last executing test programs:

3.858396588s ago: executing program 2 (id=1097):
r0 = pidfd_open$auto(0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000180), 0xffffffffffffffff)
futex_wait$auto(0x0, 0x6, 0x2, 0x6, 0x0, 0xc3a)
sendmsg$auto_OVS_VPORT_CMD_NEW(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000080)={0x34, r2, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@OVS_VPORT_ATTR_UPCALL_STATS={0x4}, @OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0xe00}, @OVS_VPORT_ATTR_NAME={0x8, 0x3, '})[\x00'}, @OVS_VPORT_ATTR_UPCALL_PID={0x4}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x7}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x80)
ioctl$auto_XFS_IOC_FREESP(r0, 0x4030580b, 0x0)

3.583557489s ago: executing program 2 (id=1100):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2000a, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
r1 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x30008000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000229bd7000ffffdf251300000002000000060000000500050008ec000005001d0004000000050017000d00000005082800120000000500210002000000444b4df203b44ba88acee348b76604eda58e2fd25e1be09b04053a41ce"], 0x44}}, 0x480)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="e0000000", @ANYRESOCT=r0, @ANYBLOB="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"], 0xe0}}, 0x80)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0xb)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0xfdef)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmsg$auto_GTP_CMD_NEWPDP(r2, 0x0, 0x8040)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
unshare$auto(0x40000080)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xb, r4)
r5 = openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000080), 0x18100, 0x0)
recvmmsg$auto(r5, &(0x7f0000000280)={{&(0x7f0000000100)="03246b7b0b42c708578f8410691bfd7296017d30088d5677369f6b7caa110026740700000047a8f8bf6b097da98d474044ea15f3a792a30abf2b9086ab470df67c6cc3de43755a5557c8b88f3113f2f346d34026ad68753d16a4683d65abc0268f6365d61c02a82f67f15489a3e9f238f9cf5aa0327862eb54c0d5c0c5a9162165666573120c14c554a8decb3e39a9b5ad76867d8e92b5baacafa079a36021813f066fd8f554e04c7ec810cb", 0x5, &(0x7f00000001c0)={0x0, 0x9}, 0xb, &(0x7f0000000200)="a25faeaabefaf2cba143ffe68b90cabdfc52af366cab3eb0fa827263d8f2f32f7bde56ac37c396cbc154d2576097cc9e3c76f9563620aef4c9f56a8313aade1f1ef54b3de7ffcf901b740e29aaf1e3", 0x1, 0x9f5}, 0x8}, 0x91f7, 0x4, &(0x7f00000002c0)={0xa8c1, 0x1})
ioctl$auto_KVM_CREATE_VM(r3, 0x4004ae8b, 0x80ffff)
madvise$auto(0x0, 0x2003f0, 0x17)
connect$auto(0xffffffffffffffff, 0x0, 0x55)
ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, 0x0)

2.487388644s ago: executing program 3 (id=1107):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
setdomainname$auto(0xfffffffffffffffc, 0x0)

2.427898368s ago: executing program 0 (id=1108):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
socket(0x2, 0x1, 0x106)
r0 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r0, 0x84, 0x70, 0x0, &(0x7f0000000240)=0x10009b)
r1 = getsockopt$auto(0xffffffffffffffff, 0x110, 0x9, 0xffffffffffffffff, 0x0)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x80040, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x1e, 0x805, 0x0)
read$auto_deferred_devs_fops_(r1, &(0x7f0000000080)=""/243, 0xf3)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x2000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)={0x2c, r4, 0x1, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x278e18a297a8387c}, 0x24000802)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r5, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r5)
read$auto(r5, &(0x7f0000000100)='nl80211\x00', 0xbe62)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r1)
sendmsg$auto_NL80211_CMD_SET_STATION(r3, &(0x7f0000000980)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000940)={&(0x7f0000000280)={0x664, r6, 0x4, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xa9}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x99, 0xac, "600f86e0caacb08c7fc6b4014457376fb1458652584f462b1d0a7e80f8cd812bb1ca6cc96fea0345b21a77eb5c45b1d8f337ecc4fad6a1a1fb4935699aa0bb333469e6e7c8cf71383ff4f4c1c2254b87dfd58bfe433ccafc548785b09187077b8f7755c6aceb0c54ba0c806a04d1ae5321b4b902b5443501c22cf7866a70470ed9e2f1b5860b826ae0aeabd298fee59ab992781e53"}, @NL80211_ATTR_TID_CONFIG={0x5ac, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x8}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1000}]}, {0x310, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x9}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xed}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x2fc, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HE={0xcd, 0x5, "6ae0aecff52a1accec7fa3c4b6aefab81aded08b7a0554a87d3004806aadf941f89cae75a5246167dd99c6c49583f681af5d90e344e766d115d4300193d0fe61b34823df3a13d685f8005d0c50e1371b2362ea49da775ce767d65e7801cbaff546943655bb2e0e48ee08443370b769b29a54c8b0a5c1d077c70f462eada18d4265e2f58808e37c7272fb453a5112644e485d51f5380ab89c00bff3882489c4bcde82d8353656a430e7ac71a17b28dd3b3e4c1d38921cd934921100775030866cf0ff1a107e2a368799"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x4}, @NL80211_TXRATE_HE={0x81, 0x5, "c8ac9130ce822f8c7c4b5e8e73ce3ebfe8e1bcca851620d51be5b6863da8b0b7739340f4a0ba8cf44995f38dbb04252a9c5ad622865072eac27b20a965fb29fa6e8c1aeda20fdba33289922dc355af7e3e70f97a6f508a15d2a8b411d44adcea37df9eb7e9d174f0bacb860e2203160b7458d899fd4a0797e9e932609f"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x80}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x7}, @NL80211_TXRATE_HE={0xdc, 0x5, "2c40be7f6a470bd8ea3a39680250af528756185736dfe15ca9fc47e50d271fcd0f774d3dcfe4a9a9894c3ab3e12340cc8ca962aa7a6667cf7530d839c7b18a5f519373c702909c4f20929b5609dae45d6676fe7edd3a9552a22dbd9568c67be65f19fff7a42ff40fd24050810f79278a90d0e013ff9b7406e5adf085433b0986942e1b99d1056a0eddd2106e3c03718388cb640a1da7e37dc41220fe826c22e656419876b376a1388d9c24103714699aa4a4dc86e944d1a20a3fa0d2de91d731eac16e0b05173764c81ff5b872f3e690e97782abce6c8663"}, @NL80211_TXRATE_HE={0x87, 0x5, "776d3e9bb675fb914a211369fad69b5150b477cad002ca970156ca94f6f62e12ec5dea08c048bdc27a3aa0bd1de30f541ba3852681b61b18bcb1fd4ca21702c81445d67ed7c7b4c6c3254310cd5dba3d29b39d0dd80186f2c3e3bc5fd132b43f2f91adc4c4860d65af4247d217400f26298b2b0189ba5b38e6587e2fdb895e4e0e5414"}, @NL80211_TXRATE_HT={0x26, 0x2, "1472a585a4aff42888ec5c65da9ab7fdf24eb2c27d54b3789df41f29705090ac119e"}]}]}, {0x38, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x101}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xf3}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xfe}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x10}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x81}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x5a}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x7}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x7}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x1b8, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8c, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0xc}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE={0x31, 0x5, "ed068ee78482b5b9b1e6b9c738a34ec2e8c63c4e842635533b73ba34f7c134e7923d0dc60e405a5b7b3c9adba3"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xb7}, @NL80211_TXRATE_HT={0x3b, 0x2, "6710d193b898ddda0da095aa2d275e78b30193375c58b2acc47c039fd6292b49844440492d0194e5bd204022ff9f9a8fd81f06ddead810"}]}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x7}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x11c, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x90, 0x3, "81a45833b0798b69438c16d452b76add585fb34533368ac136c62000a6bfe8725e9afb0e4b876e95f4877b100fbed5a268d8b2f545dae7c002c716c8b00e46d26d4235f6a004ab977a7292a997c20ac1dbeb6a4e3d6816597c4603e87690f315083c1f97e014e84d9fbda7993f61124f4eefdfd76d81c21aade3b046c796f1902eb1933040052d27ef816f3c"}, @NL80211_TXRATE_HE={0x33, 0x5, "362520778508b33d8b37c159353d5dd104bd3d5346b965445a24617aee08a1d6d391c1bcf5ec847c4ea09c0bbd190e"}, @NL80211_TXRATE_HT={0xa, 0x2, "761382f5dc25"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xa4}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x8a}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, "4b3e7c247011778a0f8a365be1541fda8c42b689c726a1f449"}, @NL80211_TXRATE_GI={0x5, 0x4, 0x13}]}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x9}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x7f}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x7fff}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x96}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x9}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x4}]}]}]}, 0x664}, 0x1, 0x0, 0x0, 0x80}, 0x40080)
sysfs$auto(0x2, 0x1a, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
fsopen$auto(0x0, 0x1)
fsconfig$auto(r2, 0x3, &(0x7f0000000000)='4\x93f\x06\x04\x00\x00', &(0x7f0000000040), 0x7f)

2.411276711s ago: executing program 1 (id=1109):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
io_uring_setup$auto(0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sysfs$auto(0x2, 0xd, 0x0)
r0 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)

2.406112705s ago: executing program 2 (id=1110):
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x103a42, 0x0)
sendfile$auto(r0, r1, 0x0, 0x3)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/apparmor/parameters/audit\x00', 0xb02, 0x0)
sendfile$auto(r2, r2, 0x0, 0x8)

2.023799916s ago: executing program 1 (id=1111):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r1, &(0x7f0000005380)={0x0, 0xe4, &(0x7f0000005340)={&(0x7f0000000180)={0x14, r2, 0x1, 0x870bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000003500)={0x14, r2, 0x1, 0x70bd2b, 0xa5dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

1.8589741s ago: executing program 2 (id=1112):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
socket(0x2, 0x1, 0x106)
r0 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r0, 0x84, 0x70, 0x0, &(0x7f0000000240)=0x10009b)
r1 = getsockopt$auto(0xffffffffffffffff, 0x110, 0x9, 0xffffffffffffffff, 0x0)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x80040, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x1e, 0x805, 0x0)
read$auto_deferred_devs_fops_(r1, &(0x7f0000000080)=""/243, 0xf3)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x2000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)={0x2c, r4, 0x1, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x278e18a297a8387c}, 0x24000802)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r5, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r5)
read$auto(r5, &(0x7f0000000100)='nl80211\x00', 0xbe62)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r1)
sendmsg$auto_NL80211_CMD_SET_STATION(r3, &(0x7f0000000980)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000940)={&(0x7f0000000280)={0x54c, r6, 0x4, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xa9}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x99, 0xac, "600f86e0caacb08c7fc6b4014457376fb1458652584f462b1d0a7e80f8cd812bb1ca6cc96fea0345b21a77eb5c45b1d8f337ecc4fad6a1a1fb4935699aa0bb333469e6e7c8cf71383ff4f4c1c2254b87dfd58bfe433ccafc548785b09187077b8f7755c6aceb0c54ba0c806a04d1ae5321b4b902b5443501c22cf7866a70470ed9e2f1b5860b826ae0aeabd298fee59ab992781e53"}, @NL80211_ATTR_TID_CONFIG={0x494, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x8}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1000}]}, {0x310, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x9}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xed}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x2fc, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HE={0xcd, 0x5, "6ae0aecff52a1accec7fa3c4b6aefab81aded08b7a0554a87d3004806aadf941f89cae75a5246167dd99c6c49583f681af5d90e344e766d115d4300193d0fe61b34823df3a13d685f8005d0c50e1371b2362ea49da775ce767d65e7801cbaff546943655bb2e0e48ee08443370b769b29a54c8b0a5c1d077c70f462eada18d4265e2f58808e37c7272fb453a5112644e485d51f5380ab89c00bff3882489c4bcde82d8353656a430e7ac71a17b28dd3b3e4c1d38921cd934921100775030866cf0ff1a107e2a368799"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x4}, @NL80211_TXRATE_HE={0x81, 0x5, "c8ac9130ce822f8c7c4b5e8e73ce3ebfe8e1bcca851620d51be5b6863da8b0b7739340f4a0ba8cf44995f38dbb04252a9c5ad622865072eac27b20a965fb29fa6e8c1aeda20fdba33289922dc355af7e3e70f97a6f508a15d2a8b411d44adcea37df9eb7e9d174f0bacb860e2203160b7458d899fd4a0797e9e932609f"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x80}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x7}, @NL80211_TXRATE_HE={0xdc, 0x5, "2c40be7f6a470bd8ea3a39680250af528756185736dfe15ca9fc47e50d271fcd0f774d3dcfe4a9a9894c3ab3e12340cc8ca962aa7a6667cf7530d839c7b18a5f519373c702909c4f20929b5609dae45d6676fe7edd3a9552a22dbd9568c67be65f19fff7a42ff40fd24050810f79278a90d0e013ff9b7406e5adf085433b0986942e1b99d1056a0eddd2106e3c03718388cb640a1da7e37dc41220fe826c22e656419876b376a1388d9c24103714699aa4a4dc86e944d1a20a3fa0d2de91d731eac16e0b05173764c81ff5b872f3e690e97782abce6c8663"}, @NL80211_TXRATE_HE={0x87, 0x5, "776d3e9bb675fb914a211369fad69b5150b477cad002ca970156ca94f6f62e12ec5dea08c048bdc27a3aa0bd1de30f541ba3852681b61b18bcb1fd4ca21702c81445d67ed7c7b4c6c3254310cd5dba3d29b39d0dd80186f2c3e3bc5fd132b43f2f91adc4c4860d65af4247d217400f26298b2b0189ba5b38e6587e2fdb895e4e0e5414"}, @NL80211_TXRATE_HT={0x26, 0x2, "1472a585a4aff42888ec5c65da9ab7fdf24eb2c27d54b3789df41f29705090ac119e"}]}]}, {0x38, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x101}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xf3}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xfe}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x10}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x81}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x5a}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x7}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x7}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0xa0, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8c, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0xc}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE={0x31, 0x5, "ed068ee78482b5b9b1e6b9c738a34ec2e8c63c4e842635533b73ba34f7c134e7923d0dc60e405a5b7b3c9adba3"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xb7}, @NL80211_TXRATE_HT={0x3b, 0x2, "6710d193b898ddda0da095aa2d275e78b30193375c58b2acc47c039fd6292b49844440492d0194e5bd204022ff9f9a8fd81f06ddead810"}]}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x7}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x4}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x9}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x7f}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x7fff}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x96}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x9}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x4}]}]}]}, 0x54c}, 0x1, 0x0, 0x0, 0x80}, 0x40080)
sysfs$auto(0x2, 0x1a, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
fsopen$auto(0x0, 0x1)
fsconfig$auto(r2, 0x3, &(0x7f0000000000)='4\x93f\x06\x04\x00\x00', &(0x7f0000000040), 0x7f)

1.657992858s ago: executing program 1 (id=1113):
r0 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x3, 0x3a)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="17000000", @ANYBLOB='U'], 0x1ac}, 0x1, 0x0, 0x0, 0x663e94553c5db1d5}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x6, &(0x7f0000000100)={0x0, 0x1}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x5, 0x4000a98)

1.449549185s ago: executing program 0 (id=1114):
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
setsockopt$auto(0x3, 0x10000000084, 0x80, 0x0, 0x8)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)

1.373197404s ago: executing program 3 (id=1115):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/system/cpu/cpu0/hotplug/fail\x00', 0x808882, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000b80)='/proc/sys/kernel/kptr_restrict\x00', 0x202, 0x0)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0)
write$auto(0x3, 0x0, 0xfdef)

1.270694475s ago: executing program 1 (id=1116):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000340), 0x2000, 0x0)

1.170063022s ago: executing program 2 (id=1117):
mmap$auto(0x0, 0x402000a, 0xffffffffffffffff, 0x400eb1, 0x401, 0x8000)
socket(0xa, 0x3, 0x3a)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x565)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/usbip-vudc.0/usbip_sockfd\x00', 0x103841, 0x0)
write$auto(r0, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xabxo\xd9\x90\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xa5\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5Y\a\xc1\xe9(\x85R\x96\xe4\x86\\\x13\xa9\x1a&\x19\x8a9\x82\xf0\x83\f\xf7\xeb\x00\x00\x00\x00\x00\x00\x00\x00v\x92<e\x8b?#a\xa3 \xaa\x19\xde}\x10\xa4\x95\x02\x12\xbb\x13\xeb<\xc8x\x86\xc6\x12w2u\xe5\xb0\x8f\xda\x88R\xf4 @\xdc\x8e\xaa\xf0{\xa8,\xa3\xc7\x01\\\x03(\xc0\xb3\xf3\xf80eqo\x1a\xe0\xc6\xd9\xcf\xab\xf4_\xf2', 0x100000000)

796.888667ms ago: executing program 3 (id=1118):
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000840}, 0x2000c840)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0xa)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x20f41, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7112}, 0x8)

747.379498ms ago: executing program 1 (id=1119):
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x900, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
lseek$auto(0x3, 0x0, 0x1)
munmap$auto(0x8000, 0xffffffff)
symlink$auto(0x0, 0x0)

722.850492ms ago: executing program 2 (id=1120):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x15)
syz_clone3(&(0x7f0000000300)={0x28020000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
write$auto(0xffffffffffffffff, 0x0, 0xb)

650.935759ms ago: executing program 0 (id=1121):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2000a, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
r1 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x30008000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000229bd7000ffffdf251300000002000000060000000500050008ec000005001d0004000000050017000d00000005082800120000000500210002000000444b4df203b44ba88acee348b76604eda58e2fd25e1be09b04053a41ce"], 0x44}}, 0x480)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="e0000000", @ANYRESOCT=r0, @ANYBLOB="000225bd7000fcdbdf251300000005001900ff000000050031000200000005002100490000001f00160041257fbd06fe8d9e1b53db4978a05fb198fa34ef11ff48b64add810084001e00f85ee71f959a30e226bb614d465893a1435593333f77e38723f28f1204b4ae1c19758c5c25bb58ad8689e4e12783e94906ac1ec1e3c10400000000000000db3e0f9adebdd26c318ebe557360648ed598e033c398603d709bea39bbe8d8425de6e0b87d1452e8bb151d93069acb3629e7bca9004e9770a971b508116370d78437050018000700000005003400cd000000e2b5bec4b31af4caef30047aaf9b95bb5fcd5a8b64b6746d7b0e98ea3c7692a45576c00ee435f88f6cf6f55e7f180ae0e90ce592bcacb5510c2d71b890fb409dde44b9cf51f507fd29faf675af66ee48a2b2dbcd407e048dfd12790242b2cdc60ff7782db8b7b076960829bb2cca16bdfe47530562b298fd0392127745676d5cb492d9728aefcb7337"], 0xe0}}, 0x80)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0xb)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0xfdef)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x8040)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)

615.719738ms ago: executing program 3 (id=1122):
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0)
pread64$auto(r0, 0x0, 0x0, 0x9)
read$auto_mon_fops_text_t_mon_text(r0, 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)

504.09519ms ago: executing program 0 (id=1123):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x8, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0x8941, 0x4)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000000), r1)

276.580562ms ago: executing program 0 (id=1124):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x40, 0x0)
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x40001, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x165840, 0x151)
mmap$auto(0x0, 0x9, 0xff7, 0x8000000008011, 0x4, 0x0)
mmap$auto(0x0, 0x9, 0xff7, 0x8000000008012, 0x1000000004, 0x0)

230.20914ms ago: executing program 3 (id=1125):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
getsockopt$auto(0x6, 0x1, 0xb, 0xfffffffffffffffc, 0x0)

