last executing test programs:

2m35.298953708s ago: executing program 3 (id=449):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000b00)=""/4077, 0xffd0)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x80000, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, 0x0)
socket(0x11, 0x2, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x7, 0x10000006, 0x48})
prctl$auto(0x59616d61, 0xffffffffffffffff, 0x1, 0x1004, 0xfffffffffffffffb)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_clone(0xac2e6400, 0x0, 0x0, 0x0, 0x0, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast1}, 0x6a)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x1d, 0x4, 0x84)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r1, 0x8000)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
setsockopt$auto_SO_BUF_LOCK(r2, 0x9, 0x48, &(0x7f0000000080)='/dev/snd/controlC1\x00', 0xfffffffc)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
close_range$auto(0x2, 0xa, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, 0x0, 0x1000)
mmap$auto(0x6, 0x2020009, 0x8000000000000001, 0x14, 0xffffffffffffffff, 0x6331)

2m34.383279989s ago: executing program 3 (id=454):
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x73a, 0x3, 0x575c, 0x7)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x9, 0x10000, 0xed07, 0xc038)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x10001, 0x8000000000000, 0x7, 0x81)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x5, 0x5, 0xffffffffffffffff, 0xa8)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x3, 0x80000000, 0x0, 0x921)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x1, 0x1, 0x4, 0x2)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x8, 0x4, 0x10000, 0x1)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0xfffffffffffffff7, 0x5, 0x0, 0x4)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0xfffffffff8000000, 0x9, 0xffffffff, 0x3)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x9, 0xf89, 0xffffffff, 0x8a)
r0 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000080), 0x60100, 0x0)
sendmsg$auto_TIPC_NL_ADDR_LEGACY_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000380)={&(0x7f00000000c0)={0x2b4, r0, 0x10, 0x70bd26, 0x25dfdbfc, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@typed={0x8, 0x80, 0x0, 0x0, @fd=r1}, @generic]}, @TIPC_NLA_MEDIA={0x23f, 0x5, 0x0, 0x1, [@generic="2ae3a7385223f5731471746608f0c376003aaf203f54f8f881afd8da29a78d5c56a017211367b4b6c1f37ace926ed06c980b4f33d2b1c76323e2cc7fc8f81db453dc0b4a75390692764b0f233dd2c789896adf3813a9988bbe36b8aaf4b75b75f0a7c82c24f63bc749d07593284f13b52567af9916c615e82ca7b5d185fb41b8eb94ee06afb3fdc8c908ad19", @typed={0x5d, 0x84, 0x0, 0x0, @binary="5b4937e44236f3d86f955d226d105ecb34ca367ec7b407b0c15c4c16d8d2b7f9ab3f20b3da086266d4871e8f56d254b65d6111ee7ff7ed3a0a4e7cf967b30029b8464fc01964ba64c5ddd24db4833513ac91fa3d9fa6c816a7"}, @generic="a1d2a0d7fec4bccf0bce65f922670d7c7c4fe04a2dd234d7e9bec3017bc42be731082dfd91e6f40295f9bcadd977018d31c398066f94b309ffac04ff3f3fed8e91588ae29d44c9d0d21a528c40264faf932cc3f7709628ecb661658bc0c2c54696e05e50e51adc8f4b0304a7bf68bb39ca937234834ed85f", @generic="93d73aff695ef3e74ceeec3d973bec0c04ba117d3806f039909a551c425ab90472fdad460bbc72f2b6f7521ef2ca36ad07ab3bd456075df7d32403a5fe382d54246989732871ed2c60e4446f3e83096058bd6fc0aa178fcc6621dd28e0db1020d0d38cfa4dc05bb8881414c9212fa90f74b14b7b0803a83a31169eeb6dd5b9c6c552aaac401aa97aa551cdc83d7de69a8e6fa110103531f7c2e2cd984ba81268c192a4481f18c42132bddaa6713c75abd4a80f04bcdafd1b621c5ce84fa00acb6b7a33b01b70fb943e279387c87098a35eced6d211cab2"]}, @TIPC_NLA_PUBL={0x54, 0x3, 0x0, 0x1, [@typed={0x8, 0x62, 0x0, 0x0, @u32=0x40}, @nested={0x47, 0x82, 0x0, 0x1, [@generic="6b43599fb7e96b11a4bc19c1e0a47877d1eb3e478efcf2e32d86551d5b8448e66ebebecc1d345f0485b831ad4ea9f84da52e3d799023911bdfafc57e81dc89", @nested={0x4, 0xf2}]}]}]}, 0x2b4}, 0x1, 0x0, 0x0, 0x4000000}, 0x4040004)
close_range$auto(r1, r1, 0x7)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x7fffffff, 0x257f, 0x0, 0x8)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x7, 0x4, 0x4, 0x8)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x6, 0x4, 0x6, 0x2)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x2, 0x101, 0xffff, 0x10000)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x7, 0x800, 0x7, 0x800)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x10, 0x0, 0x3, 0x0)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x9, 0x1, 0x7, 0x2)
poll$auto(&(0x7f0000000400)={<r2=>r1, 0xefa, 0x3ae}, 0x4, 0x11206374)
ioctl$auto_NS_GET_USERNS(r2, 0xb701, 0x0)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x7, 0x7fffffffffffffff, 0x7, 0x100000001)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x8, 0xbb, 0x1, 0x1)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x6, 0x7fff, 0x5, 0x3)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0xe, 0x6a, 0xc, 0xe7e1)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x8b0, 0x1, 0x1, 0x80000001)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x9, 0x9, 0xffffffffffffffff, 0x18000000000000)
prctl$auto_PR_GET_NO_NEW_PRIVS(0x27, 0x0, 0x3000000000, 0x8, 0x7)

