last executing test programs:

2m57.265439749s ago: executing program 3 (id=2219):
r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
fcntl$auto(r0, 0x400, 0x1)
ioctl$auto_BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000000280)={{0x800, 0x4, 0x63, 0x7, 0xf8, 0x800, 0x9, 0x7f, 0xfffffff7, 0x9}, "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"})
unshare$auto(0x40000080)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2b, 0x5, 0xfffffffd)
faccessat$auto(r1, &(0x7f0000000000)='./file0\x00', 0x81)
write$auto(0xca, &(0x7f00000001c0)='\x04>V\x1b\x89\x0ek\x19&\xb4?[\x00\x00\x01\x00\xb6\x00'/31, 0x169)
r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd700002dcdf250300780004000875dfaba0215141444289a70c6a6e0014000180100100802400080008000b00e359af78eae31a8e39cef5ed4d7ce4f0cedc3597f948abeff46924b9b0b84b7524298dad8db05c03f3ecf43e72a625ee8ba6e971f125f8b322885a1b0e6935f54d0e87a985f37582ac6b2d5a", @ANYRES32=0x0, @ANYBLOB="04000800"], 0x30}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/auth.unix.ip/flush\x00', 0x40d81, 0x0)
r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00ffdbdf250a000000090002006c32747000000000"], 0x20}, 0x1, 0x0, 0x0, 0x20000800}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYBLOB='j'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
mmap$auto(0x0, 0x2000d, 0x20000000000005b, 0xeb1, 0x404, 0x8000)
socket(0x10, 0x2, 0x4)
socket(0x1d, 0x2, 0x7)
socket(0x2, 0x1, 0x0)
r6 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r6, 0x92106405, r6)
close_range$auto(0x2, 0xa, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r7 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video67\x00', 0x169000, 0x0)
ioctl$auto(r7, 0xc0285628, r7)
ioctl$auto(r4, 0x40045564, r4)

2m55.668378817s ago: executing program 3 (id=2222):
unshare$auto(0x40000080) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x808000) (async)
close_range$auto(0x0, 0x5, 0x0) (async)
fanotify_init$auto(0x5, 0x2000000000002) (async)
inotify_init1$auto(0x3000000000000)
socket(0x15, 0x5, 0x0) (async, rerun: 32)
getsockopt$auto(0x2, 0x114, 0x8, 0xfffffffffffffffc, 0x0) (async, rerun: 32)
r0 = socket(0x2, 0x5, 0x0)
sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x5, 0x9}, 0xf}, 0xd, 0xffffffff)
connect$auto(0x3, 0x0, 0x6)
setsockopt$auto(0x3, 0x10000000084, 0x1, 0x0, 0x8)
mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
sysfs$auto(0x2, 0x23, 0x0) (async)
r1 = socket(0xa, 0x3, 0x6)
getsockopt$auto(r1, 0x40000000029, 0x50, 0xfffffffffffffffe, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x5)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15) (async)
madvise$auto(0x0, 0x200007, 0x19)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xa200, 0x0)
bpf$auto(0x1, &(0x7f0000000000)=@batch={0xfffffffffffffffb, 0x44, 0x2, 0x9, 0x81, 0xffffffffffffffff, 0x2, 0x8}, 0x100000cf) (async)
sendmmsg$auto(r2, 0x0, 0x4, 0x4008) (async)
r3 = socket(0x29, 0x2, 0x0) (async)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200"], 0x1ac}}, 0x40000)
recvmmsg$auto(r4, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r3, 0x89f2, 0x24)

2m54.614634126s ago: executing program 3 (id=2224):
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x80000002, 0x1d, 0x7a7, 0xfffffff8, 0x6, 0x400a, 0xffffffffffffffff, [0x0, 0x0, 0x80], {0x6, 0x6, 0x6, 0x29c, 0x1, 0x7f, 0x3ff, 0x2, 0x1}, {0x10100, 0x1, 0x52, 0x85, 0x0, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x20000000)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
listen$auto(0x3, 0x81)
bpf$auto(0x0, 0x0, 0x6f4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000080), r0)
sendmsg$auto_GTP_CMD_GETPDP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000003d2d15160792f8edd7bf3a6e3ba365e085f546a504e71d4699bc46e3e39a678ad25ad61e5ca073d41ea3ac9213e7c5c32464c2a993af684cc00c9e09773211d132b29c53f1744f1a06d23d445f2a199c89534dfaaad16028fd4f3b00d22fabbb45221e98ffc5", @ANYRES16=r1, @ANYBLOB="397326bd7000fedbdf2502000000"], 0x14}}, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
pread64$auto(0xffffffffffffffff, 0x0, 0x80000000, 0x9fffffffd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mseal$auto(0x0, 0x7dda, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder1\x00', 0x2140, 0x0)
cachestat$auto(0xffffffffffffffff, 0x0, 0x0, 0x5e43d222)
r2 = openat$auto_state_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x1e9482, 0x0)
read$auto_state_fops_(r2, &(0x7f0000000180)=""/61, 0xfffffeeb)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nbd13\x00', 0x0, 0x0)
write$auto(r3, 0x0, 0xfffffdef)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x5a9080, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
ioctl$auto_TCSBRK2(r4, 0x5409, 0x0)

2m52.895214558s ago: executing program 2 (id=2226):
r0 = socket(0x10, 0x2, 0x4)
open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0xc0842, 0x95)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/vrf/strict_mode\x00', 0x80202, 0x0)
sendfile$auto(r1, 0x3, 0x0, 0x400000000008)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0_to_hsr\x00'})
write$auto(r0, &(0x7f0000000000)='-\x00', 0x1d30)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
unshare$auto(0x40000080)
setregid$auto(0x81, 0x0)
io_uring_setup$auto(0x2008, 0x0)
clock_nanosleep$auto(0x2, 0x6, 0x0, 0x0)

2m52.244568646s ago: executing program 3 (id=2230):
socket(0x10, 0x2, 0x0)
r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sysvipc/sem\x00', 0x101100, 0x0) (async)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffdcb, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200040c4}, 0x440c5)
lstat$auto(0x0, &(0x7f0000000180)={0x9, 0x43, 0x7, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x10001, 0x7, 0x8001, 0x401, 0xf8, 0x7, 0x5, 0x61, 0x102}) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r2 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) (rerun: 64)
r3 = open_by_handle_at$auto(r2, &(0x7f0000001280)={0x8, 0x2, "0200000000000000"}, 0x6)
ioctl$auto_UDF_RELOCATE_BLOCKS(r2, 0xc0086c43, &(0x7f0000000100)=0x8000000000000000) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x89fc, &(0x7f0000000040)={'bridge0\x00', <r4=>0x0})
syncfs$auto(r0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000140), 0x280, 0x0) (async)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0) (async)
prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_OFF(0x6, 0x0, 0x0, 0x3, 0xffffffff) (async)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x9, 0x0, 0x0, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) (async)
process_madvise$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, &(0x7f0000000140)={&(0x7f0000000000), 0x55}, 0x6, 0xb, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone$auto(0x40100000100023, 0x8000002000000000, 0xfffffffffffffffe, 0xfffffffffffffffd, 0xfffffffffffffbff) (async)
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, 0x0, 0x902, 0x0) (async)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) (rerun: 64)
madvise$auto(0x0, 0x200007, 0x19) (async)
bpf$auto(0xb, &(0x7f0000000240)=@link_create={@prog_fd=r3, @target_ifindex=r4, 0x6, 0x400222, @perf_event={0xcb}}, 0x3)
io_uring_setup$auto(0x2, &(0x7f0000000080)={0x80000003, 0x9, 0x4002, 0x6, 0x4, 0x8, 0xffffffffffffffff, [], {0x9, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x4000006, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x104, 0x8, 0x100000000}})
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy18/netdev:wlan1/stations/08:02:11:00:00:00/airtime\x00', 0x303000, 0x0) (async)
syz_clone(0x1203000, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x200204, 0x15)

2m51.866816807s ago: executing program 3 (id=2231):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
sysfs$auto(0x2, 0x100000000000030, 0x0) (async)
set_mempolicy$auto(0x5, &(0x7f0000002940)=0x65, 0x2) (async)
mmap$auto(0x200000000, 0x3, 0x4, 0x55becaf1, 0x4, 0x0)
fsopen$auto(0x0, 0x1) (async)
getrandom$auto(0x0, 0x6000000, 0x3) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
r0 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r0, 0x84, 0xb, 0x0, 0x0)
r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0)
ioctl$auto_I2C_SMBUS(r1, 0x720, 0x0) (async)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x1a, 0x3, 0xffffff22) (async)
r2 = socket(0xa, 0x3, 0x3a) (async)
setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r3 = open$auto(&(0x7f0000000080)='./file0\x00', 0x3, 0x3)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_INFO(r3, 0x810c5701, &(0x7f00000000c0)={0x1, 0x2, 0x8, 0x7, 0xfffffffc, "9a9d3cfacb5b71b7f4d3327166385e7ee2860a9cbb91e801d4515f0ffc962c046cb9e6ef159cb21ea1d0ee73d572214d323591678546dffb7d9d0b8ffd954385", "de27d22979eb6fe4df15f5e7c67ad70b0d295e3783d82fd03b678c6ef4a533372eb85701e931652bbb98ae056abf579a5c3fdcb7a95c06ef686a597685c4cea3b1755c55c79f68f6c883a9d60894181f", "06602520338b84cb213ca6cc86c3aea87978a85a79d1d9f0f24096e6b51fcabb", 0x1, 0xd, 0x1, "69aa5aea77851eebe0658bf6dd5e6da610cfc37a344c800fb562ce078f6df6cd832aae13953e28d43bbbf15fdbd6f0ca34d744cf6a18f63a8c5ff10c"}) (async)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r2) (async)
r5 = fcntl$getown(r0, 0x9)
syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/net\x00') (async)
sendmsg$auto_NL80211_CMD_SET_MPATH(r3, &(0x7f00000006c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000680)={&(0x7f0000000700)={0x538, r4, 0x4, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_SCHED_SCAN_MATCH={0x519, 0x84, 0x0, 0x1, [@nested={0x42, 0x131, 0x0, 0x1, [@typed={0x1f, 0x14c, 0x0, 0x0, @binary="a54a08d332b3f0cc659fdc66d41a68cbf5b6b26f2d6d30d81069d2"}, @generic="cc6bf1e31e8e5c338203bf18e3f146d1ea7e64ca4ddda3f82151", @nested={0x4, 0x10f}]}, @nested={0x1d2, 0x54, 0x0, 0x1, [@generic="8f5f909033cb8eef37cf8108c0e0d841a9077d45ec1622ac5598bae07db0ff0f31a6c05b29721169d5f82a61fdac", @nested={0x4, 0x1b}, @typed={0x8, 0x1c, 0x0, 0x0, @fd=r1}, @generic="a52b1bddac5a4aa1f6125b4063c9c267e1ef7b0eef9085591d11f821b1ff7ef4876a38ac35a963fedf1a5c4890a4ab9b66843b22bce48e549f032c310ce3b223825a144bfca71705aeedb99e8fcb88f05a602da85570f76817", @typed={0xc, 0x88, 0x0, 0x0, @u64=0x8}, @generic="64c39b8ce1ce15f01ee563ebdb1099e89672ce633cae045bbaf3d6e419ee85415502cf3df71c1e4615100f19a937e00cb1b39a942e3811f4fbd0fd9a2c79f14a041e287fd06434213106fee437d2ef21d09007562f863dae10c1cdb018c2cf55ef5e6e6122ce74f2df914529d612a63613e17f3b1757b8bdb07acb9965a38a780d947f7ec34a75977f8e5e33c64f493d9b041fc665730cd91c7df2abd51be26649856697597c3a5b29dc33f1af7dc0b9fd6490b33ee3dd0b121bec101ccddb9181da095733a0acfb9aec22df847827695d021e4f1a3ca6c6", @generic="f0a4ec96ba002d92baf6f42f7838c74e3771dd4d173851e0b1c6c7b4b07e361861c9ec1705a5b7d27808e21e88cbcb37dd4c4ac30cde18b269ea2daafd450e266235cd708ece11a296ffd7bbca0019720be713b1b93525"]}, @typed={0x8, 0x18, 0x0, 0x0, @ipv4=@loopback}, @generic="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", @generic="78e4875deec50b81b788a47bcd9e62dd45130bbc08c22d3749d33fa2b1de689744b96851fd91d299cf8407393ba0e70e7b0d9624d1418f51c2e3c7dcdec5b8ec99bc956bcba74e9a15902ec06cfd0bd9e6ca73dc07738db6782fb0551f9e02f25b3a074a9a67926a0d1b49fc1c633564a41401715c85ec4aac1401b582e9de13c9a0b8b6745f9a2fa07120ea388b1912bcef8148bdea6594bf3d6cbcfb6402302c343c124cda03552fd7246517645b370443b1b3093ac31b1dd175c7c2a2eca1ab68ada23cd20c5bf59d", @nested={0x129, 0x4, 0x0, 0x1, [@typed={0x8, 0x1c, 0x0, 0x0, @pid=r5}, @generic="b16f11cc940fd8f43ade4405d480c1a2e31be3c21f2889c72544eee9c9d5f3f4471ad1b27bf71ba0beb8b222875d3f77f4d580806610de4299540cf14328ecf10b9b0c13948ac78eb4335f42279e96aad03b78a3d97c270930b955410af70829843946335c94570bdefdad42a861d55abf740fee9a0df3fbdf5ae4fd328053adefa1f29d75484dbe0c9a4e80fe78f3ad", @typed={0xf, 0x9c, 0x0, 0x0, @str='/dev/i2c-0\x00'}, @nested={0x4, 0x46}, @generic="aac648eebcff7de8b49a5cc75c82189026ecdd3a5ab89e0b3178ea6dd2c6c64e0d259d57143e5a6076a8ef1edd8491e7be64f33cd86179adc81db3362bc63c6a9a5f9a8d4b35091184df83ae7caa9238c79769864e21b8d30861fa1b3fd19e33b4a1a46078dc9a38ff556d3e9b7494cbf534ac0a134b6c2293"]}]}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0x7}]}, 0x538}, 0x1, 0x0, 0x0, 0x41}, 0x50)
io_uring_setup$auto(0x1, 0x0) (async)
r6 = socketpair$auto(0x1a, 0x1, 0x8000000000000000, 0x0)
bpf$auto(0x1, &(0x7f0000000000)=@link_detach={r6}, 0x10000)
mmap$auto(0x0, 0xc, 0x9c72, 0x8000000008011, r6, 0x5) (async)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)

2m51.484952837s ago: executing program 3 (id=2233):
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f0000000000)={0x0, 0xffff, 0xd, 0x100000000, 0xffff, <r0=>0xffffffffffffffff})
prctl$auto(0x80000000, 0x1, r0, 0x8, 0x426c)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0x20499d, 0x9)
futex$auto(0x0, 0x86, 0x8, 0x0, 0x0, 0x7)
ioctl$auto_TIOCGDEV2(0xffffffffffffffff, 0x80045432, 0x0)
socket(0xa, 0x3, 0x3b)
prctl$auto(0x1000000003b, 0x2, 0x4, 0x5, 0x7)
msync$auto(0x200000, 0x2000000005, 0x6)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_CTX_GET_CPT_STATE(r1, 0x7b1, 0x0)

2m49.694558486s ago: executing program 2 (id=2237):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x100000000000039, 0x0)
r0 = fsopen$auto(0x0, 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
msgctl$auto_IPC_STAT(0x8001, 0x2, &(0x7f0000000200)={{0x7, <r2=>0x0, 0xee00, 0x9, 0x6, 0x0, 0xc7a}, &(0x7f0000000180)=0x8, &(0x7f00000001c0)=0xc8, 0x9, 0x4, 0x4, 0x4, 0x4, 0xfffe, 0x6, 0x0, @raw=0x6, @raw})
shmctl$auto_SHM_LOCK(0x3, 0xb, &(0x7f0000000400)={{0x3a00, <r3=>0x0, 0xee01, 0x8, 0x3, 0x2, 0x1000}, 0x30f, 0xfffffffffffffff6, 0x7, 0x1, @raw=0xc9, @raw=0x80000000, 0x4, 0x0, &(0x7f0000000280)="0d297e62d5bc80ece8b02c8ea521125885ef70406cd8156e6d79e8bfc98f0b1aba174388da76da156fc112cbe8f6ac2e58a963bc0770ee7f8341052f16035db33d6d985cd846544b51c4cc2616b7eb", &(0x7f0000000300)="6ea74aa60187d5ae3f7496bb321d067d2c3fc8da259f12f0b51a7d4644e47a67f4519b19659edb49a4a030dee5bbb203be8dbe72106e102ec4892580c73ec2413d562d1a178bc14bed95e210bd637bf0d365fa51455be7e181afd73cddfcb4a850dfd8263973edaa08ad4f280607192386e98a134c377289957a25c75a054d5023fc9635cea533084e90e279f7cee9b2e54660729b83a7a31c85f52d6381c19d334f1828562668cae42855a769f55c34bbb965be1b9828f8019b3f73fb43f48758bf1eff16e2ed7a160f77f76b4638fc9877b190b54167eca5c3f38499d05197"})
newfstatat$auto(r0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)={0x8, 0x1, 0x9, 0x9, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2, 0x1, 0x1, 0x5a78, 0x0, 0x3edf91f2, 0x9, 0x0, 0x5, 0x1ff}, 0x9)
setresuid$auto(r2, r3, r4)
r5 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff)
sysfs$auto(0x9, 0x2, 0x8)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(r1, &(0x7f0000002740)={0x0, 0x0, &(0x7f0000002700)={&(0x7f0000003a80)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010429bd7000f9dbdf2502000000180001801400018008004e00", @ANYRES32=0x0, @ANYBLOB='\b\x004\x00', @ANYRES32=0x0, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x2400c001}, 0x8000)
unshare$auto(0x40000080)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8a241, 0x0)
bpf$auto(0x5, 0x0, 0x39)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/memory.max_usage_in_bytes\x00', 0x62181, 0x0)
writev$auto(r6, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x20000a, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4044001)
socket(0x2, 0x3, 0x6)
write$auto(0x3, 0x0, 0x100085)
fsconfig$auto(r0, 0x1, &(0x7f0000000000)='4\x93\x03\x00\x04\x00\x00', &(0x7f0000000040)="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", 0x0)

2m45.896690364s ago: executing program 2 (id=2244):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
write$auto(r0, 0x0, 0x10007c)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/stat\x00', 0x101040, 0x0)
pselect6$auto(0x5, &(0x7f0000000400)={[0x8, 0x5, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0x3, 0xffffffff, 0x7fffffffffffffff, 0x0, 0xfffffffffffffff9, 0x2, 0x9, 0x3ff]}, 0x0, 0x0, 0x0, 0x0)
lsm_get_self_attr$auto(0x65, 0x0, &(0x7f0000002440)=0x203, 0x1)
timer_settime$auto(0x0, 0x801, &(0x7f0000000000)={{0xa6, 0x7}, {0x0, 0x3}}, 0x0)
clone$auto(0x20003b4b, 0xa, 0x0, 0x0, 0x10)
r1 = socket(0x26, 0x80805, 0x0)
syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000040), r1)
process_vm_writev$auto(0x0, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/oom_score_adj\x00', 0x102, 0x0)
read$auto(r2, 0x0, 0x7fff)
write$auto(0x3, 0x0, 0xfffffdef)

2m45.26053397s ago: executing program 2 (id=2246):
mmap$auto(0x0, 0x2000a, 0x4000000000df, 0xeb1, 0x405, 0x200000008000)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/sequencer2\x00', 0x8081, 0x0)
mmap$auto(0x6f, 0x40009, 0xdf, 0x9b72, 0x7, 0x2000028003)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/radio2\x00', 0x0, 0x0)
read$auto_v4l2_fops_v4l2_dev(r1, &(0x7f0000000100)=""/4096, 0x1000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
kexec_load$auto(0x0, 0x2, 0x0, 0x1000000000004)
ioctl$auto_SNDCTL_MIDI_PRETIME(r0, 0xc0046d00, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram12/queue/io_poll_delay\x00', 0x0, 0x0)
unshare$auto(0x40000080)
unshare$auto(0x40000080)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/008/001\x00', 0x402, 0x0)
mmap$auto(0x80000, 0x2020009, 0x2, 0xfc, 0xfffffffffffffffa, 0x8000)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
r4 = epoll_create$auto(0x1)
capset$auto(0x0, 0x0)
epoll_ctl$auto(r4, 0x1, 0x8000000000000000, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0)
read$auto(r5, 0x0, 0x8)
close_range$auto(r2, 0x8, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4044001)
close_range$auto(0xffffffffffffffff, r3, 0x0)
socket(0x2, 0x1, 0x0)
socketpair$auto(0x7ff, 0x3, 0x101, 0x0)
openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000b80)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x2, 0x0)
syz_genetlink_get_family_id$auto_smc_gen_netlink(0x0, 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_REMOVE_UEID(r6, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000001200)=ANY=[@ANYRESHEX=r3, @ANYRESOCT, @ANYBLOB="01002cbd7000fedbdf250b000000250001002f7379732f6b65726e656c2f64656275672f77616b6575705f736f757263657300000000"], 0x3c}, 0x1, 0x0, 0x0, 0x24008040}, 0x4040)

2m39.572493842s ago: executing program 2 (id=2250):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa0001, 0x0)
mmap$auto(0xe4, 0x20009, 0x4000000000df, 0x18, 0x401, 0x100008000)
read$auto(0xffffffffffffffff, 0x0, 0x4)
sendmsg$auto_NFC_CMD_VENDOR(0xffffffffffffffff, 0x0, 0x845)
r0 = openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/current_tracer\x00', 0x2ac401, 0x0)
writev$auto(r0, &(0x7f0000000140)={0x0, 0x5}, 0xa)
mmap$auto(0x0, 0x202000b, 0xfffffffffffffffe, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
r2 = userfaultfd$auto(0x1)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
epoll_create$auto(0x4)
socket(0x2, 0x1, 0x106)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D2\x00', 0x1, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000080)=""/58, 0x3a)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r4 = io_uring_setup$auto(0x1, 0x0)
io_uring_register$auto(r4, 0x2, &(0x7f0000000040), 0x86)
r5 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x2000, 0x0)
ioctl$auto_FIONREAD(r5, 0x541b, 0x0)
select$auto(0x800a, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x9, 0xd3e, 0x3, 0x949b, 0x2, 0x95f4da0a, 0x7f3, 0x79, 0x8000000000000001, 0x2a61, 0x14, 0x8, 0x1209, 0xe09, 0x4]}, 0x0)
write$auto(r3, &(0x7f0000000400)=' \x00\x00\x00\xf7\xff\xff\xff\xff\xff\xff\xff', 0x100000a3d9)
select$auto(0x12, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000000000, 0xfffffffffffffffe, 0x8f, 0x2, 0x9487, 0x8, 0x15f4da09, 0x0, 0xfffffffffffffff7, 0x20000000080005e, 0x6, 0x1040000208000007, 0x6d41, 0x3, 0x7, 0x7]}, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40ebf, 0x401, 0x300020000000)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f00000000c0)={0x5, &(0x7f0000000000)={0x28, 0xf3, 0xb2, @raw=0xfffff02c}})
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/cgroup.clone_children\x00', 0xb02, 0x0)
sendfile$auto(0xffffffffffffffff, r2, 0x0, 0x403)
unshare$auto(0x40000080)

2m37.475913533s ago: executing program 2 (id=2254):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x800000000801f, 0x3, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x110c230000, 0x1, 0x3)
write$auto(r0, 0x0, 0x10007c)
msgctl$auto_IPC_STAT(0x1, 0x2, &(0x7f0000000640)={{0x5, 0x0, 0x0, 0xa8f1, 0x3, 0x6, 0x7}, 0x0, 0x0, 0xfffffffffffffffd, 0x20000080000001, 0x80000001, 0x3, 0x4, 0x8003, 0xf, 0xfff8, @inferred, @raw=0x4})
mmap$auto(0x0, 0x400008, 0x6, 0x9b72, 0x2, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto_SO_COOKIE(r1, 0x1, 0x39, 0x0, &(0x7f0000005b00)=0x7)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSTI2(r2, 0x545c, 0x0)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), 0xffffffffffffffff)
mmap$auto(0x70470e9a, 0xe3, 0xe1, 0xeb1, 0xffffffffffffffff, 0x4)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x80100, 0x0)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/003/001\x00', 0x189701, 0x0)
ioctl$auto_USBDEVFS_CLAIM_PORT(r3, 0x80045518, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop15/power/runtime_active_time\x00', 0x0, 0x0)
read$auto(r4, 0x0, 0x20)
r5 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
write$auto(r5, 0x0, 0x1)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40, 0x0)
pselect6$auto(0x5, &(0x7f0000000400)={[0xc5b7, 0x5, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0x3, 0xffffffff, 0x7ffffffffffffffc, 0x0, 0xfffffffffffffff9, 0xd, 0x9, 0x402]}, 0x0, 0x0, 0x0, 0x0)
timer_settime$auto(0x0, 0x801, 0x0, 0x0)
migrate_pages$auto(0x0, 0x6, &(0x7f0000000140)=0x2, &(0x7f0000000180)=0x2)

2m22.379576542s ago: executing program 32 (id=2254):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x800000000801f, 0x3, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x110c230000, 0x1, 0x3)
write$auto(r0, 0x0, 0x10007c)
msgctl$auto_IPC_STAT(0x1, 0x2, &(0x7f0000000640)={{0x5, 0x0, 0x0, 0xa8f1, 0x3, 0x6, 0x7}, 0x0, 0x0, 0xfffffffffffffffd, 0x20000080000001, 0x80000001, 0x3, 0x4, 0x8003, 0xf, 0xfff8, @inferred, @raw=0x4})
mmap$auto(0x0, 0x400008, 0x6, 0x9b72, 0x2, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto_SO_COOKIE(r1, 0x1, 0x39, 0x0, &(0x7f0000005b00)=0x7)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSTI2(r2, 0x545c, 0x0)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), 0xffffffffffffffff)
mmap$auto(0x70470e9a, 0xe3, 0xe1, 0xeb1, 0xffffffffffffffff, 0x4)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x80100, 0x0)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/003/001\x00', 0x189701, 0x0)
ioctl$auto_USBDEVFS_CLAIM_PORT(r3, 0x80045518, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop15/power/runtime_active_time\x00', 0x0, 0x0)
read$auto(r4, 0x0, 0x20)
r5 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
write$auto(r5, 0x0, 0x1)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40, 0x0)
pselect6$auto(0x5, &(0x7f0000000400)={[0xc5b7, 0x5, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0x3, 0xffffffff, 0x7ffffffffffffffc, 0x0, 0xfffffffffffffff9, 0xd, 0x9, 0x402]}, 0x0, 0x0, 0x0, 0x0)
timer_settime$auto(0x0, 0x801, 0x0, 0x0)
migrate_pages$auto(0x0, 0x6, &(0x7f0000000140)=0x2, &(0x7f0000000180)=0x2)