220.133506ms ago: executing program 1 (id=1126):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
socket(0x2, 0x1, 0x106)
r0 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r0, 0x84, 0x70, 0x0, &(0x7f0000000240)=0x10009b)
r1 = getsockopt$auto(0xffffffffffffffff, 0x110, 0x9, 0xffffffffffffffff, 0x0)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x80040, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x1e, 0x805, 0x0)
read$auto_deferred_devs_fops_(r1, &(0x7f0000000080)=""/243, 0xf3)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x2000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)={0x2c, r4, 0x1, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x278e18a297a8387c}, 0x24000802)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r5, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r5)
read$auto(r5, &(0x7f0000000100)='nl80211\x00', 0xbe62)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r1)
sendmsg$auto_NL80211_CMD_SET_STATION(r3, &(0x7f0000000980)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000940)={&(0x7f0000000280)={0x668, r6, 0x4, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xa9}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x99, 0xac, "600f86e0caacb08c7fc6b4014457376fb1458652584f462b1d0a7e80f8cd812bb1ca6cc96fea0345b21a77eb5c45b1d8f337ecc4fad6a1a1fb4935699aa0bb333469e6e7c8cf71383ff4f4c1c2254b87dfd58bfe433ccafc548785b09187077b8f7755c6aceb0c54ba0c806a04d1ae5321b4b902b5443501c22cf7866a70470ed9e2f1b5860b826ae0aeabd298fee59ab992781e53"}, @NL80211_ATTR_TID_CONFIG={0x5b0, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x8}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1000}]}, {0x310, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x9}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xed}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x2fc, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HE={0xcd, 0x5, "6ae0aecff52a1accec7fa3c4b6aefab81aded08b7a0554a87d3004806aadf941f89cae75a5246167dd99c6c49583f681af5d90e344e766d115d4300193d0fe61b34823df3a13d685f8005d0c50e1371b2362ea49da775ce767d65e7801cbaff546943655bb2e0e48ee08443370b769b29a54c8b0a5c1d077c70f462eada18d4265e2f58808e37c7272fb453a5112644e485d51f5380ab89c00bff3882489c4bcde82d8353656a430e7ac71a17b28dd3b3e4c1d38921cd934921100775030866cf0ff1a107e2a368799"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x4}, @NL80211_TXRATE_HE={0x81, 0x5, "c8ac9130ce822f8c7c4b5e8e73ce3ebfe8e1bcca851620d51be5b6863da8b0b7739340f4a0ba8cf44995f38dbb04252a9c5ad622865072eac27b20a965fb29fa6e8c1aeda20fdba33289922dc355af7e3e70f97a6f508a15d2a8b411d44adcea37df9eb7e9d174f0bacb860e2203160b7458d899fd4a0797e9e932609f"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x80}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x7}, @NL80211_TXRATE_HE={0xdc, 0x5, "2c40be7f6a470bd8ea3a39680250af528756185736dfe15ca9fc47e50d271fcd0f774d3dcfe4a9a9894c3ab3e12340cc8ca962aa7a6667cf7530d839c7b18a5f519373c702909c4f20929b5609dae45d6676fe7edd3a9552a22dbd9568c67be65f19fff7a42ff40fd24050810f79278a90d0e013ff9b7406e5adf085433b0986942e1b99d1056a0eddd2106e3c03718388cb640a1da7e37dc41220fe826c22e656419876b376a1388d9c24103714699aa4a4dc86e944d1a20a3fa0d2de91d731eac16e0b05173764c81ff5b872f3e690e97782abce6c8663"}, @NL80211_TXRATE_HE={0x87, 0x5, "776d3e9bb675fb914a211369fad69b5150b477cad002ca970156ca94f6f62e12ec5dea08c048bdc27a3aa0bd1de30f541ba3852681b61b18bcb1fd4ca21702c81445d67ed7c7b4c6c3254310cd5dba3d29b39d0dd80186f2c3e3bc5fd132b43f2f91adc4c4860d65af4247d217400f26298b2b0189ba5b38e6587e2fdb895e4e0e5414"}, @NL80211_TXRATE_HT={0x26, 0x2, "1472a585a4aff42888ec5c65da9ab7fdf24eb2c27d54b3789df41f29705090ac119e"}]}]}, {0x38, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x101}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xf3}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xfe}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x10}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x81}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x5a}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x7}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x7}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x1bc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8c, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0xc}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE={0x31, 0x5, "ed068ee78482b5b9b1e6b9c738a34ec2e8c63c4e842635533b73ba34f7c134e7923d0dc60e405a5b7b3c9adba3"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xb7}, @NL80211_TXRATE_HT={0x3b, 0x2, "6710d193b898ddda0da095aa2d275e78b30193375c58b2acc47c039fd6292b49844440492d0194e5bd204022ff9f9a8fd81f06ddead810"}]}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x7}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x120, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x90, 0x3, "81a45833b0798b69438c16d452b76add585fb34533368ac136c62000a6bfe8725e9afb0e4b876e95f4877b100fbed5a268d8b2f545dae7c002c716c8b00e46d26d4235f6a004ab977a7292a997c20ac1dbeb6a4e3d6816597c4603e87690f315083c1f97e014e84d9fbda7993f61124f4eefdfd76d81c21aade3b046c796f1902eb1933040052d27ef816f3c"}, @NL80211_TXRATE_HE={0x33, 0x5, "362520778508b33d8b37c159353d5dd104bd3d5346b965445a24617aee08a1d6d391c1bcf5ec847c4ea09c0bbd190e"}, @NL80211_TXRATE_HT={0xa, 0x2, "761382f5dc25"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xa4}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x8a}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, "4b3e7c247011778a0f8a365be1541fda8c42b689c726a1f449"}, @NL80211_TXRATE_GI={0x5, 0x4, 0x13}, @NL80211_TXRATE_LEGACY={0x4}]}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x9}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x7f}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x7fff}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x96}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x9}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x4}]}]}]}, 0x668}, 0x1, 0x0, 0x0, 0x80}, 0x40080)
sysfs$auto(0x2, 0x1a, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
fsopen$auto(0x0, 0x1)
fsconfig$auto(r2, 0x3, &(0x7f0000000000)='4\x93f\x06\x04\x00\x00', &(0x7f0000000040), 0x7f)

9.800004ms ago: executing program 0 (id=1127):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0)
sendfile$auto(r0, r1, 0x0, 0x1)

0s ago: executing program 3 (id=1128):
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x1579c0, 0x0)
writev$auto(0x3, 0x0, 0x8)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0)

kernel console output (not intermixed with test programs):

[ T6401]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  148.999001][ T6401]  ? alloc_inode+0x64/0x240
[  148.999056][ T6401]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  148.999092][ T6401]  alloc_inode+0x64/0x240
[  148.999141][ T6401]  new_inode+0x22/0x1c0
[  148.999195][ T6401]  __debugfs_create_file+0x11c/0x6b0
[  148.999240][ T6401]  debugfs_create_file_full+0x41/0x60
[  148.999286][ T6401]  ? __pfx_sl_setup+0x10/0x10
[  148.999329][ T6401]  ref_tracker_dir_debugfs+0x19d/0x290
[  148.999393][ T6401]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  148.999479][ T6401]  ? __kvmalloc_node_noprof+0x298/0x620
[  148.999517][ T6401]  ? sprintf+0xcc/0x100
[  148.999560][ T6401]  ? lockdep_init_map_type+0x5c/0x280
[  148.999616][ T6401]  alloc_netdev_mqs+0x30f/0x1530
[  148.999674][ T6401]  slip_open+0x35c/0x1150
[  148.999724][ T6401]  ? __pfx___might_resched+0x10/0x10
[  148.999758][ T6401]  ? __pfx_n_tty_close+0x10/0x10
[  148.999787][ T6401]  ? find_held_lock+0x2b/0x80
[  148.999818][ T6401]  ? __pfx_slip_open+0x10/0x10
[  148.999866][ T6401]  ? down_write+0x14d/0x200
[  148.999918][ T6401]  ? __pfx_slip_open+0x10/0x10
[  148.999968][ T6401]  tty_ldisc_open+0x9f/0x120
[  149.000009][ T6401]  tty_set_ldisc+0x32b/0x780
[  149.000057][ T6401]  tty_ioctl+0xc2e/0x1680
[  149.000105][ T6401]  ? __pfx_tty_ioctl+0x10/0x10
[  149.000165][ T6401]  ? find_held_lock+0x2b/0x80
[  149.000197][ T6401]  ? hook_file_ioctl_common+0x145/0x410
[  149.000253][ T6401]  ? __fget_files+0x20e/0x3c0
[  149.000298][ T6401]  ? __pfx_tty_ioctl+0x10/0x10
[  149.000361][ T6401]  __x64_sys_ioctl+0x18e/0x210
[  149.000426][ T6401]  do_syscall_64+0xcd/0x490
[  149.000477][ T6401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.000511][ T6401] RIP: 0033:0x7fae82d8ebe9
[  149.000538][ T6401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.000571][ T6401] RSP: 002b:00007fae83ca7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  149.000603][ T6401] RAX: ffffffffffffffda RBX: 00007fae82fb6090 RCX: 00007fae82d8ebe9
[  149.000625][ T6401] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 000000000000000e
[  149.000644][ T6401] RBP: 00007fae82e11e19 R08: 0000000000000000 R09: 0000000000000000
[  149.000664][ T6401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  149.000682][ T6401] R13: 00007fae82fb6128 R14: 00007fae82fb6090 R15: 00007ffd3503c9d8
[  149.000725][ T6401]  </TASK>
[  149.000991][ T6401] debugfs: out of free dentries, can not create file 'netdev@ffff8880270c6610'
[  149.432903][ T6447] random: crng reseeded on system resumption
[  151.763192][ T6518] bridge0: port 3(batadv0) entered blocking state
[  151.865119][ T6518] bridge0: port 3(batadv0) entered disabled state
[  151.936713][ T6518] batadv0: entered allmulticast mode
[  151.944939][ T6518] batadv0: entered promiscuous mode
[  151.953808][ T6518] bridge0: port 3(batadv0) entered blocking state
[  151.960749][ T6518] bridge0: port 3(batadv0) entered forwarding state
[  152.441693][ T1006] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  152.451778][ T1006] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  152.488594][ T6515] syz.2.62 (6515) used greatest stack depth: 19752 bytes left
[  154.038201][ T6579] random: crng reseeded on system resumption
[  155.301654][ T6584] can: request_module (can-proto-3) failed.
[  156.994020][ T6617] random: crng reseeded on system resumption
[  159.237123][ T6661] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  161.452019][ T6728] bridge0: port 3(batadv0) entered blocking state
[  161.517348][ T6728] bridge0: port 3(batadv0) entered disabled state
[  161.552819][ T6728] batadv0: entered allmulticast mode
[  161.622311][ T6728] batadv0: entered promiscuous mode
[  161.651765][ T6728] bridge0: port 3(batadv0) entered blocking state
[  161.658363][ T6728] bridge0: port 3(batadv0) entered forwarding state
[  161.849242][ T1006] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  161.858690][ T1006] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  163.640195][ T6803] nfs: Unknown parameter 'w��`_�����I+;��	��HY� ������Lu�>>��uh�*��C<+����'
[  163.849146][ T6806] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8
[  164.250787][ T6849] netlink: 35120 bytes leftover after parsing attributes in process `syz.1.88'.
[  164.889480][ T6818] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9
[  165.611720][ T6894] ICMPv6: process `syz.1.91' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  173.367971][ T7269] vhci_hcd: invalid port number 21
[  173.993321][ T7269] capability: warning: `syz.1.104' uses 32-bit capabilities (legacy support in use)
[  178.352856][ T7461] nfs: Unknown parameter 'w��`_�����I+;��	��HY� ������Lu�>>��uh�*��C<+����'
[  178.372484][ T7455] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.652798][ T7480] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10
[  179.403803][ T7488] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11
[  180.597279][ T7355] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.698200][ T7355] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.020821][ T7355] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.185264][ T7355] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.541318][ T7355] bridge_slave_1: left allmulticast mode
[  181.557601][ T7355] bridge_slave_1: left promiscuous mode
[  181.582640][ T7355] bridge0: port 2(bridge_slave_1) entered disabled state
[  181.730833][ T7355] bridge_slave_0: left allmulticast mode
[  181.753181][ T7355] bridge_slave_0: left promiscuous mode
[  181.762732][ T7355] bridge0: port 1(bridge_slave_0) entered disabled state
[  182.668039][ T7358] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  182.687815][ T7358] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  182.695909][ T7358] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  182.704937][ T7358] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  182.714366][ T7358] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  184.305053][ T7355] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  184.331900][ T7355] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  184.351001][ T7355] bond0 (unregistering): Released all slaves
[  184.776592][ T7375] Bluetooth: hci0: command tx timeout
[  185.896486][ T7355] hsr_slave_0: left promiscuous mode
[  185.909017][ T7355] hsr_slave_1: left promiscuous mode
[  185.938704][ T7355] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  185.956629][ T7355] batman_adv: batadv0: Removing interface: batadv_slave_0
[  186.020757][ T7355] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  186.053111][ T7355] batman_adv: batadv0: Removing interface: batadv_slave_1
[  186.284061][ T7355] veth1_macvtap: left promiscuous mode
[  186.317200][ T7355] veth0_macvtap: left promiscuous mode
[  186.324717][ T7355] veth1_vlan: left promiscuous mode
[  186.330697][ T7355] veth0_vlan: left promiscuous mode
[  186.846594][ T7375] Bluetooth: hci0: command tx timeout
[  187.995366][ T7355] team0 (unregistering): Port device team_slave_1 removed
[  188.097062][ T7355] team0 (unregistering): Port device team_slave_0 removed
[  188.928558][ T7375] Bluetooth: hci0: command tx timeout
[  189.719255][ T7606] chnl_net:caif_netlink_parms(): no params data found
[  190.438548][ T7606] bridge0: port 1(bridge_slave_0) entered blocking state
[  190.466700][ T7606] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.473994][ T7606] bridge_slave_0: entered allmulticast mode
[  190.546948][ T7606] bridge_slave_0: entered promiscuous mode
[  190.586589][ T7606] bridge0: port 2(bridge_slave_1) entered blocking state
[  190.612944][ T7606] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.630262][ T7606] bridge_slave_1: entered allmulticast mode
[  190.668625][ T7606] bridge_slave_1: entered promiscuous mode
[  190.832611][ T7606] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  190.921825][ T7606] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  190.939728][ T7965] netlink: 35120 bytes leftover after parsing attributes in process `syz.2.137'.
[  191.006930][ T7375] Bluetooth: hci0: command tx timeout
[  191.230689][ T7606] team0: Port device team_slave_0 added
[  191.434475][ T7606] team0: Port device team_slave_1 added
[  191.755160][ T7606] batman_adv: batadv0: Adding interface: batadv_slave_0
[  191.809609][ T7606] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  191.946455][ T7606] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  192.204089][ T7606] batman_adv: batadv0: Adding interface: batadv_slave_1
[  192.233071][ T8049] vivid-007: =================  START STATUS  =================
[  192.253421][ T7606] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  192.281539][ T8049] vivid-007: Generate PTS: true
[  192.296705][ T8049] vivid-007: Generate SCR: true
[  192.301683][ T8049] tpg source WxH: 320x240 (Y'CbCr)
[  192.346967][ T8049] tpg field: 1
[  192.350859][ T8049] tpg crop: (0,0)/320x240
[  192.355237][ T8049] tpg compose: (0,0)/320x240
[  192.389126][ T8049] tpg colorspace: 8
[  192.399298][ T7606] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  192.417212][ T8049] tpg transfer function: 0/0
[  192.421839][ T8049] tpg Y'CbCr encoding: 0/0
[  192.464061][ T8049] tpg quantization: 0/0
[  192.516686][ T8049] tpg RGB range: 0/2
[  192.520715][ T8049] vivid-007: ==================  END STATUS  ==================
[  193.159314][ T8049] can: request_module (can-proto-3) failed.
[  193.678984][ T7606] hsr_slave_0: entered promiscuous mode
[  193.707426][ T7606] hsr_slave_1: entered promiscuous mode
[  196.688853][ T8262] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  196.731072][ T7606] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  196.758915][ T7606] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  196.784605][ T7606] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  196.822297][ T7606] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  197.496830][ T8245] mmap: syz.2.146 (8245) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  197.535138][ T7606] 8021q: adding VLAN 0 to HW filter on device bond0
[  197.815540][ T7606] 8021q: adding VLAN 0 to HW filter on device team0
[  198.257949][ T7368] bridge0: port 1(bridge_slave_0) entered blocking state
[  198.265113][ T7368] bridge0: port 1(bridge_slave_0) entered forwarding state
[  198.301930][ T7368] bridge0: port 2(bridge_slave_1) entered blocking state
[  198.309170][ T7368] bridge0: port 2(bridge_slave_1) entered forwarding state
[  200.014330][ T7606] 8021q: adding VLAN 0 to HW filter on device batadv0
[  200.305737][ T7606] veth0_vlan: entered promiscuous mode
[  200.431787][ T7606] veth1_vlan: entered promiscuous mode
[  200.526034][ T7606] veth0_macvtap: entered promiscuous mode
[  200.539522][ T7606] veth1_macvtap: entered promiscuous mode
[  200.641707][ T7606] batman_adv: batadv0: Interface activated: batadv_slave_0
[  200.702419][ T7606] batman_adv: batadv0: Interface activated: batadv_slave_1
[  200.743070][ T7355] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  200.784376][ T7355] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  200.838526][ T7355] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  200.861220][ T7355] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  201.390276][ T7369] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  201.429136][ T7369] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  202.007884][ T7369] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  202.026952][ T7369] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  204.752445][ T8599] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12
[  205.260978][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  205.275857][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  205.781586][ T8622] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13
[  207.195144][ T8637] kexec: Could not allocate control_code_buffer
[  207.377418][ T8727] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  208.161401][ T8752] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14
[  209.136118][ T8755] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15
[  209.811684][ T8762] kexec: Could not allocate control_code_buffer
[  213.711914][ T8945] block nbd0: not configured, cannot reconfigure
[  214.357314][ T8968] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  214.695298][ T8972] vhci_hcd: invalid port number 21
[  221.145839][ T9164] ptrace attach of ""[9166] was attempted by "./syz-executor exec"[9164]
[  222.026023][ T9191] ICMPv6: process `syz.2.197' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  222.575271][ T9194] random: crng reseeded on system resumption
[  227.809247][ T9376] Bluetooth: hci3: command 0x0406 tx timeout
[  227.815311][ T9376] Bluetooth: hci1: command 0x0406 tx timeout
[  227.821976][ T9376] Bluetooth: hci2: command 0x0406 tx timeout
[  228.137335][ T9383] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  228.633295][ T9454] FAULT_INJECTION: forcing a failure.
[  228.633295][ T9454] name failslab, interval 1, probability 0, space 0, times 0
[  228.788628][ T9454] CPU: 1 UID: 0 PID: 9454 Comm: syz.1.215 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  228.788682][ T9454] Tainted: [U]=USER
[  228.788693][ T9454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  228.788713][ T9454] Call Trace:
[  228.788725][ T9454]  <TASK>
[  228.788737][ T9454]  dump_stack_lvl+0x16c/0x1f0
[  228.788790][ T9454]  should_fail_ex+0x512/0x640
[  228.788839][ T9454]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  228.788886][ T9454]  should_failslab+0xc2/0x120
[  228.788932][ T9454]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  228.788974][ T9454]  ? sk_prot_alloc+0x60/0x2a0
[  228.789052][ T9454]  sk_prot_alloc+0x60/0x2a0
[  228.789110][ T9454]  sk_alloc+0x36/0xc20
[  228.789156][ T9454]  tipc_sk_create+0xcf/0x21a0
[  228.789201][ T9454]  ? find_held_lock+0x2b/0x80
[  228.789237][ T9454]  ? __sock_create+0x2f2/0x8d0
[  228.789282][ T9454]  __sock_create+0x338/0x8d0
[  228.789313][ T9454]  __sys_socket+0x14d/0x260
[  228.789338][ T9454]  ? __pfx___sys_socket+0x10/0x10
[  228.789362][ T9454]  ? xfd_validate_state+0x61/0x180
[  228.789405][ T9454]  __x64_sys_socket+0x72/0xb0
[  228.789428][ T9454]  ? lockdep_hardirqs_on+0x7c/0x110
[  228.789458][ T9454]  do_syscall_64+0xcd/0x490
[  228.789493][ T9454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.789516][ T9454] RIP: 0033:0x7f27aa38ebe9
[  228.789546][ T9454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.789569][ T9454] RSP: 002b:00007f27ab297038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  228.789592][ T9454] RAX: ffffffffffffffda RBX: 00007f27aa5b6180 RCX: 00007f27aa38ebe9
[  228.789607][ T9454] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000001e
[  228.789621][ T9454] RBP: 00007f27aa411e19 R08: 0000000000000000 R09: 0000000000000000
[  228.789635][ T9454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  228.789649][ T9454] R13: 00007f27aa5b6218 R14: 00007f27aa5b6180 R15: 00007ffc5d216548
[  228.789679][ T9454]  </TASK>
[  234.830392][ T9725] bond0: option all_slaves_active: invalid value (
)
[  235.086455][ T7375] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  235.241317][ T9728] netlink: 4 bytes leftover after parsing attributes in process `syz.2.219'.
[  239.115358][ T9884] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  240.117230][ T9918] program syz.3.229 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  242.060647][ T9944] netlink: 4 bytes leftover after parsing attributes in process `syz.2.232'.
[  243.136260][ T9971] netlink: 28 bytes leftover after parsing attributes in process `syz.0.237'.
[  243.470751][ T9980] netlink: 4 bytes leftover after parsing attributes in process `syz.2.239'.
[  243.877649][ T9985] netlink: 4 bytes leftover after parsing attributes in process `syz.1.240'.
[  247.362110][T10105] netlink: 4 bytes leftover after parsing attributes in process `syz.2.248'.
[  249.330885][T10140] netlink: 4 bytes leftover after parsing attributes in process `syz.3.252'.
[  252.935796][T10324] netlink: 4 bytes leftover after parsing attributes in process `syz.0.262'.
[  255.337976][T10419] netlink: 4 bytes leftover after parsing attributes in process `syz.3.266'.
[  258.768895][T10519] netlink: 4 bytes leftover after parsing attributes in process `syz.3.273'.
[  261.387344][T10578] netlink: 4 bytes leftover after parsing attributes in process `syz.0.279'.
[  264.738977][T10726] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  266.690398][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  266.706650][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  268.215971][T10813] netlink: 4 bytes leftover after parsing attributes in process `syz.1.293'.
[  268.327050][T10822] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE�r��҄y�*�"�l-���y–��
[  268.487932][T10828] vivid-009: =================  START STATUS  =================
[  268.509529][T10828] vivid-009: Enable Output Cropping: true grabbed
[  268.516217][T10828] vivid-009: Enable Output Composing: true grabbed
[  268.524304][T10828] vivid-009: Enable Output Scaler: true grabbed
[  268.531153][T10828] vivid-009: Tx RGB Quantization Range: Automatic grabbed
[  268.539195][T10828] vivid-009: Transmit Mode: HDMI grabbed
[  268.546021][T10828] vivid-009: Hotplug Present: 0x00000000
[  268.602093][T10828] vivid-009: RxSense Present: 0x00000000
[  268.618352][T10828] vivid-009: EDID Present: 0x00000000
[  268.708475][T10828] vivid-009: ==================  END STATUS  ==================
[  268.826795][T10828] block nbd7: not configured, cannot reconfigure
[  269.619078][T10875] netlink: 4 bytes leftover after parsing attributes in process `syz.1.298'.

