last executing test programs:

7m9.141052685s ago: executing program 0 (id=1498):
r0 = openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/ns/cgroup\x00', 0x8000, 0x0)
r1 = ioctl$auto_NS_GET_TGID_FROM_PIDNS(r0, 0x8004b707, &(0x7f0000000040)=0x3ff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), 0xffffffffffffffff)
r5 = socket(0xa, 0x2, 0x73)
sendto$auto(r5, 0x0, 0x402, 0x0, &(0x7f0000000100)=@generic={0xa, "e2e18340cba8fe80000000003f00"}, 0x1c)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000300)=ANY=[@ANYBLOB="0239f010a99b83ba6dce76cc0dd2000000", @ANYRES16=r4, @ANYBLOB="01002abd7000fedbdf25010000000c00060010000000000000000800010000000000"], 0x28}, 0x1, 0x0, 0x0, 0x51}, 0x0)
r6 = open(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', 0x181080, 0x18)
open_by_handle_at$auto(r6, &(0x7f0000000140)={0x8, 0x30001, "b190a905237d4b53"}, 0x42)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r1, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="c7849e41", @ANYRES16=r4, @ANYBLOB="00042bbd7000fddbdf2501000000050011000800000005001a000600000008001d00", @ANYRES32=r6, @ANYBLOB="0500120010000000050011000200000005002900000000006101198029dcb13e91626b6f627e4659e880fca8bb42def80cb026192fecf21a50b8da3d544d5008e6aa38fae3dbf7a7f8400e60ab27ae00317c8be52cf44779f491f4e1c4704fbb5e55126ec805bae90b746ffdd5073a0d80c98f1fba6f316bb3652e32dee181810d110f5afce7a9187ef19dbbd3d96eaf9a442531331da71205a3d0469d8b1f5f66e77988902472e162cde1d0580d890878410035006fc1a6d03e5e55117fdec40338d31768308c04bef82be9f5e3f131957f9e6fa172a07afc3ec8e6ab8b4deb49d5d07ccb79befb5da0b22cb1f3cf1b5ac00000008400c780aef0aa3104b69e05f30ad7266d4b4e296aacd288a2f8034c5a770b82952cb13f038009667b9ac7c0780667fcfeab17530ff852acfcbe612cfbab7774ae3df34f799d4cb89bffb376812621809616f291e5845abf028ea6fb7b14f6de8bfc36ffff4e1956ec2c2ace7c48b0e445f3ef289fb90d617df439e8eeb130d41f223cbf000000"], 0x1a8}, 0x1, 0x0, 0x0, 0x8c0}, 0x80)
r7 = epoll_create$auto(0x3e)
epoll_ctl$auto(r7, 0x1, r2, 0x0)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
close_range$auto(0x0, 0xffffeffe, 0x2)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
unshare$auto(0x20000080)
ioctl$auto_AUTOFS_IOC_FAIL(0xffffffffffffffff, 0x9361, 0x0)
syz_clone3(&(0x7f0000000380)={0x2c022000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)

7m8.961876792s ago: executing program 0 (id=1500):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/zram0/disksize\x00', 0x2202, 0x0) (async)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
write$auto(r0, 0x0, 0x41000008004) (async)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nlctrl(0x0, r1) (async)
iopl$auto(0x3) (async)
clone$auto(0x21002, 0xfffffffffffffffb, 0xfffffffffffffffe, 0xfffffffffffffffd, 0xff) (async)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0)
read$auto(r2, 0x0, 0x7)
ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, &(0x7f0000000f80)=[{0x3ff, 0x3, 0xfffffffffffffefa}, {0x805, 0x5, 0x2}, {0x7, 0x0, 0x2}]) (async)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) (async)
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) (async)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async)
ioctl$auto_SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f0000000080)={0x8000, r4, 0x9, "123e084abf48cdf74cb52fe1f7072a50"}) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_STATUS(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x1c, r6, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x40) (async, rerun: 64)
ioctl$auto_X86_IOC_RDMSR_REGS(0xffffffffffffffff, 0xc02063a0, &(0x7f0000000080)=[0x3, 0x0, 0xffff, 0x35, 0x2, 0x6, 0xd, 0x6902351d]) (rerun: 64)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0xa0001, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000800), r7)
sendmsg$auto_NBD_CMD_CONNECT(r7, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000840)={0x14, r8, 0x1, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4040}, 0x4800)
write$auto(0x3, 0x0, 0xfffffdef)

7m8.768935977s ago: executing program 0 (id=1501):
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
socket(0x2b, 0x1, 0x1)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/dummy_hcd.3/usb4/4-0:1.0/bNumEndpoints\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
munmap$auto(0x1, 0x9)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x3c, r2, 0x1b, 0x70bc26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0xb, 0x0, 0x0, @fd=r1}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)

7m7.931104041s ago: executing program 0 (id=1504):
socket(0xa, 0x3, 0xff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "00000000f5ffffffffffffff00"}, 0x55)
semctl$auto(0x7, 0x2, 0x13, 0x1)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x5dc}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

7m7.232332253s ago: executing program 0 (id=1508):
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x2, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x284000, 0x0)
mmap$auto(0x4003, 0x202000d, 0x3, 0xeb1, r0, 0x3)

7m7.012457283s ago: executing program 0 (id=1509):
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x91ec, 0x27}, 0x9, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x100000000000001c, 0x280000000000, 0x63, 0x0, 0x0, 0x0, 0x2, 0x4, 0x80000008041000a, 0x40000402, 0x10000, 0x8, 0xffffffff80000000, 0xe0, 0x6, 0x240000100103}) (async)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) (async)
r0 = socket(0x10, 0x2, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ram4\x00', 0x80, 0x0)
ioctl$auto_BLKSECDISCARD(r1, 0x127d, 0x0) (async)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async)
ioctl$auto(0x3, 0x400454ca, 0x38)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socket(0xa, 0x2, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
io_uring_setup$auto(0x6, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r2 = socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) (async)
sendmsg$auto(r2, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
ioctl$auto__dev_ioctl_fops_dev_ioctl(0xffffffffffffffff, 0x19300, 0x0)

6m51.821449285s ago: executing program 32 (id=1509):
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x91ec, 0x27}, 0x9, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x100000000000001c, 0x280000000000, 0x63, 0x0, 0x0, 0x0, 0x2, 0x4, 0x80000008041000a, 0x40000402, 0x10000, 0x8, 0xffffffff80000000, 0xe0, 0x6, 0x240000100103}) (async)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) (async)
r0 = socket(0x10, 0x2, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ram4\x00', 0x80, 0x0)
ioctl$auto_BLKSECDISCARD(r1, 0x127d, 0x0) (async)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async)
ioctl$auto(0x3, 0x400454ca, 0x38)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socket(0xa, 0x2, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
io_uring_setup$auto(0x6, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r2 = socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) (async)
sendmsg$auto(r2, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
ioctl$auto__dev_ioctl_fops_dev_ioctl(0xffffffffffffffff, 0x19300, 0x0)

6m22.128622146s ago: executing program 4 (id=1675):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/transparent_hugepage/hugepages-1024kB/stats/anon_fault_fallback\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000003800)=""/168, 0xa8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/neigh/wg1/retrans_time\x00', 0x82, 0x0)
write$auto(r1, &(0x7f0000000040)='\xd9\xc8f\xc4\xe6', 0x80)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume_offset\x00', 0xa081, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x0)
r2 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b)
read$auto(r2, 0x0, 0x1)
write$auto(0x3, 0x0, 0xffd8)
r3 = socket(0x2c, 0x3, 0x0)
getsockopt$auto(r3, 0x11b, 0x20100007, 0x0, 0x0)

6m21.751611019s ago: executing program 4 (id=1677):
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(r1, 0x7ab, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x24, r0, 0x13, 0x70bd2e, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r3}, @NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4c0d4}, 0x20040894)

6m21.596022462s ago: executing program 4 (id=1679):
r0 = openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, 0x0, 0x90802, 0x0)
io_uring_register$auto_IORING_REGISTER_FILES_UPDATE2(r0, 0xe, 0x0, 0x1)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r1, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f00000001c0)={0x30, r2, 0x1, 0x703d25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="000000fd"]}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x8880)

6m21.408889084s ago: executing program 4 (id=1681):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/dev/cdrom/autoclose\x00', 0x2002, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', &(0x7f0000000140)='nfsd\x00', 0x10000, 0x0)
mmap$auto(0x0, 0xf, 0x3, 0xeb1, 0xffffffffffffffff, 0x10000000008000)
unshare$auto(0x40000080)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_MEDIA_GET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)={0x20, r2, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @pid}]}]}, 0x20}, 0x1, 0x2000000, 0x0, 0x20010}, 0x20040880)
r3 = open(&(0x7f0000000200)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06\x00', 0x0, 0x6f)
getdents64$auto(r3, 0x0, 0x18)
r4 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0)
r5 = accept4$auto(r4, &(0x7f0000000080)=@rc={0x1f, @any, 0x1}, &(0x7f00000000c0)=0x6, 0xb)
write$auto_trace_options_fops_trace(r5, &(0x7f0000000100)="fd054021505a3296363ec261f13baccae3e8bfd076719ff9dad77585398624eb9f98f173e50a2e0002cf67023921316a0cf6571f868cff4e7d2d6c9f80", 0x3d)
bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, 0x21ea, 0x7ff, 0x3, 0x0, 0x80000001, r4}, 0x6f4)
r6 = openat$auto_clk_dump_fops_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/clk/clk_dump\x00', 0x100, 0x0)
sendfile$auto(r6, r0, 0x0, 0x1)

6m20.840069568s ago: executing program 4 (id=1682):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/firmware/acpi/interrupts/gpe09\x00', 0x180a02, 0x0)
sendfile$auto(0x2, 0x3, 0x0, 0x58f)
close_range$auto(0x2, 0x8, 0x0)
userfaultfd$auto(0x1)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x64001, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae90, &(0x7f0000000140)={0x6})
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0)
preadv$auto(r2, &(0x7f00000002c0)={0x0, 0x8010000}, 0x5, 0xfb, 0x8100000001)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/link_device\x00', 0x199002, 0x0)
sendfile$auto(r3, r3, 0x0, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/firmware/acpi/interrupts/gpe09\x00', 0x180a02, 0x0) (async)
sendfile$auto(0x2, 0x3, 0x0, 0x58f) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
userfaultfd$auto(0x1) (async)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x64001, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0xae41, r1) (async)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae90, &(0x7f0000000140)={0x6}) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0) (async)
preadv$auto(r2, &(0x7f00000002c0)={0x0, 0x8010000}, 0x5, 0xfb, 0x8100000001) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/link_device\x00', 0x199002, 0x0) (async)
sendfile$auto(r3, r3, 0x0, 0x3) (async)

6m20.559185315s ago: executing program 4 (id=1685):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
setfsgid$auto(0xffffffffffffffff)
r0 = socket(0x23, 0x80805, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
poll$auto(&(0x7f0000000000)={<r1=>r0, 0x1, 0x8}, 0x5, 0x400)
setsockopt$auto(r1, 0x113, 0x3, 0x0, 0x79ad226b)
socket$nl_generic(0x10, 0x3, 0x10)
getsid$auto(0x0)

6m5.497036768s ago: executing program 33 (id=1685):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
setfsgid$auto(0xffffffffffffffff)
r0 = socket(0x23, 0x80805, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
poll$auto(&(0x7f0000000000)={<r1=>r0, 0x1, 0x8}, 0x5, 0x400)
setsockopt$auto(r1, 0x113, 0x3, 0x0, 0x79ad226b)
socket$nl_generic(0x10, 0x3, 0x10)
getsid$auto(0x0)

7.749056977s ago: executing program 3 (id=3431):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0x80000e9e, 0x1, 0xd, 0xfffffffffffffffb, 0x100000000, 0x2c2, 0x800002017d, 0x4, 0x40, 0xd, 0xd59, 0xfb, 0xff, 0x21, 0x100000005]}, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x40006, 0x22, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
r0 = open(0x0, 0x161340, 0x130)
statx$auto(r0, 0x0, 0x3003, 0xda97, 0x0)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810)
unshare$auto(0x40000080)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000001200)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x19U\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x81\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xecWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\xfbJ7\xd1\xdc\xe1\x80yi\xef\x91M\xfbB\x97\x80\x9a\xbep\x86\x93\xcc4\xe5\xba\x015I\x1d\r\xdf\xc1Q\x8eM\xa6\t$\xb7ZR\xdcs\x94\xccn\x05\xb8\x06', 0x500000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
madvise$auto(0x1afd, 0x7fffffff, 0x4)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')

7.654706132s ago: executing program 5 (id=3432):
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/members\x00', 0x189002, 0x0)
socket(0x10, 0x2, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpu1/hotplug/fail\x00', 0x100, 0x0)
epoll_create$auto(0x8ca0d1a)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/jfs/loglevel\x00', 0x1a9701, 0x0)
r0 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000240), 0x303101, 0x0)
getsockopt$auto_SO_PEEK_OFF(r0, 0x8, 0x2a, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', &(0x7f00000001c0)=0x6)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/035/001\x00', 0x1102, 0x0)
ioctl$auto_USBDEVFS_ALLOC_STREAMS(r2, 0x8008551c, &(0x7f0000000180)=ANY=[@ANYBLOB="f3ec88ce6a851707"])
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r3)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
clock_gettime$auto(0x0, 0x0)
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0)
ioctl$auto(r4, 0xc040564a, r4)
ioctl$auto_FS_IOC_GETFSUUID(r2, 0x80111500, 0x5)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2})

7.387224871s ago: executing program 1 (id=3433):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = clone3$auto(&(0x7f0000000040)={0x43, 0x4, 0xa5e7, 0x10000, 0x1, 0x8000000000000000, 0x10, 0x5, 0xf, 0x1ff, 0x5185}, 0x1)
prctl$auto(0x3e, 0x1, r1, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x9, 0x2, 0xeb1, 0xfffffffffffffffa, 0xa000)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x123002, 0x0)
ioctl$auto_SNDCTL_DSP_GETBLKSIZE(r2, 0xc0045004, &(0x7f0000000000))
mmap$auto(0x0, 0x2020009, 0x3, 0xebf, 0xfffffffffffffffa, 0x80000001)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0xfffffffffffffffe, 0x240007, 0x17)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
open_tree$auto(0xffffffffffffff9c, 0x0, 0x6)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r4 = socketpair$auto(0x1d, 0x69480, 0x8000000000000000, 0x0)
ioctl$auto(r3, 0x4b72, r4)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
rseq$auto(&(0x7f0000000340)={0xe, 0x401, 0x0, 0x806, 0xffffffff, 0x2}, 0x8000, 0x0, 0x8000006)

6.502704314s ago: executing program 5 (id=3434):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
write$auto(r0, &(0x7f0000000280)='S\x00\x00\x00\xfe\xff\xff\xff\xdf\x9e\xf4\x14\xd2d2\xc4\x97\xde0\xb1\x85\xc6vHI\x8bMJ}\x8d\xc1\x94D\xdbSt/\xdd\xb5\fnW{\xb0^:\x80\xb5\xdd\x8d\x1e\x96\xdf\xcb\xac\xbfB\xb3\xba\x9a\x02\xeaZ\xb9Rg\"\x87\x9e\x9c\xb3\xac\x16\xa3g\xad\xf7<\xc5c\xfa2\x97,O\xb2\xe3\xad\xe0v\x13\x1dc\xf6\xa8\xce*\xee\xcdX\x1dM\xe3\x8cT\xc6\x1dj\xe8\xc1\xc0\x85cp\xad\v,O\xb8\x9b\xd8\xe0\x964/\x8fQ\xaf\x13\xd7\xf14\x85\xe8\x0f\'\xc4\xe3\x1c\x92\x85\x88\\\xb0', 0x808587)
select$auto(0x8, &(0x7f00000000c0)={[0xeeda, 0x7, 0x4, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x10001, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0xcd)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
r2 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000), 0x80b02, 0x0)
keyctl$auto(0x14, 0x0, 0xfffffffffffffffd, 0x0, 0x1)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/vmallocinfo\x00', 0x0, 0x0)
memfd_create$auto(&(0x7f0000000000)='!\x00', 0x16)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0x2cbd5d)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x3}, 0x2, &(0x7f0000000280), 0x7, 0xa505}, 0xc06}, 0xfffffffd, 0x8)
read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000180)=""/250, 0xfa)
mmap$auto(0x0, 0x400004, 0x3ff, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
read$auto(0xffffffffffffffff, 0x0, 0x39b8)
write$auto_vhci_fops_hci_vhci(r2, &(0x7f0000000100), 0x0)
mmap$auto(0x0, 0x810004, 0x2000000efb, 0x8000000008011, r1, 0x0)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="04002bbd7000fedbdf250200000016000a002f70726f632f766d616c6c6f63696e666f00000004000980e85ebbd8d23b4b07ec455f6b0d55bd136d3ae475a300711a552743d0f6ffdf8aa4cc81f96d558dd7dfb63693d8d26de6a5d3fe345038e79764de62c1b60f055d8a85621a2c8c92503dfe22f5cff980e63ee2cc9098230335f86143936ac3321f20e08d935b973e655f432c"], 0x30}, 0x1, 0x0, 0x0, 0x20040000}, 0x20040004)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/irq/12/effective_affinity\x00', 0x10b402, 0x0)
mmap$auto(0x0, 0x4, 0x1, 0x40eb1, 0x602, 0x300000000000)
socket(0xf, 0x801, 0x84)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x40f42, 0x0)
write$auto(r4, &(0x7f0000000180)='/L\xf2\x00', 0x80000000)
socket(0x21, 0x0, 0x0)
setitimer$auto_ITIMER_REAL(0x0, &(0x7f0000000040)={{0x1, 0x10001}, {0x7fffffffffffffff, 0x7}}, 0x0)
close_range$auto(0x2, 0x8, 0x0)

5.999103432s ago: executing program 3 (id=3436):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) (async)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
r2 = clone$auto(0x6, 0x4, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x5)
r3 = syz_clone(0x700, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r4) (async, rerun: 64)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) (rerun: 64)
getresgid$auto(0x0, 0x0, 0x0) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async, rerun: 32)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
sendmsg$auto_TASKSTATS_CMD_GET(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x34, r5, 0x8, 0x270bd27, 0x25dfdbfd, {}, [@TASKSTATS_CMD_ATTR_TGID={0x8, 0x2, r2}, @TASKSTATS_CMD_ATTR_TGID={0x8, 0x2, r3}, @TASKSTATS_CMD_ATTR_PID={0x8, 0x1, r2}, @TASKSTATS_CMD_ATTR_REGISTER_CPUMASK={0x5, 0x3, '&'}]}, 0x34}, 0x1, 0x0, 0x0, 0x4001}, 0x10)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) (rerun: 64)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0xae41, r6) (async)
r7 = accept4$auto(r0, &(0x7f0000000100)=@rc={0x1f, @any, 0x4}, &(0x7f0000000140)=0x8, 0x6)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r7, 0xc0285700, &(0x7f00000000c0)={0x1, "9f44f5947dbd0864d94f482632c0d06e215efcda9a35f8b5612199ff5e9245cd", @raw=0xba}) (async)
ioctl$auto_KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x40000021, 0x400, 0x9}]})

4.922889933s ago: executing program 3 (id=3437):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r0 = socket(0x2b, 0x1, 0x1)
socket(0x2c, 0x80003, 0x0)
setsockopt$auto(0x3, 0x11b, 0x2, 0xffffffffffffffff, 0x9)
getsockopt$auto(r0, 0x0, 0x80, 0x0, 0x0) (async)
getsockopt$auto(r0, 0x0, 0x80, 0x0, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) (async)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x5, 0x14, 0x944, 0x1ffe4, 0x3, 0x6, 0x4, 0x9, 0x400005, 0x4000fff, 0x8000007, 0x8001, 0xd, 0x5, 0x3, 0x4, 0x7, 0x20, 0x309, 0x8, 0x0, 0x7fffffff, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, [0x0, 0x0, 0x0, 0x4, 0x9, 0x0, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x4000000000000, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x800000000002, 0x9, 0x0, 0xbec, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x10, 0xfffffffffffffffe, 0xffffffffffffd059, 0x0, 0x0, 0x0, 0x2961]}, 0x1fb, 0x81)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NFSD_CMD_THREADS_GET(r1, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000001780)={0x14, 0x0, 0x4, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x44848}, 0x4000000)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000019c0), r1)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r1)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r1, &(0x7f0000002280)={0x0, 0x0, &(0x7f0000002240)={&(0x7f0000002080)={0x20, r2, 0x503, 0x70bd27, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x40) (async)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r1, &(0x7f0000002280)={0x0, 0x0, &(0x7f0000002240)={&(0x7f0000002080)={0x20, r2, 0x503, 0x70bd27, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), r3)
sendmsg$auto_L2TP_CMD_SESSION_GET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x24, r4, 0x1, 0x74bd2b, 0x25dfdbfc, {}, [@L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x1}, @L2TP_ATTR_CONN_ID={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x20000044)
munmap$auto(0x4, 0x2) (async)
munmap$auto(0x4, 0x2)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)={0x1a0, r4, 0x300, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @empty}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0xa3}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @mcast1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, 0x2}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x4}, @L2TP_ATTR_STATS={0x143, 0x1e, 0x0, 0x1, [@generic="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", @generic="aeae08c53093cb050567bee6f667cbbe65936fccca02340cb9c829116f05b9c24c247fd228ae1abf38dd", @typed={0xc, 0x102, 0x0, 0x0, @u64=0x1000}, @typed={0x4, 0xce}, @typed={0x6, 0x50, 0x0, 0x0, @str='^\x00'}]}, @L2TP_ATTR_DEBUG={0x8, 0x11, 0x4}]}, 0x1a0}, 0x1, 0x0, 0x0, 0x40}, 0x20000004) (async)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)={0x1a0, r4, 0x300, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @empty}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0xa3}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @mcast1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, 0x2}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x4}, @L2TP_ATTR_STATS={0x143, 0x1e, 0x0, 0x1, [@generic="09cba633282bffb2f7045464336779b93c95d6db5cc0f3af88041678c4564b3a03a0e50cf38c5df2c364c3df0756db0160d757b15447dbe52e2982851ae035f68eec6edd2db2cfddbf033a99ac19929afdb4362092c2b69843e739272d37358108649207e880a626aa06e6893fad95dfa1e8d722f2dbf8044f454f5d28c3eb53f8ad8a29c47c139ef0cd86593bd9a3d3451c0750d8b0dc7f0254c4ff76951bbb62fcb2e20fa7ccda52ddc1c78a6d2c1c8183bb05db48992b88101a265ed6caefcdc573e487246790fd62a3ae3aa8aca53b14de227ef90e6d9cc016f58c26cd2c8371a2cfedef192147842cd24b253ee718305d61d241b169c96f7294ff", @generic="aeae08c53093cb050567bee6f667cbbe65936fccca02340cb9c829116f05b9c24c247fd228ae1abf38dd", @typed={0xc, 0x102, 0x0, 0x0, @u64=0x1000}, @typed={0x4, 0xce}, @typed={0x6, 0x50, 0x0, 0x0, @str='^\x00'}]}, @L2TP_ATTR_DEBUG={0x8, 0x11, 0x4}]}, 0x1a0}, 0x1, 0x0, 0x0, 0x40}, 0x20000004)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/block/loop6/rqos/wbt/id\x00', 0x101a00, 0x0) (async)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/block/loop6/rqos/wbt/id\x00', 0x101a00, 0x0)
socket(0x2c, 0x3, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x6, 0xd, 0x8fd6, 0x948b, 0x4, 0xe, 0x100000000003, 0x3, 0x62, 0x80000001, 0x40000000000007, 0x1, 0x9, 0x3, 0xfffffffffffffffe]}, 0x0) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x6, 0xd, 0x8fd6, 0x948b, 0x4, 0xe, 0x100000000003, 0x3, 0x62, 0x80000001, 0x40000000000007, 0x1, 0x9, 0x3, 0xfffffffffffffffe]}, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r5 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x1f00, &(0x7f0000000100)={0x0, 0xfdef}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

