621.232119][T12124] R13: ffffffffffffffc0 R14: 0000000000001000 R15: 0000000000000000
[  621.232143][T12124]  </TASK>
[  621.232150][T12124] memory: usage 3072kB, limit 3072kB, failcnt 264754
[  621.649281][T12124] memory+swap: usage 90364kB, limit 9007199254740988kB, failcnt 0
[  621.658165][T12124] kmem: usage 880kB, limit 9007199254740988kB, failcnt 0
[  621.665510][T12124] Memory cgroup stats for /syz2:
[  621.665635][T12124] cache 2117632
[  621.674350][T12124] rss 45056
[  621.677557][T12124] rss_huge 0
[  621.680764][T12124] shmem 2117632
[  621.685797][T12124] mapped_file 0
[  621.689378][T12124] dirty 0
[  621.693204][T12124] writeback 0
[  621.696956][T12124] workingset_refault_anon 14944
[  621.701934][T12124] workingset_refault_file 142409
[  621.707449][T12124] swap 89387008
[  621.710923][T12124] swapcached 81920
[  621.715642][T12124] pgpgin 569184
[  621.719189][T12124] pgpgout 579367
[  621.722758][T12124] pgfault 271338
[  621.726772][T12124] pgmajfault 9775
[  621.730476][T12124] inactive_anon 1560576
[  621.735015][T12124] active_anon 684032
[  621.739054][T12124] inactive_file 0
[  621.742847][T12124] active_file 0
[  621.747440][T12124] unevictable 0
[  621.751139][T12124] hierarchical_memory_limit 3145728
[  621.759502][T12124] hierarchical_memsw_limit 9223372036854771712
[  621.765884][T12124] total_cache 2117632
[  621.769923][T12124] total_rss 45056
[  621.773725][T12124] total_rss_huge 0
[  621.777856][T12124] total_shmem 2117632
[  621.781897][T12124] total_mapped_file 0
[  621.787314][T12124] total_dirty 0
[  621.790842][T12124] total_writeback 0
[  621.795855][T12124] total_workingset_refault_anon 14944
[  621.801281][T12124] total_workingset_refault_file 142409
[  621.807208][T12124] total_swap 89387008
[  621.811198][T12124] total_swapcached 81920
[  621.815896][T12124] total_pgpgin 569184
[  621.820349][T12124] total_pgpgout 579367
[  621.824703][T12124] total_pgfault 271338
[  621.828906][T12124] total_pgmajfault 9775
[  621.833110][T12124] total_inactive_anon 1560576
[  621.838144][T12124] total_active_anon 684032
[  621.842710][T12124] total_inactive_file 0
[  621.847275][T12124] total_active_file 0
[  621.851264][T12124] total_unevictable 0
[  621.856795][T12124] anon_cost 0
[  621.860154][T12124] file_cost 0
[  621.863436][T12124] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1298,pid=11537,uid=0
[  621.883234][T12124] Memory cgroup out of memory: Killed process 11537 (syz.2.1298) total-vm:139432kB, anon-rss:1268kB, file-rss:29468kB, shmem-rss:0kB, UID:0 pgtables:292kB oom_score_adj:1000
[  621.934396][T12125] syz.1.1437 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  621.971548][T12125] CPU: 1 UID: 0 PID: 12125 Comm: syz.1.1437 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  621.971581][T12125] Tainted: [L]=SOFTLOCKUP
[  621.971588][T12125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  621.971599][T12125] Call Trace:
[  621.971606][T12125]  <TASK>
[  621.971614][T12125]  dump_stack_lvl+0x16c/0x1f0
[  621.971647][T12125]  dump_header+0x101/0x960
[  621.971671][T12125]  oom_kill_process+0x176/0x910
[  621.971694][T12125]  out_of_memory+0x350/0x1700
[  621.971715][T12125]  ? __lock_acquire+0x436/0x2890
[  621.971752][T12125]  ? __pfx_out_of_memory+0x10/0x10
[  621.971779][T12125]  mem_cgroup_out_of_memory+0x118/0x130
[  621.971803][T12125]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  621.971831][T12125]  ? do_raw_spin_unlock+0x172/0x230
[  621.971857][T12125]  try_charge_memcg+0x695/0xd30
[  621.971892][T12125]  ? __pfx_try_charge_memcg+0x10/0x10
[  621.971922][T12125]  ? __print_lock_name+0x60/0xe0
[  621.971948][T12125]  ? rcu_read_unlock+0x17/0x60
[  621.971971][T12125]  charge_memcg+0x8a/0x230
[  621.972001][T12125]  __mem_cgroup_charge+0x2b/0x1e0
[  621.972021][T12125]  do_anonymous_page+0xca9/0x2190
[  621.972050][T12125]  __handle_mm_fault+0x1ecf/0x2bb0
[  621.972076][T12125]  ? __pfx___handle_mm_fault+0x10/0x10
[  621.972098][T12125]  ? __pte_offset_map_lock+0x174/0x310
[  621.972126][T12125]  ? find_held_lock+0x2b/0x80
[  621.972157][T12125]  ? follow_page_pte+0x5cf/0x1390
[  621.972190][T12125]  handle_mm_fault+0x3fe/0xad0
[  621.972214][T12125]  __get_user_pages+0x54e/0x3590
[  621.972252][T12125]  ? __pfx___get_user_pages+0x10/0x10
[  621.972287][T12125]  populate_vma_page_range+0x267/0x3f0
[  621.972319][T12125]  ? __pfx_populate_vma_page_range+0x10/0x10
[  621.972350][T12125]  ? __pfx_find_vma_intersection+0x10/0x10
[  621.972386][T12125]  ? do_mmap+0x69c/0x1210
[  621.972416][T12125]  __mm_populate+0x1d8/0x380
[  621.972447][T12125]  ? __pfx___mm_populate+0x10/0x10
[  621.972479][T12125]  ? up_write+0x282/0x4e0
[  621.972502][T12125]  vm_mmap_pgoff+0x37f/0x470
[  621.972532][T12125]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  621.972563][T12125]  ? __x64_sys_futex+0x1e0/0x4c0
[  621.972585][T12125]  ? __x64_sys_futex+0x1e9/0x4c0
[  621.972610][T12125]  ksys_mmap_pgoff+0x7d/0x5c0
[  621.972636][T12125]  ? xfd_validate_state+0x61/0x180
[  621.972654][T12125]  ? __pfx_ksys_read+0x10/0x10
[  621.972683][T12125]  __x64_sys_mmap+0x125/0x190
[  621.972706][T12125]  do_syscall_64+0xcd/0xf80
[  621.972737][T12125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  621.972756][T12125] RIP: 0033:0x7ffb2a58f7c9
[  621.972773][T12125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  621.972792][T12125] RSP: 002b:00007ffb2b44f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  621.972812][T12125] RAX: ffffffffffffffda RBX: 00007ffb2a7e5fa0 RCX: 00007ffb2a58f7c9
[  621.972825][T12125] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  621.972836][T12125] RBP: 00007ffb2a613f91 R08: 0000000000000002 R09: 0000000000008000
[  621.972848][T12125] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  621.972860][T12125] R13: 00007ffb2a7e6038 R14: 00007ffb2a7e5fa0 R15: 00007ffdd9bb6a28
[  621.972884][T12125]  </TASK>
[  621.972891][T12125] memory: usage 2844kB, limit 3072kB, failcnt 173642
[  622.491083][ T5839] Bluetooth: hci0: command 0x0406 tx timeout
[  622.620650][T12125] memory+swap: usage 3696kB, limit 9007199254740988kB, failcnt 0
[  622.640746][T12125] kmem: usage 1240kB, limit 9007199254740988kB, failcnt 0
[  622.657167][T12125] Memory cgroup stats for /syz1:
[  622.657297][T12125] cache 4096
[  622.676138][T12125] rss 1462272
[  622.683923][T12125] rss_huge 0
[  622.690601][T12125] shmem 4096
[  622.699174][T12125] mapped_file 4096
[  622.726028][T12125] dirty 0
[  622.730625][T12125] writeback 0
[  622.755470][T12125] workingset_refault_anon 12691
