last executing test programs:

16.210391072s ago: executing program 1 (id=2304):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram11\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000003}, 0xb9, 0x7fffffffffffffff, 0x7ffffd, 0x0)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/conf/gretap0/drop_unicast_in_l2_multicast\x00', 0x103102, 0x0)
getsid$auto(0x0)
sendfile$auto(r1, r1, 0x0, 0x80000000003)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
mmap$auto(0xa, 0xaf, 0x3, 0x17, r1, 0x80000004)
rseq$auto(0x0, 0xfffffff4, 0x0, 0x5)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x105000, 0x0)
ioctl$auto_VHOST_SET_BACKEND_FEATURES(r2, 0x4008af25, &(0x7f0000000000)=0x7)
mmap$auto(0x0, 0x9, 0x8000, 0xe238, 0x602, 0x5)
rseq$auto(0x0, 0xfffffffe, 0x3, 0xff)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x8001, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/tty/ptybd/power/control\x00', 0x2062, 0x0)
sendfile$auto(r4, r4, &(0x7f0000000080)=0x4, 0x4)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0xff, 0x4020008, 0xdf, 0xdf18, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlock$auto(0x1004, 0x6)
mlockall$auto(0x800000000000005)
clone$auto(0x100000001, 0x4, 0x0, 0x0, 0x200)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x1, 0x40009, 0x401, 0x17, r2, 0x4918)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8df41, 0x0)
msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004)
r5 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42041, 0x0)
read$auto_proc_pid_smaps_operations_internal(r5, &(0x7f00000002c0)=""/190, 0xfffffe39)

15.063443454s ago: executing program 1 (id=2305):
socket(0x28, 0x1, 0x0)
r0 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000001380)={0x2, 0x0, [{0x8c, 0x2000400, 0x5}]})

14.015006439s ago: executing program 1 (id=2309):
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/saved_tgids\x00', 0x440000, 0x0) (async)
r0 = openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/saved_tgids\x00', 0x440000, 0x0)
mmap$auto(0xffffffffffdff7fc, 0xfd3, 0x1, 0xeb2, r0, 0x20000007)
r1 = socket(0xa, 0x2, 0x0)
setsockopt$auto_SO_WIFI_STATUS(r1, 0x0, 0x29, 0x0, 0xbff)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x107603, 0x0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x107603, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20b42, 0x0)
write$auto_snd_pcm_oss_f_reg_pcm_oss(r2, &(0x7f0000000080)="c2", 0x1) (async)
write$auto_snd_pcm_oss_f_reg_pcm_oss(r2, &(0x7f0000000080)="c2", 0x1)
ioctl$auto_SNDCTL_DSP_SYNC(r2, 0x5001, 0xfffffffffffffffc)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mmap$auto(0x0, 0xfffffbfffffffffe, 0xdf, 0x9b72, r2, 0x28004)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x2, 0x0) (async)
socket(0x2, 0x2, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0x10eb1, 0x401, 0x8000)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3d, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x208000001f, 0x1, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x208000001f, 0x1, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000640)={'dvmrp0\x00'})
mmap$auto(0x0, 0x8, 0xdc, 0xeb1, 0x0, 0x8002)
memfd_secret$auto(0x0) (async)
memfd_secret$auto(0x0)
socketpair$auto(0x0, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x7f)
r6 = socket(0x11, 0x3, 0x9)
close_range$auto(0x2, r6, 0x0) (async)
close_range$auto(0x2, r6, 0x0)

13.686411897s ago: executing program 1 (id=2310):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000440)=""/198, 0xc6)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
socket(0x1d, 0x80000, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
mmap$auto(0x4, 0x6, 0xffffffffffffffff, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000)
tgkill$auto(0x0, 0x1, 0x1)
madvise$auto(0xffd, 0x0, 0x7)
clone$auto(0x100000000021, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000380), r3)
sendmsg$auto_NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="14000000394e20c15ab87a1b0c4b6599e8e458faa145c4628f29a3b77bc11fab054829", @ANYRES16=r4, @ANYBLOB="00012cbd7000fbdbdf2589000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000810}, 0x0)
openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000040), 0x10000, 0x0)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa902, 0x0)
write$auto(r5, &(0x7f0000000240)='.G\x1f*@sy\b\x00\xe7\xc9 \x8f\x10!\x11\xd4\x9by\xa8\xb2\x89c\xf8\xc41\xd4\x0f\x82\x8d\xd2\x04\x0f\xf6\xa0\xf7,O\x1d\t8\xb9H\xd5\xc4\xbb\x8f\x13\x94%\xcc\x0e\x9eT\xc1}+\x02J\xb9\x80\xe7\xb3<\x9a\xf1B\x13\xb7P\x9b\xce~\xff&zQ\xa8\x97\n\xb2\xf7\x15Z\x05\x8cl\x04\xca\x954\xdd3\xf9\xa3\x1e#,\xb7\xd2\xa6\x8d\x13\xd0\xf0\x14\x9a\xfa\xed\x9d\xa1\x98P.\'\xccA\x8b\xff\x82\xf8\xc3\xa9\xb6\xc3\x80E\xfc\xe3\xc6\x8d\xb8uh\x9f\xd1!\xa3\xe0dR\xda?\xdc:\xbd\x15X%\x84\xd2yL\x05\xaeV$\xda\xcd\xa1}_\xe0\x9c\x87\xaa\xa1\x1f\x93(\x96}\"sU.2\x1e\xb8\x01U\x8f\xe5\x7f]L\xca\xa2\x9b\x92ZYE\xd2\xe1<4\x9c\x85\x04\x86l2\x8e\xb2\x9e\x11\x82s\xd7\xe3\xdd\xdb\x041\xb2\x1c\xac@\x16\xb3sn\xec\r\x11J*\xbb\xd6\xde\x86v\x83T\xb1\xae\x91{_\xd7JK\xda\x01i#\xe89\x17\xaf\x03j5\r\xce\a\x1dl/#\x96I<osc,P\r\x00u\xe8\x9e-\xd1\x03}=h\x84\xd8\xf2\xad\xf5\xb5\xb0\xe9', 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x7ffe)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x14a402, 0x0)
read$auto(0x3, 0x0, 0x1f40)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x47}, 0x1)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sysvipc/sem\x00', 0x40000, 0x0)
r6 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000100), 0xc0b41, 0x0)
ioctl$auto_PPPIOCSMRU(r6, 0xc004743e, 0x0)

9.930000143s ago: executing program 1 (id=2319):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/lru_gen_full\x00', 0x3d8200, 0x0)
r1 = socket(0x1e, 0x6, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x40000000000001, 0x0)
write$auto(r2, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9)
setsockopt$auto(0xffffffffffffffff, 0x9, 0x69ce, &(0x7f0000000500)='(\x01\x03\x00\x00\xe4Ji\x00\x00\x00\x00\x00\xc75t\xfc))\xf3\xa2\x97\x99\x86\x88\xf9}\xee\xcb\xf3~\xb5\x18\x99\xc4D&\xdd^\x9b*\xd5\x11\xc0\xa1\x94\x05&x\x8c\xd5y\x0f\xfb\xf18%\x93M\xc1\x8e\x90\\\xf8\b\x05\xe4\xb6\x1f\x0f\xd1\x80u\xdb\x97\x0fwy\x16\xb9w)\xe5\x1f\x05\xd1\x86\x010%9\xe0m\xf2\xcbx;W\x8e\x15H,:\xc2\x01\xb7\xcc\xc9\xabd\x98\x12\xb3\a\x15HH\xcfi\x9fN\xb5k\xb2\x83\xe5\x8e\xd0\x9e[', 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40010a, 0xdf, 0x9b71, 0x2, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/bus/usb/drivers/usbduxsigma/bind\x00', 0x206c00, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/security/tomoyo/profile\x00', 0x48802, 0x0)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB='\x00%rb\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010029bd7000fddbdf251600000018000180140002006e657464657673696d3000000000000005000300040000000500020000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4040000)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00002dbd7000fddb0025140000000800080002a0bdae668d95561c3051633b8a73af00000008001105000c000700000008000f000900000008000f0009000000"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4)
read$auto(r3, 0x0, 0x2)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x400020009, 0x10000000000df, 0x13, 0x8000000401, 0x7fffffffffffffff)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
fstat$auto(0xffffffffffffffff, 0x0)
semctl$auto_SETALL(0x2, 0x6, 0x11, 0xb1c)
socket(0x21, 0x2, 0x0)
syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, 0x0, 0x0)

9.695203019s ago: executing program 0 (id=2321):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x400940, 0x0)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc854}, 0x0)
unshare$auto(0x40000080)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
socket(0x26, 0xa, 0x5)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendfile$auto(r2, 0xffffffffffffffff, 0x0, 0x10000000000003)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x8000000001, 0xeb1, 0xfffffffffffffffa, 0x8000)
setreuid$auto(0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket(0x11, 0x3, 0x9)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x8202, 0x0)
fallocate$auto(0xffffffffffffffff, 0x91, 0x6, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_GET_MSRS(r4, 0x4008ae89, &(0x7f0000000580)={0x2, 0x0, [{0x10, 0xc4}]})
close_range$auto(0x0, r0, 0x2)
socket(0x18, 0x4, 0x0)
read$auto_fops_x16_ro_(r2, &(0x7f0000000180)=""/62, 0x3e)
ioctl$auto_RTC_WKALM_SET(r3, 0x4028700f, 0x0)

9.33516585s ago: executing program 3 (id=2326):
socket(0x25, 0x1, 0x0)
ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(0xffffffffffffffff, 0x80083314, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
shutdown$auto(0xffffffffffffffff, 0x2)
r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
mmap$auto(0x0, 0x20007, 0x2004000000000df, 0xeb3, 0x401, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r1)
read$auto(r1, &(0x7f0000000000)='nl80211\x00', 0xbe5e)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="0c001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
pread64$auto(r0, 0x0, 0x7ff, 0x400)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x1, 0x0, 0x0, 0x0, 0x0)
write$auto(r2, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d6)
select$auto(0xfffffbc3, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x8, 0x400000d, 0x1, 0x8c, 0x1, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001d, 0x7, 0x6d3b, 0xc, 0x5, 0x6]}, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
ioctl$auto(0x3, 0x2287, 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98)

7.719380341s ago: executing program 3 (id=2328):
read$auto(0xffffffffffffffff, 0x0, 0x42)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x102, 0x0, 0xfffffffffffffffd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0x3, 0x0, 0x55)
syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_SEND_BEACONS(0xffffffffffffffff, 0x0, 0x2000080)
ioctl$auto(0xffffffffffffffff, 0x4b46, 0xffffffffffffffff)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x10000000000000e, 0x0)
fsopen$auto(0x0, 0x1)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x1, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/018/001\x00', 0x802, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000040)={0x23, 0x1, 0x2, 0xc, 0x0, 0x7fb, 0x0})
mmap$auto(0x0, 0x38, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
quotactl_fd$auto(0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x0)
setpgid$auto(0x0, 0x0)

7.718707551s ago: executing program 0 (id=2329):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000440)=""/198, 0xc6)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
socket(0x1d, 0x80000, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f0000000200)={0x45c, 0x5, 0x2, 0xa62c, 0x6, <r3=>0x0})
r4 = prctl$auto(0x3e, 0x1, r3, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
mmap$auto(0x4, 0x6, 0xffffffffffffffff, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000)
tgkill$auto(0x0, 0x1, 0x1)
madvise$auto(0xffd, 0x0, 0x7)
clone$auto(0x10000000201d, 0x1000000009, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000380), r4)
sendmsg$auto_NL80211_CMD_SET_TID_CONFIG(r4, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="00112cbd7000ebdbdf2589000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000810}, 0x0)
openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000040), 0x10000, 0x0)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa902, 0x0)
write$auto(r6, &(0x7f0000000240)='.G\x1f*@sy\b\x00\xe7\xc9 \x8f\x10!\x11\xd4\x9by\xa8\xb2\x89c\xf8\xc41\xd4\x0f\x82\x8d\xd2\x04\x0f\xf6\xa0\xf7,O\x1d\t8\xb9H\xd5\xc4\xbb\x8f\x13\x94%\xcc\x0e\x9eT\xc1}+\x02J\xb9\x80\xe7\xb3<\x9a\xf1B\x13\xb7P\x9b\xce~\xff&zQ\xa8\x97\n\xb2\xf7\x15Z\x05\x8cl\x04\xca\x954\xdd3\xf9\xa3\x1e#,\xb7\xd2\xa6\x8d\x13\xd0\xf0\x14\x9a\xfa\xed\x9d\xa1\x98P.\'\xccA\x8b\xff\x82\xf8\xc3\xa9\xb6\xc3\x80E\xfc\xe3\xc6\x8d\xb8uh\x9f\xd1!\xa3\xe0dR\xda?\xdc:\xbd\x15X%\x84\xd2yL\x05\xaeV$\xda\xcd\xa1}_\xe0\x9c\x87\xaa\xa1\x1f\x93(\x96}\"sU.2\x1e\xb8\x01U\x8f\xe5\x7f]L\xca\xa2\x9b\x92ZYE\xd2\xe1<4\x9c\x85\x04\x86l2\x8e\xb2\x9e\x11\x82s\xd7\xe3\xdd\xdb\x041\xb2\x1c\xac@\x16\xb3sn\xec\r\x11J*\xbb\xd6\xde\x86v\x83T\xb1\xae\x91{_\xd7JK\xda\x01i#\xe89\x17\xaf\x03j5\r\xce\a\x1dl/#\x96I<osc,P\r\x00u\xe8\x9e-\xd1\x03}=h\x84\xd8\xf2\xad\xf5\xb5\xb0\xe9', 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x7ffe)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x14a402, 0x0)
read$auto(0x3, 0x0, 0x1f40)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sysvipc/sem\x00', 0x40000, 0x0)
r7 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000540), 0xc0b41, 0x0)
ioctl$auto_PPPIOCSMRU(r7, 0xc004743e, 0x0)

7.570755479s ago: executing program 2 (id=2330):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x12d140000000000)
mkdir$auto(&(0x7f0000000180)='./cgroup/../file0\x00', 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0xcac5, 0x400008, 0xdf, 0x15, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r2 = ioctl$auto_dma_heap_fops_dma_heap(r1, 0xffffffffffdffe00, &(0x7f0000000140)=';')
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
socket(0xa, 0x4, 0xa101a27)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/lru_gen_full\x00', 0xc0080, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x11a001, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x7fffffff)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x400007, 0xd, 0x1, 0x948b, 0x3, 0x15f4da06, 0x7ff, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0xc, 0x2, 0x6]}, 0x0)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0xfffffffffffffffb)
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/conf/batadv_slave_0/arp_announce\x00', 0x141241, 0x0)
pwrite64$auto(r4, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x5)
readahead$auto(r4, 0x4, 0x4)
mmap$auto(0xfffffffffffffffc, 0x0, 0x4000000000e2, 0x15, r4, 0x100100000)
read$auto_dfs_cpu_ops_debugfs(r2, &(0x7f00000003c0)=""/213, 0x6c)
r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC0\x00', 0x200101, 0x0)
mmap$auto(0x0, 0x4020009, 0xdd, 0xeb1, 0x401, 0x8000)
ioctl$auto(r5, 0xc1205531, 0xffffffffffffffff)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/tasks\x00', 0x63102, 0x0)
sendfile$auto(r6, r6, 0x0, 0x1)

5.985838437s ago: executing program 2 (id=2331):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async)
io_uring_setup$auto(0x6, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
open(0x0, 0x22240, 0x155) (async)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (async)
pidfd_open$auto(0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a00a501, 0x0) (async)
write$auto(0x3, 0x0, 0xfffffdef)

5.093478826s ago: executing program 3 (id=2332):
socket(0x28, 0x1, 0x0)
r0 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000001380)={0x2, 0x0, [{0x176, 0x2000400, 0x5}]})

5.038538073s ago: executing program 0 (id=2333):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = waitid$auto_P_ALL(0x0, 0x9, &(0x7f0000000100)={@_si_pad}, 0x400, &(0x7f0000000180)={{0x3, 0x4}, {0x558}, 0x6, 0x2, 0x9, 0xeb3, 0x0, 0x8, 0xfff, 0xfffffffffffffff9, 0x100000001, 0x8000000000000000, 0x9a2, 0x9, 0xffffffffffffc78d, 0x1ff})
migrate_pages$auto(r0, 0x7, &(0x7f0000000240)=0x8000, &(0x7f0000000280)=0x9)
r1 = socket(0xa, 0x5, 0x84)
r2 = bpf$auto(0xfffffffd, &(0x7f0000000000)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x6, 0x4, 0xffffffffffffffff, @relative_fd=r1, 0xd}, 0xa3)
ioctl$auto_KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f00000000c0)={0x4, 0x0, [{0x9, 0x3, 0x4}, {0x1, 0xfffffffd, 0x1a5ae65c}, {0x4, 0x3, 0x5}]})
sendto$auto(r1, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
waitid$auto_P_ALL(0x0, 0x9, &(0x7f0000000100)={@_si_pad}, 0x400, &(0x7f0000000180)={{0x3, 0x4}, {0x558}, 0x6, 0x2, 0x9, 0xeb3, 0x0, 0x8, 0xfff, 0xfffffffffffffff9, 0x100000001, 0x8000000000000000, 0x9a2, 0x9, 0xffffffffffffc78d, 0x1ff}) (async)
migrate_pages$auto(r0, 0x7, &(0x7f0000000240)=0x8000, &(0x7f0000000280)=0x9) (async)
socket(0xa, 0x5, 0x84) (async)
bpf$auto(0xfffffffd, &(0x7f0000000000)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x6, 0x4, 0xffffffffffffffff, @relative_fd=r1, 0xd}, 0xa3) (async)
ioctl$auto_KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f00000000c0)={0x4, 0x0, [{0x9, 0x3, 0x4}, {0x1, 0xfffffffd, 0x1a5ae65c}, {0x4, 0x3, 0x5}]}) (async)
sendto$auto(r1, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) (async)

4.774332603s ago: executing program 0 (id=2334):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) (async)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mmap$auto(0x0, 0x4, 0xffffffffffffffff, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async)
openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x400, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x400000000000003, 0x2d, 0x1c, 0x0, 0x3) (async)
r0 = socket(0x10, 0x2, 0xc)
r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) (async)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = socket(0x10, 0x2, 0xc)
r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
select$auto(0x7, &(0x7f0000000300)={[0x2, 0x1, 0x4, 0x8, 0x4, 0x8001, 0x4, 0x5, 0x9, 0x5, 0x9, 0xfffffffffffffff9, 0x4, 0x1, 0x2, 0x7]}, &(0x7f0000000380)={[0x7, 0x3, 0x9, 0x9, 0x2, 0x9, 0x6, 0x8a41, 0xe, 0x9, 0x23, 0x2, 0x6, 0x9, 0x3, 0x6]}, &(0x7f0000000400)={[0x7, 0x9, 0x7, 0x4437, 0x6, 0x651f, 0x8000, 0x7fff, 0x4, 0x0, 0x7, 0xb800000000000000, 0x1, 0x681, 0x98, 0x1]}, &(0x7f0000000080)={0x401, 0x6439}) (async)
sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x24, r3, 0x10, 0x70bd2c, 0x25dfdbfa, {0xa, 0x0, 0xa00}, [@CTRL_ATTR_FAMILY_NAME={0x0, 0x2, '%/\x00\xe2\xa8\\A\xe7Z\x02q[\xcb\xc0\xb0N\\\xdc\xdf(\xff\xfee\xc3\x17py\x9f\xda\xb88\xaa\xf6q*\x82\xe6(\xc9\xe6B\x9aJ82\v-i(c\x92{\xd7D\xb4\xf7\xb4\t\xb2\x98b\xd3%vu\xd4\xfd\t\xd7J\x83\x19)\xb1\x00[\xdd(\xef?\xc5\xae(\x84\xefjx\xfe\xdb\xeb\xbceaAw\x1eW\x12Bh\xc3y2\xc9\x0e\xc9\x99#\x92j\x97\xbbDOi\x03\xa4\x11\x02F<y\xba\xf7\x8c5\x82\x7fF\xef\xb3{\xe9rw\xd8\x110\xbdC\xe3\x1c`4v\x10\xf3\xe6_=`\xd3\xd1\xe21\xc0\xcc#\xadV\xff#V]\x95\xcf\xaf\xc7\xa9*d\xda\x18\xc0\xc0\x1c'}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x6}]}, 0x51}, 0x1, 0x0, 0x0, 0x24050803}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004859}, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r4 = socket(0x10, 0x2, 0x0)
r5 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001500), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r4, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f0000000080)={0x1c, r5, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x46d}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x10)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='q\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="4cb245184f86db27df250a000a"], 0xf8}}, 0x10044010)
mmap$auto(0x0, 0x5, 0xffb, 0x8000000008011, 0x3, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1) (async)
socket(0xa, 0x2, 0x0) (async)
setsockopt$auto(0x400000000000003, 0x88, 0x22, 0x0, 0x0) (async)
write$auto(0x3, 0x0, 0x100082)

4.39595671s ago: executing program 3 (id=2335):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) (async)
prctl$auto(0x23, 0x7, 0x7fffffffefff, 0x0, 0x0) (async)
mmap$auto(0x7fff, 0x400008, 0xda, 0x9b72, 0x2, 0x480000000008001) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) (async)
r0 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kvm/mmu_pde_zapped\x00', 0x2100, 0x0)
read$auto_stat_fops_per_vm_kvm_main(r0, 0x0, 0x0) (async)
getrandom$auto(0x0, 0x6000000, 0x3) (async)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x2000, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) (async)
inotify_init1$auto(0xfff)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) (async)
read$auto(r1, 0x0, 0x1f40)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6) (async)
mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000)
socket(0xa, 0x5, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'veth0\x00'}) (async)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0xa, 0x2, 0x0) (async)
r5 = socket(0x18, 0x5, 0x1)
connect$auto(r5, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) (async)
socket$nl_generic(0x10, 0x3, 0x10)

4.106224913s ago: executing program 3 (id=2336):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x400940, 0x0)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc854}, 0x0)
unshare$auto(0x40000080)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
socket(0x26, 0xa, 0x5)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendfile$auto(r2, 0xffffffffffffffff, 0x0, 0x10000000000003)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x8000000001, 0xeb1, 0xfffffffffffffffa, 0x8000)
setreuid$auto(0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket(0x11, 0x3, 0x9)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x8202, 0x0)
fallocate$auto(0xffffffffffffffff, 0x91, 0x6, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_GET_MSRS(r4, 0x4008ae89, &(0x7f0000000580)={0x2, 0x0, [{0x10, 0xc4}]})
close_range$auto(0x0, r0, 0x2)
socket(0x18, 0x4, 0x0)
read$auto_fops_x16_ro_(r2, &(0x7f0000000180)=""/62, 0x3e)
ioctl$auto_RTC_WKALM_SET(r3, 0x4028700f, 0x0)

