last executing test programs:

10.722450184s ago: executing program 1 (id=5087):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x3000000, 0x0)
ioctl$auto_TCFLSH2(r0, 0x5453, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)

10.688838851s ago: executing program 1 (id=5088):
read$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
ioperm$auto(0x1, 0x37f, 0x80000000)
setgroups$auto(0x1, &(0x7f0000000000)=0x6)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2a, 0x2, 0x1)
flistxattr$auto(r0, 0x0, 0x4)
getrandom$auto(0x0, 0x6000000, 0x3)

7.538421286s ago: executing program 1 (id=5099):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000011c0)=ANY=[], 0x1058}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r4 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r3, 0x805, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_NETNS_FD={0x8, 0xdb, r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r2, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)
r5 = openat$auto_fops_x16_ro_(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/dormant_links\x00', 0x8040, 0x0)
io_uring_register$auto_IORING_REGISTER_PBUF_RING(r5, 0x16, &(0x7f0000000280)="b4dc694efa1149efce5bd03c592600a75e6cc91e39f5aebeed", 0x8)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000)
r6 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto(r6, 0x80004507, 0x10000000000402)
madvise$auto(0x8000, 0x87fff, 0xc)
clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000100)={0x20, r1, 0x27c9d9d5b13b6c03, 0x70bd25, 0x25dfdbfe, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x2}, @HWSIM_ATTR_MULTI_RADIO={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890)
fcntl$getown(r0, 0x9)
poll$auto(&(0x7f0000000000)={r0, 0x2, 0x1}, 0x4, 0x9cff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

7.124281536s ago: executing program 2 (id=5101):
socket(0x2, 0x2, 0x0)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x13}}, 0x54)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0xb27, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x1, 0x84)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)

6.940570967s ago: executing program 2 (id=5102):
mmap$auto(0x8000000000000273, 0xa, 0x403, 0x10000100009b72, 0x5, 0x9)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
getsockopt$auto(0xffffffffffffffff, 0x29, 0xd0, 0x0, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
keyctl$auto_KEYCTL_UPDATE(0x2, 0x3, 0x10001, 0xb38, 0x8)
waitid$auto(0x8, 0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={{0xfffffffffffffff9, 0x80}, {0xffffffffffffffff, 0x6}, 0x4, 0x40000000005, 0x1, 0x3, 0x0, 0x8000, 0x80000000, 0x7, 0xb7, 0x5d9, 0x5, 0x7ff, 0x2055})
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x2c402, 0x0)
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0)
sendfile$auto(r2, r1, 0x0, 0x10000)
close_range$auto(0x2, 0x8, 0x0)

6.750626905s ago: executing program 0 (id=5103):
r0 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000cc0)='/sys/kernel/tracing/trace_options\x00', 0x442, 0x0)
read$auto_tracing_iter_fops_trace(r0, &(0x7f0000000000)=""/67, 0x43)
r1 = memfd_create$auto(&(0x7f0000000300)='/sys/kernel/debug/x86/boot_params/data\x00\"F\xb6\xcd\x06\xd6\x97\\L\xe1\xb2\xee\xb8\x8e\xd6O\xa1j\x90w\xc7\x94\xb7yi\x01&\x04b/\xaa\xfb#s\xc4\xa3\xa7\xacj\xc6\x8e\xf4L\x9a\xf8\xcc\xdcy\x9f\x93\xbc\xf6\xc8\xdb\x05w,|B\xfc\x04\x97\xd3\x0f\x8b\x81\xe8\xbc\x81\x0e\xd7o\xd2\xcd\x18z\xc2\xb7|\xe1\xa6\x9a~\x96\x10rnLnt\xdb\xdb-\x1b\x99\xd4\xed;\xf8\x13a\r\xf2\a\x85%\xef\xa7\x7f#\x96\xf2S\xb0\xf1Hq\x0f;\x83\xb7\x0fz\x9dN\xc9\x1e\x15r\x97|\xbfE\xce\"', 0x4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/system/node/node1/hugepages/hugepages-1048576kB/demote\x00', 0x183841, 0x0)
write$auto(r2, &(0x7f0000000080)='+\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0x4)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r3 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r3, 0x107, 0x1, 0x0, 0x8004)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_netdev(&(0x7f00000013c0), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r7=>0x0})
sendmsg$auto_NETDEV_CMD_BIND_RX(r4, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001480)={&(0x7f0000000240)={0x38, r5, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@NETDEV_A_DMABUF_FD={0x8, 0x3, r4}, @NETDEV_A_DMABUF_IFINDEX={0x8, 0x1, r7}, @NETDEV_A_DMABUF_QUEUES={0x14, 0x2, 0x0, 0x1, [@NETDEV_A_QUEUE_ID={0x8, 0x1, 0x2}, @NETDEV_A_QUEUE_TYPE={0x8}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x10)
connect$auto(r3, &(0x7f0000000040)=@xdp={0x2c, 0x6, r7, 0x25}, 0xfffffffa)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/arp_tables_names\x00', 0x40, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r8, 0x1, 0x7ff)
ptrace$auto_PTRACE_SECCOMP_GET_METADATA(0x420d, r8, 0x62, 0x27dd)
ptrace$auto_PTRACE_GET_RSEQ_CONFIGURATION(0x420f, r8, 0x1000, 0xfff)
process_vm_readv$auto(r8, &(0x7f00000001c0)={&(0x7f0000000180)="77d87c0e9a9ccce885045dc4a827b49f", 0x9}, 0x776, &(0x7f0000000200)={&(0x7f0000000280)="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", 0x80000000}, 0x1ff, 0x2)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\b\x00\x00\x00\x00\x00\x00\x00\x01\x88\v\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\b\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfded, 0x3)
fallocate$auto(r1, 0x0, 0x9, 0x4cbd5d)
writev$auto(r0, &(0x7f0000000e00)={0x0, 0xd762}, 0x400)

6.623665178s ago: executing program 2 (id=5104):
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x80)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x238, 0x1000, 0x12, r0, 0x28000)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
bind$auto(0x3, 0x0, 0x6a)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_clone(0x2360411, 0x0, 0x0, 0x0, 0x0, 0x0)
mknod$auto(&(0x7f0000000080)='}[,&*}\x00', 0xe6c, 0x17)
llistxattr$auto(&(0x7f0000000040)='}[,&*}\x00', 0x0, 0x7)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x3, 0x3a)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffff}, 0x1, 0x0, 0x0, 0x9}, 0x100007}, 0x3, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mlock$auto(0x1004, 0x6)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

6.568188685s ago: executing program 1 (id=5105):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x4000, 0x124)
socket(0x2, 0x80802, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
unshare$auto(0x40000080)
mmap$auto(0x4, 0xa020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x7ffe)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/fs/cifs/mount_params\x00', 0x802, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000640)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\xff\x7f\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc:\xfa\x01\xd1\xa3\xb5\xc2B\xa5\xac:woR^a\xb9}\xe7\xbd\xe1\xf77.\xa3\xd8\xc2T\x95\x13\x91\xb6p\xf3\xb2w\xe6\xd7\x94DW\x97\x90a\xe6c\xfb\x88x\xd5L\xa9\xe4\x82\x04\xb1\x8b\r\xcaP\\\x1aVP\xc9\xa4`\xfd\v\x94\f\xc1\x0fQ\xc9\xdcL\x03\x9c\xbfk\xa6\xb1\xb0\xa1\xeeJ\xd8\xef\xc8t\x9d\x1e=J\x91W\xc6AuJ\xb9Q\xed\xd1\a\x05\x9d\x85\xb7b#r\xcd\xaf\xb7\x9f\xf7\xd2\xae\x0f\x98\xa9&\xb6~\xd4\xbd\xbbr\xb9\xc3\xacH!\xc1\x90K2\x05K@\xee\xac\xe8\xc7\t\xab\xbf\xa3\xedb\xd7\xb5\xd7\x83&\x95\xb2?\x0e\x85\xaaIGu\xd6$\xeb\xb6\xdd\a\x121\a\xac\x1bx#\x87\xa9\x10\x9b\xf8YD\x04ZL\xca\x99]\x8f[\x90[\xa8\xbf\x98\xa6\xe50(zC\xe84*w\x13\x96\xd5\xd0\x877\x12\xbc\xa1\xd0h@|\xf9\xfa\x9b\x17\x94\xb9\xe7\xf3\x15\x05\x91\xe8\x98p\x7f:\xd7s\xd9wo\x82\xda\xec\x91\xb7\xd9;H\x8a\b\x00\x00\x00\x00\x00\x00\x00\x8aZ\x94\x14$X7\xaeW6=^I\x9fQ\r5c\x81\xca]\x97m\x89o\x8f\xd8}P>I\xd0\xb3\x88C\xd7', 0x100000a3d9)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x80000, 0x0)
socket(0x2, 0x3, 0xa)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000000), 0x28002, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd5, 0x948b, 0x3, 0x15f4da0a, 0x4, 0x3, 0x62, 0x80000002, 0x7, 0x1, 0x9, 0x3, 0xfffffffffefffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd40, 0x1, 0x948f, 0x5, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0xa, 0x8, 0x6]}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003040), r2)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r2, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f0000000100)={0x34, r3, 0x1, 0x70bd21, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x2}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000004}, 0x20048880)
setgroups$auto(0xac2e, &(0x7f0000000180)=0x6)

6.173062685s ago: executing program 3 (id=5106):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0xe8)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (fail_nth: 3)

4.691847736s ago: executing program 0 (id=5107):
mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2c00, 0x0)
r0 = socket(0x11, 0x3, 0x9)
sendto$auto(0xffffffffffffffff, 0x0, 0x402, 0xacf8, &(0x7f0000000040)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
capset$auto(0x0, &(0x7f0000000000)={0xb213, 0x2c, 0x800})
sendmmsg$auto(r0, &(0x7f0000000100)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000080)={&(0x7f0000000040)='f', 0x69}, 0x1, &(0x7f0000000240), 0x8, 0x3}, 0x6}, 0x2, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(r1, 0x7, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
fstat$auto(r2, 0x0)
setresuid$auto(0x2, 0x7, 0x8080)
r3 = socket(0xa, 0x5, 0x0)
ioctl$auto(r3, 0x8941, 0x8)
fcntl$auto(0x8000000000000001, 0x26, 0x8)
setreuid$auto(0x8, 0x9d7)
fsetxattr$auto(0x1, &(0x7f0000000000)='%\x175\xc0\x8d\xbb\x04\xb3\x97\xd8\xf4\xf6', 0x0, 0x0, 0x2)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)

4.691275244s ago: executing program 3 (id=5108):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
r0 = socket(0x1d, 0x1, 0x7fff)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x0, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0)
writev$auto(r2, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3)
r3 = socket(0x18, 0x5, 0x1)
syz_genetlink_get_family_id$auto_smbd_genl(0x0, r0)
sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(r3, 0x0, 0x30004850)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r4, 0x4b47, 0x1)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/dev_snmp6/netdevsim2\x00', 0x1c9802, 0x0)
pread64$auto(r5, &(0x7f00000005c0)='/pr\xa2Cv&P\x11\xf7\x01\xa4\xdcXd\x1dvices\x00F%\xf7\x175)x\xd6\fR\x117\t\x00F\xe6\x8bG$\xdaP\xf1\x1e\xe9Z\xc6K\xe44\xdc\x8f\x94\x86\n\x95\xb3I<\xd2~\xe5\xad\n\x0f\xbf\x97\xcf\xcd\x9b\x8f\x8dh\xb8\xffz_\x84Y\x1bt\xf3\xf19\xc0\x9d\xad\xb3\xd9\x89\x15|\x96\xb6\x7f^\x00\x00\x00\x00\xa5n\'(\xa2\x95*\xda\xfcVCf\xd7\x88h[\xd2\xd9\xba\xc5\xc53\x15\x11^Q\x80\xf8\xa77\xa0\xbd\n*\xe0\xcduw\x96f\x95\xcc\xcbP\xd1\xbe\xe21$=\xb6\xe3lP-\xcbs\xe0\f\xce=\xe9 \xe8\n)\xf2b*\xea\"\x94\x96\xcc\xc8S\xd3]Y\xca\xd3\x13\xe3\xd8\x82\x9c\xa5\x06\x01\xafR\x16r\xa3)9t\xae<(V2\xc7\x98A\xc7<&\x89\x98\x7f\x8a\xb1\x8a\xfc\x05T\x8d\xa3\xc2\xdf\xb0\x0f\xad\x85P\xed\x9ct\xf7M\f-\xd3\xe9\xfe\x15o\xab5\xb23\xd2\xef\x9c\xc2;\x91\x05\xd8^I\x8e\x18p\xfb\x8d\x06\xb8J1\xce\x00', 0x100000001, 0x100)
r6 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/bus/usb/037/001\x00', 0x40001, 0x0)
close_range$auto(r0, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x802, 0x1)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000089c0)='/dev/mtd0\x00', 0x80000, 0x0)
bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x68)
ioctl$auto_USBDEVFS_CONTROL(r6, 0xc0185500, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x4c440, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r3)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)

3.988545504s ago: executing program 2 (id=5109):
mmap$auto(0xfffffffffffffffd, 0x4, 0x81, 0x7f, 0xffffffffffffffff, 0x6)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0)
io_uring_setup$auto(0xdd4, 0x0)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0)

3.819097737s ago: executing program 0 (id=5110):
ioctl$auto_XFS_IOC_EXCHANGE_RANGE(0xffffffffffffffff, 0x40285881, &(0x7f0000000000)={<r0=>0xffffffffffffffff, 0x0, 0x3, 0x2, 0x100000001, 0x7})
r1 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe\x00', 0x0, 0x0)
close_range$auto(r0, r1, 0xfffffff8) (async)
r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/card0\x00', 0x8002, 0x0) (async)
r3 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dri/card0\x00', 0x2202, 0x0)
getsockopt$auto_SO_KEEPALIVE(r3, 0x10001, 0x9, &(0x7f0000000100)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe\x00', &(0x7f0000000140)=0x899) (async)
poll$auto(&(0x7f0000000180)={<r4=>r0, 0x3, 0xe}, 0xb8b5, 0x81)
fgetxattr$auto(r4, &(0x7f00000001c0)='/dev/dri/card0\x00', &(0x7f0000000200)="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", 0xf) (async)
ioctl$auto_USBDEVFS_CONNECTINFO(r0, 0x40085511, &(0x7f0000001200)={0x8000, 0x2}) (async)
process_madvise$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, &(0x7f0000001280)={&(0x7f0000001240)="0fa35a244d4bcffbb606c39dbf0b2cf81f163efcadf3958feaeade924e93139e0c", 0xe3}, 0x7037, 0x2, 0x3) (async)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001300), r4)
sendmsg$auto_NL80211_CMD_GET_PROTOCOL_FEATURES(r0, &(0x7f00000013c0)={&(0x7f00000012c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001380)={&(0x7f0000001340)={0x1c, r5, 0x200, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_NETNS_FD={0x8, 0xdb, r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40051}, 0x10) (async)
r6 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000001440), r0)
sendmsg$auto_NFC_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000001400)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000014c0)={&(0x7f0000001480)={0x3c, r6, 0x800, 0x70bd27, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0xffff}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x10000}, @NFC_ATTR_DEVICE_NAME={0xc, 0x2, 'nl80211\x00'}, @NFC_ATTR_DEVICE_NAME={0x4}, @NFC_ATTR_VENDOR_SUBCMD={0x8, 0x1e, 0x2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x8001)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001540)='/dev/video5\x00', 0x444500, 0x0) (async)
ioctl$auto_UDF_GETVOLIDENT(r4, 0x80086c42, &(0x7f00000015c0)=&(0x7f0000001580)="4a62e884db59ad63c9678957050d7b6778bd57539493139a667d4393aaafa8298b13dbdf9730b71e") (async)
r7 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001600)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x2, 0x0)
ioctl$auto(r3, 0x4, r7) (async)
r8 = ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f0000001640)={0xffffcc91, "570659524ed9fba1327d1e2164b94c18c9a5fb3d1cf5b9f8cf029d626d238f11", @raw=0x7fffffff})
r9 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000016c0), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(r8, &(0x7f0000001a80)={&(0x7f0000001680)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001a40)={&(0x7f0000001700)={0x30c, r9, 0x4, 0x70bd29, 0x25dfdbfe, {}, [@TIPC_NLA_NAME_TABLE={0x2f8, 0x8, 0x0, 0x1, [@typed={0x8, 0x4c, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x9, 0x0, 0x0, @fd=r2}, @typed={0x8, 0x12c, 0x0, 0x0, @uid=0xee01}, @nested={0x2d4, 0x5c, 0x0, 0x1, [@generic="61dfea8aa119a53ecdb0a75f3974e1c7ba042914a0c8ac989d16a7e66b64c2587f75c3ff8bb5bffd4daf3603a5ced0792af4e11bf3ae2c420c2c32f090b03de9f080b121d7a00fbabce363a8c13dc424adcf6c750bba86457eb748581aa1afc2c5e20aba38bf99b85276977a638c", @typed={0x8, 0xf7, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x41}}, @nested={0x4, 0x159}, @generic="bc819c10eaf742f643fa0d2a793f96d5c4468343573ea08222e75cdd951aafc4ec46b30b8d76132e865139285e4d814a7d6edcfaef7a335818bcfadaca687be4c06aa9111248071f643fdc94522022a72a34ccf2bcfdb4452fe16dfac738b7ad88c8a228ecdd9ea984e7aadeda1a7891bd8422355bf2fba14d12d43c0eee996d3d248aacf30b077e350b4ee5a885b23bf16a50b3fbd58110a66e5c4c26a73478e1ae2adf56d9ca6e0776f20d753d7a27", @generic="9a3a22547808a6363ab1460df414d1aa16b9a652b9d7cd58a968d45150945245521910857ad5b8d28616421b28487b34c076337e0d1c8d8a2cbfc5c674307edf6144b5487af328089d179b9778b26272a1e21f084b79e79129df44732a9053b1532fc9f5effdb91cbf4008f2b85daab37032f540ec351ca2b43d499f1e39d084a06699af2472a42480351e0fab3ae717060421b98cfe40008a31d1", @typed={0x14, 0xd1, 0x0, 0x0, @ipv6=@mcast2}, @generic="1c5fc320eec5c1be9a17b352717e08e10c21916a1ec1c9173f0d6efed6c8b3f7fdbcf53d07ce7dbcc931cbe06174fa8d50c8c64c5b94c8b0251c0231aec1fcf918d3e4e67890808a4e959ba6a3b8db18a77dbec61cdd10c93ba97e7d7a9d07895e6932e62ca0b8e2bfd50c24d03638c3447b55f4bc34b7d34c91868875b7e3ddb5190a987b5af3e2bc1d17ec60b8f27b0473a7be3f334b2bf37b5bccc38ed18e953f9f2560fa54f3e28b86205bf82dc8d8816832149479822fc2075c4a3aeb1c0898d75fbf275fe94f3b6eb50275d9e2b8b57e40b46ea8f28ef93fabb31d17c9f642a4edb170815835d31f95554759557cde89c82fd091"]}, @typed={0x8, 0x119, 0x0, 0x0, @ipv4=@multicast2}]}]}, 0x30c}, 0x1, 0x0, 0x0, 0x8010}, 0x240400c4)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001ac0), r4) (async)
r10 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000001b40), r8)
sendmsg$auto_SMC_NETLINK_GET_FBACK_STATS(r8, &(0x7f0000001c80)={&(0x7f0000001b00)={0x10, 0x0, 0x0, 0xa0}, 0xc, &(0x7f0000001c40)={&(0x7f0000001b80)={0xbc, r10, 0x2, 0x70bd2a, 0x25dfdbfd, {}, "845b4b762f74f2628b7439865f26f3e522d19e950d159afaf24dd939cb4cb66df43abf9b1ca86bea32bd5a0c3f3abced521348cd3bcc3b06905f06b20e3c6d9cea1db2d937e46425f3413c19b7f50a0031b2002ba127ffab86cad873e2de3e26c1834ef626c9d228fc27326de2f1cd2e40fc6911ef9a587fdd00a8d5fd5eaa11d20122da19377784653f50890e27ad2a8a5ab7963b444f77d9a1c36d5138d6dfc9ece5dc45e701"}, 0xbc}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040811) (async)
r11 = waitid$auto_P_ALL(0x0, 0x6, &(0x7f0000001dc0)={@siginfo_0_0={0x0, 0x60, 0x9, @_sigsys={&(0x7f0000001cc0)="cefb74696066da53b34b976a175568fd8dfcebcc017d098d092f2d149f07a4b1ac3eafae5e48bf19776cebe1c22ab6e85420db787edb7e780f03f393cf84b612e10f4700a0875dc28e0517e990c45678346677a5bcf4017b1253f92e94bc68b1be70e64c5694a35b774958aa01771ddd4c227ea3e90855584857206035ba7236615590e3941f5c60dc273b93f206f78271922882c46972e63a67b42a6bc6dc2b6a3fc86088c93d8e238cbedb36477b7acd7b5d66347bba214ebfca82b2ce036944911369491ef8ac9218a83a6c7e1e927356eafc2a84f01be4f1ed0819c5df25abc73c7afc34e54b92fff02062f3f71c9c10105a9566c0", 0x2}}}, 0x3, &(0x7f0000001e40)={{0x10001, 0x96c}, {0x0, 0x3}, 0x3, 0x1, 0x5, 0x8000000000000000, 0x5, 0x5, 0x3, 0xf, 0x0, 0x0, 0xffffffffffffff2f, 0x8, 0x2, 0x100000001})
prctl$auto(0x7, 0x5, r11, 0x52eaf882, 0xfffffffffffffff9)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r12 = socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000001f40)={'batadv_slave_0\x00', <r13=>0x0})
sendmsg$auto_MACSEC_CMD_UPD_RXSC(r12, &(0x7f0000002340)={&(0x7f0000001f00)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002300)={&(0x7f0000002100)={0x1cc, 0x0, 0x800, 0x70bd2a, 0x25dfdbfc, {}, [@MACSEC_ATTR_IFINDEX={0x8, 0x1, r13}, @MACSEC_ATTR_RXSC_CONFIG={0x1b0, 0x2, 0x0, 0x1, [@typed={0x8, 0xe8, 0x0, 0x0, @pid=r11}, @nested={0x1a2, 0x68, 0x0, 0x1, [@typed={0xca, 0x123, 0x0, 0x0, @binary="ef6a7f625d77be4babbeec556c425938d2c00881ed564197202a9db142ed2c220992a9b9ce056f876c5fc1659372d21482326721cf67973284991d059d4479081bfc67250024a24e53ca6a1d54e81c5cbbd24e345367641ab3c7b732e20d579eeda09a6209ecc91052d5aeb0cc4f8efff8d55267eb20ee9945bd462f673aa9e8a5fad7bf4cde24233c60bd1d607961f9394fca320b643b210906019432454eada03a32f3833c76cace038a0a3634e4510489d491aac4530d93b3f3d8cc6b0e26d8d74817c828"}, @nested={0x4, 0xeb}, @typed={0x8, 0x95, 0x0, 0x0, @uid}, @generic="afba3e7a805b8718d0c615b1", @generic="c033ca4a4dea18f712b1bcaee9182875b301f01614a775ba73f1fcc6bf25bbc33ce039650f391681e33b8cba55519cf5dda79f05063e7df9c3ac2a211b5e490446863b369e97efafd481dad0b6d081ee4fd3eeef406547a51aaf88008d3fdbb166a4cd1096b6b2af483481d1235057d578ee7dd3d722f90e3fc179612cdb9c02ea0ff0604258659a6c327f3e780184e90b297ebbd08e331034ec41b4c72ac09135dfda41bcb19a2dc1fb5ef7b50703fb1a4f5b1751d6", @nested={0x4, 0x69}]}]}]}, 0x1cc}, 0x1, 0x0, 0x0, 0x8080}, 0x2000)