4.661111888s ago: executing program 1 (id=3439):
r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x20904, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000000)={{0x3, 0x1002, 0xfffffffc, 0x5, 0x2}, "654c6dbc7a4d30983899a7e1325b6a29ba1e18441074052a3fa6c3ccf1bf00"})
readv$auto(r0, &(0x7f0000000a80)={0x0, 0x2}, 0x2)
mmap$auto(0x0, 0xf, 0x1000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1d, 0x800, 0x6)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x420080, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
mmap$auto(0x8, 0x3a02, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r1 = socket(0xf, 0xa, 0xf)
setsockopt$auto(r1, 0x1, 0xc, 0x0, 0x7fffffff)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
open(0x0, 0x22240, 0x154)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000200)=""/53, 0x35)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
keyctl$auto_KEYCTL_CAPABILITIES(0x1f, 0x3, 0x7, 0x7, 0xbe9)
r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r3, 0xaf01, 0x0)
r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_MEM_TABLE(r4, 0x4001af84, 0x0)
ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x0)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zram0\x00', 0xe0402, 0x0)

3.584732426s ago: executing program 1 (id=3441):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
pipe$auto(0x0)
socketpair$auto(0x2b, 0xf, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0xffffffffffffffff, 0x420009, 0xdf, 0xeb4, 0x401, 0x8100)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r1=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x80003, 0x300)
r2 = socket(0xa, 0xa, 0x5)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r1, 0x7f, 0x99, 0x8, 0x1, @relative_fd=r2, 0xd}, 0x92)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0xa)
sysfs$auto(0x2, 0x100000000000035, 0x0)
r3 = open(0x0, 0x261c2, 0x84)
bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, r3, 0x0, 0x3}, 0xd)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/seccomp/actions_logged\x00', 0x8202, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyr0\x00', 0x60540, 0x0)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/rdma_readwrite_threshold\x00', 0x48041, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0)
read$auto(r5, 0x0, 0x5)
write$auto(r4, 0x0, 0x2)
socket(0x2, 0x5, 0x80202)
socket$nl_generic(0x10, 0x3, 0x10)

3.472851054s ago: executing program 3 (id=3442):
r0 = openat$auto_nodes_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000000), 0x102, 0x0)
mmap$auto(0x8, 0x450, 0x5, 0x12, r0, 0x0)
socket(0x2, 0x80002, 0x73)
ioctl$auto(0xffffffffffffffff, 0x40045109, 0xffffffffffffffff)
connect$auto(0x3, &(0x7f0000000180)=@in={0x2, 0x4e20, @loopback}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r1, 0x84, 0x3, 0x0, 0x0)
r2 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408)
write$auto(r2, 0x0, 0xfffffdf1)
linkat$auto(r2, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000)
open(&(0x7f0000000040)='./file0\x00', 0x222000, 0x154)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000)
r3 = socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x200000, 0x0)
ioctl$auto_UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f00000000c0)={<r4=>0xffffffffffffffff, 0x80000001, 0x3763, 0x3ac3})
r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000140), r3)
sendmsg$auto_NL802154_CMD_ABORT_SCAN(r4, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r5, 0x20, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20006001}, 0x4001)
epoll_create1$auto(0xa413)

3.279537975s ago: executing program 1 (id=3443):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r0, 0x114, 0x2718, 0xfffffffffffffffc, 0x0) (async)
openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000040), 0x880, 0x0) (async)
socket(0x2, 0x1, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0xffbfff80, 0x4, 0x0, 0x26df8bac, 0x0) (async)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000) (async)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop7\x00', 0x26040, 0x0)
ioctl$auto_BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000240)={"ef65ce6c00cf81000000ffffffffffffff291d00", 0x3ff, 0x408, 0xffc, 0x400004, 0x200000000040000d})
ioctl$auto_BLKTRACETEARDOWN(r2, 0x1276, 0x0) (async, rerun: 32)
madvise$auto(0x0, 0x5, 0x15) (rerun: 32)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) (async, rerun: 64)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x8658) (rerun: 64)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
socket(0x10, 0x2, 0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/bpf_stats_enabled\x00', 0x163041, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r3, 0x0, 0x0) (async)
mmap$auto(0x0, 0x7fffffffffffffff, 0xdf, 0x16, 0x2, 0x0) (async)
mmap$auto(0xffffffffffffffff, 0x40009, 0xdf, 0x9b72, r2, 0x28000)
r4 = open(&(0x7f0000000080)='&&\x00', 0x595082, 0x0)
write$auto(r4, 0x0, 0xfffffdf1)
linkat$auto(r4, 0x0, 0xffffffffffffff9c, &(0x7f00000002c0)='&&\x00', 0x1000) (async, rerun: 32)
fsetxattr$auto(r4, &(0x7f0000000180)=':\xbf+<\x8a}\x00\xeb\xfa\xe6\x8d\x02\\VD\x04\x00\x00\x00*\x80\xa4\xf4vql\xa9\x05o\xf7\x9e\xfd\xf7\x00\x00\x00\x00H_/Z>n\xf5F\xbf\xd3\xefi\x91\x88\x1daIu7\xef!\xd0\x04\xdes\xfe`\xf5e;4\xbek\xf9\xec%\xbc\xd4\xfc`\xb9\n\xb5\xa5V\x98\x14]\x8a\x03\xd9', 0x0, 0x7bd, 0x1) (async, rerun: 32)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x880, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001100)='./cgroup.net/blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x3, 0x0)

3.164691453s ago: executing program 5 (id=3444):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/022/001\x00', 0x20882, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x23, 0x1, 0x11, 0x5, 0x7ff, 0x9, &(0x7f0000000100)})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syslog$auto(0x4, &(0x7f0000007980)='\n)&*%#.+&%\r\x00', 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
semctl$auto(0x7, 0x6, 0x13, 0x1)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x40, &(0x7f0000000080)={0x7fffffff, 0xc, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x5, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
io_uring_enter$auto(r1, 0x9, 0x820e, 0x29, 0x0, 0x18)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/wireless\x00', 0x80, 0x0)
pread64$auto(r2, 0x0, 0x201, 0xc000)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/stat/synproxy\x00', 0x101000, 0x0)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
ioctl$auto_BLKRRPART(r4, 0x125f, 0xf000)
pread64$auto(r3, 0x0, 0x8, 0x8000)
r5 = socket(0x2, 0x1, 0x106)
getsockopt$auto_SO_REUSEPORT(r5, 0x0, 0xf, &(0x7f0000000040)='$#,\x00', &(0x7f0000000240)=0x6)
init_module$auto(&(0x7f0000000000), 0xfffff, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/nbd13/mq/0/nr_reserved_tags\x00', 0x2000, 0x0)
sendfile$auto(r6, r6, 0x0, 0x3)
setresgid$auto(0x81, 0x800000a0, 0x8)

2.761941721s ago: executing program 5 (id=3446):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x1, 0x84) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) (async)
r0 = epoll_create$auto(0x8)
epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x82, 0x0, 0x8)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/lru_gen\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000000)='\x00', 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async)
socket(0x2, 0x2, 0x0) (async)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x4e21, @empty}, 0x6a) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
sendmsg$auto_L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000002940)={0x0, 0x0, &(0x7f0000002900)={&(0x7f00000028c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010027bd7000fbdbdf250400000ec9c50f120b702359"], 0x1c}}, 0x0) (async)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1, 0x9, 0x2, 0x1d2c, 0x3, 0x5, 0x15f4d20e, 0x6, 0x9, 0x2, 0x0, 0x4, 0xfc8, 0x9, 0x2, 0x4000000000000d]}, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000140)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00,\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t,\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/242, 0xfdf0, 0x239)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x4)
socket(0x2c, 0x1, 0x3) (async)
mmap$auto(0xb, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysinfo$auto(0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
io_uring_setup$auto(0x7, 0x0)

2.524510982s ago: executing program 2 (id=3447):
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x802, 0x9, 0x63, 0x0, 0x0, 0x0, 0x7, 0x7ff, 0x800000000100002, 0x0, 0x2, 0xc, 0x40, 0x1c, 0x20000000009, 0xb})
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = ioctl$auto_NS_GET_TGID_FROM_PIDNS(0xffffffffffffffff, 0x8004b707, &(0x7f0000000000)=0x6)
r1 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_TCP_METRICS_CMD_GET(r0, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x34, r1, 0x4, 0x70bd2c, 0x25dfdbff, {}, [@TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @multicast2}, @TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @private=0xa010101}, @TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @multicast1}, @TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @remote}]}, 0x34}, 0x1, 0x0, 0x0, 0x8810}, 0x20000000)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="24051c27c100dedbdf250307cc0008000200", @ANYRES32=0x0, @ANYBLOB="060007000080000006000700050000000a00050000000000000000000a00010000000000000000000a0001000000000000000000060006000d00000006000600070000000a0001"], 0x6c}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x11)

2.326967585s ago: executing program 1 (id=3448):
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x80002, 0x73)
socket(0x2, 0x80805, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
socket$nl_generic(0x10, 0x3, 0x10)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
timer_create$auto(0x0, 0x0, 0x0)
timer_create$auto(0x3, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x101800, 0xbf)
fcntl$auto_F_SETPIPE_SZ(r0, 0x407, 0x6)
r1 = ioctl$auto_TUNSETVNETHDRSZ2(r0, 0x400454d8, &(0x7f0000000140)=0xfffffff3)
read$auto_dfs_dom_ops_debugfs(r1, &(0x7f00000000c0)=""/65, 0x41)

2.324524076s ago: executing program 2 (id=3449):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/scsi/sg/allow_dio\x00', 0x101181, 0x0)
setresuid$auto(0x2, 0x7, 0x8080)
write$auto(0x3, 0x0, 0xfdef)
fanotify_init$auto(0x200, 0x1)
r0 = socket(0x1d, 0x2, 0x6)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r1=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1, 0xfd}, 0x6a)
r2 = open(&(0x7f0000001bc0)='./file0\x00', 0x4140, 0x0)
fanotify_mark$auto(0x0, 0x105, 0x8009, r2, 0x0)
close_range$auto(0x0, 0x5, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x5, 0x2, 0x2, 0x8, 0x4, 0xffffffffffffffff, 0xa, "2a36c83ce63f00a18b5f2600", 0x0, <r3=>0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000000), r3)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_fd, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x0) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/scsi/sg/allow_dio\x00', 0x101181, 0x0) (async)
setresuid$auto(0x2, 0x7, 0x8080) (async)
write$auto(0x3, 0x0, 0xfdef) (async)
fanotify_init$auto(0x200, 0x1) (async)
socket(0x1d, 0x2, 0x6) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00'}) (async)
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1, 0xfd}, 0x6a) (async)
open(&(0x7f0000001bc0)='./file0\x00', 0x4140, 0x0) (async)
fanotify_mark$auto(0x0, 0x105, 0x8009, r2, 0x0) (async)
close_range$auto(0x0, 0x5, 0x0) (async)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x5, 0x2, 0x2, 0x8, 0x4, 0xffffffffffffffff, 0xa, "2a36c83ce63f00a18b5f2600", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf) (async)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000000), r3) (async)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_fd, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92) (async)

2.040918456s ago: executing program 2 (id=3450):
ioctl$auto_XFS_IOC_FREESP(0xffffffffffffffff, 0x4030580b, &(0x7f0000000140)={0x5, 0x1, 0x8000, 0xffffffffffffbd61, 0xffff01fd, <r0=>0x0})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_DEAUTHENTICATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)={0x138, 0x0, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_MBSSID_ELEMS={0x124, 0x133, 0x0, 0x1, [@nested={0xd7, 0x143, 0x0, 0x1, [@generic="95b2115d2d0ab29be2c085368f7e9f723266c09d2c3b5b4d90549fe95113a806cacc1c861b53d466f61a9ea7fd2d556dcc8fd648de4bcc884bbc71fd0be23caaad4fee1d0e167cab51dfea11c9e8f562cf6cb41afa0b4ec99df957e5a0bf91705085918b90f2e6661bf2cba3204f534acd3c07164816f188ace12820f304bbd50d5909a7be22efe98a073d4cd96e1c5be4680e322c74d3786bfb2f2893cefddc28a0bc1a5fea91ff3ed601e6641bf6a4a4a0e97f4cdd84c35efffbf37f65120b73d69eed62314212492f929e8d811d82b3af5a"]}, @typed={0x8, 0xd7, 0x0, 0x0, @pid=r0}, @nested={0x40, 0xf3, 0x0, 0x1, [@generic="bc0e270ecb65831689de5d8cea0dc8055434af7ce0eecd4e35d56d445930f9a3f94999eec8ddbae06e8895f363d88229855b8f61", @typed={0x8, 0x130, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x37}}]}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x40}, 0x91)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r2 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000)
write$auto(0x3, 0x0, 0xfffffdef)
setsockopt$auto(0x3, 0x1, 0x2a, 0x0, 0x9)
shutdown$auto(0x200000003, 0x2)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)

1.940019821s ago: executing program 2 (id=3451):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
rseq$auto(&(0x7f0000000080)={0x4, 0x2, 0x9b, 0x6, 0x1, 0xa, "7c9a"}, 0xfffffffb, 0x72a4, 0xd)
mmap$auto(0x0, 0x2000b, 0x5, 0x100eb1, 0x401, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x48041, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
r3 = syz_clone(0x26148100, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r3, 0x4, 0x7)
ptrace$auto_PTRACE_SETSIGINFO(0x4203, r3, 0x7fffffffffffffff, 0xffffffffffff8000)
r4 = setfsuid$auto(0xee00)
setreuid$auto(r4, 0x0)
shmctl$auto_SHM_INFO(0x5, 0xe, &(0x7f0000000480)={{0x7, 0xee00, 0xffffffffffffffff, 0x0, 0x8, 0xb, 0x8}, 0x2, 0x9, 0x573f31a3, 0x7, @inferred, @inferred, 0x4f8, 0x0, &(0x7f0000000300)="d619971d5f2ef47e6bb403db85a66fa9429f01ef477ef6d8f9fb5cab30353b288fe9bf5fcf2d49eef8e21f3858318b53cfab0d378921c28851d5facc55d184f681d2b780dcbe168c437753e6ba1af66f08b3015cc519c84dc1c1f349dc2de0b10715063a5b61be81ab72d52ba5a08a7b5a2c83e3323ed35cd75c7e37defed06766d1442a3edd8adf0d9bf52ffa09e994413c5023dee74874aa8735e58ec7253cbcfbcbff69238756dd96aed4941783f09be7dc286e73337abd27ed44eae11bd812ec60", &(0x7f0000000400)="cd0f726e7c4be67c74899d46c8107078e9985655bc9e7bdfd4b28a8e0cfab75fe30c9b389a3b173d61c8498a1fd5fa83dfb69c4bac4a51740010c0e762a0c2aaae1aa70565e9ead4dcc3696f"})
r5 = socket(0x10, 0x2, 0x4)
write$auto(r5, &(0x7f0000000000)='-\x00', 0xfdef)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r1, &(0x7f00000110c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001980)={0x14, r2, 0x3, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20008105}, 0x40)
r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x44, r6, 0x400, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xfcac}]}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x3}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0xe0}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x8000800)
mmap$auto(0x0, 0x2020009, 0x9, 0x10, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/irq/2/hwirq\x00', 0x80000, 0x0)
read$auto(r7, 0x0, 0x20)
r8 = socket(0x2, 0x5, 0x0)
mremap$auto(0x1, 0x5, 0x5, 0xb, 0xfffffffffffffff6)
getsockopt$auto(r8, 0x84, 0x75, 0x0, 0x0)
openat$auto_lowpan_control_fops_6lowpan(0xffffffffffffff9c, &(0x7f0000000040), 0x2001, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x5, 0x0, 0x9, 0x0, 0x3, 0x2}, 0x800008}, 0x9, 0x20000000)
writev$auto(r0, &(0x7f0000000100)={&(0x7f0000000180), 0x7112}, 0x8)
r9 = io_uring_setup$auto(0x3ff, 0x0)
pipe2$auto(&(0x7f0000000000)=r9, 0x9)

1.864749794s ago: executing program 1 (id=3452):
socket(0xa, 0x2, 0x3)
r0 = socket(0x2b, 0x1, 0x1)
socket(0x1, 0x2, 0x0)
close_range$auto(r0, 0x8, 0x0)
socket(0x29, 0x2, 0xc) (async)
socket(0x29, 0x2, 0xc)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) (async)
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/dummy0/carrier\x00', 0xc2061, 0x0)
write$auto(r1, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xab\b\x00\x00\x00\x00\x00\x00\x00}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2oc!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x83)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x10) (async)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x10)
sysfs$auto(0x5, 0x23, 0x0)
r2 = fsopen$auto(0x0, 0x5)
fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0)
r3 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r3, 0xc1004111, 0x0) (async)
ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r3, 0xc1004111, 0x0)
openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000140), 0x189000, 0x0) (async)
r4 = openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000140), 0x189000, 0x0)
close_range$auto(r2, r1, 0x2)
readv$auto(r4, &(0x7f00000018c0)={0x0, 0x1}, 0x9) (async)
readv$auto(r4, &(0x7f00000018c0)={0x0, 0x1}, 0x9)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/personality\x00', 0x8002, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0xfffe000000000000, 0x0, 0x1, 0x0)
r6 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/rt_acct\x00', 0x840, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r6, &(0x7f0000000180)=""/138, 0x8a) (async)
read$auto_proc_iter_file_ops_compat_inode(r6, &(0x7f0000000180)=""/138, 0x8a)
write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000300)=""/251, 0xfb)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/net/dev_snmp6/macvtap0\x00', 0x0, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) (async)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)

1.716471177s ago: executing program 5 (id=3453):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu0/hotplug/target\x00', 0x201, 0x0)
write$auto(r2, 0x0, 0x1)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000300)={{0x0, 0x12, 0x0, 0x7, 0x0, 0x3, 0x1}, 0x7}, 0x8, 0x7fff)
mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000)
close_range$auto(0x2, 0x8, 0x0)
r3 = io_uring_setup$auto(0x6, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-subdev6\x00', 0xc0400, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
ioctl$auto(0x3, 0xc038563c, r3)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82942, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0)
close_range$auto(0x2, 0x8, 0xffffffff)
r5 = socketcall$auto(0x8000, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_GET_MSRS(r4, 0x4400ae8f, &(0x7f00000000c0)={0xdd})
syz_clone(0x42000, &(0x7f0000000100)="d64a7908fb3e", 0x6, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="69bb58cdf4f9f84a188d02eff1f91ee85e15d0ecef4d4eab43069aadcc7bc81513c6398ba3eebcb463fea27a1c09b58dfce2e0fc99c0514db48d136d960c0111656fa46cb0ebb8ec3739fbcd7f3de6d6faaadd2f9124bced0771a62e047aa967ec08a6d5d65b1e1c4fb9fe8fd11b3196b6ec97a9cd25796170150c4b4800d85dd1f28991cf67d82ebba4e778f1e71f76")
setrlimit$auto(0x1000000007, 0x0)
socket(0x2a, 0x2, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0)

1.68086194s ago: executing program 3 (id=3454):
syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000004680), 0xffffffffffffffff)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop5\x00', 0x14fa02, 0x0)
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto(r0, &(0x7f00000004c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\x04\x00\x00\x00\x00\x00\x00\x00d\x03\rF\xec\xb8\xa8\xb3\xea\x18\xc2\xcdy\x00\x00wxa\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfa\x02\xd8>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\x06\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\xf3K\xc9/\xc8Z}\x11=\x17\xd0:\x16\xd0\xd4\xcasY\xc3\xbb/G\x82\b\xa6\x92]\xe7\x89\r\xfa\xcf\x8f\xf2\xd6+&\xe5\xa5N\xfa\\\x14gD3\xa8oI>\x8f\x93m\xc2\x8d\x87[\xc3s\x92\xec\\-2\r_w\xe4\f\xbe\x84\x12\xc4v\xcf\v!=\xf1\x15\x87\xabDT@\x90f', 0x100000a3d9)
ioctl$auto_SNDRV_PCM_IOCTL_DROP(r0, 0x4143, 0x0)
mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0x100000000)
sched_setattr$auto(0x0, &(0x7f00000002c0)={0x1000, 0x50, 0x1d, 0xa9, 0x0, 0x4, 0x9, 0x9, 0xb, 0x6}, 0x0)
socket(0x1f, 0x5, 0x70)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x26, 0xa, 0x101001)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e21, @empty}, 0x50)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x800, 0x1d2c, 0x3, 0x4, 0x15f4da0c, 0x6, 0x2009, 0x100000000000000c, 0x10000, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000600)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00,\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x92P\x02\xedo|\xe5\x18\x01\x00\x00\x00^B\xb8\xe4j\t,\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x0e\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xe0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbc\xa6\x1e\xa6r\xb7\x18\xc43_9\x92\xf2N\xea/sL\xe8\xfc\xa24\x81\xa2C\xca\rzY#1H\x13\xf8\xcb\x98\xa6\x13\xcd\xa3\xb8\xa0.\xd8\x84\x99[\x02\xe3k\xb3\x1fe\x8cTd#\r_!\xf6\x87R\xbc\xf3\xaa\xad\x049%\xfe\xbe\xfa\x81\xa0,\x99\x19\xb5\n\x14\x9a\x94\xd8\xd6\xf5jY\xb7\v\xb7\x87~\xe4\x90U\xd8L*r1\x9e\x1d>{\b\xca\xb2f0\x96;\xf5\xb3Y\xb8\x83\x98\xde\xaae?\xb0\x89\xd4\xb8\xf2\x05\xd6\xfc\x1f\xbdy\x14\xc7d\x03\xac\n\x9c\xab\xafx\xbe\xc1\xa6nO\xad\x02\x9f\xfc\x82\xee\x81Yx\xd7\x05\x90^C\fK\xde\b\xb0Y*&\x0fM\xf8c8u\xdd\x9f\x10\xc7\xaa\x14\xb3\v\x0e\xcf\x86\x19\xae\xa2q\xee\xc9\xcd\xb2c\x80\"\b\x1d\x94\x80\x15C\xa6\x1b\xf2\xb7\bW.N\xcc\xc5\x9a\x12xOB\x8e\xa2\xe0\xc7\x98\x9e?W\xa8b~V\xaf\x19? \xfa\x9d/\x9b\xf9g\xcb\xf1}[\xd9\x81\xce7!\x01I', 0xfdf1, 0x39)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2c, 0x1, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2b4e)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysinfo$auto(0x0)
setsockopt$auto(0xffffffffffffffff, 0x6, 0x2, 0x0, 0xfb3)