[  622.760601][T12125] workingset_refault_file 63076
[  622.776407][T12125] swap 872448
[  622.779960][T12125] swapcached 139264
[  622.785039][T12125] pgpgin 323335
[  622.795555][T12125] pgpgout 322942
[  622.799427][T12125] pgfault 284771
[  622.818408][T12125] pgmajfault 8647
[  622.823048][T12125] inactive_anon 1253376
[  622.837149][T12125] active_anon 352256
[  622.854735][T12125] inactive_file 0
[  622.864752][T12125] active_file 0
[  622.868736][T12125] unevictable 0
[  622.875226][T12125] hierarchical_memory_limit 3145728
[  622.886473][T12125] hierarchical_memsw_limit 9223372036854771712
[  622.905034][T12125] total_cache 4096
[  622.908949][T12125] total_rss 1462272
[  622.920175][T12125] total_rss_huge 0
[  622.943846][T12125] total_shmem 4096
[  622.954873][T12125] total_mapped_file 4096
[  622.959388][T12125] total_dirty 0
[  622.975990][T12125] total_writeback 0
[  622.979886][T12125] total_workingset_refault_anon 12691
[  622.995437][T12125] total_workingset_refault_file 63076
[  623.001076][T12125] total_swap 872448
[  623.017841][T12125] total_swapcached 139264
[  623.037654][T12125] total_pgpgin 323335
[  623.041708][T12125] total_pgpgout 322942
[  623.047410][T12125] total_pgfault 284771
[  623.064882][T12125] total_pgmajfault 8647
[  623.069134][T12125] total_inactive_anon 1253376
[  623.075617][T12125] total_active_anon 352256
[  623.094655][T12125] total_inactive_file 0
[  623.106460][T12125] total_active_file 0
[  623.112041][T12125] total_unevictable 0
[  623.120929][T12125] anon_cost 0
[  623.125349][T12125] file_cost 0
[  623.128688][T12125] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1437,pid=12124,uid=0
[  623.148156][T12125] Memory cgroup out of memory: Killed process 12125 (syz.1.1437) total-vm:106132kB, anon-rss:2676kB, file-rss:21800kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:1000
[  623.195014][T11685] syz.5.1330 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  623.254036][   T32] oom_reaper: reaped process 12122 (syz.3.1436), now anon-rss:0kB, file-rss:20636kB, shmem-rss:0kB
[  623.297119][T11685] CPU: 1 UID: 0 PID: 11685 Comm: syz.5.1330 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  623.297152][T11685] Tainted: [L]=SOFTLOCKUP
[  623.297159][T11685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  623.297170][T11685] Call Trace:
[  623.297177][T11685]  <TASK>
[  623.297185][T11685]  dump_stack_lvl+0x16c/0x1f0
[  623.297218][T11685]  dump_header+0x101/0x960
[  623.297241][T11685]  oom_kill_process+0x176/0x910
[  623.297264][T11685]  out_of_memory+0x350/0x1700
[  623.297285][T11685]  ? __lock_acquire+0x436/0x2890
[  623.297306][T11685]  ? __pfx_out_of_memory+0x10/0x10
[  623.297333][T11685]  mem_cgroup_out_of_memory+0x118/0x130
[  623.297355][T11685]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  623.297382][T11685]  ? do_raw_spin_unlock+0x172/0x230
[  623.297408][T11685]  try_charge_memcg+0x695/0xd30
[  623.297441][T11685]  ? __pfx_try_charge_memcg+0x10/0x10
[  623.297470][T11685]  ? __print_lock_name+0x61/0xe0
[  623.297495][T11685]  ? rcu_read_unlock+0x17/0x60
[  623.297517][T11685]  charge_memcg+0x8a/0x230
[  623.297546][T11685]  __mem_cgroup_charge+0x2b/0x1e0
[  623.297566][T11685]  shmem_alloc_and_add_folio+0x50c/0xc20
[  623.297593][T11685]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  623.297616][T11685]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  623.297642][T11685]  shmem_get_folio_gfp+0x67f/0x1610
[  623.297667][T11685]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  623.297694][T11685]  shmem_write_begin+0x1a4/0x3b0
[  623.297717][T11685]  ? __pfx_shmem_write_begin+0x10/0x10
[  623.297739][T11685]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  623.297767][T11685]  ? lockdep_hardirqs_on+0x7c/0x110
[  623.297796][T11685]  generic_perform_write+0x3c4/0x900
[  623.297834][T11685]  ? __pfx_generic_perform_write+0x10/0x10
[  623.297867][T11685]  ? file_update_time_flags+0x35c/0x520
[  623.297890][T11685]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  623.297914][T11685]  shmem_file_write_iter+0x10e/0x140
[  623.297940][T11685]  __kernel_write_iter+0x31a/0xb10
[  623.297969][T11685]  ? __pfx___kernel_write_iter+0x10/0x10
[  623.297995][T11685]  ? __up_read+0x2d1/0x700
[  623.298018][T11685]  ? dump_user_range+0x756/0xb70
[  623.298058][T11685]  dump_user_range+0x413/0xb70
[  623.298090][T11685]  ? __pfx_dump_user_range+0x10/0x10
[  623.298119][T11685]  ? elf_coredump_extra_notes_write+0xbd/0x4f0
[  623.298144][T11685]  ? __pfx_writenote+0x10/0x10
[  623.298179][T11685]  elf_core_dump+0x29c3/0x3c10
[  623.298220][T11685]  ? __pfx_elf_core_dump+0x10/0x10
[  623.298248][T11685]  ? kasan_save_stack+0x33/0x60
[  623.298271][T11685]  ? kasan_save_track+0x14/0x30
[  623.298295][T11685]  ? __kasan_kmalloc+0xaa/0xb0
[  623.298317][T11685]  ? __kvmalloc_node_noprof+0x3ac/0xa40
[  623.298341][T11685]  ? vfs_coredump+0x1dd9/0x55e0
[  623.298367][T11685]  ? arch_do_signal_or_restart+0x8f/0x7a0
[  623.298392][T11685]  ? irqentry_exit+0x38a/0x8c0
[  623.298418][T11685]  ? asm_exc_page_fault+0x26/0x30
[  623.298441][T11685]  ? 0xffffffffff600000
[  623.298490][T11685]  ? vfs_coredump+0x2b85/0x55e0
[  623.298516][T11685]  vfs_coredump+0x2b85/0x55e0
[  623.298551][T11685]  ? __pfx_vfs_coredump+0x10/0x10
[  623.298578][T11685]  ? __lock_acquire+0x436/0x2890
[  623.298599][T11685]  ? __lock_acquire+0x436/0x2890
[  623.298619][T11685]  ? lock_acquire+0x179/0x330
[  623.298641][T11685]  ? lock_acquire+0x179/0x330
[  623.298672][T11685]  ? arch_stack_walk+0xa6/0x100
[  623.298702][T11685]  ? stack_trace_save+0x8e/0xc0
[  623.298731][T11685]  ? __pfx_stack_trace_save+0x10/0x10
[  623.298760][T11685]  ? stack_depot_save_flags+0x29/0x9b0
[  623.298781][T11685]  ? __lock_acquire+0x436/0x2890
[  623.298801][T11685]  ? kasan_save_stack+0x42/0x60
[  623.298859][T11685]  ? proc_coredump_connector+0x2d1/0x4f0
[  623.298889][T11685]  ? __pfx_proc_coredump_connector+0x10/0x10
[  623.298922][T11685]  ? rcu_is_watching+0x12/0xc0
[  623.298951][T11685]  get_signal+0x22e1/0x26d0
[  623.298985][T11685]  ? __pfx_get_signal+0x10/0x10
[  623.299017][T11685]  arch_do_signal_or_restart+0x8f/0x7a0
[  623.299044][T11685]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  623.299122][T11685]  ? do_user_addr_fault+0x926/0x1370
[  623.299149][T11685]  irqentry_exit+0x38a/0x8c0
[  623.299179][T11685]  asm_exc_page_fault+0x26/0x30
[  623.299197][T11685] RIP: 0033:0x7f72e858f7d1
[  623.299212][T11685] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  623.299231][T11685] RSP: 002b:0000000000000007 EFLAGS: 00010217