2m33.445050529s ago: executing program 3 (id=461):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0002, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x20)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x4, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x4, 0x8000)
read$auto(0x3, 0x0, 0x80)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
mmap$auto(0x2, 0x100000001, 0x4000000000df, 0x15, 0xffffffffffffffff, 0x8000)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x8, 0xa8e1, 0x100000011, r0, 0xfffffffffffffffd) (async)
mmap$auto(0x0, 0x8, 0xa8e1, 0x100000011, r0, 0xfffffffffffffffd)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
madvise$auto(0x0, 0x200007, 0x8)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0) (async)
io_uring_setup$auto(0x6, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) (async)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
r2 = epoll_create$auto(0x8800001)
epoll_ctl$auto(r2, 0x1, r1, 0x0) (async)
epoll_ctl$auto(r2, 0x1, r1, 0x0)
sendmmsg$auto(r0, 0x0, 0x9e8, 0x81)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x3e00, 0x0) (async)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x3e00, 0x0)
read$auto(r3, 0x0, 0x1f40)
close_range$auto(0x0, 0xffffffffffffffff, 0x2) (async)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
fanotify_init$auto(0x4, 0x8)
open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) (async)
r4 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
fanotify_mark$auto(0x400000000000, 0x9, 0xf2b, r4, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (async)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)

2m32.415979761s ago: executing program 3 (id=470):
r0 = socket(0x25, 0x80000, 0x0)
sendto$auto(r0, 0x0, 0xbd0, 0x6, 0x0, 0x3)
r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
mmap$auto(0x18, 0xffff, 0x3, 0x90, r0, 0xff)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/lru_gen_full\x00', 0x0, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
fallocate$auto(r1, 0x1, 0x52, 0x6653)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x9, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0x1]}, 0x0)
r3 = openat$auto_clear_warn_once_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
read$auto_clear_warn_once_fops_(r3, 0x0, 0x0)
r4 = socket(0x15, 0x5, 0x0)
socket(0xa, 0x1, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x18)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x4, 0x8000)
read$auto(0x3, 0x0, 0x80)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmsg$auto(r4, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
socket(0xa, 0x1, 0x84)
listen$auto(0x3, 0x81)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
msync$auto(0x0, 0xce, 0x400000004)
r5 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
write$auto_proc_mem_operations_base(r5, &(0x7f0000001680)="a7", 0x80000)
madvise$auto(0x0, 0x20200, 0x15)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)

2m31.295111794s ago: executing program 3 (id=474):
unshare$auto(0x40000080) (async)
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
io_getevents$auto(0x1, 0x1ff, 0x9, 0x0, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x7, 0x12, 0xffffffffffffffff, 0xf4e) (async)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyw2\x00', 0x0, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000001bc0)="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", 0xd4f)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) (async)
getpgid$auto(r1) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x10, 0x2, 0xc) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r2, 0x0) (async)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x58b02, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3) (async)
ioctl$auto_KVM_GET_MSRS(r2, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x308, 0x400}]})
io_uring_setup$auto(0x6, 0x0) (async)
io_uring_register$auto(0x2, 0xe, 0x0, 0x20) (async)
ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
shmctl$auto(0x0, 0xd, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/midi2\x00', 0x4000, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
socket(0x15, 0x5, 0x0)

2m30.488008538s ago: executing program 3 (id=480):
socket(0x9, 0x3, 0x5)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x29, 0x2, 0x0)
fcntl$auto(0x3, 0x4, 0xa553)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
fanotify_init$auto(0x200, 0x1)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x80502, 0x0)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socketpair$auto(0x98, 0xa38, 0x1, 0x0)
mmap$auto(0x9, 0xfffffffffffffffe, 0x100000001db, 0x15, r0, 0x7ffc)
madvise$auto(0x100000000002, 0x2000040080000004, 0xe)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
mmap$auto(0x0, 0x6000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000000)={0x6})
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x141000, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x3, 0xeb1, 0x401, 0x8040)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x14, 0x0, 0x4, 0x70bd26, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4004080}, 0x0)

2m15.164596823s ago: executing program 32 (id=480):
socket(0x9, 0x3, 0x5)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x29, 0x2, 0x0)
fcntl$auto(0x3, 0x4, 0xa553)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
fanotify_init$auto(0x200, 0x1)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x80502, 0x0)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socketpair$auto(0x98, 0xa38, 0x1, 0x0)
mmap$auto(0x9, 0xfffffffffffffffe, 0x100000001db, 0x15, r0, 0x7ffc)
madvise$auto(0x100000000002, 0x2000040080000004, 0xe)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
mmap$auto(0x0, 0x6000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000000)={0x6})
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x141000, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x3, 0xeb1, 0x401, 0x8040)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x14, 0x0, 0x4, 0x70bd26, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4004080}, 0x0)

7.824911641s ago: executing program 0 (id=1178):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f42)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
socketpair$auto(0x1f, 0x5, 0x8000000000000000, 0x0)
ioctl$auto_TCFLSH2(r3, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
ioctl$auto(r2, 0x89f0, r2)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101200, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_GET_MSRS(r4, 0x4008ae90, &(0x7f0000000300)={0x2, 0x0, [{0x40000001, 0x7ff, 0x8}]})
writev$auto(r1, &(0x7f00000001c0)={0x0, 0x9}, 0x3)
io_uring_register$auto_IORING_REGISTER_ZCRX_IFQ(0xffffffffffffffff, 0x20, 0x0, 0x4)
ioctl$auto_BTRFS_IOC_GET_FEATURES(0xffffffffffffffff, 0x80189439, 0x0)
bpf$auto_BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x5)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, 0x0, 0x6f4)
inotify_init1$auto(0x3000000000000)