3.842469201s ago: executing program 0 (id=2337):
r0 = openat$auto_hsr_node_table_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x608000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, r0, 0x7ffd) (async, rerun: 64)
r1 = socket(0x11, 0x80003, 0x300) (async, rerun: 64)
mincore$auto(0x1000, 0x2, 0x0) (async)
timer_create$auto(0x0, 0x0, 0x0)
r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0)
mincore$auto(0x6, 0x1, 0x0) (async, rerun: 64)
read$auto(r2, 0x0, 0x39b8) (rerun: 64)
setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), 0xffffffffffffffff)

3.334525177s ago: executing program 2 (id=2338):
r0 = socket(0x2d, 0x2, 0x0)
mmap$auto(0x0, 0x2009, 0x4000000020df, 0xeb1, r0, 0x8000)
r1 = io_uring_setup$auto(0x6, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/usb/drivers/usbip-host/match_busid\x00', 0x28b42, 0x0)
writev$auto(r2, &(0x7f0000000100)={&(0x7f0000000280)="8e8873b5f9dd39182ab801a9e417130ff346eab3d41f954d458b276ffab4f6d5b23e17c1", 0x7115}, 0x8)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f00000001c0)={{@inferred=<r4=>0x0, 0x7, 0x40008, 0x7, "aab8e80600080043529f895cf5e8ec8f46cbb766439daa41e1aa00000000001200000000070a00", @raw=0x2}, 0x6, 0x8, 0x3, @raw=0xd7, @enumerated={0x1, 0xffff, "3a451db75512bd3527fc812ba5063f658f3a83495f2f7e8b4b84d579e75c002e35796b745e9f1f32cbfbdc296577c42c2257f3cdba1288075707bcc50e018166", 0x9e, 0x3}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"})
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_REMOVE(r3, 0xc0405519, &(0x7f00000000c0)={@inferred=r4, 0x7, 0xd, 0xa4, "e3eabf11dce36a2eac9cb4682c339b3ce615a9b97386d4462bc6553245da56e4978f37368e849db4a6e0aa4e", @raw=0xa2cfa1c})
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r5 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r5, 0x40026f33, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x59, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1)
sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG(r1, &(0x7f0000000700)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000006c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="ec0500002100d58e11593f2a15ac651353963b465ca608406460e94bddde2cb71746e532fe4d533572986198ec31183a20f4a643350944705b5cba46692c354b0f5a21fe1b88c8fc35683af78329f07323acb7538b6f4400fcdc24e734828e8264c00e7508c1cd66e540910e99452a47d0d901a0ad5a788179650570f39af2eb3ca0815a0e72ecaf3b5757b8", @ANYRES16=r6, @ANYBLOB="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"], 0x5ec}, 0x1, 0x0, 0x0, 0x80}, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop6\x00', 0x1c9002, 0x0)

2.7928496s ago: executing program 2 (id=2339):
socket(0x11, 0x80003, 0x300) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
epoll_create$auto(0x4) (async)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) (async)
mmap$auto(0x3ff, 0x3, 0xffffffff, 0x100000eb1, 0x40000000000a1, 0x4000008000) (async)
r0 = socket(0x11, 0x80003, 0x300)
sendfile$auto(0x1, r0, 0x0, 0x8fb5) (async)
fcntl$auto(0x0, 0x408, 0x100000) (async)
setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, &(0x7f0000000080)='nlctrl\x00', 0x2)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1) (async)
r1 = socket(0xa, 0x2, 0x0)
connect$auto(r1, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x56) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/rcu_normal\x00', 0x10b142, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x109b72, 0x2, 0x8000) (async)
write$auto(0x3, 0x0, 0xfffffdef)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) (async)
setreuid$auto(0x9, 0x1) (async)
clone$auto(0xfffffffe22000, 0x2, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x800fffffffc) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/hung_task_check_interval_secs\x00', 0x88542, 0x0)

2.314538636s ago: executing program 2 (id=2340):
ioctl$auto_SCSI_IOCTL_DOORLOCK(0xffffffffffffffff, 0x5380, &(0x7f0000000000)="5c2200bcf5db1c4ae8471350e9b30fdf12119e2130b08a2055d8fcda4a05227157f5398d6a6b792e2db379a8f3f31bf0924b34d3eb7ce109481e4d14223efcc3ab01788f2ea4509751e8c2743f037c0bf82560ccae1766ca2d78cceca279b2d96dc016fa71e4c1b9b0706629ee8c482f14dbfabf4fa7d4d655c661f421bc965cff8e18a07189848ff6c46e7e3bbe34d676abebe5af748769861e5c831ad24dbf0d27794df1d5da4aa70e28075018d6c3ebd4494814f7016760e2a2283edd592bc2a5422deb3bf2ceb7d1d74a54acc2809738c9210d939956c4bdca659f81f42055306ced9df158105e7dc5be57627fddeec52687")
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents$auto(0x0, 0x0, 0x700)
r0 = socket(0xa, 0x5, 0x0)
ioctl$auto(r0, 0x8941, 0x8)
mmap$auto(0x80000000000, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x1)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid$auto(0x0, 0x5c5, 0x0, 0x4, 0x0)

8.5714ms ago: executing program 1 (id=2341):
read$auto(0xffffffffffffffff, 0x0, 0x42)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x102, 0x0, 0xfffffffffffffffd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0x3, 0x0, 0x55)
syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_SEND_BEACONS(0xffffffffffffffff, 0x0, 0x2000080)
ioctl$auto(0xffffffffffffffff, 0x4b46, 0xffffffffffffffff)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x10000000000000e, 0x0)
fsopen$auto(0x0, 0x1)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x1, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/018/001\x00', 0x802, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000040)={0x23, 0x1, 0x2, 0xc, 0x0, 0x7fb, 0x0})
mmap$auto(0x0, 0x38, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
quotactl_fd$auto(0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x0)
setpgid$auto(0x0, 0x0)

8.293008ms ago: executing program 2 (id=2342):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/serio/drivers/rainshadow-cec/bind_mode\x00', 0x183080, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001180)=""/187, 0xbb)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
statmount$auto(0x0, &(0x7f0000000180)={0x4, 0x1, 0x1ff, 0x7, 0x8, 0x717e, 0x1ffde, 0x8, 0x3, 0x9, 0x8, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0x9, 0x80000001, 0x10007, 0xb, 0x4, 0xe3f, 0xa, 0x22000, 0x201, 0x6, 0x84, 0x0, 0x0, 0x40, 0x0, 0x0, [0x0, 0x0, 0x1fa, 0x200, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfffffffffffffffc, 0x100, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x80000000040000, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x1, 0x0, 0x3]}, 0x201, 0xd)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd0\x00', 0x551ee0, 0x0)
mmap$auto(0x1, 0x810004, 0x8, 0x7f, 0xffffffffffffffff, 0x8000)
preadv2$auto(r1, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x1, 0x4)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_DEL_DAEMON(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010002000000000000000a000000100003800c0001000100000000000000"], 0x24}, 0x1, 0x0, 0x0, 0x40014}, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x2a8600, 0x0)
write$auto(r4, &(0x7f0000000080)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k#\x92\xe3q\xa0\xf0@\r\xa7w\xc3\f\xb9\xeb\b\xae\xea\x18U^zc&\x05\x00\x00\x00\xee\xf8\xa6\xf4_\f\x12\x1f\x9d\x1c\xbe\t\x95\xfa:\xa3\xaf\x8a\x9e\x82\x9e\xd8\xf3\r\x8f\xce\xe3\x865\xdf\x97{\xac\xb5`k\xa1ys\xff\xce\xf0H\x97L\xff3\xab\x05-\xff]>%b7Sw!\"\xfc\xe1\x84\xf3\x00\xee\fH\xc0\xb66\x12\xd8\x99\xd6\x90a\"\t \xa7\x1dJ\xd0\xd7\n\xd5\xe6VT\xbf\x9e\x89\xd3\'J\x1b\x10\xc6\xc4\\\xba\xb1\x10g~\xea\xd4\xae#\xae\xc7\xbd\xfaY\xb1W\x8cj\xd6R\x87\x85\xf5\xb1\xdd\vh#\xa5\x1b\xa3wL\x1c\xdd\xd0N\xfb\x83iSa\xa7-\x8db\x04\xc3\x89\xe029\xdd\xf1\xc6\x18\x0e\xf4\x1eP\x04\x9a\xad5\xce\x95\xe6y\x1c\xe4\x1aJ\xdb\x8f\x8b\x85\x13\xeb\x94\x10\xf6\xe0|\xa9 \r\xe6\xe54\xee\xb9\xcb\x92\xb5\xa9K\v\r3\v\xe7\x81$5\xee,F\xea[]\xc5\xee3\xafA\xc5\x7fxQ\xa6\xa2i\xdb#\xf5G;\x8d\xa1d/\xc1\xc9\xc73\xcc\b\x882JTf\xa8i\xbf\xd6\'\x8f', 0x80)
connect$auto(r4, 0x0, 0x7f)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(0x0, 0xfffffff4, 0x1, 0x5)
r5 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x44940, 0x0)
ioctl$auto_VHOST_SET_BACKEND_FEATURES(r5, 0x4008af25, 0x0)
mmap$auto(0x29e, 0x1ff, 0x2, 0x100000000040eb1, 0x602, 0x40300000000001)
openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
rseq$auto(&(0x7f0000000380)={0x0, 0x85, 0x9416, 0x1, 0x7, 0x2006}, 0x6, 0x3, 0xff)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
mmap$auto(0xffffffffffdffffc, 0xfcf, 0x1, 0xeb2, 0xffffffffffffffff, 0x20000007)

7.984993ms ago: executing program 3 (id=2343):
socket(0x28, 0x1, 0x0)
r0 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000001380)={0x2, 0x0, [{0x1c4, 0x2000400, 0x5}]})

0s ago: executing program 0 (id=2344):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x2b, 0x5, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, 0x0, 0x80342, 0x0)
socket(0x2, 0x2, 0x1)
io_uring_setup$auto(0x6, 0x0)
socket(0x11, 0x80003, 0x300)
socket(0x11, 0x80003, 0x300)
socket(0x11, 0x80003, 0x300)
close_range$auto(0x2, 0x8, 0x0)

kernel console output (not intermixed with test programs):