[  623.299246][T11685] RAX: 0000000000000000 RBX: 00007f72e87e5fa0 RCX: 00007f72e858f7c9
[  623.299258][T11685] RDX: 0000200000004340 RSI: 0000000000000007 RDI: 0000000000000001
[  623.299268][T11685] RBP: 00007f72e8613f91 R08: 0000000000000040 R09: 0000000000000000
[  623.299279][T11685] R10: 0000200000004380 R11: 0000000000000246 R12: 0000000000000000
[  623.299290][T11685] R13: 00007f72e87e6038 R14: 00007f72e87e5fa0 R15: 00007ffea2bcdd08
[  623.299314][T11685]  </TASK>
[  623.299321][T11685] memory: usage 2976kB, limit 3072kB, failcnt 50138
[  624.144042][T12151] serio: Serial port pty6
[  624.572405][T11685] memory+swap: usage 37768kB, limit 9007199254740988kB, failcnt 0
[  624.638932][T11685] kmem: usage 1048kB, limit 9007199254740988kB, failcnt 0
[  624.665395][T11685] Memory cgroup stats for /syz5:
[  624.726145][T11685] cache 1622016
[  624.753471][T11685] rss 57344
[  624.768137][T11685] rss_huge 0
[  624.789019][T11685] shmem 1617920
[  624.808175][T11685] mapped_file 0
[  624.839162][T11685] dirty 0
[  624.860810][T11685] writeback 0
[  624.864398][T11685] workingset_refault_anon 2697
[  624.946023][T11685] workingset_refault_file 31788
[  624.976062][T11685] swap 35647488
[  624.996606][T11685] swapcached 36864
[  625.087304][T11685] pgpgin 88367
[  625.090810][T11685] pgpgout 100723
[  625.094438][T11685] pgfault 41785
[  625.137713][T11685] pgmajfault 2101
[  625.161847][T11685] inactive_anon 1343488
[  625.199121][T11685] active_anon 368640
[  625.203160][T11685] inactive_file 0
[  625.268933][T11685] active_file 4096
[  625.287854][T11685] unevictable 0
[  625.329409][T11685] hierarchical_memory_limit 3145728
[  625.334726][T11685] hierarchical_memsw_limit 9223372036854771712
[  625.408145][T11685] total_cache 1622016
[  625.412166][T11685] total_rss 57344
[  625.467028][T11685] total_rss_huge 0
[  625.491162][T11685] total_shmem 1617920
[  625.515737][T11685] total_mapped_file 0
[  625.604492][T11685] total_dirty 0
[  625.622452][T11685] total_writeback 0
[  625.638051][T11685] total_workingset_refault_anon 2697
[  625.672627][T11685] total_workingset_refault_file 31788
[  625.721719][T11685] total_swap 35647488
[  625.762919][T11685] total_swapcached 36864
[  625.805062][T11685] total_pgpgin 88367
[  625.847025][T11685] total_pgpgout 100723
[  625.851255][T11685] total_pgfault 41785
[  625.855406][T11685] total_pgmajfault 2101
[  625.977910][T11685] total_inactive_anon 1343488
[  625.982678][T11685] total_active_anon 368640
[  626.027492][T11685] total_inactive_file 0
[  626.031958][T11685] total_active_file 4096
[  626.066945][T12196] syz.5.1451 (12196): attempted to duplicate a private mapping with mremap.  This is not supported.
[  626.097292][T11685] total_unevictable 0
[  626.109970][T11685] anon_cost 0
[  626.140715][T11685] file_cost 0
[  626.160667][T11685] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.1330,pid=11685,uid=0
[  626.237558][T11685] Memory cgroup out of memory: Killed process 11685 (syz.5.1330) total-vm:101960kB, anon-rss:1164kB, file-rss:22980kB, shmem-rss:0kB, UID:0 pgtables:192kB oom_score_adj:1000
[  626.729717][T12193] serio: Serial port pty6
[  626.855837][T12204] hub 8-0:1.0: USB hub found
[  626.899633][T12204] hub 8-0:1.0: 1 port detected
[  627.210151][T12217] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  629.566702][T12264] zswap: compressor  not available
[  629.977970][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  629.988274][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  629.998927][T12256] FAULT_INJECTION: forcing a failure.
[  629.998927][T12256] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  630.110754][T12256] CPU: 1 UID: 0 PID: 12256 Comm: syz.5.1464 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  630.110787][T12256] Tainted: [L]=SOFTLOCKUP
[  630.110794][T12256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  630.110805][T12256] Call Trace:
[  630.110812][T12256]  <TASK>
[  630.110820][T12256]  dump_stack_lvl+0x16c/0x1f0
[  630.110853][T12256]  should_fail_ex+0x512/0x640
[  630.110878][T12256]  should_fail_alloc_page+0xe7/0x130
[  630.110910][T12256]  prepare_alloc_pages+0x401/0x670
[  630.110943][T12256]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  630.110968][T12256]  ? stack_trace_save+0x8e/0xc0
[  630.110997][T12256]  ? __pfx_stack_trace_save+0x10/0x10
[  630.111027][T12256]  ? stack_depot_save_flags+0x29/0x9b0
[  630.111046][T12256]  ? trace_mm_page_alloc+0x11b/0x180
[  630.111077][T12256]  ? kasan_save_stack+0x42/0x60
[  630.111102][T12256]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  630.111125][T12256]  ? kmem_cache_alloc_noprof+0x25e/0x770
[  630.111147][T12256]  ? __handle_mm_fault+0xbeb/0x2bb0
[  630.111166][T12256]  ? do_user_addr_fault+0x7a6/0x1370
[  630.111188][T12256]  ? exc_page_fault+0x64/0xc0
[  630.111212][T12256]  ? asm_exc_page_fault+0x26/0x30
[  630.111230][T12256]  ? __put_user_4+0xd/0x20
[  630.111262][T12256]  ? kernel_clone+0x67d/0x910
[  630.111288][T12256]  ? __do_sys_clone+0xce/0x120
[  630.111315][T12256]  ? do_syscall_64+0xcd/0xf80
[  630.111349][T12256]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  630.111380][T12256]  ? policy_nodemask+0xea/0x4e0
[  630.111411][T12256]  alloc_pages_mpol+0x1fb/0x550
[  630.111441][T12256]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  630.111475][T12256]  alloc_pages_noprof+0x131/0x390
[  630.111504][T12256]  pte_alloc_one+0x1e/0x3d0
[  630.111530][T12256]  __do_fault+0x320/0x490
[  630.111554][T12256]  do_fault+0x302/0x1ad0
[  630.111579][T12256]  ? __pfx_filemap_map_pages+0x10/0x10
[  630.111605][T12256]  ? __pmd_alloc+0x6aa/0x9c0
[  630.111635][T12256]  __handle_mm_fault+0x1919/0x2bb0
[  630.111660][T12256]  ? __pfx___handle_mm_fault+0x10/0x10
[  630.111693][T12256]  ? find_vma+0xbf/0x140
[  630.111717][T12256]  ? __pfx_find_vma+0x10/0x10
[  630.111745][T12256]  handle_mm_fault+0x3fe/0xad0
[  630.111768][T12256]  do_user_addr_fault+0x7a6/0x1370
[  630.111793][T12256]  ? rcu_is_watching+0x12/0xc0
[  630.111822][T12256]  exc_page_fault+0x64/0xc0
[  630.111849][T12256]  asm_exc_page_fault+0x26/0x30
[  630.111866][T12256] RIP: 0010:__put_user_4+0xd/0x20
[  630.111893][T12256] Code: 66 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca e9 c7 c0 03 00 0f 1f 80 00 00 00 00 90 90 90
[  630.111911][T12256] RSP: 0018:ffffc9000b68fca0 EFLAGS: 00050246
[  630.111927][T12256] RAX: 000000000000012d RBX: 0000000000000000 RCX: 0000000000000000
[  630.111939][T12256] RDX: 1ffff920016d1fc1 RSI: ffffffff817b7b42 RDI: ffffc9000b68fe08