2.46463674s ago: executing program 0 (id=2816):
futex$auto(&(0x7f0000000080)=0x2948, 0x9, 0x2948, 0x0, 0x0, 0x5)
futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, 0x0, 0x0, 0x1000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x8000000)
semget$auto(0x0, 0x2e4a, 0x8000)
semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x9, 0x36ec}, 0x1f4, 0x0)
mkdir$auto(0x0, 0x8cd)
bpf$auto_BPF_OBJ_GET_INFO_BY_FD(0xf, 0x0, 0x1)
socket$nl_generic(0x11, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x2, 0x1)
read$auto(0xffffffffffffffff, 0x0, 0x7)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x29, 0x2, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
ioctl$auto(r0, 0x89a3, 0x24)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
setsockopt$auto(0xffffffffffffffff, 0xb371, 0xb44f, 0x0, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0xfffffffffffffffe, 0x9, 0x15)
mmap$auto(0xfffffffffffffffc, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)

2.318379529s ago: executing program 1 (id=2818):
r0 = getsockopt$auto_SO_PEERPIDFD(0xffffffffffffffff, 0x1, 0x4d, &(0x7f0000000040)='({\xe5&&}-!\x00', &(0x7f0000000080)=0x3)
mmap$auto(0x80, 0x4005, 0x2, 0x40eb1, r0, 0x300000000000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
move_pages$auto(0x0, 0x5, 0x0, &(0x7f00000003c0)=0x1, 0x0, 0x2)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty12\x00', 0x800, 0x0)
r2 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0)
pread64$auto(r2, 0x0, 0x100000, 0x7fff)
ioctl$auto(r1, 0x4b4b, r1)

2.268349456s ago: executing program 1 (id=2819):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x1d, 0x2, 0x6)
r1 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r2=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@xdp={0x2c, 0x0, r2, 0x6}, 0x6a)
write$auto(0x3, 0x0, 0x81)
sendmsg$auto_NL80211_CMD_TDLS_MGMT(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x0, 0x200, 0x70bd27, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x40001)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
futex$auto(&(0x7f0000000080)=0x1, 0x8, 0x3d, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x40000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
set_mempolicy$auto(0x3, &(0x7f0000000040)=0x7, 0x3)
r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x1, 0x0)
ioctl$auto_FBIOPUT_CON2FBMAP(r3, 0x4610, &(0x7f0000000040))
r4 = openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/projid_map\x00', 0x8080, 0x0)
mkdir$auto(&(0x7f00000001c0)='./cgroup/../file0\x00', 0x2)
r5 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000240), 0xc0000, 0x0)
ioctl$auto_RNDADDTOENTCNT2(r5, 0x40045201, &(0x7f0000000880)=0x80000001)
mmap$auto(0xa, 0x20009, 0x4000000000df, 0xffffffffffffc27d, r4, 0x8000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x8100, 0x0)
r6 = openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x2401, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x8002, 0x2)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0xffffffffffffffc0, 0x304)
getsockopt$auto(r6, 0x8, 0x0, 0xfffffffffffffffc, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x501, 0x0)
set_mempolicy$auto(0x80, &(0x7f0000000300)=0x4, 0x200008)

1.907430824s ago: executing program 1 (id=2820):
openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000000), 0x8200, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r0 = socket(0xa, 0x2, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x18, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x240202, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r0)
ioctl$auto_KVM_CREATE_VM(r1, 0x4080aebf, 0x0)
r3 = socket(0x18, 0x5, 0x1)
connect$auto(r3, &(0x7f0000000000)=@vsock={0x28, 0x0, 0xffffffff, @hyper}, 0x3a)
r4 = socket(0x18, 0x5, 0x1)
connect$auto(r4, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r7=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="13002cbd7000dddbdf034991380008000300", @ANYRES32=r7], 0x2c}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000100)={&(0x7f0000000040), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, r5, 0x8, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_MLO_LINK_DISABLED={0x4}, @NL80211_ATTR_SPLIT_WIPHY_DUMP={0x4}, @NL80211_ATTR_TDLS_EXTERNAL_SETUP={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x44890}, 0x240400d0)
r8 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x88442, 0x0)
socket(0x24, 0x0, 0x0)
mq_open$auto(&(0x7f0000000000)='.\xf1e4\xdf\x16\x95kxE\xd9x\x15\xb0\xf6V\x93\xb4E\x06\xc5}l', 0x400056a, 0x9, 0x0)
writev$auto(r8, &(0x7f00000018c0)={0x0, 0x2}, 0x8)

1.776161227s ago: executing program 1 (id=2821):
mmap$auto(0x0, 0x2020009, 0x6, 0xf8, 0xfffffffffffffffa, 0x8000)
r0 = socket(0xa, 0x801, 0x84)
getsockopt$auto_SO_TIMESTAMPING_NEW(r0, 0x0, 0x41, 0x0, &(0x7f00000000c0)=0xffff)
r1 = socket(0x15, 0x5, 0x0)
acct$auto(&(0x7f0000000100)='./cgroup/cgroup.subtree_control\x00')
unshare$auto(0x40000080)
write$auto(0xca, &(0x7f00000000c0)='\x04>\x01\x01\x00J:\xdd\xfc\xb6\xc6\x0f\xaf\xe3\x0f\xd1V\xb1yz\\\xa6\xed\ag+\xa3p(\xe2\x1b\xdc7\x1b\xc4TM}\xce\x90\xfa9\x957\xec\xd8\xe0TC\x86\xad\xe1G\xc7\xd4\x96\x12h\x84;Y\xe2\x03i\xa1)`\n\xc3\xfeR\x06\x03\xf5/@\xf0\'\xb9\xdf\xe1\xef\v\x19B\xc0\xe2\xac\xa5^\x01D\xef\xaf#\xbc\xa5\xf9J\xdc\xc3),=1\b\x05\x9d\x82\xd4\'\xe8\xfe\xfd\x9a\x9f\x00\x00\x00\x00\x00\x00\x00\x00', 0x7f)
writev$auto(r1, &(0x7f0000000140)={&(0x7f0000000040)="2e4a68c27a01b1d2b299226dfa21fb52520c500021022a4393fa346001e72254a9a4f67fdb2e617d490f90a38fe4fc723eb7b727db8311a883ea86ce9dcd4989f6e9a39409", 0xc4}, 0x9)
truncate$auto(0x0, 0xfffffffffffffffe)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0xe0301, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={<r2=>0x2, <r3=>0x4, 0x3, 0x2, 0x8, 0x2, 0xffffffffffffffff, 0x400000000d, 0x3}, 0x6f4)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14be02, 0x0)
writev$auto(r4, &(0x7f0000000100)={&(0x7f0000000380)="be27a40ac2", 0x7112}, 0x3)
mmap$auto(0x0, 0x3, 0x7, 0xeb1, 0x403, 0x8000)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop6\x00', 0x101202, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r5, 0x301, 0x0)
mmap$auto(0x0, 0x5b7, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
prctl$auto(0xff, 0x400, r2, 0x100000, 0x7fff)
ioctl$auto_NS_GET_MNTNS_ID(r3, 0x8008b705, &(0x7f0000000280)=0x55)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
acct$auto(&(0x7f0000000180)='./cgroup/cgroup.subtree_control\x00')
bpf$auto_BPF_LINK_GET_NEXT_ID(0x1f, &(0x7f00000002c0)=@prog_bind_map={r3, r1, 0x8}, 0x2)
getsockopt$auto(r1, 0x114, 0x2713, 0xfffffffffffffffc, 0x0)

1.156525792s ago: executing program 0 (id=2822):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/cgroup.kill\x00', 0xa001, 0x0)
write$auto(r0, &(0x7f0000000000)='\xc2G\xfd{\xb9\x8dvp8\x00\x00\x00\x00\x00', 0x5)

1.079591626s ago: executing program 0 (id=2823):
msgctl$auto_MSG_INFO(0xfffffffb, 0xc, &(0x7f0000000080)={{0x1, <r0=>0xee00, <r1=>0xee01, 0x2, 0xefb, 0x8, 0x8}, &(0x7f0000000000)=0x7f, &(0x7f0000000040)=0xd9, 0x2, 0x6, 0x9, 0x5, 0x2, 0x3, 0x8000, 0x0, @raw=0xdfc, @raw=0x5})
keyctl$auto_KEYCTL_GET_PERSISTENT(0x16, r0, 0x9, 0xe, 0x3) (async)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/security/tomoyo/version\x00', 0x4080, 0x0)
r3 = socket(0x8, 0xa, 0x8)
shmctl$auto_SHM_LOCK(0x614, 0xb, &(0x7f0000001240)={{0xa, <r4=>r0, <r5=>r1, 0x1, 0x5, 0x1, 0x5}, 0x7, 0x4fa, 0x7, 0x6, @raw=0x7, @inferred, 0x9, 0x0, &(0x7f0000000140)="8e5f9bdcb6819548e00fe514a53969260b806e56e4d8ca95527ef2139577a4fa27c2e611c002352deb9d274be7f3874c40ba4cc01157d7531c91e16c7ff94b273c7b1163f6aebdb256a9e7e2c48f4cd2d0d6e4831d40a140367f8e18668216f378d1b35c83c54383d90c8e170a4c77ba838ee3f9d2de74e0c10a8935feec6804c1f80145989190242448b17fe0a0828111000fe28545bbdbb28a6ea6e0b4ffb7f78eaf373f2813f2ec2c62ee0c155fa30e841f68c60eee4964ffc2d84de12bb83917da64d8cd9b3f99dcba0a6323d75342fec106d35ef4eeeaae12ac347e6d214bb1648d7b79cb60c5eb089f4db90e339004cc1e611c", &(0x7f0000000240)="a6902a51f89b638fade3ec97c05b965b4106c5136fc2675d9a2e49f49df9b9c7ce054472312967fd69608c94f84a26aaa9042e61d2fa5bdc0bca1df3d5df368613a7f863b263359039d9e5b234231958e2f3c506c9e1dd4a60db8af3758e3307c6fa19af1f3d2f3f5f74d191b5bc28b8581805b81cd62d8f2f78ad2ab531f06618697af6ff96d54d2e5444ba3231b1e085fe698fd696af171151185ce61c32926675c1142a5dea2c736408941e1c0178a4ea54ed1941f96f4e843b8690912dc98202c71c5816df007d1160000c27b2a84547e5c16ee31ec33ad21c63289403f30db80a69ec75b0ad0dd7b8f94c32bf2e316e8b12b0b876852f69adc3968995506de11bf6c11d937ae8592c40c74b03ae2ea2e069751c06bb914c1639cb76bf0bb0324bfb47c385fae1c3d93dd83305a08aa9ffcc8ea2c6349c25a4b883ad8ae68163b2dbfb5c3011573ee5576804fb0315859e4762f20ce843730d71532609180bf47741ab8dd86caafbb741750bd71416ac0fbee988633ac0cdcbb56a7f517b364b2b9a2fc0d0555215896d2deb5fdb033fb562e987e215087b1455110a85cd72666ae98922beeb9222b50f0aa3cf893c4d5786a47630bb0257e726d4c05d37f83202bb6f3035714001e0bf4cd41406d6101ad268d0d1638e600b33df800773b2ce7de3aed6e8e0bb3c18b4f4b8b9283cbf38eb0a6ff6c1ae1cb93d3f080e71b89f146bc6b0706e13dea1ececaa7b827dd0d0280c20c0a2fe07c2f34fb59567adf07b2e4ba0d43fd36bb1ef0766b558e76b3daf1e1f16c8f8a3c9ac9ccd22f04f9d56334afcc412e501b21f314f0e4fd18a03ff950990c015245c4674061fa1933fd797e3c681bacc2f0bcecde9814a1ed007e60312eb739af4f0543a2ed3a61a5a1f40e85085cd9a4c62c300902afa8065adfd958b9ddc206f095f4d63717283fca367c51f171cefed2d49782b6367c1376c34cb676d1fc71d162a9d3eaa968355fd77c3d3b68f30d4e89ce2fd79b650fdeb1e929cc064e9ed2c95f13c3a2c7051071a683e1d00b7d31b3d6490608c721c5e547a5eedf931d499fed1274b1f9dfdd46249f49b6a25b6b0d8594180b35c0d8c2dadbf1fbef24e65317e1974fe8545ed293feb213eb35f08ce1a015edaaf92b1e9116a640f12efced9830a59c311f1d52a24cfcd23a0b09c16df5bfc535edaaf07ecc181f37c93c448a9c7a07c30ed81c41d288378194265239177b44d4474a94cb4ea821207e369d6448cf4327d6acc4fa9890dcc367331c98840cf5e4f1927ade3af8522f23f04e5718a76ac5e3241a85ac59cf41a05c67163486686f82244055ad2075b90fc5e807081436e5b387918c1a3d3181b7f5e8b367553c0429214e7ff270e765cfc89531c3478af017b971adf62f2127a735a598150183e6c26b4f1a14a53267bcc282d48ea5dd2f3dc06e7773849801ce6e3a4a2a0b0886df58478d979b09ec20ddd8499b67878e65ec9fb5ee23160c0d30eb10592204a0ea01755f9104eb09ebe93e74e217511a82d7660c0f94a204c2aa4c3923c3296824adddf991b907b3f59eedc1eeecdb5f2724676b75c2f94d21e80b1f3254a1d4c01158de5ddca8280db35b4d927df623ebfa2f5ed8929557eb8d2703cf9e5db9dba1aea6ec051056f001fcd97ab301efba64d71a9a7c26b23a45e363580d948366232d6b1ea85b219774b3b7783eafac6cfb927ccdb8dd48b9bca2b6af1cc623f621f7d2bad176d0c0bd499ba091b6d1b61d3fc3885f4a8c3bebf89e3462ff914af792da67c3f128283d3a7bcf2c39b3a0f8e7a10b9674313a915a059ab511f0a5f11d14ee458119d321081e24d3634dd6a6c474c8f08e172abaabf82126cc975d17d5b981e471b4dec69ffee40bf919c15ba7f9317100583bafcf778afaee72d0781f0beadf37bf4e62875eade5cd09357ac26d43586b632ef31481d9fa129c37ea0f436d71b22e3384ffeca6723d0633a2a5478061b7ee188aa50b637018ff5efa8b45f51993b454d91567b96bdf6cd73e53fb93ce3f1b60c16ff2893fe8ff9abad3a322b9a3effe8ed08fed5fc0a35b72750fe35629ff57e9addb22bd12f6e701c6e124eee94b7f4710fb85e2449cd0bb1c80638794de03dd55dd989676b87420fb6acbea7e6e7c7a4311459f28d2c5557d4f243715a1748f537f02379bbbe7e15e84c1714f73f722a85229d1aac588478d37522fd7390fcbe46f6350d79c6f2526b6f5a0665ddfcfec7f4fac16e450dec5cbe8a31c28fa845ea4f067e2cb750065ccae73d8bd1abe745e2d682a1c434eef928082e0f61d88acb159b66c9c518cf85a084d348c40f74cbfe961888878c7affd76837dbf6f1ea5591ebb231707b8f2465c7b6ba3d7470f8712b48aabc6b5068ada972e566e9102493ad2c3f40aa527e5a4ab7234ba4e835edf648f1023f21659762bf6d5c7f9ae02d48f3490b4b450c2ec9b7e37b2b337404928d0fee116509f73ca46c4c8964ae099d3ac204e7f62089583de94d000b6c080aa76311d4b4b95e6e2acb8a46fed9b1eda229f05e2c09be78f68ad162846dbadb1e408a78a6e2c4d9ec9f930a9e9477ee005a0f7701a3808c90097f6495785012a329db9aef8af16303c9249d85e10d23f3d61dbe3a92d9fe9cb346625002dc13a2b83b46ca1615322a5135e74c41f133f58d01d5053dde8119cc4272596d184ccf443431601c15a86645f36ecff6dd6b5f8d5905e8121e1e8485c75ff0d895517c4e472bfb233c75cc3975396ce8a8201376b13e5b0e16a12566cc8f5efb03ef7dc096edd126b3e100e9137ded06d48f1f0b6fa233583cb285a2a5ac7e64475118578336a0bd134a47996b257be9ab062182ff97c5c55b9078eab9dee0df45c6940735e926af5c6c4af4f6630034ff0699a10ebf0fe7e4f9ad29b4784efdafadf7d8e117ae2a3e2118eb096c3f36998c0a8cb0a6e6b831b26da394041a56f29b38cd65c14007dbfada714754c16e02b87d2a6ceb509b499949ea91c8ce993b00b11f2c75922dd54b58b3fc3b99402656ce6137512f172e2a296ac45f6c6ede0be04d1179a87b60dbf4a9c801b950a326c69636869dcf761b0e4341f135c3f19fdaa49b4561a79d4fe1132e0d4940df147d349e4d88c60b7a019ee45c7e4ebe2ac2d7aaa037841744b0863f565a749669b843d9667371ab8629c4f98848ec9cec17a798eaa20ac0748e7b938f020f50f98389d2135b0584c904840edc1eed14f4b0ddee4fff726ecd76ded4ca02738d7106d4b1876781fa14909599df99ed2a48f79ce03024a649a4660aa84e587c46a2f703232624ddf3f60493173ce044c8269bf89d16b0ddf4d61fba2df8b223f32d5d3cb55be1c95f19e4277152c0c979aa1b8eff21a4af0a7365d43190a27f87dd29a17e587e51a6cbd6291680a8541c449659d9dd33f3f01acabc7562f3e35dde65efc4121d2907f0e4740e5d7a09624650a13025118e3279e432e0c7d243e6e575f763d5d73ba5390327767e0f265382cdb87a69649ef836cb3685319e7082b4b8c3adb0de15053011f3f998c473c166aeec743982881a12cc1c33c87e2557fb7a70ac80fcc02944fa55da84689860cc48cab4cd37977a510379be7ac5c60d276b621b495e16139434426d33c506620b329dc283ae1b62fbfda31286e56d7d4954673f14886159cf460cb727b3a0ce5ef97a3ac3e337273b9070b992258c4ae9a99b8f63db0c6e6cc0d9980dd8f7ea87349225dc0b3e35a90eda8b7186c0d0134b294d0e0889a8b79c194c808d512d7fb50ab82d82bd72beb7df9655b741e026d14600bf9664a65ebe5ec190b9e67f95abcbb0041af923e2612bc9cfcc7cc2df71bc8d81c15a287c6476faaf610e439805a16cf503ad86fdecff6210bf367c22e30409aa8093c822a19096f29f7c7b6202c93d552b3ef0fadad9f4b2e9679987fce5731208f9a428550e0e698b70c431a015b60d2799100a58286324c447acde01e6183d9343117cefe8d63dc984f1cfff150353cd765bc41a7399c8a75c6f1b4e0b0335f45aa28cc0f62b5b72825a94f0ec51e11f48d6e74ada9bb936049951e8cb8d95c968002bc09e4dd87f3a80fbc797eb8fd64ad9e44a94a39b816669f05ce61a8d5d0552c63fa7b9245fb108c8af2b5a72b5522d0ec14568a5fdd3f32483d930dc0a76b47752ce1b769a7f687c1f6f5db19d8a3ac518eb5774b3ad14dcd2612692cd7a130809d37e89994526dd6e71de3230cbce8d5195069c2fe9ec6d3984faeb47a9795c27037f0b64db7a127cbce13d9d70ad93df17f28ad6fc5ae151c6dc5b7f332ed56ee8376ebc4baee9292d0a85a13b72885a36d5e1ac72553a2903eb8e49cdd31331cea7734a18ca7a967c507cdb8c79ddb2751974ad4b38aa93acc6e168d2a76cb7130c5d3b69c21e07c24486be0e6c6ea9f3bfaa81ca7dd4059d6d4ea2488dd03d255e045297d0e11c9d99c52d43b904a57e19129f8d62ec5ee2e14aa6e9de0e27b8c869a1e3719c8d1f69c9a9c0005069522d9e92dcfa5d30ee40e2d30e21741a796c1c45cb32ed9fbd9c141431b244e80c604102e5691217afd239bd0bf7fa9eb1f9306c9e35486ff83d31d1032421e29544044a6a597107bc80e6bbd8826aa79e1693ed5c68a178f2b27da8ba68303cbd58364c45024b597d7c77a143cf6cf1a1a7ac71559206ad02cbf654a315900037b803ea7e2b1fa6b6afccdfc9b7d6fe55e537eff00a5bdc95f9ee3bcfcbc01294de67a9c63bad7ea026d00fa3ae1b6d4968b9f129ad3a73d102f12059cc8146abc6f5c5d4f0bf037bd54d7f6236c27cb75d4a1a46fb1ee9bbab95e8b253e5f9a049234bfe75d2c834da2d083ec0a9ec7cbce396905d61016135aec002aef981c08070c511febfa791545d234b4cc14795ad9f21ec71eb4981d05f2ba9f56c4eb632a320df1c1ab92d52657c145d72e335e4e07b83e030aa023ea88497ef428f424c7a96d68e912f8a859a3723c963c89bbaa4b55333089d612f3538e9e744af0f431366e181eb7ba8cfbcf45c31bbff5733f3b6b5c121bbb62e1902db09e85748155b5985326467d395997068ab1f637ec15249115c9a9084e8df97ad56086c05f21520db5d43dfd6804098b42cf2c3929f424223d8b86a60ddc441bd368e3360d33eb64c0bff014f2d81254e2e3b6a7d1a824173be1aed0e007788f2eb91f852980abc70802521d549f462bbc585b4a113943c16780c4e18b1b5b9821c721f05f1692fcf3bf10dc8439e81676e650d8e1ebbd9872f0682ec18136c90b9f6b5063f2f699fc07688b6d072a8b87a3392adba843af1c038b752f27fa9361903f1fd47836edd6f3f138b4ce59263a616fa57abee5e07721cb198532e5b387433b5f63a4c80b0b063f7dd4402445a5d02bd1c2c88df98ce21a818bde3eea6a119c75f9836d820c7d9d08df0ec24fad6a799517881f98ecda15ca505669d94898db5a8830bbda2826357106ba4b81918fda68398e072897dd536915429fb01e568b01cc9ec88456f3236e6d87f071029282fdb0c44944852b802cd4582243bdf2e73238105016d9265d09cdae04040c9eae6de8a87fac7cb5cba1ac485c32d7bd7199208bc5a78c3f7ad74e8c059689e8abb87bee292dd0aaec310b963f74de8b411d483e38fca47328157399775a25236ad12515a7565bdaa32344cb824fb9d74d3dcd10683afc3896d927ffbbe69e0057fade0dd14cb3f71a049390de7405d27d77bc770005cc619ad05f6777aa8f9bcc863965c39f29cf9e5c7"}) (async)
shmctl$auto(0x100, 0x7e83, &(0x7f00000013c0)={{0xf545, r0, <r6=>r1, 0x10000, 0x2, 0xc, 0xfff}, 0x7, 0xc9, 0x9, 0x9, @raw=0x5, @raw=0x1, 0xffff, 0x0, &(0x7f00000012c0)="ffda5a11f88171443666c9c6adba8c9767b6eacf5b42ad3475ca165d0723e9b97b718e974836efd8f3aa62580aaa333b5b5d3aef203f6ab9d54be033312d578b382a7e8ff6d1ea8fc6742e9edc0bfef091dfb2258953322c56c5564ee4344082cec28a61", &(0x7f0000001340)="89451c0ecaf58ade807c28ae73e9805116e7700e1cfcbc12a11e47387ddbdc000b71170fad4fbd4d39e4e7ba7455a66ab6f636a1f82f634906c5196207339eaec3089300fbf96825b0b539"})
r7 = waitid$auto(0x4, 0xffffffffffffffff, &(0x7f0000001600)={@siginfo_0_0={0x5, 0xf8, 0x36, @_sigfault={&(0x7f00000014c0)="4a745d10ea", @_addr_bnd={"98c15e34555d338b", &(0x7f0000001500)="efb987b86533e02e413c8764565e1f58d05b33a55d90506567142f0a403aa7b825acf7d35bbd8156ded94472b51a9154fc76b3315832e9b3b5d11b620f02534b1a2913cd17d5965245f94401ebdcefc19ae41ea4ca86e0f469868adfa0a01b659887ca53a9ecb7fe805df347df085d0ab83e39d9c66b4062e5a0405d8f055a6a4bc114620865b8a49b59fc6d5de0c59c41352b7af9", &(0x7f00000015c0)="b1a2"}}}}, 0x7, &(0x7f0000001680)={{0x9, 0x6}, {}, 0x10, 0x80000, 0xffffffffffffffff, 0x8001, 0x7fffffff, 0x9, 0x100000000, 0x5b61d09b, 0x697a, 0x5, 0x4, 0x3, 0x1, 0x3})
r8 = semctl$auto(0x1, 0x3, 0x5, 0x8)
msgctl$auto_IPC_RMID(0x0, 0x0, &(0x7f0000001740)={{0x10001, <r9=>r4, r6, 0x5, 0x5, 0x6, 0x9}, &(0x7f0000001440)=0x7, &(0x7f0000001480)=0x5, 0x816, 0x9, 0x0, 0x4, 0x9, 0x5, 0xb0c6, 0x9, @inferred=<r10=>r7, @inferred=r8}) (async)
r11 = openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/devices/virtual/bluetooth/hci7/power\x00', 0x1, 0x0) (async)
stat$auto(&(0x7f0000001800)='./file0\x00', &(0x7f0000001840)={0x4, 0x7fff, 0xaf86, 0x2882, r0, <r12=>r1, 0x0, 0xfffffffffffffff7, 0x8, 0x130ecfff, 0x5, 0x6, 0x2, 0x5, 0xe, 0x1000, 0x1})
ioctl$auto_XFS_IOC_BULKSTAT(r11, 0x8040587f, &(0x7f0000001900)={{0x8, 0x7, 0x6, 0x1, 0x1, [0x7f, 0x6, 0x2, 0x8, 0xb]}, [{0x9, 0xffffffffffff8001, 0xe, 0x8, 0x1, 0x9, 0x9, 0x7, 0x30, r4, r5, @inferred=r12, 0x3, 0xffffffff, 0xaad4, 0x3, 0x3, 0x6, 0x81, 0x4, 0x7, 0x5, 0x6, 0x40, 0xf, 0x5, 0x401, 0x9, 0x0, 0x1}, {0x8, 0x553, 0x1, 0x0, 0x5, 0x4, 0x80000000, 0xffffffffffffff00, 0x88, r9, r1, @inferred=r6, 0x6, 0x61, 0xa86, 0x0, 0x80000000, 0x8, 0x800, 0x4, 0x1, 0x0, 0xe269, 0x7, 0x6e, 0xba, 0x5, 0x9, 0x0, 0x100000000}, {0x10, 0x7, 0x6, 0x1, 0xfffffffffffffffb, 0x1, 0x5, 0x7, 0x1, r0, r1, @raw=0x10001, 0x6b75, 0x1, 0x1, 0xfcd, 0x3e, 0xfffffff7, 0xffff, 0x6, 0x6, 0x2, 0x20000000, 0x0, 0xfffd, 0x0, 0x81, 0x3ff, 0x0, 0xdf8d}, {0x5, 0x8, 0x7, 0x0, 0x0, 0x4, 0x0, 0x80000001, 0xd5, r4, r1, @raw=0xa8, 0x2, 0xab1, 0x1200, 0x0, 0x8, 0x7, 0x80000001, 0x6, 0x0, 0x136, 0x5, 0xd, 0x7f, 0x2, 0x7, 0x4, 0x0, 0x1}]}) (async)
shmctl$auto_SHM_STAT_ANY(0x0, 0xf, &(0x7f0000001dc0)={{0x0, r0, 0xee00, 0x8, 0x4, 0x4, 0x101}, 0x6, 0x80, 0x100, 0x5, @raw=0x13d346a1, @inferred=r10, 0x7, 0x0, &(0x7f0000001c40)="5642fbf2c1bcc04e8decc1e58cc8085aba615966304a61d13496cf9de4fabca7bd524768f0882085db096e65fa5de82a255891f9cc56dbdef6912380130de91e8e31325b3d1a0369583f136251618a0737f26eb7a002f981e59e910aaf7d51899448cd3527d296a9b1c35b8203ff875d122ad2271b60d139cf0e6f884bd21bde6a6363721e8ce9f9c801b63198ab83cd251fb2acbffc6c9b21f4f5e9104f5c797d696a15595e7d", &(0x7f0000001d00)="df11715dbc65177c15649bc99feb377409fd0e85d9dd9b3293967a8e09dce23c2f9a627390b151a65412dcb4b18c2bfec80d0ffc70337be715ddf3df27d360584374820ad0a67f2dd7b0cf3dbf9a764cc89bfc433c345e25afb00906d90fa83ee9f83cc12579950273c0cd7b6ee53e96908ca4f9981d511e8892cf531c414795a61f64a35a8e749cf63bad7d5096a952fce057280c27c431a75f6295753c1b398bd607ab77ef142c42"}) (async)
r13 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r14 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001e80), r3) (rerun: 32)
sendmsg$auto_WG_CMD_GET_DEVICE(r13, &(0x7f0000002000)={&(0x7f0000001e40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001ec0)={0xf4, r14, 0x400, 0x70bd28, 0x25dfdbff, {}, [@WGDEVICE_A_PUBLIC_KEY={0xdd, 0x4, "c006dd46f15d8c12bbdc815d20cab9ebae1685c3d324812b483e6d1084ac2fb8bbd88de09441d57aa7f5db3528eb8d4292d78d3758c9b5d234828ac5ff2652dc3657792d98401310999fc96091506e06a2ff48e76c8c148d3c0f6e8da80d2dd1c8888ad1e830cd3ef426290d35b84384ef1097deac6e307853120cfa9d9c186162d7ea1dbea0be4d48335a0e80fd1f626a94ad54ef0fad4d3f9289825836b4e749b370ef6793b574dda7483f91e7c276da9ac846e23f4883f1eeb590abf3b3264de089b387a99b94c20b907e52cd31101e04322124a46de72a"}]}, 0xf4}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) (async)
r15 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000002040)='/sys/devices/virtual/bluetooth/hci1/power\x00', 0x80001, 0x0)
ioctl$auto_BTRFS_IOC_RM_DEV_V2(r15, 0x5000943a, &(0x7f0000002140)={@inferred=<r16=>r2, 0xb, 0xb36d, @btrfs_ioctl_vol_args_v2_3_0={0x1, &(0x7f0000002080)={0xad, 0x2, 0x0, 0x57a3, {0x4, 0x2, 0x7, 0x0, 0x8}, [0x6, 0x5, 0x6, 0x8000000000000001, 0x7, 0x0, 0x90d, 0x4, 0x100000001, 0x7ff]}}, @subvolid=0x200})
ioctl$auto_XFS_IOC_EXCHANGE_RANGE(r11, 0x40285881, &(0x7f0000003140)={<r17=>r13, 0x0, 0x3, 0x7f, 0x7, 0x40}) (async)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000003180), 0x40000, 0x0) (async)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000031c0)='/proc/self/fail-nth\x00', 0x0, 0x0)
getdents64$auto(r15, &(0x7f0000003200)={0x8, 0x1cd, 0x117, 0x4, "eb7fa006633afe74ce7bc88a03198987b59cb1f4a2169d77c5f616712a231c01bdf665dea7b2872ef54b16b62068aecc15236aa656110b11910e1dc4dfe94f9995d23863d58f9206d9647daa01d6d672f5d865e0ce7c32d45c07869218c17d8a145c2fa5697e2ddda3dc07116ef3d8fdf80a194e873127be462b8181944349bc2c9bd5c0b374fda6c2906a17e6a21e363826cfd904b9c948e45de37736df327074027b49204a81a22b9cacd2008ec73076c231007fb618bc0026970c2a140502700aff330db1768db10a383b2ed74673"}, 0x3)
r18 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000003340), r16)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000003380)={'veth1\x00', <r19=>0x0})
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f00000033c0)={'bridge_slave_0\x00', <r20=>0x0})
sendmsg$auto_NCSI_CMD_SEND_CMD(r3, &(0x7f0000004940)={&(0x7f0000003300)={0x10, 0x0, 0x0, 0x1cb22906c0e6750f}, 0xc, &(0x7f0000004900)={&(0x7f0000003400)={0x14dc, r18, 0x800, 0x70bd25, 0x25dfdbff, {}, [@NCSI_ATTR_PACKAGE_ID={0x8, 0x3, 0x81}, @NCSI_ATTR_IFINDEX={0x8, 0x1, r19}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x101}, @NCSI_ATTR_DATA={0x48e, 0x5, "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"}, @NCSI_ATTR_IFINDEX={0x8}, @NCSI_ATTR_IFINDEX={0x8, 0x1, r20}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0xffff}, @NCSI_ATTR_PACKAGE_LIST={0x1004, 0x2, 0x0, 0x1, [@generic="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"]}, @NCSI_ATTR_MULTI_FLAG={0x4}]}, 0x14dc}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)
r21 = syz_genetlink_get_family_id$auto_netdev(&(0x7f00000049c0), r13)
sendmsg$auto_NETDEV_CMD_DEV_GET(r17, &(0x7f0000004ac0)={&(0x7f0000004980)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000004a80)={&(0x7f0000004a00)={0x64, r21, 0x0, 0x70bd2b, 0x25dfdbfe, {}, [@NETDEV_A_DEV_IFINDEX={0x8, 0x1, r20}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r19}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r19}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r20}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r19}, @NETDEV_A_DEV_IFINDEX={0x8}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r20}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r19}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r19}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r19}]}, 0x64}, 0x1, 0x0, 0x0, 0x44}, 0x80) (async)
r22 = openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f0000004b00), 0x2000, 0x0)
io_uring_register$auto_IORING_REGISTER_FILES2(r22, 0xd, &(0x7f0000004b40)="7404fd81ed41c0ece2f7907d36bd3d8bc16b3e6300f3e4447f525bccbc9442d70d4dd0c24f490022d3e00d9eda8dfbabbd530a71f7a547a58fb625f498fb0041b038f6d35880f834eeccb51c2df35fcfff87856816e1476530931c93f7534ec2", 0xffff)

