last executing test programs:

8m48.550895475s ago: executing program 0 (id=201):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
bpf$auto(0x8000000, 0x0, 0x0)
r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x40, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000002c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1d\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"P\x8a\xbbY8@Z5`\xa2\x9aSVd\x1d\xac\xe8\x90e\x9d\x03tm\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7.\xbe\x01\x98\xd7l\x00\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfa\xf0\xd9\xc0K\x8b\xa3c\x00'/160, 0xa9)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, 0x0, 0x20000054)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
shmctl$auto_SHM_LOCK(0x2, 0xb, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x4c2080, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20004000)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
r2 = socketpair$auto(0x0, 0x1000, 0x7fffffff, 0x0)
close_range$auto(r2, 0xffffffffffffffff, 0x0)
ioctl$auto(0x3, 0x6f50, 0xffffffffffffffff)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x810004, 0x2000000efb, 0x8000000008011, r1, 0x8000)
setresgid$auto(0x0, 0x0, 0x0)
r3 = ioctl$auto_NS_GET_TGID_IN_PIDNS(r0, 0x8004b709, &(0x7f0000000240)=0x3)
shmctl$auto_SHM_STAT(0x1, 0xd, &(0x7f00000029c0)={{0x3, 0x0, 0x0, 0x80000001, 0x6, 0xca, 0x8}, 0x1, 0x2, 0x2, 0x6, @inferred=r3, @raw=0x8, 0x0, 0x0, 0x0, &(0x7f00000019c0)="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"})
ioctl$auto_BLKRRPART(r1, 0x125f, 0x0)
madvise$auto(0x0, 0x400053, 0x9)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/framebuffer\x00', 0x0, 0x0)
read$auto(r5, &(0x7f0000000100)='>A\xff\xfd]\xbc\x10V\x00', 0x40)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r4, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r4)
read$auto(r4, &(0x7f0000000000)='\x00', 0x91e2)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)

8m47.491711709s ago: executing program 0 (id=204):
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/event0\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
io_uring_setup$auto(0x3, 0x0)
personality$auto(0x40004010410ffc)
mmap$auto(0xfffffffffffffffc, 0x2000000007, 0xffb, 0x800400000801d, 0x3, 0x8000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f00000001c0), r0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x28, 0x801, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51)
shutdown$auto(0x200000003, 0x0)
connect$auto(r4, 0x0, 0x51)
sendmsg$auto_BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x20, r3, 0x2, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_TT_ADDRESS={0xa, 0x10, @broadcast}]}, 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x8001)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r5)
setsockopt$auto_SO_DEVMEM_DONTNEED(r1, 0xfffffffb, 0x50, &(0x7f00000003c0)='wg0\x00', 0xc787)
sendmsg$auto_TASKSTATS_CMD_GET(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x14, r6, 0xa05, 0x70bd2b, 0x25dfdbfa}, 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0x20004000)
r7 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
sendmsg$auto_CGROUPSTATS_CMD_GET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r6, 0x200, 0x70bd25, 0x25dfdbff, {}, [@CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000001}, 0x44000)
r8 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x60, 0x0, 0x231, 0x70bd28, 0x25dfdbff, {}, [@L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x5}, @L2TP_ATTR_DATA_SEQ={0x5}, @L2TP_ATTR_SEND_SEQ={0x5, 0x13, 0x8}, @L2TP_ATTR_IFNAME={0x14, 0x8, 'wg0\x00'}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @L2TP_ATTR_COOKIE={0xc, 0xf, 0xdc8}]}, 0x60}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x353)
ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x68)
ioctl$auto_FBIOPUT_VSCREENINFO(r8, 0x4601, &(0x7f0000000080))

8m47.26150891s ago: executing program 0 (id=206):
r0 = pidfd_open$auto(0x0, 0x4)
mmap$auto(0x5, 0x5, 0x80, 0x13, r0, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x26, 0x0)
open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x10a)
r1 = fsopen$auto(0x0, 0x1)
r2 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2062, 0x0)
write$auto(r3, 0x0, 0x98c7)
ioctl$auto_USBDEVFS_REAPURB32(0xffffffffffffffff, 0x4004550c, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000340)={0x2, 0x0, 0x4, 0x81, &(0x7f00000001c0), 0x9, 0xeb8e, 0x0, @number_of_packets=0xfffffff7, 0x7, 0x800476, 0x0})
fchdir$auto(0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_ADD_TXSA(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYRES32=r1, @ANYRES64=r2, @ANYBLOB="04000380"], 0x20}, 0x1, 0x0, 0x0, 0x8c1}, 0x91)
open(0x0, 0x22240, 0x155)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0xb, 0x0)
socket(0xa, 0x801, 0x84)
bind$auto(0x3, 0x0, 0x6a)
prctl$auto(0x41, 0x2, 0x0, 0x0, 0x0)
openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42000, 0x0)
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
read$auto(0xffffffffffffffff, 0x0, 0xb4d3)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)

8m46.635386929s ago: executing program 0 (id=209):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x5, 0x4, 0x7)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x42800, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x22002, 0x0)
r1 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/mem\x00', 0x200, 0x0)
read$auto_proc_mem_operations_base(r1, &(0x7f0000000200)=""/81, 0x51)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
setsockopt$auto_SO_NOFCS(r0, 0x6, 0x2b, &(0x7f00000000c0)='[ \\\x00', 0x9)
r2 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x0, 0x0)
pread64$auto(r2, 0x0, 0x100000009, 0xa4000000000002)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x2, 0x5, 0x0)
r3 = io_uring_setup$auto(0x406, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, 0x0, 0x80)
getrandom$auto(0x0, 0x6000000, 0x3)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46)
io_uring_enter$auto(r3, 0x7, 0x7ffffffb, 0x3, 0x0, 0x3)
move_pages$auto(0x0, 0xa, 0x0, 0x0, 0x0, 0x2)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
acct$auto(&(0x7f0000000180)=':.\xf8}/\x00')
ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(r3, 0x7ab, 0x0)
ioctl$auto_SNAPSHOT_FREE(0xffffffffffffffff, 0x3305, 0x0)
io_uring_enter$auto(0x3, 0x5, 0x5f3, 0x3, 0x0, 0x2)

8m44.922066589s ago: executing program 0 (id=212):
r0 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
read$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(r0, 0x0, 0x17)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
mincore$auto(0x1000, 0x8001, 0x0)
socket(0x18, 0x80004, 0x1)
socket(0x2, 0x3, 0xa)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/memory15/online\x00', 0xa001, 0x0)
write$auto(r1, &(0x7f0000000140)='0[.[\x00', 0xcd04)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/lru_gen/enabled\x00', 0xb02, 0x0)
sendfile$auto(r2, r2, 0x0, 0x1)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f00000000c0), 0x1000000, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x34d802, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x6)
lsm_list_modules$auto(0x0, 0x0, 0x0)

8m42.471427326s ago: executing program 0 (id=222):
mmap$auto(0x0, 0x2020409, 0xa, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
umount2$auto(&(0x7f0000000040)=',*^},\'\x00', 0xe42b)
keyctl$auto(0x14, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x0, 0x1)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
write$auto(0x3, 0x0, 0x7fffffff)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/memory_hotplug/parameters/online_policy\x00', 0x2, 0x0)
read$auto(r1, 0x0, 0x800)

8m26.928739478s ago: executing program 32 (id=222):
mmap$auto(0x0, 0x2020409, 0xa, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
umount2$auto(&(0x7f0000000040)=',*^},\'\x00', 0xe42b)
keyctl$auto(0x14, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x0, 0x1)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
write$auto(0x3, 0x0, 0x7fffffff)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/memory_hotplug/parameters/online_policy\x00', 0x2, 0x0)
read$auto(r1, 0x0, 0x800)

13.874833382s ago: executing program 3 (id=1726):
r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
fallocate$auto(r0, 0x1, 0x820, 0x7fff)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000140), 0x4a002, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/lapb4/ifalias\x00', 0x1a1842, 0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
shmctl$auto_IPC_INFO(0x1, 0x3, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop3\x00', 0xf0740, 0x0)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/027/001\x00', 0x4a901, 0x0)
ioctl$auto_USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f00000001c0)={0x0, 0x5516, 0x0})
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0x800000000000100}, 0x7, 0x5, 0xfa)
lseek$auto(0x3, 0x0, 0x1)
write$auto(0x3, 0x0, 0xfdef)
munmap$auto(0x8000, 0xffffffff)
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(0xffffffffffffffff, 0x0, 0x4000000)
read$auto(r1, 0x0, 0x1ff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)
statmount$auto(&(0x7f0000000040)={0x7f, @inferred=r1, 0x55, 0x4000, 0x8}, &(0x7f0000000240)={0xf1f, 0x9, 0x82, 0x3, 0x6, 0x10000000000000, 0x56, 0x9, 0x5, 0x9, 0x3, 0x6, 0x8, 0x7fffffffffffffff, 0x19, 0x6b8, 0xe43, 0x6, 0x80, 0x3ff, 0x1, 0xff, 0x7, 0x8, 0x7ff, 0x5, 0x7fff, 0x4, 0x0, 0x4, 0xc, [0xfffffffffffffee2, 0x6, 0x5, 0x8, 0x5, 0xb, 0xe000000000000000, 0x0, 0xfffffffffffffffa, 0x3, 0x401, 0xffffffffffffffff, 0x7, 0x3, 0x7, 0x1, 0xffffffff7fffffff, 0x800000, 0x5, 0x588ddc1d, 0x4, 0x10001, 0x8, 0x0, 0x8000, 0x9, 0x6, 0x200000000, 0x0, 0x6, 0x239, 0x400, 0xf4c1, 0x3, 0x7, 0x8000000000000001, 0x9, 0x80000001, 0x400, 0x0, 0xff, 0x28, 0x4], "e98e6c6011021e87b1983fccef2f38ab785f155ab24a0e394cf203bb2c15d0ac4f06d4510050d2572d554ce8e8d297d34c5f832ab3fa8d380e"}, 0xb, 0xc)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x13, 0x0, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x40000, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop7\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
ioctl$auto_BLKGETSIZE(r3, 0x1260, 0x0)

13.251236841s ago: executing program 1 (id=1727):
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000005cc0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000005e40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010025bd7000fddbdf253700000008002600e100000008000300", @ANYRES32, @ANYBLOB='\b\x00W'], 0x2c}, 0x1, 0x0, 0x0, 0x24008855}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x80002, 0x73)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/dummy_hcd.3/usb4/avoid_reset_quirk\x00', 0x129302, 0x0)
write$auto(r1, 0x0, 0x6)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000240), 0xffffffffffffffff)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket(0x10, 0x2, 0x4)
socket(0x10, 0x3, 0x6)
r2 = socket(0x10, 0x3, 0x4)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r3, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100005800c00c50003000000000000000c02368008027a8087010c800800e800", @ANYRES32=r2, @ANYBLOB="0800fb00", @ANYRES32], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x80000001}, 0x20000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66)
mmap$auto(0x0, 0x400008, 0x200000000df, 0x9b72, 0x2, 0x8000)
r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x5})

9.65552823s ago: executing program 3 (id=1731):
r0 = prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r1 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
r2 = syz_genetlink_get_family_id$auto_tipcv2(0x0, r0)
r3 = getpgid$auto(0xffffffffffffffff)
sendmsg$auto_TIPC_NL_NAME_TABLE_GET(r1, &(0x7f0000001300)={0x0, 0x0, &(0x7f00000012c0)={&(0x7f0000000100)={0x11a4, r2, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x1078, 0x2, 0x0, 0x1, [@nested={0x8, 0x107, 0x0, 0x1, [@nested={0x4, 0x4d}]}, @typed={0x5, 0x9, 0x0, 0x0, @str='\x00'}, @generic="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", @nested={0x4a, 0xd0, 0x0, 0x1, [@typed={0x8, 0xf, 0x0, 0x0, @fd=r0}, @generic="51aa0f39e14d21639c57c8230a2320876f71b75ef3650c245e6f6790534b", @generic="df3cf08e", @typed={0x14, 0x2c, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @nested={0x4, 0x37}, @generic, @nested={0x4, 0x14e}]}, @typed={0x8, 0x62, 0x0, 0x0, @pid=r3}, @typed={0x8, 0x5e, 0x0, 0x0, @fd=r1}, @typed={0x8, 0x158, 0x0, 0x0, @pid}]}, @TIPC_NLA_SOCK={0x115, 0x2, 0x0, 0x1, [@generic="9e767becfd752dd7f58ba91f93364738b9ea13970a6be73b1e382f30b7079ffd66a22dcdafb73240815feedea66c", @generic="330b3885738fe4fe5aecdd3fa74c29975fff23aaa7519e3afe9e85ffcc978be99b075865795fffaaef2d09edcf9eaef0ea089ede192073cb79b468b34ff0e8439611ba3c0d2cb89b45daf742b7a6b8cf9e87e44e919154e940b0422317aeaa06b5b277b50fdf17ace65e315080891497232363422e24908ade349548c8eeb225ff6ffdbfffe388f1534cddbaf0cf67fb34e1a477c455e610af4e707e9ce3a1ab9563ca3d8de9a7bb6245d24713980c4aacd1c67b9a002eee327b97633a3c40c2a71e1f26588f5e816d528937bc9b56b4898b2f010472ef03f1631e6e4b2b977f0ae7d6"]}]}, 0x11a4}, 0x1, 0x0, 0x0, 0x40c0}, 0x20000881)
close_range$auto(0x2, 0x8, 0x0)

9.130730147s ago: executing program 1 (id=1733):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
seccomp$auto(0x2, 0x10, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
fchmodat2$auto(0xffffffffffffffff, 0x0, 0x6, 0x8)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty1\x00', 0xa0000, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x2, 0x1d2c, 0x3, 0x4, 0x15f4da0e, 0x6, 0x9, 0x100000000000000c, 0x8, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
get_mempolicy$auto(0x0, 0x0, 0x2, 0x86, 0x9)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dri/card2\x00', 0x688200, 0x0)
mmap$auto(0xd, 0x2000a, 0x5, 0xeb1, 0x401, 0x10000008000)
socket(0xa, 0x801, 0x100)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/use_carrier\x00', 0x103b02, 0x0)
sendfile$auto(r0, r0, 0x0, 0x8080000001)
mmap$auto(0x4, 0x6, 0xdb, 0xebb, 0x40000000000a5, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)

7.952305391s ago: executing program 3 (id=1735):
mmap$auto(0x0, 0xa, 0xdf, 0xeb1, 0x401, 0x80000000008000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = fcntl$auto_F_UNLCK(r1, 0x80000000, 0x2)
r3 = socket(0x28, 0x1, 0x0)
r4 = pipe2$auto(0x0, 0x80)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x5, 0x0)
recvmmsg$auto(0x3, 0x0, 0x7bf, 0x7bd6, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), r3)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r5)
sendmsg$auto_NL80211_CMD_ADD_TX_TS(r4, &(0x7f0000000340)={&(0x7f0000000100), 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x18, r6, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_STA_EXT_CAPABILITY={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x80}, 0x810)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x121002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x5, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x5, 0x1, 0xfffffffffffffffe]}, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x4e, &(0x7f0000000180)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5', 0x10000110)
bind$auto(0x3, 0x0, 0x6a)
unshare$auto(0x40000080)
ioctl$auto_FS_IOC_GETFSLABEL2(r2, 0x81009431, &(0x7f0000000380)="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")

6.860692107s ago: executing program 2 (id=1736):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000005cc0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000005d00)={'wlan0\x00', <r2=>0x0})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000005e40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000fddbdf253700000008002600e100000008000300", @ANYRES32=r2, @ANYBLOB="080057008813"], 0x2c}, 0x1, 0x0, 0x0, 0x24008855}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_GET_MSRS(r4, 0x4010aeab, &(0x7f00000000c0)={0xdd})
mmap$auto(0x3ff, 0x40000b, 0xe0, 0x9b70, 0x2, 0x400000000008000)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003900), 0xffffffffffffffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vhci_hcd.0/detach\x00', 0x101001, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC2\x00', 0x0, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
listen$auto(0x3, 0x81)
madvise$auto(0x0, 0xa1, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/maps\x00', 0x40000, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
mmap$auto(0x9, 0x400000cc4, 0xfffffffffffffff8, 0x800018, 0x2, 0x5b3)
setsockopt$auto(0x3, 0x0, 0xf, 0x0, 0xb)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)

4.036713939s ago: executing program 2 (id=1738):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/oom_score_adj\x00', 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop6\x00', 0x101202, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000540)='/sys/devices/virtual/net/erspan0/threaded\x00', 0x143001, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
read$auto(r0, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)
madvise$auto(0x3, 0x3800000000, 0xb)
r1 = socket(0xa, 0x801, 0x84)
getsockopt$auto_SO_TIMESTAMPING_NEW(r1, 0x0, 0x41, 0x0, &(0x7f00000000c0)=0xffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = socket(0x29, 0x2, 0x0)
ioctl$auto(r2, 0x89e2, 0x38)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
fanotify_init$auto(0x5, 0x800)
pipe2$auto(0x0, 0x80)
ioctl$auto(0x1, 0x5761, 0x4)
socket(0x2, 0x1, 0x106)
socket(0x21, 0x2, 0x2)
setsockopt$auto(0x3, 0x1000000110, 0x2, 0x0, 0xdf)

3.463205697s ago: executing program 2 (id=1739):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r0 = eventfd$auto(0x7f)
read$auto_vhci_fops_hci_vhci(r0, &(0x7f0000000200)=""/36, 0x24)
close_range$auto(0x2, 0x8, 0x0)
r1 = fanotify_init$auto(0x5, 0x2000000000002)
r2 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/kernel/config/target/dbroot\x00', 0x40180, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000600)='/dev/input/event1\x00', 0x240, 0x0)
setfsuid$auto(0xee00)
keyctl$auto(0x8, 0x0, 0x0, 0x0, 0x2)
fchmod$auto(r2, 0x0)
r3 = socket(0x2, 0x801, 0x100)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x1ff, 0x7c9, 0x27, 0x4909b6f5, 0x1ffe0, 0x7, 0xffffffff, 0x20000009, 0x9, 0x3, 0x4, 0x1, 0x68d, 0x9, 0x8, 0x10003, 0x80, 0x3, 0x0, 0x6, 0x22000, 0x200, 0xffffff28, 0x84, 0x0, 0xffffffff, 0x0, 0x0, 0x0, [0x8000000000000000, 0x101, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x6, 0xfffffffffffffffc, 0x0, 0x0, 0x80000, 0x0, 0xffff, 0x10, 0x0, 0x8, 0x10000, 0x0, 0x8, 0x90, 0x6, 0xbdcc, 0x10000, 0xfffffffffffffffe, 0x0, 0x100]}, 0x1fe, 0x9)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x20000008}, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r4 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x1892, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0xb, 0xa505}, 0x800}, 0x7, 0x4008)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/driver/serial\x00', 0x20000, 0x0)
pread64$auto(r5, &(0x7f00000000c0)='\x04\xefr\tbgc/\xd0\xe1\xf7$/tg/,s\b\xf5\xf7\x0f\x03\xd5\xef\xbf\xf6j\xe2\xed\x7f0\b\xff^\xe3th\xd2\x1bA\xba&\xba\xd0\xbb\xca\xb0\xa1\t\x00\x00\r(\xccF\xeeg\n\x00\x00\xa9l\x9cd\xcf\xff\x97=\xf4\xa1\xca\x82j\xf2\x17\t\x00\x00\x00\x00\x00\x00\x000\xf76\xb96\xd1\xb9\xde\xe2\x167\xc5\x94\x00A[B\xd9\x82\xaa\xc5\xfcoB\xfe\'\xfbI\xc9\xcb\xc3\xc1\x1e6~\x81\xb9\x0ff\x8e\xd3\x06\xba;yX\x966\x97#\xfb\x8d!F\xfc\x99\x86\x1d\xbb\xaf(\x92\x887\x01Z\xa7\xe3Y\x17\xd2#\x8aO\xef\r\xfa\xe0\x18IiI\xaek\xa9R\x02N;+@\x12>\'\x1a\xa6i\x93\x8c\x16BO@ \xb5\xd9\xd0\xb6S\xfc\x17\xe4\x8a\x00\x00$\xean\xa1|D\xbbV%\xde\x87\xd1@\x00\x8cM\xfdr\xc9\x86\xbaq\xf5\x9eP\xfcd\xd93\x9f%\r\x80/:\x87\xc3\x1c:;g\x18\xe5\xdeU#\xd2\xa8\x9a\xd8Yeo\xd9\x8f\xea\x12M#\x824\xa7\x95B\xc6\xb0\xf82\xf0Rp\x1b i\xa4p\xa7\xec\t\xc7}_\xd0\x8dy\x9b\xe1\x98\t\x9f\x90\xe4', 0x100003ffd, 0x6)
r6 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
fcntl$auto_F_SETPIPE_SZ(r0, 0x407, 0x10001)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = getpid()
process_vm_readv$auto(r8, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000040), 0x40000000001243}, 0x4, 0x0)
sendmsg$auto_OVS_FLOW_CMD_GET(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)=ANY=[@ANYRES64=r5, @ANYRES16=r6, @ANYRES8=r8], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
ioctl$auto_XFS_IOC_OPEN_BY_HANDLE(r1, 0xc038586b, &(0x7f0000000580)={r3, &(0x7f0000000380)="7c2eee51f35f43d3f657eafe8def717d7e5660576ec8d30fc68998bbb062aba07ace3fda", 0x40, &(0x7f00000003c0)="bf2f7493b3431750e9134d5dc199a2a42d365676aabbba1e3c1f449477dd8cc4872dec73b94ef75222674e50a2b817ab8e58d2733931229859e94588726b0d256b268535b01789c20cb15adebb3342365b6986588061759bb10b46ac91122853051a5c99b0e1ff3b96db8e47b7f2cd2c875835efe122d7cc0b957534b60459953e299cf7c78954d8", 0xef08, &(0x7f0000000480)="2d75269c095b4477a465deda5d371e39de37151f696ffd332c15e17cb1cda712d5250fd0c9d4bf70d8b9286de826c8ec6431bff12adb0f3c344146a8bf022fdf78fa8f8b1d1f3fa323d47e35587cd2aba6e762027aed2c6e689961b6e5aab703e9e18528e5196fcded6c5b453fef65006f9bef93b06abc7809c2384aaea8b8f9b5a1a891208ca96edcf8e316a8847c73988f46a43f0c6d", &(0x7f0000000540)=0x87})

2.99128037s ago: executing program 2 (id=1741):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x23, 0xa, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
seccomp$auto(0x2, 0x10, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty1\x00', 0xa0000, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x2, 0x1d2c, 0x3, 0x4, 0x15f4da0e, 0x6, 0x9, 0x100000000000000c, 0x8, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
get_mempolicy$auto(0x0, 0x0, 0x2, 0x86, 0x9)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dri/card2\x00', 0x688200, 0x0)
mmap$auto(0xd, 0x2000a, 0x5, 0xeb1, 0x401, 0x10000008000)
socket(0xa, 0x801, 0x100)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/use_carrier\x00', 0x103b02, 0x0)
sendfile$auto(r0, r0, 0x0, 0x8080000001)
mmap$auto(0x4, 0x6, 0xdb, 0xebb, 0x40000000000a5, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

2.965581507s ago: executing program 1 (id=1742):
connect$auto(0x3, 0x0, 0x58)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x8)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000084}, 0x4004)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x10, 0x2, 0xc)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="01"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}}, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB='q\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="10002cbd7000df250a0a08000a"], 0x10e}}, 0x10004010) (fail_nth: 7)
madvise$auto(0x0, 0x200007, 0x8)

2.520079668s ago: executing program 3 (id=1743):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001340)='/sys/devices/virtual/block/ram8/queue/max_hw_sectors_kb\x00', 0x101080, 0x0)
pread64$auto(r0, &(0x7f0000002640)='#+&\\%/\x00', 0x7050, 0x0)

2.471694625s ago: executing program 1 (id=1744):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001340)='/sys/devices/virtual/block/ram8/queue/max_hw_sectors_kb\x00', 0x101080, 0x0)
pread64$auto(r0, &(0x7f0000002640)='#+&\\%/\x00', 0x7050, 0x0) (fail_nth: 3)

