last executing test programs:

2m39.133992187s ago: executing program 3 (id=2243):
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x80000001, 0x8)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000)
read$auto(0xffffffffffffffff, 0x0, 0x20)
recvfrom$auto(0x3, 0x0, 0x8000000010, 0x8, 0x0, 0xfffffffffffffffd)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0x200100)
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x12800d, 0x80000000000000df, 0xeb1, r0, 0x8000)
mmap$auto(0xffffffffffffff80, 0x20000a00004, 0x400002, 0x15, 0x602, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000)
open(0x0, 0x22240, 0x155)
sysfs$auto(0x2, 0xe, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x40146f2c, 0x0)
r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x403c6f2b, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x96141, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0)
r3 = socket(0x23, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000b00), r3)

2m38.519771368s ago: executing program 3 (id=2244):
close_range$auto(0x2, 0xa, 0x0)
io_uring_setup$auto(0x6, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa505}}, 0x4, 0x4008)
setsockopt$auto(0xffffffffffffffff, 0x1, 0xc, 0x0, 0x7fffffff)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/disk\x00', 0xc0082, 0x0)
write$auto(r0, &(0x7f0000000340)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,D\xbf&\x9eb|\n\xee\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbb\xbb\xf9\xcdz\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x1d\x88mr\xfd\xf1\x1b;\xabt\xd1a}\x10\xab\xeb_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\x15/\xf9\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\aA\xe9(\x00\x00\x00\x00\x00N\xb5J\xc8A\xc7m\xbf\x19\xae\x9d\xcaR\x0f\xa8\xdf\xe4M\xe1>k\x93\x01\xe5\xba(\x96K\xc1=d3\xe00u\"`]\xb3\x11a\x1cSn\xe7\x87\x84\x93\xe4\x90]\x86\x10\xe5\xacK\x99\xc1$\x91\x05\x00\x00\x00O\x01xc\xa8\x9a\x1bK\x00\x00\xf6\xa2\x8a\x7f4\f[BLH$6\xfb,\xd8\xd3\xd0\xa1v\x14\xcd\x1a\xbdx\xaed\x9d\\\xd0\xff\xd2Y\xc4\x9fT\xb2\xd5\r\xf1#\xd5\xf2\x9cU\xd1:+\xb63\xae\xc1\xf7\xe1\xd4\x879?\xdd\xd6\xd4\xa3\xc7\xd8 S\xfc:\xe1{\x16\\h\x9d\xbc#KEC\x1a\xf9KH`\x82e:_\x9b\xf1\xc1\x8e\xf0\xc46\x98\xd6u\x90\x18\x8f\xe8\xc3%\x8e9\xab\x7f\x0e\n\xb2\xa4\xef\x90\xb16\x04\xbc\xc9\xdc\xad,\xcc\xad}DY\x1d\x1fv\x90\x97u\xa1\xfb\x13\xa93\xb6XJ\x84\xe3\xc1)\x98\xae5q\xa5L\x87\x1aq\x1d0\xf1\xcb\xe5\xf4F!*\xf9\xb3,w\"\xf2\xd0\xd1Vj\xd0\x06\xcc\xbc\xee0\x98.\xd9dC\x8e9\xfdM\\\xc5&\\\x9b\x81\x88t\xa4\x9f\xd1P\xd2e\x9c\xf9\xd2\xaf\x00'/478, 0xb)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\xf8\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00')
socket(0xa, 0x1, 0x6)
socket(0x23, 0x80805, 0x0)
io_uring_setup$auto(0x3, 0x0)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), 0xffffffffffffffff)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', 0x0, 0x10000, 0x0)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d80200", @ANYRES8, @ANYBLOB="01002dbd7000fcdbdf25010000000c0002000500000000000000c5000700c1007cf7c27c120e3984130834a73f9221887ac28e443c4a1a7da8d2ddcf2890cce5822826764f3f410e53f43f30"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x2400c090)

2m37.358585505s ago: executing program 3 (id=2249):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mremap$auto(0x110c231000, 0x4, 0x4, 0x7, 0x100000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/pcmC0D0c\x00', 0x1200, 0x0)
fcntl$auto_F_DUPFD_CLOEXEC(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
mknod$auto(0x0, 0x7, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r0, 0x0, 0x9)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
socket(0x28, 0x5, 0x0)
unshare$auto(0x40000080)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket(0x1, 0x1, 0x0)
bind$auto(0x3, 0x0, 0x6b)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sr0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x10000, 0xde, 0x11, r2, 0x28000)
connect$auto(0x3, 0x0, 0x6b)
pwrite64$auto(0xffffffffffffffff, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\xff\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\tfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7t\xee\xc9\x00'/226, 0x40fded, 0x81)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x5, 0x1, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mknod$auto(&(0x7f0000001040)=':,\x00', 0xca, 0xfffffffa)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000010c0), 0xffffffffffffffff)
r3 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
read$auto_rng_chrdev_ops_core(r3, &(0x7f0000000040)=""/4096, 0xfffffe82)
execve$auto(&(0x7f0000000040)=':,\x00', 0x0, &(0x7f0000001300)=&(0x7f0000001080)='\x8c\x82\xa5')

2m36.680557505s ago: executing program 3 (id=2252):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xb5f0, 0x7352, 0x36, 0x65f, 0x80000001, 0x7, 0x3, 0x2, 0x9, 0x7, 0x0, 0x4, 0xb4, 0x3, 0x9, 0x10003, 0x80, 0x8, 0x0, 0x7, 0x2000, 0x3, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, [0xc, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0x5)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
mmap$auto(0x0, 0x20005, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x801, 0x84)
r0 = socket(0x2, 0x3, 0x1)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x7, @local}, 0x55)
capget$auto(0x0, 0xfffffffffffffffe)
getsid$auto(0x0)
setsockopt$auto(0x3, 0x10000000084, 0x1e, 0x0, 0x8)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00'], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
accept4$auto(r1, &(0x7f0000000040)=@xdp={0x2c, 0x3, 0x0, 0x1d}, &(0x7f0000000080)=0x2, 0x5)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x1f, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x2, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3b, 0x6, 0x0, 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/loop4\x00', 0xc040, 0x0)
ioctl$auto(0x3, 0x1, 0x90000800000402)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x1d, 0x2, 0x2)
connect$auto(0x5, 0x0, 0x9)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYRES16=r3, @ANYRESOCT], 0x38}, 0x1, 0x0, 0x0, 0x2c050811}, 0x10)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x183941, 0x0)

2m35.681512407s ago: executing program 3 (id=2254):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xb5f0, 0x7352, 0x36, 0x65f, 0x80000001, 0x7, 0x3, 0x2, 0x9, 0x7, 0x0, 0x4, 0xb4, 0x3, 0x9, 0x10003, 0x80, 0x8, 0x0, 0x7, 0x2000, 0x3, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, [0xc, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0x5)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
mmap$auto(0x0, 0x20005, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x801, 0x84)
r0 = socket(0x2, 0x3, 0x1)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x7, @local}, 0x55)
capget$auto(0x0, 0xfffffffffffffffe)
getsid$auto(0x0)
setsockopt$auto(0x3, 0x10000000084, 0x1e, 0x0, 0x8)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00'], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
accept4$auto(r1, &(0x7f0000000040)=@xdp={0x2c, 0x3, 0x0, 0x1d}, &(0x7f0000000080)=0x2, 0x5)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x1f, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x2, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3b, 0x6, 0x0, 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/loop4\x00', 0xc040, 0x0)
ioctl$auto(0x3, 0x1, 0x90000800000402)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x1d, 0x2, 0x2)
connect$auto(0x5, 0x0, 0x9)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYRES16=r3, @ANYRESOCT], 0x38}, 0x1, 0x0, 0x0, 0x2c050811}, 0x10)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x183941, 0x0)

2m34.74871314s ago: executing program 3 (id=2258):
close_range$auto(0x2, 0xa, 0x0)
io_uring_setup$auto(0x6, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa505}}, 0x4, 0x4008)
setsockopt$auto(0xffffffffffffffff, 0x1, 0xc, 0x0, 0x7fffffff)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/disk\x00', 0xc0082, 0x0)
write$auto(r0, &(0x7f0000000340)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,D\xbf&\x9eb|\n\xee\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbb\xbb\xf9\xcdz\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x1d\x88mr\xfd\xf1\x1b;\xabt\xd1a}\x10\xab\xeb_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\x15/\xf9\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\aA\xe9(\x00\x00\x00\x00\x00N\xb5J\xc8A\xc7m\xbf\x19\xae\x9d\xcaR\x0f\xa8\xdf\xe4M\xe1>k\x93\x01\xe5\xba(\x96K\xc1=d3\xe00u\"`]\xb3\x11a\x1cSn\xe7\x87\x84\x93\xe4\x90]\x86\x10\xe5\xacK\x99\xc1$\x91\x05\x00\x00\x00O\x01xc\xa8\x9a\x1bK\x00\x00\xf6\xa2\x8a\x7f4\f[BLH$6\xfb,\xd8\xd3\xd0\xa1v\x14\xcd\x1a\xbdx\xaed\x9d\\\xd0\xff\xd2Y\xc4\x9fT\xb2\xd5\r\xf1#\xd5\xf2\x9cU\xd1:+\xb63\xae\xc1\xf7\xe1\xd4\x879?\xdd\xd6\xd4\xa3\xc7\xd8 S\xfc:\xe1{\x16\\h\x9d\xbc#KEC\x1a\xf9KH`\x82e:_\x9b\xf1\xc1\x8e\xf0\xc46\x98\xd6u\x90\x18\x8f\xe8\xc3%\x8e9\xab\x7f\x0e\n\xb2\xa4\xef\x90\xb16\x04\xbc\xc9\xdc\xad,\xcc\xad}DY\x1d\x1fv\x90\x97u\xa1\xfb\x13\xa93\xb6XJ\x84\xe3\xc1)\x98\xae5q\xa5L\x87\x1aq\x1d0\xf1\xcb\xe5\xf4F!*\xf9\xb3,w\"\xf2\xd0\xd1Vj\xd0\x06\xcc\xbc\xee0\x98.\xd9dC\x8e9\xfdM\\\xc5&\\\x9b\x81\x88t\xa4\x9f\xd1P\xd2e\x9c\xf9\xd2\xaf\x00'/478, 0xb)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0xe1ee815847af655a)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\xf8\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00')
socket(0xa, 0x1, 0x6)
socket(0x23, 0x80805, 0x0)
io_uring_setup$auto(0x3, 0x0)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), r2)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', 0x0, 0x10000, 0x0)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d80200", @ANYRES8, @ANYBLOB="01002dbd7000fcdbdf25010000000c0002000500000000000000c5000700c1007cf7c27c120e3984130834a73f9221887ac28e443c4a1a7da8d2ddcf2890cce5822826764f3f410e53f43f30"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x2400c090)

2m30.779438237s ago: executing program 0 (id=2269):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x22, 0x3, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/logsyscall\x00', 0x20a42, 0x0)
init_module$auto(0x0, 0xffff9, 0x0)
pselect6$auto(0x9, &(0x7f0000000000)={[0x8, 0x1, 0x0, 0x6, 0x8001, 0xfffffffffffff000, 0x200fff, 0x9, 0xcf1, 0x100000003, 0x8000000000000001, 0x0, 0x2f, 0x4002, 0x8000000000000002, 0xfffffffffffffffe]}, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x11, 0x3, 0x0)
r1 = open(&(0x7f0000000200)='./file0\x00', 0x1882c2, 0x78e22799f4a46f1c)
flock$auto(r1, 0x6)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e)
flock$auto(r2, 0x1)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e)
flock$auto(r3, 0x2)
socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001900), 0xffffffffffffffff)
sendmmsg$auto(r1, &(0x7f0000000180)={{0x0, 0x0, &(0x7f00000001c0)={0x0, 0xdc2}, 0x4, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(r0, 0xffffffffffffffff, 0x0)

2m30.099847271s ago: executing program 0 (id=2270):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketcall$auto(0x8000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0xa, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0)
ioctl$auto_EVIOCGRAB(r1, 0x40044590, &(0x7f0000000000)=0x2)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
io_uring_setup$auto(0x6, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0x10, 0x0, 0x0, &(0x7f00000001c0)={[0x1ff, 0x4, 0xd3e, 0x1, 0xa, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x5, 0x80000001, 0x7fff, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x1, 0x948f, 0x1005, 0x206, 0x7, 0xfffffffffffffff6, 0x7, 0x9, 0x79d, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0xf]}, 0x0)

2m28.488281445s ago: executing program 0 (id=2273):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
mmap$auto(0x0, 0x6, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, 0x0, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x181500, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/compaction_proactiveness\x00', 0x40001, 0x0)
close_range$auto(0x2, 0x8, 0x0)
semctl$auto(0xa, 0x2, 0x13, 0x21)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
write$auto(r1, 0x0, 0x5)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0xf7}, 0x7)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x27ffe)
mmap$auto(0x101, 0x1000000002020009, 0x80000000000004, 0xeb5, 0xffffffffffffffff, 0x6)

2m27.33531176s ago: executing program 0 (id=2275):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bdi/43:256/strict_limit\x00', 0xa022, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x15, r0, 0x8000)
r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/version\x00', 0x40802, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000100), 0x20400, 0x0)
r2 = openat$auto_mon_fops_stat_usb_mon(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/usb/usbmon/12s\x00', 0x80000, 0x0)
close_range$auto(r1, r2, 0x1)
r3 = epoll_create$auto(0x3e)
ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f00000000c0)="64a3d249864821621bbbc74c0d032a62f9a7906e68e93f")
epoll_ctl$auto(r3, 0x1, r1, 0x0)

2m26.457414428s ago: executing program 0 (id=2276):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/admmidi2\x00', 0x88042, 0x0)
read$auto(r0, 0x0, 0x20)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x8002, 0x0)
close_range$auto(0x2, 0x8, 0x4000000)

2m25.6182295s ago: executing program 0 (id=2280):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
readv$auto(0x3, &(0x7f0000000000)={0x0, 0x10000ffff}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lsm_get_self_attr$auto(0x68, 0x0, &(0x7f0000002440)=0x8, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x40008000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/udp_early_demux\x00', 0x28802, 0x0)
read$auto(0x3, 0x0, 0x80)
r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r0, 0x0, 0xc70)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone3(&(0x7f0000000440)={0x84844000, 0x0, 0x0, 0x0, {0x26}, 0x0, 0x0, 0x0, 0x0}, 0x58)
readahead$auto(0xffffffffffffffff, 0x7, 0x0)
mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto_tty_fops_tty_io(0xffffffffffffffff, &(0x7f0000000180)=""/253, 0xfd)
read$auto(r3, 0x0, 0x20)
write$auto(r2, 0x0, 0x1)
read$auto_proc_pid_maps_operations_internal(r1, &(0x7f0000000900)=""/4096, 0x1000)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)

2m21.642967118s ago: executing program 1 (id=2293):
close_range$auto(0x2, 0xa, 0x0)
io_uring_setup$auto(0x6, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa505}}, 0x4, 0x4008)
setsockopt$auto(0xffffffffffffffff, 0x1, 0xc, 0x0, 0x7fffffff)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/disk\x00', 0xc0082, 0x0)
write$auto(r0, &(0x7f0000000340)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,D\xbf&\x9eb|\n\xee\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbb\xbb\xf9\xcdz\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x1d\x88mr\xfd\xf1\x1b;\xabt\xd1a}\x10\xab\xeb_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\x15/\xf9\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\aA\xe9(\x00\x00\x00\x00\x00N\xb5J\xc8A\xc7m\xbf\x19\xae\x9d\xcaR\x0f\xa8\xdf\xe4M\xe1>k\x93\x01\xe5\xba(\x96K\xc1=d3\xe00u\"`]\xb3\x11a\x1cSn\xe7\x87\x84\x93\xe4\x90]\x86\x10\xe5\xacK\x99\xc1$\x91\x05\x00\x00\x00O\x01xc\xa8\x9a\x1bK\x00\x00\xf6\xa2\x8a\x7f4\f[BLH$6\xfb,\xd8\xd3\xd0\xa1v\x14\xcd\x1a\xbdx\xaed\x9d\\\xd0\xff\xd2Y\xc4\x9fT\xb2\xd5\r\xf1#\xd5\xf2\x9cU\xd1:+\xb63\xae\xc1\xf7\xe1\xd4\x879?\xdd\xd6\xd4\xa3\xc7\xd8 S\xfc:\xe1{\x16\\h\x9d\xbc#KEC\x1a\xf9KH`\x82e:_\x9b\xf1\xc1\x8e\xf0\xc46\x98\xd6u\x90\x18\x8f\xe8\xc3%\x8e9\xab\x7f\x0e\n\xb2\xa4\xef\x90\xb16\x04\xbc\xc9\xdc\xad,\xcc\xad}DY\x1d\x1fv\x90\x97u\xa1\xfb\x13\xa93\xb6XJ\x84\xe3\xc1)\x98\xae5q\xa5L\x87\x1aq\x1d0\xf1\xcb\xe5\xf4F!*\xf9\xb3,w\"\xf2\xd0\xd1Vj\xd0\x06\xcc\xbc\xee0\x98.\xd9dC\x8e9\xfdM\\\xc5&\\\x9b\x81\x88t\xa4\x9f\xd1P\xd2e\x9c\xf9\xd2\xaf\x00'/478, 0xb)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0xe1ee815847af655a)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\xf8\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00')
socket(0xa, 0x1, 0x6)
socket(0x23, 0x80805, 0x0)
io_uring_setup$auto(0x3, 0x0)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), r2)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', 0x0, 0x10000, 0x0)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d80200", @ANYRES8, @ANYBLOB="01002dbd7000fcdbdf25010000000c0002000500000000000000c5000700c1007cf7c27c120e3984130834a73f9221887ac28e443c4a1a7da8d2ddcf2890cce5822826764f3f410e53f43f30"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x2400c090)

2m21.278266783s ago: executing program 1 (id=2294):
r0 = socket(0x26, 0x80805, 0x0)
mmap$auto(0x80000000000000, 0x2020009, 0x5, 0x19, r0, 0x0)
r1 = socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x202000b, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000)
bind$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(r1, 0x1, 0x9, 0x0, 0x4)
write$auto(0x3, 0x0, 0xffd8)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/tty34\x00', 0x620880, 0x0)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/controlC1\x00', 0x80, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
seccomp$auto(0x7, 0x400, &(0x7f0000000000)="67742e0f356f1653f306c5a08cfc9111699edb97c3819f6941493ab4961b8171be7bd4cadd1004a1bbce34da76df549f3ecc3f97cd074f3ca1fa4e321f8e7fe43b6bba9fb333406f8f")
r4 = socketpair$auto(0x1, 0x1, 0x1, 0x0)
newfstatat$auto(r4, 0x0, 0x0, 0xfffffffe)
name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000000c0)='/\x00R\xa6\x00\xc8\xda\xdc\xb1\xb4#\xe4\xeb\xe1e/\x1b/\xb9L\xc6P\x82\xba\x90@\xb8\xb5\xb1\xe8\"\x88s\xdf\x15\xaa\x18\xa9\x86\xc7\x87g>8\xae\x99\xd4~\xc6\xa7\\\xcc\xfeV\x83\f\xdc\xdc~\x8e\xd5\x18\x13\x16\xc5\x93E\x10\xcb\x1c\x02\x00\xd2\xa4_\xa3\xdcS\xe2\xe2\xc6\x85p\xfa\xc3/G\x86\xea\x9f\xb0\x9a\xcc6\x1a\x06\x91\x9f\xcfC\xedU\x00f`\x02\x04\xef\xfe\x10\xec\x17\x83%K\x04\xd5s\x86\xe4\x9d\x15\f\x8c\xd9wj\xe5t\x82o7\xc05ul\xacU\xbf\xc0\xfe\xb4\xd7\t\xe0s]\xcd\xac\x87\xa5\xa6.t\xa9\xe8\xa6>\xf2\xd0\xb1\x83\x83\x91\a\xdc\xe9\xaa\x1dx\x06\xa77\xd6\xe1\xe9\x94\xb9Xi\xbbv_\x9a_bv%\xcb\xc7\xdd\xa3\xb4\tpr%\xdf\xc9\x06\xa2\xe7\xe1\xde\x16\xf7\x03x\xf8\v\v\x1a\xfcm\x87r\xc1\b\xca\x97\xb0\xeb\xd6F\x8f^\x94\xdf\x9ax\xf4\x03e[l\xa5', 0x0, 0x0, 0x1001)
r5 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_VHOST_NET_SET_BACKEND(r5, 0x4008af30, 0x0)
ioctl$auto(r3, 0x80dc5521, r2)
signalfd4$auto(0xffffffffffffffff, 0x0, 0x8, 0x800)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0x20000000)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
socket(0x11, 0x80003, 0x6)
socket(0x11, 0x80003, 0x300)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ptype\x00', 0x101000, 0x0)
pread64$auto(r6, 0x0, 0x8, 0xffff)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1441, 0x0)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, r3, 0x6)
socket(0xa, 0x5, 0x0)

2m21.179931724s ago: executing program 1 (id=2295):
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x80000001, 0x8)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000)
read$auto(0xffffffffffffffff, 0x0, 0x20)
r0 = seccomp$auto(0x4, 0x40, &(0x7f0000000000)="16d765c639fe9e8ff2653367fc67eaa3fe275856d4db602b7ec55ee3c00e1796108dff66f6ea5741cdf554024475a6")
recvfrom$auto(r0, 0x0, 0xd, 0x6, 0x0, 0xfffffffffffffffd)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0x100)
userfaultfd$auto(0x5)
r1 = eventfd2$auto(0x6af3, 0x800)
socket(0xa, 0x3, 0xff)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
writev$auto(r1, &(0x7f0000000100)={0x0, 0x8}, 0x40000000008)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = socket(0x28, 0x3, 0x7fffffff)
fsync$auto(r2)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x82802, 0x0)
write$auto(r3, &(0x7f0000000280)='S\x00\x00\x00\xfe\xff\xff\xff\xdf\x9e\xf4\x14\xd2d2\xc4\x97\xde0\xb1\x85\xc6vHI\x8bMJ}\x8d\xc1\x94D\xdbSt/\xdd\xb5\fnW{\x00^:\x80\xb5\xdd\x8d\x1e\x96\xdf\xcb\xac\xbfB\xb3\xba\x9a\x02\xeaZ\xb9Rg\"\x87\x9e\x9c\xb3\xac\x16\xa3g\xad\xf7<\xc5c\xfa2\x97,O\xb2\xe3\xad\xe0v\x13\x1dc\xbf\x95[p\x15\xf6\xa8\xd0*\xee\xcdX\x1dM\xe3\x8cT\xc6\x1dj\xe8\xc1\xc0\x85cp\xad\v,O\xb8\x9b\xd8\xe0\x964/\x8fQ\xaf\x13\xd7\xf14\x85\xe8\x0f\'\xc4\xe3\x1c', 0x808587)
select$auto(0x8, &(0x7f00000000c0)={[0x800eedc, 0x7, 0x4, 0x9, 0x6, 0x1ff, 0x7, 0x8001, 0x4, 0x4618ecd2, 0x0, 0x10001, 0x4, 0x9a8c, 0x7, 0x10001]}, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile$auto(r4, r4, 0x0, 0x7ffff003)
vmsplice$auto(0x2, &(0x7f00000000c0)={0x0, 0x7ff}, 0x8000000000000001, 0x0)
write$auto(0x1, 0x0, 0x80000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x801, 0x0)