syzkaller
syzkaller login: [  272.947628][T11001] FAULT_INJECTION: forcing a failure.
[  272.947628][T11001] name failslab, interval 1, probability 0, space 0, times 0
[  273.001881][T11001] CPU: 1 UID: 0 PID: 11001 Comm: syz.2.306 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  273.001937][T11001] Tainted: [U]=USER
[  273.001949][T11001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  273.001969][T11001] Call Trace:
[  273.001980][T11001]  <TASK>
[  273.001993][T11001]  dump_stack_lvl+0x16c/0x1f0
[  273.002045][T11001]  should_fail_ex+0x512/0x640
[  273.002093][T11001]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  273.002140][T11001]  should_failslab+0xc2/0x120
[  273.002185][T11001]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  273.002229][T11001]  ? __d_alloc+0x32/0xae0
[  273.002277][T11001]  __d_alloc+0x32/0xae0
[  273.002316][T11001]  ? do_raw_spin_lock+0x12c/0x2b0
[  273.002383][T11001]  d_alloc+0x4a/0x1e0
[  273.002428][T11001]  d_alloc_name+0x83/0xb0
[  273.002470][T11001]  ? __pfx_d_alloc_name+0x10/0x10
[  273.002510][T11001]  ? __d_add+0x403/0xa50
[  273.002565][T11001]  simple_fill_super+0x2eb/0x720
[  273.002610][T11001]  ? __pfx_nfsd_fill_super+0x10/0x10
[  273.002650][T11001]  nfsd_fill_super+0x90/0x530
[  273.002688][T11001]  ? __pfx_set_anon_super_fc+0x10/0x10
[  273.002724][T11001]  ? __pfx_nfsd_fill_super+0x10/0x10
[  273.002763][T11001]  get_tree_keyed+0x10e/0x1d0
[  273.002804][T11001]  vfs_get_tree+0x8b/0x340
[  273.002834][T11001]  path_mount+0x1513/0x2000
[  273.002885][T11001]  ? __pfx_path_mount+0x10/0x10
[  273.002931][T11001]  ? kmem_cache_free+0x2d1/0x4d0
[  273.002968][T11001]  ? putname+0x154/0x1a0
[  273.003020][T11001]  ? putname+0x154/0x1a0
[  273.003071][T11001]  ? __x64_sys_mount+0x28d/0x310
[  273.003113][T11001]  __x64_sys_mount+0x28d/0x310
[  273.003158][T11001]  ? __pfx___x64_sys_mount+0x10/0x10
[  273.003216][T11001]  do_syscall_64+0xcd/0x490
[  273.003265][T11001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.003299][T11001] RIP: 0033:0x7fae82d8ebe9
[  273.003326][T11001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.003364][T11001] RSP: 002b:00007fae83ca7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  273.003397][T11001] RAX: ffffffffffffffda RBX: 00007fae82fb6090 RCX: 00007fae82d8ebe9
[  273.003419][T11001] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[  273.003441][T11001] RBP: 00007fae82e11e19 R08: 0000000000000000 R09: 0000000000000000
[  273.003463][T11001] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[  273.003483][T11001] R13: 00007fae82fb6128 R14: 00007fae82fb6090 R15: 00007ffd3503c9d8
[  273.003528][T11001]  </TASK>
[  273.903694][T10946] ima: policy update failed
[  273.928625][   T31] audit: type=1802 audit(1756152153.103:5): pid=10946 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.303" res=0 errno=0
[  274.630721][T11045] netlink: 4 bytes leftover after parsing attributes in process `syz.3.310'.
[  274.988577][   T31] audit: type=1804 audit(1756152154.163:6): pid=11046 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.308" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  279.364605][T11177] netlink: 4 bytes leftover after parsing attributes in process `syz.0.319'.
[  282.253978][T11295] futex_wake_op: syz.2.333 tries to shift op by -2048; fix this program
[  282.263149][T11295] futex_wake_op: syz.2.333 tries to shift op by -2048; fix this program
[  283.412294][T11299] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  284.386700][T11367] netlink: 4 bytes leftover after parsing attributes in process `syz.3.327'.
[  285.923914][T11443] netlink: 4 bytes leftover after parsing attributes in process `syz.3.331'.
[  286.765302][T11475] netlink: 4 bytes leftover after parsing attributes in process `syz.0.332'.
[  287.610179][T11517] svc: failed to register nfsdv3 RPC service (errno 111).
[  287.662960][T11517] svc: failed to register nfsaclv3 RPC service (errno 111).
[  290.420413][T11627] netlink: 4 bytes leftover after parsing attributes in process `syz.3.341'.
[  291.918058][T11668] FAULT_INJECTION: forcing a failure.
[  291.918058][T11668] name failslab, interval 1, probability 0, space 0, times 0
[  291.987885][T11668] CPU: 0 UID: 0 PID: 11668 Comm: syz.2.343 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  291.987933][T11668] Tainted: [U]=USER
[  291.987941][T11668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  291.987954][T11668] Call Trace:
[  291.987962][T11668]  <TASK>
[  291.987971][T11668]  dump_stack_lvl+0x16c/0x1f0
[  291.988008][T11668]  should_fail_ex+0x512/0x640
[  291.988042][T11668]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  291.988072][T11668]  should_failslab+0xc2/0x120
[  291.988105][T11668]  __kmalloc_cache_noprof+0x6a/0x3e0
[  291.988130][T11668]  ? do_eventfd+0x67/0x2c0
[  291.988169][T11668]  do_eventfd+0x67/0x2c0
[  291.988201][T11668]  ? rcu_is_watching+0x12/0xc0
[  291.988226][T11668]  __x64_sys_eventfd+0x32/0x50
[  291.988261][T11668]  do_syscall_64+0xcd/0x490
[  291.988296][T11668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.988320][T11668] RIP: 0033:0x7fae82d8ebe9
[  291.988338][T11668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  291.988360][T11668] RSP: 002b:00007fae83ca7038 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[  291.988382][T11668] RAX: ffffffffffffffda RBX: 00007fae82fb6090 RCX: 00007fae82d8ebe9
[  291.988397][T11668] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  291.988410][T11668] RBP: 00007fae82e11e19 R08: 0000000000000000 R09: 0000000000000000
[  291.988424][T11668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  291.988437][T11668] R13: 00007fae82fb6128 R14: 00007fae82fb6090 R15: 00007ffd3503c9d8
[  291.988466][T11668]  </TASK>
[  293.011904][T11703] netlink: 4 bytes leftover after parsing attributes in process `syz.1.345'.
[  293.815666][T11750] netlink: 4 bytes leftover after parsing attributes in process `syz.0.349'.
[  293.858567][T11750] FAULT_INJECTION: forcing a failure.
[  293.858567][T11750] name failslab, interval 1, probability 0, space 0, times 0
[  293.901835][T11750] CPU: 0 UID: 0 PID: 11750 Comm: syz.0.349 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  293.901882][T11750] Tainted: [U]=USER
[  293.901892][T11750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  293.901909][T11750] Call Trace:
[  293.901919][T11750]  <TASK>
[  293.901929][T11750]  dump_stack_lvl+0x16c/0x1f0
[  293.901974][T11750]  should_fail_ex+0x512/0x640
[  293.902015][T11750]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  293.902056][T11750]  should_failslab+0xc2/0x120
[  293.902094][T11750]  __kmalloc_cache_noprof+0x6a/0x3e0
[  293.902121][T11750]  ? __lock_acquire+0xb97/0x1ce0
[  293.902158][T11750]  ? snd_timer_instance_new+0x47/0x2e0
[  293.902207][T11750]  snd_timer_instance_new+0x47/0x2e0
[  293.902251][T11750]  snd_seq_timer_open+0x1cc/0x600
[  293.902290][T11750]  ? __pfx_snd_seq_timer_open+0x10/0x10
[  293.902330][T11750]  ? find_held_lock+0x2b/0x80
[  293.902362][T11750]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  293.902395][T11750]  ? lockdep_hardirqs_on+0x7c/0x110
[  293.902430][T11750]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  293.902467][T11750]  queue_use+0xe3/0x250
[  293.902496][T11750]  snd_seq_queue_alloc+0x2e5/0x5a0
[  293.902532][T11750]  snd_seq_ioctl_create_queue+0xa9/0x380
[  293.902575][T11750]  snd_seq_kernel_client_ctl+0x10a/0x1c0
[  293.902622][T11750]  alloc_seq_queue+0xda/0x180
[  293.902665][T11750]  ? __pfx_alloc_seq_queue+0x10/0x10
[  293.902730][T11750]  ? mark_held_locks+0x49/0x80
[  293.902763][T11750]  ? _raw_spin_unlock_irq+0x23/0x50
[  293.902799][T11750]  snd_seq_oss_open+0x38c/0xa20
[  293.902851][T11750]  odev_open+0x6f/0x90
[  293.902889][T11750]  ? __pfx_odev_open+0x10/0x10
[  293.902927][T11750]  soundcore_open+0x40c/0x580
[  293.902970][T11750]  ? __pfx_soundcore_open+0x10/0x10
[  293.903008][T11750]  chrdev_open+0x234/0x6a0
[  293.903050][T11750]  ? __pfx_apparmor_file_open+0x10/0x10
[  293.903082][T11750]  ? __pfx_chrdev_open+0x10/0x10
[  293.903122][T11750]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  293.903161][T11750]  do_dentry_open+0x982/0x1530
[  293.903198][T11750]  ? __pfx_chrdev_open+0x10/0x10
[  293.903241][T11750]  vfs_open+0x82/0x3f0
[  293.903286][T11750]  path_openat+0x1de4/0x2cb0
[  293.903331][T11750]  ? __pfx_path_openat+0x10/0x10
[  293.903373][T11750]  do_filp_open+0x20b/0x470
[  293.903407][T11750]  ? __pfx_do_filp_open+0x10/0x10
[  293.903465][T11750]  ? alloc_fd+0x471/0x7d0
[  293.903510][T11750]  do_sys_openat2+0x11b/0x1d0
[  293.903558][T11750]  ? __pfx_do_sys_openat2+0x10/0x10
[  293.903623][T11750]  __x64_sys_openat+0x174/0x210
[  293.903672][T11750]  ? __pfx___x64_sys_openat+0x10/0x10
[  293.903740][T11750]  do_syscall_64+0xcd/0x490
[  293.903786][T11750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.903820][T11750] RIP: 0033:0x7fb5c658ebe9
[  293.903845][T11750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.903875][T11750] RSP: 002b:00007fb5c7490038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  293.903905][T11750] RAX: ffffffffffffffda RBX: 00007fb5c67b5fa0 RCX: 00007fb5c658ebe9
[  293.903926][T11750] RDX: 0000000000000042 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  293.903946][T11750] RBP: 00007fb5c6611e19 R08: 0000000000000000 R09: 0000000000000000
[  293.903965][T11750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  293.903984][T11750] R13: 00007fb5c67b6038 R14: 00007fb5c67b5fa0 R15: 00007ffdfb7f1348
[  293.904025][T11750]  </TASK>
[  294.501865][T11766] CIFS: VFS: Invalid SecurityFlags: 
[  296.067967][T11828] sd 0:0:1:0: PR command failed: 1026
[  296.083255][T11828] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  296.146716][T11828] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  296.317381][T11841] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  298.800041][T11868] Invalid ELF header magic: != ELF
[  299.122520][T11920] CIFS: VFS: Invalid SecurityFlags: 
[  299.233134][T11912] netlink: 4 bytes leftover after parsing attributes in process `syz.2.361'.
[  300.154727][T11947] Console: switching to colour VGA+ 80x25
[  301.249194][T11964] netlink: 4 bytes leftover after parsing attributes in process `syz.3.363'.
[  304.009546][T12089] openvswitch: netlink: Multiple metadata blocks provided
[  304.030293][T12096] netlink: 4 bytes leftover after parsing attributes in process `syz.0.370'.
[  304.834473][T12113] netlink: 4 bytes leftover after parsing attributes in process `syz.1.372'.
[  307.131608][T12178] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16
[  307.494055][T12184] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17
[  309.730600][ T7610] Bluetooth: hci0: command 0x0406 tx timeout
[  309.885432][T12309] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18
[  310.701411][T12320] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19
[  312.627674][T12457] netlink: 330 bytes leftover after parsing attributes in process `syz.1.387'.
[  312.637468][T12457] mac80211_hwsim hwsim3 �: renamed from wlan0 (while UP)
[  314.088906][T12472] FAULT_INJECTION: forcing a failure.
[  314.088906][T12472] name failslab, interval 1, probability 0, space 0, times 0
[  314.101914][T12472] CPU: 0 UID: 0 PID: 12472 Comm: syz.2.391 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  314.101950][T12472] Tainted: [U]=USER
[  314.101958][T12472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  314.101981][T12472] Call Trace:
[  314.101993][T12472]  <TASK>
[  314.102002][T12472]  dump_stack_lvl+0x116/0x1f0
[  314.102038][T12472]  should_fail_ex+0x512/0x640
[  314.102077][T12472]  should_failslab+0xc2/0x120
[  314.102110][T12472]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  314.102140][T12472]  ? __send_signal_locked+0x159/0x12c0
[  314.102179][T12472]  ? sig_get_ucounts+0x1c0/0x5b0
[  314.102216][T12472]  __send_signal_locked+0x159/0x12c0
[  314.102262][T12472]  group_send_sig_info+0x2a4/0x300
[  314.102293][T12472]  ? __pfx_group_send_sig_info+0x10/0x10
[  314.102331][T12472]  ? kill_pid_info_type+0x1a/0x2a0
[  314.102379][T12472]  kill_pid_info_type+0x92/0x2a0
[  314.102413][T12472]  kill_proc_info+0x6f/0x1b0
[  314.102448][T12472]  kill_something_info+0x2a2/0x310
[  314.102477][T12472]  ? __task_pid_nr_ns+0x186/0x500
[  314.102515][T12472]  __x64_sys_kill+0xd7/0x140
[  314.102546][T12472]  ? __pfx___x64_sys_kill+0x10/0x10
[  314.102586][T12472]  ? rcu_is_watching+0x12/0xc0
[  314.102613][T12472]  do_syscall_64+0xcd/0x490
[  314.102648][T12472]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.102671][T12472] RIP: 0033:0x7fae82d8ebe9
[  314.102691][T12472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  314.102713][T12472] RSP: 002b:00007fae83cc8038 EFLAGS: 00000246 ORIG_RAX: 000000000000003e
[  314.102735][T12472] RAX: ffffffffffffffda RBX: 00007fae82fb5fa0 RCX: 00007fae82d8ebe9
[  314.102750][T12472] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 00000000000001fc
[  314.102764][T12472] RBP: 00007fae82e11e19 R08: 0000000000000000 R09: 0000000000000000
[  314.102778][T12472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  314.102792][T12472] R13: 00007fae82fb6038 R14: 00007fae82fb5fa0 R15: 00007ffd3503c9d8
[  314.102822][T12472]  </TASK>
[  315.893672][   T31] audit: type=1800 audit(1756152195.073:7): pid=12546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.394" name="members" dev="configfs" ino=20452 res=0 errno=0
[  316.354919][T12554] random: crng reseeded on system resumption
[  317.204965][T12559] netlink: 4 bytes leftover after parsing attributes in process `syz.3.396'.
[  318.800207][T12639] random: crng reseeded on system resumption
[  321.007434][   T31] audit: type=1800 audit(1756152200.203:8): pid=12665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.402" name="dbroot" dev="configfs" ino=21682 res=0 errno=0
[  321.633153][T12691] netlink: 28 bytes leftover after parsing attributes in process `syz.1.406'.
[  324.273605][T12816] can: request_module (can-proto-0) failed.
[  328.136818][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  328.143220][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  328.466265][T12930] futex_wake_op: syz.0.417 tries to shift op by -2048; fix this program
[  328.491376][T12930] futex_wake_op: syz.0.417 tries to shift op by -2048; fix this program
[  329.201311][T12964] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20
[  329.968803][T12923] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  330.771470][T12995] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1585710243.2098302407.4233326427), cmd(10)
[  331.425566][T13046] ecryptfs_miscdev_write: Invalid packet size [111]
[  331.484491][T13048] random: crng reseeded on system resumption
[  333.642520][   T31] audit: type=1804 audit(1756152212.833:9): pid=13142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.428" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  337.250394][T13318] netlink: 24 bytes leftover after parsing attributes in process `syz.3.436'.
[  338.250368][T13335] netlink: 4 bytes leftover after parsing attributes in process `syz.1.437'.
[  339.919902][T13406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.442'.
[  340.429218][   T31] audit: type=1804 audit(1756152219.623:10): pid=13418 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.443" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  341.732873][T13495] phram: not enough arguments
[  341.765595][T13495] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd12
[  342.271676][T13516] netlink: 4 bytes leftover after parsing attributes in process `syz.0.448'.
[  343.253679][T13543] nbd: couldn't find device at index 137
[  343.645812][T13546] netlink: 342 bytes leftover after parsing attributes in process `syz.3.450'.
[  344.725186][T13571] ptp ptp0: delete virtual clock ptp3
[  344.891612][T13571] ptp ptp0: delete virtual clock ptp2
[  344.907012][T13588] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  344.981647][T13571] ptp ptp0: delete virtual clock ptp1
[  345.141506][T13571] ptp ptp0: only physical clock in use now
[  346.371279][T13654] netlink: 4 bytes leftover after parsing attributes in process `syz.2.455'.
[  347.804512][T13664] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  348.007475][ T7375] Bluetooth: hci2: unexpected event 0x32 length: 10 > 9
[  348.008285][T13719] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  352.046048][T13832] netlink: 4 bytes leftover after parsing attributes in process `syz.0.470'.
[  353.569456][T13867] netlink: 28 bytes leftover after parsing attributes in process `syz.2.473'.
[  353.878051][T13864] netlink: 28 bytes leftover after parsing attributes in process `syz.2.473'.
[  354.260023][T13867] geneve1: entered promiscuous mode
[  354.310340][T13867] geneve1: entered allmulticast mode
[  356.846193][T13982] nbd: couldn't find device at index 137
[  357.317296][T13926] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  357.903368][T14028] netlink: 4 bytes leftover after parsing attributes in process `syz.2.481'.
[  361.197190][   T31] audit: type=1800 audit(1756152240.383:11): pid=14044 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.483" name="dbroot" dev="configfs" ino=23848 res=0 errno=0
[  361.494250][T14077] netlink: 24 bytes leftover after parsing attributes in process `syz.0.487'.
[  362.537810][T14106] netlink: 4 bytes leftover after parsing attributes in process `syz.2.490'.
[  364.205034][T14176] nbd: couldn't find device at index 137
[  365.507194][T14225] netlink: 342 bytes leftover after parsing attributes in process `syz.1.495'.
[  365.777982][T14240] phram: not enough arguments
[  365.846210][T14240] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd12
[  366.196627][T14259] FAULT_INJECTION: forcing a failure.
[  366.196627][T14259] name failslab, interval 1, probability 0, space 0, times 0
[  366.215654][T14259] CPU: 0 UID: 0 PID: 14259 Comm: syz.0.499 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  366.215691][T14259] Tainted: [U]=USER
[  366.215699][T14259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  366.215712][T14259] Call Trace:
[  366.215720][T14259]  <TASK>
[  366.215730][T14259]  dump_stack_lvl+0x16c/0x1f0
[  366.215766][T14259]  should_fail_ex+0x512/0x640
[  366.215802][T14259]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  366.215830][T14259]  should_failslab+0xc2/0x120
[  366.215862][T14259]  __kmalloc_cache_noprof+0x6a/0x3e0
[  366.215895][T14259]  ? kernfs_fop_open+0x244/0xda0
[  366.215922][T14259]  kernfs_fop_open+0x244/0xda0
[  366.215952][T14259]  do_dentry_open+0x982/0x1530
[  366.215983][T14259]  ? __pfx_kernfs_fop_open+0x10/0x10
[  366.216012][T14259]  vfs_open+0x82/0x3f0
[  366.216051][T14259]  path_openat+0x1de4/0x2cb0
[  366.216089][T14259]  ? __pfx_path_openat+0x10/0x10
[  366.216125][T14259]  do_filp_open+0x20b/0x470
[  366.216156][T14259]  ? __pfx_do_filp_open+0x10/0x10