890.369966ms ago: executing program 0 (id=2824):
mmap$auto(0x0, 0x2020009, 0x3, 0xebd, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r0 = socketpair$auto(0xfffffffb, 0x3, 0x100000, 0x0)
r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f00000012c0), 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x0)
socket(0xa, 0x801, 0x106)
listen$auto(0x3, 0x81)
bind$auto(0x3, &(0x7f0000000040)=@generic={0xa, "02d0ac0c00e435826339c7328903"}, 0x6a)
ioctl$auto_I2C_SMBUS(r1, 0x720, 0x0)
clock_adjtime$auto(0x10, &(0x7f0000000640)={0xb7, 0x0, 0xfffffffffffffffb, 0xfffffffffffffffe, 0xfffffffffffffff9, 0x6, 0x4000003, 0x0, 0x7, 0x5, 0x8, {0x0, 0x5}, 0xfffffffffffffff8, 0x3, 0x5, 0x7fffffff, 0x0, 0x13, 0x1, 0xaac, 0x5, 0x2, 0x4})
newfstatat$auto(r0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x0, 0x3, 0x5, 0x7, 0xee00, 0xffffffffffffffff, 0x0, 0x3ff, 0x1, 0x80000000, 0x8001, 0x4, 0x0, 0x8000000000000001, 0x4, 0x1, 0x3}, 0x30)
shmctl$auto_SHM_INFO(0x0, 0xe, &(0x7f0000001240)={{0xfff, 0xffffffffffffffff, 0xee01, 0xc6, 0xa, 0x7, 0x7}, 0x7fff, 0x10, 0x219c, 0x6, @raw=0x4, @raw=0x9, 0x644, 0x0, &(0x7f00000001c0)="93dd9832761d7efb958d40cf71852aa9f850dd4ee013533facda51cc23668897ca66e0805fc9b3a5e003a943b3347c31cca6b8dc0899b486c12b21f4d978784a212e7910651b5825bc765b9fae99f38b96c0dbc29a24845941", &(0x7f0000000240)="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"})
r2 = setfsuid$auto(0xee00)
shmctl$auto_IPC_RMID(0x0, 0x0, &(0x7f0000002900)={{0x3, r2, 0xee00, 0x9, 0x17, 0x6, 0x1}, 0x6, 0x6, 0x7, 0x2, @raw=0xfffffff8, @raw=0x5, 0x80, 0x0, 0x0, &(0x7f0000001300)="98184e760a0f452eb11ea06b99ff21207e3b8c3b220008000000265728b83289334ad0fe741aa5ca55a08562caac2a4250362d60e4fa7c638f6df5ce567f74be13b83c270559872a67c6a2b22bf7734c63c04d9ee81bc615e00b15ccc53a5b6ed9157d272249f257871870a4dd4b9b2c4f3cd50dc4213674015e96a424cd97bb46607a111c53e42e0b11a63d21ed05b26a0c19389a37520abe6b3ea601753db3866ffa329e14793aeb877cee6c02bf202c8b3ae953ade534583c3a8766489b1088b78c7275f016e2893b9872f9838ee0b85800c987876a1cb931ca45ee63f378368534d2c6e3883bdbfff6cba018b5bafe2640c29ce38d47ef38de0aab4ca7e024bc3e080bcfe372dc5f8c271a74140ab51245cc9e47dc"})
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy0/net/wpan0/carrier\x00', 0x42802, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
madvise$auto(0xad37, 0x2, 0x17)
madvise$auto(0x3, 0xffffffffffff09d4, 0x10000017)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0)
mmap$auto(0x0, 0x28009, 0x4000000000df, 0xeb2, r3, 0x8000)
io_uring_setup$auto(0x1, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xa)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
r4 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmsg$auto_OVS_FLOW_CMD_SET(r4, 0x0, 0x10)
readv$auto(0xffffffffffffffff, 0x0, 0x800000000000003)

581.989452ms ago: executing program 0 (id=2825):
close_range$auto(0x2, 0x8, 0x0)
fanotify_mark$auto(0xffffffffffffffff, 0x319, 0x8, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mremap$auto(0x200000000000, 0x7, 0x3fd6, 0x3, 0x200000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f00000000c0)='7\x00\\\xa0\x04|3S\xafV\x12\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00%\x85{2\xaf\xfb\xcc\xcc\x9f\xe1r\x84\x04\x10{U\x98;\xf8f\xc2E/@6\xd0U\xb04\xf90\x18\xb0N\xfbj\x0e\xed\x8b\a\xb4\x93Y\xfc\x82\x90\xe2\xc11\xc0t2\xfc\xb8o\x03w\xcb\x0505\xf0\x92\xba\x9a\xf6\x8cS\x97&z[MG\xe0o\x9a\xa9\x91\x1a\xfc\xcaI1wJ\xd6\xe2h1\xd7\x91\xd3\xffH%\xa9\x99a\x8a\xa56\xb9(\xbf\xef\x14\xa0', 0x2002)
mlockall$auto(0x7)

350.519648ms ago: executing program 0 (id=2826):
r0 = socket(0x2c, 0x5, 0x2000006)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r1 = io_uring_setup$auto(0x2204, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000400)={0xfffffc35, "2b1bf6647df6a3448d4ea67b5b66a5a9517a30cb5856ea7bf6db5f335e2009a6", @raw=0x3})
r2 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000080), r1)
r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000001c0), r1)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/tunl0/napi_defer_hard_irqs\x00', 0x28b42, 0x0)
sendfile$auto(r4, r4, 0x0, 0x1ff)
shmctl$auto_SHM_STAT_ANY(0xfffffffe, 0xf, &(0x7f0000000300)={{0x9, <r5=>0x0, 0xee00, 0x4, 0x7, 0x5, 0x7cf9}, 0xa4, 0x71, 0x1091855e, 0xc3a, @raw=0x246cf8c3, @raw=0x7fff, 0x7, 0x0, &(0x7f0000000200)="f04c76ff9dc80baabdf5cd3e60f697e71881fa37aa96992f7e4ee13851c60e9f909e9f8f03472f91992f091dceb37ab15eac17f57d8429f3e2590b9ee9cdf109a5dcf0a516d2399b18624e27d62f981cd8c7fd65fbf9c863cdee49e0c6588982", &(0x7f00000004c0)="61d9311da73cbae26f79fb7665e9d4c227ce881f182e8ef5466c0f18196b21ecb5e287de63b872ca1715144dd839e7e342952109011c7bab0857243ecf999100201b03b51ba03f4881cc276f99744db87c15b193f4"})
r6 = accept$auto(r1, 0x0, &(0x7f00000003c0)=0xa)
sendmsg$auto_TIPC_NL_BEARER_GET(r0, &(0x7f0000003800)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000037c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="fc140000", @ANYRES16=r3, @ANYBLOB="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", @ANYRES32=r5, @ANYRES32=r6], 0x14fc}, 0x1, 0x0, 0x0, 0x1}, 0x4005)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="000425bd70bfa67121f059c2b249"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0)
gettid()
io_uring_setup$auto(0x6, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2061, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x41e, 0xfffffffe, 0xfffffffa, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r7 = socket(0x1d, 0x2, 0x7)
getsockopt$auto(r7, 0x6b, 0x3, 0xfffffffffffffffe, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="00082cbd7000fedbdf250300000008000200", @ANYRES32=0x0, @ANYBLOB="060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a000500aaaaaaaaaabb00000a00010000000000000000000a000100bbbbbbbbbbbb0000060006000f0000"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x6004000)

96.32803ms ago: executing program 1 (id=2827):
r0 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/mice\x00', 0x22002, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x0, 0x2020049, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x3, 0x0, 0x100000000)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
socket(0x2, 0x5, 0x0)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker\x00', 0x201, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7112}, 0x8)
ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r3, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(r3, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @inferred=r2}})
write$auto(r3, 0x0, 0x6)
setreuid$auto(0x4, 0x8)
futimesat$auto(0xda, 0x0, 0x0)
openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000080), 0x141501, 0x0)
write$auto(0x3, 0x0, 0x100085)
splice$auto(r0, &(0x7f0000000140)=0xffff, r0, &(0x7f0000000180)=0x2, 0x2, 0x12ec)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/sctp/eps\x00', 0x181800, 0x0)
fsconfig$auto_SHMEM_HUGE_NEVER(r2, 0xa, &(0x7f00000001c0)='%\x04\x9d\x85C', &(0x7f0000000440)="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", 0x0)
socket(0xa, 0x1, 0x84)
pread64$auto(r4, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00'/232, 0x3ef, 0x9)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000200)='/dev/input/mice\x00', 0x181502, 0x0)

0s ago: executing program 1 (id=2828):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101c40, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/bridge0/forwarding\x00', 0x88542, 0x0)
bpf$auto_BPF_MAP_FREEZE(0x16, &(0x7f0000000080)=@bpf_attr_4={0xfffffffffffffffa, 0xffffffffffffffff, 0x80000001}, 0xfc1)
socket$nl_generic(0x10, 0x3, 0x10)
msgsnd$auto(0xc92, &(0x7f00000001c0)={0x7, 0xef}, 0x6, 0x200)
setsockopt$auto_SO_MAX_PACING_RATE(r0, 0x1, 0x2f, &(0x7f0000000000)=':-\x00', 0x3)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/asound/card0/pcm0p/sub4/status\x00', 0x8040, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000100)=""/184, 0xb8)
write$auto(r0, 0x0, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/dummy0/tx_queue_len\x00', 0x8522, 0x0)
r3 = socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
getsockopt$auto(r3, 0x84, 0x80, 0x0, 0x0)
write$auto(r2, &(0x7f0000000000)='9\x00d\t\x00\x00\x00\x00\x00\x00\x00(\xc1\xf8\xff\xff\v\xb5^\xa1/[', 0x1)
socket(0x1d, 0x2, 0x6)
socket(0x2, 0x800, 0x1)
madvise$auto(0x2, 0xffffffffffff0005, 0x17)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff)
futex$auto(0x0, 0x86, 0x8, 0x0, 0x0, 0x7)
openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, 0x0, 0x40900, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_L2TP_CMD_NOOP(r4, 0x0, 0x840)

kernel console output (not intermixed with test programs):