[  630.111951][T12256] RBP: ffff88802b1f8000 R08: 00000000ffffffff R09: 00000000ffffffff
[  630.111962][T12256] R10: 0000000000000001 R11: ffff8880341966b0 R12: 0000000002360400
[  630.111974][T12256] R13: 1ffff920016d1f99 R14: 0000000000000000 R15: 0000000000100000
[  630.111995][T12256]  ? kernel_clone+0x652/0x910
[  630.112026][T12256]  kernel_clone+0x67d/0x910
[  630.112054][T12256]  ? __pfx_futex_wake+0x10/0x10
[  630.112079][T12256]  ? __pfx_kernel_clone+0x10/0x10
[  630.112119][T12256]  __do_sys_clone+0xce/0x120
[  630.112147][T12256]  ? __pfx___do_sys_clone+0x10/0x10
[  630.112185][T12256]  ? xfd_validate_state+0x61/0x180
[  630.112202][T12256]  ? __pfx_do_writev+0x10/0x10
[  630.112233][T12256]  do_syscall_64+0xcd/0xf80
[  630.112269][T12256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  630.112288][T12256] RIP: 0033:0x7f72e858f7c9
[  630.112303][T12256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  630.112322][T12256] RSP: 002b:00007f72e942efe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  630.112339][T12256] RAX: ffffffffffffffda RBX: 00007f72e87e5fa0 RCX: 00007f72e858f7c9
[  630.112352][T12256] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  630.112363][T12256] RBP: 00007f72e8613f91 R08: 0000000000000000 R09: 0000000000000000
[  630.112375][T12256] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  630.112386][T12256] R13: 00007f72e87e6038 R14: 00007f72e87e5fa0 R15: 00007ffea2bcdd08
[  630.112411][T12256]  </TASK>
[  631.271228][T12278] KVM: debugfs: duplicate directory 12278-3
[  631.329717][T12278] KVM: debugfs: duplicate directory 12278-4
[  631.336498][T12278] KVM: debugfs: duplicate directory 12278-5
[  632.726287][T12276] syz.1.1470 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  632.819457][T12276] CPU: 1 UID: 0 PID: 12276 Comm: syz.1.1470 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  632.819490][T12276] Tainted: [L]=SOFTLOCKUP
[  632.819497][T12276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  632.819508][T12276] Call Trace:
[  632.819514][T12276]  <TASK>
[  632.819522][T12276]  dump_stack_lvl+0x16c/0x1f0
[  632.819554][T12276]  dump_header+0x101/0x960
[  632.819584][T12276]  oom_kill_process+0x176/0x910
[  632.819606][T12276]  out_of_memory+0x350/0x1700
[  632.819626][T12276]  ? __lock_acquire+0x436/0x2890
[  632.819647][T12276]  ? __pfx_out_of_memory+0x10/0x10
[  632.819674][T12276]  mem_cgroup_out_of_memory+0x118/0x130
[  632.819697][T12276]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  632.819724][T12276]  ? do_raw_spin_unlock+0x172/0x230
[  632.819749][T12276]  try_charge_memcg+0x695/0xd30
[  632.819783][T12276]  ? __pfx_try_charge_memcg+0x10/0x10
[  632.819816][T12276]  ? find_held_lock+0x2b/0x80
[  632.819844][T12276]  charge_memcg+0x8a/0x230
[  632.819872][T12276]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  632.819894][T12276]  __read_swap_cache_async+0x397/0x500
[  632.819920][T12276]  ? __pfx___read_swap_cache_async+0x10/0x10
[  632.819944][T12276]  ? mlock_drain_local+0x170/0x4e0
[  632.819973][T12276]  swap_cluster_readahead+0x432/0x770
[  632.820002][T12276]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  632.820035][T12276]  ? __lock_acquire+0x436/0x2890
[  632.820063][T12276]  ? get_vma_policy+0x242/0x3c0
[  632.820082][T12276]  swapin_readahead+0x160/0x1220
[  632.820113][T12276]  ? __pfx_swapin_readahead+0x10/0x10
[  632.820137][T12276]  ? find_held_lock+0x2b/0x80
[  632.820159][T12276]  ? swap_cache_get_folio+0x267/0x8e0
[  632.820180][T12276]  ? swap_cache_get_folio+0x267/0x8e0
[  632.820200][T12276]  ? swap_cache_get_folio+0x267/0x8e0
[  632.820223][T12276]  ? swap_cache_get_folio+0x267/0x8e0
[  632.820244][T12276]  ? swap_cache_get_folio+0x293/0x8e0
[  632.820267][T12276]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  632.820287][T12276]  ? __pfx_get_swap_device+0x10/0x10
[  632.820314][T12276]  ? rcu_read_unlock+0x2d/0xb0
[  632.820339][T12276]  ? do_swap_page+0x962/0x64a0
[  632.820355][T12276]  do_swap_page+0x962/0x64a0
[  632.820377][T12276]  ? __lock_acquire+0x436/0x2890
[  632.820400][T12276]  ? __pfx_do_swap_page+0x10/0x10
[  632.820421][T12276]  ? __pfx_default_wake_function+0x10/0x10
[  632.820453][T12276]  ? rcu_is_watching+0x12/0xc0
[  632.820479][T12276]  ? ___pte_offset_map+0x175/0x380
[  632.820508][T12276]  __handle_mm_fault+0x19cb/0x2bb0
[  632.820532][T12276]  ? reacquire_held_locks+0xcd/0x1f0
[  632.820550][T12276]  ? __pfx___handle_mm_fault+0x10/0x10
[  632.820573][T12276]  ? lock_vma_under_rcu+0x176/0x580
[  632.820599][T12276]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  632.820631][T12276]  handle_mm_fault+0x3fe/0xad0
[  632.820654][T12276]  do_user_addr_fault+0x60c/0x1370
[  632.820681][T12276]  ? rcu_is_watching+0x12/0xc0
[  632.820709][T12276]  exc_page_fault+0x64/0xc0
[  632.820736][T12276]  asm_exc_page_fault+0x26/0x30
[  632.820754][T12276] RIP: 0033:0x7ffb2a461e50
[  632.820770][T12276] Code: a5 38 eb 00 00 75 23 53 48 8d 1d 0b 41 38 00 48 89 df e8 f3 f2 fe ff 8b 05 01 41 38 00 85 c0 75 11 5b c3 0f 1f 80 00 00 00 00 <c3> 0f 1f 80 00 00 00 00 31 d2 b9 e5 03 00 00 48 89 de bf ff ff ff
[  632.820788][T12276] RSP: 002b:00007ffdd9bb6b88 EFLAGS: 00010246
[  632.820804][T12276] RAX: 0000000000000000 RBX: 00007ffb2a7e7da0 RCX: 00007ffb2a58f7c9
[  632.820816][T12276] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  632.820827][T12276] RBP: 00007ffb2a7e7da0 R08: 0000000000000000 R09: 0000001ed9bb6e7f
[  632.820838][T12276] R10: 00007ffb2a7e7cb0 R11: 0000000000000246 R12: 0000000000099ebd
[  632.820850][T12276] R13: 00007ffb2a7e6360 R14: ffffffffffffffff R15: 00007ffdd9bb6ca0
[  632.820874][T12276]  </TASK>
[  634.313417][T12276] memory: usage 3072kB, limit 3072kB, failcnt 174280
[  634.332820][T12276] memory+swap: usage 3312kB, limit 9007199254740988kB, failcnt 0
[  634.357333][T12276] kmem: usage 2912kB, limit 9007199254740988kB, failcnt 0
[  634.380443][T12276] Memory cgroup stats for /syz1:
[  634.380568][T12276] cache 0
[  634.409254][T12276] rss 0
[  634.418421][T12276] rss_huge 0
[  634.430097][T12276] shmem 0
[  634.439637][T12276] mapped_file 0
[  634.452677][T12276] dirty 0
[  634.467421][T12276] writeback 0
[  634.474560][T12276] workingset_refault_anon 12844
[  634.479715][T12276] workingset_refault_file 63076
[  634.505862][T12276] swap 245760
[  634.509180][T12276] swapcached 163840
[  634.529499][T12276] pgpgin 325330
[  634.548089][T12276] pgpgout 325290
[  634.556317][T12276] pgfault 287852
[  634.567456][T12276] pgmajfault 8762
[  634.581333][T12276] inactive_anon 163840
[  634.594697][T12276] active_anon 0