[  366.216205][T14259]  ? alloc_fd+0x471/0x7d0
[  366.216238][T14259]  do_sys_openat2+0x11b/0x1d0
[  366.216286][T14259]  ? __pfx_do_sys_openat2+0x10/0x10
[  366.216339][T14259]  ? __pfx___might_resched+0x10/0x10
[  366.216373][T14259]  __x64_sys_openat+0x174/0x210
[  366.216411][T14259]  ? __pfx___x64_sys_openat+0x10/0x10
[  366.216461][T14259]  do_syscall_64+0xcd/0x490
[  366.216496][T14259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.216520][T14259] RIP: 0033:0x7fb5c658ebe9
[  366.216538][T14259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.216561][T14259] RSP: 002b:00007fb5c746f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  366.216583][T14259] RAX: ffffffffffffffda RBX: 00007fb5c67b6090 RCX: 00007fb5c658ebe9
[  366.216598][T14259] RDX: 000000000010b042 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  366.216612][T14259] RBP: 00007fb5c6611e19 R08: 0000000000000000 R09: 0000000000000000
[  366.216626][T14259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  366.216640][T14259] R13: 00007fb5c67b6128 R14: 00007fb5c67b6090 R15: 00007ffdfb7f1348
[  366.216669][T14259]  </TASK>
[  366.431825][    C0] vkms_vblank_simulate: vblank timer overrun
[  368.229677][T14362] netlink: 4 bytes leftover after parsing attributes in process `syz.2.502'.
[  371.351914][T14444] FAULT_INJECTION: forcing a failure.
[  371.351914][T14444] name failslab, interval 1, probability 0, space 0, times 0
[  371.373187][T14444] CPU: 0 UID: 0 PID: 14444 Comm: syz.2.507 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  371.373225][T14444] Tainted: [U]=USER
[  371.373232][T14444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  371.373246][T14444] Call Trace:
[  371.373254][T14444]  <TASK>
[  371.373262][T14444]  dump_stack_lvl+0x16c/0x1f0
[  371.373299][T14444]  should_fail_ex+0x512/0x640
[  371.373333][T14444]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  371.373361][T14444]  should_failslab+0xc2/0x120
[  371.373393][T14444]  __kmalloc_cache_noprof+0x6a/0x3e0
[  371.373418][T14444]  ? sctp_auth_init_hmacs+0xf2/0x440
[  371.373454][T14444]  sctp_auth_init_hmacs+0xf2/0x440
[  371.373484][T14444]  ? kasan_save_track+0x14/0x30
[  371.373514][T14444]  sctp_auth_init+0x90/0x570
[  371.373550][T14444]  sctp_setsockopt+0xa371/0xb870
[  371.373587][T14444]  ? ksys_write+0x190/0x250
[  371.373619][T14444]  ? __pfx_sctp_setsockopt+0x10/0x10
[  371.373661][T14444]  ? find_held_lock+0x2b/0x80
[  371.373687][T14444]  ? aa_sock_opt_perm+0xfd/0x1c0
[  371.373710][T14444]  ? sock_common_setsockopt+0x2e/0xf0
[  371.373748][T14444]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  371.373797][T14444]  do_sock_setsockopt+0xf3/0x1d0
[  371.373839][T14444]  __sys_setsockopt+0x120/0x1a0
[  371.373875][T14444]  __x64_sys_setsockopt+0xbd/0x160
[  371.373904][T14444]  ? do_syscall_64+0x91/0x490
[  371.373936][T14444]  ? lockdep_hardirqs_on+0x7c/0x110
[  371.373966][T14444]  do_syscall_64+0xcd/0x490
[  371.374000][T14444]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.374024][T14444] RIP: 0033:0x7fae82d8ebe9
[  371.374042][T14444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.374065][T14444] RSP: 002b:00007fae83ca7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  371.374098][T14444] RAX: ffffffffffffffda RBX: 00007fae82fb6090 RCX: 00007fae82d8ebe9
[  371.374119][T14444] RDX: 0000000000000081 RSI: 0000010000000084 RDI: 0000000000000003
[  371.374138][T14444] RBP: 00007fae82e11e19 R08: 0000000000000008 R09: 0000000000000000
[  371.374158][T14444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  371.374179][T14444] R13: 00007fae82fb6128 R14: 00007fae82fb6090 R15: 00007ffd3503c9d8
[  371.374210][T14444]  </TASK>
[  373.306349][T14530] netlink: 4 bytes leftover after parsing attributes in process `syz.1.512'.
[  374.289150][T14529] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  375.019868][T14580] phram: not enough arguments
[  375.088641][T14580] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd12
[  376.095603][ T7610] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  376.109030][ T7610] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  376.119975][ T7610] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  376.138873][ T7610] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  376.146977][ T7610] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  376.960415][T14669] nbd: failed to add new device
[  377.172593][T14636] chnl_net:caif_netlink_parms(): no params data found
[  377.366971][T14683] FAULT_INJECTION: forcing a failure.
[  377.366971][T14683] name failslab, interval 1, probability 0, space 0, times 0
[  377.410604][T14683] CPU: 0 UID: 0 PID: 14683 Comm: syz.0.518 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  377.410655][T14683] Tainted: [U]=USER
[  377.410667][T14683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  377.410687][T14683] Call Trace:
[  377.410697][T14683]  <TASK>
[  377.410710][T14683]  dump_stack_lvl+0x16c/0x1f0
[  377.410759][T14683]  should_fail_ex+0x512/0x640
[  377.410806][T14683]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  377.410845][T14683]  should_failslab+0xc2/0x120
[  377.410888][T14683]  __kmalloc_cache_noprof+0x6a/0x3e0
[  377.410923][T14683]  ? sctp_auth_init_hmacs+0xf2/0x440
[  377.410971][T14683]  sctp_auth_init_hmacs+0xf2/0x440
[  377.411013][T14683]  ? kasan_save_track+0x14/0x30
[  377.411054][T14683]  sctp_auth_init+0x90/0x570
[  377.411101][T14683]  sctp_setsockopt+0xa371/0xb870
[  377.411151][T14683]  ? ksys_write+0x190/0x250
[  377.411195][T14683]  ? __pfx_sctp_setsockopt+0x10/0x10
[  377.411254][T14683]  ? find_held_lock+0x2b/0x80
[  377.411289][T14683]  ? aa_sock_opt_perm+0xfd/0x1c0
[  377.411321][T14683]  ? sock_common_setsockopt+0x2e/0xf0
[  377.411373][T14683]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  377.411428][T14683]  do_sock_setsockopt+0xf3/0x1d0
[  377.411485][T14683]  __sys_setsockopt+0x120/0x1a0
[  377.411535][T14683]  __x64_sys_setsockopt+0xbd/0x160
[  377.411576][T14683]  ? do_syscall_64+0x91/0x490
[  377.411618][T14683]  ? lockdep_hardirqs_on+0x7c/0x110
[  377.411659][T14683]  do_syscall_64+0xcd/0x490
[  377.411707][T14683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.411739][T14683] RIP: 0033:0x7fb5c658ebe9
[  377.411765][T14683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  377.411797][T14683] RSP: 002b:00007fb5c746f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  377.411828][T14683] RAX: ffffffffffffffda RBX: 00007fb5c67b6090 RCX: 00007fb5c658ebe9
[  377.411850][T14683] RDX: 0000000000000081 RSI: 0000010000000084 RDI: 0000000000000003
[  377.411871][T14683] RBP: 00007fb5c6611e19 R08: 0000000000000008 R09: 0000000000000000
[  377.411894][T14683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  377.411914][T14683] R13: 00007fb5c67b6128 R14: 00007fb5c67b6090 R15: 00007ffdfb7f1348
[  377.411952][T14683]  </TASK>
[  377.999412][T14636] bridge0: port 1(bridge_slave_0) entered blocking state
[  378.007827][T14636] bridge0: port 1(bridge_slave_0) entered disabled state
[  378.030226][T14636] bridge_slave_0: entered allmulticast mode
[  378.057106][T14636] bridge_slave_0: entered promiscuous mode
[  378.161472][T14636] bridge0: port 2(bridge_slave_1) entered blocking state
[  378.188998][T14636] bridge0: port 2(bridge_slave_1) entered disabled state
[  378.199668][   T31] audit: type=1800 audit(1756152257.393:12): pid=14754 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.520" name="dbroot" dev="configfs" ino=24678 res=0 errno=0
[  378.228296][ T7610] Bluetooth: hci0: command tx timeout
[  378.248922][T14636] bridge_slave_1: entered allmulticast mode
[  378.286531][T14636] bridge_slave_1: entered promiscuous mode
[  378.767582][T14636] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  379.347345][T14636] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  379.504162][T14636] team0: Port device team_slave_0 added
[  379.526952][T14636] team0: Port device team_slave_1 added
[  379.735005][T14636] batman_adv: batadv0: Adding interface: batadv_slave_0
[  379.747338][T14636] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  379.778531][T14636] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  379.799517][T14636] batman_adv: batadv0: Adding interface: batadv_slave_1
[  379.807074][T14636] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  379.834049][T14636] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  380.011399][T14636] hsr_slave_0: entered promiscuous mode
[  380.032643][T14636] hsr_slave_1: entered promiscuous mode
[  380.067766][T14636] debugfs: 'hsr0' already exists in 'hsr'
[  380.073592][T14636] Cannot create hsr debugfs directory
[  380.286503][ T7610] Bluetooth: hci0: command tx timeout
[  380.609155][T14975] random: crng reseeded on system resumption
[  381.850000][T14636] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  381.977708][T14636] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.160216][T14636] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.275067][ T7376] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.333458][T14636] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.366559][ T7610] Bluetooth: hci0: command tx timeout
[  382.428000][ T7376] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.593372][ T7376] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.810502][ T7376] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.904058][ T7610] Bluetooth: hci2: unexpected event 0x3e length: 0 < 1
[  383.070653][T14636] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  383.209086][T14636] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  383.231600][T14636] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  383.296089][T14636] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  383.449971][ T7375] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  383.461235][ T7375] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  383.471804][ T7375] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  383.481052][ T7375] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  383.490073][ T7375] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  383.611552][ T7376] bridge_slave_1: left allmulticast mode
[  383.621572][ T7376] bridge_slave_1: left promiscuous mode
[  383.630838][ T7376] bridge0: port 2(bridge_slave_1) entered disabled state
[  383.661963][ T7376] bridge_slave_0: left allmulticast mode
[  383.674683][ T7376] bridge_slave_0: left promiscuous mode
[  383.698893][ T7376] bridge0: port 1(bridge_slave_0) entered disabled state
[  384.450050][ T7610] Bluetooth: hci0: command tx timeout
[  384.541164][ T7376] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  384.570577][ T7376] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  384.582420][ T7376] bond0 (unregistering): Released all slaves
[  385.567175][ T7375] Bluetooth: hci1: command tx timeout
[  386.342164][T14636] 8021q: adding VLAN 0 to HW filter on device bond0
[  386.440988][T15197] chnl_net:caif_netlink_parms(): no params data found
[  386.961399][T14636] 8021q: adding VLAN 0 to HW filter on device team0
[  387.130649][T15427] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  387.409026][ T7376] hsr_slave_0: left promiscuous mode
[  387.415327][ T7376] hsr_slave_1: left promiscuous mode
[  387.424928][ T7376] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  387.440410][ T7376] batman_adv: batadv0: Removing interface: batadv_slave_0
[  387.457576][ T7376] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  387.467757][ T7376] batman_adv: batadv0: Removing interface: batadv_slave_1
[  387.532301][ T7376] veth1_macvtap: left promiscuous mode
[  387.547975][ T7376] veth0_macvtap: left promiscuous mode
[  387.561985][ T7376] veth1_vlan: left promiscuous mode
[  387.569182][ T7376] veth0_vlan: left promiscuous mode
[  387.647364][ T7375] Bluetooth: hci1: command tx timeout
[  388.488515][ T7376] team0 (unregistering): Port device team_slave_1 removed
[  388.573165][ T7376] team0 (unregistering): Port device team_slave_0 removed
[  389.000265][T15197] bridge0: port 1(bridge_slave_0) entered blocking state
[  389.008042][T15197] bridge0: port 1(bridge_slave_0) entered disabled state
[  389.015468][T15197] bridge_slave_0: entered allmulticast mode
[  389.023322][T15197] bridge_slave_0: entered promiscuous mode
[  389.033887][ T7359] bridge0: port 1(bridge_slave_0) entered blocking state
[  389.041143][ T7359] bridge0: port 1(bridge_slave_0) entered forwarding state
[  389.198450][T15197] bridge0: port 2(bridge_slave_1) entered blocking state
[  389.210806][T15197] bridge0: port 2(bridge_slave_1) entered disabled state
[  389.229061][T15197] bridge_slave_1: entered allmulticast mode
[  389.246122][T15197] bridge_slave_1: entered promiscuous mode
[  389.284627][ T7837] bridge0: port 2(bridge_slave_1) entered blocking state
[  389.291893][ T7837] bridge0: port 2(bridge_slave_1) entered forwarding state
[  389.395300][T15197] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  389.428226][T15197] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  389.560278][T15197] team0: Port device team_slave_0 added
[  389.570150][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  389.582256][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  389.605205][T15197] team0: Port device team_slave_1 added
[  389.729899][ T7375] Bluetooth: hci1: command tx timeout
[  389.781028][T15197] batman_adv: batadv0: Adding interface: batadv_slave_0
[  389.806443][T15197] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  389.838089][T15197] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  389.878379][T15197] batman_adv: batadv0: Adding interface: batadv_slave_1
[  389.896804][T15197] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  390.105236][T15197] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  390.727099][T15197] hsr_slave_0: entered promiscuous mode
[  390.748581][T15197] hsr_slave_1: entered promiscuous mode
[  390.777762][T15197] debugfs: 'hsr0' already exists in 'hsr'
[  390.794222][T15197] Cannot create hsr debugfs directory
[  391.710308][T14636] 8021q: adding VLAN 0 to HW filter on device batadv0
[  391.810747][ T7375] Bluetooth: hci1: command tx timeout
[  392.114034][T14636] veth0_vlan: entered promiscuous mode
[  392.218394][T14636] veth1_vlan: entered promiscuous mode
[  392.430686][T14636] veth0_macvtap: entered promiscuous mode
[  392.464526][T14636] veth1_macvtap: entered promiscuous mode
[  392.574995][T14636] batman_adv: batadv0: Interface activated: batadv_slave_0
[  392.610855][T14636] batman_adv: batadv0: Interface activated: batadv_slave_1
[  392.683271][ T9561] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  392.703632][ T9561] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  392.782878][ T9561] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  392.801494][ T9561] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  393.004367][T15197] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  393.097339][T15197] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  393.186929][T15197] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  393.299998][T15197] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  393.403403][ T9561] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  393.491058][ T9561] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  393.708208][ T7837] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  393.797815][ T7837] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  394.060889][T15197] 8021q: adding VLAN 0 to HW filter on device bond0
[  394.165877][T15197] 8021q: adding VLAN 0 to HW filter on device team0
[  394.239654][ T7359] bridge0: port 1(bridge_slave_0) entered blocking state
[  394.246916][ T7359] bridge0: port 1(bridge_slave_0) entered forwarding state
[  394.307741][ T7359] bridge0: port 2(bridge_slave_1) entered blocking state
[  394.314926][ T7359] bridge0: port 2(bridge_slave_1) entered forwarding state
[  394.753419][T15197] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  395.016139][ T7837] bridge_slave_1: left allmulticast mode
[  395.031603][ T7837] bridge_slave_1: left promiscuous mode
[  395.048435][ T7837] bridge0: port 2(bridge_slave_1) entered disabled state
[  395.069241][ T7837] bridge_slave_0: left allmulticast mode
[  395.074940][ T7837] bridge_slave_0: left promiscuous mode
[  395.092155][ T7837] bridge0: port 1(bridge_slave_0) entered disabled state
[  395.987420][ T7837] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  396.017842][ T7837] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  396.035090][ T7837] bond0 (unregistering): Released all slaves
[  397.194289][T15197] 8021q: adding VLAN 0 to HW filter on device batadv0
[  397.956048][T15197] veth0_vlan: entered promiscuous mode
[  398.039525][T15197] veth1_vlan: entered promiscuous mode
[  398.198927][T15197] veth0_macvtap: entered promiscuous mode
[  398.222419][T15197] veth1_macvtap: entered promiscuous mode
[  398.321901][T15819] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff8163f829 (__mcheck_cpu_init_clear_banks+0x109/0x1f0)
[  398.337626][T15819] Call Trace:
[  398.340953][T15819]  <TASK>
[  398.344581][T15819]  mce_cpu_restart+0x98/0xb0
[  398.349274][T15819]  ? __pfx_mce_cpu_restart+0x10/0x10
[  398.354709][T15819]  smp_call_function_many_cond+0x1227/0x1600
[  398.361095][T15819]  ? __pfx_mce_cpu_restart+0x10/0x10
[  398.366508][T15819]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  398.372465][T15819]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  398.378910][T15819]  ? __pfx___try_to_del_timer_sync+0x10/0x10
[  398.384947][T15819]  ? __pfx_mce_cpu_restart+0x10/0x10
[  398.390258][T15819]  on_each_cpu_cond_mask+0x40/0x90
[  398.395400][T15819]  set_bank+0x240/0x3a0
[  398.399590][T15819]  ? __pfx_set_bank+0x10/0x10
[  398.404305][T15819]  ? find_held_lock+0x2b/0x80
[  398.409111][T15819]  ? __pfx_set_bank+0x10/0x10
[  398.413911][T15819]  dev_attr_store+0x55/0x80
[  398.418462][T15819]  ? __pfx_dev_attr_store+0x10/0x10
[  398.423756][T15819]  sysfs_kf_write+0xf2/0x150
[  398.428748][T15819]  kernfs_fop_write_iter+0x354/0x510
[  398.434073][T15819]  ? __pfx_sysfs_kf_write+0x10/0x10
[  398.439303][T15819]  vfs_write+0x7d0/0x11d0
[  398.443846][T15819]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  398.449672][T15819]  ? __pfx___mutex_lock+0x10/0x10
[  398.454754][T15819]  ? __pfx_vfs_write+0x10/0x10
[  398.459563][T15819]  ksys_write+0x12a/0x250
[  398.463914][T15819]  ? __pfx_ksys_write+0x10/0x10
[  398.468904][T15819]  do_syscall_64+0xcd/0x490
[  398.473437][T15819]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.479434][T15819] RIP: 0033:0x7fae82d8ebe9
[  398.483863][T15819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  398.503575][T15819] RSP: 002b:00007fae83ca7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  398.512025][T15819] RAX: ffffffffffffffda RBX: 00007fae82fb6090 RCX: 00007fae82d8ebe9