2m21.065324983s ago: executing program 1 (id=2297):
r0 = socket(0x25, 0x1, 0x0)
sendto$auto(r0, 0x0, 0x0, 0x0, 0x0, 0x3)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x180b03, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
mount$auto(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240)='hfs\x00\x81\xe2\xde\xa8\xb7\xc4G[*}\xaa{\xf1\x86\xf7d@\xe8Y\xea\xb1H\x01\xff\"^\'6\xba\xa9s\x1d\xf4\xe1i\xc5\xb6_B\xa7KFS\xc1\xa7\x8e*h\xe3\x8b\x7f\xca\xfcNEi\x84?\x82\xff\xf2\xac\xd1\xee\xf4\x9a?\xac\x11\x88\aO\x84\xe6k\a\x9bY\xddx\xb8\xdf\vHv\xb5\f\xbc\b\xc0\xfa\xc0\xfe\xa6\xce\xbd\x03\x00\x93\xdc4\x97\xce\xd5&\x93\xae\x05q\xe9\xa8?\x00\xbdi\x88q\xd0w\xfd@\r\xce\xe4\xadrt`\xf8`b\xbf\xeci\x93a\xc6o\x9ej\xe4\xa3\x9d\xaa\xe1\xe1N\n\xbcq\n[\"5\xd4\xa6\x96#).\xbd\x8aD\x88>8J\v\xb5\x99H\xc5\a\xc9\xcf\xbc\x85\xbf\x85\x81\x0f\x7f8\x11\xdbK\xf3\xc2#\x18 \xdf\x05\xcd\xbb\xc03_\xb7Q@\xf2G', 0x7, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "00800000ffefffffff0200000001"}, 0x55)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
msync$auto(0x1, 0x9, 0xfffffff7)
write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000001680)="a7", 0x80000)
madvise$auto(0x0, 0x20200, 0x15)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)

2m20.904866673s ago: executing program 1 (id=2299):
r0 = socket(0x25, 0x1, 0x0)
sendto$auto(r0, 0x0, 0x0, 0x0, 0x0, 0x3)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x180b03, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
mount$auto(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240)='hfs\x00\x81\xe2\xde\xa8\xb7\xc4G[*}\xaa{\xf1\x86\xf7d@\xe8Y\xea\xb1H\x01\xff\"^\'6\xba\xa9s\x1d\xf4\xe1i\xc5\xb6_B\xa7KFS\xc1\xa7\x8e*h\xe3\x8b\x7f\xca\xfcNEi\x84?\x82\xff\xf2\xac\xd1\xee\xf4\x9a?\xac\x11\x88\aO\x84\xe6k\a\x9bY\xddx\xb8\xdf\vHv\xb5\f\xbc\b\xc0\xfa\xc0\xfe\xa6\xce\xbd\x03\x00\x93\xdc4\x97\xce\xd5&\x93\xae\x05q\xe9\xa8?\x00\xbdi\x88q\xd0w\xfd@\r\xce\xe4\xadrt`\xf8`b\xbf\xeci\x93a\xc6o\x9ej\xe4\xa3\x9d\xaa\xe1\xe1N\n\xbcq\n[\"5\xd4\xa6\x96#).\xbd\x8aD\x88>8J\v\xb5\x99H\xc5\a\xc9\xcf\xbc\x85\xbf\x85\x81\x0f\x7f8\x11\xdbK\xf3\xc2#\x18 \xdf\x05\xcd\xbb\xc03_\xb7Q@\xf2G', 0x7, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "00800000ffefffffff0200000001"}, 0x55)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
msync$auto(0x1, 0x9, 0xfffffff7)
write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000001680)="a7", 0x80000)
madvise$auto(0x0, 0x20200, 0x15)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)

2m20.723109422s ago: executing program 1 (id=2301):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
readv$auto(0x3, &(0x7f0000000000)={0x0, 0x10000ffff}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lsm_get_self_attr$auto(0x68, 0x0, &(0x7f0000002440)=0x8, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x40008000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0x80)
r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r0, 0x0, 0xc70)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone3(&(0x7f0000000440)={0x84844000, 0x0, 0x0, 0x0, {0x26}, 0x0, 0x0, 0x0, 0x0}, 0x58)
readahead$auto(0xffffffffffffffff, 0x7, 0x0)
mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto_tty_fops_tty_io(0xffffffffffffffff, &(0x7f0000000180)=""/253, 0xfd)
read$auto(r3, 0x0, 0x20)
write$auto(r2, 0x0, 0x1)
read$auto_proc_pid_maps_operations_internal(r1, &(0x7f0000000900)=""/4096, 0x1000)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)

2m10.470493529s ago: executing program 32 (id=2280):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
readv$auto(0x3, &(0x7f0000000000)={0x0, 0x10000ffff}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lsm_get_self_attr$auto(0x68, 0x0, &(0x7f0000002440)=0x8, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x40008000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/udp_early_demux\x00', 0x28802, 0x0)
read$auto(0x3, 0x0, 0x80)
r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r0, 0x0, 0xc70)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone3(&(0x7f0000000440)={0x84844000, 0x0, 0x0, 0x0, {0x26}, 0x0, 0x0, 0x0, 0x0}, 0x58)
readahead$auto(0xffffffffffffffff, 0x7, 0x0)
mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto_tty_fops_tty_io(0xffffffffffffffff, &(0x7f0000000180)=""/253, 0xfd)
read$auto(r3, 0x0, 0x20)
write$auto(r2, 0x0, 0x1)
read$auto_proc_pid_maps_operations_internal(r1, &(0x7f0000000900)=""/4096, 0x1000)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)

2m5.64202413s ago: executing program 33 (id=2301):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
readv$auto(0x3, &(0x7f0000000000)={0x0, 0x10000ffff}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lsm_get_self_attr$auto(0x68, 0x0, &(0x7f0000002440)=0x8, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x40008000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0x80)
r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r0, 0x0, 0xc70)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone3(&(0x7f0000000440)={0x84844000, 0x0, 0x0, 0x0, {0x26}, 0x0, 0x0, 0x0, 0x0}, 0x58)
readahead$auto(0xffffffffffffffff, 0x7, 0x0)
mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto_tty_fops_tty_io(0xffffffffffffffff, &(0x7f0000000180)=""/253, 0xfd)
read$auto(r3, 0x0, 0x20)
write$auto(r2, 0x0, 0x1)
read$auto_proc_pid_maps_operations_internal(r1, &(0x7f0000000900)=""/4096, 0x1000)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)

1.911889707s ago: executing program 2 (id=2578):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
madvise$auto(0x0, 0x200007, 0x8)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x3e00, 0x0)
mmap$auto(0x0, 0x2020009, 0x7, 0x18, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0x0, 0x9)
read$auto_mon_fops_text_t_mon_text(0xffffffffffffffff, 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x800, 0x0)
syz_genetlink_get_family_id$auto_nlbl_calipso(&(0x7f0000000080), 0xffffffffffffffff)
sysfs$auto(0x2, 0xe, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80000, 0x0)
syz_genetlink_get_family_id$auto_smbd_genl(0x0, 0xffffffffffffffff)
ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x40146f2c, 0x0)
socket(0x10, 0x2, 0x4)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="21022cbc7000ebdbdf2501"], 0x14}, 0x1, 0x0, 0x0, 0x400c050}, 0x4000080)
kexec_load$auto(0x4, 0x4, &(0x7f00000001c0)={@kbuf=&(0x7f00000003c0)="93994f855aee3b6ac555a223ce397f167a754e3af5c6b38dfc616619cad0665a00afdb6fe5b04d8194785ad616f0b6f73bebaf8246d0fccfd009b154fdb1bd3730e064321866c0166a593a7a74dac49d1546fe0e925cbd528b9b9ad938e0b26ad4b3f024db0983f7886755372e86a2dce28fc03ef786756ac07900ff6478def427dff80de51e7db9e74d68bee49d849aabe4a049a69d6f9b144185c9b994ebb25145637bfcb0e6a8d6916fc2b0d14db985d2bdab11287c00f51ecd21d03620da547c0722028750357955d1766f97917bfc597d668d6a433eb287e3f32bdd99dfae1d1630979bbda2fba5f1cce0", 0x0, 0x6, 0x3}, 0x7)
getpriority$auto_PRIO_USER(0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x8000000)
shmget$auto(0x0, 0xfffffffffeffffff, 0x69c2)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
mmap$auto(0x7ffffffd, 0x40000c, 0x11, 0x9b72, 0x2, 0x8000)
epoll_create$auto(0x4)
socket(0x1d, 0x1, 0x7fff)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)

1.776616164s ago: executing program 2 (id=2579):
mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0x51c, 0x8000) (async)
r0 = socket(0xa, 0x2, 0x73)
ioctl$auto(r0, 0x8918, 0x38)

1.69184071s ago: executing program 2 (id=2580):
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x100842, 0x0)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0)
read$auto_snd_timer_f_ops_timer(r1, &(0x7f0000000100)=""/88, 0x58)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_START_OLD(r1, 0x5420, 0x0)
ioctl$auto_SNDCTL_TMR_CONTINUE(r0, 0x5404, 0x0)
ioctl$auto_UI_GET_VERSION(0xffffffffffffffff, 0x8004552d, &(0x7f0000000040)=0x10)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bdi/43:256/strict_limit\x00', 0xa022, 0x0)
pwrite64$auto(r2, &(0x7f00000000c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7fff, 0xc)

867.403133ms ago: executing program 2 (id=2581):
io_uring_setup$auto(0x6, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x4, 0x4008)
setsockopt$auto(0xffffffffffffffff, 0x1, 0xc, 0x0, 0x7fffffff)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/disk\x00', 0xc0082, 0x0)
write$auto(r0, &(0x7f0000000340)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,D\xbf&\x9eb|\n\xee\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbb\xbb\xf9\xcdz\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x1d\x88mr\xfd\xf1\x1b;\xabt\xd1a}\x10\xab\xeb_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\x15/\xf9\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\aA\xe9(\x00\x00\x00\x00\x00N\xb5J\xc8A\xc7m\xbf\x19\xae\x9d\xcaR\x0f\xa8\xdf\xe4M\xe1>k\x93\x01\xe5\xba(\x96K\xc1=d3\xe00u\"`]\xb3\x11a\x1cSn\xe7\x87\x84\x93\xe4\x90]\x86\x10\xe5\xacK\x99\xc1$\x91\x05\x00\x00\x00O\x01xc\xa8\x9a\x1bK\x00\x00\xf6\xa2\x8a\x7f4\f[BLH$6\xfb,\xd8\xd3\xd0\xa1v\x14\xcd\x1a\xbdx\xaed\x9d\\\xd0\xff\xd2Y\xc4\x9fT\xb2\xd5\r\xf1#\xd5\xf2\x9cU\xd1:+\xb63\xae\xc1\xf7\xe1\xd4\x879?\xdd\xd6\xd4\xa3\xc7\xd8 S\xfc:\xe1{\x16\\h\x9d\xbc#KEC\x1a\xf9KH`\x82e:_\x9b\xf1\xc1\x8e\xf0\xc46\x98\xd6u\x90\x18\x8f\xe8\xc3%\x8e9\xab\x7f\x0e\n\xb2\xa4\xef\x90\xb16\x04\xbc\xc9\xdc\xad,\xcc\xad}DY\x1d\x1fv\x90\x97u\xa1\xfb\x13\xa93\xb6XJ\x84\xe3\xc1)\x98\xae5q\xa5L\x87\x1aq\x1d0\xf1\xcb\xe5\xf4F!*\xf9\xb3,w\"\xf2\xd0\xd1Vj\xd0\x06\xcc\xbc\xee0\x98.\xd9dC\x8e9\xfdM\\\xc5&\\\x9b\x81\x88t\xa4\x9f\xd1P\xd2e\x9c\xf9\xd2\xaf\x00'/478, 0xb)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0xe1ee815847af655a)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\xf8\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00')
socket(0xa, 0x1, 0x6)
socket(0x23, 0x80805, 0x0)
io_uring_setup$auto(0x3, 0x0)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), r2)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', 0x0, 0x10000, 0x0)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d80200", @ANYRES8, @ANYBLOB="01002dbd7000fcdbdf25010000000c0002000500000000000000c5000700c1007cf7c27c120e3984130834a73f9221887ac28e443c4a1a7da8d2ddcf2890cce5822826764f3f410e53f43f30"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x2400c090)

503.644342ms ago: executing program 2 (id=2582):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketcall$auto(0x8000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0xa, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0)
ioctl$auto_EVIOCGRAB(r1, 0x40044590, &(0x7f0000000000)=0x2)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
io_uring_setup$auto(0x6, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0x10, 0x0, 0x0, &(0x7f00000001c0)={[0x1ff, 0x4, 0xd3e, 0x1, 0xa, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x5, 0x80000001, 0x7fff, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x1, 0x948f, 0x1005, 0x206, 0x7, 0xfffffffffffffff6, 0x7, 0x9, 0x79d, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0xf]}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0xa, 0x0)

0s ago: executing program 2 (id=2583):
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0)
ioctl$auto(r0, 0x64c2, 0x1e2)
pwrite64$auto(0xffffffffffffffff, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\xff\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\tfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7t\xee\xc9\x00'/226, 0x40fded, 0x81)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x5, 0x1, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mknod$auto(&(0x7f0000001040)=':,\x00', 0xca, 0xfffffffa)
r2 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
read$auto_rng_chrdev_ops_core(r2, &(0x7f0000000040)=""/4096, 0xfffffe82)
execve$auto(&(0x7f0000000040)=':,\x00', 0x0, &(0x7f0000001300)=&(0x7f0000001080)='\x8c\x82\xa5')
r3 = syz_genetlink_get_family_id$auto_vdpa(&(0x7f0000001100), r1)
sendmsg$auto_VDPA_CMD_DEV_DEL(r1, &(0x7f00000011c0)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001180)={&(0x7f0000001140)={0x38, r3, 0x8, 0x70bd25, 0x25dfdbfe, {}, [@VDPA_ATTR_DEV_NAME={0x14, 0x4, 'syzkaller0\x00'}, @VDPA_ATTR_DEV_QUEUE_INDEX={0x8, 0x11, 0x7fffffff}, @VDPA_ATTR_DEV_NET_CFG_MTU={0x6, 0xd, 0x895}]}, 0x38}}, 0xd36b4a098fff6072)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_UNEXPECTED_FRAME(r4, &(0x7f0000000540)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={&(0x7f0000000640)=ANY=[@ANYBLOB="5e00f60087f5575f279427137fffffffffffffff5f17146a", @ANYRES16=r5, @ANYBLOB="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"], 0x218}, 0x1, 0x0, 0x0, 0x4000041}, 0x8c1)
r6 = socket(0x2, 0x3, 0x6)
sendmsg$auto_NL80211_CMD_DEL_KEY(r6, &(0x7f0000000600)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000005c0)={&(0x7f0000005880)=ANY=[@ANYBLOB="30230000383fed364257938de435cc6d3b6aec2e083a711d97dc5cce49c57ff7168f642841dfd88c6d45065a9de77d49d9862d9aa1222913c90f9abf382f92f74f3d89b0d63cc5be416f20750d9be0bf8dafcc2115fa654d128c75e6e84649f75f1821d4c6fb8229f03354b0bae318ddeb8b15d5ab202e42beb12c2b16a7b1390a2336090ebd0b86a494f262eaf40320f94ad63a927cef29a5e2277fc446fb4bec4bc50989301fe784b23c6fb680d0d80f191e7ac9156a7589dccbbb743bae635ee7529940bc0c6189482edeabf80d34e025011df9c20086491f562d0000000000000000", @ANYRES16=r5, @ANYBLOB="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"], 0x2330}, 0x1, 0x0, 0x0, 0x240088c0}, 0x4000)
fstat$auto(r0, &(0x7f0000001240)={0x62a, 0x2, 0x0, 0x6, <r7=>0xee00, 0xee00, 0x0, 0x6, 0x1, 0x3, 0xfff, 0x3, 0x5, 0x7, 0x1, 0x9, 0x9})
sendmsg$auto_NL80211_CMD_JOIN_IBSS(r1, &(0x7f00000015c0)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001580)={&(0x7f0000001340)={0x204, r5, 0x800, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0x8}, @NL80211_ATTR_EMA_RNR_ELEMS={0x1d3, 0x145, 0x0, 0x1, [@generic="6a62c1622c6f847658643660561720f4478238e26887c50e167ea98e74a3c903c2c778bb579556cf54d717b0c1a900389d44af66c14c470d55127378495412ad01e99c5fafbb84c40df36c355967d64ab9b7705ca8183a215b006330b864e3ad6c827bfd1da09a70a1755ceea9c8ca0a011b3be26c868d90036b9b6378b8988272c33b5dfa51a1bb66e66bf58f6eeee700b748bc7af6304219333853e1273ccec2632b565e3a552aab4754c164366cee90389155d72050c40fe5b71db842c6b56a0542e5a088709d7063a0b693dbeb578c53f004028ab2cd501199be59ef5536899b9fa095b1667f809fd482a296185f564f92c4cc2a6a", @typed={0x8, 0xd7, 0x0, 0x0, @u32=0x4}, @nested={0xce, 0x53, 0x0, 0x1, [@typed={0x8, 0x8a, 0x0, 0x0, @ipv4=@multicast1}, @typed={0x8, 0xeb, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x36}}, @typed={0x8, 0x14c, 0x0, 0x0, @uid=r7}, @nested={0x4, 0x133}, @nested={0x4, 0x120}, @nested={0x4, 0x12f}, @nested={0x4, 0xeb}, @generic="e1d2ae98e796f4b8176206dc8bad0006b0e662ea3d4cbdd01fd4c010803bbecb29bbf2cb48baff7f23f0f8422359ca8f73b0fd18096dfb76f13e312d47348fb2ad4f8f0982d48c083209efe5fff3743b201e27f00192d54638dcf0a565b5dd7b1978fca1bc59ecc1e8d90b32aed8e2e95c56", @generic="0ca858dafe4e65a1889150f5a249e6a4c596e0284dd2afbd20b28d0a953210ebc9c69422e75d7b7b1f494609bf5d898b"]}]}, @NL80211_ATTR_PUNCT_BITMAP={0x8, 0x142, 0x7fffffff}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x2}, @NL80211_ATTR_RECEIVE_MULTICAST={0x4}]}, 0x204}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000)

kernel console output (not intermixed with test programs):