2.422692377s ago: executing program 4 (id=1745):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x11, 0x80003, 0x300)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x20)
socket(0xa, 0x3, 0x100)
r1 = socketpair$auto(0x8, 0x7, 0x1, 0x0)
fsconfig$auto_JFFS2_COMPR_MODE_FORCEZLIB(r1, 0x8d, &(0x7f00000000c0)='/dev/mtdblock0\x00', &(0x7f0000000180)="3125d0bc38f9b79a1760577ec462045b23427177cbf727a78bdd6b253d577d2842d2d59cb96a2d9207129fda0761a6d41e6a12c28a76dd89ecb4b0e8f8b12f77ecbd0b215c91b718634d52f3df38efe0eb01186712515bd3050b8f7d2c05957d5ae9846ded", 0x5)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/cpuid/cpu0/uevent\x00', 0x20400, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000002140)=""/64, 0x40)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
r4 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$auto(r4, &(0x7f0000000380)='\x01\x00\xa2a\xe0a\x1cJ4\x00\xaaN\xc8\xf9\x12\xeb\x00\xab`{U\x04\x88\xa8\x03\x00\x00\x00\x11_\x89\x06\x06\xa7Y}`@\x1b\x00\x00\x00\x00\x00\x00\x00\x00\xd22z\x14z\xbf\xf94\x92mP\xa1[\xa4p\x93\xd4\xe3\xe8Vhpy\xf6\xce\xbb\x8c\xb2\xc1>\xd9Y\x8d\xca\x90\xbcu*\xc8\xdc\x0e]\x01\xd1\x9e\x0f\x05_\xfc\xb8\xeb\xd9\xb7\xa4\a\xae\xa5I\f7\x17\x91L}m\xea\r+\xecy\xe1\xe0D\x824\xfc[+\x0f\xe0+\xe8\x83\xc4\"\xcc&z\x8c@p\x02\x00\x00\x00\x00\x00\x00\x00?\x90<nj\x82\xea\xf0\xfa\xe8\xe1\x81Q6\x11\xe4T\xd5\xf0\xb1\xc65tr\x8b\x83^\xa17uX<y\xed\xf2\xdf\xcb\xacd\xec\x8c\x8e\x1c\xe1o\x90\'\xfa:\'\fr\xfc\x81$R{I{+\xa4\xfa\xc8\x9dF\xa9\x84\'\xb5~\xf8l\xdbo\xbc\x80\xc4\x01\x84F\t\x95\xd2\xc30.\xba\xc1\xf3e\xa9\xf6{\x9f\xb1yO\xabP\x84\xf1\x0e!\xec\xef\xb6\xc1\xcd\x16<i\xdf1G;8!m\x9a\nc`\x15\xfd\xea\xcb:\x01j\xcbg\xa5\xe2Ag\x9d\xe1q\xa2\x05\xd59Y`\xd4\xa5\xdef?\x05\\y\x13\xfc\xf4\xdd.\xee5\xa9\xf19\xb0\xb8\xd0\xc20I68\x19TOO&\x9ba\x9aQn\x8c<\xb5\xb1\x12s\x19)\xe2\x8fV\xe3\xf4\xa1\xd8\x06\xe9\x17\x87g\x94\x04\xbb\xa0\x88\xe3~\x9adJM\x89o\x9a\x1dQ+T\x9b|\x9c/\x00;\xa3jN\xf0\xe6=\x90}\xe7\xb5\' (\xba\x17\x8d\xb0f8\xc3\x8a\xddL\x1a\x86\x14v\x00[*i\x14\x17\"\x95\xab\x13\x95\xcc\xf9B\xf2F\x81\x90\tf\x03&-\xccx7\x14\x17\xc2\xb7X\x86Fs[\x00\x0eK\xf4\x84|\xb9\xe5L\xf6\xef\xbd\x01\xeb\xc2\x81\xce\xef^\xf3\xd2J\xe0\xab\f=\"&\xb3}9\x0fhF\xbc\xb3v\xe6e\x13\xfa,\xc0\xd5\xd7\x1ed+\xaf\xc1*\xa2\xe5d\x8f\x7f\x91!p\xa1\x8ep\f\x81', 0x7138)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
ioctl$auto_TCFLSH2(r2, 0x8926, 0x0)
mmap$auto(0x10, 0x2, 0x5, 0xeb1, r0, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x157603, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket(0x1e, 0x4, 0x0)
r7 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r7, 0x10f, 0x87, 0x0, 0x14)
ioctl$auto(r6, 0x2, 0x6)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r5, 0x0, 0x4000)
write$auto(0x3, 0x0, 0x100082)
close_range$auto(r1, 0xffffffffffffffff, 0x85a)

2.106963622s ago: executing program 1 (id=1746):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00042cbd7000fb3d89cb809172a3320003008000400088"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB], 0x1ac}, 0x1, 0x0, 0x0, 0x4000804}, 0x40000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0100050000000000df25000000000800080005ad179abd3a98193d00000008000100e0e45165"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x14)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x800}, 0x2, 0x0, 0x7, 0xa505}, 0xa788}, 0x7, 0x8)

1.911815355s ago: executing program 1 (id=1747):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
seccomp$auto(0x2, 0x10, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
fchmodat2$auto(0xffffffffffffffff, 0x0, 0x6, 0x8)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty1\x00', 0xa0000, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x2, 0x1d2c, 0x3, 0x4, 0x15f4da0e, 0x6, 0x9, 0x100000000000000c, 0x8, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
get_mempolicy$auto(0x0, 0x0, 0x2, 0x86, 0x9)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dri/card2\x00', 0x688200, 0x0)
mmap$auto(0xd, 0x2000a, 0x5, 0xeb1, 0x401, 0x10000008000)
socket(0xa, 0x801, 0x100)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/use_carrier\x00', 0x103b02, 0x0)
sendfile$auto(r0, r0, 0x0, 0x8080000001)
mmap$auto(0x4, 0x6, 0xdb, 0xebb, 0x40000000000a5, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)

1.866452361s ago: executing program 3 (id=1748):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00042cbd7000fb3d89cb809172a3320003008000400088"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}, 0x1, 0x0, 0x0, 0x4000804}, 0x40000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0100050000000000df25000000000800080005ad179abd3a98193d00000008000100e0e45165"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x14)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x800}, 0x2, 0x0, 0x7, 0xa505}, 0xa788}, 0x7, 0x8)

1.824784748s ago: executing program 4 (id=1749):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/bond0/regen_max_retry\x00', 0x440682, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x800, 0x54)
write$auto(r0, 0x0, 0x1000000000200000)

1.202865644s ago: executing program 4 (id=1750):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x700)

1.167340617s ago: executing program 3 (id=1751):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="770e0000", @ANYRES16=0x0, @ANYBLOB="080028bd7000fddbdf250300000008000600020000000c0014"], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x405b)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc005}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000080))
setgroups$auto(0x8, &(0x7f0000000000)=0x5)
r2 = socket(0x10, 0x5, 0x80000001)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYRES8=0x0], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x6, &(0x7f00000001c0), 0x7, 0x400a507}, 0x800}, 0xa, 0x8)
write$auto_proc_mem_operations_base(r0, &(0x7f0000000400)="94c5be883ae7ee95e2bff5f990f6f7249475e8960bf6c1ee8796193bfbd249c19c9460ea0c1c18bb983b84aebb8629e8e9e25558c9bfeb22ed79fdab8065d67eec271b56d08971f043224fe7604598e2506e785c6318c1b7696b10324d1e7db02961facdf9fab2640716f07dd1c617dcb6f1bb648821a53f78be14a6dc8f336e92e389609b991019c180950ed085b91123", 0x91)
syz_genetlink_get_family_id$auto_smc_pnetid(0x0, 0xffffffffffffffff)
r3 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/block/loop9/hctx0/sched_tags_bitmap\x00', 0x101a00, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r3, &(0x7f0000000340)=""/179, 0xb3)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x700000000000000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2900, 0x0)
read$auto(r4, 0x0, 0x7)
acct$auto(&(0x7f0000000000)='/dev/tty\x00`Mx\x9d\xfa\xb3\x1f\xc6k\x01\x13\x9b\x15[\xf7\xaan\x1fOgo\xbb(\xcbx\x9bJ\x91*\xa5a\x02\xf3\x1b\x9d\xddy\xef\xee\xe4h\xd5\nH\x80\x8a\xd7Y\xb8\xcb\x90')
r5 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x0, 0x1, 0x9, 0x7, 0x3b, 0x3ff, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb2, 0x9, 0x3, 0xfffc, 0x80, 0x7, 0x40000, 0x7, 0x2000, 0x200, 0x0, 0x81, 0x0, 0x7, 0x0, 0x0, 0x0, [0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0xa, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5]}, 0x202, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c001300fcdbbc2353f74fa9256563b979e41af25e403ec2c853d4662dc2477fb8ce947bdc0f5c0513ff03a03e2f969bf97ff8acf360d119aec1eb971d4cc78fc8e0d10db928bac2c986c79fec", @ANYRESHEX=r5], 0x3c}, 0x1, 0x0, 0x0, 0x8014}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0x1}, 0x5}, 0x7, 0x0)

585.792009ms ago: executing program 4 (id=1752):
mmap$auto(0x0, 0x2000d, 0x3, 0xeb1, 0x404, 0x100010008000)
r0 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x7d4, 0x1, 0x401c2, 0x2081, 0x3f, 0x7ffc, 0x1ffde, 0x8001, 0x2, 0x4, 0x9, 0x3, 0x5, 0x8, 0x3004, 0x9, 0x6, 0x10002, 0x80, 0x400, 0xa9, 0x7, 0x1ffc, 0x8203, 0x400, 0x2, 0x1, 0x0, 0x40, 0x5, 0x2, [0x7249, 0xa9f, 0x0, 0x1ff, 0x0, 0x180, 0x2, 0x0, 0x0, 0x1, 0xfc6a, 0x1000000, 0x10000, 0x40000000000, 0x0, 0x400000000000, 0x80000000000000, 0x0, 0xffffffffff7ffffc, 0x5, 0x0, 0x2, 0xfff, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x400000000000002, 0xfffffffffffffffc, 0x3, 0x1, 0x5, 0xfffffffffffffffc, 0x4]}, 0x1fe, 0x8)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xc20fc3ff, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

325.859641ms ago: executing program 4 (id=1753):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x24044010}, 0xc0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r1=>0x0})
r2 = socket(0xa, 0x3, 0x6)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r1, 0x7f, 0x99, 0x8, 0x1, @relative_fd=r2, 0xd}, 0x92)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xde, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
remap_file_pages$auto(0x0, 0xf3a4, 0x0, 0x5, 0x15)
getsockopt$auto(0x6, 0x40000000029, 0x4d, 0xfffffffffffffffe, 0x0)
getsockname$auto(0xffffffffffffffff, &(0x7f0000000000)=@xdp={0x2c, 0x8, r1, 0x23}, 0x0)
r3 = openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/ubifs/tst_recovery\x00', 0x20000, 0x0)
read$auto_dfs_global_fops_debug(r3, 0x0, 0x0)
close_range$auto(0x2, 0xa, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r5 = socket(0x1e, 0x4, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f00000000c0), r4)
setsockopt$auto(r5, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x101d0, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x0)

269.654529ms ago: executing program 2 (id=1754):
r0 = open(&(0x7f0000000000)='./file0\x00', 0x43c2, 0xe1d2b27bdc14aaf1)
flock$auto(r0, 0x1)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x4242, 0x40)
openat$auto_rts_threshold_ops_(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy9/rts_threshold\x00', 0x0, 0x0)
flock$auto(r1, 0xb)
r2 = socket(0x22, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x80044944, 0x0)
flock$auto(r1, 0x2)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/radio29\x00', 0x28002, 0x0)
poll$auto(&(0x7f00000001c0)={r3, 0xffff, 0x29}, 0x6, 0x5)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f00000000c0), 0x60a02, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x43c2, 0xe1d2b27bdc14aaf1) (async)
flock$auto(r0, 0x1) (async)
open(&(0x7f0000000040)='./file0\x00', 0x4242, 0x40) (async)
openat$auto_rts_threshold_ops_(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy9/rts_threshold\x00', 0x0, 0x0) (async)
flock$auto(r1, 0xb) (async)
socket(0x22, 0x3, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x80044944, 0x0) (async)
flock$auto(r1, 0x2) (async)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/radio29\x00', 0x28002, 0x0) (async)
poll$auto(&(0x7f00000001c0)={r3, 0xffff, 0x29}, 0x6, 0x5) (async)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f00000000c0), 0x60a02, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)

115.622717ms ago: executing program 2 (id=1755):
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xfffffffd, 0x9, 0x3, 0x16, 0x940, 0x1ffe0, 0x3, 0x800000000000006, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x1fe, 0x81)
r0 = setfsuid$auto(0xee00)
r1 = setfsuid$auto(0xee01)
setresuid$auto(r0, r1, r0)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r2, &(0x7f0000000140)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x801}, 0x9, 0x10, 0x0)
ioctl$auto(r2, 0x8946, 0x24)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000080)='/proc/stat\x00', 0x20000, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0)
socket(0x29, 0x2, 0x0)
select$auto(0xa, 0x0, 0x0, &(0x7f0000000200)={[0x8001ff, 0x4, 0xd, 0x8fd6, 0x948d, 0x3, 0x80, 0x3, 0x6, 0x7ffffffffffffffb, 0x7, 0x2, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)

0s ago: executing program 4 (id=1756):
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
ioctl$auto_BLKRRPART2(0xffffffffffffffff, 0x125f, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="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"], 0x38}}, 0x24048084)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x100000000, 0x8, 0x4, 0x940, 0x1ffde, 0x3, 0x2000000000000006, 0x2, 0x5, 0x5, 0x6, 0x8, 0xae, 0xa, 0x2, 0x7, 0x5, 0x7}, 0x1fe, 0x80)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4004000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
ioctl$auto_BLKPG2(r3, 0x1269, 0x0)
ioctl$auto_MEMGETINFO(r3, 0x80204d01, 0x0)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)

kernel console output (not intermixed with test programs):