[  398.520026][T15819] RDX: 0000000000000003 RSI: 0000200000000240 RDI: 0000000000000002
[  398.528095][T15819] RBP: 00007fae82e11e19 R08: 0000000000000000 R09: 0000000000000000
[  398.536076][T15819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  398.544058][T15819] R13: 00007fae82fb6128 R14: 00007fae82fb6090 R15: 00007ffd3503c9d8
[  398.552062][T15819]  </TASK>
[  398.580012][T15197] batman_adv: batadv0: Interface activated: batadv_slave_0
[  398.767823][T15197] batman_adv: batadv0: Interface activated: batadv_slave_1
[  399.030427][ T7837] hsr_slave_0: left promiscuous mode
[  399.097459][ T7837] hsr_slave_1: left promiscuous mode
[  399.109130][ T7837] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  399.155466][ T7837] batman_adv: batadv0: Removing interface: batadv_slave_0
[  399.210117][ T7837] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  399.237768][ T7837] batman_adv: batadv0: Removing interface: batadv_slave_1
[  399.360107][ T7837] veth1_macvtap: left promiscuous mode
[  399.377320][T15821] zswap: compressor  not available
[  399.386489][ T7837] veth0_macvtap: left promiscuous mode
[  399.414747][ T7837] veth1_vlan: left promiscuous mode
[  399.429393][ T7837] veth0_vlan: left promiscuous mode
[  401.382798][ T7837] team0 (unregistering): Port device team_slave_1 removed
[  401.528945][ T7837] team0 (unregistering): Port device team_slave_0 removed
[  401.944180][ T9561] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  401.962559][ T9561] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  402.000987][ T9561] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  402.045482][ T9561] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  402.542182][ T9355] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  402.597405][ T9355] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  402.810996][ T9355] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  402.834247][ T9355] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  402.864648][ T7837] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  403.051465][ T7837] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  403.066963][ T7610] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  403.087189][ T7610] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  403.095187][ T7610] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  403.105257][ T7610] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  403.133861][ T7610] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  403.180441][ T7837] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  403.557109][T15949] zswap: compressor  not available
[  403.855623][T16002] bond0: option all_slaves_active: invalid value (
)
[  403.863908][ T7837] batadv0: left allmulticast mode
[  403.877850][ T7837] batadv0: left promiscuous mode
[  403.883171][ T7837] bridge0: port 3(batadv0) entered disabled state
[  403.909195][ T7837] bridge_slave_1: left allmulticast mode
[  403.917159][ T7837] bridge_slave_1: left promiscuous mode
[  403.924138][ T7837] bridge0: port 2(bridge_slave_1) entered disabled state
[  403.937759][ T7837] bridge_slave_0: left allmulticast mode
[  403.943499][ T7837] bridge_slave_0: left promiscuous mode
[  403.950331][ T7837] bridge0: port 1(bridge_slave_0) entered disabled state
[  405.036841][T16021] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  405.246729][ T7375] Bluetooth: hci2: command tx timeout
[  406.076081][ T7837] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  406.090443][ T7837] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  406.101759][ T7837] bond0 (unregistering): Released all slaves
[  407.326625][ T7375] Bluetooth: hci2: command tx timeout
[  407.578847][T15944] chnl_net:caif_netlink_parms(): no params data found
[  408.416013][T15944] bridge0: port 1(bridge_slave_0) entered blocking state
[  408.482400][T15944] bridge0: port 1(bridge_slave_0) entered disabled state
[  408.515286][T15944] bridge_slave_0: entered allmulticast mode
[  408.576532][T15944] bridge_slave_0: entered promiscuous mode
[  408.655599][T15944] bridge0: port 2(bridge_slave_1) entered blocking state
[  408.662882][T15944] bridge0: port 2(bridge_slave_1) entered disabled state
[  408.670347][T15944] bridge_slave_1: entered allmulticast mode
[  408.678125][T15944] bridge_slave_1: entered promiscuous mode
[  409.137903][ T7837] hsr_slave_0: left promiscuous mode
[  409.144434][ T7837] hsr_slave_1: left promiscuous mode
[  409.177607][ T7837] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  409.185084][ T7837] batman_adv: batadv0: Removing interface: batadv_slave_0
[  409.213107][ T7837] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  409.229926][ T7837] batman_adv: batadv0: Removing interface: batadv_slave_1
[  409.283779][ T7837] veth1_macvtap: left promiscuous mode
[  409.317648][ T7837] veth0_macvtap: left promiscuous mode
[  409.323434][ T7837] veth1_vlan: left promiscuous mode
[  409.329389][ T7837] veth0_vlan: left promiscuous mode
[  409.414023][ T7375] Bluetooth: hci2: command tx timeout
[  409.732956][ T7610] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  409.749370][ T7610] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  409.763876][ T7610] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  409.780037][ T7610] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  409.811846][ T7610] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  410.403126][ T7837] team0 (unregistering): Port device team_slave_1 removed
[  410.502641][ T7837] team0 (unregistering): Port device team_slave_0 removed
[  411.383375][T15944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  411.481485][T15944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  411.488408][ T7610] Bluetooth: hci2: command tx timeout
[  411.840028][T15944] team0: Port device team_slave_0 added
[  411.887733][ T7610] Bluetooth: hci1: command tx timeout
[  411.937807][T15944] team0: Port device team_slave_1 added
[  412.085093][T16420] binder: 16406:16420 ioctl c0046209 7fffffffffffffff returned -22
[  412.117065][T15944] batman_adv: batadv0: Adding interface: batadv_slave_0
[  412.135695][T15944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  412.196917][T15944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  412.255282][T15944] batman_adv: batadv0: Adding interface: batadv_slave_1
[  412.276813][T15944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  412.346335][T15944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  412.568182][T15944] hsr_slave_0: entered promiscuous mode
[  412.575007][T15944] hsr_slave_1: entered promiscuous mode
[  412.810945][ T7837] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  412.908882][T16301] chnl_net:caif_netlink_parms(): no params data found
[  412.950772][ T7837] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.192304][ T7837] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.379059][ T7837] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.608654][T16301] bridge0: port 1(bridge_slave_0) entered blocking state
[  413.626664][T16301] bridge0: port 1(bridge_slave_0) entered disabled state
[  413.636642][T16301] bridge_slave_0: entered allmulticast mode
[  413.644084][T16301] bridge_slave_0: entered promiscuous mode
[  413.785406][T16301] bridge0: port 2(bridge_slave_1) entered blocking state
[  413.821201][T16301] bridge0: port 2(bridge_slave_1) entered disabled state
[  413.839329][T16301] bridge_slave_1: entered allmulticast mode
[  413.863843][T16301] bridge_slave_1: entered promiscuous mode
[  413.970723][ T7610] Bluetooth: hci1: command tx timeout
[  414.190063][T16301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  414.258603][T16301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  414.735139][T16301] team0: Port device team_slave_0 added
[  414.855516][T16301] team0: Port device team_slave_1 added
[  414.919159][ T7837] bridge_slave_1: left allmulticast mode
[  414.938339][ T7837] bridge_slave_1: left promiscuous mode
[  414.973232][ T7837] bridge0: port 2(bridge_slave_1) entered disabled state
[  415.000344][ T7837] bridge_slave_0: left allmulticast mode
[  415.006128][ T7837] bridge_slave_0: left promiscuous mode
[  415.052071][ T7837] bridge0: port 1(bridge_slave_0) entered disabled state
[  416.047616][ T7610] Bluetooth: hci1: command tx timeout
[  416.276760][ T7837] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  416.291771][ T7837] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  416.308694][ T7837] bond0 (unregistering): Released all slaves
[  416.566693][T16301] batman_adv: batadv0: Adding interface: batadv_slave_0
[  416.591451][T16301] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  416.635747][T16301] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  416.711474][T16791] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  416.722639][T16791] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  416.736185][T16791] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  416.881627][T16301] batman_adv: batadv0: Adding interface: batadv_slave_1
[  416.906350][T16301] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  416.942383][T16301] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  417.149984][T16301] hsr_slave_0: entered promiscuous mode
[  417.161208][T16301] hsr_slave_1: entered promiscuous mode
[  417.167767][T16301] debugfs: 'hsr0' already exists in 'hsr'
[  417.173550][T16301] Cannot create hsr debugfs directory
[  417.282435][ T7837] hsr_slave_0: left promiscuous mode
[  417.288815][ T7837] hsr_slave_1: left promiscuous mode
[  417.294993][ T7837] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  417.311030][ T7837] batman_adv: batadv0: Removing interface: batadv_slave_0
[  417.323307][ T7837] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  417.331437][ T7837] batman_adv: batadv0: Removing interface: batadv_slave_1
[  417.358110][ T7837] veth1_macvtap: left promiscuous mode
[  417.363738][ T7837] veth0_macvtap: left promiscuous mode
[  417.370309][ T7837] veth1_vlan: left promiscuous mode
[  417.375907][ T7837] veth0_vlan: left promiscuous mode
[  417.884545][ T7837] team0 (unregistering): Port device team_slave_1 removed
[  417.921201][ T7837] team0 (unregistering): Port device team_slave_0 removed
[  418.128380][ T7610] Bluetooth: hci1: command tx timeout
[  418.349867][T15944] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  418.382759][T15944] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  418.409878][T15944] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  418.451126][T15944] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  418.734120][T15944] 8021q: adding VLAN 0 to HW filter on device bond0
[  418.773444][T15944] 8021q: adding VLAN 0 to HW filter on device team0
[  418.874228][ T7376] bridge0: port 1(bridge_slave_0) entered blocking state
[  418.881443][ T7376] bridge0: port 1(bridge_slave_0) entered forwarding state
[  418.960896][ T9355] bridge0: port 2(bridge_slave_1) entered blocking state
[  418.968244][ T9355] bridge0: port 2(bridge_slave_1) entered forwarding state
[  419.289998][T16301] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  419.321209][T16301] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  419.336872][T16301] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  419.355374][T16301] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  419.510551][T16301] 8021q: adding VLAN 0 to HW filter on device bond0
[  419.535390][T16301] 8021q: adding VLAN 0 to HW filter on device team0
[  419.551229][ T7837] bridge0: port 1(bridge_slave_0) entered blocking state
[  419.558445][ T7837] bridge0: port 1(bridge_slave_0) entered forwarding state
[  419.581734][ T7369] bridge0: port 2(bridge_slave_1) entered blocking state
[  419.588936][ T7369] bridge0: port 2(bridge_slave_1) entered forwarding state
[  419.642001][T15944] 8021q: adding VLAN 0 to HW filter on device batadv0
[  419.760126][T15944] veth0_vlan: entered promiscuous mode
[  419.791343][T15944] veth1_vlan: entered promiscuous mode
[  419.850607][T15944] veth0_macvtap: entered promiscuous mode
[  419.861712][T15944] veth1_macvtap: entered promiscuous mode
[  419.886060][T15944] batman_adv: batadv0: Interface activated: batadv_slave_0
[  419.900708][T15944] batman_adv: batadv0: Interface activated: batadv_slave_1
[  419.931372][ T9355] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  419.951130][ T9355] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  419.962993][ T9355] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  420.006083][ T9355] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  420.181346][ T7355] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  420.210372][ T7355] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  420.274351][T16301] 8021q: adding VLAN 0 to HW filter on device batadv0
[  420.285468][ T9355] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  420.312458][ T9355] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  420.415198][T16301] veth0_vlan: entered promiscuous mode
[  420.463221][T16301] veth1_vlan: entered promiscuous mode
[  420.592012][T16301] veth0_macvtap: entered promiscuous mode
[  420.622764][T16301] veth1_macvtap: entered promiscuous mode
[  420.665079][T16301] batman_adv: batadv0: Interface activated: batadv_slave_0
[  420.721783][T16301] batman_adv: batadv0: Interface activated: batadv_slave_1
[  420.862123][ T7376] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  420.871618][ T7376] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  420.912714][ T7376] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  420.924709][ T7376] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  421.547302][ T7376] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  421.555696][ T7376] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  422.031788][ T7837] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  422.062379][ T7837] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  425.280661][T17254] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  427.048969][T17320] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  429.124279][T17421] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21
[  430.001502][T17466] program syz.1.602 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  432.368035][T17508] FAULT_INJECTION: forcing a failure.
[  432.368035][T17508] name failslab, interval 1, probability 0, space 0, times 0
[  432.381142][T17508] CPU: 1 UID: 0 PID: 17508 Comm: syz.3.606 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  432.381195][T17508] Tainted: [U]=USER
[  432.381206][T17508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  432.381225][T17508] Call Trace:
[  432.381236][T17508]  <TASK>
[  432.381248][T17508]  dump_stack_lvl+0x16c/0x1f0
[  432.381301][T17508]  should_fail_ex+0x512/0x640
[  432.381349][T17508]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  432.381390][T17508]  should_failslab+0xc2/0x120
[  432.381436][T17508]  __kmalloc_cache_noprof+0x6a/0x3e0
[  432.381489][T17508]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x230
[  432.381539][T17508]  ? do_eventfd+0x67/0x2c0
[  432.381593][T17508]  do_eventfd+0x67/0x2c0
[  432.381646][T17508]  __x64_sys_eventfd+0x32/0x50
[  432.381698][T17508]  do_syscall_64+0xcd/0x490
[  432.381768][T17508]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.381803][T17508] RIP: 0033:0x7f88d558ebe9
[  432.381828][T17508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  432.381860][T17508] RSP: 002b:00007f88d6330038 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[  432.381892][T17508] RAX: ffffffffffffffda RBX: 00007f88d57b6090 RCX: 00007f88d558ebe9
[  432.381915][T17508] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  432.381934][T17508] RBP: 00007f88d5611e19 R08: 0000000000000000 R09: 0000000000000000
[  432.381955][T17508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  432.381975][T17508] R13: 00007f88d57b6128 R14: 00007f88d57b6090 R15: 00007ffe017181e8
[  432.382018][T17508]  </TASK>
[  434.442961][T17574] openvswitch: netlink: Multiple metadata blocks provided
[  434.966221][T17612] program syz.2.615 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  436.321829][T17648] zswap: compressor  not available
[  438.160144][T17727] FAULT_INJECTION: forcing a failure.
[  438.160144][T17727] name failslab, interval 1, probability 0, space 0, times 0
[  438.182364][T17727] CPU: 1 UID: 0 PID: 17727 Comm: syz.1.619 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  438.182415][T17727] Tainted: [U]=USER
[  438.182426][T17727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  438.182445][T17727] Call Trace:
[  438.182456][T17727]  <TASK>
[  438.182468][T17727]  dump_stack_lvl+0x16c/0x1f0
[  438.182519][T17727]  should_fail_ex+0x512/0x640
[  438.182567][T17727]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  438.182614][T17727]  should_failslab+0xc2/0x120
[  438.182659][T17727]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  438.182703][T17727]  ? __d_alloc+0x32/0xae0
[  438.182751][T17727]  __d_alloc+0x32/0xae0
[  438.182798][T17727]  d_alloc_pseudo+0x1c/0xc0
[  438.182851][T17727]  alloc_file_pseudo+0xcf/0x230
[  438.182906][T17727]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  438.182963][T17727]  ? do_raw_spin_unlock+0x172/0x230
[  438.183022][T17727]  __anon_inode_getfile+0xe8/0x280
[  438.183069][T17727]  anon_inode_getfile_fmode+0x37/0xa0
[  438.183125][T17727]  do_eventfd+0x19b/0x2c0
[  438.183173][T17727]  ? rcu_is_watching+0x12/0xc0
[  438.183210][T17727]  __x64_sys_eventfd+0x32/0x50
[  438.183261][T17727]  do_syscall_64+0xcd/0x490
[  438.183312][T17727]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.183346][T17727] RIP: 0033:0x7f73d238ebe9
[  438.183371][T17727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  438.183404][T17727] RSP: 002b:00007f73d31ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[  438.183435][T17727] RAX: ffffffffffffffda RBX: 00007f73d25b6090 RCX: 00007f73d238ebe9
[  438.183457][T17727] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  438.183476][T17727] RBP: 00007f73d2411e19 R08: 0000000000000000 R09: 0000000000000000
[  438.183496][T17727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  438.183515][T17727] R13: 00007f73d25b6128 R14: 00007f73d25b6090 R15: 00007ffeb57640a8
[  438.183557][T17727]  </TASK>
[  439.111840][T17759] random: crng reseeded on system resumption
[  439.471522][T17763] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  440.898269][T17798] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  442.449971][T17843] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  444.608626][T17897] bond0: option all_slaves_active: invalid value (
)
[  447.103673][T17938] zswap: compressor  not available
[  448.466142][T17970] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1585710243.2098302407.4233326427), cmd(10)
[  449.024916][T18010] vivid-009: =================  START STATUS  =================