T10412] FAULT_INJECTION: forcing a failure.
[  339.336467][T10412] name failslab, interval 1, probability 0, space 0, times 0
[  339.382021][T10412] CPU: 0 UID: 0 PID: 10412 Comm: syz.2.934 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  339.382067][T10412] Tainted: [L]=SOFTLOCKUP
[  339.382077][T10412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  339.382093][T10412] Call Trace:
[  339.382103][T10412]  <TASK>
[  339.382114][T10412]  dump_stack_lvl+0x100/0x190
[  339.382170][T10412]  should_fail_ex.cold+0x5/0xa
[  339.382207][T10412]  should_failslab+0xc2/0x120
[  339.382241][T10412]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  339.382286][T10412]  ? sk_prot_alloc+0x60/0x2a0
[  339.382330][T10412]  sk_prot_alloc+0x60/0x2a0
[  339.382368][T10412]  sk_alloc+0x36/0xe80
[  339.382395][T10412]  tipc_sk_create+0xf9/0x23c0
[  339.382441][T10412]  ? find_held_lock+0x2b/0x80
[  339.382481][T10412]  ? __sock_create+0x2f3/0x860
[  339.382516][T10412]  ? __sock_create+0x2f3/0x860
[  339.382558][T10412]  __sock_create+0x339/0x860
[  339.382602][T10412]  __sys_socketpair+0x261/0x5b0
[  339.382644][T10412]  ? __pfx___sys_socketpair+0x10/0x10
[  339.382684][T10412]  ? xfd_validate_state+0x129/0x190
[  339.382723][T10412]  __x64_sys_socketpair+0x96/0x100
[  339.382763][T10412]  ? lockdep_hardirqs_on+0x78/0x100
[  339.382802][T10412]  do_syscall_64+0x115/0x840
[  339.382846][T10412]  ? clear_bhb_loop+0x40/0x90
[  339.382881][T10412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.382910][T10412] RIP: 0033:0x7fa5d3f9ce59
[  339.382935][T10412] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  339.382961][T10412] RSP: 002b:00007fa5d4d97028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  339.382990][T10412] RAX: ffffffffffffffda RBX: 00007fa5d4216090 RCX: 00007fa5d3f9ce59
[  339.383007][T10412] RDX: 8000000000000000 RSI: 0000000000000005 RDI: 000000000000001e
[  339.383024][T10412] RBP: 00007fa5d4032d6f R08: 0000000000000000 R09: 0000000000000000
[  339.383040][T10412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  339.383056][T10412] R13: 00007fa5d4216128 R14: 00007fa5d4216090 R15: 00007ffdde050f48
[  339.383095][T10412]  </TASK>
[  340.556520][T10424] random: crng reseeded on system resumption
[  341.229459][T10434] kernel profiling enabled (shift: 3)
[  341.812193][T10447] batadv_slave_1: entered promiscuous mode
[  342.574480][T10456] Process accounting paused
[  343.258065][T10446] batadv_slave_1: left promiscuous mode
[  343.606573][ T8457] Bluetooth: hci3: ACL packet for unknown connection handle 0
[  346.952173][T10538] nfs4: Unknown parameter 'EC�H�];^��Y�ى��ZL�`�~^g��'
[  350.216038][T10579] syz_tun: tun_chr_ioctl cmd 2148553947
[  350.787945][T10596] FAULT_INJECTION: forcing a failure.
[  350.787945][T10596] name failslab, interval 1, probability 0, space 0, times 0
[  350.857413][T10596] CPU: 1 UID: 0 PID: 10596 Comm: syz.2.974 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  350.857462][T10596] Tainted: [L]=SOFTLOCKUP
[  350.857472][T10596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  350.857489][T10596] Call Trace:
[  350.857498][T10596]  <TASK>
[  350.857510][T10596]  dump_stack_lvl+0x100/0x190
[  350.857567][T10596]  should_fail_ex.cold+0x5/0xa
[  350.857607][T10596]  should_failslab+0xc2/0x120
[  350.857649][T10596]  __kvmalloc_node_noprof+0xfa/0xa00
[  350.857678][T10596]  ? seq_read_iter+0x819/0x1270
[  350.857709][T10596]  ? __pfx___might_resched+0x10/0x10
[  350.857752][T10596]  seq_read_iter+0x819/0x1270
[  350.857798][T10596]  ? __pfx_seq_read_iter+0x10/0x10
[  350.857833][T10596]  vfs_read+0x825/0xb30
[  350.857873][T10596]  ? __pfx_vfs_read+0x10/0x10
[  350.857936][T10596]  ksys_read+0x12a/0x250
[  350.857968][T10596]  ? __pfx_ksys_read+0x10/0x10
[  350.858006][T10596]  ? rcu_is_watching+0x12/0xc0
[  350.858048][T10596]  do_syscall_64+0x115/0x840
[  350.858090][T10596]  ? clear_bhb_loop+0x40/0x90
[  350.858127][T10596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.858167][T10596] RIP: 0033:0x7fa5d3f9ce59
[  350.858193][T10596] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  350.858221][T10596] RSP: 002b:00007fa5d4d97028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  350.858251][T10596] RAX: ffffffffffffffda RBX: 00007fa5d4216090 RCX: 00007fa5d3f9ce59
[  350.858270][T10596] RDX: 0000000000001036 RSI: 0000200000000040 RDI: 0000000000000006
[  350.858289][T10596] RBP: 00007fa5d4032d6f R08: 0000000000000000 R09: 0000000000000000
[  350.858307][T10596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  350.858325][T10596] R13: 00007fa5d4216128 R14: 00007fa5d4216090 R15: 00007ffdde050f48
[  350.858366][T10596]  </TASK>
[  351.642582][T10553] Process accounting resumed
[  351.831290][T10612] can: request_module (can-proto-4) failed.
[  355.506076][T10666] netlink: 'syz.1.991': attribute type 11 has an invalid length.
[  355.537127][T10666] netlink: 20 bytes leftover after parsing attributes in process `syz.1.991'.
[  355.786463][T10665] netlink: 'syz.1.991': attribute type 11 has an invalid length.
[  355.803968][T10665] netlink: 20 bytes leftover after parsing attributes in process `syz.1.991'.
[  356.437926][ T8457] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  357.946120][T10717] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1002'.
[  358.109927][T10719] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1002'.
[  358.267643][T10719] bridge0: port 2(bridge_slave_1) entered disabled state
[  358.277121][T10719] bridge0: port 1(bridge_slave_0) entered disabled state
[  358.481544][ T8457] Bluetooth: hci0: command 0x0c1a tx timeout
[  360.564216][ T8188] Bluetooth: hci0: command 0x0c1a tx timeout
[  360.741205][T10753] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1007'.
[  363.436094][ T8457] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  364.049529][T10809] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1017'.
[  366.046611][T10841] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1024'.
[  366.077681][T10841] bridge_slave_1: left allmulticast mode
[  366.095855][T10841] bridge_slave_1: left promiscuous mode
[  366.105871][T10841] bridge0: port 2(bridge_slave_1) entered disabled state
[  366.159342][T10841] bridge_slave_0: left allmulticast mode
[  366.181506][T10841] bridge_slave_0: left promiscuous mode
[  366.201399][T10841] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.234371][T10859] netlink: zone id is out of range
[  367.268245][T10859] netlink: zone id is out of range
[  367.290526][T10859] netlink: zone id is out of range
[  367.302358][T10859] netlink: zone id is out of range
[  367.321655][T10859] netlink: zone id is out of range
[  367.399986][T10859] netlink: zone id is out of range
[  367.407021][T10859] netlink: zone id is out of range
[  367.484110][T10859] netlink: zone id is out of range
[  367.515664][T10859] netlink: zone id is out of range
[  367.532405][T10859] netlink: zone id is out of range
[  370.985570][T10941] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1045'.
[  371.430073][T10951] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1047'.
[  372.393246][T10974] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1054'.
[  373.043889][T10968] Process accounting resumed
[  373.866767][ T8457] Bluetooth: hci3: unexpected event 0x14 length: 16 > 6
[  376.142899][T11030] kexec: Could not allocate control_code_buffer
[  376.885417][T11056] smpboot: CPU 1 is now offline
[  377.529464][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  377.536184][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  378.974142][T11087] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1079'.
[  379.068208][T11091] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1079'.
[  380.503614][ T8457] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  380.818516][T11124] futex_wake_op: syz.2.1085 tries to shift op by -2048; fix this program
[  381.206868][T10387] syz.0.926 (10387) used greatest stack depth: 19016 bytes left
[  381.816112][T11129] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1087'.
[  382.024566][T11105] Process accounting paused
[  382.443873][T11141] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1090'.
[  384.816170][   T30] audit: type=1326 audit(2147483708.800:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11210 comm="syz.0.1105" exe="/root/ci-qemu-gce-upstream-auto/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd69339ce59 code=0x0
[  385.108354][T11217] HfR: entered promiscuous mode
[  385.245919][T11197] block nbd2: not configured, cannot reconfigure
[  387.470096][T11252] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5633] was attempted by ""[11252]
[  387.803691][T11253] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1115'.
[  389.412565][ T8457] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  389.420694][ T8457] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:0'
[  389.431213][ T8457] CPU: 0 UID: 0 PID: 8457 Comm: kworker/u11:2 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  389.431244][ T8457] Tainted: [L]=SOFTLOCKUP
[  389.431250][ T8457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  389.431263][ T8457] Workqueue: hci0 hci_rx_work
[  389.431289][ T8457] Call Trace:
[  389.431296][ T8457]  <TASK>
[  389.431304][ T8457]  dump_stack_lvl+0x100/0x190
[  389.431337][ T8457]  sysfs_warn_dup.cold+0x1c/0x28
[  389.431363][ T8457]  sysfs_create_dir_ns+0x24b/0x2b0
[  389.431383][ T8457]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  389.431401][ T8457]  ? find_held_lock+0x2b/0x80
[  389.431423][ T8457]  ? kobject_add_internal+0x25f/0x930
[  389.431440][ T8457]  ? kobject_add_internal+0x25f/0x930
[  389.431459][ T8457]  ? do_raw_spin_unlock+0x145/0x1e0
[  389.431480][ T8457]  kobject_add_internal+0x2c8/0x930
[  389.431502][ T8457]  kobject_add+0x16a/0x1e0
[  389.431520][ T8457]  ? __pfx_kobject_add+0x10/0x10
[  389.431536][ T8457]  ? class_to_subsys+0x10f/0x150
[  389.431561][ T8457]  ? kobject_put+0xb9/0x640
[  389.431587][ T8457]  ? _raw_spin_unlock+0x28/0x50
[  389.431614][ T8457]  device_add+0x294/0x1950
[  389.431633][ T8457]  ? __pfx_dev_set_name+0x10/0x10
[  389.431662][ T8457]  ? __pfx_device_add+0x10/0x10
[  389.431681][ T8457]  ? mgmt_send_event_skb+0x2fb/0x460
[  389.431711][ T8457]  hci_conn_add_sysfs+0x1a3/0x260
[  389.431738][ T8457]  le_conn_complete_evt+0x11eb/0x1f60
[  389.431769][ T8457]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  389.431791][ T8457]  ? __pfx_bt_warn+0x10/0x10
[  389.431832][ T8457]  hci_le_conn_complete_evt+0x23c/0x3a0
[  389.431857][ T8457]  ? skb_pull_data+0x15f/0x1e0
[  389.431883][ T8457]  hci_le_meta_evt+0x34a/0x5f0
[  389.431909][ T8457]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  389.431936][ T8457]  hci_event_packet+0x51c/0xcd0
[  389.431960][ T8457]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  389.431985][ T8457]  ? __pfx_hci_event_packet+0x10/0x10
[  389.432012][ T8457]  ? kcov_remote_start+0x374/0x660
[  389.432037][ T8457]  ? lockdep_hardirqs_on+0x78/0x100
[  389.432068][ T8457]  hci_rx_work+0x451/0xfc0
[  389.432096][ T8457]  process_one_work+0xa0e/0x1980
[  389.432123][ T8457]  ? __pfx_process_one_work+0x10/0x10
[  389.432147][ T8457]  ? __pfx_hci_rx_work+0x10/0x10
[  389.432172][ T8457]  worker_thread+0x5ef/0xe50
[  389.432195][ T8457]  ? __pfx_worker_thread+0x10/0x10
[  389.432212][ T8457]  ? kthread+0x13a/0x450
[  389.432237][ T8457]  ? __pfx_worker_thread+0x10/0x10
[  389.432252][ T8457]  kthread+0x370/0x450
[  389.432277][ T8457]  ? __pfx_kthread+0x10/0x10
[  389.432306][ T8457]  ret_from_fork+0x72b/0xd50
[  389.432325][ T8457]  ? __pfx_ret_from_fork+0x10/0x10
[  389.432345][ T8457]  ? __switch_to+0x800/0x1100
[  389.432368][ T8457]  ? __switch_to_asm+0x39/0x70
[  389.432390][ T8457]  ? __pfx_kthread+0x10/0x10
[  389.432418][ T8457]  ret_from_fork_asm+0x1a/0x30
[  389.432453][ T8457]  </TASK>
[  389.432488][ T8457] kobject: kobject_add_internal failed for hci0:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  389.763092][ T8457] Bluetooth: hci0: failed to register connection device
[  391.170057][T11282] zswap: compressor  not available
[  391.835903][ T8188] Bluetooth: hci0: command 0x0c1a tx timeout
[  393.914933][ T8188] Bluetooth: hci0: command 0x0c1a tx timeout
[  394.319618][T11395] FAULT_INJECTION: forcing a failure.
[  394.319618][T11395] name failslab, interval 1, probability 0, space 0, times 0
[  394.354678][T11396] QAT: Device 0 not found
[  394.478400][T11395] CPU: 0 UID: 0 PID: 11395 Comm: syz.2.1150 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  394.478432][T11395] Tainted: [L]=SOFTLOCKUP
[  394.478439][T11395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  394.478450][T11395] Call Trace:
[  394.478456][T11395]  <TASK>
[  394.478463][T11395]  dump_stack_lvl+0x100/0x190
[  394.478497][T11395]  should_fail_ex.cold+0x5/0xa
[  394.478520][T11395]  should_failslab+0xc2/0x120
[  394.478542][T11395]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  394.478571][T11395]  ? hugetlbfs_alloc_inode+0x8c/0x1d0
[  394.478601][T11395]  hugetlbfs_alloc_inode+0x8c/0x1d0
[  394.478625][T11395]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[  394.478650][T11395]  alloc_inode+0x68/0x250
[  394.478677][T11395]  new_inode+0x22/0x1c0
[  394.478707][T11395]  hugetlbfs_get_inode+0x39a/0x700
[  394.478730][T11395]  ? do_futex+0x192/0x350
[  394.478751][T11395]  hugetlb_file_setup+0x15b/0x5b0
[  394.478786][T11395]  ksys_mmap_pgoff+0x242/0x610
[  394.478810][T11395]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  394.478830][T11395]  ? xfd_validate_state+0x129/0x190
[  394.478852][T11395]  __x64_sys_mmap+0x125/0x190
[  394.478872][T11395]  do_syscall_64+0x115/0x840
[  394.478897][T11395]  ? clear_bhb_loop+0x40/0x90
[  394.478918][T11395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.478936][T11395] RIP: 0033:0x7fa5d3f9ce59
[  394.478951][T11395] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  394.478967][T11395] RSP: 002b:00007fa5d4d76028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  394.478984][T11395] RAX: ffffffffffffffda RBX: 00007fa5d4216180 RCX: 00007fa5d3f9ce59
[  394.478996][T11395] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000
[  394.479006][T11395] RBP: 00007fa5d4032d6f R08: 0000000000000401 R09: 0000300000000000
[  394.479016][T11395] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  394.479027][T11395] R13: 00007fa5d4216218 R14: 00007fa5d4216180 R15: 00007ffdde050f48
[  394.479048][T11395]  </TASK>
[  395.697525][T11413] netlink: 'syz.3.1152': attribute type 5 has an invalid length.
[  395.741355][T11413] netlink: 'syz.3.1152': attribute type 1 has an invalid length.
[  395.781882][T11413] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1152'.
[  396.875652][T11429] net_ratelimit: 47 callbacks suppressed
[  396.875672][T11429] netlink: zone id is out of range
[  396.969249][T11429] netlink: zone id is out of range
[  397.041750][T11429] netlink: zone id is out of range
[  397.110909][T11429] netlink: zone id is out of range
[  397.199036][T11429] netlink: zone id is out of range
[  397.247731][T11429] netlink: zone id is out of range
[  397.306355][T11429] netlink: zone id is out of range
[  397.353156][T11429] netlink: zone id is out of range
[  397.394736][T11429] netlink: zone id is out of range
[  397.434423][T11429] netlink: zone id is out of range
[  400.160115][T11494] netlink: 202 bytes leftover after parsing attributes in process `syz.0.1167'.
[  403.622491][T11516] Process accounting paused
[  403.939079][T11561] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1181'.
[  406.449965][T11630] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1190'.
[  409.387463][T11694] net_ratelimit: 104 callbacks suppressed
[  409.387482][T11694] netlink: zone id is out of range
[  409.471839][T11694] netlink: zone id is out of range
[  409.537437][T11694] netlink: zone id is out of range
[  409.607566][T11694] netlink: zone id is out of range
[  409.660806][T11694] netlink: zone id is out of range
[  409.714787][T11694] netlink: zone id is out of range
[  409.773726][T11694] netlink: zone id is out of range
[  409.837945][T11694] netlink: zone id is out of range
[  409.887760][T11694] netlink: zone id is out of range
[  409.917736][T11694] netlink: zone id is out of range
[  410.370219][ T8188] Bluetooth: hci1: unexpected event for opcode 0x7c89
[  411.834360][T11739] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  411.834360][T11739] The task syz.1.1216 (11739) triggered the difference, watch for misbehavior.
[  412.426353][T11730] Process accounting resumed
[  413.809405][T11779] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE�r��҄y�*�"�l-���y–��L̓���]'
[  413.953221][T11779] CPU: 0 UID: 0 PID: 11779 Comm: syz.0.1225 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  413.953254][T11779] Tainted: [L]=SOFTLOCKUP
[  413.953260][T11779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  413.953270][T11779] Call Trace:
[  413.953276][T11779]  <TASK>
[  413.953283][T11779]  dump_stack_lvl+0x100/0x190
[  413.953324][T11779]  sysfs_warn_dup.cold+0x1c/0x28
[  413.953352][T11779]  sysfs_do_create_link_sd+0x113/0x140
[  413.953375][T11779]  sysfs_create_link+0x61/0xc0
[  413.953395][T11779]  device_add+0x675/0x1950
[  413.953419][T11779]  ? __pfx_device_add+0x10/0x10
[  413.953438][T11779]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  413.953466][T11779]  ? ieee80211_set_bitrate_flags+0x41b/0x6b0
[  413.953502][T11779]  wiphy_register+0x1edd/0x2d90
[  413.953524][T11779]  ? __rtnl_unlock+0xb9/0xf0
[  413.953553][T11779]  ? __pfx_wiphy_register+0x10/0x10
[  413.953576][T11779]  ? __asan_memset+0x23/0x50
[  413.953605][T11779]  ? minstrel_ht_alloc+0x5e6/0x7f0
[  413.953643][T11779]  ieee80211_register_hw+0x3055/0x4570
[  413.953684][T11779]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  413.953713][T11779]  ? __pfx___debug_object_init+0x10/0x10
[  413.953741][T11779]  ? find_held_lock+0x2b/0x80
[  413.953765][T11779]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  413.953792][T11779]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  413.953822][T11779]  ? __hrtimer_setup+0x208/0x330
[  413.953843][T11779]  mac80211_hwsim_new_radio+0x2a01/0x5aa0
[  413.953882][T11779]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  413.953920][T11779]  hwsim_new_radio_nl+0xc5f/0x1370
[  413.953943][T11779]  ? rcu_is_watching+0x12/0xc0
[  413.953965][T11779]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  413.953995][T11779]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0
[  413.954028][T11779]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0
[  413.954062][T11779]  genl_family_rcv_msg_doit+0x214/0x300
[  413.954093][T11779]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  413.954120][T11779]  ? genl_get_cmd+0x3e7/0x760
[  413.954152][T11779]  ? bpf_lsm_capable+0x9/0x10
[  413.954171][T11779]  ? security_capable+0x80/0x260
[  413.954190][T11779]  ? ns_capable+0xd2/0xf0
[  413.954213][T11779]  genl_rcv_msg+0x560/0x800
[  413.954243][T11779]  ? __pfx_genl_rcv_msg+0x10/0x10
[  413.954271][T11779]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  413.954303][T11779]  netlink_rcv_skb+0x159/0x420
[  413.954327][T11779]  ? __pfx_genl_rcv_msg+0x10/0x10
[  413.954356][T11779]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  413.954390][T11779]  ? netlink_deliver_tap+0x1ae/0xcc0
[  413.954417][T11779]  genl_rcv+0x28/0x40
[  413.954442][T11779]  netlink_unicast+0x585/0x850
[  413.954470][T11779]  ? __pfx_netlink_unicast+0x10/0x10
[  413.954501][T11779]  netlink_sendmsg+0x8b0/0xda0
[  413.954530][T11779]  ? __pfx_netlink_sendmsg+0x10/0x10
[  413.954553][T11779]  ? __import_iovec+0x1d2/0x640
[  413.954582][T11779]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  413.954605][T11779]  ____sys_sendmsg+0x9e1/0xb70
[  413.954628][T11779]  ? __pfx_netlink_sendmsg+0x10/0x10
[  413.954654][T11779]  ? __pfx_____sys_sendmsg+0x10/0x10
[  413.954683][T11779]  ? __pfx_futex_wake_mark+0x10/0x10
[  413.954710][T11779]  ___sys_sendmsg+0x190/0x1e0
[  413.954738][T11779]  ? __pfx____sys_sendmsg+0x10/0x10
[  413.954791][T11779]  __sys_sendmsg+0x170/0x220
[  413.954811][T11779]  ? __pfx___sys_sendmsg+0x10/0x10
[  413.954829][T11779]  ? __x64_sys_futex+0x34f/0x4d0
[  413.954857][T11779]  ? rcu_is_watching+0x12/0xc0
[  413.954881][T11779]  do_syscall_64+0x115/0x840
[  413.954914][T11779]  ? clear_bhb_loop+0x40/0x90
[  413.954936][T11779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  413.954955][T11779] RIP: 0033:0x7fd69339ce59
[  413.954970][T11779] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  413.954987][T11779] RSP: 002b:00007fd6941c4028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  413.955005][T11779] RAX: ffffffffffffffda RBX: 00007fd693616180 RCX: 00007fd69339ce59
[  413.955017][T11779] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003
[  413.955027][T11779] RBP: 00007fd693432d6f R08: 0000000000000000 R09: 0000000000000000
[  413.955037][T11779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  413.955048][T11779] R13: 00007fd693616218 R14: 00007fd693616180 R15: 00007ffef1db6908
[  413.955071][T11779]  </TASK>
[  414.478892][T11761] kexec: Could not allocate control_code_buffer
[  415.292519][T11807] bond0: invalid ARP target specified
[  415.325061][T11807] nbd: socks must be embedded in a SOCK_ITEM attr
[  415.333123][T11807] block nbd0: shutting down sockets
[  416.289238][ T8188] Bluetooth: hci3: ACL packet too small
[  418.665587][T11896] net_ratelimit: 104 callbacks suppressed
[  418.665604][T11896] netlink: zone id is out of range
[  418.728325][T11896] netlink: zone id is out of range
[  418.777692][T11896] netlink: zone id is out of range
[  418.803982][T11896] netlink: zone id is out of range
[  418.840009][T11896] netlink: zone id is out of range
[  418.871037][T11896] netlink: zone id is out of range
[  418.883088][T11896] netlink: zone id is out of range
[  418.925241][T11896] netlink: zone id is out of range
[  418.995405][T11896] netlink: zone id is out of range
[  419.056802][T11896] netlink: zone id is out of range
[  420.734791][T11943] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1259'.
[  421.742005][T11971] smc: net device dummy0 applied user defined pnetid DUMMY0
[  422.939754][T11996] tc_dump_action: action bad kind
[  423.026446][T11996] db_root: cannot open: /dev/audio1
[  423.033696][   T30] audit: type=1800 audit(2147483747.035:8): pid=11996 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1276" name="dbroot" dev="configfs" ino=39897 res=0 errno=0
[  423.084092][T11996] db_root: not a directory: /dev/audio1
[  424.524368][T11999] kexec: Could not allocate control_code_buffer
[  426.785974][T12107] net_ratelimit: 104 callbacks suppressed
[  426.785992][T12107] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  426.917806][T12113] Invalid ELF header magic: != ELF
[  430.162380][T12192] netlink: zone id is out of range
[  430.188943][T12192] netlink: zone id is out of range
[  430.218434][T12192] netlink: zone id is out of range
[  430.261597][T12192] netlink: zone id is out of range
[  430.308659][T12192] netlink: zone id is out of range
[  430.352160][T12192] netlink: zone id is out of range
[  430.403433][T12192] netlink: zone id is out of range
[  430.490899][T12192] netlink: zone id is out of range
[  430.535877][T12192] netlink: zone id is out of range
[  430.977569][T12202] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1312'.
[  431.787221][ T8188] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  434.630390][T12269] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1324'.
[  435.389053][T12238] Process accounting resumed
[  436.238959][T12305] net_ratelimit: 48 callbacks suppressed
[  436.238975][T12305] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  440.373206][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  440.381482][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  442.149961][T12444] syz_tun: tun_chr_ioctl cmd 1074025675
[  442.284101][T12444] syz_tun: persist enabled
[  442.867559][T12434] Process accounting paused
[  443.253001][T12452] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1361'.
[  443.426301][T12467] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1365'.
[  444.949589][ T8188] Bluetooth: hci2: Malformed Event: 0x02
[  445.612004][T12500] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1371'.
[  448.274830][T12550] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1381'.
[  450.744447][T12591] hugetlbfs: syz.3.1387 (12591): Using mlock ulimits for SHM_HUGETLB is obsolete
[  451.630076][ T8188] Bluetooth: hci1: ACL packet for unknown connection handle 0
[  455.829527][T12669] No such timeout policy "
"
[  455.836697][T12673] openvswitch: netlink: Multiple metadata blocks provided
[  455.923546][T12669] netlink: Failed to associated timeout policy '
'
[  460.551843][T12756] kAFS: unparsable volume name
[  460.781778][T12760] netlink: zone id is out of range
[  460.832731][T12760] netlink: zone id is out of range
[  460.888691][T12760] netlink: zone id is out of range
[  460.958338][T12760] netlink: zone id is out of range
[  461.016616][T12760] netlink: zone id is out of range
[  461.071291][T12760] netlink: zone id is out of range
[  461.133373][T12760] netlink: zone id is out of range
[  461.199300][T12760] netlink: zone id is out of range
[  461.285826][T12760] netlink: zone id is out of range
[  461.336025][T12760] netlink: zone id is out of range
[  461.379051][T12760] netlink: zone id is out of range
[  461.445980][T12760] netlink: zone id is out of range
[  464.214142][T12826] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1431'.
[  466.958527][ T8188] Bluetooth: hci1: unexpected event for opcode 0x7c89
[  466.976277][ T8188] Bluetooth: hci1: unexpected event for opcode 0x7c89
[  468.034809][T12851] Process accounting paused
[  469.354364][T12926] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1452'.
[  469.390749][T12926] bridge0: port 2(bridge_slave_1) entered disabled state
[  469.398564][T12926] bridge0: port 1(bridge_slave_0) entered disabled state
[  469.458063][T12926] bridge0: entered promiscuous mode
[  470.029035][T12941] net_ratelimit: 45 callbacks suppressed
[  470.029054][T12941] netlink: zone id is out of range
[  470.101912][T12941] netlink: zone id is out of range
[  470.155640][T12941] netlink: zone id is out of range
[  470.208360][T12941] netlink: zone id is out of range
[  470.257619][T12941] netlink: zone id is out of range
[  470.306558][T12941] netlink: zone id is out of range
[  470.363337][T12941] netlink: zone id is out of range
[  470.403728][T12941] netlink: zone id is out of range
[  470.429002][T12941] netlink: zone id is out of range
[  470.452074][T12941] netlink: zone id is out of range