d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  728.374397][T15091] RSP: 002b:00007fab0636f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  728.374421][T15091] RAX: ffffffffffffffda RBX: 00007fab057b5fa0 RCX: 00007fab0558ebe9
[  728.374440][T15091] RDX: 0000000000000004 RSI: 0000200000000000 RDI: 000000000000000a
[  728.374456][T15091] RBP: 00007fab05611e19 R08: 0000000000000000 R09: 0000000000000000
[  728.374472][T15091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  728.374488][T15091] R13: 00007fab057b6038 R14: 00007fab057b5fa0 R15: 00007ffc07d32c48
[  728.374525][T15091]  </TASK>
[  728.704524][T15094] can: request_module (can-proto-0) failed.
[  730.376027][T15118] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1720'.
[  730.659163][T15118] team0: Port device team_slave_1 removed
[  733.536701][T15152] can: request_module (can-proto-0) failed.
[  734.260863][T15159] FAULT_INJECTION: forcing a failure.
[  734.260863][T15159] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  734.278227][T14691] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5
[  734.317097][T15159] CPU: 1 UID: 0 PID: 15159 Comm: syz.0.1727 Not tainted syzkaller #0 PREEMPT(full) 
[  734.317136][T15159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  734.317152][T15159] Call Trace:
[  734.317172][T15159]  <TASK>
[  734.317182][T15159]  dump_stack_lvl+0x16c/0x1f0
[  734.317218][T15159]  should_fail_ex+0x512/0x640
[  734.317259][T15159]  strncpy_from_user+0x3b/0x2e0
[  734.317291][T15159]  getname_flags.part.0+0x8f/0x550
[  734.317327][T15159]  getname_flags+0x93/0xf0
[  734.317349][T15159]  do_sys_openat2+0xb8/0x1d0
[  734.317382][T15159]  ? __pfx_do_sys_openat2+0x10/0x10
[  734.317424][T15159]  __x64_sys_openat+0x174/0x210
[  734.317456][T15159]  ? __pfx___x64_sys_openat+0x10/0x10
[  734.317497][T15159]  do_syscall_64+0xcd/0x490
[  734.317526][T15159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.317547][T15159] RIP: 0033:0x7f53da98ebe9
[  734.317565][T15159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  734.317586][T15159] RSP: 002b:00007f53db718038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  734.317606][T15159] RAX: ffffffffffffffda RBX: 00007f53dabb5fa0 RCX: 00007f53da98ebe9
[  734.317621][T15159] RDX: 000000000000a2c2 RSI: 0000200000000280 RDI: ffffffffffffff9c
[  734.317635][T15159] RBP: 00007f53daa11e19 R08: 0000000000000000 R09: 0000000000000000
[  734.317648][T15159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  734.317661][T15159] R13: 00007f53dabb6038 R14: 00007f53dabb5fa0 R15: 00007ffd0105ab58
[  734.317690][T15159]  </TASK>
[  736.599531][T15179] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1735'.
[  737.373323][T15179] team0: Port device team_slave_1 removed
[  738.136876][T15189] FAULT_INJECTION: forcing a failure.
[  738.136876][T15189] name fail_futex, interval 1, probability 0, space 0, times 0
[  738.151434][T14691] Bluetooth: hci1: unexpected event 0x1d length: 10 > 5
[  738.157437][T15189] CPU: 0 UID: 0 PID: 15189 Comm: syz.3.1739 Not tainted syzkaller #0 PREEMPT(full) 
[  738.157474][T15189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  738.157489][T15189] Call Trace:
[  738.157498][T15189]  <TASK>
[  738.157509][T15189]  dump_stack_lvl+0x16c/0x1f0
[  738.157547][T15189]  should_fail_ex+0x512/0x640
[  738.157582][T15189]  ? unwind_get_return_address+0x59/0xa0
[  738.157614][T15189]  get_futex_key+0x1d0/0x1560
[  738.157650][T15189]  ? __pfx_get_futex_key+0x10/0x10
[  738.157682][T15189]  ? stack_trace_save+0x8e/0xc0
[  738.157710][T15189]  ? __pfx_stack_trace_save+0x10/0x10
[  738.157744][T15189]  futex_wait_setup+0x9d/0x550
[  738.157799][T15189]  __futex_wait+0x194/0x2f0
[  738.157838][T15189]  ? __pfx___futex_wait+0x10/0x10
[  738.157882][T15189]  ? __pfx_futex_wake_mark+0x10/0x10
[  738.157925][T15189]  ? futex_private_hash_put+0x176/0x300
[  738.157960][T15189]  ? futex_private_hash_put+0x18a/0x300
[  738.157994][T15189]  futex_wait+0xe8/0x380
[  738.158031][T15189]  ? __pfx_futex_wait+0x10/0x10
[  738.158073][T15189]  ? kmem_cache_free+0x2d1/0x4d0
[  738.158100][T15189]  ? fd_install+0x225/0x750
[  738.158125][T15189]  ? putname+0x154/0x1a0
[  738.158165][T15189]  do_futex+0x229/0x350
[  738.158198][T15189]  ? __pfx_do_futex+0x10/0x10
[  738.158240][T15189]  __x64_sys_futex+0x1e0/0x4c0
[  738.158275][T15189]  ? __x64_sys_openat+0x174/0x210
[  738.158313][T15189]  ? __pfx___x64_sys_futex+0x10/0x10
[  738.158359][T15189]  do_syscall_64+0xcd/0x490
[  738.158396][T15189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  738.158422][T15189] RIP: 0033:0x7fa3aad8ebe9
[  738.158444][T15189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  738.158469][T15189] RSP: 002b:00007fa3abc8f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  738.158496][T15189] RAX: ffffffffffffffda RBX: 00007fa3aafb5fa8 RCX: 00007fa3aad8ebe9
[  738.158514][T15189] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3aafb5fa8
[  738.158531][T15189] RBP: 00007fa3aafb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  738.158548][T15189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  738.158564][T15189] R13: 00007fa3aafb6038 R14: 00007ffc08158ac0 R15: 00007ffc08158ba8
[  738.158599][T15189]  </TASK>
[  739.315014][T15211] can: request_module (can-proto-0) failed.
[  739.510077][T14952] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1410 with max blocks 3 with error 117
[  739.532941][T14952] EXT4-fs (sda1): This should not happen!! Data will be lost
[  739.532941][T14952] 
[  739.559967][T14952] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 1394 with max blocks 13 with error 117
[  739.581280][T14952] EXT4-fs (sda1): This should not happen!! Data will be lost
[  739.581280][T14952] 
[  740.886490][T15232] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1745'.
[  741.056821][T15232] team0: Port device team_slave_1 removed
[  742.708163][T15255] can: request_module (can-proto-0) failed.
[  742.755158][T14691] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5
[  742.759712][T15259] FAULT_INJECTION: forcing a failure.
[  742.759712][T15259] name fail_futex, interval 1, probability 0, space 0, times 0
[  742.785591][T15259] CPU: 0 UID: 0 PID: 15259 Comm: syz.2.1749 Not tainted syzkaller #0 PREEMPT(full) 
[  742.785613][T15259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  742.785622][T15259] Call Trace:
[  742.785628][T15259]  <TASK>
[  742.785634][T15259]  dump_stack_lvl+0x16c/0x1f0
[  742.785657][T15259]  should_fail_ex+0x512/0x640
[  742.785680][T15259]  get_futex_key+0x1d0/0x1560
[  742.785699][T15259]  ? ldsem_up_read+0x44/0x80
[  742.785719][T15259]  ? __pfx_get_futex_key+0x10/0x10
[  742.785738][T15259]  ? __pfx_tty_read+0x10/0x10
[  742.785763][T15259]  futex_wake+0xea/0x530
[  742.785784][T15259]  ? bpf_lsm_file_permission+0x9/0x10
[  742.785805][T15259]  ? __pfx_futex_wake+0x10/0x10
[  742.785826][T15259]  ? vfs_read+0x23b/0xcf0
[  742.785845][T15259]  do_futex+0x1e3/0x350
[  742.785862][T15259]  ? __pfx_do_futex+0x10/0x10
[  742.785884][T15259]  __x64_sys_futex+0x1e0/0x4c0
[  742.785902][T15259]  ? fput+0x9b/0xd0
[  742.785919][T15259]  ? __pfx___x64_sys_futex+0x10/0x10
[  742.785935][T15259]  ? ksys_read+0x1ac/0x250
[  742.785949][T15259]  ? __pfx_ksys_read+0x10/0x10
[  742.785969][T15259]  do_syscall_64+0xcd/0x490
[  742.785988][T15259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.786002][T15259] RIP: 0033:0x7fab0558ebe9
[  742.786014][T15259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  742.786027][T15259] RSP: 002b:00007fab0636f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  742.786040][T15259] RAX: ffffffffffffffda RBX: 00007fab057b5fa8 RCX: 00007fab0558ebe9
[  742.786050][T15259] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fab057b5fac
[  742.786058][T15259] RBP: 00007fab057b5fa0 R08: 00007fab06370000 R09: 0000000000000000
[  742.786066][T15259] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  742.786075][T15259] R13: 00007fab057b6038 R14: 00007ffc07d32b60 R15: 00007ffc07d32c48
[  742.786093][T15259]  </TASK>
[  743.724142][T15272] can: request_module (can-proto-0) failed.
[  744.134862][T15280] can: request_module (can-proto-0) failed.
[  747.526303][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  747.532651][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  748.142301][T15321] can: request_module (can-proto-0) failed.
[  749.688054][T15333] FAULT_INJECTION: forcing a failure.
[  749.688054][T15333] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  749.702382][T15333] CPU: 1 UID: 0 PID: 15333 Comm: syz.1.1765 Not tainted syzkaller #0 PREEMPT(full) 
[  749.702417][T15333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  749.702433][T15333] Call Trace:
[  749.702441][T15333]  <TASK>
[  749.702451][T15333]  dump_stack_lvl+0x16c/0x1f0
[  749.702508][T15333]  should_fail_ex+0x512/0x640
[  749.702547][T15333]  _copy_to_user+0x32/0xd0
[  749.702575][T15333]  simple_read_from_buffer+0xcb/0x170
[  749.702605][T15333]  proc_fail_nth_read+0x197/0x240
[  749.702635][T15333]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  749.702666][T15333]  ? rw_verify_area+0xcf/0x6c0
[  749.702691][T15333]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  749.702719][T15333]  vfs_read+0x1e4/0xcf0
[  749.702752][T15333]  ? __pfx___mutex_lock+0x10/0x10
[  749.702784][T15333]  ? __pfx_vfs_read+0x10/0x10
[  749.702822][T15333]  ? __fget_files+0x20e/0x3c0
[  749.702861][T15333]  ksys_read+0x12a/0x250
[  749.702887][T15333]  ? __pfx_ksys_read+0x10/0x10
[  749.702915][T15333]  ? fput+0x9b/0xd0
[  749.702949][T15333]  do_syscall_64+0xcd/0x490
[  749.702988][T15333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  749.703014][T15333] RIP: 0033:0x7f043458d5fc
[  749.703035][T15333] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  749.703059][T15333] RSP: 002b:00007f04353e6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  749.703083][T15333] RAX: ffffffffffffffda RBX: 00007f04347b5fa0 RCX: 00007f043458d5fc
[  749.703101][T15333] RDX: 000000000000000f RSI: 00007f04353e60a0 RDI: 0000000000000005
[  749.703117][T15333] RBP: 00007f04353e6090 R08: 0000000000000000 R09: 0000000000000000
[  749.703133][T15333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  749.703152][T15333] R13: 00007f04347b6038 R14: 00007f04347b5fa0 R15: 00007ffeaa2b91d8
[  749.703188][T15333]  </TASK>
[  750.730043][T15346] can: request_module (can-proto-0) failed.
[  751.193436][T15355] can: request_module (can-proto-0) failed.
[  754.336319][T15383] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  754.342699][T15383] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  754.370147][T15383] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  754.388837][T15383] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  754.543213][T15394] can: request_module (can-proto-0) failed.
[  754.998926][T15402] can: request_module (can-proto-0) failed.
[  755.757612][T14691] Bluetooth: hci0: command 0x0c1a tx timeout
[  756.400591][T14691] Bluetooth: hci3: command 0x0c1a tx timeout
[  756.407401][ T8247] Bluetooth: hci2: command 0x0c1a tx timeout
[  756.413820][ T8247] Bluetooth: hci1: command 0x0c1a tx timeout
[  757.854222][T15428] can: request_module (can-proto-0) failed.
[  758.049267][T15431] can: request_module (can-proto-0) failed.
[  761.367687][T15460] can: request_module (can-proto-0) failed.
[  763.344737][T15417] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  764.732460][T15485] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  764.739096][T15485] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  764.746992][T15485] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  764.753703][T15485] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  764.759745][T15485] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  765.103790][T15497] can: request_module (can-proto-0) failed.
[  766.624705][T15417] Bluetooth: hci0: command 0x0c1a tx timeout
[  766.803383][T15417] Bluetooth: hci3: command 0x0c1a tx timeout
[  766.809422][ T8891] Bluetooth: hci2: command 0x0c1a tx timeout
[  766.815523][ T8247] Bluetooth: hci1: command 0x0c1a tx timeout
[  767.370270][T15525] can: request_module (can-proto-0) failed.
[  767.493090][T15532] can: request_module (can-proto-0) failed.
[  768.351796][T15548] FAULT_INJECTION: forcing a failure.
[  768.351796][T15548] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  768.434195][T15548] CPU: 1 UID: 0 PID: 15548 Comm: syz.2.1807 Not tainted syzkaller #0 PREEMPT(full) 
[  768.434231][T15548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  768.434246][T15548] Call Trace:
[  768.434255][T15548]  <TASK>
[  768.434272][T15548]  dump_stack_lvl+0x16c/0x1f0
[  768.434310][T15548]  should_fail_ex+0x512/0x640
[  768.434350][T15548]  _copy_to_user+0x32/0xd0
[  768.434380][T15548]  simple_read_from_buffer+0xcb/0x170
[  768.434410][T15548]  proc_fail_nth_read+0x197/0x240
[  768.434439][T15548]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  768.434470][T15548]  ? rw_verify_area+0xcf/0x6c0
[  768.434495][T15548]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  768.434524][T15548]  vfs_read+0x1e4/0xcf0
[  768.434557][T15548]  ? __pfx___mutex_lock+0x10/0x10
[  768.434590][T15548]  ? __pfx_vfs_read+0x10/0x10
[  768.434628][T15548]  ? __fget_files+0x20e/0x3c0
[  768.434666][T15548]  ksys_read+0x12a/0x250
[  768.434693][T15548]  ? __pfx_ksys_read+0x10/0x10
[  768.434733][T15548]  do_syscall_64+0xcd/0x490
[  768.434767][T15548]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  768.434794][T15548] RIP: 0033:0x7fab0558d5fc
[  768.434814][T15548] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  768.434838][T15548] RSP: 002b:00007fab0636f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  768.434861][T15548] RAX: ffffffffffffffda RBX: 00007fab057b5fa0 RCX: 00007fab0558d5fc
[  768.434879][T15548] RDX: 000000000000000f RSI: 00007fab0636f0a0 RDI: 0000000000000004
[  768.434895][T15548] RBP: 00007fab0636f090 R08: 0000000000000000 R09: 0000000000000000
[  768.434911][T15548] R10: 0000000000008051 R11: 0000000000000246 R12: 0000000000000001
[  768.434928][T15548] R13: 00007fab057b6038 R14: 00007fab057b5fa0 R15: 00007ffc07d32c48
[  768.434964][T15548]  </TASK>
[  768.496171][T15541] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  768.644563][T15541] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  768.650778][T15541] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  768.661554][T15541] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  769.846200][ T8891] Bluetooth: hci0: command 0x0c1a tx timeout
[  770.134126][T15308] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1410 with max blocks 3 with error 117
[  770.150698][T15308] EXT4-fs (sda1): This should not happen!! Data will be lost
[  770.150698][T15308] 
[  770.675520][T15563] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1812'.
[  770.728579][T15565] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1812'.
[  770.735093][ T8891] Bluetooth: hci3: command 0x0c1a tx timeout
[  770.745299][T15417] Bluetooth: hci2: command 0x0c1a tx timeout
[  770.751707][ T8247] Bluetooth: hci1: command 0x0c1a tx timeout
[  770.769325][T15563] netlink: 302 bytes leftover after parsing attributes in process `syz.2.1812'.
[  774.345302][T15591] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1823'.
[  775.209574][T15594] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  775.215787][T15594] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  775.222040][T15594] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  775.228429][T15594] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  775.646332][T15616] can: request_module (can-proto-0) failed.
[  776.487978][ T8891] Bluetooth: hci0: command 0x0c1a tx timeout
[  777.356917][ T8891] Bluetooth: hci3: command 0x0c1a tx timeout
[  777.363279][ T8247] Bluetooth: hci2: command 0x0c1a tx timeout
[  777.369559][T15417] Bluetooth: hci1: command 0x0c1a tx timeout
[  778.357578][T15652] can: request_module (can-proto-0) failed.
[  779.489704][T15672] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1829'.
[  780.485535][   T30] audit: type=1800 audit(1755920220.082:12): pid=15680 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1835" name="members" dev="configfs" ino=51330 res=0 errno=0
[  780.664628][T15683] FAULT_INJECTION: forcing a failure.
[  780.664628][T15683] name failslab, interval 1, probability 0, space 0, times 0
[  780.763931][T15683] CPU: 1 UID: 0 PID: 15683 Comm: syz.1.1834 Not tainted syzkaller #0 PREEMPT(full) 
[  780.763952][T15683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  780.763961][T15683] Call Trace:
[  780.763966][T15683]  <TASK>
[  780.763972][T15683]  dump_stack_lvl+0x16c/0x1f0
[  780.763994][T15683]  should_fail_ex+0x512/0x640
[  780.764014][T15683]  ? __kvmalloc_node_noprof+0x124/0x620
[  780.764032][T15683]  should_failslab+0xc2/0x120
[  780.764050][T15683]  __kvmalloc_node_noprof+0x137/0x620
[  780.764067][T15683]  ? seq_read_iter+0x826/0x12c0
[  780.764090][T15683]  ? seq_read_iter+0x826/0x12c0
[  780.764102][T15683]  seq_read_iter+0x826/0x12c0
[  780.764123][T15683]  seq_read+0x3a3/0x570
[  780.764136][T15683]  ? __pfx_seq_read+0x10/0x10
[  780.764153][T15683]  ? import_ubuf+0x1b6/0x220
[  780.764181][T15683]  full_proxy_read+0x12e/0x1a0
[  780.764204][T15683]  ? __pfx_full_proxy_read+0x10/0x10
[  780.764224][T15683]  vfs_readv+0x5be/0x8b0
[  780.764243][T15683]  ? __pfx_vfs_readv+0x10/0x10
[  780.764256][T15683]  ? __mutex_lock+0x1c5/0x1060
[  780.764279][T15683]  ? __pfx___mutex_lock+0x10/0x10
[  780.764303][T15683]  ? __fget_files+0x20e/0x3c0
[  780.764317][T15683]  ? __fget_files+0x140/0x3c0
[  780.764336][T15683]  ? do_readv+0x132/0x340
[  780.764348][T15683]  do_readv+0x132/0x340
[  780.764362][T15683]  ? __pfx_do_readv+0x10/0x10
[  780.764381][T15683]  do_syscall_64+0xcd/0x490
[  780.764401][T15683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  780.764415][T15683] RIP: 0033:0x7f043458ebe9
[  780.764426][T15683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  780.764440][T15683] RSP: 002b:00007f04353e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  780.764453][T15683] RAX: ffffffffffffffda RBX: 00007f04347b5fa0 RCX: 00007f043458ebe9
[  780.764463][T15683] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[  780.764471][T15683] RBP: 00007f04353e6090 R08: 0000000000000000 R09: 0000000000000000
[  780.764479][T15683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  780.764487][T15683] R13: 00007f04347b6038 R14: 00007f04347b5fa0 R15: 00007ffeaa2b91d8
[  780.764505][T15683]  </TASK>
[  782.671422][T15720] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1843'.
[  782.705380][T15417] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  783.219494][T15727] can: request_module (can-proto-0) failed.
[  784.735270][T15417] Bluetooth: hci3: command 0x0c1a tx timeout
[  784.798761][T15756] FAULT_INJECTION: forcing a failure.
[  784.798761][T15756] name failslab, interval 1, probability 0, space 0, times 0
[  784.933571][T15756] CPU: 1 UID: 0 PID: 15756 Comm: syz.3.1848 Not tainted syzkaller #0 PREEMPT(full) 
[  784.933610][T15756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  784.933626][T15756] Call Trace:
[  784.933635][T15756]  <TASK>
[  784.933645][T15756]  dump_stack_lvl+0x16c/0x1f0
[  784.933690][T15756]  should_fail_ex+0x512/0x640
[  784.933728][T15756]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  784.933765][T15756]  should_failslab+0xc2/0x120
[  784.933808][T15756]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  784.933842][T15756]  ? seq_open+0x55/0x170
[  784.933882][T15756]  ? __pfx_nvmf_dev_show+0x10/0x10
[  784.933909][T15756]  seq_open+0x55/0x170
[  784.933950][T15756]  ? __pfx_nvmf_dev_show+0x10/0x10
[  784.933979][T15756]  single_open+0xfc/0x1f0
[  784.934017][T15756]  ? __pfx_nvmf_dev_open+0x10/0x10
[  784.934046][T15756]  misc_open+0x35a/0x420
[  784.934075][T15756]  ? __pfx_misc_open+0x10/0x10
[  784.934102][T15756]  chrdev_open+0x231/0x6a0
[  784.934134][T15756]  ? __pfx_apparmor_file_open+0x10/0x10
[  784.934164][T15756]  ? __pfx_chrdev_open+0x10/0x10
[  784.934200][T15756]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  784.934241][T15756]  do_dentry_open+0x97f/0x1530
[  784.934274][T15756]  ? __pfx_chrdev_open+0x10/0x10
[  784.934317][T15756]  vfs_open+0x82/0x3f0
[  784.934361][T15756]  path_openat+0x1de4/0x2cb0
[  784.934405][T15756]  ? __pfx_path_openat+0x10/0x10
[  784.934454][T15756]  do_filp_open+0x20b/0x470
[  784.934487][T15756]  ? __pfx_do_filp_open+0x10/0x10
[  784.934544][T15756]  ? alloc_fd+0x471/0x7d0
[  784.934583][T15756]  do_sys_openat2+0x11b/0x1d0
[  784.934621][T15756]  ? __pfx_do_sys_openat2+0x10/0x10
[  784.934675][T15756]  __x64_sys_openat+0x174/0x210
[  784.934724][T15756]  ? __pfx___x64_sys_openat+0x10/0x10
[  784.934781][T15756]  do_syscall_64+0xcd/0x490
[  784.934818][T15756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  784.934846][T15756] RIP: 0033:0x7fa3aad8ebe9
[  784.934867][T15756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  784.934892][T15756] RSP: 002b:00007fa3abc8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  784.934917][T15756] RAX: ffffffffffffffda RBX: 00007fa3aafb5fa0 RCX: 00007fa3aad8ebe9
[  784.934936][T15756] RDX: 0000000000101202 RSI: 00002000000004c0 RDI: ffffffffffffff9c
[  784.934954][T15756] RBP: 00007fa3aae11e19 R08: 0000000000000000 R09: 0000000000000000
[  784.934971][T15756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  784.934986][T15756] R13: 00007fa3aafb6038 R14: 00007fa3aafb5fa0 R15: 00007ffc08158ba8
[  784.935023][T15756]  </TASK>
[  785.524393][T15756] sp0: Synchronizing with TNC
[  787.012616][T15417] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  787.234864][T15794] can: request_module (can-proto-0) failed.
[  788.069936][T15786] can: request_module (can-proto-0) failed.
[  789.055961][T15417] Bluetooth: hci1: command 0x0c1a tx timeout