[  449.046749][T18010] vivid-009: Enable Output Cropping: true grabbed
[  449.068199][T18010] vivid-009: Enable Output Composing: true grabbed
[  449.074831][T18010] vivid-009: Enable Output Scaler: true grabbed
[  449.126608][T18010] vivid-009: Tx RGB Quantization Range: Automatic grabbed
[  449.143808][T18010] vivid-009: Transmit Mode: HDMI grabbed
[  449.176711][T18010] vivid-009: Hotplug Present: 0x00000000
[  449.191972][T18010] vivid-009: RxSense Present: 0x00000000
[  449.206915][T18010] vivid-009: EDID Present: 0x00000000
[  449.212474][T18010] vivid-009: ==================  END STATUS  ==================
[  449.418051][T18010] block nbd7: not configured, cannot reconfigure
[  449.862804][T18009] Invalid ELF header magic: != ELF
[  451.022162][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  451.036513][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  451.164119][T18148] svc: failed to register nfsdv3 RPC service (errno 111).
[  451.233752][T18148] svc: failed to register nfsaclv3 RPC service (errno 111).
[  451.925945][T18194] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  452.403718][T18199] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22
[  452.445694][T18218] CIFS: VFS: Invalid SecurityFlags: 
[  454.179624][T18214] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input23
[  455.866420][T18340] ecryptfs_miscdev_write: Invalid packet size [111]
[  455.932764][T18305] netlink: 28 bytes leftover after parsing attributes in process `syz.2.652'.
[  456.868948][T18310] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  458.194716][T18397] can: request_module (can-proto-0) failed.
[  461.368434][T18499] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  464.676128][T18590] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1585710243.2098302407.4233326427), cmd(10)
[  465.543379][T18702] random: crng reseeded on system resumption
[  466.146031][T18666] Invalid ELF header magic: != ELF
[  472.580246][T18996] nbd: failed to add new device
[  474.375734][T19067] CIFS: VFS: Invalid SecurityFlags: 
[  476.120728][T19132] usb usb36: usbfs: process 19132 (syz.1.691) did not claim interface 0 before use
[  478.265909][T19223] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  479.520890][T19313] svc: failed to register nfsdv3 RPC service (errno 111).
[  479.541149][T19313] svc: failed to register nfsaclv3 RPC service (errno 111).
[  482.186608][T19422] binder: 19420:19422 ioctl c0306201 200000000300 returned -14
[  482.190594][T19424] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  482.281681][T19426] FAULT_INJECTION: forcing a failure.
[  482.281681][T19426] name failslab, interval 1, probability 0, space 0, times 0
[  482.316450][T19426] CPU: 1 UID: 0 PID: 19426 Comm: syz.2.703 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  482.316502][T19426] Tainted: [U]=USER
[  482.316513][T19426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  482.316533][T19426] Call Trace:
[  482.316544][T19426]  <TASK>
[  482.316557][T19426]  dump_stack_lvl+0x16c/0x1f0
[  482.316608][T19426]  should_fail_ex+0x512/0x640
[  482.316655][T19426]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  482.316694][T19426]  should_failslab+0xc2/0x120
[  482.316748][T19426]  __kmalloc_cache_noprof+0x6a/0x3e0
[  482.316781][T19426]  ? __asan_memcpy+0x3c/0x60
[  482.316813][T19426]  ? ip_vs_protocol_net_init+0xbe/0x300
[  482.316873][T19426]  ip_vs_protocol_net_init+0xbe/0x300
[  482.316932][T19426]  __ip_vs_init+0x239/0x520
[  482.316973][T19426]  ? __pfx___ip_vs_init+0x10/0x10
[  482.317011][T19426]  ops_init+0x1e2/0x5f0
[  482.317063][T19426]  setup_net+0x10f/0x380
[  482.317108][T19426]  ? lockdep_init_map_type+0x5c/0x280
[  482.317157][T19426]  ? __pfx_setup_net+0x10/0x10
[  482.317205][T19426]  ? debug_mutex_init+0x37/0x70
[  482.317252][T19426]  copy_net_ns+0x2a6/0x5f0
[  482.317310][T19426]  create_new_namespaces+0x3ea/0xa90
[  482.317359][T19426]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  482.317403][T19426]  ksys_unshare+0x45b/0xa40
[  482.317451][T19426]  ? __pfx_ksys_unshare+0x10/0x10
[  482.317500][T19426]  ? xfd_validate_state+0x61/0x180
[  482.317562][T19426]  __x64_sys_unshare+0x31/0x40
[  482.317608][T19426]  do_syscall_64+0xcd/0x490
[  482.317658][T19426]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.317692][T19426] RIP: 0033:0x7fae82d8ebe9
[  482.317719][T19426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  482.317752][T19426] RSP: 002b:00007fae83cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  482.317785][T19426] RAX: ffffffffffffffda RBX: 00007fae82fb5fa0 RCX: 00007fae82d8ebe9
[  482.317806][T19426] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  482.317826][T19426] RBP: 00007fae82e11e19 R08: 0000000000000000 R09: 0000000000000000
[  482.317846][T19426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  482.317866][T19426] R13: 00007fae82fb6038 R14: 00007fae82fb5fa0 R15: 00007ffd3503c9d8
[  482.317909][T19426]  </TASK>
[  484.377603][T19421] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  484.452818][T19486] bond0: option all_slaves_active: invalid value (
)
[  484.828158][T19507] CIFS: VFS: Invalid SecurityFlags: 
[  487.835199][T19626] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1585710243.2098302407.4233326427), cmd(10)
[  491.679995][T19834] bond0: option all_slaves_active: invalid value (
)
[  493.458958][T19939] random: crng reseeded on system resumption
[  496.715016][T20099] bond0: option all_slaves_active: invalid value (
)
[  498.073911][T20171] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  499.247962][ T7375] Bluetooth: hci0: command 0x0406 tx timeout
[  503.000445][T20309] bond0: option all_slaves_active: invalid value (
)
[  503.426860][T20345] CIFS: VFS: Invalid SecurityFlags: 
[  504.246530][T20371] netlink: 8 bytes leftover after parsing attributes in process `syz.1.773'.
[  506.059029][T20473] netlink: zone id is out of range
[  506.064376][T20473] netlink: zone id is out of range
[  506.071591][T20473] netlink: zone id is out of range
[  506.089607][T20473] netlink: zone id is out of range
[  506.109053][T20473] netlink: zone id is out of range
[  506.114229][T20473] netlink: zone id is out of range
[  506.205624][T20473] netlink: zone id is out of range
[  506.256371][T20473] netlink: zone id is out of range
[  506.261601][T20473] netlink: zone id is out of range
[  506.316156][T20473] netlink: zone id is out of range
[  507.843753][T20552] random: crng reseeded on system resumption
[  508.230310][T20549] random: crng reseeded on system resumption
[  509.628698][T20604] netlink: 'syz.1.798': attribute type 1 has an invalid length.
[  510.977175][T20672] netlink: 8 bytes leftover after parsing attributes in process `syz.3.811'.
[  512.486044][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  512.493786][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  515.105984][T20874] binder: 20873:20874 ioctl c00c620f 200000000180 returned -22
[  515.871204][T20911] random: crng reseeded on system resumption
[  516.322950][T20947] binder: 20939:20947 ioctl c0306201 200000000000 returned -14
[  517.053753][T20963] netlink: 8 bytes leftover after parsing attributes in process `syz.1.850'.
[  522.136331][T21294] random: crng reseeded on system resumption
[  524.941669][T21391] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  526.029751][T21452] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  526.435789][T21469] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78400
[  526.459202][T21469] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  526.469641][T21469] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  526.533323][T21469] page_type: f5(slab)
[  526.548037][T21469] raw: 00fff00000000040 ffff88801b842140 dead000000000122 0000000000000000
[  526.559186][T21469] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  526.601999][T21469] head: 00fff00000000040 ffff88801b842140 dead000000000122 0000000000000000
[  526.621309][T21469] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  526.636323][T21469] head: 00fff00000000003 ffffea0001e10001 00000000ffffffff 00000000ffffffff
[  526.687356][T21469] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  526.715367][T21469] page dumped because: unmovable page
[  526.722748][T21469] page_owner tracks the page as allocated
[  526.731600][T21469] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 9355, tgid 9355 (kworker/u10:9), ts 517251410512, free_ts 516807777226
[  526.761934][T21484] FAULT_INJECTION: forcing a failure.
[  526.761934][T21484] name failslab, interval 1, probability 0, space 0, times 0
[  526.779179][T21484] CPU: 0 UID: 0 PID: 21484 Comm: syz.0.922 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  526.779236][T21484] Tainted: [U]=USER
[  526.779247][T21484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  526.779267][T21484] Call Trace:
[  526.779278][T21484]  <TASK>
[  526.779290][T21484]  dump_stack_lvl+0x16c/0x1f0
[  526.779342][T21484]  should_fail_ex+0x512/0x640
[  526.779395][T21484]  ? aa_label_asxprint+0x75/0x140
[  526.779439][T21484]  should_failslab+0xc2/0x120
[  526.779484][T21484]  __kmalloc_noprof+0xd2/0x510
[  526.779535][T21484]  aa_label_asxprint+0x75/0x140
[  526.779577][T21484]  apparmor_lsmprop_to_secctx+0xb2/0x1a0
[  526.779629][T21484]  security_lsmprop_to_secctx+0x94/0x260
[  526.779678][T21484]  audit_log_task_context+0x134/0x1a0
[  526.779722][T21484]  ? __pfx_audit_log_task_context+0x10/0x10
[  526.779768][T21484]  ? from_kuid+0x8d/0xd0
[  526.779815][T21484]  ? __pfx_from_kuid+0x10/0x10
[  526.779876][T21484]  integrity_audit_message+0x269/0x580
[  526.779931][T21484]  ? take_dentry_name_snapshot+0x314/0x7d0
[  526.779982][T21484]  ? __pfx_integrity_audit_message+0x10/0x10
[  526.780039][T21484]  ? take_dentry_name_snapshot+0x319/0x7d0
[  526.780097][T21484]  integrity_audit_msg+0x41/0x60
[  526.780154][T21484]  ima_collect_measurement+0x786/0xa40
[  526.780211][T21484]  ? __pfx_ima_collect_measurement+0x10/0x10
[  526.780284][T21484]  ? do_raw_read_unlock+0x44/0xe0
[  526.780347][T21484]  ? vfs_getxattr_alloc+0xec/0x340
[  526.780393][T21484]  ? ima_get_hash_algo+0x27c/0x400
[  526.780434][T21484]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  526.780475][T21484]  ? process_measurement+0x11fa/0x23e0
[  526.780512][T21484]  process_measurement+0x11fa/0x23e0
[  526.780562][T21484]  ? __pfx_process_measurement+0x10/0x10
[  526.780618][T21484]  ? find_held_lock+0x2b/0x80
[  526.780686][T21484]  ? futex_private_hash_put+0x18a/0x300
[  526.780727][T21484]  ? futex_hash_put+0x3e/0x50
[  526.780769][T21484]  ima_file_mmap+0x1b1/0x1d0
[  526.780803][T21484]  ? __pfx_ima_file_mmap+0x10/0x10
[  526.780848][T21484]  security_mmap_file+0x88c/0x990
[  526.780894][T21484]  vm_mmap_pgoff+0xec/0x470
[  526.780944][T21484]  ? find_held_lock+0x2b/0x80
[  526.780974][T21484]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  526.781030][T21484]  ? __fget_files+0x20e/0x3c0
[  526.781074][T21484]  ksys_mmap_pgoff+0x32c/0x5c0
[  526.781120][T21484]  ? __pfx_ksys_write+0x10/0x10
[  526.781164][T21484]  __x64_sys_mmap+0x125/0x190
[  526.781218][T21484]  do_syscall_64+0xcd/0x490
[  526.781267][T21484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.781303][T21484] RIP: 0033:0x7f959918ebe9
[  526.781329][T21484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  526.781363][T21484] RSP: 002b:00007f9599f1f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  526.781396][T21484] RAX: ffffffffffffffda RBX: 00007f95993b5fa0 RCX: 00007f959918ebe9
[  526.781427][T21484] RDX: 00000000000000df RSI: 0000000000400009 RDI: 0000000000000007
[  526.781448][T21484] RBP: 00007f9599211e19 R08: 8000000000000003 R09: 0000000000008000
[  526.781472][T21484] R10: 000000000000001c R11: 0000000000000246 R12: 0000000000000000
[  526.781492][T21484] R13: 00007f95993b6038 R14: 00007f95993b5fa0 R15: 00007ffd945b5878
[  526.781537][T21484]  </TASK>
[  526.781554][T21484] audit: error in audit_log_task_context
[  526.787258][T21469]  post_alloc_hook+0x1c0/0x230
[  526.802776][   T31] audit: type=1800 audit(1756152405.953:13): pid=21484 uid=0 auid=4294967295 ses=4294967295 op=collect_data cause=failed(directio) comm="syz.0.922" name="file0" dev="tmpfs" ino=523 res=0 errno=0
[  526.834433][T21469]  get_page_from_freelist+0x132b/0x38e0
[  527.164407][T21469]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  527.170879][T21469]  alloc_pages_mpol+0x1fb/0x550
[  527.175879][T21469]  new_slab+0x247/0x330
[  527.180611][T21469]  ___slab_alloc+0xcf2/0x1740
[  527.185346][T21469]  __slab_alloc.constprop.0+0x56/0xb0
[  527.191166][T21469]  __kmalloc_node_track_caller_noprof+0x2ee/0x510
[  527.197902][T21469]  kmalloc_reserve+0xef/0x2c0
[  527.202653][T21469]  __alloc_skb+0x166/0x380
[  527.221399][T21469]  nsim_dev_trap_report_work+0x2b1/0xcf0
[  527.236580][T21469]  process_one_work+0x9cf/0x1b70
[  527.241625][T21469]  worker_thread+0x6c8/0xf10
[  527.251178][T21469]  kthread+0x3c5/0x780
[  527.255350][T21469]  ret_from_fork+0x5d4/0x6f0
[  527.346683][T21469]  ret_from_fork_asm+0x1a/0x30
[  527.356418][T21469] page last free pid 7599 tgid 7599 stack trace:
[  527.362840][T21469]  __free_frozen_pages+0x7d5/0x10f0
[  527.405270][T21469]  __put_partials+0x165/0x1c0
[  527.448809][T21469]  qlist_free_all+0x4d/0x120
[  527.453497][T21469]  kasan_quarantine_reduce+0x195/0x1e0
[  527.459570][T21469]  __kasan_slab_alloc+0x69/0x90
[  527.464627][T21469]  kmem_cache_alloc_node_noprof+0x1d5/0x3b0
[  527.474052][T21469]  __alloc_skb+0x2b2/0x380
[  527.478867][T21469]  inet_netconf_notify_devconf+0x8b/0x1f0
[  527.485361][T21469]  inetdev_event+0xed5/0x18a0
[  527.494803][T21469]  notifier_call_chain+0xbc/0x410
[  527.501982][T21469]  call_netdevice_notifiers_info+0xbe/0x140
[  527.510633][T21469]  unregister_netdevice_many_notify+0xf76/0x24c0
[  527.523997][T21469]  ops_undo_list+0x8fc/0xab0
[  527.531105][T21469]  cleanup_net+0x408/0x890
[  527.535883][T21469]  process_one_work+0x9cf/0x1b70
[  527.542192][T21469]  worker_thread+0x6c8/0xf10
[  528.449596][T21563] FAULT_INJECTION: forcing a failure.
[  528.449596][T21563] name failslab, interval 1, probability 0, space 0, times 0
[  528.518921][T21563] CPU: 0 UID: 0 PID: 21563 Comm: syz.1.931 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  528.518978][T21563] Tainted: [U]=USER
[  528.518989][T21563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  528.519010][T21563] Call Trace:
[  528.519021][T21563]  <TASK>
[  528.519034][T21563]  dump_stack_lvl+0x16c/0x1f0
[  528.519084][T21563]  should_fail_ex+0x512/0x640
[  528.519131][T21563]  ? __kmalloc_noprof+0xbf/0x510
[  528.519174][T21563]  ? sk_prot_alloc+0x1a8/0x2a0
[  528.519225][T21563]  should_failslab+0xc2/0x120
[  528.519271][T21563]  __kmalloc_noprof+0xd2/0x510
[  528.519319][T21563]  sk_prot_alloc+0x1a8/0x2a0
[  528.519374][T21563]  sk_alloc+0x36/0xc20
[  528.519425][T21563]  xsk_create+0x11b/0x770
[  528.519464][T21563]  __sock_create+0x338/0x8d0
[  528.519506][T21563]  __sys_socket+0x14d/0x260
[  528.519541][T21563]  ? __pfx___sys_socket+0x10/0x10
[  528.519576][T21563]  ? xfd_validate_state+0x61/0x180
[  528.519622][T21563]  ? __task_pid_nr_ns+0x17c/0x500
[  528.519678][T21563]  __x64_sys_socket+0x72/0xb0
[  528.519709][T21563]  ? lockdep_hardirqs_on+0x7c/0x110
[  528.519752][T21563]  do_syscall_64+0xcd/0x490
[  528.519801][T21563]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  528.519835][T21563] RIP: 0033:0x7f73d238ebe9
[  528.519862][T21563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  528.519896][T21563] RSP: 002b:00007f73d31ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  528.519928][T21563] RAX: ffffffffffffffda RBX: 00007f73d25b5fa0 RCX: 00007f73d238ebe9
[  528.519950][T21563] RDX: 0000000000000000 RSI: 0000000000080003 RDI: 000000000000002c
[  528.519971][T21563] RBP: 00007f73d2411e19 R08: 0000000000000000 R09: 0000000000000000
[  528.519992][T21563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  528.520012][T21563] R13: 00007f73d25b6038 R14: 00007f73d25b5fa0 R15: 00007ffeb57640a8
[  528.520055][T21563]  </TASK>
[  528.720081][    C0] vkms_vblank_simulate: vblank timer overrun
[  529.186289][   T31] audit: type=1326 audit(1756152408.373:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21581 comm="syz.1.936" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f73d238ebe9 code=0x0
[  529.532016][T21599] FAULT_INJECTION: forcing a failure.
[  529.532016][T21599] name failslab, interval 1, probability 0, space 0, times 0
[  529.556740][T21599] CPU: 0 UID: 0 PID: 21599 Comm: syz.3.942 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  529.556786][T21599] Tainted: [U]=USER
[  529.556795][T21599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  529.556813][T21599] Call Trace:
[  529.556822][T21599]  <TASK>
[  529.556833][T21599]  dump_stack_lvl+0x16c/0x1f0
[  529.556878][T21599]  should_fail_ex+0x512/0x640
[  529.556921][T21599]  ? __kmalloc_noprof+0xbf/0x510
[  529.556964][T21599]  ? create_ruleset+0x21/0x140
[  529.557013][T21599]  should_failslab+0xc2/0x120
[  529.557060][T21599]  __kmalloc_noprof+0xd2/0x510
[  529.557099][T21599]  ? __might_fault+0xe3/0x190
[  529.557137][T21599]  ? __might_fault+0xe3/0x190
[  529.557183][T21599]  create_ruleset+0x21/0x140
[  529.557223][T21599]  landlock_create_ruleset+0x77/0x230
[  529.557270][T21599]  __do_sys_landlock_create_ruleset+0x255/0x4e0
[  529.557312][T21599]  ? __pfx___do_sys_landlock_create_ruleset+0x10/0x10
[  529.557369][T21599]  do_syscall_64+0xcd/0x490
[  529.557420][T21599]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  529.557455][T21599] RIP: 0033:0x7f88d558ebe9
[  529.557483][T21599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  529.557517][T21599] RSP: 002b:00007f88d6351038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bc
[  529.557550][T21599] RAX: ffffffffffffffda RBX: 00007f88d57b5fa0 RCX: 00007f88d558ebe9
[  529.557573][T21599] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000200000000000
[  529.557595][T21599] RBP: 00007f88d5611e19 R08: 0000000000000000 R09: 0000000000000000
[  529.557615][T21599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  529.557635][T21599] R13: 00007f88d57b6038 R14: 00007f88d57b5fa0 R15: 00007ffe017181e8
[  529.557678][T21599]  </TASK>
[  529.745371][    C0] vkms_vblank_simulate: vblank timer overrun
[  529.887933][ T7358] Bluetooth: hci2: command 0x0406 tx timeout
[  530.712014][T21655] synth uevent: /module/orangefs: unknown uevent action string
[  530.804477][T21659] FAULT_INJECTION: forcing a failure.
[  530.804477][T21659] name failslab, interval 1, probability 0, space 0, times 0
[  530.836841][T21659] CPU: 0 UID: 0 PID: 21659 Comm: syz.1.953 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  530.836892][T21659] Tainted: [U]=USER
[  530.836903][T21659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  530.836932][T21659] Call Trace:
[  530.836942][T21659]  <TASK>
