last executing test programs:

6.654678398s ago: executing program 0 (id=1830):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/nfs/parameters/nfs_mountpoint_expiry_timeout\x00', 0xa001, 0x0)
landlock_restrict_self$auto(0xffffffffffffffff, 0x7)
r0 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/config/target/dbroot\x00', 0x410100, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dmmidi2\x00', 0xb0a01, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00V\x8aQtL;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x4020009, 0x3, 0xeb1, r0, 0x40000008000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r2 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r2, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x2c)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x67a8c3, 0x0)
statx$auto(r1, 0x0, 0x6d7, 0x80000008, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlock$auto(0x3, 0x80006)
mlockall$auto(0x401)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x40, 0x0)
madvise$auto(0x0, 0x1000005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0xa, 0x5, 0x38)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x400302, 0x0)
getsockopt$auto_SO_PEERPIDFD(r4, 0x4, 0x4d, &(0x7f0000000080)='+(\'\x00', &(0x7f0000000180)=0xfffffe01)
openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/uid_map\x00', 0x800, 0x0)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/fail-nth\x00', 0x800, 0x0)
write$auto(r5, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
close_range$auto(r5, r3, 0x37a)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)

5.429306645s ago: executing program 3 (id=1834):
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, 0x0, 0x800)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/pcm0c/sub0/hw_params\x00', 0x80000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000200)=""/220, 0xdc)

4.84267325s ago: executing program 3 (id=1836):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00'})
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
r1 = socket(0x10, 0x2, 0x4)
write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
lseek$auto(r3, 0x7fd, 0x1)
sendfile$auto(0x1, 0xffffffffffffffff, 0x0, 0x400007ffff000)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x0)
set_mempolicy$auto(0x6, 0x0, 0x21)
r4 = pidfd_open$auto(0x1, 0x0)
setns(r4, 0x0)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x143403, 0x0)
setfsuid$auto(0xee00)
sendmsg$auto_OVS_VPORT_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r6, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)
msync$auto(0x80, 0xd66, 0x400000004)
fsconfig$auto(0xffffffffffffffff, 0x3, 0x0, 0x0, 0x0)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/snd_usb_audio/parameters/quirk_flags\x00', 0x121102, 0x0)
write$auto(r7, &(0x7f0000000040)='\\\x00', 0x2)
socket(0x2, 0x3, 0xa)

4.547481851s ago: executing program 0 (id=1837):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x7fff, 0x2) (async)
r0 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/members\x00', 0x589902, 0x0)
write$auto(r0, &(0x7f0000000080)='\x00\x00s\xa6\xc2\x1d\a\r\x05`\xa6\xfef\xa3\x00\x00q,h\xa2\x99;\xd9S\xbb\x81\xaa2\xa4oJ\x15\xd0\xc8\'h\x8d\x9f&\xc7\xde\xb3\x03\x8eB\x9e%h\xf4\xa5\xfdt{\x82t\xc9\xf9\xf8\xe6\xee}`\xd9\xd8\n\xee\x7f\xbb\x04\x17\xca\x1f~\xaf<\xe7f[*\x02\t\x8f\'t\xbe\xd1\x94\x17\x82\x9c\xb2\xb7\xda\xb0\xc1s\xbeR\x82\x14\xe3Oi\xda3V\t\xe3\xa4d@\xe9\x823P\x9cS\xb3\xe5nz\x99?\xb8\xcb\xcd\x88)\xf9:\x16UB\x15\x1a9\xe05%{X\x1a\\-\xad\xce\x91;\f\xc6\xf43\xcd\x92N\xf9\x97\xcf\x8d\xd1l\xfb\x9d\xa8 \xf3\x99+\x0f\x9eX\xc4\x8a\xf3\x86\x8b \xe6j\xa1\x0e\xf7\xf7\x12\r\xcc\xf2m\xf5\x84\x9b\xf5\rp\x8c\xc9X\xd6u0\xd2\x97f|\b\x17\'F\x1b\xb9\xe9f\xfbo\x9d\xb2\xc0\x8b|j\x00;\xb6\xee\xeb<#`\xa34\"cD\xcd\xea\a\b\xb2o\x93\xbd\xdc\xd4\xe7\xfaca\xf3\x9eW\xf2\xc9\x8e\xeb^^T\x8d\xf3\tk\x03\xacs\xd0!\xbd\xc3G\x8f\xdf\xc9\xa0\xca\xeb\xc22;GH\xdf \x91\x88\x99\xf8m\xa2\x1e\x81\xfd\x82\x9a\x92\x97\x1f\xb8^\x9eF\x18\xcas\x9a\xeaED\x19\xfb\xd3\x94|4\xfc\xb0\x7fx$\xc7\xb2\x9cW\xc0\xdd\x16\x16\xaf\xb2@\x81:\x99\xf8\x8b\xe9!\xd2X\xf1~\xbb\x13', 0x100400a3db) (async, rerun: 32)
r1 = set_tid_address$auto(&(0x7f0000001000)=0x759) (rerun: 32)
r2 = prctl$auto(0x5, 0x7, r1, 0x8001, 0x8) (async, rerun: 64)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), 0xffffffffffffffff) (async, rerun: 64)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, 0x0, 0x800) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r3) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r5=>0x0})
process_mrelease$auto(r2, 0xff) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80302, 0x0) (async)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002cbd7000fcdbdf252100000008000300", @ANYRES32=r5], 0x28}}, 0x400c080) (async, rerun: 32)
mmap$auto(0x0, 0x20009, 0x9, 0xeb1, 0x405, 0x8000) (rerun: 32)
ioctl$auto(0x4000000000000c8, 0x400454d1, 0x6)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r9=>0x0}) (async)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01002dbd7100f97bf53b7200000408000300", @ANYRES32=r9], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) (async, rerun: 64)
clone$auto(0x2, 0x20aa2890, 0x0, 0x0, 0xfffffffffffffe00) (async, rerun: 64)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0) (async)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb3, r2, 0x8000) (async)
socketcall$auto_SYS_GETSOCKOPT(0xf, &(0x7f00000003c0)=0xcf8) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
rt_sigtimedwait$auto(&(0x7f0000000000)={0xc}, &(0x7f0000000200)={@_si_pad}, &(0x7f0000000040)={0x2, 0x9}, 0x8) (async)
acct$auto(&(0x7f0000000140)='/dev/ptmx\x00')
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x8002, 0x2)

4.144122888s ago: executing program 0 (id=1838):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x501, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0x2)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x189081, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
setsockopt$auto(0xffffffffffffffff, 0x1, 0x12, 0x0, 0xa4)
mmap$auto(0x2000000000000, 0x2020009, 0x3, 0xde, r2, 0x100008000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_score_adj\x00', 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0xffffffffffffffff, 0x28000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/net/bond0/queues/tx-6/tx_timeout\x00', 0x2440, 0x0)
read$auto(r4, 0x0, 0x20)
select$auto(0x1, 0x0, 0x0, &(0x7f0000000040)={[0xfffffffffffffffd, 0x6, 0x7, 0x40007fff, 0x948b, 0x8, 0x15f4da0a, 0x1, 0x20000800000003, 0x8000400, 0x3, 0x7, 0x934, 0x93, 0x400000001, 0x5060]}, 0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)
syz_genetlink_get_family_id$auto_nbd(0x0, r2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x9, 0x79, 0x0, 0x4)
sendmsg$auto_NBD_CMD_DISCONNECT(r3, 0x0, 0x2000c800)
madvise$auto(0xffffffffffffffff, 0x200007, 0x19)
syslog$auto(0xffffffff, 0x0, 0x2)
poll$auto(0x0, 0x7f, 0x9)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
r5 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x200, 0x0)
pread64$auto(r5, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00', 0x100000002, 0x100000001)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r6, r6, 0x0, 0x3)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000200)="34aeede8", 0x4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/system/cpu/cpu0/hotplug/fail\x00', 0x808882, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)

3.81591813s ago: executing program 1 (id=1839):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2b, 0x1, 0x0)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000980)={0x14, r1, 0x1, 0x70bd31, 0x25dfdbfd}, 0x14}}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x103003, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
r2 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r2, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf5\x00\x00\x00', 0x100000002, 0x100000001)

3.793830152s ago: executing program 2 (id=1840):
mmap$auto(0x0, 0x20009, 0x4000000000cf, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
getpid()
setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x567)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(r0, 0xe5, 0x0)
socket(0x2, 0x2, 0x73)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)

3.473382549s ago: executing program 3 (id=1841):
r0 = bpf$auto(0x3, 0x0, 0x6f0)
r1 = bpf$auto(0x0, &(0x7f0000000580)=@task_fd_query={<r2=>0x7, 0x4, 0x200, 0x5, 0x0, 0xf, 0xffffffffffffffff, 0x1, 0x5}, 0x6f4)
write$auto(0xca, &(0x7f00000000c0)='\x04>\x00\x02\x18\x00\x00\xd3b\x01\xbd\x9b@\xb0\x00\x00\x00\x84\xa2\\\x15\xc4>\xa9\x82,\xf9y\xc7p\xf1w\xbe\xde\xe8\xc3\x01#\xcc\tF\xb6\x95\xeeH\xf8}v\xb3\xcb(\xa90Abe\xc3\x8c\xcc\xe7\xb8\x00F\x89#\xb4\xf0F\xa1\xd5\x1e\x8f\t\x9dZ~\xea\xa3\x93\xc2\x04\xe1;b\x99\x85\x00\x00\x00\xe2E\x00\x00-a\xb6n\xbc\xb4=\xf8\xce\x01\x1f]\x85|\xce\xd7\xff\xff\xd3lb\xc5\xee\xdb\xcb\xbb\xd8\x00\x80\x00\x00\xe9e\xe5\x80\x1c\x02\"\xa7&8U\xfd\xdc\x15\xae\xfa5\xb8}\x0e\xb4:\x91\xbb5\xd3{\xb2\xd0\xc0\x93=\xf8E\xceO\x1e\xd5\x8f\xdf\xaa\x1c\xfd\xb0h\xd8\xbc\xecA\xa6\xde\xd1=\xfd)d\x8f\vk\x1c+\xf7, \xf8]\xb3\xe9B\x02\f\'\xcf0\x06', 0x8000000000000001)
r3 = accept$auto(0x3, 0x0, 0x0)
r4 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000003c0), 0x521082, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nvmet_tcp/parameters/idle_poll_period_usecs\x00', 0x9801, 0x0)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
write$auto(0x3, 0x0, 0xffd8)
r5 = socket(0x15, 0x5, 0x0)
setsockopt$auto(r5, 0x114, 0x6, 0x0, 0x2)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000001c0), r1)
write$auto(0x0, 0x0, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_DELETE(r0, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0xc000)
mmap$auto(0x0, 0x400008, 0x4, 0x40009b72, 0x2, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
r6 = epoll_create$auto(0x8)
epoll_ctl$auto(r6, 0x1, 0x8000000000000000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_STATUS64(r4, 0x80605414, 0x0)
ioctl$auto_UI_GET_VERSION(r0, 0x8004552d, &(0x7f0000000040)=0x8)
r7 = creat$auto(&(0x7f0000000000)='./file0\x00', 0xffff)
r8 = socket(0x2, 0x80002, 0x73)
r9 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000240), r7)
ioctl$auto_XFS_IOC_ALLOCSP(r3, 0x4030580a, &(0x7f0000000280)={0x0, 0x5, 0xfcd7, 0x7, 0x8, <r10=>0xffffffffffffffff})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r11 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x68140, 0x0)
ioctl$auto(r11, 0x5405, 0xd8)
r12 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000200), 0x101802, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(r12, 0x5452, &(0x7f0000000080)={0x3, 0x1, 0x800000ff, 0x6, 0x10000})
sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(r3, &(0x7f00000007c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000084}, 0xc, &(0x7f0000000780)={&(0x7f0000001640)=ANY=[@ANYRESOCT=r2, @ANYRES16=r9, @ANYBLOB="000225bd7000fddbdf251f00000021042880080014000d00000008001100", @ANYRES32=r10, @ANYBLOB="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", @ANYBLOB="9aa6ce0f79dff9bfaea9d14cbaeef60b0809336861711f23ca5647cdde7944eefd9b39b205d3da039604ddac8ca9725e9115dd8897501f4ea98ec0c709352bed4c7ba27a2b562a9e56117572af8d544b93", @ANYBLOB="040029800400510000000c00130004000000000000000000000c0017007341000000000000050013000800000005002600b70000000500240000000000140004006261746164765f736c6176655f3100000500070001000000", @ANYRESDEC=r2, @ANYRESOCT=r4, @ANYRES64=r8, @ANYBLOB="076ed2b58447e155c0aeea7b018de6b284ab021c018a94b5624ec383d2480d309b7813fccb502902632afda5a477a15a239530d2bdc292cad7e42d1db1ec917a4f531c33488904d198d56230e916e8c2425ebc4243dbc5ce277d1e92a19bf4282708a6"], 0x478}, 0x1, 0x0, 0x0, 0x20040000}, 0x4)

2.968366956s ago: executing program 3 (id=1842):
mmap$auto(0x0, 0x2020409, 0xa, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0x0, 0x2020409, 0xa, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x29, 0x1, 0x106)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/bus/pci/drivers/net2280/new_id\x00', 0xa001, 0x0)
write$auto(r1, &(0x7f0000000180)='7\x81=\"\xad\xff\x8d\xf9;\x18\xa4\xb0&L\xeb=j\a\xb3\"Yq\'R\"\n\x1d\xa1\xff\a\x17\x00'/42, 0x81)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/sys/net/ipv6/neigh/veth0_to_bond/retrans_time\x00', 0xb0202, 0x0) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/sys/net/ipv6/neigh/veth0_to_bond/retrans_time\x00', 0xb0202, 0x0)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/random/urandom_min_reseed_secs\x00', 0x80a02, 0x0)
sendfile$auto(r2, r2, 0x0, 0x7ffff000) (async)
sendfile$auto(r2, r2, 0x0, 0x7ffff000)
select$auto(0x3ff, &(0x7f00000000c0)={[0x9, 0x8, 0x2, 0x7, 0xb09, 0x0, 0x648, 0x3ff, 0xffff, 0xff, 0x7, 0x1, 0x100, 0x3, 0xf, 0x8]}, &(0x7f0000000200)={[0x7, 0xfffffffffffffffd, 0x7, 0x25, 0x81, 0x0, 0x7, 0x8, 0x2, 0x100000001, 0x9, 0x2, 0x1, 0xb4, 0x2, 0x400]}, &(0x7f0000000280)={[0x5, 0xc51, 0x1, 0x4, 0x81, 0x1, 0x3, 0x0, 0x100000000, 0x5, 0x9f9, 0x7fff, 0xd, 0x3a, 0x2, 0x27d1]}, &(0x7f0000000140)={0x0, 0xfffffffffffff0a0})
connect$auto(r0, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0xc}}, 0x54) (async)
connect$auto(r0, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0xc}}, 0x54)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, 0x0, 0x800)
r3 = socket(0xa, 0x3, 0x3a)
bind$auto(r3, 0x0, 0x66)
ioctl$auto_SIOCSIFHWADDR2(r0, 0x8924, &(0x7f0000000300)="a2c279931733848854f464") (async)
r4 = ioctl$auto_SIOCSIFHWADDR2(r0, 0x8924, &(0x7f0000000300)="a2c279931733848854f464")
syz_open_procfs$namespace(0x0, &(0x7f00000002c0)='ns/uts\x00')
syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/uts\x00') (async)
syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/uts\x00')
read$auto_fops_u32_ro_(r4, &(0x7f0000000340)=""/43, 0x2b) (async)
read$auto_fops_u32_ro_(r4, &(0x7f0000000340)=""/43, 0x2b)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) (async)
r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r5, 0xc1105517, &(0x7f0000000000)={{@inferred, 0x0, 0x4, 0x8, "3112d585005a614d19e22af9ffb683dbede3d0bf828bbfc5cff035f4be6b7fe5e2f94bd9040100000015e48d", @raw=0x2}, 0x3, 0x5, 0x4, @raw=0x9, @reserved="1d5432d94a32bd4a1c203b896bfb666ca9f576b571553a19d3cfd3eb764c8648aded81f04b0e5ffdf9c863c3584fb3cf6a53816ae36fb3f8f4db7fa4a385a1d1cb3b07888602990abc954a297682b3b5b020f547efcb110f4ee8cda573fb9ac424fd51e4ccf58d31024fc0fd2f6a418670b5ec4b88b964e1b4456b45df1bb973", "7a9fc199a16a2311eacf2fc7ae1da978dc3e8090334fdd73340238d212b6debe0ada55bdd70925450e24e87212f0bcab84a16f7ce8cbce0bb32777702b8d7c2d"})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001900), 0xffffffffffffffff)
select$auto(0x4, 0x0, &(0x7f0000000100)={[0x5, 0x1, 0x8, 0x8, 0x6, 0x9, 0x0, 0x5, 0xf8, 0xffffffffffff402e, 0x800, 0x60000000, 0x40, 0x4, 0x87, 0x4]}, 0x0, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x6, 0xd, 0xfffffffe, 0x6, 0x7fff, 0x8, 0xffffffffffffffff, [], {0x6, 0x10001, 0xb, 0x2de, 0x504, 0x1, 0x101, 0x6, 0x6}, {0xfff7ffff, 0x2, 0x52, 0x5, 0x10001, 0x40, 0x76c5, 0x8, 0x8000000000000000}})
process_vm_readv$auto(0x0, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0)
r8 = socket(0xa, 0x2, 0x0)
setsockopt$auto(r8, 0x29, 0x30, 0x0, 0x56b)
prctl$auto_PR_SCHED_CORE_CREATE(0x6, 0x1, 0xffffffffffffffff, 0x6, 0x7) (async)
r9 = prctl$auto_PR_SCHED_CORE_CREATE(0x6, 0x1, 0xffffffffffffffff, 0x6, 0x7)
fadvise64$auto_POSIX_FADV_WILLNEED(r9, 0x2, 0x7fffffff, 0x3)
sendmsg$auto_MACSEC_CMD_GET_TXSC(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)={0x14, r7, 0x186f202170196f7b, 0x703d26, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x200008d0}, 0x40080c4)

2.759510415s ago: executing program 2 (id=1843):
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/dfscache\x00', 0x101000, 0x0)
pread64$auto(r0, 0x0, 0x8, 0x75e8) (async)
r1 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
pidfd_send_signal$auto_PIDFD_SIGNAL_PROCESS_GROUP(r1, 0x6e, &(0x7f00000002c0)={@_si_pad}, 0x4) (async)
r2 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b)
read$auto(r2, 0x0, 0x1) (async)
write$auto(0x3, 0x0, 0xffd8) (async)
recvmmsg$auto(r1, &(0x7f0000000580)={{&(0x7f00000003c0)="e35fecc97494076fa7367799c915f2b97ebe3065df6f4fd1a3ed2d1c872795a68adf1a193c0f2e31106f064bf4123dbcc7d404", 0x6, &(0x7f0000000500)={&(0x7f0000000400)="c71f5f33a15c94bb11ba00b7c74a48740a9ea25ce6d43410666dcbe6b93c2e2db90f00e174277ec43270cb67b483f2fcff134a964f8207277b6ed43d2e7d5512d39eb6fd260e5ff0bc451198ec879d6f8580aa84e71948024fb326b8b45bbbe5b40f4e3b71a48fb65f1c763fd9183ab1c0f7c5b2a05c074281cf2350995a336a7a809a6dcc9d12acedd8a2250c4397aae83e13ab64fef27b32025365d1cafc3378051b822a17ae28dbeb6bb72fc630d4e76d559f3f1a7897f4920e2a552a7a13ba0cd2493e03332a4b93", 0x9f80000000000000}, 0x7, &(0x7f0000000540)="3dc7ea68467aef8b98a4d0d48e556c5680b3fd0abdcdbdbc71f0e9412bce8e312c7d97af85abd5da", 0x93a, 0xae14}, 0x759049c3}, 0xc63c, 0x6, &(0x7f00000005c0)={0x4}) (async)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) (async)
landlock_create_ruleset$auto(&(0x7f0000001180)={0xd1d, 0x3, 0x7}, 0xb9, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x700000000000000)
r3 = socket(0x10, 0x2, 0x0)
sendto$auto(0xffffffffffffffff, &(0x7f0000000080)="16d3ae5a2f7a66eab428eefda41077de27b47ded38a66d87fc4e9b07ef8394eadfecff125a252cd3cd81f5ef7d60bcaf026b210789ebd045862d1c813fff0009c716479ec0d13674421ff3295cb2217ef481fc8c71bf2edd876c5938ea3e9d8d30502f72aea467a5d3e7eb702aac763430eb1a58fa27b6983ffad24769cbc9806482564ffd46d172dbdfc59447618b713ecf52cd870bb19a907796c69e860a95d699663205b0738f54295260aabda5248a1145edfc0d451cb8fb41eae25e07f63e6130466a2dd5c85f7b", 0x0, 0x6, &(0x7f0000000380)=@phonet={0x23, 0x8, 0x0, 0xb0}, 0x9) (async)
statmount$auto(0x0, &(0x7f0000000180)={0x6, 0x1, 0x9, 0x7, 0x3d, 0x3ff, 0x1ffde, 0x7, 0x8, 0x2, 0x9, 0x43, 0x79c6f4a1, 0x4, 0xb2, 0x9, 0x3, 0xfffc, 0x80, 0x7, 0x40000, 0x7, 0x2000, 0x200, 0x0, 0x81, 0x40000, 0x7, 0x0, 0x9, 0x10000, [0x1000000001, 0x0, 0x6, 0x5, 0x0, 0x3, 0x2, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x2, 0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x1, 0x0, 0x1, 0x0, 0x5cc, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0x0, 0x0, 0x7, 0x7fff, 0x0, 0x0, 0x2000000]}, 0x202, 0xd) (async)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x10000, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x5, 0xa505}, 0x2}, 0x7, 0x0)

2.560321699s ago: executing program 0 (id=1844):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
socket(0x10, 0x2, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_MON_PEER_GET(r2, &(0x7f0000006140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=ANY=[@ANYBLOB="ea75d41cdc842dfc2702c738c9f103acdea0e8d861f7f59cbb69f1d3bbacc768e6245219bf752a8b82", @ANYRES16=r1, @ANYBLOB="11072cb57000fedbdf25130000000c00098008000200", @ANYRES32=0x0, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x4405}, 0x4c848)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r3)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000ac0)=ANY=[], 0xfc}}, 0x4000000)
r4 = getuid()
r5 = getpgid$auto(0xffffffffffffffff)
msgctl$auto_MSG_STAT_ANY(0x0, 0xd, &(0x7f0000000380)={{0x3, r4, 0x0, 0x4, 0x4, 0x400, 0x6}, &(0x7f00000001c0)=0x5, &(0x7f0000000200)=0x7, 0x4, 0x6, 0x5b, 0x4, 0x1000, 0x80, 0x9, 0x8001, @inferred=r5, @inferred=r5})
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000240)='/dev/snd/midiC2D0\x00', 0x430a80, 0x0)
sendmsg$auto_TIPC_NL_BEARER_GET(r3, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xffffffffffffff12, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="f8180000", @ANYRES16=r1, @ANYBLOB="20002dbd7000fddbdf25040000003e00000092a4608aadae90a11d4b434cf06e950d0f6a02f9daec7dc25d16ccbc34a518ba7946a968cb2663a1b0263efa3ab00b8e651166c4c665e59e135a00005e000000a5ead726ba99aaff7c1de27dc300e2e7010e7c00dfe68e4478605700c705e5451b476af38ba93307620aa40fc2e72d6f5b0be470a9a9c91cceb2d7d53c2d420bd88ec49875399908a1e42ce7e64c5670a387bf8e5bcf837023db00002d00000070e6ec96c46cf5ce453e09845bc90ef8766bc4868bfb304212b550d6b97328953720e1652a82bb871c0000001118098078022680040057808e6d679f12b2a1009bc61a51846edb9ca1b1dd42061808005600ac1e01010a4e3e0307ae9f6a749aa79909a4fd128e697347439b641ecdf4c5cca0fdee6e60b4a15ce4f014222bdc9972bc2f2df0618cef6592d34e23998d7f00000000000000a6d933f552bf8cf3d7105da80dcd0cd3c97f3345e7bf99ebb2588285dbeb05122368fb915c83aacf4e807d01c87e02aebf4cb0bb44662b8b0636bae4b429607e215f02000000b4277b470cf2e3f0da2bb838e7a9932f01adccbcdef7f3c3db2f50322737b612132b8ff0fe0bbe0000000000000000be1f99d5e931c0e55e941983266cc8201d40cfbb6b87c416ca67f615c54f359b7d64c2e128a8f5f286ed55f2048e0908004b00e0000002e84a73d24a313f730512adbb2fdc2082dc848685ad6aeda749206fa33f706e363411a9f98403def00c1aa7a69f1e95401b2286f9680a4484652a5df6c799a94e288d8eee50f78f28b4bd6427b15e8a4d6d14f45a6cbcf2e094b9de6f43c4bdcef42477c086b9e99f27a0a83187e285f3dcd8372300cb3d1adc77d5c25a20c2a91dafb86f8d279e95654cbc8c3321f4fe33d00d49bb2d0c57e314147c1215a0e37a86ee48cad60da0ebc0fdc809d064e3314742fce46059e5054230275a2e9b365c51322b7f3eccefaf766ba0576611fe56eba732f7d258155644afb7c0639e61d7b95c74515440dded328f8b40cf5d5fa186101ed0264728d9afb828da9e37cad3d94a8dc50029a0a1dc82399253ab89805f5809efaa12721c678404356816b1af382f4930784e5cfdf4862722cdd93db17667051d7706633d8549e7d41d1042bfe093b668fbbd759d0ba31c276b2bcb67db98c6da35d63cd375f0e2ebf4d754e42972ec05010f8008005d00", @ANYRES32=r0, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="0080ecfbf6470ebc64c495fcb3264f0cbb53e45bddb77d2a3b3818d844e29f2498ab59b446f3fd82ee993d902e5f654df89c19c95e1d2ab6a65c1ab2685603f624e5d7c2e77177376004b1e6144a0f0cd04ab63ab937167a808decbe8a5e6cca01ab702b93e1d8e5b9436a20fc8aa0e3d6d0608def317f28d9b00b2f74613f3e819ff0ad0a548d000000"], 0x18f8}, 0x1, 0x0, 0x0, 0x24000070}, 0x5)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x48041, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/miimon\x00', 0x143b42, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x4, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
socketpair$auto(0x5b, 0x1, 0x420000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0)

2.253939852s ago: executing program 2 (id=1845):
mmap$auto(0x0, 0x20009, 0x4000000000cf, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000140)="ac42d463f1971417fb682e4df2bad2d03f1a585658c73b01dfdaa89cb523fc81cd49d02e36fccaa80c996a8121bd2344228256a3f3da16682b257ca0dadcdad65a81d271671b42a20eb49c525b2eee9d5e0e305b92efaed8615f8bfb7e9da9a310b71f97fec6fb6beaab1f2dbd9fdf36edf7656e18d1158267f64504c84440831a60611b7e39a8f6bcde8566f25294bd", 0x1ffffffff}, 0x6, 0x0)
capset$auto(&(0x7f0000000080)={0x5, r1}, &(0x7f00000000c0)={0xbe, 0x6})
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(r0, 0xe5, 0x0)
socket(0x2, 0x2, 0x73)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)