[  789.146228][T15812] random: crng reseeded on system resumption
[  791.355934][T15848] FAULT_INJECTION: forcing a failure.
[  791.355934][T15848] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  791.515740][T15848] CPU: 0 UID: 0 PID: 15848 Comm: syz.0.1864 Not tainted syzkaller #0 PREEMPT(full) 
[  791.515776][T15848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  791.515792][T15848] Call Trace:
[  791.515800][T15848]  <TASK>
[  791.515809][T15848]  dump_stack_lvl+0x16c/0x1f0
[  791.515847][T15848]  should_fail_ex+0x512/0x640
[  791.515887][T15848]  _copy_to_iter+0x463/0x1710
[  791.515921][T15848]  ? __pfx__copy_to_iter+0x10/0x10
[  791.515945][T15848]  ? rcu_is_watching+0x12/0xc0
[  791.515973][T15848]  ? __kvmalloc_node_noprof+0x298/0x620
[  791.516015][T15848]  seq_read_iter+0xcf8/0x12c0
[  791.516063][T15848]  seq_read+0x3a3/0x570
[  791.516088][T15848]  ? __pfx_seq_read+0x10/0x10
[  791.516121][T15848]  ? import_ubuf+0x1b6/0x220
[  791.516173][T15848]  full_proxy_read+0x12e/0x1a0
[  791.516212][T15848]  ? __pfx_full_proxy_read+0x10/0x10
[  791.516247][T15848]  vfs_readv+0x5be/0x8b0
[  791.516282][T15848]  ? __pfx_vfs_readv+0x10/0x10
[  791.516307][T15848]  ? __mutex_lock+0x1c5/0x1060
[  791.516349][T15848]  ? __pfx___mutex_lock+0x10/0x10
[  791.516395][T15848]  ? __fget_files+0x20e/0x3c0
[  791.516420][T15848]  ? __fget_files+0x140/0x3c0
[  791.516456][T15848]  ? do_readv+0x132/0x340
[  791.516477][T15848]  do_readv+0x132/0x340
[  791.516503][T15848]  ? __pfx_do_readv+0x10/0x10
[  791.516540][T15848]  do_syscall_64+0xcd/0x490
[  791.516576][T15848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  791.516602][T15848] RIP: 0033:0x7f53da98ebe9
[  791.516622][T15848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  791.516647][T15848] RSP: 002b:00007f53db718038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  791.516672][T15848] RAX: ffffffffffffffda RBX: 00007f53dabb5fa0 RCX: 00007f53da98ebe9
[  791.516689][T15848] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[  791.516705][T15848] RBP: 00007f53db718090 R08: 0000000000000000 R09: 0000000000000000
[  791.516720][T15848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  791.516735][T15848] R13: 00007f53dabb6038 R14: 00007f53dabb5fa0 R15: 00007ffd0105ab58
[  791.516773][T15848]  </TASK>
[  792.540275][T15855] FAULT_INJECTION: forcing a failure.
[  792.540275][T15855] name failslab, interval 1, probability 0, space 0, times 0
[  792.586038][T15855] CPU: 1 UID: 0 PID: 15855 Comm: syz.3.1867 Not tainted syzkaller #0 PREEMPT(full) 
[  792.586076][T15855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  792.586092][T15855] Call Trace:
[  792.586101][T15855]  <TASK>
[  792.586112][T15855]  dump_stack_lvl+0x16c/0x1f0
[  792.586152][T15855]  should_fail_ex+0x512/0x640
[  792.586188][T15855]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  792.586225][T15855]  should_failslab+0xc2/0x120
[  792.586260][T15855]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  792.586290][T15855]  ? find_held_lock+0x2b/0x80
[  792.586315][T15855]  ? vm_area_dup+0x27/0x8d0
[  792.586341][T15855]  ? dup_mmap+0x5cb/0x21d0
[  792.586382][T15855]  vm_area_dup+0x27/0x8d0
[  792.586412][T15855]  dup_mmap+0x877/0x21d0
[  792.586464][T15855]  ? __pfx_dup_mmap+0x10/0x10
[  792.586528][T15855]  copy_process+0x4081/0x7690
[  792.586580][T15855]  ? __pfx_copy_process+0x10/0x10
[  792.586613][T15855]  ? futex_private_hash_put+0x176/0x300
[  792.586650][T15855]  ? futex_private_hash_put+0x18a/0x300
[  792.586688][T15855]  kernel_clone+0xfc/0x930
[  792.586720][T15855]  ? __pfx_futex_wake+0x10/0x10
[  792.586756][T15855]  ? __pfx_kernel_clone+0x10/0x10
[  792.586799][T15855]  ? kasan_quarantine_put+0x10a/0x240
[  792.586840][T15855]  __do_sys_clone+0xce/0x120
[  792.586873][T15855]  ? __pfx___do_sys_clone+0x10/0x10
[  792.586925][T15855]  ? xfd_validate_state+0x61/0x180
[  792.586983][T15855]  do_syscall_64+0xcd/0x490
[  792.587022][T15855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  792.587050][T15855] RIP: 0033:0x7fa3aad8ebe9
[  792.587072][T15855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  792.587099][T15855] RSP: 002b:00007fa3abc8efe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  792.587125][T15855] RAX: ffffffffffffffda RBX: 00007fa3aafb5fa0 RCX: 00007fa3aad8ebe9
[  792.587143][T15855] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000010008000
[  792.587160][T15855] RBP: 00007fa3aae11e19 R08: 0000000000000000 R09: 0000000000000000
[  792.587177][T15855] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  792.587193][T15855] R13: 00007fa3aafb6038 R14: 00007fa3aafb5fa0 R15: 00007ffc08158ba8
[  792.587231][T15855]  </TASK>
[  793.280429][T15857] ubi0: detaching mtd0
[  793.429514][T15857] ubi0: mtd0 is detached
[  793.705575][T15417] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  794.571883][T15892] random: crng reseeded on system resumption
[  795.067258][T15901] can: request_module (can-proto-0) failed.
[  795.777301][T15417] Bluetooth: hci0: command 0x0c1a tx timeout
[  796.030847][T15904] zswap: compressor *� not available
[  797.912159][T15963] can: request_module (can-proto-0) failed.
[  798.540530][T15976] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1888'.
[  800.687710][T15307] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1404 with max blocks 6 with error 117
[  800.709170][T15307] EXT4-fs (sda1): This should not happen!! Data will be lost
[  800.709170][T15307] 
[  800.861553][T16002] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1900'.
[  800.997069][T16001] random: crng reseeded on system resumption
[  801.336288][T16006] FAULT_INJECTION: forcing a failure.
[  801.336288][T16006] name fail_futex, interval 1, probability 0, space 0, times 0
[  801.532773][T16006] CPU: 0 UID: 0 PID: 16006 Comm: syz.2.1895 Not tainted syzkaller #0 PREEMPT(full) 
[  801.532811][T16006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  801.532825][T16006] Call Trace:
[  801.532834][T16006]  <TASK>
[  801.532843][T16006]  dump_stack_lvl+0x16c/0x1f0
[  801.532880][T16006]  should_fail_ex+0x512/0x640
[  801.532921][T16006]  get_futex_key+0x1d0/0x1560
[  801.532957][T16006]  ? __pfx_get_futex_key+0x10/0x10
[  801.532989][T16006]  ? __pick_eevdf+0x30a/0x670
[  801.533023][T16006]  futex_wait_setup+0x9d/0x550
[  801.533071][T16006]  __futex_wait+0x194/0x2f0
[  801.533109][T16006]  ? __pfx___futex_wait+0x10/0x10
[  801.533155][T16006]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  801.533188][T16006]  ? lockdep_hardirqs_on+0x7c/0x110
[  801.533226][T16006]  ? __pfx_futex_wake_mark+0x10/0x10
[  801.533271][T16006]  ? futex_private_hash_put+0x176/0x300
[  801.533308][T16006]  ? futex_private_hash_put+0x18a/0x300
[  801.533343][T16006]  futex_wait+0xe8/0x380
[  801.533380][T16006]  ? __pfx_futex_wait+0x10/0x10
[  801.533425][T16006]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  801.533456][T16006]  ? rcu_preempt_deferred_qs_irqrestore+0x500/0xbc0
[  801.533493][T16006]  ? lock_sync+0xc0/0x110
[  801.533532][T16006]  do_futex+0x229/0x350
[  801.533565][T16006]  ? __pfx_do_futex+0x10/0x10
[  801.533597][T16006]  ? __fget_files+0x20e/0x3c0
[  801.533634][T16006]  __x64_sys_futex+0x1e0/0x4c0
[  801.533668][T16006]  ? fput+0x9b/0xd0
[  801.533702][T16006]  ? __pfx___x64_sys_futex+0x10/0x10
[  801.533735][T16006]  ? xfd_validate_state+0x61/0x180
[  801.533771][T16006]  ? __pfx_ksys_write+0x10/0x10
[  801.533811][T16006]  do_syscall_64+0xcd/0x490
[  801.533847][T16006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  801.533875][T16006] RIP: 0033:0x7fab0558ebe9
[  801.533896][T16006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  801.533925][T16006] RSP: 002b:00007fab0636f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  801.533951][T16006] RAX: ffffffffffffffda RBX: 00007fab057b5fa8 RCX: 00007fab0558ebe9
[  801.533970][T16006] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fab057b5fa8
[  801.533987][T16006] RBP: 00007fab057b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  801.534004][T16006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  801.534021][T16006] R13: 00007fab057b6038 R14: 00007ffc07d32b60 R15: 00007ffc07d32c48
[  801.534058][T16006]  </TASK>
[  803.166436][T16024] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  803.277123][T16024] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  803.328916][T16024] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  803.353537][T16024] page_type: f5(slab)
[  803.372973][T16024] raw: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001
[  803.397383][T16024] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  803.407513][T16024] head: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001
[  803.443427][T16024] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  803.527290][T16024] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  803.570762][T16024] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  803.627213][T16024] page dumped because: unmovable page
[  803.675499][T16024] page_owner tracks the page as allocated
[  803.708395][T16024] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 7734, tgid 7734 (syz.3.378), ts 198147980685, free_ts 196316045914
[  803.757369][T16024]  post_alloc_hook+0x1c0/0x230
[  803.879882][T16024]  get_page_from_freelist+0x132b/0x38e0
[  803.885466][T16024]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  803.967277][T16024]  alloc_pages_mpol+0x1fb/0x550
[  803.972210][T16024]  new_slab+0x247/0x330
[  803.976382][T16024]  ___slab_alloc+0xcf2/0x1740
[  803.983538][T16024]  __slab_alloc.constprop.0+0x56/0xb0
[  804.035988][T16024]  __kmalloc_cache_noprof+0xfb/0x3e0
[  804.059639][T16024]  kobject_uevent_env+0x265/0x1870
[  804.064820][T16024]  __kobject_del+0x168/0x1f0
[  804.108700][T16024]  kobject_put+0x327/0x5a0
[  804.128976][T16024]  net_rx_queue_update_kobjects+0x54d/0x770
[  804.134898][T16024]  netdev_unregister_kobject+0x154/0x540
[  804.170234][T16024]  unregister_netdevice_many_notify+0x14f0/0x24c0
[  804.235843][T16024]  unregister_netdevice_queue+0x305/0x3f0
[  804.261990][T16024]  __tun_detach+0x1249/0x1540
[  804.266702][T16024] page last free pid 5880 tgid 5880 stack trace:
[  804.307317][T16024]  __free_frozen_pages+0x7d5/0x10f0
[  804.385671][T16024]  __put_partials+0x165/0x1c0
[  804.427215][T16024]  qlist_free_all+0x4d/0x120
[  804.431899][T16024]  kasan_quarantine_reduce+0x195/0x1e0
[  804.467348][T16024]  __kasan_slab_alloc+0x69/0x90
[  804.477187][T16024]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  804.482783][T16024]  getname_flags.part.0+0x4c/0x550
[  804.489736][T16024]  getname_flags+0x93/0xf0
[  804.494267][T16024]  vfs_fstatat+0xe1/0xf0
[  804.501088][T16024]  __do_sys_newfstatat+0x97/0x120
[  804.507391][T16024]  do_syscall_64+0xcd/0x490
[  804.511932][T16024]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  805.448446][T16056] can: request_module (can-proto-0) failed.
[  807.215454][T16076] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1906'.
[  807.757325][T16088] FAULT_INJECTION: forcing a failure.
[  807.757325][T16088] name fail_futex, interval 1, probability 0, space 0, times 0
[  807.770205][T16088] CPU: 1 UID: 0 PID: 16088 Comm: syz.0.1907 Not tainted syzkaller #0 PREEMPT(full) 
[  807.770226][T16088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  807.770234][T16088] Call Trace:
[  807.770240][T16088]  <TASK>
[  807.770246][T16088]  dump_stack_lvl+0x16c/0x1f0
[  807.770268][T16088]  should_fail_ex+0x512/0x640
[  807.770290][T16088]  get_futex_key+0x1d0/0x1560
[  807.770310][T16088]  ? __pfx_get_futex_key+0x10/0x10
[  807.770332][T16088]  futex_wait_setup+0x9d/0x550
[  807.770356][T16088]  __futex_wait+0x194/0x2f0
[  807.770376][T16088]  ? __pfx___futex_wait+0x10/0x10
[  807.770398][T16088]  ? __pfx_futex_wake_mark+0x10/0x10
[  807.770420][T16088]  ? futex_private_hash_put+0x176/0x300
[  807.770437][T16088]  ? futex_private_hash_put+0x18a/0x300
[  807.770455][T16088]  futex_wait+0xe8/0x380
[  807.770473][T16088]  ? __pfx_futex_wait+0x10/0x10
[  807.770502][T16088]  do_futex+0x229/0x350
[  807.770519][T16088]  ? __pfx_do_futex+0x10/0x10
[  807.770535][T16088]  ? __fget_files+0x20e/0x3c0
[  807.770554][T16088]  __x64_sys_futex+0x1e0/0x4c0
[  807.770571][T16088]  ? fput+0x9b/0xd0
[  807.770589][T16088]  ? __pfx___x64_sys_futex+0x10/0x10
[  807.770606][T16088]  ? xfd_validate_state+0x61/0x180
[  807.770631][T16088]  ? __pfx_ksys_write+0x10/0x10
[  807.770653][T16088]  do_syscall_64+0xcd/0x490
[  807.770673][T16088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  807.770688][T16088] RIP: 0033:0x7f53da98ebe9
[  807.770700][T16088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  807.770713][T16088] RSP: 002b:00007f53db7180e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  807.770726][T16088] RAX: ffffffffffffffda RBX: 00007f53dabb5fa8 RCX: 00007f53da98ebe9
[  807.770736][T16088] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f53dabb5fa8
[  807.770745][T16088] RBP: 00007f53dabb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  807.770753][T16088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  807.770761][T16088] R13: 00007f53dabb6038 R14: 00007ffd0105aa70 R15: 00007ffd0105ab58
[  807.770780][T16088]  </TASK>
[  808.248166][T16100] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  808.269178][T16100] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  808.279929][T16100] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  808.357172][T16100] page_type: f5(slab)
[  808.361338][T16100] raw: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001
[  808.370440][T16100] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  808.380792][T16100] head: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001
[  808.397590][T16100] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  808.416914][T16100] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  808.457286][T16100] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  808.487726][T16100] page dumped because: unmovable page
[  808.512058][T16100] page_owner tracks the page as allocated
[  808.528984][T16096] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1914'.
[  808.544729][T16100] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 7734, tgid 7734 (syz.3.378), ts 198147980685, free_ts 196316045914
[  808.597218][T16100]  post_alloc_hook+0x1c0/0x230
[  808.617235][T16100]  get_page_from_freelist+0x132b/0x38e0
[  808.622963][T16100]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  808.663173][T16100]  alloc_pages_mpol+0x1fb/0x550
[  808.674544][T16100]  new_slab+0x247/0x330
[  808.684412][T16110] can: request_module (can-proto-0) failed.
[  808.690763][T16100]  ___slab_alloc+0xcf2/0x1740
[  808.714932][T16100]  __slab_alloc.constprop.0+0x56/0xb0
[  808.737474][T16100]  __kmalloc_cache_noprof+0xfb/0x3e0
[  808.777506][T16100]  kobject_uevent_env+0x265/0x1870
[  808.787701][T16100]  __kobject_del+0x168/0x1f0
[  808.796013][T16100]  kobject_put+0x327/0x5a0
[  808.820203][T16100]  net_rx_queue_update_kobjects+0x54d/0x770
[  808.837297][T16100]  netdev_unregister_kobject+0x154/0x540
[  808.847237][T16100]  unregister_netdevice_many_notify+0x14f0/0x24c0
[  808.865325][T16100]  unregister_netdevice_queue+0x305/0x3f0
[  808.873435][T16100]  __tun_detach+0x1249/0x1540
[  808.917544][T16100] page last free pid 5880 tgid 5880 stack trace:
[  808.939431][T16100]  __free_frozen_pages+0x7d5/0x10f0
[  808.980050][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  808.988565][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  809.041063][T16100]  __put_partials+0x165/0x1c0
[  809.066949][T16100]  qlist_free_all+0x4d/0x120
[  809.122510][T16100]  kasan_quarantine_reduce+0x195/0x1e0
[  809.128783][T16100]  __kasan_slab_alloc+0x69/0x90
[  809.133737][T16100]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  809.152304][T16100]  getname_flags.part.0+0x4c/0x550
[  809.161606][T16100]  getname_flags+0x93/0xf0
[  809.272246][T16100]  vfs_fstatat+0xe1/0xf0
[  809.276548][T16100]  __do_sys_newfstatat+0x97/0x120
[  809.315546][T16100]  do_syscall_64+0xcd/0x490
[  809.349005][T16100]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  810.402260][T16123] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  810.667213][T16123] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  810.690189][T16123] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  810.718651][T16123] page_type: f5(slab)
[  810.735246][T16123] raw: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001
[  810.909435][T16133] can: request_module (can-proto-0) failed.
[  810.926328][T16123] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  811.037997][T16123] head: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001
[  811.046733][T16123] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  811.098998][T15938] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 1390 with max blocks 17 with error 117
[  811.130053][T15938] EXT4-fs (sda1): This should not happen!! Data will be lost
[  811.130053][T15938] 
[  811.162861][T16123] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  811.183231][T16123] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  811.237787][T16123] page dumped because: unmovable page
[  811.278936][T16123] page_owner tracks the page as allocated
[  811.309333][T16123] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 7734, tgid 7734 (syz.3.378), ts 198147980685, free_ts 196316045914
[  811.431001][T16123]  post_alloc_hook+0x1c0/0x230
[  811.435846][T16123]  get_page_from_freelist+0x132b/0x38e0
[  811.478085][T16123]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  811.484026][T16123]  alloc_pages_mpol+0x1fb/0x550
[  811.578413][T16123]  new_slab+0x247/0x330
[  811.616475][T16123]  ___slab_alloc+0xcf2/0x1740
[  811.637434][T16123]  __slab_alloc.constprop.0+0x56/0xb0
[  811.695199][T16123]  __kmalloc_cache_noprof+0xfb/0x3e0
[  811.708985][T16123]  kobject_uevent_env+0x265/0x1870
[  811.717337][T16123]  __kobject_del+0x168/0x1f0
[  811.744853][T16123]  kobject_put+0x327/0x5a0
[  811.772434][T16123]  net_rx_queue_update_kobjects+0x54d/0x770
[  811.802863][T16123]  netdev_unregister_kobject+0x154/0x540
[  811.847130][T16123]  unregister_netdevice_many_notify+0x14f0/0x24c0
[  811.853618][T16123]  unregister_netdevice_queue+0x305/0x3f0
[  811.954967][T16123]  __tun_detach+0x1249/0x1540
[  811.967197][T16123] page last free pid 5880 tgid 5880 stack trace:
[  811.977361][T16123]  __free_frozen_pages+0x7d5/0x10f0
[  811.982603][T16123]  __put_partials+0x165/0x1c0
[  812.007319][T16123]  qlist_free_all+0x4d/0x120
[  812.023196][T16123]  kasan_quarantine_reduce+0x195/0x1e0
[  812.037133][T16123]  __kasan_slab_alloc+0x69/0x90
[  812.047601][T16123]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  812.062582][T16123]  getname_flags.part.0+0x4c/0x550
[  812.075424][T16123]  getname_flags+0x93/0xf0
[  812.085340][T16123]  vfs_fstatat+0xe1/0xf0
[  812.095733][T16123]  __do_sys_newfstatat+0x97/0x120
[  812.141861][T16123]  do_syscall_64+0xcd/0x490
[  812.162921][T16123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  812.585635][T16160] nfs: Unknown parameter 'w��`_�����I+;��	��HY� ������Lu�>>��uh�*��C<+����'
[  812.711923][T16162] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22
[  812.962716][T16167] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1922'.
[  813.940120][T16163] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input23
[  814.040282][T16177] FAULT_INJECTION: forcing a failure.
[  814.040282][T16177] name fail_futex, interval 1, probability 0, space 0, times 0
[  814.197872][T16177] CPU: 0 UID: 0 PID: 16177 Comm: syz.1.1924 Not tainted syzkaller #0 PREEMPT(full) 
[  814.197894][T16177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  814.197903][T16177] Call Trace:
[  814.197909][T16177]  <TASK>
[  814.197915][T16177]  dump_stack_lvl+0x16c/0x1f0
[  814.197938][T16177]  should_fail_ex+0x512/0x640
[  814.197960][T16177]  get_futex_key+0x1d0/0x1560
[  814.197980][T16177]  ? __pfx_get_futex_key+0x10/0x10
[  814.198004][T16177]  ? __pick_eevdf+0x30a/0x670
[  814.198025][T16177]  futex_wait_setup+0x9d/0x550
[  814.198050][T16177]  __futex_wait+0x194/0x2f0
[  814.198071][T16177]  ? __pfx___futex_wait+0x10/0x10
[  814.198090][T16177]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  814.198105][T16177]  ? lockdep_hardirqs_on+0x7c/0x110
[  814.198124][T16177]  ? __pfx_futex_wake_mark+0x10/0x10
[  814.198146][T16177]  ? futex_private_hash_put+0x176/0x300
[  814.198164][T16177]  ? futex_private_hash_put+0x18a/0x300
[  814.198181][T16177]  futex_wait+0xe8/0x380
[  814.198199][T16177]  ? __pfx_futex_wait+0x10/0x10
[  814.198228][T16177]  do_futex+0x229/0x350
[  814.198245][T16177]  ? __pfx_do_futex+0x10/0x10
[  814.198262][T16177]  ? __fget_files+0x20e/0x3c0
[  814.198280][T16177]  __x64_sys_futex+0x1e0/0x4c0
[  814.198298][T16177]  ? fput+0x9b/0xd0
[  814.198316][T16177]  ? __pfx___x64_sys_futex+0x10/0x10
[  814.198333][T16177]  ? xfd_validate_state+0x61/0x180
[  814.198352][T16177]  ? __pfx_ksys_write+0x10/0x10
[  814.198372][T16177]  do_syscall_64+0xcd/0x490
[  814.198391][T16177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  814.198405][T16177] RIP: 0033:0x7f043458ebe9
[  814.198416][T16177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  814.198430][T16177] RSP: 002b:00007f04353c50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  814.198443][T16177] RAX: ffffffffffffffda RBX: 00007f04347b6098 RCX: 00007f043458ebe9
[  814.198452][T16177] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f04347b6098
[  814.198461][T16177] RBP: 00007f04347b6090 R08: 0000000000000000 R09: 0000000000000000
[  814.198469][T16177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  814.198477][T16177] R13: 00007f04347b6128 R14: 00007ffeaa2b90f0 R15: 00007ffeaa2b91d8
[  814.198495][T16177]  </TASK>
[  814.739561][T16182] FAULT_INJECTION: forcing a failure.