[  634.610550][T12276] inactive_file 0
[  634.617758][T12276] active_file 0
[  634.633314][T12276] unevictable 0
[  634.639183][T12276] hierarchical_memory_limit 3145728
[  634.663353][T12276] hierarchical_memsw_limit 9223372036854771712
[  634.682139][T12276] total_cache 0
[  634.685635][T12276] total_rss 0
[  634.689003][T12276] total_rss_huge 0
[  634.714467][T12276] total_shmem 0
[  634.728244][T12276] total_mapped_file 0
[  634.743302][T12276] total_dirty 0
[  634.753911][T12276] total_writeback 0
[  634.758011][T12276] total_workingset_refault_anon 12844
[  634.793418][T12276] total_workingset_refault_file 63076
[  634.814619][T12276] total_swap 245760
[  634.818634][T12276] total_swapcached 163840
[  634.834560][T12276] total_pgpgin 325330
[  634.855939][T12276] total_pgpgout 325290
[  634.875782][T12276] total_pgfault 287852
[  634.894093][T12276] total_pgmajfault 8762
[  634.898282][T12276] total_inactive_anon 163840
[  634.914630][T12276] total_active_anon 0
[  634.918640][T12276] total_inactive_file 0
[  634.944811][T12276] total_active_file 0
[  634.948822][T12276] total_unevictable 0
[  634.973905][T12276] anon_cost 0
[  634.977480][T12276] file_cost 0
[  634.994600][T12276] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1470,pid=12276,uid=0
[  635.038121][T12276] Memory cgroup out of memory: Killed process 12276 (syz.1.1470) total-vm:132148kB, anon-rss:1268kB, file-rss:21668kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  635.177817][ T5834] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  635.188868][ T5834] CPU: 1 UID: 0 PID: 5834 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  635.188898][ T5834] Tainted: [L]=SOFTLOCKUP
[  635.188904][ T5834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  635.188915][ T5834] Call Trace:
[  635.188924][ T5834]  <TASK>
[  635.188932][ T5834]  dump_stack_lvl+0x16c/0x1f0
[  635.188971][ T5834]  dump_header+0x101/0x960
[  635.188994][ T5834]  oom_kill_process+0x176/0x910
[  635.189016][ T5834]  out_of_memory+0x350/0x1700
[  635.189037][ T5834]  ? __lock_acquire+0x436/0x2890
[  635.189058][ T5834]  ? __pfx_out_of_memory+0x10/0x10
[  635.189084][ T5834]  mem_cgroup_out_of_memory+0x118/0x130
[  635.189106][ T5834]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  635.189134][ T5834]  ? do_raw_spin_unlock+0x172/0x230
[  635.189159][ T5834]  try_charge_memcg+0x695/0xd30
[  635.189193][ T5834]  ? __pfx_try_charge_memcg+0x10/0x10
[  635.189226][ T5834]  ? find_held_lock+0x2b/0x80
[  635.189253][ T5834]  charge_memcg+0x8a/0x230
[  635.189281][ T5834]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  635.189303][ T5834]  __read_swap_cache_async+0x397/0x500
[  635.189330][ T5834]  ? __pfx___read_swap_cache_async+0x10/0x10
[  635.189354][ T5834]  ? __lock_acquire+0x436/0x2890
[  635.189377][ T5834]  swap_cluster_readahead+0x528/0x770
[  635.189405][ T5834]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  635.189439][ T5834]  ? update_load_avg+0x233/0x2220
[  635.189458][ T5834]  ? get_vma_policy+0x242/0x3c0
[  635.189477][ T5834]  swapin_readahead+0x160/0x1220
[  635.189507][ T5834]  ? __pfx_swapin_readahead+0x10/0x10
[  635.189530][ T5834]  ? find_held_lock+0x2b/0x80
[  635.189553][ T5834]  ? swap_cache_get_folio+0x267/0x8e0
[  635.189574][ T5834]  ? swap_cache_get_folio+0x267/0x8e0
[  635.189593][ T5834]  ? swap_cache_get_folio+0x267/0x8e0
[  635.189616][ T5834]  ? swap_cache_get_folio+0x267/0x8e0
[  635.189637][ T5834]  ? swap_cache_get_folio+0x293/0x8e0
[  635.189660][ T5834]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  635.189680][ T5834]  ? __pfx_get_swap_device+0x10/0x10
[  635.189707][ T5834]  ? rcu_read_unlock+0x2d/0xb0
[  635.189731][ T5834]  ? do_swap_page+0x962/0x64a0
[  635.189749][ T5834]  do_swap_page+0x962/0x64a0
[  635.189770][ T5834]  ? __lock_acquire+0x436/0x2890
[  635.189793][ T5834]  ? __pfx_do_swap_page+0x10/0x10
[  635.189813][ T5834]  ? __pfx_default_wake_function+0x10/0x10
[  635.189840][ T5834]  ? rcu_is_watching+0x12/0xc0
[  635.189865][ T5834]  ? __free_object+0x286/0x410
[  635.189911][ T5834]  ? rcu_is_watching+0x12/0xc0
[  635.189936][ T5834]  ? ___pte_offset_map+0x175/0x380
[  635.189970][ T5834]  __handle_mm_fault+0x19cb/0x2bb0
[  635.189994][ T5834]  ? reacquire_held_locks+0xcd/0x1f0
[  635.190012][ T5834]  ? __pfx___handle_mm_fault+0x10/0x10
[  635.190034][ T5834]  ? lock_vma_under_rcu+0x176/0x580
[  635.190060][ T5834]  ? get_timespec64+0x136/0x1b0
[  635.190083][ T5834]  handle_mm_fault+0x3fe/0xad0
[  635.190106][ T5834]  do_user_addr_fault+0x60c/0x1370
[  635.190132][ T5834]  ? rcu_is_watching+0x12/0xc0
[  635.190160][ T5834]  exc_page_fault+0x64/0xc0
[  635.190187][ T5834]  asm_exc_page_fault+0x26/0x30
[  635.190205][ T5834] RIP: 0033:0x7f0d411c2088
[  635.190222][ T5834] Code: 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[  635.190240][ T5834] RSP: 002b:00007ffcbca2b870 EFLAGS: 00010293
[  635.190255][ T5834] RAX: 0000000000000000 RBX: 0000000000000538 RCX: 00007f0d411c2085
[  635.190267][ T5834] RDX: 00007ffcbca2b8b0 RSI: 0000000000000000 RDI: 0000000000000000
[  635.190278][ T5834] RBP: 00007ffcbca2b91c R08: 0000000000000000 R09: 0000000000000000
[  635.190289][ T5834] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000001388
[  635.190300][ T5834] R13: 00000000000927c0 R14: 000000000009a93a R15: 00007ffcbca2b970
[  635.190323][ T5834]  </TASK>
[  635.190330][ T5834] memory: usage 3072kB, limit 3072kB, failcnt 268992
[  635.583866][T12310] ima: policy update failed
[  635.740633][   T30] audit: type=1802 audit(1765732234.233:10): pid=12310 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1473" res=0 errno=0
[  636.649990][ T5834] memory+swap: usage 4992kB, limit 9007199254740988kB, failcnt 0
[  636.710045][ T5834] kmem: usage 616kB, limit 9007199254740988kB, failcnt 0
[  636.742757][ T5834] Memory cgroup stats for /syz2:
[  636.742906][ T5834] cache 53248
[  636.781715][ T5834] rss 2453504
[  636.790512][ T5834] rss_huge 0
[  636.801540][ T5834] shmem 0
[  636.818926][ T5834] mapped_file 53248
[  636.841276][ T5834] dirty 0
[  636.866224][ T5834] writeback 0
[  636.869842][ T5834] workingset_refault_anon 15657
[  636.895444][ T5834] workingset_refault_file 142438
[  636.920884][ T5834] swap 1966080
[  636.931937][ T5834] swapcached 114688
[  636.935783][ T5834] pgpgin 578661
[  636.939420][ T5834] pgpgout 591333
[  636.981834][ T5834] pgfault 281116
[  636.985703][ T5834] pgmajfault 10028
[  637.036637][ T5834] inactive_anon 0
[  637.040315][ T5834] active_anon 8192
[  637.061107][T12354] FAULT_INJECTION: forcing a failure.