4761]  ? __pfx_____sys_sendmsg+0x10/0x10
[  537.123917][T14761]  ? __lock_acquire+0x433/0x22f0
[  537.123945][T14761]  ___sys_sendmsg+0x134/0x1d0
[  537.123965][T14761]  ? __pfx____sys_sendmsg+0x10/0x10
[  537.123984][T14761]  ? __lock_acquire+0x433/0x22f0
[  537.124027][T14761]  __sys_sendmsg+0x16d/0x220
[  537.124047][T14761]  ? __pfx___sys_sendmsg+0x10/0x10
[  537.124080][T14761]  do_syscall_64+0xcd/0xf80
[  537.124103][T14761]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.124121][T14761] RIP: 0033:0x7f7ed3b8f7c9
[  537.124136][T14761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  537.124154][T14761] RSP: 002b:00007f7ed1df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  537.124172][T14761] RAX: ffffffffffffffda RBX: 00007f7ed3de5fa0 RCX: 00007f7ed3b8f7c9
[  537.124183][T14761] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000003
[  537.124198][T14761] RBP: 00007f7ed1df6090 R08: 0000000000000000 R09: 0000000000000000
[  537.124209][T14761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  537.124219][T14761] R13: 00007f7ed3de6038 R14: 00007f7ed3de5fa0 R15: 00007ffc565d0bb8
[  537.124241][T14761]  </TASK>
[  537.517974][T14766] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[  537.772788][T14773] FAULT_INJECTION: forcing a failure.
[  537.772788][T14773] name failslab, interval 1, probability 0, space 0, times 0
[  537.796096][T14773] CPU: 1 UID: 0 PID: 14773 Comm: syz.0.1992 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  537.796127][T14773] Tainted: [U]=USER
[  537.796133][T14773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  537.796143][T14773] Call Trace:
[  537.796149][T14773]  <TASK>
[  537.796156][T14773]  dump_stack_lvl+0x16c/0x1f0
[  537.796182][T14773]  should_fail_ex+0x512/0x640
[  537.796208][T14773]  ? kmem_cache_alloc_node_noprof+0x65/0x760
[  537.796240][T14773]  should_failslab+0xc2/0x120
[  537.796264][T14773]  kmem_cache_alloc_node_noprof+0x78/0x760
[  537.796292][T14773]  ? __alloc_skb+0x2b2/0x380
[  537.796313][T14773]  ? __alloc_skb+0x2b2/0x380
[  537.796327][T14773]  __alloc_skb+0x2b2/0x380
[  537.796348][T14773]  ? __pfx___alloc_skb+0x10/0x10
[  537.796365][T14773]  ? genl_rcv_msg+0x4bb/0x800
[  537.796396][T14773]  netlink_ack+0x15d/0xb80
[  537.796424][T14773]  netlink_rcv_skb+0x332/0x420
[  537.796445][T14773]  ? __pfx_genl_rcv_msg+0x10/0x10
[  537.796471][T14773]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  537.796502][T14773]  ? netlink_deliver_tap+0x1ae/0xd30
[  537.796526][T14773]  genl_rcv+0x28/0x40
[  537.796548][T14773]  netlink_unicast+0x5aa/0x870
[  537.796585][T14773]  ? __pfx_netlink_unicast+0x10/0x10
[  537.796614][T14773]  netlink_sendmsg+0x8c8/0xdd0
[  537.796640][T14773]  ? __pfx_netlink_sendmsg+0x10/0x10
[  537.796665][T14773]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  537.796688][T14773]  ____sys_sendmsg+0xa5d/0xc30
[  537.796712][T14773]  ? copy_msghdr_from_user+0x10a/0x160
[  537.796732][T14773]  ? __pfx_____sys_sendmsg+0x10/0x10
[  537.796754][T14773]  ? __lock_acquire+0x433/0x22f0
[  537.796783][T14773]  ___sys_sendmsg+0x134/0x1d0
[  537.796804][T14773]  ? __pfx____sys_sendmsg+0x10/0x10
[  537.796822][T14773]  ? __lock_acquire+0x433/0x22f0
[  537.796864][T14773]  __sys_sendmsg+0x16d/0x220
[  537.796883][T14773]  ? __pfx___sys_sendmsg+0x10/0x10
[  537.796916][T14773]  do_syscall_64+0xcd/0xf80
[  537.796939][T14773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.796958][T14773] RIP: 0033:0x7f0543b8f7c9
[  537.796982][T14773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  537.796999][T14773] RSP: 002b:00007f0544945038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  537.797017][T14773] RAX: ffffffffffffffda RBX: 00007f0543de5fa0 RCX: 00007f0543b8f7c9
[  537.797028][T14773] RDX: 0000000020040880 RSI: 0000200000000100 RDI: 0000000000000003
[  537.797039][T14773] RBP: 00007f0544945090 R08: 0000000000000000 R09: 0000000000000000
[  537.797049][T14773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  537.797059][T14773] R13: 00007f0543de6038 R14: 00007f0543de5fa0 R15: 00007ffcf698c5d8
[  537.797082][T14773]  </TASK>
[  538.563725][T14785] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  538.576300][T14785] EXT4-fs (sda1): This should not happen!! Data will be lost
[  538.576300][T14785] 
[  539.294207][T14794] random: crng reseeded on system resumption
[  540.101510][T14810] binder: 14809:14810 ioctl c018620c 0 returned -1
[  540.142684][T14810] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2001'.
[  540.160689][T14813] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input170
[  541.350711][T14832] nbd: must specify an index to disconnect
[  541.436963][T14817] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input171
[  542.074107][T14832] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2006'.
[  542.253848][T14837] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input172
[  542.557728][T14838] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input173
[  543.457573][T14845] FAULT_INJECTION: forcing a failure.
[  543.457573][T14845] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  543.470758][T14845] CPU: 1 UID: 0 PID: 14845 Comm: syz.0.2009 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  543.470805][T14845] Tainted: [U]=USER
[  543.470814][T14845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  543.470831][T14845] Call Trace:
[  543.470841][T14845]  <TASK>
[  543.470851][T14845]  dump_stack_lvl+0x16c/0x1f0
[  543.470888][T14845]  should_fail_ex+0x512/0x640
[  543.470924][T14845]  _copy_to_user+0x32/0xd0
[  543.470958][T14845]  snd_pcm_oss_read+0x276/0x760
[  543.471011][T14845]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[  543.471052][T14845]  vfs_readv+0x5c1/0x8b0
[  543.471093][T14845]  ? __pfx_vfs_readv+0x10/0x10
[  543.471159][T14845]  ? __fget_files+0x20e/0x3c0
[  543.471190][T14845]  ? __fget_files+0x110/0x3c0
[  543.471233][T14845]  ? do_readv+0x132/0x340
[  543.471260][T14845]  do_readv+0x132/0x340
[  543.471290][T14845]  ? __pfx_do_readv+0x10/0x10
[  543.471332][T14845]  do_syscall_64+0xcd/0xf80
[  543.471368][T14845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  543.471396][T14845] RIP: 0033:0x7f0543b8f7c9
[  543.471419][T14845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  543.471447][T14845] RSP: 002b:00007f0544945038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  543.471474][T14845] RAX: ffffffffffffffda RBX: 00007f0543de5fa0 RCX: 00007f0543b8f7c9
[  543.471494][T14845] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[  543.471511][T14845] RBP: 00007f0544945090 R08: 0000000000000000 R09: 0000000000000000
[  543.471527][T14845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  543.471544][T14845] R13: 00007f0543de6038 R14: 00007f0543de5fa0 R15: 00007ffcf698c5d8
[  543.471585][T14845]  </TASK>
[  543.951541][T14854] vhci_hcd: invalid port number 16
[  543.960952][T14852] random: crng reseeded on system resumption
[  543.985822][T14854] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2012'.
[  544.230818][ T7366] Bluetooth: hci0: unexpected event 0x2c length: 42 > 17
[  544.230847][ T7366] Bluetooth: hci0: Ignoring connect complete event for invalid link type
[  544.349324][T14858] zswap: compressor  not available
[  544.494579][T14866] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input174
[  545.535676][T14872] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input175
[  546.025416][T14884] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  546.049987][T14884] EXT4-fs (sda1): This should not happen!! Data will be lost
[  546.049987][T14884] 
[  547.454855][T14911] FAULT_INJECTION: forcing a failure.
[  547.454855][T14911] name failslab, interval 1, probability 0, space 0, times 0
[  547.495946][T14911] CPU: 0 UID: 0 PID: 14911 Comm: syz.2.2025 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  547.495979][T14911] Tainted: [U]=USER
[  547.495985][T14911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  547.495996][T14911] Call Trace:
[  547.496002][T14911]  <TASK>
[  547.496011][T14911]  dump_stack_lvl+0x16c/0x1f0
[  547.496037][T14911]  should_fail_ex+0x512/0x640
[  547.496058][T14911]  ? fs_reclaim_acquire+0xae/0x150
[  547.496082][T14911]  should_failslab+0xc2/0x120
[  547.496107][T14911]  __kmalloc_noprof+0xdd/0x870
[  547.496133][T14911]  ? __pfx_prepend_path+0x10/0x10
[  547.496150][T14911]  ? ima_alloc_init_template+0xb5/0x720
[  547.496175][T14911]  ? ima_alloc_init_template+0xb5/0x720
[  547.496194][T14911]  ima_alloc_init_template+0xb5/0x720
[  547.496214][T14911]  ? d_absolute_path+0x136/0x1a0
[  547.496230][T14911]  ? __pfx_d_absolute_path+0x10/0x10
[  547.496249][T14911]  ima_store_measurement+0x1eb/0x5c0
[  547.496272][T14911]  ? __pfx_ima_store_measurement+0x10/0x10
[  547.496294][T14911]  ? ima_d_path+0x12b/0x2a0
[  547.496318][T14911]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  547.496350][T14911]  process_measurement+0x1ddb/0x23e0
[  547.496375][T14911]  ? rcu_is_watching+0x12/0xc0
[  547.496402][T14911]  ? __pfx_process_measurement+0x10/0x10
[  547.496422][T14911]  ? find_held_lock+0x2b/0x80
[  547.496453][T14911]  ? __mutex_unlock_slowpath+0x161/0x790
[  547.496492][T14911]  ? tracing_mark_open+0x16e/0x6f0
[  547.496517][T14911]  ? inode_to_bdi+0x9e/0x160
[  547.496537][T14911]  ima_file_check+0xc5/0x110
[  547.496555][T14911]  ? __pfx_ima_file_check+0x10/0x10
[  547.496577][T14911]  security_file_post_open+0x8e/0x210
[  547.496601][T14911]  path_openat+0xe5f/0x3140
[  547.496631][T14911]  ? __pfx_path_openat+0x10/0x10
[  547.496662][T14911]  do_filp_open+0x20b/0x470
[  547.496686][T14911]  ? __pfx_do_filp_open+0x10/0x10
[  547.496727][T14911]  ? alloc_fd+0x471/0x7d0
[  547.496760][T14911]  do_sys_openat2+0x11f/0x280
[  547.496780][T14911]  ? __pfx_do_sys_openat2+0x10/0x10
[  547.496805][T14911]  __x64_sys_openat+0x174/0x210
[  547.496831][T14911]  ? __pfx___x64_sys_openat+0x10/0x10
[  547.496856][T14911]  do_syscall_64+0xcd/0xf80
[  547.496880][T14911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  547.496899][T14911] RIP: 0033:0x7efd7938f7c9
[  547.496914][T14911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  547.496933][T14911] RSP: 002b:00007efd7a25e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  547.496951][T14911] RAX: ffffffffffffffda RBX: 00007efd795e5fa0 RCX: 00007efd7938f7c9
[  547.496963][T14911] RDX: 000000000002a002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  547.496975][T14911] RBP: 00007efd79413f91 R08: 0000000000000000 R09: 0000000000000000
[  547.496985][T14911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  547.496996][T14911] R13: 00007efd795e6038 R14: 00007efd795e5fa0 R15: 00007fff40afc2a8
[  547.497019][T14911]  </TASK>
[  547.569752][   T30] audit: type=1804 audit(4294968526.460:15): pid=14911 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.2025" name="/newroot/sys/kernel/debug/tracing/trace_marker_raw" dev="tracefs" ino=1270 res=0 errno=0
[  548.418367][T14919] random: crng reseeded on system resumption
[  548.631997][T14877] Process accounting paused
[  549.710225][T14948] random: crng reseeded on system resumption
[  549.815666][T14948] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  549.842994][T14948] EXT4-fs (sda1): This should not happen!! Data will be lost
[  549.842994][T14948] 
[  551.455591][T14968] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  551.526126][T14968] EXT4-fs (sda1): This should not happen!! Data will be lost
[  551.526126][T14968] 
[  553.913198][T15002] random: crng reseeded on system resumption
[  554.001687][T15002] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  554.063109][T15002] EXT4-fs (sda1): This should not happen!! Data will be lost
[  554.063109][T15002] 
[  554.553090][T15012] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input176
[  555.128158][T15021] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input177
[  555.714329][T15030] FAULT_INJECTION: forcing a failure.
[  555.714329][T15030] name failslab, interval 1, probability 0, space 0, times 0
[  555.783114][T15030] CPU: 0 UID: 0 PID: 15030 Comm: syz.2.2049 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  555.783162][T15030] Tainted: [U]=USER
[  555.783171][T15030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  555.783195][T15030] Call Trace:
[  555.783205][T15030]  <TASK>
[  555.783215][T15030]  dump_stack_lvl+0x16c/0x1f0
[  555.783255][T15030]  should_fail_ex+0x512/0x640
[  555.783285][T15030]  ? kmem_cache_alloc_node_noprof+0x65/0x760
[  555.783336][T15030]  should_failslab+0xc2/0x120
[  555.783374][T15030]  kmem_cache_alloc_node_noprof+0x78/0x760
[  555.783417][T15030]  ? __alloc_skb+0x2b2/0x380
[  555.783451][T15030]  ? __alloc_skb+0x2b2/0x380
[  555.783473][T15030]  __alloc_skb+0x2b2/0x380
[  555.783489][T15030]  ? __pfx___alloc_skb+0x10/0x10
[  555.783510][T15030]  ? __local_bh_enable_ip+0xa4/0x120
[  555.783538][T15030]  batadv_netlink_set_mesh+0xf3a/0x1520
[  555.783560][T15030]  genl_family_rcv_msg_doit+0x209/0x2f0
[  555.783587][T15030]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  555.783613][T15030]  ? genl_get_cmd+0x194/0x580
[  555.783641][T15030]  ? bpf_lsm_capable+0x9/0x10
[  555.783660][T15030]  ? security_capable+0x7e/0x260
[  555.783679][T15030]  ? ns_capable+0xd7/0x110
[  555.783704][T15030]  genl_rcv_msg+0x55c/0x800
[  555.783732][T15030]  ? __pfx_genl_rcv_msg+0x10/0x10
[  555.783757][T15030]  ? __pfx_batadv_pre_doit+0x10/0x10
[  555.783772][T15030]  ? __pfx_batadv_netlink_set_mesh+0x10/0x10
[  555.783788][T15030]  ? __pfx_batadv_post_doit+0x10/0x10
[  555.783820][T15030]  netlink_rcv_skb+0x158/0x420
[  555.783842][T15030]  ? __pfx_genl_rcv_msg+0x10/0x10
[  555.783868][T15030]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  555.783900][T15030]  ? netlink_deliver_tap+0x1ae/0xd30
[  555.783924][T15030]  genl_rcv+0x28/0x40
[  555.783945][T15030]  netlink_unicast+0x5aa/0x870
[  555.783971][T15030]  ? __pfx_netlink_unicast+0x10/0x10
[  555.784001][T15030]  netlink_sendmsg+0x8c8/0xdd0
[  555.784027][T15030]  ? __pfx_netlink_sendmsg+0x10/0x10
[  555.784051][T15030]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  555.784077][T15030]  ____sys_sendmsg+0xa5d/0xc30
[  555.784102][T15030]  ? copy_msghdr_from_user+0x10a/0x160
[  555.784126][T15030]  ? __pfx_____sys_sendmsg+0x10/0x10
[  555.784148][T15030]  ? __lock_acquire+0x433/0x22f0
[  555.784177][T15030]  ___sys_sendmsg+0x134/0x1d0
[  555.784198][T15030]  ? __pfx____sys_sendmsg+0x10/0x10
[  555.784216][T15030]  ? __lock_acquire+0x433/0x22f0
[  555.784260][T15030]  __sys_sendmsg+0x16d/0x220
[  555.784280][T15030]  ? __pfx___sys_sendmsg+0x10/0x10
[  555.784314][T15030]  do_syscall_64+0xcd/0xf80
[  555.784337][T15030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.784355][T15030] RIP: 0033:0x7efd7938f7c9
[  555.784371][T15030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  555.784388][T15030] RSP: 002b:00007efd7a25e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  555.784406][T15030] RAX: ffffffffffffffda RBX: 00007efd795e5fa0 RCX: 00007efd7938f7c9
[  555.784417][T15030] RDX: 00000000140000e4 RSI: 00002000000005c0 RDI: 0000000000000003
[  555.784427][T15030] RBP: 00007efd7a25e090 R08: 0000000000000000 R09: 0000000000000000
[  555.784438][T15030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  555.784452][T15030] R13: 00007efd795e6038 R14: 00007efd795e5fa0 R15: 00007fff40afc2a8
[  555.784492][T15030]  </TASK>
[  556.376929][T15036] FAULT_INJECTION: forcing a failure.
[  556.376929][T15036] name failslab, interval 1, probability 0, space 0, times 0
[  556.484228][T15036] CPU: 1 UID: 0 PID: 15036 Comm: syz.3.2052 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  556.484275][T15036] Tainted: [U]=USER
[  556.484284][T15036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  556.484301][T15036] Call Trace:
[  556.484310][T15036]  <TASK>
[  556.484320][T15036]  dump_stack_lvl+0x16c/0x1f0
[  556.484359][T15036]  should_fail_ex+0x512/0x640
[  556.484387][T15036]  ? kmem_cache_alloc_noprof+0x62/0x720
[  556.484434][T15036]  should_failslab+0xc2/0x120
[  556.484472][T15036]  kmem_cache_alloc_noprof+0x75/0x720
[  556.484515][T15036]  ? security_file_alloc+0x34/0x2b0
[  556.484558][T15036]  ? security_file_alloc+0x34/0x2b0
[  556.484592][T15036]  security_file_alloc+0x34/0x2b0
[  556.484629][T15036]  init_file+0x93/0x4c0
[  556.484669][T15036]  alloc_empty_file+0x73/0x1e0
[  556.484712][T15036]  path_openat+0xde/0x3140
[  556.484759][T15036]  ? __pfx_path_openat+0x10/0x10
[  556.484793][T15036]  ? __pfx_stack_trace_save+0x10/0x10
[  556.484822][T15036]  ? stack_depot_save_flags+0x29/0x9b0
[  556.484860][T15036]  do_filp_open+0x20b/0x470
[  556.484904][T15036]  ? kmem_cache_alloc_noprof+0x250/0x720
[  556.484948][T15036]  ? __pfx_do_filp_open+0x10/0x10
[  556.484981][T15036]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.485052][T15036]  do_open_execat+0xf9/0x3a0
[  556.485091][T15036]  ? __pfx_do_open_execat+0x10/0x10
[  556.485135][T15036]  alloc_bprm+0x2d/0x710
[  556.485170][T15036]  do_execveat_common.isra.0+0x1ce/0x610
[  556.485210][T15036]  __x64_sys_execve+0x8e/0xb0
[  556.485248][T15036]  do_syscall_64+0xcd/0xf80
[  556.485285][T15036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.485313][T15036] RIP: 0033:0x7f7ed3b8f7c9
[  556.485337][T15036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  556.485365][T15036] RSP: 002b:00007f7ed1df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  556.485394][T15036] RAX: ffffffffffffffda RBX: 00007f7ed3de5fa0 RCX: 00007f7ed3b8f7c9
[  556.485414][T15036] RDX: 0000200000001300 RSI: 0000000000000000 RDI: 0000200000000040
[  556.485433][T15036] RBP: 00007f7ed1df6090 R08: 0000000000000000 R09: 0000000000000000
[  556.485449][T15036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  556.485466][T15036] R13: 00007f7ed3de6038 R14: 00007f7ed3de5fa0 R15: 00007ffc565d0bb8
[  556.485504][T15036]  </TASK>
[  557.783632][T15052] FAULT_INJECTION: forcing a failure.
[  557.783632][T15052] name fail_futex, interval 1, probability 0, space 0, times 0
[  557.839353][T15052] CPU: 1 UID: 0 PID: 15052 Comm: syz.2.2056 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  557.839405][T15052] Tainted: [U]=USER
[  557.839415][T15052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  557.839433][T15052] Call Trace:
[  557.839444][T15052]  <TASK>
[  557.839456][T15052]  dump_stack_lvl+0x16c/0x1f0
[  557.839494][T15052]  should_fail_ex+0x512/0x640
[  557.839533][T15052]  get_futex_key+0x1d0/0x1560
[  557.839568][T15052]  ? look_up_user_keyrings+0x351/0x790
[  557.839601][T15052]  ? __pfx_get_futex_key+0x10/0x10
[  557.839634][T15052]  ? __pfx_look_up_user_keyrings+0x10/0x10
[  557.839678][T15052]  futex_wake+0xea/0x530
[  557.839717][T15052]  ? lookup_user_key+0x2ce/0x1300
[  557.839751][T15052]  ? __pfx_futex_wake+0x10/0x10
[  557.839815][T15052]  do_futex+0x1e3/0x350
[  557.839850][T15052]  ? __pfx_do_futex+0x10/0x10
[  557.839883][T15052]  ? _copy_to_user+0x48/0xd0
[  557.839918][T15052]  __x64_sys_futex+0x1e0/0x4c0
[  557.839958][T15052]  ? __pfx___x64_sys_futex+0x10/0x10
[  557.839991][T15052]  ? xfd_validate_state+0x61/0x180
[  557.840046][T15052]  do_syscall_64+0xcd/0xf80
[  557.840084][T15052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  557.840113][T15052] RIP: 0033:0x7efd7938f7c9
[  557.840138][T15052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  557.840167][T15052] RSP: 002b:00007efd7a25e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  557.840197][T15052] RAX: ffffffffffffffda RBX: 00007efd795e5fa8 RCX: 00007efd7938f7c9
[  557.840216][T15052] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efd795e5fac
[  557.840233][T15052] RBP: 00007efd795e5fa0 R08: 00007efd7a25f000 R09: 0000000000000000
[  557.840252][T15052] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  557.840270][T15052] R13: 00007efd795e6038 R14: 00007fff40afc1c0 R15: 00007fff40afc2a8
[  557.840311][T15052]  </TASK>
[  558.084241][T15059] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input178
[  559.307319][T15079] random: crng reseeded on system resumption
[  559.801129][T15086] FAULT_INJECTION: forcing a failure.
[  559.801129][T15086] name failslab, interval 1, probability 0, space 0, times 0
[  559.830942][T15086] CPU: 0 UID: 0 PID: 15086 Comm: syz.2.2062 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  559.830987][T15086] Tainted: [U]=USER
[  559.830996][T15086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  559.831011][T15086] Call Trace:
[  559.831023][T15086]  <TASK>
[  559.831034][T15086]  dump_stack_lvl+0x16c/0x1f0
[  559.831072][T15086]  should_fail_ex+0x512/0x640
[  559.831091][T15086]  ? kmem_cache_alloc_node_noprof+0x65/0x760
[  559.831122][T15086]  should_failslab+0xc2/0x120
[  559.831146][T15086]  kmem_cache_alloc_node_noprof+0x78/0x760
[  559.831175][T15086]  ? __alloc_skb+0x2b2/0x380
[  559.831195][T15086]  ? __alloc_skb+0x2b2/0x380
[  559.831209][T15086]  __alloc_skb+0x2b2/0x380
[  559.831225][T15086]  ? __pfx___alloc_skb+0x10/0x10
[  559.831241][T15086]  ? genl_rcv_msg+0x4bb/0x800
[  559.831272][T15086]  netlink_ack+0x15d/0xb80
[  559.831300][T15086]  netlink_rcv_skb+0x332/0x420
[  559.831321][T15086]  ? __pfx_genl_rcv_msg+0x10/0x10
[  559.831347][T15086]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  559.831377][T15086]  ? netlink_deliver_tap+0x1ae/0xd30
[  559.831401][T15086]  genl_rcv+0x28/0x40
[  559.831422][T15086]  netlink_unicast+0x5aa/0x870
[  559.831447][T15086]  ? __pfx_netlink_unicast+0x10/0x10
[  559.831469][T15086]  ? __pfx___might_resched+0x10/0x10
[  559.831501][T15086]  netlink_sendmsg+0x8c8/0xdd0
[  559.831526][T15086]  ? __pfx_netlink_sendmsg+0x10/0x10