2.093087123s ago: executing program 3 (id=1846):
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec31\x00', 0x900, 0x0)
ioctl$auto_CEC_S_MODE(r0, 0x40046109, &(0x7f0000002c40)=0xd0)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x14)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x40e00, 0x0)
pread64$auto(r2, 0x0, 0x3, 0x5ef6)
socket(0x10, 0x2, 0x0)
socket(0x10, 0x2, 0x0)
socket(0xa, 0x5, 0x84)
r3 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x101b00, 0x0)
unshare$auto(0x40000080)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x802, 0x0)
read$auto(r4, 0x0, 0x7)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
recvmmsg$auto(r0, &(0x7f00000004c0)={{&(0x7f0000000280)="d1413ec595206f047c2417c1b1275ca3baade21eb60e64f2a815ddd19b9cc6fcef0e5ad2398cfcd188b8ec7a524459972bb718ca8d32f4fb0e6d1a162b354007a341b8d5", 0x8, &(0x7f0000000440)={&(0x7f0000000340)="ec654c0e8bd2d4b496746da59186aab9e70055c10756cfe51c05da46b375f8f36168a520daa69348e3c7664a904f757259fafefc4b77b8c812e57284ed4ab9cbcca3dd2b92f105de1e2939ed2c4ab7c0fdc1c79790377d17c7126d68ada9340ae0635e17c585f3d7ea889adcb952adc1b7130c72fc3cced8e7c8fc15292b0c933432feab8ce41dabe9bdb765925e58c2695bdb5f9e9c2f3cd660ba3b2afd0dee41efcc12003fed03748f25d29b082c6f7d07c85019947beb26b318bc62e68dcdf09de715a209f5d83c0d1a1a120c0885695b4ce2fad29a28f749d4ad30c0c561b1684aa9"}, 0x8000000000000000, &(0x7f0000000480)="d50fb9415db54832db28df067f85cd54b03f1f90c1a8bfb26e132157f33723d4a7b789404afa6aa9d762f087aecfcc814aad2f94d28f6cd7e13d3d", 0x9, 0x2}, 0x1}, 0x639d, 0xf, &(0x7f0000000500)={0xfffffffffffffffa, 0x5})
r5 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x20002, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000140), r1)
sendmsg$auto_WG_CMD_SET_DEVICE(r6, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x20, r7, 0x0, 0x70bd28, 0x25dfdbfb, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e23}, @WGDEVICE_A_PEERS={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000044}, 0x48000)
ioctl$auto_RTC_PARAM_GET(r5, 0x40187013, &(0x7f0000000080)={0x1, @ptr=0x100000001, 0x5})
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)="ec67e0d1db232043e96722d37e9ea4cbc5a518f755092177b9479cc3887b6fc1498552c3c9802070f2b6d807dc946a5d9b57f5152ee9a09cea2330f2fd0b970a90652ca674262b4c03987f99298f6bc385c32251f3eba11b09b630411dbe8e6754f22431c318f1646ba0f36957d0dd80b13654e56801", 0xfff}, 0x4, 0x0, 0x8, 0x200007}, 0x7}, 0x81, 0x66a6, 0x0)
fadvise64$auto_POSIX_FADV_NORMAL(r5, 0xfffffffffffffff7, 0x2, 0x0)

2.086492686s ago: executing program 1 (id=1847):
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = open(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0xa6)
r1 = open_by_handle_at$auto(r0, &(0x7f0000000040)={0x8, 0x2, '\a\x00\x00\x00\x00\x00\x00\x00'}, 0x2)
write$auto(r1, 0x0, 0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_SAR_SPECS(r2, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000480)={0x1c, r3, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_BEACON_HEAD={0x6, 0xe, "1c36"}]}, 0x1c}, 0x1, 0x0, 0x0, 0x6040000}, 0x20008810)
sendmsg$auto_NL80211_CMD_FRAME(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, r3, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_4ADDR={0x5, 0x53, 0xe0}]}, 0x20}, 0x1, 0x0, 0x0, 0x24000000}, 0x4000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x0)
r4 = socket(0xa, 0x3, 0xff)
connect$auto(r4, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000001680), 0x0)
syz_clone3(0x0, 0x0)
madvise$auto(0x1ffff000, 0x7, 0x100000000)
mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x20, 0x0)
fsopen$auto(0x0, 0x1)
shmget$auto(0x8, 0x10563, 0x568d1af2)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000280)='/dev/input/event2\x00', 0x40382, 0x0)
bpf$auto(0x14, &(0x7f00000000c0)=@enable_stats={0x1}, 0x7)
mmap$auto(0x0, 0x2000a, 0x10000000000e1, 0xeb2, 0x401, 0x8000)
arch_prctl$auto(0x5005, 0x9)

2.083129029s ago: executing program 0 (id=1848):
openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, 0x0, 0x5a1380, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
select$auto(0x0, 0x0, &(0x7f0000000100)={[0x5, 0x0, 0x40000008, 0x8, 0x6, 0x200000000009, 0x0, 0x5, 0xf8, 0xffffffffffff402e, 0x800, 0x40060000000, 0x40, 0x4, 0x87, 0x2]}, 0x0, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x8, 0xd, 0xfffffffe, 0x6, 0x7fff, 0x8, 0xffffffffffffffff, [], {0x2, 0x10001, 0xb, 0x2de, 0x504, 0x1, 0x101, 0x6, 0x6}, {0xfff7ffff, 0x151c6d33, 0x52, 0x5, 0xd9d8, 0x40, 0x76c5, 0x8, 0x8000000000000000}})
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0)
socket(0x21, 0x5, 0x0)
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, 0x0, 0x11d802, 0x0)
r2 = socket(0x10, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(r3, &(0x7f00000030c0)={0x0, 0x0, &(0x7f0000003080)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYBLOB="0456ed"], 0x14}, 0x1, 0x0, 0x0, 0x4854}, 0x40)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003900), r3)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r3)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(r2, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010027bd7000fcdbdf250a9e00ff15000000140001"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0)

1.892907011s ago: executing program 2 (id=1849):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/irq.pressure\x00', 0x101102, 0x0)
r0 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace\x00', 0x82000, 0x0)
read$auto_tracing_fops_trace(r0, &(0x7f0000000580)=""/4096, 0x1000)
mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x40008000)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0)
unshare$auto(0x40000080)
recvfrom$auto(r0, &(0x7f0000000280)="785679bef9c5cf961f5765f348ca00704983707c4f6d9e803bb23aff9e1a06912cb5b70214026423b8f3d4b2d388458bccdb338d3104003131961384d40864711abbe30e83baf63114b21c15c71a20922863d1077dd7992917ffb3a68ed96b49340fc958719652934a2ab6f18245c5e257c31e72c6b3aa74a85d8cd4566fa52639cb5797", 0x1ff, 0x9, &(0x7f0000000340)=@vsock={0x28, 0x0, 0x80002711, @hyper}, &(0x7f0000000380)=0xb4000000)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
write$auto(0x3, 0x0, 0xfdef)
shmctl$auto_SHM_UNLOCK(0x2, 0xc, 0x0)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x54, 0x0, 0x400, 0x70bd25, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_RX_BUF_LEN={0x8, 0xa, 0xfffffe00}, @ETHTOOL_A_RINGS_TX_PUSH_BUF_LEN={0x8, 0xf, 0xb3cc}, @ETHTOOL_A_RINGS_HDS_THRESH={0x8, 0x11, 0x4}, @ETHTOOL_A_RINGS_CQE_SIZE={0x8, 0xc, 0x5}, @ETHTOOL_A_RINGS_HDS_THRESH={0x8, 0x11, 0x8001}, @ETHTOOL_A_RINGS_TX_PUSH={0x5, 0xd, 0x7}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x6}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0xfff}]}, 0x54}, 0x1, 0x0, 0x0, 0x4020}, 0x0)
ioctl$auto(0xffffffffffffffff, 0x540a, 0xffffffffffffffff)
write$auto(0xffffffffffffffff, &(0x7f0000000000)='9\x00d1L\xff\x15\xba\xa17=(\xc1\xf8\xff\xff\v\xb5^\xa1/[', 0x8)

1.400246496s ago: executing program 1 (id=1850):
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
read$auto(0xffffffffffffffff, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0)
r0 = syz_open_procfs$namespace(0x0, 0x0)
mmap$auto(0x0, 0xe983, 0xa3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r1 = socket(0xa, 0x5, 0x84)
sendto$auto(r1, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80000000000f00"}, 0x1c)
setns(r0, 0x0)
move_pages$auto(0xffffffffffffffff, 0xa6, 0x0, 0x0, 0x0, 0x3)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
timer_create$auto_CLOCK_BOOTTIME(0x7, 0x0, 0x0)
sendmsg$auto_IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x200000d4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
pwrite64$auto(0xc8, 0x0, 0xfdf2, 0x3a)
semctl$auto(0xeea8, 0x804, 0x2, 0x1)

1.081405192s ago: executing program 1 (id=1851):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020005, 0x203, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0xe8)
r1 = socket(0x2, 0x1, 0x106)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x400000003)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x14, r4, 0x1, 0x70bd2c, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x803f}, 0x8000)

881.112072ms ago: executing program 2 (id=1852):
mmap$auto(0x100000000, 0xc, 0xffffffffffffffff, 0x9b72, 0x2, 0x100000008000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
timerfd_settime$auto(0xffffffffffffffff, 0x0, &(0x7f0000000000)={{0x10, 0x3ff}, {0x10, 0xa}}, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket(0xa, 0x5, 0x84)
sendto$auto(r0, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "000000000000fe8000"}, 0x1f)

659.592049ms ago: executing program 3 (id=1853):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
write$auto(r0, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0x5)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400c810}, 0x200448c0)
writev$auto(0xca, &(0x7f0000000500)={&(0x7f0000000800)="86d9b0bf291e5e5e8ec53c06000000fe69f6414866bfbe23c315161d44c858285ce900000000000000000000e4cbc079d847d343534f33cb11052d9a64e340584ac5a1a69922566dbe974278ee90575dd977215fb0fa0099144c0b0f61141ab10e39e14017d6b2704e27c54b2599842e214463ceb23217c464375466b80311f58e05c77ecd6c92aea5df645b0a84f51a5fb7b53914632059f161b818c25a8eca6c2025aff2f18730bf3e2830a22bfa37", 0x1}, 0x5)
read$auto(r1, 0x0, 0x1f40)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'team_slave_1\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team0\x00'})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_net_shaper(&(0x7f00000005c0), r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'veth0_to_bond\x00'})
sendmsg$auto_NET_SHAPER_CMD_DELETE(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x40004}, 0x4051)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'veth0_to_hsr\x00'})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000780)={'batadv0\x00'})
sendmsg$auto_BATADV_CMD_SET_MESH(r5, &(0x7f0000000100)={0x0, 0x2e, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="0028bd7000fbdbdf25917f00000800030000", @ANYRESHEX, @ANYRES8=r2], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x140080e4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200))
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'netpci0\x00'})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'ip6gre0\x00'})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'rose0\x00'})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'xfrm0\x00'})
sendmsg$auto_ETHTOOL_MSG_MODULE_GET(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000380)={&(0x7f00000005c0)=ANY=[], 0x114}, 0x1, 0x0, 0x0, 0x24004004}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r6)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})

395.605705ms ago: executing program 1 (id=1854):
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x40000, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000180)="868d180916c735e093b9861f0bde02ef6484efd1225c2444fcc82c0d59436954f1c5f1868337cc88c0551ac5e2456b2d59f35d15836a45174dd7a65e2b9c11584402a2d233711c1075c65047b196855f291971f6fa05a6ce417e5956bc9c1b3d364815d3f66cf7e1f2579c955b9490f89af6f234d145f17a3830dd2773e81e48dae316b7eedc93a2d3aa1f6e25ae9345a238bb040fbe002bfa003e9067ebdc1eff0c263241c8f40b", 0xa8)
mmap$auto(0x10000, 0x400005, 0x40000000000005, 0x9b72, 0xc76, 0x0)

267.875049ms ago: executing program 2 (id=1855):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)={0x14, r1, 0x936355e497c8b7e5, 0x70bd25, 0x25dddbfc}, 0x14}, 0x1, 0x0, 0xf0ffffffffffff, 0x4010}, 0x4048800)
socket(0x15, 0x3, 0x1)

194.938449ms ago: executing program 0 (id=1856):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2b, 0x1, 0x0)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000980)={0x14, r1, 0x1, 0x70bd31, 0x25dfdbfd}, 0x14}}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x103003, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
r2 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r2, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\x00\x00 \x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x100000002, 0x100000001)

0s ago: executing program 1 (id=1857):
ioctl$auto_XFS_IOC_READLINK_BY_HANDLE(0xffffffffffffffff, 0xc038586c, &(0x7f0000000280)={<r0=>0xffffffffffffffff, &(0x7f0000000040)="36382843cbf647a308387752cf206143902799f714d3da792af73a2f51252c2924ba2758ab0a48d458fbe6a143f7d73b7035e954be54776dfb99d2e4055cbc993ef0467a8d1339bfea", 0xfd, 0x0, 0x0, 0x0, 0x0})
close_range$auto(0x2, r0, 0xffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, &(0x7f0000000080)={0xbc})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = socket(0xa, 0x3, 0x6)
getsockopt$auto(r3, 0x40000000029, 0x4c, 0xfffffffffffffffe, 0x0)

kernel console output (not intermixed with test programs):