[  637.061107][T12354] name failslab, interval 1, probability 0, space 0, times 0
[  637.091940][ T5834] inactive_file 0
[  637.095613][ T5834] active_file 0
[  637.110981][ T5834] unevictable 2506752
[  637.123160][ T5834] hierarchical_memory_limit 3145728
[  637.132170][T12354] CPU: 1 UID: 0 PID: 12354 Comm: syz.1.1483 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  637.132202][T12354] Tainted: [L]=SOFTLOCKUP
[  637.132209][T12354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  637.132219][T12354] Call Trace:
[  637.132226][T12354]  <TASK>
[  637.132233][T12354]  dump_stack_lvl+0x16c/0x1f0
[  637.132265][T12354]  should_fail_ex+0x512/0x640
[  637.132285][T12354]  ? kmem_cache_alloc_noprof+0x62/0x770
[  637.132310][T12354]  should_failslab+0xc2/0x120
[  637.132338][T12354]  kmem_cache_alloc_noprof+0x83/0x770
[  637.132360][T12354]  ? alloc_empty_file+0x55/0x1e0
[  637.132384][T12354]  ? alloc_empty_file+0x55/0x1e0
[  637.132402][T12354]  alloc_empty_file+0x55/0x1e0
[  637.132421][T12354]  alloc_file_pseudo+0x13a/0x230
[  637.132442][T12354]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  637.132462][T12354]  ? alloc_fd+0x471/0x7d0
[  637.132493][T12354]  sock_alloc_file+0x50/0x210
[  637.132520][T12354]  __sys_socket+0x1c0/0x260
[  637.132537][T12354]  ? __pfx___sys_socket+0x10/0x10
[  637.132556][T12354]  ? do_user_addr_fault+0x843/0x1370
[  637.132582][T12354]  __x64_sys_socket+0x72/0xb0
[  637.132599][T12354]  ? lockdep_hardirqs_on+0x7c/0x110
[  637.132626][T12354]  do_syscall_64+0xcd/0xf80
[  637.132655][T12354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  637.132674][T12354] RIP: 0033:0x7ffb2a5916e7
[  637.132689][T12354] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  637.132708][T12354] RSP: 002b:00007ffb2b42cfa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[  637.132726][T12354] RAX: ffffffffffffffda RBX: 00007ffb2a7e6090 RCX: 00007ffb2a5916e7
[  637.132738][T12354] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  637.132749][T12354] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[  637.132760][T12354] R10: 0000200000000040 R11: 0000000000000286 R12: 0000000000000000
[  637.132771][T12354] R13: 00007ffb2a7e6128 R14: 00007ffb2a7e6090 R15: 00007ffdd9bb6a28
[  637.132794][T12354]  </TASK>
[  637.562017][ T5834] hierarchical_memsw_limit 9223372036854771712
[  637.582019][ T5834] total_cache 53248
[  637.592007][ T5834] total_rss 2453504
[  637.596289][ T5834] total_rss_huge 0
[  637.612038][ T5834] total_shmem 0
[  637.615539][ T5834] total_mapped_file 53248
[  637.619964][ T5834] total_dirty 0
[  637.633691][ T5834] total_writeback 0
[  637.637681][ T5834] total_workingset_refault_anon 15657
[  637.680344][ T5834] total_workingset_refault_file 142438
[  637.693609][ T5834] total_swap 1966080
[  637.703300][ T5834] total_swapcached 114688
[  637.707648][ T5834] total_pgpgin 578661
[  637.711716][ T5834] total_pgpgout 591333
[  637.736281][ T5834] total_pgfault 281116
[  637.742109][ T5834] total_pgmajfault 10028
[  637.746525][ T5834] total_inactive_anon 0
[  637.761965][ T5834] total_active_anon 8192
[  637.769331][ T5834] total_inactive_file 0
[  637.786523][ T5834] total_active_file 0
[  637.831278][ T5834] total_unevictable 2506752
[  637.842172][ T5834] anon_cost 0
[  637.845567][ T5834] file_cost 0
[  637.863371][ T5834] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1474,pid=12312,uid=0
[  637.915817][ T5834] Memory cgroup out of memory: Killed process 12312 (syz.2.1474) total-vm:106396kB, anon-rss:3444kB, file-rss:21924kB, shmem-rss:0kB, UID:0 pgtables:156kB oom_score_adj:1000
[  640.177428][   T32] oom_reaper: reaped process 12312 (syz.2.1474), now anon-rss:124kB, file-rss:20800kB, shmem-rss:0kB
[  640.647606][T12393] FAULT_INJECTION: forcing a failure.
[  640.647606][T12393] name failslab, interval 1, probability 0, space 0, times 0
[  640.691441][T12393] CPU: 1 UID: 0 PID: 12393 Comm: syz.1.1491 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  640.691477][T12393] Tainted: [L]=SOFTLOCKUP
[  640.691485][T12393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  640.691496][T12393] Call Trace:
[  640.691503][T12393]  <TASK>
[  640.691511][T12393]  dump_stack_lvl+0x16c/0x1f0
[  640.691543][T12393]  should_fail_ex+0x512/0x640
[  640.691565][T12393]  ? kmem_cache_alloc_noprof+0x62/0x770
[  640.691591][T12393]  should_failslab+0xc2/0x120
[  640.691620][T12393]  kmem_cache_alloc_noprof+0x83/0x770
[  640.691642][T12393]  ? net_alloc_generic+0x1e/0x70
[  640.691667][T12393]  ? copy_net_ns+0xe8/0x7c0
[  640.691697][T12393]  ? copy_net_ns+0xe8/0x7c0
[  640.691722][T12393]  copy_net_ns+0xe8/0x7c0
[  640.691747][T12393]  ? copy_cgroup_ns+0x71/0x980
[  640.691768][T12393]  create_new_namespaces+0x3ea/0xab0
[  640.691798][T12393]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  640.691826][T12393]  ksys_unshare+0x45b/0xa40
[  640.691856][T12393]  ? __pfx_ksys_unshare+0x10/0x10
[  640.691893][T12393]  ? xfd_validate_state+0x61/0x180
[  640.691917][T12393]  __x64_sys_unshare+0x31/0x40
[  640.691933][T12393]  do_syscall_64+0xcd/0xf80
[  640.691962][T12393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  640.691981][T12393] RIP: 0033:0x7ffb2a58f7c9
[  640.691997][T12393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  640.692016][T12393] RSP: 002b:00007ffb2b44f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  640.692035][T12393] RAX: ffffffffffffffda RBX: 00007ffb2a7e5fa0 RCX: 00007ffb2a58f7c9
[  640.692048][T12393] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  640.692060][T12393] RBP: 00007ffb2a613f91 R08: 0000000000000000 R09: 0000000000000000
[  640.692071][T12393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  640.692082][T12393] R13: 00007ffb2a7e6038 R14: 00007ffb2a7e5fa0 R15: 00007ffdd9bb6a28
[  640.692105][T12393]  </TASK>
[  641.502623][   T31] INFO: task syz-executor:9474 blocked for more than 143 seconds.