1.649355988s ago: executing program 2 (id=3455):
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x82043, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6af82, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x20, r2, 0x301, 0x4070bd25, 0x25dfdbff, {}, [@CTRL_ATTR_FAMILY_NAME={0xc, 0x2, 'nl80211\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810)
r3 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r4, 0x0, 0x1f40)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r5, &(0x7f0000000240)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
mmap$auto(0x0, 0x20009, 0x8000df, 0xeb1, 0x401, 0x8000)
close_range$auto(r3, r0, 0x5c)
mmap$auto(0x0, 0x2020009, 0x8000, 0xeb1, 0xfffffffffffffffa, 0x8000)
r6 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x4, 0x3, 0xffffffffffffffff, 0x7, 0x7)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, &(0x7f0000000080)={0xfffffff8, "95a934601a75c8b1611cb12aeb33e3e75d178ee97436c76ace208d8988b20da8", @raw=0x10000})

502.351442ms ago: executing program 2 (id=3456):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/afs/cells\x00', 0xcee01, 0x0)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
close_range$auto(0x2, 0x8, 0x0)
getpid()
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0xffffffffffffffff, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x7, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x40146f2c, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x40146f2c, 0x0)
r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40802, 0x0)
read$auto(r3, 0x0, 0xb4d3)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x40000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0xffffffffffffffff, 0x10001, 0x10, r3, 0xe16)
fsopen$auto(0x0, 0x2b)
socket(0xa, 0x2, 0x88)

437.367451ms ago: executing program 3 (id=3457):
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x802, 0x9, 0x63, 0x0, 0x0, 0x0, 0x7, 0x7ff, 0x800000000100002, 0x0, 0x2, 0xc, 0x40, 0x1c, 0x20000000009, 0xb})
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = ioctl$auto_NS_GET_TGID_FROM_PIDNS(0xffffffffffffffff, 0x8004b707, &(0x7f0000000000)=0x6)
r1 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_TCP_METRICS_CMD_GET(r0, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x34, r1, 0x4, 0x70bd2c, 0x25dfdbff, {}, [@TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @multicast2}, @TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @private=0xa010101}, @TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @multicast1}, @TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @remote}]}, 0x34}, 0x1, 0x0, 0x0, 0x8810}, 0x20000000)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="24051c27c100dedbdf250307cc0008000200", @ANYRES32=0x0, @ANYBLOB="060007000080000006000700050000000a00050000000000000000000a00010000000000000000000a0001000000000000000000060006000d00000006000600070000000a0001"], 0x6c}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x38)

0s ago: executing program 5 (id=3458):
mmap$auto(0x0, 0x20009, 0x3, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000180)='/dev/usbmon16\x00', 0x40040, 0x0)
r0 = epoll_create$auto(0x3e)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(0x0, r2)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
clock_gettime$auto(0x0, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x169000, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2})
epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0)
socket(0x10, 0x80002, 0x0)
r4 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x2a801, 0x0)
pwrite64$auto(r4, 0x0, 0x7b01, 0x8001)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socketpair$auto(0xffffffff, 0xa, 0x4000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(r5, 0x7, 0x4)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)

kernel console output (not intermixed with test programs):