[  530.836954][T21659]  dump_stack_lvl+0x16c/0x1f0
[  530.837008][T21659]  should_fail_ex+0x512/0x640
[  530.837055][T21659]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  530.837104][T21659]  should_failslab+0xc2/0x120
[  530.837149][T21659]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  530.837191][T21659]  ? key_alloc+0x3e0/0x1330
[  530.837241][T21659]  key_alloc+0x3e0/0x1330
[  530.837297][T21659]  ? rcu_is_watching+0x12/0xc0
[  530.837332][T21659]  ? __pfx_key_alloc+0x10/0x10
[  530.837372][T21659]  ? __kmalloc_noprof+0x242/0x510
[  530.837423][T21659]  keyring_alloc+0x44/0xc0
[  530.837476][T21659]  install_process_keyring_to_cred+0xc1/0x140
[  530.837522][T21659]  keyctl_set_reqkey_keyring+0x180/0x1c0
[  530.837563][T21659]  __do_sys_keyctl+0x6d/0x590
[  530.837603][T21659]  do_syscall_64+0xcd/0x490
[  530.837653][T21659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  530.837688][T21659] RIP: 0033:0x7f73d238ebe9
[  530.837715][T21659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  530.837748][T21659] RSP: 002b:00007f73d31ef038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  530.837780][T21659] RAX: ffffffffffffffda RBX: 00007f73d25b5fa0 RCX: 00007f73d238ebe9
[  530.837802][T21659] RDX: 000000000000076f RSI: 0000000000000002 RDI: 000000000000000e
[  530.837822][T21659] RBP: 00007f73d2411e19 R08: 0000000000000f13 R09: 0000000000000000
[  530.837843][T21659] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000000
[  530.837864][T21659] R13: 00007f73d25b6038 R14: 00007f73d25b5fa0 R15: 00007ffeb57640a8
[  530.837906][T21659]  </TASK>
[  531.033171][    C0] vkms_vblank_simulate: vblank timer overrun
[  531.334254][T21671] zswap: compressor  not available
[  531.728401][T21730] FAULT_INJECTION: forcing a failure.
[  531.728401][T21730] name failslab, interval 1, probability 0, space 0, times 0
[  531.771125][T21735] random: crng reseeded on system resumption
[  531.793736][T21730] CPU: 1 UID: 0 PID: 21730 Comm: syz.3.960 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  531.793787][T21730] Tainted: [U]=USER
[  531.793797][T21730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  531.793824][T21730] Call Trace:
[  531.793835][T21730]  <TASK>
[  531.793847][T21730]  dump_stack_lvl+0x16c/0x1f0
[  531.793895][T21730]  should_fail_ex+0x512/0x640
[  531.793939][T21730]  ? __kmalloc_noprof+0xbf/0x510
[  531.793978][T21730]  ? sk_prot_alloc+0x1a8/0x2a0
[  531.794026][T21730]  should_failslab+0xc2/0x120
[  531.794068][T21730]  __kmalloc_noprof+0xd2/0x510
[  531.794109][T21730]  sk_prot_alloc+0x1a8/0x2a0
[  531.794162][T21730]  sk_alloc+0x36/0xc20
[  531.794202][T21730]  caif_create+0x10b/0x430
[  531.794241][T21730]  __sock_create+0x338/0x8d0
[  531.794279][T21730]  __sys_socket+0x14d/0x260
[  531.794313][T21730]  ? __pfx___sys_socket+0x10/0x10
[  531.794344][T21730]  ? xfd_validate_state+0x61/0x180
[  531.794390][T21730]  ? __pfx_ksys_write+0x10/0x10
[  531.794435][T21730]  __x64_sys_socket+0x72/0xb0
[  531.794466][T21730]  ? lockdep_hardirqs_on+0x7c/0x110
[  531.794507][T21730]  do_syscall_64+0xcd/0x490
[  531.794553][T21730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  531.794585][T21730] RIP: 0033:0x7f88d558ebe9
[  531.794612][T21730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  531.794645][T21730] RSP: 002b:00007f88d6351038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  531.794674][T21730] RAX: ffffffffffffffda RBX: 00007f88d57b5fa0 RCX: 00007f88d558ebe9
[  531.794695][T21730] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000025
[  531.794714][T21730] RBP: 00007f88d5611e19 R08: 0000000000000000 R09: 0000000000000000
[  531.794734][T21730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  531.794755][T21730] R13: 00007f88d57b6038 R14: 00007f88d57b5fa0 R15: 00007ffe017181e8
[  531.794797][T21730]  </TASK>
[  532.751390][T21775] FAULT_INJECTION: forcing a failure.
[  532.751390][T21775] name failslab, interval 1, probability 0, space 0, times 0
[  532.797933][T21775] CPU: 1 UID: 0 PID: 21775 Comm: syz.2.965 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  532.797990][T21775] Tainted: [U]=USER
[  532.798001][T21775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  532.798021][T21775] Call Trace:
[  532.798032][T21775]  <TASK>
[  532.798046][T21775]  dump_stack_lvl+0x16c/0x1f0
[  532.798108][T21775]  should_fail_ex+0x512/0x640
[  532.798157][T21775]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  532.798205][T21775]  should_failslab+0xc2/0x120
[  532.798252][T21775]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  532.798293][T21775]  ? __thp_vma_allowable_orders+0x1c5/0xb10
[  532.798343][T21775]  ? __khugepaged_enter+0xc8/0x380
[  532.798403][T21775]  __khugepaged_enter+0xc8/0x380
[  532.798453][T21775]  khugepaged_enter_vma+0x135/0x2c0
[  532.798503][T21775]  hugepage_madvise+0xa8/0xd0
[  532.798550][T21775]  madvise_vma_behavior+0x15af/0x2d60
[  532.798608][T21775]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  532.798663][T21775]  ? __pfx_mt_find+0x10/0x10
[  532.798737][T21775]  ? find_vma+0xbf/0x140
[  532.798780][T21775]  ? __pfx_find_vma+0x10/0x10
[  532.798827][T21775]  ? madvise_walk_vmas+0x282/0x9c0
[  532.798875][T21775]  ? madvise_walk_vmas+0x28c/0x9c0
[  532.798929][T21775]  madvise_walk_vmas+0x31f/0x9c0
[  532.798987][T21775]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  532.799051][T21775]  madvise_do_behavior+0x1e2/0x530
[  532.799108][T21775]  ? __pfx___might_resched+0x10/0x10
[  532.799144][T21775]  ? __pfx_madvise_do_behavior+0x10/0x10
[  532.799211][T21775]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  532.799268][T21775]  do_madvise+0x176/0x240
[  532.799317][T21775]  ? __pfx_do_madvise+0x10/0x10
[  532.799365][T21775]  ? do_futex+0x122/0x350
[  532.799436][T21775]  ? xfd_validate_state+0x61/0x180
[  532.799485][T21775]  ? __pfx_ksys_write+0x10/0x10
[  532.799534][T21775]  __x64_sys_madvise+0xa9/0x110
[  532.799581][T21775]  ? lockdep_hardirqs_on+0x7c/0x110
[  532.799625][T21775]  do_syscall_64+0xcd/0x490
[  532.799675][T21775]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  532.799709][T21775] RIP: 0033:0x7fae82d8ebe9
[  532.799736][T21775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  532.799769][T21775] RSP: 002b:00007fae83cc8038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  532.799802][T21775] RAX: ffffffffffffffda RBX: 00007fae82fb5fa0 RCX: 00007fae82d8ebe9
[  532.799824][T21775] RDX: 000000000000000e RSI: 2000040080000004 RDI: 0000000000000000
[  532.799845][T21775] RBP: 00007fae82e11e19 R08: 0000000000000000 R09: 0000000000000000
[  532.799865][T21775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  532.799885][T21775] R13: 00007fae82fb6038 R14: 00007fae82fb5fa0 R15: 00007ffd3503c9d8
[  532.799929][T21775]  </TASK>
[  534.435107][T21850] FAULT_INJECTION: forcing a failure.
[  534.435107][T21850] name failslab, interval 1, probability 0, space 0, times 0
[  534.452601][T21850] CPU: 0 UID: 0 PID: 21850 Comm: syz.2.976 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  534.452653][T21850] Tainted: [U]=USER
[  534.452665][T21850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  534.452695][T21850] Call Trace:
[  534.452706][T21850]  <TASK>
[  534.452718][T21850]  dump_stack_lvl+0x16c/0x1f0
[  534.452768][T21850]  should_fail_ex+0x512/0x640
[  534.452814][T21850]  ? __kmalloc_noprof+0xbf/0x510
[  534.452857][T21850]  ? sk_prot_alloc+0x1a8/0x2a0
[  534.452909][T21850]  should_failslab+0xc2/0x120
[  534.452954][T21850]  __kmalloc_noprof+0xd2/0x510
[  534.453004][T21850]  sk_prot_alloc+0x1a8/0x2a0
[  534.453059][T21850]  sk_alloc+0x36/0xc20
[  534.453103][T21850]  pppoe_create+0x32/0x310
[  534.453144][T21850]  pppox_create+0x15c/0x2c0
[  534.453187][T21850]  __sock_create+0x338/0x8d0
[  534.453226][T21850]  __sys_socket+0x14d/0x260
[  534.453261][T21850]  ? __pfx___sys_socket+0x10/0x10
[  534.453296][T21850]  ? xfd_validate_state+0x61/0x180
[  534.453345][T21850]  ? __pfx_ksys_write+0x10/0x10
[  534.453392][T21850]  __x64_sys_socket+0x72/0xb0
[  534.453425][T21850]  ? lockdep_hardirqs_on+0x7c/0x110
[  534.453468][T21850]  do_syscall_64+0xcd/0x490
[  534.453517][T21850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  534.453548][T21850] RIP: 0033:0x7fae82d8ebe9
[  534.453575][T21850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  534.453607][T21850] RSP: 002b:00007fae83cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  534.453639][T21850] RAX: ffffffffffffffda RBX: 00007fae82fb5fa0 RCX: 00007fae82d8ebe9
[  534.453661][T21850] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000018
[  534.453691][T21850] RBP: 00007fae82e11e19 R08: 0000000000000000 R09: 0000000000000000
[  534.453713][T21850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  534.453740][T21850] R13: 00007fae82fb6038 R14: 00007fae82fb5fa0 R15: 00007ffd3503c9d8
[  534.453784][T21850]  </TASK>
[  534.694094][T21854] binder: 21853:21854 ioctl c018620c 0 returned -1
[  535.188871][ T7358] Bluetooth: hci1: command 0x0406 tx timeout
[  536.217894][T21940] dyndbg: bad flag-op , at start of 
[  536.235845][T21940] dyndbg: flags parse failed
[  536.688181][T21958] syz.3.991 (21958): /proc/21957/oom_adj is deprecated, please use /proc/21957/oom_score_adj instead.
[  536.940859][T22020] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[  536.950246][T22020] audit: out of memory in audit_log_start
[  538.084298][ T7610] Bluetooth: hci0: SCO packet for unknown connection handle 0
[  538.220575][T22092] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1013'.
[  539.531549][T22195] FAULT_INJECTION: forcing a failure.
[  539.531549][T22195] name failslab, interval 1, probability 0, space 0, times 0
[  539.550619][T22195] CPU: 1 UID: 0 PID: 22195 Comm: syz.2.1021 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  539.550659][T22195] Tainted: [U]=USER
[  539.550667][T22195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  539.550682][T22195] Call Trace:
[  539.550690][T22195]  <TASK>
[  539.550699][T22195]  dump_stack_lvl+0x16c/0x1f0
[  539.550736][T22195]  should_fail_ex+0x512/0x640
[  539.550770][T22195]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  539.550799][T22195]  should_failslab+0xc2/0x120
[  539.550831][T22195]  __kmalloc_cache_noprof+0x6a/0x3e0
[  539.550856][T22195]  ? bpf_lsm_capable+0x9/0x10
[  539.550879][T22195]  ? __do_sys_timerfd_create+0xea/0x3e0
[  539.550916][T22195]  __do_sys_timerfd_create+0xea/0x3e0
[  539.550948][T22195]  ? do_syscall_64+0x91/0x490
[  539.550982][T22195]  do_syscall_64+0xcd/0x490
[  539.551017][T22195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  539.551042][T22195] RIP: 0033:0x7fae82d8ebe9
[  539.551060][T22195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  539.551084][T22195] RSP: 002b:00007fae83cc8038 EFLAGS: 00000246 ORIG_RAX: 000000000000011b
[  539.551106][T22195] RAX: ffffffffffffffda RBX: 00007fae82fb5fa0 RCX: 00007fae82d8ebe9
[  539.551121][T22195] RDX: 0000000000000000 RSI: 0000000000000800 RDI: 0000000000000008
[  539.551135][T22195] RBP: 00007fae82e11e19 R08: 0000000000000000 R09: 0000000000000000
[  539.551150][T22195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  539.551164][T22195] R13: 00007fae82fb6038 R14: 00007fae82fb5fa0 R15: 00007ffd3503c9d8
[  539.551193][T22195]  </TASK>
[  540.096544][T22233] FAULT_INJECTION: forcing a failure.
[  540.096544][T22233] name fail_futex, interval 1, probability 0, space 0, times 1
[  540.130606][T22233] CPU: 0 UID: 0 PID: 22233 Comm: syz.0.1026 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  540.130661][T22233] Tainted: [U]=USER
[  540.130674][T22233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  540.130694][T22233] Call Trace:
[  540.130705][T22233]  <TASK>
[  540.130718][T22233]  dump_stack_lvl+0x16c/0x1f0
[  540.130769][T22233]  should_fail_ex+0x512/0x640
[  540.130825][T22233]  should_fail_futex+0x4c/0x60
[  540.130866][T22233]  __x64_sys_futex+0x25e/0x4c0
[  540.130913][T22233]  ? fdget_pos+0x2b8/0x370
[  540.130954][T22233]  ? __pfx___x64_sys_futex+0x10/0x10
[  540.130998][T22233]  ? xfd_validate_state+0x61/0x180
[  540.131049][T22233]  ? __pfx_ksys_write+0x10/0x10
[  540.131100][T22233]  do_syscall_64+0xcd/0x490
[  540.131151][T22233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  540.131184][T22233] RIP: 0033:0x7f959918ebe9
[  540.131211][T22233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  540.131244][T22233] RSP: 002b:00007f9599f1f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  540.131289][T22233] RAX: ffffffffffffffda RBX: 00007f95993b5fa0 RCX: 00007f959918ebe9
[  540.131311][T22233] RDX: 0000000000000004 RSI: 000000000000000d RDI: 0000000000000000
[  540.131332][T22233] RBP: 00007f9599211e19 R08: 0000000000000000 R09: 0000000000000008
[  540.131353][T22233] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  540.131374][T22233] R13: 00007f95993b6038 R14: 00007f95993b5fa0 R15: 00007ffd945b5878
[  540.131416][T22233]  </TASK>
[  540.479544][T22244] FAULT_INJECTION: forcing a failure.
[  540.479544][T22244] name failslab, interval 1, probability 0, space 0, times 0
[  540.492801][T22244] CPU: 1 UID: 0 PID: 22244 Comm: syz.0.1029 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  540.492853][T22244] Tainted: [U]=USER
[  540.492865][T22244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  540.492885][T22244] Call Trace:
[  540.492897][T22244]  <TASK>
[  540.492911][T22244]  dump_stack_lvl+0x16c/0x1f0
[  540.492963][T22244]  should_fail_ex+0x512/0x640
[  540.493019][T22244]  should_failslab+0xc2/0x120
[  540.493066][T22244]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  540.493108][T22244]  ? do_raw_spin_lock+0x12c/0x2b0
[  540.493157][T22244]  ? inet_bind2_bucket_create+0x36/0x580
[  540.493197][T22244]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  540.493254][T22244]  inet_bind2_bucket_create+0x36/0x580
[  540.493299][T22244]  inet_csk_get_port+0x17c4/0x2890
[  540.493356][T22244]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  540.493419][T22244]  ? __local_bh_enable_ip+0xa4/0x120
[  540.493465][T22244]  __inet_bind+0x583/0xc50
[  540.493509][T22244]  inet_bind+0xdb/0x120
[  540.493546][T22244]  kernel_bind+0xfc/0x180
[  540.493604][T22244]  ? __pfx_kernel_bind+0x10/0x10
[  540.493675][T22244]  ? __local_bh_enable_ip+0xa4/0x120
[  540.493725][T22244]  smc_bind+0x2f8/0x3b0
[  540.493779][T22244]  __sys_bind+0x1a4/0x260
[  540.493817][T22244]  ? __pfx___sys_bind+0x10/0x10
[  540.493869][T22244]  ? xfd_validate_state+0x61/0x180
[  540.493918][T22244]  ? __pfx_ksys_write+0x10/0x10
[  540.493968][T22244]  __x64_sys_bind+0x72/0xb0
[  540.494001][T22244]  ? lockdep_hardirqs_on+0x7c/0x110
[  540.494045][T22244]  do_syscall_64+0xcd/0x490
[  540.494094][T22244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  540.494128][T22244] RIP: 0033:0x7f959918ebe9
[  540.494155][T22244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  540.494189][T22244] RSP: 002b:00007f9599f1f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  540.494221][T22244] RAX: ffffffffffffffda RBX: 00007f95993b5fa0 RCX: 00007f959918ebe9
[  540.494259][T22244] RDX: 000000000000006a RSI: 0000200000000040 RDI: 0000000000000003
[  540.494281][T22244] RBP: 00007f9599211e19 R08: 0000000000000000 R09: 0000000000000000
[  540.494300][T22244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  540.494318][T22244] R13: 00007f95993b6038 R14: 00007f95993b5fa0 R15: 00007ffd945b5878
[  540.494357][T22244]  </TASK>
[  542.001006][T22314] random: crng reseeded on system resumption
[  544.119879][T22439] zswap: compressor  not available
[  546.424097][ T7610] Bluetooth: hci1: SCO packet for unknown connection handle 0
[  546.838546][T22607] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1092'.
[  546.885714][T22604] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  546.908774][T22604] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  546.957720][T22604] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  546.963900][T22604] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  546.984381][T22604] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  547.001657][T22604] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  547.098187][T22604] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  547.120156][T22604] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  548.342076][T22722] FAULT_INJECTION: forcing a failure.
[  548.342076][T22722] name failslab, interval 1, probability 0, space 0, times 0
[  548.384581][T22722] CPU: 1 UID: 0 PID: 22722 Comm: syz.0.1103 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  548.384642][T22722] Tainted: [U]=USER
[  548.384654][T22722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  548.384675][T22722] Call Trace:
[  548.384687][T22722]  <TASK>
[  548.384700][T22722]  dump_stack_lvl+0x16c/0x1f0
[  548.384751][T22722]  should_fail_ex+0x512/0x640
[  548.384797][T22722]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  548.384838][T22722]  should_failslab+0xc2/0x120
[  548.384881][T22722]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  548.384921][T22722]  ? __pfx_map_id_range_down+0x10/0x10
[  548.384969][T22722]  ? prepare_creds+0x2c/0x7d0
[  548.385025][T22722]  prepare_creds+0x2c/0x7d0
[  548.385088][T22722]  __sys_setfsgid+0xe3/0x380
[  548.385125][T22722]  ? rcu_is_watching+0x12/0xc0
[  548.385163][T22722]  do_syscall_64+0xcd/0x490
[  548.385213][T22722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  548.385247][T22722] RIP: 0033:0x7f959918ebe9
[  548.385274][T22722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  548.385309][T22722] RSP: 002b:00007f9599f1f038 EFLAGS: 00000246 ORIG_RAX: 000000000000007b
[  548.385342][T22722] RAX: ffffffffffffffda RBX: 00007f95993b5fa0 RCX: 00007f959918ebe9
[  548.385365][T22722] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  548.385384][T22722] RBP: 00007f9599211e19 R08: 0000000000000000 R09: 0000000000000000
[  548.385405][T22722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  548.385425][T22722] R13: 00007f95993b6038 R14: 00007f95993b5fa0 R15: 00007ffd945b5878
[  548.385469][T22722]  </TASK>
[  548.926384][ T7610] Bluetooth: hci3: command 0x0406 tx timeout
[  549.008071][ T7610] Bluetooth: hci2: command 0x0406 tx timeout
[  549.014194][ T7610] Bluetooth: hci0: command 0x0406 tx timeout
[  549.154967][T22737] zswap: compressor 000 not available
[  549.166459][ T7610] Bluetooth: hci1: command 0x0406 tx timeout
[  550.017474][T22845] FAULT_INJECTION: forcing a failure.
[  550.017474][T22845] name failslab, interval 1, probability 0, space 0, times 0
[  550.056140][T22849] erspan0: entered allmulticast mode
[  550.066368][T22845] CPU: 1 UID: 0 PID: 22845 Comm: syz.1.1116 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  550.066424][T22845] Tainted: [U]=USER
[  550.066436][T22845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  550.066458][T22845] Call Trace:
[  550.066469][T22845]  <TASK>