tooth: hci2: unexpected event 0x14 length: 16 > 6
[  501.003717][T11965] usb usb36: usbfs: process 11965 (syz.1.1164) did not claim interface 0 before use
[  501.330842][T10409] Bluetooth: hci2: unexpected event 0x14 length: 16 > 6
[  501.592118][T11974] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  501.668556][T11974] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0
[  501.836051][T11961] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  501.871025][T11961] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  501.905614][T11961] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  501.942908][T11961] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  502.005753][T11961] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  502.037850][T11961] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  503.173623][T12009] usb usb36: usbfs: process 12009 (syz.3.1173) did not claim interface 0 before use
[  503.521143][T10409] Bluetooth: hci2: unexpected event 0x14 length: 16 > 6
[  503.595676][T12015] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  503.610891][T10409] Bluetooth: hci1: command 0x0c1a tx timeout
[  503.712987][T12015] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0
[  503.932272][T10409] Bluetooth: hci2: command 0x041b tx timeout
[  503.938538][T10980] Bluetooth: hci0: command 0x0c1a tx timeout
[  504.012357][T10409] Bluetooth: hci3: command 0x0c1a tx timeout
[  504.973358][T12045] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  505.049014][T12046] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  505.394157][T12055] FAULT_INJECTION: forcing a failure.
[  505.394157][T12055] name failslab, interval 1, probability 0, space 0, times 0
[  505.485959][T12055] CPU: 0 UID: 0 PID: 12055 Comm: syz.0.1188 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  505.486001][T12055] Tainted: [L]=SOFTLOCKUP
[  505.486009][T12055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  505.486025][T12055] Call Trace:
[  505.486033][T12055]  <TASK>
[  505.486043][T12055]  dump_stack_lvl+0x100/0x190
[  505.486078][T12055]  should_fail_ex.cold+0x5/0xa
[  505.486119][T12055]  should_failslab+0xc2/0x120
[  505.486154][T12055]  kmem_cache_alloc_noprof+0x83/0x780
[  505.486188][T12055]  ? __kernfs_new_node+0xd2/0x960
[  505.486234][T12055]  ? __kernfs_new_node+0xd2/0x960
[  505.486267][T12055]  __kernfs_new_node+0xd2/0x960
[  505.486306][T12055]  ? __pfx___kernfs_new_node+0x10/0x10
[  505.486347][T12055]  ? find_held_lock+0x2b/0x80
[  505.486372][T12055]  ? kernfs_root+0xee/0x2a0
[  505.486404][T12055]  ? kernfs_root+0xee/0x2a0
[  505.486444][T12055]  kernfs_new_node+0x11b/0x1a0
[  505.486487][T12055]  kernfs_create_link+0xcc/0x240
[  505.486517][T12055]  sysfs_do_create_link_sd+0x90/0x140
[  505.486553][T12055]  sysfs_create_link+0x61/0xc0
[  505.486586][T12055]  driver_sysfs_add+0x91/0x2d0
[  505.486616][T12055]  device_bind_driver+0x16/0x70
[  505.486645][T12055]  mac80211_hwsim_new_radio+0x3fb/0x57c0
[  505.486696][T12055]  ? __asan_memset+0x23/0x50
[  505.486722][T12055]  ? __nla_validate_parse+0x1e7/0x28b0
[  505.486751][T12055]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  505.486797][T12055]  hwsim_new_radio_nl+0xc1f/0x1340
[  505.486832][T12055]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  505.486864][T12055]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  505.486909][T12055]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  505.486938][T12055]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  505.486972][T12055]  genl_family_rcv_msg_doit+0x214/0x300
[  505.487002][T12055]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  505.487028][T12055]  ? genl_get_cmd+0x3ef/0x720
[  505.487060][T12055]  ? bpf_lsm_capable+0x9/0x10
[  505.487082][T12055]  ? security_capable+0x80/0x260
[  505.487113][T12055]  ? ns_capable+0xd2/0xf0
[  505.487143][T12055]  genl_rcv_msg+0x560/0x800
[  505.487172][T12055]  ? __pfx_genl_rcv_msg+0x10/0x10
[  505.487199][T12055]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  505.487253][T12055]  netlink_rcv_skb+0x159/0x420
[  505.487293][T12055]  ? __pfx_genl_rcv_msg+0x10/0x10
[  505.487321][T12055]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  505.487372][T12055]  ? netlink_deliver_tap+0x1ae/0xcc0
[  505.487413][T12055]  genl_rcv+0x28/0x40
[  505.487435][T12055]  netlink_unicast+0x5aa/0x870
[  505.487479][T12055]  ? __pfx_netlink_unicast+0x10/0x10
[  505.487528][T12055]  netlink_sendmsg+0x8b0/0xda0
[  505.487572][T12055]  ? __pfx_netlink_sendmsg+0x10/0x10
[  505.487610][T12055]  ? __import_iovec+0x1d2/0x640
[  505.487651][T12055]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  505.487687][T12055]  ____sys_sendmsg+0xa54/0xc30
[  505.487717][T12055]  ? __pfx_____sys_sendmsg+0x10/0x10
[  505.487742][T12055]  ? __pfx___futex_wait+0x10/0x10
[  505.487771][T12055]  ? __pfx_futex_wake_mark+0x10/0x10
[  505.487817][T12055]  ___sys_sendmsg+0x190/0x1e0
[  505.487847][T12055]  ? __pfx____sys_sendmsg+0x10/0x10
[  505.487890][T12055]  ? find_held_lock+0x2b/0x80
[  505.487933][T12055]  __sys_sendmsg+0x170/0x220
[  505.487971][T12055]  ? __pfx___sys_sendmsg+0x10/0x10
[  505.488007][T12055]  ? __x64_sys_futex+0x34f/0x4d0
[  505.488058][T12055]  do_syscall_64+0xc9/0xf80
[  505.488091][T12055]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.488116][T12055] RIP: 0033:0x7f505899acb9
[  505.488136][T12055] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  505.488161][T12055] RSP: 002b:00007f50597a8028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  505.488186][T12055] RAX: ffffffffffffffda RBX: 00007f5058c15fa0 RCX: 00007f505899acb9
[  505.488203][T12055] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  505.488219][T12055] RBP: 00007f5058a08bf7 R08: 0000000000000000 R09: 0000000000000000
[  505.488241][T12055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  505.488256][T12055] R13: 00007f5058c16038 R14: 00007f5058c15fa0 R15: 00007ffdaaf25ae8
[  505.488287][T12055]  </TASK>
[  506.414814][T10409] Bluetooth: hci3: command 0x0c1a tx timeout
[  506.768877][T12080] netlink: set zone limit has 8 unknown bytes
[  507.497005][T12104] FAULT_INJECTION: forcing a failure.
[  507.497005][T12104] name failslab, interval 1, probability 0, space 0, times 0
[  507.572289][T12104] CPU: 0 UID: 0 PID: 12104 Comm: syz.3.1192 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  507.572330][T12104] Tainted: [L]=SOFTLOCKUP
[  507.572339][T12104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  507.572354][T12104] Call Trace:
[  507.572363][T12104]  <TASK>
[  507.572373][T12104]  dump_stack_lvl+0x100/0x190
[  507.572407][T12104]  should_fail_ex.cold+0x5/0xa
[  507.572449][T12104]  should_failslab+0xc2/0x120
[  507.572484][T12104]  kmem_cache_alloc_noprof+0x83/0x780
[  507.572518][T12104]  ? __kernfs_new_node+0xd2/0x960
[  507.572557][T12104]  ? __kernfs_new_node+0xd2/0x960
[  507.572590][T12104]  __kernfs_new_node+0xd2/0x960
[  507.572627][T12104]  ? __pfx___kernfs_new_node+0x10/0x10
[  507.572669][T12104]  ? find_held_lock+0x2b/0x80
[  507.572693][T12104]  ? kernfs_root+0xee/0x2a0
[  507.572725][T12104]  ? kernfs_root+0xee/0x2a0
[  507.572764][T12104]  kernfs_new_node+0x11b/0x1a0
[  507.572820][T12104]  __kernfs_create_file+0x53/0x350
[  507.572852][T12104]  sysfs_add_file_mode_ns+0x207/0x3c0
[  507.572891][T12104]  sysfs_merge_group+0x194/0x340
[  507.572928][T12104]  ? __pfx_sysfs_merge_group+0x10/0x10
[  507.572968][T12104]  ? __pfx_dev_add_physical_location+0x10/0x10
[  507.573007][T12104]  ? bus_to_subsys+0x114/0x150
[  507.573050][T12104]  dpm_sysfs_add+0x237/0x280
[  507.573085][T12104]  device_add+0x9ef/0x1950
[  507.573130][T12104]  ? __pfx_device_add+0x10/0x10
[  507.573171][T12104]  ? kfree_const+0x5a/0x70
[  507.573205][T12104]  device_create_groups_vargs+0x1f8/0x270
[  507.573246][T12104]  device_create+0xed/0x130
[  507.573283][T12104]  ? __pfx_device_create+0x10/0x10
[  507.573320][T12104]  ? timer_init_key+0x14c/0x2c0
[  507.573354][T12104]  ? ieee80211_roc_setup+0x136/0x270
[  507.573385][T12104]  ? ieee80211_alloc_hw_nm+0x19c3/0x22a0
[  507.573428][T12104]  mac80211_hwsim_new_radio+0x37f/0x57c0
[  507.573479][T12104]  ? __asan_memset+0x23/0x50
[  507.573506][T12104]  ? __nla_validate_parse+0x1e7/0x28b0
[  507.573535][T12104]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  507.573581][T12104]  hwsim_new_radio_nl+0xc1f/0x1340
[  507.573616][T12104]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  507.573649][T12104]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  507.573694][T12104]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  507.573722][T12104]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  507.573755][T12104]  genl_family_rcv_msg_doit+0x214/0x300
[  507.573785][T12104]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  507.573818][T12104]  ? genl_get_cmd+0x3ef/0x720
[  507.573849][T12104]  ? bpf_lsm_capable+0x9/0x10
[  507.573870][T12104]  ? security_capable+0x80/0x260
[  507.573902][T12104]  ? ns_capable+0xd2/0xf0
[  507.573932][T12104]  genl_rcv_msg+0x560/0x800
[  507.573961][T12104]  ? __pfx_genl_rcv_msg+0x10/0x10
[  507.573988][T12104]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  507.574035][T12104]  netlink_rcv_skb+0x159/0x420
[  507.574074][T12104]  ? __pfx_genl_rcv_msg+0x10/0x10
[  507.574102][T12104]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  507.574153][T12104]  ? netlink_deliver_tap+0x1ae/0xcc0
[  507.574194][T12104]  genl_rcv+0x28/0x40
[  507.574216][T12104]  netlink_unicast+0x5aa/0x870
[  507.574259][T12104]  ? __pfx_netlink_unicast+0x10/0x10
[  507.574310][T12104]  netlink_sendmsg+0x8b0/0xda0
[  507.574353][T12104]  ? __pfx_netlink_sendmsg+0x10/0x10
[  507.574391][T12104]  ? __import_iovec+0x1d2/0x640
[  507.574432][T12104]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  507.574468][T12104]  ____sys_sendmsg+0xa54/0xc30
[  507.574498][T12104]  ? __pfx_____sys_sendmsg+0x10/0x10
[  507.574529][T12104]  ? try_to_wake_up+0x644/0x1a60
[  507.574563][T12104]  ___sys_sendmsg+0x190/0x1e0
[  507.574629][T12104]  ? __pfx____sys_sendmsg+0x10/0x10
[  507.574658][T12104]  ? futex_private_hash_put+0x107/0x1c0
[  507.574703][T12104]  ? find_held_lock+0x2b/0x80
[  507.574746][T12104]  __sys_sendmsg+0x170/0x220
[  507.574784][T12104]  ? __pfx___sys_sendmsg+0x10/0x10
[  507.574825][T12104]  ? __x64_sys_futex+0x34f/0x4d0
[  507.574877][T12104]  do_syscall_64+0xc9/0xf80
[  507.574909][T12104]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.574936][T12104] RIP: 0033:0x7f28a059acb9
[  507.574957][T12104] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  507.574981][T12104] RSP: 002b:00007f28a1419028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  507.575005][T12104] RAX: ffffffffffffffda RBX: 00007f28a0815fa0 RCX: 00007f28a059acb9
[  507.575022][T12104] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  507.575037][T12104] RBP: 00007f28a0608bf7 R08: 0000000000000000 R09: 0000000000000000
[  507.575053][T12104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  507.575068][T12104] R13: 00007f28a0816038 R14: 00007f28a0815fa0 R15: 00007ffdd0dd09d8
[  507.575100][T12104]  </TASK>
[  508.497099][T10409] Bluetooth: hci3: command 0x0c1a tx timeout
[  508.806324][T12115] FAULT_INJECTION: forcing a failure.
[  508.806324][T12115] name failslab, interval 1, probability 0, space 0, times 0
[  508.881482][T12115] CPU: 0 UID: 0 PID: 12115 Comm: syz.2.1203 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  508.881522][T12115] Tainted: [L]=SOFTLOCKUP
[  508.881531][T12115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  508.881547][T12115] Call Trace:
[  508.881556][T12115]  <TASK>
[  508.881566][T12115]  dump_stack_lvl+0x100/0x190
[  508.881599][T12115]  should_fail_ex.cold+0x5/0xa
[  508.881641][T12115]  should_failslab+0xc2/0x120
[  508.881676][T12115]  kmem_cache_alloc_noprof+0x83/0x780
[  508.881710][T12115]  ? __kernfs_new_node+0xd2/0x960
[  508.881755][T12115]  ? __kernfs_new_node+0xd2/0x960
[  508.881787][T12115]  __kernfs_new_node+0xd2/0x960
[  508.881825][T12115]  ? __pfx___kernfs_new_node+0x10/0x10
[  508.881867][T12115]  ? find_held_lock+0x2b/0x80
[  508.881891][T12115]  ? kernfs_root+0xee/0x2a0
[  508.881923][T12115]  ? kernfs_root+0xee/0x2a0
[  508.881963][T12115]  kernfs_new_node+0x11b/0x1a0
[  508.882006][T12115]  kernfs_create_link+0xcc/0x240
[  508.882037][T12115]  sysfs_do_create_link_sd+0x90/0x140
[  508.882072][T12115]  sysfs_create_link+0x61/0xc0
[  508.882106][T12115]  driver_sysfs_add+0x112/0x2d0
[  508.882135][T12115]  device_bind_driver+0x16/0x70
[  508.882165][T12115]  mac80211_hwsim_new_radio+0x3fb/0x57c0
[  508.882216][T12115]  ? __asan_memset+0x23/0x50
[  508.882243][T12115]  ? __nla_validate_parse+0x1e7/0x28b0
[  508.882272][T12115]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  508.882318][T12115]  hwsim_new_radio_nl+0xc1f/0x1340
[  508.882353][T12115]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  508.882391][T12115]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  508.882437][T12115]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  508.882464][T12115]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  508.882499][T12115]  genl_family_rcv_msg_doit+0x214/0x300
[  508.882529][T12115]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  508.882555][T12115]  ? genl_get_cmd+0x3ef/0x720
[  508.882587][T12115]  ? bpf_lsm_capable+0x9/0x10
[  508.882608][T12115]  ? security_capable+0x80/0x260
[  508.882640][T12115]  ? ns_capable+0xd2/0xf0
[  508.882670][T12115]  genl_rcv_msg+0x560/0x800
[  508.882699][T12115]  ? __pfx_genl_rcv_msg+0x10/0x10
[  508.882726][T12115]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  508.882778][T12115]  netlink_rcv_skb+0x159/0x420
[  508.882818][T12115]  ? __pfx_genl_rcv_msg+0x10/0x10
[  508.882845][T12115]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  508.882897][T12115]  ? netlink_deliver_tap+0x1ae/0xcc0
[  508.882939][T12115]  genl_rcv+0x28/0x40
[  508.882961][T12115]  netlink_unicast+0x5aa/0x870
[  508.883004][T12115]  ? __pfx_netlink_unicast+0x10/0x10
[  508.883054][T12115]  netlink_sendmsg+0x8b0/0xda0
[  508.883098][T12115]  ? __pfx_netlink_sendmsg+0x10/0x10
[  508.883135][T12115]  ? __import_iovec+0x1d2/0x640
[  508.883176][T12115]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  508.883212][T12115]  ____sys_sendmsg+0xa54/0xc30
[  508.883242][T12115]  ? __pfx_____sys_sendmsg+0x10/0x10
[  508.883274][T12115]  ? try_to_wake_up+0x644/0x1a60
[  508.883306][T12115]  ___sys_sendmsg+0x190/0x1e0
[  508.883337][T12115]  ? __pfx____sys_sendmsg+0x10/0x10
[  508.883365][T12115]  ? futex_private_hash_put+0x107/0x1c0
[  508.883409][T12115]  ? find_held_lock+0x2b/0x80
[  508.883452][T12115]  __sys_sendmsg+0x170/0x220
[  508.883490][T12115]  ? __pfx___sys_sendmsg+0x10/0x10
[  508.883526][T12115]  ? __x64_sys_futex+0x34f/0x4d0
[  508.883577][T12115]  do_syscall_64+0xc9/0xf80
[  508.883609][T12115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  508.883635][T12115] RIP: 0033:0x7f94bab9acb9
[  508.883655][T12115] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  508.883681][T12115] RSP: 002b:00007f94bba95028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  508.883705][T12115] RAX: ffffffffffffffda RBX: 00007f94bae15fa0 RCX: 00007f94bab9acb9
[  508.883722][T12115] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  508.883745][T12115] RBP: 00007f94bac08bf7 R08: 0000000000000000 R09: 0000000000000000
[  508.883761][T12115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  508.883776][T12115] R13: 00007f94bae16038 R14: 00007f94bae15fa0 R15: 00007ffdb5d31268
[  508.883811][T12115]  </TASK>
[  509.878071][T10409] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  509.878104][T10409] Bluetooth: hci1: unexpected subevent 0x06 length: 725 > 10
[  511.934342][T10409] Bluetooth: hci1: command 0x0c1a tx timeout
[  512.022903][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  512.033788][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  513.934029][T12190] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1222'.
[  513.966286][T12193] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1223'.
[  514.075817][T12195] netlink: 'syz.2.1224': attribute type 2 has an invalid length.
[  514.336975][T12197] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1222'.
[  514.828750][T12213] FAULT_INJECTION: forcing a failure.
[  514.828750][T12213] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  514.899091][T12213] CPU: 0 UID: 0 PID: 12213 Comm: syz.2.1229 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  514.899133][T12213] Tainted: [L]=SOFTLOCKUP
[  514.899142][T12213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  514.899158][T12213] Call Trace:
[  514.899166][T12213]  <TASK>
[  514.899176][T12213]  dump_stack_lvl+0x100/0x190
[  514.899210][T12213]  should_fail_ex.cold+0x5/0xa
[  514.899247][T12213]  ? prepare_alloc_pages+0x16d/0x5f0
[  514.899295][T12213]  should_fail_alloc_page+0xeb/0x140
[  514.899333][T12213]  prepare_alloc_pages+0x1f0/0x5f0
[  514.899377][T12213]  __alloc_frozen_pages_noprof+0x193/0x2410
[  514.899413][T12213]  ? find_held_lock+0x2b/0x80
[  514.899438][T12213]  ? unwind_next_frame+0x3be/0x1ea0
[  514.899467][T12213]  ? unwind_next_frame+0x3be/0x1ea0
[  514.899503][T12213]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  514.899532][T12213]  ? exc_page_fault+0x6f/0xd0
[  514.899561][T12213]  ? asm_exc_page_fault+0x26/0x30
[  514.899585][T12213]  ? __kernel_text_address+0xd/0x30
[  514.899624][T12213]  ? unwind_get_return_address+0x59/0xa0
[  514.899665][T12213]  ? __lock_acquire+0x4a5/0x2630
[  514.899696][T12213]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  514.899725][T12213]  ? policy_nodemask+0xed/0x4f0
[  514.899763][T12213]  alloc_pages_mpol+0x1fb/0x550
[  514.899800][T12213]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  514.899843][T12213]  folio_alloc_mpol_noprof+0x36/0x340
[  514.899885][T12213]  shmem_alloc_folio+0x135/0x160
[  514.899911][T12213]  shmem_alloc_and_add_folio+0x371/0xd40
[  514.899948][T12213]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  514.899982][T12213]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  514.900020][T12213]  shmem_get_folio_gfp+0x6ab/0x1900
[  514.900056][T12213]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  514.900089][T12213]  ? filemap_map_pages+0x9e0/0x2110
[  514.900129][T12213]  shmem_fault+0x1f9/0xa20
[  514.900159][T12213]  ? __lock_acquire+0x4a5/0x2630
[  514.900191][T12213]  ? __pfx_shmem_fault+0x10/0x10
[  514.900223][T12213]  ? __lock_acquire+0x4a5/0x2630
[  514.900261][T12213]  ? __pfx_filemap_map_pages+0x10/0x10
[  514.900302][T12213]  __do_fault+0x10d/0x550
[  514.900339][T12213]  do_fault+0xaf9/0x1990
[  514.900382][T12213]  __handle_mm_fault+0x1807/0x2b50
[  514.900413][T12213]  ? mt_find+0x45e/0x8e0
[  514.900446][T12213]  ? __pfx___handle_mm_fault+0x10/0x10
[  514.900471][T12213]  ? __pfx_mt_find+0x10/0x10
[  514.900518][T12213]  ? find_vma+0xbf/0x140
[  514.900551][T12213]  ? __pfx_find_vma+0x10/0x10
[  514.900588][T12213]  handle_mm_fault+0x36d/0xa20
[  514.900621][T12213]  do_user_addr_fault+0x74c/0x12f0
[  514.900657][T12213]  exc_page_fault+0x6f/0xd0
[  514.900685][T12213]  asm_exc_page_fault+0x26/0x30
[  514.900716][T12213] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  514.900755][T12213] Code: 7d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 4f 7d 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  514.900781][T12213] RSP: 0018:ffffc90004a778c8 EFLAGS: 00050202
[  514.900801][T12213] RAX: 0000000000000001 RBX: ffff888031364000 RCX: 00000000000001f0
[  514.900817][T12213] RDX: 0000000000000001 RSI: 0000000000001000 RDI: ffff888031365000
[  514.900833][T12213] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100626ca3d
[  514.900848][T12213] R10: ffff8880313651ef R11: 0000000000000000 R12: ffffc90004a77e40
[  514.900869][T12213] R13: 0000000000000000 R14: 00000000000011f0 R15: 0000000000000000
[  514.900899][T12213]  _copy_from_iter+0x355/0x1690
[  514.900941][T12213]  ? rcu_is_watching+0x12/0xc0
[  514.900967][T12213]  ? __pfx__copy_from_iter+0x10/0x10
[  514.901006][T12213]  ? __asan_memset+0x23/0x50
[  514.901033][T12213]  ? __build_skb_around+0x278/0x390
[  514.901065][T12213]  ? is_vmalloc_addr+0x86/0xa0
[  514.901101][T12213]  netlink_sendmsg+0x808/0xda0
[  514.901146][T12213]  ? __pfx_netlink_sendmsg+0x10/0x10
[  514.901184][T12213]  ? __import_iovec+0x1d2/0x640
[  514.901224][T12213]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  514.901266][T12213]  ____sys_sendmsg+0xa54/0xc30
[  514.901296][T12213]  ? __pfx_____sys_sendmsg+0x10/0x10
[  514.901327][T12213]  ? try_to_wake_up+0x644/0x1a60
[  514.901360][T12213]  ___sys_sendmsg+0x190/0x1e0
[  514.901391][T12213]  ? __pfx____sys_sendmsg+0x10/0x10
[  514.901419][T12213]  ? futex_private_hash_put+0x107/0x1c0
[  514.901463][T12213]  ? find_held_lock+0x2b/0x80
[  514.901505][T12213]  __sys_sendmsg+0x170/0x220
[  514.901542][T12213]  ? __pfx___sys_sendmsg+0x10/0x10
[  514.901579][T12213]  ? __x64_sys_futex+0x34f/0x4d0
[  514.901630][T12213]  do_syscall_64+0xc9/0xf80
[  514.901661][T12213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.901687][T12213] RIP: 0033:0x7f94bab9acb9
[  514.901706][T12213] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  514.901731][T12213] RSP: 002b:00007f94bba74028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  514.901752][T12213] RAX: ffffffffffffffda RBX: 00007f94bae16090 RCX: 00007f94bab9acb9
[  514.901769][T12213] RDX: 00000000000080c0 RSI: 0000200000001480 RDI: 0000000000000007
[  514.901785][T12213] RBP: 00007f94bac08bf7 R08: 0000000000000000 R09: 0000000000000000
[  514.901800][T12213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  514.901816][T12213] R13: 00007f94bae16128 R14: 00007f94bae16090 R15: 00007ffdb5d31268
[  514.901847][T12213]  </TASK>
[  515.561494][T12223] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  515.809250][T12229] FAULT_INJECTION: forcing a failure.
[  515.809250][T12229] name failslab, interval 1, probability 0, space 0, times 0
[  515.822208][T12229] CPU: 0 UID: 0 PID: 12229 Comm: syz.2.1234 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  515.822246][T12229] Tainted: [L]=SOFTLOCKUP
[  515.822255][T12229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  515.822270][T12229] Call Trace:
[  515.822279][T12229]  <TASK>
[  515.822289][T12229]  dump_stack_lvl+0x100/0x190
[  515.822322][T12229]  should_fail_ex.cold+0x5/0xa
[  515.822361][T12229]  should_failslab+0xc2/0x120
[  515.822395][T12229]  kmem_cache_alloc_noprof+0x83/0x780
[  515.822427][T12229]  ? sk_prot_alloc+0x60/0x2a0
[  515.822456][T12229]  ? sk_prot_alloc+0x60/0x2a0
[  515.822478][T12229]  sk_prot_alloc+0x60/0x2a0
[  515.822504][T12229]  sk_alloc+0x36/0xe80
[  515.822537][T12229]  inet_create+0x3a0/0x1060
[  515.822565][T12229]  ? inet_create+0x94/0x1060
[  515.822596][T12229]  __sock_create+0x339/0x860
[  515.822627][T12229]  __sys_socket+0x14d/0x260
[  515.822656][T12229]  ? __pfx___sys_socket+0x10/0x10
[  515.822682][T12229]  ? xfd_validate_state+0x129/0x190
[  515.822726][T12229]  __x64_sys_socket+0x72/0xb0
[  515.822753][T12229]  ? lockdep_hardirqs_on+0x78/0x100
[  515.822780][T12229]  do_syscall_64+0xc9/0xf80
[  515.822810][T12229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.822835][T12229] RIP: 0033:0x7f94bab9acb9
[  515.822854][T12229] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  515.822878][T12229] RSP: 002b:00007f94bba95028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  515.822900][T12229] RAX: ffffffffffffffda RBX: 00007f94bae15fa0 RCX: 00007f94bab9acb9
[  515.822917][T12229] RDX: 000000000000000a RSI: 0000000000000003 RDI: 0000000000000002
[  515.822932][T12229] RBP: 00007f94bac08bf7 R08: 0000000000000000 R09: 0000000000000000
[  515.822947][T12229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  515.822962][T12229] R13: 00007f94bae16038 R14: 00007f94bae15fa0 R15: 00007ffdb5d31268
[  515.822993][T12229]  </TASK>
[  516.157309][T12232] nvme_fabrics: missing parameter 'transport=%s'
[  516.163906][T12232] nvme_fabrics: missing parameter 'nqn=%s'
[  516.987792][T12248] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1239'.
[  517.071867][T12253] FAULT_INJECTION: forcing a failure.
[  517.071867][T12253] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  517.095483][T12253] CPU: 1 UID: 0 PID: 12253 Comm: syz.1.1241 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  517.095542][T12253] Tainted: [L]=SOFTLOCKUP
[  517.095556][T12253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  517.095578][T12253] Call Trace:
[  517.095591][T12253]  <TASK>
[  517.095604][T12253]  dump_stack_lvl+0x100/0x190
[  517.095654][T12253]  should_fail_ex.cold+0x5/0xa
[  517.095705][T12253]  ? prepare_alloc_pages+0x16d/0x5f0
[  517.095762][T12253]  should_fail_alloc_page+0xeb/0x140
[  517.095817][T12253]  prepare_alloc_pages+0x1f0/0x5f0
[  517.095878][T12253]  __alloc_frozen_pages_noprof+0x193/0x2410
[  517.095929][T12253]  ? find_held_lock+0x2b/0x80
[  517.095963][T12253]  ? unwind_next_frame+0x3be/0x1ea0
[  517.096005][T12253]  ? unwind_next_frame+0x3be/0x1ea0
[  517.096054][T12253]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  517.096134][T12253]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  517.096176][T12253]  ? policy_nodemask+0xed/0x4f0
[  517.096231][T12253]  alloc_pages_mpol+0x1fb/0x550
[  517.096283][T12253]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  517.096346][T12253]  folio_alloc_mpol_noprof+0x36/0x340
[  517.096406][T12253]  shmem_alloc_folio+0x135/0x160
[  517.096443][T12253]  shmem_alloc_and_add_folio+0x371/0xd40
[  517.096497][T12253]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  517.096549][T12253]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  517.096600][T12253]  shmem_get_folio_gfp+0x6ab/0x1900