openat2+0x121/0x290
[  692.244823][T17180]  ? __pfx_do_sys_openat2+0x10/0x10
[  692.244869][T17180]  __x64_sys_openat+0x174/0x210
[  692.244906][T17180]  ? __pfx___x64_sys_openat+0x10/0x10
[  692.244955][T17180]  do_syscall_64+0xcd/0xf80
[  692.244998][T17180]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  692.245028][T17180] RIP: 0033:0x7f9003b8f7c9
[  692.245055][T17180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  692.245085][T17180] RSP: 002b:00007f9004997038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  692.245114][T17180] RAX: ffffffffffffffda RBX: 00007f9003de5fa0 RCX: 00007f9003b8f7c9
[  692.245133][T17180] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  692.245152][T17180] RBP: 00007f9003c13f91 R08: 0000000000000000 R09: 0000000000000000
[  692.245171][T17180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  692.245188][T17180] R13: 00007f9003de6038 R14: 00007f9003de5fa0 R15: 00007ffe16dd3298
[  692.245227][T17180]  </TASK>
[  692.557377][T17178] can0 (unregistered): slcan off ttyS2.
[  692.655138][T17194] zram0: detected capacity change from 8 to 0
[  693.412549][T13717] Bluetooth: hci3: command 0x0c1a tx timeout
[  693.418631][T17079] Bluetooth: hci1: command 0x0c1a tx timeout
[  694.091812][T17233] FAULT_INJECTION: forcing a failure.
[  694.091812][T17233] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  694.175221][T17239] ptrace attach of "./syz-executor exec"[17240] was attempted by "./syz-executor exec"[17239]
[  694.186531][T17233] CPU: 0 UID: 0 PID: 17233 Comm: syz.5.2596 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  694.186575][T17233] Tainted: [L]=SOFTLOCKUP
[  694.186585][T17233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  694.186600][T17233] Call Trace:
[  694.186609][T17233]  <TASK>
[  694.186620][T17233]  dump_stack_lvl+0x16c/0x1f0
[  694.186664][T17233]  should_fail_ex+0x512/0x640
[  694.186699][T17233]  _copy_to_user+0x32/0xd0
[  694.186732][T17233]  do_pages_stat+0x5d2/0x7b0
[  694.186785][T17233]  ? __pfx_do_pages_stat+0x10/0x10
[  694.186833][T17233]  ? find_held_lock+0x2b/0x80
[  694.186895][T17233]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  694.186932][T17233]  ? lockdep_hardirqs_on+0x7c/0x110
[  694.186970][T17233]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  694.187013][T17233]  kernel_move_pages+0xfc8/0x12f0
[  694.187051][T17233]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  694.187095][T17233]  ? __pfx_kernel_move_pages+0x10/0x10
[  694.187124][T17233]  ? __fget_files+0x20e/0x3c0
[  694.187169][T17233]  ? fput+0x70/0xf0
[  694.187195][T17233]  ? ksys_write+0x1ac/0x250
[  694.187231][T17233]  ? __pfx_ksys_write+0x10/0x10
[  694.187273][T17233]  __x64_sys_move_pages+0xe0/0x1c0
[  694.187301][T17233]  ? do_syscall_64+0x91/0xf80
[  694.187340][T17233]  ? lockdep_hardirqs_on+0x7c/0x110
[  694.187379][T17233]  do_syscall_64+0xcd/0xf80
[  694.187420][T17233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  694.187448][T17233] RIP: 0033:0x7f9003b8f7c9
[  694.187470][T17233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  694.187497][T17233] RSP: 002b:00007f9004997038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[  694.187523][T17233] RAX: ffffffffffffffda RBX: 00007f9003de5fa0 RCX: 00007f9003b8f7c9
[  694.187543][T17233] RDX: 0000000000000000 RSI: 0000000000001002 RDI: 0000000000000000
[  694.187563][T17233] RBP: 00007f9004997090 R08: 0000000000000000 R09: 0000000000000002
[  694.187580][T17233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  694.187595][T17233] R13: 00007f9003de6038 R14: 00007f9003de5fa0 R15: 00007ffe16dd3298
[  694.187633][T17233]  </TASK>
[  694.223346][T17239] netlink: 217 bytes leftover after parsing attributes in process `syz.1.2597'.
[  695.322168][T15793] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  695.703274][T17258] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  695.710394][T17258] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  695.716740][T17258] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  695.810662][T17258] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  696.140886][T17290] FAULT_INJECTION: forcing a failure.
[  696.140886][T17290] name failslab, interval 1, probability 0, space 0, times 0
[  696.217385][T17290] CPU: 0 UID: 0 PID: 17290 Comm: syz.3.2606 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  696.217430][T17290] Tainted: [L]=SOFTLOCKUP
[  696.217440][T17290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  696.217456][T17290] Call Trace:
[  696.217466][T17290]  <TASK>
[  696.217477][T17290]  dump_stack_lvl+0x16c/0x1f0
[  696.217521][T17290]  should_fail_ex+0x512/0x640
[  696.217551][T17290]  ? __kmalloc_noprof+0xca/0x910
[  696.217584][T17290]  should_failslab+0xc2/0x120
[  696.217625][T17290]  __kmalloc_noprof+0xeb/0x910
[  696.217662][T17290]  ? kernfs_fop_write_iter+0x237/0x570
[  696.217708][T17290]  ? kernfs_fop_write_iter+0x237/0x570
[  696.217746][T17290]  kernfs_fop_write_iter+0x237/0x570
[  696.217790][T17290]  vfs_write+0x7d3/0x11d0
[  696.217829][T17290]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  696.217872][T17290]  ? __pfx_vfs_write+0x10/0x10
[  696.217930][T17290]  ksys_write+0x12a/0x250
[  696.217967][T17290]  ? __pfx_ksys_write+0x10/0x10
[  696.218019][T17290]  do_syscall_64+0xcd/0xf80
[  696.218060][T17290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  696.218089][T17290] RIP: 0033:0x7f98e658f7c9
[  696.218112][T17290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  696.218138][T17290] RSP: 002b:00007f98e74ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  696.218164][T17290] RAX: ffffffffffffffda RBX: 00007f98e67e5fa0 RCX: 00007f98e658f7c9
[  696.218183][T17290] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000003
[  696.218199][T17290] RBP: 00007f98e74ca090 R08: 0000000000000000 R09: 0000000000000000
[  696.218216][T17290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  696.218232][T17290] R13: 00007f98e67e6038 R14: 00007f98e67e5fa0 R15: 00007ffda8ae5be8
[  696.218271][T17290]  </TASK>
[  696.993846][T15793] Bluetooth: hci0: command 0x0c1a tx timeout
[  697.709838][T17079] Bluetooth: hci4: command 0x0c1a tx timeout
[  697.715929][T15793] Bluetooth: hci1: command 0x0c1a tx timeout
[  697.748136][   T30] audit: type=1800 audit(1766973564.420:138): pid=17321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=73965 res=0 errno=0
[  697.869601][T17079] Bluetooth: hci3: command 0x0c1a tx timeout
[  698.016431][T17321] could not allocate digest TFM handle 
[  698.145709][T17348] FAULT_INJECTION: forcing a failure.
[  698.145709][T17348] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  698.159281][T17348] CPU: 0 UID: 0 PID: 17348 Comm: syz.3.2619 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  698.159325][T17348] Tainted: [L]=SOFTLOCKUP
[  698.159335][T17348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  698.159351][T17348] Call Trace:
[  698.159360][T17348]  <TASK>
[  698.159371][T17348]  dump_stack_lvl+0x16c/0x1f0
[  698.159415][T17348]  should_fail_ex+0x512/0x640
[  698.159450][T17348]  _copy_from_iter+0x2a4/0x16c0
[  698.159489][T17348]  ? __pfx__copy_from_iter+0x10/0x10
[  698.159520][T17348]  ? rcu_is_watching+0x12/0xc0
[  698.159557][T17348]  ? trace_kmalloc+0x2b/0xb0
[  698.159595][T17348]  ? __kmalloc_noprof+0x35d/0x910
[  698.159625][T17348]  ? kernfs_fop_write_iter+0x237/0x570
[  698.159672][T17348]  kernfs_fop_write_iter+0x19a/0x570
[  698.159717][T17348]  vfs_write+0x7d3/0x11d0
[  698.159756][T17348]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  698.159799][T17348]  ? __pfx_vfs_write+0x10/0x10
[  698.159861][T17348]  ksys_write+0x12a/0x250
[  698.159898][T17348]  ? __pfx_ksys_write+0x10/0x10
[  698.159945][T17348]  do_syscall_64+0xcd/0xf80
[  698.159987][T17348]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  698.160014][T17348] RIP: 0033:0x7f98e658f7c9
[  698.160036][T17348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  698.160061][T17348] RSP: 002b:00007f98e74ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  698.160087][T17348] RAX: ffffffffffffffda RBX: 00007f98e67e5fa0 RCX: 00007f98e658f7c9
[  698.160105][T17348] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000003
[  698.160122][T17348] RBP: 00007f98e74ca090 R08: 0000000000000000 R09: 0000000000000000
[  698.160139][T17348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  698.160155][T17348] R13: 00007f98e67e6038 R14: 00007f98e67e5fa0 R15: 00007ffda8ae5be8
[  698.160194][T17348]  </TASK>
[  698.657336][T17357] netlink: 'syz.5.2622': attribute type 1 has an invalid length.
[  698.672500][T17357] netlink: 680 bytes leftover after parsing attributes in process `syz.5.2622'.
[  698.673529][T17361] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2621'.
[  699.846560][T17351] kexec: Could not allocate control_code_buffer
[  699.873843][T17379] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2628'.
[  700.300560][T17395] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  700.512358][   T30] audit: type=1800 audit(1766973567.204:139): pid=17386 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2629" name="lu_gp_id" dev="configfs" ino=72472 res=0 errno=0
[  700.694761][T17386] could not allocate digest TFM handle 
[  700.780127][T17401] FAULT_INJECTION: forcing a failure.
[  700.780127][T17401] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  700.796946][T17401] CPU: 0 UID: 0 PID: 17401 Comm: syz.2.2631 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  700.796996][T17401] Tainted: [L]=SOFTLOCKUP
[  700.797005][T17401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  700.797021][T17401] Call Trace:
[  700.797028][T17401]  <TASK>
[  700.797039][T17401]  dump_stack_lvl+0x16c/0x1f0
[  700.797080][T17401]  should_fail_ex+0x512/0x640
[  700.797115][T17401]  _copy_to_user+0x32/0xd0
[  700.797146][T17401]  simple_read_from_buffer+0xcb/0x170
[  700.797183][T17401]  proc_fail_nth_read+0x197/0x240
[  700.797224][T17401]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  700.797265][T17401]  ? rw_verify_area+0xcf/0x6c0
[  700.797297][T17401]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  700.797339][T17401]  vfs_read+0x1e4/0xcf0
[  700.797376][T17401]  ? __pfx___mutex_lock+0x10/0x10
[  700.797420][T17401]  ? __pfx_vfs_read+0x10/0x10
[  700.797465][T17401]  ? __fget_files+0x20e/0x3c0
[  700.797513][T17401]  ksys_read+0x12a/0x250
[  700.797549][T17401]  ? __pfx_ksys_read+0x10/0x10
[  700.797606][T17401]  do_syscall_64+0xcd/0xf80
[  700.797648][T17401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  700.797675][T17401] RIP: 0033:0x7efc8af8e1dc
[  700.797695][T17401] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  700.797718][T17401] RSP: 002b:00007efc8be64030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  700.797741][T17401] RAX: ffffffffffffffda RBX: 00007efc8b1e5fa0 RCX: 00007efc8af8e1dc
[  700.797757][T17401] RDX: 000000000000000f RSI: 00007efc8be640a0 RDI: 0000000000000004
[  700.797772][T17401] RBP: 00007efc8be64090 R08: 0000000000000000 R09: 0000000000000000
[  700.797788][T17401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  700.797804][T17401] R13: 00007efc8b1e6038 R14: 00007efc8b1e5fa0 R15: 00007ffc44d4dbd8
[  700.797841][T17401]  </TASK>
[  702.054827][T17422] FAULT_INJECTION: forcing a failure.
[  702.054827][T17422] name failslab, interval 1, probability 0, space 0, times 0
[  702.228953][T17422] CPU: 1 UID: 0 PID: 17422 Comm: syz.5.2636 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  702.229001][T17422] Tainted: [L]=SOFTLOCKUP
[  702.229012][T17422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  702.229028][T17422] Call Trace:
[  702.229038][T17422]  <TASK>
[  702.229050][T17422]  dump_stack_lvl+0x16c/0x1f0
[  702.229103][T17422]  should_fail_ex+0x512/0x640
[  702.229136][T17422]  ? __kmalloc_noprof+0xca/0x910
[  702.229172][T17422]  should_failslab+0xc2/0x120
[  702.229214][T17422]  __kmalloc_noprof+0xeb/0x910
[  702.229246][T17422]  ? lsm_blob_alloc+0x68/0x90
[  702.229292][T17422]  ? lsm_blob_alloc+0x68/0x90
[  702.229331][T17422]  lsm_blob_alloc+0x68/0x90
[  702.229371][T17422]  security_sk_alloc+0x2f/0x270
[  702.229403][T17422]  sk_prot_alloc+0xfb/0x2a0
[  702.229446][T17422]  sk_alloc+0x36/0xe30
[  702.229480][T17422]  inet_create+0x3a1/0x1040
[  702.229513][T17422]  ? inet_create+0x93/0x1040
[  702.229551][T17422]  __sock_create+0x339/0x8a0
[  702.229601][T17422]  __sys_socket+0x14d/0x260
[  702.229628][T17422]  ? __pfx___sys_socket+0x10/0x10
[  702.229656][T17422]  ? xfd_validate_state+0x61/0x180
[  702.229681][T17422]  ? __pfx_ksys_write+0x10/0x10
[  702.229728][T17422]  __x64_sys_socket+0x72/0xb0
[  702.229754][T17422]  ? lockdep_hardirqs_on+0x7c/0x110
[  702.229795][T17422]  do_syscall_64+0xcd/0xf80
[  702.229847][T17422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  702.229877][T17422] RIP: 0033:0x7f9003b8f7c9
[  702.229901][T17422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  702.229929][T17422] RSP: 002b:00007f9004976038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  702.229956][T17422] RAX: ffffffffffffffda RBX: 00007f9003de6090 RCX: 00007f9003b8f7c9
[  702.229977][T17422] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[  702.229996][T17422] RBP: 00007f9003c13f91 R08: 0000000000000000 R09: 0000000000000000
[  702.230014][T17422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  702.230032][T17422] R13: 00007f9003de6128 R14: 00007f9003de6090 R15: 00007ffe16dd3298
[  702.230071][T17422]  </TASK>
[  703.000752][T17442] FAULT_INJECTION: forcing a failure.
[  703.000752][T17442] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  703.061731][T17442] CPU: 1 UID: 0 PID: 17442 Comm: syz.1.2641 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  703.061771][T17442] Tainted: [L]=SOFTLOCKUP
[  703.061780][T17442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  703.061795][T17442] Call Trace:
[  703.061804][T17442]  <TASK>
[  703.061815][T17442]  dump_stack_lvl+0x16c/0x1f0
[  703.061859][T17442]  should_fail_ex+0x512/0x640
[  703.061894][T17442]  _copy_from_user+0x2e/0xd0
[  703.061924][T17442]  do_pages_stat+0x240/0x7b0
[  703.061978][T17442]  ? __pfx_do_pages_stat+0x10/0x10
[  703.062024][T17442]  ? find_held_lock+0x2b/0x80
[  703.062087][T17442]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  703.062123][T17442]  ? lockdep_hardirqs_on+0x7c/0x110
[  703.062162][T17442]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  703.062205][T17442]  kernel_move_pages+0xfc8/0x12f0
[  703.062243][T17442]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  703.062287][T17442]  ? __pfx_kernel_move_pages+0x10/0x10
[  703.062316][T17442]  ? __fget_files+0x20e/0x3c0
[  703.062359][T17442]  ? fput+0x70/0xf0
[  703.062385][T17442]  ? ksys_write+0x1ac/0x250
[  703.062421][T17442]  ? __pfx_ksys_write+0x10/0x10
[  703.062463][T17442]  __x64_sys_move_pages+0xe0/0x1c0
[  703.062490][T17442]  ? do_syscall_64+0x91/0xf80
[  703.062528][T17442]  ? lockdep_hardirqs_on+0x7c/0x110
[  703.062566][T17442]  do_syscall_64+0xcd/0xf80
[  703.062611][T17442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  703.062639][T17442] RIP: 0033:0x7f7e2218f7c9
[  703.062661][T17442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  703.062687][T17442] RSP: 002b:00007f7e203f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[  703.062712][T17442] RAX: ffffffffffffffda RBX: 00007f7e223e5fa0 RCX: 00007f7e2218f7c9
[  703.062731][T17442] RDX: 0000000000000000 RSI: 0000000000001002 RDI: 0000000000000000
[  703.062748][T17442] RBP: 00007f7e203f6090 R08: 0000000000000000 R09: 0000000000000002
[  703.062766][T17442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  703.062782][T17442] R13: 00007f7e223e6038 R14: 00007f7e223e5fa0 R15: 00007ffcb0b997b8
[  703.062819][T17442]  </TASK>
[  704.242810][T17467] random: crng reseeded on system resumption
[  704.723784][T17477] nvme_fcloop: unknown parameter or missing value '10'
[  704.739082][T17477] nvme_fcloop: unknown parameter or missing value '�'
[  704.835695][T17482] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2653'.
[  705.111078][T17079] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  705.703371][T17503] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2658'.
[  706.159746][T17510] FAULT_INJECTION: forcing a failure.
[  706.159746][T17510] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  706.209268][T17510] CPU: 0 UID: 0 PID: 17510 Comm: syz.1.2659 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  706.209308][T17510] Tainted: [L]=SOFTLOCKUP
[  706.209317][T17510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  706.209333][T17510] Call Trace:
[  706.209341][T17510]  <TASK>
[  706.209352][T17510]  dump_stack_lvl+0x16c/0x1f0
[  706.209394][T17510]  should_fail_ex+0x512/0x640
[  706.209426][T17510]  _copy_from_user+0x2e/0xd0
[  706.209452][T17510]  copy_msghdr_from_user+0x98/0x160
[  706.209484][T17510]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  706.209522][T17510]  ? __pfx__kstrtoull+0x10/0x10
[  706.209564][T17510]  ___sys_sendmsg+0xfe/0x1d0
[  706.209600][T17510]  ? __pfx____sys_sendmsg+0x10/0x10
[  706.209650][T17510]  ? find_held_lock+0x2b/0x80
[  706.209707][T17510]  __sys_sendmmsg+0x200/0x420
[  706.209752][T17510]  ? __pfx___sys_sendmmsg+0x10/0x10
[  706.209797][T17510]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  706.209854][T17510]  ? fput+0x70/0xf0
[  706.209880][T17510]  ? ksys_write+0x1ac/0x250
[  706.209916][T17510]  ? __pfx_ksys_write+0x10/0x10
[  706.209960][T17510]  __x64_sys_sendmmsg+0x9c/0x100
[  706.209994][T17510]  ? lockdep_hardirqs_on+0x7c/0x110
[  706.210032][T17510]  do_syscall_64+0xcd/0xf80
[  706.210074][T17510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  706.210103][T17510] RIP: 0033:0x7f7e2218f7c9
[  706.210125][T17510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  706.210152][T17510] RSP: 002b:00007f7e203f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  706.210179][T17510] RAX: ffffffffffffffda RBX: 00007f7e223e5fa0 RCX: 00007f7e2218f7c9
[  706.210198][T17510] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  706.210216][T17510] RBP: 00007f7e203f6090 R08: 0000000000000000 R09: 0000000000000000
[  706.210233][T17510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  706.210250][T17510] R13: 00007f7e223e6038 R14: 00007f7e223e5fa0 R15: 00007ffcb0b997b8
[  706.210289][T17510]  </TASK>
[  706.686909][T17513] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2660'.
[  706.741517][T17513] bridge0: port 2(bridge_slave_1) entered disabled state
[  706.749068][T17513] bridge0: port 1(bridge_slave_0) entered disabled state
[  707.481547][T17532] ptrace attach of "./syz-executor exec"[17533] was attempted by "./syz-executor exec"[17532]
[  707.576257][T17532] netlink: 217 bytes leftover after parsing attributes in process `syz.1.2665'.
[  708.124483][T17551] netlink: 326 bytes leftover after parsing attributes in process `syz.5.2671'.
[  708.493102][   T30] audit: type=1800 audit(1766973575.215:140): pid=17537 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=74926 res=0 errno=0
[  708.771311][T17537] could not allocate digest TFM handle 
[  708.966990][T17571] ptrace attach of "./syz-executor exec"[17572] was attempted by "./syz-executor exec"[17571]
[  709.093386][T17571] netlink: 217 bytes leftover after parsing attributes in process `syz.5.2674'.
[  709.345626][T17583] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2677'.
[  710.058723][T17598] FAULT_INJECTION: forcing a failure.
[  710.058723][T17598] name failslab, interval 1, probability 0, space 0, times 0
[  710.074050][T17598] CPU: 1 UID: 0 PID: 17598 Comm: syz.2.2680 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  710.074078][T17598] Tainted: [L]=SOFTLOCKUP
[  710.074084][T17598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  710.074094][T17598] Call Trace:
[  710.074100][T17598]  <TASK>
[  710.074106][T17598]  dump_stack_lvl+0x16c/0x1f0
[  710.074133][T17598]  should_fail_ex+0x512/0x640
[  710.074151][T17598]  ? fs_reclaim_acquire+0xae/0x150
[  710.074180][T17598]  should_failslab+0xc2/0x120
[  710.074204][T17598]  kmem_cache_alloc_noprof+0x83/0x770
[  710.074222][T17598]  ? __pfx_map_id_range_down+0x10/0x10
[  710.074242][T17598]  ? security_inode_alloc+0x3b/0x2b0
[  710.074261][T17598]  ? security_inode_alloc+0x3b/0x2b0
[  710.074276][T17598]  security_inode_alloc+0x3b/0x2b0
[  710.074292][T17598]  inode_init_always_gfp+0xced/0x1040
[  710.074317][T17598]  alloc_inode+0x86/0x240
[  710.074333][T17598]  sock_alloc+0x40/0x280
[  710.074354][T17598]  __sock_create+0xc2/0x8a0
[  710.074380][T17598]  __sys_socket+0x14d/0x260
[  710.074394][T17598]  ? __pfx___sys_socket+0x10/0x10
[  710.074414][T17598]  ? xfd_validate_state+0x61/0x180
[  710.074429][T17598]  ? __pfx_ksys_write+0x10/0x10
[  710.074455][T17598]  __x64_sys_socket+0x72/0xb0
[  710.074469][T17598]  ? lockdep_hardirqs_on+0x7c/0x110
[  710.074491][T17598]  do_syscall_64+0xcd/0xf80
[  710.074514][T17598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  710.074529][T17598] RIP: 0033:0x7efc8af8f7c9
[  710.074541][T17598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  710.074556][T17598] RSP: 002b:00007efc8be64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  710.074570][T17598] RAX: ffffffffffffffda RBX: 00007efc8b1e5fa0 RCX: 00007efc8af8f7c9
[  710.074580][T17598] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[  710.074589][T17598] RBP: 00007efc8b013f91 R08: 0000000000000000 R09: 0000000000000000
[  710.074598][T17598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  710.074607][T17598] R13: 00007efc8b1e6038 R14: 00007efc8b1e5fa0 R15: 00007ffc44d4dbd8
[  710.074628][T17598]  </TASK>
[  710.074648][T17598] socket: no more sockets
[  710.792867][T17619] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2683'.
[  711.655249][T17635] netlink: 217 bytes leftover after parsing attributes in process `syz.1.2687'.
[  711.977577][T17644] zswap: compressor  not available
[  712.108674][T17657] sp0: Synchronizing with TNC
[  712.804490][T17678] FAULT_INJECTION: forcing a failure.
[  712.804490][T17678] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  712.818462][T17678] CPU: 1 UID: 0 PID: 17678 Comm: syz.5.2697 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  712.818505][T17678] Tainted: [L]=SOFTLOCKUP
[  712.818515][T17678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  712.818530][T17678] Call Trace:
[  712.818539][T17678]  <TASK>
[  712.818550][T17678]  dump_stack_lvl+0x16c/0x1f0
[  712.818594][T17678]  should_fail_ex+0x512/0x640
[  712.818629][T17678]  should_fail_alloc_page+0xe7/0x130
[  712.818671][T17678]  prepare_alloc_pages+0x401/0x670
[  712.818717][T17678]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  712.818761][T17678]  ? __lock_acquire+0x436/0x2890
[  712.818790][T17678]  ? __lock_acquire+0x436/0x2890
[  712.818816][T17678]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  712.818854][T17678]  ? __lock_acquire+0x436/0x2890
[  712.818903][T17678]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  712.818946][T17678]  ? policy_nodemask+0xea/0x4e0
[  712.818988][T17678]  alloc_pages_mpol+0x1fb/0x550
[  712.819029][T17678]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  712.819077][T17678]  alloc_pages_noprof+0x131/0x390
[  712.819118][T17678]  __pmd_alloc+0x3b/0x9c0
[  712.819157][T17678]  __handle_mm_fault+0xbeb/0x2bb0
[  712.819191][T17678]  ? __pfx___handle_mm_fault+0x10/0x10
[  712.819239][T17678]  ? find_vma+0xbf/0x140
[  712.819273][T17678]  ? __pfx_find_vma+0x10/0x10
[  712.819312][T17678]  handle_mm_fault+0x3fe/0xad0
[  712.819348][T17678]  do_user_addr_fault+0x7a6/0x1370
[  712.819385][T17678]  ? rcu_is_watching+0x12/0xc0
[  712.819427][T17678]  exc_page_fault+0x64/0xc0
[  712.819466][T17678]  asm_exc_page_fault+0x26/0x30
[  712.819492][T17678] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  712.819523][T17678] Code: 81 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  712.819549][T17678] RSP: 0018:ffffc900050bf7c0 EFLAGS: 00050206
[  712.819572][T17678] RAX: 0000000000000001 RBX: 00000000000000c4 RCX: 00000000000000c4
[  712.819589][T17678] RDX: ffffed100aebb0e9 RSI: 0000000000000000 RDI: ffff8880575d8680
[  712.819607][T17678] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100aebb0e8
[  712.819624][T17678] R10: ffff8880575d8743 R11: 0000000000000000 R12: 0000000000000000
[  712.819640][T17678] R13: ffff88805c5de000 R14: ffffc900050bfd50 R15: ffff8880575d8680
[  712.819676][T17678]  _copy_from_iter+0x355/0x16c0
[  712.819712][T17678]  ? __alloc_skb+0x220/0x410
[  712.819738][T17678]  ? __alloc_skb+0x35d/0x410
[  712.819767][T17678]  ? __pfx__copy_from_iter+0x10/0x10
[  712.819813][T17678]  ? netlink_autobind.isra.0+0x158/0x370
[  712.819866][T17678]  netlink_sendmsg+0x820/0xdd0
[  712.819945][T17678]  ? __pfx_netlink_sendmsg+0x10/0x10
[  712.819987][T17678]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  712.820038][T17678]  ____sys_sendmsg+0xa5d/0xc30
[  712.820079][T17678]  ? copy_msghdr_from_user+0x10a/0x160