6.981236942s ago: executing program 0 (id=1182):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x0)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0)
r1 = socket(0x2, 0x3, 0xa)
r2 = getsockopt$auto(r1, 0x0, 0x29, 0x0, 0x0)
mmap$auto(0x5, 0x202000d, 0x9, 0xeb1, r2, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x8, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r3 = openat$auto_hsr_node_table_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
epoll_create$auto(0x66f)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
unshare$auto(0x40000085)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000004180)=ANY=[@ANYBLOB='0@ \x00', @ANYRES16=r4, @ANYBLOB="010025bd7000fadbdf2501000000100007800c0001800800018004009f800c0002000600000000000000"], 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x8880)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto(0x3, 0xae41, r5)
openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000080), 0xa0040, 0x0)
io_uring_register$auto_IORING_UNREGISTER_RING_FDS(r3, 0x15, &(0x7f0000000240)="1742d3835dd08df1965bcc8f5d04df035436d9ba1c0c0c68eb9e77e13697fc4b06c5d4abd2e093bc89604c7b6476830eb229519020de3a0b858e88018df2af929f0c310f143a2e474e207196cf0e0d188a022758097daabd7fecb0dd3cf2e2f6caf94fac130e662eb285c1bd23ce70af67dc913307045478a87406397093b4a7a05dbda08be9d1742530917bdefc9a241a889ab8240035c34a3819d090963f6747b3c215f562c0a07f668bdae2bfcb404c92d5a51a687bd5adfd9997b9353ae7addacb3a08f1174a88c4ba1df64649d9da0d97519d8c409eabe5051f0bd25cb53a2b", 0x9a9)
r6 = openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000b00), 0x40042, 0x0)
read$auto(r6, 0x0, 0x4)
madvise$auto(0x0, 0x2003f0, 0x14)

6.370487105s ago: executing program 2 (id=1188):
socket(0x2, 0x3, 0xa) (async, rerun: 32)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (rerun: 32)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg1\x00', 0x32140, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async, rerun: 32)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005) (rerun: 32)
r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
ioctl$auto_BLKPG2(r0, 0x1269, 0x0)
ioctl$auto_OTPERASE(r0, 0x400c4d19, 0x0) (async)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) (async)
close_range$auto(0x2, 0x8, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x184)
flock$auto(r1, 0x73) (async, rerun: 64)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0) (async, rerun: 64)
readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram11\x00', 0x14be02, 0x0) (async)
syz_clone3(&(0x7f0000000440)={0x20028900, 0x0, &(0x7f00000001c0), &(0x7f0000000200), {0x1e}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async, rerun: 32)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (rerun: 32)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7)
symlink$auto(0x0, &(0x7f0000000000)='\'--[[\x14+\\\x00') (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async, rerun: 64)
fanotify_init$auto(0x1f53, 0x2000000000002) (async, rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async)
fanotify_mark$auto(0x0, 0x401, 0x4, 0x4, 0x0)

5.205144653s ago: executing program 0 (id=1190):
rseq$auto(&(0x7f00000001c0)={0xe, 0x20401, 0x5fc, 0x10000006, 0xffffffff, 0x6}, 0x8000, 0x0, 0x6)
r0 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000380), 0x400, 0x0)
pread64$auto(r0, &(0x7f00000003c0)='@\x00', 0x9, 0x1)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dsp\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x100)
mmap$auto(0x0, 0x2000000000a, 0xffb, 0x12, 0x3, 0x0)
acct$auto(&(0x7f0000000000)='/dev/dsp\x00')
socket$nl_generic(0x10, 0x3, 0x10)
eventfd2$auto(0x6af3, 0x800)
socket(0x1e, 0x1, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram14\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = socket(0x15, 0x5, 0x0)
bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmsg$auto(r2, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/midiC2D2\x00', 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7440, 0x1, 0x9, 0x9, 0xdffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r4, 0x114, 0x2715, 0xfffffffffffffffc, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_clone(0x2040000, 0x0, 0x0, 0x0, 0x0, 0x0)

3.770569351s ago: executing program 2 (id=1195):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
r0 = socket(0x2a, 0x2, 0xb)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
pipe$auto(0x0)
fcntl$auto(r0, 0x5, 0x6)
r1 = socket(0x2, 0x5, 0x0)
setsockopt$auto(r1, 0x0, 0x10, 0x0, 0x17)
close_range$auto(0x2, 0x8, 0x0)
getpeername$auto(0x3, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = socket(0xa, 0x802, 0x3a)
setsockopt$auto(r2, 0x29, 0x80000000, 0x0, 0x18000113)
r3 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x108800}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x14, 0x0, 0x10, 0x4, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4044}, 0x20000004)
r4 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/32t\x00', 0x82000, 0x0)
ppoll$auto(&(0x7f0000000080)={<r5=>r4, 0xf7f, 0x7d}, 0xfd, 0x0, 0x0, 0x8)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r3)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/all/accept_local\x00', 0x81, 0x0)
connect$auto(0xffffffffffffffff, &(0x7f0000000140)=@qipcrtr={0x2a, 0x1, 0x3fff}, 0x57)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000000), 0x7114}, 0x8)
sendmsg$auto_NL80211_CMD_GET_STATION(r3, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000280)={0x14, r6, 0x8, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x40000)
close_range$auto(0x2, r5, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x2, 0x3a)
r7 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x2a801, 0x0)
poll$auto(&(0x7f0000000240)={r7, 0x20, 0x2}, 0x5, 0x104)
write$auto(0x3, 0x0, 0xfffffdef)