[  517.096649][T12253]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  517.096696][T12253]  ? filemap_map_pages+0x9e0/0x2110
[  517.096749][T12253]  shmem_fault+0x1f9/0xa20
[  517.096791][T12253]  ? __lock_acquire+0x4a5/0x2630
[  517.096830][T12253]  ? __pfx_shmem_fault+0x10/0x10
[  517.096867][T12253]  ? __lock_acquire+0x4a5/0x2630
[  517.096906][T12253]  ? __pfx_filemap_map_pages+0x10/0x10
[  517.096953][T12253]  __do_fault+0x10d/0x550
[  517.096995][T12253]  do_fault+0xaf9/0x1990
[  517.097045][T12253]  __handle_mm_fault+0x1807/0x2b50
[  517.097081][T12253]  ? mt_find+0x45e/0x8e0
[  517.097127][T12253]  ? __pfx___handle_mm_fault+0x10/0x10
[  517.097158][T12253]  ? __pfx_mt_find+0x10/0x10
[  517.097214][T12253]  ? find_vma+0xbf/0x140
[  517.097259][T12253]  ? __pfx_find_vma+0x10/0x10
[  517.097303][T12253]  handle_mm_fault+0x36d/0xa20
[  517.097341][T12253]  do_user_addr_fault+0x74c/0x12f0
[  517.097384][T12253]  exc_page_fault+0x6f/0xd0
[  517.097418][T12253]  asm_exc_page_fault+0x26/0x30
[  517.097447][T12253] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  517.097497][T12253] Code: 7d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 4f 7d 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  517.097529][T12253] RSP: 0018:ffffc90002f4f8c8 EFLAGS: 00050202
[  517.097555][T12253] RAX: 0000000000000001 RBX: ffff8880347e0000 RCX: 00000000000001f0
[  517.097574][T12253] RDX: 0000000000000001 RSI: 0000000000001000 RDI: ffff8880347e1000
[  517.097593][T12253] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed10068fc23d
[  517.097611][T12253] R10: ffff8880347e11ef R11: 0000000000000000 R12: ffffc90002f4fe40
[  517.097630][T12253] R13: 0000000000000000 R14: 00000000000011f0 R15: 0000000000000000
[  517.097666][T12253]  _copy_from_iter+0x355/0x1690
[  517.097715][T12253]  ? rcu_is_watching+0x12/0xc0
[  517.097745][T12253]  ? __pfx__copy_from_iter+0x10/0x10
[  517.097791][T12253]  ? __asan_memset+0x23/0x50
[  517.097822][T12253]  ? __build_skb_around+0x278/0x390
[  517.097859][T12253]  ? is_vmalloc_addr+0x86/0xa0
[  517.097896][T12253]  netlink_sendmsg+0x808/0xda0
[  517.097964][T12253]  ? __pfx_netlink_sendmsg+0x10/0x10
[  517.098009][T12253]  ? __import_iovec+0x1d2/0x640
[  517.098058][T12253]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  517.098102][T12253]  ____sys_sendmsg+0xa54/0xc30
[  517.098206][T12253]  ? __pfx_____sys_sendmsg+0x10/0x10
[  517.098244][T12253]  ? try_to_wake_up+0x644/0x1a60
[  517.098283][T12253]  ___sys_sendmsg+0x190/0x1e0
[  517.098319][T12253]  ? __pfx____sys_sendmsg+0x10/0x10
[  517.098352][T12253]  ? futex_private_hash_put+0x107/0x1c0
[  517.098406][T12253]  ? find_held_lock+0x2b/0x80
[  517.098455][T12253]  __sys_sendmsg+0x170/0x220
[  517.098499][T12253]  ? __pfx___sys_sendmsg+0x10/0x10
[  517.098541][T12253]  ? __x64_sys_futex+0x34f/0x4d0
[  517.098602][T12253]  do_syscall_64+0xc9/0xf80
[  517.098639][T12253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  517.098669][T12253] RIP: 0033:0x7fec77f9acb9
[  517.098692][T12253] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  517.098720][T12253] RSP: 002b:00007fec78e77028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  517.098753][T12253] RAX: ffffffffffffffda RBX: 00007fec78216090 RCX: 00007fec77f9acb9
[  517.098772][T12253] RDX: 00000000000080c0 RSI: 0000200000001480 RDI: 0000000000000007
[  517.098791][T12253] RBP: 00007fec78008bf7 R08: 0000000000000000 R09: 0000000000000000
[  517.098809][T12253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  517.098827][T12253] R13: 00007fec78216128 R14: 00007fec78216090 R15: 00007ffdbb58dd68
[  517.098864][T12253]  </TASK>
[  518.131394][T12262] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1243'.
[  519.055247][T12288] FAULT_INJECTION: forcing a failure.
[  519.055247][T12288] name failslab, interval 1, probability 0, space 0, times 0
[  519.068155][T12288] CPU: 1 UID: 0 PID: 12288 Comm: syz.2.1252 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  519.068210][T12288] Tainted: [L]=SOFTLOCKUP
[  519.068224][T12288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  519.068246][T12288] Call Trace:
[  519.068258][T12288]  <TASK>
[  519.068271][T12288]  dump_stack_lvl+0x100/0x190
[  519.068319][T12288]  should_fail_ex.cold+0x5/0xa
[  519.068376][T12288]  should_failslab+0xc2/0x120
[  519.068425][T12288]  kmem_cache_alloc_node_noprof+0x8c/0x880
[  519.068475][T12288]  ? __alloc_skb+0x156/0x410
[  519.068529][T12288]  ? __alloc_skb+0x156/0x410
[  519.068573][T12288]  __alloc_skb+0x156/0x410
[  519.068618][T12288]  ? __alloc_skb+0x35d/0x410
[  519.068663][T12288]  ? __pfx___alloc_skb+0x10/0x10
[  519.068714][T12288]  ? netlink_has_listeners+0x20f/0x430
[  519.068764][T12288]  ? netlink_has_listeners+0x20f/0x430
[  519.068822][T12288]  alloc_uevent_skb+0x7d/0x210
[  519.068878][T12288]  kobject_uevent_env+0xd2d/0x18b0
[  519.068935][T12288]  ? queue_work_on+0x11b/0x1e0
[  519.068994][T12288]  ? bus_to_subsys+0x114/0x150
[  519.069054][T12288]  driver_bound+0x13e/0x220
[  519.069096][T12288]  device_bind_driver+0x3a/0x70
[  519.069135][T12288]  mac80211_hwsim_new_radio+0x3fb/0x57c0
[  519.069207][T12288]  ? __asan_memset+0x23/0x50
[  519.069244][T12288]  ? __nla_validate_parse+0x1e7/0x28b0
[  519.069284][T12288]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  519.069348][T12288]  hwsim_new_radio_nl+0xc1f/0x1340
[  519.069395][T12288]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  519.069440][T12288]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  519.069504][T12288]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  519.069542][T12288]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  519.069589][T12288]  genl_family_rcv_msg_doit+0x214/0x300
[  519.069631][T12288]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  519.069668][T12288]  ? genl_get_cmd+0x3ef/0x720
[  519.069711][T12288]  ? bpf_lsm_capable+0x9/0x10
[  519.069740][T12288]  ? security_capable+0x80/0x260
[  519.069783][T12288]  ? ns_capable+0xd2/0xf0
[  519.069824][T12288]  genl_rcv_msg+0x560/0x800
[  519.069866][T12288]  ? __pfx_genl_rcv_msg+0x10/0x10
[  519.069904][T12288]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  519.069968][T12288]  netlink_rcv_skb+0x159/0x420
[  519.070029][T12288]  ? __pfx_genl_rcv_msg+0x10/0x10
[  519.070068][T12288]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  519.070140][T12288]  ? netlink_deliver_tap+0x1ae/0xcc0
[  519.070199][T12288]  genl_rcv+0x28/0x40
[  519.070230][T12288]  netlink_unicast+0x5aa/0x870
[  519.070289][T12288]  ? __pfx_netlink_unicast+0x10/0x10
[  519.070359][T12288]  netlink_sendmsg+0x8b0/0xda0
[  519.070420][T12288]  ? __pfx_netlink_sendmsg+0x10/0x10
[  519.070471][T12288]  ? __import_iovec+0x1d2/0x640
[  519.070527][T12288]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  519.070579][T12288]  ____sys_sendmsg+0xa54/0xc30
[  519.070621][T12288]  ? __pfx_____sys_sendmsg+0x10/0x10
[  519.070665][T12288]  ? try_to_wake_up+0x644/0x1a60
[  519.070712][T12288]  ___sys_sendmsg+0x190/0x1e0
[  519.070756][T12288]  ? __pfx____sys_sendmsg+0x10/0x10
[  519.070794][T12288]  ? futex_private_hash_put+0x107/0x1c0
[  519.070858][T12288]  ? find_held_lock+0x2b/0x80
[  519.070921][T12288]  __sys_sendmsg+0x170/0x220
[  519.070972][T12288]  ? __pfx___sys_sendmsg+0x10/0x10
[  519.071097][T12288]  ? __x64_sys_futex+0x34f/0x4d0
[  519.071171][T12288]  do_syscall_64+0xc9/0xf80
[  519.071213][T12288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.071248][T12288] RIP: 0033:0x7f94bab9acb9
[  519.071275][T12288] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  519.071306][T12288] RSP: 002b:00007f94bba95028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  519.071339][T12288] RAX: ffffffffffffffda RBX: 00007f94bae15fa0 RCX: 00007f94bab9acb9
[  519.071362][T12288] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  519.071382][T12288] RBP: 00007f94bac08bf7 R08: 0000000000000000 R09: 0000000000000000
[  519.071404][T12288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  519.071425][T12288] R13: 00007f94bae16038 R14: 00007f94bae15fa0 R15: 00007ffdb5d31268
[  519.071470][T12288]  </TASK>
[  523.305914][T12370] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1268'.
[  525.191975][T12397] FAULT_INJECTION: forcing a failure.
[  525.191975][T12397] name failslab, interval 1, probability 0, space 0, times 0
[  525.246968][T12397] CPU: 0 UID: 0 PID: 12397 Comm: syz.0.1274 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  525.247019][T12397] Tainted: [L]=SOFTLOCKUP
[  525.247031][T12397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  525.247051][T12397] Call Trace:
[  525.247062][T12397]  <TASK>
[  525.247074][T12397]  dump_stack_lvl+0x100/0x190
[  525.247118][T12397]  should_fail_ex.cold+0x5/0xa
[  525.247169][T12397]  should_failslab+0xc2/0x120
[  525.247213][T12397]  __kmalloc_cache_noprof+0x80/0x810
[  525.247248][T12397]  ? sctp_add_bind_addr+0xae/0x3e0
[  525.247293][T12397]  ? sctp_add_bind_addr+0xae/0x3e0
[  525.247330][T12397]  sctp_add_bind_addr+0xae/0x3e0
[  525.247373][T12397]  sctp_copy_local_addr_list+0x349/0x550
[  525.247423][T12397]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  525.247475][T12397]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  525.247527][T12397]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  525.247568][T12397]  sctp_bind_addr_copy+0xe0/0x530
[  525.247622][T12397]  sctp_connect_new_asoc+0x1c9/0x770
[  525.247659][T12397]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  525.247698][T12397]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  525.247751][T12397]  __sctp_connect+0x3e7/0xc70
[  525.247791][T12397]  ? __pfx___sctp_connect+0x10/0x10
[  525.247829][T12397]  ? __pfx_sctp_inet_connect+0x10/0x10
[  525.247866][T12397]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  525.247907][T12397]  ? __pfx_sctp_inet_connect+0x10/0x10
[  525.247940][T12397]  sctp_inet_connect+0x15f/0x220
[  525.247977][T12397]  __sys_connect_file+0x141/0x1a0
[  525.248027][T12397]  __sys_connect+0x141/0x170
[  525.248070][T12397]  ? __pfx___sys_connect+0x10/0x10
[  525.248143][T12397]  __x64_sys_connect+0x72/0xb0
[  525.248185][T12397]  ? lockdep_hardirqs_on+0x78/0x100
[  525.248225][T12397]  do_syscall_64+0xc9/0xf80
[  525.248269][T12397]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  525.248305][T12397] RIP: 0033:0x7f505899acb9
[  525.248332][T12397] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  525.248367][T12397] RSP: 002b:00007f5059787028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  525.248401][T12397] RAX: ffffffffffffffda RBX: 00007f5058c16090 RCX: 00007f505899acb9
[  525.248425][T12397] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003
[  525.248446][T12397] RBP: 00007f5058a08bf7 R08: 0000000000000000 R09: 0000000000000000
[  525.248469][T12397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  525.248490][T12397] R13: 00007f5058c16128 R14: 00007f5058c16090 R15: 00007ffdaaf25ae8
[  525.248536][T12397]  </TASK>
[  529.027442][T12443] ovs_: entered promiscuous mode
[  529.820139][T12452] sd 0:0:1:0: PR command failed: 1026
[  529.866768][T12452] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  530.023106][T12452] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  530.052192][T12452] sd 0:0:1:0: PR command failed: 1026
[  530.063295][T12452] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  530.070079][T12452] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  530.102615][T12452] sd 0:0:1:0: PR command failed: 1026
[  530.114202][T12452] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  530.193308][T12452] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  530.234937][T12452] sd 0:0:1:0: PR command failed: 1026
[  530.241027][T12452] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  530.247965][T12452] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  530.256182][T12452] sd 0:0:1:0: PR command failed: 1026
[  530.263482][T12452] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  530.280090][T12465] FAULT_INJECTION: forcing a failure.
[  530.280090][T12465] name failslab, interval 1, probability 0, space 0, times 0
[  530.315849][T12452] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  530.379378][T12465] CPU: 0 UID: 0 PID: 12465 Comm: syz.1.1290 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  530.379416][T12465] Tainted: [L]=SOFTLOCKUP
[  530.379425][T12465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  530.379447][T12465] Call Trace:
[  530.379454][T12465]  <TASK>
[  530.379463][T12465]  dump_stack_lvl+0x100/0x190
[  530.379496][T12465]  should_fail_ex.cold+0x5/0xa
[  530.379535][T12465]  should_failslab+0xc2/0x120
[  530.379568][T12465]  kmem_cache_alloc_lru_noprof+0x8e/0x7d0
[  530.379603][T12465]  ? __d_alloc+0x34/0xa80
[  530.379637][T12465]  ? __d_alloc+0x34/0xa80
[  530.379663][T12465]  ? __pfx_inode_set_ctime_current+0x10/0x10
[  530.379693][T12465]  __d_alloc+0x34/0xa80
[  530.379721][T12465]  ? new_inode+0x15a/0x1c0
[  530.379757][T12465]  d_alloc_pseudo+0x1c/0xc0
[  530.379793][T12465]  alloc_file_pseudo+0xcf/0x230
[  530.379830][T12465]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  530.379867][T12465]  ? hugetlbfs_get_inode+0x36e/0x6f0
[  530.379895][T12465]  hugetlb_file_setup+0x2a8/0x5b0
[  530.379927][T12465]  ksys_mmap_pgoff+0x185/0x5b0
[  530.379967][T12465]  __x64_sys_mmap+0x125/0x190
[  530.379993][T12465]  do_syscall_64+0xc9/0xf80
[  530.380023][T12465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  530.380048][T12465] RIP: 0033:0x7fec77f9acb9
[  530.380066][T12465] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  530.380091][T12465] RSP: 002b:00007fec78e98028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  530.380114][T12465] RAX: ffffffffffffffda RBX: 00007fec78215fa0 RCX: 00007fec77f9acb9
[  530.380131][T12465] RDX: 0000000000000002 RSI: 0000000000000006 RDI: 0000000000000000
[  530.380145][T12465] RBP: 00007fec78008bf7 R08: ffffffffffffffff R09: 0000308000000000
[  530.380161][T12465] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000
[  530.380176][T12465] R13: 00007fec78216038 R14: 00007fec78215fa0 R15: 00007ffdbb58dd68
[  530.380207][T12465]  </TASK>
[  530.658339][T12452] sd 0:0:1:0: PR command failed: 1026
[  530.663947][T12452] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  530.670711][T12452] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  532.272801][T12495] FAULT_INJECTION: forcing a failure.
[  532.272801][T12495] name failslab, interval 1, probability 0, space 0, times 0
[  532.286056][T12495] CPU: 1 UID: 0 PID: 12495 Comm: syz.0.1298 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  532.286111][T12495] Tainted: [L]=SOFTLOCKUP
[  532.286125][T12495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  532.286146][T12495] Call Trace:
[  532.286160][T12495]  <TASK>
[  532.286173][T12495]  dump_stack_lvl+0x100/0x190
[  532.286220][T12495]  should_fail_ex.cold+0x5/0xa
[  532.286278][T12495]  should_failslab+0xc2/0x120
[  532.286333][T12495]  kmem_cache_alloc_noprof+0x83/0x780
[  532.286377][T12495]  ? __send_signal_locked+0x155/0x12d0
[  532.286419][T12495]  ? __send_signal_locked+0x155/0x12d0
[  532.286450][T12495]  __send_signal_locked+0x155/0x12d0
[  532.286481][T12495]  ? send_signal_locked+0x479/0x850
[  532.286517][T12495]  ? __lock_task_sighand+0x146/0x340
[  532.286552][T12495]  do_send_specific+0x1e8/0x360
[  532.286594][T12495]  ? __pfx_do_send_specific+0x10/0x10
[  532.286649][T12495]  do_rt_tgsigqueueinfo+0xa9/0x100
[  532.286697][T12495]  __x64_sys_rt_tgsigqueueinfo+0x17a/0x210
[  532.286752][T12495]  ? __pfx___x64_sys_rt_tgsigqueueinfo+0x10/0x10
[  532.286824][T12495]  do_syscall_64+0xc9/0xf80
[  532.286869][T12495]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  532.286904][T12495] RIP: 0033:0x7f505899acb9
[  532.286933][T12495] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  532.286967][T12495] RSP: 002b:00007f50597a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000129
[  532.287000][T12495] RAX: ffffffffffffffda RBX: 00007f5058c15fa0 RCX: 00007f505899acb9
[  532.287024][T12495] RDX: 0000000000000021 RSI: 00000000000000de RDI: 00000000000000dd
[  532.287046][T12495] RBP: 00007f5058a08bf7 R08: 0000000000000000 R09: 0000000000000000
[  532.287069][T12495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  532.287090][T12495] R13: 00007f5058c16038 R14: 00007f5058c15fa0 R15: 00007ffdaaf25ae8
[  532.287137][T12495]  </TASK>
[  532.569451][T12497] FAULT_INJECTION: forcing a failure.
[  532.569451][T12497] name failslab, interval 1, probability 0, space 0, times 0
[  532.582197][T12497] CPU: 1 UID: 0 PID: 12497 Comm: syz.1.1299 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  532.582249][T12497] Tainted: [L]=SOFTLOCKUP
[  532.582262][T12497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  532.582293][T12497] Call Trace:
[  532.582305][T12497]  <TASK>
[  532.582317][T12497]  dump_stack_lvl+0x100/0x190
[  532.582366][T12497]  should_fail_ex.cold+0x5/0xa
[  532.582423][T12497]  should_failslab+0xc2/0x120
[  532.582472][T12497]  __kmalloc_node_track_caller_noprof+0xf9/0x9d0
[  532.582532][T12497]  ? __mutex_unlock_slowpath+0x15c/0x790
[  532.582577][T12497]  ? kstrdup_const+0x63/0x80
[  532.582628][T12497]  ? kstrdup+0x51/0xe0
[  532.582668][T12497]  kstrdup+0x51/0xe0
[  532.582712][T12497]  kstrdup_const+0x63/0x80
[  532.582756][T12497]  __kernfs_new_node+0x9b/0x960
[  532.582809][T12497]  ? __pfx___kernfs_new_node+0x10/0x10
[  532.582867][T12497]  ? find_held_lock+0x2b/0x80
[  532.582901][T12497]  ? kernfs_root+0xee/0x2a0
[  532.582944][T12497]  ? kernfs_root+0xee/0x2a0
[  532.583001][T12497]  kernfs_new_node+0x11b/0x1a0
[  532.583060][T12497]  kernfs_create_link+0xcc/0x240
[  532.583103][T12497]  sysfs_do_create_link_sd+0x90/0x140
[  532.583154][T12497]  sysfs_create_link+0x61/0xc0
[  532.583200][T12497]  driver_sysfs_add+0x91/0x2d0
[  532.583241][T12497]  device_bind_driver+0x16/0x70
[  532.583288][T12497]  mac80211_hwsim_new_radio+0x3fb/0x57c0
[  532.583361][T12497]  ? __asan_memset+0x23/0x50
[  532.583398][T12497]  ? __nla_validate_parse+0x1e7/0x28b0
[  532.583439][T12497]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  532.583502][T12497]  hwsim_new_radio_nl+0xc1f/0x1340
[  532.583550][T12497]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  532.583596][T12497]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  532.583659][T12497]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  532.583700][T12497]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  532.583749][T12497]  genl_family_rcv_msg_doit+0x214/0x300
[  532.583791][T12497]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  532.583828][T12497]  ? genl_get_cmd+0x3ef/0x720
[  532.583872][T12497]  ? bpf_lsm_capable+0x9/0x10
[  532.583901][T12497]  ? security_capable+0x80/0x260
[  532.583946][T12497]  ? ns_capable+0xd2/0xf0
[  532.583988][T12497]  genl_rcv_msg+0x560/0x800
[  532.584030][T12497]  ? __pfx_genl_rcv_msg+0x10/0x10
[  532.584069][T12497]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  532.584135][T12497]  netlink_rcv_skb+0x159/0x420
[  532.584188][T12497]  ? __pfx_genl_rcv_msg+0x10/0x10
[  532.584227][T12497]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  532.584308][T12497]  ? netlink_deliver_tap+0x1ae/0xcc0
[  532.584367][T12497]  genl_rcv+0x28/0x40
[  532.584396][T12497]  netlink_unicast+0x5aa/0x870
[  532.584455][T12497]  ? __pfx_netlink_unicast+0x10/0x10
[  532.584525][T12497]  netlink_sendmsg+0x8b0/0xda0
[  532.584585][T12497]  ? __pfx_netlink_sendmsg+0x10/0x10
[  532.584635][T12497]  ? __import_iovec+0x1d2/0x640
[  532.584693][T12497]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  532.584742][T12497]  ____sys_sendmsg+0xa54/0xc30
[  532.584784][T12497]  ? __pfx_____sys_sendmsg+0x10/0x10
[  532.584821][T12497]  ? __pfx___futex_wait+0x10/0x10
[  532.584861][T12497]  ? __pfx_futex_wake_mark+0x10/0x10
[  532.584925][T12497]  ___sys_sendmsg+0x190/0x1e0
[  532.584968][T12497]  ? __pfx____sys_sendmsg+0x10/0x10
[  532.585028][T12497]  ? find_held_lock+0x2b/0x80
[  532.585090][T12497]  __sys_sendmsg+0x170/0x220
[  532.585142][T12497]  ? __pfx___sys_sendmsg+0x10/0x10
[  532.585191][T12497]  ? __x64_sys_futex+0x34f/0x4d0
[  532.585262][T12497]  do_syscall_64+0xc9/0xf80
[  532.585318][T12497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  532.585355][T12497] RIP: 0033:0x7fec77f9acb9
[  532.585383][T12497] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  532.585418][T12497] RSP: 002b:00007fec78e98028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  532.585452][T12497] RAX: ffffffffffffffda RBX: 00007fec78215fa0 RCX: 00007fec77f9acb9
[  532.585476][T12497] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  532.585498][T12497] RBP: 00007fec78008bf7 R08: 0000000000000000 R09: 0000000000000000
[  532.585519][T12497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  532.585540][T12497] R13: 00007fec78216038 R14: 00007fec78215fa0 R15: 00007ffdbb58dd68
[  532.585586][T12497]  </TASK>
[  533.364554][T12503] ovs_: entered promiscuous mode
[  534.120533][T10409] Bluetooth: hci0: unexpected event 0x14 length: 16 > 6
[  534.845910][T12538] zswap: compressor  not available
[  535.546906][T12559] serio: Serial port ttyS2
[  537.648025][T12596] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1324'.
[  537.959648][T12603] ovs_ÿþÿþ?: entered promiscuous mode
[  538.053616][T12603] netlink: set zone limit has 8 unknown bytes
[  539.277264][T12630] FAULT_INJECTION: forcing a failure.
[  539.277264][T12630] name failslab, interval 1, probability 0, space 0, times 0
[  539.318668][T12630] CPU: 0 UID: 0 PID: 12630 Comm: syz.2.1333 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  539.318726][T12630] Tainted: [L]=SOFTLOCKUP
[  539.318739][T12630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  539.318787][T12630] Call Trace:
[  539.318800][T12630]  <TASK>
[  539.318815][T12630]  dump_stack_lvl+0x100/0x190
[  539.318866][T12630]  should_fail_ex.cold+0x5/0xa
[  539.318922][T12630]  should_failslab+0xc2/0x120
[  539.318971][T12630]  kmem_cache_alloc_noprof+0x83/0x780
[  539.319018][T12630]  ? skb_clone+0x190/0x400
[  539.319075][T12630]  ? skb_clone+0x190/0x400
[  539.319137][T12630]  skb_clone+0x190/0x400
[  539.319191][T12630]  netlink_broadcast_filtered+0xb6a/0xf50
[  539.319263][T12630]  ? __pfx_netlink_broadcast_filtered+0x10/0x10
[  539.319317][T12630]  ? netlink_has_listeners+0x20f/0x430
[  539.319367][T12630]  ? netlink_has_listeners+0x20f/0x430
[  539.319433][T12630]  netlink_broadcast+0x39/0x50
[  539.319487][T12630]  kobject_uevent_env+0xcdd/0x18b0
[  539.319545][T12630]  ? queue_work_on+0x11b/0x1e0
[  539.319608][T12630]  ? bus_to_subsys+0x114/0x150
[  539.319666][T12630]  driver_bound+0x13e/0x220
[  539.319709][T12630]  device_bind_driver+0x3a/0x70
[  539.319762][T12630]  mac80211_hwsim_new_radio+0x3fb/0x57c0
[  539.319837][T12630]  ? __asan_memset+0x23/0x50
[  539.319875][T12630]  ? __nla_validate_parse+0x1e7/0x28b0
[  539.319916][T12630]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  539.319982][T12630]  hwsim_new_radio_nl+0xc1f/0x1340
[  539.320032][T12630]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  539.320078][T12630]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  539.320142][T12630]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  539.320182][T12630]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  539.320230][T12630]  genl_family_rcv_msg_doit+0x214/0x300
[  539.320273][T12630]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  539.320311][T12630]  ? genl_get_cmd+0x3ef/0x720
[  539.320354][T12630]  ? bpf_lsm_capable+0x9/0x10
[  539.320382][T12630]  ? security_capable+0x80/0x260
[  539.320426][T12630]  ? ns_capable+0xd2/0xf0
[  539.320467][T12630]  genl_rcv_msg+0x560/0x800
[  539.320509][T12630]  ? __pfx_genl_rcv_msg+0x10/0x10
[  539.320546][T12630]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  539.320612][T12630]  netlink_rcv_skb+0x159/0x420
[  539.320664][T12630]  ? __pfx_genl_rcv_msg+0x10/0x10
[  539.320703][T12630]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  539.320793][T12630]  ? netlink_deliver_tap+0x1ae/0xcc0
[  539.320853][T12630]  genl_rcv+0x28/0x40
[  539.320884][T12630]  netlink_unicast+0x5aa/0x870
[  539.320944][T12630]  ? __pfx_netlink_unicast+0x10/0x10
[  539.321016][T12630]  netlink_sendmsg+0x8b0/0xda0
[  539.321079][T12630]  ? __pfx_netlink_sendmsg+0x10/0x10
[  539.321137][T12630]  ? __import_iovec+0x1d2/0x640
[  539.321197][T12630]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  539.321250][T12630]  ____sys_sendmsg+0xa54/0xc30
[  539.321294][T12630]  ? __pfx_____sys_sendmsg+0x10/0x10
[  539.321328][T12630]  ? __pfx___futex_wait+0x10/0x10
[  539.321368][T12630]  ? __pfx_futex_wake_mark+0x10/0x10
[  539.321431][T12630]  ___sys_sendmsg+0x190/0x1e0
[  539.321474][T12630]  ? __pfx____sys_sendmsg+0x10/0x10
[  539.321535][T12630]  ? find_held_lock+0x2b/0x80
[  539.321598][T12630]  __sys_sendmsg+0x170/0x220
[  539.321650][T12630]  ? __pfx___sys_sendmsg+0x10/0x10
[  539.321700][T12630]  ? __x64_sys_futex+0x34f/0x4d0
[  539.321779][T12630]  do_syscall_64+0xc9/0xf80
[  539.321827][T12630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  539.321864][T12630] RIP: 0033:0x7f94bab9acb9
[  539.321893][T12630] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  539.321928][T12630] RSP: 002b:00007f94bba95028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  539.321963][T12630] RAX: ffffffffffffffda RBX: 00007f94bae15fa0 RCX: 00007f94bab9acb9
[  539.321987][T12630] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  539.322010][T12630] RBP: 00007f94bac08bf7 R08: 0000000000000000 R09: 0000000000000000