[  712.820113][T17678]  ? __pfx_____sys_sendmsg+0x10/0x10
[  712.820159][T17678]  ? __pfx__kstrtoull+0x10/0x10
[  712.820202][T17678]  ___sys_sendmsg+0x134/0x1d0
[  712.820238][T17678]  ? __pfx____sys_sendmsg+0x10/0x10
[  712.820287][T17678]  ? find_held_lock+0x2b/0x80
[  712.820342][T17678]  __sys_sendmmsg+0x200/0x420
[  712.820380][T17678]  ? __pfx___sys_sendmmsg+0x10/0x10
[  712.820424][T17678]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  712.820476][T17678]  ? fput+0x70/0xf0
[  712.820503][T17678]  ? ksys_write+0x1ac/0x250
[  712.820538][T17678]  ? __pfx_ksys_write+0x10/0x10
[  712.820580][T17678]  __x64_sys_sendmmsg+0x9c/0x100
[  712.820613][T17678]  ? lockdep_hardirqs_on+0x7c/0x110
[  712.820651][T17678]  do_syscall_64+0xcd/0xf80
[  712.820692][T17678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  712.820720][T17678] RIP: 0033:0x7f9003b8f7c9
[  712.820741][T17678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  712.820766][T17678] RSP: 002b:00007f9004997038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  712.820788][T17678] RAX: ffffffffffffffda RBX: 00007f9003de5fa0 RCX: 00007f9003b8f7c9
[  712.820806][T17678] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  712.820823][T17678] RBP: 00007f9004997090 R08: 0000000000000000 R09: 0000000000000000
[  712.820842][T17678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  712.820856][T17678] R13: 00007f9003de6038 R14: 00007f9003de5fa0 R15: 00007ffe16dd3298
[  712.820889][T17678]  </TASK>
[  712.834186][T17079] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  713.059994][T17680] [U] 	
[  713.261614][T17680] [U] 
[  713.264318][T17680] [U] 
[  713.267018][T17680] [U] 
[  713.269714][T17680] [U] 
[  713.350372][T17682] netlink: 217 bytes leftover after parsing attributes in process `syz.5.2698'.
[  713.473472][T17680] [U] 
[  713.476227][T17680] [U] 
[  713.478946][T17680] [U] 
[  713.481658][T17680] [U] 
[  713.512828][T17692] FAULT_INJECTION: forcing a failure.
[  713.512828][T17692] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  713.534352][T17680] [U] 
[  713.537107][T17680] [U] 
[  713.539836][T17680] [U] 
[  713.542719][T17680] [U] 
[  713.552238][T17692] CPU: 0 UID: 0 PID: 17692 Comm: syz.3.2699 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  713.552282][T17692] Tainted: [L]=SOFTLOCKUP
[  713.552295][T17692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  713.552313][T17692] Call Trace:
[  713.552323][T17692]  <TASK>
[  713.552336][T17692]  dump_stack_lvl+0x16c/0x1f0
[  713.552384][T17692]  should_fail_ex+0x512/0x640
[  713.552423][T17692]  should_fail_alloc_page+0xe7/0x130
[  713.552469][T17692]  prepare_alloc_pages+0x401/0x670
[  713.552520][T17692]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  713.552559][T17692]  ? __lock_acquire+0x436/0x2890
[  713.552595][T17692]  ? __lock_acquire+0x436/0x2890
[  713.552622][T17692]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  713.552676][T17692]  ? find_held_lock+0x2b/0x80
[  713.552715][T17692]  ? is_bpf_text_address+0x8a/0x1a0
[  713.552759][T17692]  ? bpf_ksym_find+0x124/0x1c0
[  713.552786][T17692]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  713.552832][T17692]  ? policy_nodemask+0xea/0x4e0
[  713.552879][T17692]  alloc_pages_mpol+0x1fb/0x550
[  713.552924][T17692]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  713.552977][T17692]  folio_alloc_mpol_noprof+0x36/0x2f0
[  713.553008][T17692]  shmem_alloc_folio+0x135/0x160
[  713.553054][T17692]  shmem_alloc_and_add_folio+0x494/0xc20
[  713.553096][T17692]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  713.553132][T17692]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  713.553174][T17692]  shmem_get_folio_gfp+0x67f/0x1610
[  713.553215][T17692]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  713.553249][T17692]  ? filemap_map_pages+0x12dd/0x1e00
[  713.553288][T17692]  shmem_fault+0x1fe/0xa00
[  713.553323][T17692]  ? __pfx_shmem_fault+0x10/0x10
[  713.553359][T17692]  ? rcu_is_watching+0x12/0xc0
[  713.553398][T17692]  ? __pfx_filemap_map_pages+0x10/0x10
[  713.553440][T17692]  ? __pfx_filemap_map_pages+0x10/0x10
[  713.553471][T17692]  __do_fault+0x10d/0x490
[  713.553508][T17692]  ? __pfx_filemap_map_pages+0x10/0x10
[  713.553538][T17692]  do_fault+0xae4/0x1ad0
[  713.553578][T17692]  ? __pfx_filemap_map_pages+0x10/0x10
[  713.553610][T17692]  ? __pmd_alloc+0x6aa/0x9c0
[  713.553655][T17692]  __handle_mm_fault+0x1919/0x2bb0
[  713.553697][T17692]  ? __pfx___handle_mm_fault+0x10/0x10
[  713.553754][T17692]  ? find_vma+0xbf/0x140
[  713.553791][T17692]  ? __pfx_find_vma+0x10/0x10
[  713.553834][T17692]  handle_mm_fault+0x3fe/0xad0
[  713.553871][T17692]  do_user_addr_fault+0x7a6/0x1370
[  713.553910][T17692]  ? rcu_is_watching+0x12/0xc0
[  713.553953][T17692]  exc_page_fault+0x64/0xc0
[  713.553995][T17692]  asm_exc_page_fault+0x26/0x30
[  713.554023][T17692] RIP: 0010:rep_movs_alternative+0xf/0x90
[  713.554057][T17692] Code: c4 10 e9 44 81 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 0d 81 04 00 66 66
[  713.554086][T17692] RSP: 0018:ffffc9000518fd60 EFLAGS: 00050202
[  713.554110][T17692] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000004
[  713.554128][T17692] RDX: fffff52000a31fba RSI: 0000000000000000 RDI: ffffc9000518fdd0
[  713.554147][T17692] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff52000a31fba
[  713.554165][T17692] R10: 0000000000000003 R11: ffff8880598d8b30 R12: 0000000000000000
[  713.554183][T17692] R13: ffffc9000518fdd0 R14: 0000000000000000 R15: 0000000000000000
[  713.554220][T17692]  _copy_from_user+0x98/0xd0
[  713.554253][T17692]  do_sock_getsockopt+0x3a1/0x410
[  713.554298][T17692]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  713.554338][T17692]  ? __fget_files+0x204/0x3c0
[  713.554395][T17692]  __sys_getsockopt+0x123/0x1b0
[  713.554437][T17692]  __x64_sys_getsockopt+0xbd/0x160
[  713.554470][T17692]  ? do_syscall_64+0x91/0xf80
[  713.554509][T17692]  ? lockdep_hardirqs_on+0x7c/0x110
[  713.554550][T17692]  do_syscall_64+0xcd/0xf80
[  713.554593][T17692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  713.554621][T17692] RIP: 0033:0x7f98e658f7c9
[  713.554644][T17692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  713.554672][T17692] RSP: 002b:00007f98e74ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  713.554698][T17692] RAX: ffffffffffffffda RBX: 00007f98e67e5fa0 RCX: 00007f98e658f7c9
[  713.554717][T17692] RDX: 0000000000000001 RSI: 000000000000011c RDI: 0000000000000004
[  713.554734][T17692] RBP: 00007f98e6613f91 R08: 0000000000000000 R09: 0000000000000000
[  713.554759][T17692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  713.554777][T17692] R13: 00007f98e67e6038 R14: 00007f98e67e5fa0 R15: 00007ffda8ae5be8
[  713.554817][T17692]  </TASK>
[  713.766619][T17680] [U] 
[  714.001375][T17680] [U] 
[  714.004075][T17680] [U] 
[  714.006780][T17680] [U] 
[  714.178834][T17695] zswap: compressor  not available
[  714.227284][T17680] [U] 
[  714.230051][T17680] [U] 
[  714.232807][T17680] [U] 
[  714.235519][T17680] [U] 
[  714.283901][T17680] [U] 
[  714.286670][T17680] [U] 
[  714.289389][T17680] [U] 
[  714.292101][T17680] [U] 
[  714.355372][T17680] [U] 
[  714.358132][T17680] [U] 
[  714.360852][T17680] [U] 
[  714.363566][T17680] [U] 
[  714.410847][T17680] [U] 
[  714.413606][T17680] [U] 
[  714.416330][T17680] [U] 
[  714.419043][T17680] [U] 
[  714.482455][T17680] [U] 
[  714.485216][T17680] [U] 
[  714.487931][T17680] [U] 
[  714.490652][T17680] [U] 
[  714.591198][T17680] [U] 
[  714.593948][T17680] [U] 
[  714.596671][T17680] [U] 
[  714.599385][T17680] [U] 
[  714.736991][T17680] [U] 
[  714.940100][T17719] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2704'.
[  715.221543][T17079] Bluetooth: hci1: ACL packet for unknown connection handle 0
[  716.364271][T17736] Invalid ELF header magic: != ELF
[  716.430192][T17737] can: request_module (can-proto-4) failed.
[  716.627015][T17745] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2710'.
[  716.649342][T17745] HfR: entered promiscuous mode
[  716.904057][T17748] zswap: compressor  not available
[  719.242621][T17789] FAULT_INJECTION: forcing a failure.
[  719.242621][T17789] name failslab, interval 1, probability 0, space 0, times 0
[  719.280916][T17789] CPU: 0 UID: 0 PID: 17789 Comm: syz.3.2715 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  719.280971][T17789] Tainted: [L]=SOFTLOCKUP
[  719.280981][T17789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  719.280997][T17789] Call Trace:
[  719.281007][T17789]  <TASK>
[  719.281019][T17789]  dump_stack_lvl+0x16c/0x1f0
[  719.281066][T17789]  should_fail_ex+0x512/0x640
[  719.281097][T17789]  ? __kmalloc_noprof+0xca/0x910
[  719.281131][T17789]  should_failslab+0xc2/0x120
[  719.281172][T17789]  __kmalloc_noprof+0xeb/0x910
[  719.281203][T17789]  ? lsm_blob_alloc+0x68/0x90
[  719.281256][T17789]  ? lsm_blob_alloc+0x68/0x90
[  719.281294][T17789]  lsm_blob_alloc+0x68/0x90
[  719.281334][T17789]  security_sk_alloc+0x2f/0x270
[  719.281365][T17789]  sk_prot_alloc+0xfb/0x2a0
[  719.281409][T17789]  sk_alloc+0x36/0xe30
[  719.281443][T17789]  inet_create+0x3a1/0x1040
[  719.281476][T17789]  ? inet_create+0x93/0x1040
[  719.281514][T17789]  __sock_create+0x339/0x8a0
[  719.281563][T17789]  __sys_socket+0x14d/0x260
[  719.281591][T17789]  ? __pfx___sys_socket+0x10/0x10
[  719.281617][T17789]  ? xfd_validate_state+0x61/0x180
[  719.281643][T17789]  ? __pfx_ksys_write+0x10/0x10
[  719.281689][T17789]  __x64_sys_socket+0x72/0xb0
[  719.281715][T17789]  ? lockdep_hardirqs_on+0x7c/0x110
[  719.281755][T17789]  do_syscall_64+0xcd/0xf80
[  719.281800][T17789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  719.281828][T17789] RIP: 0033:0x7f98e658f7c9
[  719.281852][T17789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  719.281880][T17789] RSP: 002b:00007f98e74a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  719.281908][T17789] RAX: ffffffffffffffda RBX: 00007f98e67e6090 RCX: 00007f98e658f7c9
[  719.281933][T17789] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[  719.281950][T17789] RBP: 00007f98e6613f91 R08: 0000000000000000 R09: 0000000000000000
[  719.281969][T17789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  719.281986][T17789] R13: 00007f98e67e6128 R14: 00007f98e67e6090 R15: 00007ffda8ae5be8
[  719.282026][T17789]  </TASK>
[  720.009058][T17819] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2721'.
[  720.024883][T17819] bridge0: port 2(bridge_slave_1) entered disabled state
[  720.032685][T17819] bridge0: port 1(bridge_slave_0) entered disabled state
[  720.369461][T17823] ptrace attach of "./syz-executor exec"[17824] was attempted by "./syz-executor exec"[17823]
[  720.391254][T17823] netlink: 217 bytes leftover after parsing attributes in process `syz.3.2722'.
[  720.641659][T17833] mmap: syz.3.2724 (17833): VmData 46071808 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data.
[  721.116635][T17853] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2726'.
[  721.148842][T17853] bridge0: port 2(bridge_slave_1) entered disabled state
[  721.156606][T17853] bridge0: port 1(bridge_slave_0) entered disabled state
[  721.709324][T17870] zswap: compressor  not available
[  721.903752][T17079] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  722.590375][T17896] ptrace attach of "./syz-executor exec"[17897] was attempted by "./syz-executor exec"[17896]
[  722.642160][T17896] netlink: 217 bytes leftover after parsing attributes in process `syz.3.2732'.
[  724.573661][T17940] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2736'.
[  725.431519][T17955] scsi_dev_info_list_add_str: bad dev info string '�' '' ''
[  725.500514][T17955] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24
[  726.202156][T17961] FAULT_INJECTION: forcing a failure.
[  726.202156][T17961] name failslab, interval 1, probability 0, space 0, times 0
[  726.220429][T17961] CPU: 0 UID: 0 PID: 17961 Comm: syz.3.2741 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  726.220455][T17961] Tainted: [L]=SOFTLOCKUP
[  726.220461][T17961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  726.220470][T17961] Call Trace:
[  726.220476][T17961]  <TASK>
[  726.220483][T17961]  dump_stack_lvl+0x16c/0x1f0
[  726.220510][T17961]  should_fail_ex+0x512/0x640
[  726.220527][T17961]  ? kmem_cache_alloc_noprof+0x62/0x770
[  726.220548][T17961]  should_failslab+0xc2/0x120
[  726.220578][T17961]  kmem_cache_alloc_noprof+0x83/0x770
[  726.220596][T17961]  ? getname_flags.part.0+0x4c/0x550
[  726.220616][T17961]  ? getname_flags.part.0+0x4c/0x550
[  726.220631][T17961]  getname_flags.part.0+0x4c/0x550
[  726.220650][T17961]  getname_flags+0x93/0xf0
[  726.220669][T17961]  do_sys_openat2+0xb9/0x290
[  726.220686][T17961]  ? __pfx_do_sys_openat2+0x10/0x10
[  726.220709][T17961]  __x64_sys_openat+0x174/0x210
[  726.220726][T17961]  ? __pfx___x64_sys_openat+0x10/0x10
[  726.220750][T17961]  do_syscall_64+0xcd/0xf80
[  726.220773][T17961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  726.220788][T17961] RIP: 0033:0x7f98e658f7c9
[  726.220801][T17961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  726.220818][T17961] RSP: 002b:00007f98e74ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  726.220832][T17961] RAX: ffffffffffffffda RBX: 00007f98e67e5fa0 RCX: 00007f98e658f7c9
[  726.220842][T17961] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  726.220852][T17961] RBP: 00007f98e6613f91 R08: 0000000000000000 R09: 0000000000000000
[  726.220861][T17961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  726.220870][T17961] R13: 00007f98e67e6038 R14: 00007f98e67e5fa0 R15: 00007ffda8ae5be8
[  726.220889][T17961]  </TASK>
[  726.530632][T17961] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2741'.
[  726.929615][T17973] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2743'.
[  727.023081][T17973] bond0: (slave bond_slave_1): Releasing backup interface
[  727.474311][T17990] ptrace attach of "./syz-executor exec"[17991] was attempted by "./syz-executor exec"[17990]
[  727.555640][T17990] netlink: 217 bytes leftover after parsing attributes in process `syz.3.2748'.
[  727.567684][T17995] FAULT_INJECTION: forcing a failure.
[  727.567684][T17995] name failslab, interval 1, probability 0, space 0, times 0
[  727.589320][T17995] CPU: 1 UID: 0 PID: 17995 Comm: syz.2.2746 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  727.589363][T17995] Tainted: [L]=SOFTLOCKUP
[  727.589373][T17995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  727.589389][T17995] Call Trace:
[  727.589397][T17995]  <TASK>
[  727.589407][T17995]  dump_stack_lvl+0x16c/0x1f0
[  727.589464][T17995]  should_fail_ex+0x512/0x640
[  727.589495][T17995]  ? __kmalloc_noprof+0xca/0x910
[  727.589530][T17995]  should_failslab+0xc2/0x120
[  727.589570][T17995]  __kmalloc_noprof+0xeb/0x910
[  727.589597][T17995]  ? __pfx_map_id_range_down+0x10/0x10
[  727.589633][T17995]  ? security_inode_alloc+0x3b/0x2b0
[  727.589656][T17995]  ? sk_prot_alloc+0x1a8/0x2a0
[  727.589695][T17995]  ? sk_prot_alloc+0x1a8/0x2a0
[  727.589723][T17995]  sk_prot_alloc+0x1a8/0x2a0
[  727.589758][T17995]  sk_alloc+0x36/0xe30
[  727.589790][T17995]  packet_create+0x127/0x8e0
[  727.589822][T17995]  __sock_create+0x339/0x8a0
[  727.589870][T17995]  __sys_socket+0x14d/0x260
[  727.589893][T17995]  ? __fget_files+0x20e/0x3c0
[  727.589931][T17995]  ? __pfx___sys_socket+0x10/0x10
[  727.589958][T17995]  ? xfd_validate_state+0x61/0x180
[  727.589994][T17995]  __x64_sys_socket+0x72/0xb0
[  727.590019][T17995]  ? lockdep_hardirqs_on+0x7c/0x110
[  727.590060][T17995]  do_syscall_64+0xcd/0xf80
[  727.590104][T17995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  727.590133][T17995] RIP: 0033:0x7efc8af8f7c9
[  727.590157][T17995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  727.590184][T17995] RSP: 002b:00007efc8be22038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  727.590212][T17995] RAX: ffffffffffffffda RBX: 00007efc8b1e6180 RCX: 00007efc8af8f7c9
[  727.590232][T17995] RDX: 0000000000000009 RSI: 0000000000000003 RDI: 0000000000000011
[  727.590246][T17995] RBP: 00007efc8b013f91 R08: 0000000000000000 R09: 0000000000000000
[  727.590263][T17995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  727.590280][T17995] R13: 00007efc8b1e6218 R14: 00007efc8b1e6180 R15: 00007ffc44d4dbd8
[  727.590319][T17995]  </TASK>
[  728.553475][   T30] audit: type=1804 audit(1766973595.370:141): pid=18012 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.2752" name="/newroot/273/file0" dev="tmpfs" ino=1432 res=1 errno=0
[  728.685035][   T30] audit: type=1804 audit(1766973595.410:142): pid=18010 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.2752" name="/newroot/273/file0" dev="tmpfs" ino=1432 res=1 errno=0
[  728.749422][T18007] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2751'.
[  730.762610][T18041] zswap: compressor  not available
[  732.170817][T17079] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  732.342721][T18069] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2766'.
[  732.374512][T18069] scsi_strcpy_devinfo: vendor string '��/&c��~n]	�|
[  732.374512][T18069] M�' is too long
[  732.411683][T18069] scsi_strcpy_devinfo: model string '�Dd5��K�2b�
[  732.411683][T18069] ���W����� ��' is too long
[  733.224033][T18083] netlink: 326 bytes leftover after parsing attributes in process `syz.5.2770'.
[  733.791637][T18101] FAULT_INJECTION: forcing a failure.
[  733.791637][T18101] name fail_futex, interval 1, probability 0, space 0, times 0
[  733.859969][T18094] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0
[  733.894384][T18101] CPU: 1 UID: 0 PID: 18101 Comm: syz.3.2771 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  733.894431][T18101] Tainted: [L]=SOFTLOCKUP
[  733.894441][T18101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  733.894459][T18101] Call Trace:
[  733.894469][T18101]  <TASK>
[  733.894480][T18101]  dump_stack_lvl+0x16c/0x1f0
[  733.894527][T18101]  should_fail_ex+0x512/0x640
[  733.894565][T18101]  get_futex_key+0x1085/0x15f0
[  733.894598][T18101]  ? __lock_acquire+0x436/0x2890
[  733.894625][T18101]  ? __pfx_get_futex_key+0x10/0x10
[  733.894667][T18101]  futex_wait_setup+0x9d/0x570
[  733.894716][T18101]  __futex_wait+0x193/0x2f0
[  733.894755][T18101]  ? __pfx___futex_wait+0x10/0x10
[  733.894799][T18101]  ? __pfx_futex_wake_mark+0x10/0x10
[  733.894837][T18101]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  733.894877][T18101]  ? __hrtimer_setup+0x176/0x280
[  733.894913][T18101]  ? ktime_add_safe+0x60/0x70
[  733.894949][T18101]  futex_wait+0xe8/0x380
[  733.894983][T18101]  ? __pfx_futex_wait+0x10/0x10
[  733.895024][T18101]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  733.895070][T18101]  do_futex+0x229/0x350
[  733.895101][T18101]  ? __pfx_do_futex+0x10/0x10
[  733.895143][T18101]  __x64_sys_futex+0x1e0/0x4c0
[  733.895180][T18101]  ? __pfx___x64_sys_futex+0x10/0x10
[  733.895213][T18101]  ? xfd_validate_state+0x61/0x180
[  733.895238][T18101]  ? __pfx_ksys_write+0x10/0x10
[  733.895287][T18101]  do_syscall_64+0xcd/0xf80
[  733.895331][T18101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  733.895360][T18101] RIP: 0033:0x7f98e658f7c9
[  733.895383][T18101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  733.895411][T18101] RSP: 002b:00007f98e7425038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  733.895438][T18101] RAX: ffffffffffffffda RBX: 00007f98e67e6450 RCX: 00007f98e658f7c9
[  733.895458][T18101] RDX: 00000000000000cc RSI: 0000000000000009 RDI: 0000200000000080
[  733.895476][T18101] RBP: 00007f98e6613f91 R08: 0000000000000000 R09: 0000000000000006
[  733.895493][T18101] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000
[  733.895509][T18101] R13: 00007f98e67e64e8 R14: 00007f98e67e6450 R15: 00007ffda8ae5be8
[  733.895544][T18101]  </TASK>
[  733.897526][   T30] audit: type=1800 audit(1766973600.758:143): pid=18085 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=76946 res=0 errno=0
[  734.293066][T18104] vhci_hcd vhci_hcd.2: invalid port number 252
[  734.299459][T18104] vhci_hcd vhci_hcd.2: default hub control req: 040f v0772 i00fc l2
[  734.523831][T18109] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2776'.
[  735.462721][T18127] zswap: compressor  not available
[  735.586432][T18137] netlink: 326 bytes leftover after parsing attributes in process `syz.5.2781'.
[  735.769725][T18145] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2782'.
[  735.903763][T18142] ptrace attach of "./syz-executor exec"[18143] was attempted by "./syz-executor exec"[18142]
[  735.964576][T18142] netlink: 217 bytes leftover after parsing attributes in process `syz.5.2783'.
[  736.874127][T18172] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2791'.
[  738.323057][T18216] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2803'.
[  738.365475][T18214] ERROR: Out of memory at tomoyo_memory_ok.
[  738.685739][T18227] FAULT_INJECTION: forcing a failure.
[  738.685739][T18227] name failslab, interval 1, probability 0, space 0, times 0
[  738.706473][T18227] CPU: 1 UID: 0 PID: 18227 Comm: syz.1.2806 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  738.706520][T18227] Tainted: [L]=SOFTLOCKUP
[  738.706530][T18227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  738.706547][T18227] Call Trace:
[  738.706558][T18227]  <TASK>
[  738.706570][T18227]  dump_stack_lvl+0x16c/0x1f0
[  738.706619][T18227]  should_fail_ex+0x512/0x640
[  738.706649][T18227]  ? kmem_cache_alloc_noprof+0x62/0x770
[  738.706688][T18227]  should_failslab+0xc2/0x120
[  738.706729][T18227]  kmem_cache_alloc_noprof+0x83/0x770
[  738.706762][T18227]  ? __kernfs_new_node+0xd2/0x9b0
[  738.706800][T18227]  ? __kernfs_new_node+0xd2/0x9b0
[  738.706829][T18227]  __kernfs_new_node+0xd2/0x9b0
[  738.706863][T18227]  ? __pfx___kernfs_new_node+0x10/0x10
[  738.706899][T18227]  ? find_held_lock+0x2b/0x80
[  738.706935][T18227]  ? kernfs_root+0xee/0x2a0
[  738.706973][T18227]  kernfs_new_node+0x13c/0x1e0
[  738.707014][T18227]  __kernfs_create_file+0x53/0x350
[  738.707062][T18227]  cgroup_addrm_files+0x546/0xc20
[  738.707113][T18227]  ? __xa_store+0x1dc/0x2e0
[  738.707138][T18227]  ? __pfx_cgroup_addrm_files+0x10/0x10
[  738.707176][T18227]  ? __pfx___xa_store+0x10/0x10
[  738.707214][T18227]  ? do_raw_spin_unlock+0x172/0x230
[  738.707255][T18227]  css_populate_dir+0x169/0x570
[  738.707305][T18227]  cgroup_apply_control_enable+0x3f3/0xbb0
[  738.707358][T18227]  cgroup_mkdir+0x5e0/0x12e0
[  738.707402][T18227]  ? __pfx_cgroup_mkdir+0x10/0x10
[  738.707448][T18227]  kernfs_iop_mkdir+0x111/0x190
[  738.707484][T18227]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  738.707516][T18227]  vfs_mkdir+0x731/0xb60
[  738.707552][T18227]  do_mkdirat+0x442/0x5e0
[  738.707591][T18227]  ? __pfx_do_mkdirat+0x10/0x10
[  738.707631][T18227]  ? strncpy_from_user+0x203/0x2e0
[  738.707666][T18227]  ? getname_flags.part.0+0x1c5/0x550
[  738.707700][T18227]  __x64_sys_mkdir+0xef/0x140
[  738.707744][T18227]  do_syscall_64+0xcd/0xf80
[  738.707787][T18227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  738.707815][T18227] RIP: 0033:0x7f7e2218f7c9
[  738.707845][T18227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  738.707879][T18227] RSP: 002b:00007f7e203d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  738.707907][T18227] RAX: ffffffffffffffda RBX: 00007f7e223e6090 RCX: 00007f7e2218f7c9
[  738.707927][T18227] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000
[  738.707946][T18227] RBP: 00007f7e22213f91 R08: 0000000000000000 R09: 0000000000000000
[  738.707965][T18227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  738.707982][T18227] R13: 00007f7e223e6128 R14: 00007f7e223e6090 R15: 00007ffcb0b997b8
[  738.708019][T18227]  </TASK>
[  738.708055][T18227] cgroup: cgroup_addrm_files: failed to add max_usage_in_bytes, err=-12
[  739.311450][T18237] netlink: 93 bytes leftover after parsing attributes in process `syz.2.2804'.
[  739.354182][T18218] netlink: 93 bytes leftover after parsing attributes in process `syz.2.2804'.
[  739.414012][T18237] random: crng reseeded on system resumption
[  740.749638][   T30] audit: type=1800 audit(1766973607.653:144): pid=18254 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=77574 res=0 errno=0
[  740.839022][T18278] nbd: must specify an index to disconnect
[  740.935301][T18254] could not allocate digest TFM handle 
[  741.218556][T18292] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2818'.
[  742.163648][T18310] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25
[  742.775039][T18311] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26
[  744.980801][T18351] hub 1-0:1.0: USB hub found
[  745.051575][T18351] hub 1-0:1.0: 1 port detected
[  745.075273][T18349] hub 1-0:1.0: USB hub found
[  745.083485][T18349] hub 1-0:1.0: 1 port detected
[  746.138765][T18372] zswap: compressor �W���;�0����?u=8�}���L��(�E���ֹ�jj�8+��xp���Ȝ��NkR����uo��o���<�S�H��}�Ed	}���P��8a<v not available