[  559.831551][T15086]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  559.831573][T15086]  ____sys_sendmsg+0xa5d/0xc30
[  559.831598][T15086]  ? copy_msghdr_from_user+0x10a/0x160
[  559.831617][T15086]  ? __pfx_____sys_sendmsg+0x10/0x10
[  559.831639][T15086]  ? __lock_acquire+0x433/0x22f0
[  559.831668][T15086]  ___sys_sendmsg+0x134/0x1d0
[  559.831688][T15086]  ? __pfx____sys_sendmsg+0x10/0x10
[  559.831706][T15086]  ? __lock_acquire+0x433/0x22f0
[  559.831756][T15086]  __sys_sendmsg+0x16d/0x220
[  559.831776][T15086]  ? __pfx___sys_sendmsg+0x10/0x10
[  559.831813][T15086]  do_syscall_64+0xcd/0xf80
[  559.831836][T15086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  559.831854][T15086] RIP: 0033:0x7efd7938f7c9
[  559.831870][T15086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  559.831887][T15086] RSP: 002b:00007efd7a25e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  559.831905][T15086] RAX: ffffffffffffffda RBX: 00007efd795e5fa0 RCX: 00007efd7938f7c9
[  559.831916][T15086] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000003
[  559.831927][T15086] RBP: 00007efd7a25e090 R08: 0000000000000000 R09: 0000000000000000
[  559.831937][T15086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  559.831947][T15086] R13: 00007efd795e6038 R14: 00007efd795e5fa0 R15: 00007fff40afc2a8
[  559.831972][T15086]  </TASK>
[  561.501244][T15104] binder: 15103:15104 ioctl c018620c 0 returned -1
[  561.557477][T15104] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2067'.
[  562.342938][ T7366] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  563.492630][T15134] binder: 15133:15134 ioctl c018620c 0 returned -1
[  563.545480][T15134] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2074'.
[  565.281838][T15152] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  565.296316][T15152] EXT4-fs (sda1): This should not happen!! Data will be lost
[  565.296316][T15152] 
[  566.221491][T15151] Process accounting resumed
[  566.339892][T15155] random: crng reseeded on system resumption
[  567.426036][T15174] binder: 15172:15174 ioctl c018620c 0 returned -1
[  567.484273][T15174] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2086'.
[  567.553207][T15175] random: crng reseeded on system resumption
[  568.396209][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  568.402609][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  568.495481][T15183] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2087'.
[  568.964362][T15189] FAULT_INJECTION: forcing a failure.
[  568.964362][T15189] name failslab, interval 1, probability 0, space 0, times 0
[  569.003811][T15189] CPU: 1 UID: 0 PID: 15189 Comm: syz.2.2089 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  569.003861][T15189] Tainted: [U]=USER
[  569.003871][T15189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  569.003887][T15189] Call Trace:
[  569.003897][T15189]  <TASK>
[  569.003909][T15189]  dump_stack_lvl+0x16c/0x1f0
[  569.003947][T15189]  should_fail_ex+0x512/0x640
[  569.003987][T15189]  ? __kmalloc_cache_noprof+0x5f/0x770
[  569.004035][T15189]  should_failslab+0xc2/0x120
[  569.004076][T15189]  __kmalloc_cache_noprof+0x72/0x770
[  569.004121][T15189]  ? alloc_bprm+0x86/0x710
[  569.004160][T15189]  ? alloc_bprm+0x86/0x710
[  569.004190][T15189]  alloc_bprm+0x86/0x710
[  569.004227][T15189]  do_execveat_common.isra.0+0x1ce/0x610
[  569.004270][T15189]  __x64_sys_execve+0x8e/0xb0
[  569.004307][T15189]  do_syscall_64+0xcd/0xf80
[  569.004347][T15189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  569.004378][T15189] RIP: 0033:0x7efd7938f7c9
[  569.004403][T15189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  569.004431][T15189] RSP: 002b:00007efd7a25e038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  569.004461][T15189] RAX: ffffffffffffffda RBX: 00007efd795e5fa0 RCX: 00007efd7938f7c9
[  569.004480][T15189] RDX: 0000200000001300 RSI: 0000000000000000 RDI: 0000200000000040
[  569.004498][T15189] RBP: 00007efd7a25e090 R08: 0000000000000000 R09: 0000000000000000
[  569.004515][T15189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  569.004533][T15189] R13: 00007efd795e6038 R14: 00007efd795e5fa0 R15: 00007fff40afc2a8
[  569.004574][T15189]  </TASK>
[  570.194285][T15207] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  570.261393][T15207] EXT4-fs (sda1): This should not happen!! Data will be lost
[  570.261393][T15207] 
[  571.356993][T15217] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2097'.
[  571.507052][T15221] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input179
[  572.121533][T15232] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2100'.
[  575.065918][T15265] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.3.2109: Error -117 reading block bitmap for 4
[  575.524240][T15277] random: crng reseeded on system resumption
[  577.527143][T15318] random: crng reseeded on system resumption
[  578.735993][T15329] random: crng reseeded on system resumption
[  578.780240][T15337] busy
[  578.856114][T15331] Process accounting resumed
[  579.591722][T15353] hub 1-0:1.0: USB hub found
[  579.605496][T15353] hub 1-0:1.0: 1 port detected
[  579.655192][T15358] FAULT_INJECTION: forcing a failure.
[  579.655192][T15358] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  579.670812][T15358] CPU: 0 UID: 0 PID: 15358 Comm: syz.3.2131 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  579.670859][T15358] Tainted: [U]=USER
[  579.670868][T15358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  579.670885][T15358] Call Trace:
[  579.670895][T15358]  <TASK>
[  579.670914][T15358]  dump_stack_lvl+0x16c/0x1f0
[  579.670952][T15358]  should_fail_ex+0x512/0x640
[  579.670975][T15358]  _copy_to_user+0x32/0xd0
[  579.670996][T15358]  simple_read_from_buffer+0xcb/0x170
[  579.671019][T15358]  proc_fail_nth_read+0x197/0x240
[  579.671046][T15358]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  579.671074][T15358]  ? rw_verify_area+0xcf/0x6c0
[  579.671092][T15358]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  579.671118][T15358]  vfs_read+0x1e4/0xcf0
[  579.671139][T15358]  ? __pfx___mutex_lock+0x10/0x10
[  579.671164][T15358]  ? __pfx_vfs_read+0x10/0x10
[  579.671191][T15358]  ? __fget_files+0x20e/0x3c0
[  579.671218][T15358]  ksys_read+0x12a/0x250
[  579.671239][T15358]  ? __pfx_ksys_read+0x10/0x10
[  579.671267][T15358]  do_syscall_64+0xcd/0xf80
[  579.671289][T15358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  579.671307][T15358] RIP: 0033:0x7f7ed3b8e1dc
[  579.671323][T15358] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  579.671341][T15358] RSP: 002b:00007f7ed1df6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  579.671358][T15358] RAX: ffffffffffffffda RBX: 00007f7ed3de5fa0 RCX: 00007f7ed3b8e1dc
[  579.671370][T15358] RDX: 000000000000000f RSI: 00007f7ed1df60a0 RDI: 0000000000000004
[  579.671380][T15358] RBP: 00007f7ed1df6090 R08: 0000000000000000 R09: 0000000000000000
[  579.671390][T15358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  579.671401][T15358] R13: 00007f7ed3de6038 R14: 00007f7ed3de5fa0 R15: 00007ffc565d0bb8
[  579.671436][T15358]  </TASK>
[  580.331903][T15375] random: crng reseeded on system resumption
[  581.649681][T15407] FAULT_INJECTION: forcing a failure.
[  581.649681][T15407] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  581.681274][T15407] CPU: 1 UID: 0 PID: 15407 Comm: syz.1.2144 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  581.681322][T15407] Tainted: [U]=USER
[  581.681331][T15407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  581.681346][T15407] Call Trace:
[  581.681356][T15407]  <TASK>
[  581.681366][T15407]  dump_stack_lvl+0x16c/0x1f0
[  581.681404][T15407]  should_fail_ex+0x512/0x640
[  581.681438][T15407]  _copy_to_user+0x32/0xd0
[  581.681470][T15407]  simple_read_from_buffer+0xcb/0x170
[  581.681504][T15407]  proc_fail_nth_read+0x197/0x240
[  581.681543][T15407]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  581.681584][T15407]  ? rw_verify_area+0xcf/0x6c0
[  581.681611][T15407]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  581.681649][T15407]  vfs_read+0x1e4/0xcf0
[  581.681681][T15407]  ? __pfx___mutex_lock+0x10/0x10
[  581.681718][T15407]  ? __pfx_vfs_read+0x10/0x10
[  581.681771][T15407]  ? __fget_files+0x20e/0x3c0
[  581.681814][T15407]  ksys_read+0x12a/0x250
[  581.681844][T15407]  ? __pfx_ksys_read+0x10/0x10
[  581.681886][T15407]  do_syscall_64+0xcd/0xf80
[  581.681919][T15407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  581.681946][T15407] RIP: 0033:0x7fee95f8e1dc
[  581.681969][T15407] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  581.682001][T15407] RSP: 002b:00007fee96e51030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  581.682029][T15407] RAX: ffffffffffffffda RBX: 00007fee961e5fa0 RCX: 00007fee95f8e1dc
[  581.682047][T15407] RDX: 000000000000000f RSI: 00007fee96e510a0 RDI: 0000000000000006
[  581.682064][T15407] RBP: 00007fee96e51090 R08: 0000000000000000 R09: 0000000000000000
[  581.682080][T15407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  581.682096][T15407] R13: 00007fee961e6038 R14: 00007fee961e5fa0 R15: 00007fff42844bc8
[  581.682135][T15407]  </TASK>
[  581.719497][T15409] FAULT_INJECTION: forcing a failure.
[  581.719497][T15409] name failslab, interval 1, probability 0, space 0, times 0
[  581.937011][T15409] CPU: 1 UID: 0 PID: 15409 Comm: syz.2.2145 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  581.937050][T15409] Tainted: [U]=USER
[  581.937057][T15409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  581.937067][T15409] Call Trace:
[  581.937074][T15409]  <TASK>
[  581.937081][T15409]  dump_stack_lvl+0x16c/0x1f0
[  581.937108][T15409]  should_fail_ex+0x512/0x640
[  581.937127][T15409]  ? kmem_cache_alloc_noprof+0x62/0x720
[  581.937159][T15409]  should_failslab+0xc2/0x120
[  581.937183][T15409]  kmem_cache_alloc_noprof+0x75/0x720
[  581.937226][T15409]  ? alloc_empty_file+0x55/0x1e0
[  581.937274][T15409]  ? alloc_empty_file+0x55/0x1e0
[  581.937313][T15409]  alloc_empty_file+0x55/0x1e0
[  581.937358][T15409]  alloc_file_pseudo+0x13a/0x230
[  581.937402][T15409]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  581.937450][T15409]  ? _raw_spin_unlock+0x28/0x50
[  581.937477][T15409]  ? alloc_fd+0x471/0x7d0
[  581.937517][T15409]  __anon_inode_getfile+0xe8/0x280
[  581.937568][T15409]  __anon_inode_getfd+0x5c/0x150
[  581.937616][T15409]  do_inotify_init+0x497/0x5f0
[  581.937642][T15409]  ? rcu_is_watching+0x12/0xc0
[  581.937683][T15409]  __x64_sys_inotify_init1+0x30/0x40
[  581.937712][T15409]  do_syscall_64+0xcd/0xf80
[  581.937748][T15409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  581.937776][T15409] RIP: 0033:0x7efd7938f7c9
[  581.937800][T15409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  581.937829][T15409] RSP: 002b:00007efd7a25e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000126
[  581.937858][T15409] RAX: ffffffffffffffda RBX: 00007efd795e5fa0 RCX: 00007efd7938f7c9
[  581.937876][T15409] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0003000000000000
[  581.937893][T15409] RBP: 00007efd79413f91 R08: 0000000000000000 R09: 0000000000000000
[  581.937921][T15409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  581.937939][T15409] R13: 00007efd795e6038 R14: 00007efd795e5fa0 R15: 00007fff40afc2a8
[  581.937980][T15409]  </TASK>
[  584.545170][T15452] random: crng reseeded on system resumption
[  585.322425][T15462] [U]  
[  585.325247][T15462] [U] 
[  585.327949][T15462] [U] 
[  585.330640][T15462] [U] 
[  585.333507][T15462] [U] 
[  585.336209][T15462] [U] 
[  585.338914][T15462] [U] 
[  585.341634][T15462] [U] 
[  585.344452][T15462] [U] 
[  585.347169][T15462] [U] 
[  585.349879][T15462] [U] 
[  585.352587][T15462] [U] 
[  585.366861][T15462] [U] 
[  585.369593][T15462] [U] 
[  585.372283][T15462] [U] 
[  585.374976][T15462] [U] 
[  585.414459][T15462] [U] 
[  585.417239][T15462] [U] 
[  585.419997][T15462] [U] 
[  585.422741][T15462] [U] 
[  585.451615][T15462] [U] 
[  585.454369][T15462] [U] �@.��
[  585.457548][T15462] [U] ��M��6Jjo�� ��A��ɣ_�Q��Ed6����5bBD{��C�C�6Z{���N����i�N��'ʏ{�ĕ�,x��V�����ˍ�
[  585.468142][T15462] [U] w=J���ۦ��>���0^��~�}x�W�v��73Xe&q�[�p�+�C+5bA˱�%Z�п�(�q�t�kD�F��I��ѯ=&mZܨ�t����db��؍
�&���%^��$o�M�h��
[  585.482026][T15462] [U] v#��.��_�T��{v��2~*���_
[  585.486961][T15462] [U] �UB�,�0
[  585.490423][T15462] [U] *�MLj�d��Ј}������e��
�at�<�:�Lq���1仂,�
[  585.497354][T15462] [U] ��84�����/�~5X�����@
[  585.502042][T15462] [U] �8���A��l�:9�Hr)��ҩ�}$i�XSE8��g�W#�˜���a�f�'�|��tO���.�K2��vkK������IG�D.�M�
�E�B�
�͈λќ����t�����?蠄����p�h����W�%c�L�0�8��kaZ�SB�W�����:H�W����X{���wo(��<�r&z.���E�w�儫�4[P��F���T�z;0�[�5�(��q�������+�m�����1
9]���
[  585.527472][T15462] [U] !��,նN0'p�=Y�R��7CA(��VgqI���H�Y0A0���%r~���
�
[  585.534778][T15462] [U] ��2���h.�kQ�EP?��t���1X���
[  585.540074][T15462] [U] �}�%�d�|���>�x>���Q���2�~�9Wv��n,�
[  585.546490][T15462] [U] v�	�.�e�(��d�j#M������V?�
[  585.551422][T15462] [U] އ+�@�>U=���V���Q��:&���u[%Xf2���k��	O�(mç�DZ�
[  585.647944][T15462] [U] а2v7x�_n�	���$n�����DŽG+�k�M+�����������:���C+��O6kI6���w/�O
[  585.657085][T15462] [U] 
[  585.659840][T15462] [U] 
[  585.662584][T15462] [U] 
[  585.893006][T15462] [U] 
[  587.047116][T15483] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input180
[  587.443281][T15484] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input181
[  588.169072][T15500] random: crng reseeded on system resumption
[  588.486860][T15513] FAULT_INJECTION: forcing a failure.
[  588.486860][T15513] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  588.500580][T15513] CPU: 0 UID: 0 PID: 15513 Comm: syz.1.2170 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  588.500639][T15513] Tainted: [U]=USER
[  588.500648][T15513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  588.500664][T15513] Call Trace:
[  588.500674][T15513]  <TASK>
[  588.500685][T15513]  dump_stack_lvl+0x16c/0x1f0
[  588.500724][T15513]  should_fail_ex+0x512/0x640
[  588.500760][T15513]  _copy_from_user+0x2e/0xd0
[  588.500794][T15513]  core_sys_select+0x361/0xae0
[  588.500841][T15513]  ? __pfx_core_sys_select+0x10/0x10
[  588.500884][T15513]  ? proc_fail_nth_write+0x9f/0x220
[  588.500959][T15513]  ? do_sys_openat2+0x190/0x280
[  588.500988][T15513]  ? __pfx_do_sys_openat2+0x10/0x10
[  588.501024][T15513]  kern_select+0x15d/0x1e0
[  588.501059][T15513]  ? __pfx_kern_select+0x10/0x10
[  588.501099][T15513]  ? __pfx_ksys_write+0x10/0x10
[  588.501142][T15513]  __x64_sys_select+0xbd/0x160
[  588.501176][T15513]  ? do_syscall_64+0x91/0xf80
[  588.501210][T15513]  ? lockdep_hardirqs_on+0x7c/0x110
[  588.501245][T15513]  do_syscall_64+0xcd/0xf80
[  588.501282][T15513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.501313][T15513] RIP: 0033:0x7fee95f8f7c9
[  588.501337][T15513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  588.501367][T15513] RSP: 002b:00007fee96e0f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  588.501397][T15513] RAX: ffffffffffffffda RBX: 00007fee961e6180 RCX: 00007fee95f8f7c9
[  588.501418][T15513] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  588.501436][T15513] RBP: 00007fee96e0f090 R08: 0000000000000000 R09: 0000000000000000
[  588.501454][T15513] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  588.501472][T15513] R13: 00007fee961e6218 R14: 00007fee961e6180 R15: 00007fff42844bc8
[  588.501514][T15513]  </TASK>
[  589.532704][T15529] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input182
[  590.221606][T15530] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input183
[  590.921611][T15554] random: crng reseeded on system resumption
[  591.132420][T15566] FAULT_INJECTION: forcing a failure.
[  591.132420][T15566] name failslab, interval 1, probability 0, space 0, times 0
[  591.187134][T15566] CPU: 0 UID: 0 PID: 15566 Comm: syz.2.2182 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  591.187165][T15566] Tainted: [U]=USER
[  591.187171][T15566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  591.187181][T15566] Call Trace:
[  591.187187][T15566]  <TASK>
[  591.187194][T15566]  dump_stack_lvl+0x16c/0x1f0
[  591.187219][T15566]  should_fail_ex+0x512/0x640
[  591.187238][T15566]  ? kmem_cache_alloc_noprof+0x62/0x720
[  591.187269][T15566]  should_failslab+0xc2/0x120
[  591.187293][T15566]  kmem_cache_alloc_noprof+0x75/0x720
[  591.187320][T15566]  ? vm_area_alloc+0x1f/0x160
[  591.187348][T15566]  ? vm_area_alloc+0x1f/0x160
[  591.187370][T15566]  vm_area_alloc+0x1f/0x160
[  591.187394][T15566]  create_init_stack_vma+0x29/0x700
[  591.187422][T15566]  alloc_bprm+0x420/0x710
[  591.187450][T15566]  do_execveat_common.isra.0+0x1ce/0x610
[  591.187476][T15566]  __x64_sys_execve+0x8e/0xb0
[  591.187497][T15566]  do_syscall_64+0xcd/0xf80
[  591.187526][T15566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.187555][T15566] RIP: 0033:0x7efd7938f7c9
[  591.187579][T15566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  591.187607][T15566] RSP: 002b:00007efd7a21c038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  591.187637][T15566] RAX: ffffffffffffffda RBX: 00007efd795e6180 RCX: 00007efd7938f7c9
[  591.187657][T15566] RDX: 0000200000001300 RSI: 0000000000000000 RDI: 0000200000000040
[  591.187675][T15566] RBP: 00007efd7a21c090 R08: 0000000000000000 R09: 0000000000000000
[  591.187702][T15566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  591.187719][T15566] R13: 00007efd795e6218 R14: 00007efd795e6180 R15: 00007fff40afc2a8
[  591.187760][T15566]  </TASK>
[  591.720915][T15570] FAULT_INJECTION: forcing a failure.
[  591.720915][T15570] name failslab, interval 1, probability 0, space 0, times 0
[  591.736270][T15570] CPU: 0 UID: 0 PID: 15570 Comm: syz.0.2183 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  591.736321][T15570] Tainted: [U]=USER
[  591.736331][T15570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  591.736349][T15570] Call Trace:
[  591.736358][T15570]  <TASK>
[  591.736370][T15570]  dump_stack_lvl+0x16c/0x1f0
[  591.736409][T15570]  should_fail_ex+0x512/0x640
[  591.736440][T15570]  ? __kmalloc_noprof+0xca/0x870
[  591.736488][T15570]  should_failslab+0xc2/0x120
[  591.736549][T15570]  __kmalloc_noprof+0xdd/0x870
[  591.736607][T15570]  ? string_escape_mem+0x6c8/0xde0
[  591.736646][T15570]  ? kstrdup_quotable+0xc2/0x190
[  591.736693][T15570]  ? kstrdup_quotable+0xc2/0x190
[  591.736730][T15570]  kstrdup_quotable+0xc2/0x190
[  591.736771][T15570]  ? __pfx_kstrdup_quotable+0x10/0x10
[  591.736813][T15570]  ? get_cmdline+0x86/0x380
[  591.736853][T15570]  kstrdup_quotable_cmdline+0x127/0x210
[  591.736900][T15570]  __report_access+0x77/0x370
[  591.736941][T15570]  ? _raw_spin_unlock_irq+0x23/0x50
[  591.736979][T15570]  task_work_run+0x150/0x240
[  591.737016][T15570]  ? __pfx_task_work_run+0x10/0x10
[  591.737062][T15570]  exit_to_user_mode_loop+0xec/0x130
[  591.737099][T15570]  do_syscall_64+0x4d8/0xf80
[  591.737139][T15570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.737171][T15570] RIP: 0033:0x7f0543b8f7c9
[  591.737197][T15570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  591.737228][T15570] RSP: 002b:00007f0544945038 EFLAGS: 00000246 ORIG_RAX: 0000000000000065
[  591.737258][T15570] RAX: ffffffffffffffff RBX: 00007f0543de5fa0 RCX: 00007f0543b8f7c9
[  591.737277][T15570] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000004206
[  591.737295][T15570] RBP: 00007f0543c13f91 R08: 0000000000000000 R09: 0000000000000000
[  591.737314][T15570] R10: 0000000000200005 R11: 0000000000000246 R12: 0000000000000000
[  591.737332][T15570] R13: 00007f0543de6038 R14: 00007f0543de5fa0 R15: 00007ffcf698c5d8
[  591.737374][T15570]  </TASK>
[  591.737848][T15570] ptrace attach of "./syz-executor exec"[5835] was attempted by "(null)"[15570]
[  592.207246][T15578] binder: 15575:15578 unknown command 0
[  592.220790][T15578] binder: 15575:15578 ioctl c0306201 2000000000c0 returned -22
[  592.245906][T15580] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input184
[  592.691796][T15583] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input185
[  593.135427][T15596] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  593.188504][T15599] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  593.933216][T15615] random: crng reseeded on system resumption
[  595.007618][T15632] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2198'.
[  595.305108][T15640] Unable to find swap-space signature
[  595.342671][T15640] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input186
[  595.595256][   T30] audit: type=1800 audit(4294968574.560:16): pid=15632 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2198" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  596.261402][T15651] FAULT_INJECTION: forcing a failure.
[  596.261402][T15651] name failslab, interval 1, probability 0, space 0, times 0
[  596.282184][T15651] CPU: 0 UID: 0 PID: 15651 Comm: syz.1.2202 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  596.282233][T15651] Tainted: [U]=USER
[  596.282242][T15651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  596.282260][T15651] Call Trace:
[  596.282270][T15651]  <TASK>
[  596.282281][T15651]  dump_stack_lvl+0x16c/0x1f0
[  596.282322][T15651]  should_fail_ex+0x512/0x640
[  596.282352][T15651]  ? kmem_cache_alloc_noprof+0x62/0x720
[  596.282403][T15651]  should_failslab+0xc2/0x120
[  596.282441][T15651]  kmem_cache_alloc_noprof+0x75/0x720
[  596.282485][T15651]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  596.282526][T15651]  ? mas_preallocate+0xe6a/0x11f0
[  596.282570][T15651]  ? mas_preallocate+0xe6a/0x11f0
[  596.282604][T15651]  mas_preallocate+0xe6a/0x11f0
[  596.282655][T15651]  ? __pfx_mas_preallocate+0x10/0x10