[  814.739561][T16182] name fail_futex, interval 1, probability 0, space 0, times 0
[  814.820599][T16182] CPU: 1 UID: 0 PID: 16182 Comm: syz.0.1929 Not tainted syzkaller #0 PREEMPT(full) 
[  814.820636][T16182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  814.820660][T16182] Call Trace:
[  814.820669][T16182]  <TASK>
[  814.820679][T16182]  dump_stack_lvl+0x16c/0x1f0
[  814.820720][T16182]  should_fail_ex+0x512/0x640
[  814.820762][T16182]  get_futex_key+0x1d0/0x1560
[  814.820800][T16182]  ? __pfx_get_futex_key+0x10/0x10
[  814.820830][T16182]  ? futex_private_hash_put+0x176/0x300
[  814.820872][T16182]  futex_wake+0xea/0x530
[  814.820912][T16182]  ? __pfx_futex_wake+0x10/0x10
[  814.820956][T16182]  ? msgctl_stat+0x542/0x780
[  814.821000][T16182]  do_futex+0x1e3/0x350
[  814.821033][T16182]  ? __pfx_do_futex+0x10/0x10
[  814.821068][T16182]  ? find_held_lock+0x2b/0x80
[  814.821099][T16182]  __x64_sys_futex+0x1e0/0x4c0
[  814.821136][T16182]  ? __pfx___x64_sys_futex+0x10/0x10
[  814.821171][T16182]  ? syscall_user_dispatch+0x78/0x140
[  814.821221][T16182]  do_syscall_64+0xcd/0x490
[  814.821258][T16182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  814.821285][T16182] RIP: 0033:0x7f53da98ebe9
[  814.821306][T16182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  814.821332][T16182] RSP: 002b:00007f53db7180e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  814.821357][T16182] RAX: ffffffffffffffda RBX: 00007f53dabb5fa8 RCX: 00007f53da98ebe9
[  814.821374][T16182] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f53dabb5fac
[  814.821391][T16182] RBP: 00007f53dabb5fa0 R08: 00007f53db719000 R09: 0000000000000000
[  814.821408][T16182] R10: 0000000000000841 R11: 0000000000000246 R12: 0000000000000000
[  814.821424][T16182] R13: 00007f53dabb6038 R14: 00007ffd0105aa70 R15: 00007ffd0105ab58
[  814.821460][T16182]  </TASK>
[  816.079010][T16196] can: request_module (can-proto-0) failed.
[  816.247237][T16203] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  816.317384][T16203] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  816.373679][T16203] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  816.418832][T16203] page_type: f5(slab)
[  816.433531][T16203] raw: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001
[  816.474964][T16203] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  816.519053][T16203] head: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001
[  816.561006][T16203] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  816.602494][T16203] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  816.634080][T16203] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  816.657909][T16203] page dumped because: unmovable page
[  816.669465][T16203] page_owner tracks the page as allocated
[  816.695765][T16203] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 7734, tgid 7734 (syz.3.378), ts 198147980685, free_ts 196316045914
[  816.852007][T16203]  post_alloc_hook+0x1c0/0x230
[  816.892938][T16203]  get_page_from_freelist+0x132b/0x38e0
[  816.937138][T16203]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  816.943923][T16203]  alloc_pages_mpol+0x1fb/0x550
[  816.997276][T16203]  new_slab+0x247/0x330
[  817.001484][T16203]  ___slab_alloc+0xcf2/0x1740
[  817.016884][T16203]  __slab_alloc.constprop.0+0x56/0xb0
[  817.027309][T16203]  __kmalloc_cache_noprof+0xfb/0x3e0
[  817.032648][T16203]  kobject_uevent_env+0x265/0x1870
[  817.087204][T16203]  __kobject_del+0x168/0x1f0
[  817.153371][T16203]  kobject_put+0x327/0x5a0
[  817.159558][T16203]  net_rx_queue_update_kobjects+0x54d/0x770
[  817.187224][T16203]  netdev_unregister_kobject+0x154/0x540
[  817.195806][T16203]  unregister_netdevice_many_notify+0x14f0/0x24c0
[  817.240604][T16203]  unregister_netdevice_queue+0x305/0x3f0
[  817.267217][T16203]  __tun_detach+0x1249/0x1540
[  817.313623][T16203] page last free pid 5880 tgid 5880 stack trace:
[  817.347341][T16203]  __free_frozen_pages+0x7d5/0x10f0
[  817.354599][T16203]  __put_partials+0x165/0x1c0
[  817.443872][T16203]  qlist_free_all+0x4d/0x120
[  817.449968][T16203]  kasan_quarantine_reduce+0x195/0x1e0
[  817.491770][T16203]  __kasan_slab_alloc+0x69/0x90
[  817.500745][T16203]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  817.506220][T16203]  getname_flags.part.0+0x4c/0x550
[  817.570943][T16203]  getname_flags+0x93/0xf0
[  817.587174][T16203]  vfs_fstatat+0xe1/0xf0
[  817.612008][T16203]  __do_sys_newfstatat+0x97/0x120
[  817.617056][T16203]  do_syscall_64+0xcd/0x490
[  817.667161][T16203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  818.103674][T16223] FAULT_INJECTION: forcing a failure.
[  818.103674][T16223] name failslab, interval 1, probability 0, space 0, times 0
[  818.148402][T16223] CPU: 1 UID: 0 PID: 16223 Comm: syz.1.1936 Not tainted syzkaller #0 PREEMPT(full) 
[  818.148437][T16223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  818.148452][T16223] Call Trace:
[  818.148462][T16223]  <TASK>
[  818.148471][T16223]  dump_stack_lvl+0x16c/0x1f0
[  818.148508][T16223]  should_fail_ex+0x512/0x640
[  818.148542][T16223]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  818.148577][T16223]  should_failslab+0xc2/0x120
[  818.148609][T16223]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  818.148646][T16223]  ? __pmd_alloc+0xbf/0x930
[  818.148688][T16223]  __pmd_alloc+0xbf/0x930
[  818.148727][T16223]  __handle_mm_fault+0xa06/0x2a50
[  818.148759][T16223]  ? mt_find+0x3ef/0xa30
[  818.148794][T16223]  ? __pfx___handle_mm_fault+0x10/0x10
[  818.148819][T16223]  ? __pfx_mt_find+0x10/0x10
[  818.148871][T16223]  ? find_vma+0xbf/0x140
[  818.148898][T16223]  ? __pfx_find_vma+0x10/0x10
[  818.148932][T16223]  handle_mm_fault+0x589/0xd10
[  818.148958][T16223]  ? __bpf_trace_exceptions+0x1/0x40
[  818.148997][T16223]  do_user_addr_fault+0x7a6/0x1370
[  818.149038][T16223]  ? rcu_is_watching+0x12/0xc0
[  818.149068][T16223]  exc_page_fault+0x5c/0xb0
[  818.149099][T16223]  asm_exc_page_fault+0x26/0x30
[  818.149124][T16223] RIP: 0010:rep_movs_alternative+0x33/0x90
[  818.149151][T16223] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb
[  818.149176][T16223] RSP: 0018:ffffc90004ce7920 EFLAGS: 00050206
[  818.149196][T16223] RAX: 696c666e69203a30 RBX: 000000000000002a RCX: 000000000000002a
[  818.149213][T16223] RDX: ffffed1004a51006 RSI: ffff888025288000 RDI: 0000000000000000
[  818.149230][T16223] RBP: 000000000000002a R08: 0000000000000000 R09: ffffed1004a51005
[  818.149245][T16223] R10: ffff888025288029 R11: 0000000000000000 R12: 0000000000000000
[  818.149261][T16223] R13: ffffc90004ce7b38 R14: ffff888025288000 R15: 0000000000000000
[  818.149297][T16223]  _copy_to_iter+0x4eb/0x1710
[  818.149333][T16223]  ? __pfx__copy_to_iter+0x10/0x10
[  818.149356][T16223]  ? rcu_is_watching+0x12/0xc0
[  818.149386][T16223]  ? __kvmalloc_node_noprof+0x298/0x620
[  818.149427][T16223]  seq_read_iter+0xcf8/0x12c0
[  818.149471][T16223]  seq_read+0x3a3/0x570
[  818.149497][T16223]  ? __pfx_seq_read+0x10/0x10
[  818.149530][T16223]  ? import_ubuf+0x1b6/0x220
[  818.149583][T16223]  full_proxy_read+0x12e/0x1a0
[  818.149629][T16223]  ? __pfx_full_proxy_read+0x10/0x10
[  818.149663][T16223]  vfs_readv+0x5be/0x8b0
[  818.149700][T16223]  ? __pfx_vfs_readv+0x10/0x10
[  818.149724][T16223]  ? __mutex_lock+0x1c5/0x1060
[  818.149767][T16223]  ? __pfx___mutex_lock+0x10/0x10
[  818.149813][T16223]  ? __fget_files+0x20e/0x3c0
[  818.149838][T16223]  ? __fget_files+0x140/0x3c0
[  818.149875][T16223]  ? do_readv+0x132/0x340
[  818.149898][T16223]  do_readv+0x132/0x340
[  818.149925][T16223]  ? __pfx_do_readv+0x10/0x10
[  818.149962][T16223]  do_syscall_64+0xcd/0x490
[  818.149998][T16223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  818.150023][T16223] RIP: 0033:0x7f043458ebe9
[  818.150042][T16223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  818.150067][T16223] RSP: 002b:00007f04353e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  818.150090][T16223] RAX: ffffffffffffffda RBX: 00007f04347b5fa0 RCX: 00007f043458ebe9
[  818.150108][T16223] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[  818.150124][T16223] RBP: 00007f04353e6090 R08: 0000000000000000 R09: 0000000000000000
[  818.150140][T16223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  818.150155][T16223] R13: 00007f04347b6038 R14: 00007f04347b5fa0 R15: 00007ffeaa2b91d8
[  818.150192][T16223]  </TASK>
[  819.122415][T16235] nfs: Unknown parameter 'w��`_�����I+;��	��HY� ������Lu�>>��uh�*��C<+����'
[  819.261818][T16239] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24
[  819.896577][T16242] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25
[  820.411806][T16256] nbd: socks must be embedded in a SOCK_ITEM attr
[  821.010920][T16267] nbd: socks must be embedded in a SOCK_ITEM attr
[  822.942380][T16289] can: request_module (can-proto-0) failed.
[  825.452848][T16314] nfs: Unknown parameter 'w��`_�����I+;��	��HY� ������Lu�>>��uh�*��C<+����'
[  825.591565][T16316] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26
[  825.684398][T16318] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27
[  827.511887][T16327] nbd: socks must be embedded in a SOCK_ITEM attr
[  827.552782][T16330] nfs: Unknown parameter 'w��`_�����I+;��	��HY� ������Lu�>>��uh�*��C<+����'
[  827.578826][T16332] FAULT_INJECTION: forcing a failure.
[  827.578826][T16332] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  827.702217][T16337] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input28
[  827.877669][T16332] CPU: 0 UID: 0 PID: 16332 Comm: syz.2.1961 Not tainted syzkaller #0 PREEMPT(full) 
[  827.877691][T16332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  827.877706][T16332] Call Trace:
[  827.877712][T16332]  <TASK>
[  827.877717][T16332]  dump_stack_lvl+0x16c/0x1f0
[  827.877740][T16332]  should_fail_ex+0x512/0x640
[  827.877762][T16332]  should_fail_alloc_page+0xe7/0x130
[  827.877782][T16332]  prepare_alloc_pages+0x3c2/0x610
[  827.877803][T16332]  ? arch_stack_walk+0xa6/0x100
[  827.877820][T16332]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  827.877842][T16332]  ? stack_trace_save+0x8e/0xc0
[  827.877858][T16332]  ? __pfx_stack_trace_save+0x10/0x10
[  827.877872][T16332]  ? rcu_is_watching+0x12/0xc0
[  827.877886][T16332]  ? stack_depot_save_flags+0x29/0x9c0
[  827.877906][T16332]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  827.877924][T16332]  ? kasan_save_stack+0x42/0x60
[  827.877938][T16332]  ? kasan_save_stack+0x33/0x60
[  827.877952][T16332]  ? kasan_save_track+0x14/0x30
[  827.877966][T16332]  ? __kasan_slab_alloc+0x89/0x90
[  827.877981][T16332]  ? kmem_cache_alloc_noprof+0x1cb/0x3b0
[  827.877997][T16332]  ? __pmd_alloc+0xbf/0x930
[  827.878017][T16332]  ? rep_movs_alternative+0x33/0x90
[  827.878030][T16332]  ? _copy_to_iter+0x4eb/0x1710
[  827.878042][T16332]  ? seq_read_iter+0xcf8/0x12c0
[  827.878054][T16332]  ? seq_read+0x3a3/0x570
[  827.878065][T16332]  ? full_proxy_read+0x12e/0x1a0
[  827.878084][T16332]  ? vfs_readv+0x5be/0x8b0
[  827.878096][T16332]  ? do_readv+0x132/0x340
[  827.878108][T16332]  ? do_syscall_64+0xcd/0x490
[  827.878125][T16332]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  827.878141][T16332]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  827.878162][T16332]  ? policy_nodemask+0xea/0x4e0
[  827.878182][T16332]  alloc_pages_mpol+0x1fb/0x550
[  827.878200][T16332]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  827.878223][T16332]  ? __pfx_filemap_map_pages+0x10/0x10
[  827.878239][T16332]  alloc_pages_noprof+0x131/0x390
[  827.878257][T16332]  pte_alloc_one+0x1c/0x3a0
[  827.878273][T16332]  __do_fault+0x320/0x490
[  827.878289][T16332]  ? do_raw_spin_lock+0x12c/0x2b0
[  827.878312][T16332]  ? __pfx_filemap_map_pages+0x10/0x10
[  827.878327][T16332]  do_pte_missing+0x1a6/0x3ba0
[  827.878343][T16332]  ? do_raw_spin_unlock+0x172/0x230
[  827.878365][T16332]  ? __pmd_alloc+0x3fb/0x930
[  827.878387][T16332]  __handle_mm_fault+0x152a/0x2a50
[  827.878404][T16332]  ? mt_find+0x3ef/0xa30
[  827.878426][T16332]  ? __pfx___handle_mm_fault+0x10/0x10
[  827.878439][T16332]  ? __pfx_mt_find+0x10/0x10
[  827.878469][T16332]  ? find_vma+0xbf/0x140
[  827.878486][T16332]  ? __pfx_find_vma+0x10/0x10
[  827.878506][T16332]  handle_mm_fault+0x589/0xd10
[  827.878521][T16332]  ? __bpf_trace_exceptions+0x1/0x40
[  827.878544][T16332]  do_user_addr_fault+0x7a6/0x1370
[  827.878567][T16332]  ? rcu_is_watching+0x12/0xc0
[  827.878583][T16332]  exc_page_fault+0x5c/0xb0
[  827.878602][T16332]  asm_exc_page_fault+0x26/0x30
[  827.878615][T16332] RIP: 0010:rep_movs_alternative+0x33/0x90
[  827.878630][T16332] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb
[  827.878644][T16332] RSP: 0018:ffffc90003487920 EFLAGS: 00050206
[  827.878656][T16332] RAX: 696c666e69203a30 RBX: 000000000000002a RCX: 000000000000002a
[  827.878665][T16332] RDX: ffffed100b4bc006 RSI: ffff88805a5e0000 RDI: 0000000000000000
[  827.878674][T16332] RBP: 000000000000002a R08: 0000000000000000 R09: ffffed100b4bc005
[  827.878683][T16332] R10: ffff88805a5e0029 R11: 0000000000000000 R12: 0000000000000000
[  827.878692][T16332] R13: ffffc90003487b38 R14: ffff88805a5e0000 R15: 0000000000000000
[  827.878719][T16332]  _copy_to_iter+0x4eb/0x1710
[  827.878737][T16332]  ? __pfx__copy_to_iter+0x10/0x10
[  827.878750][T16332]  ? rcu_is_watching+0x12/0xc0
[  827.878764][T16332]  ? __kvmalloc_node_noprof+0x298/0x620
[  827.878786][T16332]  seq_read_iter+0xcf8/0x12c0
[  827.878808][T16332]  seq_read+0x3a3/0x570
[  827.878822][T16332]  ? __pfx_seq_read+0x10/0x10
[  827.878840][T16332]  ? import_ubuf+0x1b6/0x220
[  827.878868][T16332]  full_proxy_read+0x12e/0x1a0
[  827.878890][T16332]  ? __pfx_full_proxy_read+0x10/0x10
[  827.878910][T16332]  vfs_readv+0x5be/0x8b0
[  827.878929][T16332]  ? __pfx_vfs_readv+0x10/0x10
[  827.878942][T16332]  ? __mutex_lock+0x1c5/0x1060
[  827.878966][T16332]  ? __pfx___mutex_lock+0x10/0x10
[  827.878991][T16332]  ? __fget_files+0x20e/0x3c0
[  827.879005][T16332]  ? __fget_files+0x140/0x3c0
[  827.879024][T16332]  ? do_readv+0x132/0x340
[  827.879037][T16332]  do_readv+0x132/0x340
[  827.879052][T16332]  ? __pfx_do_readv+0x10/0x10
[  827.879072][T16332]  do_syscall_64+0xcd/0x490
[  827.879091][T16332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  827.879105][T16332] RIP: 0033:0x7fab0558ebe9
[  827.879116][T16332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  827.879129][T16332] RSP: 002b:00007fab0636f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  827.879142][T16332] RAX: ffffffffffffffda RBX: 00007fab057b5fa0 RCX: 00007fab0558ebe9
[  827.879151][T16332] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[  827.879160][T16332] RBP: 00007fab0636f090 R08: 0000000000000000 R09: 0000000000000000
[  827.879168][T16332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  827.879176][T16332] R13: 00007fab057b6038 R14: 00007fab057b5fa0 R15: 00007ffc07d32c48
[  827.879195][T16332]  </TASK>
[  828.647143][T14952] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1395 with max blocks 18 with error 117
[  828.660041][T14952] EXT4-fs (sda1): This should not happen!! Data will be lost
[  828.660041][T14952] 
[  828.670630][T14952] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 1393 with max blocks 14 with error 117
[  828.683345][T14952] EXT4-fs (sda1): This should not happen!! Data will be lost
[  828.683345][T14952] 
[  829.146224][T16339] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input29
[  831.173139][T16389] warning: `syz.3.1977' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  831.555599][T16403] FAULT_INJECTION: forcing a failure.
[  831.555599][T16403] name failslab, interval 1, probability 0, space 0, times 0
[  831.580835][T16403] CPU: 1 UID: 0 PID: 16403 Comm: syz.2.1981 Not tainted syzkaller #0 PREEMPT(full) 
[  831.580871][T16403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  831.580887][T16403] Call Trace:
[  831.580897][T16403]  <TASK>
[  831.580907][T16403]  dump_stack_lvl+0x16c/0x1f0
[  831.580944][T16403]  should_fail_ex+0x512/0x640
[  831.580978][T16403]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  831.581013][T16403]  ? __pfx_filemap_map_pages+0x10/0x10
[  831.581043][T16403]  should_failslab+0xc2/0x120
[  831.581076][T16403]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  831.581108][T16403]  ? ptlock_alloc+0x1f/0x70
[  831.581138][T16403]  ? __pfx_filemap_map_pages+0x10/0x10
[  831.581167][T16403]  ptlock_alloc+0x1f/0x70
[  831.581192][T16403]  pte_alloc_one+0x82/0x3a0
[  831.581221][T16403]  __do_fault+0x320/0x490
[  831.581250][T16403]  ? do_raw_spin_lock+0x12c/0x2b0
[  831.581291][T16403]  ? __pfx_filemap_map_pages+0x10/0x10
[  831.581320][T16403]  do_pte_missing+0x1a6/0x3ba0
[  831.581349][T16403]  ? do_raw_spin_unlock+0x172/0x230
[  831.581395][T16403]  ? __pmd_alloc+0x3fb/0x930
[  831.581435][T16403]  __handle_mm_fault+0x152a/0x2a50
[  831.581468][T16403]  ? mt_find+0x3ef/0xa30
[  831.581504][T16403]  ? __pfx___handle_mm_fault+0x10/0x10
[  831.581530][T16403]  ? __pfx_mt_find+0x10/0x10
[  831.581585][T16403]  ? find_vma+0xbf/0x140
[  831.581617][T16403]  ? __pfx_find_vma+0x10/0x10
[  831.581653][T16403]  handle_mm_fault+0x589/0xd10
[  831.581682][T16403]  ? __bpf_trace_exceptions+0x1/0x40
[  831.581722][T16403]  do_user_addr_fault+0x7a6/0x1370
[  831.581764][T16403]  ? rcu_is_watching+0x12/0xc0
[  831.581795][T16403]  exc_page_fault+0x5c/0xb0
[  831.581831][T16403]  asm_exc_page_fault+0x26/0x30
[  831.581855][T16403] RIP: 0010:rep_movs_alternative+0x33/0x90
[  831.581882][T16403] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb
[  831.581907][T16403] RSP: 0018:ffffc90003a5f920 EFLAGS: 00050206
[  831.581928][T16403] RAX: 696c666e69203a30 RBX: 000000000000002a RCX: 000000000000002a
[  831.581946][T16403] RDX: ffffed100e653806 RSI: ffff88807329c000 RDI: 0000000000000000
[  831.581963][T16403] RBP: 000000000000002a R08: 0000000000000000 R09: ffffed100e653805
[  831.581979][T16403] R10: ffff88807329c029 R11: 0000000000000000 R12: 0000000000000000
[  831.581996][T16403] R13: ffffc90003a5fb38 R14: ffff88807329c000 R15: 0000000000000000
[  831.582032][T16403]  _copy_to_iter+0x4eb/0x1710
[  831.582069][T16403]  ? __pfx__copy_to_iter+0x10/0x10
[  831.582093][T16403]  ? rcu_is_watching+0x12/0xc0
[  831.582120][T16403]  ? __kvmalloc_node_noprof+0x298/0x620
[  831.582161][T16403]  seq_read_iter+0xcf8/0x12c0
[  831.582204][T16403]  seq_read+0x3a3/0x570
[  831.582230][T16403]  ? __pfx_seq_read+0x10/0x10
[  831.582264][T16403]  ? import_ubuf+0x1b6/0x220
[  831.582318][T16403]  full_proxy_read+0x12e/0x1a0
[  831.582360][T16403]  ? __pfx_full_proxy_read+0x10/0x10
[  831.582401][T16403]  vfs_readv+0x5be/0x8b0
[  831.582438][T16403]  ? __pfx_vfs_readv+0x10/0x10
[  831.582462][T16403]  ? __mutex_lock+0x1c5/0x1060
[  831.582506][T16403]  ? __pfx___mutex_lock+0x10/0x10
[  831.582553][T16403]  ? __fget_files+0x20e/0x3c0
[  831.582579][T16403]  ? __fget_files+0x140/0x3c0
[  831.582615][T16403]  ? do_readv+0x132/0x340
[  831.582640][T16403]  do_readv+0x132/0x340
[  831.582667][T16403]  ? __pfx_do_readv+0x10/0x10
[  831.582705][T16403]  do_syscall_64+0xcd/0x490
[  831.582742][T16403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  831.582768][T16403] RIP: 0033:0x7fab0558ebe9
[  831.582789][T16403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  831.582813][T16403] RSP: 002b:00007fab0636f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  831.582837][T16403] RAX: ffffffffffffffda RBX: 00007fab057b5fa0 RCX: 00007fab0558ebe9
[  831.582855][T16403] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[  831.582871][T16403] RBP: 00007fab0636f090 R08: 0000000000000000 R09: 0000000000000000
[  831.582888][T16403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  831.582904][T16403] R13: 00007fab057b6038 R14: 00007fab057b5fa0 R15: 00007ffc07d32c48
[  831.582941][T16403]  </TASK>
[  832.145745][T16400] can: request_module (can-proto-0) failed.
[  832.557289][T16398] capability: warning: `syz.3.1980' uses 32-bit capabilities (legacy support in use)
[  833.296243][T16422] bridge0: port 3(bond0) entered blocking state
[  833.336350][T16422] bridge0: port 3(bond0) entered disabled state
[  833.362061][T16422] bond0: entered allmulticast mode
[  833.395172][T16422] bond_slave_0: entered allmulticast mode
[  833.415748][T16431] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1986'.
[  833.427755][T16422] bond_slave_1: entered allmulticast mode
[  833.434556][T16422] bond0: entered promiscuous mode
[  833.439723][T16422] bond_slave_0: entered promiscuous mode
[  833.445555][T16422] bond_slave_1: entered promiscuous mode
[  833.451799][T16422] bridge0: port 3(bond0) entered blocking state
[  833.458323][T16422] bridge0: port 3(bond0) entered forwarding state
[  834.020378][T16445] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.2.1987: bg 4: bad block bitmap checksum
[  834.099519][T16445] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 74
[  834.113992][T16445] EXT4-fs (sda1): This should not happen!! Data will be lost
[  834.113992][T16445] 
[  835.632560][T16483] FAULT_INJECTION: forcing a failure.
[  835.632560][T16483] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  835.646027][T16483] CPU: 1 UID: 0 PID: 16483 Comm: syz.0.1997 Not tainted syzkaller #0 PREEMPT(full) 
[  835.646048][T16483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  835.646057][T16483] Call Trace:
[  835.646063][T16483]  <TASK>
[  835.646069][T16483]  dump_stack_lvl+0x16c/0x1f0
[  835.646091][T16483]  should_fail_ex+0x512/0x640
[  835.646114][T16483]  should_fail_alloc_page+0xe7/0x130
[  835.646135][T16483]  prepare_alloc_pages+0x3c2/0x610
[  835.646159][T16483]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  835.646177][T16483]  ? __lock_acquire+0x62e/0x1ce0
[  835.646201][T16483]  ? __lock_acquire+0x62e/0x1ce0
[  835.646221][T16483]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  835.646244][T16483]  ? find_held_lock+0x2b/0x80