3.655018536s ago: executing program 3 (id=5111):
mmap$auto(0x8000000000000273, 0xa, 0x403, 0x10000100009b72, 0x5, 0x9)
io_uring_setup$auto(0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
getsockopt$auto(0xffffffffffffffff, 0x29, 0xd0, 0x0, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
keyctl$auto_KEYCTL_UPDATE(0x2, 0x3, 0x10001, 0xb38, 0x8)
waitid$auto(0x8, 0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={{0xfffffffffffffff9, 0x80}, {0xffffffffffffffff, 0x6}, 0x4, 0x40000000005, 0x1, 0x3, 0x0, 0x8000, 0x80000000, 0x7, 0xb7, 0x5d9, 0x5, 0x7ff, 0x2055})
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x2c402, 0x0)
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0)
sendfile$auto(r2, r1, 0x0, 0x10000)
close_range$auto(0x2, 0x8, 0x0)

3.467779808s ago: executing program 0 (id=5112):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (fail_nth: 10)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
clock_adjtime$auto(0x371b, 0x0)

3.395241847s ago: executing program 3 (id=5113):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x88000, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x8587)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0xe8)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

2.274920808s ago: executing program 3 (id=5114):
io_uring_register$auto(0xffffffffffffffff, 0x1f, 0x0, 0x1)
r0 = socket(0x29, 0x80006, 0x8)
sendmmsg$auto(r0, 0x0, 0x9, 0xf0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/uvcvideo/parameters/nodrop\x00', 0xa3182, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
io_uring_setup$auto(0x59, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
socket(0x2, 0x801, 0x106)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
clone$auto(0x0, 0x0, 0x0, 0x0, 0x2)
ioctl$auto(r2, 0x541c, r3)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/audio1\x00', 0x101001, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xc, 0x9, 0xa, 0x3, 0xf, 0x5, 0x0, 0x3, 0x6, 0x10000000000002, 0x6c4, 0x5, 0x20000000003, 0x800002, 0xb4, 0xb, 0x10000002, 0x3, 0x5, 0x7, 0x1, 0x0, 0x4, 0x0, 0x7, 0x0, 0x2, 0x0, 0x2000002, 0x0, 0x100, [0xffffffffffffffff, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0xc6b, 0x5f23, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x0, 0x1, 0x7ff, 0x0, 0x1, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2]}, 0x1fe, 0x40081)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40080c1)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0xc20f0000, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x8009b72, 0x2, 0x9000)
close_range$auto(0x0, 0x5, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0x4048aec9, r4)

1.404291757s ago: executing program 3 (id=5115):
mmap$auto(0x0, 0xb9f, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp1\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
mmap$auto(0x0, 0x2020008, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x4, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
io_uring_enter$auto(0x3, 0x0, 0x1, 0x3, 0x0, 0x2)
io_uring_enter$auto(0x3, 0x1, 0x2688, 0x5, 0x0, 0x7)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
read$auto(r0, 0x0, 0x8080)
unshare$auto(0x40000080)
fsconfig$auto(r0, 0x800, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_abort_count\x00', 0x0, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffffff, &(0x7f00000001c0)="624d1bfe", 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
open(&(0x7f0000000080)='./file0\x00', 0x22ac2, 0x5d745cb200ae4d7b)
mount$auto(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='afs\x00', 0x5, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
read$auto(0x3, 0x0, 0x7fffffff)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400c050}, 0x4000080)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/asound/card0/pcm0c/sub0/status\x00', 0x100, 0x0)
pread64$auto(r1, 0x0, 0x40000000f42c, 0x80002)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000200bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4)

1.193767268s ago: executing program 2 (id=5116):
mmap$auto(0xfffffffffffffffd, 0x4, 0x81, 0x7f, 0xffffffffffffffff, 0x6)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0)
io_uring_setup$auto(0xdd4, 0x0)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0)

886.893411ms ago: executing program 1 (id=5117):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x100000000000035, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/net/bond0/queues/rx-4/rps_cpus\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000500)=""/4096, 0x1000)
r1 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r1, 0x1, &(0x7f0000000000)='4\x93\x03\x00\x04\x00\x00', &(0x7f00000001c0), 0x0)
r2 = getpid()
process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={0x0, 0xffffffff}, 0x6, 0x0)
r3 = setfsuid$auto(0x0)
ioctl$auto_XFS_IOC_ALLOCSP(r1, 0x4030580a, &(0x7f0000000140)={0x0, 0x81, 0x8, 0xffffffffffffffff, 0x5, <r4=>0x0})
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r1, &(0x7f0000001e40)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001e00)={&(0x7f0000000180)=ANY=[@ANYBLOB="581c0000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="18004f8008009400", @ANYRES32=r1, @ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="14008c00ff01000000000000000000000000000100dd01c4801a232973f119af0400fb800400b1800800ce00", @ANYRES32=r4, @ANYBLOB="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"], 0x1c58}, 0x1, 0x0, 0x0, 0x45800}, 0x40000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x11, 0x3, 0x9)
syslog$auto(0x9, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x7)
r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
getdents64$auto(r5, 0x0, 0x18)
ioctl$auto_VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x5)
ioctl$auto(0xffffffffffffffff, 0x4008af03, 0x0)
r6 = socket(0x10, 0x2, 0x0)
r7 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000200), 0x101803, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(r7, 0x5452, &(0x7f0000000080)={0x3, 0x1, 0x800000ff, 0x6, 0x10000})
close_range$auto(0x2, 0xa, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e00fbe18d073ba65c6df9cd1c8d10ea3ad6d7ac15"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
r8 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0)
ioctl$auto(r8, 0x5646, r8)
ioctl$auto(r8, 0x2400000, 0xffffffffffffffff)
recvmmsg$auto(r6, &(0x7f0000000180)={{0x0, 0x10001, &(0x7f0000000080)={&(0x7f0000000040), 0x1900}, 0x4, 0x0, 0x8, 0x7}, 0x7}, 0x5, 0x66a6, 0x0)
ioctl$auto_VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, 0x0)

636.373683ms ago: executing program 0 (id=5118):
bpf$auto(0x9, 0x0, 0x9)
socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fb\x00', 0x101000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram5\x00', 0x14fa02, 0x0)
ioctl$auto(0xffffffffffffffff, 0xab01, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xe880, 0xdf, 0xeb1, 0x401, 0x7ffc)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
ioctl$auto_TCSBRKP2(r0, 0x5425, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x88b02, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/damon_reclaim/parameters/enabled\x00', 0x1eb842, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x82002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r2, &(0x7f0000003900)="fb", 0x1)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
ioctl$auto_TCFLSH2(r1, 0x5408, 0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r4, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_TUNNEL_INFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}}, 0x4000000)
read$auto(r3, 0x0, 0x1ff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/vhci_hcd.15/usb39/remove\x00', 0x243702, 0x0)

199.644283ms ago: executing program 2 (id=5119):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
r0 = socket(0x1d, 0x1, 0x7fff)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x0, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0)
writev$auto(r2, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3)
r3 = socket(0x18, 0x5, 0x1)
syz_genetlink_get_family_id$auto_smbd_genl(0x0, r0)
sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(r3, 0x0, 0x30004850)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r4, 0x4b47, 0x1)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/dev_snmp6/netdevsim2\x00', 0x1c9802, 0x0)
pread64$auto(r5, &(0x7f00000005c0)='/pr\xa2Cv&P\x11\xf7\x01\xa4\xdcXd\x1dvices\x00F%\xf7\x175)x\xd6\fR\x117\t\x00F\xe6\x8bG$\xdaP\xf1\x1e\xe9Z\xc6K\xe44\xdc\x8f\x94\x86\n\x95\xb3I<\xd2~\xe5\xad\n\x0f\xbf\x97\xcf\xcd\x9b\x8f\x8dh\xb8\xffz_\x84Y\x1bt\xf3\xf19\xc0\x9d\xad\xb3\xd9\x89\x15|\x96\xb6\x7f^\x00\x00\x00\x00\xa5n\'(\xa2\x95*\xda\xfcVCf\xd7\x88h[\xd2\xd9\xba\xc5\xc53\x15\x11^Q\x80\xf8\xa77\xa0\xbd\n*\xe0\xcduw\x96f\x95\xcc\xcbP\xd1\xbe\xe21$=\xb6\xe3lP-\xcbs\xe0\f\xce=\xe9 \xe8\n)\xf2b*\xea\"\x94\x96\xcc\xc8S\xd3]Y\xca\xd3\x13\xe3\xd8\x82\x9c\xa5\x06\x01\xafR\x16r\xa3)9t\xae<(V2\xc7\x98A\xc7<&\x89\x98\x7f\x8a\xb1\x8a\xfc\x05T\x8d\xa3\xc2\xdf\xb0\x0f\xad\x85P\xed\x9ct\xf7M\f-\xd3\xe9\xfe\x15o\xab5\xb23\xd2\xef\x9c\xc2;\x91\x05\xd8^I\x8e\x18p\xfb\x8d\x06\xb8J1\xce\x00', 0x100000001, 0x100)
r6 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/bus/usb/037/001\x00', 0x40001, 0x0)
close_range$auto(r0, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x802, 0x1)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000089c0)='/dev/mtd0\x00', 0x80000, 0x0)
bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x68)
ioctl$auto_USBDEVFS_CONTROL(r6, 0xc0185500, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x4c440, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r3)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)

23.335736ms ago: executing program 1 (id=5120):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x8a801, 0x0)
write$auto(r0, &(0x7f0000000000)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (fail_nth: 3)

0s ago: executing program 0 (id=5121):
r0 = fanotify_init$auto(0x5, 0x2000000000002)
r1 = open(&(0x7f0000000000)='.\x00', 0x608000, 0x48a)
fanotify_mark$auto(r0, 0x9, 0x9, r1, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(0x4, 0x0, 0xe6e)
r2 = inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(r2, 0x0, 0x2)

kernel console output (not intermixed with test programs):