[  596.282705][T15651]  ? __pfx_mt_find+0x10/0x10
[  596.282747][T15651]  vma_link+0x12e/0x6a0
[  596.282778][T15651]  ? __pfx_vma_link+0x10/0x10
[  596.282819][T15651]  ? cap_capable+0xd1/0x3f0
[  596.282858][T15651]  insert_vm_struct+0xf4/0x2d0
[  596.282887][T15651]  create_init_stack_vma+0x2da/0x700
[  596.282922][T15651]  alloc_bprm+0x420/0x710
[  596.282956][T15651]  do_execveat_common.isra.0+0x1ce/0x610
[  596.282992][T15651]  __x64_sys_execve+0x8e/0xb0
[  596.283023][T15651]  do_syscall_64+0xcd/0xf80
[  596.283060][T15651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.283088][T15651] RIP: 0033:0x7fee95f8f7c9
[  596.283111][T15651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  596.283138][T15651] RSP: 002b:00007fee96e0f038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  596.283163][T15651] RAX: ffffffffffffffda RBX: 00007fee961e6180 RCX: 00007fee95f8f7c9
[  596.283182][T15651] RDX: 0000200000001300 RSI: 0000000000000000 RDI: 0000200000000040
[  596.283197][T15651] RBP: 00007fee96e0f090 R08: 0000000000000000 R09: 0000000000000000
[  596.283214][T15651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  596.283230][T15651] R13: 00007fee961e6218 R14: 00007fee961e6180 R15: 00007fff42844bc8
[  596.283269][T15651]  </TASK>
[  596.897799][T15660] random: crng reseeded on system resumption
[  597.450031][T15668] zswap: compressor  not available
[  597.461888][T15653] Process accounting paused
[  597.916025][T15693] binder: 15691:15693 ioctl c018620c 0 returned -22
[  597.926067][T15693] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2213'.
[  598.151062][T15701] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2216'.
[  598.894868][T15711] zswap: compressor  not available
[  599.106439][T15718] netlink: 'syz.2.2220': attribute type 11 has an invalid length.
[  599.256162][T15721] random: crng reseeded on system resumption
[  599.614899][T15728] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2224'.
[  602.089598][T15782] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input187
[  602.237915][T15780] zswap: compressor  not available
[  602.414445][T15791] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2239'.
[  602.753074][T15786] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input188
[  602.842546][T15797] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2240'.
[  604.344165][T15817] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  604.351986][T15817] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  604.359303][T15817] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  604.366025][T15817] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  605.813361][T15834] random: crng reseeded on system resumption
[  605.840742][T15835] FAULT_INJECTION: forcing a failure.
[  605.840742][T15835] name failslab, interval 1, probability 0, space 0, times 0
[  605.855115][T15835] CPU: 0 UID: 0 PID: 15835 Comm: syz.3.2249 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  605.855167][T15835] Tainted: [U]=USER
[  605.855178][T15835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  605.855197][T15835] Call Trace:
[  605.855206][T15835]  <TASK>
[  605.855217][T15835]  dump_stack_lvl+0x16c/0x1f0
[  605.855255][T15835]  should_fail_ex+0x512/0x640
[  605.855274][T15835]  ? kmem_cache_alloc_noprof+0x62/0x720
[  605.855312][T15835]  should_failslab+0xc2/0x120
[  605.855337][T15835]  kmem_cache_alloc_noprof+0x75/0x720
[  605.855366][T15835]  ? __proc_create+0x2c8/0x8d0
[  605.855393][T15835]  ? __proc_create+0x2c8/0x8d0
[  605.855414][T15835]  __proc_create+0x2c8/0x8d0
[  605.855435][T15835]  ? __pfx___proc_create+0x10/0x10
[  605.855458][T15835]  ? _raw_write_unlock+0x28/0x50
[  605.855478][T15835]  ? proc_register+0x559/0x8b0
[  605.855501][T15835]  proc_create_reg+0x7d/0x180
[  605.855524][T15835]  proc_create_seq_private+0x8e/0x180
[  605.855548][T15835]  ? __pfx_proc_create_seq_private+0x10/0x10
[  605.855573][T15835]  ? __pfx_nl_fib_input+0x10/0x10
[  605.855602][T15835]  ? __pfx_ip_rt_do_proc_init+0x10/0x10
[  605.855627][T15835]  ip_rt_do_proc_init+0xac/0x1b0
[  605.855653][T15835]  ops_init+0x1e2/0x5f0
[  605.855676][T15835]  setup_net+0x11d/0x3a0
[  605.855697][T15835]  ? __pfx_setup_net+0x10/0x10
[  605.855715][T15835]  ? lockdep_init_map_type+0x5c/0x270
[  605.855737][T15835]  ? mutex_init_lockep+0x110/0x150
[  605.855761][T15835]  copy_net_ns+0x351/0x5d0
[  605.855788][T15835]  create_new_namespaces+0x3ea/0xab0
[  605.855826][T15835]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  605.855853][T15835]  ksys_unshare+0x45b/0xa40
[  605.855870][T15835]  ? __pfx_ksys_unshare+0x10/0x10
[  605.855898][T15835]  ? xfd_validate_state+0x61/0x180
[  605.855933][T15835]  __x64_sys_unshare+0x31/0x40
[  605.855949][T15835]  do_syscall_64+0xcd/0xf80
[  605.855972][T15835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  605.855990][T15835] RIP: 0033:0x7f7ed3b8f7c9
[  605.856006][T15835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  605.856024][T15835] RSP: 002b:00007f7ed1df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  605.856042][T15835] RAX: ffffffffffffffda RBX: 00007f7ed3de5fa0 RCX: 00007f7ed3b8f7c9
[  605.856054][T15835] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  605.856065][T15835] RBP: 00007f7ed3c13f91 R08: 0000000000000000 R09: 0000000000000000
[  605.856075][T15835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  605.856085][T15835] R13: 00007f7ed3de6038 R14: 00007f7ed3de5fa0 R15: 00007ffc565d0bb8
[  605.856109][T15835]  </TASK>
[  606.324238][T15841] binder: 15840:15841 ioctl c018620c 0 returned -22
[  606.333905][T15841] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2250'.
[  606.423527][ T6515] Bluetooth: hci1: command 0x0c1a tx timeout
[  606.429811][T15846] Bluetooth: hci0: command 0x0c1a tx timeout
[  606.436218][ T7366] Bluetooth: hci3: command 0x0c1a tx timeout
[  606.443834][T10792] Bluetooth: hci2: command 0x0c1a tx timeout
[  606.765457][T15854] random: crng reseeded on system resumption
[  608.439121][T15880] [U]  
[  608.441952][T15880] [U] 
[  608.444679][T15880] [U] 
[  608.447558][T15880] [U] 
[  608.496907][T15880] [U] 
[  608.499673][T15880] [U] 
[  608.502369][T15880] [U] 
[  608.505075][T15880] [U] 
[  608.537704][T15880] [U] 
[  608.540437][T15880] [U] 
[  608.543146][T15880] [U] 
[  608.545838][T15880] [U] 
[  608.588132][T15880] [U] 
[  608.590866][T15880] [U] 
[  608.593581][T15880] [U] 
[  608.596276][T15880] [U] 
[  608.606519][T15880] [U] 
[  608.609265][T15880] [U] 
[  608.611965][T15880] [U] 
[  608.614659][T15880] [U] 
[  608.618979][T15880] [U] 
[  608.621684][T15880] [U] 
[  608.624380][T15880] [U] 
[  608.627072][T15880] [U] 
[  608.630873][T15880] [U] 
[  608.633575][T15880] [U] 
[  608.636264][T15880] [U] 
[  608.638951][T15880] [U] 
[  608.668869][T15880] [U] 
[  608.671621][T15880] [U] 
[  608.674313][T15880] [U] 
[  608.677006][T15880] [U] 
[  608.690224][T15880] [U] 
[  608.692976][T15880] [U] 
[  608.695695][T15880] [U] 
[  608.698407][T15880] [U] 
[  608.707349][T15880] [U] 
[  608.710082][T15880] [U] 
[  608.712774][T15880] [U] 
[  608.715650][T15880] [U] 
[  608.723436][T15880] [U] 
[  608.726190][T15880] [U] 
[  608.728883][T15880] [U] 
[  608.731600][T15880] [U] 
[  608.738627][T15880] [U] 
[  608.741421][T15880] [U] 
[  608.744151][T15880] [U] 
[  608.746875][T15880] [U] 
[  608.755350][T15880] [U] 
[  608.758091][T15880] [U] 
[  608.760784][T15880] [U] 
[  608.763478][T15880] [U] 
[  608.768794][T15880] [U] 
[  608.771542][T15880] [U] 
[  608.774258][T15880] [U] 
[  608.776979][T15880] [U] 
[  608.838644][T15880] [U] 
[  608.841406][T15880] [U] 
[  608.844149][T15880] [U] 
[  608.846896][T15880] [U] 
[  608.853168][T15880] [U] 
[  608.855892][T15880] [U] 
[  608.858620][T15880] [U] 
[  608.861311][T15880] [U] 
[  608.927286][T15880] [U] 
[  608.930024][T15880] [U] 
[  608.932735][T15880] [U] 
[  608.935443][T15880] [U] 
[  608.941337][T15880] [U] 
[  608.944107][T15880] [U] 
[  608.946850][T15880] [U] 
[  608.949592][T15880] [U] 
[  608.995031][T15880] [U] 
[  608.997773][T15880] [U] 
[  609.000488][T15880] [U] 
[  609.003222][T15880] [U] 
[  609.015072][T15880] [U] 
[  609.017811][T15880] [U] 
[  609.020516][T15880] [U] 
[  609.023235][T15880] [U] 
[  609.175611][T15880] [U] 
[  609.178374][T15880] [U] 
[  609.181069][T15880] [U] 
[  609.183758][T15880] [U] 
[  609.271101][T15880] [U] 
[  609.273845][T15880] [U] 
[  609.276541][T15880] [U] 
[  609.279250][T15880] [U] 
[  609.279672][T15885] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137
[  609.365104][T15885] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138
[  609.390914][T15885] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum
[  609.400798][T15880] [U] 
[  609.406753][T15880] [U] 
[  609.409450][T15880] [U] 
[  609.412140][T15880] [U] 
[  609.487580][T15880] [U] 
[  609.631274][T15880] Process accounting paused
[  609.853017][T10792] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  610.368222][T15893] zswap: compressor  not available
[  610.585635][T15846] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  610.597720][T15846] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  610.606345][T15846] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  610.615523][T15846] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  610.625084][T15846] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  610.661521][ T6997] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  610.837132][ T6997] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  610.994954][ T6997] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  611.145455][ T6997] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  611.208138][T15915] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input189
[  611.328626][T15923] FAULT_INJECTION: forcing a failure.
[  611.328626][T15923] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  611.357509][T15923] CPU: 0 UID: 0 PID: 15923 Comm: syz.0.2266 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  611.357555][T15923] Tainted: [U]=USER
[  611.357565][T15923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  611.357581][T15923] Call Trace:
[  611.357591][T15923]  <TASK>
[  611.357602][T15923]  dump_stack_lvl+0x16c/0x1f0
[  611.357648][T15923]  should_fail_ex+0x512/0x640
[  611.357684][T15923]  should_fail_alloc_page+0xe7/0x130
[  611.357726][T15923]  prepare_alloc_pages+0x3c2/0x610
[  611.357768][T15923]  __alloc_frozen_pages_noprof+0x18b/0x2440
[  611.357815][T15923]  ? __alloc_frozen_pages_noprof+0x292/0x2440
[  611.357883][T15923]  ? find_held_lock+0x2b/0x80
[  611.357927][T15923]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  611.357973][T15923]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  611.358024][T15923]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  611.358052][T15923]  ? is_bpf_text_address+0x94/0x1a0
[  611.358087][T15923]  ? kernel_text_address+0x8d/0x100
[  611.358123][T15923]  ? register_lock_class+0x41/0x4b0
[  611.358151][T15923]  ? arch_stack_walk+0xa6/0x100
[  611.358190][T15923]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  611.358232][T15923]  ? policy_nodemask+0xea/0x4e0
[  611.358272][T15923]  alloc_pages_mpol+0x1fb/0x550
[  611.358309][T15923]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  611.358346][T15923]  ? pti_set_user_pgtbl+0x2a/0x50
[  611.358388][T15923]  ? find_held_lock+0x2b/0x80
[  611.358434][T15923]  alloc_pages_noprof+0x12d/0x180
[  611.358472][T15923]  __pmd_alloc+0x3b/0x8b0
[  611.358504][T15923]  ? __pud_alloc+0x4fe/0x640
[  611.358539][T15923]  __handle_mm_fault+0xa3c/0x2a30
[  611.358590][T15923]  ? __pfx___handle_mm_fault+0x10/0x10
[  611.358666][T15923]  handle_mm_fault+0x3fe/0xad0
[  611.358714][T15923]  __get_user_pages+0x605/0x33c0
[  611.358759][T15923]  ? __vma_enter_locked+0x163/0x3f0
[  611.358803][T15923]  ? __pfx___get_user_pages+0x10/0x10
[  611.358857][T15923]  get_user_pages_remote+0x243/0xab0
[  611.358900][T15923]  ? __pfx_get_user_pages_remote+0x10/0x10
[  611.358953][T15923]  get_arg_page+0xf4/0x310
[  611.358986][T15923]  ? __pfx_get_arg_page+0x10/0x10
[  611.359032][T15923]  ? __might_fault+0xe3/0x190
[  611.359087][T15923]  copy_string_kernel+0x1c0/0x2c0
[  611.359116][T15923]  ? get_user_arg_ptr.isra.0+0x55/0xb0
[  611.359155][T15923]  do_execveat_common.isra.0+0x2ed/0x610
[  611.359198][T15923]  __x64_sys_execve+0x8e/0xb0
[  611.359232][T15923]  do_syscall_64+0xcd/0xf80
[  611.359266][T15923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  611.359294][T15923] RIP: 0033:0x7f0543b8f7c9
[  611.359317][T15923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  611.359344][T15923] RSP: 002b:00007f0541dd5038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  611.359372][T15923] RAX: ffffffffffffffda RBX: 00007f0543de6180 RCX: 00007f0543b8f7c9
[  611.359390][T15923] RDX: 0000200000001300 RSI: 0000000000000000 RDI: 0000200000000040
[  611.359406][T15923] RBP: 00007f0541dd5090 R08: 0000000000000000 R09: 0000000000000000
[  611.359422][T15923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  611.359438][T15923] R13: 00007f0543de6218 R14: 00007f0543de6180 R15: 00007ffcf698c5d8
[  611.359478][T15923]  </TASK>
[  612.314619][T15922] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input190
[  612.579595][T15900] chnl_net:caif_netlink_parms(): no params data found
[  612.653415][T15846] Bluetooth: hci1: command tx timeout
[  612.679305][ T6997] bridge_slave_0: left allmulticast mode
[  612.695372][ T6997] bridge_slave_0: left promiscuous mode
[  612.713974][ T6997] bridge0: port 1(bridge_slave_0) entered disabled state
[  613.223103][ T6997] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  613.253362][ T6997] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  613.276864][ T6997] bond0 (unregistering): Released all slaves
[  613.533707][ T6997] tipc: Left network mode
[  613.796321][T15900] bridge0: port 1(bridge_slave_0) entered blocking state
[  613.845817][T15900] bridge0: port 1(bridge_slave_0) entered disabled state
[  613.869730][T15900] bridge_slave_0: entered allmulticast mode
[  613.892787][T15900] bridge_slave_0: entered promiscuous mode
[  614.384395][T15900] bridge0: port 2(bridge_slave_1) entered blocking state
[  614.391616][T15900] bridge0: port 2(bridge_slave_1) entered disabled state
[  614.431118][T15900] bridge_slave_1: entered allmulticast mode
[  614.485132][T15900] bridge_slave_1: entered promiscuous mode
[  614.626684][T15900] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  614.681768][T15900] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  614.736271][T15846] Bluetooth: hci1: command tx timeout
[  614.747055][ T6997] hsr_slave_0: left promiscuous mode
[  614.773916][ T6997] hsr_slave_1: left promiscuous mode
[  614.782359][ T6997] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  614.790699][ T6997] batman_adv: batadv0: Removing interface: batadv_slave_0
[  614.824784][ T6997] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  614.832382][ T6997] batman_adv: batadv0: Removing interface: batadv_slave_1
[  614.892563][ T6997] veth1_macvtap: left promiscuous mode
[  614.898975][ T6997] veth0_macvtap: left promiscuous mode
[  615.885628][ T6997] team0 (unregistering): Port device team_slave_0 removed
[  616.527691][T15900] team0: Port device team_slave_0 added
[  616.567530][T15900] team0: Port device team_slave_1 added
[  616.677389][T15900] batman_adv: batadv0: Adding interface: batadv_slave_0
[  616.701046][T15900] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  616.793891][T15900] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  616.813524][T15846] Bluetooth: hci1: command tx timeout
[  616.836475][T15900] batman_adv: batadv0: Adding interface: batadv_slave_1
[  616.851410][T15900] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  616.881911][T15900] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  617.036407][T15900] hsr_slave_0: entered promiscuous mode
[  617.044571][T15900] hsr_slave_1: entered promiscuous mode
[  617.051012][T15900] debugfs: 'hsr0' already exists in 'hsr'
[  617.057997][T15900] Cannot create hsr debugfs directory
[  617.628096][T16005] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2279'.
[  617.690853][T16005] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  617.720601][T16005] batman_adv: batadv0: Removing interface: batadv_slave_0
[  617.744689][T16005] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  617.754629][T16005] batman_adv: batadv0: Removing interface: batadv_slave_1
[  618.896367][T15846] Bluetooth: hci1: command tx timeout
[  622.033620][T16104] random: crng reseeded on system resumption
[  622.186001][T16106] random: crng reseeded on system resumption
[  622.787750][T16121] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2303'.
[  624.290986][T16135] random: crng reseeded on system resumption
[  628.450563][T16178] FAULT_INJECTION: forcing a failure.
[  628.450563][T16178] name failslab, interval 1, probability 0, space 0, times 0
[  628.463652][T16178] CPU: 1 UID: 0 PID: 16178 Comm: syz.2.2320 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  628.463701][T16178] Tainted: [U]=USER
[  628.463711][T16178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  628.463729][T16178] Call Trace:
[  628.463740][T16178]  <TASK>
[  628.463752][T16178]  dump_stack_lvl+0x16c/0x1f0
[  628.463794][T16178]  should_fail_ex+0x512/0x640
[  628.463827][T16178]  ? __kmalloc_cache_noprof+0x5f/0x770
[  628.463879][T16178]  should_failslab+0xc2/0x120
[  628.463919][T16178]  __kmalloc_cache_noprof+0x72/0x770
[  628.463966][T16178]  ? percpu_ref_init+0xec/0x410
[  628.464019][T16178]  ? percpu_ref_init+0xec/0x410
[  628.464060][T16178]  ? __pfx_free_ioctx_reqs+0x10/0x10
[  628.464095][T16178]  percpu_ref_init+0xec/0x410
[  628.464137][T16178]  ? __init_waitqueue_head+0xca/0x150
[  628.464180][T16178]  ioctx_alloc+0x3bc/0x20f0
[  628.464238][T16178]  ? find_held_lock+0x2b/0x80
[  628.464279][T16178]  ? __pfx_ioctx_alloc+0x10/0x10
[  628.464319][T16178]  ? __might_fault+0x13b/0x190
[  628.464376][T16178]  __x64_sys_io_setup+0xc9/0x210
[  628.464423][T16178]  do_syscall_64+0xcd/0xf80
[  628.464470][T16178]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  628.464501][T16178] RIP: 0033:0x7efd7938f7c9
[  628.464526][T16178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  628.464557][T16178] RSP: 002b:00007efd7a25e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  628.464587][T16178] RAX: ffffffffffffffda RBX: 00007efd795e5fa0 RCX: 00007efd7938f7c9
[  628.464607][T16178] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 000000000000000e
[  628.464625][T16178] RBP: 00007efd79413f91 R08: 0000000000000000 R09: 0000000000000000
[  628.464641][T16178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  628.464655][T16178] R13: 00007efd795e6038 R14: 00007efd795e5fa0 R15: 00007fff40afc2a8
[  628.464679][T16178]  </TASK>
[  628.705649][T16178] zswap: compressor  not available
[  628.987057][T16185] binder: 16184:16185 ioctl c018620c 0 returned -1
[  628.996645][T16185] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2321'.
[  629.779603][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  629.786007][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  631.269388][T16211] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input192
[  632.017205][T16232] futex_wake_op: syz.2.2330 tries to shift op by -2048; fix this program
[  632.972591][T10792] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  632.987986][T10792] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  632.998034][T10792] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  633.014287][T10792] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  633.024519][T10792] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  633.206543][T16244] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries
[  633.227584][T16240] chnl_net:caif_netlink_parms(): no params data found
[  633.299123][T16240] bridge0: port 1(bridge_slave_0) entered blocking state
[  633.306481][T16240] bridge0: port 1(bridge_slave_0) entered disabled state
[  633.315848][T16240] bridge_slave_0: entered allmulticast mode
[  633.323519][T16240] bridge_slave_0: entered promiscuous mode
[  633.334969][T16240] bridge0: port 2(bridge_slave_1) entered blocking state
[  633.342158][T16240] bridge0: port 2(bridge_slave_1) entered disabled state
[  633.349628][T16240] bridge_slave_1: entered allmulticast mode
[  633.357035][T16240] bridge_slave_1: entered promiscuous mode
[  633.389490][T16240] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  633.403896][T16240] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  633.435901][T16240] team0: Port device team_slave_0 added
[  633.444870][T16240] team0: Port device team_slave_1 added
[  633.475021][T16240] batman_adv: batadv0: Adding interface: batadv_slave_0
[  633.483032][T16240] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  633.512924][T16240] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  633.540829][T16240] batman_adv: batadv0: Adding interface: batadv_slave_1
[  633.552928][T16240] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  633.580246][T16240] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  633.674794][T16240] hsr_slave_0: entered promiscuous mode
[  633.681150][T16240] hsr_slave_1: entered promiscuous mode
[  633.687588][T16240] debugfs: 'hsr0' already exists in 'hsr'
[  633.693826][T16240] Cannot create hsr debugfs directory
[  633.719024][T16251] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:30: corrupted xattr entries
[  633.908394][T16254] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:30: corrupted xattr entries