88724][T13764] [U] 
[  638.994269][T13764] [U] 
[  638.997030][T13764] [U] 
[  638.999770][T13764] [U] 
[  639.002489][T13764] [U] 
[  639.096827][T13764] [U] 
[  639.099583][T13764] [U] 
[  639.102284][T13764] [U] 
[  639.104975][T13764] [U] 
[  639.162125][T13764] [U] 
[  639.164944][T13764] [U] 
[  639.167728][T13764] [U] 
[  639.170590][T13764] [U] 
[  639.277796][T13764] [U] 
[  639.280522][T13764] [U] 
[  639.283234][T13764] [U] 
[  639.285938][T13764] [U] 
[  639.306433][T13764] [U] 
[  639.309279][T13764] [U] 
[  639.312140][T13764] [U] 
[  639.314848][T13764] [U] 
[  639.339315][T13764] [U] 
[  639.342054][T13764] [U] 
[  639.344834][T13764] [U] 
[  639.347608][T13764] [U] 
[  639.361770][T13764] [U] 
[  639.364633][T13764] [U] 
[  639.367405][T13764] [U] 
[  639.370225][T13764] [U] 
[  639.380689][T13764] [U] 
[  639.383447][T13764] [U] 
[  639.386185][T13764] [U] 
[  639.388984][T13764] [U] 
[  639.392736][T13764] [U] 
[  639.395469][T13764] [U] 
[  639.398180][T13764] [U] 
[  639.400898][T13764] [U] 
[  639.444011][T13764] [U] 
[  639.446857][T13764] [U] 
[  639.449611][T13764] [U] 
[  639.452445][T13764] [U] 
[  639.487056][T13764] [U] 
[  639.489830][T13764] [U] 
[  639.492591][T13764] [U] 
[  639.495343][T13764] [U] 
[  639.527554][T13764] [U] 
[  639.530320][T13764] [U] 
[  639.533092][T13764] [U] 
[  639.535825][T13764] [U] 
[  639.559274][T13764] [U] 
[  639.562102][T13764] [U] 
[  639.564914][T13764] [U] 
[  639.567626][T13764] [U] 
[  639.677016][T13764] [U] 
[  639.679783][T13764] [U] 
[  639.682736][T13764] [U] 
[  639.685440][T13764] [U] 
[  640.061559][T13764] [U] 
[  640.064362][T13764] [U] 
[  640.067155][T13764] [U] 
[  640.069871][T13764] [U] 
[  640.114649][T13764] [U] 
[  640.117405][T13764] [U] 
[  640.120173][T13764] [U] 
[  640.122972][T13764] [U] 
[  640.172462][T13764] [U] 
[  640.175381][T13764] [U] 
[  640.178270][T13764] [U] 
[  640.180957][T13764] [U] 
[  640.217904][T13764] [U] 
[  640.220673][T13764] [U] 
[  640.223416][T13764] [U] 
[  640.226162][T13764] [U] 
[  640.283202][T13764] [U] 
[  640.285933][T13764] [U] 
[  640.288628][T13764] [U] 
[  640.291407][T13764] [U] 
[  640.318113][T13790] syz.1.1620 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=2, oom_score_adj=1000
[  640.323306][T13764] [U] 
[  640.331704][T13764] [U] 
[  640.334406][T13764] [U] 
[  640.337092][T13764] [U] 
[  640.417845][T13790] CPU: 1 UID: 0 PID: 13790 Comm: syz.1.1620 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  640.417883][T13790] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  640.417891][T13790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  640.417901][T13790] Call Trace:
[  640.417908][T13790]  <TASK>
[  640.417916][T13790]  dump_stack_lvl+0x100/0x190
[  640.417949][T13790]  dump_header+0xfb/0x606
[  640.417970][T13790]  oom_kill_process.cold+0xd/0x330
[  640.417992][T13790]  out_of_memory+0x340/0x14f0
[  640.418020][T13790]  ? __pfx_out_of_memory+0x10/0x10
[  640.418058][T13790]  mem_cgroup_out_of_memory+0xc6/0x130
[  640.418081][T13790]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  640.418102][T13790]  ? find_held_lock+0x2b/0x80
[  640.418133][T13790]  ? do_raw_spin_unlock+0x145/0x1e0
[  640.418159][T13790]  ? _raw_spin_unlock+0x28/0x50
[  640.418189][T13790]  try_charge_memcg+0x652/0xc90
[  640.418221][T13790]  ? __pfx_try_charge_memcg+0x10/0x10
[  640.418247][T13790]  ? rcu_read_unlock+0x17/0x60
[  640.418273][T13790]  ? rcu_read_unlock+0x17/0x60
[  640.418308][T13790]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  640.418334][T13790]  obj_cgroup_charge_account+0x33d/0x640
[  640.418366][T13790]  __memcg_slab_post_alloc_hook+0x2e3/0x9a0
[  640.418403][T13790]  __kmalloc_node_track_caller_noprof+0x66e/0x850
[  640.418430][T13790]  ? __addrconf_sysctl_register+0xbb/0x360
[  640.418456][T13790]  kmemdup_noprof+0x29/0x60
[  640.418483][T13790]  __addrconf_sysctl_register+0xbb/0x360
[  640.418506][T13790]  ? __pfx___addrconf_sysctl_register+0x10/0x10
[  640.418530][T13790]  ? lockdep_init_map_type+0x5c/0x250
[  640.418552][T13790]  ? mld_in_v1_mode+0x2b2/0x3a0
[  640.418581][T13790]  addrconf_sysctl_register+0x163/0x200
[  640.418603][T13790]  ipv6_add_dev+0xaf2/0x1520
[  640.418627][T13790]  addrconf_notify+0x563/0x19c0
[  640.418652][T13790]  ? ip6mr_device_event+0x1bc/0x230
[  640.418682][T13790]  notifier_call_chain+0x99/0x420
[  640.418710][T13790]  call_netdevice_notifiers_info+0xbe/0x110
[  640.418737][T13790]  register_netdevice+0x16e6/0x2210
[  640.418763][T13790]  ? __pfx_register_netdevice+0x10/0x10
[  640.418792][T13790]  register_netdev+0x34/0x50
[  640.418812][T13790]  sit_init_net+0x2c0/0x5f0
[  640.418840][T13790]  ? __pfx_sit_init_net+0x10/0x10
[  640.418880][T13790]  ops_init+0x1e2/0x5f0
[  640.418928][T13790]  setup_net+0x118/0x3a0
[  640.418964][T13790]  ? __pfx_setup_net+0x10/0x10
[  640.418988][T13790]  ? lockdep_init_map_type+0x5c/0x250
[  640.419011][T13790]  ? mutex_init_lockep+0x110/0x150
[  640.419044][T13790]  copy_net_ns+0x46f/0x7c0
[  640.419069][T13790]  create_new_namespaces+0x3ea/0xac0
[  640.419105][T13790]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  640.419126][T13790]  ksys_unshare+0x455/0xab0
[  640.419150][T13790]  ? __pfx_ksys_unshare+0x10/0x10
[  640.419181][T13790]  __x64_sys_unshare+0x31/0x40
[  640.419202][T13790]  do_syscall_64+0x106/0xf80
[  640.419222][T13790]  ? clear_bhb_loop+0x40/0x90
[  640.419244][T13790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  640.419263][T13790] RIP: 0033:0x7f31dbf9bf79
[  640.419280][T13790] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  640.419300][T13790] RSP: 002b:00007f31dcdc5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  640.419319][T13790] RAX: ffffffffffffffda RBX: 00007f31dc216180 RCX: 00007f31dbf9bf79
[  640.419331][T13790] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  640.419342][T13790] RBP: 00007f31dc0327e0 R08: 0000000000000000 R09: 0000000000000000
[  640.419354][T13790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  640.419364][T13790] R13: 00007f31dc216218 R14: 00007f31dc216180 R15: 00007fff9821e3c8
[  640.419388][T13790]  </TASK>
[  640.531153][T13790] memory: usage 3068kB, limit 3072kB, failcnt 41702
[  640.801384][T13790] memory+swap: usage 3552kB, limit 9007199254740988kB, failcnt 0
[  640.809943][T13790] kmem: usage 2940kB, limit 9007199254740988kB, failcnt 0
[  640.828384][T13790] Memory cgroup stats for /syz1:
[  640.828508][T13790] cache 0
[  640.839806][T13790] rss 4096
[  640.854253][T13790] rss_huge 0
[  640.860980][T13790] shmem 0
[  640.863949][T13790] mapped_file 0
[  640.867436][T13790] dirty 0
[  640.870384][T13790] writeback 0
[  640.874584][T13790] workingset_refault_anon 8982
[  640.879535][T13790] workingset_refault_file 25716
[  640.886902][T13790] swap 491520
[  640.908777][T13790] swapcached 118419456
[  640.933003][T13790] pgpgin 478025
[  640.957141][T13790] pgpgout 481569
[  640.963200][T13790] pgfault 411270
[  640.968718][T13790] pgmajfault 4627
[  640.990725][T13790] inactive_anon 131072
[  641.000957][T13790] active_anon 0
[  641.017589][T13790] inactive_file 0
[  641.044227][T13790] active_file 0
[  641.052633][T13790] unevictable 0
[  641.064007][T13790] hierarchical_memory_limit 3145728
[  641.094461][T13790] hierarchical_memsw_limit 9223372036854771712
[  641.110619][T13768] [U] 
[  641.130815][T13790] total_cache 0
[  641.138314][T13790] total_rss 4096
[  641.152597][T13790] total_rss_huge 0
[  641.163891][T13790] total_shmem 0
[  641.167410][T13790] total_mapped_file 0
[  641.220372][T13790] total_dirty 0
[  641.223911][T13790] total_writeback 0
[  641.251345][T13790] total_workingset_refault_anon 8982
[  641.276941][T13790] total_workingset_refault_file 25716
[  641.301236][T13790] total_swap 491520
[  641.311105][T13790] total_swapcached 118419456
[  641.340373][T13790] total_pgpgin 478025
[  641.390390][T13790] total_pgpgout 481569
[  641.399031][T13790] total_pgfault 411270
[  641.420335][T13790] total_pgmajfault 4627
[  641.432156][T13790] total_inactive_anon 131072
[  641.436915][T13790] total_active_anon 0
[  641.476078][T13790] total_inactive_file 0
[  641.488320][T13790] total_active_file 0
[  641.504246][T13790] total_unevictable 0
[  641.508273][T13790] anon_cost 586
[  641.533212][T13790] file_cost 0
[  641.544977][T13790] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1620,pid=13781,uid=0
[  641.577299][T13790] Memory cgroup out of memory: Killed process 13781 (syz.1.1620) total-vm:110816kB, anon-rss:1228kB, file-rss:27196kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[  642.956855][T13807] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1625'.
[  643.508646][ T5823] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  643.563238][ T5823] CPU: 0 UID: 0 PID: 5823 Comm: syz-executor Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  643.563301][ T5823] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  643.563314][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  643.563333][ T5823] Call Trace:
[  643.563344][ T5823]  <TASK>
[  643.563356][ T5823]  dump_stack_lvl+0x100/0x190
[  643.563406][ T5823]  dump_header+0xfb/0x606
[  643.563442][ T5823]  oom_kill_process.cold+0xd/0x330
[  643.563480][ T5823]  out_of_memory+0x340/0x14f0
[  643.563527][ T5823]  ? __pfx_out_of_memory+0x10/0x10
[  643.563579][ T5823]  mem_cgroup_out_of_memory+0xc6/0x130
[  643.563616][ T5823]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  643.563650][ T5823]  ? find_held_lock+0x2b/0x80
[  643.563705][ T5823]  ? do_raw_spin_unlock+0x145/0x1e0
[  643.563749][ T5823]  ? _raw_spin_unlock+0x28/0x50
[  643.563800][ T5823]  try_charge_memcg+0x652/0xc90
[  643.563855][ T5823]  ? __pfx_try_charge_memcg+0x10/0x10
[  643.563909][ T5823]  ? find_held_lock+0x2b/0x80
[  643.563953][ T5823]  ? rcu_read_unlock+0x17/0x60
[  643.563996][ T5823]  ? rcu_read_unlock+0x17/0x60
[  643.564043][ T5823]  charge_memcg+0xa6/0x280
[  643.564088][ T5823]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  643.564126][ T5823]  __swap_cache_prepare_and_add+0x528/0x9e0
[  643.564182][ T5823]  ? __pfx___swap_cache_prepare_and_add+0x10/0x10
[  643.564218][ T5823]  ? __pfx_swap_entry_swapped+0x10/0x10
[  643.564282][ T5823]  swap_cache_alloc_folio+0x1cb/0x300
[  643.564322][ T5823]  ? __pfx_swap_cache_alloc_folio+0x10/0x10
[  643.564374][ T5823]  swap_cluster_readahead+0x53b/0x770
[  643.564422][ T5823]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  643.564488][ T5823]  ? get_vma_policy+0x23f/0x3b0
[  643.564540][ T5823]  swapin_readahead+0x160/0x12c0
[  643.564592][ T5823]  ? __pfx_swapin_readahead+0x10/0x10
[  643.564627][ T5823]  ? find_held_lock+0x2b/0x80
[  643.564671][ T5823]  ? swap_table_get+0x103/0x2c0
[  643.564702][ T5823]  ? swap_table_get+0x103/0x2c0
[  643.564741][ T5823]  ? swap_table_get+0x10d/0x2c0
[  643.564769][ T5823]  ? swap_cache_get_folio+0x1ae/0x600
[  643.564797][ T5823]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  643.564822][ T5823]  ? __pfx_get_swap_device+0x10/0x10
[  643.564862][ T5823]  ? do_swap_page+0xb2e/0x68e0
[  643.564887][ T5823]  do_swap_page+0xb2e/0x68e0
[  643.564930][ T5823]  ? __pfx_do_swap_page+0x10/0x10
[  643.564957][ T5823]  ? __free_object+0x2a8/0x400
[  643.564987][ T5823]  ? lockdep_hardirqs_on+0x78/0x100
[  643.565016][ T5823]  ? rcu_is_watching+0x12/0xc0
[  643.565049][ T5823]  ? __pte_offset_map+0x179/0x310
[  643.565089][ T5823]  __handle_mm_fault+0x18c1/0x2b60
[  643.565126][ T5823]  ? reacquire_held_locks+0xce/0x1e0
[  643.565155][ T5823]  ? __pfx___handle_mm_fault+0x10/0x10
[  643.565188][ T5823]  ? lock_vma_under_rcu+0x17c/0x590
[  643.565235][ T5823]  handle_mm_fault+0x36d/0xa20
[  643.565275][ T5823]  do_user_addr_fault+0x5a3/0x12f0
[  643.565321][ T5823]  exc_page_fault+0x6f/0xd0
[  643.565346][ T5823]  asm_exc_page_fault+0x26/0x30
[  643.565369][ T5823] RIP: 0033:0x7f31dbf5c84e
[  643.565390][ T5823] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  643.565413][ T5823] RSP: 002b:00007fff9821e6a8 EFLAGS: 00010246
[  643.565434][ T5823] RAX: 0000000000000000 RBX: 000055557b733500 RCX: 00007f31dbf5c84e
[  643.565450][ T5823] RDX: 00007fff9821e700 RSI: 0000000000000000 RDI: 0000000000000000
[  643.565464][ T5823] RBP: 00007fff9821e76c R08: 0000000000000000 R09: 0000000000000000
[  643.565478][ T5823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000001388
[  643.565493][ T5823] R13: 00000000000927c0 R14: 000000000009cefd R15: 00007fff9821e7c0
[  643.565525][ T5823]  </TASK>
[  643.565540][ T5823] memory: usage 3072kB, limit 3072kB, failcnt 42161
[  643.952484][ T5823] memory+swap: usage 3532kB, limit 9007199254740988kB, failcnt 0
[  643.970522][ T5823] kmem: usage 2912kB, limit 9007199254740988kB, failcnt 0
[  643.989382][ T5823] Memory cgroup stats for /syz1:
[  643.989550][ T5823] cache 0
[  644.002967][ T5823] rss 0
[  644.009033][ T5823] rss_huge 0
[  644.018302][ T5823] shmem 0
[  644.026910][ T5823] mapped_file 0
[  644.034382][ T5823] dirty 0
[  644.041554][ T5823] writeback 0
[  644.048265][ T5823] workingset_refault_anon 9105
[  644.063122][ T5823] workingset_refault_file 25888
[  644.076002][ T5823] swap 471040
[  644.082776][ T5823] swapcached 118575104
[  644.094175][ T5823] pgpgin 478406
[  644.097661][ T5823] pgpgout 481943
[  644.109006][ T5823] pgfault 411754
[  644.112633][ T5823] pgmajfault 4736
[  644.116615][ T5823] inactive_anon 0
[  644.121220][ T5823] active_anon 163840
[  644.125385][ T5823] inactive_file 0
[  644.129601][ T5823] active_file 0
[  644.133553][ T5823] unevictable 0
[  644.138060][ T5823] hierarchical_memory_limit 3145728
[  644.143500][ T5823] hierarchical_memsw_limit 9223372036854771712
[  644.149978][ T5823] total_cache 0
[  644.153478][ T5823] total_rss 0
[  644.156889][ T5823] total_rss_huge 0
[  644.161323][ T5823] total_shmem 0
[  644.164884][ T5823] total_mapped_file 0
[  644.169264][ T5823] total_dirty 0
[  644.172860][ T5823] total_writeback 0
[  644.176860][ T5823] total_workingset_refault_anon 9105
[  644.182657][ T5823] total_workingset_refault_file 25888
[  644.188234][ T5823] total_swap 471040
[  644.199492][ T5823] total_swapcached 118575104
[  644.204225][ T5823] total_pgpgin 478406
[  644.208316][ T5823] total_pgpgout 481943
[  644.219098][ T5823] total_pgfault 411754
[  644.227492][ T5823] total_pgmajfault 4736
[  644.238875][ T5823] total_inactive_anon 0
[  644.243097][ T5823] total_active_anon 163840
[  644.259639][ T5823] total_inactive_file 0
[  644.273582][ T5823] total_active_file 0
[  644.288378][ T5823] total_unevictable 0
[  644.298484][ T5823] anon_cost 575
[  644.306397][ T5823] file_cost 0
[  644.312023][ T5823] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1630,pid=13825,uid=0
[  644.335321][ T5823] Memory cgroup out of memory: Killed process 13825 (syz.1.1630) total-vm:137432kB, anon-rss:1228kB, file-rss:23348kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:1000
[  644.559436][T13835] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  644.567829][T13835] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  644.584844][T13835] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  644.605236][T13835] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  646.627799][T12225] Bluetooth: hci2: command 0x0c1a tx timeout
[  646.633881][T12225] Bluetooth: hci4: command 0x0406 tx timeout
[  646.640489][ T5142] Bluetooth: hci1: command 0x0406 tx timeout
[  646.646632][ T5142] Bluetooth: hci0: command 0x0406 tx timeout
[  647.197959][T12225] Bluetooth: hci4: unexpected event 0x1c length: 725 > 5
[  647.571075][T13871] FAULT_INJECTION: forcing a failure.
[  647.571075][T13871] name failslab, interval 1, probability 0, space 0, times 0
[  647.596594][T13871] CPU: 0 UID: 0 PID: 13871 Comm: syz.4.1639 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  647.596646][T13871] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  647.596658][T13871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  647.596676][T13871] Call Trace:
[  647.596686][T13871]  <TASK>
[  647.596698][T13871]  dump_stack_lvl+0x100/0x190
[  647.596749][T13871]  should_fail_ex.cold+0x5/0xa
[  647.596784][T13871]  should_failslab+0xc2/0x120
[  647.596829][T13871]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  647.596869][T13871]  ? alloc_io_context+0x21/0x2f0
[  647.596898][T13871]  ? copy_namespaces+0x12b/0x5e0
[  647.596932][T13871]  alloc_io_context+0x21/0x2f0
[  647.596962][T13871]  __copy_io+0xdc/0x210
[  647.596993][T13871]  copy_process+0x328b/0x7a10
[  647.597060][T13871]  ? __pfx_copy_process+0x10/0x10
[  647.597108][T13871]  ? _copy_from_user+0x59/0xd0
[  647.597142][T13871]  kernel_clone+0xfc/0x9a0
[  647.597174][T13871]  ? find_held_lock+0x2b/0x80
[  647.597218][T13871]  ? __handle_mm_fault+0x1327/0x2b60
[  647.597251][T13871]  ? __pfx_kernel_clone+0x10/0x10
[  647.597297][T13871]  ? __lock_acquire+0x4a5/0x2630
[  647.597334][T13871]  __do_sys_clone3+0x214/0x290
[  647.597366][T13871]  ? __pfx___do_sys_clone3+0x10/0x10
[  647.597417][T13871]  ? _copy_to_user+0xaf/0xd0
[  647.597470][T13871]  do_syscall_64+0x106/0xf80
[  647.597502][T13871]  ? clear_bhb_loop+0x40/0x90
[  647.597539][T13871]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  647.597569][T13871] RIP: 0033:0x7f25ceb9cd89
[  647.597595][T13871] Code: 90 b8 01 00 00 00 b9 01 00 00 00 eb ec 0f 1f 40 00 b8 ea ff ff ff 48 85 ff 74 28 48 85 d2 74 23 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 14 74 01 c3 31 ed 4c 89 c7 ff d2 48 89 c7 b8 3c 00 00
[  647.597625][T13871] RSP: 002b:00007fff97fdb708 EFLAGS: 00000206 ORIG_RAX: 00000000000001b3
[  647.597654][T13871] RAX: ffffffffffffffda RBX: 00007f25ceb583a0 RCX: 00007f25ceb9cd89
[  647.597674][T13871] RDX: 00007f25ceb583a0 RSI: 0000000000000058 RDI: 00007fff97fdb760
[  647.597693][T13871] RBP: 00007f25cf9ca6c0 R08: 00007f25cf9ca6c0 R09: 00007fff97fdb847
[  647.597712][T13871] R10: 0000000000000008 R11: 0000000000000206 R12: ffffffffffffffe8
[  647.597730][T13871] R13: 000000000000006e R14: 00007fff97fdb760 R15: 00007fff97fdb848
[  647.597771][T13871]  </TASK>
[  647.951921][T13847] syz.2.1635 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  647.963245][T13847] CPU: 0 UID: 0 PID: 13847 Comm: syz.2.1635 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  647.963278][T13847] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  647.963286][T13847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  647.963297][T13847] Call Trace:
[  647.963306][T13847]  <TASK>
[  647.963317][T13847]  dump_stack_lvl+0x100/0x190
[  647.963408][T13847]  dump_header+0xfb/0x606
[  647.963430][T13847]  oom_kill_process.cold+0xd/0x330
[  647.963455][T13847]  out_of_memory+0x340/0x14f0
[  647.963484][T13847]  ? __pfx_out_of_memory+0x10/0x10
[  647.963513][T13847]  mem_cgroup_out_of_memory+0xc6/0x130
[  647.963535][T13847]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  647.963555][T13847]  ? find_held_lock+0x2b/0x80
[  647.963587][T13847]  ? do_raw_spin_unlock+0x145/0x1e0
[  647.963612][T13847]  ? _raw_spin_unlock+0x28/0x50
[  647.963643][T13847]  try_charge_memcg+0x652/0xc90
[  647.963674][T13847]  ? __pfx_try_charge_memcg+0x10/0x10
[  647.963705][T13847]  ? find_held_lock+0x2b/0x80
[  647.963731][T13847]  ? rcu_read_unlock+0x17/0x60
[  647.963759][T13847]  ? rcu_read_unlock+0x17/0x60
[  647.963788][T13847]  charge_memcg+0xa6/0x280
[  647.963815][T13847]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  647.963838][T13847]  __swap_cache_prepare_and_add+0x528/0x9e0
[  647.963870][T13847]  ? __pfx___swap_cache_prepare_and_add+0x10/0x10
[  647.963891][T13847]  ? __pfx_swap_entry_swapped+0x10/0x10
[  647.963924][T13847]  swap_cache_alloc_folio+0x1cb/0x300
[  647.963948][T13847]  ? __pfx_swap_cache_alloc_folio+0x10/0x10
[  647.963973][T13847]  ? __lock_acquire+0x4a5/0x2630
[  647.963997][T13847]  swap_cluster_readahead+0x411/0x770
[  647.964020][T13847]  ? __pfx___xa_erase+0x10/0x10
[  647.964055][T13847]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  647.964078][T13847]  ? do_raw_spin_lock+0x128/0x260
[  647.964108][T13847]  ? __print_lock_name+0x60/0x80
[  647.964135][T13847]  ? move_cluster+0x1f7/0x570
[  647.964168][T13847]  ? get_vma_policy+0x23f/0x3b0
[  647.964198][T13847]  swapin_readahead+0x160/0x12c0
[  647.964235][T13847]  ? __pfx_swapin_readahead+0x10/0x10
[  647.964256][T13847]  ? find_held_lock+0x2b/0x80
[  647.964287][T13847]  ? swap_table_get+0x103/0x2c0
[  647.964325][T13847]  ? swap_table_get+0x103/0x2c0
[  647.964348][T13847]  ? swap_table_get+0x10d/0x2c0
[  647.964369][T13847]  ? swap_cache_get_folio+0x1ae/0x600
[  647.964392][T13847]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  647.964412][T13847]  ? __pfx_get_swap_device+0x10/0x10
[  647.964443][T13847]  ? do_swap_page+0xb2e/0x68e0
[  647.964462][T13847]  do_swap_page+0xb2e/0x68e0
[  647.964494][T13847]  ? __pfx_do_swap_page+0x10/0x10
[  647.964520][T13847]  ? rcu_is_watching+0x12/0xc0
[  647.964546][T13847]  ? __pte_offset_map+0x179/0x310
[  647.964577][T13847]  __handle_mm_fault+0x18c1/0x2b60
[  647.964605][T13847]  ? reacquire_held_locks+0xce/0x1e0
[  647.964628][T13847]  ? __pfx___handle_mm_fault+0x10/0x10
[  647.964653][T13847]  ? lock_vma_under_rcu+0x17c/0x590
[  647.964688][T13847]  handle_mm_fault+0x36d/0xa20
[  647.964719][T13847]  do_user_addr_fault+0x5a3/0x12f0
[  647.964756][T13847]  exc_page_fault+0x6f/0xd0
[  647.964776][T13847]  asm_exc_page_fault+0x26/0x30
[  647.964796][T13847] RIP: 0033:0x7f1bbac50780
[  647.964814][T13847] Code: 44 39 d0 75 dc 48 89 f0 25 ff 1f 00 00 49 89 34 c1 41 88 3c 00 31 c0 c3 66 90 41 38 3c 10 74 0b 41 88 3c 10 31 c0 49 89 34 d1 <c3> b8 01 00 00 00 c3 66 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89
[  647.964833][T13847] RSP: 002b:00007ffdb065abd8 EFLAGS: 00010246
[  647.964849][T13847] RAX: 0000000000000000 RBX: ffffffff84a2b8ec RCX: ffffffff84a2b8ec
[  647.964860][T13847] RDX: 00000000000018ec RSI: ffffffff84a2b8ec RDI: 000000000000000e
[  647.964872][T13847] RBP: 000000000000001b R08: 00007f1bbb000000 R09: 00007f1bbb002000
[  647.964883][T13847] R10: 0000000084a2b8f0 R11: 000000000000000e R12: 00007f1bbb016128
[  647.964895][T13847] R13: 000000000000001b R14: ffffffff84a2bd5e R15: 00007f1bbbb45720
[  647.964907][T13847]  ? cap_capable+0x25e/0x460
[  647.964933][T13847]  ? trace_raw_output_cap_capable+0x1bc/0x1f0
[  647.964960][T13847]  ? trace_raw_output_cap_capable+0x1bc/0x1f0
[  647.964986][T13847]  ? trace_raw_output_cap_capable+0x1bc/0x1f0