0 R09: 000000008000fff5
[ 1733.527467][ T1508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1733.527476][ T1508] R13: 00007f1c4e416218 R14: 00007f1c4e416180 R15: 00007ffd5c618ce8
[ 1733.527497][ T1508]  </TASK>
[ 1733.952026][ T1490] Process accounting paused
[ 1734.039963][ T1500] zswap: compressor  not available
[ 1734.286319][T28037] Bluetooth: hci4: command 0x0406 tx timeout
[ 1734.719117][ T1543] kAFS: No cell specified
[ 1734.962900][T28037] Bluetooth: hci0: command 0x0406 tx timeout
[ 1734.968999][T26848] Bluetooth: hci3: command 0x0406 tx timeout
[ 1735.046506][T28037] Bluetooth: hci2: command 0x0406 tx timeout
[ 1736.664510][ T1573] kAFS: No cell specified
[ 1736.803174][ T1540] Bluetooth: hci4: Opcode 0x0c1a failed: -110
[ 1736.811766][T28037] Bluetooth: hci4: command 0x0406 tx timeout
[ 1737.232924][ T1540] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1737.247399][ T1540] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1737.275442][ T1540] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1738.883417][T28037] Bluetooth: hci3: command 0x0406 tx timeout
[ 1739.225514][   T30] audit: type=1804 audit(2147502178.468:114): pid=1623 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.4663" name="/newroot/557/file0" dev="tmpfs" ino=2932 res=1 errno=0
[ 1739.290052][T28037] Bluetooth: hci2: command 0x0406 tx timeout
[ 1739.297280][T26848] Bluetooth: hci0: command 0x0406 tx timeout
[ 1739.366130][   T30] audit: type=1804 audit(2147502178.508:115): pid=1625 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.4663" name="/newroot/557/file0" dev="tmpfs" ino=2932 res=1 errno=0
[ 1742.790773][ T1701] netlink: 330 bytes leftover after parsing attributes in process `syz.0.4681'.
[ 1743.412078][ T1699] kAFS: No cell specified
[ 1743.444081][ T1721] kAFS: No cell specified
[ 1745.311240][ T1763] kAFS: No cell specified
[ 1746.803119][ T1740] Bluetooth: hci4: Opcode 0x0c1a failed: -110
[ 1746.812726][T26848] Bluetooth: hci4: command 0x0406 tx timeout
[ 1747.110546][ T1740] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1747.127778][ T1740] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1747.149001][ T1740] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1748.884566][T26848] Bluetooth: hci3: command 0x0406 tx timeout
[ 1749.124877][T26848] Bluetooth: hci0: command 0x0406 tx timeout
[ 1749.204112][T26848] Bluetooth: hci2: command 0x0406 tx timeout
[ 1751.683013][T26848] Bluetooth: hci4: command 0x0406 tx timeout
[ 1751.689125][ T1827] Bluetooth: hci4: Opcode 0x0c1a failed: -110
[ 1752.270613][ T1827] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1752.277298][ T1827] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1752.283931][ T1827] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1752.329977][ T1857] Process accounting resumed
[ 1752.448609][ T1826] Process accounting resumed
[ 1752.494692][ T1868] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4717'.
[ 1753.317879][ T1880] kAFS: No cell specified
[ 1753.765991][T26848] Bluetooth: hci3: command 0x0406 tx timeout
[ 1753.791269][ T1899] vivid-007: =================  START STATUS  =================
[ 1753.820975][ T1899] vivid-007: Generate PTS: true
[ 1753.852375][ T1899] vivid-007: Generate SCR: true
[ 1753.891191][ T1899] tpg source WxH: 320x240 (Y'CbCr)
[ 1753.908711][ T1899] tpg field: 1
[ 1753.937501][ T1899] tpg crop: (0,0)/320x240
[ 1753.987805][ T1899] tpg compose: (0,0)/320x240
[ 1754.017073][ T1899] tpg colorspace: 8
[ 1754.043249][ T1899] tpg transfer function: 0/0
[ 1754.053165][ T1899] tpg Y'CbCr encoding: 0/0
[ 1754.065546][ T1899] tpg quantization: 0/0
[ 1754.080713][ T1899] tpg RGB range: 0/2
[ 1754.098671][ T1899] vivid-007: ==================  END STATUS  ==================
[ 1754.323374][T26848] Bluetooth: hci2: command 0x0406 tx timeout
[ 1754.329431][T28037] Bluetooth: hci0: command 0x0406 tx timeout
[ 1754.369473][ T1896] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1754.376874][ T1896] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1754.383655][ T1896] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1754.391259][ T1896] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1755.683515][T26848] Bluetooth: hci4: command 0x0406 tx timeout
[ 1755.730146][ T1937] FAULT_INJECTION: forcing a failure.
[ 1755.730146][ T1937] name failslab, interval 1, probability 0, space 0, times 0
[ 1755.847250][ T1937] CPU: 0 UID: 0 PID: 1937 Comm: syz.1.4734 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1755.847277][ T1937] Tainted: [L]=SOFTLOCKUP
[ 1755.847283][ T1937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1755.847293][ T1937] Call Trace:
[ 1755.847299][ T1937]  <TASK>
[ 1755.847306][ T1937]  dump_stack_lvl+0x100/0x190
[ 1755.847334][ T1937]  should_fail_ex.cold+0x5/0xa
[ 1755.847352][ T1937]  should_failslab+0xc2/0x120
[ 1755.847374][ T1937]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1755.847391][ T1937]  ? refill_pi_state_cache+0x91/0x260
[ 1755.847415][ T1937]  refill_pi_state_cache+0x91/0x260
[ 1755.847435][ T1937]  futex_lock_pi+0x177/0x7b0
[ 1755.847458][ T1937]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1755.847479][ T1937]  ? __pfx___futex_wait+0x10/0x10
[ 1755.847513][ T1937]  ? lockdep_hardirqs_on+0x78/0x100
[ 1755.847552][ T1937]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1755.847577][ T1937]  ? __might_fault+0x111/0x140
[ 1755.847597][ T1937]  ? do_vfs_ioctl+0x226/0x13e0
[ 1755.847617][ T1937]  do_futex+0x18a/0x350
[ 1755.847635][ T1937]  ? __pfx_do_futex+0x10/0x10
[ 1755.847653][ T1937]  ? find_held_lock+0x2b/0x80
[ 1755.847678][ T1937]  __x64_sys_futex+0x34f/0x4d0
[ 1755.847698][ T1937]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1755.847723][ T1937]  do_syscall_64+0x106/0xf80
[ 1755.847744][ T1937]  ? clear_bhb_loop+0x40/0x90
[ 1755.847762][ T1937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1755.847777][ T1937] RIP: 0033:0x7f72b0f9bf79
[ 1755.847791][ T1937] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1755.847805][ T1937] RSP: 002b:00007f72b1e27028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1755.847820][ T1937] RAX: ffffffffffffffda RBX: 00007f72b1216180 RCX: 00007f72b0f9bf79
[ 1755.847830][ T1937] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 1755.847839][ T1937] RBP: 00007f72b10327e0 R08: 0000000000000000 R09: 000000008000fff5
[ 1755.847848][ T1937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1755.847857][ T1937] R13: 00007f72b1216218 R14: 00007f72b1216180 R15: 00007ffce9db1e18
[ 1755.847877][ T1937]  </TASK>
[ 1756.403171][T26848] Bluetooth: hci2: command 0x0406 tx timeout
[ 1756.409287][T28037] Bluetooth: hci0: command 0x0406 tx timeout
[ 1756.415664][T28037] Bluetooth: hci3: command 0x0406 tx timeout
[ 1756.706577][ T1959] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4738'.
[ 1756.739544][ T1959] dummy0: entered promiscuous mode
[ 1756.754895][ T1959] dummy0: entered allmulticast mode
[ 1757.165741][ T1951] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1757.178066][ T1951] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1757.217249][ T1951] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1757.237854][ T1951] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1757.920519][ T1977] FAULT_INJECTION: forcing a failure.
[ 1757.920519][ T1977] name failslab, interval 1, probability 0, space 0, times 0
[ 1758.073048][ T1977] CPU: 0 UID: 0 PID: 1977 Comm: syz.2.4743 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1758.073075][ T1977] Tainted: [L]=SOFTLOCKUP
[ 1758.073081][ T1977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1758.073091][ T1977] Call Trace:
[ 1758.073097][ T1977]  <TASK>
[ 1758.073103][ T1977]  dump_stack_lvl+0x100/0x190
[ 1758.073131][ T1977]  should_fail_ex.cold+0x5/0xa
[ 1758.073149][ T1977]  ? tomoyo_encode2+0xfb/0x3c0
[ 1758.073172][ T1977]  should_failslab+0xc2/0x120
[ 1758.073194][ T1977]  __kmalloc_noprof+0xe0/0x850
[ 1758.073213][ T1977]  ? d_absolute_path+0x136/0x1b0
[ 1758.073234][ T1977]  tomoyo_encode2+0xfb/0x3c0
[ 1758.073259][ T1977]  tomoyo_encode+0x29/0x50
[ 1758.073279][ T1977]  tomoyo_realpath_from_path+0x18c/0x690
[ 1758.073314][ T1977]  tomoyo_path_number_perm+0x23c/0x580
[ 1758.073334][ T1977]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1758.073355][ T1977]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1758.073396][ T1977]  ? find_held_lock+0x2b/0x80
[ 1758.073419][ T1977]  ? current_check_access_path+0x281/0x460
[ 1758.073442][ T1977]  ? __pfx_current_check_access_path+0x10/0x10
[ 1758.073465][ T1977]  ? d_alloc_parallel+0x864/0x14e0
[ 1758.073487][ T1977]  tomoyo_path_mknod+0x164/0x190
[ 1758.073503][ T1977]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[ 1758.073518][ T1977]  ? find_held_lock+0x2b/0x80
[ 1758.073540][ T1977]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1758.073566][ T1977]  security_path_mknod+0x161/0x300
[ 1758.073590][ T1977]  may_o_create+0x30/0x3a0
[ 1758.073610][ T1977]  lookup_open.isra.0+0xa0d/0x11b0
[ 1758.073633][ T1977]  ? __pfx_lookup_open.isra.0+0x10/0x10
[ 1758.073655][ T1977]  ? __pfx___might_resched+0x10/0x10
[ 1758.073675][ T1977]  ? mnt_get_write_access+0x52/0x2f0
[ 1758.073696][ T1977]  ? __pfx_down_write+0x10/0x10
[ 1758.073710][ T1977]  ? mnt_get_write_access+0x1e9/0x2f0
[ 1758.073730][ T1977]  path_openat+0x2291/0x31a0
[ 1758.073754][ T1977]  ? count_memcg_events_mm.constprop.0+0x1/0x2a0
[ 1758.073779][ T1977]  ? __pfx_path_openat+0x10/0x10
[ 1758.073802][ T1977]  ? __pfx___up_read+0x10/0x10
[ 1758.073820][ T1977]  ? do_user_addr_fault+0x7de/0x12f0
[ 1758.073842][ T1977]  ? do_user_addr_fault+0x7de/0x12f0
[ 1758.073868][ T1977]  do_file_open+0x20e/0x430
[ 1758.073891][ T1977]  ? __pfx_do_file_open+0x10/0x10
[ 1758.073912][ T1977]  ? irqentry_exit+0x180/0x670
[ 1758.073946][ T1977]  ? _raw_spin_unlock+0x28/0x50
[ 1758.073964][ T1977]  ? alloc_fd+0x476/0x790
[ 1758.073991][ T1977]  do_sys_openat2+0x10d/0x1e0
[ 1758.074007][ T1977]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1758.074031][ T1977]  __x64_sys_open+0xfe/0x1d0
[ 1758.074048][ T1977]  ? __pfx___x64_sys_open+0x10/0x10
[ 1758.074072][ T1977]  do_syscall_64+0x106/0xf80
[ 1758.074092][ T1977]  ? clear_bhb_loop+0x40/0x90
[ 1758.074111][ T1977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1758.074126][ T1977] RIP: 0033:0x7f1c4e19bf79
[ 1758.074141][ T1977] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1758.074157][ T1977] RSP: 002b:00007f1c4f108028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1758.074172][ T1977] RAX: ffffffffffffffda RBX: 00007f1c4e416090 RCX: 00007f1c4e19bf79
[ 1758.074183][ T1977] RDX: 0000000000000082 RSI: 0000000000163ac1 RDI: 0000000000000000
[ 1758.074192][ T1977] RBP: 00007f1c4e2327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1758.074202][ T1977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1758.074211][ T1977] R13: 00007f1c4e416128 R14: 00007f1c4e416090 R15: 00007ffd5c618ce8
[ 1758.074233][ T1977]  </TASK>
[ 1758.074253][ T1977] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1758.522897][ T1953] Bluetooth: hci4: command 0x0406 tx timeout
[ 1759.001840][ T1981] kAFS: No cell specified
[ 1759.203415][ T1953] Bluetooth: hci3: command 0x0406 tx timeout
[ 1759.284051][ T1953] Bluetooth: hci2: command 0x0406 tx timeout
[ 1759.290443][T26832] Bluetooth: hci0: command 0x0406 tx timeout
[ 1759.903844][ T2032] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4753'.
[ 1760.231575][ T2017] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1760.250972][ T2017] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1760.294234][ T2017] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1760.321857][ T2017] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1760.613435][ T2047] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4758'.
[ 1761.523645][T26832] Bluetooth: hci4: command 0x0406 tx timeout
[ 1761.991400][ T2065] kAFS: No cell specified
[ 1762.323866][T26832] Bluetooth: hci2: command 0x0406 tx timeout
[ 1762.329888][T26832] Bluetooth: hci0: command 0x0406 tx timeout
[ 1762.335999][ T1953] Bluetooth: hci3: command 0x0406 tx timeout
[ 1763.978559][ T2116] Process accounting resumed
[ 1764.142113][   T30] audit: type=1804 audit(2147502203.388:116): pid=2135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.4776" name="/newroot/569/file0" dev="tmpfs" ino=2994 res=1 errno=0
[ 1764.205917][   T30] audit: type=1804 audit(2147502203.438:117): pid=2131 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.4776" name="/newroot/569/file0" dev="tmpfs" ino=2994 res=1 errno=0
[ 1764.240334][ T2131] FAULT_INJECTION: forcing a failure.
[ 1764.240334][ T2131] name failslab, interval 1, probability 0, space 0, times 0
[ 1764.259581][ T2131] CPU: 0 UID: 0 PID: 2131 Comm: syz.3.4776 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1764.259607][ T2131] Tainted: [L]=SOFTLOCKUP
[ 1764.259612][ T2131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1764.259621][ T2131] Call Trace:
[ 1764.259627][ T2131]  <TASK>
[ 1764.259633][ T2131]  dump_stack_lvl+0x100/0x190
[ 1764.259659][ T2131]  should_fail_ex.cold+0x5/0xa
[ 1764.259677][ T2131]  should_failslab+0xc2/0x120
[ 1764.259706][ T2131]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1764.259722][ T2131]  ? sctp_add_bind_addr+0xae/0x3e0
[ 1764.259742][ T2131]  ? __sctp_v6_cmp_addr+0x206/0x530
[ 1764.259768][ T2131]  sctp_add_bind_addr+0xae/0x3e0
[ 1764.259789][ T2131]  sctp_copy_local_addr_list+0x349/0x550
[ 1764.259815][ T2131]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[ 1764.259839][ T2131]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[ 1764.259862][ T2131]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1764.259886][ T2131]  sctp_bind_addr_copy+0xe0/0x530
[ 1764.259909][ T2131]  sctp_connect_new_asoc+0x1c9/0x770
[ 1764.259927][ T2131]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[ 1764.259947][ T2131]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1764.259970][ T2131]  sctp_sendmsg+0x171a/0x22b0
[ 1764.259991][ T2131]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1764.260011][ T2131]  ? aa_sk_perm+0x2de/0xb40
[ 1764.260033][ T2131]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1764.260050][ T2131]  ? __might_fault+0xc5/0x140
[ 1764.260073][ T2131]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1764.260089][ T2131]  inet_sendmsg+0x11c/0x140
[ 1764.260108][ T2131]  __sys_sendto+0x467/0x520
[ 1764.260128][ T2131]  ? __pfx___sys_sendto+0x10/0x10
[ 1764.260162][ T2131]  ? ksys_write+0x1ac/0x250
[ 1764.260181][ T2131]  ? __pfx_ksys_write+0x10/0x10
[ 1764.260203][ T2131]  __x64_sys_sendto+0xe0/0x1c0
[ 1764.260220][ T2131]  ? do_syscall_64+0x95/0xf80
[ 1764.260241][ T2131]  ? lockdep_hardirqs_on+0x78/0x100
[ 1764.260262][ T2131]  do_syscall_64+0x106/0xf80
[ 1764.260281][ T2131]  ? clear_bhb_loop+0x40/0x90
[ 1764.260299][ T2131]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1764.260314][ T2131] RIP: 0033:0x7fe81b39bf79
[ 1764.260327][ T2131] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1764.260341][ T2131] RSP: 002b:00007fe81c290028 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1764.260358][ T2131] RAX: ffffffffffffffda RBX: 00007fe81b615fa0 RCX: 00007fe81b39bf79
[ 1764.260368][ T2131] RDX: 0000000000000401 RSI: 0000000000000000 RDI: 0000000000000009
[ 1764.260376][ T2131] RBP: 00007fe81c290090 R08: 0000200000000000 R09: 000000000000001c
[ 1764.260385][ T2131] R10: 000000000000007f R11: 0000000000000246 R12: 0000000000000001
[ 1764.260393][ T2131] R13: 00007fe81b616038 R14: 00007fe81b615fa0 R15: 00007ffcb3b32bb8
[ 1764.260413][ T2131]  </TASK>
[ 1765.922926][T26832] Bluetooth: hci4: command 0x0406 tx timeout
[ 1765.929012][ T2118] Bluetooth: hci4: Opcode 0x0c1a failed: -110
[ 1766.526331][ T2118] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1766.532653][ T2118] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1766.539201][ T2118] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1766.756217][ T2154] binder: 2153:2154 ioctl c018620c 200000000040 returned -22
[ 1768.006981][T26832] Bluetooth: hci3: command 0x0406 tx timeout
[ 1768.279883][ T2167] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1768.312075][ T2167] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1768.347580][ T2167] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1768.407927][T26848] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1768.417635][T26848] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1768.426948][T26848] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1768.448707][T26848] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1768.456175][T26848] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1768.739766][T26833] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1768.762345][ T2209] FAULT_INJECTION: forcing a failure.
[ 1768.762345][ T2209] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1768.855818][ T2209] CPU: 0 UID: 0 PID: 2209 Comm: syz.0.4792 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1768.855846][ T2209] Tainted: [L]=SOFTLOCKUP
[ 1768.855852][ T2209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1768.855862][ T2209] Call Trace:
[ 1768.855867][ T2209]  <TASK>
[ 1768.855875][ T2209]  dump_stack_lvl+0x100/0x190
[ 1768.855904][ T2209]  should_fail_ex.cold+0x5/0xa
[ 1768.855923][ T2209]  get_futex_key+0x295/0x1620
[ 1768.855943][ T2209]  ? __pfx_get_futex_key+0x10/0x10
[ 1768.855961][ T2209]  ? kasan_save_track+0x14/0x30
[ 1768.855981][ T2209]  ? __kasan_kmalloc+0xaa/0xb0
[ 1768.856003][ T2209]  futex_lock_pi+0x1d3/0x7b0
[ 1768.856024][ T2209]  ? preempt_schedule_thunk+0x16/0x30
[ 1768.856042][ T2209]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1768.856060][ T2209]  ? preempt_schedule_common+0x42/0xc0
[ 1768.856082][ T2209]  ? preempt_schedule_thunk+0x16/0x30
[ 1768.856107][ T2209]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1768.856136][ T2209]  ? futex_private_hash_put+0x107/0x1c0
[ 1768.856158][ T2209]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1768.856183][ T2209]  ? __might_fault+0x111/0x140
[ 1768.856204][ T2209]  ? do_vfs_ioctl+0x226/0x13e0
[ 1768.856225][ T2209]  do_futex+0x18a/0x350
[ 1768.856242][ T2209]  ? __pfx_do_futex+0x10/0x10
[ 1768.856260][ T2209]  ? find_held_lock+0x2b/0x80
[ 1768.856284][ T2209]  __x64_sys_futex+0x34f/0x4d0
[ 1768.856305][ T2209]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1768.856329][ T2209]  do_syscall_64+0x106/0xf80
[ 1768.856350][ T2209]  ? clear_bhb_loop+0x40/0x90
[ 1768.856368][ T2209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1768.856383][ T2209] RIP: 0033:0x7fe7eb59bf79
[ 1768.856397][ T2209] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1768.856412][ T2209] RSP: 002b:00007fe7ec39e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1768.856427][ T2209] RAX: ffffffffffffffda RBX: 00007fe7eb816180 RCX: 00007fe7eb59bf79
[ 1768.856446][ T2209] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 1768.856455][ T2209] RBP: 00007fe7eb6327e0 R08: 0000000000000000 R09: 000000008000fff5
[ 1768.856465][ T2209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1768.856475][ T2209] R13: 00007fe7eb816218 R14: 00007fe7eb816180 R15: 00007ffef2950e08
[ 1768.856496][ T2209]  </TASK>
[ 1769.282381][ T2209] zswap: compressor  not available
[ 1769.364255][T26848] Bluetooth: hci4: command 0x0406 tx timeout
[ 1769.762571][T26833] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1769.922031][T26833] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1770.091242][T26833] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1770.322917][T26848] Bluetooth: hci0: command 0x0406 tx timeout
[ 1770.402993][T26848] Bluetooth: hci2: command 0x0406 tx timeout
[ 1770.484115][T26832] Bluetooth: hci1: command tx timeout
[ 1770.625016][T26833] gretap0: left allmulticast mode
[ 1770.645061][T26833] gretap0: left promiscuous mode
[ 1770.676539][T26833] bridge0: port 3(gretap0) entered disabled state
[ 1770.731474][T26833] bridge_slave_1: left allmulticast mode
[ 1770.761056][T26833] bridge_slave_1: left promiscuous mode
[ 1770.797806][T26833] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1770.832475][T26833] bridge_slave_0: left allmulticast mode
[ 1770.862870][T26833] bridge_slave_0: left promiscuous mode
[ 1770.902731][T26833] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1771.426896][T26833] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1771.462369][T26833] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1771.492697][T26833] bond0 (unregistering): Released all slaves
[ 1771.584732][T26833] HfR: left promiscuous mode
[ 1771.756123][T26833] .^: left promiscuous mode
[ 1771.983512][ T2168] chnl_net:caif_netlink_parms(): no params data found
[ 1772.564586][T26832] Bluetooth: hci1: command tx timeout
[ 1772.571537][ T2168] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1772.614972][ T2168] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1772.638176][ T2296] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4808'.
[ 1772.699521][ T2168] bridge_slave_0: entered allmulticast mode
[ 1772.730968][ T2168] bridge_slave_0: entered promiscuous mode
[ 1772.803288][ T2168] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1772.853014][ T2168] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1772.909052][ T2296] zram0: detected capacity change from 0 to 8
[ 1772.916002][ T2168] bridge_slave_1: entered allmulticast mode
[ 1772.974167][ T2168] bridge_slave_1: entered promiscuous mode
[ 1773.215552][ T2168] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1773.335801][ T2168] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1773.522391][ T2168] team0: Port device team_slave_0 added