[  634.154579][T16265] binder: 16264:16265 ioctl c018620c 0 returned -1
[  634.166498][T16265] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2338'.
[  634.832401][T16270] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input193
[  634.899371][T16271] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input194
[  635.053123][T10792] Bluetooth: hci4: command tx timeout
[  637.133250][T10792] Bluetooth: hci4: command tx timeout
[  637.675024][T15846] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  637.685898][T15846] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  637.703185][T15846] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  637.713736][T15846] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  637.723303][T15846] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  637.903818][T16302] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:30: corrupted xattr entries
[  637.930643][T16295] chnl_net:caif_netlink_parms(): no params data found
[  638.058958][T16295] bridge0: port 1(bridge_slave_0) entered blocking state
[  638.069087][T16295] bridge0: port 1(bridge_slave_0) entered disabled state
[  638.076552][T16295] bridge_slave_0: entered allmulticast mode
[  638.090199][T16295] bridge_slave_0: entered promiscuous mode
[  638.099502][T16295] bridge0: port 2(bridge_slave_1) entered blocking state
[  638.108130][T16295] bridge0: port 2(bridge_slave_1) entered disabled state
[  638.115564][T16295] bridge_slave_1: entered allmulticast mode
[  638.123674][T16295] bridge_slave_1: entered promiscuous mode
[  638.164510][T16295] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  638.180975][T16295] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  638.218637][T16295] team0: Port device team_slave_0 added
[  638.226871][T16295] team0: Port device team_slave_1 added
[  638.259981][T16295] batman_adv: batadv0: Adding interface: batadv_slave_0
[  638.267379][T16295] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  638.296959][T16295] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  638.310158][T16295] batman_adv: batadv0: Adding interface: batadv_slave_1
[  638.317711][T16295] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  638.345660][T16295] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  638.399493][T16295] hsr_slave_0: entered promiscuous mode
[  638.409458][T16295] hsr_slave_1: entered promiscuous mode
[  638.416507][T16295] debugfs: 'hsr0' already exists in 'hsr'
[  638.422579][T16295] Cannot create hsr debugfs directory
[  638.864346][T16311] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:20: corrupted xattr entries
[  639.213499][T15846] Bluetooth: hci4: command tx timeout
[  639.773300][T15846] Bluetooth: hci5: command tx timeout
[  640.268042][T16318] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  640.278249][T16318] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  640.285069][T16318] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  640.291131][T16318] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  640.297871][T16318] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  640.306576][T16318] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  640.314164][T16318] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  640.320365][T16318] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  640.328611][T16318] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  640.336012][T16318] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  640.342120][T16318] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  640.351655][T16318] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  641.047528][T16327] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input195
[  641.129996][T16328] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input196
[  641.612988][T15846] Bluetooth: hci0: command 0x0c1a tx timeout
[  642.333040][ T6515] Bluetooth: hci2: command 0x0c1a tx timeout
[  642.339124][ T7366] Bluetooth: hci3: command 0x0c1a tx timeout
[  642.345201][T10792] Bluetooth: hci1: command 0x0c1a tx timeout
[  642.351338][T15846] Bluetooth: hci4: command 0x0c1a tx timeout
[  642.412942][T15846] Bluetooth: hci5: command 0x040f tx timeout
[  643.059008][T16338] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input197
[  643.138533][T16339] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input198
[  644.413952][ T7366] Bluetooth: hci1: command 0x0c1a tx timeout
[  644.420181][T15846] Bluetooth: hci4: command 0x0c1a tx timeout
[  644.493221][ T7366] Bluetooth: hci5: command 0x040f tx timeout
[  644.883435][T16348] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2355'.
[  644.954642][T16350] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries
[  645.843896][T16353] [U]  
[  645.846718][T16353] [U] 
[  645.849412][T16353] [U] 
[  645.852101][T16353] [U] 
[  645.855218][T16353] [U] 
[  645.857945][T16353] [U] 
[  645.860636][T16353] [U] 
[  645.863380][T16353] [U] 
[  645.866425][T16353] [U] 
[  645.869592][T16353] [U] 
[  645.872312][T16353] [U] 
[  645.875016][T16353] [U] 
[  645.878066][T16353] [U] 
[  645.880790][T16353] [U] 
[  645.883514][T16353] [U] 
[  645.886229][T16353] [U] 
[  645.889413][T16353] [U] 
[  645.892133][T16353] [U] 
[  645.894842][T16353] [U] 
[  645.897552][T16353] [U] 
[  645.901385][T16353] [U] 
[  645.904119][T16353] [U] 
[  645.906838][T16353] [U] 
[  645.909570][T16353] [U] 
[  645.912582][T16353] [U] 
[  645.915330][T16353] [U] 
[  645.918041][T16353] [U] 
[  645.920751][T16353] [U] 
[  645.923745][T16353] [U] 
[  645.926562][T16353] [U] 
[  645.929285][T16353] [U] 
[  645.932003][T16353] [U] 
[  645.936018][T16353] [U] 
[  645.938770][T16353] [U] 
[  645.941506][T16353] [U] 
[  645.944242][T16353] [U] 
[  645.947249][T16353] [U] 
[  645.949960][T16353] [U] �y���
[  645.953178][T16353] [U] B�者�
[  645.956496][T16353] [U] �G�=3�>+ߴ�z�e���2x��팶Z"E����q��=k}!�M���.��'}�U?��_X�B�%k.��)=��Դ�啛Y��Z�Q�_Z�V�_�Ho{�\/���nH0�Y�-6�G����
�y�]Ze���勎��-b�^�`#�h�Y	�@ DŽ�p
[  645.973827][T16353] [U] �ɻ�ZQ��o���=�5�O
��Gyy�����E ��S�!o�I/��L�ߊpG	qkY����SxK�,���-N%C�T�}t&��m�&`RH��IVˈ�B7���.T����c�
������y�=6�[G�Q>�7�<~�y�%�ׇzJ0�;y�h~���JRo~���.��#���RS�so4
\�\m��N��[�i��-����ِ� ���3�����G���iJk:�,���h.����F6�X�&�i��t�����
[  645.999239][T16353] [U] ��]o�c|�CK0F¢ט�5c�>A�.�f���0�3�t:QCl�ժ�UL�i���Q�jC<�'-�h
[  646.007769][T16353] [U] ��L
�3E
[  646.011204][T16353] [U] @J�j ^[��1;:�jL��J���W,�n����2{t(ZR��	$�����o��Q`�j�|���!L^�#��-���ltt�~�y�(�@5�$N!lr�`7���_���hc	n�����Q�h����k���Dp�F����c'%����Pe��7��a��C�ܙ;�z��*��mY���
[  646.029755][T16353] [U] �2�\��!�v`���z��':���S�*�!�4�i������Nf[umcۮ���
[  646.037004][T16353] [U] ����q�,���r�ⳏ!�$%T�|[H���W%t|"A	!Á��a�3�X���PC��	�g��>e��v.�.�Ý�����+�d�VT��ܘ�v��hv8ի�{��ꠃ��7_����
[  646.050850][T16353] [U] y�*��'5�Z�Ɔ<@){�w�g�����t+�x.̷{��ئ@bu�t�{{��	�z
[  646.058356][T16353] [U] �O��*�!�p*y!���D#��<�B�O���JK�\�;��N��A�����FPV�b�v.�=qk�lt	��������ɺT$�Qs��젴]CcO���@"f�/e-�t=
[  646.093704][T16353] [U] ��5��h��Ǿ;c1}C��:3���$���~�S���\M�w�0��b�c�Y<�Ə(���a��iC܊�|>��Ť��c����̶�0cB���m#�<qY�t"�'����]6.�-��D�{�	�~
[  646.493078][T15846] Bluetooth: hci1: command 0x0c1a tx timeout
[  646.499200][ T7366] Bluetooth: hci4: command 0x0c1a tx timeout
[  646.572964][ T7366] Bluetooth: hci5: command 0x040f tx timeout
[  647.967251][T16363] FAULT_INJECTION: forcing a failure.
[  647.967251][T16363] name failslab, interval 1, probability 0, space 0, times 0
[  647.980147][T16363] CPU: 1 UID: 0 PID: 16363 Comm: syz.2.2358 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  647.980178][T16363] Tainted: [U]=USER
[  647.980184][T16363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  647.980194][T16363] Call Trace:
[  647.980202][T16363]  <TASK>
[  647.980210][T16363]  dump_stack_lvl+0x16c/0x1f0
[  647.980237][T16363]  should_fail_ex+0x512/0x640
[  647.980256][T16363]  ? __kmalloc_cache_noprof+0x5f/0x770
[  647.980285][T16363]  should_failslab+0xc2/0x120
[  647.980309][T16363]  __kmalloc_cache_noprof+0x72/0x770
[  647.980336][T16363]  ? rcu_is_watching+0x12/0xc0
[  647.980362][T16363]  ? call_usermodehelper_setup+0xaf/0x360
[  647.980388][T16363]  ? __pfx_free_modprobe_argv+0x10/0x10
[  647.980413][T16363]  ? call_usermodehelper_setup+0xaf/0x360
[  647.980434][T16363]  call_usermodehelper_setup+0xaf/0x360
[  647.980459][T16363]  __request_module+0x3bd/0x660
[  647.980483][T16363]  ? __pfx___request_module+0x10/0x10
[  647.980515][T16363]  ? rcu_is_watching+0x12/0xc0
[  647.980540][T16363]  ? lockdep_hardirqs_on+0x7c/0x110
[  647.980566][T16363]  netlink_create+0x226/0x620
[  647.980589][T16363]  __sock_create+0x339/0x8a0
[  647.980625][T16363]  __sys_socket+0x153/0x2d0
[  647.980650][T16363]  ? __pfx___sys_socket+0x10/0x10
[  647.980676][T16363]  ? syscall_user_dispatch+0x78/0x140
[  647.980704][T16363]  __x64_sys_socket+0x72/0xb0
[  647.980730][T16363]  do_syscall_64+0xcd/0xf80
[  647.980752][T16363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  647.980771][T16363] RIP: 0033:0x7efd7938f7c9
[  647.980787][T16363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  647.980804][T16363] RSP: 002b:00007efd7a25e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  647.980823][T16363] RAX: ffffffffffffffda RBX: 00007efd795e5fa0 RCX: 00007efd7938f7c9
[  647.980834][T16363] RDX: 000000000000001f RSI: 0000000000000003 RDI: 0000000000000010
[  647.980844][T16363] RBP: 00007efd79413f91 R08: 0000000000000000 R09: 0000000000000000
[  647.980854][T16363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  647.980864][T16363] R13: 00007efd795e6038 R14: 00007efd795e5fa0 R15: 00007fff40afc2a8
[  647.980886][T16363]  </TASK>
[  648.531191][T16370] random: crng reseeded on system resumption
[  648.652915][ T7366] Bluetooth: hci5: command 0x040f tx timeout
[  650.733886][ T7366] Bluetooth: hci5: command 0x040f tx timeout
[  653.859034][T16408] random: crng reseeded on system resumption
[  655.416122][T16420] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input199
[  655.495130][T16421] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input200
[  658.750965][T16443] binder: 16442:16443 ioctl c018620c 0 returned -1
[  658.760669][T16443] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2375'.
[  659.390348][T16447] binder: 16446:16447 ioctl c018620c 0 returned -1
[  659.399444][T16447] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2376'.
[  660.325042][T16456] random: crng reseeded on system resumption
[  661.083750][T16460] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input201
[  661.145669][T16461] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input202
[  663.186830][T16482] random: crng reseeded on system resumption
[  663.922506][T16487] binder: 16486:16487 ioctl c018620c 0 returned -1
[  663.933661][T16487] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2384'.
[  665.643934][   T30] audit: type=1800 audit(4294968644.610:17): pid=16502 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2387" name="lu_gp_id" dev="configfs" ino=57928 res=0 errno=0
[  666.497052][T16507] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input203
[  666.614051][T16509] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input204
[  668.537529][T16524] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2391'.
[  669.382006][T16534] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input205
[  669.451382][T16535] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input206
[  669.961168][T15846] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  669.972931][T15846] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  669.982545][T15846] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  669.992357][T15846] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  670.000989][T15846] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  670.145385][T16543] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries
[  670.166586][T16539] chnl_net:caif_netlink_parms(): no params data found
[  670.394683][T16539] bridge0: port 1(bridge_slave_0) entered blocking state
[  670.402147][T16539] bridge0: port 1(bridge_slave_0) entered disabled state
[  670.413735][T16539] bridge_slave_0: entered allmulticast mode
[  670.421261][T16539] bridge_slave_0: entered promiscuous mode
[  670.434310][T16539] bridge0: port 2(bridge_slave_1) entered blocking state
[  670.441553][T16539] bridge0: port 2(bridge_slave_1) entered disabled state
[  670.451576][T16539] bridge_slave_1: entered allmulticast mode
[  670.466128][T16539] bridge_slave_1: entered promiscuous mode
[  670.546644][T16539] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  670.563684][T16539] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  670.612306][T16539] team0: Port device team_slave_0 added
[  670.625515][T16539] team0: Port device team_slave_1 added
[  670.661687][T16539] batman_adv: batadv0: Adding interface: batadv_slave_0
[  670.669124][T16539] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  670.698063][T16539] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  670.712745][T16539] batman_adv: batadv0: Adding interface: batadv_slave_1
[  670.721620][T16539] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  670.748163][T16539] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  670.802572][T16539] hsr_slave_0: entered promiscuous mode
[  670.811488][T16539] hsr_slave_1: entered promiscuous mode
[  670.819990][T16539] debugfs: 'hsr0' already exists in 'hsr'
[  670.827678][T16539] Cannot create hsr debugfs directory
[  671.350533][T16553] random: crng reseeded on system resumption
[  672.093457][T15846] Bluetooth: hci6: command tx timeout
[  674.173354][T15846] Bluetooth: hci6: command tx timeout
[  676.224467][T16589] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input207
[  676.258462][T15846] Bluetooth: hci6: command tx timeout
[  676.296218][T16590] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input208
[  677.482376][T16597] zero sized request
[  678.333430][T15846] Bluetooth: hci6: command tx timeout
[  679.840115][T16608] random: crng reseeded on system resumption
[  682.979139][T16631] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:19: corrupted xattr entries
[  683.060845][T16633] [U]  
[  683.063700][T16633] [U] 
[  683.066425][T16633] [U] 
[  683.069179][T16633] [U] 
[  683.072793][T16633] [U] 
[  683.075540][T16633] [U] 
[  683.078496][T16633] [U] 
[  683.081305][T16633] [U] 
[  683.084432][T16633] [U] 
[  683.087180][T16633] [U] 
[  683.089887][T16633] [U] 
[  683.092595][T16633] [U] 
[  683.095644][T16633] [U] 
[  683.098382][T16633] [U] 
[  683.101138][T16633] [U] 
[  683.103838][T16633] [U] 
[  683.106985][T16633] [U] 
[  683.109705][T16633] [U] 
[  683.112407][T16633] [U] 
[  683.115110][T16633] [U] 
[  683.118253][T16633] [U] 
[  683.121004][T16633] [U] 
[  683.123754][T16633] [U] 
[  683.126494][T16633] [U] 
[  683.129516][T16633] [U] 
[  683.132228][T16633] [U] ,�^���#
[  683.136148][T16633] [U] <)6��0�P�
[  683.139640][T16633] [U] _/��
[  683.142690][T16633] [U] Q,��WX��C��0O|�@����mfT�$�LygS�
[  683.149642][T16633] [U] Fq���[<.�����W�z�pr��g�(3��{��B��0c�$�#u�5
[  683.157915][T16633] [U] |zz.�uV؄����
[  683.162222][T16633] [U] 0l�e'�tn��P+�?c(�R�
[  683.167112][T16633] [U] ����0��"��tGd{&R��`Վ.�w��L\TD��7c	y�ryu���5LߏbN�Ѣx`��)~�apв��aޛg�dp��?��R�D��A���p�o�_¢�x{( xڇu��ϝ���Zp�r(��Q͛ �n��#�z���S!��}Jҧh�S|n�xP2�o}^!e��\�N�����:Q�tV�XB��=�I�������&�L܉|����Wf0
[  683.190973][T16633] [U] "���m�!����u��A��A�B�4����+������rF��(%"�9$�@���	�l�Ho݆�V�E�P��.�&
[  683.200724][T16633] [U] �{\?��
[  683.204469][T16633] [U] $�A�ge��NG�9Cx
[  683.208432][T16633] [U] _o�,FS��RUb��;ߺYz}I�ҕ��z����&$��Ox�ct��%�Z79Da�0���O~��;Z�����{�,��X��
[  683.219048][T16633] [U] y�R��H�J���n-�m��&fz���iϜ	��T06U��7��"�|��n�|�P����d)�
[  683.228467][T16633] [U] ��5y~���Adސ�$���������/ǫ���세����O`F�[�N��gE���
����iGg�"��ޔn�����oS��x+������'��;Y]ˇ�	�[E��xl	5�fp�q+D��C��(�����)r�iz��Si��܆�EݷW�5�qѣ�XڞH�KG��vF�ās�W�Xmi�oi�=D�J�?�8�X����#��HUY�R:�q��m�s�FUv�C2؀F�T8T���5-�;�?�ry&9ok�|��e��AO��ے>�BU�qfJ�0�����v�
ț�I�O�5%�ք0h��^_���O�GM�W�=G�qG���ˍ�Z���� ot�Ч�Ij46O�Vj}W<]ڇA��>�&�ImaHo����D
[  683.265333][T16633] [U] n&� G�pk�t�δ1��;H�����_l�wS�=ۇ�0��s<����9T8b:gX9=�iL|��ts��q��؁{i	"-�@C�N����I-(-���_J�'��A�y$��Z�M��g�0^��D���M�����ZR2�cQ�3���쀯i����f�CXI�y�,�FwiW���A�I�1r�ώA��čH|���|�^��T
��)b�{����l��(ԭMȫ�Ѩ�Ob���YTЅ�}*��"�
��T��:�$��2H�;-�IAǜ�9�h�����g��L&��K����)��G���<T��eة9﹡Q��O��?0���V��s�:���Hd;*3�4���]-m�9�e���·i�
�}�6�!��A�ƈ�e�����X�f5E֧芨a��g`�V�l���`)�r��z���H|�������c
[  683.309656][T16633] [U] +�o����H�Nv�4m8����G�)]�4���o��@>|��8㨱IΊ�%wSX@k��AQSU
[  684.055438][T16637] random: crng reseeded on system resumption
[  684.267752][T16640] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input209
[  684.319551][T16643] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input210
[  686.356602][T16660] random: crng reseeded on system resumption
[  688.572242][T16673] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input211
[  688.644725][T16676] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input212
[  689.151946][T16681] [U]  
[  689.154792][T16681] [U] 
[  689.157520][T16681] [U] 
[  689.160494][T16681] [U] 
[  689.164144][T16681] [U] 
[  689.166879][T16681] [U] 
[  689.169596][T16681] [U] 
[  689.172309][T16681] [U] 
[  689.176171][T16681] [U] 
[  689.178910][T16681] [U] 
[  689.181625][T16681] [U] 
[  689.184342][T16681] [U] 
[  689.188399][T16681] [U] 
[  689.191149][T16681] [U] 
[  689.193891][T16681] [U] 
[  689.196632][T16681] [U] 
[  689.205532][T16681] [U] 
[  689.208361][T16681] [U] 	
[  689.213276][T16681] [U] 1�^�g����
�cf7��"�8�u�X�J���	U��gZ
[  689.223239][T16681] [U] �zPF�`Q~���C�Oގy6
[  689.227811][T16681] [U] Ȣ
[  689.236434][T16681] [U] ������:�%���U�
[  689.240826][T16681] [U] ���a�"Fdm��N4������5�H�)R��P�RD�W�ȵ�����#j��I��
[  689.249108][T16681] [U] #7��8e�
[  689.252512][T16681] [U] ��Ar��Ek�*I���p�S�'��B�%БeP���M�m�ᳲJ~����!p
�:�/�æ��������Ŷ
[  689.261679][T16681] [U] ���Y�l���B��V����W�/)�׏��%B���
[  689.268904][T16681] [U] ����f��a�8�����Vϸ�|B%j�$΃uq|��|���3%|;�V?�>��{�Xӽ~9���{�x�n	���QhT�9��u�/#��U�����Q�j��aw�-��h�2���h*�Rn��]	�q���f/�����)�Kǡ�G��&A�r^�ʝ��c\��/4<Z
[  689.287882][T16681] [U] ��\��]�Yڃ=��(sND��gf��֪9��,9��j@�,�
[  689.294994][T16681] [U] %0T���62��`hc��=A]�%�٫!�S��yL��|��7B�r>�~r
[  689.302012][T16681] [U] �=�:�WJ��U�1�[
[  689.307446][T16681] [U] ���<f��|-˩�#F(���S��	����i����SA�
[  689.313979][T16681] [U] !�}�gཌ��݆��/���aɁ錘x 0�`~M�3J	�I�s9c]3r�U���i���
[  689.322417][T16681] [U] "��=�XI��e�T2�&��<=����G_����]ˠ-���Iu�k�d
[  689.329729][T16681] [U] �tsC��x�$�b�)��I��
��I�+��4؈fD�SƘ�SЍ�����跰;>��
[  691.215858][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  691.222216][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  691.719855][T16697] random: crng reseeded on system resumption
[  693.069394][T16707] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input213
[  693.333605][T16709] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input214
[  693.523908][ T7366] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  693.540416][ T7366] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  693.549583][ T7366] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  693.559463][ T7366] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  693.578399][ T7366] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  693.720199][T16719] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries
[  693.741162][T16715] chnl_net:caif_netlink_parms(): no params data found
[  693.820147][T16715] bridge0: port 1(bridge_slave_0) entered blocking state
[  693.827678][T16715] bridge0: port 1(bridge_slave_0) entered disabled state
[  693.836530][T16715] bridge_slave_0: entered allmulticast mode
[  693.845524][T16715] bridge_slave_0: entered promiscuous mode
[  693.855156][T16715] bridge0: port 2(bridge_slave_1) entered blocking state
[  693.862566][T16715] bridge0: port 2(bridge_slave_1) entered disabled state
[  693.870485][T16715] bridge_slave_1: entered allmulticast mode
[  693.882194][T16715] bridge_slave_1: entered promiscuous mode
[  694.009230][T16715] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  694.021376][T16715] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  694.089168][T16715] team0: Port device team_slave_0 added
[  694.099848][T16715] team0: Port device team_slave_1 added
[  694.154630][T16715] batman_adv: batadv0: Adding interface: batadv_slave_0
[  694.169643][T16715] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  694.223038][T16715] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  694.236218][T16715] batman_adv: batadv0: Adding interface: batadv_slave_1
[  694.253085][T16715] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  694.281350][T16715] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  694.359373][T16715] hsr_slave_0: entered promiscuous mode
[  694.368767][T16715] hsr_slave_1: entered promiscuous mode
[  694.375311][T16715] debugfs: 'hsr0' already exists in 'hsr'
[  694.381069][T16715] Cannot create hsr debugfs directory
[  694.426406][T16727] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input215
[  694.518983][T16728] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input216
[  695.613068][ T7366] Bluetooth: hci7: command tx timeout
[  696.137862][T16743] random: crng reseeded on system resumption
[  696.935529][T16749] vhci_hcd: SetHubDepth req not supported for USB 2.0 roothub
[  697.015366][T16750] EXT4-fs error (device sda1): xattr_find_entry:337: inode #90: comm dhcpcd: corrupted xattr entries
[  697.031419][T16751] EXT4-fs error (device sda1): xattr_find_entry:337: inode #90: comm dhcpcd: corrupted xattr entries
[  697.048583][T16752] EXT4-fs error (device sda1): xattr_find_entry:337: inode #90: comm dhcpcd: corrupted xattr entries