[  835.646259][T16483]  ? is_bpf_text_address+0x8a/0x1a0
[  835.646277][T16483]  ? bpf_ksym_find+0x124/0x1c0
[  835.646290][T16483]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  835.646313][T16483]  ? policy_nodemask+0xea/0x4e0
[  835.646332][T16483]  alloc_pages_mpol+0x1fb/0x550
[  835.646351][T16483]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  835.646375][T16483]  folio_alloc_mpol_noprof+0x36/0x2f0
[  835.646397][T16483]  shmem_alloc_folio+0x135/0x160
[  835.646420][T16483]  shmem_alloc_and_add_folio+0x499/0xc20
[  835.646440][T16483]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  835.646459][T16483]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  835.646479][T16483]  shmem_get_folio_gfp+0x67f/0x1600
[  835.646499][T16483]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  835.646517][T16483]  ? css_rstat_updated+0x1c2/0x510
[  835.646535][T16483]  shmem_fault+0x1fe/0xa30
[  835.646552][T16483]  ? __pfx_shmem_fault+0x10/0x10
[  835.646567][T16483]  ? mod_memcg_lruvec_state+0x389/0x5f0
[  835.646593][T16483]  ? __pfx_filemap_map_pages+0x10/0x10
[  835.646611][T16483]  ? pte_alloc_one+0x2b6/0x3a0
[  835.646629][T16483]  ? __pfx_filemap_map_pages+0x10/0x10
[  835.646650][T16483]  __do_fault+0x10d/0x490
[  835.646665][T16483]  ? do_raw_spin_lock+0x12c/0x2b0
[  835.646699][T16483]  ? __pfx_filemap_map_pages+0x10/0x10
[  835.646714][T16483]  do_pte_missing+0x1a6/0x3ba0
[  835.646735][T16483]  ? do_raw_spin_unlock+0x172/0x230
[  835.646757][T16483]  ? __pmd_alloc+0x3fb/0x930
[  835.646778][T16483]  __handle_mm_fault+0x152a/0x2a50
[  835.646795][T16483]  ? mt_find+0x3ef/0xa30
[  835.646816][T16483]  ? __pfx___handle_mm_fault+0x10/0x10
[  835.646829][T16483]  ? __pfx_mt_find+0x10/0x10
[  835.646858][T16483]  ? find_vma+0xbf/0x140
[  835.646875][T16483]  ? __pfx_find_vma+0x10/0x10
[  835.646900][T16483]  handle_mm_fault+0x589/0xd10
[  835.646915][T16483]  ? __bpf_trace_exceptions+0x1/0x40
[  835.646938][T16483]  do_user_addr_fault+0x7a6/0x1370
[  835.646961][T16483]  ? rcu_is_watching+0x12/0xc0
[  835.646979][T16483]  exc_page_fault+0x5c/0xb0
[  835.646998][T16483]  asm_exc_page_fault+0x26/0x30
[  835.647011][T16483] RIP: 0010:rep_movs_alternative+0x33/0x90
[  835.647026][T16483] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb
[  835.647039][T16483] RSP: 0018:ffffc90002ed7920 EFLAGS: 00050206
[  835.647052][T16483] RAX: 696c666e69203a30 RBX: 000000000000002a RCX: 000000000000002a
[  835.647068][T16483] RDX: ffffed1004a51806 RSI: ffff88802528c000 RDI: 0000000000000000
[  835.647083][T16483] RBP: 000000000000002a R08: 0000000000000000 R09: ffffed1004a51805
[  835.647098][T16483] R10: ffff88802528c029 R11: 0000000000000000 R12: 0000000000000000
[  835.647113][T16483] R13: ffffc90002ed7b38 R14: ffff88802528c000 R15: 0000000000000000
[  835.647146][T16483]  _copy_to_iter+0x4eb/0x1710
[  835.647175][T16483]  ? __pfx__copy_to_iter+0x10/0x10
[  835.647189][T16483]  ? rcu_is_watching+0x12/0xc0
[  835.647203][T16483]  ? __kvmalloc_node_noprof+0x298/0x620
[  835.647226][T16483]  seq_read_iter+0xcf8/0x12c0
[  835.647248][T16483]  seq_read+0x3a3/0x570
[  835.647262][T16483]  ? __pfx_seq_read+0x10/0x10
[  835.647280][T16483]  ? import_ubuf+0x1b6/0x220
[  835.647309][T16483]  full_proxy_read+0x12e/0x1a0
[  835.647332][T16483]  ? __pfx_full_proxy_read+0x10/0x10
[  835.647352][T16483]  vfs_readv+0x5be/0x8b0
[  835.647371][T16483]  ? __pfx_vfs_readv+0x10/0x10
[  835.647384][T16483]  ? __mutex_lock+0x1c5/0x1060
[  835.647408][T16483]  ? __pfx___mutex_lock+0x10/0x10
[  835.647433][T16483]  ? __fget_files+0x20e/0x3c0
[  835.647447][T16483]  ? __fget_files+0x140/0x3c0
[  835.647467][T16483]  ? do_readv+0x132/0x340
[  835.647480][T16483]  do_readv+0x132/0x340
[  835.647494][T16483]  ? __pfx_do_readv+0x10/0x10
[  835.647514][T16483]  do_syscall_64+0xcd/0x490
[  835.647534][T16483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  835.647548][T16483] RIP: 0033:0x7f53da98ebe9
[  835.647559][T16483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  835.647573][T16483] RSP: 002b:00007f53db718038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  835.647585][T16483] RAX: ffffffffffffffda RBX: 00007f53dabb5fa0 RCX: 00007f53da98ebe9
[  835.647595][T16483] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[  835.647603][T16483] RBP: 00007f53db718090 R08: 0000000000000000 R09: 0000000000000000
[  835.647612][T16483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  835.647620][T16483] R13: 00007f53dabb6038 R14: 00007f53dabb5fa0 R15: 00007ffd0105ab58
[  835.647639][T16483]  </TASK>
[  837.101054][T16493] EXT4-fs error (device sda1): ext4_discard_preallocations:5671: comm syz.2.1996: Error -117 reading block bitmap for 4
[  837.519986][T16500] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1999'.
[  837.572226][T16496] could not allocate digest TFM handle 
[  838.073172][T16501] kexec: Could not allocate control_code_buffer
[  838.176404][T16512] can: request_module (can-proto-0) failed.
[  840.513544][T16557] FAULT_INJECTION: forcing a failure.
[  840.513544][T16557] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  840.560498][T16557] CPU: 0 UID: 0 PID: 16557 Comm: syz.1.2014 Not tainted syzkaller #0 PREEMPT(full) 
[  840.560531][T16557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  840.560540][T16557] Call Trace:
[  840.560546][T16557]  <TASK>
[  840.560552][T16557]  dump_stack_lvl+0x16c/0x1f0
[  840.560574][T16557]  should_fail_ex+0x512/0x640
[  840.560597][T16557]  _copy_to_user+0x32/0xd0
[  840.560612][T16557]  simple_read_from_buffer+0xcb/0x170
[  840.560629][T16557]  proc_fail_nth_read+0x197/0x240
[  840.560645][T16557]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  840.560662][T16557]  ? rw_verify_area+0xcf/0x6c0
[  840.560676][T16557]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  840.560692][T16557]  vfs_read+0x1e4/0xcf0
[  840.560710][T16557]  ? __pfx___mutex_lock+0x10/0x10
[  840.560729][T16557]  ? __pfx_vfs_read+0x10/0x10
[  840.560750][T16557]  ? __fget_files+0x20e/0x3c0
[  840.560770][T16557]  ksys_read+0x12a/0x250
[  840.560785][T16557]  ? __pfx_ksys_read+0x10/0x10
[  840.560807][T16557]  do_syscall_64+0xcd/0x490
[  840.560827][T16557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  840.560842][T16557] RIP: 0033:0x7f043458d5fc
[  840.560854][T16557] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  840.560868][T16557] RSP: 002b:00007f04353e6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  840.560882][T16557] RAX: ffffffffffffffda RBX: 00007f04347b5fa0 RCX: 00007f043458d5fc
[  840.560892][T16557] RDX: 000000000000000f RSI: 00007f04353e60a0 RDI: 0000000000000004
[  840.560901][T16557] RBP: 00007f04353e6090 R08: 0000000000000000 R09: 0000000000000000
[  840.560909][T16557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  840.560918][T16557] R13: 00007f04347b6038 R14: 00007f04347b5fa0 R15: 00007ffeaa2b91d8
[  840.560936][T16557]  </TASK>
[  842.905096][T16604] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2024'.
[  843.218465][T16608] can: request_module (can-proto-0) failed.
[  843.682764][T13382] smpboot: CPU 0 is now offline
[  843.789792][T16613] lo: entered allmulticast mode
[  843.796481][T16613] lo: left allmulticast mode
[  843.828874][T15307] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1394 with max blocks 19 with error 117
[  843.895854][T15307] EXT4-fs (sda1): This should not happen!! Data will be lost
[  843.895854][T15307] 
[  843.966762][T15307] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 1396 with max blocks 11 with error 117
[  844.020795][T15307] EXT4-fs (sda1): This should not happen!! Data will be lost
[  844.020795][T15307] 
[  847.877754][T16692] could not allocate digest TFM handle 
[  848.183023][T16707] could not allocate digest TFM handle 
[  848.579308][T16730] synth uevent: /devices/virtual/block/nbd6: unknown uevent action string
[  848.616536][T16730] block nbd6: uevent: failed to send synthetic uevent: -22
[  848.766284][T16735] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input30
[  849.497951][T16753] can: request_module (can-proto-0) failed.
[  851.639801][T16801] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31
[  852.123173][T16805] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input32
[  852.929937][T16813] usb usb37: usbfs: process 16813 (syz.0.2070) did not claim interface 0 before use
[  853.077790][T16817] FAULT_INJECTION: forcing a failure.
[  853.077790][T16817] name fail_futex, interval 1, probability 0, space 0, times 0
[  853.207225][T16817] CPU: 1 UID: 0 PID: 16817 Comm: syz.0.2070 Not tainted syzkaller #0 PREEMPT(full) 
[  853.207248][T16817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  853.207257][T16817] Call Trace:
[  853.207263][T16817]  <TASK>
[  853.207269][T16817]  dump_stack_lvl+0x16c/0x1f0
[  853.207292][T16817]  should_fail_ex+0x512/0x640
[  853.207315][T16817]  get_futex_key+0x1d0/0x1560
[  853.207335][T16817]  ? __pfx_get_futex_key+0x10/0x10
[  853.207352][T16817]  ? __mutex_trylock_common+0xe9/0x250
[  853.207376][T16817]  futex_wake+0xea/0x530
[  853.207397][T16817]  ? __pfx_futex_wake+0x10/0x10
[  853.207425][T16817]  do_futex+0x1e3/0x350
[  853.207443][T16817]  ? __pfx_do_futex+0x10/0x10
[  853.207458][T16817]  ? __might_fault+0xe3/0x190
[  853.207479][T16817]  mm_release+0x24e/0x300
[  853.207496][T16817]  do_exit+0x68e/0x2bf0
[  853.207518][T16817]  ? __pfx_do_exit+0x10/0x10
[  853.207536][T16817]  ? do_raw_spin_lock+0x12c/0x2b0
[  853.207556][T16817]  ? find_held_lock+0x2b/0x80
[  853.207572][T16817]  do_group_exit+0xd3/0x2a0
[  853.207592][T16817]  get_signal+0x2673/0x26d0
[  853.207613][T16817]  ? __pfx___sys_sendto+0x10/0x10
[  853.207632][T16817]  ? __pfx_get_signal+0x10/0x10
[  853.207647][T16817]  ? do_futex+0x122/0x350
[  853.207664][T16817]  ? __pfx_do_futex+0x10/0x10
[  853.207682][T16817]  arch_do_signal_or_restart+0x8f/0x790
[  853.207703][T16817]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  853.207730][T16817]  exit_to_user_mode_loop+0x84/0x110
[  853.207752][T16817]  do_syscall_64+0x3f6/0x490
[  853.207772][T16817]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  853.207786][T16817] RIP: 0033:0x7f53da98ebe9
[  853.207798][T16817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  853.207812][T16817] RSP: 002b:00007f53d8bf60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  853.207826][T16817] RAX: fffffffffffffe00 RBX: 00007f53dabb6098 RCX: 00007f53da98ebe9
[  853.207836][T16817] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f53dabb6098
[  853.207845][T16817] RBP: 00007f53dabb6090 R08: 0000000000000000 R09: 0000000000000000
[  853.207853][T16817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  853.207862][T16817] R13: 00007f53dabb6128 R14: 00007ffd0105aa70 R15: 00007ffd0105ab58
[  853.207880][T16817]  </TASK>
[  854.648553][T16832] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2074'.
[  855.704627][T16864] can: request_module (can-proto-0) failed.
[  855.931934][T16872] can: request_module (can-proto-0) failed.
[  857.118816][T16893] XFS: irix_symlink_mode sysctl option is deprecated.
[  860.486530][T16938] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33
[  860.942959][T16947] can: request_module (can-proto-0) failed.
[  861.342982][T16952] Malformed UNC in devname
[  861.342982][T16952] 
[  861.419146][T16952] CIFS: VFS: Malformed UNC in devname
[  862.138792][T16957] FAULT_INJECTION: forcing a failure.
[  862.138792][T16957] name fail_futex, interval 1, probability 0, space 0, times 0
[  862.272395][T16957] CPU: 1 UID: 0 PID: 16957 Comm: syz.0.2101 Not tainted syzkaller #0 PREEMPT(full) 
[  862.272422][T16957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  862.272432][T16957] Call Trace:
[  862.272438][T16957]  <TASK>
[  862.272445][T16957]  dump_stack_lvl+0x16c/0x1f0
[  862.272467][T16957]  should_fail_ex+0x512/0x640
[  862.272491][T16957]  get_futex_key+0x1d0/0x1560
[  862.272514][T16957]  ? __pfx_get_futex_key+0x10/0x10
[  862.272536][T16957]  futex_wake+0xea/0x530
[  862.272556][T16957]  ? rcu_is_watching+0x12/0xc0
[  862.272571][T16957]  ? __pfx_futex_wake+0x10/0x10
[  862.272591][T16957]  ? kmem_cache_free+0x2d1/0x4d0
[  862.272607][T16957]  ? fd_install+0x225/0x750
[  862.272622][T16957]  ? putname+0x154/0x1a0
[  862.272643][T16957]  do_futex+0x1e3/0x350
[  862.272659][T16957]  ? __pfx_do_futex+0x10/0x10
[  862.272681][T16957]  __x64_sys_futex+0x1e0/0x4c0
[  862.272699][T16957]  ? __x64_sys_openat+0x174/0x210
[  862.272727][T16957]  ? __pfx___x64_sys_futex+0x10/0x10
[  862.272752][T16957]  do_syscall_64+0xcd/0x490
[  862.272774][T16957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  862.272788][T16957] RIP: 0033:0x7f53da98ebe9
[  862.272801][T16957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  862.272814][T16957] RSP: 002b:00007f53db7180e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  862.272827][T16957] RAX: ffffffffffffffda RBX: 00007f53dabb5fa8 RCX: 00007f53da98ebe9
[  862.272837][T16957] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f53dabb5fac
[  862.272845][T16957] RBP: 00007f53dabb5fa0 R08: 00007f53db719000 R09: 0000000000000000
[  862.272854][T16957] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  862.272862][T16957] R13: 00007f53dabb6038 R14: 00007ffd0105aa70 R15: 00007ffd0105ab58
[  862.272880][T16957]  </TASK>
[  862.459478][   T30] audit: type=1800 audit(6050887597.855:13): pid=16957 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2101" name="file0" dev="tmpfs" ino=2800 res=0 errno=0
[  865.900537][T16973] nbd: socks must be embedded in a SOCK_ITEM attr
[  866.033757][T16992] syz.3.2110: vmalloc error: size 12288, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  866.145501][T16992] CPU: 1 UID: 0 PID: 16992 Comm: syz.3.2110 Not tainted syzkaller #0 PREEMPT(full) 
[  866.145525][T16992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  866.145534][T16992] Call Trace:
[  866.145540][T16992]  <TASK>
[  866.145546][T16992]  dump_stack_lvl+0x16c/0x1f0
[  866.145570][T16992]  warn_alloc+0x248/0x3a0
[  866.145589][T16992]  ? __pfx_warn_alloc+0x10/0x10
[  866.145606][T16992]  ? alloc_pages_mpol+0x25a/0x550
[  866.145625][T16992]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  866.145650][T16992]  __vmalloc_node_range_noprof+0x11d4/0x14b0
[  866.145671][T16992]  ? kernel_clone+0xfc/0x930
[  866.145693][T16992]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  866.145714][T16992]  ? kernel_clone+0xfc/0x930
[  866.145729][T16992]  __vmalloc_node_noprof+0xad/0xf0
[  866.145742][T16992]  ? kernel_clone+0xfc/0x930
[  866.145761][T16992]  copy_process+0x2c70/0x7690
[  866.145777][T16992]  ? __pfx___futex_wait+0x10/0x10
[  866.145797][T16992]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  866.145813][T16992]  ? lockdep_hardirqs_on+0x7c/0x110
[  866.145835][T16992]  ? __pfx_copy_process+0x10/0x10
[  866.145852][T16992]  ? futex_private_hash_put+0x176/0x300
[  866.145878][T16992]  ? futex_private_hash_put+0x18a/0x300
[  866.145902][T16992]  kernel_clone+0xfc/0x930
[  866.145921][T16992]  ? __pfx_kernel_clone+0x10/0x10
[  866.145948][T16992]  ? 0xffffffff81000000
[  866.145959][T16992]  __do_sys_clone+0xce/0x120
[  866.145976][T16992]  ? __pfx___do_sys_clone+0x10/0x10
[  866.145997][T16992]  ? 0xffffffff81000000
[  866.146014][T16992]  ? syscall_user_dispatch+0x78/0x140
[  866.146040][T16992]  do_syscall_64+0xcd/0x490
[  866.146062][T16992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  866.146076][T16992] RIP: 0033:0x7fa3aad8ebe9
[  866.146089][T16992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  866.146103][T16992] RSP: 002b:00007fa3abc6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  866.146116][T16992] RAX: ffffffffffffffda RBX: 00007fa3aafb6090 RCX: 00007fa3aad8ebe9
[  866.146128][T16992] RDX: 9999999999999999 RSI: 0000000000000004 RDI: 0000000000000000
[  866.146137][T16992] RBP: 00007fa3aae11e19 R08: 0000000000000009 R09: 0000000000000000
[  866.146146][T16992] R10: ffffffff81000000 R11: 0000000000000246 R12: 0000000000000000
[  866.146155][T16992] R13: 00007fa3aafb6128 R14: 00007fa3aafb6090 R15: 00007ffc08158ba8
[  866.146169][T16992]  ? 0xffffffff81000000
[  866.146185][T16992]  </TASK>
[  866.146191][T16992] Mem-Info:
[  868.011911][T17017] vivid-003: =================  START STATUS  =================
[  868.105776][T17017] vivid-003: Radio HW Seek Mode: Bounded
[  868.197253][T17017] vivid-003: Radio Programmable HW Seek: false
[  868.203438][T17017] vivid-003: RDS Rx I/O Mode: Block I/O
[  868.332004][T17017] vivid-003: Generate RBDS Instead of RDS: false
[  868.409513][T17017] vivid-003: RDS Reception: true
[  868.437924][T17017] vivid-003: RDS Program Type: 0 inactive
[  868.478797][T17017] vivid-003: RDS PS Name:  inactive
[  868.532085][T17017] vivid-003: RDS Radio Text:  inactive
[  868.588228][T17017] vivid-003: RDS Traffic Announcement: false inactive
[  868.620412][T17017] vivid-003: RDS Traffic Program: false inactive
[  868.626791][T17017] vivid-003: RDS Music: false inactive
[  868.678099][T17017] vivid-003: ==================  END STATUS  ==================
[  868.949410][T16992] active_anon:7995 inactive_anon:50727 isolated_anon:0
[  868.949410][T16992]  active_file:22360 inactive_file:39968 isolated_file:0
[  868.949410][T16992]  unevictable:768 dirty:666 writeback:0
[  868.949410][T16992]  slab_reclaimable:12528 slab_unreclaimable:95665
[  868.949410][T16992]  mapped:32469 shmem:49613 pagetables:1415
[  868.949410][T16992]  sec_pagetables:0 bounce:0
[  868.949410][T16992]  kernel_misc_reclaimable:0
[  868.949410][T16992]  free:1256175 free_pcp:14043 free_cma:0
[  869.385846][T16992] Node 0 active_anon:31944kB inactive_anon:175032kB active_file:89436kB inactive_file:159744kB unevictable:1588kB isolated(anon):0kB isolated(file):0kB mapped:129836kB dirty:2664kB writeback:0kB shmem:168552kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12688kB pagetables:5232kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  869.634809][T16992] Node 1 active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:128kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  869.789721][T16992] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  869.931322][T16992] lowmem_reserve[]: 0 2480 2481 2481 2481
[  869.967286][T16992] Node 0 DMA32 free:1099800kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:31896kB inactive_anon:155064kB active_file:88192kB inactive_file:159672kB unevictable:1536kB writepending:2768kB present:3129332kB managed:2539592kB mlocked:0kB bounce:0kB free_pcp:106772kB local_pcp:106772kB free_cma:0kB
[  870.146666][T16992] lowmem_reserve[]: 0 0 1 1 1
[  870.192694][T16992] Node 0 Normal free:12kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:1244kB inactive_file:72kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[  870.366711][T16992] lowmem_reserve[]: 0 0 0 0 0
[  870.376805][T16992] Node 1 Normal free:3904760kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:128kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  870.430412][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  870.436792][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  870.544641][T16992] lowmem_reserve[]: 0 0 0 0 0
[  870.569867][T16992] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  870.637400][T16992] Node 0 DMA32: 2380*4kB (UME) 700*8kB (UME) 664*16kB (UME) 246*32kB (UME) 253*64kB (UME) 248*128kB (UME) 74*256kB (UME) 72*512kB (UM) 68*1024kB (UME) 5*2048kB (U) 223*4096kB (UM) = 1130640kB
[  870.728143][T16992] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  870.805216][T16992] Node 1 Normal: 216*4kB (UME) 57*8kB (UME) 43*16kB (UME) 229*32kB (UME) 108*64kB (UME) 31*128kB (UME) 16*256kB (UM) 11*512kB (UME) 4*1024kB (UME) 4*2048kB (UME) 943*4096kB (M) = 3904760kB
[  870.901655][T16992] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  870.954180][T16992] Node 0 hugepages_total=8 hugepages_free=6 hugepages_surp=2 hugepages_size=2048kB
[  871.010193][T16992] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  871.074161][T16992] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  871.136267][T16992] 88430 total pagecache pages
[  871.185692][T16992] 10 pages in swap cache
[  871.217206][T16992] Free swap  = 123868kB
[  871.237947][T16992] Total swap = 124996kB
[  871.257972][T16992] 2097051 pages RAM
[  871.278755][T16992] 0 pages HighMem/MovableOnly
[  871.302314][T16992] 430191 pages reserved
[  871.328888][T16992] 0 pages cma reserved
[  872.513797][T17092] cougar: G6 mapped to space
[  872.797283][T17103] can: request_module (can-proto-0) failed.
[  873.311336][T17121] vhci_hcd: SetHubDepth req not supported for USB 2.0 roothub
[  875.600554][T17164] ubi0: attaching mtd0
[  875.693181][T17164] ubi0: scanning is finished
[  875.762556][T17164] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  875.971157][T17164] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  876.078285][T17173] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input34
[  877.118637][T17195] can: request_module (can-proto-0) failed.
[  877.385285][T17205] netlink: 29 bytes leftover after parsing attributes in process `syz.2.2152'.
[  877.838730][T17213] ubi0: attaching mtd0
[  877.845280][T17213] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039)
[  877.892369][T17213] random: crng reseeded on system resumption
[  878.106637][T17214] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2153'.
[  881.513050][T17290] can: request_module (can-proto-0) failed.
[  882.036586][T17308] can: request_module (can-proto-0) failed.
[  883.407462][T17323] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  883.440368][T17323] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  883.485594][T17340] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  883.540221][T17323] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  883.568696][T17323] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  883.609087][T17340] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  883.668237][T17323] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  883.699745][T17323] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  883.749623][T17323] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  883.822299][T17323] CPU0 is offline.