[ 1773.564487][ T2168] team0: Port device team_slave_1 added
[ 1773.797796][ T2168] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1773.823703][ T2168] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1773.918962][ T2168] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1774.201654][ T2168] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1774.224955][ T2168] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1774.315236][ T2168] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1774.640478][ T2168] hsr_slave_0: entered promiscuous mode
[ 1774.647029][T26832] Bluetooth: hci1: command tx timeout
[ 1774.696458][ T2168] hsr_slave_1: entered promiscuous mode
[ 1774.725835][ T2168] debugfs: 'hsr0' already exists in 'hsr'
[ 1774.763328][ T2168] Cannot create hsr debugfs directory
[ 1775.971030][T26833] hsr_slave_0: left promiscuous mode
[ 1776.033473][T26833] hsr_slave_1: left promiscuous mode
[ 1776.054288][T26833] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1776.095467][T26833] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1776.127283][T26833] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1776.148503][T26833] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1776.184776][T26833] veth1_macvtap: left promiscuous mode
[ 1776.199956][T26833] veth0_macvtap: left promiscuous mode
[ 1776.225666][T26833] veth1_vlan: left promiscuous mode
[ 1776.247542][T26833] veth0_vlan: left promiscuous mode
[ 1776.723087][T26832] Bluetooth: hci1: command tx timeout
[ 1776.770870][T26833] team0 (unregistering): Port device team_slave_1 removed
[ 1776.806151][T26833] team0 (unregistering): Port device team_slave_0 removed
[ 1778.464530][ T2168] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1778.526789][ T2168] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1778.606047][ T2168] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1778.660850][ T2168] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1779.104724][ T2168] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1779.159632][ T2168] 8021q: adding VLAN 0 to HW filter on device team0
[ 1779.228022][T26831] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1779.235177][T26831] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1779.304255][T26831] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1779.311380][T26831] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1779.467998][   T30] audit: type=1326 audit(2147502218.718:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2435 comm="syz.2.4832" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1c4e19bf79 code=0x0
[ 1779.495208][ T2168] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1779.991572][ T2168] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1780.184339][ T2168] veth0_vlan: entered promiscuous mode
[ 1780.238537][ T2168] veth1_vlan: entered promiscuous mode
[ 1780.444551][ T2168] veth0_macvtap: entered promiscuous mode
[ 1780.528701][ T2168] veth1_macvtap: entered promiscuous mode
[ 1780.545301][ T2467] kAFS: No cell specified
[ 1780.641466][ T2168] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1780.706732][ T2474] FAULT_INJECTION: forcing a failure.
[ 1780.706732][ T2474] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1780.811940][ T2474] CPU: 0 UID: 0 PID: 2474 Comm: syz.3.4834 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1780.811969][ T2474] Tainted: [L]=SOFTLOCKUP
[ 1780.811975][ T2474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1780.811984][ T2474] Call Trace:
[ 1780.811990][ T2474]  <TASK>
[ 1780.811997][ T2474]  dump_stack_lvl+0x100/0x190
[ 1780.812024][ T2474]  should_fail_ex.cold+0x5/0xa
[ 1780.812043][ T2474]  get_futex_key+0x295/0x1620
[ 1780.812062][ T2474]  ? __pfx_get_futex_key+0x10/0x10
[ 1780.812080][ T2474]  ? kasan_save_track+0x14/0x30
[ 1780.812100][ T2474]  ? __kasan_kmalloc+0xaa/0xb0
[ 1780.812123][ T2474]  futex_lock_pi+0x1d3/0x7b0
[ 1780.812143][ T2474]  ? preempt_schedule_thunk+0x16/0x30
[ 1780.812162][ T2474]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1780.812180][ T2474]  ? preempt_schedule_common+0x42/0xc0
[ 1780.812201][ T2474]  ? preempt_schedule_thunk+0x16/0x30
[ 1780.812226][ T2474]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1780.812254][ T2474]  ? futex_private_hash_put+0x107/0x1c0
[ 1780.812273][ T2474]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1780.812297][ T2474]  ? __might_fault+0x111/0x140
[ 1780.812316][ T2474]  ? do_vfs_ioctl+0x226/0x13e0
[ 1780.812336][ T2474]  do_futex+0x18a/0x350
[ 1780.812354][ T2474]  ? __pfx_do_futex+0x10/0x10
[ 1780.812372][ T2474]  ? find_held_lock+0x2b/0x80
[ 1780.812397][ T2474]  __x64_sys_futex+0x34f/0x4d0
[ 1780.812417][ T2474]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1780.812442][ T2474]  do_syscall_64+0x106/0xf80
[ 1780.812462][ T2474]  ? clear_bhb_loop+0x40/0x90
[ 1780.812480][ T2474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1780.812495][ T2474] RIP: 0033:0x7fe81b39bf79
[ 1780.812509][ T2474] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1780.812524][ T2474] RSP: 002b:00007fe81c24e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1780.812539][ T2474] RAX: ffffffffffffffda RBX: 00007fe81b616180 RCX: 00007fe81b39bf79
[ 1780.812549][ T2474] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 1780.812558][ T2474] RBP: 00007fe81b4327e0 R08: 0000000000000000 R09: 000000008000fff5
[ 1780.812567][ T2474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1780.812576][ T2474] R13: 00007fe81b616218 R14: 00007fe81b616180 R15: 00007ffcb3b32bb8
[ 1780.812596][ T2474]  </TASK>
[ 1781.385551][ T2168] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1781.513590][T29029] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1781.533010][T29029] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1781.557811][ T2469] zswap: compressor  not available
[ 1781.665474][T29029] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1781.674718][T29029] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1781.916729][T29029] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1781.927339][T29029] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1782.149657][T27241] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1782.196636][T27241] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1782.476952][ T2495] Process accounting paused
[ 1782.701119][ T2519] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4785'.
[ 1782.819035][ T2519] dummy0: entered promiscuous mode
[ 1782.852048][ T2519] dummy0: entered allmulticast mode
[ 1784.883367][ T2498] Bluetooth: hci4: Opcode 0x0c1a failed: -110
[ 1784.889510][T26832] Bluetooth: hci4: command 0x0406 tx timeout
[ 1785.095488][ T2498] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1785.102162][ T2498] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1785.108484][ T2498] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1785.120296][ T2498] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1785.156486][T26848] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1785.173552][T26848] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1785.181752][T26848] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1785.201460][T26848] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1785.210491][T26848] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1785.616040][T27241] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1785.866031][T27241] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1786.191276][T27241] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1786.280049][T27241] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1786.962972][T26848] Bluetooth: hci0: command 0x0406 tx timeout
[ 1787.124789][T26848] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1787.188019][ T2614] kAFS: No cell specified
[ 1787.284653][T26848] Bluetooth: hci3: command tx timeout
[ 1787.335948][T27241] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1787.372684][T27241] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1787.401717][T27241] bond0 (unregistering): Released all slaves
[ 1787.413841][ T2624] kAFS: No cell specified
[ 1787.421429][ T2543] chnl_net:caif_netlink_parms(): no params data found
[ 1787.892334][ T2634] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4850'.
[ 1788.160023][ T2543] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1788.179471][ T2543] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1788.198522][ T2543] bridge_slave_0: entered allmulticast mode
[ 1788.217976][ T2543] bridge_slave_0: entered promiscuous mode
[ 1788.343702][ T2543] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1788.386488][ T2543] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1788.423118][ T2543] bridge_slave_1: entered allmulticast mode
[ 1788.458123][ T2543] bridge_slave_1: entered promiscuous mode
[ 1788.736546][ T2543] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1788.782282][ T2543] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1789.152561][ T2543] team0: Port device team_slave_0 added
[ 1789.202909][T26848] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1789.215547][ T2543] team0: Port device team_slave_1 added
[ 1789.363761][T26848] Bluetooth: hci3: command tx timeout
[ 1789.460312][ T2543] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1789.514962][ T2543] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1789.692890][ T2543] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1789.749603][ T2695] kAFS: No cell specified
[ 1789.760032][ T2543] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1789.813801][ T2543] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1789.942362][ T2543] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1790.449242][ T2543] hsr_slave_0: entered promiscuous mode
[ 1790.502549][ T2543] hsr_slave_1: entered promiscuous mode
[ 1790.532047][ T2543] debugfs: 'hsr0' already exists in 'hsr'
[ 1790.574182][ T2543] Cannot create hsr debugfs directory
[ 1791.173739][ T2736] FAULT_INJECTION: forcing a failure.
[ 1791.173739][ T2736] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1791.249224][T27241] hsr_slave_0: left promiscuous mode
[ 1791.269763][ T2736] CPU: 0 UID: 0 PID: 2736 Comm: syz.1.4862 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1791.269791][ T2736] Tainted: [L]=SOFTLOCKUP
[ 1791.269797][ T2736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1791.269807][ T2736] Call Trace:
[ 1791.269812][ T2736]  <TASK>
[ 1791.269818][ T2736]  dump_stack_lvl+0x100/0x190
[ 1791.269858][ T2736]  should_fail_ex.cold+0x5/0xa
[ 1791.269878][ T2736]  get_futex_key+0x1d2/0x1620
[ 1791.269902][ T2736]  ? __pfx_get_futex_key+0x10/0x10
[ 1791.269920][ T2736]  ? kasan_save_track+0x14/0x30
[ 1791.269940][ T2736]  ? __kasan_kmalloc+0xaa/0xb0
[ 1791.269962][ T2736]  futex_lock_pi+0x1d3/0x7b0
[ 1791.269983][ T2736]  ? preempt_schedule_thunk+0x16/0x30
[ 1791.270002][ T2736]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1791.270030][ T2736]  ? preempt_schedule_common+0x42/0xc0
[ 1791.270053][ T2736]  ? preempt_schedule_thunk+0x16/0x30
[ 1791.270080][ T2736]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1791.270111][ T2736]  ? futex_private_hash_put+0x107/0x1c0
[ 1791.270133][ T2736]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1791.270158][ T2736]  ? __might_fault+0x111/0x140
[ 1791.270177][ T2736]  ? do_vfs_ioctl+0x226/0x13e0
[ 1791.270197][ T2736]  do_futex+0x18a/0x350
[ 1791.270215][ T2736]  ? __pfx_do_futex+0x10/0x10
[ 1791.270239][ T2736]  ? find_held_lock+0x2b/0x80
[ 1791.270264][ T2736]  __x64_sys_futex+0x34f/0x4d0
[ 1791.270286][ T2736]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1791.270312][ T2736]  do_syscall_64+0x106/0xf80
[ 1791.270333][ T2736]  ? clear_bhb_loop+0x40/0x90
[ 1791.270351][ T2736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1791.270366][ T2736] RIP: 0033:0x7f91a9d9bf79
[ 1791.270380][ T2736] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1791.270396][ T2736] RSP: 002b:00007f91a7ff6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1791.270410][ T2736] RAX: ffffffffffffffda RBX: 00007f91aa016180 RCX: 00007f91a9d9bf79
[ 1791.270420][ T2736] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 1791.270429][ T2736] RBP: 00007f91a9e327e0 R08: 0000000000000000 R09: 000000008000fff5
[ 1791.270439][ T2736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1791.270448][ T2736] R13: 00007f91aa016218 R14: 00007f91aa016180 R15: 00007ffdf7cadd18
[ 1791.270468][ T2736]  </TASK>
[ 1791.498861][ T2722] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1791.510143][ T2722] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1791.516741][ T2722] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1791.522743][ T2722] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1791.528808][ T2722] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1791.577092][ T2736] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1791.596022][T27241] hsr_slave_1: left promiscuous mode
[ 1791.601881][T27241] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1791.610338][T27241] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1791.624764][ T2722] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1791.631275][T27241] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1791.638961][T27241] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1791.671901][T27241] veth1_macvtap: left promiscuous mode
[ 1791.679983][T27241] veth0_macvtap: left promiscuous mode
[ 1791.686354][T27241] veth1_vlan: left promiscuous mode
[ 1791.691610][T27241] veth0_vlan: left promiscuous mode
[ 1791.869577][ T2736] zswap: compressor  not available
[ 1791.875791][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1791.885189][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1792.087847][T27241] team0 (unregistering): Port device team_slave_1 removed
[ 1792.117349][T27241] team0 (unregistering): Port device team_slave_0 removed
[ 1792.384386][ T2734] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1792.390774][ T2734] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1792.415851][ T2734] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1792.439406][ T2734] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1792.741475][ T2762] FAULT_INJECTION: forcing a failure.
[ 1792.741475][ T2762] name failslab, interval 1, probability 0, space 0, times 0
[ 1792.825761][ T2762] CPU: 0 UID: 0 PID: 2762 Comm: syz.0.4865 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1792.825789][ T2762] Tainted: [L]=SOFTLOCKUP
[ 1792.825795][ T2762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1792.825806][ T2762] Call Trace:
[ 1792.825811][ T2762]  <TASK>
[ 1792.825819][ T2762]  dump_stack_lvl+0x100/0x190
[ 1792.825848][ T2762]  should_fail_ex.cold+0x5/0xa
[ 1792.825876][ T2762]  should_failslab+0xc2/0x120
[ 1792.825902][ T2762]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1792.825923][ T2762]  ? __kernfs_new_node+0xd2/0x960
[ 1792.825946][ T2762]  __kernfs_new_node+0xd2/0x960
[ 1792.825967][ T2762]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1792.825991][ T2762]  ? find_held_lock+0x2b/0x80
[ 1792.826014][ T2762]  ? kernfs_root+0xee/0x2a0
[ 1792.826031][ T2762]  ? kernfs_root+0xee/0x2a0
[ 1792.826054][ T2762]  kernfs_new_node+0x11b/0x1a0
[ 1792.826078][ T2762]  __kernfs_create_file+0x53/0x350
[ 1792.826105][ T2762]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1792.826128][ T2762]  sysfs_merge_group+0x194/0x340
[ 1792.826148][ T2762]  ? __pfx_sysfs_merge_group+0x10/0x10
[ 1792.826171][ T2762]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1792.826193][ T2762]  ? bus_to_subsys+0x114/0x150
[ 1792.826219][ T2762]  dpm_sysfs_add+0x237/0x280
[ 1792.826240][ T2762]  device_add+0x9ef/0x1950
[ 1792.826263][ T2762]  ? __pfx_device_add+0x10/0x10
[ 1792.826283][ T2762]  ? lockdep_init_map_type+0x5c/0x250
[ 1792.826304][ T2762]  ? __init_waitqueue_head+0xca/0x150
[ 1792.826331][ T2762]  rfkill_register+0x1ad/0xb30
[ 1792.826353][ T2762]  nfc_register_device+0x11f/0x3e0
[ 1792.826379][ T2762]  nci_register_device+0x7f1/0xb80
[ 1792.826400][ T2762]  ? __pfx_nci_register_device+0x10/0x10
[ 1792.826422][ T2762]  ? lockdep_init_map_type+0x5c/0x250
[ 1792.826447][ T2762]  virtual_ncidev_open+0x141/0x220
[ 1792.826472][ T2762]  ? __pfx_virtual_ncidev_open+0x10/0x10
[ 1792.826495][ T2762]  misc_open+0x26d/0x450
[ 1792.826517][ T2762]  ? __pfx_misc_open+0x10/0x10
[ 1792.826538][ T2762]  chrdev_open+0x234/0x6a0
[ 1792.826561][ T2762]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1792.826580][ T2762]  ? __pfx_chrdev_open+0x10/0x10
[ 1792.826604][ T2762]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1792.826632][ T2762]  do_dentry_open+0x6d8/0x1660
[ 1792.826654][ T2762]  ? __pfx_chrdev_open+0x10/0x10
[ 1792.826682][ T2762]  vfs_open+0x82/0x3f0
[ 1792.826711][ T2762]  path_openat+0x208c/0x31a0
[ 1792.826744][ T2762]  ? __pfx_path_openat+0x10/0x10
[ 1792.826774][ T2762]  do_file_open+0x20e/0x430
[ 1792.826802][ T2762]  ? __pfx_do_file_open+0x10/0x10
[ 1792.826840][ T2762]  ? alloc_fd+0x476/0x790
[ 1792.826864][ T2762]  ? do_getname+0x191/0x390
[ 1792.826882][ T2762]  do_sys_openat2+0x10d/0x1e0
[ 1792.826900][ T2762]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1792.826919][ T2762]  ? __fget_files+0x21f/0x3d0
[ 1792.826945][ T2762]  __x64_sys_openat+0x12d/0x210
[ 1792.826963][ T2762]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1792.826989][ T2762]  do_syscall_64+0x106/0xf80
[ 1792.827012][ T2762]  ? clear_bhb_loop+0x40/0x90
[ 1792.827031][ T2762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1792.827048][ T2762] RIP: 0033:0x7fe7eb59bf79
[ 1792.827063][ T2762] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1792.827079][ T2762] RSP: 002b:00007fe7ec3e0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1792.827095][ T2762] RAX: ffffffffffffffda RBX: 00007fe7eb815fa0 RCX: 00007fe7eb59bf79
[ 1792.827107][ T2762] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1792.827116][ T2762] RBP: 00007fe7eb6327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1792.827126][ T2762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1792.827135][ T2762] R13: 00007fe7eb816038 R14: 00007fe7eb815fa0 R15: 00007ffef2950e08
[ 1792.827156][ T2762]  </TASK>
[ 1793.206627][ T2770] netlink: 244 bytes leftover after parsing attributes in process `syz.3.4866'.
[ 1793.261273][ T2770] FAULT_INJECTION: forcing a failure.
[ 1793.261273][ T2770] name failslab, interval 1, probability 0, space 0, times 0
[ 1793.274305][ T2770] CPU: 0 UID: 0 PID: 2770 Comm: syz.3.4866 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1793.274331][ T2770] Tainted: [L]=SOFTLOCKUP
[ 1793.274337][ T2770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1793.274347][ T2770] Call Trace:
[ 1793.274354][ T2770]  <TASK>
[ 1793.274361][ T2770]  dump_stack_lvl+0x100/0x190
[ 1793.274388][ T2770]  should_fail_ex.cold+0x5/0xa
[ 1793.274408][ T2770]  should_failslab+0xc2/0x120
[ 1793.274430][ T2770]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1793.274447][ T2770]  ? kobject_uevent_env+0x263/0x18b0
[ 1793.274464][ T2770]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1793.274491][ T2770]  kobject_uevent_env+0x263/0x18b0
[ 1793.274512][ T2770]  ? bus_to_subsys+0x114/0x150
[ 1793.274536][ T2770]  device_add+0x116e/0x1950
[ 1793.274557][ T2770]  ? __pfx_device_add+0x10/0x10
[ 1793.274576][ T2770]  ? lockdep_init_map_type+0x5c/0x250
[ 1793.274595][ T2770]  ? __init_waitqueue_head+0xca/0x150
[ 1793.274662][ T2770]  rfkill_register+0x1ad/0xb30
[ 1793.274684][ T2770]  nfc_register_device+0x11f/0x3e0
[ 1793.274708][ T2770]  nci_register_device+0x7f1/0xb80
[ 1793.274727][ T2770]  ? __pfx_nci_register_device+0x10/0x10
[ 1793.274748][ T2770]  ? lockdep_init_map_type+0x5c/0x250
[ 1793.274770][ T2770]  virtual_ncidev_open+0x141/0x220
[ 1793.274792][ T2770]  ? __pfx_virtual_ncidev_open+0x10/0x10
[ 1793.274814][ T2770]  misc_open+0x26d/0x450
[ 1793.274833][ T2770]  ? __pfx_misc_open+0x10/0x10
[ 1793.274852][ T2770]  chrdev_open+0x234/0x6a0
[ 1793.274873][ T2770]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1793.274891][ T2770]  ? __pfx_chrdev_open+0x10/0x10
[ 1793.274914][ T2770]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1793.274941][ T2770]  do_dentry_open+0x6d8/0x1660
[ 1793.274964][ T2770]  ? __pfx_chrdev_open+0x10/0x10
[ 1793.274990][ T2770]  vfs_open+0x82/0x3f0
[ 1793.275008][ T2770]  path_openat+0x208c/0x31a0
[ 1793.275036][ T2770]  ? __pfx_path_openat+0x10/0x10
[ 1793.275065][ T2770]  do_file_open+0x20e/0x430
[ 1793.275088][ T2770]  ? __pfx_do_file_open+0x10/0x10
[ 1793.275123][ T2770]  ? alloc_fd+0x476/0x790
[ 1793.275146][ T2770]  ? do_getname+0x191/0x390
[ 1793.275163][ T2770]  do_sys_openat2+0x10d/0x1e0
[ 1793.275179][ T2770]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1793.275197][ T2770]  ? __fget_files+0x21f/0x3d0
[ 1793.275222][ T2770]  __x64_sys_openat+0x12d/0x210
[ 1793.275239][ T2770]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1793.275264][ T2770]  do_syscall_64+0x106/0xf80
[ 1793.275284][ T2770]  ? clear_bhb_loop+0x40/0x90
[ 1793.275303][ T2770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1793.275318][ T2770] RIP: 0033:0x7fe81b39bf79
[ 1793.275333][ T2770] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1793.275352][ T2770] RSP: 002b:00007fe81c290028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1793.275367][ T2770] RAX: ffffffffffffffda RBX: 00007fe81b615fa0 RCX: 00007fe81b39bf79