3.403742771s ago: executing program 0 (id=1198):
mmap$auto(0x0, 0x10, 0xfff, 0xeb5, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000300)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/netdevsim2/hop_limit\x00', 0x5016c1, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004814}, 0x8800)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/zram-control/hot_remove\x00', 0x8001, 0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/ip_autobind_reuse\x00', 0xd02, 0x0)
sendfile$auto(r2, r3, 0x0, 0x800048)
close_range$auto(r3, 0x8, 0x0)
mmap$auto(0x0, 0x0, 0xdf, 0x9b72, 0xffffffffffffffff, 0x7fffffff)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001180)='/dev/input/mice\x00', 0x1a1382, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
close_range$auto(0x2, 0x8, 0x95)
socket(0x2, 0x1, 0x0)
bind$auto(r1, &(0x7f0000000180)=@ethernet={0x1, @broadcast}, 0x6a)
open(&(0x7f0000000000)='./file0\x00', 0x171340, 0x100)
socket(0x23, 0x4, 0xa7)
socket(0x9, 0x80000, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0xfffffffc, &(0x7f0000000000)=@link_update={r4, @new_prog_fd=r4, 0x1, @old_prog_fd=r4}, 0x7)
close_range$auto(0x2, 0x8000, 0x5)

3.392650138s ago: executing program 4 (id=1199):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event0\x00', 0x8000, 0x0)
socket(0x10, 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
fsconfig$auto_SHMEM_HUGE_FORCE(0xffffffffffffffff, 0x7, &(0x7f0000000100)='@+\\!\x00', &(0x7f00000001c0)="5b0fdf8e7220ade733b697e361a312e8797cf9bc410c090dd180de688ae19ee0f7d3ce7f185fa1b9c9867d234fdb5c62c6e305f1df4ca134c6413371cb668566fc407fc2b99e953d74e9fe557dc0d6dd24b7fd497737dfcd44938915c5131197660e57624aba5b26b726415e50ca4639", 0xfffffffffffffffe)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010028bd7000fbdbdf2503000000140001000000000000000000000000000000000153e348efb94989977280404630b099a081af3e23bdf08af13b8c134b93b6b596879b87e042865b9b67b7a152272081898948b7e9f7e0024663407350c917981d8266f1bf69b928744de8e8f065a36940a330f5d8f1092a49bd102a234e79228d8dc59092dc727dd1192c964a1dcd2dae9400abbcab70e30f5b8259b575d8457c53766eba1c83d9afbf70dc2cd758fa02df300d654b395f3f1e439aba9e5fd5e8578e4bd8181f5c5e31cc1df45d5af38844f865f4"], 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/dev/audio1\x00', 0x100000a3d9)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x3, 0x0, 0xfffffffffffffffc, 0x696b}, 0xed7138c}, 0x2, 0x9)
r3 = socket(0xa, 0x5, 0x84)
sendto$auto(r3, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/sctp/assocs\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000040)=""/9, 0x9)

3.235270939s ago: executing program 2 (id=1200):
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc005}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa507}, 0x800}, 0x7, 0x8)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x84)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xa4e00, 0x0)
sendmsg$auto_MAC802154_HWSIM_CMD_NEW_EDGE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x81)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007)
writev$auto(0xffffffffffffffff, 0x0, 0x1)
mincore$auto(0x1000, 0x8001, 0x0)
getsockopt$auto_SO_PEEK_OFF(0xffffffffffffffff, 0x8, 0x2a, 0x0, &(0x7f00000001c0)=0x6)

2.625739039s ago: executing program 2 (id=1203):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/block/nbd3/queue/iosched/front_merges\x00', 0x2041, 0x0)
sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, 0x0, 0x8000800)
socket(0x2, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0)
ioctl$auto_BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000240)={"ef65ce6c00cf81000000ffffffffffffff291d00", 0x3ff, 0x408, 0xffc, 0x400004, 0x200000000040000d})
ioctl$auto_BLKTRACETEARDOWN(r1, 0x1276, 0x0)
ioctl$auto_BLKTRACETEARDOWN(r1, 0x1276, 0x0)
madvise$auto(0x0, 0x5, 0x15)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/scsi/drivers/st/fixed_buffer_size\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x3)
read$auto_nvram_misc_fops_nvram(0xffffffffffffffff, 0x0, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x440c5)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty4\x00', 0x105500, 0x0)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x4, 0x100000001, 0xfffffff9, 0x0, 0x0, 0x0, 0x9, 0x10001, 0x7, 0x400, 0x7ffffff8, 0x7, 0x4, 0x5, 0x61, 0x103})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x89fc, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x8658)

2.2379826s ago: executing program 4 (id=1204):
mmap$auto(0x0, 0x10000c5, 0x0, 0x40eb2, 0x402, 0x300000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x144)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2202, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose11/tx_queue_len\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
r2 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0)
r3 = socket(0x22, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x80044943, 0x0)
ioctl$auto_I2C_SMBUS(r2, 0x720, 0x0)
read$auto(r1, 0x0, 0x1)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
r4 = openat$auto_fragmentation_threshold_ops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/fragmentation_threshold\x00', 0x400, 0x0)
arch_prctl$auto_ARCH_GET_XCOMP_SUPP(0x1021, 0x1ff80000000000)
read$auto_fragmentation_threshold_ops_(r4, 0x0, 0x0)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x0, 0x10, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_COALESCE_TX_AGGR_MAX_BYTES={0x8, 0x1a, 0x2}, @ETHTOOL_A_COALESCE_PKT_RATE_LOW={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x8004}, 0x8000)
execveat$auto(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