[  647.965015][T13847]  </TASK>
[  647.965084][T13847] memory: usage 3072kB, limit 3072kB, failcnt 52113
[  648.511428][T13847] memory+swap: usage 62984kB, limit 9007199254740988kB, failcnt 0
[  648.559295][T13847] kmem: usage 2880kB, limit 9007199254740988kB, failcnt 0
[  648.616640][T13847] Memory cgroup stats for /syz2:
[  648.616926][T13847] cache 4096
[  648.660467][T13847] rss 0
[  648.681915][T13847] rss_huge 0
[  648.717931][T13847] shmem 4096
[  648.744433][T13847] mapped_file 0
[  648.748437][T13847] dirty 0
[  648.751432][T13847] writeback 0
[  648.754970][T13847] workingset_refault_anon 8717
[  648.773641][T13847] workingset_refault_file 13029
[  648.776831][T13878] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1640'.
[  648.787640][T13847] swap 61349888
[  648.787663][T13847] swapcached 199348224
[  648.787675][T13847] pgpgin 620347
[  648.787687][T13847] pgpgout 622343
[  648.787700][T13847] pgfault 506232
[  648.787711][T13847] pgmajfault 4033
[  648.787721][T13847] inactive_anon 69632
[  648.787734][T13847] active_anon 126976
[  648.787748][T13847] inactive_file 0
[  648.847279][T13847] active_file 0
[  648.850869][T13847] unevictable 0
[  648.854357][T13847] hierarchical_memory_limit 3145728
[  648.866927][T13847] hierarchical_memsw_limit 9223372036854771712
[  648.873312][T13847] total_cache 4096
[  648.878586][T13847] total_rss 0
[  648.882168][T13847] total_rss_huge 0
[  648.885976][T13847] total_shmem 4096
[  648.889874][T13847] total_mapped_file 0
[  648.894358][T13847] total_dirty 0
[  648.898199][T13847] total_writeback 0
[  648.902218][T13847] total_workingset_refault_anon 8717
[  648.908007][T13847] total_workingset_refault_file 13029
[  648.913456][T13847] total_swap 61349888
[  648.917599][T13847] total_swapcached 199348224
[  648.922223][T13847] total_pgpgin 620347
[  648.927406][T13847] total_pgpgout 622343
[  648.931601][T13847] total_pgfault 506232
[  648.935779][T13847] total_pgmajfault 4033
[  648.940352][T13847] total_inactive_anon 69632
[  648.945529][T13847] total_active_anon 126976
[  648.952972][T13847] total_inactive_file 0
[  648.957319][T13847] total_active_file 0
[  648.961483][T13847] total_unevictable 0
[  648.965496][T13847] anon_cost 20
[  648.969061][T13847] file_cost 0
[  648.972404][T13847] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1635,pid=13847,uid=0
[  648.990958][T13847] Memory cgroup out of memory: Killed process 13847 (syz.2.1635) total-vm:113264kB, anon-rss:1236kB, file-rss:31116kB, shmem-rss:0kB, UID:0 pgtables:176kB oom_score_adj:1000
[  652.017905][T13889] syz.4.1644 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  652.056222][T13889] CPU: 0 UID: 0 PID: 13889 Comm: syz.4.1644 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  652.056257][T13889] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  652.056273][T13889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  652.056285][T13889] Call Trace:
[  652.056293][T13889]  <TASK>
[  652.056301][T13889]  dump_stack_lvl+0x100/0x190
[  652.056333][T13889]  dump_header+0xfb/0x606
[  652.056354][T13889]  oom_kill_process.cold+0xd/0x330
[  652.056377][T13889]  out_of_memory+0x340/0x14f0
[  652.056406][T13889]  ? __pfx_out_of_memory+0x10/0x10
[  652.056443][T13889]  mem_cgroup_out_of_memory+0xc6/0x130
[  652.056465][T13889]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  652.056486][T13889]  ? find_held_lock+0x2b/0x80
[  652.056517][T13889]  ? do_raw_spin_unlock+0x145/0x1e0
[  652.056542][T13889]  ? _raw_spin_unlock+0x28/0x50
[  652.056573][T13889]  try_charge_memcg+0x652/0xc90
[  652.056604][T13889]  ? __pfx_try_charge_memcg+0x10/0x10
[  652.056636][T13889]  ? find_held_lock+0x2b/0x80
[  652.056662][T13889]  ? rcu_read_unlock+0x17/0x60
[  652.056689][T13889]  ? rcu_read_unlock+0x17/0x60
[  652.056718][T13889]  charge_memcg+0xa6/0x280
[  652.056744][T13889]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  652.056767][T13889]  __swap_cache_prepare_and_add+0x528/0x9e0
[  652.056798][T13889]  ? __pfx___swap_cache_prepare_and_add+0x10/0x10
[  652.056819][T13889]  ? __pfx_swap_entry_swapped+0x10/0x10
[  652.056857][T13889]  swap_cache_alloc_folio+0x1cb/0x300
[  652.056880][T13889]  ? __pfx_swap_cache_alloc_folio+0x10/0x10
[  652.056910][T13889]  swap_cluster_readahead+0x411/0x770
[  652.056938][T13889]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  652.056964][T13889]  ? __lock_acquire+0x4a5/0x2630
[  652.056985][T13889]  ? css_rstat_updated+0x1ce/0x5a0
[  652.057011][T13889]  ? get_vma_policy+0x23f/0x3b0
[  652.057041][T13889]  swapin_readahead+0x160/0x12c0
[  652.057064][T13889]  ? page_table_check_set+0x4a9/0xa10
[  652.057102][T13889]  ? __pfx_swapin_readahead+0x10/0x10
[  652.057122][T13889]  ? find_held_lock+0x2b/0x80
[  652.057148][T13889]  ? swap_table_get+0x103/0x2c0
[  652.057167][T13889]  ? swap_table_get+0x103/0x2c0
[  652.057191][T13889]  ? swap_table_get+0x10d/0x2c0
[  652.057211][T13889]  ? swap_cache_get_folio+0x1ae/0x600
[  652.057233][T13889]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  652.057253][T13889]  ? __pfx_get_swap_device+0x10/0x10
[  652.057284][T13889]  ? do_swap_page+0xb2e/0x68e0
[  652.057303][T13889]  do_swap_page+0xb2e/0x68e0
[  652.057335][T13889]  ? __pfx_do_swap_page+0x10/0x10
[  652.057357][T13889]  ? do_fault+0xa14/0x1a00
[  652.057376][T13889]  ? rcu_is_watching+0x12/0xc0
[  652.057402][T13889]  ? __pte_offset_map+0x179/0x310
[  652.057431][T13889]  __handle_mm_fault+0x18c1/0x2b60
[  652.057456][T13889]  ? reacquire_held_locks+0xce/0x1e0
[  652.057479][T13889]  ? __pfx___handle_mm_fault+0x10/0x10
[  652.057504][T13889]  ? lock_vma_under_rcu+0x17c/0x590
[  652.057539][T13889]  handle_mm_fault+0x36d/0xa20
[  652.057564][T13889]  do_user_addr_fault+0x5a3/0x12f0
[  652.057600][T13889]  exc_page_fault+0x6f/0xd0
[  652.057620][T13889]  asm_exc_page_fault+0x26/0x30
[  652.057638][T13889] RIP: 0033:0x7f25cea7073d
[  652.057655][T13889] Code: 70 40 88 74 24 0e 8b 7c 24 08 48 89 de e8 fb ff fd ff 84 c0 75 5b 80 7c 24 0f 00 75 0d 80 3d 51 19 3a 00 00 0f 85 a3 01 00 00 <49> 83 7f 68 07 77 08 49 c7 47 68 08 00 00 00 41 8b 4f 30 48 f7 d9
[  652.057673][T13889] RSP: 002b:00007fff97fdb890 EFLAGS: 00010246
[  652.057688][T13889] RAX: 000000110c6b4000 RBX: ffffffff8970cc6f RCX: 0000000000000005
[  652.057700][T13889] RDX: 0000000000000c72 RSI: 0000000000000331 RDI: 0000000000000020
[  652.057711][T13889] RBP: 0000000000002474 R08: 00007f25cee00000 R09: 00007f25cee02000
[  652.057723][T13889] R10: 000000008970cc73 R11: 0000000000000013 R12: 00007f25cee16308
[  652.057734][T13889] R13: 000000000003c93b R14: ffffffff8970c917 R15: 00007f25cf945720
[  652.057746][T13889]  ? fib_rules_event+0x87/0x6c0
[  652.057767][T13889]  ? fib_rules_event+0x3df/0x6c0
[  652.057794][T13889]  </TASK>
[  652.594730][T13889] memory: usage 3072kB, limit 3072kB, failcnt 54896
[  652.601587][T13889] memory+swap: usage 68820kB, limit 9007199254740988kB, failcnt 0
[  652.610152][T13889] kmem: usage 2896kB, limit 9007199254740988kB, failcnt 0
[  652.617335][T13889] Memory cgroup stats for /syz2:
[  652.617452][T13889] cache 0
[  652.625518][T13889] rss 0
[  652.628639][T13889] rss_huge 0
[  652.631867][T13889] shmem 0
[  652.634897][T13889] mapped_file 0
[  652.638354][T13889] dirty 0
[  652.641383][T13889] writeback 0
[  652.644751][T13889] workingset_refault_anon 8990
[  652.649876][T13889] workingset_refault_file 13236
[  652.654825][T13889] swap 67325952
[  652.658335][T13889] swapcached 205680640
[  652.662557][T13889] pgpgin 623885
[  652.666049][T13889] pgpgout 625885
[  652.669599][T13889] pgfault 508250
[  652.673344][T13889] pgmajfault 4173
[  652.677032][T13889] inactive_anon 0
[  652.680665][T13889] active_anon 176128
[  652.685160][T13889] inactive_file 0
[  652.688879][T13889] active_file 0
[  652.692349][T13889] unevictable 0
[  652.695957][T13889] hierarchical_memory_limit 3145728
[  652.701146][T13889] hierarchical_memsw_limit 9223372036854771712
[  652.707508][T13889] total_cache 0
[  652.711068][T13889] total_rss 0
[  652.714795][T13889] total_rss_huge 0
[  652.718577][T13889] total_shmem 0
[  652.722162][T13889] total_mapped_file 0
[  652.732517][T13889] total_dirty 0
[  652.737461][T13889] total_writeback 0
[  652.744911][T13889] total_workingset_refault_anon 8990
[  652.750430][T13889] total_workingset_refault_file 13236
[  652.755869][T13889] total_swap 67325952
[  652.759873][T13889] total_swapcached 205680640
[  652.764466][T13889] total_pgpgin 623885
[  652.779009][T13889] total_pgpgout 625885
[  652.783676][T13889] total_pgfault 508250
[  652.788048][T13889] total_pgmajfault 4173
[  652.792256][T13889] total_inactive_anon 0
[  652.796632][T13889] total_active_anon 176128
[  652.801061][T13889] total_inactive_file 0
[  652.805351][T13889] total_active_file 0
[  652.809347][T13889] total_unevictable 0
[  652.813414][T13889] anon_cost 15
[  652.818717][T13889] file_cost 0
[  652.822110][T13889] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1645,pid=13892,uid=0
[  652.839542][T13889] Memory cgroup out of memory: Killed process 13892 (syz.2.1645) total-vm:109028kB, anon-rss:1236kB, file-rss:27464kB, shmem-rss:0kB, UID:0 pgtables:164kB oom_score_adj:1000
[  652.895123][ T5823] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  652.933527][ T5823] CPU: 1 UID: 0 PID: 5823 Comm: syz-executor Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  652.933577][ T5823] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  652.933590][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  652.933608][ T5823] Call Trace:
[  652.933619][ T5823]  <TASK>
[  652.933631][ T5823]  dump_stack_lvl+0x100/0x190
[  652.933678][ T5823]  dump_header+0xfb/0x606
[  652.933712][ T5823]  oom_kill_process.cold+0xd/0x330
[  652.933746][ T5823]  out_of_memory+0x340/0x14f0
[  652.933790][ T5823]  ? __pfx_out_of_memory+0x10/0x10
[  652.933837][ T5823]  mem_cgroup_out_of_memory+0xc6/0x130
[  652.933873][ T5823]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  652.933907][ T5823]  ? find_held_lock+0x2b/0x80
[  652.933962][ T5823]  ? do_raw_spin_unlock+0x145/0x1e0
[  652.934007][ T5823]  ? _raw_spin_unlock+0x28/0x50
[  652.934069][ T5823]  try_charge_memcg+0x652/0xc90
[  652.934125][ T5823]  ? __pfx_try_charge_memcg+0x10/0x10
[  652.934179][ T5823]  ? find_held_lock+0x2b/0x80
[  652.934223][ T5823]  ? rcu_read_unlock+0x17/0x60
[  652.934269][ T5823]  ? rcu_read_unlock+0x17/0x60
[  652.934317][ T5823]  charge_memcg+0xa6/0x280
[  652.934364][ T5823]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  652.934401][ T5823]  __swap_cache_prepare_and_add+0x528/0x9e0
[  652.934460][ T5823]  ? __pfx___swap_cache_prepare_and_add+0x10/0x10
[  652.934495][ T5823]  ? __pfx_swap_entry_swapped+0x10/0x10
[  652.934551][ T5823]  swap_cache_alloc_folio+0x1cb/0x300
[  652.934591][ T5823]  ? __pfx_swap_cache_alloc_folio+0x10/0x10
[  652.934630][ T5823]  ? __lock_acquire+0x4a5/0x2630
[  652.934669][ T5823]  swap_cluster_readahead+0x411/0x770
[  652.934717][ T5823]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  652.934755][ T5823]  ? do_raw_spin_lock+0x128/0x260
[  652.934795][ T5823]  ? __print_lock_name+0x60/0x80
[  652.934842][ T5823]  ? move_cluster+0x1f7/0x570
[  652.934915][ T5823]  ? get_vma_policy+0x23f/0x3b0
[  652.934965][ T5823]  swapin_readahead+0x160/0x12c0
[  652.935016][ T5823]  ? __pfx_swapin_readahead+0x10/0x10
[  652.935058][ T5823]  ? find_held_lock+0x2b/0x80
[  652.935102][ T5823]  ? swap_table_get+0x103/0x2c0
[  652.935134][ T5823]  ? swap_table_get+0x103/0x2c0
[  652.935175][ T5823]  ? swap_table_get+0x10d/0x2c0
[  652.935211][ T5823]  ? swap_cache_get_folio+0x1ae/0x600
[  652.935250][ T5823]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  652.935285][ T5823]  ? __pfx_get_swap_device+0x10/0x10
[  652.935336][ T5823]  ? do_swap_page+0xb2e/0x68e0
[  652.935370][ T5823]  do_swap_page+0xb2e/0x68e0
[  652.935427][ T5823]  ? __pfx_do_swap_page+0x10/0x10
[  652.935463][ T5823]  ? __free_object+0x2a8/0x400
[  652.935500][ T5823]  ? lockdep_hardirqs_on+0x78/0x100
[  652.935534][ T5823]  ? rcu_is_watching+0x12/0xc0
[  652.935566][ T5823]  ? __pte_offset_map+0x179/0x310
[  652.935595][ T5823]  __handle_mm_fault+0x18c1/0x2b60
[  652.935621][ T5823]  ? reacquire_held_locks+0xce/0x1e0
[  652.935643][ T5823]  ? __pfx___handle_mm_fault+0x10/0x10
[  652.935668][ T5823]  ? lock_vma_under_rcu+0x17c/0x590
[  652.935713][ T5823]  handle_mm_fault+0x36d/0xa20
[  652.935755][ T5823]  do_user_addr_fault+0x5a3/0x12f0
[  652.935807][ T5823]  exc_page_fault+0x6f/0xd0
[  652.935827][ T5823]  asm_exc_page_fault+0x26/0x30
[  652.935846][ T5823] RIP: 0033:0x7f31dbf5c84e
[  652.935863][ T5823] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  652.935881][ T5823] RSP: 002b:00007fff9821e6a8 EFLAGS: 00010246
[  652.935896][ T5823] RAX: 0000000000000000 RBX: 000055557b733500 RCX: 00007f31dbf5c84e
[  652.935908][ T5823] RDX: 00007fff9821e700 RSI: 0000000000000000 RDI: 0000000000000000
[  652.935919][ T5823] RBP: 00007fff9821e76c R08: 0000000000000000 R09: 0000000000000000
[  652.935929][ T5823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000001388
[  652.935940][ T5823] R13: 00000000000927c0 R14: 000000000009f146 R15: 00007fff9821e7c0
[  652.935963][ T5823]  </TASK>
[  653.333688][ T5823] memory: usage 3072kB, limit 3072kB, failcnt 45501
[  653.342545][ T5823] memory+swap: usage 5448kB, limit 9007199254740988kB, failcnt 0
[  653.353426][ T5823] kmem: usage 2888kB, limit 9007199254740988kB, failcnt 0
[  653.361253][ T5823] Memory cgroup stats for /syz1:
[  653.361445][ T5823] cache 0
[  653.374383][ T5823] rss 32768
[  653.377567][ T5823] rss_huge 0
[  653.380791][ T5823] shmem 0
[  653.383748][ T5823] mapped_file 0
[  653.387689][ T5823] dirty 0
[  653.396958][ T5823] writeback 0
[  653.400473][ T5823] workingset_refault_anon 9341
[  653.408814][ T5823] workingset_refault_file 26051
[  653.414458][ T5823] swap 2437120
[  653.417856][ T5823] swapcached 130818048
[  653.421917][ T5823] pgpgin 482015
[  653.426307][ T5823] pgpgout 485547
[  653.431560][ T5823] pgfault 416636
[  653.464315][ T5823] pgmajfault 4892
[  653.468100][ T5823] inactive_anon 0
[  653.471854][ T5823] active_anon 184320
[  653.516126][ T5823] inactive_file 0
[  653.519821][ T5823] active_file 0
[  653.523303][ T5823] unevictable 0
[  653.551644][ T5823] hierarchical_memory_limit 3145728
[  653.560186][ T5823] hierarchical_memsw_limit 9223372036854771712
[  653.567344][ T5823] total_cache 0
[  653.570921][ T5823] total_rss 32768
[  653.595188][ T5823] total_rss_huge 0
[  653.599328][ T5823] total_shmem 0
[  653.602795][ T5823] total_mapped_file 0
[  653.618828][ T5823] total_dirty 0
[  653.622491][ T5823] total_writeback 0
[  653.643387][ T5823] total_workingset_refault_anon 9341
[  653.649879][ T5823] total_workingset_refault_file 26051
[  653.664926][ T5823] total_swap 2437120
[  653.668954][ T5823] total_swapcached 130818048
[  653.692021][ T5823] total_pgpgin 482015
[  653.702060][ T5823] total_pgpgout 485547
[  653.715236][ T5823] total_pgfault 416636
[  653.719328][ T5823] total_pgmajfault 4892
[  653.735569][ T5823] total_inactive_anon 0
[  653.739748][ T5823] total_active_anon 184320
[  653.766980][ T5823] total_inactive_file 0
[  653.771194][ T5823] total_active_file 0
[  653.787547][ T5823] total_unevictable 0
[  653.791663][ T5823] anon_cost 582
[  653.820734][ T5823] file_cost 0
[  653.831985][ T5823] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1646,pid=13905,uid=0
[  653.858912][ T5823] Memory cgroup out of memory: Killed process 13905 (syz.1.1646) total-vm:108632kB, anon-rss:1228kB, file-rss:22584kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:1000
[  656.391199][T13943] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1653'.
[  656.447001][T13943] random: crng reseeded on system resumption
[  660.508513][T13974] syz.1.1659 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=2, oom_score_adj=1000
[  660.582533][T13974] CPU: 1 UID: 0 PID: 13974 Comm: syz.1.1659 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  660.582585][T13974] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  660.582597][T13974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  660.582614][T13974] Call Trace:
[  660.582625][T13974]  <TASK>
[  660.582637][T13974]  dump_stack_lvl+0x100/0x190
[  660.582690][T13974]  dump_header+0xfb/0x606
[  660.582726][T13974]  oom_kill_process.cold+0xd/0x330
[  660.582763][T13974]  out_of_memory+0x340/0x14f0
[  660.582812][T13974]  ? __pfx_out_of_memory+0x10/0x10
[  660.582864][T13974]  mem_cgroup_out_of_memory+0xc6/0x130
[  660.582902][T13974]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  660.582936][T13974]  ? find_held_lock+0x2b/0x80
[  660.582992][T13974]  ? do_raw_spin_unlock+0x145/0x1e0
[  660.583047][T13974]  ? _raw_spin_unlock+0x28/0x50
[  660.583110][T13974]  try_charge_memcg+0x652/0xc90
[  660.583167][T13974]  ? __pfx_try_charge_memcg+0x10/0x10
[  660.583212][T13974]  ? rcu_read_unlock+0x17/0x60
[  660.583259][T13974]  ? rcu_read_unlock+0x17/0x60
[  660.583316][T13974]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  660.583362][T13974]  obj_cgroup_charge_account+0x33d/0x640
[  660.583418][T13974]  __memcg_slab_post_alloc_hook+0x2e3/0x9a0
[  660.583483][T13974]  __kmalloc_cache_noprof+0x59d/0x6f0
[  660.583518][T13974]  ? ipv6_add_dev+0x670/0x1520
[  660.583568][T13974]  ipv6_add_dev+0x670/0x1520
[  660.583611][T13974]  addrconf_notify+0x563/0x19c0
[  660.583651][T13974]  ? ip6mr_device_event+0x1bc/0x230
[  660.583700][T13974]  notifier_call_chain+0x99/0x420
[  660.583750][T13974]  call_netdevice_notifiers_info+0xbe/0x110
[  660.583796][T13974]  register_netdevice+0x16e6/0x2210
[  660.583841][T13974]  ? __pfx_register_netdevice+0x10/0x10
[  660.583893][T13974]  register_netdev+0x34/0x50
[  660.583928][T13974]  sit_init_net+0x2c0/0x5f0
[  660.583975][T13974]  ? __pfx_sit_init_net+0x10/0x10
[  660.584029][T13974]  ops_init+0x1e2/0x5f0
[  660.584070][T13974]  setup_net+0x118/0x3a0
[  660.584108][T13974]  ? __pfx_setup_net+0x10/0x10
[  660.584142][T13974]  ? lockdep_init_map_type+0x5c/0x250
[  660.584184][T13974]  ? mutex_init_lockep+0x110/0x150
[  660.584232][T13974]  copy_net_ns+0x46f/0x7c0
[  660.584276][T13974]  create_new_namespaces+0x3ea/0xac0
[  660.584338][T13974]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  660.584375][T13974]  ksys_unshare+0x455/0xab0
[  660.584416][T13974]  ? __pfx_ksys_unshare+0x10/0x10
[  660.584473][T13974]  __x64_sys_unshare+0x31/0x40
[  660.584512][T13974]  do_syscall_64+0x106/0xf80
[  660.584545][T13974]  ? clear_bhb_loop+0x40/0x90
[  660.584585][T13974]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  660.584618][T13974] RIP: 0033:0x7f31dbf9bf79
[  660.584647][T13974] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  660.584679][T13974] RSP: 002b:00007f31dce07028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  660.584709][T13974] RAX: ffffffffffffffda RBX: 00007f31dc215fa0 RCX: 00007f31dbf9bf79
[  660.584737][T13974] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  660.584756][T13974] RBP: 00007f31dc0327e0 R08: 0000000000000000 R09: 0000000000000000
[  660.584774][T13974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  660.584792][T13974] R13: 00007f31dc216038 R14: 00007f31dc215fa0 R15: 00007fff9821e3c8
[  660.584835][T13974]  </TASK>
[  660.979322][T13974] memory: usage 3072kB, limit 3072kB, failcnt 48385
[  661.300394][T13974] memory+swap: usage 3512kB, limit 9007199254740988kB, failcnt 0
[  661.311651][T13974] kmem: usage 2892kB, limit 9007199254740988kB, failcnt 0
[  661.319385][T13974] Memory cgroup stats for /syz1:
[  661.319586][T13974] cache 0
[  661.446298][T13974] rss 36864
[  661.449592][T13974] rss_huge 0
[  661.481915][T13974] shmem 0
[  661.484934][T13974] mapped_file 0
[  661.488459][T13974] dirty 0
[  661.531935][T13974] writeback 0
[  661.535324][T13974] workingset_refault_anon 9889
[  661.605911][T13974] workingset_refault_file 26175
[  661.648077][T13974] swap 450560
[  661.658296][T13974] swapcached 144736256
[  661.698537][T13974] pgpgin 486239
[  661.724614][T13974] pgpgout 489771
[  661.728400][T13974] pgfault 420987
[  661.750087][T13974] pgmajfault 5187
[  661.753794][T13974] inactive_anon 151552
[  661.757893][T13974] active_anon 32768
[  661.792240][T13974] inactive_file 0
[  661.795936][T13974] active_file 0
[  661.799462][T13974] unevictable 0
[  661.826773][T13974] hierarchical_memory_limit 3145728
[  661.850916][T13974] hierarchical_memsw_limit 9223372036854771712
[  661.857230][T13974] total_cache 0
[  661.889621][T13974] total_rss 36864
[  661.919833][T13974] total_rss_huge 0
[  661.945879][T13974] total_shmem 0
[  661.949600][T13974] total_mapped_file 0
[  661.968852][T13974] total_dirty 0
[  661.972494][T13974] total_writeback 0
[  661.977198][T13974] total_workingset_refault_anon 9889
[  661.984710][T13974] total_workingset_refault_file 26175
[  661.990447][T13974] total_swap 450560
[  661.994296][T13974] total_swapcached 144736256
[  661.998970][T13974] total_pgpgin 486239
[  662.017770][T13974] total_pgpgout 489771
[  662.021990][T13974] total_pgfault 420987
[  662.039114][T13974] total_pgmajfault 5187
[  662.052977][T13974] total_inactive_anon 151552
[  662.057625][T13974] total_active_anon 32768
[  662.090569][T13974] total_inactive_file 0
[  662.094949][T13974] total_active_file 0
[  662.098974][T13974] total_unevictable 0
[  662.124338][T13974] anon_cost 585
[  662.134587][T13974] file_cost 0
[  662.137932][T13974] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1659,pid=13973,uid=0
[  662.173958][T13974] Memory cgroup out of memory: Killed process 13973 (syz.1.1659) total-vm:137432kB, anon-rss:1236kB, file-rss:23516kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:1000
[  662.535200][T13996] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1665'.
[  664.895209][T14004] syz.1.1667 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000
[  665.069672][T14004] CPU: 0 UID: 0 PID: 14004 Comm: syz.1.1667 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  665.069706][T14004] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  665.069713][T14004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  665.069724][T14004] Call Trace:
[  665.069731][T14004]  <TASK>
[  665.069738][T14004]  dump_stack_lvl+0x100/0x190
[  665.069769][T14004]  dump_header+0xfb/0x606
[  665.069791][T14004]  oom_kill_process.cold+0xd/0x330
[  665.069814][T14004]  out_of_memory+0x340/0x14f0