[  539.322033][T12630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  539.322054][T12630] R13: 00007f94bae16038 R14: 00007f94bae15fa0 R15: 00007ffdb5d31268
[  539.322102][T12630]  </TASK>
[  540.836858][    T9] smpboot: CPU 1 is now offline
[  540.930499][T12647] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  543.083166][T12696] FAULT_INJECTION: forcing a failure.
[  543.083166][T12696] name failslab, interval 1, probability 0, space 0, times 0
[  543.095955][T12696] CPU: 1 UID: 0 PID: 12696 Comm: syz.3.1354 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  543.096009][T12696] Tainted: [L]=SOFTLOCKUP
[  543.096021][T12696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  543.096043][T12696] Call Trace:
[  543.096055][T12696]  <TASK>
[  543.096068][T12696]  dump_stack_lvl+0x100/0x190
[  543.096131][T12696]  should_fail_ex.cold+0x5/0xa
[  543.096188][T12696]  should_failslab+0xc2/0x120
[  543.096236][T12696]  kmem_cache_alloc_noprof+0x83/0x780
[  543.096284][T12696]  ? skb_clone+0x190/0x400
[  543.096341][T12696]  ? skb_clone+0x190/0x400
[  543.096387][T12696]  skb_clone+0x190/0x400
[  543.096437][T12696]  netlink_broadcast_filtered+0xb6a/0xf50
[  543.096508][T12696]  ? __pfx_netlink_broadcast_filtered+0x10/0x10
[  543.096572][T12696]  ? netlink_has_listeners+0x20f/0x430
[  543.096622][T12696]  ? netlink_has_listeners+0x20f/0x430
[  543.096681][T12696]  netlink_broadcast+0x39/0x50
[  543.096737][T12696]  kobject_uevent_env+0xcdd/0x18b0
[  543.096794][T12696]  ? queue_work_on+0x11b/0x1e0
[  543.096849][T12696]  ? bus_to_subsys+0x114/0x150
[  543.096908][T12696]  driver_bound+0x13e/0x220
[  543.096951][T12696]  device_bind_driver+0x3a/0x70
[  543.096992][T12696]  mac80211_hwsim_new_radio+0x3fb/0x57c0
[  543.097065][T12696]  ? __asan_memset+0x23/0x50
[  543.097103][T12696]  ? __nla_validate_parse+0x1e7/0x28b0
[  543.097144][T12696]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  543.097210][T12696]  hwsim_new_radio_nl+0xc1f/0x1340
[  543.097259][T12696]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  543.097306][T12696]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  543.097371][T12696]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  543.097410][T12696]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  543.097457][T12696]  genl_family_rcv_msg_doit+0x214/0x300
[  543.097496][T12696]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  543.097531][T12696]  ? genl_get_cmd+0x3ef/0x720
[  543.097585][T12696]  ? bpf_lsm_capable+0x9/0x10
[  543.097616][T12696]  ? security_capable+0x80/0x260
[  543.097660][T12696]  ? ns_capable+0xd2/0xf0
[  543.097703][T12696]  genl_rcv_msg+0x560/0x800
[  543.097745][T12696]  ? __pfx_genl_rcv_msg+0x10/0x10
[  543.097783][T12696]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  543.097849][T12696]  netlink_rcv_skb+0x159/0x420
[  543.097903][T12696]  ? __pfx_genl_rcv_msg+0x10/0x10
[  543.097943][T12696]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  543.098016][T12696]  ? netlink_deliver_tap+0x1ae/0xcc0
[  543.098074][T12696]  genl_rcv+0x28/0x40
[  543.098105][T12696]  netlink_unicast+0x5aa/0x870
[  543.098165][T12696]  ? __pfx_netlink_unicast+0x10/0x10
[  543.098235][T12696]  netlink_sendmsg+0x8b0/0xda0
[  543.098295][T12696]  ? __pfx_netlink_sendmsg+0x10/0x10
[  543.098348][T12696]  ? __import_iovec+0x1d2/0x640
[  543.098405][T12696]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  543.098457][T12696]  ____sys_sendmsg+0xa54/0xc30
[  543.098500][T12696]  ? __pfx_____sys_sendmsg+0x10/0x10
[  543.098534][T12696]  ? __pfx___futex_wait+0x10/0x10
[  543.098584][T12696]  ? __pfx_futex_wake_mark+0x10/0x10
[  543.098653][T12696]  ___sys_sendmsg+0x190/0x1e0
[  543.098697][T12696]  ? __pfx____sys_sendmsg+0x10/0x10
[  543.098758][T12696]  ? find_held_lock+0x2b/0x80
[  543.098825][T12696]  __sys_sendmsg+0x170/0x220
[  543.098877][T12696]  ? __pfx___sys_sendmsg+0x10/0x10
[  543.098926][T12696]  ? __x64_sys_futex+0x34f/0x4d0
[  543.098999][T12696]  do_syscall_64+0xc9/0xf80
[  543.099043][T12696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  543.099080][T12696] RIP: 0033:0x7f28a059acb9
[  543.099109][T12696] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  543.099143][T12696] RSP: 002b:00007f28a1419028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  543.099177][T12696] RAX: ffffffffffffffda RBX: 00007f28a0815fa0 RCX: 00007f28a059acb9
[  543.099200][T12696] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  543.099222][T12696] RBP: 00007f28a0608bf7 R08: 0000000000000000 R09: 0000000000000000
[  543.099244][T12696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  543.099266][T12696] R13: 00007f28a0816038 R14: 00007f28a0815fa0 R15: 00007ffdd0dd09d8
[  543.099309][T12696]  </TASK>
[  548.364065][   T10] smpboot: CPU 1 is now offline
[  548.820837][T12802] FAULT_INJECTION: forcing a failure.
[  548.820837][T12802] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  548.908414][T12802] CPU: 0 UID: 0 PID: 12802 Comm: syz.1.1383 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  548.908454][T12802] Tainted: [L]=SOFTLOCKUP
[  548.908463][T12802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  548.908479][T12802] Call Trace:
[  548.908487][T12802]  <TASK>
[  548.908497][T12802]  dump_stack_lvl+0x100/0x190
[  548.908532][T12802]  should_fail_ex.cold+0x5/0xa
[  548.908568][T12802]  ? prepare_alloc_pages+0x16d/0x5f0
[  548.908609][T12802]  should_fail_alloc_page+0xeb/0x140
[  548.908646][T12802]  prepare_alloc_pages+0x1f0/0x5f0
[  548.908690][T12802]  __alloc_frozen_pages_noprof+0x193/0x2410
[  548.908725][T12802]  ? find_held_lock+0x2b/0x80
[  548.908750][T12802]  ? unwind_next_frame+0x3be/0x1ea0
[  548.908779][T12802]  ? unwind_next_frame+0x3be/0x1ea0
[  548.908815][T12802]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  548.908844][T12802]  ? exc_page_fault+0x6f/0xd0
[  548.908873][T12802]  ? asm_exc_page_fault+0x26/0x30
[  548.908903][T12802]  ? __kernel_text_address+0xd/0x30
[  548.908942][T12802]  ? unwind_get_return_address+0x59/0xa0
[  548.908983][T12802]  ? __lock_acquire+0x4a5/0x2630
[  548.909014][T12802]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  548.909043][T12802]  ? policy_nodemask+0xed/0x4f0
[  548.909080][T12802]  alloc_pages_mpol+0x1fb/0x550
[  548.909117][T12802]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  548.909161][T12802]  folio_alloc_mpol_noprof+0x36/0x340
[  548.909207][T12802]  shmem_alloc_folio+0x135/0x160
[  548.909234][T12802]  shmem_alloc_and_add_folio+0x371/0xd40
[  548.909271][T12802]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  548.909305][T12802]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  548.909343][T12802]  shmem_get_folio_gfp+0x6ab/0x1900
[  548.909380][T12802]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  548.909412][T12802]  ? filemap_map_pages+0x9e0/0x2110
[  548.909448][T12802]  shmem_fault+0x1f9/0xa20
[  548.909477][T12802]  ? __lock_acquire+0x4a5/0x2630
[  548.909510][T12802]  ? __pfx_shmem_fault+0x10/0x10
[  548.909542][T12802]  ? __lock_acquire+0x4a5/0x2630
[  548.909576][T12802]  ? __pfx_filemap_map_pages+0x10/0x10
[  548.909616][T12802]  __do_fault+0x10d/0x550
[  548.909653][T12802]  do_fault+0xaf9/0x1990
[  548.909695][T12802]  __handle_mm_fault+0x1807/0x2b50
[  548.909727][T12802]  ? mt_find+0x45e/0x8e0
[  548.909759][T12802]  ? __pfx___handle_mm_fault+0x10/0x10
[  548.909784][T12802]  ? __pfx_mt_find+0x10/0x10
[  548.909831][T12802]  ? find_vma+0xbf/0x140
[  548.909863][T12802]  ? __pfx_find_vma+0x10/0x10
[  548.909905][T12802]  handle_mm_fault+0x36d/0xa20
[  548.909938][T12802]  do_user_addr_fault+0x74c/0x12f0
[  548.909974][T12802]  exc_page_fault+0x6f/0xd0
[  548.910003][T12802]  asm_exc_page_fault+0x26/0x30
[  548.910026][T12802] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  548.910065][T12802] Code: 7d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 4f 7d 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  548.910091][T12802] RSP: 0018:ffffc90004d6f8c8 EFLAGS: 00050202
[  548.910112][T12802] RAX: 0000000000000001 RBX: ffff88802abf4000 RCX: 00000000000001f0
[  548.910128][T12802] RDX: 0000000000000001 RSI: 0000000000001000 RDI: ffff88802abf5000
[  548.910144][T12802] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100557ea3d
[  548.910159][T12802] R10: ffff88802abf51ef R11: 0000000000000000 R12: ffffc90004d6fe40
[  548.910176][T12802] R13: 0000000000000000 R14: 00000000000011f0 R15: 0000000000000000
[  548.910206][T12802]  _copy_from_iter+0x355/0x1690
[  548.910249][T12802]  ? rcu_is_watching+0x12/0xc0
[  548.910275][T12802]  ? __pfx__copy_from_iter+0x10/0x10
[  548.910314][T12802]  ? __asan_memset+0x23/0x50
[  548.910341][T12802]  ? __build_skb_around+0x278/0x390
[  548.910373][T12802]  ? is_vmalloc_addr+0x86/0xa0
[  548.910405][T12802]  netlink_sendmsg+0x808/0xda0
[  548.910449][T12802]  ? __pfx_netlink_sendmsg+0x10/0x10
[  548.910487][T12802]  ? __import_iovec+0x1d2/0x640
[  548.910529][T12802]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  548.910565][T12802]  ____sys_sendmsg+0xa54/0xc30
[  548.910595][T12802]  ? __pfx_____sys_sendmsg+0x10/0x10
[  548.910626][T12802]  ? try_to_wake_up+0x644/0x1a60
[  548.910660][T12802]  ___sys_sendmsg+0x190/0x1e0
[  548.910690][T12802]  ? __pfx____sys_sendmsg+0x10/0x10
[  548.910718][T12802]  ? futex_private_hash_put+0x107/0x1c0
[  548.910762][T12802]  ? find_held_lock+0x2b/0x80
[  548.910804][T12802]  __sys_sendmsg+0x170/0x220
[  548.910841][T12802]  ? __pfx___sys_sendmsg+0x10/0x10
[  548.910883][T12802]  ? __x64_sys_futex+0x34f/0x4d0
[  548.910934][T12802]  do_syscall_64+0xc9/0xf80
[  548.910966][T12802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  548.910990][T12802] RIP: 0033:0x7fec77f9acb9
[  548.911009][T12802] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  548.911033][T12802] RSP: 002b:00007fec78e56028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  548.911056][T12802] RAX: ffffffffffffffda RBX: 00007fec78216180 RCX: 00007fec77f9acb9
[  548.911073][T12802] RDX: 00000000000080c0 RSI: 0000200000001480 RDI: 0000000000000007
[  548.911089][T12802] RBP: 00007fec78008bf7 R08: 0000000000000000 R09: 0000000000000000
[  548.911108][T12802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  548.911124][T12802] R13: 00007fec78216218 R14: 00007fec78216180 R15: 00007ffdbb58dd68
[  548.911156][T12802]  </TASK>
[  552.065106][T12824] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  553.676973][T12864] synth uevent: /devices/platform/dummy_hcd.3/usb4/ep_00: unknown uevent action string
[  553.694816][T12864]  ep_00: uevent: failed to send synthetic uevent: -22
[  554.652326][T12883] kvm_intel: kvm [12881]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0x3
[  555.488457][T12896] netlink: 'syz.1.1411': attribute type 1 has an invalid length.
[  555.733132][T12905] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1415'.
[  556.456380][T10409] Bluetooth: hci1: unexpected event 0x14 length: 16 > 6
[  556.627706][T12924] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  556.671892][T12924] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0
[  558.719749][T12972] openvswitch: ovs_: Dropping previously announced user features
[  562.538508][T13043] openvswitch: ovs_: Dropping previously announced user features
[  564.687927][T13091] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1461'.
[  564.726796][T13090] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  564.761015][T13090] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0
[  568.034595][T13138] netlink: 'syz.3.1473': attribute type 1 has an invalid length.
[  568.054900][T13138] netlink: 33 bytes leftover after parsing attributes in process `syz.3.1473'.
[  568.404083][T13143] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1475'.
[  569.470015][T13161] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1480'.
[  571.027992][T13176] blktrace: Concurrent blktraces are not allowed on sda1
[  572.096166][T13186] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1485'.
[  573.177190][T13209] openvswitch: ovs_: Dropping previously announced user features
[  573.494892][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  573.501305][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  573.705138][T13226] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  573.735094][T13226] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0
[  575.231744][T13248] FAULT_INJECTION: forcing a failure.
[  575.231744][T13248] name failslab, interval 1, probability 0, space 0, times 0
[  575.253031][T13252] openvswitch: ovs_: Dropping previously announced user features
[  575.485902][T13248] CPU: 0 UID: 0 PID: 13248 Comm: syz.0.1499 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  575.485970][T13248] Tainted: [L]=SOFTLOCKUP
[  575.485984][T13248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  575.486006][T13248] Call Trace:
[  575.486019][T13248]  <TASK>
[  575.486033][T13248]  dump_stack_lvl+0x100/0x190
[  575.486081][T13248]  should_fail_ex.cold+0x5/0xa
[  575.486140][T13248]  should_failslab+0xc2/0x120
[  575.486191][T13248]  kmem_cache_alloc_noprof+0x83/0x780
[  575.486238][T13248]  ? __pfx___alloc_skb+0x10/0x10
[  575.486283][T13248]  ? sctp_chunkify+0x51/0x2f0
[  575.486331][T13248]  ? sctp_chunkify+0x51/0x2f0
[  575.486369][T13248]  sctp_chunkify+0x51/0x2f0
[  575.486412][T13248]  _sctp_make_chunk+0x148/0x270
[  575.486456][T13248]  sctp_make_datafrag_empty+0x14e/0x230
[  575.486504][T13248]  ? __pfx_sctp_make_datafrag_empty+0x10/0x10
[  575.486565][T13248]  sctp_datamsg_from_user+0x5ea/0x1360
[  575.486628][T13248]  sctp_sendmsg_to_asoc+0xb1c/0x1c50
[  575.486692][T13248]  ? __lock_sock+0x1fc/0x270
[  575.486745][T13248]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[  575.486798][T13248]  ? __pfx_autoremove_wake_function+0x10/0x10
[  575.486854][T13248]  ? sctp_sendmsg_check_sflags+0x176/0x360
[  575.486909][T13248]  sctp_sendmsg+0x1185/0x22b0
[  575.486962][T13248]  ? __pfx_sctp_sendmsg+0x10/0x10
[  575.486996][T13248]  ? find_held_lock+0x2b/0x80
[  575.487029][T13248]  ? aa_file_perm+0x268/0x1540
[  575.487071][T13248]  ? aa_sk_perm+0x2de/0xb40
[  575.487127][T13248]  ? __pfx_aa_sk_perm+0x10/0x10
[  575.487190][T13248]  ? __pfx_sctp_sendmsg+0x10/0x10
[  575.487227][T13248]  inet_sendmsg+0x11c/0x140
[  575.487268][T13248]  sock_write_iter+0x509/0x610
[  575.487307][T13248]  ? __pfx_sock_write_iter+0x10/0x10
[  575.487360][T13248]  ? bpf_lsm_file_permission+0x9/0x10
[  575.487410][T13248]  ? security_file_permission+0x76/0x210
[  575.487466][T13248]  ? rw_verify_area+0xce/0x6d0
[  575.487505][T13248]  vfs_write+0x6ac/0x1070
[  575.487545][T13248]  ? __pfx_sock_write_iter+0x10/0x10
[  575.487587][T13248]  ? __pfx_vfs_write+0x10/0x10
[  575.487623][T13248]  ? find_held_lock+0x2b/0x80
[  575.487682][T13248]  ksys_write+0x1f8/0x250
[  575.487721][T13248]  ? __pfx_ksys_write+0x10/0x10
[  575.487772][T13248]  do_syscall_64+0xc9/0xf80
[  575.487816][T13248]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  575.487861][T13248] RIP: 0033:0x7f505899acb9
[  575.487889][T13248] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  575.487925][T13248] RSP: 002b:00007f50567d3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  575.487966][T13248] RAX: ffffffffffffffda RBX: 00007f5058c16270 RCX: 00007f505899acb9
[  575.487990][T13248] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003
[  575.488011][T13248] RBP: 00007f5058a08bf7 R08: 0000000000000000 R09: 0000000000000000
[  575.488031][T13248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  575.488051][T13248] R13: 00007f5058c16308 R14: 00007f5058c16270 R15: 00007ffdaaf25ae8
[  575.488094][T13248]  </TASK>
[  575.906344][T13238] nfs: Unknown parameter 'B�ålY¶	7³w±·E»É®H¶âs[åØ�u` ]‹§e©©6z¦c§ÚÞ•â[$(‡uÊ×ÃÒÃÒž€ô%ÏE¹ƒtO–÷2*è‚pãè[ˆÄÁOugÇãɧr©�ts÷þ¤QZ×€z'
[  578.128580][T13299] openvswitch: ovs_: Dropping previously announced user features
[  578.846624][T13305] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0
[  579.034101][  T797] smpboot: CPU 1 is now offline
[  581.354220][T13344] netlink: 'syz.3.1523': attribute type 1 has an invalid length.
[  581.384602][T13344] netlink: 33 bytes leftover after parsing attributes in process `syz.3.1523'.
[  581.579679][T10409] Bluetooth: hci3: unexpected event 0x14 length: 16 > 6
[  581.955098][T13355] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  582.656912][T13375] FAULT_INJECTION: forcing a failure.
[  582.656912][T13375] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  582.705163][T13375] CPU: 0 UID: 0 PID: 13375 Comm: syz.2.1531 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  582.705203][T13375] Tainted: [L]=SOFTLOCKUP
[  582.705213][T13375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  582.705227][T13375] Call Trace:
[  582.705236][T13375]  <TASK>
[  582.705246][T13375]  dump_stack_lvl+0x100/0x190
[  582.705279][T13375]  should_fail_ex.cold+0x5/0xa
[  582.705320][T13375]  ? prepare_alloc_pages+0x16d/0x5f0
[  582.705361][T13375]  should_fail_alloc_page+0xeb/0x140
[  582.705399][T13375]  prepare_alloc_pages+0x1f0/0x5f0
[  582.705449][T13375]  __alloc_frozen_pages_noprof+0x193/0x2410
[  582.705483][T13375]  ? __pfx_stack_trace_save+0x10/0x10
[  582.705512][T13375]  ? stack_depot_save_flags+0x27/0x9c0
[  582.705551][T13375]  ? unwind_next_frame+0x3be/0x1ea0
[  582.705585][T13375]  ? __lock_acquire+0x4a5/0x2630
[  582.705646][T13375]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  582.705695][T13375]  ? __lock_acquire+0x4a5/0x2630
[  582.705758][T13375]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  582.705787][T13375]  ? policy_nodemask+0xed/0x4f0
[  582.705825][T13375]  alloc_pages_mpol+0x1fb/0x550
[  582.705862][T13375]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  582.705906][T13375]  folio_alloc_mpol_noprof+0x36/0x340
[  582.705948][T13375]  shmem_alloc_folio+0x135/0x160
[  582.706001][T13375]  shmem_alloc_and_add_folio+0x371/0xd40
[  582.706049][T13375]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  582.706083][T13375]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  582.706121][T13375]  shmem_get_folio_gfp+0x6ab/0x1900
[  582.706158][T13375]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  582.706190][T13375]  ? filemap_map_pages+0x9e0/0x2110
[  582.706227][T13375]  shmem_fault+0x1f9/0xa20
[  582.706256][T13375]  ? __lock_acquire+0x4a5/0x2630
[  582.706289][T13375]  ? __pfx_shmem_fault+0x10/0x10
[  582.706320][T13375]  ? __lock_acquire+0x4a5/0x2630
[  582.706354][T13375]  ? __pfx_filemap_map_pages+0x10/0x10
[  582.706394][T13375]  __do_fault+0x10d/0x550
[  582.706430][T13375]  do_fault+0xaf9/0x1990
[  582.706479][T13375]  __handle_mm_fault+0x1807/0x2b50
[  582.706511][T13375]  ? mt_find+0x45e/0x8e0
[  582.706544][T13375]  ? __pfx___handle_mm_fault+0x10/0x10
[  582.706569][T13375]  ? __pfx_mt_find+0x10/0x10
[  582.706616][T13375]  ? find_vma+0xbf/0x140
[  582.706649][T13375]  ? __pfx_find_vma+0x10/0x10
[  582.706687][T13375]  handle_mm_fault+0x36d/0xa20
[  582.706722][T13375]  do_user_addr_fault+0x74c/0x12f0
[  582.706778][T13375]  exc_page_fault+0x6f/0xd0
[  582.706821][T13375]  asm_exc_page_fault+0x26/0x30
[  582.706861][T13375] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  582.706901][T13375] Code: 7d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 4f 7d 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  582.706926][T13375] RSP: 0018:ffffc9000c35f8c8 EFLAGS: 00050202
[  582.706947][T13375] RAX: 0000000000000001 RBX: ffff88801db2c000 RCX: 00000000000001f0
[  582.706963][T13375] RDX: 0000000000000001 RSI: 0000000000001000 RDI: ffff88801db2d000
[  582.706978][T13375] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed1003b65a3d
[  582.707009][T13375] R10: ffff88801db2d1ef R11: 0000000000000000 R12: ffffc9000c35fe40
[  582.707032][T13375] R13: 0000000000000000 R14: 00000000000011f0 R15: 0000000000000000
[  582.707074][T13375]  _copy_from_iter+0x355/0x1690
[  582.707133][T13375]  ? rcu_is_watching+0x12/0xc0
[  582.707159][T13375]  ? __pfx__copy_from_iter+0x10/0x10
[  582.707198][T13375]  ? __asan_memset+0x23/0x50
[  582.707225][T13375]  ? __build_skb_around+0x278/0x390
[  582.707265][T13375]  ? is_vmalloc_addr+0x86/0xa0
[  582.707297][T13375]  netlink_sendmsg+0x808/0xda0
[  582.707343][T13375]  ? __pfx_netlink_sendmsg+0x10/0x10
[  582.707380][T13375]  ? __import_iovec+0x1d2/0x640
[  582.707421][T13375]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  582.707463][T13375]  ____sys_sendmsg+0xa54/0xc30
[  582.707494][T13375]  ? __pfx_____sys_sendmsg+0x10/0x10
[  582.707525][T13375]  ? try_to_wake_up+0x644/0x1a60
[  582.707561][T13375]  ___sys_sendmsg+0x190/0x1e0
[  582.707591][T13375]  ? __pfx____sys_sendmsg+0x10/0x10
[  582.707619][T13375]  ? futex_private_hash_put+0x107/0x1c0
[  582.707666][T13375]  ? find_held_lock+0x2b/0x80
[  582.707710][T13375]  __sys_sendmsg+0x170/0x220
[  582.707747][T13375]  ? __pfx___sys_sendmsg+0x10/0x10
[  582.707784][T13375]  ? __x64_sys_futex+0x34f/0x4d0
[  582.707836][T13375]  do_syscall_64+0xc9/0xf80
[  582.707867][T13375]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.707919][T13375] RIP: 0033:0x7f94bab9acb9
[  582.707947][T13375] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  582.707987][T13375] RSP: 002b:00007f94bba74028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  582.708016][T13375] RAX: ffffffffffffffda RBX: 00007f94bae16090 RCX: 00007f94bab9acb9
[  582.708032][T13375] RDX: 00000000000080c0 RSI: 0000200000001480 RDI: 0000000000000007
[  582.708048][T13375] RBP: 00007f94bac08bf7 R08: 0000000000000000 R09: 0000000000000000
[  582.708063][T13375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  582.708078][T13375] R13: 00007f94bae16128 R14: 00007f94bae16090 R15: 00007ffdb5d31268
[  582.708110][T13375]  </TASK>
[  583.741116][T13384] FAULT_INJECTION: forcing a failure.
[  583.741116][T13384] name failslab, interval 1, probability 0, space 0, times 0
[  583.802241][T13384] CPU: 1 UID: 0 PID: 13384 Comm: syz.2.1533 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  583.802296][T13384] Tainted: [L]=SOFTLOCKUP
[  583.802310][T13384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  583.802331][T13384] Call Trace:
[  583.802344][T13384]  <TASK>
[  583.802357][T13384]  dump_stack_lvl+0x100/0x190
[  583.802404][T13384]  should_fail_ex.cold+0x5/0xa
[  583.802474][T13384]  should_failslab+0xc2/0x120
[  583.802526][T13384]  kmem_cache_alloc_noprof+0x83/0x780
[  583.802573][T13384]  ? __kernfs_new_node+0xd2/0x960
[  583.802628][T13384]  ? __kernfs_new_node+0xd2/0x960
[  583.802679][T13384]  __kernfs_new_node+0xd2/0x960
[  583.802732][T13384]  ? __pfx___kernfs_new_node+0x10/0x10
[  583.802792][T13384]  ? find_held_lock+0x2b/0x80
[  583.802827][T13384]  ? kernfs_root+0xee/0x2a0
[  583.802871][T13384]  ? kernfs_root+0xee/0x2a0
[  583.802927][T13384]  kernfs_new_node+0x11b/0x1a0
[  583.802989][T13384]  kernfs_create_link+0xcc/0x240
[  583.803034][T13384]  sysfs_do_create_link_sd+0x90/0x140
[  583.803084][T13384]  sysfs_create_link+0x61/0xc0
[  583.803132][T13384]  driver_sysfs_add+0x112/0x2d0
[  583.803175][T13384]  device_bind_driver+0x16/0x70
[  583.803216][T13384]  mac80211_hwsim_new_radio+0x3fb/0x57c0
[  583.803287][T13384]  ? __asan_memset+0x23/0x50
[  583.803325][T13384]  ? __nla_validate_parse+0x1e7/0x28b0
[  583.803367][T13384]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  583.803432][T13384]  hwsim_new_radio_nl+0xc1f/0x1340
[  583.803491][T13384]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  583.803538][T13384]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  583.803604][T13384]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  583.803643][T13384]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  583.803690][T13384]  genl_family_rcv_msg_doit+0x214/0x300
[  583.803733][T13384]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  583.803771][T13384]  ? genl_get_cmd+0x3ef/0x720
[  583.803815][T13384]  ? bpf_lsm_capable+0x9/0x10
[  583.803846][T13384]  ? security_capable+0x80/0x260
[  583.803891][T13384]  ? ns_capable+0xd2/0xf0
[  583.803947][T13384]  genl_rcv_msg+0x560/0x800
[  583.803989][T13384]  ? __pfx_genl_rcv_msg+0x10/0x10
[  583.804030][T13384]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  583.804095][T13384]  netlink_rcv_skb+0x159/0x420
[  583.804149][T13384]  ? __pfx_genl_rcv_msg+0x10/0x10
[  583.804189][T13384]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  583.804260][T13384]  ? netlink_deliver_tap+0x1ae/0xcc0
[  583.804320][T13384]  genl_rcv+0x28/0x40
[  583.804351][T13384]  netlink_unicast+0x5aa/0x870
[  583.804411][T13384]  ? __pfx_netlink_unicast+0x10/0x10
[  583.804485][T13384]  netlink_sendmsg+0x8b0/0xda0
[  583.804549][T13384]  ? __pfx_netlink_sendmsg+0x10/0x10
[  583.804602][T13384]  ? __import_iovec+0x1d2/0x640
[  583.804659][T13384]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  583.804711][T13384]  ____sys_sendmsg+0xa54/0xc30
[  583.804754][T13384]  ? __pfx_____sys_sendmsg+0x10/0x10
[  583.804788][T13384]  ? __pfx___futex_wait+0x10/0x10
[  583.804828][T13384]  ? __pfx_futex_wake_mark+0x10/0x10
[  583.804891][T13384]  ___sys_sendmsg+0x190/0x1e0
[  583.804934][T13384]  ? __pfx____sys_sendmsg+0x10/0x10
[  583.804993][T13384]  ? find_held_lock+0x2b/0x80
[  583.805050][T13384]  __sys_sendmsg+0x170/0x220
[  583.805100][T13384]  ? __pfx___sys_sendmsg+0x10/0x10
[  583.805153][T13384]  ? __x64_sys_futex+0x34f/0x4d0
[  583.805222][T13384]  do_syscall_64+0xc9/0xf80
[  583.805266][T13384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.805300][T13384] RIP: 0033:0x7f94bab9acb9
[  583.805328][T13384] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  583.805363][T13384] RSP: 002b:00007f94bba95028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  583.805397][T13384] RAX: ffffffffffffffda RBX: 00007f94bae15fa0 RCX: 00007f94bab9acb9