[  641.545436][   T31]       Tainted: G             L      syzkaller #0
[  641.569540][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  641.604084][   T31] task:syz-executor    state:D stack:21832 pid:9474  tgid:9474  ppid:1      task_flags:0x400140 flags:0x00080002
[  641.657724][   T31] Call Trace:
[  641.672035][   T31]  <TASK>
[  641.688728][   T31]  ? __schedule+0x10b9/0x6150
[  641.707424][   T31]  __schedule+0x1139/0x6150
[  641.732883][   T31]  ? __pfx___schedule+0x10/0x10
[  641.753501][   T31]  ? find_held_lock+0x2b/0x80
[  641.778151][   T31]  ? schedule+0x2d7/0x3a0
[  641.798344][   T31]  schedule+0xe7/0x3a0
[  641.818359][   T31]  schedule_preempt_disabled+0x13/0x30
[  641.837316][   T31]  __mutex_lock+0xc69/0x1ca0
[  641.859890][   T31]  ? nfsd_shutdown_threads+0x5b/0xf0
[  641.881714][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  641.901874][   T31]  ? net_generic+0xea/0x2a0
[  641.920320][   T31]  ? nfsd_shutdown_threads+0x5b/0xf0
[  641.942425][   T31]  nfsd_shutdown_threads+0x5b/0xf0
[  641.965641][   T31]  nfsd_umount+0x3b/0x60
[  641.990965][   T31]  deactivate_locked_super+0xc1/0x1a0
[  642.018059][   T31]  deactivate_super+0xde/0x100
[  642.035559][   T31]  cleanup_mnt+0x225/0x450
[  642.057362][   T31]  task_work_run+0x150/0x240
[  642.076435][   T31]  ? __pfx_task_work_run+0x10/0x10
[  642.101584][   T31]  exit_to_user_mode_loop+0xfb/0x540
[  642.131223][   T31]  do_syscall_64+0x4ee/0xf80
[  642.156797][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  642.185646][   T31] RIP: 0033:0x7fd5ea990af7
[  642.206331][   T31] RSP: 002b:00007ffdb708ff18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  642.247638][   T31] RAX: 0000000000000000 RBX: 00007fd5eaa13d7d RCX: 00007fd5ea990af7
[  642.285695][   T31] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdb708ffd0
[  642.325842][   T31] RBP: 00007ffdb708ffd0 R08: 0000000000000000 R09: 0000000000000000
[  642.365304][   T31] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdb70910c0
[  642.403453][   T31] R13: 00007fd5eaa13d7d R14: 0000000000078d9a R15: 00007ffdb7092190
[  642.442275][   T31]  </TASK>
[  642.464975][   T31] 
[  642.464975][   T31] Showing all locks held in the system:
[  642.516723][   T31] 1 lock held by pool_workqueue_/3:
[  642.540961][   T31]  #0: ffff8880b853add8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130
[  642.589902][   T31] 1 lock held by khungtaskd/31:
[  642.613806][   T31]  #0: ffffffff8e3c94a0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  642.659204][   T31] 4 locks held by kworker/u8:5/146:
[  642.687936][   T31]  #0: ffff88801badf148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20
[  642.734260][   T31]  #1: ffffc90002f37c90 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20
[  642.781274][   T31]  #2: ffffffff9012e6d0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xad/0x830
[  642.829397][   T31]  #3: ffffffff8e3d4ac0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x48/0x6e0
[  642.872880][   T31] 1 lock held by syz-executor/5832:
[  642.900927][   T31] 2 locks held by getty/8486:
[  642.919820][   T31]  #0: ffff88803129d0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  642.953368][   T31]  #1: ffffc9000e7212f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x1510
[  642.988001][   T31] 2 locks held by syz.0.851/9348:
[  643.009067][   T31]  #0: ffffffff901eb350 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  643.036733][   T31]  #1: ffffffff8e8011e8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1ae0
[  643.071822][   T31] 2 locks held by syz-executor/9474:
[  643.087891][T12398] syz.1.1494 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  643.103686][   T31]  #0: ffff8880764f60e0 (&type->s_umount_key#55){++++}-{4:4}, at: deactivate_super+0xd6/0x100
[  643.128156][   T31]  #1: ffffffff8e8011e8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[  643.148307][T12398] CPU: 1 UID: 0 PID: 12398 Comm: syz.1.1494 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  643.148339][T12398] Tainted: [L]=SOFTLOCKUP
[  643.148346][T12398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  643.148357][T12398] Call Trace:
[  643.148365][T12398]  <TASK>
[  643.148372][T12398]  dump_stack_lvl+0x16c/0x1f0
[  643.148405][T12398]  dump_header+0x101/0x960
[  643.148428][T12398]  oom_kill_process+0x176/0x910
[  643.148450][T12398]  out_of_memory+0x350/0x1700
[  643.148471][T12398]  ? __lock_acquire+0x436/0x2890
[  643.148492][T12398]  ? __pfx_out_of_memory+0x10/0x10
[  643.148518][T12398]  mem_cgroup_out_of_memory+0x118/0x130
[  643.148541][T12398]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  643.148568][T12398]  ? do_raw_spin_unlock+0x172/0x230
[  643.148594][T12398]  try_charge_memcg+0x695/0xd30
[  643.148627][T12398]  ? __pfx_try_charge_memcg+0x10/0x10
[  643.148660][T12398]  ? find_held_lock+0x2b/0x80
[  643.148688][T12398]  charge_memcg+0x8a/0x230
[  643.148716][T12398]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  643.148738][T12398]  __read_swap_cache_async+0x397/0x500
[  643.148765][T12398]  ? __pfx___read_swap_cache_async+0x10/0x10
[  643.148797][T12398]  swap_cluster_readahead+0x528/0x770
[  643.148818][T12398]  ? find_held_lock+0x2b/0x80
[  643.148858][T12398]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  643.148884][T12398]  ? __lock_acquire+0x436/0x2890
[  643.148911][T12398]  ? get_vma_policy+0x242/0x3c0
[  643.148930][T12398]  swapin_readahead+0x160/0x1220
[  643.148962][T12398]  ? __pfx_swapin_readahead+0x10/0x10
[  643.148985][T12398]  ? find_held_lock+0x2b/0x80
[  643.149008][T12398]  ? swap_cache_get_folio+0x267/0x8e0
[  643.149028][T12398]  ? swap_cache_get_folio+0x267/0x8e0
[  643.149048][T12398]  ? swap_cache_get_folio+0x267/0x8e0
[  643.149071][T12398]  ? swap_cache_get_folio+0x267/0x8e0
[  643.149092][T12398]  ? swap_cache_get_folio+0x293/0x8e0
[  643.149115][T12398]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  643.149136][T12398]  ? __pfx_get_swap_device+0x10/0x10
[  643.149162][T12398]  ? rcu_read_unlock+0x2d/0xb0
[  643.149187][T12398]  ? do_swap_page+0x962/0x64a0
[  643.149204][T12398]  do_swap_page+0x962/0x64a0
[  643.149226][T12398]  ? __lock_acquire+0x436/0x2890
[  643.149249][T12398]  ? __pfx_do_swap_page+0x10/0x10
[  643.149270][T12398]  ? __pfx_default_wake_function+0x10/0x10
[  643.149298][T12398]  ? rcu_is_watching+0x12/0xc0