[  665.069848][T14004]  ? __pfx_out_of_memory+0x10/0x10
[  665.069878][T14004]  mem_cgroup_out_of_memory+0xc6/0x130
[  665.069901][T14004]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  665.069921][T14004]  ? find_held_lock+0x2b/0x80
[  665.069954][T14004]  ? do_raw_spin_unlock+0x145/0x1e0
[  665.069980][T14004]  ? _raw_spin_unlock+0x28/0x50
[  665.070010][T14004]  try_charge_memcg+0x652/0xc90
[  665.070042][T14004]  ? __pfx_try_charge_memcg+0x10/0x10
[  665.070068][T14004]  ? rcu_read_unlock+0x17/0x60
[  665.070098][T14004]  ? rcu_read_unlock+0x17/0x60
[  665.070130][T14004]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  665.070156][T14004]  obj_cgroup_charge_account+0x33d/0x640
[  665.070188][T14004]  __memcg_slab_post_alloc_hook+0x2e3/0x9a0
[  665.070226][T14004]  __kmalloc_node_track_caller_noprof+0x66e/0x850
[  665.070252][T14004]  ? neigh_sysctl_register+0xb4/0x660
[  665.070277][T14004]  kmemdup_noprof+0x29/0x60
[  665.070302][T14004]  neigh_sysctl_register+0xb4/0x660
[  665.070323][T14004]  ? __pfx_neigh_sysctl_register+0x10/0x10
[  665.070348][T14004]  ? inetdev_init+0x245/0x570
[  665.070369][T14004]  ? inetdev_event+0x7fa/0x17f0
[  665.070390][T14004]  ? notifier_call_chain+0x99/0x420
[  665.070414][T14004]  ? setup_net+0x118/0x3a0
[  665.070433][T14004]  ? copy_net_ns+0x46f/0x7c0
[  665.070453][T14004]  ? create_new_namespaces+0x3ea/0xac0
[  665.070480][T14004]  ? unshare_nsproxy_namespaces+0xc3/0x1f0
[  665.070498][T14004]  ? ksys_unshare+0x455/0xab0
[  665.070519][T14004]  ? __x64_sys_unshare+0x31/0x40
[  665.070539][T14004]  ? do_syscall_64+0x106/0xf80
[  665.070561][T14004]  devinet_sysctl_register+0xb6/0x210
[  665.070587][T14004]  inetdev_init+0x2b8/0x570
[  665.070611][T14004]  inetdev_event+0x7fa/0x17f0
[  665.070635][T14004]  ? ib_netdevice_event+0xfc/0x330
[  665.070656][T14004]  ? __pfx_inetdev_event+0x10/0x10
[  665.070680][T14004]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  665.070711][T14004]  notifier_call_chain+0x99/0x420
[  665.070739][T14004]  call_netdevice_notifiers_info+0xbe/0x110
[  665.070765][T14004]  register_netdevice+0x16e6/0x2210
[  665.070791][T14004]  ? __pfx_register_netdevice+0x10/0x10
[  665.070819][T14004]  __ip_tunnel_create+0x52b/0x670
[  665.070843][T14004]  ? __pfx___ip_tunnel_create+0x10/0x10
[  665.070863][T14004]  ? net_generic+0xea/0x2a0
[  665.070890][T14004]  ip_tunnel_init_net+0x230/0x780
[  665.070916][T14004]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  665.070943][T14004]  ? trace_kmalloc+0x101/0x130
[  665.070968][T14004]  ? __kasan_kmalloc+0xaa/0xb0
[  665.070996][T14004]  ? __pfx_vti_init_net+0x10/0x10
[  665.071019][T14004]  vti_init_net+0x2e/0x140
[  665.071043][T14004]  ops_init+0x1e2/0x5f0
[  665.071066][T14004]  setup_net+0x118/0x3a0
[  665.071087][T14004]  ? __pfx_setup_net+0x10/0x10
[  665.071106][T14004]  ? lockdep_init_map_type+0x5c/0x250
[  665.071129][T14004]  ? mutex_init_lockep+0x110/0x150
[  665.071156][T14004]  copy_net_ns+0x46f/0x7c0
[  665.071181][T14004]  create_new_namespaces+0x3ea/0xac0
[  665.071216][T14004]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  665.071237][T14004]  ksys_unshare+0x455/0xab0
[  665.071261][T14004]  ? __pfx_ksys_unshare+0x10/0x10
[  665.071299][T14004]  __x64_sys_unshare+0x31/0x40
[  665.071321][T14004]  do_syscall_64+0x106/0xf80
[  665.071346][T14004]  ? clear_bhb_loop+0x40/0x90
[  665.071368][T14004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  665.071388][T14004] RIP: 0033:0x7f31dbf9bf79
[  665.071405][T14004] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  665.071423][T14004] RSP: 002b:00007f31dcdc5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  665.071441][T14004] RAX: ffffffffffffffda RBX: 00007f31dc216180 RCX: 00007f31dbf9bf79
[  665.071453][T14004] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  665.071464][T14004] RBP: 00007f31dc0327e0 R08: 0000000000000000 R09: 0000000000000000
[  665.071475][T14004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  665.071486][T14004] R13: 00007f31dc216218 R14: 00007f31dc216180 R15: 00007fff9821e3c8
[  665.071510][T14004]  </TASK>
[  665.611395][T14004] memory: usage 3072kB, limit 3072kB, failcnt 48844
[  665.618194][T14004] memory+swap: usage 3620kB, limit 9007199254740988kB, failcnt 0
[  665.626353][T14004] kmem: usage 2944kB, limit 9007199254740988kB, failcnt 0
[  665.634209][T14004] Memory cgroup stats for /syz1:
[  665.634423][T14004] cache 0
[  665.667968][T14004] rss 0
[  665.670911][T14004] rss_huge 0
[  665.674221][T14004] shmem 0
[  665.677184][T14004] mapped_file 0
[  665.680675][T14004] dirty 0
[  665.683694][T14004] writeback 0
[  665.686968][T14004] workingset_refault_anon 10111
[  665.691912][T14004] workingset_refault_file 26222
[  665.696758][T14004] swap 561152
[  665.700150][T14004] swapcached 144945152
[  665.704386][T14004] pgpgin 486574
[  665.707837][T14004] pgpgout 490119
[  665.711925][T14004] pgfault 421392
[  665.715485][T14004] pgmajfault 5382
[  665.719216][T14004] inactive_anon 0
[  665.722847][T14004] active_anon 0
[  665.726295][T14004] inactive_file 0
[  665.730308][T14004] active_file 0
[  665.734201][T14004] unevictable 0
[  665.737654][T14004] hierarchical_memory_limit 3145728
[  665.743002][T14004] hierarchical_memsw_limit 9223372036854771712
[  665.749262][T14004] total_cache 0
[  665.752716][T14004] total_rss 0
[  665.756328][T14004] total_rss_huge 0
[  665.760155][T14004] total_shmem 0
[  665.763884][T14004] total_mapped_file 0
[  665.768152][T14004] total_dirty 0
[  665.771604][T14004] total_writeback 0
[  665.775402][T14004] total_workingset_refault_anon 10111
[  665.780875][T14004] total_workingset_refault_file 26222
[  665.786255][T14004] total_swap 561152
[  665.790436][T14004] total_swapcached 144945152
[  665.795083][T14004] total_pgpgin 486574
[  665.799124][T14004] total_pgpgout 490119
[  665.803184][T14004] total_pgfault 421392
[  665.807329][T14004] total_pgmajfault 5382
[  665.812324][T14004] total_inactive_anon 0
[  665.816650][T14004] total_active_anon 0
[  665.820674][T14004] total_inactive_file 0
[  665.824838][T14004] total_active_file 0
[  665.829342][T14004] total_unevictable 0
[  665.833340][T14004] anon_cost 571
[  665.836886][T14004] file_cost 0
[  665.840184][T14004] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1667,pid=13999,uid=0
[  665.855409][T14004] Memory cgroup out of memory: Killed process 13999 (syz.1.1667) total-vm:108900kB, anon-rss:1228kB, file-rss:26920kB, shmem-rss:0kB, UID:0 pgtables:168kB oom_score_adj:1000
[  667.023725][T14025] netlink: 93 bytes leftover after parsing attributes in process `syz.1.1670'.
[  667.075656][T14028] netlink: 93 bytes leftover after parsing attributes in process `syz.1.1670'.
[  667.097663][T12225] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  667.391464][T13545] syz.2.1571 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  667.408992][T13545] CPU: 0 UID: 0 PID: 13545 Comm: syz.2.1571 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  667.409025][T13545] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  667.409033][T13545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  667.409044][T13545] Call Trace:
[  667.409051][T13545]  <TASK>
[  667.409059][T13545]  dump_stack_lvl+0x100/0x190
[  667.409090][T13545]  dump_header+0xfb/0x606
[  667.409114][T13545]  oom_kill_process.cold+0xd/0x330
[  667.409142][T13545]  out_of_memory+0x340/0x14f0
[  667.409186][T13545]  ? __pfx_out_of_memory+0x10/0x10
[  667.409225][T13545]  mem_cgroup_out_of_memory+0xc6/0x130
[  667.409248][T13545]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  667.409267][T13545]  ? find_held_lock+0x2b/0x80
[  667.409299][T13545]  ? do_raw_spin_unlock+0x145/0x1e0
[  667.409325][T13545]  ? _raw_spin_unlock+0x28/0x50
[  667.409363][T13545]  try_charge_memcg+0x652/0xc90
[  667.409395][T13545]  ? __pfx_try_charge_memcg+0x10/0x10
[  667.409422][T13545]  ? find_held_lock+0x2b/0x80
[  667.409447][T13545]  ? rcu_read_unlock+0x17/0x60
[  667.409474][T13545]  ? rcu_read_unlock+0x17/0x60
[  667.409509][T13545]  charge_memcg+0xa6/0x280
[  667.409536][T13545]  __mem_cgroup_charge+0x2b/0x1e0
[  667.409556][T13545]  shmem_alloc_and_add_folio+0x451/0xd40
[  667.409586][T13545]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  667.409612][T13545]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  667.409641][T13545]  shmem_get_folio_gfp+0x6ab/0x1900
[  667.409670][T13545]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  667.409696][T13545]  ? timestamp_truncate+0x22e/0x2f0
[  667.409726][T13545]  shmem_write_begin+0x1a4/0x420
[  667.409753][T13545]  ? __pfx_shmem_write_begin+0x10/0x10
[  667.409775][T13545]  ? rcu_is_watching+0x12/0xc0
[  667.409802][T13545]  ? balance_dirty_pages_ratelimited_flags+0x91/0x1170
[  667.409835][T13545]  generic_perform_write+0x292/0xa40
[  667.409865][T13545]  ? __pfx_generic_perform_write+0x10/0x10
[  667.409886][T13545]  ? __mark_inode_dirty+0x55c/0x1790
[  667.409910][T13545]  ? mnt_put_write_access_file+0x4e/0x100
[  667.409936][T13545]  ? file_update_time_flags+0x373/0x500
[  667.409957][T13545]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  667.409985][T13545]  shmem_file_write_iter+0x10e/0x140
[  667.410014][T13545]  __kernel_write_iter+0x2ac/0x920
[  667.410042][T13545]  ? __pfx___kernel_write_iter+0x10/0x10
[  667.410066][T13545]  ? __up_read+0x2c5/0x700
[  667.410094][T13545]  ? dump_user_range+0x73b/0xb50
[  667.410126][T13545]  dump_user_range+0x3f9/0xb50
[  667.410156][T13545]  ? __pfx_dump_user_range+0x10/0x10
[  667.410188][T13545]  ? __pfx_writenote+0x10/0x10
[  667.410220][T13545]  elf_core_dump+0x2d16/0x3c60
[  667.410259][T13545]  ? __pfx_elf_core_dump+0x10/0x10
[  667.410287][T13545]  ? kasan_save_stack+0x3f/0x50
[  667.410310][T13545]  ? kasan_save_track+0x14/0x30
[  667.410332][T13545]  ? __kasan_kmalloc+0xaa/0xb0
[  667.410360][T13545]  ? __kvmalloc_node_noprof+0x360/0xa00
[  667.410386][T13545]  ? irqentry_exit+0x1f8/0x670
[  667.410404][T13545]  ? asm_exc_stack_segment+0x26/0x30
[  667.410425][T13545]  ? 0xffffffffff600000
[  667.410476][T13545]  ? vfs_coredump+0x27b4/0x5570
[  667.410499][T13545]  vfs_coredump+0x27b4/0x5570
[  667.410532][T13545]  ? __pfx_vfs_coredump+0x10/0x10
[  667.410558][T13545]  ? __lock_acquire+0x4a5/0x2630
[  667.410588][T13545]  ? lock_acquire+0x1cf/0x380
[  667.410619][T13545]  ? is_bpf_text_address+0x8a/0x1a0
[  667.410645][T13545]  ? bpf_ksym_find+0x124/0x1c0
[  667.410672][T13545]  ? __kernel_text_address+0xd/0x30
[  667.410697][T13545]  ? unwind_get_return_address+0x59/0xa0
[  667.410717][T13545]  ? arch_stack_walk+0xa6/0xf0
[  667.410741][T13545]  ? __sigqueue_free+0xbe/0x2a0
[  667.410764][T13545]  ? stack_trace_save+0x8e/0xc0
[  667.410791][T13545]  ? __pfx_stack_trace_save+0x10/0x10
[  667.410819][T13545]  ? stack_depot_save_flags+0x27/0x9d0
[  667.410840][T13545]  ? __lock_acquire+0x4a5/0x2630
[  667.410897][T13545]  ? proc_coredump_connector+0x2d3/0x4f0
[  667.410919][T13545]  ? __pfx_proc_coredump_connector+0x10/0x10
[  667.410946][T13545]  ? rcu_is_watching+0x12/0xc0
[  667.410974][T13545]  get_signal+0x1f2a/0x21e0
[  667.411001][T13545]  ? __pfx_get_signal+0x10/0x10
[  667.411021][T13545]  ? force_sig+0xbf/0x100
[  667.411039][T13545]  arch_do_signal_or_restart+0x91/0x770
[  667.411073][T13545]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  667.411111][T13545]  ? rcu_is_watching+0x12/0xc0
[  667.411153][T13545]  irqentry_exit+0x1f8/0x670
[  667.411176][T13545]  asm_exc_stack_segment+0x26/0x30
[  667.411194][T13545] RIP: 0033:0x7f1bbad9bf81
[  667.411210][T13545] Code: 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  667.411228][T13545] RSP: 002b:7fffffffffffffff EFLAGS: 00010217
[  667.411243][T13545] RAX: 0000000000000000 RBX: 00007f1bbb015fa0 RCX: 00007f1bbad9bf79
[  667.411255][T13545] RDX: ffffffffffffffff RSI: 7fffffffffffffff RDI: 0000000000000007
[  667.411266][T13545] RBP: 00007f1bbae327e0 R08: 0000000000000001 R09: 0000000000000000
[  667.411277][T13545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  667.411287][T13545] R13: 00007f1bbb016038 R14: 00007f1bbb015fa0 R15: 00007ffdb065ab98
[  667.411311][T13545]  </TASK>
[  667.411318][T13545] memory: usage 3072kB, limit 3072kB, failcnt 69559
[  667.999899][T13545] memory+swap: usage 101164kB, limit 9007199254740988kB, failcnt 0
[  668.047672][T13545] kmem: usage 2900kB, limit 9007199254740988kB, failcnt 0
[  668.076985][T13545] Memory cgroup stats for /syz2:
[  668.077198][T13545] cache 4096
[  668.096165][T13545] rss 0
[  668.113837][T13545] rss_huge 0
[  668.117747][T13545] shmem 4096
[  668.121222][T13545] mapped_file 0
[  668.124690][T13545] dirty 0
[  668.137791][T13545] writeback 0
[  668.148794][T13545] workingset_refault_anon 10108
[  668.161865][T13545] workingset_refault_file 21684
[  668.177281][T13545] swap 100446208
[  668.180866][T13545] swapcached 243343360
[  668.192124][T13545] pgpgin 642888
[  668.195613][T13545] pgpgout 644889
[  668.221331][T13545] pgfault 515311
[  668.228463][T13545] pgmajfault 4815
[  668.235818][T13545] inactive_anon 131072
[  668.248247][T13545] active_anon 40960
[  668.258564][T13545] inactive_file 0
[  668.270289][T13545] active_file 0
[  668.273884][T13545] unevictable 0
[  668.287775][T13545] hierarchical_memory_limit 3145728
[  668.293648][T13545] hierarchical_memsw_limit 9223372036854771712
[  668.306867][T13545] total_cache 4096
[  668.312461][T13545] total_rss 0
[  668.315776][T13545] total_rss_huge 0
[  668.320754][T13545] total_shmem 4096
[  668.328682][T13545] total_mapped_file 0
[  668.334731][T13545] total_dirty 0
[  668.340499][T13545] total_writeback 0
[  668.344440][T13545] total_workingset_refault_anon 10108
[  668.360181][T13545] total_workingset_refault_file 21684
[  668.370339][T13545] total_swap 100446208
[  668.375920][T13545] total_swapcached 243343360
[  668.381984][T13545] total_pgpgin 642888
[  668.385974][T13545] total_pgpgout 644889
[  668.399102][T13545] total_pgfault 515311
[  668.407494][T13545] total_pgmajfault 4815
[  668.412929][T13545] total_inactive_anon 131072
[  668.423045][T13545] total_active_anon 40960
[  668.432055][T13545] total_inactive_file 0
[  668.436776][T13545] total_active_file 0
[  668.445104][T13545] total_unevictable 0
[  668.449573][T13545] anon_cost 19
[  668.457274][T13545] file_cost 0
[  668.460610][T13545] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1571,pid=13545,uid=0
[  668.486114][T13545] Memory cgroup out of memory: Killed process 13545 (syz.2.1571) total-vm:167888kB, anon-rss:1236kB, file-rss:46556kB, shmem-rss:0kB, UID:0 pgtables:312kB oom_score_adj:1000
[  672.084142][T12225] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5
[  672.086771][T14076] FAULT_INJECTION: forcing a failure.
[  672.086771][T14076] name failslab, interval 1, probability 0, space 0, times 0
[  672.108685][T14076] CPU: 0 UID: 0 PID: 14076 Comm: syz.2.1683 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  672.108742][T14076] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  672.108756][T14076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  672.108774][T14076] Call Trace:
[  672.108785][T14076]  <TASK>
[  672.108798][T14076]  dump_stack_lvl+0x100/0x190
[  672.108850][T14076]  should_fail_ex.cold+0x5/0xa
[  672.108887][T14076]  should_failslab+0xc2/0x120
[  672.108936][T14076]  __kmalloc_cache_noprof+0x7a/0x6f0
[  672.108972][T14076]  ? ipv6_inetpeer_init+0x3f/0xb0
[  672.109022][T14076]  ? __pfx_ndisc_net_init+0x10/0x10
[  672.109080][T14076]  ? __pfx_ipv6_inetpeer_init+0x10/0x10
[  672.109131][T14076]  ipv6_inetpeer_init+0x3f/0xb0
[  672.109181][T14076]  ops_init+0x1e2/0x5f0
[  672.109221][T14076]  setup_net+0x118/0x3a0
[  672.109256][T14076]  ? __pfx_setup_net+0x10/0x10
[  672.109286][T14076]  ? lockdep_init_map_type+0x5c/0x250
[  672.109324][T14076]  ? mutex_init_lockep+0x110/0x150
[  672.109369][T14076]  copy_net_ns+0x46f/0x7c0
[  672.109411][T14076]  create_new_namespaces+0x3ea/0xac0
[  672.109474][T14076]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  672.109509][T14076]  ksys_unshare+0x455/0xab0
[  672.109551][T14076]  ? __pfx_ksys_unshare+0x10/0x10
[  672.109602][T14076]  __x64_sys_unshare+0x31/0x40
[  672.109637][T14076]  do_syscall_64+0x106/0xf80
[  672.109671][T14076]  ? clear_bhb_loop+0x40/0x90
[  672.109716][T14076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  672.109748][T14076] RIP: 0033:0x7f1bbad9bf79
[  672.109774][T14076] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  672.109804][T14076] RSP: 002b:00007f1bbbce3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  672.109836][T14076] RAX: ffffffffffffffda RBX: 00007f1bbb015fa0 RCX: 00007f1bbad9bf79
[  672.109856][T14076] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  672.109875][T14076] RBP: 00007f1bbae327e0 R08: 0000000000000000 R09: 0000000000000000
[  672.109892][T14076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  672.109911][T14076] R13: 00007f1bbb016038 R14: 00007f1bbb015fa0 R15: 00007ffdb065ab98
[  672.109953][T14076]  </TASK>
[  672.463425][T14077] FAULT_INJECTION: forcing a failure.
[  672.463425][T14077] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  672.479237][T14077] CPU: 0 UID: 0 PID: 14077 Comm: syz.1.1684 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  672.479285][T14077] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  672.479294][T14077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  672.479319][T14077] Call Trace:
[  672.479327][T14077]  <TASK>
[  672.479336][T14077]  dump_stack_lvl+0x100/0x190
[  672.479384][T14077]  should_fail_ex.cold+0x5/0xa
[  672.479411][T14077]  _copy_from_user+0x2e/0xd0
[  672.479434][T14077]  get_timespec64+0x8b/0x1b0
[  672.479457][T14077]  ? __pfx_get_timespec64+0x10/0x10
[  672.479483][T14077]  ? count_memcg_events_mm.constprop.0+0x109/0x2a0
[  672.479528][T14077]  __x64_sys_clock_nanosleep+0x1ce/0x480
[  672.479564][T14077]  ? __pfx___x64_sys_clock_nanosleep+0x10/0x10
[  672.479599][T14077]  ? do_user_addr_fault+0x8d6/0x12f0
[  672.479641][T14077]  do_syscall_64+0x106/0xf80
[  672.479664][T14077]  ? clear_bhb_loop+0x40/0x90
[  672.479692][T14077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  672.479716][T14077] RIP: 0033:0x7f31dbf5c84e
[  672.479736][T14077] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  672.479758][T14077] RSP: 002b:00007fff9821e4a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6
[  672.479781][T14077] RAX: ffffffffffffffda RBX: 000055557b733500 RCX: 00007f31dbf5c84e
[  672.479796][T14077] RDX: 00007fff9821e500 RSI: 0000000000000000 RDI: 0000000000000000
[  672.479811][T14077] RBP: 00007f31dc217da0 R08: 0000000000000000 R09: 0000000000000000
[  672.479825][T14077] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000a447a
[  672.479839][T14077] R13: 00007f31dc21609c R14: 00000000000a42fb R15: 00007f31dc216090
[  672.479869][T14077]  </TASK>
[  672.975357][T14089] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1686'.
[  673.092416][T14089] random: crng reseeded on system resumption
[  673.515809][ T5142] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5
[  673.843673][T14103] FAULT_INJECTION: forcing a failure.
[  673.843673][T14103] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  673.879871][T14103] CPU: 0 UID: 0 PID: 14103 Comm: syz.1.1691 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  673.879918][T14103] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  673.879928][T14103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  673.879944][T14103] Call Trace:
[  673.879953][T14103]  <TASK>
[  673.879964][T14103]  dump_stack_lvl+0x100/0x190
[  673.880012][T14103]  should_fail_ex.cold+0x5/0xa
[  673.880038][T14103]  ? prepare_alloc_pages+0x16d/0x5f0
[  673.880088][T14103]  should_fail_alloc_page+0xeb/0x140
[  673.880132][T14103]  prepare_alloc_pages+0x1f0/0x5f0
[  673.880177][T14103]  ? kasan_save_track+0x14/0x30
[  673.880214][T14103]  ? kasan_save_free_info+0x3b/0x70
[  673.880250][T14103]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  673.880297][T14103]  ? __handle_mm_fault+0x18c1/0x2b60
[  673.880331][T14103]  ? do_user_addr_fault+0x5a3/0x12f0
[  673.880374][T14103]  ? exc_page_fault+0x6f/0xd0
[  673.880400][T14103]  ? asm_exc_page_fault+0x26/0x30
[  673.880447][T14103]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  673.880490][T14103]  ? __lock_acquire+0x4a5/0x2630
[  673.880527][T14103]  ? __lock_acquire+0x4a5/0x2630
[  673.880576][T14103]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  673.880620][T14103]  ? policy_nodemask+0xed/0x4f0
[  673.880664][T14103]  alloc_pages_mpol+0x1fb/0x550
[  673.880707][T14103]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  673.880750][T14103]  ? swap_entry_swapped+0x1ff/0x2b0
[  673.880791][T14103]  ? __pfx_swap_entry_swapped+0x10/0x10
[  673.880839][T14103]  folio_alloc_mpol_noprof+0x36/0x340
[  673.880873][T14103]  swap_cache_alloc_folio+0x1a8/0x300
[  673.880911][T14103]  ? __pfx_swap_cache_alloc_folio+0x10/0x10
[  673.880958][T14103]  swap_cluster_readahead+0x411/0x770
[  673.881001][T14103]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  673.881064][T14103]  ? get_vma_policy+0x23f/0x3b0
[  673.881113][T14103]  swapin_readahead+0x160/0x12c0
[  673.881160][T14103]  ? __pfx_swapin_readahead+0x10/0x10
[  673.881194][T14103]  ? find_held_lock+0x2b/0x80
[  673.881234][T14103]  ? swap_table_get+0x103/0x2c0
[  673.881272][T14103]  ? swap_table_get+0x103/0x2c0
[  673.881312][T14103]  ? swap_table_get+0x10d/0x2c0
[  673.881346][T14103]  ? swap_cache_get_folio+0x1ae/0x600
[  673.881382][T14103]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  673.881415][T14103]  ? __pfx_get_swap_device+0x10/0x10
[  673.881466][T14103]  ? do_swap_page+0xb2e/0x68e0
[  673.881496][T14103]  do_swap_page+0xb2e/0x68e0
[  673.881548][T14103]  ? __pfx_do_swap_page+0x10/0x10
[  673.881594][T14103]  ? rcu_is_watching+0x12/0xc0
[  673.881633][T14103]  ? __pte_offset_map+0x179/0x310
[  673.881677][T14103]  __handle_mm_fault+0x18c1/0x2b60
[  673.881716][T14103]  ? reacquire_held_locks+0xce/0x1e0
[  673.881749][T14103]  ? __pfx___handle_mm_fault+0x10/0x10
[  673.881788][T14103]  ? lock_vma_under_rcu+0x17c/0x590
[  673.881843][T14103]  handle_mm_fault+0x36d/0xa20
[  673.881884][T14103]  do_user_addr_fault+0x5a3/0x12f0
[  673.881938][T14103]  exc_page_fault+0x6f/0xd0
[  673.881971][T14103]  asm_exc_page_fault+0x26/0x30
[  673.882000][T14103] RIP: 0033:0x7f31dbe5073f