[  697.693889][ T7366] Bluetooth: hci7: command tx timeout
[  697.799903][T16755] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input217
[  697.965175][T16756] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input218
[  698.187122][T15846] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  698.198984][T15846] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  698.208523][T15846] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  698.217348][T15846] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  698.229374][T15846] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  698.442465][T16763] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:20: corrupted xattr entries
[  698.460243][T16758] chnl_net:caif_netlink_parms(): no params data found
[  698.546171][T16758] bridge0: port 1(bridge_slave_0) entered blocking state
[  698.553790][T16758] bridge0: port 1(bridge_slave_0) entered disabled state
[  698.561030][T16758] bridge_slave_0: entered allmulticast mode
[  698.568820][T16758] bridge_slave_0: entered promiscuous mode
[  698.577145][T16758] bridge0: port 2(bridge_slave_1) entered blocking state
[  698.584629][T16758] bridge0: port 2(bridge_slave_1) entered disabled state
[  698.592053][T16758] bridge_slave_1: entered allmulticast mode
[  698.605203][T16758] bridge_slave_1: entered promiscuous mode
[  698.727280][T16758] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  698.741264][T16758] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  698.815551][T16758] team0: Port device team_slave_0 added
[  698.827918][T16758] team0: Port device team_slave_1 added
[  698.886635][T16758] batman_adv: batadv0: Adding interface: batadv_slave_0
[  698.895997][T16758] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  698.947799][T16758] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  698.965005][T16758] batman_adv: batadv0: Adding interface: batadv_slave_1
[  698.979137][T16758] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  699.013772][T16758] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  699.072302][T16758] hsr_slave_0: entered promiscuous mode
[  699.079143][T16758] hsr_slave_1: entered promiscuous mode
[  699.087602][T16758] debugfs: 'hsr0' already exists in 'hsr'
[  699.093593][T16758] Cannot create hsr debugfs directory
[  699.773028][ T7366] Bluetooth: hci7: command tx timeout
[  700.253059][ T7366] Bluetooth: hci8: command tx timeout
[  701.853168][ T7366] Bluetooth: hci7: command tx timeout
[  702.334874][ T7366] Bluetooth: hci8: command tx timeout
[  704.416760][ T7366] Bluetooth: hci8: command tx timeout
[  705.262522][T16812] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:30: corrupted xattr entries
[  705.276517][T16813] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:30: corrupted xattr entries
[  705.290944][T16811] zswap: compressor  not available
[  705.349584][T16816] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:30: corrupted xattr entries
[  705.364101][T16817] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:30: corrupted xattr entries
[  705.381334][T16815] zswap: compressor  not available
[  705.444549][T16819] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input219
[  705.525117][T16819] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input220
[  706.355907][T16831] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input221
[  706.488667][T16832] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input222
[  706.503999][ T7366] Bluetooth: hci8: command tx timeout
[  708.567586][T16852] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:20: corrupted xattr entries
[  708.632466][T16854] random: crng reseeded on system resumption
[  709.799260][T16864] random: crng reseeded on system resumption
[  710.197451][T16867] ima: policy update failed
[  710.202248][   T30] audit: type=1802 audit(4294967305.720:18): pid=16867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2458" res=0 errno=0
[  710.276867][T16873] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:20: corrupted xattr entries
[  711.321589][T16882] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2462'.
[  711.337606][T16883] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:30: corrupted xattr entries
[  711.368213][T16884] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:30: corrupted xattr entries
[  711.382225][T16882] zswap: compressor  not available
[  711.550425][T16892] random: crng reseeded on system resumption
[  711.746026][T16896] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:30: corrupted xattr entries
[  712.771860][T16904] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2468'.
[  719.988321][T16968] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:31: corrupted xattr entries
[  720.009642][T16970] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:31: corrupted xattr entries
[  720.620663][T16979] binder: BINDER_SET_CONTEXT_MGR already set
[  720.628981][T16979] binder: 16978:16979 ioctl 4018620d 9 returned -16
[  721.786303][T16990] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2489'.
[  723.554664][T16997] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:13: corrupted xattr entries
[  723.910357][T17003] binder: 17002:17003 ioctl c018620c 0 returned -1
[  723.920361][T17003] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2493'.
[  724.528994][T17008] binder: 17007:17008 ioctl c018620c 0 returned -1
[  724.537889][T17008] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2494'.
[  728.847422][T17047] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:19: corrupted xattr entries
[  729.055326][T17049] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:19: corrupted xattr entries
[  729.199129][T17052] binder: 17051:17052 ioctl c0306201 0 returned -14
[  729.209072][T17052] random: crng reseeded on system resumption
[  729.320178][T17054] [U]  
[  729.323043][T17054] [U] 
[  729.325819][T17054] [U] 
[  729.328656][T17054] [U] 
[  729.332392][T17054] [U] 
[  729.335148][T17054] [U] 
[  729.338146][T17054] [U] 
[  729.340857][T17054] [U] 
[  729.344583][T17054] [U] 
[  729.347313][T17054] [U] 
[  729.350029][T17054] [U] 
[  729.352761][T17054] [U] 
[  729.357103][T17054] [U] 
[  729.359894][T17054] [U] 
[  729.362640][T17054] [U] 
[  729.365396][T17054] [U] 
[  729.369241][T17054] [U] 
[  729.372010][T17054] [U] 
[  729.374772][T17054] [U] 
[  729.378026][T17054] [U] 
[  729.392896][T17054] [U] 
[  729.395679][T17054] [U] ��ڸje�@�;�Q!LZ1�ȏ���x�s���8�J����NO�֝���
[  729.403291][T17054] [U] � ��J,�[���"XwUu
[  729.407583][T17054] [U] ���u�
[  729.410793][T17054] [U] �� ��e�Lnh��ȡ�����ԫ��</��p!���2ۧ��[����i�e��s&�#-����� ـ�k�~�-	twe��?�j��h>v�V�����#�w��2E�֧�kʬ��7�3�8����@W@m���^�R=�,����-��,ֻ\W�>=[�� �`o�r�&���#�5Sݛ���{��Kg&�-�)�}cWo���H5�H�Pl�2d���;IjO�2�t������H8w�:��J����8s|�+���I��ں�Zd/{�c#��k�;
[  729.439061][T17054] [U] ���.�k�}�ּa�����R��m0����0���@�2?��BV�!��s��_3f�SG�,}��
(�_���R���  �Z�����C���0|�z3��^�w��(��Sl*��t}x:4���5�c���D
[  729.453828][T17054] [U] m�β/��
[  729.458015][T17054] [U] �%3GV�<�MOW�V�U:[5.�[&7�g�#��"wqp��5�����ʓmt<��J]��렑K���ӂR%����P�$|�j�����3w_>y8�G��:���<��Ӯ�2��m�
[  729.471786][T17054] [U] %�
�6I�Žij�ܻ$\�V	����ʯ��;���>�t�>y����=Z
[  729.479124][T17054] [U] M삶����VH�ov��ɕ��B��鞠�+�3]ul4����e�
[  729.485728][T17054] [U] N�ƺ@��2�0�=�Bk0<stL�I
[  729.490759][T17054] [U] dL��
[  729.494654][T17054] [U] ��	��㻜���������
[  729.499032][T17054] [U] ���p;�5r����_�j�֜��SA�(0��{��HF��I]b�j*�,��Y�j(�tl`��
[  729.507411][T17054] [U] ���h���
[  729.510902][T17054] [U] N�}*���؍����PPp1�	D!��K�[?�hÜ�9�*��e�0q֦{����`���\_����!	��?W�D�p$����H����>+CJ�R�U9�Z}7�v>��?��1�DP���X-.m��>��kbE��0�c���K����3��!4;�w[c��}B{�ѣ3ddfeo>�A�0鬻�Nl�U��gX�b��[��ۡ��l0��]�9�7��:/����>�G�RМ�w���3���!ڈ��#��`Af����x������]v�݃Pw"�Q^l�n$��A��1
[  729.547089][T17054] [U] �TX3��X��A�wv��G��;i}�=���iue8��V?p5J#�ZWvH~���H6���/�6.��[	G�t�����~*F�w��)�)�^C�U�s�ۻy��Ą9�{�8^��)(�mW$:�a�����@;e7��*�?��Ҩ�*%�7>�<��q%eld̠&�'��<JEK�v�Q$���X��>���a�VPN�E.���3��)[J
[  729.573975][T17054] [U] &~pU�#9a@���9�*8QnC�;��A�$�)y�J\c�F%H��!�݂���	��6�~��4��vw�������<&l�g�m�+���W� ��5s�?s���l"�b��
[  729.586275][T17054] [U] N��`��ϸ���7w�lxJ-A�
[  729.591047][T17054] [U] i_k=�,o��o?Ҙ�9��9��J
[  730.428674][T15846] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  730.440396][T15846] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  730.458370][T15846] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  730.466917][T15846] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  730.475077][T15846] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  730.525742][T17063] binder: 17062:17063 ioctl c018620c 0 returned -1
[  730.535264][T17063] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2505'.
[  730.695511][T17068] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:28: corrupted xattr entries
[  730.718692][T17059] chnl_net:caif_netlink_parms(): no params data found
[  730.868523][T17059] bridge0: port 1(bridge_slave_0) entered blocking state
[  730.876064][T17059] bridge0: port 1(bridge_slave_0) entered disabled state
[  730.888852][T17059] bridge_slave_0: entered allmulticast mode
[  730.897460][T17059] bridge_slave_0: entered promiscuous mode
[  730.907275][T17059] bridge0: port 2(bridge_slave_1) entered blocking state
[  730.914934][T17059] bridge0: port 2(bridge_slave_1) entered disabled state
[  730.922397][T17059] bridge_slave_1: entered allmulticast mode
[  730.931060][T17059] bridge_slave_1: entered promiscuous mode
[  730.978396][T17059] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  730.992357][T17059] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  731.040418][T17059] team0: Port device team_slave_0 added
[  731.050332][T17059] team0: Port device team_slave_1 added
[  731.093516][T17059] batman_adv: batadv0: Adding interface: batadv_slave_0
[  731.100719][T17059] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  731.127328][T17059] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  731.141032][T17059] batman_adv: batadv0: Adding interface: batadv_slave_1
[  731.148701][T17059] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  731.175053][T17059] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  731.242619][T17059] hsr_slave_0: entered promiscuous mode
[  731.249757][T17059] hsr_slave_1: entered promiscuous mode
[  731.256940][T17059] debugfs: 'hsr0' already exists in 'hsr'
[  731.263217][T17059] Cannot create hsr debugfs directory
[  731.697734][T17076] random: crng reseeded on system resumption
[  732.573085][T15846] Bluetooth: hci9: command tx timeout
[  732.862104][T17083] random: crng reseeded on system resumption
[  734.098598][T17106] FAULT_INJECTION: forcing a failure.
[  734.098598][T17106] name failslab, interval 1, probability 0, space 0, times 0
[  734.111727][T17106] CPU: 0 UID: 0 PID: 17106 Comm: syz.2.2515 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  734.111775][T17106] Tainted: [U]=USER
[  734.111786][T17106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  734.111805][T17106] Call Trace:
[  734.111816][T17106]  <TASK>
[  734.111828][T17106]  dump_stack_lvl+0x16c/0x1f0
[  734.111871][T17106]  should_fail_ex+0x512/0x640
[  734.111904][T17106]  ? fs_reclaim_acquire+0xae/0x150
[  734.111947][T17106]  should_failslab+0xc2/0x120
[  734.111989][T17106]  kmem_cache_alloc_noprof+0x75/0x720
[  734.112039][T17106]  ? __pfx_map_id_range_down+0x10/0x10
[  734.112078][T17106]  ? security_inode_alloc+0x3b/0x2b0
[  734.112129][T17106]  ? security_inode_alloc+0x3b/0x2b0
[  734.112163][T17106]  security_inode_alloc+0x3b/0x2b0
[  734.112200][T17106]  inode_init_always_gfp+0xced/0x1040
[  734.112247][T17106]  alloc_inode+0x86/0x240
[  734.112277][T17106]  sock_alloc+0x40/0x280
[  734.112316][T17106]  __sock_create+0xc2/0x8a0
[  734.112368][T17106]  __sys_socket+0x153/0x2d0
[  734.112412][T17106]  ? __pfx___sys_socket+0x10/0x10
[  734.112458][T17106]  ? xfd_validate_state+0x61/0x180
[  734.112517][T17106]  __x64_sys_socket+0x72/0xb0
[  734.112561][T17106]  ? lockdep_hardirqs_on+0x7c/0x110
[  734.112598][T17106]  do_syscall_64+0xcd/0xf80
[  734.112639][T17106]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.112670][T17106] RIP: 0033:0x7efd7938f7c9
[  734.112695][T17106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  734.112726][T17106] RSP: 002b:00007efd7a21c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  734.112762][T17106] RAX: ffffffffffffffda RBX: 00007efd795e6180 RCX: 00007efd7938f7c9
[  734.112782][T17106] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  734.112801][T17106] RBP: 00007efd79413f91 R08: 0000000000000000 R09: 0000000000000000
[  734.112821][T17106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  734.112840][T17106] R13: 00007efd795e6218 R14: 00007efd795e6180 R15: 00007fff40afc2a8
[  734.112883][T17106]  </TASK>
[  734.327425][T17106] socket: no more sockets
[  734.653153][T15846] Bluetooth: hci9: command tx timeout
[  734.805953][T17113] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:12: corrupted xattr entries
[  735.608727][T17118] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input223
[  735.925738][T17126] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:19: corrupted xattr entries
[  736.733207][T15846] Bluetooth: hci9: command tx timeout
[  738.170486][T17155] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:19: corrupted xattr entries
[  738.188320][T17156] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:19: corrupted xattr entries
[  738.202436][T17154] zswap: compressor  not available
[  738.250402][T17158] random: crng reseeded on system resumption
[  738.410622][T17162] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:19: corrupted xattr entries
[  738.813054][T15846] Bluetooth: hci9: command tx timeout
[  740.768700][T17176] binder: 17175:17176 ioctl c018620c 0 returned -1
[  740.778325][T17176] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2533'.
[  743.465391][T17196] random: crng reseeded on system resumption
[  745.977650][T17210] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries
[  748.085094][T17234] random: crng reseeded on system resumption
[  748.858084][T17239] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries
[  748.875596][T17241] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries
[  748.983634][   T30] audit: type=1800 audit(4294967299.210:19): pid=17238 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2549" name="dbroot" dev="configfs" ino=62197 res=0 errno=0
[  748.999190][T17238] db_root: cannot open: 
[  749.302895][T17244] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries
[  749.317008][T17245] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries
[  749.350234][T17243] zswap: compressor  not available
[  749.928888][T17253] [U]  
[  749.931741][T17253] [U] 
[  749.934464][T17253] [U] 
[  749.937242][T17253] [U] 
[  749.943149][T17253] [U] 
[  749.945915][T17253] [U] 
[  749.948649][T17253] [U] 
[  749.951364][T17253] [U] 
[  749.954594][T17253] [U] 
[  749.957329][T17253] [U] 
[  749.960047][T17253] [U] 
[  749.962768][T17253] [U] 
[  749.967505][T17253] [U] 
[  749.970257][T17253] [U] 
[  749.972995][T17253] [U] 
[  749.975726][T17253] [U] 
[  749.980764][T17253] [U] 
[  749.983515][T17253] [U] 
[  749.986245][T17253] [U] 
[  749.988952][T17253] [U] 
[  750.002832][T17253] [U] 
[  750.005589][T17253] [U] v�ć(�G�a��n��ؾ����dv��y�	M�֋8�u
[  750.011567][T17253] [U] .[E�\ݻ۶�./X�x�$Vc�X�g��
[  750.017116][T17253] [U] +?sL�Mlݲr�F�
[  750.021015][T17253] [U] !K�)�_�{i7�\��"��}�
�awt�s��@V�5������NiӬ�>������+R}�E�/W�/S]���-�"�͙KSO����x
[  750.031881][T17253] [U] s��Pg�8��%��xa�΃�Nn-a����xF�F��D	�J�]���G������3�=�=�y3���_���"�7a��&�l�J�ީg)_�@�[o,�#d`ߵ��ȫ��]�,(7
�	bg	�66[bW��S���, K
[  750.046941][T17253] [U] ��
[  750.049827][T17253] [U] �ZY����E#
[  750.053421][T17253] [U] ��}�&��i&��F諍.�A+�	��n��-��<�ha��3L/��\o����/�ǵg%��cL
[  750.061178][T17253] [U] ��|�~,���x���ۯ���j�hח;
[  750.066338][T17253] [U] H��
[  750.069319][T17253] [U] N��\+��k�u7a�҂B?=|ߊ$47@�X.Q��1��ϳ�ٰ���(j)�hXn�bv�iWMY��~{�?tR�qD�LI���W��y��Rg�ާ����n�0��S�,�aSl(�H�v��^}%3r7 �n��RO���z�FG2�8Mq��MJ�4�\
�@�|F
[  750.086111][T17253] [U] �U^��,;������!�.�x�,�1����h7���r��顠h�e`��}c@R�6�J�{C�;�W�妷� ��*�lS��ݮ��He�g!�Xˊ�7VkگOX_�M�cy1
���cw�i
[  750.099082][T17253] [U] m�	\q}�L,3kJ������vѭ��!�g��#Kk1��#5�慛��S:C5J|�v�_V�=��ݢ+���V<�+V5u�P�.�g�
[  750.109708][T17253] [U] �5���
\���y�l����
`�U $�
[  750.114947][T17253] [U] �{t��s�7�����Ԉ����s�~���^�1��>6R��{�_�F�7�^4����Hki•��,�Akإn�
[  750.124290][T17253] [U] K�s���Ž�M�b=�)�$�N��Iby�*=��O�)��)�i��mZ�$����!�W�^'���T�KW�nRhvux���U��L\R�ex����~�s�).���Ϡ�{6z%�V)N�_Ʌ�l��+p��.�۳rAS5vA+p�cOUNL[�j���w���9˾.$4��{��JRw�#��촪mO<���>���*o�c"�x
�[��I��tv��8^ck��ߋDXK��E/N�n�;A�t�z��T��HM\�PE�#St�m�]
[  750.149923][T17253] [U] S��;j!e���°�콋��L�'!�R�%[ɉ����mo�����">�cY������$�N���K��4y���
[  750.158697][T17253] [U] ��>-�f
[  750.163535][T17253] [U] &غ����)�?6q�~��KՉ[���R#�GeZJ�@�uF�D��tb')Uz�Oo*�H�Dw�j��kEP�ȭ31ܒ�.���������?噰�i*:ۃ$]�(��
[  750.175375][T17253] [U] -k�bl��p]�b$k��І�'�ֆ�7^>5�+��1�D�錳�#�q�S�
[  750.182421][T17253] [U] �����׾����DUf)��/�ڊ9x�S�}��ʁ��)�~I�EG�jz|�`���������k�Q�H�%WX����z8��ޖn�`Ӱ��p�p�f�ofڜ�3�� Y�-�2���0A+X`iy`�bE��݊��
[  750.197278][T17253] [U] Z�X�?F��� Ev���A
[  750.201350][T17253] [U] P2����A����”��@/�1
[  750.206036][T17253] [U] ��A��Os��oӱO�����#�⵶�/���>�%CM���2���
[  750.212458][T17253] [U] &k���<��Ĝ2����K��AVZ��y-U�t�Dφ�\�}�yx��m�
[  750.219492][T17253] [U] /{������1��?��F�_��t�/Hw9͈
��^N9nNL���0��AX���mϫ�z	��u�OU�s'Ҷ��-=�\�b��%+�i�<�q�y</}'o%�2rY�:7����Vr�i��vʣ��jL^δbÊ�Q̍5�l���@C���].֡
[  750.235650][T17253] [U] �_*�E��U�1�B߲�!�'R�*$��,��9���GQ�����mO5�%}7��K��"<�!	"|r[N�{�/@3X��{�2���f�R����
5NO:'���EY��Ti/[~%ZZ�1�@�_G9S��k}}2��K%�e��5��
[  750.251644][T17253] [U] w]�� 2}n���U�_v)�UU"�O>8I�����YW��	~r������R��Wu�ųy�Dh�/��wf�x���
o��B�z����{��
[  750.261810][T17253] [U] $X���-9�۲��2�#��78���I����P��M�[�#A�{Q8�j�!4�-$i�Nl�}{nP��ڛ�sn���(^c-�p��;�+�&��=�ip�2[{�a���;؋�\�?��te�-�/~��#;�����+P�ք��F7��Q
[  750.278485][T17253] [U] 9H��j��T�H
[  750.282134][T17253] [U] r�f&��kyz���EJ�>VL���N�x��y�� S�N;�s�J
[  750.288496][T17253] [U] %�?����4����B��T&�)E�3���>���_Ҧ͏���I�:t��I��hҠq��߼�m{�c?�C����K(G͊�6��pSg�}��-h��d�.�o���0̓��-�1��:s�����Zj.�?2(��
٤SY/���Z)���J�ѡp5<�k�
�
[  750.305267][T17253] [U] �����ӛ��2{nE`#�Z�(�A�@�ALb�)�Bkt��uB�������UR,[��n���!�E�fM���am�U����E2�L^a
=I�:
-�4O�	+�v+��
[  750.318032][T17253] [U] �7n�f�����y�
[  750.322028][T17253] [U] 8�h@����v������y)%�����i�'�j�Q�ͯ�Hb���+��F��t����9�k�on�N�3�j�D_�k�,y�;��[�cI�o��G�l�%����(,^�~W�mX�&����
[  750.335242][T17253] [U] F�|�B���0����'c�������|�����b�N�$�9�t�z��r`�r�����e��*
[  750.379086][T17253] [U] �-:<g��w�$qfS�v�h0j#)6
[  750.384018][T17253] [U] �6�^"��R�(՜@�2�b�j��M��!���"��f_Q�_��܍*V���oz*�0,��l��<{�tv����?Ăo�������k��缐���F�-2�N$���i�dD�!h��P�[@�����4������������Ũ�?�+X9l��0j�Mm��Ut��A������Xr HY���ֲ]�\��@(UҐ��\X٧����Ԏ����8��j�(2�ϵ��y|�FP�����Vh�V�ޔU�X��a���vzrlN8|
�_�[�f��d��{(��¾n�<���{,q󻔭�D�ȫ�B:'(
[  750.415429][T17253] [U] �ɰ�����R������ĝ��C�ݯ�bo,���)�0d�Yr�q��v�Z��A֐�/,�(�7
vر�u��(��i[�ϧgko�(�Dz��A��ܩ����O���
[  750.427370][T17253] [U] .e���w
[  750.430626][T17253] [U] ��[�\~{��Yd֓i�	�6����ئ-�K�R+�	"|��!�/��^&)�&C5KO�*,w?f��$P�n�-�����C�~N�BcԉTQ�(8����� 涃��b���US�{���F6�^�E�f��w(�����1��<6���!)�?tDX�Xr�dB���/��'�4��@���v��\5Љ-�$,�L�2S2��p��%S�%]իrl*���$
[  750.452546][T17253] [U] �[�?HF��{ؗ*}X7;Z���� �*�8�煪����?��U�R���r��!�	��-z��sl��+�G*��&��>�>�퀩�5˗Z0I�4~�Z �a�~
}�h��
[  750.465088][T17253] [U] ��%R��ZD& �H�v�8^��"
[  750.470048][T17253] [U] n�˻
[  750.473218][T17253] [U] �lL/��TM�!>
[  750.476955][T17253] [U] �@Lz�?l_
[  750.480518][T17253] [U] P�5o����O��u�.,��WH�
[  750.485217][T17253] [U] EiHXv��
[  750.488520][T17253] [U] ����>�m���Y���*C�
[  750.493219][T17253] [U] W�(:ץ0ܓ��)��OD�
[  750.511730][T17253] [U] �0$D�H�|U�
�]�%�b��,\���\z/��F��tG����
[  751.829795][T17263] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input224
[  752.659191][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  752.669659][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  752.702608][T17271] random: crng reseeded on system resumption
[  752.946729][T17274] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2556'.
[  753.257163][ T7366] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  753.268058][ T7366] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  753.277601][ T7366] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  753.287470][ T7366] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  753.295934][ T7366] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  753.421563][T17281] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:0: corrupted xattr entries
[  753.439998][T17277] chnl_net:caif_netlink_parms(): no params data found
[  753.514334][T17277] bridge0: port 1(bridge_slave_0) entered blocking state
[  753.521512][T17277] bridge0: port 1(bridge_slave_0) entered disabled state
[  753.529388][T17277] bridge_slave_0: entered allmulticast mode
[  753.537778][T17277] bridge_slave_0: entered promiscuous mode
[  753.546200][T17277] bridge0: port 2(bridge_slave_1) entered blocking state
[  753.553568][T17277] bridge0: port 2(bridge_slave_1) entered disabled state
[  753.560787][T17277] bridge_slave_1: entered allmulticast mode
[  753.568395][T17277] bridge_slave_1: entered promiscuous mode
[  753.598659][T17277] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  753.610641][T17277] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  753.644459][T17277] team0: Port device team_slave_0 added
[  753.653268][T17277] team0: Port device team_slave_1 added
[  753.679508][T17277] batman_adv: batadv0: Adding interface: batadv_slave_0