[  751.035283][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  751.041717][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  751.571304][   T30] audit: type=1800 audit(1766973618.530:145): pid=18510 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=79446 res=0 errno=0
[  751.731565][T18510] could not allocate digest TFM handle 
[  752.129760][T18531] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2871'.
[  752.219594][T18531] gretap0: refused to change device tx_queue_len
[  752.952763][T18554] ptrace attach of "./syz-executor exec"[15555] was attempted by "./syz-executor exec"[18554]
[  753.504191][T18568] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2881'.
[  753.532061][T18568] IPv6: NLM_F_CREATE should be specified when creating new route
[  753.590780][T18572] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2881'.
[  753.776884][T18568] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  753.784333][T18568] IPv6: NLM_F_CREATE should be set when creating new route
[  753.791611][T18568] IPv6: NLM_F_CREATE should be set when creating new route
[  754.263134][T18570] zswap: compressor  not available
[  754.566051][T18588] netlink: 217 bytes leftover after parsing attributes in process `syz.3.2886'.
[  754.729621][T18590] ptrace attach of ""[18597] was attempted by "./syz-executor exec"[18590]
[  754.754572][T18602] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2890'.
[  754.780090][T18603] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2890'.
[  754.792107][T18607] netlink: 217 bytes leftover after parsing attributes in process `syz.1.2887'.
[  754.977885][T18612] ima: Unable to open file: /surit��R�y/integrity?iqa/policy (-2)
[  755.156664][T18615] ima: policy update failed
[  755.172099][   T30] audit: type=1802 audit(1766973622.148:146): pid=18615 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2891" res=0 errno=0
[  755.645304][T18626] zswap: compressor  not available
[  755.882965][T18635] FAULT_INJECTION: forcing a failure.
[  755.882965][T18635] name failslab, interval 1, probability 0, space 0, times 0
[  755.947147][T18635] CPU: 0 UID: 0 PID: 18635 Comm: syz.1.2897 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  755.947176][T18635] Tainted: [L]=SOFTLOCKUP
[  755.947182][T18635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  755.947193][T18635] Call Trace:
[  755.947198][T18635]  <TASK>
[  755.947205][T18635]  dump_stack_lvl+0x16c/0x1f0
[  755.947233][T18635]  should_fail_ex+0x512/0x640
[  755.947250][T18635]  ? __kmalloc_noprof+0xca/0x910
[  755.947270][T18635]  should_failslab+0xc2/0x120
[  755.947293][T18635]  __kmalloc_noprof+0xeb/0x910
[  755.947310][T18635]  ? lsm_blob_alloc+0x68/0x90
[  755.947334][T18635]  ? lsm_blob_alloc+0x68/0x90
[  755.947353][T18635]  lsm_blob_alloc+0x68/0x90
[  755.947373][T18635]  security_sk_alloc+0x2f/0x270
[  755.947389][T18635]  sk_prot_alloc+0x1c7/0x2a0
[  755.947413][T18635]  sk_alloc+0x36/0xe30
[  755.947430][T18635]  __netlink_create+0x5e/0x2c0
[  755.947448][T18635]  ? __wake_up+0x3f/0x60
[  755.947470][T18635]  netlink_create+0x39e/0x620
[  755.947487][T18635]  ? __pfx_rtnetlink_bind+0x10/0x10
[  755.947507][T18635]  __sock_create+0x339/0x8a0
[  755.947534][T18635]  __sys_socket+0x14d/0x260
[  755.947547][T18635]  ? fput+0x70/0xf0
[  755.947561][T18635]  ? __pfx___sys_socket+0x10/0x10
[  755.947575][T18635]  ? xfd_validate_state+0x61/0x180
[  755.947588][T18635]  ? __pfx_ksys_write+0x10/0x10
[  755.947612][T18635]  __x64_sys_socket+0x72/0xb0
[  755.947625][T18635]  ? lockdep_hardirqs_on+0x7c/0x110
[  755.947646][T18635]  do_syscall_64+0xcd/0xf80
[  755.947669][T18635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  755.947684][T18635] RIP: 0033:0x7f7e2218f7c9
[  755.947704][T18635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  755.947720][T18635] RSP: 002b:00007f7e203f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  755.947735][T18635] RAX: ffffffffffffffda RBX: 00007f7e223e5fa0 RCX: 00007f7e2218f7c9
[  755.947747][T18635] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000010
[  755.947756][T18635] RBP: 00007f7e22213f91 R08: 0000000000000000 R09: 0000000000000000
[  755.947765][T18635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  755.947775][T18635] R13: 00007f7e223e6038 R14: 00007f7e223e5fa0 R15: 00007ffcb0b997b8
[  755.947795][T18635]  </TASK>
[  757.835149][T18655] zswap: compressor _� not available
[  758.111748][T18666] zswap: compressor  not available
[  759.023883][T18681] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2908'.
[  760.741920][T17079] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  764.219804][T18772] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2930'.
[  765.551635][T18793] zswap: compressor  not available
[  765.561016][T18798] FAULT_INJECTION: forcing a failure.
[  765.561016][T18798] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  765.577637][T18798] CPU: 1 UID: 0 PID: 18798 Comm: syz.3.2937 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  765.577680][T18798] Tainted: [L]=SOFTLOCKUP
[  765.577691][T18798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  765.577708][T18798] Call Trace:
[  765.577717][T18798]  <TASK>
[  765.577729][T18798]  dump_stack_lvl+0x16c/0x1f0
[  765.577771][T18798]  should_fail_ex+0x512/0x640
[  765.577806][T18798]  _copy_to_iter+0x29f/0x1710
[  765.577837][T18798]  ? __mutex_unlock_slowpath+0x161/0x790
[  765.577882][T18798]  ? __pfx__copy_to_iter+0x10/0x10
[  765.577911][T18798]  ? kernfs_seq_stop+0xcd/0x120
[  765.577954][T18798]  ? kernfs_put_active+0x86/0xe0
[  765.577993][T18798]  seq_read_iter+0xd02/0x12d0
[  765.578051][T18798]  kernfs_fop_read_iter+0x46c/0x610
[  765.578092][T18798]  ? rw_verify_area+0xcf/0x6c0
[  765.578128][T18798]  vfs_read+0x8bf/0xcf0
[  765.578172][T18798]  ? __pfx_vfs_read+0x10/0x10
[  765.578232][T18798]  ksys_read+0x12a/0x250
[  765.578267][T18798]  ? __pfx_ksys_read+0x10/0x10
[  765.578314][T18798]  do_syscall_64+0xcd/0xf80
[  765.578356][T18798]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  765.578383][T18798] RIP: 0033:0x7f98e658f7c9
[  765.578404][T18798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  765.578427][T18798] RSP: 002b:00007f98e74a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  765.578451][T18798] RAX: ffffffffffffffda RBX: 00007f98e67e6090 RCX: 00007f98e658f7c9
[  765.578467][T18798] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000004
[  765.578478][T18798] RBP: 00007f98e74a9090 R08: 0000000000000000 R09: 0000000000000000
[  765.578487][T18798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  765.578495][T18798] R13: 00007f98e67e6128 R14: 00007f98e67e6090 R15: 00007ffda8ae5be8
[  765.578515][T18798]  </TASK>
[  765.970631][T18803] zswap: compressor  not available
[  767.829836][T18855] ptrace attach of "./syz-executor exec"[18856] was attempted by "./syz-executor exec"[18855]
[  767.894376][T18858] netlink: 266 bytes leftover after parsing attributes in process `syz.3.2952'.
[  767.915666][T18855] netlink: 217 bytes leftover after parsing attributes in process `syz.5.2950'.
[  767.948042][T18858] IPv6: NLM_F_CREATE should be specified when creating new route
[  768.351423][T18866] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2955'.
[  768.632273][T18866] zswap: compressor  not available
[  769.331909][T18878] netlink: 'syz.5.2957': attribute type 1 has an invalid length.
[  769.580530][T17079] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  769.952947][T18903] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  769.959849][T18903] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  770.220629][T18907] zswap: compressor  not available
[  770.440420][T18913] netlink: 217 bytes leftover after parsing attributes in process `syz.5.2964'.
[  772.655748][T18957] zswap: compressor  not available
[  773.323662][T18971] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2977'.
[  774.356166][T18987] ptrace attach of "./syz-executor exec"[18988] was attempted by "./syz-executor exec"[18987]
[  774.390250][T18987] netlink: 217 bytes leftover after parsing attributes in process `syz.2.2981'.
[  774.901642][T18995] FAULT_INJECTION: forcing a failure.
[  774.901642][T18995] name failslab, interval 1, probability 0, space 0, times 0
[  774.932527][T18995] CPU: 1 UID: 0 PID: 18995 Comm: syz.1.2983 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  774.932569][T18995] Tainted: [L]=SOFTLOCKUP
[  774.932579][T18995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  774.932594][T18995] Call Trace:
[  774.932604][T18995]  <TASK>
[  774.932615][T18995]  dump_stack_lvl+0x16c/0x1f0
[  774.932658][T18995]  should_fail_ex+0x512/0x640
[  774.932688][T18995]  ? kmem_cache_alloc_noprof+0x62/0x770
[  774.932724][T18995]  should_failslab+0xc2/0x120
[  774.932765][T18995]  kmem_cache_alloc_noprof+0x83/0x770
[  774.932797][T18995]  ? __kernfs_new_node+0xd2/0x9b0
[  774.932836][T18995]  ? __kernfs_new_node+0xd2/0x9b0
[  774.932865][T18995]  __kernfs_new_node+0xd2/0x9b0
[  774.932900][T18995]  ? __pfx___kernfs_new_node+0x10/0x10
[  774.932940][T18995]  ? find_held_lock+0x2b/0x80
[  774.932977][T18995]  ? kernfs_root+0xee/0x2a0
[  774.933014][T18995]  kernfs_new_node+0x13c/0x1e0
[  774.933057][T18995]  __kernfs_create_file+0x53/0x350
[  774.933103][T18995]  cgroup_addrm_files+0x546/0xc20
[  774.933160][T18995]  ? __xa_store+0x1dc/0x2e0
[  774.933186][T18995]  ? __pfx_cgroup_addrm_files+0x10/0x10
[  774.933223][T18995]  ? __pfx___xa_store+0x10/0x10
[  774.933262][T18995]  ? do_raw_spin_unlock+0x172/0x230
[  774.933301][T18995]  css_populate_dir+0x169/0x570
[  774.933341][T18995]  cgroup_apply_control_enable+0x3f3/0xbb0
[  774.933392][T18995]  cgroup_mkdir+0x5e0/0x12e0
[  774.933436][T18995]  ? __pfx_cgroup_mkdir+0x10/0x10
[  774.933476][T18995]  kernfs_iop_mkdir+0x111/0x190
[  774.933513][T18995]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  774.933545][T18995]  vfs_mkdir+0x731/0xb60
[  774.933582][T18995]  do_mkdirat+0x442/0x5e0
[  774.933626][T18995]  ? __pfx_do_mkdirat+0x10/0x10
[  774.933665][T18995]  ? strncpy_from_user+0x203/0x2e0
[  774.933698][T18995]  ? getname_flags.part.0+0x1c5/0x550
[  774.933732][T18995]  __x64_sys_mkdir+0xef/0x140
[  774.933773][T18995]  do_syscall_64+0xcd/0xf80
[  774.933829][T18995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  774.933856][T18995] RIP: 0033:0x7f7e2218f7c9
[  774.933879][T18995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  774.933905][T18995] RSP: 002b:00007f7e203d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  774.933931][T18995] RAX: ffffffffffffffda RBX: 00007f7e223e6090 RCX: 00007f7e2218f7c9
[  774.933950][T18995] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000
[  774.933967][T18995] RBP: 00007f7e22213f91 R08: 0000000000000000 R09: 0000000000000000
[  774.933984][T18995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  774.934000][T18995] R13: 00007f7e223e6128 R14: 00007f7e223e6090 R15: 00007ffcb0b997b8
[  774.934039][T18995]  </TASK>
[  774.937471][T18995] cgroup: cgroup_addrm_files: failed to add kmem.limit_in_bytes, err=-12
[  775.506074][T19006] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE�r��҄y�*�"�l-���y–��
[  776.008433][T19027] ptrace attach of "./syz-executor exec"[19028] was attempted by "./syz-executor exec"[19027]
[  776.126490][T19027] netlink: 217 bytes leftover after parsing attributes in process `syz.2.2990'.
[  777.226722][T19036] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  777.232981][T19036] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  777.243509][T19036] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  777.271654][T19036] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  777.609025][T19059] loop6: detected capacity change from 0 to 8
[  779.171415][T19087] random: crng reseeded on system resumption
[  779.287311][T13743] Bluetooth: hci4: command 0x0c1a tx timeout
[  779.293389][T13717] Bluetooth: hci0: command 0x0c1a tx timeout
[  779.299545][T15793] Bluetooth: hci1: command 0x0c1a tx timeout
[  779.307734][T17079] Bluetooth: hci3: command 0x0c1a tx timeout
[  779.893081][T19116] ima: Unable to open file: /surit��R�y/integrity?iqa/policy (-2)
[  780.096670][T19115] ima: policy update failed
[  780.133831][   T30] audit: type=1802 audit(1766973647.238:147): pid=19115 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.3008" res=0 errno=0
[  781.214479][T19129] zswap: compressor  not available
[  781.220102][T19132] FAULT_INJECTION: forcing a failure.
[  781.220102][T19132] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  781.277862][T19132] CPU: 0 UID: 0 PID: 19132 Comm: syz.5.3011 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  781.277904][T19132] Tainted: [L]=SOFTLOCKUP
[  781.277913][T19132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  781.277928][T19132] Call Trace:
[  781.277937][T19132]  <TASK>
[  781.277948][T19132]  dump_stack_lvl+0x16c/0x1f0
[  781.277990][T19132]  should_fail_ex+0x512/0x640
[  781.278025][T19132]  should_fail_alloc_page+0xe7/0x130
[  781.278068][T19132]  prepare_alloc_pages+0x401/0x670
[  781.278115][T19132]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  781.278160][T19132]  ? __lock_acquire+0x436/0x2890
[  781.278194][T19132]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  781.278241][T19132]  ? is_bpf_text_address+0x8a/0x1a0
[  781.278286][T19132]  ? bpf_ksym_find+0x124/0x1c0
[  781.278315][T19132]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  781.278357][T19132]  ? is_bpf_text_address+0x94/0x1a0
[  781.278390][T19132]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  781.278432][T19132]  ? policy_nodemask+0xea/0x4e0
[  781.278473][T19132]  alloc_pages_mpol+0x1fb/0x550
[  781.278510][T19132]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  781.278557][T19132]  folio_alloc_mpol_noprof+0x36/0x2f0
[  781.278587][T19132]  shmem_alloc_folio+0x135/0x160
[  781.278630][T19132]  shmem_alloc_and_add_folio+0x494/0xc20
[  781.278669][T19132]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  781.278702][T19132]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  781.278740][T19132]  shmem_get_folio_gfp+0x67f/0x1610
[  781.278778][T19132]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  781.278819][T19132]  shmem_fault+0x1fe/0xa00
[  781.278856][T19132]  ? __pfx_shmem_fault+0x10/0x10
[  781.278885][T19132]  ? trace_kmem_cache_alloc+0x28/0xb0
[  781.278924][T19132]  ? ptlock_alloc+0x1f/0x70
[  781.278954][T19132]  ? lockdep_init_map_type+0x5c/0x270
[  781.278983][T19132]  ? __raw_spin_lock_init+0x3a/0x110
[  781.279021][T19132]  __do_fault+0x10d/0x490
[  781.279057][T19132]  do_fault+0x302/0x1ad0
[  781.279094][T19132]  ? __pfx_filemap_map_pages+0x10/0x10
[  781.279125][T19132]  ? __pmd_alloc+0x6aa/0x9c0
[  781.279168][T19132]  __handle_mm_fault+0x1919/0x2bb0
[  781.279208][T19132]  ? __pfx___handle_mm_fault+0x10/0x10
[  781.279267][T19132]  ? find_vma+0xbf/0x140
[  781.279302][T19132]  ? __pfx_find_vma+0x10/0x10
[  781.279343][T19132]  handle_mm_fault+0x3fe/0xad0
[  781.279379][T19132]  do_user_addr_fault+0x7a6/0x1370
[  781.279416][T19132]  ? rcu_is_watching+0x12/0xc0
[  781.279457][T19132]  exc_page_fault+0x64/0xc0
[  781.279497][T19132]  asm_exc_page_fault+0x26/0x30
[  781.279524][T19132] RIP: 0010:rep_movs_alternative+0x33/0x90
[  781.279555][T19132] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 0d 81 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb
[  781.279579][T19132] RSP: 0018:ffffc9000caffad8 EFLAGS: 00050246
[  781.279600][T19132] RAX: 0a30303030303033 RBX: 0000000000000008 RCX: 0000000000000008
[  781.279617][T19132] RDX: ffffed100523b401 RSI: ffff8880291da000 RDI: 0000000000000000
[  781.279633][T19132] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed100523b400
[  781.279649][T19132] R10: ffff8880291da007 R11: ffff888032828b30 R12: ffffc9000caffd90
[  781.279666][T19132] R13: 0000000000000008 R14: ffff8880291da000 R15: 00007ffffffff000
[  781.279703][T19132]  _copy_to_iter+0x383/0x1710
[  781.279737][T19132]  ? __mutex_unlock_slowpath+0x161/0x790
[  781.279782][T19132]  ? __pfx__copy_to_iter+0x10/0x10
[  781.279812][T19132]  ? kernfs_seq_stop+0xcd/0x120
[  781.279857][T19132]  ? kernfs_put_active+0x86/0xe0
[  781.279895][T19132]  seq_read_iter+0xd02/0x12d0
[  781.279947][T19132]  kernfs_fop_read_iter+0x46c/0x610
[  781.279988][T19132]  ? rw_verify_area+0xcf/0x6c0
[  781.280026][T19132]  vfs_read+0x8bf/0xcf0
[  781.280071][T19132]  ? __pfx_vfs_read+0x10/0x10
[  781.280132][T19132]  ksys_read+0x12a/0x250
[  781.280169][T19132]  ? __pfx_ksys_read+0x10/0x10
[  781.280215][T19132]  do_syscall_64+0xcd/0xf80
[  781.280265][T19132]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  781.280292][T19132] RIP: 0033:0x7f9003b8f7c9
[  781.280315][T19132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  781.280341][T19132] RSP: 002b:00007f9004976038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  781.280365][T19132] RAX: ffffffffffffffda RBX: 00007f9003de6090 RCX: 00007f9003b8f7c9
[  781.280384][T19132] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000004
[  781.280400][T19132] RBP: 00007f9004976090 R08: 0000000000000000 R09: 0000000000000000
[  781.280417][T19132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  781.280433][T19132] R13: 00007f9003de6128 R14: 00007f9003de6090 R15: 00007ffe16dd3298
[  781.280472][T19132]  </TASK>
[  782.113553][T19137] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  782.131341][T19137] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  783.361890][T19169] sd 0:0:1:0: PR command failed: 1026
[  783.371266][T19169] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  783.394062][T19169] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  784.141057][T19185] ptrace attach of "./syz-executor exec"[19187] was attempted by "./syz-executor exec"[19185]
[  784.191993][T19185] netlink: 217 bytes leftover after parsing attributes in process `syz.5.3026'.
[  784.605727][ T6769] Process accounting resumed
[  785.425520][   T30] audit: type=1800 audit(1766973652.538:148): pid=19203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=82323 res=0 errno=0
[  785.602180][T19216] netlink: 'syz.1.3031': attribute type 4 has an invalid length.
[  785.654232][T19203] could not allocate digest TFM handle 
[  785.932354][T19221] zswap: compressor  not available
[  786.041162][T19233] ptrace attach of "./syz-executor exec"[19234] was attempted by "./syz-executor exec"[19233]
[  786.098891][T19233] netlink: 217 bytes leftover after parsing attributes in process `syz.5.3036'.
[  786.127069][T19236] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3037'.
[  786.183692][T19236] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3037'.
[  786.310771][T19241] bridge0: port 3(team0) entered blocking state
[  786.366256][T19241] bridge0: port 3(team0) entered disabled state
[  786.410694][T19241] team0: entered allmulticast mode
[  786.454218][T19241] team_slave_0: entered allmulticast mode
[  786.509246][T19241] team_slave_1: entered allmulticast mode
[  786.556511][T19246] FAULT_INJECTION: forcing a failure.
[  786.556511][T19246] name failslab, interval 1, probability 0, space 0, times 0
[  786.612156][T19246] CPU: 0 UID: 0 PID: 19246 Comm: syz.3.3040 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  786.612185][T19246] Tainted: [L]=SOFTLOCKUP
[  786.612192][T19246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  786.612203][T19246] Call Trace:
[  786.612209][T19246]  <TASK>
[  786.612216][T19246]  dump_stack_lvl+0x16c/0x1f0
[  786.612247][T19246]  should_fail_ex+0x512/0x640
[  786.612265][T19246]  ? kmem_cache_alloc_noprof+0x62/0x770
[  786.612286][T19246]  should_failslab+0xc2/0x120
[  786.612311][T19246]  kmem_cache_alloc_noprof+0x83/0x770
[  786.612330][T19246]  ? security_file_alloc+0x34/0x2b0
[  786.612353][T19246]  ? security_file_alloc+0x34/0x2b0
[  786.612386][T19246]  security_file_alloc+0x34/0x2b0
[  786.612406][T19246]  init_file+0x93/0x4c0
[  786.612423][T19246]  alloc_empty_file+0x73/0x1e0
[  786.612441][T19246]  path_openat+0xde/0x3140
[  786.612463][T19246]  ? do_syscall_64+0xcd/0xf80
[  786.612491][T19246]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  786.612518][T19246]  ? __pfx_path_openat+0x10/0x10
[  786.612548][T19246]  do_filp_open+0x20b/0x470
[  786.612572][T19246]  ? __pfx_do_filp_open+0x10/0x10
[  786.612610][T19246]  ? alloc_fd+0x471/0x7d0
[  786.612638][T19246]  do_sys_openat2+0x121/0x290
[  786.612654][T19246]  ? __pfx_do_sys_openat2+0x10/0x10
[  786.612690][T19246]  ? __sys_sendmsg+0x18c/0x220
[  786.612717][T19246]  __x64_sys_openat+0x174/0x210
[  786.612736][T19246]  ? __pfx___x64_sys_openat+0x10/0x10
[  786.612761][T19246]  do_syscall_64+0xcd/0xf80
[  786.612787][T19246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  786.612803][T19246] RIP: 0033:0x7f98e658f7c9
[  786.612829][T19246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  786.612843][T19246] RSP: 002b:00007f98e74ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  786.612859][T19246] RAX: ffffffffffffffda RBX: 00007f98e67e5fa0 RCX: 00007f98e658f7c9
[  786.612869][T19246] RDX: 0000000000000042 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  786.612880][T19246] RBP: 00007f98e6613f91 R08: 0000000000000000 R09: 0000000000000000
[  786.612890][T19246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  786.612899][T19246] R13: 00007f98e67e6038 R14: 00007f98e67e5fa0 R15: 00007ffda8ae5be8
[  786.612919][T19246]  </TASK>
[  786.624830][T19241] team0: entered promiscuous mode
[  786.924186][T19241] team_slave_0: entered promiscuous mode
[  786.953801][T19241] team_slave_1: entered promiscuous mode
[  787.687880][T19263] netlink: 'syz.3.3044': attribute type 33 has an invalid length.
[  787.919208][T19275] netlink: 'syz.2.3048': attribute type 28 has an invalid length.
[  787.927363][T19275] netlink: 'syz.2.3048': attribute type 3 has an invalid length.
[  787.935299][T19275] netlink: 306 bytes leftover after parsing attributes in process `syz.2.3048'.
[  789.780949][T19316] ptrace attach of "./syz-executor exec"[19317] was attempted by "./syz-executor exec"[19316]
[  789.829554][T19320] netlink: 217 bytes leftover after parsing attributes in process `syz.2.3059'.
[  791.906269][   T30] audit: type=1800 audit(1766973659.072:149): pid=19361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=83376 res=0 errno=0
[  792.186361][T19361] could not allocate digest TFM handle 
[  792.800843][T19371] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input27
[  795.262637][T19412] zswap: compressor  not available
[  796.019349][T19437] FAULT_INJECTION: forcing a failure.
[  796.019349][T19437] name failslab, interval 1, probability 0, space 0, times 0
[  796.044420][T19437] CPU: 1 UID: 0 PID: 19437 Comm: syz.1.3083 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  796.044446][T19437] Tainted: [L]=SOFTLOCKUP
[  796.044452][T19437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  796.044461][T19437] Call Trace:
[  796.044466][T19437]  <TASK>
[  796.044473][T19437]  dump_stack_lvl+0x16c/0x1f0
[  796.044499][T19437]  should_fail_ex+0x512/0x640
[  796.044516][T19437]  ? kmem_cache_alloc_noprof+0x62/0x770
[  796.044536][T19437]  should_failslab+0xc2/0x120
[  796.044558][T19437]  kmem_cache_alloc_noprof+0x83/0x770
[  796.044575][T19437]  ? security_file_alloc+0x34/0x2b0
[  796.044597][T19437]  ? security_file_alloc+0x34/0x2b0
[  796.044614][T19437]  security_file_alloc+0x34/0x2b0
[  796.044632][T19437]  init_file+0x93/0x4c0
[  796.044648][T19437]  alloc_empty_file+0x73/0x1e0
[  796.044663][T19437]  alloc_file_pseudo+0x13a/0x230
[  796.044680][T19437]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  796.044696][T19437]  ? alloc_fd+0x471/0x7d0
[  796.044720][T19437]  sock_alloc_file+0x50/0x210
[  796.044740][T19437]  __sys_socket+0x1c0/0x260
[  796.044753][T19437]  ? __x64_sys_openat+0x174/0x210
[  796.044770][T19437]  ? __pfx___sys_socket+0x10/0x10
[  796.044783][T19437]  ? xfd_validate_state+0x61/0x180
[  796.044802][T19437]  __x64_sys_socket+0x72/0xb0
[  796.044817][T19437]  ? lockdep_hardirqs_on+0x7c/0x110
[  796.044838][T19437]  do_syscall_64+0xcd/0xf80
[  796.044860][T19437]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  796.044874][T19437] RIP: 0033:0x7f7e2218f7c9
[  796.044887][T19437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  796.044901][T19437] RSP: 002b:00007f7e203b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  796.044916][T19437] RAX: ffffffffffffffda RBX: 00007f7e223e6180 RCX: 00007f7e2218f7c9
[  796.044926][T19437] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  796.044935][T19437] RBP: 00007f7e22213f91 R08: 0000000000000000 R09: 0000000000000000
[  796.044944][T19437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  796.044952][T19437] R13: 00007f7e223e6218 R14: 00007f7e223e6180 R15: 00007ffcb0b997b8
[  796.044971][T19437]  </TASK>
[  796.629250][T19439] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input28
[  797.517644][T19466] FAULT_INJECTION: forcing a failure.
[  797.517644][T19466] name failslab, interval 1, probability 0, space 0, times 0