[  550.066482][T22845]  dump_stack_lvl+0x16c/0x1f0
[  550.066535][T22845]  should_fail_ex+0x512/0x640
[  550.066581][T22845]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  550.066622][T22845]  should_failslab+0xc2/0x120
[  550.066667][T22845]  __kmalloc_cache_noprof+0x6a/0x3e0
[  550.066702][T22845]  ? lockdep_init_map_type+0x5c/0x280
[  550.066747][T22845]  ? userio_char_open+0xdb/0x210
[  550.066791][T22845]  ? __init_waitqueue_head+0xca/0x150
[  550.066854][T22845]  ? __pfx_userio_char_open+0x10/0x10
[  550.066896][T22845]  userio_char_open+0xdb/0x210
[  550.066938][T22845]  ? __pfx_userio_char_open+0x10/0x10
[  550.066979][T22845]  misc_open+0x35a/0x420
[  550.067016][T22845]  ? __pfx_misc_open+0x10/0x10
[  550.067051][T22845]  chrdev_open+0x234/0x6a0
[  550.067098][T22845]  ? __pfx_chrdev_open+0x10/0x10
[  550.067145][T22845]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  550.067192][T22845]  do_dentry_open+0x982/0x1530
[  550.067234][T22845]  ? __pfx_chrdev_open+0x10/0x10
[  550.067287][T22845]  vfs_open+0x82/0x3f0
[  550.067342][T22845]  path_openat+0x1de4/0x2cb0
[  550.067396][T22845]  ? __pfx_path_openat+0x10/0x10
[  550.067449][T22845]  do_filp_open+0x20b/0x470
[  550.067489][T22845]  ? __pfx_do_filp_open+0x10/0x10
[  550.067560][T22845]  ? alloc_fd+0x471/0x7d0
[  550.067606][T22845]  do_sys_openat2+0x11b/0x1d0
[  550.067656][T22845]  ? __pfx_do_sys_openat2+0x10/0x10
[  550.067722][T22845]  __x64_sys_openat+0x174/0x210
[  550.067773][T22845]  ? __pfx___x64_sys_openat+0x10/0x10
[  550.067842][T22845]  do_syscall_64+0xcd/0x490
[  550.067898][T22845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.067931][T22845] RIP: 0033:0x7f73d238ebe9
[  550.067956][T22845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  550.067991][T22845] RSP: 002b:00007f73d31ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  550.068023][T22845] RAX: ffffffffffffffda RBX: 00007f73d25b5fa0 RCX: 00007f73d238ebe9
[  550.068043][T22845] RDX: 0000000000002000 RSI: 0000200000000340 RDI: ffffffffffffff9c
[  550.068065][T22845] RBP: 00007f73d2411e19 R08: 0000000000000000 R09: 0000000000000000
[  550.068085][T22845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  550.068104][T22845] R13: 00007f73d25b6038 R14: 00007f73d25b5fa0 R15: 00007ffeb57640a8
[  550.068147][T22845]  </TASK>
[  550.080362][T22849] usbip-vudc usbip-vudc.0: gadget not bound
[  551.006375][ T7610] Bluetooth: hci3: command 0x0406 tx timeout
[  551.036326][   T31] audit: type=1800 audit(1756170773.228:15): pid=22873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1124" name="file0" dev="tmpfs" ino=775 res=0 errno=0
[  551.087246][ T7358] Bluetooth: hci2: command 0x0406 tx timeout
[  551.093515][ T7610] Bluetooth: hci0: command 0x0406 tx timeout
[  551.106305][   T31] audit: type=1800 audit(1756170773.228:16): pid=22873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1124" name="file0" dev="tmpfs" ino=775 res=0 errno=0
[  551.249180][ T7610] Bluetooth: hci1: command 0x0406 tx timeout
[  551.266834][T22886] FAULT_INJECTION: forcing a failure.
[  551.266834][T22886] name failslab, interval 1, probability 0, space 0, times 0
[  551.266892][T22886] CPU: 1 UID: 0 PID: 22886 Comm: syz.3.1128 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  551.266939][T22886] Tainted: [U]=USER
[  551.266950][T22886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  551.266970][T22886] Call Trace:
[  551.266980][T22886]  <TASK>
[  551.266993][T22886]  dump_stack_lvl+0x16c/0x1f0
[  551.267041][T22886]  should_fail_ex+0x512/0x640
[  551.267092][T22886]  should_failslab+0xc2/0x120
[  551.267133][T22886]  __kmalloc_cache_noprof+0x6a/0x3e0
[  551.267173][T22886]  ? proc_self_get_link+0x1a9/0x230
[  551.267224][T22886]  proc_self_get_link+0x1a9/0x230
[  551.267268][T22886]  ? __pfx_proc_self_get_link+0x10/0x10
[  551.267309][T22886]  step_into+0x195e/0x2270
[  551.267353][T22886]  ? __pfx_step_into+0x10/0x10
[  551.267393][T22886]  ? lookup_fast+0x156/0x610
[  551.267433][T22886]  walk_component+0xfc/0x5b0
[  551.267470][T22886]  link_path_walk+0x627/0xe20
[  551.267519][T22886]  path_openat+0x1b0/0x2cb0
[  551.267556][T22886]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.267606][T22886]  ? __pfx_path_openat+0x10/0x10
[  551.267656][T22886]  do_filp_open+0x20b/0x470
[  551.267697][T22886]  ? __pfx_do_filp_open+0x10/0x10
[  551.267778][T22886]  ? alloc_fd+0x471/0x7d0
[  551.267828][T22886]  do_sys_openat2+0x11b/0x1d0
[  551.267882][T22886]  ? __pfx_do_sys_openat2+0x10/0x10
[  551.267952][T22886]  __x64_sys_openat+0x174/0x210
[  551.268006][T22886]  ? __pfx___x64_sys_openat+0x10/0x10
[  551.268076][T22886]  do_syscall_64+0xcd/0x490
[  551.268126][T22886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.268159][T22886] RIP: 0033:0x7f88d558ebe9
[  551.268187][T22886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  551.268220][T22886] RSP: 002b:00007f88d6351038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  551.268252][T22886] RAX: ffffffffffffffda RBX: 00007f88d57b5fa0 RCX: 00007f88d558ebe9
[  551.268274][T22886] RDX: 0000000000040302 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  551.268296][T22886] RBP: 00007f88d5611e19 R08: 0000000000000000 R09: 0000000000000000
[  551.268316][T22886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  551.268336][T22886] R13: 00007f88d57b6038 R14: 00007f88d57b5fa0 R15: 00007ffe017181e8
[  551.268379][T22886]  </TASK>
[  551.353028][T22882] ==================================================================
[  551.353052][T22882] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0xa03/0xc70
[  551.353104][T22882] Read of size 256 at addr ffff888063110fc0 by task syz.0.1127/22882
[  551.353133][T22882] 
[  551.353151][T22882] CPU: 1 UID: 0 PID: 22882 Comm: syz.0.1127 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  551.353196][T22882] Tainted: [U]=USER
[  551.353207][T22882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  551.353228][T22882] Call Trace:
[  551.353239][T22882]  <TASK>
[  551.353251][T22882]  dump_stack_lvl+0x116/0x1f0
[  551.353296][T22882]  print_report+0xcd/0x630
[  551.353340][T22882]  ? __virt_addr_valid+0x81/0x610
[  551.353382][T22882]  ? __phys_addr+0xe8/0x180
[  551.353423][T22882]  ? fbcon_prepare_logo+0xa03/0xc70
[  551.353465][T22882]  kasan_report+0xe0/0x110
[  551.353527][T22882]  ? fbcon_prepare_logo+0xa03/0xc70
[  551.353587][T22882]  kasan_check_range+0x100/0x1b0
[  551.353639][T22882]  __asan_memcpy+0x23/0x60
[  551.353672][T22882]  fbcon_prepare_logo+0xa03/0xc70
[  551.353724][T22882]  fbcon_init+0xd77/0x1900
[  551.353770][T22882]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[  551.353807][T22882]  visual_init+0x320/0x620
[  551.353845][T22882]  do_bind_con_driver.isra.0+0x57a/0xbf0
[  551.353896][T22882]  store_bind+0x61d/0x760
[  551.353939][T22882]  ? sysfs_file_kobj+0xe4/0x290
[  551.353976][T22882]  ? __pfx_store_bind+0x10/0x10
[  551.354021][T22882]  dev_attr_store+0x55/0x80
[  551.354071][T22882]  ? __pfx_dev_attr_store+0x10/0x10
[  551.354120][T22882]  sysfs_kf_write+0xf2/0x150
[  551.354157][T22882]  kernfs_fop_write_iter+0x354/0x510
[  551.354188][T22882]  ? __pfx_sysfs_kf_write+0x10/0x10
[  551.354227][T22882]  iter_file_splice_write+0xa24/0x12e0
[  551.354277][T22882]  ? __pfx_iter_file_splice_write+0x10/0x10
[  551.354319][T22882]  ? __pfx_copy_splice_read+0x10/0x10
[  551.354364][T22882]  ? __pfx_iter_file_splice_write+0x10/0x10
[  551.354403][T22882]  direct_splice_actor+0x18f/0x6c0
[  551.354442][T22882]  splice_direct_to_actor+0x345/0xa30
[  551.354477][T22882]  ? __pfx_direct_splice_actor+0x10/0x10
[  551.354518][T22882]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  551.354568][T22882]  do_splice_direct+0x174/0x240
[  551.354603][T22882]  ? __pfx_do_splice_direct+0x10/0x10
[  551.354639][T22882]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  551.354676][T22882]  ? rw_verify_area+0xcf/0x6c0
[  551.354711][T22882]  do_sendfile+0xb06/0xe50
[  551.354750][T22882]  ? __pfx_do_sendfile+0x10/0x10
[  551.354788][T22882]  ? __x64_sys_futex+0x1e0/0x4c0
[  551.354829][T22882]  ? __x64_sys_futex+0x1e9/0x4c0
[  551.354876][T22882]  __x64_sys_sendfile64+0x1d8/0x220
[  551.354924][T22882]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  551.354977][T22882]  do_syscall_64+0xcd/0x490
[  551.355025][T22882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.355059][T22882] RIP: 0033:0x7f959918ebe9
[  551.355083][T22882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  551.355116][T22882] RSP: 002b:00007f9599f1f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  551.355148][T22882] RAX: ffffffffffffffda RBX: 00007f95993b5fa0 RCX: 00007f959918ebe9
[  551.355170][T22882] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  551.355190][T22882] RBP: 00007f9599211e19 R08: 0000000000000000 R09: 0000000000000000
[  551.355211][T22882] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  551.355230][T22882] R13: 00007f95993b6038 R14: 00007f95993b5fa0 R15: 00007ffd945b5878
[  551.355263][T22882]  </TASK>
[  551.355274][T22882] 
[  551.355282][T22882] Allocated by task 22731:
[  551.355298][T22882]  kasan_save_stack+0x33/0x60
[  551.355336][T22882]  kasan_save_track+0x14/0x30
[  551.355372][T22882]  __kasan_slab_alloc+0x89/0x90
[  551.355412][T22882]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  551.355450][T22882]  __kernfs_new_node+0xd2/0x8e0
[  551.355491][T22882]  kernfs_new_node+0x13c/0x1e0
[  551.355536][T22882]  kernfs_create_dir_ns+0x4c/0x1a0
[  551.355631][T22882]  internal_create_group+0x34d/0xf30
[  551.355673][T22882]  internal_create_groups+0x9d/0x150
[  551.355716][T22882]  device_add+0xf30/0x1aa0
[  551.355744][T22882]  netdev_register_kobject+0x1a9/0x3d0
[  551.355798][T22882]  register_netdevice+0x13dc/0x2270
[  551.355847][T22882]  register_netdev+0x34/0x50
[  551.355894][T22882]  ip6gre_init_net+0x306/0x450
[  551.355924][T22882]  ops_init+0x1e2/0x5f0
[  551.355967][T22882]  setup_net+0x10f/0x380
[  551.356011][T22882]  copy_net_ns+0x2a6/0x5f0
[  551.356059][T22882]  create_new_namespaces+0x3ea/0xa90
[  551.356095][T22882]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  551.356132][T22882]  ksys_unshare+0x45b/0xa40
[  551.356175][T22882]  __x64_sys_unshare+0x31/0x40
[  551.356216][T22882]  do_syscall_64+0xcd/0x490
[  551.356258][T22882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.356290][T22882] 
[  551.356297][T22882] Freed by task 15:
[  551.356312][T22882]  kasan_save_stack+0x33/0x60
[  551.356349][T22882]  kasan_save_track+0x14/0x30
[  551.356385][T22882]  kasan_save_free_info+0x3b/0x60
[  551.356436][T22882]  __kasan_slab_free+0x60/0x70
[  551.356474][T22882]  kmem_cache_free+0x2d1/0x4d0
[  551.356509][T22882]  rcu_core+0x799/0x1530
[  551.356535][T22882]  handle_softirqs+0x219/0x8e0
[  551.356579][T22882]  run_ksoftirqd+0x3a/0x60
[  551.356615][T22882]  smpboot_thread_fn+0x3f4/0xae0
[  551.356653][T22882]  kthread+0x3c5/0x780
[  551.356699][T22882]  ret_from_fork+0x5d4/0x6f0
[  551.356750][T22882]  ret_from_fork_asm+0x1a/0x30
[  551.356790][T22882] 
[  551.356797][T22882] Last potentially related work creation:
[  551.356808][T22882]  kasan_save_stack+0x33/0x60
[  551.356845][T22882]  kasan_record_aux_stack+0xa7/0xc0
[  551.356898][T22882]  __call_rcu_common.constprop.0+0xa5/0xa10
[  551.356949][T22882]  kernfs_put.part.0+0x162/0x640
[  551.356993][T22882]  kernfs_put+0x4e/0x60
[  551.357031][T22882]  sysfs_remove_group+0xc6/0x180
[  551.357072][T22882]  sysfs_remove_groups+0x60/0xa0
[  551.357115][T22882]  device_remove_attrs+0x192/0x290
[  551.357153][T22882]  device_del+0x38e/0x9f0
[  551.357195][T22882]  unregister_netdevice_many_notify+0x14f0/0x24c0
[  551.357243][T22882]  ops_undo_list+0x8fc/0xab0
[  551.357288][T22882]  cleanup_net+0x408/0x890
[  551.357335][T22882]  process_one_work+0x9cf/0x1b70
[  551.357386][T22882]  worker_thread+0x6c8/0xf10
[  551.357412][T22882]  kthread+0x3c5/0x780
[  551.357457][T22882]  ret_from_fork+0x5d4/0x6f0
[  551.357507][T22882]  ret_from_fork_asm+0x1a/0x30
[  551.357545][T22882] 
[  551.357552][T22882] The buggy address belongs to the object at ffff888063110f00
[  551.357552][T22882]  which belongs to the cache kernfs_node_cache of size 176
[  551.357587][T22882] The buggy address is located 16 bytes to the right of
[  551.357587][T22882]  allocated 176-byte region [ffff888063110f00, ffff888063110fb0)
[  551.357622][T22882] 
[  551.357630][T22882] The buggy address belongs to the physical page:
[  551.357644][T22882] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x63110
[  551.357673][T22882] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  551.357699][T22882] page_type: f5(slab)
[  551.357728][T22882] raw: 00fff00000000000 ffff88801ce9adc0 dead000000000122 0000000000000000
[  551.357757][T22882] raw: 0000000000000000 0000000000110011 00000000f5000000 0000000000000000
[  551.357777][T22882] page dumped because: kasan: bad access detected
[  551.357793][T22882] page_owner tracks the page as allocated
[  551.357804][T22882] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 22731, tgid 22730 (syz.3.1107), ts 549532324315, free_ts 549467395580
[  551.357859][T22882]  post_alloc_hook+0x1c0/0x230
[  551.357893][T22882]  get_page_from_freelist+0x132b/0x38e0
[  551.357931][T22882]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  551.357969][T22882]  alloc_pages_mpol+0x1fb/0x550
[  551.358011][T22882]  new_slab+0x247/0x330
[  551.358037][T22882]  ___slab_alloc+0xcf2/0x1740
[  551.358066][T22882]  __slab_alloc.constprop.0+0x56/0xb0
[  551.358097][T22882]  kmem_cache_alloc_noprof+0xef/0x3b0
[  551.358134][T22882]  __kernfs_new_node+0xd2/0x8e0
[  551.358173][T22882]  kernfs_new_node+0x13c/0x1e0
[  551.358217][T22882]  __kernfs_create_file+0x53/0x350
[  551.358248][T22882]  sysfs_add_file_mode_ns+0x207/0x3c0
[  551.358286][T22882]  internal_create_group+0x578/0xf30
[  551.358328][T22882]  internal_create_groups+0x9d/0x150
[  551.358370][T22882]  device_add+0x6d1/0x1aa0
[  551.358395][T22882]  netdev_register_kobject+0x1a9/0x3d0
[  551.358446][T22882] page last free pid 5851 tgid 5851 stack trace:
[  551.358464][T22882]  __free_frozen_pages+0x7d5/0x10f0
[  551.358494][T22882]  vfree+0x1fd/0xb50
[  551.358540][T22882]  delayed_vfree_work+0x56/0x70
[  551.358597][T22882]  process_one_work+0x9cf/0x1b70
[  551.358647][T22882]  worker_thread+0x6c8/0xf10
[  551.358671][T22882]  kthread+0x3c5/0x780
[  551.358714][T22882]  ret_from_fork+0x5d4/0x6f0
[  551.358763][T22882]  ret_from_fork_asm+0x1a/0x30
[  551.358802][T22882] 
[  551.358809][T22882] Memory state around the buggy address:
[  551.358826][T22882]  ffff888063110e80: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  551.358849][T22882]  ffff888063110f00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  551.358873][T22882] >ffff888063110f80: fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc
[  551.358892][T22882]                                            ^
[  551.358911][T22882]  ffff888063111000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  551.358934][T22882]  ffff888063111080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  551.358951][T22882] ==================================================================
[  551.368700][T22882] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  551.368733][T22882] CPU: 0 UID: 0 PID: 22882 Comm: syz.0.1127 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  551.368784][T22882] Tainted: [U]=USER
[  551.368796][T22882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  551.368822][T22882] Call Trace:
[  551.368833][T22882]  <TASK>
[  551.368846][T22882]  dump_stack_lvl+0x3d/0x1f0
[  551.368894][T22882]  vpanic+0x6e8/0x7a0
[  551.368941][T22882]  ? __pfx_vpanic+0x10/0x10
[  551.368995][T22882]  ? fbcon_prepare_logo+0xa03/0xc70
[  551.369037][T22882]  panic+0xca/0xd0
[  551.369083][T22882]  ? __pfx_panic+0x10/0x10
[  551.369132][T22882]  ? fbcon_prepare_logo+0xa03/0xc70
[  551.369175][T22882]  ? preempt_schedule_common+0x44/0xc0
[  551.369218][T22882]  ? preempt_schedule_thunk+0x16/0x30
[  551.369273][T22882]  check_panic_on_warn+0xab/0xb0
[  551.369323][T22882]  end_report+0x107/0x170
[  551.369366][T22882]  kasan_report+0xee/0x110
[  551.369409][T22882]  ? fbcon_prepare_logo+0xa03/0xc70
[  551.369458][T22882]  kasan_check_range+0x100/0x1b0
[  551.369509][T22882]  __asan_memcpy+0x23/0x60
[  551.369542][T22882]  fbcon_prepare_logo+0xa03/0xc70
[  551.369595][T22882]  fbcon_init+0xd77/0x1900
[  551.369638][T22882]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[  551.369675][T22882]  visual_init+0x320/0x620
[  551.369712][T22882]  do_bind_con_driver.isra.0+0x57a/0xbf0
[  551.369762][T22882]  store_bind+0x61d/0x760
[  551.369813][T22882]  ? sysfs_file_kobj+0xe4/0x290
[  551.369850][T22882]  ? __pfx_store_bind+0x10/0x10
[  551.369890][T22882]  dev_attr_store+0x55/0x80
[  551.369939][T22882]  ? __pfx_dev_attr_store+0x10/0x10
[  551.369989][T22882]  sysfs_kf_write+0xf2/0x150
[  551.370025][T22882]  kernfs_fop_write_iter+0x354/0x510
[  551.370057][T22882]  ? __pfx_sysfs_kf_write+0x10/0x10
[  551.370096][T22882]  iter_file_splice_write+0xa24/0x12e0
[  551.370144][T22882]  ? __pfx_iter_file_splice_write+0x10/0x10
[  551.370184][T22882]  ? __pfx_copy_splice_read+0x10/0x10
[  551.370230][T22882]  ? __pfx_iter_file_splice_write+0x10/0x10
[  551.370268][T22882]  direct_splice_actor+0x18f/0x6c0
[  551.370306][T22882]  splice_direct_to_actor+0x345/0xa30
[  551.370343][T22882]  ? __pfx_direct_splice_actor+0x10/0x10
[  551.370383][T22882]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  551.370424][T22882]  do_splice_direct+0x174/0x240
[  551.370458][T22882]  ? __pfx_do_splice_direct+0x10/0x10
[  551.370492][T22882]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  551.370530][T22882]  ? rw_verify_area+0xcf/0x6c0
[  551.370566][T22882]  do_sendfile+0xb06/0xe50
[  551.370607][T22882]  ? __pfx_do_sendfile+0x10/0x10
[  551.370648][T22882]  ? __x64_sys_futex+0x1e0/0x4c0
[  551.370690][T22882]  ? __x64_sys_futex+0x1e9/0x4c0
[  551.370736][T22882]  __x64_sys_sendfile64+0x1d8/0x220
[  551.370785][T22882]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  551.370851][T22882]  do_syscall_64+0xcd/0x490
[  551.370899][T22882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.370934][T22882] RIP: 0033:0x7f959918ebe9
[  551.370960][T22882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  551.370994][T22882] RSP: 002b:00007f9599f1f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  551.371027][T22882] RAX: ffffffffffffffda RBX: 00007f95993b5fa0 RCX: 00007f959918ebe9
[  551.371049][T22882] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  551.371069][T22882] RBP: 00007f9599211e19 R08: 0000000000000000 R09: 0000000000000000
[  551.371089][T22882] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  551.371109][T22882] R13: 00007f95993b6038 R14: 00007f95993b5fa0 R15: 00007ffd945b5878
[  551.371141][T22882]  </TASK>
[  551.371433][T22882] Kernel Offset: disabled