[  643.149324][T12398]  ? __free_object+0x286/0x410
[  643.149352][T12398]  ? rcu_is_watching+0x12/0xc0
[  643.149377][T12398]  ? ___pte_offset_map+0x175/0x380
[  643.149407][T12398]  __handle_mm_fault+0x19cb/0x2bb0
[  643.149431][T12398]  ? reacquire_held_locks+0xcd/0x1f0
[  643.149449][T12398]  ? __pfx___handle_mm_fault+0x10/0x10
[  643.149471][T12398]  ? lock_vma_under_rcu+0x176/0x580
[  643.149497][T12398]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  643.149529][T12398]  handle_mm_fault+0x3fe/0xad0
[  643.149553][T12398]  do_user_addr_fault+0x60c/0x1370
[  643.149578][T12398]  ? rcu_is_watching+0x12/0xc0
[  643.149606][T12398]  exc_page_fault+0x64/0xc0
[  643.149633][T12398]  asm_exc_page_fault+0x26/0x30
[  643.149652][T12398] RIP: 0033:0x7ffb2a461a80
[  643.149668][T12398] Code: 05 fd 3c eb 00 48 83 ed 01 83 e5 03 c6 40 01 00 0f 85 93 fa ff ff 48 8b 05 e5 3c eb 00 c6 40 02 00 e9 83 fa ff ff 0f 1f 40 00 <e8> fb d4 00 00 e9 45 f9 ff ff 66 0f 1f 44 00 00 e8 3b dd 00 00 e9
[  643.149687][T12398] RSP: 002b:00007ffdd9bb6b20 EFLAGS: 00010202
[  643.149702][T12398] RAX: 00007ffb2a7e5fa0 RBX: 00007ffb2b315720 RCX: 0000000000000000
[  643.149714][T12398] RDX: 00007ffb2a7e6038 RSI: 000000000000001d RDI: 00007ffb2b315720
[  643.149726][T12398] RBP: 00007ffb2a7e6038 R08: 0000000000000000 R09: 0000000000000026
[  643.149737][T12398] R10: 0000000000000001 R11: 000000000001e800 R12: 0000000000000001
[  643.149748][T12398] R13: 0000000000000026 R14: ffffffffffffffff R15: 00007ffdd9bb6ca0
[  643.149773][T12398]  </TASK>
[  643.152386][T12398] memory: usage 3072kB, limit 3072kB, failcnt 175506
[  643.555066][   T31] 2 locks held by kworker/1:6/11555:
[  643.560417][   T31] 3 locks held by syz.3.1452/12205:
[  643.580926][   T31] 1 lock held by syz.5.1464/12286:
[  643.598258][   T31]  #0: ffffffff8e3d4bf8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x284/0x3c0
[  643.631795][   T31] 2 locks held by syz.2.1474/12321:
[  643.645023][   T31]  #0: ffffffff901eb350 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  643.663775][   T31]  #1: ffffffff8e8011e8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_version_set_doit+0xc4/0x7a0
[  643.684386][   T31] 3 locks held by syz.1.1494/12398:
[  643.695166][   T31] 1 lock held by syz.1.1494/12399:
[  643.705160][   T31]  #0: ffffffff8e4fbfc8 (oom_lock){+.+.}-{4:4}, at: mem_cgroup_out_of_memory+0x8e/0x130
[  643.735168][   T31] 1 lock held by syz.3.1493/12400:
[  643.745098][   T31]  #0: ffff8880292de540 (&mm->mmap_lock){++++}-{4:4}, at: vm_mmap_pgoff+0x1f5/0x470
[  643.764851][   T31] 1 lock held by syz.3.1493/12403:
[  643.770074][   T31] 1 lock held by syz.3.1493/12405:
[  643.786070][   T31]  #0: ffff8880292de540 (&mm->mmap_lock){++++}-{4:4}, at: vm_mmap_pgoff+0x1f5/0x470
[  643.805135][   T31] 2 locks held by dhcpcd/12406:
[  643.813858][   T31]  #0: ffff888079baa260 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf60
[  643.838143][   T31]  #1: ffffffff8e3d4bf8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0
[  643.865155][   T31] 1 lock held by dhcpcd/12407:
[  643.869993][   T31]  #0: ffff88804f204260 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf60
[  643.895408][   T31] 
[  643.898016][   T31] =============================================
[  643.898016][   T31] 
[  643.921594][   T31] NMI backtrace for cpu 1
[  643.921613][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  643.921638][   T31] Tainted: [L]=SOFTLOCKUP
[  643.921645][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  643.921656][   T31] Call Trace:
[  643.921662][   T31]  <TASK>
[  643.921669][   T31]  dump_stack_lvl+0x116/0x1f0
[  643.921701][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  643.921722][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  643.921743][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  643.921766][   T31]  sys_info+0x133/0x180
[  643.921782][   T31]  watchdog+0xe66/0x1180
[  643.921814][   T31]  ? rcu_is_watching+0x12/0xc0
[  643.921848][   T31]  ? __pfx_watchdog+0x10/0x10
[  643.921878][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  643.921907][   T31]  ? __kthread_parkme+0x19e/0x250
[  643.921935][   T31]  ? __pfx_watchdog+0x10/0x10
[  643.921962][   T31]  kthread+0x3c5/0x780
[  643.921980][   T31]  ? __pfx_kthread+0x10/0x10
[  643.921999][   T31]  ? rcu_is_watching+0x12/0xc0
[  643.922024][   T31]  ? __pfx_kthread+0x10/0x10
[  643.922043][   T31]  ret_from_fork+0x983/0xb10
[  643.922063][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  643.922083][   T31]  ? __switch_to+0x7af/0x10d0
[  643.922107][   T31]  ? __pfx_kthread+0x10/0x10
[  643.922126][   T31]  ret_from_fork_asm+0x1a/0x30
[  643.922163][   T31]  </TASK>
[  644.321200][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  644.328267][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  644.338966][   T31] Tainted: [L]=SOFTLOCKUP
[  644.343321][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  644.353414][   T31] Call Trace:
[  644.356703][   T31]  <TASK>
[  644.359657][   T31]  dump_stack_lvl+0x3d/0x1f0
[  644.364543][   T31]  vpanic+0x640/0x6f0
[  644.368619][   T31]  panic+0xca/0xd0
[  644.372868][   T31]  ? __pfx_panic+0x10/0x10
[  644.377292][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  644.383361][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b1/0x300
[  644.389519][   T31]  ? nmi_trigger_cpumask_backtrace+0x2be/0x300
[  644.395679][   T31]  ? watchdog+0xe83/0x1180
[  644.400137][   T31]  ? watchdog+0xe76/0x1180
[  644.404662][   T31]  watchdog+0xe94/0x1180
[  644.408936][   T31]  ? rcu_is_watching+0x12/0xc0
[  644.413800][   T31]  ? __pfx_watchdog+0x10/0x10
[  644.418519][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  644.423734][   T31]  ? __kthread_parkme+0x19e/0x250
[  644.428858][   T31]  ? __pfx_watchdog+0x10/0x10
[  644.433561][   T31]  kthread+0x3c5/0x780
[  644.437635][   T31]  ? __pfx_kthread+0x10/0x10
[  644.442225][   T31]  ? rcu_is_watching+0x12/0xc0
[  644.446995][   T31]  ? __pfx_kthread+0x10/0x10
[  644.451762][   T31]  ret_from_fork+0x983/0xb10
[  644.456353][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  644.461484][   T31]  ? __switch_to+0x7af/0x10d0
[  644.466268][   T31]  ? __pfx_kthread+0x10/0x10
[  644.471046][   T31]  ret_from_fork_asm+0x1a/0x30
[  644.475922][   T31]  </TASK>
[  644.479375][   T31] Kernel Offset: disabled
[  644.483887][   T31] Rebooting in 86400 seconds..