[  797.559751][T19466] CPU: 1 UID: 0 PID: 19466 Comm: syz.2.3087 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  797.559802][T19466] Tainted: [L]=SOFTLOCKUP
[  797.559813][T19466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  797.559831][T19466] Call Trace:
[  797.559841][T19466]  <TASK>
[  797.559854][T19466]  dump_stack_lvl+0x16c/0x1f0
[  797.559902][T19466]  should_fail_ex+0x512/0x640
[  797.559934][T19466]  ? fs_reclaim_acquire+0xae/0x150
[  797.559981][T19466]  should_failslab+0xc2/0x120
[  797.560023][T19466]  __kmalloc_noprof+0xeb/0x910
[  797.560056][T19466]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  797.560102][T19466]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  797.560152][T19466]  tomoyo_realpath_from_path+0xc2/0x6e0
[  797.560193][T19466]  tomoyo_check_open_permission+0x2ab/0x3c0
[  797.560225][T19466]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  797.560289][T19466]  ? lock_acquire+0x179/0x330
[  797.560318][T19466]  ? find_held_lock+0x2b/0x80
[  797.560354][T19466]  ? mnt_get_write_access+0x52/0x2f0
[  797.560402][T19466]  tomoyo_file_open+0x6b/0x90
[  797.560447][T19466]  security_file_open+0x84/0x1e0
[  797.560485][T19466]  do_dentry_open+0x597/0x1590
[  797.560528][T19466]  ? security_inode_permission+0xbf/0x260
[  797.560568][T19466]  vfs_open+0x82/0x3f0
[  797.560603][T19466]  path_openat+0x2078/0x3140
[  797.560663][T19466]  ? __pfx_path_openat+0x10/0x10
[  797.560720][T19466]  do_filp_open+0x20b/0x470
[  797.560765][T19466]  ? __pfx_do_filp_open+0x10/0x10
[  797.560835][T19466]  ? alloc_fd+0x471/0x7d0
[  797.560887][T19466]  do_sys_openat2+0x121/0x290
[  797.560919][T19466]  ? __pfx_do_sys_openat2+0x10/0x10
[  797.560966][T19466]  __x64_sys_openat+0x174/0x210
[  797.560999][T19466]  ? __pfx___x64_sys_openat+0x10/0x10
[  797.561047][T19466]  do_syscall_64+0xcd/0xf80
[  797.561092][T19466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  797.561121][T19466] RIP: 0033:0x7efc8af8f7c9
[  797.561146][T19466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  797.561175][T19466] RSP: 002b:00007efc8be43038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  797.561202][T19466] RAX: ffffffffffffffda RBX: 00007efc8b1e6090 RCX: 00007efc8af8f7c9
[  797.561222][T19466] RDX: 0000000000080002 RSI: 0000200000000480 RDI: ffffffffffffff9c
[  797.561241][T19466] RBP: 00007efc8b013f91 R08: 0000000000000000 R09: 0000000000000000
[  797.561260][T19466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  797.561278][T19466] R13: 00007efc8b1e6128 R14: 00007efc8b1e6090 R15: 00007ffc44d4dbd8
[  797.561318][T19466]  </TASK>
[  797.854382][T19466] ERROR: Out of memory at tomoyo_realpath_from_path.
[  799.158214][T19503] zswap: compressor �W���;�0����?u=8�}���L��(�E���ֹ�jj�8+��xp���Ȝ��NkR����uo��o���<�S�H��}�Ed	}���P��8a<v not available
[  800.146257][T19526] ptrace attach of "./syz-executor exec"[19529] was attempted by "./syz-executor exec"[19526]
[  800.171599][T19526] netlink: 217 bytes leftover after parsing attributes in process `syz.2.3102'.
[  800.487191][T19539] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  800.493323][T19539] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  800.503251][T19539] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  800.576225][T19539] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  802.540026][T13717] Bluetooth: hci0: command 0x0c1a tx timeout
[  802.546384][T15793] Bluetooth: hci4: command 0x0c1a tx timeout
[  802.552447][T17079] Bluetooth: hci1: command 0x0c1a tx timeout
[  802.604302][T17079] Bluetooth: hci3: command 0x0c1a tx timeout
[  802.751243][T19583] netlink: 217 bytes leftover after parsing attributes in process `syz.5.3115'.
[  802.858560][   T30] audit: type=1804 audit(1766973670.079:150): pid=19575 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3113" name="/newroot/sys/kernel/tracing/per_cpu/cpu1/trace" dev="tracefs" ino=1180 res=1 errno=0
[  803.422666][T19603] zswap: compressor  not available
[  804.098447][T19620] netlink: 217 bytes leftover after parsing attributes in process `syz.5.3127'.
[  804.648449][T19637] Invalid ELF header magic: != ELF
[  804.740344][T19639] zswap: compressor  not available
[  806.195658][T19670] ptrace attach of "./syz-executor exec"[19671] was attempted by "./syz-executor exec"[19670]
[  806.227329][T19670] netlink: 217 bytes leftover after parsing attributes in process `syz.3.3139'.
[  809.691162][T19743] hub 3-0:1.0: USB hub found
[  809.710186][T19743] hub 3-0:1.0: 1 port detected
[  809.778328][T19743] usb usb3: authorized to connect
[  810.887338][T19761] zswap: compressor  not available
[  811.495151][T19786] FAULT_INJECTION: forcing a failure.
[  811.495151][T19786] name failslab, interval 1, probability 0, space 0, times 0
[  811.641499][T19786] CPU: 0 UID: 8 PID: 19786 Comm: syz.2.3166 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  811.641526][T19786] Tainted: [L]=SOFTLOCKUP
[  811.641532][T19786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  811.641541][T19786] Call Trace:
[  811.641547][T19786]  <TASK>
[  811.641554][T19786]  dump_stack_lvl+0x16c/0x1f0
[  811.641580][T19786]  should_fail_ex+0x512/0x640
[  811.641598][T19786]  ? __kmalloc_cache_noprof+0x5f/0x800
[  811.641617][T19786]  should_failslab+0xc2/0x120
[  811.641640][T19786]  __kmalloc_cache_noprof+0x80/0x800
[  811.641657][T19786]  ? assoc_array_insert+0x10c/0x3970
[  811.641680][T19786]  ? assoc_array_insert+0x10c/0x3970
[  811.641699][T19786]  assoc_array_insert+0x10c/0x3970
[  811.641720][T19786]  ? __key_link_lock+0x92/0xb0
[  811.641748][T19786]  ? __pfx_assoc_array_insert+0x10/0x10
[  811.641772][T19786]  ? __pfx_down_write+0x10/0x10
[  811.641786][T19786]  ? do_raw_spin_lock+0x12c/0x2b0
[  811.641802][T19786]  ? find_held_lock+0x2b/0x80
[  811.641823][T19786]  __key_link_begin+0xf5/0x260
[  811.641845][T19786]  key_instantiate_and_link+0x1fc/0x4b0
[  811.641871][T19786]  ? __pfx_key_instantiate_and_link+0x10/0x10
[  811.641900][T19786]  ? __pfx_keyring_search_iterator+0x10/0x10
[  811.641925][T19786]  keyring_alloc+0x7a/0xc0
[  811.641946][T19786]  look_up_user_keyrings+0x46d/0x790
[  811.641967][T19786]  ? __pfx_look_up_user_keyrings+0x10/0x10
[  811.641987][T19786]  ? __pfx_futex_wake+0x10/0x10
[  811.642009][T19786]  lookup_user_key+0xdf6/0x1300
[  811.642028][T19786]  ? __pfx_lookup_user_key+0x10/0x10
[  811.642050][T19786]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  811.642070][T19786]  ? __x64_sys_futex+0x1e0/0x4c0
[  811.642086][T19786]  ? __x64_sys_futex+0x1e9/0x4c0
[  811.642106][T19786]  keyctl_session_to_parent+0x28/0xaf0
[  811.642125][T19786]  __do_sys_keyctl+0x25c/0x590
[  811.642141][T19786]  do_syscall_64+0xcd/0xf80
[  811.642164][T19786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  811.642179][T19786] RIP: 0033:0x7efc8af8f7c9
[  811.642192][T19786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  811.642206][T19786] RSP: 002b:00007efc8be43038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  811.642222][T19786] RAX: ffffffffffffffda RBX: 00007efc8b1e6090 RCX: 00007efc8af8f7c9
[  811.642232][T19786] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000012
[  811.642242][T19786] RBP: 00007efc8b013f91 R08: 0000000000000001 R09: 0000000000000000
[  811.642251][T19786] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000
[  811.642261][T19786] R13: 00007efc8b1e6128 R14: 00007efc8b1e6090 R15: 00007ffc44d4dbd8
[  811.642281][T19786]  </TASK>
[  812.162975][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  812.174288][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  812.543887][T19807] netlink: 'syz.2.3170': attribute type 11 has an invalid length.
[  812.551748][T19807] netlink: 'syz.2.3170': attribute type 11 has an invalid length.
[  812.589909][T19803] sp0: Synchronizing with TNC
[  812.613351][T19807] netlink: 'syz.2.3170': attribute type 11 has an invalid length.
[  812.628386][T19807] netlink: 'syz.2.3170': attribute type 11 has an invalid length.
[  812.739801][T19810] zswap: compressor  not available
[  812.786260][T19810] netlink: 350 bytes leftover after parsing attributes in process `syz.5.3172'.
[  814.297524][   T30] audit: type=1800 audit(1766973681.579:151): pid=19868 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3186" name="trace_pipe" dev="tracefs" ino=1173 res=0 errno=0
[  814.505425][T19868] zswap: compressor  not available
[  815.541637][T19897] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input29
[  815.611708][T19900] syz.5.3192: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  815.611900][T19900] CPU: 0 UID: 0 PID: 19900 Comm: syz.5.3192 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  815.611937][T19900] Tainted: [L]=SOFTLOCKUP
[  815.611947][T19900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  815.611963][T19900] Call Trace:
[  815.611972][T19900]  <TASK>
[  815.611991][T19900]  dump_stack_lvl+0x16c/0x1f0
[  815.612035][T19900]  warn_alloc+0x248/0x3a0
[  815.612070][T19900]  ? __pfx_warn_alloc+0x10/0x10
[  815.612103][T19900]  ? __lock_acquire+0x436/0x2890
[  815.612148][T19900]  ? dvb_dvr_do_ioctl+0x15d/0x290
[  815.612173][T19900]  __vmalloc_node_range_noprof+0x12c2/0x16b0
[  815.612202][T19900]  ? __pfx___might_resched+0x10/0x10
[  815.612240][T19900]  ? rcu_is_watching+0x12/0xc0
[  815.612281][T19900]  ? dvb_dvr_do_ioctl+0x15d/0x290
[  815.612305][T19900]  ? find_held_lock+0x2b/0x80
[  815.612341][T19900]  ? dvb_dvr_do_ioctl+0x7e/0x290
[  815.612366][T19900]  ? tomoyo_path_number_perm+0x295/0x580
[  815.612400][T19900]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  815.612426][T19900]  ? __pfx___mutex_lock+0x10/0x10
[  815.612466][T19900]  ? tomoyo_path_number_perm+0x18d/0x580
[  815.612498][T19900]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  815.612536][T19900]  ? dvb_dvr_do_ioctl+0x15d/0x290
[  815.612560][T19900]  __vmalloc_node_noprof+0xad/0xf0
[  815.612585][T19900]  ? dvb_dvr_do_ioctl+0x15d/0x290
[  815.612617][T19900]  dvb_dvr_do_ioctl+0x15d/0x290
[  815.612648][T19900]  dvb_usercopy+0x167/0x340
[  815.612687][T19900]  ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[  815.612712][T19900]  ? __pfx_dvb_usercopy+0x10/0x10
[  815.612759][T19900]  ? __fget_files+0x20e/0x3c0
[  815.612799][T19900]  dvb_dvr_ioctl+0x29/0x40
[  815.612822][T19900]  ? __pfx_dvb_dvr_ioctl+0x10/0x10
[  815.612847][T19900]  __x64_sys_ioctl+0x18e/0x210
[  815.612883][T19900]  do_syscall_64+0xcd/0xf80
[  815.612924][T19900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  815.612952][T19900] RIP: 0033:0x7f9003b8f7c9
[  815.612981][T19900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  815.613006][T19900] RSP: 002b:00007f9004976038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  815.613031][T19900] RAX: ffffffffffffffda RBX: 00007f9003de6090 RCX: 00007f9003b8f7c9
[  815.613050][T19900] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000003
[  815.613068][T19900] RBP: 00007f9003c13f91 R08: 0000000000000000 R09: 0000000000000000
[  815.613085][T19900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  815.613101][T19900] R13: 00007f9003de6128 R14: 00007f9003de6090 R15: 00007ffe16dd3298
[  815.613139][T19900]  </TASK>
[  815.615435][T19900] Mem-Info:
[  815.615451][T19900] active_anon:22479 inactive_anon:0 isolated_anon:0
[  815.615451][T19900]  active_file:10799 inactive_file:46695 isolated_file:0
[  815.615451][T19900]  unevictable:768 dirty:433 writeback:0
[  815.615451][T19900]  slab_reclaimable:15161 slab_unreclaimable:116782
[  815.615451][T19900]  mapped:29506 shmem:10258 pagetables:1264
[  815.615451][T19900]  sec_pagetables:0 bounce:0
[  815.615451][T19900]  kernel_misc_reclaimable:0
[  815.615451][T19900]  free:1245246 free_pcp:15464 free_cma:0
[  815.615525][T19900] Node 0 active_anon:89916kB inactive_anon:0kB active_file:43196kB inactive_file:186648kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:118024kB dirty:1732kB writeback:0kB shmem:37460kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:15152kB pagetables:4936kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  815.615598][T19900] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3572kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:120kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  815.615666][T19900] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  815.615748][T19900] lowmem_reserve[]: 0 2481 2483 2483 2483
[  815.615802][T19900] Node 0 DMA32 free:1055388kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB free_highatomic:0KB active_anon:89916kB inactive_anon:0kB active_file:43196kB inactive_file:186648kB unevictable:1536kB writepending:1732kB zspages:0kB present:3129332kB managed:2541032kB mlocked:0kB bounce:0kB free_pcp:58832kB local_pcp:25888kB free_cma:0kB
[  815.615887][T19900] lowmem_reserve[]: 0 0 1 1 1
[  815.615938][T19900] Node 0 Normal free:4kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  815.616022][T19900] lowmem_reserve[]: 0 0 0 0 0
[  815.617654][T19900] Node 1 Normal free:3910232kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:3024kB local_pcp:348kB free_cma:0kB
[  816.123836][T19900] lowmem_reserve[]: 0 0 0 0 0
[  816.123891][T19900] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  816.124083][T19900] Node 0 DMA32: 2164*4kB (UM) 4367*8kB (UME) 2294*16kB (UM) 573*32kB (UM) 579*64kB (UME) 681*128kB (UME) 513*256kB (UM) 299*512kB (UME) 190*1024kB (UME) 2*2048kB (M) 85*4096kB (M) = 1054088kB
[  816.124330][T19900] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  816.124484][T19900] Node 1 Normal: 170*4kB (UME) 51*8kB (UME) 36*16kB (UE) 190*32kB (UME) 96*64kB (UME) 35*128kB (UME) 13*256kB (U) 7*512kB (UME) 4*1024kB (UME) 5*2048kB (UME) 945*4096kB (UM) = 3910336kB
[  816.124724][T19900] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  816.124748][T19900] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  816.124771][T19900] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  816.124794][T19900] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  816.124816][T19900] 70073 total pagecache pages
[  816.124827][T19900] 0 pages in swap cache
[  816.124836][T19900] Free swap  = 124996kB
[  816.124847][T19900] Total swap = 124996kB
[  816.124858][T19900] 2097051 pages RAM
[  816.124868][T19900] 0 pages HighMem/MovableOnly
[  816.124878][T19900] 429767 pages reserved
[  816.124889][T19900] 0 pages cma reserved
[  816.887063][T19925] FAULT_INJECTION: forcing a failure.
[  816.887063][T19925] name failslab, interval 1, probability 0, space 0, times 0
[  816.921692][T19925] CPU: 0 UID: 0 PID: 19925 Comm: syz.2.3196 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  816.921733][T19925] Tainted: [L]=SOFTLOCKUP
[  816.921742][T19925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  816.921757][T19925] Call Trace:
[  816.921767][T19925]  <TASK>
[  816.921775][T19925]  dump_stack_lvl+0x16c/0x1f0
[  816.921803][T19925]  should_fail_ex+0x512/0x640
[  816.921820][T19925]  ? __kmalloc_noprof+0xca/0x910
[  816.921838][T19925]  should_failslab+0xc2/0x120
[  816.921860][T19925]  __kmalloc_noprof+0xeb/0x910
[  816.921876][T19925]  ? ima_write_template_field_data+0x5d/0x1f0
[  816.921899][T19925]  ? ima_write_template_field_data+0x5d/0x1f0
[  816.921917][T19925]  ima_write_template_field_data+0x5d/0x1f0
[  816.921939][T19925]  ima_eventname_init_common+0x1b8/0x260
[  816.921960][T19925]  ? __pfx_ima_eventname_init_common+0x10/0x10
[  816.921982][T19925]  ? __kmalloc_noprof+0x35d/0x910
[  816.921997][T19925]  ? ima_alloc_init_template+0x19d/0x720
[  816.922016][T19925]  ima_alloc_init_template+0x3a0/0x720
[  816.922040][T19925]  ? take_dentry_name_snapshot+0x319/0x7d0
[  816.922060][T19925]  ima_store_measurement+0x1eb/0x5c0
[  816.922077][T19925]  ? __pfx_ima_store_measurement+0x10/0x10
[  816.922092][T19925]  ? release_dentry_name_snapshot+0x10/0x90
[  816.922115][T19925]  ? ima_d_path+0x12b/0x2a0
[  816.922134][T19925]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  816.922159][T19925]  process_measurement+0x17fa/0x22d0
[  816.922189][T19925]  ? __pfx_process_measurement+0x10/0x10
[  816.922213][T19925]  ? kasan_save_stack+0x42/0x60
[  816.922233][T19925]  ? kasan_save_track+0x14/0x30
[  816.922251][T19925]  ? kmem_cache_alloc_noprof+0x25e/0x770
[  816.922273][T19925]  ? find_held_lock+0x2b/0x80
[  816.922292][T19925]  ? aa_file_perm+0x29e/0x1560
[  816.922339][T19925]  ima_file_mmap+0x1b6/0x1e0
[  816.922362][T19925]  ? __pfx_ima_file_mmap+0x10/0x10
[  816.922389][T19925]  security_mmap_file+0x88c/0x990
[  816.922408][T19925]  vm_mmap_pgoff+0xec/0x470
[  816.922431][T19925]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  816.922450][T19925]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  816.922467][T19925]  ? hugetlbfs_get_inode+0x31f/0x700
[  816.922488][T19925]  ksys_mmap_pgoff+0x1c8/0x5c0
[  816.922512][T19925]  __x64_sys_mmap+0x125/0x190
[  816.922529][T19925]  do_syscall_64+0xcd/0xf80
[  816.922555][T19925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  816.922570][T19925] RIP: 0033:0x7efc8af8f7c9
[  816.922582][T19925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  816.922597][T19925] RSP: 002b:00007efc8be43038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  816.922611][T19925] RAX: ffffffffffffffda RBX: 00007efc8b1e6090 RCX: 00007efc8af8f7c9
[  816.922621][T19925] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000
[  816.922630][T19925] RBP: 00007efc8b013f91 R08: 0000000000000401 R09: 0000300000000000
[  816.922639][T19925] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  816.922666][T19925] R13: 00007efc8b1e6128 R14: 00007efc8b1e6090 R15: 00007ffc44d4dbd8
[  816.922686][T19925]  </TASK>
[  816.923978][   T30] audit: type=1804 audit(1766973684.222:152): pid=19925 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.3196" name="anon_hugepage" dev="hugetlbfs" ino=86424 res=0 errno=0
[  821.075173][T15793] Bluetooth: hci1: Malformed Event: 0x13
[  821.237298][T17079] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  821.864105][T13717] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  822.044050][T20024] warning: `syz.2.3209' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  822.193603][T20028] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3211'.
[  823.668024][T20045] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3214'.
[  824.437699][T20054] FAULT_INJECTION: forcing a failure.
[  824.437699][T20054] name failslab, interval 1, probability 0, space 0, times 0
[  824.476408][T20054] CPU: 1 UID: 0 PID: 20054 Comm: syz.2.3216 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  824.476451][T20054] Tainted: [L]=SOFTLOCKUP
[  824.476460][T20054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  824.476474][T20054] Call Trace:
[  824.476484][T20054]  <TASK>
[  824.476495][T20054]  dump_stack_lvl+0x16c/0x1f0
[  824.476538][T20054]  should_fail_ex+0x512/0x640
[  824.476566][T20054]  ? __kmalloc_cache_noprof+0x5f/0x800
[  824.476600][T20054]  should_failslab+0xc2/0x120
[  824.476638][T20054]  __kmalloc_cache_noprof+0x80/0x800
[  824.476660][T20054]  ? lockdep_init_map_type+0x5c/0x270
[  824.476676][T20054]  ? nci_hci_allocate+0x45/0x330
[  824.476697][T20054]  ? mutex_init_lockep+0x110/0x150
[  824.476714][T20054]  ? nci_hci_allocate+0x45/0x330
[  824.476733][T20054]  nci_hci_allocate+0x45/0x330
[  824.476754][T20054]  nci_allocate_device+0x26f/0x460
[  824.476772][T20054]  virtual_ncidev_open+0x6f/0x220
[  824.476796][T20054]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  824.476818][T20054]  misc_open+0x26d/0x450
[  824.476835][T20054]  ? __pfx_misc_open+0x10/0x10
[  824.476851][T20054]  chrdev_open+0x234/0x6a0
[  824.476873][T20054]  ? __pfx_apparmor_file_open+0x10/0x10
[  824.476889][T20054]  ? __pfx_chrdev_open+0x10/0x10
[  824.476912][T20054]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  824.476938][T20054]  do_dentry_open+0x748/0x1590
[  824.476959][T20054]  ? __pfx_chrdev_open+0x10/0x10
[  824.476986][T20054]  vfs_open+0x82/0x3f0
[  824.477005][T20054]  path_openat+0x2078/0x3140
[  824.477033][T20054]  ? __pfx_path_openat+0x10/0x10
[  824.477061][T20054]  do_filp_open+0x20b/0x470
[  824.477083][T20054]  ? __pfx_do_filp_open+0x10/0x10
[  824.477127][T20054]  ? alloc_fd+0x471/0x7d0
[  824.477155][T20054]  do_sys_openat2+0x121/0x290
[  824.477172][T20054]  ? __pfx_do_sys_openat2+0x10/0x10
[  824.477196][T20054]  __x64_sys_openat+0x174/0x210
[  824.477214][T20054]  ? __pfx___x64_sys_openat+0x10/0x10
[  824.477238][T20054]  do_syscall_64+0xcd/0xf80
[  824.477261][T20054]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  824.477278][T20054] RIP: 0033:0x7efc8af8f7c9
[  824.477292][T20054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  824.477307][T20054] RSP: 002b:00007efc8be22038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  824.477323][T20054] RAX: ffffffffffffffda RBX: 00007efc8b1e6180 RCX: 00007efc8af8f7c9
[  824.477334][T20054] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  824.477343][T20054] RBP: 00007efc8b013f91 R08: 0000000000000000 R09: 0000000000000000
[  824.477353][T20054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  824.477366][T20054] R13: 00007efc8b1e6218 R14: 00007efc8b1e6180 R15: 00007ffc44d4dbd8
[  824.477386][T20054]  </TASK>
[  824.759298][T20062] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  825.378423][T20071] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3224'.
[  825.394711][T20060] Invalid ELF header magic: != ELF
[  826.696883][T20069] tipc: Started in network mode
[  826.709507][T20069] tipc: Node identity ee00, cluster identity 4711
[  826.734272][T20069] tipc: Node number set to 60928
[  828.457581][   T30] audit: type=1800 audit(1766973695.812:153): pid=20126 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3235" name="dbroot" dev="configfs" ino=86987 res=0 errno=0
[  831.334890][T13717] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  832.011190][T20202] FAULT_INJECTION: forcing a failure.
[  832.011190][T20202] name failslab, interval 1, probability 0, space 0, times 0
[  832.026523][T16666] EXT4-fs (sda1): Delayed block allocation failed for inode 2026 at logical offset 6 with max blocks 6 with error 117
[  832.040972][T20202] CPU: 1 UID: 0 PID: 20202 Comm: syz.5.3250 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  832.041015][T20202] Tainted: [L]=SOFTLOCKUP
[  832.041025][T20202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  832.041040][T20202] Call Trace:
[  832.041050][T20202]  <TASK>
[  832.041060][T20202]  dump_stack_lvl+0x16c/0x1f0
[  832.041108][T20202]  should_fail_ex+0x512/0x640
[  832.041138][T20202]  ? fs_reclaim_acquire+0xae/0x150
[  832.041183][T20202]  should_failslab+0xc2/0x120
[  832.041222][T20202]  __kmalloc_noprof+0xeb/0x910
[  832.041253][T20202]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  832.041296][T20202]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  832.041341][T20202]  tomoyo_realpath_from_path+0xc2/0x6e0
[  832.041380][T20202]  ? tomoyo_profile+0x47/0x60
[  832.041423][T20202]  tomoyo_path_number_perm+0x245/0x580
[  832.041453][T20202]  ? tomoyo_path_number_perm+0x237/0x580
[  832.041487][T20202]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  832.041555][T20202]  ? find_held_lock+0x2b/0x80
[  832.041690][T20202]  ? hook_file_ioctl_common+0x144/0x410
[  832.041732][T20202]  ? __fget_files+0x20e/0x3c0
[  832.041776][T20202]  security_file_ioctl+0x9b/0x240
[  832.041810][T20202]  __x64_sys_ioctl+0xb7/0x210
[  832.041847][T20202]  do_syscall_64+0xcd/0xf80
[  832.041890][T20202]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  832.041919][T20202] RIP: 0033:0x7f9003b8f7c9
[  832.041942][T20202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  832.041975][T20202] RSP: 002b:00007f9004976038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  832.042002][T20202] RAX: ffffffffffffffda RBX: 00007f9003de6090 RCX: 00007f9003b8f7c9
[  832.042021][T20202] RDX: 0000000000000000 RSI: 0000000000001261 RDI: 0000000000000003
[  832.042043][T20202] RBP: 00007f9003c13f91 R08: 0000000000000000 R09: 0000000000000000
[  832.042061][T20202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  832.042078][T20202] R13: 00007f9003de6128 R14: 00007f9003de6090 R15: 00007ffe16dd3298
[  832.042118][T20202]  </TASK>
[  832.043450][T20202] ERROR: Out of memory at tomoyo_realpath_from_path.
[  832.050956][T16666] EXT4-fs (sda1): This should not happen!! Data will be lost
[  832.050956][T16666] 
[  832.698858][T20213] netlink: 350 bytes leftover after parsing attributes in process `syz.5.3253'.
[  832.895803][T20216] ptrace attach of "./syz-executor exec"[20217] was attempted by "./syz-executor exec"[20216]
[  832.915289][T20216] netlink: 217 bytes leftover after parsing attributes in process `syz.2.3254'.
[  833.814343][T20240] Invalid ELF header magic: != ELF
[  833.980986][T20247] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3261'.
[  834.870864][T20258] zswap: compressor  not available
[  835.114565][T20267] ptrace attach of "./syz-executor exec"[20269] was attempted by "./syz-executor exec"[20267]