[ 1793.275379][ T2770] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1793.275388][ T2770] RBP: 00007fe81b4327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1793.275398][ T2770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1793.275407][ T2770] R13: 00007fe81b616038 R14: 00007fe81b615fa0 R15: 00007ffcb3b32bb8
[ 1793.275428][ T2770]  </TASK>
[ 1794.114547][ T2780] Process accounting paused
[ 1794.280221][ T2543] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1794.309718][ T2789] FAULT_INJECTION: forcing a failure.
[ 1794.309718][ T2789] name failslab, interval 1, probability 0, space 0, times 0
[ 1794.363763][ T2543] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1794.394719][ T2789] CPU: 0 UID: 0 PID: 2789 Comm: syz.3.4870 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1794.394745][ T2789] Tainted: [L]=SOFTLOCKUP
[ 1794.394751][ T2789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1794.394760][ T2789] Call Trace:
[ 1794.394765][ T2789]  <TASK>
[ 1794.394771][ T2789]  dump_stack_lvl+0x100/0x190
[ 1794.394799][ T2789]  should_fail_ex.cold+0x5/0xa
[ 1794.394817][ T2789]  should_failslab+0xc2/0x120
[ 1794.394839][ T2789]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1794.394857][ T2789]  ? do_getname+0x35/0x390
[ 1794.394871][ T2789]  ? find_held_lock+0x2b/0x80
[ 1794.394896][ T2789]  do_getname+0x35/0x390
[ 1794.394912][ T2789]  do_sys_openat2+0xc5/0x1e0
[ 1794.394928][ T2789]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1794.394942][ T2789]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1794.394967][ T2789]  ? __fget_files+0x21f/0x3d0
[ 1794.394990][ T2789]  __x64_sys_openat+0x12d/0x210
[ 1794.395006][ T2789]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1794.395021][ T2789]  ? ksys_write+0x1ac/0x250
[ 1794.395046][ T2789]  do_syscall_64+0x106/0xf80
[ 1794.395066][ T2789]  ? clear_bhb_loop+0x40/0x90
[ 1794.395083][ T2789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1794.395097][ T2789] RIP: 0033:0x7fe81b39bf79
[ 1794.395110][ T2789] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1794.395125][ T2789] RSP: 002b:00007fe81c290028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1794.395140][ T2789] RAX: ffffffffffffffda RBX: 00007fe81b615fa0 RCX: 00007fe81b39bf79
[ 1794.395150][ T2789] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1794.395159][ T2789] RBP: 00007fe81c290090 R08: 0000000000000000 R09: 0000000000000000
[ 1794.395168][ T2789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1794.395176][ T2789] R13: 00007fe81b616038 R14: 00007fe81b615fa0 R15: 00007ffcb3b32bb8
[ 1794.395195][ T2789]  </TASK>
[ 1794.650525][T26832] Bluetooth: hci0: command 0x0406 tx timeout
[ 1794.657253][T26832] Bluetooth: hci4: command 0x0406 tx timeout
[ 1794.663309][T26832] Bluetooth: hci3: command 0x0419 tx timeout
[ 1794.669314][T26832] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1794.748192][ T2543] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1795.070763][ T2543] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1796.246491][ T2543] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1796.402270][ T2543] 8021q: adding VLAN 0 to HW filter on device team0
[ 1796.493841][T26838] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1796.500986][T26838] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1796.593210][T26838] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1796.600365][T26838] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1796.630776][ T2874] FAULT_INJECTION: forcing a failure.
[ 1796.630776][ T2874] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1796.712991][ T2874] CPU: 0 UID: 0 PID: 2874 Comm: syz.1.4879 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1796.713020][ T2874] Tainted: [L]=SOFTLOCKUP
[ 1796.713025][ T2874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1796.713035][ T2874] Call Trace:
[ 1796.713041][ T2874]  <TASK>
[ 1796.713047][ T2874]  dump_stack_lvl+0x100/0x190
[ 1796.713080][ T2874]  should_fail_ex.cold+0x5/0xa
[ 1796.713099][ T2874]  _copy_from_iter+0x1f4/0x1690
[ 1796.713125][ T2874]  ? __pfx__copy_from_iter+0x10/0x10
[ 1796.713144][ T2874]  ? rcu_is_watching+0x12/0xc0
[ 1796.713164][ T2874]  ? trace_kmalloc+0x101/0x130
[ 1796.713185][ T2874]  ? __kasan_kmalloc+0xaa/0xb0
[ 1796.713204][ T2874]  ? __kmalloc_noprof+0x320/0x850
[ 1796.713229][ T2874]  kernfs_fop_write_iter+0x186/0x5f0
[ 1796.713254][ T2874]  vfs_write+0x6ac/0x1070
[ 1796.713278][ T2874]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1796.713300][ T2874]  ? __pfx_vfs_write+0x10/0x10
[ 1796.713338][ T2874]  ksys_write+0x12a/0x250
[ 1796.713357][ T2874]  ? __pfx_ksys_write+0x10/0x10
[ 1796.713382][ T2874]  do_syscall_64+0x106/0xf80
[ 1796.713402][ T2874]  ? clear_bhb_loop+0x40/0x90
[ 1796.713421][ T2874]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1796.713435][ T2874] RIP: 0033:0x7f91a9d9bf79
[ 1796.713452][ T2874] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1796.713469][ T2874] RSP: 002b:00007f91aab9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1796.713484][ T2874] RAX: ffffffffffffffda RBX: 00007f91aa015fa0 RCX: 00007f91a9d9bf79
[ 1796.713493][ T2874] RDX: 0000000000000081 RSI: 0000200000000000 RDI: 0000000000000003
[ 1796.713502][ T2874] RBP: 00007f91aab9f090 R08: 0000000000000000 R09: 0000000000000000
[ 1796.713511][ T2874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1796.713520][ T2874] R13: 00007f91aa016038 R14: 00007f91aa015fa0 R15: 00007ffdf7cadd18
[ 1796.713540][ T2874]  </TASK>
[ 1797.018922][ T2543] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1797.029367][ T2543] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1797.141979][T26848] Bluetooth: hci3: command 0x0419 tx timeout
[ 1798.110504][ T2543] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1798.371231][ T2543] veth0_vlan: entered promiscuous mode
[ 1798.429891][ T2543] veth1_vlan: entered promiscuous mode
[ 1798.542720][ T2543] veth0_macvtap: entered promiscuous mode
[ 1798.612035][ T2543] veth1_macvtap: entered promiscuous mode
[ 1798.722100][ T2915] kAFS: No cell specified
[ 1798.947257][ T2543] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1799.001845][ T2543] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1799.203154][T26848] Bluetooth: hci3: command 0x0419 tx timeout
[ 1799.248996][T26834] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1799.383269][T26834] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1799.422580][T26834] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1799.476400][T26834] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1800.032708][ T2958] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4891'.
[ 1800.067114][ T2960] FAULT_INJECTION: forcing a failure.
[ 1800.067114][ T2960] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1800.089779][ T2958] netlink: 'syz.0.4891': attribute type 4 has an invalid length.
[ 1800.108781][ T2958] netlink: 'syz.0.4891': attribute type 32 has an invalid length.
[ 1800.140244][ T2960] CPU: 0 UID: 0 PID: 2960 Comm: syz.3.4890 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1800.140270][ T2960] Tainted: [L]=SOFTLOCKUP
[ 1800.140275][ T2960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1800.140284][ T2960] Call Trace:
[ 1800.140290][ T2960]  <TASK>
[ 1800.140296][ T2960]  dump_stack_lvl+0x100/0x190
[ 1800.140322][ T2960]  should_fail_ex.cold+0x5/0xa
[ 1800.140340][ T2960]  _copy_to_user+0x32/0xd0
[ 1800.140361][ T2960]  simple_read_from_buffer+0xcb/0x170
[ 1800.140382][ T2960]  proc_fail_nth_read+0x1af/0x230
[ 1800.140406][ T2960]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1800.140430][ T2960]  ? rw_verify_area+0xce/0x6d0
[ 1800.140447][ T2960]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1800.140470][ T2960]  vfs_read+0x1e4/0xb30
[ 1800.140492][ T2960]  ? __pfx_vfs_read+0x10/0x10
[ 1800.140514][ T2960]  ? __fget_files+0x215/0x3d0
[ 1800.140538][ T2960]  ? __fget_files+0x21f/0x3d0
[ 1800.140562][ T2960]  ksys_read+0x12a/0x250
[ 1800.140581][ T2960]  ? __pfx_ksys_read+0x10/0x10
[ 1800.140605][ T2960]  do_syscall_64+0x106/0xf80
[ 1800.140626][ T2960]  ? clear_bhb_loop+0x40/0x90
[ 1800.140644][ T2960]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1800.140659][ T2960] RIP: 0033:0x7fe81b35c84e
[ 1800.140672][ T2960] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1800.140686][ T2960] RSP: 002b:00007fe81c26efe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1800.140700][ T2960] RAX: ffffffffffffffda RBX: 00007fe81c26f6c0 RCX: 00007fe81b35c84e
[ 1800.140710][ T2960] RDX: 000000000000000f RSI: 00007fe81c26f0a0 RDI: 0000000000000005
[ 1800.140718][ T2960] RBP: 00007fe81c26f090 R08: 0000000000000000 R09: 0000000000000000
[ 1800.140727][ T2960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1800.140735][ T2960] R13: 00007fe81b616128 R14: 00007fe81b616090 R15: 00007ffcb3b32bb8
[ 1800.140754][ T2960]  </TASK>
[ 1800.359290][ T2958] netlink: 46 bytes leftover after parsing attributes in process `syz.0.4891'.
[ 1800.511043][ T2948] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1800.518241][ T2948] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1800.524379][ T2948] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1800.530372][ T2948] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1800.673287][T29029] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1800.681499][T29029] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1800.787117][T26833] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1800.812136][T26833] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1800.839483][ T2974] FAULT_INJECTION: forcing a failure.
[ 1800.839483][ T2974] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1800.965414][ T2974] CPU: 0 UID: 0 PID: 2974 Comm: syz.3.4896 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1800.965440][ T2974] Tainted: [L]=SOFTLOCKUP
[ 1800.965445][ T2974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1800.965455][ T2974] Call Trace:
[ 1800.965460][ T2974]  <TASK>
[ 1800.965466][ T2974]  dump_stack_lvl+0x100/0x190
[ 1800.965492][ T2974]  should_fail_ex.cold+0x5/0xa
[ 1800.965510][ T2974]  _copy_from_user+0x2e/0xd0
[ 1800.965531][ T2974]  ____sys_sendmsg+0x1d1/0xc30
[ 1800.965549][ T2974]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1800.965567][ T2974]  ? __pfx__kstrtoull+0x10/0x10
[ 1800.965585][ T2974]  ___sys_sendmsg+0x190/0x1e0
[ 1800.965606][ T2974]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1800.965631][ T2974]  ? find_held_lock+0x2b/0x80
[ 1800.965665][ T2974]  __sys_sendmmsg+0x205/0x430
[ 1800.965688][ T2974]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1800.965714][ T2974]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1800.965745][ T2974]  ? fput+0x79/0x100
[ 1800.965759][ T2974]  ? ksys_write+0x1ac/0x250
[ 1800.965777][ T2974]  ? __pfx_ksys_write+0x10/0x10
[ 1800.965800][ T2974]  __x64_sys_sendmmsg+0x9c/0x100
[ 1800.965820][ T2974]  ? lockdep_hardirqs_on+0x78/0x100
[ 1800.965846][ T2974]  do_syscall_64+0x106/0xf80
[ 1800.965866][ T2974]  ? clear_bhb_loop+0x40/0x90
[ 1800.965884][ T2974]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1800.965899][ T2974] RIP: 0033:0x7fe81b39bf79
[ 1800.965912][ T2974] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1800.965926][ T2974] RSP: 002b:00007fe81c26f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1800.965941][ T2974] RAX: ffffffffffffffda RBX: 00007fe81b616090 RCX: 00007fe81b39bf79
[ 1800.965951][ T2974] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000004
[ 1800.965959][ T2974] RBP: 00007fe81c26f090 R08: 0000000000000000 R09: 0000000000000000
[ 1800.965968][ T2974] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001
[ 1800.965977][ T2974] R13: 00007fe81b616128 R14: 00007fe81b616090 R15: 00007ffcb3b32bb8
[ 1800.965996][ T2974]  </TASK>
[ 1801.801061][T26832] Bluetooth: hci4: command 0x0406 tx timeout
[ 1801.901257][T26848] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1801.920731][T26848] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1801.931138][T26848] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1801.939614][T26848] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1801.947722][T26848] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1802.566458][T26848] Bluetooth: hci3: command 0x0419 tx timeout
[ 1802.572542][T26832] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1802.586945][T29029] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1802.826871][T29029] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1803.026650][T29029] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1803.536715][ T2985] chnl_net:caif_netlink_parms(): no params data found
[ 1803.870656][T29029] bridge_slave_0: left allmulticast mode
[ 1803.887786][T29029] bridge_slave_0: left promiscuous mode
[ 1803.916275][T29029] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1804.005089][T26848] Bluetooth: hci2: command tx timeout
[ 1804.457835][T29029] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1804.516602][ T3006] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1804.524456][T29029] bond0 (unregistering): Released all slaves
[ 1804.549257][ T3006] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1804.587391][ T3006] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1804.653537][ T3006] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1804.714743][ T3006] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1804.793551][ T2985] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1804.802000][ T2985] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1804.812275][ T3006] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1804.872748][ T2985] bridge_slave_0: entered allmulticast mode
[ 1804.924557][ T2985] bridge_slave_0: entered promiscuous mode
[ 1804.966838][ T2985] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1805.022710][ T2985] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1805.074731][ T2985] bridge_slave_1: entered allmulticast mode
[ 1805.132657][ T2985] bridge_slave_1: entered promiscuous mode
[ 1805.303189][ T2985] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1805.344543][ T2985] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1805.532680][ T2985] team0: Port device team_slave_0 added
[ 1805.581300][ T2985] team0: Port device team_slave_1 added
[ 1805.843436][T26848] Bluetooth: hci4: command 0x0406 tx timeout
[ 1806.046138][ T2985] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1806.091562][ T2985] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1806.237406][ T2985] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1806.307388][ T2985] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1806.344577][ T2985] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1806.488947][ T2985] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1806.566187][T26848] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1806.574189][ T3056] vivid-007: =================  START STATUS  =================
[ 1806.629852][ T3056] vivid-007: Generate PTS: true
[ 1806.645810][T26848] Bluetooth: hci3: command 0x0419 tx timeout
[ 1806.678079][ T3056] vivid-007: Generate SCR: true
[ 1806.699863][ T3056] tpg source WxH: 320x240 (Y'CbCr)
[ 1806.730387][T26848] Bluetooth: hci2: command 0x040f tx timeout
[ 1806.757917][ T3056] tpg field: 1
[ 1806.762323][ T2985] hsr_slave_0: entered promiscuous mode
[ 1806.779914][ T3056] tpg crop: (0,0)/320x240
[ 1806.790714][ T2985] hsr_slave_1: entered promiscuous mode
[ 1806.797664][ T3056] tpg compose: (0,0)/320x240
[ 1806.806823][ T3056] tpg colorspace: 8
[ 1806.815450][ T2985] debugfs: 'hsr0' already exists in 'hsr'
[ 1806.826290][ T3056] tpg transfer function: 0/0
[ 1806.834214][ T2985] Cannot create hsr debugfs directory
[ 1806.843060][ T3056] tpg Y'CbCr encoding: 0/0
[ 1806.854741][ T3056] tpg quantization: 0/0
[ 1806.917165][ T3056] tpg RGB range: 0/2
[ 1806.934462][ T3056] vivid-007: ==================  END STATUS  ==================
[ 1807.496711][ T3082] kAFS: No cell specified
[ 1808.807848][T26848] Bluetooth: hci2: command 0x040f tx timeout
[ 1809.114171][ T2985] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1809.170214][ T2985] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1809.258718][ T2985] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1809.321606][ T2985] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1809.830181][ T2985] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1810.011126][ T3142] FAULT_INJECTION: forcing a failure.
[ 1810.011126][ T3142] name failslab, interval 1, probability 0, space 0, times 0
[ 1810.086796][ T3142] CPU: 0 UID: 0 PID: 3142 Comm: syz.2.4924 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1810.086824][ T3142] Tainted: [L]=SOFTLOCKUP
[ 1810.086829][ T3142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1810.086839][ T3142] Call Trace:
[ 1810.086845][ T3142]  <TASK>
[ 1810.086851][ T3142]  dump_stack_lvl+0x100/0x190
[ 1810.086879][ T3142]  should_fail_ex.cold+0x5/0xa
[ 1810.086897][ T3142]  should_failslab+0xc2/0x120
[ 1810.086919][ T3142]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1810.086936][ T3142]  ? refill_pi_state_cache+0x91/0x260
[ 1810.086960][ T3142]  refill_pi_state_cache+0x91/0x260
[ 1810.086980][ T3142]  futex_lock_pi+0x177/0x7b0
[ 1810.087013][ T3142]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1810.087035][ T3142]  ? __pfx___futex_wait+0x10/0x10
[ 1810.087073][ T3142]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1810.087098][ T3142]  ? __might_fault+0x111/0x140
[ 1810.087118][ T3142]  ? do_vfs_ioctl+0x226/0x13e0
[ 1810.087139][ T3142]  do_futex+0x18a/0x350
[ 1810.087156][ T3142]  ? __pfx_do_futex+0x10/0x10
[ 1810.087174][ T3142]  ? find_held_lock+0x2b/0x80
[ 1810.087199][ T3142]  __x64_sys_futex+0x34f/0x4d0
[ 1810.087219][ T3142]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1810.087244][ T3142]  do_syscall_64+0x106/0xf80
[ 1810.087265][ T3142]  ? clear_bhb_loop+0x40/0x90
[ 1810.087283][ T3142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1810.087298][ T3142] RIP: 0033:0x7fb1d119bf79
[ 1810.087312][ T3142] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1810.087327][ T3142] RSP: 002b:00007fb1d20cd028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1810.087342][ T3142] RAX: ffffffffffffffda RBX: 00007fb1d1416180 RCX: 00007fb1d119bf79
[ 1810.087352][ T3142] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 1810.087361][ T3142] RBP: 00007fb1d12327e0 R08: 0000000000000000 R09: 000000008000fff5
[ 1810.087370][ T3142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1810.087379][ T3142] R13: 00007fb1d1416218 R14: 00007fb1d1416180 R15: 00007ffc53bffb58
[ 1810.087399][ T3142]  </TASK>
[ 1810.543127][ T3150] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1810.812701][ T2985] 8021q: adding VLAN 0 to HW filter on device team0
[ 1810.876012][T26838] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1810.883190][T26838] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1810.891965][ T3142] zswap: compressor  not available
[ 1810.929259][T26848] Bluetooth: hci2: command 0x040f tx timeout
[ 1810.981249][T26838] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1810.988427][T26838] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1811.145302][ T3148] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1811.151375][ T3148] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1811.177202][ T2985] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1811.194230][ T3148] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1811.206999][ T3148] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1811.217959][ T2985] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1811.531929][T29029] hsr_slave_0: left promiscuous mode
[ 1811.574721][T29029] hsr_slave_1: left promiscuous mode
[ 1811.590836][T29029] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1811.655703][T29029] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1811.715681][T29029] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1811.773268][T29029] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1811.835651][T29029] veth1_macvtap: left promiscuous mode
[ 1811.872289][T29029] veth0_macvtap: left promiscuous mode
[ 1811.900972][T29029] veth1_vlan: left promiscuous mode
[ 1811.937049][T29029] veth0_vlan: left promiscuous mode
[ 1812.686949][T29029] team0 (unregistering): Port device team_slave_0 removed
[ 1812.930475][ T3174] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[ 1812.992980][ T3174] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[ 1813.075046][ T3174] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1813.212510][T26832] Bluetooth: hci3: command 0x0419 tx timeout
[ 1813.220537][T26848] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1813.226696][ T1953] Bluetooth: hci4: command 0x0406 tx timeout
[ 1813.283305][T26832] Bluetooth: hci2: command 0x040f tx timeout
[ 1813.378204][ T2985] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1813.761350][ T2985] veth0_vlan: entered promiscuous mode
[ 1813.861298][ T2985] veth1_vlan: entered promiscuous mode
[ 1814.326933][ T3240] FAULT_INJECTION: forcing a failure.
[ 1814.326933][ T3240] name failslab, interval 1, probability 0, space 0, times 0
[ 1814.437272][ T2985] veth0_macvtap: entered promiscuous mode
[ 1814.533794][ T3240] CPU: 0 UID: 0 PID: 3240 Comm: syz.1.4936 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1814.533823][ T3240] Tainted: [L]=SOFTLOCKUP
[ 1814.533829][ T3240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1814.533840][ T3240] Call Trace:
[ 1814.533845][ T3240]  <TASK>
[ 1814.533852][ T3240]  dump_stack_lvl+0x100/0x190
[ 1814.533879][ T3240]  should_fail_ex.cold+0x5/0xa
[ 1814.533899][ T3240]  should_failslab+0xc2/0x120