[  583.805420][T13384] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  583.805451][T13384] RBP: 00007f94bac08bf7 R08: 0000000000000000 R09: 0000000000000000
[  583.805473][T13384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  583.805494][T13384] R13: 00007f94bae16038 R14: 00007f94bae15fa0 R15: 00007ffdb5d31268
[  583.805540][T13384]  </TASK>
[  583.809187][T13388] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  584.241585][T13388] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0
[  584.725407][    T9] smpboot: CPU 1 is now offline
[  586.041704][T13428] __vm_enough_memory: pid: 13428, comm: syz.2.1545, bytes: 4398046511104 not enough memory for the allocation
[  587.004740][T13449] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  587.531936][T13464] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1552'.
[  588.370666][ T5914] smpboot: CPU 1 is now offline
[  588.393430][T13485] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  591.100917][T10409] Bluetooth: hci0: unexpected event 0x14 length: 16 > 6
[  591.448003][T13545] input: f¬
 as /devices/virtual/input/input8
[  592.743706][T13561] virtio-pci 0000:00:04.0: [Firmware Bug]: Overriding NUMA node to 0.  Contact your vendor for updates.
[  593.119845][T13570] FAULT_INJECTION: forcing a failure.
[  593.119845][T13570] name failslab, interval 1, probability 0, space 0, times 0
[  593.132807][T13570] CPU: 1 UID: 0 PID: 13570 Comm: syz.1.1581 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  593.132849][T13570] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  593.132860][T13570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  593.132877][T13570] Call Trace:
[  593.132885][T13570]  <TASK>
[  593.132895][T13570]  dump_stack_lvl+0x100/0x190
[  593.132930][T13570]  should_fail_ex.cold+0x5/0xa
[  593.132971][T13570]  should_failslab+0xc2/0x120
[  593.133005][T13570]  ? tomoyo_realpath_from_path+0xb6/0x690
[  593.133031][T13570]  __kmalloc_noprof+0xf6/0x9c0
[  593.133055][T13570]  ? kfree+0x2a9/0x690
[  593.133085][T13570]  ? tomoyo_realpath_from_path+0xb6/0x690
[  593.133110][T13570]  tomoyo_realpath_from_path+0xb6/0x690
[  593.133142][T13570]  tomoyo_check_open_permission+0x2af/0x3c0
[  593.133181][T13570]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  593.133247][T13570]  ? do_raw_spin_lock+0x128/0x260
[  593.133287][T13570]  ? path_get+0x61/0x80
[  593.133322][T13570]  tomoyo_file_open+0x6b/0x90
[  593.133352][T13570]  security_file_open+0xb5/0x1e0
[  593.133376][T13570]  do_dentry_open+0x58c/0x1570
[  593.133408][T13570]  ? security_inode_permission+0xbf/0x250
[  593.133449][T13570]  vfs_open+0x82/0x3f0
[  593.133489][T13570]  path_openat+0x21dc/0x3120
[  593.133528][T13570]  ? __pfx_path_openat+0x10/0x10
[  593.133568][T13570]  do_filp_open+0x1f7/0x420
[  593.133599][T13570]  ? __pfx_do_filp_open+0x10/0x10
[  593.133639][T13570]  ? __pfx_kfree_link+0x10/0x10
[  593.133691][T13570]  ? _raw_spin_unlock+0x28/0x50
[  593.133716][T13570]  ? alloc_fd+0x476/0x790
[  593.133752][T13570]  do_sys_openat2+0x12e/0x220
[  593.133790][T13570]  ? __pfx_do_sys_openat2+0x10/0x10
[  593.133831][T13570]  ? __fget_files+0x21f/0x3d0
[  593.133864][T13570]  __x64_sys_openat+0x12d/0x210
[  593.133903][T13570]  ? __pfx___x64_sys_openat+0x10/0x10
[  593.133941][T13570]  ? xfd_validate_state+0x129/0x190
[  593.133990][T13570]  do_syscall_64+0xc9/0xf80
[  593.134022][T13570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.134047][T13570] RIP: 0033:0x7fec77f9acb9
[  593.134067][T13570] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  593.134091][T13570] RSP: 002b:00007fec78e98028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  593.134115][T13570] RAX: ffffffffffffffda RBX: 00007fec78215fa0 RCX: 00007fec77f9acb9
[  593.134132][T13570] RDX: 0000000000002080 RSI: 00002000000003c0 RDI: ffffffffffffff9c
[  593.134149][T13570] RBP: 00007fec78008bf7 R08: 0000000000000000 R09: 0000000000000000
[  593.134164][T13570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  593.134179][T13570] R13: 00007fec78216038 R14: 00007fec78215fa0 R15: 00007ffdbb58dd68
[  593.134211][T13570]  </TASK>
[  593.134222][T13570] ERROR: Out of memory at tomoyo_realpath_from_path.
[  594.891463][T13612] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1589'.
[  595.108890][T13617] Format for deleting device is "id" (uint).
[  595.257613][T13620] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  595.265277][T13620] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0
[  596.724162][T13637] vivid-007: =================  START STATUS  =================
[  596.788834][T13637] vivid-007: Generate PTS: true
[  596.794058][T13637] vivid-007: Generate SCR: true
[  596.840124][T13637] tpg source WxH: 320x240 (Y'CbCr)
[  596.868425][T13637] tpg field: 1
[  596.888896][T13637] tpg crop: (0,0)/320x240
[  596.900418][T13637] tpg compose: (0,0)/320x240
[  596.905113][T13637] tpg colorspace: 8
[  596.946578][T13637] tpg transfer function: 0/0
[  596.951242][T13637] tpg Y'CbCr encoding: 0/0
[  596.955665][T13637] tpg quantization: 0/0
[  597.044136][T13637] tpg RGB range: 0/2
[  597.060490][T13637] vivid-007: ==================  END STATUS  ==================
[  597.949486][T13665] netlink: 'syz.1.1601': attribute type 1 has an invalid length.
[  598.007426][T13665] netlink: 33 bytes leftover after parsing attributes in process `syz.1.1601'.
[  598.385272][T13673] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1604'.
[  599.016351][T10409] Bluetooth: hci3: unexpected event 0x14 length: 16 > 6
[  599.697995][T13698] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1610'.
[  600.071687][    T9] smpboot: CPU 1 is now offline
[  601.320060][T13714] binder: BINDER_SET_CONTEXT_MGR already set
[  601.326427][T13714] binder: 13713:13714 ioctl 4018620d 9 returned -16
[  601.952015][T10409] Bluetooth: hci0: unexpected event 0x14 length: 17 > 6
[  602.821476][T13738] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1619'.
[  603.039106][T13744] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  603.667985][T13753] FAULT_INJECTION: forcing a failure.
[  603.667985][T13753] name failslab, interval 1, probability 0, space 0, times 0
[  603.714399][T13753] CPU: 0 UID: 0 PID: 13753 Comm: syz.0.1622 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  603.714465][T13753] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  603.714488][T13753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  603.714520][T13753] Call Trace:
[  603.714532][T13753]  <TASK>
[  603.714546][T13753]  dump_stack_lvl+0x100/0x190
[  603.714601][T13753]  should_fail_ex.cold+0x5/0xa
[  603.714670][T13753]  should_failslab+0xc2/0x120
[  603.714727][T13753]  __kmalloc_cache_noprof+0x80/0x810
[  603.714763][T13753]  ? __queue_work+0x436/0x10f0
[  603.714817][T13753]  ? kobject_uevent_env+0x263/0x18b0
[  603.714882][T13753]  ? kobject_uevent_env+0x263/0x18b0
[  603.714933][T13753]  kobject_uevent_env+0x263/0x18b0
[  603.714995][T13753]  ? queue_work_on+0x11b/0x1e0
[  603.715046][T13753]  ? bus_to_subsys+0x114/0x150
[  603.715104][T13753]  driver_bound+0x13e/0x220
[  603.715148][T13753]  device_bind_driver+0x3a/0x70
[  603.715188][T13753]  mac80211_hwsim_new_radio+0x3fb/0x57c0
[  603.715269][T13753]  ? __asan_memset+0x23/0x50
[  603.715308][T13753]  ? __nla_validate_parse+0x1e7/0x28b0
[  603.715352][T13753]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  603.715417][T13753]  hwsim_new_radio_nl+0xc1f/0x1340
[  603.715468][T13753]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  603.715515][T13753]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  603.715578][T13753]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  603.715618][T13753]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  603.715666][T13753]  genl_family_rcv_msg_doit+0x214/0x300
[  603.715709][T13753]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  603.715746][T13753]  ? genl_get_cmd+0x3ef/0x720
[  603.715790][T13753]  ? bpf_lsm_capable+0x9/0x10
[  603.715821][T13753]  ? security_capable+0x80/0x260
[  603.715866][T13753]  ? ns_capable+0xd2/0xf0
[  603.715909][T13753]  genl_rcv_msg+0x560/0x800
[  603.715952][T13753]  ? __pfx_genl_rcv_msg+0x10/0x10
[  603.715992][T13753]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  603.716057][T13753]  netlink_rcv_skb+0x159/0x420
[  603.716112][T13753]  ? __pfx_genl_rcv_msg+0x10/0x10
[  603.716151][T13753]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  603.716229][T13753]  ? netlink_deliver_tap+0x1ae/0xcc0
[  603.716289][T13753]  genl_rcv+0x28/0x40
[  603.716320][T13753]  netlink_unicast+0x5aa/0x870
[  603.716382][T13753]  ? __pfx_netlink_unicast+0x10/0x10
[  603.716454][T13753]  netlink_sendmsg+0x8b0/0xda0
[  603.716517][T13753]  ? __pfx_netlink_sendmsg+0x10/0x10
[  603.716571][T13753]  ? __import_iovec+0x1d2/0x640
[  603.716629][T13753]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  603.716681][T13753]  ____sys_sendmsg+0xa54/0xc30
[  603.716724][T13753]  ? __pfx_____sys_sendmsg+0x10/0x10
[  603.716760][T13753]  ? __pfx___futex_wait+0x10/0x10
[  603.716800][T13753]  ? __pfx_futex_wake_mark+0x10/0x10
[  603.716875][T13753]  ___sys_sendmsg+0x190/0x1e0
[  603.716918][T13753]  ? __pfx____sys_sendmsg+0x10/0x10
[  603.716980][T13753]  ? find_held_lock+0x2b/0x80
[  603.717045][T13753]  __sys_sendmsg+0x170/0x220
[  603.717098][T13753]  ? __pfx___sys_sendmsg+0x10/0x10
[  603.717148][T13753]  ? __x64_sys_futex+0x34f/0x4d0
[  603.717229][T13753]  do_syscall_64+0xc9/0xf80
[  603.717274][T13753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  603.717310][T13753] RIP: 0033:0x7f505899acb9
[  603.717339][T13753] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  603.717374][T13753] RSP: 002b:00007f50597a8028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  603.717409][T13753] RAX: ffffffffffffffda RBX: 00007f5058c15fa0 RCX: 00007f505899acb9
[  603.717432][T13753] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  603.717455][T13753] RBP: 00007f5058a08bf7 R08: 0000000000000000 R09: 0000000000000000
[  603.717477][T13753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  603.717498][T13753] R13: 00007f5058c16038 R14: 00007f5058c15fa0 R15: 00007ffdaaf25ae8
[  603.717544][T13753]  </TASK>
[  604.660974][T13761] ptrace attach of "./syz-executor exec"[11257] was attempted by "./syz-executor exec"[13761]
[  606.613620][   T22] IRQ fixup: irq 34 move in progress, old vector 49
[  606.627782][  T797] smpboot: CPU 1 is now offline
[  606.929463][T13789] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1630'.
[  609.788216][T13804] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1634'.
[  613.823393][T13836] NFSD: Failed to start, no listeners configured.
[  615.843437][T13851] openvswitch: ovs_: Dropping previously announced user features
[  617.764176][T13871] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  620.354737][T13902] input: jJǸ-�¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input9
[  623.102071][T13928] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1663'.
[  625.078648][T13963] openvswitch: ovs_: Dropping previously announced user features
[  625.242343][T13966] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1672'.
[  626.382414][T13979] FAULT_INJECTION: forcing a failure.
[  626.382414][T13979] name failslab, interval 1, probability 0, space 0, times 0
[  626.427560][T13986] ima: policy update failed
[  626.433974][T13979] CPU: 1 UID: 0 PID: 13979 Comm: syz.2.1677 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  626.434032][T13979] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  626.434049][T13979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  626.434071][T13979] Call Trace:
[  626.434083][T13979]  <TASK>
[  626.434096][T13979]  dump_stack_lvl+0x100/0x190
[  626.434145][T13979]  should_fail_ex.cold+0x5/0xa
[  626.434203][T13979]  should_failslab+0xc2/0x120
[  626.434253][T13979]  kmem_cache_alloc_lru_noprof+0x8e/0x7d0
[  626.434300][T13979]  ? udpv6_init_sock+0x24e/0x450
[  626.434343][T13979]  ? trace_kmalloc+0x83/0xb0
[  626.434390][T13979]  ? __kmalloc_noprof+0x365/0x9c0
[  626.434424][T13979]  ? __d_alloc+0x34/0xa80
[  626.434474][T13979]  ? __d_alloc+0x34/0xa80
[  626.434515][T13979]  __d_alloc+0x34/0xa80
[  626.434562][T13979]  d_alloc_pseudo+0x1c/0xc0
[  626.434625][T13979]  alloc_file_pseudo+0xcf/0x230
[  626.434680][T13979]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  626.434732][T13979]  ? alloc_fd+0x476/0x790
[  626.434780][T13979]  sock_alloc_file+0x50/0x210
[  626.434837][T13979]  __sys_socket+0x1c0/0x260
[  626.434875][T13979]  ? fput+0x79/0x100
[  626.434921][T13979]  ? __pfx___sys_socket+0x10/0x10
[  626.434960][T13979]  ? xfd_validate_state+0x129/0x190
[  626.435025][T13979]  __x64_sys_socket+0x72/0xb0
[  626.435064][T13979]  ? lockdep_hardirqs_on+0x78/0x100
[  626.435104][T13979]  do_syscall_64+0xc9/0xf80
[  626.435150][T13979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  626.435185][T13979] RIP: 0033:0x7f94bab9acb9
[  626.435214][T13979] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  626.435250][T13979] RSP: 002b:00007f94bba95028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  626.435284][T13979] RAX: ffffffffffffffda RBX: 00007f94bae15fa0 RCX: 00007f94bab9acb9
[  626.435308][T13979] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000000a
[  626.435329][T13979] RBP: 00007f94bac08bf7 R08: 0000000000000000 R09: 0000000000000000
[  626.435352][T13979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  626.435374][T13979] R13: 00007f94bae16038 R14: 00007f94bae15fa0 R15: 00007ffdb5d31268
[  626.435420][T13979]  </TASK>
[  626.780902][   T30] audit: type=1802 audit(4294967355.955:16): pid=13986 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1678" res=0 errno=0
[  628.846606][T14008] FAULT_INJECTION: forcing a failure.
[  628.846606][T14008] name failslab, interval 1, probability 0, space 0, times 0
[  628.892823][T14008] CPU: 0 UID: 0 PID: 14008 Comm: syz.2.1682 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  628.892885][T14008] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  628.892902][T14008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  628.892924][T14008] Call Trace:
[  628.892936][T14008]  <TASK>
[  628.892950][T14008]  dump_stack_lvl+0x100/0x190
[  628.893000][T14008]  should_fail_ex.cold+0x5/0xa
[  628.893058][T14008]  should_failslab+0xc2/0x120
[  628.893106][T14008]  ? __alloc_workqueue+0x148/0x1880
[  628.893150][T14008]  __kmalloc_noprof+0xf6/0x9c0
[  628.893198][T14008]  ? __alloc_workqueue+0x148/0x1880
[  628.893242][T14008]  __alloc_workqueue+0x148/0x1880
[  628.893301][T14008]  alloc_workqueue_noprof+0xd2/0x200
[  628.893347][T14008]  ? __pfx_alloc_workqueue_noprof+0x10/0x10
[  628.893396][T14008]  ? rcu_is_watching+0x12/0xc0
[  628.893428][T14008]  ? ieee80211_register_hw+0x1534/0x4040
[  628.893492][T14008]  ? trace_kmalloc+0x83/0xb0
[  628.893537][T14008]  ? __kmalloc_noprof+0x365/0x9c0
[  628.893586][T14008]  ieee80211_register_hw+0x1ec3/0x4040
[  628.893645][T14008]  ? try_to_take_rt_mutex+0x712/0xf90
[  628.893706][T14008]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  628.893760][T14008]  ? __pfx___debug_object_init+0x10/0x10
[  628.893812][T14008]  ? find_held_lock+0x2b/0x80
[  628.893846][T14008]  ? net_generic+0xea/0x2a0
[  628.893886][T14008]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  628.893926][T14008]  ? __hrtimer_setup+0x178/0x280
[  628.893981][T14008]  mac80211_hwsim_new_radio+0x2847/0x57c0
[  628.894059][T14008]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  628.894124][T14008]  hwsim_new_radio_nl+0xc1f/0x1340
[  628.894172][T14008]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  628.894219][T14008]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  628.894283][T14008]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  628.894322][T14008]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  628.894369][T14008]  genl_family_rcv_msg_doit+0x214/0x300
[  628.894411][T14008]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  628.894448][T14008]  ? genl_get_cmd+0x3ef/0x720
[  628.894500][T14008]  ? bpf_lsm_capable+0x9/0x10
[  628.894531][T14008]  ? security_capable+0x80/0x260
[  628.894576][T14008]  ? ns_capable+0xd2/0xf0
[  628.894618][T14008]  genl_rcv_msg+0x560/0x800
[  628.894660][T14008]  ? __pfx_genl_rcv_msg+0x10/0x10
[  628.894703][T14008]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  628.894768][T14008]  netlink_rcv_skb+0x159/0x420
[  628.894823][T14008]  ? __pfx_genl_rcv_msg+0x10/0x10
[  628.894862][T14008]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  628.894936][T14008]  ? netlink_deliver_tap+0x1ae/0xcc0
[  628.894994][T14008]  genl_rcv+0x28/0x40
[  628.895025][T14008]  netlink_unicast+0x5aa/0x870
[  628.895082][T14008]  ? __pfx_netlink_unicast+0x10/0x10
[  628.895150][T14008]  netlink_sendmsg+0x8b0/0xda0
[  628.895211][T14008]  ? __pfx_netlink_sendmsg+0x10/0x10
[  628.895262][T14008]  ? __import_iovec+0x1d2/0x640
[  628.895319][T14008]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  628.895369][T14008]  ____sys_sendmsg+0xa54/0xc30
[  628.895411][T14008]  ? __pfx_____sys_sendmsg+0x10/0x10
[  628.895453][T14008]  ? try_to_wake_up+0x644/0x1a60
[  628.895508][T14008]  ___sys_sendmsg+0x190/0x1e0
[  628.895551][T14008]  ? __pfx____sys_sendmsg+0x10/0x10
[  628.895591][T14008]  ? futex_private_hash_put+0x107/0x1c0
[  628.895653][T14008]  ? find_held_lock+0x2b/0x80
[  628.895715][T14008]  __sys_sendmsg+0x170/0x220
[  628.895767][T14008]  ? __pfx___sys_sendmsg+0x10/0x10
[  628.895817][T14008]  ? __x64_sys_futex+0x34f/0x4d0
[  628.895890][T14008]  do_syscall_64+0xc9/0xf80
[  628.895935][T14008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  628.895971][T14008] RIP: 0033:0x7f94bab9acb9
[  628.896000][T14008] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  628.896034][T14008] RSP: 002b:00007f94bba95028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  628.896068][T14008] RAX: ffffffffffffffda RBX: 00007f94bae15fa0 RCX: 00007f94bab9acb9
[  628.896092][T14008] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  628.896115][T14008] RBP: 00007f94bac08bf7 R08: 0000000000000000 R09: 0000000000000000
[  628.896136][T14008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  628.896157][T14008] R13: 00007f94bae16038 R14: 00007f94bae15fa0 R15: 00007ffdb5d31268
[  628.896203][T14008]  </TASK>
[  629.502586][T14016] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  629.509622][T14016] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  630.755996][T14047] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10
[  631.602584][T14049] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11
[  632.923497][T14074] FAULT_INJECTION: forcing a failure.
[  632.923497][T14074] name failslab, interval 1, probability 0, space 0, times 0
[  632.972336][T14074] CPU: 1 UID: 0 PID: 14074 Comm: syz.0.1698 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  632.972394][T14074] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  632.972410][T14074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  632.972431][T14074] Call Trace:
[  632.972443][T14074]  <TASK>
[  632.972456][T14074]  dump_stack_lvl+0x100/0x190
[  632.972502][T14074]  should_fail_ex.cold+0x5/0xa
[  632.972559][T14074]  should_failslab+0xc2/0x120
[  632.972607][T14074]  kmem_cache_alloc_lru_noprof+0x8e/0x7d0
[  632.972652][T14074]  ? __d_lookup+0x25c/0x4a0
[  632.972708][T14074]  ? __d_alloc+0x34/0xa80
[  632.972756][T14074]  ? __d_alloc+0x34/0xa80
[  632.972794][T14074]  __d_alloc+0x34/0xa80
[  632.972841][T14074]  d_alloc+0x4a/0x1e0
[  632.972887][T14074]  lookup_one_qstr_excl+0x175/0x250
[  632.972942][T14074]  start_dirop+0x59/0xb0
[  632.972978][T14074]  simple_start_creating+0xf9/0x110
[  632.973016][T14074]  ? __pfx_simple_start_creating+0x10/0x10
[  632.973054][T14074]  ? mntput+0x70/0xa0
[  632.973087][T14074]  ? simple_pin_fs+0xa3/0x190
[  632.973120][T14074]  debugfs_start_creating.part.0+0x82/0x170
[  632.973164][T14074]  __debugfs_create_file+0xb3/0x4f0
[  632.973222][T14074]  debugfs_create_file_full+0x41/0x60
[  632.973270][T14074]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  632.973325][T14074]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  632.973417][T14074]  ? lockdep_init_map_type+0x5c/0x250
[  632.973471][T14074]  preinit_net.part.0+0x24e/0x8f0
[  632.973525][T14074]  copy_net_ns+0x339/0x7c0
[  632.973564][T14074]  create_new_namespaces+0x3ea/0xab0
[  632.973613][T14074]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  632.973656][T14074]  ksys_unshare+0x455/0xab0
[  632.973707][T14074]  ? __pfx_ksys_unshare+0x10/0x10
[  632.973757][T14074]  ? xfd_validate_state+0x129/0x190
[  632.973825][T14074]  __x64_sys_unshare+0x31/0x40
[  632.973872][T14074]  do_syscall_64+0xc9/0xf80
[  632.973917][T14074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  632.973953][T14074] RIP: 0033:0x7f505899acb9
[  632.973981][T14074] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  632.974016][T14074] RSP: 002b:00007f50597a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  632.974050][T14074] RAX: ffffffffffffffda RBX: 00007f5058c15fa0 RCX: 00007f505899acb9
[  632.974074][T14074] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  632.974096][T14074] RBP: 00007f5058a08bf7 R08: 0000000000000000 R09: 0000000000000000
[  632.974117][T14074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  632.974138][T14074] R13: 00007f5058c16038 R14: 00007f5058c15fa0 R15: 00007ffdaaf25ae8
[  632.974184][T14074]  </TASK>
[  634.798710][   T10] smpboot: CPU 1 is now offline
[  634.962564][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  634.969032][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  636.298640][T14116] can0: slcan on ttyS2.
[  636.517650][T14116] can0 (unregistered): slcan off ttyS2.
[  636.963430][T14133] netlink: 'syz.1.1713': attribute type 1 has an invalid length.
[  637.033196][T14133] netlink: 33 bytes leftover after parsing attributes in process `syz.1.1713'.
[  637.289245][T14135] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1714'.
[  637.582706][T14137] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1715'.
[  638.529935][   T30] audit: type=1804 audit(4294967367.799:17): pid=14146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1717" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=28 res=1 errno=0
[  638.925736][T14154] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1719'.
[  639.252480][T14156] sp0: Synchronizing with TNC
[  639.321417][T14161] sp0: Found TNC
[  641.161498][T14182] netlink: 'syz.3.1725': attribute type 12 has an invalid length.
[  641.966760][T14201] FAULT_INJECTION: forcing a failure.
[  641.966760][T14201] name failslab, interval 1, probability 0, space 0, times 0
[  642.117137][T14201] CPU: 0 UID: 0 PID: 14201 Comm: syz.3.1729 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  642.117181][T14201] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  642.117192][T14201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  642.117208][T14201] Call Trace:
[  642.117216][T14201]  <TASK>
[  642.117226][T14201]  dump_stack_lvl+0x100/0x190
[  642.117315][T14201]  should_fail_ex.cold+0x5/0xa
[  642.117357][T14201]  should_failslab+0xc2/0x120
[  642.117393][T14201]  kmem_cache_alloc_noprof+0x83/0x780
[  642.117427][T14201]  ? __kernfs_new_node+0xd2/0x960
[  642.117466][T14201]  ? __kernfs_new_node+0xd2/0x960
[  642.117498][T14201]  __kernfs_new_node+0xd2/0x960
[  642.117536][T14201]  ? __pfx___kernfs_new_node+0x10/0x10
[  642.117578][T14201]  ? find_held_lock+0x2b/0x80
[  642.117602][T14201]  ? kernfs_root+0xee/0x2a0
[  642.117634][T14201]  ? kernfs_root+0xee/0x2a0
[  642.117673][T14201]  kernfs_new_node+0x11b/0x1a0
[  642.117716][T14201]  __kernfs_create_file+0x53/0x350
[  642.117747][T14201]  sysfs_add_file_mode_ns+0x207/0x3c0
[  642.117787][T14201]  sysfs_merge_group+0x194/0x340
[  642.117823][T14201]  ? __pfx_sysfs_merge_group+0x10/0x10
[  642.117863][T14201]  ? __pfx_dev_add_physical_location+0x10/0x10
[  642.117898][T14201]  ? bus_to_subsys+0x114/0x150
[  642.117939][T14201]  dpm_sysfs_add+0x237/0x280
[  642.117974][T14201]  device_add+0x9ef/0x1950
[  642.118012][T14201]  ? __pfx_device_add+0x10/0x10
[  642.118052][T14201]  ? kfree_const+0x5a/0x70
[  642.118086][T14201]  device_create_groups_vargs+0x1f8/0x270
[  642.118127][T14201]  device_create+0xed/0x130
[  642.118168][T14201]  ? __pfx_device_create+0x10/0x10
[  642.118205][T14201]  ? timer_init_key+0x14c/0x2c0
[  642.118240][T14201]  ? ieee80211_roc_setup+0x136/0x270
[  642.118278][T14201]  ? ieee80211_alloc_hw_nm+0x19c3/0x22a0
[  642.118323][T14201]  mac80211_hwsim_new_radio+0x37f/0x57c0
[  642.118374][T14201]  ? __asan_memset+0x23/0x50
[  642.118401][T14201]  ? __nla_validate_parse+0x1e7/0x28b0
[  642.118430][T14201]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  642.118476][T14201]  hwsim_new_radio_nl+0xc1f/0x1340
[  642.118511][T14201]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  642.118543][T14201]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  642.118589][T14201]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  642.118617][T14201]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  642.118652][T14201]  genl_family_rcv_msg_doit+0x214/0x300
[  642.118682][T14201]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  642.118709][T14201]  ? genl_get_cmd+0x3ef/0x720
[  642.118740][T14201]  ? bpf_lsm_capable+0x9/0x10
[  642.118761][T14201]  ? security_capable+0x80/0x260
[  642.118793][T14201]  ? ns_capable+0xd2/0xf0
[  642.118822][T14201]  genl_rcv_msg+0x560/0x800
[  642.118851][T14201]  ? __pfx_genl_rcv_msg+0x10/0x10
[  642.118878][T14201]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  642.118925][T14201]  netlink_rcv_skb+0x159/0x420
[  642.118965][T14201]  ? __pfx_genl_rcv_msg+0x10/0x10