[  471.059690][   T30] audit: type=1804 audit(2147483795.079:9): pid=12961 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1457" name="/newroot/334/file0" dev="tmpfs" ino=1792 res=1 errno=0
[  471.786431][T12992] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1462'.
[  471.997132][T12992] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  472.073145][T12992] bond_slave_0: left promiscuous mode
[  472.128487][T12992] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  472.170033][T12992] bond_slave_1: left promiscuous mode
[  472.191293][T12992] bond0 (unregistering): Released all slaves
[  474.442580][T13026] Process accounting resumed
[  474.547342][T13040] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1471'.
[  474.656213][T13040] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1471'.
[  475.037058][ T8188] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  475.873311][T13065] net_ratelimit: 104 callbacks suppressed
[  475.873331][T13065] netlink: zone id is out of range
[  475.943819][T13065] netlink: zone id is out of range
[  476.011126][T13065] netlink: zone id is out of range
[  476.061188][T13065] netlink: zone id is out of range
[  476.110847][T13065] netlink: zone id is out of range
[  476.162615][T13065] netlink: zone id is out of range
[  476.214431][T13065] netlink: zone id is out of range
[  476.250436][T13065] netlink: zone id is out of range
[  476.281604][T13065] netlink: zone id is out of range
[  476.310240][T13065] netlink: zone id is out of range
[  476.490098][T13072] FAULT_INJECTION: forcing a failure.
[  476.490098][T13072] name fail_futex, interval 1, probability 0, space 0, times 0
[  476.503583][T13072] CPU: 0 UID: 0 PID: 13072 Comm: syz.2.1478 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  476.503613][T13072] Tainted: [L]=SOFTLOCKUP
[  476.503620][T13072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  476.503629][T13072] Call Trace:
[  476.503635][T13072]  <TASK>
[  476.503642][T13072]  dump_stack_lvl+0x100/0x190
[  476.503678][T13072]  should_fail_ex.cold+0x5/0xa
[  476.503701][T13072]  should_fail_futex+0x4c/0x60
[  476.503731][T13072]  futex_lock_pi_atomic+0xe7/0xaf0
[  476.503753][T13072]  ? futex_hash+0x141/0x370
[  476.503783][T13072]  futex_lock_pi+0x245/0x7a0
[  476.503809][T13072]  ? __pfx_futex_lock_pi+0x10/0x10
[  476.503850][T13072]  ? __pfx_futex_wake_mark+0x10/0x10
[  476.503877][T13072]  ? ksys_write+0x190/0x250
[  476.503897][T13072]  ? ksys_write+0x190/0x250
[  476.503921][T13072]  do_futex+0x18a/0x350
[  476.503939][T13072]  ? __pfx_do_futex+0x10/0x10
[  476.503963][T13072]  __x64_sys_futex+0x34f/0x4d0
[  476.503984][T13072]  ? __pfx___x64_sys_futex+0x10/0x10
[  476.504003][T13072]  ? ksys_write+0x1ac/0x250
[  476.504026][T13072]  ? rcu_is_watching+0x12/0xc0
[  476.504057][T13072]  do_syscall_64+0x115/0x840
[  476.504082][T13072]  ? clear_bhb_loop+0x40/0x90
[  476.504103][T13072]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.504122][T13072] RIP: 0033:0x7fa5d3f9ce59
[  476.504138][T13072] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  476.504155][T13072] RSP: 002b:00007fa5d4db8028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  476.504173][T13072] RAX: ffffffffffffffda RBX: 00007fa5d4215fa0 RCX: 00007fa5d3f9ce59
[  476.504184][T13072] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[  476.504194][T13072] RBP: 00007fa5d4032d6f R08: 0000000000000000 R09: 000000008000fff5
[  476.504205][T13072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  476.504216][T13072] R13: 00007fa5d4216038 R14: 00007fa5d4215fa0 R15: 00007ffdde050f48
[  476.504292][T13072]  </TASK>
[  477.127973][ T8457] Bluetooth: hci2: command 0x0c1a tx timeout
[  477.301248][T13071] Process accounting resumed
[  477.443973][T13074] can: request_module (can-proto-0) failed.
[  477.558967][T13090] netlink: 'syz.2.1482': attribute type 5 has an invalid length.
[  477.567686][T13090] netlink: 4158 bytes leftover after parsing attributes in process `syz.2.1482'.
[  479.152186][ T8188] Bluetooth: hci2: command 0x0c1a tx timeout
[  479.915862][T13138] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1492'.
[  483.263194][T13200] FAULT_INJECTION: forcing a failure.
[  483.263194][T13200] name failslab, interval 1, probability 0, space 0, times 0
[  483.484403][T13200] CPU: 0 UID: 0 PID: 13200 Comm: syz.2.1504 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  483.484434][T13200] Tainted: [L]=SOFTLOCKUP
[  483.484441][T13200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  483.484451][T13200] Call Trace:
[  483.484457][T13200]  <TASK>
[  483.484465][T13200]  dump_stack_lvl+0x100/0x190
[  483.484499][T13200]  should_fail_ex.cold+0x5/0xa
[  483.484522][T13200]  should_failslab+0xc2/0x120
[  483.484546][T13200]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  483.484575][T13200]  ? __d_alloc+0x34/0xa40
[  483.484608][T13200]  __d_alloc+0x34/0xa40
[  483.484635][T13200]  d_alloc+0x4a/0x1e0
[  483.484661][T13200]  lookup_one_qstr_excl+0x171/0x250
[  483.484691][T13200]  start_dirop+0x59/0xb0
[  483.484712][T13200]  simple_start_creating+0xf9/0x110
[  483.484734][T13200]  ? __pfx_simple_start_creating+0x10/0x10
[  483.484757][T13200]  ? mntput+0x70/0xa0
[  483.484776][T13200]  ? simple_pin_fs+0xa3/0x190
[  483.484795][T13200]  debugfs_start_creating.part.0+0x82/0x170
[  483.484816][T13200]  __debugfs_create_file+0xb3/0x4f0
[  483.484838][T13200]  debugfs_create_file_full+0x41/0x60
[  483.484859][T13200]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  483.484878][T13200]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  483.484915][T13200]  ? lockdep_init_map_type+0x5c/0x250
[  483.484948][T13200]  preinit_net.part.0+0x43b/0x920
[  483.484971][T13200]  copy_net_ns+0x339/0x7c0
[  483.484994][T13200]  create_new_namespaces+0x3ea/0xac0
[  483.485022][T13200]  unshare_nsproxy_namespaces+0xf2/0x220
[  483.485047][T13200]  ksys_unshare+0x438/0xab0
[  483.485074][T13200]  ? __pfx_ksys_unshare+0x10/0x10
[  483.485099][T13200]  ? xfd_validate_state+0x129/0x190
[  483.485117][T13200]  ? ksys_write+0x1ac/0x250
[  483.485144][T13200]  __x64_sys_unshare+0x31/0x40
[  483.485177][T13200]  do_syscall_64+0x115/0x840
[  483.485203][T13200]  ? clear_bhb_loop+0x40/0x90
[  483.485225][T13200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.485244][T13200] RIP: 0033:0x7fa5d3f9ce59
[  483.485261][T13200] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  483.485278][T13200] RSP: 002b:00007fa5d4d97028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  483.485296][T13200] RAX: ffffffffffffffda RBX: 00007fa5d4216090 RCX: 00007fa5d3f9ce59
[  483.485308][T13200] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  483.485318][T13200] RBP: 00007fa5d4032d6f R08: 0000000000000000 R09: 0000000000000000
[  483.485329][T13200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  483.485340][T13200] R13: 00007fa5d4216128 R14: 00007fa5d4216090 R15: 00007ffdde050f48
[  483.485363][T13200]  </TASK>
[  484.616332][T13224] net_ratelimit: 47 callbacks suppressed
[  484.616351][T13224] openvswitch: netlink: Message has 4 unknown bytes.
[  487.894553][   T30] audit: type=1804 audit(2147483811.918:10): pid=13280 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1519" name="/newroot/sys/kernel/tracing/dynamic_events" dev="tracefs" ino=1070 res=1 errno=0
[  488.111653][T13288] netlink: zone id is out of range
[  488.139165][T13288] netlink: zone id is out of range
[  488.166978][T13288] netlink: zone id is out of range
[  488.240386][T13288] netlink: zone id is out of range
[  488.300055][T13288] netlink: zone id is out of range
[  488.344275][T13288] netlink: zone id is out of range
[  488.392441][T13288] netlink: zone id is out of range
[  488.427243][T13288] netlink: zone id is out of range
[  488.480330][T13288] netlink: zone id is out of range
[  499.035567][T13465] kexec: Could not allocate control_code_buffer
[  499.357830][T13497] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1561'.
[  499.458197][T13500] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1561'.
[  501.782149][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  501.793564][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  502.490406][T13570] net_ratelimit: 48 callbacks suppressed
[  502.490425][T13570] netlink: zone id is out of range
[  502.552691][T13570] netlink: zone id is out of range
[  502.600248][T13570] netlink: zone id is out of range
[  502.651156][T13570] netlink: zone id is out of range
[  502.690196][T13570] netlink: zone id is out of range
[  502.737553][T13570] netlink: zone id is out of range
[  502.781817][T13570] netlink: zone id is out of range
[  502.836679][T13570] netlink: zone id is out of range
[  502.883352][T13570] netlink: zone id is out of range
[  502.905942][T13570] netlink: zone id is out of range
[  502.966860][T13566] bridge0: port 3(bond0) entered blocking state
[  503.041953][T13566] bridge0: port 3(bond0) entered disabled state
[  503.092463][T13566] bond0: entered allmulticast mode
[  503.122212][T13566] bond_slave_0: entered allmulticast mode
[  503.158937][T13566] bond_slave_1: entered allmulticast mode
[  503.187598][T13566] bond0: entered promiscuous mode
[  503.203806][T13566] bond_slave_0: entered promiscuous mode
[  503.221010][T13566] bond_slave_1: entered promiscuous mode
[  503.808602][T13598] zswap: compressor  not available
[  504.865325][T13606] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1580'.
[  505.334288][T13574] Process accounting paused
[  506.716081][ T8457] Bluetooth: hci1: unexpected event 0x01 length: 124 > 1
[  506.727431][T13634] futex_wake_op: syz.0.1588 tries to shift op by -2048; fix this program
[  506.806419][T13634] futex_wake_op: syz.0.1588 tries to shift op by -2048; fix this program
[  507.594874][T13649] Process accounting paused
[  507.881740][   T30] audit: type=1804 audit(1843104538.929:11): pid=13664 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1596" name="file0" dev="tmpfs" ino=2268 res=1 errno=0
[  508.819902][T13677] net_ratelimit: 104 callbacks suppressed
[  508.819921][T13677] netlink: zone id is out of range
[  508.905905][T13677] netlink: zone id is out of range
[  508.931297][T13677] netlink: zone id is out of range
[  508.950909][T13677] netlink: zone id is out of range
[  508.983138][T13677] netlink: zone id is out of range
[  509.001569][T13677] netlink: zone id is out of range
[  509.020380][T13677] netlink: zone id is out of range
[  509.039278][T13677] netlink: zone id is out of range
[  509.062326][T13677] netlink: zone id is out of range
[  509.078615][T13677] netlink: zone id is out of range
[  509.683401][T13706] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1605'.
[  509.853192][T13706] bridge0: port 3(dummy0) entered disabled state
[  509.915875][T13706] dummy0 (unregistering): left allmulticast mode
[  509.956953][T13706] dummy0 (unregistering): left promiscuous mode
[  509.992177][T13706] bridge0: port 3(dummy0) entered disabled state
[  510.882375][T13719] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1607'.
[  511.412868][T13732] FAULT_INJECTION: forcing a failure.
[  511.412868][T13732] name failslab, interval 1, probability 0, space 0, times 0
[  511.504656][T13732] CPU: 0 UID: 0 PID: 13732 Comm: syz.2.1609 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  511.504690][T13732] Tainted: [L]=SOFTLOCKUP
[  511.504697][T13732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  511.504707][T13732] Call Trace:
[  511.504713][T13732]  <TASK>
[  511.504721][T13732]  dump_stack_lvl+0x100/0x190
[  511.504757][T13732]  should_fail_ex.cold+0x5/0xa
[  511.504781][T13732]  should_failslab+0xc2/0x120
[  511.504804][T13732]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  511.504832][T13732]  ? copy_process+0x2ad6/0x7ed0
[  511.504857][T13732]  ? _raw_spin_unlock+0x28/0x50
[  511.504883][T13732]  copy_process+0x2ad6/0x7ed0
[  511.504906][T13732]  ? __futex_wait+0x256/0x300
[  511.504939][T13732]  ? __pfx_copy_process+0x10/0x10
[  511.504969][T13732]  ? find_held_lock+0x2b/0x80
[  511.505001][T13732]  kernel_clone+0x176/0x9e0
[  511.505023][T13732]  ? __pfx_futex_wait+0x10/0x10
[  511.505048][T13732]  ? __pfx_kernel_clone+0x10/0x10
[  511.505083][T13732]  __do_sys_clone+0xd9/0x120
[  511.505108][T13732]  ? __pfx___do_sys_clone+0x10/0x10
[  511.505146][T13732]  ? rcu_is_watching+0x12/0xc0
[  511.505169][T13732]  do_syscall_64+0x115/0x840
[  511.505194][T13732]  ? clear_bhb_loop+0x40/0x90
[  511.505216][T13732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  511.505235][T13732] RIP: 0033:0x7fa5d3f9ce59
[  511.505251][T13732] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  511.505268][T13732] RSP: 002b:00007fa5d4d76028 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  511.505286][T13732] RAX: ffffffffffffffda RBX: 00007fa5d4216180 RCX: 00007fa5d3f9ce59
[  511.505298][T13732] RDX: 0000200000000380 RSI: fffffffffffffc4d RDI: 0000000000000002
[  511.505309][T13732] RBP: 00007fa5d4032d6f R08: 0000000000000000 R09: 0000000000000000
[  511.505319][T13732] R10: 00002000000003c0 R11: 0000000000000246 R12: 0000000000000000
[  511.505329][T13732] R13: 00007fa5d4216218 R14: 00007fa5d4216180 R15: 00007ffdde050f48
[  511.505351][T13732]  </TASK>
[  512.062880][ T8457] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  512.071790][ T8457] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff
[  518.230110][   T30] audit: type=1800 audit(1843104549.275:12): pid=13842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1631" name="lu_gp_id" dev="configfs" ino=49071 res=0 errno=0
[  520.452733][ T8188] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  520.460316][ T8188] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff
[  522.096856][ T5784] Process accounting resumed
[  522.804539][T13917] Process accounting resumed
[  522.867784][T13892] Process accounting resumed
[  523.741252][   T30] audit: type=1807 audit(1843104554.787:13): UNKNOWN=nl80211 res=0
[  523.760306][T13961] ima: policy update failed
[  523.775485][   T30] audit: type=1802 audit(1843104554.807:14): pid=13961 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.1653" res=0 errno=0
[  523.879573][   T30] audit: type=1802 audit(1843104554.847:15): pid=13961 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1653" res=0 errno=0
[  524.527938][T13971] ima: policy update failed
[  524.557635][   T30] audit: type=1802 audit(1843104555.608:16): pid=13971 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1655" res=0 errno=0
[  525.075747][ T8188] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  525.075778][ T8188] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  525.091987][ T8188] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  525.092042][ T8188] Bluetooth: hci2: adv larger than maximum supported
[  525.099495][ T8188] Bluetooth: hci2: adv larger than maximum supported
[  525.107675][ T8188] Bluetooth: hci2: Malformed LE Event: 0x0d
[  526.830892][T14015] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1664'.
[  530.313851][ T8188] Bluetooth: hci2: unexpected event 0x3e length: 723 > 260
[  530.313880][ T8188] Bluetooth: hci2: unexpected subevent 0x0d length: 722 > 260
[  530.329403][ T8188] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  530.329424][ T8188] Bluetooth: hci2: adv larger than maximum supported
[  530.336849][ T8188] Bluetooth: hci2: adv larger than maximum supported
[  530.347388][ T8188] Bluetooth: hci2: Unknown advertising packet type: 0x11
[  530.354192][ T8188] Bluetooth: hci2: Malformed LE Event: 0x0d
[  531.260496][ T8188] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  531.260525][ T8188] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15
[  531.275815][ T8188] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  531.351881][ T8188] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5
[  534.407004][T14132] ubi0: attaching mtd0
[  534.599773][T14132] ubi0 error: ubi_add_to_av: two LEBs with same sequence number 1
[  534.634926][T14132] eraseblock attaching information dump:
[  534.667391][T14132] 	ec       1
[  534.682776][T14132] 	pnum     0
[  534.700443][T14132] 	lnum     0
[  534.716464][T14132] 	scrub    0
[  534.734172][T14132] 	sqnum    1
[  534.750128][T14132] Volume identifier header dump:
[  534.771136][T14132] 	magic     55424921
[  534.797594][T14132] 	version   1
[  534.821701][T14132] 	vol_type  1
[  534.842734][T14132] 	copy_flag 0
[  534.866202][T14132] 	compat    5
[  534.888895][T14132] 	vol_id    2147479551
[  534.913753][T14132] 	lnum      0
[  534.933714][T14132] 	data_size 0
[  534.954711][T14132] 	used_ebs  0
[  534.977932][T14132] 	data_pad  0
[  534.998053][T14132] 	sqnum     1
[  535.021645][T14132] 	hdr_crc   65b3bd2d
[  535.075290][T14132] Volume identifier header hexdump:
[  535.255858][T14132] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  536.252533][T14187] syz_tun: tun_chr_ioctl cmd 1074812117
[  537.442812][ T8188] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  538.814483][T14223] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1702'.
[  541.229832][ T8188] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5
[  542.006677][T14346] syz_tun: tun_chr_ioctl cmd 1074025678
[  542.062771][T14346] syz_tun: group set to 23693
[  542.304501][T14351] syz_tun: tun_chr_ioctl cmd 2147767521
[  543.956138][T14385] futex_wake_op: syz.1.1727 tries to shift op by -2048; fix this program
[  544.769927][T14409] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1731'.
[  548.854550][T14498] netlink: 286 bytes leftover after parsing attributes in process `syz.0.1748'.
[  549.417623][T14512] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1752'.
[  549.664549][T14516] netlink: 74 bytes leftover after parsing attributes in process `syz.1.1753'.
[  549.941922][T14499] Process accounting resumed
[  550.705333][T14504] Process accounting resumed
[  556.678331][T14673] FAULT_INJECTION: forcing a failure.
[  556.678331][T14673] name failslab, interval 1, probability 0, space 0, times 0
[  556.735653][T14673] CPU: 0 UID: 0 PID: 14673 Comm: syz.2.1783 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  556.735686][T14673] Tainted: [L]=SOFTLOCKUP
[  556.735692][T14673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  556.735703][T14673] Call Trace:
[  556.735710][T14673]  <TASK>
[  556.735717][T14673]  dump_stack_lvl+0x100/0x190
[  556.735752][T14673]  should_fail_ex.cold+0x5/0xa
[  556.735777][T14673]  should_failslab+0xc2/0x120
[  556.735800][T14673]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  556.735828][T14673]  ? vm_area_dup+0x27/0x8e0
[  556.735852][T14673]  ? __vma_start_write+0x17f/0x280
[  556.735881][T14673]  vm_area_dup+0x27/0x8e0
[  556.735907][T14673]  dup_mmap+0x6f6/0x21b0
[  556.735949][T14673]  ? __pfx_dup_mmap+0x10/0x10
[  556.735972][T14673]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  556.736002][T14673]  ? __lock_acquire+0x4a5/0x2630
[  556.736031][T14673]  ? find_held_lock+0x2b/0x80
[  556.736052][T14673]  ? __percpu_counter_init_many+0x2bc/0x3b0
[  556.736097][T14673]  copy_process+0x6c78/0x7ed0
[  556.736120][T14673]  ? __futex_wait+0x256/0x300
[  556.736154][T14673]  ? __pfx_copy_process+0x10/0x10
[  556.736184][T14673]  ? find_held_lock+0x2b/0x80
[  556.736215][T14673]  kernel_clone+0x176/0x9e0
[  556.736238][T14673]  ? __pfx_futex_wait+0x10/0x10
[  556.736262][T14673]  ? __pfx_kernel_clone+0x10/0x10
[  556.736299][T14673]  __do_sys_clone+0xd9/0x120
[  556.736323][T14673]  ? __pfx___do_sys_clone+0x10/0x10
[  556.736348][T14673]  ? fd_install+0x24f/0x580
[  556.736381][T14673]  ? rcu_is_watching+0x12/0xc0
[  556.736405][T14673]  do_syscall_64+0x115/0x840
[  556.736429][T14673]  ? clear_bhb_loop+0x40/0x90
[  556.736452][T14673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.736470][T14673] RIP: 0033:0x7fa5d3f9ce59
[  556.736486][T14673] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  556.736517][T14673] RSP: 002b:00007fa5d4d75fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  556.736536][T14673] RAX: ffffffffffffffda RBX: 00007fa5d4216180 RCX: 00007fa5d3f9ce59
[  556.736549][T14673] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  556.736560][T14673] RBP: 00007fa5d4032d6f R08: 0000000000000000 R09: 0000000000000000
[  556.736571][T14673] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  556.736582][T14673] R13: 00007fa5d4216218 R14: 00007fa5d4216180 R15: 00007ffdde050f48
[  556.736606][T14673]  </TASK>
[  557.249160][ T8188] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5
[  557.733614][T14691] net_ratelimit: 104 callbacks suppressed
[  557.733633][T14691] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  557.885043][   T30] audit: type=1804 audit(1843104588.894:17): pid=14692 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1786" name="/newroot/sys/kernel/tracing/set_event_notrace_pid" dev="tracefs" ino=11 res=1 errno=0
[  558.153601][T14704] netlink: zone id is out of range
[  558.208364][T14704] netlink: zone id is out of range
[  558.231559][ T8457] Bluetooth: hci1: unexpected event 0x30 length: 10 > 3
[  558.266112][T14704] netlink: zone id is out of range
[  558.414224][T14704] netlink: zone id is out of range
[  558.449118][T14704] netlink: zone id is out of range
[  558.503264][T14704] netlink: zone id is out of range
[  558.563001][T14704] netlink: zone id is out of range
[  558.595557][T14704] netlink: zone id is out of range
[  558.607589][T14704] netlink: zone id is out of range
[  559.284057][T14717] bridge0: port 4(team0) entered blocking state
[  559.312529][T14717] bridge0: port 4(team0) entered disabled state
[  559.338620][T14717] team0: entered allmulticast mode
[  559.371519][T14717] team_slave_0: entered allmulticast mode
[  559.399979][T14717] team_slave_1: entered allmulticast mode
[  559.435220][T14717] team0: entered promiscuous mode
[  559.454212][T14717] team_slave_0: entered promiscuous mode
[  559.481283][T14717] team_slave_1: entered promiscuous mode
[  562.174851][ T8457] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5
[  562.422632][T14804] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1810'.
[  563.194657][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  563.204119][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  563.464900][T14826] net_ratelimit: 105 callbacks suppressed
[  563.464920][T14826] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  563.479392][T14826] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  563.536191][T14817] syz_tun: tun_chr_ioctl cmd 1074025681
[  565.225701][ T8457] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5
[  565.229361][T14864] can: request_module (can-proto-0) failed.
[  566.237526][T14895] TCP: TCP_TX_DELAY enabled
[  571.500873][T15015] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1847'.
[  572.376964][T15015] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  572.443068][T15015] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  572.489135][T15015] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  572.511248][T15015] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  572.554404][T15015] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  572.579053][T15015] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  573.353311][T15054] syz_tun: tun_chr_ioctl cmd 1074025681
[  573.385761][T15052] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1856'.
[  574.065839][ T8457] Bluetooth: hci3: command 0x0c1a tx timeout
[  574.185896][T15074] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5
[  574.465125][T15074] Bluetooth: hci1: command 0x0c1a tx timeout
[  574.544863][T15074] Bluetooth: hci0: command 0x0c1a tx timeout
[  574.581597][T15086] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8)
[  574.624530][T15074] Bluetooth: hci2: command 0x0c1a tx timeout
[  575.277183][T15093] [U] 
[  575.280131][T15093] [U] 
[  575.283012][T15093] [U] 
[  575.285793][T15093] [U] 
[  575.522056][T15093] [U] 
[  575.524788][T15093] [U] 
[  575.527646][T15093] [U] 
[  575.530600][T15093] [U] 
[  575.649519][T15093] [U] 
[  576.625044][T15074] Bluetooth: hci0: command 0x0c1a tx timeout
[  577.232454][   T30] audit: type=1800 audit(1843104608.304:18): pid=15132 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1874" name="trace_marker" dev="tracefs" ino=899 res=0 errno=0
[  578.702101][T15074] Bluetooth: hci0: command 0x0c1a tx timeout
[  578.743669][T15162] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1882'.
[  578.769284][T15164] Format for adding new device is "id port_count num_queues" (uint uint uint).
[  578.954923][T15167] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1883'.
[  580.336995][T15186] Process accounting paused
[  581.056419][T15211] Process accounting paused
[  581.374271][T15225] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1903'.
[  581.855831][T15232] random: crng reseeded on system resumption
[  583.787910][T15074] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  584.937157][T15074] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  585.827917][ T8188] Bluetooth: hci0: command 0x0c1a tx timeout
[  586.159285][T15311] Console: switching to colour frame buffer device 128x48
[  586.766943][T15279] Bluetooth: hci0: unexpected event for opcode 0x7c89
[  586.870427][T15279] Bluetooth: hci3: unexpected event 0x08 length: 6 > 4
[  587.017997][T15279] Bluetooth: hci1: command 0x0c1a tx timeout
[  587.043870][T15340] FAULT_INJECTION: forcing a failure.
[  587.043870][T15340] name failslab, interval 1, probability 0, space 0, times 0
[  587.088343][T15340] CPU: 0 UID: 0 PID: 15340 Comm: syz.2.1916 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  587.088375][T15340] Tainted: [L]=SOFTLOCKUP
[  587.088382][T15340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  587.088393][T15340] Call Trace:
[  587.088400][T15340]  <TASK>
[  587.088407][T15340]  dump_stack_lvl+0x100/0x190
[  587.088442][T15340]  should_fail_ex.cold+0x5/0xa
[  587.088465][T15340]  should_failslab+0xc2/0x120
[  587.088573][T15340]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  587.088593][T15340]  ? register_pidns_sysctls+0x48/0x1c0
[  587.088622][T15340]  ? rcu_is_watching+0x12/0xc0
[  587.088647][T15340]  kmemdup_noprof+0x29/0x60
[  587.088667][T15340]  register_pidns_sysctls+0x48/0x1c0
[  587.088698][T15340]  ? __ns_common_init+0x299/0x4b0
[  587.088724][T15340]  copy_pid_ns+0x680/0x10a0
[  587.088755][T15340]  ? __pfx_copy_pid_ns+0x10/0x10
[  587.088784][T15340]  ? __pfx_copy_mnt_ns+0x10/0x10
[  587.088812][T15340]  ? create_new_namespaces+0x30/0xac0
[  587.088838][T15340]  create_new_namespaces+0x2aa/0xac0
[  587.088865][T15340]  unshare_nsproxy_namespaces+0xf2/0x220
[  587.088889][T15340]  ksys_unshare+0x438/0xab0
[  587.088916][T15340]  ? __pfx_ksys_unshare+0x10/0x10
[  587.088944][T15340]  ? xfd_validate_state+0x129/0x190