[ 1814.533922][ T3240]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1814.533938][ T3240]  ? refill_pi_state_cache+0x91/0x260
[ 1814.533962][ T3240]  refill_pi_state_cache+0x91/0x260
[ 1814.533983][ T3240]  futex_lock_pi+0x177/0x7b0
[ 1814.534005][ T3240]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1814.534025][ T3240]  ? __pfx___futex_wait+0x10/0x10
[ 1814.534063][ T3240]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1814.534088][ T3240]  ? __might_fault+0x111/0x140
[ 1814.534106][ T3240]  ? do_vfs_ioctl+0x226/0x13e0
[ 1814.534127][ T3240]  do_futex+0x18a/0x350
[ 1814.534144][ T3240]  ? __pfx_do_futex+0x10/0x10
[ 1814.534163][ T3240]  ? find_held_lock+0x2b/0x80
[ 1814.534187][ T3240]  __x64_sys_futex+0x34f/0x4d0
[ 1814.534207][ T3240]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1814.534232][ T3240]  do_syscall_64+0x106/0xf80
[ 1814.534254][ T3240]  ? clear_bhb_loop+0x40/0x90
[ 1814.534272][ T3240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1814.534287][ T3240] RIP: 0033:0x7f91a9d9bf79
[ 1814.534302][ T3240] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1814.534317][ T3240] RSP: 002b:00007f91a7ff6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1814.534331][ T3240] RAX: ffffffffffffffda RBX: 00007f91aa016180 RCX: 00007f91a9d9bf79
[ 1814.534341][ T3240] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 1814.534350][ T3240] RBP: 00007f91a9e327e0 R08: 0000000000000000 R09: 000000008000fff5
[ 1814.534360][ T3240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1814.534369][ T3240] R13: 00007f91aa016218 R14: 00007f91aa016180 R15: 00007ffdf7cadd18
[ 1814.534390][ T3240]  </TASK>
[ 1814.999528][ T3240] zswap: compressor  not available
[ 1815.240461][ T2985] veth1_macvtap: entered promiscuous mode
[ 1815.373056][T26832] Bluetooth: hci2: command 0x040f tx timeout
[ 1815.576541][ T2985] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1815.680215][ T2985] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1815.780113][T26838] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1815.838819][T26838] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1815.969250][T26838] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1816.016202][T26838] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1816.371897][T29029] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1816.437787][T29029] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1816.549682][T26831] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1816.595544][T26831] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1817.409536][ T3291] kAFS: No cell specified
[ 1817.625009][T26848] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1817.635128][T26848] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1817.643246][T26848] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1817.650900][T26848] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1817.658396][T26848] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1818.151082][T26834] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1818.200793][ T3295] chnl_net:caif_netlink_parms(): no params data found
[ 1818.274048][T26834] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1818.377416][T26834] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1818.495802][T26834] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1818.639641][ T3295] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1818.669001][ T3295] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1818.690400][ T3295] bridge_slave_0: entered allmulticast mode
[ 1818.714373][ T3295] bridge_slave_0: entered promiscuous mode
[ 1818.753157][ T3295] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1818.781839][ T3295] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1818.799976][ T3295] bridge_slave_1: entered allmulticast mode
[ 1818.807901][ T3295] bridge_slave_1: entered promiscuous mode
[ 1818.865279][ T3301] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1818.891835][ T3301] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1818.919851][ T3301] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1818.944727][ T3301] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1818.967362][ T3301] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1818.985321][ T3301] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1819.004745][ T3295] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1819.094703][ T3295] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1819.245366][ T3295] team0: Port device team_slave_0 added
[ 1819.296077][ T3295] team0: Port device team_slave_1 added
[ 1819.431711][ T3295] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1819.452439][ T3328] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4952'.
[ 1819.474661][ T3329] FAULT_INJECTION: forcing a failure.
[ 1819.474661][ T3329] name failslab, interval 1, probability 0, space 0, times 0
[ 1819.493525][ T3295] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1819.556495][ T3329] CPU: 0 UID: 0 PID: 3329 Comm: syz.0.4950 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1819.556522][ T3329] Tainted: [L]=SOFTLOCKUP
[ 1819.556528][ T3329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1819.556538][ T3329] Call Trace:
[ 1819.556544][ T3329]  <TASK>
[ 1819.556550][ T3329]  dump_stack_lvl+0x100/0x190
[ 1819.556578][ T3329]  should_fail_ex.cold+0x5/0xa
[ 1819.556597][ T3329]  should_failslab+0xc2/0x120
[ 1819.556620][ T3329]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1819.556636][ T3329]  ? refill_pi_state_cache+0x91/0x260
[ 1819.556661][ T3329]  refill_pi_state_cache+0x91/0x260
[ 1819.556682][ T3329]  futex_lock_pi+0x177/0x7b0
[ 1819.556703][ T3329]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1819.556734][ T3329]  ? __pfx___futex_wait+0x10/0x10
[ 1819.556772][ T3329]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1819.556796][ T3329]  ? __might_fault+0x111/0x140
[ 1819.556815][ T3329]  ? do_vfs_ioctl+0x226/0x13e0
[ 1819.556835][ T3329]  do_futex+0x18a/0x350
[ 1819.556852][ T3329]  ? __pfx_do_futex+0x10/0x10
[ 1819.556871][ T3329]  ? find_held_lock+0x2b/0x80
[ 1819.556895][ T3329]  __x64_sys_futex+0x34f/0x4d0
[ 1819.556915][ T3329]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1819.556940][ T3329]  do_syscall_64+0x106/0xf80
[ 1819.556961][ T3329]  ? clear_bhb_loop+0x40/0x90
[ 1819.556979][ T3329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1819.557003][ T3329] RIP: 0033:0x7f615b59bf79
[ 1819.557018][ T3329] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1819.557034][ T3329] RSP: 002b:00007f615c45d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1819.557050][ T3329] RAX: ffffffffffffffda RBX: 00007f615b816180 RCX: 00007f615b59bf79
[ 1819.557062][ T3329] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 1819.557072][ T3329] RBP: 00007f615b6327e0 R08: 0000000000000000 R09: 000000008000fff5
[ 1819.557082][ T3329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1819.557091][ T3329] R13: 00007f615b816218 R14: 00007f615b816180 R15: 00007fffd6346b68
[ 1819.557112][ T3329]  </TASK>
[ 1819.773425][ T3295] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1819.786003][ T3295] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1819.792983][ T3295] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1819.818928][ T3295] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1819.857215][ T3295] hsr_slave_0: entered promiscuous mode
[ 1819.863538][ T3295] hsr_slave_1: entered promiscuous mode
[ 1819.869547][ T3295] debugfs: 'hsr0' already exists in 'hsr'
[ 1819.875322][ T3295] Cannot create hsr debugfs directory
[ 1820.033025][T26834] bridge_slave_1: left allmulticast mode
[ 1820.059183][T26834] bridge_slave_1: left promiscuous mode
[ 1820.083288][T26834] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1820.119964][T26834] bridge_slave_0: left allmulticast mode
[ 1820.141285][T26834] bridge_slave_0: left promiscuous mode
[ 1820.147730][T26848] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1820.161092][ T3329] zswap: compressor  not available
[ 1820.191374][T26834] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1820.537247][T26834] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1820.569117][T26834] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1820.589537][T26834] bond0 (unregistering): Released all slaves
[ 1820.730844][T26834] HfR: left promiscuous mode
[ 1820.963030][T26848] Bluetooth: hci0: command 0x041b tx timeout
[ 1820.971738][T26832] Bluetooth: hci2: command 0x040f tx timeout
[ 1820.977832][ T1953] Bluetooth: hci3: command 0x0419 tx timeout
[ 1821.802403][ T3295] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1821.972714][ T3295] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1822.027042][ T3295] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1822.207333][ T3295] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1822.972542][ T3295] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1823.043107][T26848] Bluetooth: hci0: command 0x041b tx timeout
[ 1823.120213][ T3295] 8021q: adding VLAN 0 to HW filter on device team0
[ 1823.237807][T26831] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1823.244971][T26831] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1823.347771][T27241] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1823.354929][T27241] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1823.761550][T26834] hsr_slave_0: left promiscuous mode
[ 1823.774169][T26834] hsr_slave_1: left promiscuous mode
[ 1823.786945][T26834] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1823.804593][T26834] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1823.817367][T26834] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1823.830434][T26834] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1823.856768][T26834] veth1_macvtap: left promiscuous mode
[ 1823.866841][T26834] veth0_macvtap: left promiscuous mode
[ 1823.878147][T26834] veth1_vlan: left promiscuous mode
[ 1823.891203][T26834] veth0_vlan: left promiscuous mode
[ 1824.174888][T26834] team0 (unregistering): Port device team_slave_1 removed
[ 1824.192129][T26834] team0 (unregistering): Port device team_slave_0 removed
[ 1824.448109][ T3412] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1824.481143][ T3412] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1824.488717][ T1953] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1824.550422][ T3412] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1824.589720][ T3412] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1824.615861][ T3295] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1825.250684][ T3295] veth0_vlan: entered promiscuous mode
[ 1825.401400][ T3295] veth1_vlan: entered promiscuous mode
[ 1825.529483][ T3295] veth0_macvtap: entered promiscuous mode
[ 1825.605514][ T3295] veth1_macvtap: entered promiscuous mode
[ 1825.682952][T26848] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1825.747436][ T3295] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1825.835882][ T3295] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1826.084171][T26834] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1826.123030][T26834] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1826.238746][ T3451] kAFS: No cell specified
[ 1826.327531][T26834] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1826.351923][T26834] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1826.472447][T26834] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1826.486529][T26848] Bluetooth: hci3: command 0x0419 tx timeout
[ 1826.522737][T26834] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1826.563172][T26848] Bluetooth: hci2: command 0x040f tx timeout
[ 1826.643001][T26848] Bluetooth: hci0: command 0x041b tx timeout
[ 1826.720364][T26838] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1826.751256][T26838] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1827.129274][ T3476] FAULT_INJECTION: forcing a failure.
[ 1827.129274][ T3476] name failslab, interval 1, probability 0, space 0, times 0
[ 1827.223369][ T3466] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1827.242977][ T3476] CPU: 0 UID: 0 PID: 3476 Comm: syz.3.4944 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1827.243004][ T3476] Tainted: [L]=SOFTLOCKUP
[ 1827.243010][ T3476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1827.243020][ T3476] Call Trace:
[ 1827.243026][ T3476]  <TASK>
[ 1827.243033][ T3476]  dump_stack_lvl+0x100/0x190
[ 1827.243059][ T3476]  should_fail_ex.cold+0x5/0xa
[ 1827.243078][ T3476]  should_failslab+0xc2/0x120
[ 1827.243102][ T3476]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1827.243118][ T3476]  ? refill_pi_state_cache+0x91/0x260
[ 1827.243204][ T3476]  refill_pi_state_cache+0x91/0x260
[ 1827.243225][ T3476]  futex_lock_pi+0x177/0x7b0
[ 1827.243248][ T3476]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1827.243269][ T3476]  ? __pfx___futex_wait+0x10/0x10
[ 1827.243289][ T3476]  ? lockdep_hardirqs_on+0x78/0x100
[ 1827.243327][ T3476]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1827.243352][ T3476]  ? __might_fault+0x111/0x140
[ 1827.243370][ T3476]  ? do_vfs_ioctl+0x226/0x13e0
[ 1827.243391][ T3476]  do_futex+0x18a/0x350
[ 1827.243409][ T3476]  ? __pfx_do_futex+0x10/0x10
[ 1827.243427][ T3476]  ? find_held_lock+0x2b/0x80
[ 1827.243452][ T3476]  __x64_sys_futex+0x34f/0x4d0
[ 1827.243472][ T3476]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1827.243496][ T3476]  do_syscall_64+0x106/0xf80
[ 1827.243517][ T3476]  ? clear_bhb_loop+0x40/0x90
[ 1827.243535][ T3476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1827.243550][ T3476] RIP: 0033:0x7f2016f9bf79
[ 1827.243564][ T3476] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1827.243579][ T3476] RSP: 002b:00007f2017ef9028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1827.243594][ T3476] RAX: ffffffffffffffda RBX: 00007f2017216180 RCX: 00007f2016f9bf79
[ 1827.243604][ T3476] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 1827.243612][ T3476] RBP: 00007f20170327e0 R08: 0000000000000000 R09: 000000008000fff5
[ 1827.243622][ T3476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1827.243631][ T3476] R13: 00007f2017216218 R14: 00007f2017216180 R15: 00007ffeaba38808
[ 1827.243651][ T3476]  </TASK>
[ 1827.681127][ T3461] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1827.711915][ T3461] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1827.744843][ T3461] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1827.790544][ T3461] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1828.944216][   T30] audit: type=1326 audit(2147502268.188:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3514 comm="syz.2.4984" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb1d119bf79 code=0x0
[ 1828.987970][T26848] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1829.765212][T26848] Bluetooth: hci0: command 0x041b tx timeout
[ 1829.771229][T26848] Bluetooth: hci2: command 0x040f tx timeout
[ 1829.778687][ T1953] Bluetooth: hci3: command 0x0419 tx timeout
[ 1830.658622][ T3529] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1830.716919][ T3529] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1830.757280][ T3529] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1830.813055][ T3529] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1831.025895][ T3564] kAFS: No cell specified
[ 1831.926600][ T1953] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1832.803251][ T1953] Bluetooth: hci2: command 0x040f tx timeout
[ 1832.809310][T26848] Bluetooth: hci3: command 0x0419 tx timeout
[ 1832.882920][T26848] Bluetooth: hci0: command 0x041b tx timeout
[ 1834.163272][ T3583] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[ 1834.169551][T26848] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1834.399613][ T3583] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1834.411536][ T3583] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1834.427249][ T3583] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1835.878338][ T3674] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0
[ 1836.242956][T26848] Bluetooth: hci3: command 0x0419 tx timeout
[ 1836.484728][ T1953] Bluetooth: hci2: command 0x040f tx timeout
[ 1836.490879][T26848] Bluetooth: hci0: command 0x041b tx timeout
[ 1836.717297][ T3710] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(2.0.1), cmd(6)
[ 1838.162634][ T3735] vivid-007: =================  START STATUS  =================
[ 1838.213781][ T3735] vivid-007: Generate PTS: true
[ 1838.238019][ T3735] vivid-007: Generate SCR: true
[ 1838.264417][ T3748] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0
[ 1838.273219][ T3735] tpg source WxH: 320x240 (Y'CbCr)
[ 1838.302908][ T3735] tpg field: 1
[ 1838.321848][ T3735] tpg crop: (0,0)/320x240
[ 1838.344047][ T3735] tpg compose: (0,0)/320x240
[ 1838.369493][ T3735] tpg colorspace: 8
[ 1838.385711][ T3735] tpg transfer function: 0/0
[ 1838.431538][ T3735] tpg Y'CbCr encoding: 0/0
[ 1838.448741][ T3735] tpg quantization: 0/0
[ 1838.467950][ T3735] tpg RGB range: 0/2
[ 1838.487267][ T3735] vivid-007: ==================  END STATUS  ==================
[ 1839.214535][ T3758] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1839.241599][ T3758] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1839.274776][ T3758] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1839.302988][ T3758] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1839.710442][ T3795] FAULT_INJECTION: forcing a failure.
[ 1839.710442][ T3795] name failslab, interval 1, probability 0, space 0, times 0
[ 1839.838350][ T3795] CPU: 0 UID: 0 PID: 3795 Comm: syz.0.5040 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1839.838378][ T3795] Tainted: [L]=SOFTLOCKUP
[ 1839.838384][ T3795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1839.838394][ T3795] Call Trace:
[ 1839.838399][ T3795]  <TASK>
[ 1839.838406][ T3795]  dump_stack_lvl+0x100/0x190
[ 1839.838433][ T3795]  should_fail_ex.cold+0x5/0xa
[ 1839.838452][ T3795]  should_failslab+0xc2/0x120
[ 1839.838474][ T3795]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1839.838492][ T3795]  ? refill_pi_state_cache+0x91/0x260
[ 1839.838516][ T3795]  refill_pi_state_cache+0x91/0x260
[ 1839.838536][ T3795]  futex_lock_pi+0x177/0x7b0
[ 1839.838559][ T3795]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1839.838581][ T3795]  ? __pfx___futex_wait+0x10/0x10
[ 1839.838601][ T3795]  ? lockdep_hardirqs_on+0x78/0x100
[ 1839.838639][ T3795]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1839.838663][ T3795]  ? __might_fault+0x111/0x140
[ 1839.838683][ T3795]  ? do_vfs_ioctl+0x226/0x13e0
[ 1839.838703][ T3795]  do_futex+0x18a/0x350
[ 1839.838721][ T3795]  ? __pfx_do_futex+0x10/0x10
[ 1839.838739][ T3795]  ? find_held_lock+0x2b/0x80
[ 1839.838763][ T3795]  __x64_sys_futex+0x34f/0x4d0
[ 1839.838783][ T3795]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1839.838808][ T3795]  do_syscall_64+0x106/0xf80
[ 1839.838835][ T3795]  ? clear_bhb_loop+0x40/0x90
[ 1839.838855][ T3795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1839.838871][ T3795] RIP: 0033:0x7f615b59bf79
[ 1839.838885][ T3795] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1839.838900][ T3795] RSP: 002b:00007f615c45d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1839.838915][ T3795] RAX: ffffffffffffffda RBX: 00007f615b816180 RCX: 00007f615b59bf79
[ 1839.838925][ T3795] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 1839.838934][ T3795] RBP: 00007f615b6327e0 R08: 0000000000000000 R09: 000000008000fff5
[ 1839.838945][ T3795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1839.838954][ T3795] R13: 00007f615b816218 R14: 00007f615b816180 R15: 00007fffd6346b68
[ 1839.838975][ T3795]  </TASK>
[ 1840.548530][T26848] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1840.648540][ T3810] FAULT_INJECTION: forcing a failure.
[ 1840.648540][ T3810] name failslab, interval 1, probability 0, space 0, times 0
[ 1840.692907][ T3810] CPU: 0 UID: 0 PID: 3810 Comm: syz.1.5044 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1840.692935][ T3810] Tainted: [L]=SOFTLOCKUP
[ 1840.692941][ T3810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1840.692951][ T3810] Call Trace:
[ 1840.692957][ T3810]  <TASK>
[ 1840.692964][ T3810]  dump_stack_lvl+0x100/0x190
[ 1840.692990][ T3810]  should_fail_ex.cold+0x5/0xa
[ 1840.693010][ T3810]  should_failslab+0xc2/0x120
[ 1840.693033][ T3810]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1840.693052][ T3810]  ? refill_pi_state_cache+0x91/0x260
[ 1840.693076][ T3810]  refill_pi_state_cache+0x91/0x260
[ 1840.693096][ T3810]  futex_lock_pi+0x177/0x7b0
[ 1840.693118][ T3810]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1840.693139][ T3810]  ? __pfx___futex_wait+0x10/0x10
[ 1840.693180][ T3810]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1840.693204][ T3810]  ? __might_fault+0x111/0x140
[ 1840.693222][ T3810]  ? do_vfs_ioctl+0x226/0x13e0
[ 1840.693242][ T3810]  do_futex+0x18a/0x350
[ 1840.693260][ T3810]  ? __pfx_do_futex+0x10/0x10
[ 1840.693278][ T3810]  ? find_held_lock+0x2b/0x80
[ 1840.693302][ T3810]  __x64_sys_futex+0x34f/0x4d0
[ 1840.693328][ T3810]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1840.693354][ T3810]  do_syscall_64+0x106/0xf80
[ 1840.693383][ T3810]  ? clear_bhb_loop+0x40/0x90
[ 1840.693402][ T3810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1840.693418][ T3810] RIP: 0033:0x7f91a9d9bf79
[ 1840.693432][ T3810] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1840.693447][ T3810] RSP: 002b:00007f91a7ff6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1840.693462][ T3810] RAX: ffffffffffffffda RBX: 00007f91aa016180 RCX: 00007f91a9d9bf79