[  835.172384][T20267] netlink: 217 bytes leftover after parsing attributes in process `syz.3.3265'.
[  835.598837][T20288] netlink: 326 bytes leftover after parsing attributes in process `syz.5.3269'.
[  836.386798][T20301] ptrace attach of "./syz-executor exec"[20303] was attempted by "./syz-executor exec"[20301]
[  836.447565][T20301] netlink: 217 bytes leftover after parsing attributes in process `syz.2.3274'.
[  836.740925][T20312] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3276'.
[  836.823693][T20306] overlayfs: missing 'lowerdir'
[  838.579989][T20349] ptrace attach of "./syz-executor exec"[20352] was attempted by "./syz-executor exec"[20349]
[  839.250695][T20366] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3288'.
[  840.570185][T20395] ptrace attach of "./syz-executor exec"[20396] was attempted by "./syz-executor exec"[20395]
[  843.361044][T20456] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  843.406474][T20460] cgroup: fork rejected by pids controller in /syz1
[  843.830112][T20500] netlink: 130 bytes leftover after parsing attributes in process `syz.5.3315'.
[  844.067452][T20502] FAULT_INJECTION: forcing a failure.
[  844.067452][T20502] name fail_futex, interval 1, probability 0, space 0, times 0
[  844.177993][T20502] CPU: 1 UID: 0 PID: 20502 Comm: syz.3.3316 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  844.178042][T20502] Tainted: [L]=SOFTLOCKUP
[  844.178053][T20502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  844.178070][T20502] Call Trace:
[  844.178080][T20502]  <TASK>
[  844.178091][T20502]  dump_stack_lvl+0x16c/0x1f0
[  844.178140][T20502]  should_fail_ex+0x512/0x640
[  844.178177][T20502]  get_futex_key+0x1d0/0x15f0
[  844.178215][T20502]  ? __pfx_get_futex_key+0x10/0x10
[  844.178249][T20502]  ? __pfx_tcp_recvmsg+0x10/0x10
[  844.178282][T20502]  ? inet_recvmsg+0x175/0x6a0
[  844.178312][T20502]  ? __fget_files+0x204/0x3c0
[  844.178357][T20502]  futex_wake+0xea/0x530
[  844.178397][T20502]  ? __pfx_futex_wake+0x10/0x10
[  844.178443][T20502]  ? fput+0x70/0xf0
[  844.178470][T20502]  ? __sys_recvfrom+0x26c/0x310
[  844.178504][T20502]  ? __pfx___sys_recvfrom+0x10/0x10
[  844.178541][T20502]  do_futex+0x1e3/0x350
[  844.178574][T20502]  ? __pfx_do_futex+0x10/0x10
[  844.178607][T20502]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  844.178647][T20502]  ? count_memcg_events+0x122/0x290
[  844.178689][T20502]  __x64_sys_futex+0x1e0/0x4c0
[  844.178727][T20502]  ? __pfx___x64_sys_futex+0x10/0x10
[  844.178774][T20502]  do_syscall_64+0xcd/0xf80
[  844.178816][T20502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  844.178841][T20502] RIP: 0033:0x7f98e658f7c9
[  844.178862][T20502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  844.178887][T20502] RSP: 002b:00007f98e74ca0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  844.178915][T20502] RAX: ffffffffffffffda RBX: 00007f98e67e5fa8 RCX: 00007f98e658f7c9
[  844.178934][T20502] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f98e67e5fac
[  844.178952][T20502] RBP: 00007f98e67e5fa0 R08: 00007f98e74cb000 R09: 0000000000000000
[  844.178971][T20502] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  844.178989][T20502] R13: 00007f98e67e6038 R14: 00007ffda8ae5b00 R15: 00007ffda8ae5be8
[  844.179028][T20502]  </TASK>
[  844.872631][T20458] kexec: Could not allocate control_code_buffer
[  845.182447][T20524] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3320'.
[  848.557045][T20573] netlink: 326 bytes leftover after parsing attributes in process `syz.3.3332'.
[  848.693706][T20607] cgroup: fork rejected by pids controller in /syz5
[  848.709769][T20575] FAULT_INJECTION: forcing a failure.
[  848.709769][T20575] name failslab, interval 1, probability 0, space 0, times 0
[  848.806265][T20575] CPU: 0 UID: 0 PID: 20575 Comm: syz.5.3334 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  848.806311][T20575] Tainted: [L]=SOFTLOCKUP
[  848.806321][T20575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  848.806337][T20575] Call Trace:
[  848.806346][T20575]  <TASK>
[  848.806357][T20575]  dump_stack_lvl+0x16c/0x1f0
[  848.806402][T20575]  should_fail_ex+0x512/0x640
[  848.806432][T20575]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[  848.806470][T20575]  should_failslab+0xc2/0x120
[  848.806510][T20575]  kmem_cache_alloc_node_noprof+0x86/0x800
[  848.806542][T20575]  ? __alloc_skb+0x156/0x410
[  848.806578][T20575]  ? __alloc_skb+0x156/0x410
[  848.806605][T20575]  __alloc_skb+0x156/0x410
[  848.806633][T20575]  ? __alloc_skb+0x35d/0x410
[  848.806660][T20575]  ? __pfx___alloc_skb+0x10/0x10
[  848.806706][T20575]  ? netlink_autobind.isra.0+0x158/0x370
[  848.806751][T20575]  netlink_alloc_large_skb+0x69/0x140
[  848.806791][T20575]  netlink_sendmsg+0x698/0xdd0
[  848.806835][T20575]  ? __pfx_netlink_sendmsg+0x10/0x10
[  848.806877][T20575]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  848.806926][T20575]  ____sys_sendmsg+0xa5d/0xc30
[  848.806967][T20575]  ? copy_msghdr_from_user+0x10a/0x160
[  848.807006][T20575]  ? __pfx_____sys_sendmsg+0x10/0x10
[  848.807043][T20575]  ? preempt_schedule_thunk+0x16/0x30
[  848.807075][T20575]  ? try_to_wake_up+0xa67/0x1860
[  848.807117][T20575]  ___sys_sendmsg+0x134/0x1d0
[  848.807151][T20575]  ? __pfx____sys_sendmsg+0x10/0x10
[  848.807185][T20575]  ? futex_private_hash_put+0x160/0x1b0
[  848.807251][T20575]  __sys_sendmsg+0x16d/0x220
[  848.807283][T20575]  ? __pfx___sys_sendmsg+0x10/0x10
[  848.807312][T20575]  ? __x64_sys_futex+0x1e0/0x4c0
[  848.807360][T20575]  do_syscall_64+0xcd/0xf80
[  848.807401][T20575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  848.807426][T20575] RIP: 0033:0x7f9003b8f7c9
[  848.807449][T20575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  848.807474][T20575] RSP: 002b:00007f9004997038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  848.807510][T20575] RAX: ffffffffffffffda RBX: 00007f9003de5fa0 RCX: 00007f9003b8f7c9
[  848.807532][T20575] RDX: 00000000000000d0 RSI: 0000200000000580 RDI: 0000000000000020
[  848.807547][T20575] RBP: 00007f9003c13f91 R08: 0000000000000000 R09: 0000000000000000
[  848.807562][T20575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  848.807576][T20575] R13: 00007f9003de6038 R14: 00007f9003de5fa0 R15: 00007ffe16dd3298
[  848.807609][T20575]  </TASK>
[  849.162008][T13717] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  850.098056][T20664] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3338'.
[  850.645150][T20686] netlink: 326 bytes leftover after parsing attributes in process `syz.2.3344'.
[  853.697411][T20760] ptrace attach of "./syz-executor exec"[20761] was attempted by "./syz-executor exec"[20760]
[  855.003640][T20788] netlink: 326 bytes leftover after parsing attributes in process `syz.1.3367'.
[  855.280391][T20794] ptrace attach of "./syz-executor exec"[20798] was attempted by "./syz-executor exec"[20794]
[  855.803912][T20815] FAULT_INJECTION: forcing a failure.
[  855.803912][T20815] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  855.857278][T20815] CPU: 1 UID: 0 PID: 20815 Comm: syz.3.3375 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  855.857312][T20815] Tainted: [L]=SOFTLOCKUP
[  855.857319][T20815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  855.857330][T20815] Call Trace:
[  855.857337][T20815]  <TASK>
[  855.857345][T20815]  dump_stack_lvl+0x16c/0x1f0
[  855.857379][T20815]  should_fail_ex+0x512/0x640
[  855.857404][T20815]  _copy_to_user+0x32/0xd0
[  855.857428][T20815]  simple_read_from_buffer+0xcb/0x170
[  855.857457][T20815]  proc_fail_nth_read+0x197/0x240
[  855.857489][T20815]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  855.857522][T20815]  ? rw_verify_area+0xcf/0x6c0
[  855.857546][T20815]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  855.857578][T20815]  vfs_read+0x1e4/0xcf0
[  855.857607][T20815]  ? __pfx___mutex_lock+0x10/0x10
[  855.857641][T20815]  ? __pfx_vfs_read+0x10/0x10
[  855.857676][T20815]  ? __fget_files+0x20e/0x3c0
[  855.857702][T20815]  ? file_check_and_advance_wb_err+0x10/0x310
[  855.857738][T20815]  ksys_read+0x12a/0x250
[  855.857764][T20815]  ? __pfx_ksys_read+0x10/0x10
[  855.857788][T20815]  ? vfs_fsync_range+0x149/0x230
[  855.857825][T20815]  do_syscall_64+0xcd/0xf80
[  855.857855][T20815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  855.857877][T20815] RIP: 0033:0x7f98e658e1dc
[  855.857895][T20815] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  855.857915][T20815] RSP: 002b:00007f98e74ca030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  855.857935][T20815] RAX: ffffffffffffffda RBX: 00007f98e67e5fa0 RCX: 00007f98e658e1dc
[  855.857950][T20815] RDX: 000000000000000f RSI: 00007f98e74ca0a0 RDI: 0000000000000004
[  855.857963][T20815] RBP: 00007f98e74ca090 R08: 0000000000000000 R09: 0000000000000000
[  855.857976][T20815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  855.857989][T20815] R13: 00007f98e67e6038 R14: 00007f98e67e5fa0 R15: 00007ffda8ae5be8
[  855.858019][T20815]  </TASK>
[  856.446733][T20821] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3376'.
[  857.567646][T20845] ptrace attach of "./syz-executor exec"[20848] was attempted by "./syz-executor exec"[20845]
[  857.676402][T20850] netlink: 326 bytes leftover after parsing attributes in process `syz.1.3380'.
[  858.479540][T20864] __vm_enough_memory: pid: 20864, comm: syz.1.3383, bytes: 4398046511104 not enough memory for the allocation
[  858.832026][T20873] random: crng reseeded on system resumption
[  859.707966][T20873] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3387'.
[  860.003533][T20894] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  860.119164][T20894] NFSD: Failed to start, no listeners configured.
[  860.747254][T20898] zswap: compressor  not available
[  860.754913][T20898] FAULT_INJECTION: forcing a failure.
[  860.754913][T20898] name fail_futex, interval 1, probability 0, space 0, times 0
[  860.792653][T20898] CPU: 0 UID: 0 PID: 20898 Comm: syz.5.3391 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  860.792702][T20898] Tainted: [L]=SOFTLOCKUP
[  860.792713][T20898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  860.792731][T20898] Call Trace:
[  860.792741][T20898]  <TASK>
[  860.792752][T20898]  dump_stack_lvl+0x16c/0x1f0
[  860.792809][T20898]  should_fail_ex+0x512/0x640
[  860.792848][T20898]  get_futex_key+0x1d0/0x15f0
[  860.792885][T20898]  ? __pfx_get_futex_key+0x10/0x10
[  860.792913][T20898]  ? kasan_save_track+0x14/0x30
[  860.792952][T20898]  ? __kasan_slab_free+0x5f/0x80
[  860.792989][T20898]  ? kfree+0x2f8/0x6e0
[  860.793016][T20898]  ? kernfs_fop_write_iter+0x1f2/0x570
[  860.793056][T20898]  ? vfs_write+0x7d3/0x11d0
[  860.793092][T20898]  ? ksys_write+0x12a/0x250
[  860.793129][T20898]  ? do_syscall_64+0xcd/0xf80
[  860.793167][T20898]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  860.793205][T20898]  futex_wait_setup+0x9d/0x570
[  860.793253][T20898]  __futex_wait+0x193/0x2f0
[  860.793299][T20898]  ? __pfx___futex_wait+0x10/0x10
[  860.793345][T20898]  ? __pfx_futex_wake_mark+0x10/0x10
[  860.793389][T20898]  ? futex_hash+0x2c5/0x380
[  860.793424][T20898]  ? futex_private_hash_put+0x160/0x1b0
[  860.793457][T20898]  futex_wait+0xe8/0x380
[  860.793496][T20898]  ? __pfx_futex_wait+0x10/0x10
[  860.793542][T20898]  ? vfs_write+0x15d/0x11d0
[  860.793582][T20898]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  860.793629][T20898]  do_futex+0x229/0x350
[  860.793662][T20898]  ? __pfx_do_futex+0x10/0x10
[  860.793704][T20898]  __x64_sys_futex+0x1e0/0x4c0
[  860.793742][T20898]  ? __pfx___x64_sys_futex+0x10/0x10
[  860.793776][T20898]  ? xfd_validate_state+0x61/0x180
[  860.793809][T20898]  ? __pfx_ksys_write+0x10/0x10
[  860.793860][T20898]  do_syscall_64+0xcd/0xf80
[  860.793905][T20898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  860.793935][T20898] RIP: 0033:0x7f9003b8f7c9
[  860.793960][T20898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  860.793990][T20898] RSP: 002b:00007f90049970e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  860.794019][T20898] RAX: ffffffffffffffda RBX: 00007f9003de5fa8 RCX: 00007f9003b8f7c9
[  860.794039][T20898] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9003de5fa8
[  860.794058][T20898] RBP: 00007f9003de5fa0 R08: 0000000000000000 R09: 0000000000000000
[  860.794076][T20898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  860.794093][T20898] R13: 00007f9003de6038 R14: 00007ffe16dd31b0 R15: 00007ffe16dd3298
[  860.794132][T20898]  </TASK>
[  864.718369][T20957] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3405'.
[  864.766694][T13717] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  864.809029][T20962] __vm_enough_memory: pid: 20962, comm: syz.5.3404, bytes: 4398046511104 not enough memory for the allocation
[  869.054370][T21045] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  869.233839][T21048] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  870.676714][T21062] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3429'.
[  873.170537][T21112] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input30
[  873.280545][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  873.292193][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  873.480617][T21122] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3438'.
[  873.735951][T21119] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3437'.
[  873.751675][T21119] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  873.817992][T21119] batman_adv: batadv0: Removing interface: batadv_slave_0
[  873.909739][T21113] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31
[  873.957661][T21119] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  874.001302][T21119] batman_adv: batadv0: Removing interface: batadv_slave_1
[  874.343529][T21136] NFSD: Failed to start, no listeners configured.
[  874.709492][T13717] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  874.743322][T21138] NFSD: Failed to start, no listeners configured.
[  876.486461][T19564] smpboot: CPU 0 is now offline
[  876.632575][T21207] FAULT_INJECTION: forcing a failure.
[  876.632575][T21207] name failslab, interval 1, probability 0, space 0, times 0
[  876.745256][T21207] CPU: 1 UID: 0 PID: 21207 Comm: syz.2.3455 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  876.745284][T21207] Tainted: [L]=SOFTLOCKUP
[  876.745290][T21207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  876.745300][T21207] Call Trace:
[  876.745306][T21207]  <TASK>
[  876.745312][T21207]  dump_stack_lvl+0x16c/0x1f0
[  876.745339][T21207]  should_fail_ex+0x512/0x640
[  876.745356][T21207]  ? __kmalloc_cache_noprof+0x5f/0x800
[  876.745377][T21207]  should_failslab+0xc2/0x120
[  876.745401][T21207]  __kmalloc_cache_noprof+0x80/0x800
[  876.745419][T21207]  ? resv_map_alloc+0x7e/0x400
[  876.745442][T21207]  ? resv_map_alloc+0x7e/0x400
[  876.745460][T21207]  resv_map_alloc+0x7e/0x400
[  876.745480][T21207]  hugetlb_reserve_pages+0x69a/0xfe0
[  876.745498][T21207]  ? __pfx_hugetlb_reserve_pages+0x10/0x10
[  876.745513][T21207]  ? atime_needs_update+0x8b/0x710
[  876.745537][T21207]  hugetlbfs_file_mmap_prepare+0x3d3/0x640
[  876.745565][T21207]  __mmap_region+0xed8/0x2a00
[  876.745585][T21207]  ? __pfx___mmap_region+0x10/0x10
[  876.745609][T21207]  ? is_bpf_text_address+0x8a/0x1a0
[  876.745629][T21207]  ? bpf_ksym_find+0x124/0x1c0
[  876.745644][T21207]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  876.745668][T21207]  ? is_bpf_text_address+0x94/0x1a0
[  876.745686][T21207]  ? kernel_text_address+0x8d/0x100
[  876.745704][T21207]  ? __kernel_text_address+0xd/0x40
[  876.745720][T21207]  ? unwind_get_return_address+0x59/0xa0
[  876.745748][T21207]  ? stack_trace_save+0x8e/0xc0
[  876.745796][T21207]  ? rcu_is_watching+0x12/0xc0
[  876.745820][T21207]  mmap_region+0x1ab/0x3f0
[  876.745838][T21207]  ? __get_unmapped_area+0x267/0x3f0
[  876.745861][T21207]  do_mmap+0xa3e/0x1210
[  876.745885][T21207]  ? __pfx_do_mmap+0x10/0x10
[  876.745906][T21207]  ? __pfx_down_write_killable+0x10/0x10
[  876.745926][T21207]  vm_mmap_pgoff+0x29e/0x470
[  876.745950][T21207]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  876.745968][T21207]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  876.745986][T21207]  ? hugetlbfs_get_inode+0x31f/0x700
[  876.746007][T21207]  ksys_mmap_pgoff+0x1c8/0x5c0
[  876.746030][T21207]  __x64_sys_mmap+0x125/0x190
[  876.746048][T21207]  do_syscall_64+0xcd/0xf80
[  876.746082][T21207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  876.746098][T21207] RIP: 0033:0x7efc8af8f7c9
[  876.746113][T21207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  876.746127][T21207] RSP: 002b:00007efc8be43038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  876.746142][T21207] RAX: ffffffffffffffda RBX: 00007efc8b1e6090 RCX: 00007efc8af8f7c9
[  876.746152][T21207] RDX: 0000000000000002 RSI: 0000000000000006 RDI: 0000000000000000
[  876.746161][T21207] RBP: 00007efc8b013f91 R08: ffffffffffffffff R09: 0000308000000000
[  876.746171][T21207] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000
[  876.746180][T21207] R13: 00007efc8b1e6128 R14: 00007efc8b1e6090 R15: 00007ffc44d4dbd8
[  876.746200][T21207]  </TASK>
[  877.063067][T21209] __vm_enough_memory: pid: 21209, comm: syz.3.3454, bytes: 4398046511104 not enough memory for the allocation
[  877.603425][T21210] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  877.638584][T21221] FAULT_INJECTION: forcing a failure.
[  877.638584][T21221] name failslab, interval 1, probability 0, space 0, times 0
[  877.687267][T21221] CPU: 1 UID: 0 PID: 21221 Comm: syz.2.3456 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  877.687297][T21221] Tainted: [L]=SOFTLOCKUP
[  877.687303][T21221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  877.687313][T21221] Call Trace:
[  877.687319][T21221]  <TASK>
[  877.687326][T21221]  dump_stack_lvl+0x16c/0x1f0
[  877.687354][T21221]  should_fail_ex+0x512/0x640
[  877.687371][T21221]  ? __kmalloc_cache_noprof+0x5f/0x800
[  877.687391][T21221]  should_failslab+0xc2/0x120
[  877.687414][T21221]  __kmalloc_cache_noprof+0x80/0x800
[  877.687432][T21221]  ? vidtv_psi_pmt_stream_init+0x4e/0x3e0
[  877.687454][T21221]  ? vidtv_psi_pmt_table_init+0x363/0x430
[  877.687478][T21221]  ? vidtv_psi_pmt_stream_init+0x4e/0x3e0
[  877.687499][T21221]  vidtv_psi_pmt_stream_init+0x4e/0x3e0
[  877.687523][T21221]  vidtv_channel_si_init+0x13d2/0x1a50
[  877.687545][T21221]  vidtv_mux_init+0x526/0xbe0
[  877.687563][T21221]  vidtv_start_feed+0x33e/0x4d0
[  877.687582][T21221]  ? __pfx_vidtv_start_feed+0x10/0x10
[  877.687602][T21221]  ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10
[  877.687626][T21221]  ? mark_held_locks+0x49/0x80
[  877.687644][T21221]  ? __pfx_vidtv_start_feed+0x10/0x10
[  877.687663][T21221]  dmx_ts_feed_start_filtering+0xf6/0x220
[  877.687684][T21221]  dvb_dmxdev_start_feed+0x273/0x3f0
[  877.687710][T21221]  dvb_dmxdev_filter_start+0x1b6/0xe10
[  877.687727][T21221]  ? dvb_dmxdev_add_pid+0x2a1/0x380
[  877.687745][T21221]  dvb_demux_do_ioctl+0x9de/0x12f0
[  877.687766][T21221]  dvb_usercopy+0x167/0x340
[  877.687788][T21221]  ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[  877.687805][T21221]  ? __pfx_dvb_usercopy+0x10/0x10
[  877.687854][T21221]  ? __fget_files+0x20e/0x3c0
[  877.687883][T21221]  dvb_demux_ioctl+0x29/0x40
[  877.687898][T21221]  ? __pfx_dvb_demux_ioctl+0x10/0x10
[  877.687918][T21221]  __x64_sys_ioctl+0x18e/0x210
[  877.687939][T21221]  do_syscall_64+0xcd/0xf80
[  877.687963][T21221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  877.687979][T21221] RIP: 0033:0x7efc8af8f7c9
[  877.687993][T21221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  877.688008][T21221] RSP: 002b:00007efc8be43038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  877.688024][T21221] RAX: ffffffffffffffda RBX: 00007efc8b1e6090 RCX: 00007efc8af8f7c9
[  877.688034][T21221] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003
[  877.688044][T21221] RBP: 00007efc8b013f91 R08: 0000000000000000 R09: 0000000000000000
[  877.688053][T21221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  877.688062][T21221] R13: 00007efc8b1e6128 R14: 00007efc8b1e6090 R15: 00007ffc44d4dbd8
[  877.688084][T21221]  </TASK>
[  877.689667][T21223] netlink: 326 bytes leftover after parsing attributes in process `syz.3.3457'.
[  878.021209][T21221] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI
[  878.033119][T21221] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  878.041612][T21221] CPU: 1 UID: 0 PID: 21221 Comm: syz.2.3456 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  878.052543][T21221] Tainted: [L]=SOFTLOCKUP
[  878.056850][T21221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  878.066893][T21221] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90
[  878.072796][T21221] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 dd 65 b9 f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 47 4c 8b 23 49 39 ec 74 36 e8 b9 65 b9 f9 4d 85 e4
[  878.092396][T21221] RSP: 0018:ffffc900050afa20 EFLAGS: 00010247
[  878.098452][T21221] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: ffffc9000d0ba000
[  878.106414][T21221] RDX: 0000000000000000 RSI: ffffffff8804f313 RDI: 0000000000000005
[  878.114372][T21221] RBP: ffff8880581830a0 R08: 0000000000000000 R09: 4453534204050000
[  878.122330][T21221] R10: 0000000000000005 R11: ffff888026b28b30 R12: 0000000000000000
[  878.130286][T21221] R13: ffff888033cce240 R14: ffff88807e655180 R15: ffff88802a427980
[  878.138243][T21221] FS:  00007efc8be436c0(0000) GS:ffff8881249fc000(0000) knlGS:0000000000000000
[  878.147161][T21221] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  878.153755][T21221] CR2: 00007f90049156c0 CR3: 0000000028a56000 CR4: 00000000003526f0
[  878.161744][T21221] Call Trace:
[  878.165014][T21221]  <TASK>
[  878.167936][T21221]  vidtv_channel_si_init+0x1445/0x1a50
[  878.173398][T21221]  vidtv_mux_init+0x526/0xbe0
[  878.178152][T21221]  vidtv_start_feed+0x33e/0x4d0
[  878.183000][T21221]  ? __pfx_vidtv_start_feed+0x10/0x10
[  878.188363][T21221]  ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10
[  878.194949][T21221]  ? mark_held_locks+0x49/0x80
[  878.199697][T21221]  ? __pfx_vidtv_start_feed+0x10/0x10
[  878.205060][T21221]  dmx_ts_feed_start_filtering+0xf6/0x220
[  878.210770][T21221]  dvb_dmxdev_start_feed+0x273/0x3f0
[  878.216055][T21221]  dvb_dmxdev_filter_start+0x1b6/0xe10
[  878.221512][T21221]  ? dvb_dmxdev_add_pid+0x2a1/0x380
[  878.226696][T21221]  dvb_demux_do_ioctl+0x9de/0x12f0
[  878.231797][T21221]  dvb_usercopy+0x167/0x340
[  878.236295][T21221]  ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[  878.241830][T21221]  ? __pfx_dvb_usercopy+0x10/0x10
[  878.246876][T21221]  ? __fget_files+0x20e/0x3c0
[  878.251549][T21221]  dvb_demux_ioctl+0x29/0x40
[  878.256128][T21221]  ? __pfx_dvb_demux_ioctl+0x10/0x10
[  878.261401][T21221]  __x64_sys_ioctl+0x18e/0x210
[  878.266157][T21221]  do_syscall_64+0xcd/0xf80
[  878.270664][T21221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  878.276546][T21221] RIP: 0033:0x7efc8af8f7c9
[  878.280953][T21221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  878.300548][T21221] RSP: 002b:00007efc8be43038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  878.308965][T21221] RAX: ffffffffffffffda RBX: 00007efc8b1e6090 RCX: 00007efc8af8f7c9
[  878.316926][T21221] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003
[  878.324882][T21221] RBP: 00007efc8b013f91 R08: 0000000000000000 R09: 0000000000000000
[  878.332845][T21221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  878.340804][T21221] R13: 00007efc8b1e6128 R14: 00007efc8b1e6090 R15: 00007ffc44d4dbd8
[  878.348767][T21221]  </TASK>
[  878.351770][T21221] Modules linked in:
[  878.356562][T21221] ---[ end trace 0000000000000000 ]---
[  879.262278][T21221] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90
[  879.291575][T21221] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 dd 65 b9 f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 47 4c 8b 23 49 39 ec 74 36 e8 b9 65 b9 f9 4d 85 e4
[  879.353454][T21221] RSP: 0018:ffffc900050afa20 EFLAGS: 00010247
[  879.393168][T21221] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: ffffc9000d0ba000
[  879.428348][T21221] RDX: 0000000000000000 RSI: ffffffff8804f313 RDI: 0000000000000005
[  879.463608][T21221] RBP: ffff8880581830a0 R08: 0000000000000000 R09: 4453534204050000
[  879.495761][T21221] R10: 0000000000000005 R11: ffff888026b28b30 R12: 0000000000000000
[  879.529075][T21221] R13: ffff888033cce240 R14: ffff88807e655180 R15: ffff88802a427980
[  879.556626][T21221] FS:  00007efc8be436c0(0000) GS:ffff8881249fc000(0000) knlGS:0000000000000000
[  879.585195][T21221] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  879.608334][T21221] CR2: 0000001b336d9ff8 CR3: 0000000028a56000 CR4: 00000000003526f0
[  879.632703][T21221] Kernel panic - not syncing: Fatal exception
[  879.638836][T21221] Kernel Offset: disabled
[  879.643152][T21221] Rebooting in 86400 seconds..