[  673.882024][T14103] Code: 1f 84 00 00 00 00 00 0f 1f 40 00 41 89 fb 44 8d 56 04 4c 8d 0d d2 18 3b 00 89 f0 4c 8d 05 c9 f8 3a 00 89 c2 81 e2 ff 1f 00 00 <49> 8b 0c d1 48 39 f1 74 28 48 85 c9 74 29 45 38 1c 10 75 23 83 c0
[  673.882050][T14103] RSP: 002b:00007fff9821e408 EFLAGS: 00010206
[  673.882073][T14103] RAX: 000000008285c759 RBX: ffffffff8285c759 RCX: 0000001b309c0188
[  673.882092][T14103] RDX: 0000000000000759 RSI: ffffffff8285c759 RDI: 0000000000000019
[  673.882111][T14103] RBP: 0000000000000001 R08: 00007f31dc200000 R09: 00007f31dc202000
[  673.882129][T14103] R10: 000000008285c75d R11: 0000000000000019 R12: 00007f31dc216218
[  673.882146][T14103] R13: 0000000000000001 R14: ffffffff8285ca3c R15: 00007f31dcd45720
[  673.882165][T14103]  ? __x64_sys_openat+0x17c/0x210
[  673.882197][T14103]  ? __ia32_sys_open+0x79/0x1d0
[  673.882232][T14103]  ? __ia32_sys_open+0x79/0x1d0
[  673.882275][T14103]  </TASK>
[  674.454053][T12225] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  674.822333][T14115] random: crng reseeded on system resumption
[  674.966522][T14115] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(9.10.0), cmd(5)
[  675.415411][T12225] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5
[  675.599532][T14133] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1696'.
[  675.691167][T14133] random: crng reseeded on system resumption
[  676.005222][T14143] FAULT_INJECTION: forcing a failure.
[  676.005222][T14143] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  676.069754][T14143] CPU: 1 UID: 0 PID: 14143 Comm: syz.4.1697 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  676.069817][T14143] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  676.069829][T14143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  676.069847][T14143] Call Trace:
[  676.069857][T14143]  <TASK>
[  676.069868][T14143]  dump_stack_lvl+0x100/0x190
[  676.069916][T14143]  should_fail_ex.cold+0x5/0xa
[  676.069952][T14143]  _copy_from_iter+0x1f4/0x1690
[  676.070000][T14143]  ? __pfx__copy_from_iter+0x10/0x10
[  676.070037][T14143]  ? xfrm_lookup_route+0x6a/0x200
[  676.070090][T14143]  raw_sendmsg+0x1eff/0x3800
[  676.070147][T14143]  ? __pfx_raw_sendmsg+0x10/0x10
[  676.070198][T14143]  ? __lock_acquire+0x4a5/0x2630
[  676.070266][T14143]  ? __import_iovec+0x1d2/0x640
[  676.070300][T14143]  ? __pfx_raw_sendmsg+0x10/0x10
[  676.070343][T14143]  inet_sendmsg+0x11c/0x140
[  676.070385][T14143]  ____sys_sendmsg+0x9ad/0xc30
[  676.070427][T14143]  ? __pfx_____sys_sendmsg+0x10/0x10
[  676.070473][T14143]  ? __pfx__kstrtoull+0x10/0x10
[  676.070518][T14143]  ___sys_sendmsg+0x190/0x1e0
[  676.070559][T14143]  ? __pfx____sys_sendmsg+0x10/0x10
[  676.070613][T14143]  ? find_held_lock+0x2b/0x80
[  676.070689][T14143]  __sys_sendmmsg+0x205/0x430
[  676.070726][T14143]  ? __pfx___sys_sendmmsg+0x10/0x10
[  676.070770][T14143]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  676.070821][T14143]  ? fput+0x79/0x100
[  676.070850][T14143]  ? ksys_write+0x1ac/0x250
[  676.070889][T14143]  ? __pfx_ksys_write+0x10/0x10
[  676.070936][T14143]  __x64_sys_sendmmsg+0x9c/0x100
[  676.070968][T14143]  ? lockdep_hardirqs_on+0x78/0x100
[  676.071008][T14143]  do_syscall_64+0x106/0xf80
[  676.071040][T14143]  ? clear_bhb_loop+0x40/0x90
[  676.071077][T14143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  676.071108][T14143] RIP: 0033:0x7f25ceb9bf79
[  676.071136][T14143] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  676.071166][T14143] RSP: 002b:00007f25cf9eb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  676.071195][T14143] RAX: ffffffffffffffda RBX: 00007f25cee16090 RCX: 00007f25ceb9bf79
[  676.071215][T14143] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  676.071232][T14143] RBP: 00007f25cf9eb090 R08: 0000000000000000 R09: 0000000000000000
[  676.071249][T14143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  676.071265][T14143] R13: 00007f25cee16128 R14: 00007f25cee16090 R15: 00007fff97fdb848
[  676.071305][T14143]  </TASK>
[  676.633914][T14142] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1698'.
[  678.053556][T14153] syz.4.1702 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  678.064952][T14153] CPU: 1 UID: 0 PID: 14153 Comm: syz.4.1702 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  678.065000][T14153] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  678.065012][T14153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  678.065028][T14153] Call Trace:
[  678.065039][T14153]  <TASK>
[  678.065051][T14153]  dump_stack_lvl+0x100/0x190
[  678.065109][T14153]  dump_header+0xfb/0x606
[  678.065146][T14153]  oom_kill_process.cold+0xd/0x330
[  678.065184][T14153]  out_of_memory+0x340/0x14f0
[  678.065233][T14153]  ? __pfx_out_of_memory+0x10/0x10
[  678.065285][T14153]  mem_cgroup_out_of_memory+0xc6/0x130
[  678.065322][T14153]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  678.065355][T14153]  ? find_held_lock+0x2b/0x80
[  678.065410][T14153]  ? do_raw_spin_unlock+0x145/0x1e0
[  678.065454][T14153]  ? _raw_spin_unlock+0x28/0x50
[  678.065506][T14153]  try_charge_memcg+0x652/0xc90
[  678.065558][T14153]  ? __pfx_try_charge_memcg+0x10/0x10
[  678.065613][T14153]  ? find_held_lock+0x2b/0x80
[  678.065657][T14153]  ? rcu_read_unlock+0x17/0x60
[  678.065703][T14153]  ? rcu_read_unlock+0x17/0x60
[  678.065755][T14153]  charge_memcg+0xa6/0x280
[  678.065801][T14153]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  678.065837][T14153]  __swap_cache_prepare_and_add+0x528/0x9e0
[  678.065893][T14153]  ? __pfx___swap_cache_prepare_and_add+0x10/0x10
[  678.065930][T14153]  ? __pfx_swap_entry_swapped+0x10/0x10
[  678.065985][T14153]  swap_cache_alloc_folio+0x1cb/0x300
[  678.066027][T14153]  ? __pfx_swap_cache_alloc_folio+0x10/0x10
[  678.066085][T14153]  swap_cluster_readahead+0x411/0x770
[  678.066135][T14153]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  678.066180][T14153]  ? __lock_acquire+0x4a5/0x2630
[  678.066235][T14153]  ? get_vma_policy+0x23f/0x3b0
[  678.066287][T14153]  swapin_readahead+0x160/0x12c0
[  678.066338][T14153]  ? __pfx_swapin_readahead+0x10/0x10
[  678.066373][T14153]  ? find_held_lock+0x2b/0x80
[  678.066417][T14153]  ? swap_table_get+0x103/0x2c0
[  678.066450][T14153]  ? swap_table_get+0x103/0x2c0
[  678.066491][T14153]  ? swap_table_get+0x10d/0x2c0
[  678.066526][T14153]  ? swap_cache_get_folio+0x1ae/0x600
[  678.066564][T14153]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  678.066597][T14153]  ? __pfx_get_swap_device+0x10/0x10
[  678.066650][T14153]  ? do_swap_page+0xb2e/0x68e0
[  678.066683][T14153]  do_swap_page+0xb2e/0x68e0
[  678.066740][T14153]  ? __pfx_do_swap_page+0x10/0x10
[  678.066779][T14153]  ? do_raw_spin_lock+0x128/0x260
[  678.066822][T14153]  ? rcu_is_watching+0x12/0xc0
[  678.066866][T14153]  ? __pte_offset_map+0x179/0x310
[  678.066916][T14153]  __handle_mm_fault+0x18c1/0x2b60
[  678.066960][T14153]  ? reacquire_held_locks+0xce/0x1e0
[  678.066999][T14153]  ? __pfx___handle_mm_fault+0x10/0x10
[  678.067042][T14153]  ? lock_vma_under_rcu+0x17c/0x590
[  678.067112][T14153]  handle_mm_fault+0x36d/0xa20
[  678.067157][T14153]  do_user_addr_fault+0x5a3/0x12f0
[  678.067218][T14153]  exc_page_fault+0x6f/0xd0
[  678.067252][T14153]  asm_exc_page_fault+0x26/0x30
[  678.067282][T14153] RIP: 0033:0x7f25cea5073f
[  678.067311][T14153] Code: 1f 84 00 00 00 00 00 0f 1f 40 00 41 89 fb 44 8d 56 04 4c 8d 0d d2 18 3b 00 89 f0 4c 8d 05 c9 f8 3a 00 89 c2 81 e2 ff 1f 00 00 <49> 8b 0c d1 48 39 f1 74 28 48 85 c9 74 29 45 38 1c 10 75 23 83 c0
[  678.067339][T14153] RSP: 002b:00007fff97fdb888 EFLAGS: 00010202
[  678.067366][T14153] RAX: 000000008285b025 RBX: ffffffff8285b025 RCX: 0000001b2fae3978
[  678.067387][T14153] RDX: 0000000000001025 RSI: ffffffff8285b025 RDI: 000000000000000f
[  678.067407][T14153] RBP: 000000000000000f R08: 00007f25cee00000 R09: 00007f25cee02000
[  678.067426][T14153] R10: 000000008285b029 R11: 000000000000000f R12: 00007f25cee16218
[  678.067446][T14153] R13: 000000000000000f R14: ffffffff8285bb78 R15: 00007f25cf945720
[  678.067467][T14153]  ? build_open_flags+0x568/0x760
[  678.067503][T14153]  ? vfs_open+0x1a5/0x3f0
[  678.067539][T14153]  ? vfs_open+0x1a5/0x3f0
[  678.067573][T14153]  </TASK>
[  678.070401][T14153] memory: usage 3072kB, limit 3072kB, failcnt 51129
[  678.464158][T14153] memory+swap: usage 5620kB, limit 9007199254740988kB, failcnt 0
[  678.472291][T14153] kmem: usage 2916kB, limit 9007199254740988kB, failcnt 0
[  678.481861][T14153] Memory cgroup stats for /syz1:
[  678.481997][T14153] cache 0
[  678.490060][T14153] rss 0
[  678.555473][T14153] rss_huge 0
[  678.558840][T14153] shmem 0
[  678.564950][T14153] mapped_file 0
[  678.578827][T14153] dirty 0
[  678.583745][T14153] writeback 0
[  678.587091][T14153] workingset_refault_anon 10796
[  678.633532][T14153] workingset_refault_file 26442
[  678.638435][T14153] swap 2609152
[  678.673989][T14153] swapcached 151453696
[  678.678104][T14153] pgpgin 489454
[  678.688810][T14153] pgpgout 492995
[  678.694931][T14153] pgfault 425077
[  678.698896][T14153] pgmajfault 5692
[  678.703365][T14153] inactive_anon 131072
[  678.707698][T14153] active_anon 16384
[  678.719736][T14153] inactive_file 0
[  678.741921][T14153] active_file 0
[  678.749868][T14153] unevictable 0
[  678.759500][T14153] hierarchical_memory_limit 3145728
[  678.765562][T14153] hierarchical_memsw_limit 9223372036854771712
[  678.776100][T14153] total_cache 0
[  678.829479][T14153] total_rss 0
[  678.833929][T14153] total_rss_huge 0
[  678.837823][T14153] total_shmem 0
[  678.842069][T14153] total_mapped_file 0
[  678.855999][T14153] total_dirty 0
[  678.881986][T14153] total_writeback 0
[  678.921665][T14153] total_workingset_refault_anon 10796
[  678.927549][T14153] total_workingset_refault_file 26442
[  678.968979][T14153] total_swap 2609152
[  678.973396][T14153] total_swapcached 151453696
[  678.981542][T14153] total_pgpgin 489454
[  678.987134][T14153] total_pgpgout 492995
[  678.991495][T14153] total_pgfault 425077
[  678.996332][T14153] total_pgmajfault 5692
[  679.000750][T14153] total_inactive_anon 131072
[  679.010987][T14153] total_active_anon 16384
[  679.016436][T14153] total_inactive_file 0
[  679.070783][T14153] total_active_file 0
[  679.077502][T12225] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  679.077545][T12225] Bluetooth: hci0: unexpected subevent 0x0e length: 725 > 15
[  679.093505][T14153] total_unevictable 0
[  679.098228][T14153] anon_cost 581
[  679.101967][T12225] Bluetooth: hci0: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  679.113014][T14153] file_cost 0
[  679.116348][T14153] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1700,pid=14149,uid=0
[  679.139769][T14153] Memory cgroup out of memory: Killed process 14149 (syz.1.1700) total-vm:202968kB, anon-rss:1224kB, file-rss:22464kB, shmem-rss:428kB, UID:0 pgtables:152kB oom_score_adj:1000
[  679.517829][T14170] zswap: compressor  not available
[  679.623423][T14178] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1706'.
[  679.639634][T14178] random: crng reseeded on system resumption
[  680.231509][T14185] netlink: 'syz.1.1708': attribute type 1 has an invalid length.
[  681.045363][T14195] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1710'.
[  684.197686][T14239] FAULT_INJECTION: forcing a failure.
[  684.197686][T14239] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  684.259424][T14239] CPU: 0 UID: 0 PID: 14239 Comm: syz.4.1722 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  684.259459][T14239] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  684.259466][T14239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  684.259477][T14239] Call Trace:
[  684.259484][T14239]  <TASK>
[  684.259492][T14239]  dump_stack_lvl+0x100/0x190
[  684.259524][T14239]  should_fail_ex.cold+0x5/0xa
[  684.259545][T14239]  _copy_from_user+0x2e/0xd0
[  684.259564][T14239]  kstrtouint_from_user+0xd6/0x1d0
[  684.259588][T14239]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  684.259610][T14239]  ? __lock_acquire+0x4a5/0x2630
[  684.259634][T14239]  ? lock_acquire+0x1cf/0x380
[  684.259660][T14239]  proc_fail_nth_write+0x83/0x220
[  684.259695][T14239]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  684.259728][T14239]  vfs_write+0x2aa/0x1070
[  684.259753][T14239]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  684.259782][T14239]  ? __pfx_vfs_write+0x10/0x10
[  684.259805][T14239]  ? __fget_files+0x215/0x3d0
[  684.259835][T14239]  ? __fget_files+0x21f/0x3d0
[  684.259874][T14239]  ksys_write+0x12a/0x250
[  684.259898][T14239]  ? __pfx_ksys_write+0x10/0x10
[  684.259930][T14239]  do_syscall_64+0x106/0xf80
[  684.259949][T14239]  ? clear_bhb_loop+0x40/0x90
[  684.259971][T14239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  684.259991][T14239] RIP: 0033:0x7f25ceb5c84e
[  684.260014][T14239] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  684.260032][T14239] RSP: 002b:00007f25cfa0bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  684.260051][T14239] RAX: ffffffffffffffda RBX: 00007f25cfa0c6c0 RCX: 00007f25ceb5c84e
[  684.260063][T14239] RDX: 0000000000000001 RSI: 00007f25cfa0c0a0 RDI: 0000000000000004
[  684.260074][T14239] RBP: 00007f25cfa0c090 R08: 0000000000000000 R09: 0000000000000000
[  684.260085][T14239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  684.260099][T14239] R13: 00007f25cee16038 R14: 00007f25cee15fa0 R15: 00007fff97fdb848
[  684.260123][T14239]  </TASK>
[  685.066428][T10472] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  685.127834][T10472] CPU: 1 UID: 0 PID: 10472 Comm: syz-executor Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  685.127868][T10472] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  685.127876][T10472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  685.127887][T10472] Call Trace:
[  685.127893][T10472]  <TASK>
[  685.127901][T10472]  dump_stack_lvl+0x100/0x190
[  685.127940][T10472]  dump_header+0xfb/0x606
[  685.127961][T10472]  oom_kill_process.cold+0xd/0x330
[  685.127990][T10472]  out_of_memory+0x340/0x14f0
[  685.128018][T10472]  ? __pfx_out_of_memory+0x10/0x10
[  685.128048][T10472]  mem_cgroup_out_of_memory+0xc6/0x130
[  685.128070][T10472]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  685.128090][T10472]  ? find_held_lock+0x2b/0x80
[  685.128122][T10472]  ? do_raw_spin_unlock+0x145/0x1e0
[  685.128147][T10472]  ? _raw_spin_unlock+0x28/0x50
[  685.128178][T10472]  try_charge_memcg+0x652/0xc90
[  685.128210][T10472]  ? __pfx_try_charge_memcg+0x10/0x10
[  685.128244][T10472]  ? find_held_lock+0x2b/0x80
[  685.128270][T10472]  ? rcu_read_unlock+0x17/0x60
[  685.128297][T10472]  ? rcu_read_unlock+0x17/0x60
[  685.128343][T10472]  charge_memcg+0xa6/0x280
[  685.128381][T10472]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  685.128404][T10472]  __swap_cache_prepare_and_add+0x528/0x9e0
[  685.128437][T10472]  ? __pfx___swap_cache_prepare_and_add+0x10/0x10
[  685.128458][T10472]  ? __pfx_swap_entry_swapped+0x10/0x10
[  685.128491][T10472]  swap_cache_alloc_folio+0x1cb/0x300
[  685.128515][T10472]  ? __pfx_swap_cache_alloc_folio+0x10/0x10
[  685.128538][T10472]  ? lockdep_hardirqs_on+0x78/0x100
[  685.128558][T10472]  ? finish_task_switch.isra.0+0x205/0xb80
[  685.128580][T10472]  swap_cluster_readahead+0x53b/0x770
[  685.128605][T10472]  ? __lock_acquire+0x4a5/0x2630
[  685.128627][T10472]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  685.128665][T10472]  ? get_vma_policy+0x23f/0x3b0
[  685.128695][T10472]  swapin_readahead+0x160/0x12c0
[  685.128724][T10472]  ? __pfx_swapin_readahead+0x10/0x10
[  685.128745][T10472]  ? find_held_lock+0x2b/0x80
[  685.128771][T10472]  ? swap_table_get+0x103/0x2c0
[  685.128789][T10472]  ? swap_table_get+0x103/0x2c0
[  685.128813][T10472]  ? swap_table_get+0x10d/0x2c0
[  685.128833][T10472]  ? swap_cache_get_folio+0x1ae/0x600
[  685.128855][T10472]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  685.128875][T10472]  ? __pfx_get_swap_device+0x10/0x10
[  685.128905][T10472]  ? do_swap_page+0xb2e/0x68e0
[  685.128925][T10472]  do_swap_page+0xb2e/0x68e0
[  685.128957][T10472]  ? __pfx_do_swap_page+0x10/0x10
[  685.128985][T10472]  ? __free_object+0x2a8/0x400
[  685.129008][T10472]  ? lockdep_hardirqs_on+0x78/0x100
[  685.129030][T10472]  ? rcu_is_watching+0x12/0xc0
[  685.129055][T10472]  ? __pte_offset_map+0x179/0x310
[  685.129084][T10472]  __handle_mm_fault+0x18c1/0x2b60
[  685.129109][T10472]  ? reacquire_held_locks+0xce/0x1e0
[  685.129131][T10472]  ? __pfx___handle_mm_fault+0x10/0x10
[  685.129156][T10472]  ? lock_vma_under_rcu+0x17c/0x590
[  685.129191][T10472]  handle_mm_fault+0x36d/0xa20
[  685.129216][T10472]  do_user_addr_fault+0x5a3/0x12f0
[  685.129254][T10472]  exc_page_fault+0x6f/0xd0
[  685.129274][T10472]  asm_exc_page_fault+0x26/0x30
[  685.129292][T10472] RIP: 0033:0x7f1bbad5c84e
[  685.129308][T10472] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  685.129326][T10472] RSP: 002b:00007ffdb065ae78 EFLAGS: 00010246
[  685.129341][T10472] RAX: 0000000000000000 RBX: 000055556c3ca500 RCX: 00007f1bbad5c84e
[  685.129353][T10472] RDX: 00007ffdb065aed0 RSI: 0000000000000000 RDI: 0000000000000000
[  685.129364][T10472] RBP: 00007ffdb065af3c R08: 0000000000000000 R09: 0000000000000000
[  685.129375][T10472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000001388
[  685.129386][T10472] R13: 00000000000927c0 R14: 00000000000a6fee R15: 00007ffdb065af90
[  685.129409][T10472]  </TASK>
[  685.908546][T10472] memory: usage 3072kB, limit 3072kB, failcnt 74156
[  685.915294][T10472] memory+swap: usage 7612kB, limit 9007199254740988kB, failcnt 0
[  685.951853][T10472] kmem: usage 2900kB, limit 9007199254740988kB, failcnt 0
[  685.974213][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  685.981248][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  685.998997][T10472] Memory cgroup stats for /syz2:
[  685.999204][T10472] cache 0
[  686.007151][T10472] rss 0
[  686.095256][T10472] rss_huge 0
[  686.098982][T10472] shmem 0
[  686.102311][T10472] mapped_file 0
[  686.107300][T10472] dirty 0
[  686.116472][T10472] writeback 0
[  686.132986][T10472] workingset_refault_anon 11001
[  686.161024][T10472] workingset_refault_file 22298
[  686.165977][T10472] swap 4648960
[  686.180941][T10472] swapcached 257748992
[  686.196573][T10472] pgpgin 648455
[  686.216209][T10472] pgpgout 650456
[  686.227854][T10472] pgfault 525798
[  686.263160][T10472] pgmajfault 5327
[  686.266866][T10472] inactive_anon 0
[  686.286849][T10472] active_anon 176128
[  686.304415][T10472] inactive_file 0
[  686.328788][T10472] active_file 0
[  686.332318][T10472] unevictable 0
[  686.336925][T10472] hierarchical_memory_limit 3145728
[  686.342426][T10472] hierarchical_memsw_limit 9223372036854771712
[  686.348687][T10472] total_cache 0
[  686.352176][T10472] total_rss 0
[  686.355488][T10472] total_rss_huge 0
[  686.383585][T10472] total_shmem 0
[  686.405369][T10472] total_mapped_file 0
[  686.420544][T10472] total_dirty 0
[  686.424163][T10472] total_writeback 0
[  686.428249][T10472] total_workingset_refault_anon 11001
[  686.433733][T10472] total_workingset_refault_file 22298
[  686.445933][T10472] total_swap 4648960
[  686.453428][T10472] total_swapcached 257748992
[  686.461842][T10472] total_pgpgin 648455
[  686.470457][T10472] total_pgpgout 650456
[  686.474597][T10472] total_pgfault 525798
[  686.484508][T10472] total_pgmajfault 5327
[  686.504372][T10472] total_inactive_anon 0
[  686.508779][T10472] total_active_anon 176128
[  686.513248][T10472] total_inactive_file 0
[  686.517489][T10472] total_active_file 0
[  686.528858][T10472] total_unevictable 0
[  686.533212][T10472] anon_cost 19
[  686.536618][T10472] file_cost 0
[  686.546166][T10472] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1715,pid=14215,uid=0
[  686.573256][T10472] Memory cgroup out of memory: Killed process 14215 (syz.2.1715) total-vm:110820kB, anon-rss:1236kB, file-rss:26688kB, shmem-rss:0kB, UID:0 pgtables:188kB oom_score_adj:1000
[  687.200090][T14243] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1724'.
[  688.713277][T14259] syz.2.1725 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000
[  688.767945][T14259] CPU: 1 UID: 0 PID: 14259 Comm: syz.2.1725 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  688.767997][T14259] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  688.768009][T14259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  688.768027][T14259] Call Trace:
[  688.768037][T14259]  <TASK>
[  688.768049][T14259]  dump_stack_lvl+0x100/0x190
[  688.768098][T14259]  dump_header+0xfb/0x606
[  688.768129][T14259]  oom_kill_process.cold+0xd/0x330
[  688.768152][T14259]  out_of_memory+0x340/0x14f0
[  688.768181][T14259]  ? __pfx_out_of_memory+0x10/0x10
[  688.768229][T14259]  mem_cgroup_out_of_memory+0xc6/0x130
[  688.768252][T14259]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  688.768272][T14259]  ? find_held_lock+0x2b/0x80
[  688.768304][T14259]  ? do_raw_spin_unlock+0x145/0x1e0
[  688.768336][T14259]  ? _raw_spin_unlock+0x28/0x50
[  688.768366][T14259]  try_charge_memcg+0x652/0xc90
[  688.768398][T14259]  ? __pfx_try_charge_memcg+0x10/0x10
[  688.768424][T14259]  ? rcu_read_unlock+0x17/0x60
[  688.768450][T14259]  ? rcu_read_unlock+0x17/0x60
[  688.768482][T14259]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  688.768509][T14259]  obj_cgroup_charge_account+0x33d/0x640
[  688.768540][T14259]  __memcg_slab_post_alloc_hook+0x2e3/0x9a0
[  688.768578][T14259]  __kmalloc_node_track_caller_noprof+0x66e/0x850
[  688.768604][T14259]  ? neigh_sysctl_register+0xb4/0x660
[  688.768629][T14259]  kmemdup_noprof+0x29/0x60
[  688.768655][T14259]  neigh_sysctl_register+0xb4/0x660
[  688.768676][T14259]  ? __pfx_neigh_sysctl_register+0x10/0x10
[  688.768694][T14259]  ? inetdev_init+0x245/0x570
[  688.768714][T14259]  ? inetdev_event+0x7fa/0x17f0
[  688.768734][T14259]  ? notifier_call_chain+0x99/0x420
[  688.768759][T14259]  ? copy_net_ns+0x46f/0x7c0
[  688.768779][T14259]  ? create_new_namespaces+0x3ea/0xac0
[  688.768807][T14259]  ? unshare_nsproxy_namespaces+0xc3/0x1f0
[  688.768824][T14259]  ? ksys_unshare+0x455/0xab0
[  688.768845][T14259]  ? __x64_sys_unshare+0x31/0x40
[  688.768865][T14259]  ? do_syscall_64+0x106/0xf80
[  688.768884][T14259]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  688.768906][T14259]  devinet_sysctl_register+0xb6/0x210