[ 1840.693476][ T3810] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 1840.693486][ T3810] RBP: 00007f91a9e327e0 R08: 0000000000000000 R09: 000000008000fff5
[ 1840.693495][ T3810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1840.693504][ T3810] R13: 00007f91aa016218 R14: 00007f91aa016180 R15: 00007ffdf7cadd18
[ 1840.693524][ T3810]  </TASK>
[ 1841.015926][ T3786] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1841.283295][T26848] Bluetooth: hci2: command 0x040f tx timeout
[ 1841.289378][ T1953] Bluetooth: hci3: command 0x0419 tx timeout
[ 1841.365738][T26848] Bluetooth: hci0: command 0x041b tx timeout
[ 1841.792169][ T3821] vivid-007: =================  START STATUS  =================
[ 1841.863010][ T3821] vivid-007: Generate PTS: true
[ 1841.887408][ T3821] vivid-007: Generate SCR: true
[ 1841.917437][ T3821] tpg source WxH: 320x240 (Y'CbCr)
[ 1841.982481][ T3821] tpg field: 1
[ 1842.025389][ T3821] tpg crop: (0,0)/320x240
[ 1842.038316][ T3821] tpg compose: (0,0)/320x240
[ 1842.097596][ T3821] tpg colorspace: 8
[ 1842.132248][ T3821] tpg transfer function: 0/0
[ 1842.180510][ T3821] tpg Y'CbCr encoding: 0/0
[ 1842.192873][ T3821] tpg quantization: 0/0
[ 1842.197064][ T3821] tpg RGB range: 0/2
[ 1842.200939][ T3821] vivid-007: ==================  END STATUS  ==================
[ 1843.173916][ T3863] FAULT_INJECTION: forcing a failure.
[ 1843.173916][ T3863] name failslab, interval 1, probability 0, space 0, times 0
[ 1843.254214][ T3863] CPU: 0 UID: 0 PID: 3863 Comm: syz.0.5054 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1843.254241][ T3863] Tainted: [L]=SOFTLOCKUP
[ 1843.254247][ T3863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1843.254257][ T3863] Call Trace:
[ 1843.254264][ T3863]  <TASK>
[ 1843.254271][ T3863]  dump_stack_lvl+0x100/0x190
[ 1843.254299][ T3863]  should_fail_ex.cold+0x5/0xa
[ 1843.254319][ T3863]  should_failslab+0xc2/0x120
[ 1843.254343][ T3863]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1843.254362][ T3863]  ? acpi_ut_create_thread_state+0x6d/0x170
[ 1843.254382][ T3863]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[ 1843.254400][ T3863]  ? acpi_ut_allocate_object_desc_dbg+0x86/0x240
[ 1843.254423][ T3863]  acpi_ut_create_thread_state+0x6d/0x170
[ 1843.254456][ T3863]  acpi_ps_parse_aml+0x12e/0x1120
[ 1843.254496][ T3863]  ? acpi_ut_ptr_exit+0x10c/0x180
[ 1843.254524][ T3863]  acpi_ps_execute_method+0x5c4/0xe90
[ 1843.254551][ T3863]  acpi_ns_evaluate+0x640/0x1670
[ 1843.254580][ T3863]  acpi_evaluate_object+0x420/0xe00
[ 1843.254599][ T3863]  ? kasan_save_stack+0x30/0x50
[ 1843.254617][ T3863]  ? kasan_save_track+0x14/0x30
[ 1843.254640][ T3863]  ? __pfx_acpi_evaluate_object+0x10/0x10
[ 1843.254663][ T3863]  acpi_evaluate_integer+0xdf/0x220
[ 1843.254689][ T3863]  ? __pfx_acpi_evaluate_integer+0x10/0x10
[ 1843.254745][ T3863]  ? __pfx_status_show+0x10/0x10
[ 1843.254767][ T3863]  status_show+0xa0/0x120
[ 1843.254786][ T3863]  ? __pfx_status_show+0x10/0x10
[ 1843.254810][ T3863]  dev_attr_show+0x52/0xa0
[ 1843.254832][ T3863]  ? __pfx_dev_attr_show+0x10/0x10
[ 1843.254851][ T3863]  sysfs_kf_seq_show+0x217/0x3a0
[ 1843.254871][ T3863]  seq_read_iter+0x32f/0x1270
[ 1843.254901][ T3863]  kernfs_fop_read_iter+0x46c/0x610
[ 1843.254924][ T3863]  ? rw_verify_area+0xce/0x6d0
[ 1843.254943][ T3863]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[ 1843.254968][ T3863]  vfs_read+0x825/0xb30
[ 1843.254991][ T3863]  ? __pfx_vfs_read+0x10/0x10
[ 1843.255024][ T3863]  ksys_read+0x12a/0x250
[ 1843.255044][ T3863]  ? __pfx_ksys_read+0x10/0x10
[ 1843.255069][ T3863]  do_syscall_64+0x106/0xf80
[ 1843.255091][ T3863]  ? clear_bhb_loop+0x40/0x90
[ 1843.255110][ T3863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1843.255126][ T3863] RIP: 0033:0x7f615b59bf79
[ 1843.255141][ T3863] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1843.255156][ T3863] RSP: 002b:00007f615c43c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1843.255171][ T3863] RAX: ffffffffffffffda RBX: 00007f615b816270 RCX: 00007f615b59bf79
[ 1843.255181][ T3863] RDX: 000000000000007a RSI: 0000200000000240 RDI: 0000000000000007
[ 1843.255191][ T3863] RBP: 00007f615b6327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1843.255201][ T3863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1843.255212][ T3863] R13: 00007f615b816308 R14: 00007f615b816270 R15: 00007fffd6346b68
[ 1843.255233][ T3863]  </TASK>
[ 1843.255365][ T3863] ACPI Error: 
[ 1843.864462][ T3869] kAFS: No cell specified
[ 1844.054308][ T3860] zswap: compressor û not available
[ 1844.076924][ T3863] ffff88805b7ab000 walk still has a scope list (20251212/dswstate-694)
[ 1845.342878][ T3891] vivid-007: =================  START STATUS  =================
[ 1845.381152][ T3891] vivid-007: Generate PTS: true
[ 1845.401389][ T3891] vivid-007: Generate SCR: true
[ 1845.436899][ T3891] tpg source WxH: 320x240 (Y'CbCr)
[ 1845.478425][ T3891] tpg field: 1
[ 1845.492051][ T3891] tpg crop: (0,0)/320x240
[ 1845.507363][ T3891] tpg compose: (0,0)/320x240
[ 1845.546891][ T3891] tpg colorspace: 8
[ 1845.564890][ T3891] tpg transfer function: 0/0
[ 1845.583175][ T3891] tpg Y'CbCr encoding: 0/0
[ 1845.640241][ T3891] tpg quantization: 0/0
[ 1845.654881][ T3891] tpg RGB range: 0/2
[ 1845.673329][ T3891] vivid-007: ==================  END STATUS  ==================
[ 1846.063243][ T3912] FAULT_INJECTION: forcing a failure.
[ 1846.063243][ T3912] name failslab, interval 1, probability 0, space 0, times 0
[ 1846.250467][ T3912] CPU: 0 UID: 0 PID: 3912 Comm: syz.2.5065 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1846.250494][ T3912] Tainted: [L]=SOFTLOCKUP
[ 1846.250500][ T3912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1846.250513][ T3912] Call Trace:
[ 1846.250519][ T3912]  <TASK>
[ 1846.250525][ T3912]  dump_stack_lvl+0x100/0x190
[ 1846.250555][ T3912]  should_fail_ex.cold+0x5/0xa
[ 1846.250574][ T3912]  should_failslab+0xc2/0x120
[ 1846.250596][ T3912]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1846.250613][ T3912]  ? refill_pi_state_cache+0x91/0x260
[ 1846.250638][ T3912]  refill_pi_state_cache+0x91/0x260
[ 1846.250657][ T3912]  futex_lock_pi+0x177/0x7b0
[ 1846.250680][ T3912]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1846.250701][ T3912]  ? __pfx___futex_wait+0x10/0x10
[ 1846.250740][ T3912]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1846.250767][ T3912]  ? __might_fault+0x111/0x140
[ 1846.250786][ T3912]  ? do_vfs_ioctl+0x226/0x13e0
[ 1846.250806][ T3912]  do_futex+0x18a/0x350
[ 1846.250824][ T3912]  ? __pfx_do_futex+0x10/0x10
[ 1846.250843][ T3912]  ? find_held_lock+0x2b/0x80
[ 1846.250867][ T3912]  __x64_sys_futex+0x34f/0x4d0
[ 1846.250887][ T3912]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1846.250912][ T3912]  do_syscall_64+0x106/0xf80
[ 1846.250933][ T3912]  ? clear_bhb_loop+0x40/0x90
[ 1846.250952][ T3912]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1846.250967][ T3912] RIP: 0033:0x7fb1d119bf79
[ 1846.250981][ T3912] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1846.250996][ T3912] RSP: 002b:00007fb1d20cd028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1846.251011][ T3912] RAX: ffffffffffffffda RBX: 00007fb1d1416180 RCX: 00007fb1d119bf79
[ 1846.251021][ T3912] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 1846.251030][ T3912] RBP: 00007fb1d12327e0 R08: 0000000000000000 R09: 000000008000fff5
[ 1846.251040][ T3912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1846.251049][ T3912] R13: 00007fb1d1416218 R14: 00007fb1d1416180 R15: 00007ffc53bffb58
[ 1846.251070][ T3912]  </TASK>
[ 1846.923439][ T3927] FAULT_INJECTION: forcing a failure.
[ 1846.923439][ T3927] name failslab, interval 1, probability 0, space 0, times 0
[ 1847.005533][ T3927] CPU: 0 UID: 0 PID: 3927 Comm: syz.1.5075 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1847.005559][ T3927] Tainted: [L]=SOFTLOCKUP
[ 1847.005564][ T3927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1847.005573][ T3927] Call Trace:
[ 1847.005579][ T3927]  <TASK>
[ 1847.005585][ T3927]  dump_stack_lvl+0x100/0x190
[ 1847.005611][ T3927]  should_fail_ex.cold+0x5/0xa
[ 1847.005629][ T3927]  should_failslab+0xc2/0x120
[ 1847.005650][ T3927]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1847.005669][ T3927]  ? security_file_alloc+0x34/0x2c0
[ 1847.005689][ T3927]  ? trace_kmem_cache_alloc+0xf3/0x120
[ 1847.005714][ T3927]  security_file_alloc+0x34/0x2c0
[ 1847.005734][ T3927]  init_file+0x95/0x480
[ 1847.005749][ T3927]  alloc_empty_file+0x73/0x1c0
[ 1847.005764][ T3927]  path_openat+0xe8/0x31a0
[ 1847.005784][ T3927]  ? kasan_save_stack+0x3f/0x50
[ 1847.005802][ T3927]  ? kasan_save_stack+0x30/0x50
[ 1847.005819][ T3927]  ? kasan_save_track+0x14/0x30
[ 1847.005836][ T3927]  ? __kasan_slab_alloc+0x89/0x90
[ 1847.005855][ T3927]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1847.005872][ T3927]  ? do_getname+0x35/0x390
[ 1847.005884][ T3927]  ? do_sys_openat2+0xc5/0x1e0
[ 1847.005899][ T3927]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1847.005917][ T3927]  ? __pfx_path_openat+0x10/0x10
[ 1847.005944][ T3927]  do_file_open+0x20e/0x430
[ 1847.005966][ T3927]  ? __pfx_do_file_open+0x10/0x10
[ 1847.006000][ T3927]  ? alloc_fd+0x476/0x790
[ 1847.006022][ T3927]  ? do_getname+0x191/0x390
[ 1847.006038][ T3927]  do_sys_openat2+0x10d/0x1e0
[ 1847.006053][ T3927]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1847.006068][ T3927]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1847.006107][ T3927]  ? __fget_files+0x21f/0x3d0
[ 1847.006129][ T3927]  __x64_sys_openat+0x12d/0x210
[ 1847.006145][ T3927]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1847.006160][ T3927]  ? ksys_write+0x1ac/0x250
[ 1847.006186][ T3927]  do_syscall_64+0x106/0xf80
[ 1847.006205][ T3927]  ? clear_bhb_loop+0x40/0x90
[ 1847.006223][ T3927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1847.006238][ T3927] RIP: 0033:0x7f91a9d9bf79
[ 1847.006251][ T3927] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1847.006265][ T3927] RSP: 002b:00007f91aab7e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1847.006280][ T3927] RAX: ffffffffffffffda RBX: 00007f91aa016090 RCX: 00007f91a9d9bf79
[ 1847.006289][ T3927] RDX: 000000000000203f RSI: 0000200000000180 RDI: ffffffffffffff9c
[ 1847.006298][ T3927] RBP: 00007f91aab7e090 R08: 0000000000000000 R09: 0000000000000000
[ 1847.006307][ T3927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1847.006333][ T3927] R13: 00007f91aa016128 R14: 00007f91aa016090 R15: 00007ffdf7cadd18
[ 1847.006353][ T3927]  </TASK>
[ 1848.434946][ T3935] zram0: detected capacity change from 8 to 0
[ 1849.640158][ T3975] FAULT_INJECTION: forcing a failure.
[ 1849.640158][ T3975] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1849.786253][ T3975] CPU: 0 UID: 0 PID: 3975 Comm: syz.1.5079 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1849.786280][ T3975] Tainted: [L]=SOFTLOCKUP
[ 1849.786285][ T3975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1849.786294][ T3975] Call Trace:
[ 1849.786299][ T3975]  <TASK>
[ 1849.786306][ T3975]  dump_stack_lvl+0x100/0x190
[ 1849.786331][ T3975]  should_fail_ex.cold+0x5/0xa
[ 1849.786349][ T3975]  _copy_from_iter+0x1f4/0x1690
[ 1849.786372][ T3975]  ? __asan_memset+0x23/0x50
[ 1849.786390][ T3975]  ? __pfx__copy_from_iter+0x10/0x10
[ 1849.786409][ T3975]  ? __pfx___alloc_skb+0x10/0x10
[ 1849.786436][ T3975]  netlink_sendmsg+0x808/0xda0
[ 1849.786462][ T3975]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1849.786486][ T3975]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1849.786506][ T3975]  __sys_sendto+0x4aa/0x520
[ 1849.786525][ T3975]  ? __pfx___sys_sendto+0x10/0x10
[ 1849.786550][ T3975]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[ 1849.786571][ T3975]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[ 1849.786605][ T3975]  __x64_sys_sendto+0xe0/0x1c0
[ 1849.786623][ T3975]  ? do_syscall_64+0x95/0xf80
[ 1849.786643][ T3975]  ? lockdep_hardirqs_on+0x78/0x100
[ 1849.786664][ T3975]  do_syscall_64+0x106/0xf80
[ 1849.786683][ T3975]  ? clear_bhb_loop+0x40/0x90
[ 1849.786701][ T3975]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1849.786716][ T3975] RIP: 0033:0x7f91a9d5c84e
[ 1849.786728][ T3975] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1849.786742][ T3975] RSP: 002b:00007f91aab7ce88 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1849.786756][ T3975] RAX: ffffffffffffffda RBX: 00007f91aab7e6c0 RCX: 00007f91a9d5c84e
[ 1849.786766][ T3975] RDX: 000000000000001c RSI: 00007f91aab7d000 RDI: 0000000000000005
[ 1849.786775][ T3975] RBP: 0000000000000000 R08: 00007f91aab7cf04 R09: 000000000000000c
[ 1849.786783][ T3975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 1849.786798][ T3975] R13: 00007f91aab7cf58 R14: 00007f91aab7d000 R15: 0000000000000000
[ 1849.786817][ T3975]  </TASK>
[ 1850.529764][ T3977] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1850.783841][ T3977] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1851.005607][ T3977] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1851.032924][ T3977] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1851.435390][ T4003] FAULT_INJECTION: forcing a failure.
[ 1851.435390][ T4003] name failslab, interval 1, probability 0, space 0, times 0
[ 1851.500439][ T4003] CPU: 0 UID: 0 PID: 4003 Comm: syz.1.5085 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1851.500466][ T4003] Tainted: [L]=SOFTLOCKUP
[ 1851.500472][ T4003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1851.500481][ T4003] Call Trace:
[ 1851.500487][ T4003]  <TASK>
[ 1851.500493][ T4003]  dump_stack_lvl+0x100/0x190
[ 1851.500522][ T4003]  should_fail_ex.cold+0x5/0xa
[ 1851.500539][ T4003]  ? iter_file_splice_write+0x1d3/0x10a0
[ 1851.500559][ T4003]  should_failslab+0xc2/0x120
[ 1851.500580][ T4003]  __kmalloc_noprof+0xe0/0x850
[ 1851.500602][ T4003]  iter_file_splice_write+0x1d3/0x10a0
[ 1851.500622][ T4003]  ? lockdep_hardirqs_on+0x78/0x100
[ 1851.500645][ T4003]  ? copy_splice_read+0x734/0xb90
[ 1851.500663][ T4003]  ? kfree+0x1f6/0x6b0
[ 1851.500688][ T4003]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1851.500709][ T4003]  ? __lock_acquire+0x4a5/0x2630
[ 1851.500728][ T4003]  ? __pfx_copy_splice_read+0x10/0x10
[ 1851.500758][ T4003]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1851.500779][ T4003]  direct_splice_actor+0x192/0x6c0
[ 1851.500802][ T4003]  splice_direct_to_actor+0x345/0xa30
[ 1851.500823][ T4003]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1851.500846][ T4003]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1851.500871][ T4003]  do_splice_direct+0x174/0x240
[ 1851.500891][ T4003]  ? __pfx_do_splice_direct+0x10/0x10
[ 1851.500909][ T4003]  ? common_file_perm+0x1ab/0x4f0
[ 1851.500929][ T4003]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1851.500951][ T4003]  ? rw_verify_area+0xce/0x6d0
[ 1851.500970][ T4003]  do_sendfile+0xadc/0xe20
[ 1851.500992][ T4003]  ? __pfx_do_sendfile+0x10/0x10
[ 1851.501011][ T4003]  ? __fget_files+0x21f/0x3d0
[ 1851.501036][ T4003]  __x64_sys_sendfile64+0x1d8/0x220
[ 1851.501057][ T4003]  ? ksys_write+0x1ac/0x250
[ 1851.501076][ T4003]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1851.501104][ T4003]  do_syscall_64+0x106/0xf80
[ 1851.501123][ T4003]  ? clear_bhb_loop+0x40/0x90
[ 1851.501141][ T4003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1851.501156][ T4003] RIP: 0033:0x7f91a9d9bf79
[ 1851.501169][ T4003] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1851.501184][ T4003] RSP: 002b:00007f91aab9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1851.501199][ T4003] RAX: ffffffffffffffda RBX: 00007f91aa015fa0 RCX: 00007f91a9d9bf79
[ 1851.501208][ T4003] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004
[ 1851.501217][ T4003] RBP: 00007f91aab9f090 R08: 0000000000000000 R09: 0000000000000000
[ 1851.501225][ T4003] R10: 00000000000000cd R11: 0000000000000246 R12: 0000000000000001
[ 1851.501234][ T4003] R13: 00007f91aa016038 R14: 00007f91aa015fa0 R15: 00007ffdf7cadd18
[ 1851.501254][ T4003]  </TASK>
[ 1852.076041][T26848] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1852.314963][ T3996] kAFS: No cell specified
[ 1852.602162][ T4020] kAFS: No cell specified
[ 1852.804380][ T1953] Bluetooth: hci3: command 0x0419 tx timeout
[ 1853.043539][ T1953] Bluetooth: hci0: command 0x041b tx timeout
[ 1853.049585][T26848] Bluetooth: hci2: command 0x040f tx timeout
[ 1853.289529][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1853.297251][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1854.096278][ T4031] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1854.120735][ T4031] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1854.138228][ T4031] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1854.158086][ T4031] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1854.326752][ T4049] FAULT_INJECTION: forcing a failure.
[ 1854.326752][ T4049] name failslab, interval 1, probability 0, space 0, times 0
[ 1854.393649][ T4049] CPU: 0 UID: 0 PID: 4049 Comm: syz.2.5096 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1854.393674][ T4049] Tainted: [L]=SOFTLOCKUP
[ 1854.393680][ T4049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1854.393690][ T4049] Call Trace:
[ 1854.393695][ T4049]  <TASK>
[ 1854.393701][ T4049]  dump_stack_lvl+0x100/0x190
[ 1854.393728][ T4049]  should_fail_ex.cold+0x5/0xa
[ 1854.393745][ T4049]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1854.393768][ T4049]  should_failslab+0xc2/0x120
[ 1854.393789][ T4049]  __kmalloc_noprof+0xe0/0x850
[ 1854.393812][ T4049]  tomoyo_realpath_from_path+0xb6/0x690
[ 1854.393838][ T4049]  tomoyo_path_number_perm+0x23c/0x580
[ 1854.393856][ T4049]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1854.393875][ T4049]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1854.393912][ T4049]  ? find_held_lock+0x2b/0x80
[ 1854.393933][ T4049]  ? __fget_files+0x215/0x3d0
[ 1854.393951][ T4049]  ? hook_file_ioctl_common+0x146/0x410
[ 1854.393974][ T4049]  ? __fget_files+0x21f/0x3d0
[ 1854.393996][ T4049]  security_file_ioctl+0xd3/0x230
[ 1854.394016][ T4049]  __x64_sys_ioctl+0xb7/0x210
[ 1854.394035][ T4049]  do_syscall_64+0x106/0xf80
[ 1854.394056][ T4049]  ? clear_bhb_loop+0x40/0x90
[ 1854.394074][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1854.394089][ T4049] RIP: 0033:0x7fb1d119bf79
[ 1854.394101][ T4049] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1854.394115][ T4049] RSP: 002b:00007fb1d210f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1854.394130][ T4049] RAX: ffffffffffffffda RBX: 00007fb1d1415fa0 RCX: 00007fb1d119bf79
[ 1854.394139][ T4049] RDX: 0000000000000024 RSI: 0000000000008912 RDI: 0000000000000003
[ 1854.394148][ T4049] RBP: 00007fb1d210f090 R08: 0000000000000000 R09: 0000000000000000
[ 1854.394156][ T4049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1854.394164][ T4049] R13: 00007fb1d1416038 R14: 00007fb1d1415fa0 R15: 00007ffc53bffb58
[ 1854.394184][ T4049]  </TASK>
[ 1854.394190][ T4049] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1855.522879][ T1953] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1855.733298][ T4051] kAFS: No cell specified
[ 1856.162993][ T1953] Bluetooth: hci0: command 0x041b tx timeout
[ 1856.169233][T26848] Bluetooth: hci2: command 0x040f tx timeout
[ 1856.175600][T26832] Bluetooth: hci3: command 0x0419 tx timeout
[ 1856.477905][ T4093] FAULT_INJECTION: forcing a failure.
[ 1856.477905][ T4093] name failslab, interval 1, probability 0, space 0, times 0
[ 1856.561556][ T4093] CPU: 0 UID: 0 PID: 4093 Comm: syz.3.5106 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1856.561583][ T4093] Tainted: [L]=SOFTLOCKUP
[ 1856.561588][ T4093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1856.561597][ T4093] Call Trace:
[ 1856.561603][ T4093]  <TASK>
[ 1856.561609][ T4093]  dump_stack_lvl+0x100/0x190
[ 1856.561635][ T4093]  should_fail_ex.cold+0x5/0xa
[ 1856.561653][ T4093]  should_failslab+0xc2/0x120
[ 1856.561674][ T4093]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1856.561693][ T4093]  ? alloc_empty_file+0x55/0x1c0
[ 1856.561708][ T4093]  ? __pfx_stack_trace_save+0x10/0x10
[ 1856.561733][ T4093]  alloc_empty_file+0x55/0x1c0
[ 1856.561748][ T4093]  path_openat+0xe8/0x31a0
[ 1856.561768][ T4093]  ? kasan_save_stack+0x3f/0x50
[ 1856.561786][ T4093]  ? kasan_save_stack+0x30/0x50
[ 1856.561803][ T4093]  ? kasan_save_track+0x14/0x30
[ 1856.561820][ T4093]  ? __kasan_slab_alloc+0x89/0x90
[ 1856.561838][ T4093]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1856.561856][ T4093]  ? do_getname+0x35/0x390
[ 1856.561868][ T4093]  ? do_sys_openat2+0xc5/0x1e0
[ 1856.561883][ T4093]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1856.561902][ T4093]  ? __pfx_path_openat+0x10/0x10
[ 1856.561929][ T4093]  do_file_open+0x20e/0x430
[ 1856.561950][ T4093]  ? __pfx_do_file_open+0x10/0x10
[ 1856.561984][ T4093]  ? alloc_fd+0x476/0x790
[ 1856.562009][ T4093]  ? do_getname+0x191/0x390
[ 1856.562026][ T4093]  do_sys_openat2+0x10d/0x1e0
[ 1856.562041][ T4093]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1856.562056][ T4093]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1856.562087][ T4093]  ? __fget_files+0x21f/0x3d0
[ 1856.562109][ T4093]  __x64_sys_openat+0x12d/0x210
[ 1856.562125][ T4093]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1856.562140][ T4093]  ? ksys_write+0x1ac/0x250
[ 1856.562166][ T4093]  do_syscall_64+0x106/0xf80
[ 1856.562185][ T4093]  ? clear_bhb_loop+0x40/0x90
[ 1856.562203][ T4093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1856.562218][ T4093] RIP: 0033:0x7f2016f9bf79