[  587.088961][T15340]  ? ksys_write+0x1ac/0x250
[  587.088988][T15340]  __x64_sys_unshare+0x31/0x40
[  587.089013][T15340]  do_syscall_64+0x115/0x840
[  587.089039][T15340]  ? clear_bhb_loop+0x40/0x90
[  587.089062][T15340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.089081][T15340] RIP: 0033:0x7fa5d3f9ce59
[  587.089097][T15340] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  587.089114][T15340] RSP: 002b:00007fa5d4db8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  587.089133][T15340] RAX: ffffffffffffffda RBX: 00007fa5d4215fa0 RCX: 00007fa5d3f9ce59
[  587.089144][T15340] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080
[  587.089155][T15340] RBP: 00007fa5d4032d6f R08: 0000000000000000 R09: 0000000000000000
[  587.089165][T15340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  587.089175][T15340] R13: 00007fa5d4216038 R14: 00007fa5d4215fa0 R15: 00007ffdde050f48
[  587.089197][T15340]  </TASK>
[  589.096939][ T8188] Bluetooth: hci1: command 0x0c1a tx timeout
[  592.105106][T15455] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1937'.
[  592.967409][T15074] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5
[  594.641133][T15509] NFSD: Failed to start, no listeners configured.
[  594.764881][T15397] kexec: Could not allocate control_code_buffer
[  595.240558][T15522] netlink: 504 bytes leftover after parsing attributes in process `syz.3.1949'.
[  595.293314][T15522] random: crng reseeded on system resumption
[  596.636342][T15557] kafs: addr_prefs: Invalid Command
[  596.785204][T15561] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1956'.
[  596.832450][T15560] usb usb21: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  597.098498][T15551] syz_tun: tun_chr_ioctl cmd 1074812117
[  597.166321][T15566] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1957'.
[  598.047684][T15588] random: crng reseeded on system resumption
[  598.679584][T15594] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1963'.
[  598.754151][T15594] vlan1: entered allmulticast mode
[  598.795596][T15594] veth0_vlan: entered allmulticast mode
[  598.946659][T15600] netlink: zone id is out of range
[  598.979190][T15600] netlink: zone id is out of range
[  599.047983][T15600] netlink: zone id is out of range
[  599.078691][T15600] netlink: zone id is out of range
[  599.128346][T15600] netlink: zone id is out of range
[  599.180057][T15600] netlink: zone id is out of range
[  599.219087][T15600] netlink: zone id is out of range
[  599.259100][T15600] netlink: zone id is out of range
[  599.298648][T15600] netlink: zone id is out of range
[  599.333741][T15600] netlink: zone id is out of range
[  600.409329][T15632] FAULT_INJECTION: forcing a failure.
[  600.409329][T15632] name failslab, interval 1, probability 0, space 0, times 0
[  600.496501][T15632] CPU: 0 UID: 0 PID: 15632 Comm: syz.2.1968 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  600.496534][T15632] Tainted: [L]=SOFTLOCKUP
[  600.496549][T15632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  600.496560][T15632] Call Trace:
[  600.496566][T15632]  <TASK>
[  600.496573][T15632]  dump_stack_lvl+0x100/0x190
[  600.496610][T15632]  should_fail_ex.cold+0x5/0xa
[  600.496634][T15632]  ? tomoyo_encode2+0xfb/0x3c0
[  600.496660][T15632]  should_failslab+0xc2/0x120
[  600.496682][T15632]  __kmalloc_noprof+0xe0/0x850
[  600.496710][T15632]  ? d_absolute_path+0x136/0x1b0
[  600.496732][T15632]  tomoyo_encode2+0xfb/0x3c0
[  600.496761][T15632]  tomoyo_encode+0x29/0x50
[  600.496786][T15632]  tomoyo_realpath_from_path+0x18c/0x690
[  600.496818][T15632]  tomoyo_check_open_permission+0x2af/0x3c0
[  600.496842][T15632]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  600.496872][T15632]  ? hook_file_open+0x24e/0x7a0
[  600.496911][T15632]  ? path_get+0x61/0x80
[  600.496941][T15632]  tomoyo_file_open+0x6b/0x90
[  600.496959][T15632]  security_file_open+0xb5/0x1e0
[  600.496984][T15632]  do_dentry_open+0x588/0x14d0
[  600.497013][T15632]  vfs_open+0x82/0x3f0
[  600.497041][T15632]  path_openat+0x208c/0x31a0
[  600.497072][T15632]  ? __pfx_path_openat+0x10/0x10
[  600.497103][T15632]  do_file_open+0x20e/0x430
[  600.497128][T15632]  ? __pfx_do_file_open+0x10/0x10
[  600.497167][T15632]  ? alloc_fd+0x476/0x790
[  600.497191][T15632]  ? do_getname+0x191/0x390
[  600.497220][T15632]  do_sys_openat2+0x10d/0x1e0
[  600.497248][T15632]  ? __pfx_do_sys_openat2+0x10/0x10
[  600.497285][T15632]  __x64_sys_openat+0x12d/0x210
[  600.497314][T15632]  ? __pfx___x64_sys_openat+0x10/0x10
[  600.497341][T15632]  ? ksys_write+0x1ac/0x250
[  600.497364][T15632]  ? rcu_is_watching+0x12/0xc0
[  600.497387][T15632]  do_syscall_64+0x115/0x840
[  600.497413][T15632]  ? clear_bhb_loop+0x40/0x90
[  600.497434][T15632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  600.497453][T15632] RIP: 0033:0x7fa5d3f9ce59
[  600.497468][T15632] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  600.497485][T15632] RSP: 002b:00007fa5d4db8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  600.497503][T15632] RAX: ffffffffffffffda RBX: 00007fa5d4215fa0 RCX: 00007fa5d3f9ce59
[  600.497514][T15632] RDX: 0000000000040001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  600.497525][T15632] RBP: 00007fa5d4032d6f R08: 0000000000000000 R09: 0000000000000000
[  600.497542][T15632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  600.497552][T15632] R13: 00007fa5d4216038 R14: 00007fa5d4215fa0 R15: 00007ffdde050f48
[  600.497575][T15632]  </TASK>
[  600.499882][T15632] ERROR: Out of memory at tomoyo_realpath_from_path.
[  603.358011][T15682] netlink: 256 bytes leftover after parsing attributes in process `syz.2.1978'.
[  603.695892][T15699] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1980'.
[  604.488096][   T30] audit: type=1806 audit(1843104635.578:19): xattr="." res=0
[  605.974438][T15736] FAULT_INJECTION: forcing a failure.
[  605.974438][T15736] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  606.050977][T15736] CPU: 0 UID: 0 PID: 15736 Comm: syz.2.1985 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  606.051020][T15736] Tainted: [L]=SOFTLOCKUP
[  606.051028][T15736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  606.051040][T15736] Call Trace:
[  606.051046][T15736]  <TASK>
[  606.051055][T15736]  dump_stack_lvl+0x100/0x190
[  606.051091][T15736]  should_fail_ex.cold+0x5/0xa
[  606.051111][T15736]  ? prepare_alloc_pages+0x16d/0x5f0
[  606.051138][T15736]  should_fail_alloc_page+0xeb/0x140
[  606.051164][T15736]  prepare_alloc_pages+0x1f0/0x5f0
[  606.051189][T15736]  ? rcu_is_watching+0x12/0xc0
[  606.051213][T15736]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  606.051243][T15736]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  606.051274][T15736]  ? __lock_acquire+0x4a5/0x2630
[  606.051319][T15736]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  606.051347][T15736]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  606.051380][T15736]  ? is_bpf_text_address+0x8a/0x1a0
[  606.051405][T15736]  ? bpf_ksym_find+0x124/0x1c0
[  606.051426][T15736]  ? __lock_acquire+0x4a5/0x2630
[  606.051453][T15736]  ? __css_rstat_updated+0x1ce/0x5a0
[  606.051483][T15736]  ? __lock_acquire+0x4a5/0x2630
[  606.051511][T15736]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  606.051539][T15736]  ? policy_nodemask+0xed/0x4f0
[  606.051565][T15736]  alloc_pages_mpol+0x1fb/0x540
[  606.051588][T15736]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  606.051610][T15736]  ? find_held_lock+0x2b/0x80
[  606.051631][T15736]  ? __pud_alloc+0x4f6/0x690
[  606.051653][T15736]  ? __pud_alloc+0x4f6/0x690
[  606.051679][T15736]  alloc_pages_noprof+0x1a/0x160
[  606.051703][T15736]  __pmd_alloc+0x3b/0x950
[  606.051725][T15736]  ? __pud_alloc+0x4fb/0x690
[  606.051749][T15736]  copy_page_range+0x41a8/0x5b20
[  606.051782][T15736]  ? __lock_acquire+0x4a5/0x2630
[  606.051822][T15736]  ? find_held_lock+0x2b/0x80
[  606.051857][T15736]  ? mas_wr_store_entry+0xa1/0x1e80
[  606.051887][T15736]  ? __pfx_copy_page_range+0x10/0x10
[  606.051919][T15736]  ? mas_store+0x666/0xac0
[  606.051950][T15736]  ? __pfx_mas_store+0x10/0x10
[  606.051985][T15736]  ? __pfx___vma_start_write+0x10/0x10
[  606.052018][T15736]  dup_mmap+0xd44/0x21b0
[  606.052052][T15736]  ? __pfx_dup_mmap+0x10/0x10
[  606.052076][T15736]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  606.052104][T15736]  ? __lock_acquire+0x4a5/0x2630
[  606.052133][T15736]  ? find_held_lock+0x2b/0x80
[  606.052154][T15736]  ? __percpu_counter_init_many+0x2bc/0x3b0
[  606.052198][T15736]  copy_process+0x6c78/0x7ed0
[  606.052222][T15736]  ? __futex_wait+0x256/0x300
[  606.052258][T15736]  ? __pfx_copy_process+0x10/0x10
[  606.052282][T15736]  ? find_held_lock+0x2b/0x80
[  606.052320][T15736]  kernel_clone+0x176/0x9e0
[  606.052342][T15736]  ? __pfx_futex_wait+0x10/0x10
[  606.052366][T15736]  ? __pfx_kernel_clone+0x10/0x10
[  606.052407][T15736]  __do_sys_clone+0xd9/0x120
[  606.052433][T15736]  ? __pfx___do_sys_clone+0x10/0x10
[  606.052457][T15736]  ? fd_install+0x24f/0x580
[  606.052491][T15736]  ? rcu_is_watching+0x12/0xc0
[  606.052515][T15736]  do_syscall_64+0x115/0x840
[  606.052541][T15736]  ? clear_bhb_loop+0x40/0x90
[  606.052564][T15736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  606.052583][T15736] RIP: 0033:0x7fa5d3f9ce59
[  606.052599][T15736] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  606.052617][T15736] RSP: 002b:00007fa5d4d75fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  606.052637][T15736] RAX: ffffffffffffffda RBX: 00007fa5d4216180 RCX: 00007fa5d3f9ce59
[  606.052648][T15736] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  606.052660][T15736] RBP: 00007fa5d4032d6f R08: 0000000000000000 R09: 0000000000000000
[  606.052671][T15736] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  606.052681][T15736] R13: 00007fa5d4216218 R14: 00007fa5d4216180 R15: 00007ffdde050f48
[  606.052705][T15736]  </TASK>
[  607.504472][T15754] FAULT_INJECTION: forcing a failure.
[  607.504472][T15754] name failslab, interval 1, probability 0, space 0, times 0
[  607.545056][T15754] CPU: 0 UID: 0 PID: 15754 Comm: syz.2.1990 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  607.545089][T15754] Tainted: [L]=SOFTLOCKUP
[  607.545096][T15754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  607.545107][T15754] Call Trace:
[  607.545113][T15754]  <TASK>
[  607.545121][T15754]  dump_stack_lvl+0x100/0x190
[  607.545157][T15754]  should_fail_ex.cold+0x5/0xa
[  607.545180][T15754]  should_failslab+0xc2/0x120
[  607.545203][T15754]  __kmalloc_cache_node_noprof+0x7d/0x770
[  607.545223][T15754]  ? __pfx_stack_trace_save+0x10/0x10
[  607.545246][T15754]  ? __get_vm_area_node+0x101/0x330
[  607.545282][T15754]  __get_vm_area_node+0x101/0x330
[  607.545313][T15754]  ? kasan_save_stack+0x3f/0x50
[  607.545331][T15754]  ? vb2_vmalloc_alloc+0x135/0x410
[  607.545353][T15754]  __vmalloc_node_range_noprof+0x228/0x1630
[  607.545379][T15754]  ? vb2_vmalloc_alloc+0x135/0x410
[  607.545399][T15754]  ? vfs_read+0x1e4/0xb30
[  607.545416][T15754]  ? ksys_read+0x12a/0x250
[  607.545435][T15754]  ? do_syscall_64+0x115/0x840
[  607.545460][T15754]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.545484][T15754]  ? vb2_vmalloc_alloc+0x135/0x410
[  607.545511][T15754]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  607.545544][T15754]  ? vb2_vmalloc_alloc+0x135/0x410
[  607.545565][T15754]  vmalloc_user_noprof+0x9e/0xe0
[  607.545589][T15754]  ? vb2_vmalloc_alloc+0x135/0x410
[  607.545610][T15754]  vb2_vmalloc_alloc+0x135/0x410
[  607.545635][T15754]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  607.545657][T15754]  __vb2_queue_alloc+0x8d5/0x1160
[  607.545687][T15754]  vb2_core_reqbufs+0x899/0xf30
[  607.545711][T15754]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  607.545742][T15754]  __vb2_init_fileio+0x32d/0x1000
[  607.545762][T15754]  ? aa_file_perm+0x7f3/0x14d0
[  607.545794][T15754]  __vb2_perform_fileio+0x91e/0x1380
[  607.545820][T15754]  ? __pfx___vb2_perform_fileio+0x10/0x10
[  607.545841][T15754]  ? __pfx___might_resched+0x10/0x10
[  607.545866][T15754]  vb2_fop_read+0x211/0x520
[  607.545887][T15754]  v4l2_read+0x229/0x2c0
[  607.545914][T15754]  ? __pfx_v4l2_read+0x10/0x10
[  607.545943][T15754]  vfs_read+0x1e4/0xb30
[  607.545966][T15754]  ? __pfx_vfs_read+0x10/0x10
[  607.545985][T15754]  ? find_held_lock+0x2b/0x80
[  607.546006][T15754]  ? __fget_files+0x215/0x3d0
[  607.546027][T15754]  ? __fget_files+0x215/0x3d0
[  607.546051][T15754]  ? __fget_files+0x21f/0x3d0
[  607.546077][T15754]  ksys_read+0x12a/0x250
[  607.546098][T15754]  ? __pfx_ksys_read+0x10/0x10
[  607.546119][T15754]  ? rcu_is_watching+0x12/0xc0
[  607.546143][T15754]  do_syscall_64+0x115/0x840
[  607.546168][T15754]  ? clear_bhb_loop+0x40/0x90
[  607.546190][T15754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.546209][T15754] RIP: 0033:0x7fa5d3f9ce59
[  607.546225][T15754] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  607.546242][T15754] RSP: 002b:00007fa5d4db8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  607.546268][T15754] RAX: ffffffffffffffda RBX: 00007fa5d4215fa0 RCX: 00007fa5d3f9ce59
[  607.546280][T15754] RDX: 0000000000000028 RSI: 0000200000000280 RDI: 0000000000000005
[  607.546291][T15754] RBP: 00007fa5d4032d6f R08: 0000000000000000 R09: 0000000000000000
[  607.546307][T15754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  607.546317][T15754] R13: 00007fa5d4216038 R14: 00007fa5d4215fa0 R15: 00007ffdde050f48
[  607.546340][T15754]  </TASK>
[  607.969420][T15754] syz.2.1990: vmalloc error: size 4096, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  607.985357][T15754] CPU: 0 UID: 0 PID: 15754 Comm: syz.2.1990 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  607.985387][T15754] Tainted: [L]=SOFTLOCKUP
[  607.985394][T15754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  607.985404][T15754] Call Trace:
[  607.985411][T15754]  <TASK>
[  607.985417][T15754]  dump_stack_lvl+0x100/0x190
[  607.985453][T15754]  warn_alloc.cold+0x95/0x1c1
[  607.985472][T15754]  ? __pfx_warn_alloc+0x10/0x10
[  607.985501][T15754]  ? trace_kmalloc+0xe3/0x110
[  607.985524][T15754]  ? __kmalloc_cache_node_noprof+0x2d9/0x770
[  607.985547][T15754]  ? __kasan_kmalloc+0x8a/0xb0
[  607.985566][T15754]  ? __get_vm_area_node+0x208/0x330
[  607.985591][T15754]  ? vb2_vmalloc_alloc+0x135/0x410
[  607.985613][T15754]  __vmalloc_node_range_noprof+0xccd/0x1630
[  607.985638][T15754]  ? vfs_read+0x1e4/0xb30
[  607.985657][T15754]  ? ksys_read+0x12a/0x250
[  607.985676][T15754]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.985700][T15754]  ? vb2_vmalloc_alloc+0x135/0x410
[  607.985727][T15754]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  607.985761][T15754]  ? vb2_vmalloc_alloc+0x135/0x410
[  607.985781][T15754]  vmalloc_user_noprof+0x9e/0xe0
[  607.985805][T15754]  ? vb2_vmalloc_alloc+0x135/0x410
[  607.985826][T15754]  vb2_vmalloc_alloc+0x135/0x410
[  607.985846][T15754]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  607.985868][T15754]  __vb2_queue_alloc+0x8d5/0x1160
[  607.985898][T15754]  vb2_core_reqbufs+0x899/0xf30
[  607.985922][T15754]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  607.985952][T15754]  __vb2_init_fileio+0x32d/0x1000
[  607.985972][T15754]  ? aa_file_perm+0x7f3/0x14d0
[  607.986005][T15754]  __vb2_perform_fileio+0x91e/0x1380
[  607.986031][T15754]  ? __pfx___vb2_perform_fileio+0x10/0x10
[  607.986051][T15754]  ? __pfx___might_resched+0x10/0x10
[  607.986075][T15754]  vb2_fop_read+0x211/0x520
[  607.986097][T15754]  v4l2_read+0x229/0x2c0
[  607.986124][T15754]  ? __pfx_v4l2_read+0x10/0x10
[  607.986152][T15754]  vfs_read+0x1e4/0xb30
[  607.986175][T15754]  ? __pfx_vfs_read+0x10/0x10
[  607.986193][T15754]  ? find_held_lock+0x2b/0x80
[  607.986215][T15754]  ? __fget_files+0x215/0x3d0
[  607.986237][T15754]  ? __fget_files+0x215/0x3d0
[  607.986261][T15754]  ? __fget_files+0x21f/0x3d0
[  607.986288][T15754]  ksys_read+0x12a/0x250
[  607.986307][T15754]  ? __pfx_ksys_read+0x10/0x10
[  607.986336][T15754]  ? rcu_is_watching+0x12/0xc0
[  607.986359][T15754]  do_syscall_64+0x115/0x840
[  607.986384][T15754]  ? clear_bhb_loop+0x40/0x90
[  607.986405][T15754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.986424][T15754] RIP: 0033:0x7fa5d3f9ce59
[  607.986441][T15754] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  607.986458][T15754] RSP: 002b:00007fa5d4db8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  607.986476][T15754] RAX: ffffffffffffffda RBX: 00007fa5d4215fa0 RCX: 00007fa5d3f9ce59
[  607.986488][T15754] RDX: 0000000000000028 RSI: 0000200000000280 RDI: 0000000000000005
[  607.986499][T15754] RBP: 00007fa5d4032d6f R08: 0000000000000000 R09: 0000000000000000
[  607.986510][T15754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  607.986521][T15754] R13: 00007fa5d4216038 R14: 00007fa5d4215fa0 R15: 00007ffdde050f48
[  607.986544][T15754]  </TASK>
[  607.986551][T15754] Mem-Info:
[  608.380106][T15754] active_anon:28591 inactive_anon:136 isolated_anon:0
[  608.380106][T15754]  active_file:6109 inactive_file:48360 isolated_file:0
[  608.380106][T15754]  unevictable:768 dirty:774 writeback:0
[  608.380106][T15754]  slab_reclaimable:11860 slab_unreclaimable:94097
[  608.380106][T15754]  mapped:41047 shmem:17288 pagetables:1396
[  608.380106][T15754]  sec_pagetables:0 bounce:0
[  608.380106][T15754]  kernel_misc_reclaimable:0
[  608.380106][T15754]  free:1272608 free_pcp:14055 free_cma:0
[  608.441407][T15754] Node 0 active_anon:114364kB inactive_anon:544kB active_file:24436kB inactive_file:193248kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:164128kB dirty:3096kB writeback:0kB shmem:67616kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12224kB pagetables:5308kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  608.588520][T15754] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:192kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:60kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:120kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  608.714386][T15754] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  608.830739][T15754] lowmem_reserve[]: 0 2478 2479 2479 2479
[  608.850998][T15754] Node 0 DMA32 free:1153916kB boost:0kB min:34060kB low:42572kB high:51084kB reserved_highatomic:0KB free_highatomic:0KB active_anon:114520kB inactive_anon:544kB active_file:24436kB inactive_file:193248kB unevictable:1536kB writepending:3096kB zspages:512kB present:3129332kB managed:2537516kB mlocked:0kB bounce:0kB free_pcp:46860kB local_pcp:46860kB free_cma:0kB
[  608.992705][T15754] lowmem_reserve[]: 0 0 1 1 1
[  609.016403][T15754] Node 0 Normal free:8kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  609.138967][T15754] lowmem_reserve[]: 0 0 0 0 0
[  609.150430][T15754] Node 1 Normal free:3921148kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:192kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:8588kB local_pcp:8588kB free_cma:0kB
[  609.283276][T15754] lowmem_reserve[]: 0 0 0 0 0
[  609.305657][T15754] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  609.362752][T15754] Node 0 DMA32: 4393*4kB (UM) 3305*8kB (UE) 2155*16kB (UME) 1917*32kB (UM) 1441*64kB (UME) 772*128kB (UME) 475*256kB (UME) 246*512kB (UME) 86*1024kB (UM) 20*2048kB (UME) 109*4096kB (M) = 1153916kB
[  609.457251][T15754] Node 0 Normal: 2*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  609.505451][T15754] Node 1 Normal: 6*4kB (UM) 14*8kB (UM) 12*16kB (UM) 5*32kB (UM) 5*64kB (UM) 10*128kB (UM) 3*256kB (UM) 5*512kB (UM) 2*1024kB (U) 3*2048kB (UM) 954*4096kB (UM) = 3921192kB
[  609.582203][T15754] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  609.638423][T15754] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  609.694718][T15754] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  609.747522][T15754] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  609.821253][T15754] 73060 total pagecache pages
[  609.849047][T15754] 118 pages in swap cache
[  609.884152][T15754] Free swap  = 124368kB
[  609.909506][T15754] Total swap = 124996kB
[  609.931882][T15754] 2097051 pages RAM
[  609.948492][T15754] 0 pages HighMem/MovableOnly
[  609.969609][T15754] 430780 pages reserved
[  609.987239][T15754] 0 pages cma reserved
[  611.678607][T15802] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2001'.
[  611.913379][T15774] Process accounting resumed
[  612.564696][ T8188] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5
[  613.205158][T15821] syz_tun: tun_chr_ioctl cmd 2147767521
[  614.059714][T15836] net_ratelimit: 47 callbacks suppressed
[  614.059734][T15836] netlink: zone id is out of range
[  614.119514][T15836] netlink: zone id is out of range
[  614.145351][T15836] netlink: zone id is out of range
[  614.170228][T15836] netlink: zone id is out of range
[  614.231671][T15836] netlink: zone id is out of range
[  614.282726][T15836] netlink: zone id is out of range
[  614.342630][T15836] netlink: zone id is out of range
[  614.388824][T15836] netlink: zone id is out of range
[  614.425837][T15836] netlink: zone id is out of range
[  614.473935][T15836] netlink: zone id is out of range
[  614.524816][T15074] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  614.645226][T15796] Process accounting resumed
[  615.167830][T15852] futex_wake_op: syz.2.2011 tries to shift op by -2048; fix this program
[  615.205026][T15852] futex_wake_op: syz.2.2011 tries to shift op by -2048; fix this program
[  616.013217][T15074] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  616.189823][T15868] bridge0: port 3(veth1_macvtap) entered blocking state
[  616.308032][T15868] bridge0: port 3(veth1_macvtap) entered disabled state
[  616.366441][T15868] veth1_macvtap: entered allmulticast mode
[  616.452871][T15868] veth1_macvtap: left allmulticast mode
[  618.042663][ T8188] Bluetooth: hci3: command 0x0c1a tx timeout
[  619.128130][T15923] sd 0:0:1:0: PR command failed: 1026
[  619.160961][T15923] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  619.186413][T15923] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  620.121550][T15074] Bluetooth: hci3: command 0x0c1a tx timeout
[  623.089342][   T30] audit: type=1800 audit(1843104654.187:20): pid=16002 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2040" name="lu_gp_id" dev="configfs" ino=59747 res=0 errno=0
[  623.400176][T16006] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2041'.
[  624.604052][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  624.613790][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  624.688511][T16019] net_ratelimit: 47 callbacks suppressed
[  624.688531][T16019] netlink: zone id is out of range
[  624.734910][T16019] netlink: zone id is out of range
[  624.771919][T16019] netlink: zone id is out of range
[  624.809150][T16019] netlink: zone id is out of range
[  624.872413][T16019] netlink: zone id is out of range
[  624.942709][T16019] netlink: zone id is out of range
[  624.994560][T16019] netlink: zone id is out of range
[  625.050634][T16019] netlink: zone id is out of range
[  625.116403][T16019] netlink: zone id is out of range
[  625.154919][T16019] netlink: zone id is out of range
[  627.147286][T16044] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2049'.
[  630.645135][T16139] FAULT_INJECTION: forcing a failure.
[  630.645135][T16139] name failslab, interval 1, probability 0, space 0, times 0
[  630.703622][T16139] CPU: 0 UID: 0 PID: 16139 Comm: syz.2.2069 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  630.703658][T16139] Tainted: [L]=SOFTLOCKUP
[  630.703665][T16139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  630.703676][T16139] Call Trace:
[  630.703682][T16139]  <TASK>
[  630.703690][T16139]  dump_stack_lvl+0x100/0x190
[  630.703726][T16139]  should_fail_ex.cold+0x5/0xa
[  630.703751][T16139]  should_failslab+0xc2/0x120
[  630.703778][T16139]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  630.703807][T16139]  ? __d_alloc+0x34/0xa40
[  630.703836][T16139]  __d_alloc+0x34/0xa40
[  630.703862][T16139]  d_alloc+0x4a/0x1e0
[  630.703889][T16139]  lookup_one_qstr_excl+0x171/0x250
[  630.703919][T16139]  start_dirop+0x59/0xb0
[  630.703941][T16139]  simple_start_creating+0xf9/0x110
[  630.703963][T16139]  ? __pfx_simple_start_creating+0x10/0x10
[  630.703985][T16139]  ? mntput+0x70/0xa0
[  630.704004][T16139]  ? simple_pin_fs+0xa3/0x190
[  630.704023][T16139]  debugfs_start_creating.part.0+0x82/0x170
[  630.704044][T16139]  __debugfs_create_file+0xb3/0x4f0
[  630.704066][T16139]  debugfs_create_file_full+0x41/0x60
[  630.704088][T16139]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  630.704114][T16139]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  630.704143][T16139]  ? ida_alloc_range+0x70d/0x830
[  630.704190][T16139]  ? lockdep_init_map_type+0x5c/0x250
[  630.704224][T16139]  preinit_net.part.0+0x252/0x920
[  630.704247][T16139]  copy_net_ns+0x339/0x7c0
[  630.704271][T16139]  create_new_namespaces+0x3ea/0xac0
[  630.704299][T16139]  unshare_nsproxy_namespaces+0xf2/0x220
[  630.704325][T16139]  ksys_unshare+0x438/0xab0
[  630.704354][T16139]  ? __pfx_ksys_unshare+0x10/0x10
[  630.704379][T16139]  ? xfd_validate_state+0x129/0x190
[  630.704396][T16139]  ? ksys_write+0x1ac/0x250
[  630.704423][T16139]  __x64_sys_unshare+0x31/0x40
[  630.704449][T16139]  do_syscall_64+0x115/0x840
[  630.704473][T16139]  ? clear_bhb_loop+0x40/0x90
[  630.704495][T16139]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  630.704514][T16139] RIP: 0033:0x7fa5d3f9ce59
[  630.704530][T16139] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  630.704547][T16139] RSP: 002b:00007fa5d4db8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  630.704565][T16139] RAX: ffffffffffffffda RBX: 00007fa5d4215fa0 RCX: 00007fa5d3f9ce59
[  630.704576][T16139] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  630.704587][T16139] RBP: 00007fa5d4032d6f R08: 0000000000000000 R09: 0000000000000000
[  630.704600][T16139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  630.704611][T16139] R13: 00007fa5d4216038 R14: 00007fa5d4215fa0 R15: 00007ffdde050f48
[  630.704636][T16139]  </TASK>
[  631.818520][T16159] net_ratelimit: 104 callbacks suppressed
[  631.818539][T16159] netlink: zone id is out of range
[  631.940337][T16159] netlink: zone id is out of range
[  632.018417][T16159] netlink: zone id is out of range
[  632.086974][T16159] netlink: zone id is out of range
[  632.169814][T16159] netlink: zone id is out of range
[  632.240351][T16159] netlink: zone id is out of range
[  632.320144][T16159] netlink: zone id is out of range
[  632.423148][T16159] netlink: zone id is out of range
[  632.488745][T16159] netlink: zone id is out of range
[  632.594782][T16159] netlink: zone id is out of range