[  688.768932][T14259]  inetdev_init+0x2b8/0x570
[  688.768956][T14259]  inetdev_event+0x7fa/0x17f0
[  688.768980][T14259]  ? ib_netdevice_event+0xfc/0x330
[  688.769002][T14259]  ? __pfx_inetdev_event+0x10/0x10
[  688.769025][T14259]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  688.769056][T14259]  notifier_call_chain+0x99/0x420
[  688.769087][T14259]  call_netdevice_notifiers_info+0xbe/0x110
[  688.769112][T14259]  register_netdevice+0x16e6/0x2210
[  688.769139][T14259]  ? __pfx_register_netdevice+0x10/0x10
[  688.769161][T14259]  ? alloc_netdev_mqs+0x1163/0x14f0
[  688.769185][T14259]  register_netdev+0x34/0x50
[  688.769205][T14259]  ip6gre_init_net+0x2aa/0x420
[  688.769230][T14259]  ? __pfx_ip6gre_init_net+0x10/0x10
[  688.769253][T14259]  ops_init+0x1e2/0x5f0
[  688.769275][T14259]  setup_net+0x118/0x3a0
[  688.769296][T14259]  ? __pfx_setup_net+0x10/0x10
[  688.769315][T14259]  ? lockdep_init_map_type+0x5c/0x250
[  688.769343][T14259]  ? mutex_init_lockep+0x110/0x150
[  688.769380][T14259]  copy_net_ns+0x46f/0x7c0
[  688.769405][T14259]  create_new_namespaces+0x3ea/0xac0
[  688.769440][T14259]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  688.769461][T14259]  ksys_unshare+0x455/0xab0
[  688.769485][T14259]  ? __pfx_ksys_unshare+0x10/0x10
[  688.769515][T14259]  __x64_sys_unshare+0x31/0x40
[  688.769537][T14259]  do_syscall_64+0x106/0xf80
[  688.769556][T14259]  ? clear_bhb_loop+0x40/0x90
[  688.769578][T14259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  688.769597][T14259] RIP: 0033:0x7f1bbad9bf79
[  688.769614][T14259] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  688.769632][T14259] RSP: 002b:00007f1bbbc80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  688.769651][T14259] RAX: ffffffffffffffda RBX: 00007f1bbb016270 RCX: 00007f1bbad9bf79
[  688.769663][T14259] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  688.769674][T14259] RBP: 00007f1bbae327e0 R08: 0000000000000000 R09: 0000000000000000
[  688.769685][T14259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  688.769695][T14259] R13: 00007f1bbb016308 R14: 00007f1bbb016270 R15: 00007ffdb065ab98
[  688.769719][T14259]  </TASK>
[  688.770022][T14259] memory: usage 3072kB, limit 3072kB, failcnt 74593
[  689.228706][T14259] memory+swap: usage 3792kB, limit 9007199254740988kB, failcnt 0
[  689.266395][T14259] kmem: usage 2888kB, limit 9007199254740988kB, failcnt 0
[  689.278319][T14259] Memory cgroup stats for /syz2:
[  689.278527][T14259] cache 0
[  689.316394][T14259] rss 0
[  689.336577][T14259] rss_huge 0
[  689.351030][T14259] shmem 0
[  689.354249][T14259] mapped_file 0
[  689.370654][T14259] dirty 0
[  689.373722][T14259] writeback 0
[  689.397808][T14259] workingset_refault_anon 11132
[  689.402921][T14259] workingset_refault_file 22389
[  689.418775][T14259] swap 737280
[  689.422101][T14259] swapcached 258174976
[  689.460002][T14259] pgpgin 648807
[  689.463597][T14259] pgpgout 650811
[  689.486346][T14259] pgfault 526486
[  689.498699][T14259] pgmajfault 5418
[  689.508338][T14259] inactive_anon 131072
[  689.518569][T14259] active_anon 28672
[  689.533054][T14259] inactive_file 0
[  689.546341][T14259] active_file 0
[  689.556208][T14259] unevictable 0
[  689.559862][T14259] hierarchical_memory_limit 3145728
[  689.576320][T14259] hierarchical_memsw_limit 9223372036854771712
[  689.585213][T14259] total_cache 0
[  689.596181][T14259] total_rss 0
[  689.599541][T14259] total_rss_huge 0
[  689.610952][T14259] total_shmem 0
[  689.617930][T14259] total_mapped_file 0
[  689.626357][T14259] total_dirty 0
[  689.632704][T14259] total_writeback 0
[  689.645119][T14259] total_workingset_refault_anon 11132
[  689.656421][T14259] total_workingset_refault_file 22389
[  689.672425][T14259] total_swap 737280
[  689.687924][T14259] total_swapcached 258174976
[  689.692550][T14259] total_pgpgin 648807
[  689.700242][T14259] total_pgpgout 650811
[  689.704343][T14259] total_pgfault 526486
[  689.721162][T14259] total_pgmajfault 5418
[  689.725380][T14259] total_inactive_anon 131072
[  689.738902][T14259] total_active_anon 28672
[  689.756421][T14259] total_inactive_file 0
[  689.760657][T14259] total_active_file 0
[  689.766752][T14259] total_unevictable 0
[  689.776557][T14259] anon_cost 19
[  689.784471][T14259] file_cost 0
[  689.794933][T14259] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1725,pid=14255,uid=0
[  689.850219][T14259] Memory cgroup out of memory: Killed process 14255 (syz.2.1725) total-vm:113264kB, anon-rss:1236kB, file-rss:31316kB, shmem-rss:0kB, UID:0 pgtables:172kB oom_score_adj:1000
[  690.480875][T14276] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1729'.
[  690.507634][T14276] random: crng reseeded on system resumption
[  690.947189][T14281] HfR: entered promiscuous mode
[  690.980197][T14281] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1730'.
[  690.998801][T14281] HfR: left promiscuous mode
[  691.922889][T14288] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1732'.
[  691.947678][T14288] random: crng reseeded on system resumption
[  692.184618][T14278] syz.2.1730 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  692.464855][T14278] CPU: 1 UID: 0 PID: 14278 Comm: syz.2.1730 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  692.464897][T14278] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  692.464906][T14278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  692.464917][T14278] Call Trace:
[  692.464924][T14278]  <TASK>
[  692.464932][T14278]  dump_stack_lvl+0x100/0x190
[  692.464963][T14278]  dump_header+0xfb/0x606
[  692.464984][T14278]  oom_kill_process.cold+0xd/0x330
[  692.465007][T14278]  out_of_memory+0x340/0x14f0
[  692.465036][T14278]  ? __pfx_out_of_memory+0x10/0x10
[  692.465065][T14278]  mem_cgroup_out_of_memory+0xc6/0x130
[  692.465094][T14278]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  692.465114][T14278]  ? find_held_lock+0x2b/0x80
[  692.465146][T14278]  ? do_raw_spin_unlock+0x145/0x1e0
[  692.465171][T14278]  ? _raw_spin_unlock+0x28/0x50
[  692.465202][T14278]  try_charge_memcg+0x652/0xc90
[  692.465233][T14278]  ? __pfx_try_charge_memcg+0x10/0x10
[  692.465264][T14278]  ? find_held_lock+0x2b/0x80
[  692.465290][T14278]  ? rcu_read_unlock+0x17/0x60
[  692.465316][T14278]  ? rcu_read_unlock+0x17/0x60
[  692.465348][T14278]  charge_memcg+0xa6/0x280
[  692.465374][T14278]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  692.465396][T14278]  __swap_cache_prepare_and_add+0x528/0x9e0
[  692.465428][T14278]  ? __pfx___swap_cache_prepare_and_add+0x10/0x10
[  692.465450][T14278]  ? __pfx_swap_entry_swapped+0x10/0x10
[  692.465482][T14278]  swap_cache_alloc_folio+0x1cb/0x300
[  692.465505][T14278]  ? __pfx_swap_cache_alloc_folio+0x10/0x10
[  692.465528][T14278]  ? __lock_acquire+0x4a5/0x2630
[  692.465553][T14278]  swap_cluster_readahead+0x411/0x770
[  692.465581][T14278]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  692.465604][T14278]  ? lock_acquire+0x140/0x380
[  692.465625][T14278]  ? find_held_lock+0x2b/0x80
[  692.465661][T14278]  ? get_vma_policy+0x23f/0x3b0
[  692.465692][T14278]  swapin_readahead+0x160/0x12c0
[  692.465721][T14278]  ? __pfx_swapin_readahead+0x10/0x10
[  692.465741][T14278]  ? find_held_lock+0x2b/0x80
[  692.465767][T14278]  ? swap_table_get+0x103/0x2c0
[  692.465785][T14278]  ? swap_table_get+0x103/0x2c0
[  692.465809][T14278]  ? swap_table_get+0x10d/0x2c0
[  692.465830][T14278]  ? swap_cache_get_folio+0x1ae/0x600
[  692.465852][T14278]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  692.465872][T14278]  ? __pfx_get_swap_device+0x10/0x10
[  692.465902][T14278]  ? do_swap_page+0xb2e/0x68e0
[  692.465921][T14278]  do_swap_page+0xb2e/0x68e0
[  692.465953][T14278]  ? __pfx_do_swap_page+0x10/0x10
[  692.465976][T14278]  ? fault_dirty_shared_page+0x190/0x690
[  692.466003][T14278]  ? rcu_is_watching+0x12/0xc0
[  692.466029][T14278]  ? __pte_offset_map+0x179/0x310
[  692.466058][T14278]  __handle_mm_fault+0x18c1/0x2b60
[  692.466089][T14278]  ? reacquire_held_locks+0xce/0x1e0
[  692.466111][T14278]  ? __pfx___handle_mm_fault+0x10/0x10
[  692.466136][T14278]  ? lock_vma_under_rcu+0x17c/0x590
[  692.466170][T14278]  handle_mm_fault+0x36d/0xa20
[  692.466195][T14278]  do_user_addr_fault+0x5a3/0x12f0
[  692.466230][T14278]  exc_page_fault+0x6f/0xd0
[  692.466250][T14278]  asm_exc_page_fault+0x26/0x30
[  692.466268][T14278] RIP: 0033:0x7f1bbac5073f
[  692.466284][T14278] Code: 1f 84 00 00 00 00 00 0f 1f 40 00 41 89 fb 44 8d 56 04 4c 8d 0d d2 18 3b 00 89 f0 4c 8d 05 c9 f8 3a 00 89 c2 81 e2 ff 1f 00 00 <49> 8b 0c d1 48 39 f1 74 28 48 85 c9 74 29 45 38 1c 10 75 23 83 c0
[  692.466302][T14278] RSP: 002b:00007ffdb065abd8 EFLAGS: 00010202
[  692.466318][T14278] RAX: 000000008b81f304 RBX: ffffffff8b81f304 RCX: 0000001b332aa8d0
[  692.466334][T14278] RDX: 0000000000001304 RSI: ffffffff8b81f304 RDI: 000000000000001c
[  692.466348][T14278] RBP: 0000000000000022 R08: 00007f1bbb000000 R09: 00007f1bbb002000
[  692.466369][T14278] R10: 000000008b81f308 R11: 000000000000001c R12: 00007f1bbb016218
[  692.466381][T14278] R13: 0000000000000022 R14: ffffffff8b81fb10 R15: 00007f1bbbb45720
[  692.466393][T14278]  ? mas_walk+0x80/0x9b0
[  692.466411][T14278]  ? mas_parent_gap+0x14/0x790
[  692.466431][T14278]  ? mas_parent_gap+0x14/0x790
[  692.466452][T14278]  </TASK>
[  692.468014][T14278] memory: usage 3072kB, limit 3072kB, failcnt 75544
[  692.927139][T14278] memory+swap: usage 6940kB, limit 9007199254740988kB, failcnt 0
[  692.936392][T14278] kmem: usage 2220kB, limit 9007199254740988kB, failcnt 0
[  692.943653][T14278] Memory cgroup stats for /syz2:
[  692.943860][T14278] cache 4096
[  693.008741][T14278] rss 724992
[  693.019313][T14278] rss_huge 0
[  693.022581][T14278] shmem 0
[  693.036086][T14278] mapped_file 4096
[  693.040722][T14278] dirty 4096
[  693.043945][T14278] writeback 0
[  693.047590][T14278] workingset_refault_anon 11232
[  693.052546][T14278] workingset_refault_file 22645
[  693.084632][T14278] swap 3960832
[  693.126075][T14278] swapcached 261775360
[  693.130201][T14278] pgpgin 650266
[  693.133669][T14278] pgpgout 652097
[  693.162257][T14278] pgfault 527970
[  693.174373][T14278] pgmajfault 5479
[  693.178049][T14278] inactive_anon 0
[  693.181858][T14278] active_anon 139264
[  693.203171][T14278] inactive_file 0
[  693.216907][T14278] active_file 0
[  693.220400][T14278] unevictable 729088
[  693.234465][T14278] hierarchical_memory_limit 3145728
[  693.249243][T14278] hierarchical_memsw_limit 9223372036854771712
[  693.268327][T14278] total_cache 4096
[  693.272152][T14278] total_rss 724992
[  693.288610][T14278] total_rss_huge 0
[  693.292490][T14278] total_shmem 0
[  693.314439][T14278] total_mapped_file 4096
[  693.319394][T14278] total_dirty 4096
[  693.339539][T14278] total_writeback 0
[  693.343469][T14278] total_workingset_refault_anon 11232
[  693.354620][T14278] total_workingset_refault_file 22645
[  693.383804][T14278] total_swap 3960832
[  693.387922][T14278] total_swapcached 261775360
[  693.459224][T14278] total_pgpgin 650266
[  693.472728][T14278] total_pgpgout 652097
[  693.485248][T14278] total_pgfault 527970
[  693.489356][T14278] total_pgmajfault 5479
[  693.494058][T14278] total_inactive_anon 0
[  693.518201][T14278] total_active_anon 139264
[  693.531259][T14278] total_inactive_file 0
[  693.552508][T14278] total_active_file 0
[  693.596994][T14278] total_unevictable 729088
[  693.639089][T14278] anon_cost 17
[  693.644257][T14278] file_cost 0
[  693.647584][T14278] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1730,pid=14278,uid=0
[  694.003998][T14278] Memory cgroup out of memory: Killed process 14278 (syz.2.1730) total-vm:108636kB, anon-rss:1944kB, file-rss:23628kB, shmem-rss:0kB, UID:0 pgtables:168kB oom_score_adj:1000
[  694.187199][T14297] syz.1.1733 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=2, oom_score_adj=1000
[  694.412145][T14297] CPU: 0 UID: 0 PID: 14297 Comm: syz.1.1733 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  694.412201][T14297] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  694.412215][T14297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  694.412234][T14297] Call Trace:
[  694.412261][T14297]  <TASK>
[  694.412273][T14297]  dump_stack_lvl+0x100/0x190
[  694.412327][T14297]  dump_header+0xfb/0x606
[  694.412364][T14297]  oom_kill_process.cold+0xd/0x330
[  694.412403][T14297]  out_of_memory+0x340/0x14f0
[  694.412455][T14297]  ? __pfx_out_of_memory+0x10/0x10
[  694.412509][T14297]  mem_cgroup_out_of_memory+0xc6/0x130
[  694.412540][T14297]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  694.412573][T14297]  ? find_held_lock+0x2b/0x80
[  694.412629][T14297]  ? do_raw_spin_unlock+0x145/0x1e0
[  694.412674][T14297]  ? _raw_spin_unlock+0x28/0x50
[  694.412728][T14297]  try_charge_memcg+0x652/0xc90
[  694.412786][T14297]  ? __pfx_try_charge_memcg+0x10/0x10
[  694.412831][T14297]  ? rcu_read_unlock+0x17/0x60
[  694.412880][T14297]  ? rcu_read_unlock+0x17/0x60
[  694.412937][T14297]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  694.412983][T14297]  obj_cgroup_charge_account+0x33d/0x640
[  694.413038][T14297]  __memcg_slab_post_alloc_hook+0x2e3/0x9a0
[  694.413104][T14297]  __kmalloc_cache_noprof+0x59d/0x6f0
[  694.413139][T14297]  ? ipv6_add_dev+0x670/0x1520
[  694.413184][T14297]  ipv6_add_dev+0x670/0x1520
[  694.413228][T14297]  addrconf_notify+0x563/0x19c0
[  694.413280][T14297]  ? ip6mr_device_event+0x1bc/0x230
[  694.413334][T14297]  notifier_call_chain+0x99/0x420
[  694.413384][T14297]  call_netdevice_notifiers_info+0xbe/0x110
[  694.413430][T14297]  register_netdevice+0x16e6/0x2210
[  694.413477][T14297]  ? __pfx_register_netdevice+0x10/0x10
[  694.413528][T14297]  __ip_tunnel_create+0x52b/0x670
[  694.413569][T14297]  ? __pfx___ip_tunnel_create+0x10/0x10
[  694.413605][T14297]  ? net_generic+0xea/0x2a0
[  694.413654][T14297]  ip_tunnel_init_net+0x230/0x780
[  694.413700][T14297]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  694.413746][T14297]  ? __kmalloc_noprof+0x320/0x850
[  694.413788][T14297]  ? __pfx_erspan_init_net+0x10/0x10
[  694.413838][T14297]  ops_init+0x1e2/0x5f0
[  694.413879][T14297]  setup_net+0x118/0x3a0
[  694.413916][T14297]  ? __pfx_setup_net+0x10/0x10
[  694.413948][T14297]  ? lockdep_init_map_type+0x5c/0x250
[  694.413989][T14297]  ? mutex_init_lockep+0x110/0x150
[  694.414036][T14297]  copy_net_ns+0x46f/0x7c0
[  694.414080][T14297]  create_new_namespaces+0x3ea/0xac0
[  694.414143][T14297]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  694.414181][T14297]  ksys_unshare+0x455/0xab0
[  694.414221][T14297]  ? __pfx_ksys_unshare+0x10/0x10
[  694.414281][T14297]  __x64_sys_unshare+0x31/0x40
[  694.414319][T14297]  do_syscall_64+0x106/0xf80
[  694.414351][T14297]  ? clear_bhb_loop+0x40/0x90
[  694.414392][T14297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  694.414426][T14297] RIP: 0033:0x7f31dbf9bf79
[  694.414455][T14297] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  694.414486][T14297] RSP: 002b:00007f31dcda4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  694.414519][T14297] RAX: ffffffffffffffda RBX: 00007f31dc216270 RCX: 00007f31dbf9bf79
[  694.414541][T14297] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  694.414561][T14297] RBP: 00007f31dc0327e0 R08: 0000000000000000 R09: 0000000000000000
[  694.414581][T14297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  694.414600][T14297] R13: 00007f31dc216308 R14: 00007f31dc216270 R15: 00007fff9821e3c8
[  694.414644][T14297]  </TASK>
[  695.003840][T14297] memory: usage 3068kB, limit 3072kB, failcnt 58180
[  695.010464][T14297] memory+swap: usage 3600kB, limit 9007199254740988kB, failcnt 0
[  695.038469][T14297] kmem: usage 2912kB, limit 9007199254740988kB, failcnt 0
[  695.050623][T14297] Memory cgroup stats for /syz1:
[  695.050828][T14297] cache 0
[  695.154034][T14297] rss 12288
[  695.157351][T14297] rss_huge 0
[  695.160542][T14297] shmem 0
[  695.241226][T14297] mapped_file 0
[  695.246126][T14297] dirty 0
[  695.252125][T14297] writeback 0
[  695.256270][T14297] workingset_refault_anon 12021
[  695.263832][T14297] workingset_refault_file 30117
[  695.289265][T14297] swap 540672
[  695.292746][T14297] swapcached 162447360
[  695.318056][T14297] pgpgin 497331
[  695.321646][T14297] pgpgout 500868
[  695.405366][T14297] pgfault 433279
[  695.409077][T14297] pgmajfault 6698
[  695.461819][T14297] inactive_anon 143360
[  695.526965][T14297] active_anon 16384
[  695.530871][T14297] inactive_file 0
[  695.599413][T14297] active_file 0
[  695.647706][T14297] unevictable 0
[  695.661575][T14297] hierarchical_memory_limit 3145728
[  695.710880][T14297] hierarchical_memsw_limit 9223372036854771712
[  695.728077][T14297] total_cache 0
[  695.731583][T14297] total_rss 12288
[  696.215994][T14297] total_rss_huge 0
[  696.333569][T14297] total_shmem 0
[  696.349448][T14297] total_mapped_file 0
[  696.354314][T14297] total_dirty 0
[  696.357958][T14297] total_writeback 0
[  696.361954][T14297] total_workingset_refault_anon 12021
[  696.533192][T14297] total_workingset_refault_file 30117
[  696.579878][T14297] total_swap 540672
[  696.583910][T14297] total_swapcached 162447360
[  696.588574][T14297] total_pgpgin 497331
[  696.618166][T14297] total_pgpgout 500868
[  696.627563][T14297] total_pgfault 433279
[  696.631719][T14297] total_pgmajfault 6698
[  696.662879][T14297] total_inactive_anon 143360
[  696.677796][T14297] total_active_anon 16384
[  696.682177][T14297] total_inactive_file 0
[  696.695747][T14297] total_active_file 0
[  696.708471][T14297] total_unevictable 0
[  696.718185][T14297] anon_cost 601
[  696.729449][T14297] file_cost 0
[  696.740582][T14297] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1733,pid=14289,uid=0
[  696.756174][T14297] Memory cgroup out of memory: Killed process 14289 (syz.1.1733) total-vm:117372kB, anon-rss:1228kB, file-rss:35340kB, shmem-rss:0kB, UID:0 pgtables:184kB oom_score_adj:1000
[  696.816410][T14300] FAULT_INJECTION: forcing a failure.
[  696.816410][T14300] name failslab, interval 1, probability 0, space 0, times 0
[  696.904906][T14300] CPU: 1 UID: 0 PID: 14300 Comm: syz.3.1735 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  696.904963][T14300] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  696.904977][T14300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  696.904997][T14300] Call Trace:
[  696.905008][T14300]  <TASK>
[  696.905021][T14300]  dump_stack_lvl+0x100/0x190
[  696.905083][T14300]  should_fail_ex.cold+0x5/0xa
[  696.905122][T14300]  should_failslab+0xc2/0x120
[  696.905172][T14300]  __kmalloc_cache_noprof+0x7a/0x6f0
[  696.905209][T14300]  ? ipv6_inetpeer_init+0x3f/0xb0
[  696.905259][T14300]  ? __pfx_ndisc_net_init+0x10/0x10
[  696.905308][T14300]  ? __pfx_ipv6_inetpeer_init+0x10/0x10
[  696.905356][T14300]  ipv6_inetpeer_init+0x3f/0xb0
[  696.905404][T14300]  ops_init+0x1e2/0x5f0
[  696.905443][T14300]  setup_net+0x118/0x3a0
[  696.905479][T14300]  ? __pfx_setup_net+0x10/0x10
[  696.905511][T14300]  ? lockdep_init_map_type+0x5c/0x250
[  696.905553][T14300]  ? mutex_init_lockep+0x110/0x150
[  696.905598][T14300]  copy_net_ns+0x46f/0x7c0
[  696.905642][T14300]  create_new_namespaces+0x3ea/0xac0
[  696.905703][T14300]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  696.905739][T14300]  ksys_unshare+0x455/0xab0
[  696.905780][T14300]  ? __pfx_ksys_unshare+0x10/0x10
[  696.905835][T14300]  __x64_sys_unshare+0x31/0x40
[  696.905873][T14300]  do_syscall_64+0x106/0xf80
[  696.905906][T14300]  ? clear_bhb_loop+0x40/0x90
[  696.905953][T14300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  696.905986][T14300] RIP: 0033:0x7f994ff9bf79
[  696.906015][T14300] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  696.906047][T14300] RSP: 002b:00007f9950e19028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  696.906086][T14300] RAX: ffffffffffffffda RBX: 00007f9950215fa0 RCX: 00007f994ff9bf79
[  696.906107][T14300] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  696.906128][T14300] RBP: 00007f99500327e0 R08: 0000000000000000 R09: 0000000000000000
[  696.906149][T14300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  696.906170][T14300] R13: 00007f9950216038 R14: 00007f9950215fa0 R15: 00007ffe850ddcd8
[  696.906215][T14300]  </TASK>
[  697.566433][T14320] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1739'.
[  697.706673][T14320] team0: Port device team_slave_1 removed
[  698.054662][T14323] netlink: 'syz.4.1740': attribute type 1 has an invalid length.
[  698.126955][T14331] netlink: 93 bytes leftover after parsing attributes in process `syz.4.1740'.
[  698.134356][T14327] netlink: 93 bytes leftover after parsing attributes in process `syz.1.1742'.
[  698.172240][T14327] FAULT_INJECTION: forcing a failure.
[  698.172240][T14327] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  698.173840][T14323] netlink: 93 bytes leftover after parsing attributes in process `syz.4.1740'.
[  698.186836][T14327] CPU: 0 UID: 0 PID: 14327 Comm: syz.1.1742 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  698.186880][T14327] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  698.186891][T14327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  698.186906][T14327] Call Trace:
[  698.186916][T14327]  <TASK>
[  698.186926][T14327]  dump_stack_lvl+0x100/0x190
[  698.186970][T14327]  should_fail_ex.cold+0x5/0xa
[  698.187002][T14327]  _copy_to_user+0x32/0xd0
[  698.187031][T14327]  simple_read_from_buffer+0xcb/0x170
[  698.187069][T14327]  proc_fail_nth_read+0x1af/0x230
[  698.187109][T14327]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  698.187149][T14327]  ? rw_verify_area+0xce/0x6d0
[  698.187180][T14327]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  698.187219][T14327]  vfs_read+0x1e4/0xb30
[  698.187270][T14327]  ? __pfx_vfs_read+0x10/0x10
[  698.187304][T14327]  ? __fget_files+0x215/0x3d0
[  698.187347][T14327]  ? __fget_files+0x21f/0x3d0
[  698.187392][T14327]  ksys_read+0x12a/0x250
[  698.187426][T14327]  ? __pfx_ksys_read+0x10/0x10
[  698.187471][T14327]  do_syscall_64+0x106/0xf80
[  698.187499][T14327]  ? clear_bhb_loop+0x40/0x90
[  698.187531][T14327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  698.187559][T14327] RIP: 0033:0x7f31dbf5c84e
[  698.187582][T14327] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  698.187608][T14327] RSP: 002b:00007f31dce06fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  698.187634][T14327] RAX: ffffffffffffffda RBX: 00007f31dce076c0 RCX: 00007f31dbf5c84e