[  642.118992][T14201]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  642.119043][T14201]  ? netlink_deliver_tap+0x1ae/0xcc0
[  642.119084][T14201]  genl_rcv+0x28/0x40
[  642.119106][T14201]  netlink_unicast+0x5aa/0x870
[  642.119149][T14201]  ? __pfx_netlink_unicast+0x10/0x10
[  642.119199][T14201]  netlink_sendmsg+0x8b0/0xda0
[  642.119242][T14201]  ? __pfx_netlink_sendmsg+0x10/0x10
[  642.119286][T14201]  ? __import_iovec+0x1d2/0x640
[  642.119327][T14201]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  642.119365][T14201]  ____sys_sendmsg+0xa54/0xc30
[  642.119395][T14201]  ? __pfx_____sys_sendmsg+0x10/0x10
[  642.119420][T14201]  ? __pfx___futex_wait+0x10/0x10
[  642.119449][T14201]  ? __pfx_futex_wake_mark+0x10/0x10
[  642.119494][T14201]  ___sys_sendmsg+0x190/0x1e0
[  642.119525][T14201]  ? __pfx____sys_sendmsg+0x10/0x10
[  642.119568][T14201]  ? find_held_lock+0x2b/0x80
[  642.119611][T14201]  __sys_sendmsg+0x170/0x220
[  642.119648][T14201]  ? __pfx___sys_sendmsg+0x10/0x10
[  642.119685][T14201]  ? __x64_sys_futex+0x34f/0x4d0
[  642.119736][T14201]  do_syscall_64+0xc9/0xf80
[  642.119768][T14201]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  642.119794][T14201] RIP: 0033:0x7f28a059acb9
[  642.119815][T14201] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  642.119841][T14201] RSP: 002b:00007f28a1419028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  642.119867][T14201] RAX: ffffffffffffffda RBX: 00007f28a0815fa0 RCX: 00007f28a059acb9
[  642.119884][T14201] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  642.119900][T14201] RBP: 00007f28a0608bf7 R08: 0000000000000000 R09: 0000000000000000
[  642.119915][T14201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  642.119930][T14201] R13: 00007f28a0816038 R14: 00007f28a0815fa0 R15: 00007ffdd0dd09d8
[  642.119962][T14201]  </TASK>
[  643.250354][T14205] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  643.390739][T14213] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1731'.
[  643.983484][T14221] netlink: 'syz.0.1734': attribute type 1 has an invalid length.
[  644.011769][T14221] netlink: 33 bytes leftover after parsing attributes in process `syz.0.1734'.
[  648.914689][T14314] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1757'.
[  651.849538][T10409] Bluetooth: hci2: unexpected event 0x20 length: 123 > 7
[  652.411135][   T10] smpboot: CPU 1 is now offline
[  653.067776][T14413] openvswitch: ovs_: Dropping previously announced user features
[  653.334488][T14422] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1778'.
[  653.434932][T14400] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1775'.
[  660.507690][T14561] FAULT_INJECTION: forcing a failure.
[  660.507690][T14561] name failslab, interval 1, probability 0, space 0, times 0
[  660.545333][T14567] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1802'.
[  660.557816][T14561] CPU: 0 UID: 0 PID: 14561 Comm: syz.1.1800 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  660.557859][T14561] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  660.557870][T14561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  660.557886][T14561] Call Trace:
[  660.557895][T14561]  <TASK>
[  660.557911][T14561]  dump_stack_lvl+0x100/0x190
[  660.557946][T14561]  should_fail_ex.cold+0x5/0xa
[  660.557987][T14561]  should_failslab+0xc2/0x120
[  660.558022][T14561]  __kmalloc_cache_noprof+0x80/0x810
[  660.558048][T14561]  ? __queue_work+0x436/0x10f0
[  660.558090][T14561]  ? kobject_uevent_env+0x263/0x18b0
[  660.558132][T14561]  ? kobject_uevent_env+0x263/0x18b0
[  660.558169][T14561]  kobject_uevent_env+0x263/0x18b0
[  660.558210][T14561]  ? queue_work_on+0x11b/0x1e0
[  660.558248][T14561]  ? bus_to_subsys+0x114/0x150
[  660.558290][T14561]  driver_bound+0x13e/0x220
[  660.558321][T14561]  device_bind_driver+0x3a/0x70
[  660.558350][T14561]  mac80211_hwsim_new_radio+0x3fb/0x57c0
[  660.558401][T14561]  ? __asan_memset+0x23/0x50
[  660.558428][T14561]  ? __nla_validate_parse+0x1e7/0x28b0
[  660.558457][T14561]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  660.558503][T14561]  hwsim_new_radio_nl+0xc1f/0x1340
[  660.558537][T14561]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  660.558571][T14561]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  660.558616][T14561]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  660.558644][T14561]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  660.558678][T14561]  genl_family_rcv_msg_doit+0x214/0x300
[  660.558708][T14561]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  660.558735][T14561]  ? genl_get_cmd+0x3ef/0x720
[  660.558766][T14561]  ? bpf_lsm_capable+0x9/0x10
[  660.558788][T14561]  ? security_capable+0x80/0x260
[  660.558819][T14561]  ? ns_capable+0xd2/0xf0
[  660.558849][T14561]  genl_rcv_msg+0x560/0x800
[  660.558878][T14561]  ? __pfx_genl_rcv_msg+0x10/0x10
[  660.558914][T14561]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  660.558961][T14561]  netlink_rcv_skb+0x159/0x420
[  660.559000][T14561]  ? __pfx_genl_rcv_msg+0x10/0x10
[  660.559028][T14561]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  660.559079][T14561]  ? netlink_deliver_tap+0x1ae/0xcc0
[  660.559121][T14561]  genl_rcv+0x28/0x40
[  660.559142][T14561]  netlink_unicast+0x5aa/0x870
[  660.559186][T14561]  ? __pfx_netlink_unicast+0x10/0x10
[  660.559235][T14561]  netlink_sendmsg+0x8b0/0xda0
[  660.559279][T14561]  ? __pfx_netlink_sendmsg+0x10/0x10
[  660.559321][T14561]  ? __import_iovec+0x1d2/0x640
[  660.559364][T14561]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  660.559400][T14561]  ____sys_sendmsg+0xa54/0xc30
[  660.559430][T14561]  ? __pfx_____sys_sendmsg+0x10/0x10
[  660.559461][T14561]  ? try_to_wake_up+0x644/0x1a60
[  660.559494][T14561]  ___sys_sendmsg+0x190/0x1e0
[  660.559524][T14561]  ? __pfx____sys_sendmsg+0x10/0x10
[  660.559553][T14561]  ? futex_private_hash_put+0x107/0x1c0
[  660.559603][T14561]  ? find_held_lock+0x2b/0x80
[  660.559646][T14561]  __sys_sendmsg+0x170/0x220
[  660.559684][T14561]  ? __pfx___sys_sendmsg+0x10/0x10
[  660.559720][T14561]  ? __x64_sys_futex+0x34f/0x4d0
[  660.559771][T14561]  do_syscall_64+0xc9/0xf80
[  660.559804][T14561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  660.559830][T14561] RIP: 0033:0x7fec77f9acb9
[  660.559850][T14561] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  660.559875][T14561] RSP: 002b:00007fec78e98028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  660.559899][T14561] RAX: ffffffffffffffda RBX: 00007fec78215fa0 RCX: 00007fec77f9acb9
[  660.559922][T14561] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  660.559939][T14561] RBP: 00007fec78008bf7 R08: 0000000000000000 R09: 0000000000000000
[  660.559955][T14561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  660.559971][T14561] R13: 00007fec78216038 R14: 00007fec78215fa0 R15: 00007ffdbb58dd68
[  660.560003][T14561]  </TASK>
[  662.868621][T14579] FAULT_INJECTION: forcing a failure.
[  662.868621][T14579] name failslab, interval 1, probability 0, space 0, times 0
[  663.041737][T14579] CPU: 0 UID: 0 PID: 14579 Comm: syz.2.1805 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  663.041781][T14579] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  663.041792][T14579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  663.041808][T14579] Call Trace:
[  663.041816][T14579]  <TASK>
[  663.041833][T14579]  dump_stack_lvl+0x100/0x190
[  663.041868][T14579]  should_fail_ex.cold+0x5/0xa
[  663.041908][T14579]  should_failslab+0xc2/0x120
[  663.041944][T14579]  kmem_cache_alloc_lru_noprof+0x8e/0x7d0
[  663.041981][T14579]  ? alloc_inode+0x183/0x250
[  663.042022][T14579]  ? alloc_inode+0x183/0x250
[  663.042056][T14579]  ? find_held_lock+0x2b/0x80
[  663.042080][T14579]  alloc_inode+0x183/0x250
[  663.042116][T14579]  new_inode+0x22/0x1c0
[  663.042154][T14579]  nfsd_mkdir+0x78/0x460
[  663.042192][T14579]  ? dput.part.0+0xdd/0x570
[  663.042230][T14579]  nfsd_fill_super+0x3f9/0x560
[  663.042271][T14579]  ? __pfx_nfsd_fill_super+0x10/0x10
[  663.042310][T14579]  get_tree_keyed+0x10e/0x1d0
[  663.042339][T14579]  vfs_get_tree+0x92/0x320
[  663.042378][T14579]  path_mount+0x7d0/0x23c0
[  663.042420][T14579]  ? __pfx_path_mount+0x10/0x10
[  663.042454][T14579]  ? kmem_cache_free+0x143/0x720
[  663.042480][T14579]  ? strncpy_from_user+0x19d/0x2d0
[  663.042514][T14579]  ? putname+0xf5/0x1a0
[  663.042549][T14579]  ? putname+0xf5/0x1a0
[  663.042578][T14579]  ? putname+0xfa/0x1a0
[  663.042613][T14579]  ? __x64_sys_mount+0x293/0x310
[  663.042644][T14579]  __x64_sys_mount+0x293/0x310
[  663.042678][T14579]  ? __pfx___x64_sys_mount+0x10/0x10
[  663.042720][T14579]  do_syscall_64+0xc9/0xf80
[  663.042751][T14579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  663.042777][T14579] RIP: 0033:0x7f94bab9acb9
[  663.042797][T14579] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  663.042826][T14579] RSP: 002b:00007f94bba95028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  663.042851][T14579] RAX: ffffffffffffffda RBX: 00007f94bae15fa0 RCX: 00007f94bab9acb9
[  663.042868][T14579] RDX: 0000200000000580 RSI: 00002000000000c0 RDI: 0000000000000000
[  663.042884][T14579] RBP: 00007f94bac08bf7 R08: 0000000000000000 R09: 0000000000000000
[  663.042899][T14579] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[  663.042914][T14579] R13: 00007f94bae16038 R14: 00007f94bae15fa0 R15: 00007ffdb5d31268
[  663.042946][T14579]  </TASK>
[  663.650966][T14581] FAULT_INJECTION: forcing a failure.
[  663.650966][T14581] name fail_futex, interval 1, probability 0, space 0, times 0
[  663.727411][T14581] CPU: 0 UID: 0 PID: 14581 Comm: syz.3.1803 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  663.727454][T14581] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  663.727465][T14581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  663.727480][T14581] Call Trace:
[  663.727488][T14581]  <TASK>
[  663.727505][T14581]  dump_stack_lvl+0x100/0x190
[  663.727555][T14581]  should_fail_ex.cold+0x5/0xa
[  663.727594][T14581]  get_futex_key+0x106f/0x1620
[  663.727628][T14581]  ? __pfx_get_futex_key+0x10/0x10
[  663.727668][T14581]  futex_wake+0xea/0x530
[  663.727708][T14581]  ? __pfx_futex_wake+0x10/0x10
[  663.727752][T14581]  ? exit_mm_release+0x19/0x30
[  663.727794][T14581]  do_futex+0x32b/0x350
[  663.727827][T14581]  ? __pfx_do_futex+0x10/0x10
[  663.727858][T14581]  ? __might_fault+0xc5/0x140
[  663.727892][T14581]  mm_release+0x24a/0x2f0
[  663.727921][T14581]  do_exit+0x675/0x2a30
[  663.727960][T14581]  ? __pfx_do_exit+0x10/0x10
[  663.727995][T14581]  ? do_raw_spin_lock+0x128/0x260
[  663.728031][T14581]  ? find_held_lock+0x2b/0x80
[  663.728054][T14581]  ? get_signal+0x7e0/0x21e0
[  663.728084][T14581]  do_group_exit+0xd5/0x2a0
[  663.728122][T14581]  get_signal+0x1ec7/0x21e0
[  663.728160][T14581]  ? __pfx_get_signal+0x10/0x10
[  663.728190][T14581]  ? do_futex+0x192/0x350
[  663.728226][T14581]  arch_do_signal_or_restart+0x91/0x770
[  663.728261][T14581]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  663.728303][T14581]  ? __pfx___x64_sys_futex+0x10/0x10
[  663.728342][T14581]  exit_to_user_mode_loop+0x86/0x4b0
[  663.728376][T14581]  ? rcu_is_watching+0x12/0xc0
[  663.728402][T14581]  do_syscall_64+0x4ea/0xf80
[  663.728433][T14581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  663.728458][T14581] RIP: 0033:0x7f28a059acb9
[  663.728476][T14581] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  663.728499][T14581] RSP: 002b:00007f28a13f80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  663.728522][T14581] RAX: fffffffffffffe00 RBX: 00007f28a0816098 RCX: 00007f28a059acb9
[  663.728538][T14581] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f28a0816098
[  663.728553][T14581] RBP: 00007f28a0816090 R08: 0000000000000000 R09: 0000000000000000
[  663.728568][T14581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  663.728582][T14581] R13: 00007f28a0816128 R14: 00007ffdd0dd08f0 R15: 00007ffdd0dd09d8
[  663.728613][T14581]  </TASK>
[  666.649576][T14637] FAULT_INJECTION: forcing a failure.
[  666.649576][T14637] name failslab, interval 1, probability 0, space 0, times 0
[  666.728083][T14637] CPU: 0 UID: 0 PID: 14637 Comm: syz.0.1818 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  666.728127][T14637] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  666.728138][T14637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  666.728153][T14637] Call Trace:
[  666.728161][T14637]  <TASK>
[  666.728171][T14637]  dump_stack_lvl+0x100/0x190
[  666.728205][T14637]  should_fail_ex.cold+0x5/0xa
[  666.728251][T14637]  should_failslab+0xc2/0x120
[  666.728287][T14637]  __kmalloc_cache_node_noprof+0x83/0x840
[  666.728324][T14637]  ? __alloc_workqueue+0xf78/0x1880
[  666.728357][T14637]  ? lockdep_init_map_type+0x5c/0x250
[  666.728395][T14637]  ? __alloc_workqueue+0xf78/0x1880
[  666.728427][T14637]  __alloc_workqueue+0xf78/0x1880
[  666.728474][T14637]  alloc_workqueue_noprof+0xd2/0x200
[  666.728507][T14637]  ? __pfx_alloc_workqueue_noprof+0x10/0x10
[  666.728543][T14637]  ? rcu_is_watching+0x12/0xc0
[  666.728566][T14637]  ? ieee80211_register_hw+0x1534/0x4040
[  666.728606][T14637]  ? trace_kmalloc+0x83/0xb0
[  666.728639][T14637]  ? __kmalloc_noprof+0x365/0x9c0
[  666.728662][T14637]  ? find_held_lock+0x2b/0x80
[  666.728696][T14637]  ieee80211_register_hw+0x1ec3/0x4040
[  666.728738][T14637]  ? try_to_take_rt_mutex+0x712/0xf90
[  666.728782][T14637]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  666.728820][T14637]  ? __pfx___debug_object_init+0x10/0x10
[  666.728859][T14637]  ? find_held_lock+0x2b/0x80
[  666.728883][T14637]  ? net_generic+0xea/0x2a0
[  666.728913][T14637]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  666.728941][T14637]  ? __hrtimer_setup+0x178/0x280
[  666.728982][T14637]  mac80211_hwsim_new_radio+0x2847/0x57c0
[  666.729038][T14637]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  666.729084][T14637]  hwsim_new_radio_nl+0xc1f/0x1340
[  666.729119][T14637]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  666.729152][T14637]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  666.729197][T14637]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  666.729225][T14637]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  666.729267][T14637]  genl_family_rcv_msg_doit+0x214/0x300
[  666.729298][T14637]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  666.729325][T14637]  ? genl_get_cmd+0x3ef/0x720
[  666.729356][T14637]  ? bpf_lsm_capable+0x9/0x10
[  666.729378][T14637]  ? security_capable+0x80/0x260
[  666.729410][T14637]  ? ns_capable+0xd2/0xf0
[  666.729441][T14637]  genl_rcv_msg+0x560/0x800
[  666.729477][T14637]  ? __pfx_genl_rcv_msg+0x10/0x10
[  666.729505][T14637]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  666.729551][T14637]  netlink_rcv_skb+0x159/0x420
[  666.729590][T14637]  ? __pfx_genl_rcv_msg+0x10/0x10
[  666.729618][T14637]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  666.729669][T14637]  ? netlink_deliver_tap+0x1ae/0xcc0
[  666.729710][T14637]  genl_rcv+0x28/0x40
[  666.729732][T14637]  netlink_unicast+0x5aa/0x870
[  666.729776][T14637]  ? __pfx_netlink_unicast+0x10/0x10
[  666.729826][T14637]  netlink_sendmsg+0x8b0/0xda0
[  666.729870][T14637]  ? __pfx_netlink_sendmsg+0x10/0x10
[  666.729907][T14637]  ? __import_iovec+0x1d2/0x640
[  666.729949][T14637]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  666.729985][T14637]  ____sys_sendmsg+0xa54/0xc30
[  666.730015][T14637]  ? __pfx_____sys_sendmsg+0x10/0x10
[  666.730046][T14637]  ? try_to_wake_up+0x644/0x1a60
[  666.730079][T14637]  ___sys_sendmsg+0x190/0x1e0
[  666.730110][T14637]  ? __pfx____sys_sendmsg+0x10/0x10
[  666.730138][T14637]  ? futex_private_hash_put+0x107/0x1c0
[  666.730182][T14637]  ? find_held_lock+0x2b/0x80
[  666.730225][T14637]  __sys_sendmsg+0x170/0x220
[  666.730262][T14637]  ? __pfx___sys_sendmsg+0x10/0x10
[  666.730299][T14637]  ? __x64_sys_futex+0x34f/0x4d0
[  666.730350][T14637]  do_syscall_64+0xc9/0xf80
[  666.730382][T14637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  666.730407][T14637] RIP: 0033:0x7f505899acb9
[  666.730426][T14637] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  666.730451][T14637] RSP: 002b:00007f50597a8028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  666.730480][T14637] RAX: ffffffffffffffda RBX: 00007f5058c15fa0 RCX: 00007f505899acb9
[  666.730496][T14637] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  666.730512][T14637] RBP: 00007f5058a08bf7 R08: 0000000000000000 R09: 0000000000000000
[  666.730527][T14637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  666.730543][T14637] R13: 00007f5058c16038 R14: 00007f5058c15fa0 R15: 00007ffdaaf25ae8
[  666.730574][T14637]  </TASK>
[  667.825602][T14641] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  668.593113][T14656] netlink: 'syz.2.1822': attribute type 7 has an invalid length.
[  668.601071][T14656] netlink: 17 bytes leftover after parsing attributes in process `syz.2.1822'.
[  668.613332][T14656] blkio.reset_stats is deprecated
[  668.863216][T14658] Invalid ELF header magic: != ELF
[  669.384860][T14672] FAULT_INJECTION: forcing a failure.
[  669.384860][T14672] name failslab, interval 1, probability 0, space 0, times 0
[  669.401579][T14672] CPU: 0 UID: 0 PID: 14672 Comm: syz.1.1829 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  669.401640][T14672] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  669.401656][T14672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  669.401678][T14672] Call Trace:
[  669.401690][T14672]  <TASK>
[  669.401705][T14672]  dump_stack_lvl+0x100/0x190
[  669.401753][T14672]  should_fail_ex.cold+0x5/0xa
[  669.401811][T14672]  should_failslab+0xc2/0x120
[  669.401860][T14672]  ? ieee80211_register_hw+0x1534/0x4040
[  669.401912][T14672]  __kmalloc_noprof+0xf6/0x9c0
[  669.401960][T14672]  ? ieee80211_register_hw+0x1534/0x4040
[  669.402013][T14672]  ieee80211_register_hw+0x1534/0x4040
[  669.402073][T14672]  ? try_to_take_rt_mutex+0x712/0xf90
[  669.402134][T14672]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  669.402187][T14672]  ? __pfx___debug_object_init+0x10/0x10
[  669.402240][T14672]  ? find_held_lock+0x2b/0x80
[  669.402273][T14672]  ? net_generic+0xea/0x2a0
[  669.402324][T14672]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  669.402363][T14672]  ? __hrtimer_setup+0x178/0x280
[  669.402420][T14672]  mac80211_hwsim_new_radio+0x2847/0x57c0
[  669.402498][T14672]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  669.402565][T14672]  hwsim_new_radio_nl+0xc1f/0x1340
[  669.402613][T14672]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  669.402665][T14672]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  669.402725][T14672]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  669.402764][T14672]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  669.402810][T14672]  genl_family_rcv_msg_doit+0x214/0x300
[  669.402852][T14672]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  669.402896][T14672]  ? genl_get_cmd+0x3ef/0x720
[  669.402940][T14672]  ? bpf_lsm_capable+0x9/0x10
[  669.402969][T14672]  ? security_capable+0x80/0x260
[  669.403014][T14672]  ? ns_capable+0xd2/0xf0
[  669.403055][T14672]  genl_rcv_msg+0x560/0x800
[  669.403096][T14672]  ? __pfx_genl_rcv_msg+0x10/0x10
[  669.403132][T14672]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  669.403193][T14672]  netlink_rcv_skb+0x159/0x420
[  669.403247][T14672]  ? __pfx_genl_rcv_msg+0x10/0x10
[  669.403294][T14672]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  669.403367][T14672]  ? netlink_deliver_tap+0x1ae/0xcc0
[  669.403426][T14672]  genl_rcv+0x28/0x40
[  669.403458][T14672]  netlink_unicast+0x5aa/0x870
[  669.403520][T14672]  ? __pfx_netlink_unicast+0x10/0x10
[  669.403593][T14672]  netlink_sendmsg+0x8b0/0xda0
[  669.403656][T14672]  ? __pfx_netlink_sendmsg+0x10/0x10
[  669.403708][T14672]  ? __import_iovec+0x1d2/0x640
[  669.403765][T14672]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  669.403817][T14672]  ____sys_sendmsg+0xa54/0xc30
[  669.403860][T14672]  ? __pfx_____sys_sendmsg+0x10/0x10
[  669.403895][T14672]  ? __pfx___futex_wait+0x10/0x10
[  669.403937][T14672]  ? __pfx_futex_wake_mark+0x10/0x10
[  669.404001][T14672]  ___sys_sendmsg+0x190/0x1e0
[  669.404044][T14672]  ? __pfx____sys_sendmsg+0x10/0x10
[  669.404105][T14672]  ? find_held_lock+0x2b/0x80
[  669.404167][T14672]  __sys_sendmsg+0x170/0x220
[  669.404219][T14672]  ? __pfx___sys_sendmsg+0x10/0x10
[  669.404286][T14672]  ? __x64_sys_futex+0x34f/0x4d0
[  669.404360][T14672]  do_syscall_64+0xc9/0xf80
[  669.404408][T14672]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  669.404444][T14672] RIP: 0033:0x7fec77f9acb9
[  669.404474][T14672] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  669.404508][T14672] RSP: 002b:00007fec78e98028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  669.404543][T14672] RAX: ffffffffffffffda RBX: 00007fec78215fa0 RCX: 00007fec77f9acb9
[  669.404567][T14672] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  669.404589][T14672] RBP: 00007fec78008bf7 R08: 0000000000000000 R09: 0000000000000000
[  669.404611][T14672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  669.404632][T14672] R13: 00007fec78216038 R14: 00007fec78215fa0 R15: 00007ffdbb58dd68
[  669.404678][T14672]  </TASK>
[  671.692558][T14711] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1837'.
[  675.697087][    T9] smpboot: CPU 1 is now offline
[  675.980277][T14774] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  676.027644][T14678] ------------[ cut here ]------------
[  676.029408][T14678] 
[  676.029419][T14678] ======================================================
[  676.029432][T14678] WARNING: possible circular locking dependency detected
[  676.029449][T14678] syzkaller #0 Tainted: G          I  L     
[  676.029466][T14678] ------------------------------------------------------
[  676.029477][T14678] syz.3.1823/14678 is trying to acquire lock:
[  676.029498][T14678] ffffffff8e4eeee0 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x61/0x80
[  676.029586][T14678] 
[  676.029586][T14678] but task is already holding lock:
[  676.029595][T14678] ffff8880b843add8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  676.029660][T14678] 
[  676.029660][T14678] which lock already depends on the new lock.
[  676.029660][T14678] 
[  676.029670][T14678] 
[  676.029670][T14678] the existing dependency chain (in reverse order) is:
[  676.029681][T14678] 
[  676.029681][T14678] -> #4 (&rq->__lock){-.-.}-{2:2}:
[  676.029721][T14678]        _raw_spin_lock_nested+0x31/0x40
[  676.029750][T14678]        raw_spin_rq_lock_nested+0x29/0x130
[  676.029779][T14678]        task_rq_lock+0xcf/0x490
[  676.029809][T14678]        cgroup_move_task+0x81/0x2a0
[  676.029841][T14678]        css_set_move_task+0x285/0x600
[  676.029879][T14678]        cgroup_post_fork+0x1fe/0x9b0
[  676.029909][T14678]        copy_process+0x57b0/0x7890
[  676.029946][T14678]        kernel_clone+0xfc/0x930
[  676.029982][T14678]        user_mode_thread+0xcc/0x110
[  676.030019][T14678]        rest_init+0x21/0x260
[  676.030058][T14678]        start_kernel+0x47a/0x480
[  676.030108][T14678]        x86_64_start_reservations+0x24/0x30
[  676.030138][T14678]        x86_64_start_kernel+0x122/0x130
[  676.030166][T14678]        common_startup_64+0x13e/0x148
[  676.030200][T14678] 
[  676.030200][T14678] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[  676.030236][T14678]        _raw_spin_lock_irqsave+0x3a/0x60
[  676.030265][T14678]        try_to_wake_up+0xb2/0x1a60
[  676.030293][T14678]        __wake_up_common+0x135/0x1f0
[  676.030332][T14678]        __wake_up+0x31/0x60
[  676.030362][T14678]        tty_port_default_wakeup+0x47/0x60
[  676.030389][T14678]        serial8250_tx_chars+0x68f/0x860
[  676.030434][T14678]        serial8250_handle_irq+0x73e/0xcb0
[  676.030462][T14678]        serial8250_default_handle_irq+0x9e/0x270
[  676.030492][T14678]        serial8250_interrupt+0xf8/0x1d0
[  676.030524][T14678]        __handle_irq_event_percpu+0x232/0x800
[  676.030551][T14678]        handle_irq_event+0xab/0x1e0
[  676.030577][T14678]        handle_edge_irq+0x375/0x970
[  676.030620][T14678]        __common_interrupt+0xd8/0x2f0
[  676.030663][T14678]        common_interrupt+0xb9/0xe0
[  676.030705][T14678]        asm_common_interrupt+0x26/0x40
[  676.030734][T14678]        vfs_writev+0x0/0xe10
[  676.030763][T14678]        do_writev+0x28a/0x340
[  676.030790][T14678]        do_syscall_64+0xc9/0xf80
[  676.030822][T14678]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  676.030851][T14678] 
[  676.030851][T14678] -> #2 (&tty->write_wait){-.-.}-{3:3}:
[  676.030940][T14678]        _raw_spin_lock_irqsave+0x3a/0x60
[  676.030969][T14678]        __wake_up+0x1c/0x60
[  676.030999][T14678]        tty_port_default_wakeup+0x47/0x60
[  676.031025][T14678]        serial8250_tx_chars+0x68f/0x860
[  676.031070][T14678]        serial8250_handle_irq+0x73e/0xcb0
[  676.031098][T14678]        serial8250_default_handle_irq+0x9e/0x270
[  676.031128][T14678]        serial8250_interrupt+0xf8/0x1d0
[  676.031164][T14678]        __handle_irq_event_percpu+0x232/0x800
[  676.031191][T14678]        handle_irq_event+0xab/0x1e0
[  676.031217][T14678]        handle_edge_irq+0x375/0x970
[  676.031262][T14678]        __common_interrupt+0xd8/0x2f0
[  676.031304][T14678]        common_interrupt+0xb9/0xe0
[  676.031346][T14678]        asm_common_interrupt+0x26/0x40
[  676.031374][T14678]        pv_native_safe_halt+0xf/0x20
[  676.031404][T14678]        default_idle+0x9/0x10
[  676.031440][T14678]        default_idle_call+0x6c/0xb0
[  676.031478][T14678]        do_idle+0x35b/0x4b0
[  676.031504][T14678]        cpu_startup_entry+0x4f/0x60