[  883.862777][T17327] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  883.912294][T17345] FAULT_INJECTION: forcing a failure.
[  883.912294][T17345] name failslab, interval 1, probability 0, space 0, times 0
[  884.136732][T17343] zswap: compressor  not available
[  884.260989][T17345] CPU: 1 UID: 0 PID: 17345 Comm: syz.0.2180 Not tainted syzkaller #0 PREEMPT(full) 
[  884.261012][T17345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  884.261022][T17345] Call Trace:
[  884.261027][T17345]  <TASK>
[  884.261034][T17345]  dump_stack_lvl+0x16c/0x1f0
[  884.261058][T17345]  should_fail_ex+0x512/0x640
[  884.261077][T17345]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  884.261139][T17345]  should_failslab+0xc2/0x120
[  884.261159][T17345]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  884.261185][T17345]  ? security_file_alloc+0x34/0x2b0
[  884.261209][T17345]  security_file_alloc+0x34/0x2b0
[  884.261228][T17345]  init_file+0x93/0x4c0
[  884.261250][T17345]  alloc_empty_file+0x73/0x1e0
[  884.261270][T17345]  dentry_open+0x46/0xd0
[  884.261290][T17345]  pidfs_alloc_file+0x18f/0x290
[  884.261304][T17345]  ? __pfx_pidfs_alloc_file+0x10/0x10
[  884.261320][T17345]  ? _raw_spin_unlock_irq+0x23/0x50
[  884.261337][T17345]  pidfd_prepare+0x129/0x200
[  884.261356][T17345]  __x64_sys_pidfd_open+0x105/0x1a0
[  884.261377][T17345]  ? __pfx___x64_sys_pidfd_open+0x10/0x10
[  884.261399][T17345]  ? rcu_is_watching+0x12/0xc0
[  884.261415][T17345]  do_syscall_64+0xcd/0x490
[  884.261435][T17345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  884.261450][T17345] RIP: 0033:0x7f53da98ebe9
[  884.261462][T17345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  884.261476][T17345] RSP: 002b:00007f53d8bf6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2
[  884.261491][T17345] RAX: ffffffffffffffda RBX: 00007f53dabb6090 RCX: 00007f53da98ebe9
[  884.261501][T17345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  884.261509][T17345] RBP: 00007f53daa11e19 R08: 0000000000000000 R09: 0000000000000000
[  884.261518][T17345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  884.261526][T17345] R13: 00007f53dabb6128 R14: 00007f53dabb6090 R15: 00007ffd0105ab58
[  884.261545][T17345]  </TASK>
[  885.022262][T15417] Bluetooth: hci0: command 0x0c1a tx timeout
[  885.168844][T17367] vivid-003: =================  START STATUS  =================
[  885.278493][T17367] vivid-003: Radio HW Seek Mode: Bounded
[  885.326707][T17367] vivid-003: Radio Programmable HW Seek: false
[  885.477219][T17367] vivid-003: RDS Rx I/O Mode: Block I/O
[  885.538818][T15417] Bluetooth: hci1: command 0x0c1a tx timeout
[  885.547356][T17367] vivid-003: Generate RBDS Instead of RDS: false
[  885.675427][T17367] vivid-003: RDS Reception: true
[  885.698388][T15417] Bluetooth: hci2: command 0x0c1a tx timeout
[  885.778961][T15417] Bluetooth: hci3: command 0x0c1a tx timeout
[  885.831379][T17367] vivid-003: RDS Program Type: 0 inactive
[  885.879607][T17367] vivid-003: RDS PS Name:  inactive
[  885.884832][T17367] vivid-003: RDS Radio Text:  inactive
[  885.918953][T17381] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  885.946255][T17367] vivid-003: RDS Traffic Announcement: false inactive
[  885.989142][T17367] vivid-003: RDS Traffic Program: false inactive
[  885.995497][T17367] vivid-003: RDS Music: false inactive
[  886.042612][T17367] vivid-003: ==================  END STATUS  ==================
[  886.192766][T17390] can: request_module (can-proto-0) failed.
[  886.885967][T17411] QAT: Stopping all acceleration devices.
[  887.036915][T17414] FAULT_INJECTION: forcing a failure.
[  887.036915][T17414] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  887.060971][T15417] Bluetooth: hci0: command 0x0c1a tx timeout
[  887.092718][T17414] CPU: 1 UID: 0 PID: 17414 Comm: syz.1.2196 Not tainted syzkaller #0 PREEMPT(full) 
[  887.092741][T17414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  887.092750][T17414] Call Trace:
[  887.092756][T17414]  <TASK>
[  887.092763][T17414]  dump_stack_lvl+0x16c/0x1f0
[  887.092787][T17414]  should_fail_ex+0x512/0x640
[  887.092810][T17414]  should_fail_alloc_page+0xe7/0x130
[  887.092831][T17414]  prepare_alloc_pages+0x3c2/0x610
[  887.092856][T17414]  ? rcu_is_watching+0x12/0xc0
[  887.092873][T17414]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  887.092890][T17414]  ? stack_depot_save_flags+0x29/0x9c0
[  887.092913][T17414]  ? __lock_acquire+0x62e/0x1ce0
[  887.093010][T17414]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  887.093045][T17414]  ? __lock_acquire+0x62e/0x1ce0
[  887.093068][T17414]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  887.093090][T17414]  ? policy_nodemask+0xea/0x4e0
[  887.093110][T17414]  alloc_pages_mpol+0x1fb/0x550
[  887.093130][T17414]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  887.093158][T17414]  ? __lock_acquire+0x62e/0x1ce0
[  887.093178][T17414]  folio_alloc_mpol_noprof+0x36/0x2f0
[  887.093204][T17414]  vma_alloc_folio_noprof+0xed/0x1e0
[  887.093226][T17414]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  887.093252][T17414]  do_pte_missing+0x2230/0x3ba0
[  887.093268][T17414]  ? find_held_lock+0x2b/0x80
[  887.093287][T17414]  __handle_mm_fault+0x152a/0x2a50
[  887.093306][T17414]  ? __pfx___handle_mm_fault+0x10/0x10
[  887.093322][T17414]  ? __pte_offset_map_lock+0x174/0x310
[  887.093342][T17414]  ? find_held_lock+0x2b/0x80
[  887.093361][T17414]  ? follow_page_pte.constprop.0+0x5cf/0x1390
[  887.093386][T17414]  handle_mm_fault+0x589/0xd10
[  887.093404][T17414]  __get_user_pages+0x551/0x34a0
[  887.093432][T17414]  ? __pfx___get_user_pages+0x10/0x10
[  887.093457][T17414]  populate_vma_page_range+0x267/0x3f0
[  887.093479][T17414]  ? __pfx_populate_vma_page_range+0x10/0x10
[  887.093499][T17414]  ? __pfx_find_vma_intersection+0x10/0x10
[  887.093519][T17414]  ? do_mmap+0x69c/0x1210
[  887.093540][T17414]  __mm_populate+0x1d8/0x380
[  887.093561][T17414]  ? __pfx___mm_populate+0x10/0x10
[  887.093583][T17414]  ? up_write+0x1b2/0x520
[  887.093604][T17414]  vm_mmap_pgoff+0x37f/0x470
[  887.093626][T17414]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  887.093650][T17414]  ? __x64_sys_futex+0x1e0/0x4c0
[  887.093666][T17414]  ? __x64_sys_futex+0x1e9/0x4c0
[  887.093685][T17414]  ksys_mmap_pgoff+0x7d/0x5c0
[  887.093703][T17414]  ? xfd_validate_state+0x61/0x180
[  887.093726][T17414]  __x64_sys_mmap+0x125/0x190
[  887.093749][T17414]  do_syscall_64+0xcd/0x490
[  887.093769][T17414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  887.093783][T17414] RIP: 0033:0x7f043458ebe9
[  887.093797][T17414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  887.093811][T17414] RSP: 002b:00007f04353e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  887.093826][T17414] RAX: ffffffffffffffda RBX: 00007f04347b5fa0 RCX: 00007f043458ebe9
[  887.093836][T17414] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  887.093846][T17414] RBP: 00007f0434611e19 R08: 0000000000000002 R09: 0000000000008000
[  887.093855][T17414] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  887.093864][T17414] R13: 00007f04347b6038 R14: 00007f04347b5fa0 R15: 00007ffeaa2b91d8
[  887.093884][T17414]  </TASK>
[  887.967428][ T8247] Bluetooth: hci1: command 0x0c1a tx timeout
[  887.973498][ T8247] Bluetooth: hci3: command 0x0c1a tx timeout
[  888.964507][T17425] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  889.052943][T17425] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  889.175457][T17425] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  889.382239][T17425] page_type: f5(slab)
[  889.406610][T17425] raw: 00fff00000000040 ffff88801b842140 dead000000000100 dead000000000122
[  889.495254][T17425] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  889.555724][T17425] head: 00fff00000000040 ffff88801b842140 dead000000000100 dead000000000122
[  889.619401][T17425] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  889.687329][T17425] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  889.743102][T17425] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  889.813124][T17425] page dumped because: unmovable page
[  889.852008][T17425] page_owner tracks the page as allocated
[  889.907687][T17425] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 7734, tgid 7734 (syz.3.378), ts 198147980685, free_ts 196316045914
[  890.063466][T17425]  post_alloc_hook+0x1c0/0x230
[  890.103777][T17425]  get_page_from_freelist+0x132b/0x38e0
[  890.152322][T17425]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  890.224076][T17425]  alloc_pages_mpol+0x1fb/0x550
[  890.279971][T17425]  new_slab+0x247/0x330
[  890.284157][T17425]  ___slab_alloc+0xcf2/0x1740
[  890.383456][T17425]  __slab_alloc.constprop.0+0x56/0xb0
[  890.453265][T17425]  __kmalloc_cache_noprof+0xfb/0x3e0
[  890.493038][T17425]  kobject_uevent_env+0x265/0x1870
[  890.541893][T17425]  __kobject_del+0x168/0x1f0
[  890.604683][T17425]  kobject_put+0x327/0x5a0
[  890.662178][T17425]  net_rx_queue_update_kobjects+0x54d/0x770
[  890.700411][T17425]  netdev_unregister_kobject+0x154/0x540
[  890.706073][T17425]  unregister_netdevice_many_notify+0x14f0/0x24c0
[  890.776073][T17425]  unregister_netdevice_queue+0x305/0x3f0
[  890.805294][T17425]  __tun_detach+0x1249/0x1540
[  890.825343][T17425] page last free pid 5880 tgid 5880 stack trace:
[  890.865265][T17425]  __free_frozen_pages+0x7d5/0x10f0
[  890.891760][T17425]  __put_partials+0x165/0x1c0
[  890.915395][T17425]  qlist_free_all+0x4d/0x120
[  890.935958][T17425]  kasan_quarantine_reduce+0x195/0x1e0
[  890.964524][T17425]  __kasan_slab_alloc+0x69/0x90
[  890.988722][T17425]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  891.012767][T17425]  getname_flags.part.0+0x4c/0x550
[  891.036966][T17425]  getname_flags+0x93/0xf0
[  891.060003][T17425]  vfs_fstatat+0xe1/0xf0
[  891.080976][T17425]  __do_sys_newfstatat+0x97/0x120
[  891.106320][T17425]  do_syscall_64+0xcd/0x490
[  891.126538][T17425]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  891.717187][T17473] can: request_module (can-proto-0) failed.
[  894.325997][T17524] FAULT_INJECTION: forcing a failure.
[  894.325997][T17524] name failslab, interval 1, probability 0, space 0, times 0
[  894.402879][T17524] CPU: 1 UID: 0 PID: 17524 Comm: syz.2.2223 Not tainted syzkaller #0 PREEMPT(full) 
[  894.402902][T17524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  894.402910][T17524] Call Trace:
[  894.402916][T17524]  <TASK>
[  894.402922][T17524]  dump_stack_lvl+0x16c/0x1f0
[  894.402944][T17524]  should_fail_ex+0x512/0x640
[  894.402964][T17524]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  894.402981][T17524]  should_failslab+0xc2/0x120
[  894.403000][T17524]  __kmalloc_cache_noprof+0x6a/0x3e0
[  894.403015][T17524]  ? uinput_open+0x48/0x160
[  894.403035][T17524]  uinput_open+0x48/0x160
[  894.403051][T17524]  ? __pfx_uinput_open+0x10/0x10
[  894.403067][T17524]  misc_open+0x35a/0x420
[  894.403083][T17524]  ? __pfx_misc_open+0x10/0x10
[  894.403098][T17524]  chrdev_open+0x231/0x6a0
[  894.403115][T17524]  ? __pfx_apparmor_file_open+0x10/0x10
[  894.403131][T17524]  ? __pfx_chrdev_open+0x10/0x10
[  894.403157][T17524]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  894.403178][T17524]  do_dentry_open+0x97f/0x1530
[  894.403196][T17524]  ? __pfx_chrdev_open+0x10/0x10
[  894.403225][T17524]  vfs_open+0x82/0x3f0
[  894.403249][T17524]  path_openat+0x1de4/0x2cb0
[  894.403273][T17524]  ? __pfx_path_openat+0x10/0x10
[  894.403295][T17524]  do_filp_open+0x20b/0x470
[  894.403312][T17524]  ? __pfx_do_filp_open+0x10/0x10
[  894.403343][T17524]  ? alloc_fd+0x471/0x7d0
[  894.403363][T17524]  do_sys_openat2+0x11b/0x1d0
[  894.403383][T17524]  ? __pfx_do_sys_openat2+0x10/0x10
[  894.403404][T17524]  ? __pfx___might_resched+0x10/0x10
[  894.403423][T17524]  __x64_sys_openat+0x174/0x210
[  894.403443][T17524]  ? __pfx___x64_sys_openat+0x10/0x10
[  894.403471][T17524]  do_syscall_64+0xcd/0x490
[  894.403491][T17524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  894.403505][T17524] RIP: 0033:0x7fab0558ebe9
[  894.403517][T17524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  894.403531][T17524] RSP: 002b:00007fab0636f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  894.403545][T17524] RAX: ffffffffffffffda RBX: 00007fab057b5fa0 RCX: 00007fab0558ebe9
[  894.403554][T17524] RDX: 0000000000101000 RSI: 0000200000000400 RDI: ffffffffffffff9c
[  894.403563][T17524] RBP: 00007fab05611e19 R08: 0000000000000000 R09: 0000000000000000
[  894.403572][T17524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  894.403580][T17524] R13: 00007fab057b6038 R14: 00007fab057b5fa0 R15: 00007ffc07d32c48
[  894.403599][T17524]  </TASK>
[  895.154737][T17537] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2226'.
[  895.304181][T17537] veth0_macvtap: left promiscuous mode
[  896.777484][T17568] FAULT_INJECTION: forcing a failure.
[  896.777484][T17568] name failslab, interval 1, probability 0, space 0, times 0
[  896.851535][T17568] CPU: 1 UID: 0 PID: 17568 Comm: syz.2.2231 Not tainted syzkaller #0 PREEMPT(full) 
[  896.851558][T17568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  896.851567][T17568] Call Trace:
[  896.851573][T17568]  <TASK>
[  896.851579][T17568]  dump_stack_lvl+0x16c/0x1f0
[  896.851602][T17568]  should_fail_ex+0x512/0x640
[  896.851622][T17568]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  896.851639][T17568]  should_failslab+0xc2/0x120
[  896.851659][T17568]  __kmalloc_cache_noprof+0x6a/0x3e0
[  896.851674][T17568]  ? kvm_dev_ioctl+0x13ce/0x1af0
[  896.851692][T17568]  kvm_dev_ioctl+0x13ce/0x1af0
[  896.851712][T17568]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  896.851732][T17568]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  896.851747][T17568]  __x64_sys_ioctl+0x18e/0x210
[  896.851770][T17568]  do_syscall_64+0xcd/0x490
[  896.851789][T17568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  896.851804][T17568] RIP: 0033:0x7fab0558ebe9
[  896.851816][T17568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  896.851829][T17568] RSP: 002b:00007fab0636f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  896.851843][T17568] RAX: ffffffffffffffda RBX: 00007fab057b5fa0 RCX: 00007fab0558ebe9
[  896.851853][T17568] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002
[  896.851861][T17568] RBP: 00007fab05611e19 R08: 0000000000000000 R09: 0000000000000000
[  896.851870][T17568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  896.851878][T17568] R13: 00007fab057b6038 R14: 00007fab057b5fa0 R15: 00007ffc07d32c48
[  896.851896][T17568]  </TASK>
[  897.905208][T17588] can: request_module (can-proto-0) failed.
[  898.712629][T17621] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2238'.
[  898.992791][T17621] veth0_macvtap: left promiscuous mode
[  900.002690][T17642] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2240'.
[  900.304597][T17652] FAULT_INJECTION: forcing a failure.
[  900.304597][T17652] name failslab, interval 1, probability 0, space 0, times 0
[  900.365572][T17652] CPU: 1 UID: 0 PID: 17652 Comm: syz.1.2244 Not tainted syzkaller #0 PREEMPT(full) 
[  900.365594][T17652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  900.365603][T17652] Call Trace:
[  900.365610][T17652]  <TASK>
[  900.365616][T17652]  dump_stack_lvl+0x16c/0x1f0
[  900.365639][T17652]  should_fail_ex+0x512/0x640
[  900.365659][T17652]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  900.365679][T17652]  should_failslab+0xc2/0x120
[  900.365696][T17652]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  900.365714][T17652]  ? alloc_inode+0x61/0x240
[  900.365746][T17652]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  900.365762][T17652]  alloc_inode+0x61/0x240
[  900.365782][T17652]  new_inode+0x22/0x1c0
[  900.365804][T17652]  __debugfs_create_file+0x11c/0x6b0
[  900.365824][T17652]  debugfs_create_file_full+0x41/0x60
[  900.365843][T17652]  kvm_dev_ioctl+0x153f/0x1af0
[  900.365865][T17652]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  900.365885][T17652]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  900.365900][T17652]  __x64_sys_ioctl+0x18e/0x210
[  900.365923][T17652]  do_syscall_64+0xcd/0x490
[  900.365942][T17652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  900.365957][T17652] RIP: 0033:0x7f043458ebe9
[  900.365969][T17652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  900.365983][T17652] RSP: 002b:00007f04353e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  900.365997][T17652] RAX: ffffffffffffffda RBX: 00007f04347b5fa0 RCX: 00007f043458ebe9
[  900.366007][T17652] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002
[  900.366015][T17652] RBP: 00007f0434611e19 R08: 0000000000000000 R09: 0000000000000000
[  900.366024][T17652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  900.366032][T17652] R13: 00007f04347b6038 R14: 00007f04347b5fa0 R15: 00007ffeaa2b91d8
[  900.366051][T17652]  </TASK>
[  900.366057][T17652] debugfs: out of free dentries, can not create file 'mmu_pte_write'
[  900.844037][T17662] random: crng reseeded on system resumption
[  901.794091][T17691] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2249'.
[  901.873823][T17691] veth0_macvtap: left promiscuous mode
[  904.437212][T17736] can: request_module (can-proto-0) failed.
[  904.839246][T15417] Bluetooth: hci1: unexpected event 0x35 length: 13 > 6
[  905.032245][T17752] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2262'.
[  905.638690][T17752] veth0_macvtap: left promiscuous mode
[  907.418648][T17780] FAULT_INJECTION: forcing a failure.
[  907.418648][T17780] name failslab, interval 1, probability 0, space 0, times 0
[  907.603736][T17780] CPU: 1 UID: 0 PID: 17780 Comm: syz.0.2270 Not tainted syzkaller #0 PREEMPT(full) 
[  907.603760][T17780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  907.603770][T17780] Call Trace:
[  907.603776][T17780]  <TASK>
[  907.603783][T17780]  dump_stack_lvl+0x16c/0x1f0
[  907.603806][T17780]  should_fail_ex+0x512/0x640
[  907.603826][T17780]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  907.603844][T17780]  should_failslab+0xc2/0x120
[  907.603863][T17780]  __kmalloc_cache_noprof+0x6a/0x3e0
[  907.603877][T17780]  ? kvm_dev_ioctl+0x13ce/0x1af0
[  907.603896][T17780]  kvm_dev_ioctl+0x13ce/0x1af0
[  907.603916][T17780]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  907.603936][T17780]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  907.603951][T17780]  __x64_sys_ioctl+0x18e/0x210
[  907.603974][T17780]  do_syscall_64+0xcd/0x490
[  907.603994][T17780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  907.604008][T17780] RIP: 0033:0x7f53da98ebe9
[  907.604029][T17780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  907.604044][T17780] RSP: 002b:00007f53db718038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  907.604059][T17780] RAX: ffffffffffffffda RBX: 00007f53dabb5fa0 RCX: 00007f53da98ebe9
[  907.604069][T17780] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002
[  907.604078][T17780] RBP: 00007f53daa11e19 R08: 0000000000000000 R09: 0000000000000000
[  907.604087][T17780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  907.604096][T17780] R13: 00007f53dabb6038 R14: 00007f53dabb5fa0 R15: 00007ffd0105ab58
[  907.604115][T17780]  </TASK>
[  908.280334][T17799] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2275'.
[  908.660378][T17808] random: crng reseeded on system resumption
[  908.851618][T17810] can: request_module (can-proto-0) failed.
[  908.863395][T17790] Restarting kernel threads ...
[  908.920989][T17790] Done restarting kernel threads.
[  912.182131][T17956] FAULT_INJECTION: forcing a failure.
[  912.182131][T17956] name failslab, interval 1, probability 0, space 0, times 0
[  912.269974][T17956] CPU: 1 UID: 0 PID: 17956 Comm: syz.3.2286 Not tainted syzkaller #0 PREEMPT(full) 
[  912.269996][T17956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  912.270006][T17956] Call Trace:
[  912.270012][T17956]  <TASK>
[  912.270018][T17956]  dump_stack_lvl+0x16c/0x1f0
[  912.270043][T17956]  should_fail_ex+0x512/0x640
[  912.270063][T17956]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  912.270083][T17956]  should_failslab+0xc2/0x120
[  912.270101][T17956]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  912.270119][T17956]  ? alloc_inode+0x61/0x240
[  912.270140][T17956]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  912.270155][T17956]  alloc_inode+0x61/0x240
[  912.270174][T17956]  new_inode+0x22/0x1c0
[  912.270194][T17956]  __debugfs_create_file+0x11c/0x6b0
[  912.270213][T17956]  debugfs_create_file_full+0x41/0x60
[  912.270231][T17956]  kvm_dev_ioctl+0x153f/0x1af0
[  912.270252][T17956]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  912.270272][T17956]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  912.270287][T17956]  __x64_sys_ioctl+0x18e/0x210
[  912.270309][T17956]  do_syscall_64+0xcd/0x490
[  912.270329][T17956]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  912.270343][T17956] RIP: 0033:0x7fa3aad8ebe9
[  912.270355][T17956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  912.270368][T17956] RSP: 002b:00007fa3abc6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  912.270382][T17956] RAX: ffffffffffffffda RBX: 00007fa3aafb6090 RCX: 00007fa3aad8ebe9
[  912.270392][T17956] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002
[  912.270400][T17956] RBP: 00007fa3aae11e19 R08: 0000000000000000 R09: 0000000000000000
[  912.270409][T17956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  912.270417][T17956] R13: 00007fa3aafb6128 R14: 00007fa3aafb6090 R15: 00007ffc08158ba8