[  753.686668][T17277] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  753.713080][T17277] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  753.725306][T17277] batman_adv: batadv0: Adding interface: batadv_slave_1
[  753.732264][T17277] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  753.758501][T17277] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  753.829262][T17277] hsr_slave_0: entered promiscuous mode
[  753.836718][T17277] hsr_slave_1: entered promiscuous mode
[  753.843383][T17277] debugfs: 'hsr0' already exists in 'hsr'
[  753.849155][T17277] Cannot create hsr debugfs directory
[  754.583879][T17294] random: crng reseeded on system resumption
[  755.373114][ T7366] Bluetooth: hci10: command tx timeout
[  755.622473][T17307] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input225
[  755.695537][T17308] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input226
[  757.397449][T17318] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000
[  757.407992][T17318] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  757.416411][T17318] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000
[  757.426329][T17318] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  757.435286][T17318] page dumped because: unmovable page
[  757.440693][T17318] page_owner info is not present (never set?)
[  757.453100][ T7366] Bluetooth: hci10: command tx timeout
[  758.091995][T15846] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  758.104861][T15846] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  758.116179][T15846] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  758.124799][T15846] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  758.132418][T15846] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  758.286981][T17338] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:20: corrupted xattr entries
[  758.304879][T17329] chnl_net:caif_netlink_parms(): no params data found
[  758.396291][T17329] bridge0: port 1(bridge_slave_0) entered blocking state
[  758.403558][T17329] bridge0: port 1(bridge_slave_0) entered disabled state
[  758.410758][T17329] bridge_slave_0: entered allmulticast mode
[  758.419403][T17329] bridge_slave_0: entered promiscuous mode
[  758.436573][T17329] bridge0: port 2(bridge_slave_1) entered blocking state
[  758.445361][T17329] bridge0: port 2(bridge_slave_1) entered disabled state
[  758.456468][T17329] bridge_slave_1: entered allmulticast mode
[  758.464812][T17329] bridge_slave_1: entered promiscuous mode
[  758.499361][T17329] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  758.512409][T17329] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  758.544100][T17329] team0: Port device team_slave_0 added
[  758.553783][T17329] team0: Port device team_slave_1 added
[  758.581178][T17329] batman_adv: batadv0: Adding interface: batadv_slave_0
[  758.588217][T17329] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  758.614472][T17329] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  758.626823][T17329] batman_adv: batadv0: Adding interface: batadv_slave_1
[  758.633978][T17329] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  758.662829][T17329] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  758.717550][T17329] hsr_slave_0: entered promiscuous mode
[  758.724350][T17329] hsr_slave_1: entered promiscuous mode
[  758.730525][T17329] debugfs: 'hsr0' already exists in 'hsr'
[  758.736689][T17329] Cannot create hsr debugfs directory
[  758.997760][T17344] bridge0: port 2(batadv0) entered blocking state
[  759.004963][T17344] bridge0: port 2(batadv0) entered disabled state
[  759.011535][T17344] batadv0: entered allmulticast mode
[  759.019563][T17344] batadv0: entered promiscuous mode
[  759.026937][ T6974] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  759.027054][T17344] bridge0: port 2(batadv0) entered blocking state
[  759.036747][ T6974] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  759.043201][T17344] bridge0: port 2(batadv0) entered forwarding state
[  759.533176][T15846] Bluetooth: hci10: command tx timeout
[  760.173100][T15846] Bluetooth: hci11: command tx timeout
[  760.404011][T17359] FAULT_INJECTION: forcing a failure.
[  760.404011][T17359] name failslab, interval 1, probability 0, space 0, times 0
[  760.416833][T17359] CPU: 1 UID: 0 PID: 17359 Comm: syz.2.2575 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  760.416885][T17359] Tainted: [U]=USER
[  760.416896][T17359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  760.416914][T17359] Call Trace:
[  760.416926][T17359]  <TASK>
[  760.416939][T17359]  dump_stack_lvl+0x16c/0x1f0
[  760.416981][T17359]  should_fail_ex+0x512/0x640
[  760.417015][T17359]  ? kmem_cache_alloc_noprof+0x62/0x720
[  760.417068][T17359]  should_failslab+0xc2/0x120
[  760.417110][T17359]  kmem_cache_alloc_noprof+0x75/0x720
[  760.417159][T17359]  ? sk_prot_alloc+0x60/0x2a0
[  760.417204][T17359]  ? sk_prot_alloc+0x60/0x2a0
[  760.417240][T17359]  sk_prot_alloc+0x60/0x2a0
[  760.417282][T17359]  sk_alloc+0x36/0xb80
[  760.417315][T17359]  rds_create+0x9e/0x5f0
[  760.417366][T17359]  __sock_create+0x339/0x8a0
[  760.417416][T17359]  __sys_socket+0x153/0x2d0
[  760.417459][T17359]  ? __pfx___sys_socket+0x10/0x10
[  760.417504][T17359]  ? xfd_validate_state+0x61/0x180
[  760.417550][T17359]  ? __pfx_ksys_write+0x10/0x10
[  760.417595][T17359]  __x64_sys_socket+0x72/0xb0
[  760.417637][T17359]  ? lockdep_hardirqs_on+0x7c/0x110
[  760.417674][T17359]  do_syscall_64+0xcd/0xf80
[  760.417723][T17359]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  760.417754][T17359] RIP: 0033:0x7efd7938f7c9
[  760.417780][T17359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  760.417812][T17359] RSP: 002b:00007efd7a25e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  760.417843][T17359] RAX: ffffffffffffffda RBX: 00007efd795e5fa0 RCX: 00007efd7938f7c9
[  760.417865][T17359] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000015
[  760.417884][T17359] RBP: 00007efd79413f91 R08: 0000000000000000 R09: 0000000000000000
[  760.417903][T17359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  760.417921][T17359] R13: 00007efd795e6038 R14: 00007efd795e5fa0 R15: 00007fff40afc2a8
[  760.417963][T17359]  </TASK>
[  761.210656][T17367] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:20: corrupted xattr entries
[  761.614524][T15846] Bluetooth: hci10: command tx timeout
[  762.254075][T15846] Bluetooth: hci11: command tx timeout
[  763.068666][T17384] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:4: corrupted xattr entries
[  763.533068][   T31] INFO: task syz-executor:15900 blocked for more than 143 seconds.
[  763.541046][   T31]       Tainted: G     U              syzkaller #0
[  763.548550][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  763.557644][   T31] task:syz-executor    state:D stack:24472 pid:15900 tgid:15900 ppid:1      task_flags:0x480140 flags:0x00080003
[  763.570081][   T31] Call Trace:
[  763.573724][   T31]  <TASK>
[  763.576694][   T31]  ? __schedule+0x1149/0x5de0
[  763.581442][   T31]  __schedule+0x11c9/0x5de0
[  763.586616][   T31]  ? is_bpf_text_address+0x8a/0x1a0
[  763.591945][   T31]  ? __kasan_check_byte+0x13/0x50
[  763.597395][   T31]  ? rcu_is_watching+0x12/0xc0
[  763.602593][   T31]  ? __kasan_check_byte+0x13/0x50
[  763.608050][   T31]  ? __pfx___schedule+0x10/0x10
[  763.613318][   T31]  ? __kernel_text_address+0xd/0x40
[  763.618659][   T31]  ? unwind_get_return_address+0x59/0xa0
[  763.624824][   T31]  ? find_held_lock+0x2b/0x80
[  763.629630][   T31]  ? schedule+0x2d7/0x3a0
[  763.634503][   T31]  schedule+0xe7/0x3a0
[  763.638692][   T31]  schedule_timeout+0x257/0x290
[  763.644089][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  763.649603][   T31]  ? mark_held_locks+0x49/0x80
[  763.654887][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  763.660220][   T31]  do_wait_for_common+0x2d7/0x4c0
[  763.665852][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  763.671377][   T31]  ? __pfx_do_wait_for_common+0x10/0x10
[  763.677508][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[  763.682661][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  763.688612][   T31]  ? __pfx___might_resched+0x10/0x10
[  763.694467][   T31]  wait_for_completion+0x49/0x60
[  763.699537][   T31]  remove_one+0x312/0x420
[  763.705061][   T31]  ? find_next_child+0x18f/0x280
[  763.710533][   T31]  __simple_recursive_removal+0x15b/0x610
[  763.716667][   T31]  ? __pfx_remove_one+0x10/0x10
[  763.721643][   T31]  debugfs_remove+0x5d/0x80
[  763.726661][   T31]  nsim_drv_remove+0xd2/0x1d0
[  763.731473][   T31]  ? __pfx_nsim_bus_remove+0x10/0x10
[  763.737365][   T31]  device_remove+0xcb/0x170
[  763.742002][   T31]  device_release_driver_internal+0x44b/0x620
[  763.748671][   T31]  bus_remove_device+0x22f/0x420
[  763.754168][   T31]  device_del+0x396/0x9f0
[  763.758689][   T31]  ? __pfx_device_del+0x10/0x10
[  763.764215][   T31]  ? __lock_acquire+0x433/0x22f0
[  763.769296][   T31]  device_unregister+0x1d/0xc0
[  763.774946][   T31]  del_device_store+0x355/0x4a0
[  763.780270][   T31]  ? __pfx_del_device_store+0x10/0x10
[  763.786283][   T31]  ? find_held_lock+0x2b/0x80
[  763.791135][   T31]  ? sysfs_file_kobj+0xe4/0x290
[  763.796583][   T31]  ? __pfx_del_device_store+0x10/0x10
[  763.802133][   T31]  bus_attr_store+0x74/0xb0
[  763.807279][   T31]  ? __pfx_bus_attr_store+0x10/0x10
[  763.812630][   T31]  sysfs_kf_write+0xf2/0x150
[  763.817835][   T31]  kernfs_fop_write_iter+0x3af/0x570
[  763.823552][   T31]  ? __pfx_sysfs_kf_write+0x10/0x10
[  763.828928][   T31]  vfs_write+0x7d3/0x11d0
[  763.833893][   T31]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  763.839917][   T31]  ? __pfx_vfs_write+0x10/0x10
[  763.845550][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  763.850962][   T31]  ? find_held_lock+0x2b/0x80
[  763.856390][   T31]  ksys_write+0x12a/0x250
[  763.860908][   T31]  ? __pfx_ksys_write+0x10/0x10
[  763.866410][   T31]  ? do_user_addr_fault+0x381/0xda0
[  763.871772][   T31]  do_syscall_64+0xcd/0xf80
[  763.876861][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.883287][   T31] RIP: 0033:0x7f8a91d8e27f
[  763.887940][   T31] RSP: 002b:00007ffd0a13b440 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  763.902901][   T31] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f8a91d8e27f
[  763.911015][   T31] RDX: 0000000000000001 RSI: 00007ffd0a13b490 RDI: 0000000000000005
[  763.922235][   T31] RBP: 00007f8a91e152cb R08: 0000000000000000 R09: 00007ffd0a13b297
[  763.930719][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  763.942782][   T31] R13: 00007ffd0a13b490 R14: 00007f8a92b14620 R15: 0000000000000003
[  763.950871][   T31]  </TASK>
[  763.955028][   T31] INFO: task syz.0.2280:16001 blocked for more than 143 seconds.
[  763.963295][   T31]       Tainted: G     U              syzkaller #0
[  763.969826][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  763.979020][   T31] task:syz.0.2280      state:D stack:26232 pid:16001 tgid:15999 ppid:5835   task_flags:0x400140 flags:0x00080002
[  763.992339][   T31] Call Trace:
[  763.996003][   T31]  <TASK>
[  763.998995][   T31]  ? __schedule+0x1149/0x5de0
[  764.004237][   T31]  __schedule+0x11c9/0x5de0
[  764.008861][   T31]  ? check_path.constprop.0+0x24/0x50
[  764.014861][   T31]  ? __pfx___schedule+0x10/0x10
[  764.019848][   T31]  ? __lock_acquire+0x11a1/0x22f0
[  764.025003][   T31]  ? find_held_lock+0x2b/0x80
[  764.029753][   T31]  ? schedule+0x2d7/0x3a0
[  764.034194][   T31]  schedule+0xe7/0x3a0
[  764.038299][   T31]  schedule_preempt_disabled+0x13/0x30
[  764.043857][   T31]  __mutex_lock+0xcf8/0x1b10
[  764.048486][   T31]  ? _parse_integer_limit+0x17f/0x1d0
[  764.054035][   T31]  ? nsim_bus_dev_max_vfs_write+0x206/0x410
[  764.059993][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  764.065095][   T31]  ? __pfx_kstrtouint+0x10/0x10
[  764.070074][   T31]  ? nsim_bus_dev_max_vfs_write+0x1bb/0x410
[  764.076114][   T31]  ? nsim_bus_dev_max_vfs_write+0x206/0x410
[  764.082045][   T31]  nsim_bus_dev_max_vfs_write+0x206/0x410
[  764.087848][   T31]  ? __pfx_nsim_bus_dev_max_vfs_write+0x10/0x10
[  764.094362][   T31]  ? __debugfs_file_get+0x1fe/0x840
[  764.099595][   T31]  full_proxy_write+0x131/0x1a0
[  764.104523][   T31]  ? __pfx_full_proxy_write+0x10/0x10
[  764.109971][   T31]  vfs_write+0x2a0/0x11d0
[  764.114443][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  764.119516][   T31]  ? __pfx_vfs_write+0x10/0x10
[  764.124396][   T31]  ? __fget_files+0x20e/0x3c0
[  764.129140][   T31]  ksys_write+0x12a/0x250
[  764.133617][   T31]  ? __pfx_ksys_write+0x10/0x10
[  764.138511][   T31]  do_syscall_64+0xcd/0xf80
[  764.143133][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  764.149063][   T31] RIP: 0033:0x7f0543b8f7c9
[  764.153590][   T31] RSP: 002b:00007f0544945038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  764.162144][   T31] RAX: ffffffffffffffda RBX: 00007f0543de5fa0 RCX: 00007f0543b8f7c9
[  764.170163][   T31] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000005
[  764.178327][   T31] RBP: 00007f0543c13f91 R08: 0000000000000000 R09: 0000000000000000
[  764.186374][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  764.194431][   T31] R13: 00007f0543de6038 R14: 00007f0543de5fa0 R15: 00007ffcf698c5d8
[  764.202423][   T31]  </TASK>
[  764.205585][   T31] 
[  764.205585][   T31] Showing all locks held in the system:
[  764.213388][   T31] 1 lock held by khungtaskd/31:
[  764.218258][   T31]  #0: ffffffff8e1c8620 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  764.228255][   T31] 7 locks held by syz-executor/15900:
[  764.233707][   T31]  #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  764.242808][   T31]  #1: ffff88807a92e488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  764.252638][   T31]  #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  764.262885][   T31]  #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  764.273403][   T31]  #4: ffff88807fb390e8 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xa4/0x620
[  764.284090][   T31]  #5: ffff88807fb3a250 (&devlink->lock_key#2){+.+.}-{4:4}, at: nsim_drv_remove+0x4a/0x1d0
[  764.294265][   T31]  #6: ffff88805c0b1568 (&sb->s_type->i_mutex_key#8/2){+.+.}-{4:4}, at: __simple_recursive_removal+0x354/0x610
[  764.306209][   T31] 3 locks held by syz.0.2280/16001:
[  764.311414][   T31]  #0: ffff888077648b78 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[  764.320568][   T31]  #1: ffff888141680420 (sb_writers#8){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  764.329657][   T31]  #2: ffff88807fb3a250 (&devlink->lock_key#2){+.+.}-{4:4}, at: nsim_bus_dev_max_vfs_write+0x206/0x410
[  764.334745][T15846] Bluetooth: hci11: command tx timeout
[  764.340853][   T31] 2 locks held by syz.1.2301/16111:
[  764.351461][   T31]  #0: ffff888141680420 (sb_writers#8){.+.+}-{0:0}, at: path_openat+0x183a/0x3140
[  764.360847][   T31]  #1: ffff88805c0b1568 (&sb->s_type->i_mutex_key#16){++++}-{4:4}, at: path_openat+0x1248/0x3140
[  764.371555][   T31] 4 locks held by syz-executor/16240:
[  764.377057][   T31]  #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  764.386161][   T31]  #1: ffff8880313e9888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  764.396100][   T31]  #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  764.406246][   T31]  #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  764.416741][   T31] 4 locks held by syz-executor/16295:
[  764.422138][   T31]  #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  764.431227][   T31]  #1: ffff88805b38ec88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  764.441086][   T31]  #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  764.451186][   T31]  #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  764.461583][   T31] 4 locks held by syz-executor/16539:
[  764.467020][   T31]  #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  764.476198][   T31]  #1: ffff888077a0e488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  764.486113][   T31]  #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  764.496586][   T31]  #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  764.507142][   T31] 4 locks held by syz-executor/16715:
[  764.512540][   T31]  #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  764.521656][   T31]  #1: ffff88805b7ba088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  764.531614][   T31]  #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  764.541800][   T31]  #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  764.552356][   T31] 4 locks held by syz-executor/16758:
[  764.557816][   T31]  #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  764.566906][   T31]  #1: ffff888092cefc88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  764.576749][   T31]  #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  764.586868][   T31]  #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  764.597224][   T31] 4 locks held by syz-executor/17059:
[  764.602620][   T31]  #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  764.611733][   T31]  #1: ffff888044298c88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  764.621594][   T31]  #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  764.631714][   T31]  #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  764.642093][   T31] 4 locks held by syz-executor/17277:
[  764.647547][   T31]  #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  764.656648][   T31]  #1: ffff8880a0e6b088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  764.666526][   T31]  #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  764.676704][   T31]  #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  764.687252][   T31] 4 locks held by syz-executor/17329:
[  764.692642][   T31]  #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  764.701783][   T31]  #1: ffff8880a4b01488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  764.711689][   T31]  #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  764.721949][   T31]  #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  764.732341][   T31] 
[  764.734864][   T31] =============================================
[  764.734864][   T31] 
[  764.743398][   T31] NMI backtrace for cpu 1
[  764.743423][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  764.743464][   T31] Tainted: [U]=USER
[  764.743474][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  764.743489][   T31] Call Trace:
[  764.743496][   T31]  <TASK>
[  764.743503][   T31]  dump_stack_lvl+0x116/0x1f0
[  764.743530][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  764.743560][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  764.743589][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  764.743618][   T31]  watchdog+0xf14/0x1140
[  764.743647][   T31]  ? rcu_is_watching+0x12/0xc0
[  764.743673][   T31]  ? __pfx_watchdog+0x10/0x10
[  764.743789][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  764.743813][   T31]  ? __kthread_parkme+0x19e/0x250
[  764.743848][   T31]  ? __pfx_watchdog+0x10/0x10
[  764.743872][   T31]  kthread+0x3c5/0x780
[  764.743891][   T31]  ? __pfx_kthread+0x10/0x10
[  764.743913][   T31]  ? rcu_is_watching+0x12/0xc0
[  764.743941][   T31]  ? __pfx_kthread+0x10/0x10
[  764.743960][   T31]  ret_from_fork+0x855/0xa50
[  764.743978][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  764.743995][   T31]  ? __switch_to+0x7af/0x10d0
[  764.744017][   T31]  ? __pfx_kthread+0x10/0x10
[  764.744035][   T31]  ret_from_fork_asm+0x1a/0x30
[  764.744068][   T31]  </TASK>
[  764.744075][   T31] Sending NMI from CPU 1 to CPUs 0:
[  764.880781][    C0] NMI backtrace for cpu 0
[  764.880803][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  764.880836][    C0] Tainted: [U]=USER
[  764.880843][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  764.880856][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  764.880888][    C0] Code: 15 59 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d f3 f4 0e 00 fb f4 <e9> 8c 27 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  764.880911][    C0] RSP: 0018:ffffffff8de07df8 EFLAGS: 000002c6
[  764.880931][    C0] RAX: 00000000007efa67 RBX: 0000000000000000 RCX: ffffffff8b5b5429
[  764.880954][    C0] RDX: 0000000000000000 RSI: ffffffff8d89e18d RDI: ffffffff8bd1bd00
[  764.880970][    C0] RBP: fffffbfff1bd2f50 R08: 0000000000000001 R09: ffffed10170866e5
[  764.880985][    C0] R10: ffff8880b843372b R11: 00000000ffffffff R12: 0000000000000000
[  764.881000][    C0] R13: ffffffff8de97a80 R14: ffffffff9065cfd0 R15: 0000000000000000
[  764.881015][    C0] FS:  0000000000000000(0000) GS:ffff888124ba8000(0000) knlGS:0000000000000000
[  764.881039][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  764.881055][    C0] CR2: 00007efd795b7198 CR3: 0000000074e5a000 CR4: 00000000003526f0
[  764.881070][    C0] Call Trace:
[  764.881079][    C0]  <TASK>
[  764.881087][    C0]  default_idle+0x13/0x20
[  764.881116][    C0]  default_idle_call+0x6c/0xb0
[  764.881145][    C0]  do_idle+0x38d/0x500
[  764.881176][    C0]  ? __pfx_do_idle+0x10/0x10
[  764.881208][    C0]  cpu_startup_entry+0x4f/0x60
[  764.881238][    C0]  rest_init+0x16b/0x2b0
[  764.881267][    C0]  ? acpi_subsystem_init+0x133/0x180
[  764.881359][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  764.881411][    C0]  start_kernel+0x3f6/0x4d0
[  764.881444][    C0]  x86_64_start_reservations+0x18/0x30
[  764.881471][    C0]  x86_64_start_kernel+0x130/0x190
[  764.881497][    C0]  common_startup_64+0x13e/0x148
[  764.881529][    C0]  </TASK>
[  766.412929][T15846] Bluetooth: hci11: command tx timeout