[  676.031532][T14678]        rest_init+0x251/0x260
[  676.031572][T14678]        start_kernel+0x47a/0x480
[  676.031615][T14678]        x86_64_start_reservations+0x24/0x30
[  676.031644][T14678]        x86_64_start_kernel+0x122/0x130
[  676.031671][T14678]        common_startup_64+0x13e/0x148
[  676.031704][T14678] 
[  676.031704][T14678] -> #1 (&port_lock_key){-.-.}-{3:3}:
[  676.031740][T14678]        _raw_spin_lock_irqsave+0x3a/0x60
[  676.031768][T14678]        serial8250_console_write+0x17e/0x1900
[  676.031798][T14678]        console_flush_one_record+0x790/0xe50
[  676.031825][T14678]        console_unlock+0x103/0x260
[  676.031849][T14678]        vprintk_emit+0x407/0x6b0
[  676.031881][T14678]        _printk+0xcf/0x110
[  676.031905][T14678]        register_console.cold+0xc0/0x248
[  676.031933][T14678]        univ8250_console_init+0x6f/0x80
[  676.031970][T14678]        console_init+0x371/0x520
[  676.032002][T14678]        start_kernel+0x300/0x480
[  676.032045][T14678]        x86_64_start_reservations+0x24/0x30
[  676.032074][T14678]        x86_64_start_kernel+0x122/0x130
[  676.032103][T14678]        common_startup_64+0x13e/0x148
[  676.032136][T14678] 
[  676.032136][T14678] -> #0 (console_owner){-.-.}-{0:0}:
[  676.032173][T14678]        __lock_acquire+0x14b8/0x2630
[  676.032220][T14678]        lock_acquire+0x17c/0x330
[  676.032255][T14678]        console_lock_spinning_enable+0x72/0x80
[  676.032301][T14678]        console_flush_one_record+0x739/0xe50
[  676.032328][T14678]        console_unlock+0x103/0x260
[  676.032353][T14678]        vprintk_emit+0x407/0x6b0
[  676.032378][T14678]        _printk+0xcf/0x110
[  676.032401][T14678]        __report_bug.cold+0x15/0x137
[  676.032432][T14678]        report_bug+0xb2/0x220
[  676.032459][T14678]        handle_bug+0x166/0x2a0
[  676.032494][T14678]        exc_invalid_op+0x17/0x50
[  676.032532][T14678]        asm_exc_invalid_op+0x1a/0x20
[  676.032559][T14678]        update_rq_clock+0x34a/0xd30
[  676.032590][T14678]        __schedule+0x1b0d/0x5e10
[  676.032617][T14678]        preempt_schedule_irq+0x50/0x90
[  676.032647][T14678]        irqentry_exit+0x17b/0x670
[  676.032679][T14678]        asm_sysvec_reschedule_ipi+0x1a/0x20
[  676.032710][T14678]        __sanitizer_cov_trace_pc+0x0/0x70
[  676.032739][T14678]        ___pte_offset_map+0xca/0x310
[  676.032778][T14678]        __pte_offset_map_lock+0x8d/0x320
[  676.032818][T14678]        follow_page_pte+0xab/0x1410
[  676.032866][T14678]        __get_user_pages+0x745/0x34d0
[  676.032909][T14678]        get_dump_page+0x27e/0x3d0
[  676.032953][T14678]        dump_user_range+0x18d/0xb50
[  676.032983][T14678]        elf_core_dump+0x2d16/0x3c60
[  676.033015][T14678]        vfs_coredump+0x276c/0x5530
[  676.033043][T14678]        get_signal+0x1f2a/0x21e0
[  676.033076][T14678]        arch_do_signal_or_restart+0x91/0x770
[  676.033117][T14678]        irqentry_exit+0x1f8/0x670
[  676.033159][T14678]        asm_exc_page_fault+0x26/0x30
[  676.033186][T14678] 
[  676.033186][T14678] other info that might help us debug this:
[  676.033186][T14678] 
[  676.033196][T14678] Chain exists of:
[  676.033196][T14678]   console_owner --> &p->pi_lock --> &rq->__lock
[  676.033196][T14678] 
[  676.033239][T14678]  Possible unsafe locking scenario:
[  676.033239][T14678] 
[  676.033248][T14678]        CPU0                    CPU1
[  676.033257][T14678]        ----                    ----
[  676.033266][T14678]   lock(&rq->__lock);
[  676.033284][T14678]                                lock(&p->pi_lock);
[  676.033305][T14678]                                lock(&rq->__lock);
[  676.033325][T14678]   lock(console_owner);
[  676.033344][T14678] 
[  676.033344][T14678]  *** DEADLOCK ***
[  676.033344][T14678] 
[  676.033351][T14678] 6 locks held by syz.3.1823/14678:
[  676.033369][T14678]  #0: ffff88807ba34420 (sb_writers#5){.+.+}-{0:0}, at: get_signal+0x1f2a/0x21e0
[  676.033445][T14678]  #1: ffff88803248a800 (&mm->mmap_lock){++++}-{4:4}, at: dump_user_range+0x151/0xb50
[  676.033513][T14678]  #2: ffffffff8e5e3120 (rcu_read_lock){....}-{1:3}, at: ___pte_offset_map+0x2f/0x310
[  676.033591][T14678]  #3: ffff8880b843add8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  676.033661][T14678]  #4: ffffffff8e5cf320 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x110
[  676.033724][T14678]  #5: ffffffff8e5cf398 (console_srcu){....}-{0:0}, at: console_flush_one_record+0xfd/0xe50
[  676.033790][T14678] 
[  676.033790][T14678] stack backtrace:
[  676.033807][T14678] CPU: 0 UID: 0 PID: 14678 Comm: syz.3.1823 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  676.033853][T14678] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  676.033872][T14678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  676.033891][T14678] Call Trace:
[  676.033900][T14678]  <TASK>
[  676.033912][T14678]  dump_stack_lvl+0x100/0x190
[  676.033945][T14678]  print_circular_bug.cold+0x178/0x1c7
[  676.033992][T14678]  check_noncircular+0x146/0x160
[  676.034033][T14678]  __lock_acquire+0x14b8/0x2630
[  676.034078][T14678]  lock_acquire+0x17c/0x330
[  676.034115][T14678]  ? console_lock_spinning_enable+0x61/0x80
[  676.034163][T14678]  ? console_lock_spinning_enable+0x4a/0x80
[  676.034214][T14678]  console_lock_spinning_enable+0x72/0x80
[  676.034261][T14678]  ? console_lock_spinning_enable+0x61/0x80
[  676.034308][T14678]  console_flush_one_record+0x739/0xe50
[  676.034340][T14678]  ? __pfx_console_flush_one_record+0x10/0x10
[  676.034374][T14678]  ? is_printk_cpu_sync_owner+0x32/0x40
[  676.034409][T14678]  console_unlock+0x103/0x260
[  676.034436][T14678]  ? __pfx_console_unlock+0x10/0x10
[  676.034466][T14678]  ? do_raw_spin_unlock+0x145/0x1e0
[  676.034512][T14678]  ? _printk+0xcf/0x110
[  676.034541][T14678]  vprintk_emit+0x407/0x6b0
[  676.034569][T14678]  ? __pfx_vprintk_emit+0x10/0x10
[  676.034598][T14678]  ? get_page_from_freelist+0xe3d/0x2e10
[  676.034636][T14678]  _printk+0xcf/0x110
[  676.034662][T14678]  ? __pfx__printk+0x10/0x10
[  676.034687][T14678]  ? prepare_alloc_pages+0x16d/0x5f0
[  676.034735][T14678]  ? __report_bug.cold+0x5/0x137
[  676.034767][T14678]  ? __report_bug+0x377/0x3d0
[  676.034796][T14678]  __report_bug.cold+0x15/0x137
[  676.034826][T14678]  ? update_rq_clock+0x34a/0xd30
[  676.034867][T14678]  ? __pfx___report_bug+0x10/0x10
[  676.034900][T14678]  ? __lock_acquire+0x4a5/0x2630
[  676.034941][T14678]  ? update_rq_clock+0x34a/0xd30
[  676.034975][T14678]  report_bug+0xb2/0x220
[  676.035003][T14678]  ? update_rq_clock+0x34a/0xd30
[  676.035035][T14678]  handle_bug+0x166/0x2a0
[  676.035073][T14678]  exc_invalid_op+0x17/0x50
[  676.035113][T14678]  asm_exc_invalid_op+0x1a/0x20
[  676.035141][T14678] RIP: 0010:update_rq_clock+0x34a/0xd30
[  676.035177][T14678] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 c8 eb a2 09 a8 04 0f 84 9e fd ff ff 90 0f 0b 90 e9 95 fd ff ff 90 <0f> 0b 90 e9 51 fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00
[  676.035207][T14678] RSP: 0018:ffffc9000ba96ac0 EFLAGS: 00010046
[  676.035230][T14678] RAX: 0000000000000000 RBX: ffff8880b853adc0 RCX: 0000000000000001
[  676.035250][T14678] RDX: 0000000000000046 RSI: ffffffff8dc1b3c0 RDI: ffffffff8bfa32a0
[  676.035270][T14678] RBP: ffffc9000ba96c68 R08: 0000000000000001 R09: 0000000000000001
[  676.035289][T14678] R10: ffffffff90b771d7 R11: 0000000000000000 R12: ffffffff90b7a254
[  676.035318][T14678] R13: ffff8880b853bbf0 R14: ffff88801e28bd00 R15: ffff8880b853adc0
[  676.035352][T14678]  __schedule+0x1b0d/0x5e10
[  676.035381][T14678]  ? __folio_batch_add_and_move+0x5e5/0xc60
[  676.035434][T14678]  ? __pfx___schedule+0x10/0x10
[  676.035466][T14678]  ? mark_held_locks+0x40/0x70
[  676.035505][T14678]  preempt_schedule_irq+0x50/0x90
[  676.035538][T14678]  irqentry_exit+0x17b/0x670
[  676.035574][T14678]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  676.035605][T14678] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70
[  676.035638][T14678] Code: 86 0c 58 00 48 89 df 5b e9 6d 7f 5d 00 be 03 00 00 00 5b e9 52 94 de 02 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 65 8b 05 a5 85 dd 11 48 8b 34 24 65 48 8b 15 81 85 dd
[  676.035669][T14678] RSP: 0018:ffffc9000ba96d78 EFLAGS: 00000202
[  676.035691][T14678] RAX: 0000000000000000 RBX: 00007f289f477000 RCX: ffffffff825a47cc
[  676.035712][T14678] RDX: 0000000035099007 RSI: 0000000000000000 RDI: ffff88802f6e9e80
[  676.035732][T14678] RBP: 0000000035099067 R08: 0000000000000007 R09: 0000000000000000
[  676.035751][T14678] R10: 0000000035099007 R11: 0000000000000000 R12: 0000000035099007
[  676.035770][T14678] R13: ffff8880289a47d0 R14: ffffc9000ba96ea0 R15: 1ffff92001752dd0
[  676.035795][T14678]  ? ___pte_offset_map+0xbc/0x310
[  676.035838][T14678]  ___pte_offset_map+0xca/0x310
[  676.035884][T14678]  __pte_offset_map_lock+0x8d/0x320
[  676.035926][T14678]  ? __pfx___pte_offset_map_lock+0x10/0x10
[  676.035973][T14678]  follow_page_pte+0xab/0x1410
[  676.036018][T14678]  ? __pfx_follow_page_pte+0x10/0x10
[  676.036063][T14678]  ? __pfx___might_resched+0x10/0x10
[  676.036108][T14678]  ? check_vma_flags+0x39e/0x580
[  676.036152][T14678]  __get_user_pages+0x745/0x34d0
[  676.036203][T14678]  ? __pfx___get_user_pages+0x10/0x10
[  676.036260][T14678]  get_dump_page+0x27e/0x3d0
[  676.036306][T14678]  ? __pfx_get_dump_page+0x10/0x10
[  676.036352][T14678]  ? dump_user_range+0x73b/0xb50
[  676.036387][T14678]  dump_user_range+0x18d/0xb50
[  676.036421][T14678]  ? __pfx_dump_user_range+0x10/0x10
[  676.036459][T14678]  ? __pfx_writenote+0x10/0x10
[  676.036496][T14678]  elf_core_dump+0x2d16/0x3c60
[  676.036545][T14678]  ? __pfx_elf_core_dump+0x10/0x10
[  676.036582][T14678]  ? kasan_save_stack+0x30/0x50
[  676.036618][T14678]  ? kasan_save_track+0x14/0x30
[  676.036654][T14678]  ? __kasan_kmalloc+0xaa/0xb0
[  676.036689][T14678]  ? __kvmalloc_node_noprof+0x34d/0xac0
[  676.036725][T14678]  ? vfs_coredump+0x1f01/0x5530
[  676.036754][T14678]  ? arch_do_signal_or_restart+0x91/0x770
[  676.036795][T14678]  ? irqentry_exit+0x1f8/0x670
[  676.036827][T14678]  ? asm_exc_page_fault+0x26/0x30
[  676.036867][T14678]  ? 0xffffffffff600000
[  676.036916][T14678]  ? vfs_coredump+0x276c/0x5530
[  676.036945][T14678]  vfs_coredump+0x276c/0x5530
[  676.036983][T14678]  ? __pfx_vfs_coredump+0x10/0x10
[  676.037014][T14678]  ? __lock_acquire+0x4a5/0x2630
[  676.037056][T14678]  ? __lock_acquire+0x4a5/0x2630
[  676.037096][T14678]  ? lock_acquire+0x17c/0x330
[  676.037140][T14678]  ? lock_acquire+0x17c/0x330
[  676.037180][T14678]  ? bpf_ksym_find+0x124/0x1c0
[  676.037218][T14678]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  676.037259][T14678]  ? arch_stack_walk+0xa6/0xf0
[  676.037298][T14678]  ? stack_trace_save+0x8e/0xc0
[  676.037330][T14678]  ? __pfx_stack_trace_save+0x10/0x10
[  676.037364][T14678]  ? stack_depot_save_flags+0x27/0x9c0
[  676.037411][T14678]  ? __lock_acquire+0x4a5/0x2630
[  676.037479][T14678]  ? proc_coredump_connector+0x2d3/0x4f0
[  676.037528][T14678]  ? __pfx_proc_coredump_connector+0x10/0x10
[  676.037581][T14678]  ? rcu_is_watching+0x12/0xc0
[  676.037612][T14678]  get_signal+0x1f2a/0x21e0
[  676.037653][T14678]  ? __pfx_get_signal+0x10/0x10
[  676.037686][T14678]  ? find_held_lock+0x2b/0x80
[  676.037714][T14678]  ? bad_area_access_error+0xab/0x1d0
[  676.037746][T14678]  ? fixup_vdso_exception+0x2d1/0x370
[  676.037802][T14678]  arch_do_signal_or_restart+0x91/0x770
[  676.037843][T14678]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  676.037980][T14678]  ? do_user_addr_fault+0x8d6/0x12f0
[  676.038020][T14678]  irqentry_exit+0x1f8/0x670
[  676.038057][T14678]  asm_exc_page_fault+0x26/0x30
[  676.038087][T14678] RIP: 0033:0x20
[  676.038107][T14678] Code: Unable to access opcode bytes at 0xfffffffffffffff6.
[  676.038123][T14678] RSP: 002b:000000000000000b EFLAGS: 00010217
[  676.038147][T14678] RAX: 0000000000000000 RBX: 00007f28a0815fa0 RCX: 00007f28a059acb9
[  676.038167][T14678] RDX: 0000000000000000 RSI: 0000000000000040 RDI: 0000200000000400
[  676.038186][T14678] RBP: 00007f28a0608bf7 R08: 0000000000000000 R09: 0000000000000000
[  676.038205][T14678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  676.038224][T14678] R13: 00007f28a0816038 R14: 00007f28a0815fa0 R15: 00007ffdd0dd09d8
[  676.038253][T14678]  </TASK>
[  677.555308][T14678] debug_locks && !(lock_is_held(&(__rq_lockp(rq))->dep_map) != 0)
[  677.555341][T14678] WARNING: kernel/sched/sched.h:1571 at update_rq_clock+0x34a/0xd30, CPU#0: syz.3.1823/14678
[  677.573441][T14678] Modules linked in:
[  677.577377][T14678] CPU: 0 UID: 0 PID: 14678 Comm: syz.3.1823 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  677.588368][T14678] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  677.594887][T14678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  677.605079][T14678] RIP: 0010:update_rq_clock+0x34a/0xd30
[  677.610698][T14678] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 c8 eb a2 09 a8 04 0f 84 9e fd ff ff 90 0f 0b 90 e9 95 fd ff ff 90 <0f> 0b 90 e9 51 fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00
[  677.630361][T14678] RSP: 0018:ffffc9000ba96ac0 EFLAGS: 00010046
[  677.636472][T14678] RAX: 0000000000000000 RBX: ffff8880b853adc0 RCX: 0000000000000001
[  677.644476][T14678] RDX: 0000000000000046 RSI: ffffffff8dc1b3c0 RDI: ffffffff8bfa32a0
[  677.652484][T14678] RBP: ffffc9000ba96c68 R08: 0000000000000001 R09: 0000000000000001
[  677.660660][T14678] R10: ffffffff90b771d7 R11: 0000000000000000 R12: ffffffff90b7a254
[  677.668674][T14678] R13: ffff8880b853bbf0 R14: ffff88801e28bd00 R15: ffff8880b853adc0
[  677.676679][T14678] FS:  00007f28a14196c0(0000) GS:ffff8881245e3000(0000) knlGS:0000000000000000
[  677.685648][T14678] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  677.692265][T14678] CR2: 00007f78ec9f9b94 CR3: 0000000028e60000 CR4: 00000000003526f0
[  677.700354][T14678] Call Trace:
[  677.703662][T14678]  <TASK>
[  677.706629][T14678]  __schedule+0x1b0d/0x5e10
[  677.711182][T14678]  ? __folio_batch_add_and_move+0x5e5/0xc60
[  677.717137][T14678]  ? __pfx___schedule+0x10/0x10
[  677.722054][T14678]  ? mark_held_locks+0x40/0x70
[  677.726889][T14678]  preempt_schedule_irq+0x50/0x90
[  677.732002][T14678]  irqentry_exit+0x17b/0x670
[  677.736641][T14678]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  677.742145][T14678] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70
[  677.748255][T14678] Code: 86 0c 58 00 48 89 df 5b e9 6d 7f 5d 00 be 03 00 00 00 5b e9 52 94 de 02 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 65 8b 05 a5 85 dd 11 48 8b 34 24 65 48 8b 15 81 85 dd
[  677.767905][T14678] RSP: 0018:ffffc9000ba96d78 EFLAGS: 00000202
[  677.774013][T14678] RAX: 0000000000000000 RBX: 00007f289f477000 RCX: ffffffff825a47cc
[  677.782017][T14678] RDX: 0000000035099007 RSI: 0000000000000000 RDI: ffff88802f6e9e80
[  677.790022][T14678] RBP: 0000000035099067 R08: 0000000000000007 R09: 0000000000000000
[  677.798022][T14678] R10: 0000000035099007 R11: 0000000000000000 R12: 0000000035099007
[  677.806025][T14678] R13: ffff8880289a47d0 R14: ffffc9000ba96ea0 R15: 1ffff92001752dd0
[  677.814041][T14678]  ? ___pte_offset_map+0xbc/0x310
[  677.819126][T14678]  ___pte_offset_map+0xca/0x310
[  677.824019][T14678]  __pte_offset_map_lock+0x8d/0x320
[  677.829268][T14678]  ? __pfx___pte_offset_map_lock+0x10/0x10
[  677.835126][T14678]  follow_page_pte+0xab/0x1410
[  677.840058][T14678]  ? __pfx_follow_page_pte+0x10/0x10
[  677.845398][T14678]  ? __pfx___might_resched+0x10/0x10
[  677.850730][T14678]  ? check_vma_flags+0x39e/0x580
[  677.855716][T14678]  __get_user_pages+0x745/0x34d0
[  677.860724][T14678]  ? __pfx___get_user_pages+0x10/0x10
[  677.866238][T14678]  get_dump_page+0x27e/0x3d0
[  677.870881][T14678]  ? __pfx_get_dump_page+0x10/0x10
[  677.876076][T14678]  ? dump_user_range+0x73b/0xb50
[  677.881052][T14678]  dump_user_range+0x18d/0xb50
[  677.885875][T14678]  ? __pfx_dump_user_range+0x10/0x10
[  677.891215][T14678]  ? __pfx_writenote+0x10/0x10
[  677.896038][T14678]  elf_core_dump+0x2d16/0x3c60
[  677.900857][T14678]  ? __pfx_elf_core_dump+0x10/0x10
[  677.906015][T14678]  ? kasan_save_stack+0x30/0x50
[  677.910910][T14678]  ? kasan_save_track+0x14/0x30
[  677.915801][T14678]  ? __kasan_kmalloc+0xaa/0xb0
[  677.920609][T14678]  ? __kvmalloc_node_noprof+0x34d/0xac0
[  677.926193][T14678]  ? vfs_coredump+0x1f01/0x5530
[  677.931078][T14678]  ? arch_do_signal_or_restart+0x91/0x770
[  677.936845][T14678]  ? irqentry_exit+0x1f8/0x670
[  677.941649][T14678]  ? asm_exc_page_fault+0x26/0x30
[  677.946716][T14678]  ? 0xffffffffff600000
[  677.950959][T14678]  ? vfs_coredump+0x276c/0x5530
[  677.955857][T14678]  vfs_coredump+0x276c/0x5530
[  677.960586][T14678]  ? __pfx_vfs_coredump+0x10/0x10
[  677.965644][T14678]  ? __lock_acquire+0x4a5/0x2630
[  677.970632][T14678]  ? __lock_acquire+0x4a5/0x2630
[  677.975621][T14678]  ? lock_acquire+0x17c/0x330
[  677.980348][T14678]  ? lock_acquire+0x17c/0x330
[  677.985068][T14678]  ? bpf_ksym_find+0x124/0x1c0
[  677.989878][T14678]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  677.996080][T14678]  ? arch_stack_walk+0xa6/0xf0
[  678.000888][T14678]  ? stack_trace_save+0x8e/0xc0
[  678.005780][T14678]  ? __pfx_stack_trace_save+0x10/0x10
[  678.011193][T14678]  ? stack_depot_save_flags+0x27/0x9c0
[  678.016703][T14678]  ? __lock_acquire+0x4a5/0x2630
[  678.021724][T14678]  ? proc_coredump_connector+0x2d3/0x4f0
[  678.027418][T14678]  ? __pfx_proc_coredump_connector+0x10/0x10
[  678.033452][T14678]  ? rcu_is_watching+0x12/0xc0
[  678.038251][T14678]  get_signal+0x1f2a/0x21e0
[  678.042808][T14678]  ? __pfx_get_signal+0x10/0x10
[  678.047700][T14678]  ? find_held_lock+0x2b/0x80
[  678.052409][T14678]  ? bad_area_access_error+0xab/0x1d0
[  678.057817][T14678]  ? fixup_vdso_exception+0x2d1/0x370
[  678.063247][T14678]  arch_do_signal_or_restart+0x91/0x770
[  678.068846][T14678]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  678.075055][T14678]  ? do_user_addr_fault+0x8d6/0x12f0
[  678.080392][T14678]  irqentry_exit+0x1f8/0x670
[  678.085030][T14678]  asm_exc_page_fault+0x26/0x30
[  678.089916][T14678] RIP: 0033:0x20
[  678.093487][T14678] Code: Unable to access opcode bytes at 0xfffffffffffffff6.
[  678.100892][T14678] RSP: 002b:000000000000000b EFLAGS: 00010217
[  678.106993][T14678] RAX: 0000000000000000 RBX: 00007f28a0815fa0 RCX: 00007f28a059acb9
[  678.115012][T14678] RDX: 0000000000000000 RSI: 0000000000000040 RDI: 0000200000000400
[  678.123009][T14678] RBP: 00007f28a0608bf7 R08: 0000000000000000 R09: 0000000000000000
[  678.131005][T14678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  678.139001][T14678] R13: 00007f28a0816038 R14: 00007f28a0815fa0 R15: 00007ffdd0dd09d8
[  678.147185][T14678]  </TASK>
[  678.150239][T14678] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  678.157554][T14678] CPU: 0 UID: 0 PID: 14678 Comm: syz.3.1823 Tainted: G          I  L      syzkaller #0 PREEMPT(full) 
[  678.168537][T14678] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP
[  678.175075][T14678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  678.185158][T14678] Call Trace:
[  678.188461][T14678]  <TASK>
[  678.191415][T14678]  dump_stack_lvl+0x100/0x190
[  678.196136][T14678]  vpanic+0x20d/0x630
[  678.200155][T14678]  panic+0xd1/0xd1
[  678.203902][T14678]  ? __pfx_panic+0x10/0x10
[  678.208354][T14678]  ? check_panic_on_warn+0x1f/0x90
[  678.213550][T14678]  check_panic_on_warn.cold+0x19/0x34
[  678.218957][T14678]  ? update_rq_clock+0x34a/0xd30
[  678.223930][T14678]  __warn.cold+0x191/0x2f8
[  678.228384][T14678]  __report_bug+0x296/0x3d0
[  678.232919][T14678]  ? update_rq_clock+0x34a/0xd30
[  678.237894][T14678]  ? __pfx___report_bug+0x10/0x10
[  678.242951][T14678]  ? __lock_acquire+0x4a5/0x2630
[  678.247941][T14678]  ? update_rq_clock+0x34a/0xd30
[  678.252914][T14678]  report_bug+0xb2/0x220
[  678.257190][T14678]  ? update_rq_clock+0x34a/0xd30
[  678.262168][T14678]  handle_bug+0x166/0x2a0
[  678.266543][T14678]  exc_invalid_op+0x17/0x50
[  678.271088][T14678]  asm_exc_invalid_op+0x1a/0x20
[  678.275981][T14678] RIP: 0010:update_rq_clock+0x34a/0xd30
[  678.281570][T14678] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 c8 eb a2 09 a8 04 0f 84 9e fd ff ff 90 0f 0b 90 e9 95 fd ff ff 90 <0f> 0b 90 e9 51 fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00
[  678.301298][T14678] RSP: 0018:ffffc9000ba96ac0 EFLAGS: 00010046
[  678.307402][T14678] RAX: 0000000000000000 RBX: ffff8880b853adc0 RCX: 0000000000000001
[  678.315403][T14678] RDX: 0000000000000046 RSI: ffffffff8dc1b3c0 RDI: ffffffff8bfa32a0
[  678.323413][T14678] RBP: ffffc9000ba96c68 R08: 0000000000000001 R09: 0000000000000001
[  678.331518][T14678] R10: ffffffff90b771d7 R11: 0000000000000000 R12: ffffffff90b7a254
[  678.339518][T14678] R13: ffff8880b853bbf0 R14: ffff88801e28bd00 R15: ffff8880b853adc0
[  678.347533][T14678]  __schedule+0x1b0d/0x5e10
[  678.352071][T14678]  ? __folio_batch_add_and_move+0x5e5/0xc60
[  678.358014][T14678]  ? __pfx___schedule+0x10/0x10
[  678.362899][T14678]  ? mark_held_locks+0x40/0x70
[  678.367711][T14678]  preempt_schedule_irq+0x50/0x90
[  678.372767][T14678]  irqentry_exit+0x17b/0x670
[  678.377399][T14678]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  678.382896][T14678] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70
[  678.388997][T14678] Code: 86 0c 58 00 48 89 df 5b e9 6d 7f 5d 00 be 03 00 00 00 5b e9 52 94 de 02 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 65 8b 05 a5 85 dd 11 48 8b 34 24 65 48 8b 15 81 85 dd
[  678.408639][T14678] RSP: 0018:ffffc9000ba96d78 EFLAGS: 00000202
[  678.414739][T14678] RAX: 0000000000000000 RBX: 00007f289f477000 RCX: ffffffff825a47cc
[  678.422752][T14678] RDX: 0000000035099007 RSI: 0000000000000000 RDI: ffff88802f6e9e80
[  678.430756][T14678] RBP: 0000000035099067 R08: 0000000000000007 R09: 0000000000000000
[  678.438755][T14678] R10: 0000000035099007 R11: 0000000000000000 R12: 0000000035099007
[  678.446764][T14678] R13: ffff8880289a47d0 R14: ffffc9000ba96ea0 R15: 1ffff92001752dd0
[  678.454785][T14678]  ? ___pte_offset_map+0xbc/0x310
[  678.459889][T14678]  ___pte_offset_map+0xca/0x310
[  678.464803][T14678]  __pte_offset_map_lock+0x8d/0x320
[  678.470060][T14678]  ? __pfx___pte_offset_map_lock+0x10/0x10
[  678.475930][T14678]  follow_page_pte+0xab/0x1410
[  678.480766][T14678]  ? __pfx_follow_page_pte+0x10/0x10
[  678.486106][T14678]  ? __pfx___might_resched+0x10/0x10
[  678.491448][T14678]  ? check_vma_flags+0x39e/0x580
[  678.496436][T14678]  __get_user_pages+0x745/0x34d0
[  678.501441][T14678]  ? __pfx___get_user_pages+0x10/0x10
[  678.506868][T14678]  get_dump_page+0x27e/0x3d0
[  678.511510][T14678]  ? __pfx_get_dump_page+0x10/0x10
[  678.516689][T14678]  ? dump_user_range+0x73b/0xb50
[  678.521671][T14678]  dump_user_range+0x18d/0xb50
[  678.526496][T14678]  ? __pfx_dump_user_range+0x10/0x10
[  678.531823][T14678]  ? __pfx_writenote+0x10/0x10
[  678.536629][T14678]  elf_core_dump+0x2d16/0x3c60
[  678.541450][T14678]  ? __pfx_elf_core_dump+0x10/0x10
[  678.546602][T14678]  ? kasan_save_stack+0x30/0x50
[  678.551498][T14678]  ? kasan_save_track+0x14/0x30
[  678.556390][T14678]  ? __kasan_kmalloc+0xaa/0xb0
[  678.561206][T14678]  ? __kvmalloc_node_noprof+0x34d/0xac0
[  678.566806][T14678]  ? vfs_coredump+0x1f01/0x5530
[  678.571713][T14678]  ? arch_do_signal_or_restart+0x91/0x770
[  678.577490][T14678]  ? irqentry_exit+0x1f8/0x670
[  678.582297][T14678]  ? asm_exc_page_fault+0x26/0x30
[  678.587365][T14678]  ? 0xffffffffff600000
[  678.591581][T14678]  ? vfs_coredump+0x276c/0x5530
[  678.596484][T14678]  vfs_coredump+0x276c/0x5530
[  678.601228][T14678]  ? __pfx_vfs_coredump+0x10/0x10
[  678.606313][T14678]  ? __lock_acquire+0x4a5/0x2630
[  678.611309][T14678]  ? __lock_acquire+0x4a5/0x2630
[  678.616312][T14678]  ? lock_acquire+0x17c/0x330
[  678.621039][T14678]  ? lock_acquire+0x17c/0x330
[  678.625776][T14678]  ? bpf_ksym_find+0x124/0x1c0
[  678.630586][T14678]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  678.636790][T14678]  ? arch_stack_walk+0xa6/0xf0
[  678.641605][T14678]  ? stack_trace_save+0x8e/0xc0
[  678.646594][T14678]  ? __pfx_stack_trace_save+0x10/0x10
[  678.652004][T14678]  ? stack_depot_save_flags+0x27/0x9c0
[  678.657514][T14678]  ? __lock_acquire+0x4a5/0x2630
[  678.662525][T14678]  ? proc_coredump_connector+0x2d3/0x4f0
[  678.668212][T14678]  ? __pfx_proc_coredump_connector+0x10/0x10
[  678.674257][T14678]  ? rcu_is_watching+0x12/0xc0
[  678.679057][T14678]  get_signal+0x1f2a/0x21e0
[  678.683704][T14678]  ? __pfx_get_signal+0x10/0x10
[  678.688692][T14678]  ? find_held_lock+0x2b/0x80
[  678.693425][T14678]  ? bad_area_access_error+0xab/0x1d0
[  678.698853][T14678]  ? fixup_vdso_exception+0x2d1/0x370
[  678.704285][T14678]  arch_do_signal_or_restart+0x91/0x770
[  678.709888][T14678]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  678.716103][T14678]  ? do_user_addr_fault+0x8d6/0x12f0
[  678.721445][T14678]  irqentry_exit+0x1f8/0x670
[  678.726187][T14678]  asm_exc_page_fault+0x26/0x30
[  678.731099][T14678] RIP: 0033:0x20
[  678.734708][T14678] Code: Unable to access opcode bytes at 0xfffffffffffffff6.
[  678.742114][T14678] RSP: 002b:000000000000000b EFLAGS: 00010217
[  678.748227][T14678] RAX: 0000000000000000 RBX: 00007f28a0815fa0 RCX: 00007f28a059acb9
[  678.756238][T14678] RDX: 0000000000000000 RSI: 0000000000000040 RDI: 0000200000000400
[  678.764256][T14678] RBP: 00007f28a0608bf7 R08: 0000000000000000 R09: 0000000000000000
[  678.772370][T14678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  678.780376][T14678] R13: 00007f28a0816038 R14: 00007f28a0815fa0 R15: 00007ffdd0dd09d8
[  678.788392][T14678]  </TASK>
[  678.791523][T14678] Kernel Offset: disabled
[  678.795879][T14678] Rebooting in 86400 seconds..