[  636.359439][T16239] tc_dump_action: action bad kind
[  636.445576][T16241] tc_dump_action: action bad kind
[  638.824146][ T8188] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5
[  641.038905][T16311] futex_wake_op: syz.3.2108 tries to shift op by -2048; fix this program
[  641.198530][T16311] futex_wake_op: syz.3.2108 tries to shift op by -2048; fix this program
[  642.428357][T16329] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2113'.
[  642.529433][T16329] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2113'.
[  643.995486][T16313] Process accounting paused
[  646.124445][T16339] Process accounting paused
[  646.844912][T16393] netlink: 'syz.0.2129': attribute type 4 has an invalid length.
[  647.572688][T16408] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  648.322422][T16425] net_ratelimit: 47 callbacks suppressed
[  648.322439][T16425] netlink: zone id is out of range
[  648.360378][T16425] netlink: zone id is out of range
[  648.386407][T16425] netlink: zone id is out of range
[  648.424570][T16425] netlink: zone id is out of range
[  648.461601][T16425] netlink: zone id is out of range
[  648.489183][T16431] netlink: zone id is out of range
[  648.501794][T16425] netlink: zone id is out of range
[  648.528064][T16431] netlink: zone id is out of range
[  648.539914][T16425] netlink: zone id is out of range
[  648.576747][T16425] netlink: zone id is out of range
[  649.090412][T16439] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2139'.
[  649.386333][ T8188] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  650.946194][T16488] bond0: option fail_over_mac: invalid value (�)
[  651.154645][T16498] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5636] was attempted by "ȟ���c�V�^[G8E;�_�F�CiS*��NR�p�a��J����ґ֞�o��E�\x1b|RD����$�����)���������B3����k��)��N�Y���fx/�n�����\x07�����}�Q�d��\x0cE���F`p�E#����Z)}\x22ض�;Pĕ��·L1x'|_�e3��/�PW;���<�����N��!\x0a���2��Q\x5c���AyI!%~�ls�v���X�>4m%�^��kIL�3�Z&y�)>�?@s�TNi@{���j5\x1b\x0dU�Vc�$˓�v����\x0a+_�g\x5c?�lj�2ǫ���m\x071dE�(�C+�5����Y�I�t���\x07$�r�U�]�.�!R��H �1����9�G�`$6�\x0ceqe� ��o�̃I�,��\x0by;���Ƶ̗\x1b\x0c��$bK��~z��fά��G�k���Mi�Emg�a��V^�m�\x0b֐n�nLը�q»멣��\x09\x0d�oF�P��Q��'IPcPN��l�ݔ��\x07����o\x09Ę�\x0aU\x5c��<몠���r6��\x0cT#�\x22��@We��\x1b��Zw����Z�E7�� x����\x1b�=J����e)�5���<��_�%�$0xu�Rbs�����\x0cM��&R��4���?M��sfe���0Tn�N��Rsn�-�qH��ʑ��Ris�)w��*C�ϣm�
)�l��lu[��A�k1q��B9��b�u�4��l\x0a�O-�{<�
'%}�ƫ�J���\x0d[��q�{\x0b�(�`\x07Y��>y��M�dt^ �?��2��h��%<`{�NP{���3��O�W|[dv �I�e��F��x�V�~�DNY2��[ͱɢ|OU��_8~
[  651.471823][T15074] Bluetooth: hci2: command 0x0c1a tx timeout
[  653.000627][T16539] netlink: 'syz.1.2161': attribute type 1 has an invalid length.
[  653.064629][T16539] nbd: error processing sock list
[  653.545143][T15074] Bluetooth: hci2: command 0x0c1a tx timeout
[  653.883014][T16555] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2165'.
[  653.936680][T16555] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2165'.
[  654.133746][T16555] �: renamed from sit0 (while UP)
[  656.333669][ T8188] Bluetooth: hci1: unexpected subevent 0x18 length: 123 > 19
[  656.341154][ T8188] Bluetooth: hci1: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00
[  656.362509][T16592] nbd: couldn't find device at index 33904
[  656.572047][ T8188] Bluetooth: hci1: unexpected event for opcode 0x7c89
[  658.556238][T16634] can: request_module (can-proto-0) failed.
[  658.855268][T16656] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2185'.
[  661.337323][T16701] vivid-007: =================  START STATUS  =================
[  661.382024][T16701] vivid-007: Generate PTS: true
[  661.426254][T16701] vivid-007: Generate SCR: true
[  661.456649][T16701] tpg source WxH: 320x240 (Y'CbCr)
[  661.488101][T16701] tpg field: 1
[  661.507636][T16701] tpg crop: (0,0)/320x240
[  661.536951][T16701] tpg compose: (0,0)/320x240
[  661.568116][T16701] tpg colorspace: 8
[  661.597442][T16701] tpg transfer function: 0/0
[  661.630910][T16701] tpg Y'CbCr encoding: 0/0
[  661.664908][T16701] tpg quantization: 0/0
[  661.694384][T16701] tpg RGB range: 0/2
[  661.737359][T16701] vivid-007: ==================  END STATUS  ==================
[  662.081467][T16714] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2197'.
[  662.390814][T16718] net_ratelimit: 104 callbacks suppressed
[  662.390833][T16718] netlink: zone id is out of range
[  662.489643][T16718] netlink: zone id is out of range
[  662.573167][T16718] netlink: zone id is out of range
[  662.634946][T16718] netlink: zone id is out of range
[  662.709040][T16718] netlink: zone id is out of range
[  662.778675][T16718] netlink: zone id is out of range
[  662.792378][T16713] Process accounting resumed
[  662.863524][T16718] netlink: zone id is out of range
[  662.951049][T16718] netlink: zone id is out of range
[  662.995432][T16718] netlink: zone id is out of range
[  663.061931][T16718] netlink: zone id is out of range
[  665.553671][T16770] ubi0: attaching mtd0
[  665.576229][T16770] ubi0 error: ubi_add_to_av: two LEBs with same sequence number 1
[  665.614096][T16770] eraseblock attaching information dump:
[  665.646004][T16770] 	ec       1
[  665.660464][T16770] 	pnum     0
[  665.677053][T16770] 	lnum     0
[  665.692393][T16770] 	scrub    0
[  665.721820][T16770] 	sqnum    1
[  665.750984][T16770] Volume identifier header dump:
[  665.792679][T16770] 	magic     55424921
[  665.848448][T16770] 	version   1
[  665.898079][T16770] 	vol_type  1
[  665.932950][T16770] 	copy_flag 0
[  665.966424][T16770] 	compat    5
[  666.021846][T16770] 	vol_id    2147479551
[  666.091317][T16770] 	lnum      0
[  666.132957][T16770] 	data_size 0
[  666.132974][T16770] 	used_ebs  0
[  666.132981][T16770] 	data_pad  0
[  666.132988][T16770] 	sqnum     1
[  666.132995][T16770] 	hdr_crc   65b3bd2d
[  666.133003][T16770] Volume identifier header hexdump:
[  666.433701][T16770] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  666.972085][ T8188] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  666.979785][ T8188] Bluetooth: hci2: Invalid handle: 0x3a4a > 0x0eff
[  667.847658][T16796] Process accounting resumed
[  668.149748][ T8188] Bluetooth: hci2: unexpected event 0x3e length: 358 > 260
[  668.149783][ T8188] Bluetooth: hci2: unexpected subevent 0x1b length: 357 > 260
[  668.170976][T16815] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2219'.
[  668.221900][T16815] net_ratelimit: 47 callbacks suppressed
[  668.221922][T16815] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  670.488929][T16842] FAULT_INJECTION: forcing a failure.
[  670.488929][T16842] name fail_futex, interval 1, probability 0, space 0, times 0
[  670.699128][T16842] CPU: 0 UID: 0 PID: 16842 Comm: syz.2.2223 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  670.699161][T16842] Tainted: [L]=SOFTLOCKUP
[  670.699169][T16842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  670.699179][T16842] Call Trace:
[  670.699186][T16842]  <TASK>
[  670.699193][T16842]  dump_stack_lvl+0x100/0x190
[  670.699228][T16842]  should_fail_ex.cold+0x5/0xa
[  670.699251][T16842]  get_futex_key+0x1d2/0x1510
[  670.699283][T16842]  ? __pfx_get_futex_key+0x10/0x10
[  670.699314][T16842]  ? trace_pid_list_is_set+0x11a/0x390
[  670.699336][T16842]  ? trace_pid_list_is_set+0x22c/0x390
[  670.699364][T16842]  futex_wait_setup+0x83/0x510
[  670.699392][T16842]  __futex_wait+0x19f/0x300
[  670.699417][T16842]  ? __pfx___futex_wait+0x10/0x10
[  670.699438][T16842]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  670.699466][T16842]  ? __pfx_futex_wake_mark+0x10/0x10
[  670.699493][T16842]  ? find_held_lock+0x2b/0x80
[  670.699514][T16842]  ? futex_wake+0x456/0x530
[  670.699541][T16842]  futex_wait+0xe6/0x370
[  670.699563][T16842]  ? __pfx_futex_wait+0x10/0x10
[  670.699597][T16842]  do_futex+0x1ef/0x350
[  670.699615][T16842]  ? __pfx_do_futex+0x10/0x10
[  670.699639][T16842]  __x64_sys_futex+0x34f/0x4d0
[  670.699661][T16842]  ? __pfx___x64_sys_futex+0x10/0x10
[  670.699678][T16842]  ? ksys_write+0x1ac/0x250
[  670.699699][T16842]  ? __pfx___x64_sys_pidfd_open+0x10/0x10
[  670.699730][T16842]  ? rcu_is_watching+0x12/0xc0
[  670.699754][T16842]  do_syscall_64+0x115/0x840
[  670.699778][T16842]  ? clear_bhb_loop+0x40/0x90
[  670.699800][T16842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  670.699819][T16842] RIP: 0033:0x7fa5d3f9ce59
[  670.699835][T16842] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  670.699852][T16842] RSP: 002b:00007fa5d4d970e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  670.699870][T16842] RAX: ffffffffffffffda RBX: 00007fa5d4216098 RCX: 00007fa5d3f9ce59
[  670.699887][T16842] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5d4216098
[  670.699898][T16842] RBP: 00007fa5d4216090 R08: 0000000000000000 R09: 0000000000000000
[  670.699908][T16842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  670.699918][T16842] R13: 00007fa5d4216128 R14: 00007ffdde050e60 R15: 00007ffdde050f48
[  670.699941][T16842]  </TASK>
[  674.026707][T16895] capability: warning: `syz.0.2234' uses deprecated v2 capabilities in a way that may be insecure
[  674.220071][T16895] netlink: 'syz.0.2234': attribute type 1 has an invalid length.
[  675.473083][T16866] Process accounting resumed
[  675.807005][T16907] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137
[  675.915369][T16907] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138
[  676.013634][T16907] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum
[  676.866801][T15074] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  676.880473][T15074] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  676.888959][T15074] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  676.903494][T15074] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  676.915973][T15074] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  678.167917][ T9871] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  678.778833][ T9871] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  678.972487][T15074] Bluetooth: hci4: command tx timeout
[  679.164090][ T9871] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  679.357475][ T9871] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  680.683191][ T9871] team0: left allmulticast mode
[  680.716665][ T9871] team_slave_0: left allmulticast mode
[  680.749432][ T9871] team_slave_1: left allmulticast mode
[  680.812728][ T9871] team0: left promiscuous mode
[  680.840559][ T9871] team_slave_0: left promiscuous mode
[  680.870382][ T9871] team_slave_1: left promiscuous mode
[  680.917001][ T9871] bridge0: port 4(team0) entered disabled state
[  681.009141][ T9871] bond0: left allmulticast mode
[  681.051032][T15074] Bluetooth: hci4: command tx timeout
[  681.057762][ T9871] bond_slave_0: left allmulticast mode
[  681.089199][ T9871] bond_slave_1: left allmulticast mode
[  681.121569][ T9871] bond0: left promiscuous mode
[  681.158821][ T9871] bond_slave_0: left promiscuous mode
[  681.195057][ T9871] bond_slave_1: left promiscuous mode
[  681.229015][ T9871] bridge0: port 3(bond0) entered disabled state
[  681.312520][ T9871] bridge_slave_1: left allmulticast mode
[  681.346102][ T9871] bridge_slave_1: left promiscuous mode
[  681.375438][ T9871] bridge0: port 2(bridge_slave_1) entered disabled state
[  681.413210][ T9871] bridge_slave_0: left allmulticast mode
[  681.439905][ T9871] bridge_slave_0: left promiscuous mode
[  681.455591][T16959] kexec: Could not allocate control_code_buffer
[  681.474902][ T9871] bridge0: port 1(bridge_slave_0) entered disabled state
[  681.966983][ T9871] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  681.993601][ T9871] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  682.014150][ T9871] bond0 (unregistering): Released all slaves
[  682.214688][ T5296] 8021q: adding VLAN 0 to HW filter on device eth1
[  682.882309][T16921] bridge0: port 1(bridge_slave_0) entered blocking state
[  682.912254][T16921] bridge0: port 1(bridge_slave_0) entered disabled state
[  682.938712][T16921] bridge_slave_0: entered allmulticast mode
[  682.958592][T16921] bridge_slave_0: entered promiscuous mode
[  682.996771][T16921] bridge0: port 2(bridge_slave_1) entered blocking state
[  683.025362][T16921] bridge0: port 2(bridge_slave_1) entered disabled state
[  683.053425][T16921] bridge_slave_1: entered allmulticast mode
[  683.074437][T16921] bridge_slave_1: entered promiscuous mode
[  683.130995][T15074] Bluetooth: hci4: command tx timeout
[  683.521166][T16921] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  683.763416][T16921] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  683.828940][ T5296] 8021q: adding VLAN 0 to HW filter on device eth2
[  683.966630][T16921] team0: Port device team_slave_0 added
[  684.029142][T16921] team0: Port device team_slave_1 added
[  684.192481][ T9871] hsr_slave_0: left promiscuous mode
[  684.212412][ T9871] hsr_slave_1: left promiscuous mode
[  684.232511][ T9871] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  684.257233][ T9871] batman_adv: batadv0: Removing interface: batadv_slave_0
[  684.283337][ T9871] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  684.306859][ T9871] batman_adv: batadv0: Removing interface: batadv_slave_1
[  684.446186][ T9871] veth1_macvtap: left promiscuous mode
[  684.474335][ T9871] veth0_macvtap: left promiscuous mode
[  684.495736][ T9871] veth1_vlan: left promiscuous mode
[  684.514254][ T9871] veth0_vlan: left promiscuous mode
[  685.210613][T15074] Bluetooth: hci4: command tx timeout
[  685.222583][ T9871] team0 (unregistering): Port device team_slave_1 removed
[  685.241338][ T9871] team0 (unregistering): Port device team_slave_0 removed
[  685.408113][ T5296] 8021q: adding VLAN 0 to HW filter on device eth3
[  685.443234][T16921] batman_adv: batadv0: Adding interface: batadv_slave_0
[  685.455843][T16921] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  685.489671][T16921] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  685.538053][T16921] batman_adv: batadv0: Adding interface: batadv_slave_1
[  685.567411][T16921] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  685.711990][T16921] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  686.012670][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  686.020867][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  686.139928][T16921] hsr_slave_0: entered promiscuous mode
[  686.169160][T16921] hsr_slave_1: entered promiscuous mode
[  689.631042][T17071] netlink: 21 bytes leftover after parsing attributes in process `syz.1.2256'.
[  695.158507][T17210] netlink: zone id is out of range
[  695.164110][T17210] netlink: zone id is out of range
[  695.169522][T17210] netlink: zone id is out of range
[  695.175540][T17210] netlink: zone id is out of range
[  695.181048][T17210] netlink: zone id is out of range
[  695.187635][T17210] netlink: zone id is out of range
[  695.193046][T17210] netlink: zone id is out of range
[  695.204221][T17210] netlink: zone id is out of range
[  695.225267][T17210] netlink: zone id is out of range
[  695.248233][T17210] netlink: zone id is out of range
[  698.616986][   T30] audit: type=1800 audit(2147483678.685:21): pid=17270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2285" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  703.121670][T17319] net_ratelimit: 161 callbacks suppressed
[  703.121689][T17319] netlink: zone id is out of range
[  703.176566][T17319] netlink: zone id is out of range
[  703.194728][ T8188] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  703.215475][ T8188] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  703.224520][ T8188] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  703.234508][ T8188] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  703.247610][ T8188] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  703.317208][T17319] netlink: zone id is out of range
[  703.355676][T17319] netlink: zone id is out of range
[  703.387950][T17319] netlink: zone id is out of range
[  703.425901][T17319] netlink: zone id is out of range
[  703.468963][T17319] netlink: zone id is out of range
[  703.532522][T17319] netlink: zone id is out of range
[  703.555591][T17319] netlink: zone id is out of range
[  703.574111][T17319] netlink: zone id is out of range
[  704.924912][T17320] bridge0: port 1(bridge_slave_0) entered blocking state
[  704.956044][T17320] bridge0: port 1(bridge_slave_0) entered disabled state
[  704.980446][T17320] bridge_slave_0: entered allmulticast mode
[  704.998328][T17320] bridge_slave_0: entered promiscuous mode
[  705.020532][T17320] bridge0: port 2(bridge_slave_1) entered blocking state
[  705.043084][T17320] bridge0: port 2(bridge_slave_1) entered disabled state
[  705.070046][T17320] bridge_slave_1: entered allmulticast mode
[  705.092234][T17320] bridge_slave_1: entered promiscuous mode
[  705.286394][ T8188] Bluetooth: hci2: command tx timeout
[  705.392467][T17320] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  705.458313][T17320] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  705.607610][T17320] team0: Port device team_slave_0 added
[  705.636017][T17320] team0: Port device team_slave_1 added
[  705.761317][T17364] No such timeout policy "
"
[  705.774570][T17320] batman_adv: batadv0: Adding interface: batadv_slave_0
[  705.797631][T17320] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  705.897580][T17320] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  705.938775][T17320] batman_adv: batadv0: Adding interface: batadv_slave_1
[  705.970052][T17320] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  706.043675][T17320] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  706.248051][T17320] hsr_slave_0: entered promiscuous mode
[  706.264046][T17320] hsr_slave_1: entered promiscuous mode
[  706.280105][T17320] debugfs: 'hsr0' already exists in 'hsr'
[  706.292430][T17320] Cannot create hsr debugfs directory
[  706.818232][T17374] can: request_module (can-proto-4) failed.
[  707.233528][T17380] syz_tun: tun_chr_ioctl cmd 1074812118
[  707.358122][ T8188] Bluetooth: hci2: command tx timeout
[  709.436725][ T8188] Bluetooth: hci2: command tx timeout
[  709.584984][T17418] net_ratelimit: 105 callbacks suppressed
[  709.585005][T17418] netlink: zone id is out of range
[  709.612080][T17418] netlink: zone id is out of range
[  709.621948][T17418] netlink: zone id is out of range
[  709.635045][T17418] netlink: zone id is out of range
[  709.655336][T17418] netlink: zone id is out of range
[  709.674129][T17418] netlink: zone id is out of range
[  709.698639][T17418] netlink: zone id is out of range
[  709.708894][T17418] netlink: zone id is out of range
[  709.721311][T17418] netlink: zone id is out of range
[  709.738369][T17418] netlink: zone id is out of range
[  710.784348][ T8188] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  711.515715][ T8188] Bluetooth: hci2: command tx timeout
[  713.418405][T17462] netlink: 'syz.1.2328': attribute type 1 has an invalid length.
[  713.505492][T17462] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2328'.
[  713.550902][T17462] virt_wifi0: entered allmulticast mode
[  715.226675][T17495] net_ratelimit: 104 callbacks suppressed
[  715.226694][T17495] netlink: zone id is out of range
[  715.276387][T17495] netlink: zone id is out of range
[  715.292905][T17495] netlink: zone id is out of range
[  715.315460][T17495] netlink: zone id is out of range
[  715.360158][T17495] netlink: zone id is out of range
[  715.404131][T17495] netlink: zone id is out of range
[  715.436865][T17495] netlink: zone id is out of range
[  715.449179][T17495] netlink: zone id is out of range
[  715.486809][T17495] netlink: zone id is out of range
[  715.492261][T17495] netlink: zone id is out of range
[  716.266977][ T8188] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  718.312316][T15279] Bluetooth: hci1: command 0x0c1a tx timeout
[  720.396967][T15279] Bluetooth: hci1: command 0x0c1a tx timeout
[  720.874729][T17608] net_ratelimit: 47 callbacks suppressed
[  720.874749][T17608] netlink: zone id is out of range
[  720.911767][T17608] netlink: zone id is out of range
[  720.927668][T17608] netlink: zone id is out of range
[  720.988715][T17608] netlink: zone id is out of range
[  721.024714][T17608] netlink: zone id is out of range
[  721.067704][T17608] netlink: zone id is out of range
[  721.116099][T17608] netlink: zone id is out of range
[  721.153655][T17608] netlink: zone id is out of range
[  721.187217][T17608] netlink: zone id is out of range
[  721.216201][T17608] netlink: zone id is out of range
[  724.583597][T17653] netlink: 'syz.0.2373': attribute type 1 has an invalid length.
[  724.671660][T17653] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2373'.
[  724.788611][T17653] virt_wifi0: entered allmulticast mode
[  725.867032][T17673] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2377'.
[  725.892383][T17673] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2377'.
[  727.736547][T17686] Process accounting resumed
[  727.983366][T17702] net_ratelimit: 161 callbacks suppressed
[  727.983385][T17702] netlink: zone id is out of range
[  728.006811][T17702] netlink: zone id is out of range
[  728.016691][T17702] netlink: zone id is out of range
[  728.036749][T17702] netlink: zone id is out of range
[  728.043044][T17702] netlink: zone id is out of range
[  728.053984][T17702] netlink: zone id is out of range
[  728.078805][T17702] netlink: zone id is out of range
[  728.099354][T17702] netlink: zone id is out of range
[  728.125195][T17702] netlink: zone id is out of range
[  728.149824][T17702] netlink: zone id is out of range
[  731.756209][T17758] nbd: must specify a size in bytes for the device
[  736.717901][ T8188] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  736.733963][ T8188] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  736.745736][ T8188] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  736.762480][ T8188] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  736.772789][ T8188] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  736.896661][T17852] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2416'.
[  738.361049][T17857] bridge0: port 1(bridge_slave_0) entered blocking state
[  738.383393][T17857] bridge0: port 1(bridge_slave_0) entered disabled state
[  738.406821][T17857] bridge_slave_0: entered allmulticast mode
[  738.429853][T17857] bridge_slave_0: entered promiscuous mode
[  738.454309][T17857] bridge0: port 2(bridge_slave_1) entered blocking state
[  738.480316][T17857] bridge0: port 2(bridge_slave_1) entered disabled state
[  738.509508][T17857] bridge_slave_1: entered allmulticast mode
[  738.535071][T17857] bridge_slave_1: entered promiscuous mode
[  738.719744][T17857] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  738.786312][T17857] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  738.823075][ T8188] Bluetooth: hci5: command tx timeout
[  738.969653][T17857] team0: Port device team_slave_0 added
[  738.992854][T17857] team0: Port device team_slave_1 added
[  739.234503][T17857] batman_adv: batadv0: Adding interface: batadv_slave_0
[  739.261027][T17857] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  739.343042][T17857] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  739.381452][T17857] batman_adv: batadv0: Adding interface: batadv_slave_1
[  739.409617][T17857] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  739.498244][T17857] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  739.799445][T17857] hsr_slave_0: entered promiscuous mode
[  739.820114][T17857] hsr_slave_1: entered promiscuous mode
[  739.841465][T17857] debugfs: 'hsr0' already exists in 'hsr'
[  739.867274][T17857] Cannot create hsr debugfs directory
[  740.892140][ T8188] Bluetooth: hci5: command tx timeout
[  741.552868][T17923] syz_tun: tun_chr_ioctl cmd 1074025678
[  741.579413][T17923] syz_tun: group set to 23693
[  742.861084][T17952] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2436'.
[  742.958643][ T8188] Bluetooth: hci5: command tx timeout
[  745.027191][ T8188] Bluetooth: hci5: command tx timeout
[  745.516007][T17982] nbd: must specify a size in bytes for the device
[  747.335759][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  747.347397][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  747.640777][T18029] syz_tun: tun_chr_ioctl cmd 1074025678
[  747.646967][T18029] syz_tun: group set to 23693
[  754.145196][T18143] net_ratelimit: 104 callbacks suppressed
[  754.145215][T18143] netlink: zone id is out of range
[  754.185250][T18143] netlink: zone id is out of range
[  754.203182][T18143] netlink: zone id is out of range
[  754.228178][T18143] netlink: zone id is out of range
[  754.269190][T18143] netlink: zone id is out of range
[  754.285519][T18143] netlink: zone id is out of range
[  754.307581][T18143] netlink: zone id is out of range
[  754.343349][T18143] netlink: zone id is out of range
[  754.355052][T18143] netlink: zone id is out of range
[  754.388421][T18143] netlink: zone id is out of range
[  755.674865][T18170] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2482'.
[  756.321632][T18177] can: request_module (can-proto-0) failed.
[  761.806022][T18255] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2497'.
[  762.112318][ T8188] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  762.119964][ T8188] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff
[  763.405717][ T8188] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  763.421259][ T8188] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  763.432900][ T8188] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  763.446761][ T8188] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  763.454723][ T8188] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  764.003331][T18296] net_ratelimit: 104 callbacks suppressed
[  764.003349][T18296] netlink: zone id is out of range
[  764.053063][T18296] netlink: zone id is out of range
[  764.109098][T18296] netlink: zone id is out of range
[  764.171847][T18296] netlink: zone id is out of range
[  764.205986][T18296] netlink: zone id is out of range
[  764.233400][T18296] netlink: zone id is out of range
[  764.276433][T18296] netlink: zone id is out of range
[  764.338130][T18296] netlink: zone id is out of range
[  764.350383][T18296] netlink: zone id is out of range
[  764.378669][T18296] netlink: zone id is out of range
[  764.592897][T18310] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2505'.
[  765.037477][T18284] bridge0: port 1(bridge_slave_0) entered blocking state
[  765.058030][T18284] bridge0: port 1(bridge_slave_0) entered disabled state
[  765.082516][T18284] bridge_slave_0: entered allmulticast mode
[  765.108784][T18284] bridge_slave_0: entered promiscuous mode