2.217730105s ago: executing program 0 (id=1205):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_fake_panic_fops_(0xffffffffffffff9c, 0x0, 0x4040, 0x0) (async)
r1 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000040), r0)
sendmsg$auto_NCSI_CMD_SET_CHANNEL_MASK(r0, &(0x7f00000012c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001280)={&(0x7f0000000080)={0x11cc, r1, 0x2, 0x70bd27, 0x25dfdbfd, {}, [@NCSI_ATTR_PACKAGE_LIST={0x11a7, 0x2, 0x0, 0x1, [@generic="b6fab30567c2fef0a05f5be68260176376b4cb4181745515bf65c533d35bb46fa23c885856fcd692e004595f4bb69d212381f10523fa9a664d26bca25f947ab3767120ece721c4364e67cbcaf065370d19967c6c9ab8aae58f83177afe97c275ff159e6b13acec4eacce333430b9c0349879ca0e692dfe96bf6483636407368e3ffb4d5e60d9b92b077c02d70c1b91d07a4e2e60b062c50e30a5b4892c3e73a28dac5a87f91229e4dcace00bcb511ac10b09ed2d779f15082952f3", @typed={0x8, 0x14e, 0x0, 0x0, @uid=0xffffffffffffffff}, @generic="f257695de87560a653c6b3e74506533b14578c1769ac08f1", @typed={0x8, 0x1d, 0x0, 0x0, @str=',W&\x00'}, @nested={0x10bd, 0x11d, 0x0, 0x1, [@nested={0x4, 0xb8}, @generic="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", @nested={0x4, 0xa5}, @nested={0x4, 0x30}, @generic="ca030febde3f14df114f22244cdadf09abf1a08a90c6e21eb550a6e05cb35f0ed211223b819240e867ecec8f96c1e4929ac5cbf6a2f333ff8d4f918665475e026a67436fbff6ac0da4c112ba1c0c51c1c235d3a59c8fdda831a4a9a856a684503a8623fa3876090c73abbbd793da770ccbd74df93ca548fcc1c42cac5bdb860cc8f873f27294021f91db3e8a4881b5c84c48e5f1945b1b679b979b36bb7a25a469502ce837", @typed={0x4, 0xce}, @nested={0x4, 0xe0}]}]}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x5}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x8001}]}, 0x11cc}, 0x1, 0x0, 0x0, 0xc044814}, 0x804) (async, rerun: 64)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) (async, rerun: 64)
mmap$auto(0x0, 0x40006, 0xe2, 0x20009b72, 0x7, 0x28000)
connect$auto(0x3, 0x0, 0x55)

2.065668762s ago: executing program 1 (id=1206):
madvise$auto(0x0, 0x2000040080000004, 0xe)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_PAUSE2(r0, 0x40044145, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
syslog$auto(0x3, 0x0, 0x2001013)
pwrite64$auto(0xc8, 0x0, 0xfded, 0x6)
clock_getres$auto(0x4, &(0x7f0000000340)={0x6, 0x81})
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/kernel/sched_rt_period_us\x00', 0x101202, 0x0)
sendfile$auto(r2, r2, 0x0, 0x4)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x0)
open(&(0x7f0000000040)='./cgroup\x00', 0x80, 0xb5d1af1605322de0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2242, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_pipe\x00', 0x20c01, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
select$auto(0x9, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0x7, 0x8, 0x5, 0x948b, 0xffffffffffffffff, 0xffffffffffff8000, 0x5, 0x8, 0x67, 0x80000020, 0x1000, 0xc, 0xc, 0x2, 0x8]}, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x1, 0xbc3, 0x800, 0x3, 0x8, 0xc, 0x400000000003, 0x3, 0x0, 0xfffffffffffffffe, 0x6, 0x9, 0xffffffffffffff81, 0x4]}, 0x0)
openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000), 0x40002, 0x0)

1.897492886s ago: executing program 4 (id=1207):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async)
r0 = socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) (async, rerun: 64)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 64)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x8, 0x2020009, 0x4, 0x216, r0, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0x0, 0x5, 0x4000000000e2, 0xeb1, 0x401, 0x8000) (async)
ioctl$auto(0xffffffffffffffff, 0xc0045405, 0x3) (async)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0xc02, 0x0) (async)
unshare$auto(0x20000) (async)
unshare$auto(0x20000) (async, rerun: 64)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) (async, rerun: 64)
mkdir$auto(&(0x7f00000002c0)='./file0\x00', 0x3)
mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9) (async)
ioctl$auto_XFS_IOC_ERROR_INJECTION(r1, 0x40085874, &(0x7f0000000180)={r0, 0x800}) (async)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1/file0\x00', 0x101040, 0x149) (async)
socket(0x9, 0x3, 0x5) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
fanotify_init$auto(0x200, 0x1)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0)
mmap$auto(0x4, 0x2, 0x9, 0x15, 0xffffffffffffffff, 0x2000000ce6) (async)
socketpair$auto(0x98, 0xa38, 0x1, 0x0) (async, rerun: 32)
mmap$auto(0x9, 0xfffffffffffffffe, 0x100000001db, 0x15, 0xffffffffffffffff, 0x7ffc) (rerun: 32)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