[  912.270435][T17956]  </TASK>
[  912.270442][T17956] debugfs: out of free dentries, can not create file 'mmu_pde_zapped'
[  914.469078][T17974] ALSA: mixer_oss: invalid OSS volume ''
[  915.021612][T18001] can: request_module (can-proto-0) failed.
[  915.042643][T17992] FAULT_INJECTION: forcing a failure.
[  915.042643][T17992] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  915.464872][T17992] CPU: 1 UID: 0 PID: 17992 Comm: syz.0.2295 Not tainted syzkaller #0 PREEMPT(full) 
[  915.464895][T17992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  915.464905][T17992] Call Trace:
[  915.464911][T17992]  <TASK>
[  915.464917][T17992]  dump_stack_lvl+0x16c/0x1f0
[  915.464940][T17992]  should_fail_ex+0x512/0x640
[  915.464963][T17992]  _copy_to_user+0x32/0xd0
[  915.464978][T17992]  do_pages_stat+0x631/0x820
[  915.465004][T17992]  ? __pfx_do_pages_stat+0x10/0x10
[  915.465039][T17992]  ? do_raw_spin_unlock+0x172/0x230
[  915.465063][T17992]  kernel_move_pages+0xfa8/0x1380
[  915.465085][T17992]  ? do_futex+0x122/0x350
[  915.465103][T17992]  ? __pfx_do_futex+0x10/0x10
[  915.465121][T17992]  ? __pfx_kernel_move_pages+0x10/0x10
[  915.465141][T17992]  ? __pfx___might_resched+0x10/0x10
[  915.465157][T17992]  ? __x64_sys_futex+0x1e0/0x4c0
[  915.465173][T17992]  ? __x64_sys_futex+0x1e9/0x4c0
[  915.465190][T17992]  ? __x64_sys_openat+0x174/0x210
[  915.465212][T17992]  ? xfd_validate_state+0x61/0x180
[  915.465234][T17992]  __x64_sys_move_pages+0xe0/0x1c0
[  915.465254][T17992]  ? do_syscall_64+0x91/0x490
[  915.465271][T17992]  ? lockdep_hardirqs_on+0x7c/0x110
[  915.465330][T17992]  do_syscall_64+0xcd/0x490
[  915.465350][T17992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  915.465365][T17992] RIP: 0033:0x7f53da98ebe9
[  915.465378][T17992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  915.465391][T17992] RSP: 002b:00007f53d8bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[  915.465405][T17992] RAX: ffffffffffffffda RBX: 00007f53dabb6090 RCX: 00007f53da98ebe9
[  915.465415][T17992] RDX: 0000000000000000 RSI: 0002000000000003 RDI: 0000000000000001
[  915.465423][T17992] RBP: 00007f53daa11e19 R08: 0000000000000000 R09: 8000400000000000
[  915.465432][T17992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  915.465440][T17992] R13: 00007f53dabb6128 R14: 00007f53dabb6090 R15: 00007ffd0105ab58
[  915.465458][T17992]  </TASK>
[  917.410875][T18027] FAULT_INJECTION: forcing a failure.
[  917.410875][T18027] name failslab, interval 1, probability 0, space 0, times 0
[  917.709102][T18027] CPU: 1 UID: 0 PID: 18027 Comm: syz.3.2300 Not tainted syzkaller #0 PREEMPT(full) 
[  917.709125][T18027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  917.709136][T18027] Call Trace:
[  917.709142][T18027]  <TASK>
[  917.709149][T18027]  dump_stack_lvl+0x16c/0x1f0
[  917.709172][T18027]  should_fail_ex+0x512/0x640
[  917.709192][T18027]  ? __kmalloc_noprof+0xbf/0x510
[  917.709212][T18027]  ? __seq_open_private+0x22/0xd0
[  917.709233][T18027]  should_failslab+0xc2/0x120
[  917.709251][T18027]  __kmalloc_noprof+0xd2/0x510
[  917.709266][T18027]  ? __debugfs_file_get+0x1fe/0x840
[  917.709289][T18027]  ? __pfx_nst_fop_open+0x10/0x10
[  917.709307][T18027]  __seq_open_private+0x22/0xd0
[  917.709328][T18027]  nst_fop_open+0x24/0x120
[  917.709348][T18027]  full_proxy_open_regular+0x1b9/0x360
[  917.709364][T18027]  do_dentry_open+0x97f/0x1530
[  917.709381][T18027]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  917.709399][T18027]  vfs_open+0x82/0x3f0
[  917.709420][T18027]  path_openat+0x1de4/0x2cb0
[  917.709442][T18027]  ? __pfx_path_openat+0x10/0x10
[  917.709463][T18027]  do_filp_open+0x20b/0x470
[  917.709480][T18027]  ? __pfx_do_filp_open+0x10/0x10
[  917.709509][T18027]  ? alloc_fd+0x471/0x7d0
[  917.709529][T18027]  do_sys_openat2+0x11b/0x1d0
[  917.709549][T18027]  ? __pfx_do_sys_openat2+0x10/0x10
[  917.709576][T18027]  __x64_sys_openat+0x174/0x210
[  917.709596][T18027]  ? __pfx___x64_sys_openat+0x10/0x10
[  917.709624][T18027]  do_syscall_64+0xcd/0x490
[  917.709643][T18027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  917.709657][T18027] RIP: 0033:0x7fa3aad8ebe9
[  917.709670][T18027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  917.709684][T18027] RSP: 002b:00007fa3abc4d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  917.709698][T18027] RAX: ffffffffffffffda RBX: 00007fa3aafb6180 RCX: 00007fa3aad8ebe9
[  917.709708][T18027] RDX: 0000000000101080 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  917.709717][T18027] RBP: 00007fa3aae11e19 R08: 0000000000000000 R09: 0000000000000000
[  917.709726][T18027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  917.709734][T18027] R13: 00007fa3aafb6218 R14: 00007fa3aafb6180 R15: 00007ffc08158ba8
[  917.709752][T18027]  </TASK>
[  919.687883][T18054] FAULT_INJECTION: forcing a failure.
[  919.687883][T18054] name fail_futex, interval 1, probability 0, space 0, times 0
[  919.890989][T18057] vivid-007: =================  START STATUS  =================
[  919.941045][T18054] CPU: 1 UID: 0 PID: 18054 Comm: syz.3.2306 Not tainted syzkaller #0 PREEMPT(full) 
[  919.941067][T18054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  919.941076][T18054] Call Trace:
[  919.941082][T18054]  <TASK>
[  919.941088][T18054]  dump_stack_lvl+0x16c/0x1f0
[  919.941111][T18054]  should_fail_ex+0x512/0x640
[  919.941133][T18054]  get_futex_key+0x1d0/0x1560
[  919.941155][T18054]  ? __pfx_get_futex_key+0x10/0x10
[  919.941178][T18054]  futex_wake+0xea/0x530
[  919.941198][T18054]  ? rcu_is_watching+0x12/0xc0
[  919.941213][T18054]  ? __pfx_futex_wake+0x10/0x10
[  919.941241][T18054]  do_futex+0x1e3/0x350
[  919.941258][T18054]  ? __pfx_do_futex+0x10/0x10
[  919.941280][T18054]  __x64_sys_futex+0x1e0/0x4c0
[  919.941301][T18054]  ? __pfx___x64_sys_futex+0x10/0x10
[  919.941319][T18054]  ? fd_install+0x244/0x750
[  919.941339][T18054]  do_syscall_64+0xcd/0x490
[  919.941359][T18054]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  919.941373][T18054] RIP: 0033:0x7fa3aad8ebe9
[  919.941385][T18054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  919.941399][T18054] RSP: 002b:00007fa3abc8f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  919.941413][T18054] RAX: ffffffffffffffda RBX: 00007fa3aafb5fa8 RCX: 00007fa3aad8ebe9
[  919.941423][T18054] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa3aafb5fac
[  919.941432][T18054] RBP: 00007fa3aafb5fa0 R08: 00007fa3abc90000 R09: 0000000000000000
[  919.941441][T18054] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000
[  919.941450][T18054] R13: 00007fa3aafb6038 R14: 00007ffc08158ac0 R15: 00007ffc08158ba8
[  919.941468][T18054]  </TASK>
[  920.329737][T18057] vivid-007: Generate PTS: true
[  920.334815][T18057] vivid-007: Generate SCR: true
[  920.429782][T18057] tpg source WxH: 320x240 (Y'CbCr)
[  920.434909][T18057] tpg field: 1
[  920.494310][T18057] tpg crop: (0,0)/320x240
[  920.507218][T18057] tpg compose: (0,0)/320x240
[  920.511838][T18057] tpg colorspace: 8
[  920.573431][T18057] tpg transfer function: 0/0
[  920.615260][T18057] tpg Y'CbCr encoding: 0/0
[  920.625373][T18057] tpg quantization: 0/0
[  920.657305][T18057] tpg RGB range: 0/2
[  920.685127][T18057] vivid-007: ==================  END STATUS  ==================
[  920.694299][T18069] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4)
[  921.325303][T18077] can: request_module (can-proto-0) failed.
[  921.469631][T18084] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2311'.
[  922.054744][T18089] block nbd0: NBD_DISCONNECT
[  927.269817][T18167] can: request_module (can-proto-0) failed.
[  928.700110][T18182] FAULT_INJECTION: forcing a failure.
[  928.700110][T18182] name failslab, interval 1, probability 0, space 0, times 0
[  928.838686][T18182] CPU: 1 UID: 0 PID: 18182 Comm: syz.2.2331 Not tainted syzkaller #0 PREEMPT(full) 
[  928.838708][T18182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  928.838717][T18182] Call Trace:
[  928.838723][T18182]  <TASK>
[  928.838729][T18182]  dump_stack_lvl+0x16c/0x1f0
[  928.838752][T18182]  should_fail_ex+0x512/0x640
[  928.838772][T18182]  ? fs_reclaim_acquire+0xae/0x150
[  928.838795][T18182]  ? tomoyo_encode2+0x100/0x3e0
[  928.838814][T18182]  should_failslab+0xc2/0x120
[  928.838833][T18182]  __kmalloc_noprof+0xd2/0x510
[  928.838854][T18182]  tomoyo_encode2+0x100/0x3e0
[  928.838875][T18182]  tomoyo_encode+0x29/0x50
[  928.838894][T18182]  tomoyo_realpath_from_path+0x18f/0x6e0
[  928.838918][T18182]  tomoyo_check_open_permission+0x2ab/0x3c0
[  928.838935][T18182]  ? security_file_alloc+0x34/0x2b0
[  928.838954][T18182]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  928.838971][T18182]  ? pidfs_alloc_file+0x18f/0x290
[  928.838985][T18182]  ? do_syscall_64+0xcd/0x490
[  928.839003][T18182]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  928.839042][T18182]  ? find_held_lock+0x2b/0x80
[  928.839062][T18182]  tomoyo_file_open+0x6b/0x90
[  928.839077][T18182]  security_file_open+0x84/0x1e0
[  928.839095][T18182]  do_dentry_open+0x596/0x1530
[  928.839119][T18182]  vfs_open+0x82/0x3f0
[  928.839142][T18182]  dentry_open+0x71/0xd0
[  928.839161][T18182]  pidfs_alloc_file+0x18f/0x290
[  928.839175][T18182]  ? __pfx_pidfs_alloc_file+0x10/0x10
[  928.839191][T18182]  ? _raw_spin_unlock_irq+0x23/0x50
[  928.839209][T18182]  pidfd_prepare+0x129/0x200
[  928.839229][T18182]  __x64_sys_pidfd_open+0x105/0x1a0
[  928.839251][T18182]  ? __pfx___x64_sys_pidfd_open+0x10/0x10
[  928.839274][T18182]  ? rcu_is_watching+0x12/0xc0
[  928.839290][T18182]  do_syscall_64+0xcd/0x490
[  928.839309][T18182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  928.839323][T18182] RIP: 0033:0x7fab0558ebe9
[  928.839335][T18182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  928.839349][T18182] RSP: 002b:00007fab0634e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2
[  928.839364][T18182] RAX: ffffffffffffffda RBX: 00007fab057b6090 RCX: 00007fab0558ebe9
[  928.839374][T18182] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  928.839383][T18182] RBP: 00007fab05611e19 R08: 0000000000000000 R09: 0000000000000000
[  928.839391][T18182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  928.839400][T18182] R13: 00007fab057b6128 R14: 00007fab057b6090 R15: 00007ffc07d32c48
[  928.839419][T18182]  </TASK>
[  928.839435][T18182] ERROR: Out of memory at tomoyo_realpath_from_path.
[  929.949278][T18195] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2334'.
[  930.003846][T18194] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2334'.
[  930.077266][T18196] netlink: 93 bytes leftover after parsing attributes in process `syz.0.2334'.
[  931.861525][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  931.867896][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  934.605390][T18237] netlink: 'syz.2.2342': attribute type 1 has an invalid length.
[  934.668929][T18237] ==================================================================
[  934.677046][T18237] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0
[  934.684762][T18237] Read of size 8 at addr ffff888146b3ca18 by task syz.2.2342/18237
[  934.692635][T18237] 
[  934.694942][T18237] CPU: 1 UID: 0 PID: 18237 Comm: syz.2.2342 Not tainted syzkaller #0 PREEMPT(full) 
[  934.694961][T18237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  934.694971][T18237] Call Trace:
[  934.694980][T18237]  <TASK>
[  934.694987][T18237]  dump_stack_lvl+0x116/0x1f0
[  934.695008][T18237]  print_report+0xcd/0x630
[  934.695026][T18237]  ? __virt_addr_valid+0x81/0x610
[  934.695043][T18237]  ? __phys_addr+0xe8/0x180
[  934.695060][T18237]  ? dvb_device_open+0x36a/0x3b0
[  934.695078][T18237]  kasan_report+0xe0/0x110
[  934.695095][T18237]  ? dvb_device_open+0x36a/0x3b0
[  934.695114][T18237]  ? __pfx_dvb_device_open+0x10/0x10
[  934.695133][T18237]  dvb_device_open+0x36a/0x3b0
[  934.695151][T18237]  ? __pfx_dvb_device_open+0x10/0x10
[  934.695170][T18237]  chrdev_open+0x231/0x6a0
[  934.695187][T18237]  ? __pfx_apparmor_file_open+0x10/0x10
[  934.695202][T18237]  ? __pfx_chrdev_open+0x10/0x10
[  934.695220][T18237]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  934.695237][T18237]  do_dentry_open+0x97f/0x1530
[  934.695254][T18237]  ? __pfx_chrdev_open+0x10/0x10
[  934.695273][T18237]  vfs_open+0x82/0x3f0
[  934.695293][T18237]  path_openat+0x1de4/0x2cb0
[  934.695312][T18237]  ? __pfx_path_openat+0x10/0x10
[  934.695329][T18237]  do_filp_open+0x20b/0x470
[  934.695345][T18237]  ? __pfx_do_filp_open+0x10/0x10
[  934.695374][T18237]  ? alloc_fd+0x471/0x7d0
[  934.695392][T18237]  do_sys_openat2+0x11b/0x1d0
[  934.695412][T18237]  ? __pfx_do_sys_openat2+0x10/0x10
[  934.695433][T18237]  ? __pfx_sched_core_share_pid+0x10/0x10
[  934.695451][T18237]  __x64_sys_openat+0x174/0x210
[  934.695472][T18237]  ? __pfx___x64_sys_openat+0x10/0x10
[  934.695495][T18237]  do_syscall_64+0xcd/0x490
[  934.695519][T18237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  934.695535][T18237] RIP: 0033:0x7fab0558ebe9
[  934.695548][T18237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  934.695563][T18237] RSP: 002b:00007fab0636f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  934.695577][T18237] RAX: ffffffffffffffda RBX: 00007fab057b5fa0 RCX: 00007fab0558ebe9
[  934.695587][T18237] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  934.695597][T18237] RBP: 00007fab05611e19 R08: 0000000000000000 R09: 0000000000000000
[  934.695606][T18237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  934.695615][T18237] R13: 00007fab057b6038 R14: 00007fab057b5fa0 R15: 00007ffc07d32c48
[  934.695629][T18237]  </TASK>
[  934.695635][T18237] 
[  934.940626][T18237] Allocated by task 1:
[  934.944683][T18237]  kasan_save_stack+0x33/0x60
[  934.949348][T18237]  kasan_save_track+0x14/0x30
[  934.954006][T18237]  __kasan_kmalloc+0xaa/0xb0
[  934.958659][T18237]  dvb_register_device+0x1e4/0x2370
[  934.963849][T18237]  dvb_register_frontend+0x5a6/0x880
[  934.969118][T18237]  vidtv_bridge_probe+0x459/0xa90
[  934.974138][T18237]  platform_probe+0x106/0x1d0
[  934.978830][T18237]  really_probe+0x23e/0xa90
[  934.983341][T18237]  __driver_probe_device+0x1de/0x440
[  934.988607][T18237]  driver_probe_device+0x4c/0x1b0
[  934.993615][T18237]  __driver_attach+0x283/0x580
[  934.998374][T18237]  bus_for_each_dev+0x13b/0x1d0
[  935.003204][T18237]  bus_add_driver+0x2e9/0x690
[  935.007877][T18237]  driver_register+0x15c/0x4b0
[  935.012625][T18237]  vidtv_bridge_init+0x45/0x80
[  935.017376][T18237]  do_one_initcall+0x120/0x6e0
[  935.022150][T18237]  kernel_init_freeable+0x5c2/0x910
[  935.027331][T18237]  kernel_init+0x1c/0x2b0
[  935.031638][T18237]  ret_from_fork+0x5d4/0x6f0
[  935.036229][T18237]  ret_from_fork_asm+0x1a/0x30
[  935.040975][T18237] 
[  935.043279][T18237] Freed by task 18070:
[  935.047320][T18237]  kasan_save_stack+0x33/0x60
[  935.051977][T18237]  kasan_save_track+0x14/0x30
[  935.056634][T18237]  kasan_save_free_info+0x3b/0x60
[  935.061650][T18237]  __kasan_slab_free+0x60/0x70
[  935.066422][T18237]  kfree+0x2b4/0x4d0
[  935.070309][T18237]  dvb_device_put.part.0+0x60/0x90
[  935.075418][T18237]  dvb_device_open+0x2a4/0x3b0
[  935.080617][T18237]  chrdev_open+0x231/0x6a0
[  935.085030][T18237]  do_dentry_open+0x97f/0x1530
[  935.089776][T18237]  vfs_open+0x82/0x3f0
[  935.093831][T18237]  path_openat+0x1de4/0x2cb0
[  935.098402][T18237]  do_filp_open+0x20b/0x470
[  935.102906][T18237]  do_sys_openat2+0x11b/0x1d0
[  935.107569][T18237]  __x64_sys_openat+0x174/0x210
[  935.112409][T18237]  do_syscall_64+0xcd/0x490
[  935.116895][T18237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  935.122770][T18237] 
[  935.125079][T18237] The buggy address belongs to the object at ffff888146b3ca00
[  935.125079][T18237]  which belongs to the cache kmalloc-256 of size 256
[  935.139106][T18237] The buggy address is located 24 bytes inside of
[  935.139106][T18237]  freed 256-byte region [ffff888146b3ca00, ffff888146b3cb00)
[  935.152795][T18237] 
[  935.155104][T18237] The buggy address belongs to the physical page:
[  935.161488][T18237] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x146b3c
[  935.170338][T18237] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  935.178821][T18237] flags: 0x57ff00000000040(head|node=1|zone=2|lastcpupid=0x7ff)
[  935.186439][T18237] page_type: f5(slab)
[  935.190405][T18237] raw: 057ff00000000040 ffff88801b841b40 dead000000000122 0000000000000000
[  935.198974][T18237] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  935.207553][T18237] head: 057ff00000000040 ffff88801b841b40 dead000000000122 0000000000000000
[  935.216210][T18237] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  935.224882][T18237] head: 057ff00000000001 ffffea00051acf01 00000000ffffffff 00000000ffffffff
[  935.233551][T18237] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  935.242205][T18237] page dumped because: kasan: bad access detected
[  935.248598][T18237] page_owner tracks the page as allocated
[  935.254294][T18237] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 18462205038, free_ts 0
[  935.273989][T18237]  post_alloc_hook+0x1c0/0x230
[  935.278747][T18237]  get_page_from_freelist+0x132b/0x38e0
[  935.284273][T18237]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  935.290144][T18237]  alloc_pages_mpol+0x1fb/0x550
[  935.294988][T18237]  new_slab+0x247/0x330
[  935.299162][T18237]  ___slab_alloc+0xcf2/0x1740
[  935.303824][T18237]  __slab_alloc.constprop.0+0x56/0xb0
[  935.309185][T18237]  __kmalloc_cache_noprof+0xfb/0x3e0
[  935.314468][T18237]  bus_add_driver+0x92/0x690
[  935.319045][T18237]  driver_register+0x15c/0x4b0
[  935.323798][T18237]  usb_register_driver+0x216/0x4d0
[  935.328896][T18237]  do_one_initcall+0x120/0x6e0
[  935.333642][T18237]  kernel_init_freeable+0x5c2/0x910
[  935.338817][T18237]  kernel_init+0x1c/0x2b0
[  935.343125][T18237]  ret_from_fork+0x5d4/0x6f0
[  935.347702][T18237]  ret_from_fork_asm+0x1a/0x30
[  935.352445][T18237] page_owner free stack trace missing
[  935.357787][T18237] 
[  935.360087][T18237] Memory state around the buggy address:
[  935.365690][T18237]  ffff888146b3c900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  935.373731][T18237]  ffff888146b3c980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  935.381781][T18237] >ffff888146b3ca00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  935.389824][T18237]                             ^
[  935.394650][T18237]  ffff888146b3ca80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  935.402722][T18237]  ffff888146b3cb00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  935.410757][T18237] ==================================================================
SYZFAIL: failed to send rpc
fd=3 want=56 sent=0 n=-1 (errno 32: Broken pipe)
[  935.548733][T18243] netlink: 222 bytes leftover after parsing attributes in process `syz.0.2345'.
[  936.440437][T18237] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  936.447649][T18237] CPU: 1 UID: 0 PID: 18237 Comm: syz.2.2342 Not tainted syzkaller #0 PREEMPT(full) 
[  936.457000][T18237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  936.467035][T18237] Call Trace:
[  936.470306][T18237]  <TASK>
[  936.473223][T18237]  dump_stack_lvl+0x3d/0x1f0
[  936.477806][T18237]  vpanic+0x6e8/0x7a0
[  936.481775][T18237]  ? __pfx_vpanic+0x10/0x10
[  936.486262][T18237]  ? __pfx_vprintk_emit+0x10/0x10
[  936.491447][T18237]  ? dvb_device_open+0x36a/0x3b0
[  936.496370][T18237]  panic+0xca/0xd0
[  936.500081][T18237]  ? __pfx_panic+0x10/0x10
[  936.504482][T18237]  ? dvb_device_open+0x36a/0x3b0
[  936.509406][T18237]  ? preempt_schedule_common+0x44/0xc0
[  936.514872][T18237]  ? preempt_schedule_thunk+0x16/0x30
[  936.520232][T18237]  check_panic_on_warn+0xab/0xb0
[  936.525155][T18237]  end_report+0x107/0x170
[  936.529469][T18237]  kasan_report+0xee/0x110
[  936.533866][T18237]  ? dvb_device_open+0x36a/0x3b0
[  936.538790][T18237]  ? __pfx_dvb_device_open+0x10/0x10
[  936.544061][T18237]  dvb_device_open+0x36a/0x3b0
[  936.548815][T18237]  ? __pfx_dvb_device_open+0x10/0x10
[  936.554083][T18237]  chrdev_open+0x231/0x6a0
[  936.558523][T18237]  ? __pfx_apparmor_file_open+0x10/0x10
[  936.564049][T18237]  ? __pfx_chrdev_open+0x10/0x10
[  936.568970][T18237]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  936.575296][T18237]  do_dentry_open+0x97f/0x1530
[  936.580067][T18237]  ? __pfx_chrdev_open+0x10/0x10
[  936.585002][T18237]  vfs_open+0x82/0x3f0
[  936.589066][T18237]  path_openat+0x1de4/0x2cb0
[  936.593645][T18237]  ? __pfx_path_openat+0x10/0x10
[  936.598570][T18237]  do_filp_open+0x20b/0x470
[  936.603084][T18237]  ? __pfx_do_filp_open+0x10/0x10
[  936.608100][T18237]  ? alloc_fd+0x471/0x7d0
[  936.612424][T18237]  do_sys_openat2+0x11b/0x1d0
[  936.617095][T18237]  ? __pfx_do_sys_openat2+0x10/0x10
[  936.622278][T18237]  ? __pfx_sched_core_share_pid+0x10/0x10
[  936.627987][T18237]  __x64_sys_openat+0x174/0x210
[  936.632822][T18237]  ? __pfx___x64_sys_openat+0x10/0x10
[  936.638181][T18237]  do_syscall_64+0xcd/0x490
[  936.642672][T18237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  936.648556][T18237] RIP: 0033:0x7fab0558ebe9
[  936.652948][T18237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  936.672536][T18237] RSP: 002b:00007fab0636f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  936.680928][T18237] RAX: ffffffffffffffda RBX: 00007fab057b5fa0 RCX: 00007fab0558ebe9
[  936.688878][T18237] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  936.696827][T18237] RBP: 00007fab05611e19 R08: 0000000000000000 R09: 0000000000000000
[  936.704786][T18237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  936.712734][T18237] R13: 00007fab057b6038 R14: 00007fab057b5fa0 R15: 00007ffc07d32c48
[  936.720690][T18237]  </TASK>
[  936.723738][T18237] Kernel Offset: disabled
[  936.728050][T18237] Rebooting in 86400 seconds..