[  698.187651][T14327] RDX: 000000000000000f RSI: 00007f31dce070a0 RDI: 0000000000000004
[  698.187668][T14327] RBP: 00007f31dce07090 R08: 0000000000000000 R09: 0000000000000000
[  698.187684][T14327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  698.187699][T14327] R13: 00007f31dc216038 R14: 00007f31dc215fa0 R15: 00007fff9821e3c8
[  698.187735][T14327]  </TASK>
[  698.476668][T14335] FAULT_INJECTION: forcing a failure.
[  698.476668][T14335] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  698.531590][T14335] CPU: 0 UID: 0 PID: 14335 Comm: syz.1.1744 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  698.531641][T14335] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  698.531652][T14335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  698.531669][T14335] Call Trace:
[  698.531678][T14335]  <TASK>
[  698.531690][T14335]  dump_stack_lvl+0x100/0x190
[  698.531729][T14335]  should_fail_ex.cold+0x5/0xa
[  698.531751][T14335]  _copy_to_user+0x32/0xd0
[  698.531771][T14335]  simple_read_from_buffer+0xcb/0x170
[  698.531798][T14335]  proc_fail_nth_read+0x1af/0x230
[  698.531826][T14335]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  698.531854][T14335]  ? rw_verify_area+0xce/0x6d0
[  698.531876][T14335]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  698.531903][T14335]  vfs_read+0x1e4/0xb30
[  698.531930][T14335]  ? __pfx_vfs_read+0x10/0x10
[  698.531953][T14335]  ? __fget_files+0x215/0x3d0
[  698.531989][T14335]  ? __fget_files+0x21f/0x3d0
[  698.532019][T14335]  ksys_read+0x12a/0x250
[  698.532043][T14335]  ? __pfx_ksys_read+0x10/0x10
[  698.532073][T14335]  do_syscall_64+0x106/0xf80
[  698.532093][T14335]  ? clear_bhb_loop+0x40/0x90
[  698.532114][T14335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  698.532133][T14335] RIP: 0033:0x7f31dbf5c84e
[  698.532149][T14335] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  698.532168][T14335] RSP: 002b:00007f31dce06fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  698.532186][T14335] RAX: ffffffffffffffda RBX: 00007f31dce076c0 RCX: 00007f31dbf5c84e
[  698.532198][T14335] RDX: 000000000000000f RSI: 00007f31dce070a0 RDI: 0000000000000004
[  698.532213][T14335] RBP: 00007f31dce07090 R08: 0000000000000000 R09: 0000000000000000
[  698.532227][T14335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  698.532237][T14335] R13: 00007f31dc216038 R14: 00007f31dc215fa0 R15: 00007fff9821e3c8
[  698.532261][T14335]  </TASK>
[  698.874931][T14338] mkiss: ax0: crc mode is auto.
[  699.284277][T10472] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  699.366185][T10472] CPU: 0 UID: 0 PID: 10472 Comm: syz-executor Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  699.366237][T10472] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  699.366249][T10472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  699.366266][T10472] Call Trace:
[  699.366276][T10472]  <TASK>
[  699.366289][T10472]  dump_stack_lvl+0x100/0x190
[  699.366340][T10472]  dump_header+0xfb/0x606
[  699.366374][T10472]  oom_kill_process.cold+0xd/0x330
[  699.366411][T10472]  out_of_memory+0x340/0x14f0
[  699.366460][T10472]  ? __pfx_out_of_memory+0x10/0x10
[  699.366512][T10472]  mem_cgroup_out_of_memory+0xc6/0x130
[  699.366550][T10472]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  699.366583][T10472]  ? find_held_lock+0x2b/0x80
[  699.366637][T10472]  ? do_raw_spin_unlock+0x145/0x1e0
[  699.366679][T10472]  ? _raw_spin_unlock+0x28/0x50
[  699.366729][T10472]  try_charge_memcg+0x652/0xc90
[  699.366783][T10472]  ? __pfx_try_charge_memcg+0x10/0x10
[  699.366834][T10472]  ? find_held_lock+0x2b/0x80
[  699.366873][T10472]  ? rcu_read_unlock+0x17/0x60
[  699.366900][T10472]  ? rcu_read_unlock+0x17/0x60
[  699.366930][T10472]  charge_memcg+0xa6/0x280
[  699.366957][T10472]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  699.366980][T10472]  __swap_cache_prepare_and_add+0x528/0x9e0
[  699.367019][T10472]  ? __pfx___swap_cache_prepare_and_add+0x10/0x10
[  699.367041][T10472]  ? __pfx_swap_entry_swapped+0x10/0x10
[  699.367074][T10472]  swap_cache_alloc_folio+0x1cb/0x300
[  699.367098][T10472]  ? __pfx_swap_cache_alloc_folio+0x10/0x10
[  699.367122][T10472]  ? rcu_is_watching+0x12/0xc0
[  699.367151][T10472]  swap_cluster_readahead+0x411/0x770
[  699.367180][T10472]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  699.367217][T10472]  ? get_vma_policy+0x23f/0x3b0
[  699.367250][T10472]  swapin_readahead+0x160/0x12c0
[  699.367280][T10472]  ? __pfx_swapin_readahead+0x10/0x10
[  699.367301][T10472]  ? find_held_lock+0x2b/0x80
[  699.367326][T10472]  ? swap_table_get+0x103/0x2c0
[  699.367345][T10472]  ? swap_table_get+0x103/0x2c0
[  699.367369][T10472]  ? swap_table_get+0x10d/0x2c0
[  699.367389][T10472]  ? swap_cache_get_folio+0x1ae/0x600
[  699.367412][T10472]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  699.367431][T10472]  ? __pfx_get_swap_device+0x10/0x10
[  699.367462][T10472]  ? do_swap_page+0xb2e/0x68e0
[  699.367481][T10472]  do_swap_page+0xb2e/0x68e0
[  699.367514][T10472]  ? __pfx_do_swap_page+0x10/0x10
[  699.367536][T10472]  ? __free_object+0x2a8/0x400
[  699.367559][T10472]  ? lockdep_hardirqs_on+0x78/0x100
[  699.367581][T10472]  ? rcu_is_watching+0x12/0xc0
[  699.367606][T10472]  ? __pte_offset_map+0x179/0x310
[  699.367635][T10472]  __handle_mm_fault+0x18c1/0x2b60
[  699.367661][T10472]  ? reacquire_held_locks+0xce/0x1e0
[  699.367683][T10472]  ? __pfx___handle_mm_fault+0x10/0x10
[  699.367708][T10472]  ? lock_vma_under_rcu+0x17c/0x590
[  699.367743][T10472]  handle_mm_fault+0x36d/0xa20
[  699.367768][T10472]  do_user_addr_fault+0x5a3/0x12f0
[  699.367803][T10472]  exc_page_fault+0x6f/0xd0
[  699.367823][T10472]  asm_exc_page_fault+0x26/0x30
[  699.367841][T10472] RIP: 0033:0x7f1bbad5c84e
[  699.367858][T10472] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  699.367876][T10472] RSP: 002b:00007ffdb065ae78 EFLAGS: 00010246
[  699.367892][T10472] RAX: 0000000000000000 RBX: 000055556c3ca500 RCX: 00007f1bbad5c84e
[  699.367904][T10472] RDX: 00007ffdb065aed0 RSI: 0000000000000000 RDI: 0000000000000000
[  699.367915][T10472] RBP: 00007ffdb065af3c R08: 0000000000000000 R09: 0000000000000000
[  699.367926][T10472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000001388
[  699.367937][T10472] R13: 00000000000927c0 R14: 00000000000aa841 R15: 00007ffdb065af90
[  699.367961][T10472]  </TASK>
[  699.745891][T10472] memory: usage 3072kB, limit 3072kB, failcnt 75928
[  699.752745][T10472] memory+swap: usage 3828kB, limit 9007199254740988kB, failcnt 0
[  699.760495][T10472] kmem: usage 2944kB, limit 9007199254740988kB, failcnt 0
[  699.767792][T10472] Memory cgroup stats for /syz2:
[  699.767981][T10472] cache 0
[  699.777117][T10472] rss 0
[  699.780076][T10472] rss_huge 0
[  699.783525][T10472] shmem 0
[  699.787398][T10472] mapped_file 0
[  699.790888][T10472] dirty 0
[  699.794669][T10472] writeback 0
[  699.798027][T10472] workingset_refault_anon 11376
[  699.803218][T10472] workingset_refault_file 22763
[  699.808208][T10472] swap 774144
[  699.812423][T10472] swapcached 262348800
[  699.816615][T10472] pgpgin 650764
[  699.820101][T10472] pgpgout 652776
[  699.823905][T10472] pgfault 529884
[  699.828045][T10472] pgmajfault 5589
[  699.831763][T10472] inactive_anon 122880
[  699.835862][T10472] active_anon 4096
[  699.839613][T10472] inactive_file 0
[  699.843347][T10472] active_file 0
[  699.847573][T10472] unevictable 0
[  699.851272][T10472] hierarchical_memory_limit 3145728
[  699.856504][T10472] hierarchical_memsw_limit 9223372036854771712
[  699.862855][T10472] total_cache 0
[  699.866358][T10472] total_rss 0
[  699.869753][T10472] total_rss_huge 0
[  699.873783][T10472] total_shmem 0
[  699.877451][T10472] total_mapped_file 0
[  699.893427][T10472] total_dirty 0
[  699.897551][T10472] total_writeback 0
[  699.903376][T10472] total_workingset_refault_anon 11376
[  699.909305][T10472] total_workingset_refault_file 22763
[  699.915811][T10472] total_swap 774144
[  699.919751][T10472] total_swapcached 262348800
[  699.924477][T10472] total_pgpgin 650764
[  699.928580][T10472] total_pgpgout 652776
[  699.933029][T10472] total_pgfault 529884
[  699.937207][T10472] total_pgmajfault 5589
[  699.941635][T10472] total_inactive_anon 122880
[  699.946567][T10472] total_active_anon 4096
[  699.950861][T10472] total_inactive_file 0
[  699.955444][T10472] total_active_file 0
[  699.959431][T10472] total_unevictable 0
[  699.967797][T10472] anon_cost 12
[  699.971436][T10472] file_cost 0
[  699.974767][T10472] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1741,pid=14324,uid=0
[  699.990086][T10472] Memory cgroup out of memory: Killed process 14324 (syz.2.1741) total-vm:111216kB, anon-rss:1236kB, file-rss:30992kB, shmem-rss:0kB, UID:0 pgtables:172kB oom_score_adj:1000
[  700.390789][T14360] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1752'.
[  700.464199][T14360] veth0_macvtap: left promiscuous mode
[  700.470228][T14360] macvtap0: entered promiscuous mode
[  700.476491][T14360] macvtap0: entered allmulticast mode
[  701.155511][T14352] syz.1.1747 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=2, oom_score_adj=1000
[  701.227249][T14378] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1756'.
[  701.253461][T14378] futex_wake_op: syz.4.1756 tries to shift op by -2048; fix this program
[  701.275841][T14352] CPU: 0 UID: 0 PID: 14352 Comm: syz.1.1747 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  701.275894][T14352] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  701.275907][T14352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  701.275924][T14352] Call Trace:
[  701.275935][T14352]  <TASK>
[  701.275947][T14352]  dump_stack_lvl+0x100/0x190
[  701.276009][T14352]  dump_header+0xfb/0x606
[  701.276046][T14352]  oom_kill_process.cold+0xd/0x330
[  701.276088][T14352]  out_of_memory+0x340/0x14f0
[  701.276140][T14352]  ? __pfx_out_of_memory+0x10/0x10
[  701.276195][T14352]  mem_cgroup_out_of_memory+0xc6/0x130
[  701.276234][T14352]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  701.276271][T14352]  ? find_held_lock+0x2b/0x80
[  701.276328][T14352]  ? do_raw_spin_unlock+0x145/0x1e0
[  701.276375][T14352]  ? _raw_spin_unlock+0x28/0x50
[  701.276434][T14352]  try_charge_memcg+0x652/0xc90
[  701.276492][T14352]  ? __pfx_try_charge_memcg+0x10/0x10
[  701.276538][T14352]  ? rcu_read_unlock+0x17/0x60
[  701.276585][T14352]  ? rcu_read_unlock+0x17/0x60
[  701.276643][T14352]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  701.276690][T14352]  obj_cgroup_charge_account+0x33d/0x640
[  701.276747][T14352]  __memcg_slab_post_alloc_hook+0x2e3/0x9a0
[  701.276815][T14352]  __kmalloc_cache_noprof+0x59d/0x6f0
[  701.276858][T14352]  ? ipv6_add_dev+0x670/0x1520
[  701.276899][T14352]  ipv6_add_dev+0x670/0x1520
[  701.276942][T14352]  addrconf_notify+0x563/0x19c0
[  701.276994][T14352]  ? ip6mr_device_event+0x1bc/0x230
[  701.277047][T14352]  notifier_call_chain+0x99/0x420
[  701.277096][T14352]  call_netdevice_notifiers_info+0xbe/0x110
[  701.277143][T14352]  register_netdevice+0x16e6/0x2210
[  701.277187][T14352]  ? __pfx_register_netdevice+0x10/0x10
[  701.277244][T14352]  __ip_tunnel_create+0x52b/0x670
[  701.277283][T14352]  ? __pfx___ip_tunnel_create+0x10/0x10
[  701.277319][T14352]  ? net_generic+0xea/0x2a0
[  701.277368][T14352]  ip_tunnel_init_net+0x230/0x780
[  701.277412][T14352]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  701.277464][T14352]  ? __kmalloc_noprof+0x320/0x850
[  701.277510][T14352]  ? __pfx_erspan_init_net+0x10/0x10
[  701.277561][T14352]  ops_init+0x1e2/0x5f0
[  701.277601][T14352]  setup_net+0x118/0x3a0
[  701.277637][T14352]  ? __pfx_setup_net+0x10/0x10
[  701.277668][T14352]  ? lockdep_init_map_type+0x5c/0x250
[  701.277708][T14352]  ? mutex_init_lockep+0x110/0x150
[  701.277754][T14352]  copy_net_ns+0x46f/0x7c0
[  701.277797][T14352]  create_new_namespaces+0x3ea/0xac0
[  701.277858][T14352]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  701.277892][T14352]  ksys_unshare+0x455/0xab0
[  701.277931][T14352]  ? __pfx_ksys_unshare+0x10/0x10
[  701.277994][T14352]  __x64_sys_unshare+0x31/0x40
[  701.278031][T14352]  do_syscall_64+0x106/0xf80
[  701.278064][T14352]  ? clear_bhb_loop+0x40/0x90
[  701.278106][T14352]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  701.278139][T14352] RIP: 0033:0x7f31dbf9bf79
[  701.278169][T14352] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  701.278201][T14352] RSP: 002b:00007f31dcda4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  701.278231][T14352] RAX: ffffffffffffffda RBX: 00007f31dc216270 RCX: 00007f31dbf9bf79
[  701.278251][T14352] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  701.278270][T14352] RBP: 00007f31dc0327e0 R08: 0000000000000000 R09: 0000000000000000
[  701.278289][T14352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  701.278308][T14352] R13: 00007f31dc216308 R14: 00007f31dc216270 R15: 00007fff9821e3c8
[  701.278353][T14352]  </TASK>
[  702.000064][T14352] memory: usage 3072kB, limit 3072kB, failcnt 58490
[  702.006700][T14352] memory+swap: usage 3584kB, limit 9007199254740988kB, failcnt 0
[  702.020317][T14378] futex_wake_op: syz.4.1756 tries to shift op by -2048; fix this program
[  702.050078][T14352] kmem: usage 2900kB, limit 9007199254740988kB, failcnt 0
[  702.090656][T14384] 0x000000000001-0x000000020000 : ""
[  702.111579][T14384] ftl_cs: FTL header corrupt!
[  702.177073][T14352] Memory cgroup stats for /syz1:
[  702.177278][T14352] cache 0
[  702.211711][T14352] rss 4096
[  702.429827][T14352] rss_huge 0
[  702.430330][T14384] ------------[ cut here ]------------
[  702.433192][T14352] shmem 0
[  702.433213][T14352] mapped_file 0
[  702.433225][T14352] dirty 0
[  702.433236][T14352] writeback 0
[  702.433245][T14352] workingset_refault_anon 12105
[  702.439104][T14384] !rwb
[  702.457687][T14384] WARNING: block/blk-wbt.c:784 at wbt_init_enable_default+0xcb/0x120, CPU#0: syz.4.1756/14384
[  702.471874][T14384] Modules linked in:
[  702.476250][T14384] CPU: 0 UID: 0 PID: 14384 Comm: syz.4.1756 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  702.487436][T14384] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  702.493340][T14384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  702.503515][T14384] RIP: 0010:wbt_init_enable_default+0xcb/0x120
[  702.510187][T14384] Code: df e8 39 38 a9 06 4c 89 e7 e8 e1 38 00 00 48 89 df e8 89 c1 a8 06 e8 34 5b 24 fd 5b 5d 41 5c c3 cc cc cc cc e8 26 5b 24 fd 90 <0f> 0b 90 eb 81 e8 1b 5b 24 fd 90 0f 0b 90 48 b8 00 00 00 00 00 fc
[  702.530404][T14384] RSP: 0018:ffffc90003fc7590 EFLAGS: 00010283
[  702.536511][T14384] RAX: 000000000001f610 RBX: ffff88805c193000 RCX: ffffc9001aa8e000
[  702.544903][T14384] RDX: 0000000000080000 RSI: ffffffff84e38cba RDI: ffffffff8c1ace20
[  702.553229][T14384] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  702.561644][T14384] R10: 0000000000000001 R11: ffffffff82730b84 R12: ffff88802a723930
[  702.569978][T14384] R13: ffff88805c193390 R14: ffff88802a723940 R15: ffff88805c193090
[  702.578247][T14384] FS:  00007f25cf9eb6c0(0000) GS:ffff88812435f000(0000) knlGS:0000000000000000
[  702.587426][T14384] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  702.594068][T14384] CR2: 0000001b2f902ff8 CR3: 000000007edd0000 CR4: 00000000003526f0
[  702.602240][T14384] Call Trace:
[  702.605642][T14384]  <TASK>
[  702.608876][T14384]  blk_register_queue+0x39e/0x4e0
[  702.614182][T14384]  __add_disk+0x73f/0xe40
[  702.618565][T14384]  add_disk_fwnode+0x118/0x5c0
[  702.623599][T14384]  add_mtd_blktrans_dev+0xd0b/0x1520
[  702.628943][T14384]  ? __pfx_add_mtd_blktrans_dev+0x10/0x10
[  702.634749][T14384]  mtdblock_add_mtd+0x1cc/0x270
[  702.639681][T14384]  blktrans_notify_add+0xa2/0xf0
[  702.644762][T14384]  add_mtd_device+0xb1a/0x17a0
[  702.649688][T14384]  ? __pfx_add_mtd_device+0x10/0x10
[  702.654921][T14384]  mtd_add_partition+0x30a/0x660
[  702.660185][T14384]  ? __pfx_mtd_add_partition+0x10/0x10
[  702.665924][T14384]  ? __might_fault+0xc5/0x140
[  702.670672][T14384]  ? __might_fault+0xc5/0x140
[  702.675634][T14384]  mtdchar_blkpg_ioctl+0x207/0x250
[  702.680960][T14384]  ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10
[  702.686737][T14384]  mtdchar_ioctl+0x1670/0x1fd0
[  702.691998][T14384]  ? __pfx_mtdchar_ioctl+0x10/0x10
[  702.697252][T14384]  ? lock_acquire+0x1cf/0x380
[  702.702241][T14384]  ? trace_contention_end+0x140/0x180
[  702.707638][T14384]  ? mtdchar_unlocked_ioctl+0xa2/0xf0
[  702.713317][T14384]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  702.718359][T14384]  ? __pfx___mutex_lock+0x10/0x10
[  702.723729][T14384]  ? find_held_lock+0x2b/0x80
[  702.728441][T14384]  mtdchar_unlocked_ioctl+0xb0/0xf0
[  702.733864][T14384]  ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10
[  702.739978][T14384]  __x64_sys_ioctl+0x18e/0x210
[  702.744810][T14384]  do_syscall_64+0x106/0xf80
[  702.749616][T14384]  ? clear_bhb_loop+0x40/0x90
[  702.754361][T14384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  702.761037][T14384] RIP: 0033:0x7f25ceb9bf79
[  702.765699][T14384] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  702.786000][T14384] RSP: 002b:00007f25cf9eb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  702.795037][T14384] RAX: ffffffffffffffda RBX: 00007f25cee16090 RCX: 00007f25ceb9bf79
[  702.803348][T14384] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000005
[  702.811499][T14384] RBP: 00007f25cec327e0 R08: 0000000000000000 R09: 0000000000000000
[  702.819878][T14384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  702.828024][T14384] R13: 00007f25cee16128 R14: 00007f25cee16090 R15: 00007fff97fdb848
[  702.836509][T14384]  </TASK>
[  702.839652][T14384] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  702.846949][T14384] CPU: 0 UID: 0 PID: 14384 Comm: syz.4.1756 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  702.857902][T14384] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  702.863107][T14384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  702.873171][T14384] Call Trace:
[  702.876463][T14384]  <TASK>
[  702.879407][T14384]  dump_stack_lvl+0x100/0x190
[  702.884279][T14384]  vpanic+0x552/0x970
[  702.888293][T14384]  ? __pfx_vpanic+0x10/0x10
[  702.892823][T14384]  panic+0xd1/0xe0
[  702.896559][T14384]  ? __pfx_panic+0x10/0x10
[  702.901016][T14384]  check_panic_on_warn.cold+0x19/0x34
[  702.906458][T14384]  ? wbt_init_enable_default+0xcb/0x120
[  702.912019][T14384]  __warn.cold+0x191/0x348
[  702.916542][T14384]  __report_bug+0x296/0x3d0
[  702.921063][T14384]  ? wbt_init_enable_default+0xcb/0x120
[  702.926726][T14384]  ? __pfx___report_bug+0x10/0x10
[  702.931768][T14384]  ? wbt_init_enable_default+0xcb/0x120
[  702.937321][T14384]  report_bug+0xb2/0x220
[  702.941568][T14384]  ? wbt_init_enable_default+0xcb/0x120
[  702.947117][T14384]  handle_bug+0x166/0x2a0
[  702.951473][T14384]  exc_invalid_op+0x17/0x50
[  702.956007][T14384]  asm_exc_invalid_op+0x1a/0x20
[  702.961002][T14384] RIP: 0010:wbt_init_enable_default+0xcb/0x120
[  702.967262][T14384] Code: df e8 39 38 a9 06 4c 89 e7 e8 e1 38 00 00 48 89 df e8 89 c1 a8 06 e8 34 5b 24 fd 5b 5d 41 5c c3 cc cc cc cc e8 26 5b 24 fd 90 <0f> 0b 90 eb 81 e8 1b 5b 24 fd 90 0f 0b 90 48 b8 00 00 00 00 00 fc
[  702.986887][T14384] RSP: 0018:ffffc90003fc7590 EFLAGS: 00010283
[  702.993154][T14384] RAX: 000000000001f610 RBX: ffff88805c193000 RCX: ffffc9001aa8e000
[  703.001182][T14384] RDX: 0000000000080000 RSI: ffffffff84e38cba RDI: ffffffff8c1ace20
[  703.009173][T14384] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  703.017166][T14384] R10: 0000000000000001 R11: ffffffff82730b84 R12: ffff88802a723930
[  703.025238][T14384] R13: ffff88805c193390 R14: ffff88802a723940 R15: ffff88805c193090
[  703.033404][T14384]  ? kasan_save_track+0x14/0x30
[  703.038376][T14384]  ? wbt_init_enable_default+0xca/0x120
[  703.044119][T14384]  blk_register_queue+0x39e/0x4e0
[  703.049267][T14384]  __add_disk+0x73f/0xe40
[  703.053627][T14384]  add_disk_fwnode+0x118/0x5c0
[  703.058425][T14384]  add_mtd_blktrans_dev+0xd0b/0x1520
[  703.063929][T14384]  ? __pfx_add_mtd_blktrans_dev+0x10/0x10
[  703.069712][T14384]  mtdblock_add_mtd+0x1cc/0x270
[  703.074578][T14384]  blktrans_notify_add+0xa2/0xf0
[  703.079540][T14384]  add_mtd_device+0xb1a/0x17a0
[  703.084419][T14384]  ? __pfx_add_mtd_device+0x10/0x10
[  703.089650][T14384]  mtd_add_partition+0x30a/0x660
[  703.094633][T14384]  ? __pfx_mtd_add_partition+0x10/0x10
[  703.100143][T14384]  ? __might_fault+0xc5/0x140
[  703.104948][T14384]  ? __might_fault+0xc5/0x140
[  703.109753][T14384]  mtdchar_blkpg_ioctl+0x207/0x250
[  703.114899][T14384]  ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10
[  703.120590][T14384]  mtdchar_ioctl+0x1670/0x1fd0
[  703.125401][T14384]  ? __pfx_mtdchar_ioctl+0x10/0x10
[  703.130720][T14384]  ? lock_acquire+0x1cf/0x380
[  703.135439][T14384]  ? trace_contention_end+0x140/0x180
[  703.140950][T14384]  ? mtdchar_unlocked_ioctl+0xa2/0xf0
[  703.146373][T14384]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  703.151428][T14384]  ? __pfx___mutex_lock+0x10/0x10
[  703.156546][T14384]  ? find_held_lock+0x2b/0x80
[  703.161268][T14384]  mtdchar_unlocked_ioctl+0xb0/0xf0
[  703.166500][T14384]  ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10
[  703.172946][T14384]  __x64_sys_ioctl+0x18e/0x210
[  703.177742][T14384]  do_syscall_64+0x106/0xf80
[  703.182350][T14384]  ? clear_bhb_loop+0x40/0x90
[  703.187064][T14384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  703.192974][T14384] RIP: 0033:0x7f25ceb9bf79
[  703.197405][T14384] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  703.217654][T14384] RSP: 002b:00007f25cf9eb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  703.226103][T14384] RAX: ffffffffffffffda RBX: 00007f25cee16090 RCX: 00007f25ceb9bf79
[  703.234183][T14384] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000005
[  703.242265][T14384] RBP: 00007f25cec327e0 R08: 0000000000000000 R09: 0000000000000000
[  703.250253][T14384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  703.258327][T14384] R13: 00007f25cee16128 R14: 00007f25cee16090 R15: 00007fff97fdb848
[  703.266421][T14384]  </TASK>
[  703.269872][T14384] Kernel Offset: disabled
[  703.274287][T14384] Rebooting in 86400 seconds..