1.865418309s ago: executing program 1 (id=1208):
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x4, 0x6, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x2, 0xffffffffffffffff, 0x44eb1, 0x602, 0x300000000000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
io_submit$auto(0x0, 0x0, &(0x7f0000000600)=&(0x7f00000005c0)={0x544, 0x0, 0xfffffff8, 0xfff1, 0xfff7, 0xffffffffffffffff, 0x9, 0x9, 0x0, 0x0, 0x8001, <r0=>0xffffffffffffffff})
r1 = openat$auto_stats_seq_fops_netdebug(0xffffffffffffff9c, 0x0, 0xc83c0, 0x0)
close_range$auto(r1, 0x8, 0x6)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x24, 0x0, 0x2, 0x70bd2c, 0x25dfdbfb, {}, [@NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x400080}, @NFSD_A_SERVER_GRACETIME={0x8, 0x2, 0x7f}]}, 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(r0, 0x0, 0x38)
socket(0x22, 0x2, 0x24)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
ioctl$auto_XFS_IOC_PATH_TO_HANDLE(r3, 0xc0385869, &(0x7f00000002c0)={0xffffffffffffffff, &(0x7f0000000080)="b64ba7d5a4d31890e7869f592c709d6696218a3260658680ec91c613ab107c4ae46a32a8738294f16f8bde05ed9bfa3e7b8aee8c391517d0db2e52e7a4", 0x5, &(0x7f0000000880)="59d5d9db8fe4d7fdac83f1a38f372ac6da2b0cc1b9d4d943631c4b7403dbe32ba82191add0690337cb899cbc4875c2b0796ab8c60a86df4e4935373804bfed33f3f1ceef4bb7b8f13ee307f796cedd37bcbca90427d1e170b9fbb679ae91fc7b3d191e07db75e30bc602acbfd3869165a1620b5793ee21d82660abdf8fc2794761821e01bd4ca60a364e1dc119352c294963babd54259e92e5f9e5000000000000000790a08573b441d0d7d974ee870db6c2733f11eb4155973426ad2e8fea946f5bd47673d408da13c4c69a5f55ff4f6deee94398582d0000000000d2306ed8a29467e55195243fe6901d7d4ff5", 0x4, &(0x7f0000000100)="137eca481fdb25a1229cfa35cfbb7dfa7976718a9e8f758097eb00aa7560cbbe534e326ef0078ea5a25d14a1edbb7ff03070de13583d4d808250094cbfe7abcb15db405d78b9c2cd7eca202c9e820cd496d48796ab8f9b37a5899df444b7350fc32b1d5db078ce87c3da6f7d48902d13763d6104b3eae326c5df2badb6838d28d4d2850aa2b99fcf38f27d5697697505035506058c86616c", &(0x7f00000001c0)=0x63df})
fsetxattr$auto(0xffffffffffffffff, &(0x7f0000002ac0)='/$\x00', &(0x7f0000002b00), 0x4, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000480), 0xffffffffffffffff)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0xc00, 0x0)
ioctl$auto_EVIOCSMASK(r4, 0x40104593, 0x0)

1.776042469s ago: executing program 4 (id=1209):
r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
close_range$auto(0x0, 0xfffff004, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r1 = socket(0xa, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bond0\x00'})
bpf$auto(0x0, &(0x7f00000000c0)=@link_detach={r2}, 0x10000f)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0xc)

1.624941745s ago: executing program 4 (id=1210):
getpgrp(0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid$auto(0x0, 0x594d0417, 0x0, 0x1000004, 0x0)
mmap$auto(0x0, 0x400005, 0x40000000000df, 0x9b72, 0x2, 0x8000)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
r0 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
ptrace$auto(0x4206, r0, 0x0, 0x200005)
waitid$auto_P_ALL(0x0, 0x5, 0x0, 0x8, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)
ioctl$auto(0x3, 0x50434903, 0x1)
r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x14, r2, 0x1, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x80)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
r3 = getpid()
r4 = gettid()
rt_tgsigqueueinfo$auto(r3, r4, 0x1f, &(0x7f0000000400)={@_si_pad})
ppoll$auto(&(0x7f0000000040)={0xffffffffffffffff, 0x690, 0xffa1}, 0x5, 0x0, &(0x7f00000000c0)={0x4}, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = pipe$auto(0x0)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, 0x0, 0x20080014)
listen$auto(0xffffffffffffffff, 0x0)
ioctl$auto_RNDRESEEDCRNG(r5, 0x5207, 0x0)

1.599662306s ago: executing program 1 (id=1211):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000080), 0x80402, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0xa, 0x1, 0x0) (async)
io_uring_setup$auto(0x3, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/uevent_helper\x00', 0x80302, 0x0)
sendfile$auto(r1, r1, 0x0, 0xd15)
openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x109402, 0x0) (async)
read$auto_tomoyo_operations_securityfs_if(0xffffffffffffffff, &(0x7f0000000000)=""/37, 0x25) (async)
socket(0x1a, 0x1, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "8300"}, 0x18) (async)
socketpair$auto(0x3, 0x80001, 0x7d, 0x0) (async)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x1b)
close_range$auto(0x2, 0xa, 0x0) (async)
socket(0x25, 0x5, 0x0) (async)
socket(0x8, 0x3, 0x20000ff)
setsockopt$auto_SO_PROTOCOL(r0, 0x6, 0x26, 0x0, 0x5)
mmap$auto(0x8, 0x3, 0xfe, 0x80000a5d, 0xffffffffffffffff, 0x5) (async)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/mm/transparent_hugepage/khugepaged/pages_to_scan\x00', 0x1e2102, 0x0) (async)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x4}, 0x8)
io_uring_setup$auto(0x6, 0x0) (async)
close_range$auto(r2, r0, 0x8) (async)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) (async)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x96141, 0x0)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x802, 0x0)
write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)

1.492642819s ago: executing program 2 (id=1212):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/032/001\x00', 0x80202, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000040)={0x20, 0xc, 0x4, 0x0, 0x2, 0x8000004, &(0x7f00000000c0)})
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
socket(0x15, 0x5, 0x0)
getpeername$auto(0x200000003, 0x0, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x4610, 0x0)
prctl$auto(0x1000000003b, 0xfffffffffffffffd, 0x4, 0x5, 0x7)
getgroups$auto(0x0, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup/pids.peak\x00', 0x8000, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
mmap$auto(0x0, 0x9644, 0xdf, 0x209b72, r3, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x103700, 0x0)
read$auto(r4, 0x0, 0x4000000081)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0)
get_robust_list$auto(0x1, 0x0, 0x0)
r5 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x8006, 0x0)
ioctl$auto_PPPIOCSMRU(r5, 0xc004743e, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r6 = socket(0xa, 0x5, 0x4000000)
getsockopt$auto(r6, 0x84, 0x6, 0x0, &(0x7f0000000240)=0x10009b)
readv$auto(0x3, 0x0, 0x87)
openat$auto_bdi_debug_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bdi/43:416/stats\x00', 0x0, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000002480)='/dev/amidi2\x00', 0x20141, 0x0)