[  765.153510][T18284] bridge0: port 2(bridge_slave_1) entered blocking state
[  765.171113][T18284] bridge0: port 2(bridge_slave_1) entered disabled state
[  765.194277][T18284] bridge_slave_1: entered allmulticast mode
[  765.222540][T18284] bridge_slave_1: entered promiscuous mode
[  765.330698][T18284] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  765.365722][T18284] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  765.465919][T18284] team0: Port device team_slave_0 added
[  765.490782][T18284] team0: Port device team_slave_1 added
[  765.549876][ T8188] Bluetooth: hci6: command tx timeout
[  765.597924][T18284] batman_adv: batadv0: Adding interface: batadv_slave_0
[  765.635699][T18284] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  765.726682][T18284] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  765.766113][T18284] batman_adv: batadv0: Adding interface: batadv_slave_1
[  765.783977][T18284] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  765.859707][T18284] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  766.015453][T18284] hsr_slave_0: entered promiscuous mode
[  766.037742][T18284] hsr_slave_1: entered promiscuous mode
[  766.060529][T18284] debugfs: 'hsr0' already exists in 'hsr'
[  766.081337][T18284] Cannot create hsr debugfs directory
[  766.723864][T18348] netlink: 26 bytes leftover after parsing attributes in process `syz.0.2513'.
[  767.617757][ T8188] Bluetooth: hci6: command tx timeout
[  769.685998][ T8188] Bluetooth: hci6: command tx timeout
[  771.242251][T18421] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2528'.
[  771.253137][T18421] ��\�: renamed from lo (while UP)
[  771.590250][T18436] NFSD: Failed to start, no listeners configured.
[  771.639393][T18439] net_ratelimit: 47 callbacks suppressed
[  771.639413][T18439] netlink: zone id is out of range
[  771.663599][T18439] netlink: zone id is out of range
[  771.674682][T18439] netlink: zone id is out of range
[  771.687655][T18439] netlink: zone id is out of range
[  771.716530][T18439] netlink: zone id is out of range
[  771.738218][T18439] netlink: zone id is out of range
[  771.754309][ T8188] Bluetooth: hci6: command tx timeout
[  771.779415][T18439] netlink: zone id is out of range
[  771.795331][T18439] netlink: zone id is out of range
[  771.825754][T18439] netlink: zone id is out of range
[  771.854024][T18439] netlink: zone id is out of range
[  775.595561][T18525] NFSD: Failed to start, no listeners configured.
[  775.878265][T18524] NFSD: Failed to start, no listeners configured.
[  776.769455][ T8188] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  776.769484][ T8188] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  776.785238][ T8188] Bluetooth: hci3: Dropping invalid advertising data
[  776.793545][ T8188] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  776.793575][ T8188] Bluetooth: hci3: Dropping invalid advertising data
[  776.808216][ T8188] Bluetooth: hci3: Malformed LE Event: 0x02
[  777.389053][T18566] net_ratelimit: 104 callbacks suppressed
[  777.389073][T18566] netlink: zone id is out of range
[  777.400833][T18566] netlink: zone id is out of range
[  777.407417][T18566] netlink: zone id is out of range
[  777.413059][T18566] netlink: zone id is out of range
[  777.418640][T18566] netlink: zone id is out of range
[  777.424376][T18566] netlink: zone id is out of range
[  777.429610][T18566] netlink: zone id is out of range
[  777.437809][T18566] netlink: zone id is out of range
[  777.444531][T18566] netlink: zone id is out of range
[  777.453548][T18566] netlink: zone id is out of range
[  777.888866][T18569] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2558'.
[  778.849094][T18590] futex_wake_op: syz.1.2562 tries to shift op by -2048; fix this program
[  781.861290][ T8188] Bluetooth: hci1: unexpected event 0x10 length: 124 > 1
[  781.863785][ T8188] Bluetooth: hci1: hardware error 0x00
[  781.958751][T15279] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5
[  783.925415][ T8188] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  784.348005][T18662] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2579'.
[  785.955857][T18693] netlink: 336 bytes leftover after parsing attributes in process `syz.1.2585'.
[  788.185277][T18719] net_ratelimit: 218 callbacks suppressed
[  788.185304][T18719] netlink: zone id is out of range
[  788.210315][T18719] netlink: zone id is out of range
[  788.222873][T18719] netlink: zone id is out of range
[  788.240167][T18719] netlink: zone id is out of range
[  788.269959][T18719] netlink: zone id is out of range
[  788.289802][T18719] netlink: zone id is out of range
[  788.311169][T18719] netlink: zone id is out of range
[  788.341379][T18719] netlink: zone id is out of range
[  788.364208][T18719] netlink: zone id is out of range
[  788.391116][T18719] netlink: zone id is out of range
[  790.653617][T18737] NFSD: Failed to start, no listeners configured.
[  796.538437][T15279] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  796.554372][T15279] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  796.566631][T15279] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  796.602266][T15279] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  796.610328][T15279] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  798.314518][T18843] bridge0: port 1(bridge_slave_0) entered blocking state
[  798.332045][T18843] bridge0: port 1(bridge_slave_0) entered disabled state
[  798.345649][T18843] bridge_slave_0: entered allmulticast mode
[  798.361287][T18843] bridge_slave_0: entered promiscuous mode
[  798.461483][T18843] bridge0: port 2(bridge_slave_1) entered blocking state
[  798.503323][T18843] bridge0: port 2(bridge_slave_1) entered disabled state
[  798.522203][T18843] bridge_slave_1: entered allmulticast mode
[  798.553860][T18843] bridge_slave_1: entered promiscuous mode
[  798.640887][T15279] Bluetooth: hci7: command tx timeout
[  798.685488][T18891] netlink: 'syz.0.2626': attribute type 1 has an invalid length.
[  798.695933][T18843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  798.843713][T18843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  799.166386][T18843] team0: Port device team_slave_0 added
[  799.201844][T18843] team0: Port device team_slave_1 added
[  799.296572][T18843] batman_adv: batadv0: Adding interface: batadv_slave_0
[  799.322932][T18843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  799.430141][T18843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  799.471847][T18843] batman_adv: batadv0: Adding interface: batadv_slave_1
[  799.500004][T18843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  799.575558][T18843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  799.703482][T18843] hsr_slave_0: entered promiscuous mode
[  799.730114][T18843] hsr_slave_1: entered promiscuous mode
[  799.746954][T18843] debugfs: 'hsr0' already exists in 'hsr'
[  799.762453][T18843] Cannot create hsr debugfs directory
[  800.315087][T15279] Bluetooth: hci4: command 0x0406 tx timeout
[  800.709072][ T8188] Bluetooth: hci7: command tx timeout
[  801.252681][T18941] Process accounting resumed
[  802.466617][T18972] net_ratelimit: 47 callbacks suppressed
[  802.466635][T18972] netlink: zone id is out of range
[  802.507627][T18972] netlink: zone id is out of range
[  802.539788][T18972] netlink: zone id is out of range
[  802.565283][T18972] netlink: zone id is out of range
[  802.603683][T18972] netlink: zone id is out of range
[  802.626542][T18972] netlink: zone id is out of range
[  802.651384][T18972] netlink: zone id is out of range
[  802.667148][T18972] netlink: zone id is out of range
[  802.675777][T18972] netlink: zone id is out of range
[  802.686502][T18972] netlink: zone id is out of range
[  802.777850][ T8188] Bluetooth: hci7: command tx timeout
[  802.969576][T18985] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2646'.
[  804.846708][ T8188] Bluetooth: hci7: command tx timeout
[  808.431713][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  808.440228][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  809.651560][T19142] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2684'.
[  810.142583][T19151] net_ratelimit: 47 callbacks suppressed
[  810.142603][T19151] netlink: zone id is out of range
[  810.166233][T19151] netlink: zone id is out of range
[  810.180851][T19151] netlink: zone id is out of range
[  810.197137][T19151] netlink: zone id is out of range
[  810.228296][T19151] netlink: zone id is out of range
[  810.245081][T19151] netlink: zone id is out of range
[  810.270975][T19151] netlink: zone id is out of range
[  810.291242][T19151] netlink: zone id is out of range
[  810.319276][T19151] netlink: zone id is out of range
[  810.347231][T19151] netlink: zone id is out of range
[  810.810834][T19164] sctp: [Deprecated]: syz.1.2689 (pid 19164) Use of int in maxseg socket option.
[  810.810834][T19164] Use struct sctp_assoc_value instead
[  810.880463][T19162] Process accounting resumed
[  813.910002][T19228] netlink: 'syz.0.2702': attribute type 22 has an invalid length.
[  813.919151][T19228] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2702'.
[  818.256734][T19333] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2727'.
[  819.051595][T19356] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2733'.
[  819.192441][   T30] audit: type=1800 audit(2147487895.773:22): pid=19359 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2734" name="SYSV00000007" dev="hugetlbfs" ino=0 res=0 errno=0
[  823.191375][T15279] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  823.207722][T15279] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  823.217661][T15279] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  823.231589][T15279] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  823.244914][T15279] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  824.535124][T19439] can: request_module (can-proto-5) failed.
[  825.293661][ T8188] Bluetooth: hci8: command tx timeout
[  825.561642][T19417] bridge0: port 1(bridge_slave_0) entered blocking state
[  825.584652][T19417] bridge0: port 1(bridge_slave_0) entered disabled state
[  825.604795][T19417] bridge_slave_0: entered allmulticast mode
[  825.627287][T19417] bridge_slave_0: entered promiscuous mode
[  825.644376][T19417] bridge0: port 2(bridge_slave_1) entered blocking state
[  825.663199][T19475] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2756'.
[  825.676885][T19417] bridge0: port 2(bridge_slave_1) entered disabled state
[  825.693877][T19417] bridge_slave_1: entered allmulticast mode
[  825.712411][T19417] bridge_slave_1: entered promiscuous mode
[  825.757452][T19417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  825.774312][ T8188] Bluetooth: hci2: command 0x0406 tx timeout
[  825.817416][T19417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  825.885058][T19417] team0: Port device team_slave_0 added
[  825.905535][T19417] team0: Port device team_slave_1 added
[  825.969932][T19417] batman_adv: batadv0: Adding interface: batadv_slave_0
[  825.986973][T19417] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  826.047496][T19417] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  826.085277][T19417] batman_adv: batadv0: Adding interface: batadv_slave_1
[  826.100105][T19417] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  826.162489][T19417] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  826.265089][T19417] hsr_slave_0: entered promiscuous mode
[  826.278227][T19417] hsr_slave_1: entered promiscuous mode
[  826.292594][T19417] debugfs: 'hsr0' already exists in 'hsr'
[  826.305508][T19417] Cannot create hsr debugfs directory
[  826.607019][T19486] futex_wake_op: syz.1.2759 tries to shift op by -2048; fix this program
[  826.646286][T19486] futex_wake_op: syz.1.2759 tries to shift op by -2048; fix this program
[  827.357684][T15279] Bluetooth: hci8: command tx timeout
[  827.440947][T19513] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2765'.
[  827.544358][T19513] hsr_slave_0 (unregistering): left promiscuous mode
[  829.426179][T15279] Bluetooth: hci8: command tx timeout
[  831.493739][T15279] Bluetooth: hci8: command tx timeout
[  831.641104][T19587] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2782'.
[  831.689266][T19587] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2782'.
[  832.815386][T19596] cifs: Unknown parameter '�����)�	Up��̢{��V]7�62']�Ψ��!�g�ʮ�7�9��fM�<*y�sE�h�
�'
[  842.085920][T19739] can: request_module (can-proto-5) failed.
[  842.886946][T15279] Bluetooth: hci3: unexpected subevent 0x03 length: 253 > 9
[  843.406850][T19775] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2820'.
[  843.582065][T15279] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  843.589780][T15279] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff
[  845.335543][   T31] INFO: task syz-executor:16921 blocked for more than 143 seconds.
[  845.360220][   T31]       Tainted: G             L      syzkaller #0
[  845.389723][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  845.431666][   T31] task:syz-executor    state:D stack:23880 pid:16921 tgid:16921 ppid:1      task_flags:0x480140 flags:0x00080002
[  845.500207][   T31] Call Trace:
[  845.516888][   T31]  <TASK>
[  845.535679][   T31]  __schedule+0x1295/0x67a0
[  845.561395][   T31]  ? __pfx___schedule+0x10/0x10
[  845.582264][   T31]  ? find_held_lock+0x2b/0x80
[  845.598464][   T31]  ? schedule+0x2bf/0x390
[  845.613816][   T31]  schedule+0xdd/0x390
[  845.626812][   T31]  schedule_timeout+0x1b2/0x280
[  845.644340][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  845.664348][   T31]  __wait_for_common+0x2e7/0x4c0
[  845.680269][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  845.699981][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  845.717986][   T31]  remove_one+0x312/0x420
[  845.734045][   T31]  ? find_next_child+0x18f/0x280
[  845.751705][   T31]  __simple_recursive_removal+0x148/0x5c0
[  845.773252][   T31]  ? __pfx_remove_one+0x10/0x10
[  845.789818][   T31]  debugfs_remove+0x5d/0x80
[  845.799952][   T31]  nsim_drv_remove+0xd2/0x1e0
[  845.809860][   T31]  ? __pfx_nsim_bus_remove+0x10/0x10
[  845.824138][   T31]  device_remove+0xcb/0x180
[  845.836391][   T31]  device_release_driver_internal+0x44e/0x620
[  845.849862][   T31]  bus_remove_device+0x2bc/0x560
[  845.863203][   T31]  ? __pfx_bus_remove_device+0x10/0x10
[  845.876796][   T31]  ? __pfx_device_remove_attrs+0x10/0x10
[  845.889604][   T31]  device_del+0x376/0x9b0
[  845.901904][   T31]  ? __pfx_device_del+0x10/0x10
[  845.915109][   T31]  ? __lock_acquire+0x4a5/0x2630
[  845.927028][   T31]  device_unregister+0x1d/0xe0
[  845.937005][   T31]  del_device_store+0x346/0x480
[  845.947961][   T31]  ? __pfx_del_device_store+0x10/0x10
[  845.964441][   T31]  ? find_held_lock+0x2b/0x80
[  845.978330][   T31]  ? sysfs_file_kobj+0xe4/0x290
[  845.989762][   T31]  ? sysfs_file_kobj+0xe4/0x290
[  846.002107][   T31]  ? __pfx_del_device_store+0x10/0x10
[  846.014564][   T31]  bus_attr_store+0x74/0xb0
[  846.024915][   T31]  ? __pfx_bus_attr_store+0x10/0x10
[  846.035846][   T31]  sysfs_kf_write+0xf2/0x150
[  846.046275][   T31]  kernfs_fop_write_iter+0x3e0/0x5f0
[  846.058394][   T31]  ? __pfx_sysfs_kf_write+0x10/0x10
[  846.072548][   T31]  vfs_write+0x6ac/0x1070
[  846.083080][   T31]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  846.096551][   T31]  ? __pfx_vfs_write+0x10/0x10
[  846.107972][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  846.121537][   T31]  ksys_write+0x12a/0x250
[  846.132076][   T31]  ? __pfx_ksys_write+0x10/0x10
[  846.143085][   T31]  ? rcu_is_watching+0x12/0xc0
[  846.154206][   T31]  do_syscall_64+0x115/0x840
[  846.167250][   T31]  ? clear_bhb_loop+0x40/0x90
[  846.177798][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  846.192625][   T31] RIP: 0033:0x7fe95a95d68e
[  846.203111][   T31] RSP: 002b:00007ffd2022ad18 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  846.223802][   T31] RAX: ffffffffffffffda RBX: 000055556340c500 RCX: 00007fe95a95d68e
[  846.241801][   T31] RDX: 0000000000000001 RSI: 00007ffd2022ada0 RDI: 0000000000000005
[  846.261995][   T31] RBP: 00007fe95aa335f2 R08: 0000000000000000 R09: 0000000000000000
[  846.281643][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  846.306037][   T31] R13: 00007ffd2022ada0 R14: 00007fe95b744620 R15: 0000000000000003
[  846.323431][   T31]  </TASK>
[  846.335814][   T31] INFO: task syz.2.2254:17067 blocked for more than 144 seconds.
[  846.379503][   T31]       Tainted: G             L      syzkaller #0
[  846.401730][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  846.429492][   T31] task:syz.2.2254      state:D stack:25928 pid:17067 tgid:17063 ppid:5633   task_flags:0x400140 flags:0x00080002
[  846.459373][   T31] Call Trace:
[  846.467303][   T31]  <TASK>
[  846.475607][   T31]  __schedule+0x1295/0x67a0
[  846.486233][   T31]  ? lockdep_hardirqs_on+0x78/0x100
[  846.495443][   T31]  ? __pfx___schedule+0x10/0x10
[  846.500882][   T31]  ? find_held_lock+0x2b/0x80
[  846.506492][   T31]  ? schedule+0x2bf/0x390
[  846.513134][   T31]  schedule+0xdd/0x390
[  846.517340][   T31]  schedule_preempt_disabled+0x13/0x30
[  846.523871][   T31]  __mutex_lock+0xced/0x1b10
[  846.530917][   T31]  ? nsim_bus_dev_max_vfs_write+0x206/0x410
[  846.537930][   T31]  ? _kstrtoull+0x13c/0x1f0
[  846.542653][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  846.549334][   T31]  ? __pfx_kstrtouint+0x10/0x10
[  846.554730][   T31]  ? nsim_bus_dev_max_vfs_write+0x206/0x410
[  846.561466][   T31]  nsim_bus_dev_max_vfs_write+0x206/0x410
[  846.567969][   T31]  ? __pfx_nsim_bus_dev_max_vfs_write+0x10/0x10
[  846.575881][   T31]  ? __debugfs_file_get+0x1fc/0x860
[  846.582179][   T31]  full_proxy_write+0x135/0x1a0
[  846.587295][   T31]  vfs_write+0x2aa/0x1070
[  846.592205][   T31]  ? __pfx_full_proxy_write+0x10/0x10
[  846.598236][   T31]  ? __pfx_vfs_write+0x10/0x10
[  846.603276][   T31]  ? __fget_files+0x215/0x3d0
[  846.609707][   T31]  ? __fget_files+0x21f/0x3d0
[  846.614516][   T31]  ksys_write+0x12a/0x250
[  846.620324][   T31]  ? __pfx_ksys_write+0x10/0x10
[  846.625264][   T31]  ? rcu_is_watching+0x12/0xc0
[  846.630766][   T31]  do_syscall_64+0x115/0x840
[  846.635464][   T31]  ? clear_bhb_loop+0x40/0x90
[  846.640553][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  846.646574][   T31] RIP: 0033:0x7fa5d3f9ce59
[  846.651923][   T31] RSP: 002b:00007fa5d4d97028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  846.662348][   T31] RAX: ffffffffffffffda RBX: 00007fa5d4216090 RCX: 00007fa5d3f9ce59
[  846.671266][   T31] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000004
[  846.681247][   T31] RBP: 00007fa5d4032d6f R08: 0000000000000000 R09: 0000000000000000
[  846.690825][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  846.699358][   T31] R13: 00007fa5d4216128 R14: 00007fa5d4216090 R15: 00007ffdde050f48
[  846.707975][   T31]  </TASK>
[  846.711259][   T31] 
[  846.711259][   T31] Showing all locks held in the system:
[  846.750505][   T31] 1 lock held by khungtaskd/31:
[  846.757334][   T31]  #0: ffffffff8e7e53e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[  846.769806][   T31] 2 locks held by getty/9057:
[  846.775862][   T31]  #0: ffff888036e710a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  846.786704][   T31]  #1: ffffc900058c32e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x14f0
[  846.797638][   T31] 5 locks held by kworker/u10:40/9869:
[  846.803551][   T31]  #0: ffff88801c6a6140 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[  846.815018][   T31]  #1: ffffc90004dbfd08 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[  846.825367][   T31]  #2: ffffffff905ece88 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xb8/0x920
[  846.837288][   T31]  #3: ffffffff90605be0 (rtnl_mutex){+.+.}-{4:4}, at: default_device_exit_batch+0x90/0xc10
[  846.848459][   T31]  #4: ffffffff8e7f0f28 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x27f/0x3c0
[  846.858915][   T31] 7 locks held by syz-executor/16921:
[  846.864481][   T31]  #0: ffff8880363a8410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  846.874581][   T31]  #1: ffff88807a5cb480 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  846.887409][   T31]  #2: ffff88802987dd28 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  846.898464][   T31]  #3: ffffffff8fb87740 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  846.909326][   T31]  #4: ffff88802d9f3128 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xb2/0x620
[  846.920641][   T31]  #5: ffff88802d9f2258 (&devlink->lock_key){+.+.}-{4:4}, at: nsim_drv_remove+0x4a/0x1e0
[  846.931437][   T31]  #6: ffff888076a3d480 (&sb->s_type->i_mutex_key#9/2){+.+.}-{4:4}, at: __simple_recursive_removal+0xe0/0x5c0
[  846.945028][   T31] 3 locks held by syz.2.2254/17067:
[  846.952294][   T31]  #0: ffff88801db580f0 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2aa/0x380
[  846.962013][   T31]  #1: ffff8880202c8410 (sb_writers#8){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  846.971855][   T31]  #2: ffff88802d9f2258 (&devlink->lock_key){+.+.}-{4:4}, at: nsim_bus_dev_max_vfs_write+0x206/0x410
[  846.984829][   T31] 4 locks held by syz-executor/17320:
[  846.990972][   T31]  #0: ffff8880363a8410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  847.001707][   T31]  #1: ffff88805b06b480 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  847.012443][   T31]  #2: ffff88802987dd28 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  847.023328][   T31]  #3: ffffffff8fb87740 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  847.034774][   T31] 4 locks held by syz-executor/17857:
[  847.040831][   T31]  #0: ffff8880363a8410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  847.050545][   T31]  #1: ffff8880365ec480 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  847.062053][   T31]  #2: ffff88802987dd28 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  847.072806][   T31]  #3: ffffffff8fb87740 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  847.085968][   T31] 4 locks held by syz-executor/18284:
[  847.091530][   T31]  #0: ffff8880363a8410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  847.101252][   T31]  #1: ffff88806b9ed880 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  847.112913][   T31]  #2: ffff88802987dd28 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  847.123366][   T31]  #3: ffffffff8fb87740 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  847.134287][   T31] 4 locks held by syz-executor/18843:
[  847.140114][   T31]  #0: ffff8880363a8410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  847.149774][   T31]  #1: ffff88807ce81080 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  847.160298][   T31]  #2: ffff88802987dd28 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  847.173095][   T31]  #3: ffffffff8fb87740 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  847.185594][   T31] 4 locks held by syz-executor/19417:
[  847.191244][   T31]  #0: ffff8880363a8410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  847.200869][   T31]  #1: ffff888084ea0080 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  847.211429][   T31]  #2: ffff88802987dd28 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  847.223511][   T31]  #3: ffffffff8fb87740 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  847.249950][   T31] 
[  847.252490][   T31] =============================================
[  847.252490][   T31] 
[  847.277708][   T31] NMI backtrace for cpu 0
[  847.277729][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  847.277756][   T31] Tainted: [L]=SOFTLOCKUP
[  847.277763][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  847.277773][   T31] Call Trace:
[  847.277779][   T31]  <TASK>
[  847.277787][   T31]  dump_stack_lvl+0x100/0x190
[  847.277823][   T31]  nmi_cpu_backtrace.cold+0x12d/0x151
[  847.277844][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  847.277863][   T31]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[  847.277887][   T31]  sys_info+0x141/0x190
[  847.277902][   T31]  watchdog+0xcb1/0x1030
[  847.277932][   T31]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  847.277957][   T31]  ? __pfx_watchdog+0x10/0x10
[  847.277983][   T31]  ? __kthread_parkme+0x18c/0x230
[  847.278015][   T31]  ? kthread+0x13a/0x450
[  847.278041][   T31]  ? __pfx_watchdog+0x10/0x10
[  847.278065][   T31]  kthread+0x370/0x450
[  847.278091][   T31]  ? __pfx_kthread+0x10/0x10
[  847.278120][   T31]  ret_from_fork+0x72b/0xd50
[  847.278140][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  847.278160][   T31]  ? __switch_to+0x800/0x1100
[  847.278184][   T31]  ? __switch_to_asm+0x39/0x70
[  847.278207][   T31]  ? __pfx_kthread+0x10/0x10
[  847.278235][   T31]  ret_from_fork_asm+0x1a/0x30
[  847.278268][   T31]  </TASK>
[  847.442214][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  847.449133][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  847.459835][   T31] Tainted: [L]=SOFTLOCKUP
[  847.464181][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  847.474342][   T31] Call Trace:
[  847.477645][   T31]  <TASK>
[  847.480618][   T31]  dump_stack_lvl+0x100/0x190
[  847.485317][   T31]  vpanic+0x552/0x970
[  847.489500][   T31]  ? __pfx_vpanic+0x10/0x10
[  847.494209][   T31]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[  847.500606][   T31]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[  847.507013][   T31]  panic+0xd1/0xe0
[  847.511036][   T31]  ? __pfx_panic+0x10/0x10
[  847.515554][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[  847.521806][   T31]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[  847.528153][   T31]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[  847.534477][   T31]  ? watchdog.cold+0x1ec/0x234
[  847.539361][   T31]  ? watchdog+0xcc1/0x1030
[  847.543806][   T31]  watchdog.cold+0x1fd/0x234
[  847.548530][   T31]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  847.554430][   T31]  ? __pfx_watchdog+0x10/0x10
[  847.559192][   T31]  ? __kthread_parkme+0x18c/0x230
[  847.564448][   T31]  ? kthread+0x13a/0x450
[  847.568906][   T31]  ? __pfx_watchdog+0x10/0x10
[  847.573600][   T31]  kthread+0x370/0x450
[  847.577949][   T31]  ? __pfx_kthread+0x10/0x10
[  847.582553][   T31]  ret_from_fork+0x72b/0xd50
[  847.587145][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  847.592521][   T31]  ? __switch_to+0x800/0x1100
[  847.597297][   T31]  ? __switch_to_asm+0x39/0x70
[  847.602170][   T31]  ? __pfx_kthread+0x10/0x10
[  847.607629][   T31]  ret_from_fork_asm+0x1a/0x30
[  847.612615][   T31]  </TASK>
[  847.615818][   T31] Kernel Offset: disabled
[  847.620344][   T31] Rebooting in 86400 seconds..