[ 1856.562231][ T4093] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1856.562245][ T4093] RSP: 002b:00007f2017f3b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1856.562260][ T4093] RAX: ffffffffffffffda RBX: 00007f2017215fa0 RCX: 00007f2016f9bf79
[ 1856.562270][ T4093] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1856.562279][ T4093] RBP: 00007f2017f3b090 R08: 0000000000000000 R09: 0000000000000000
[ 1856.562288][ T4093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1856.562296][ T4093] R13: 00007f2017216038 R14: 00007f2017215fa0 R15: 00007ffeaba38808
[ 1856.562315][ T4093]  </TASK>
[ 1856.838285][ T4080] FAULT_INJECTION: forcing a failure.
[ 1856.838285][ T4080] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1856.851626][ T4080] CPU: 0 UID: 0 PID: 4080 Comm: syz.2.5104 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1856.851653][ T4080] Tainted: [L]=SOFTLOCKUP
[ 1856.851659][ T4080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1856.851668][ T4080] Call Trace:
[ 1856.851675][ T4080]  <TASK>
[ 1856.851682][ T4080]  dump_stack_lvl+0x100/0x190
[ 1856.851710][ T4080]  should_fail_ex.cold+0x5/0xa
[ 1856.851726][ T4080]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1856.851751][ T4080]  should_fail_alloc_page+0xeb/0x140
[ 1856.851775][ T4080]  prepare_alloc_pages+0x1f0/0x5f0
[ 1856.851801][ T4080]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 1856.851825][ T4080]  ? __lock_acquire+0x4a5/0x2630
[ 1856.851846][ T4080]  ? __lock_acquire+0x4a5/0x2630
[ 1856.851864][ T4080]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1856.851891][ T4080]  ? find_held_lock+0x2b/0x80
[ 1856.851912][ T4080]  ? is_bpf_text_address+0x8a/0x1a0
[ 1856.851932][ T4080]  ? is_bpf_text_address+0x8a/0x1a0
[ 1856.851951][ T4080]  ? bpf_ksym_find+0x124/0x1c0
[ 1856.851967][ T4080]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1856.851990][ T4080]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1856.852014][ T4080]  ? policy_nodemask+0xed/0x4f0
[ 1856.852037][ T4080]  alloc_pages_mpol+0x1fb/0x550
[ 1856.852076][ T4080]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1856.852112][ T4080]  folio_alloc_mpol_noprof+0x36/0x340
[ 1856.852130][ T4080]  shmem_alloc_folio+0x135/0x160
[ 1856.852148][ T4080]  shmem_alloc_and_add_folio+0x371/0xd40
[ 1856.852175][ T4080]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1856.852196][ T4080]  ? shmem_allowable_huge_orders+0x2bd/0x400
[ 1856.852220][ T4080]  shmem_get_folio_gfp+0x6ab/0x1900
[ 1856.852244][ T4080]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1856.852268][ T4080]  shmem_fault+0x1f9/0xa20
[ 1856.852289][ T4080]  ? __pfx_shmem_fault+0x10/0x10
[ 1856.852306][ T4080]  ? trace_kmem_cache_alloc+0xf3/0x120
[ 1856.852329][ T4080]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[ 1856.852347][ T4080]  ? ptlock_alloc+0x1f/0x70
[ 1856.852364][ T4080]  ? lockdep_init_map_type+0x5c/0x250
[ 1856.852383][ T4080]  ? __raw_spin_lock_init+0x3a/0x110
[ 1856.852406][ T4080]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1856.852425][ T4080]  __do_fault+0x10d/0x550
[ 1856.852447][ T4080]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1856.852465][ T4080]  do_fault+0x2db/0x1a00
[ 1856.852479][ T4080]  ? __pmd_alloc+0x6aa/0x9c0
[ 1856.852495][ T4080]  __handle_mm_fault+0x180f/0x2b60
[ 1856.852515][ T4080]  ? mt_find+0x45e/0x8e0
[ 1856.852539][ T4080]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1856.852555][ T4080]  ? __pfx_mt_find+0x10/0x10
[ 1856.852588][ T4080]  ? find_vma+0xbf/0x140
[ 1856.852609][ T4080]  ? __pfx_find_vma+0x10/0x10
[ 1856.852632][ T4080]  handle_mm_fault+0x36d/0xa20
[ 1856.852653][ T4080]  do_user_addr_fault+0x74c/0x12f0
[ 1856.852681][ T4080]  exc_page_fault+0x6f/0xd0
[ 1856.852703][ T4080]  asm_exc_page_fault+0x26/0x30
[ 1856.852719][ T4080] RIP: 0010:__put_user_4+0xd/0x20
[ 1856.852744][ T4080] Code: 66 89 01 31 c9 0f 01 ca e9 80 d0 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca e9 57 d0 03 00 0f 1f 80 00 00 00 00 90 90 90
[ 1856.852760][ T4080] RSP: 0018:ffffc90005227c88 EFLAGS: 00050246
[ 1856.852774][ T4080] RAX: 00000000000000d9 RBX: 0000000000000000 RCX: 0000000000000000
[ 1856.852784][ T4080] RDX: 1ffff92000a44fbf RSI: ffffffff8255ba31 RDI: ffffc90005227df8
[ 1856.852795][ T4080] RBP: ffff8880315edac0 R08: 0000000000000001 R09: 00000000000001c5
[ 1856.852804][ T4080] R10: 0000000000000200 R11: 0000000000000000 R12: 0000000002360400
[ 1856.852814][ T4080] R13: 1ffff92000a44f96 R14: ffff88802a5a3380 R15: 0000000000000000
[ 1856.852831][ T4080]  ? __might_fault+0x111/0x140
[ 1856.852853][ T4080]  kernel_clone+0x6b1/0x9a0
[ 1856.852872][ T4080]  ? __pfx_kernel_clone+0x10/0x10
[ 1856.852899][ T4080]  __do_sys_clone+0xd9/0x120
[ 1856.852916][ T4080]  ? __pfx___do_sys_clone+0x10/0x10
[ 1856.852949][ T4080]  do_syscall_64+0x106/0xf80
[ 1856.852969][ T4080]  ? clear_bhb_loop+0x40/0x90
[ 1856.852987][ T4080]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1856.853002][ T4080] RIP: 0033:0x7fb1d119bf79
[ 1856.853015][ T4080] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1856.853029][ T4080] RSP: 002b:00007fb1d210efd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1856.853043][ T4080] RAX: ffffffffffffffda RBX: 00007fb1d1415fa0 RCX: 00007fb1d119bf79
[ 1856.853052][ T4080] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[ 1856.853061][ T4080] RBP: 00007fb1d12327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1856.853070][ T4080] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1856.853079][ T4080] R13: 00007fb1d1416038 R14: 00007fb1d1415fa0 R15: 00007ffc53bffb58
[ 1856.853099][ T4080]  </TASK>
[ 1859.254392][ T4122] FAULT_INJECTION: forcing a failure.
[ 1859.254392][ T4122] name failslab, interval 1, probability 0, space 0, times 0
[ 1859.326544][ T4122] CPU: 0 UID: 0 PID: 4122 Comm: syz.3.5113 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1859.326574][ T4122] Tainted: [L]=SOFTLOCKUP
[ 1859.326580][ T4122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1859.326589][ T4122] Call Trace:
[ 1859.326595][ T4122]  <TASK>
[ 1859.326601][ T4122]  dump_stack_lvl+0x100/0x190
[ 1859.326630][ T4122]  should_fail_ex.cold+0x5/0xa
[ 1859.326650][ T4122]  should_failslab+0xc2/0x120
[ 1859.326675][ T4122]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1859.326695][ T4122]  ? __kernfs_new_node+0xd2/0x960
[ 1859.326718][ T4122]  __kernfs_new_node+0xd2/0x960
[ 1859.326739][ T4122]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1859.326764][ T4122]  ? find_held_lock+0x2b/0x80
[ 1859.326788][ T4122]  ? kernfs_root+0xee/0x2a0
[ 1859.326818][ T4122]  ? kernfs_root+0xee/0x2a0
[ 1859.326842][ T4122]  kernfs_new_node+0x11b/0x1a0
[ 1859.326868][ T4122]  __kernfs_create_file+0x53/0x350
[ 1859.326895][ T4122]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1859.326917][ T4122]  sysfs_merge_group+0x194/0x340
[ 1859.326938][ T4122]  ? __pfx_sysfs_merge_group+0x10/0x10
[ 1859.326959][ T4122]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1859.326981][ T4122]  ? bus_to_subsys+0x114/0x150
[ 1859.327008][ T4122]  dpm_sysfs_add+0x237/0x280
[ 1859.327030][ T4122]  device_add+0x9ef/0x1950
[ 1859.327052][ T4122]  ? __pfx_device_add+0x10/0x10
[ 1859.327073][ T4122]  ? lockdep_init_map_type+0x5c/0x250
[ 1859.327093][ T4122]  ? __init_waitqueue_head+0xca/0x150
[ 1859.327121][ T4122]  rfkill_register+0x1ad/0xb30
[ 1859.327143][ T4122]  nfc_register_device+0x11f/0x3e0
[ 1859.327167][ T4122]  nci_register_device+0x7f1/0xb80
[ 1859.327188][ T4122]  ? __pfx_nci_register_device+0x10/0x10
[ 1859.327209][ T4122]  ? lockdep_init_map_type+0x5c/0x250
[ 1859.327233][ T4122]  virtual_ncidev_open+0x141/0x220
[ 1859.327257][ T4122]  ? __pfx_virtual_ncidev_open+0x10/0x10
[ 1859.327280][ T4122]  misc_open+0x26d/0x450
[ 1859.327302][ T4122]  ? __pfx_misc_open+0x10/0x10
[ 1859.327322][ T4122]  chrdev_open+0x234/0x6a0
[ 1859.327344][ T4122]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1859.327364][ T4122]  ? __pfx_chrdev_open+0x10/0x10
[ 1859.327389][ T4122]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1859.327417][ T4122]  do_dentry_open+0x6d8/0x1660
[ 1859.327439][ T4122]  ? __pfx_chrdev_open+0x10/0x10
[ 1859.327468][ T4122]  vfs_open+0x82/0x3f0
[ 1859.327487][ T4122]  path_openat+0x208c/0x31a0
[ 1859.327517][ T4122]  ? __pfx_path_openat+0x10/0x10
[ 1859.327547][ T4122]  do_file_open+0x20e/0x430
[ 1859.327571][ T4122]  ? __pfx_do_file_open+0x10/0x10
[ 1859.327609][ T4122]  ? alloc_fd+0x476/0x790
[ 1859.327634][ T4122]  ? do_getname+0x191/0x390
[ 1859.327652][ T4122]  do_sys_openat2+0x10d/0x1e0
[ 1859.327669][ T4122]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1859.327688][ T4122]  ? __fget_files+0x21f/0x3d0
[ 1859.327714][ T4122]  __x64_sys_openat+0x12d/0x210
[ 1859.327733][ T4122]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1859.327759][ T4122]  do_syscall_64+0x106/0xf80
[ 1859.327781][ T4122]  ? clear_bhb_loop+0x40/0x90
[ 1859.327808][ T4122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1859.327827][ T4122] RIP: 0033:0x7f2016f9bf79
[ 1859.327844][ T4122] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1859.327860][ T4122] RSP: 002b:00007f2017f3b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1859.327876][ T4122] RAX: ffffffffffffffda RBX: 00007f2017215fa0 RCX: 00007f2016f9bf79
[ 1859.327888][ T4122] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1859.327898][ T4122] RBP: 00007f20170327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1859.327907][ T4122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1859.327917][ T4122] R13: 00007f2017216038 R14: 00007f2017215fa0 R15: 00007ffeaba38808
[ 1859.327937][ T4122]  </TASK>
[ 1861.993717][ T4143] vivid-007: =================  START STATUS  =================
[ 1862.023943][ T4143] vivid-007: Generate PTS: true
[ 1862.046487][ T4147] kAFS: No cell specified
[ 1862.053478][ T4143] vivid-007: Generate SCR: true
[ 1862.071034][ T4143] tpg source WxH: 320x240 (Y'CbCr)
[ 1862.100167][ T4143] tpg field: 1
[ 1862.113823][ T4143] tpg crop: (0,0)/320x240
[ 1862.137585][ T4143] tpg compose: (0,0)/320x240
[ 1862.162517][ T4143] tpg colorspace: 8
[ 1862.188341][ T4143] tpg transfer function: 0/0
[ 1862.206221][ T4143] tpg Y'CbCr encoding: 0/0
[ 1862.221618][ T4143] tpg quantization: 0/0
[ 1862.242081][ T4143] tpg RGB range: 0/2
[ 1862.267230][ T4143] vivid-007: ==================  END STATUS  ==================
[ 1862.374901][ T4148] zswap: compressor û not available
[ 1862.593851][ T4158] FAULT_INJECTION: forcing a failure.
[ 1862.593851][ T4158] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1862.593895][ T4158] CPU: 0 UID: 0 PID: 4158 Comm: syz.1.5120 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1862.593915][ T4158] Tainted: [L]=SOFTLOCKUP
[ 1862.593921][ T4158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1862.593930][ T4158] Call Trace:
[ 1862.593935][ T4158]  <TASK>
[ 1862.593941][ T4158]  dump_stack_lvl+0x100/0x190
[ 1862.593966][ T4158]  should_fail_ex.cold+0x5/0xa
[ 1862.593981][ T4158]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1862.594005][ T4158]  should_fail_alloc_page+0xeb/0x140
[ 1862.594028][ T4158]  prepare_alloc_pages+0x1f0/0x5f0
[ 1862.594054][ T4158]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 1862.594078][ T4158]  ? __lock_acquire+0x4a5/0x2630
[ 1862.594099][ T4158]  ? __lock_acquire+0x4a5/0x2630
[ 1862.594115][ T4158]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1862.594144][ T4158]  ? find_held_lock+0x2b/0x80
[ 1862.594164][ T4158]  ? is_bpf_text_address+0x8a/0x1a0
[ 1862.594184][ T4158]  ? is_bpf_text_address+0x8a/0x1a0
[ 1862.594203][ T4158]  ? bpf_ksym_find+0x124/0x1c0
[ 1862.594218][ T4158]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1862.594242][ T4158]  ? policy_nodemask+0xed/0x4f0
[ 1862.594265][ T4158]  alloc_pages_mpol+0x1fb/0x550
[ 1862.594287][ T4158]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1862.594310][ T4158]  ? look_up_lock_class+0x55/0x120
[ 1862.594332][ T4158]  ? vc_do_resize+0x1da/0x10f0
[ 1862.594353][ T4158]  ___kmalloc_large_node+0x104/0x150
[ 1862.594378][ T4158]  __kmalloc_large_node_noprof+0x1c/0x70
[ 1862.594402][ T4158]  __kmalloc_noprof+0x5be/0x850
[ 1862.594425][ T4158]  vc_do_resize+0x1da/0x10f0
[ 1862.594450][ T4158]  ? fb_match_mode+0x2b3/0x360
[ 1862.594481][ T4158]  ? __pfx_fb_match_mode+0x10/0x10
[ 1862.594504][ T4158]  ? __pfx_vc_do_resize+0x10/0x10
[ 1862.594532][ T4158]  fbcon_modechanged+0x342/0x700
[ 1862.594555][ T4158]  rotate_store+0x258/0x2f0
[ 1862.594573][ T4158]  ? __pfx_rotate_store+0x10/0x10
[ 1862.594590][ T4158]  dev_attr_store+0x58/0x80
[ 1862.594609][ T4158]  ? __pfx_dev_attr_store+0x10/0x10
[ 1862.594627][ T4158]  sysfs_kf_write+0xf2/0x150
[ 1862.594644][ T4158]  kernfs_fop_write_iter+0x3e0/0x5f0
[ 1862.594664][ T4158]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1862.594681][ T4158]  vfs_write+0x6ac/0x1070
[ 1862.594701][ T4158]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1862.594724][ T4158]  ? __pfx_vfs_write+0x10/0x10
[ 1862.594756][ T4158]  ksys_write+0x12a/0x250
[ 1862.594775][ T4158]  ? __pfx_ksys_write+0x10/0x10
[ 1862.594800][ T4158]  do_syscall_64+0x106/0xf80
[ 1862.594820][ T4158]  ? clear_bhb_loop+0x40/0x90
[ 1862.594839][ T4158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1862.594854][ T4158] RIP: 0033:0x7f91a9d9bf79
[ 1862.594867][ T4158] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1862.594881][ T4158] RSP: 002b:00007f91aab9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1862.594894][ T4158] RAX: ffffffffffffffda RBX: 00007f91aa015fa0 RCX: 00007f91a9d9bf79
[ 1862.594904][ T4158] RDX: 0000000000000081 RSI: 0000200000000000 RDI: 0000000000000003
[ 1862.594912][ T4158] RBP: 00007f91aab9f090 R08: 0000000000000000 R09: 0000000000000000
[ 1862.594921][ T4158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1862.594929][ T4158] R13: 00007f91aa016038 R14: 00007f91aa015fa0 R15: 00007ffdf7cadd18
[ 1862.594949][ T4158]  </TASK>
[ 1862.637027][ T4158] ==================================================================
[ 1862.637054][ T4158] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x19fb/0x1d60
[ 1862.637076][ T4158] Write of size 8 at addr ffffc90003f49fc0 by task syz.1.5120/4158
[ 1862.637088][ T4158] 
[ 1862.637099][ T4158] CPU: 0 UID: 0 PID: 4158 Comm: syz.1.5120 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1862.637119][ T4158] Tainted: [L]=SOFTLOCKUP
[ 1862.637125][ T4158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1862.637134][ T4158] Call Trace:
[ 1862.637140][ T4158]  <TASK>
[ 1862.637146][ T4158]  dump_stack_lvl+0x100/0x190
[ 1862.637167][ T4158]  print_report+0x156/0x4c9
[ 1862.637187][ T4158]  ? _raw_spin_lock_irqsave+0x52/0x60
[ 1862.637206][ T4158]  ? __virt_addr_valid+0x81/0x620
[ 1862.637225][ T4158]  ? sys_imageblit+0x19fb/0x1d60
[ 1862.637237][ T4158]  kasan_report+0xdf/0x1e0
[ 1862.637258][ T4158]  ? sys_imageblit+0x19fb/0x1d60
[ 1862.637272][ T4158]  sys_imageblit+0x19fb/0x1d60
[ 1862.637288][ T4158]  ? preempt_schedule_thunk+0x16/0x30
[ 1862.637305][ T4158]  ? __pfx_sys_imageblit+0x10/0x10
[ 1862.637318][ T4158]  ? preempt_schedule_thunk+0x16/0x30
[ 1862.637337][ T4158]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[ 1862.637356][ T4158]  cw_putcs+0x918/0xbb0
[ 1862.637380][ T4158]  ? __pfx_cw_putcs+0x10/0x10
[ 1862.637401][ T4158]  ? fb_get_color_depth+0x120/0x250
[ 1862.637418][ T4158]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1862.637442][ T4158]  fbcon_putcs+0x3b2/0x480
[ 1862.637458][ T4158]  ? __pfx_cw_putcs+0x10/0x10
[ 1862.637485][ T4158]  do_update_region+0x2cf/0x3f0
[ 1862.637504][ T4158]  redraw_screen+0x63f/0x760
[ 1862.637524][ T4158]  ? __pfx_redraw_screen+0x10/0x10
[ 1862.637544][ T4158]  ? fbcon_set_palette+0x156/0x5f0
[ 1862.637561][ T4158]  fbcon_modechanged+0x467/0x700
[ 1862.637579][ T4158]  rotate_store+0x258/0x2f0
[ 1862.637595][ T4158]  ? __pfx_rotate_store+0x10/0x10
[ 1862.637611][ T4158]  dev_attr_store+0x58/0x80
[ 1862.637629][ T4158]  ? __pfx_dev_attr_store+0x10/0x10
[ 1862.637647][ T4158]  sysfs_kf_write+0xf2/0x150
[ 1862.637661][ T4158]  kernfs_fop_write_iter+0x3e0/0x5f0
[ 1862.637682][ T4158]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1862.637696][ T4158]  vfs_write+0x6ac/0x1070
[ 1862.637714][ T4158]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1862.637735][ T4158]  ? __pfx_vfs_write+0x10/0x10
[ 1862.637758][ T4158]  ksys_write+0x12a/0x250
[ 1862.637776][ T4158]  ? __pfx_ksys_write+0x10/0x10
[ 1862.637796][ T4158]  do_syscall_64+0x106/0xf80
[ 1862.637816][ T4158]  ? clear_bhb_loop+0x40/0x90
[ 1862.637832][ T4158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1862.637846][ T4158] RIP: 0033:0x7f91a9d9bf79
[ 1862.637858][ T4158] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1862.637872][ T4158] RSP: 002b:00007f91aab9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1862.637887][ T4158] RAX: ffffffffffffffda RBX: 00007f91aa015fa0 RCX: 00007f91a9d9bf79
[ 1862.637897][ T4158] RDX: 0000000000000081 RSI: 0000200000000000 RDI: 0000000000000003
[ 1862.637906][ T4158] RBP: 00007f91aab9f090 R08: 0000000000000000 R09: 0000000000000000
[ 1862.637914][ T4158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1862.637923][ T4158] R13: 00007f91aa016038 R14: 00007f91aa015fa0 R15: 00007ffdf7cadd18
[ 1862.637937][ T4158]  </TASK>
[ 1862.637942][ T4158] 
[ 1862.637946][ T4158] The buggy address belongs to a vmalloc virtual mapping
[ 1862.637957][ T4158] Memory state around the buggy address:
[ 1862.637965][ T4158]  ffffc90003f49e80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1862.637978][ T4158]  ffffc90003f49f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1862.637988][ T4158] >ffffc90003f49f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1862.637996][ T4158]                                            ^
[ 1862.638004][ T4158]  ffffc90003f4a000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1862.638014][ T4158]  ffffc90003f4a080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1862.638022][ T4158] ==================================================================
[ 1862.638034][ T4158] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1862.638045][ T4158] CPU: 0 UID: 0 PID: 4158 Comm: syz.1.5120 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1862.638064][ T4158] Tainted: [L]=SOFTLOCKUP
[ 1862.638070][ T4158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1862.638078][ T4158] Call Trace:
[ 1862.638083][ T4158]  <TASK>
[ 1862.638088][ T4158]  dump_stack_lvl+0x100/0x190
[ 1862.638107][ T4158]  vpanic+0x552/0x970
[ 1862.638121][ T4158]  ? __pfx_vpanic+0x10/0x10
[ 1862.638134][ T4158]  ? __pfx_vprintk_emit+0x10/0x10
[ 1862.638157][ T4158]  ? sys_imageblit+0x19fb/0x1d60
[ 1862.638170][ T4158]  panic+0xd1/0xe0
[ 1862.638183][ T4158]  ? __pfx_panic+0x10/0x10
[ 1862.638198][ T4158]  ? sys_imageblit+0x19fb/0x1d60
[ 1862.638211][ T4158]  ? check_panic_on_warn+0x1f/0x90
[ 1862.638230][ T4158]  check_panic_on_warn.cold+0x19/0x34
[ 1862.638245][ T4158]  end_report.part.0+0x3a/0x90
[ 1862.638264][ T4158]  kasan_report.cold+0xe/0x18
[ 1862.638284][ T4158]  ? sys_imageblit+0x19fb/0x1d60
[ 1862.638299][ T4158]  sys_imageblit+0x19fb/0x1d60
[ 1862.638314][ T4158]  ? preempt_schedule_thunk+0x16/0x30
[ 1862.638330][ T4158]  ? __pfx_sys_imageblit+0x10/0x10
[ 1862.638344][ T4158]  ? preempt_schedule_thunk+0x16/0x30
[ 1862.638363][ T4158]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[ 1862.638380][ T4158]  cw_putcs+0x918/0xbb0
[ 1862.638404][ T4158]  ? __pfx_cw_putcs+0x10/0x10
[ 1862.638425][ T4158]  ? fb_get_color_depth+0x120/0x250
[ 1862.638442][ T4158]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1862.638469][ T4158]  fbcon_putcs+0x3b2/0x480
[ 1862.638486][ T4158]  ? __pfx_cw_putcs+0x10/0x10
[ 1862.638506][ T4158]  do_update_region+0x2cf/0x3f0
[ 1862.638524][ T4158]  redraw_screen+0x63f/0x760
[ 1862.638544][ T4158]  ? __pfx_redraw_screen+0x10/0x10
[ 1862.638565][ T4158]  ? fbcon_set_palette+0x156/0x5f0
[ 1862.638582][ T4158]  fbcon_modechanged+0x467/0x700
[ 1862.638600][ T4158]  rotate_store+0x258/0x2f0
[ 1862.638617][ T4158]  ? __pfx_rotate_store+0x10/0x10
[ 1862.638633][ T4158]  dev_attr_store+0x58/0x80
[ 1862.638650][ T4158]  ? __pfx_dev_attr_store+0x10/0x10
[ 1862.638668][ T4158]  sysfs_kf_write+0xf2/0x150
[ 1862.638682][ T4158]  kernfs_fop_write_iter+0x3e0/0x5f0
[ 1862.638701][ T4158]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1862.638716][ T4158]  vfs_write+0x6ac/0x1070
[ 1862.638734][ T4158]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1862.638755][ T4158]  ? __pfx_vfs_write+0x10/0x10
[ 1862.638779][ T4158]  ksys_write+0x12a/0x250
[ 1862.638797][ T4158]  ? __pfx_ksys_write+0x10/0x10
[ 1862.638817][ T4158]  do_syscall_64+0x106/0xf80
[ 1862.638836][ T4158]  ? clear_bhb_loop+0x40/0x90
[ 1862.638852][ T4158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1862.638866][ T4158] RIP: 0033:0x7f91a9d9bf79
[ 1862.638876][ T4158] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1862.638890][ T4158] RSP: 002b:00007f91aab9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1862.638903][ T4158] RAX: ffffffffffffffda RBX: 00007f91aa015fa0 RCX: 00007f91a9d9bf79
[ 1862.638913][ T4158] RDX: 0000000000000081 RSI: 0000200000000000 RDI: 0000000000000003
[ 1862.638921][ T4158] RBP: 00007f91aab9f090 R08: 0000000000000000 R09: 0000000000000000
[ 1862.638930][ T4158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1862.638939][ T4158] R13: 00007f91aa016038 R14: 00007f91aa015fa0 R15: 00007ffdf7cadd18
[ 1862.638953][ T4158]  </TASK>
[ 1862.639010][ T4158] Kernel Offset: disabled