1.205994685s ago: executing program 0 (id=1213):
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x40000080)
socket(0xa, 0x5, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0x8)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
ioctl$auto(0xffffffffffffffff, 0x540a, 0x0)
r1 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r1, 0x107, 0x13, 0x0, 0x6)
close_range$auto(0x2, 0x8, 0x0)
msgrcv$auto(0x9, 0x0, 0xfffffffffffffffd, 0x6, 0x80008)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0x80000000000000a, 0x2, 0x0)
socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
sysfs$auto(0x2, 0x2, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0x0)
userfaultfd$auto(0x7)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000180), r2)
futex_waitv$auto(0x0, 0x6, 0x5, &(0x7f0000000100)={0xa4, 0x4}, 0x9)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000100)='1', 0x1)

1.205021708s ago: executing program 1 (id=1214):
mmap$auto(0x0, 0x10, 0xfff, 0xeb5, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000300)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/netdevsim2/hop_limit\x00', 0x5016c1, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004814}, 0x8800)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/zram-control/hot_remove\x00', 0x8001, 0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/ip_autobind_reuse\x00', 0xd02, 0x0)
sendfile$auto(r2, r3, 0x0, 0x800048)
close_range$auto(r3, 0x8, 0x0)
mmap$auto(0x0, 0x0, 0xdf, 0x9b72, 0xffffffffffffffff, 0x7fffffff)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001180)='/dev/input/mice\x00', 0x1a1382, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
close_range$auto(0x2, 0x8, 0x95)
socket(0x2, 0x1, 0x0)
bind$auto(r1, &(0x7f0000000180)=@ethernet={0x1, @broadcast}, 0x6a)
open(&(0x7f0000000000)='./file0\x00', 0x171340, 0x100)
socket(0x23, 0x4, 0xa7)
socket(0x9, 0x80000, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0xfffffffc, &(0x7f0000000000)=@link_update={r4, @new_prog_fd=r4, 0x1, @old_prog_fd=r4}, 0x7)
close_range$auto(0x2, 0x8000, 0x5)

1.013878766s ago: executing program 4 (id=1215):
mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x8, 0x6, 0x3, 0x13, 0xffffffffffffffff, 0x400)
prctl$auto(0x3d, 0x40005, 0x0, 0x6, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000c00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'batadv0\x00'})
sendmsg$auto_BATADV_CMD_GET_VLAN(r1, 0x0, 0x4008090)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0)
r2 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r2, &(0x7f00000000c0)="632d1bfe595046ab5c40bd6163307acb6d16baef6176e669a216aae1824ccafdd80500ffffffffdfff1a0e00"/56, 0x38)
sendmsg$auto_MAC802154_HWSIM_CMD_NEW_EDGE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40001}, 0x400c091)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007)

790.67697ms ago: executing program 1 (id=1216):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9402, 0x0)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800)
timer_create$auto(0x9, 0x0, 0x0)
read$auto(0x3, 0x0, 0x8080)
r1 = socket(0xa, 0x1, 0x100)
write$auto(0x3, 0x0, 0xffd8)
mq_timedsend$auto(0xffffffffffffffff, 0x0, 0xffffffffbffffff9, 0x5, &(0x7f0000000240)={0xfe35, 0x800000101})
unshare$auto(0x40000080)
r2 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r2, &(0x7f00000001c0)="624d1bfe595046ab5c98199adf260600de16baef6176e6021e1dce210500e8fdffff0000000000fffffffe00a7ed73de11691c13403c82be", 0x7b)
process_mrelease$auto(0xffffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
write$auto(0x3, 0x0, 0x100082)
read$auto(0x3, 0x0, 0x7fffffff)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), r1)
madvise$auto(0x70f0, 0xcd, 0x400e)

90.151673ms ago: executing program 2 (id=1217):
r0 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64)
fchdir$auto(r0)
mkdir$auto(&(0x7f0000000040)='./cgroup\x00', 0x6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/cgroup.type\x00', 0x103042, 0x0)
rmdir$auto(&(0x7f0000000080)='./cgroup\x00')
mmap$auto(0x0, 0x2020009, 0xea8, 0xeb1, 0xfffffffffffffffa, 0x80008003)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x9, 0xb5, 0x200, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0x10)
open(&(0x7f00000002c0)='./file0\x00', 0x221c2, 0x0)
mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000140)="e7696e5891a9bccbf2a814c2b1c2da6a4642e71e423e55bb3bdfb80fb3496c6bac2c4769", 0x24)
mlock$auto(0x81, 0xffff)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
mknod$auto(0x0, 0x1001, 0x804)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
r2 = socket(0x29, 0x5, 0x0)
write$auto(0x3, 0x0, 0x100082)
write$auto(0x3, 0x0, 0x8)
r3 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NCSI_CMD_SET_CHANNEL_MASK(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4000040}, 0x4080)
sendmsg$auto_NCSI_CMD_PKG_INFO(r2, 0x0, 0x200440c0)
semctl$auto(0x1ff, 0x2, 0x13, 0x1)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r5 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
lseek$auto(r5, 0x0, 0x1)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)

0s ago: executing program 1 (id=1218):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000080), 0x121040, 0x0)
ioctl$auto(0x3, 0x89ed, 0x74)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
kexec_load$auto(0x5, 0xf0, &(0x7f0000000040)={@buf=&(0x7f0000000000)="819fcf80acd3ae061553a27940bcf812f9f259b86ea81186", 0x7, 0xf000000000, 0x100000000}, 0xc6)
cachestat$auto(r0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

[   T30] audit: type=1800 audit(1762620987.117:2): pid=6357 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.90" name="lu_gp_id" dev="configfs" ino=9529 res=0 errno=0
[  109.372840][ T6377] input: f�
 as /devices/virtual/input/input9
[  110.063641][ T6392] mmap: syz.3.95 (6392) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  111.092262][ T6409] input: f�
 as /devices/virtual/input/input10
[  111.663445][ T6425] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  111.881502][ T6428] netlink: 8 bytes leftover after parsing attributes in process `syz.3.103'.
[  112.951535][ T6454] FAULT_INJECTION: forcing a failure.
[  112.951535][ T6454] name failslab, interval 1, probability 0, space 0, times 0
[  112.988279][ T6454] CPU: 0 UID: 0 PID: 6454 Comm: syz.0.108 Not tainted syzkaller #0 PREEMPT(full) 
[  112.988302][ T6454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  112.988310][ T6454] Call Trace:
[  112.988315][ T6454]  <TASK>
[  112.988322][ T6454]  dump_stack_lvl+0x16c/0x1f0
[  112.988344][ T6454]  should_fail_ex+0x512/0x640
[  112.988365][ T6454]  ? __kmalloc_cache_noprof+0x5f/0x780
[  112.988390][ T6454]  should_failslab+0xc2/0x120
[  112.988409][ T6454]  __kmalloc_cache_noprof+0x72/0x780
[  112.988430][ T6454]  ? snd_seq_prioq_new+0x3f/0x110
[  112.988455][ T6454]  ? snd_seq_prioq_new+0x3f/0x110
[  112.988475][ T6454]  snd_seq_prioq_new+0x3f/0x110
[  112.988496][ T6454]  snd_seq_queue_alloc+0x12b/0x5a0
[  112.988519][ T6454]  snd_seq_ioctl_create_queue+0xa9/0x390
[  112.988537][ T6454]  call_seq_client_ctl+0x9f/0x110
[  112.988553][ T6454]  snd_seq_kernel_client_ctl+0x77/0xd0
[  112.988568][ T6454]  alloc_seq_queue+0xda/0x180
[  112.988584][ T6454]  ? __pfx_alloc_seq_queue+0x10/0x10
[  112.988610][ T6454]  ? mark_held_locks+0x49/0x80
[  112.988628][ T6454]  ? _raw_spin_unlock_irq+0x23/0x50
[  112.988642][ T6454]  ? lockdep_hardirqs_on+0x7c/0x110
[  112.988660][ T6454]  snd_seq_oss_open+0x38c/0xa20
[  112.988680][ T6454]  odev_open+0x79/0xc0
[  112.988693][ T6454]  ? __pfx_odev_open+0x10/0x10
[  112.988708][ T6454]  soundcore_open+0x40c/0x580
[  112.988725][ T6454]  ? __pfx_soundcore_open+0x10/0x10
[  112.988740][ T6454]  chrdev_open+0x234/0x6a0
[  112.988756][ T6454]  ? __pfx_apparmor_file_open+0x10/0x10
[  112.988776][ T6454]  ? __pfx_chrdev_open+0x10/0x10
[  112.988793][ T6454]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  112.988811][ T6454]  do_dentry_open+0x982/0x1530
[  112.988827][ T6454]  ? __pfx_chrdev_open+0x10/0x10
[  112.988847][ T6454]  vfs_open+0x82/0x3f0
[  112.988868][ T6454]  path_openat+0x1de4/0x2cb0
[  112.988889][ T6454]  ? __pfx_path_openat+0x10/0x10
[  112.988905][ T6454]  ? __lock_acquire+0xb8a/0x1c90
[  112.988924][ T6454]  do_filp_open+0x20b/0x470
[  112.988939][ T6454]  ? __pfx_do_filp_open+0x10/0x10
[  112.988967][ T6454]  ? alloc_fd+0x471/0x7d0
[  112.988986][ T6454]  do_sys_openat2+0x11b/0x1d0
[  112.989005][ T6454]  ? __pfx_do_sys_openat2+0x10/0x10
[  112.989031][ T6454]  __x64_sys_openat+0x174/0x210
[  112.989050][ T6454]  ? __pfx___x64_sys_openat+0x10/0x10
[  112.989077][ T6454]  do_syscall_64+0xcd/0xfa0
[  112.989094][ T6454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.989108][ T6454] RIP: 0033:0x7f6c8d98f6c9
[  112.989120][ T6454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.989133][ T6454] RSP: 002b:00007f6c8e7b3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  112.989146][ T6454] RAX: ffffffffffffffda RBX: 00007f6c8dbe5fa0 RCX: 00007f6c8d98f6c9
[  112.989155][ T6454] RDX: 00000000001c8740 RSI: 0000200000000540 RDI: ffffffffffffff9c
[  112.989164][ T6454] RBP: 00007f6c8da11f91 R08: 0000000000000000 R09: 0000000000000000
[  112.989172][ T6454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  112.989180][ T6454] R13: 00007f6c8dbe6038 R14: 00007f6c8dbe5fa0 R15: 00007fff21648ac8
[  112.989199][ T6454]  </TASK>
[  113.836310][ T6457] netlink: set zone limit has 8 unknown bytes
[  113.893245][ T6459] netlink: zone id is out of range
[  113.934950][ T6459] netlink: del zone limit has 4 unknown bytes
[  115.174277][ T6476] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  115.181256][ T6476] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  115.354043][ T6476] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  115.382623][ T6476] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  115.389911][ T6476] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  115.401322][ T6476] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  115.446246][ T6476] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  115.452349][ T6476] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  115.502198][ T6476] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  115.518859][ T6476] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  115.531234][ T6476] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  115.542872][ T6476] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  116.465126][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout
[  117.414943][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout
[  117.496382][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout
[  117.574853][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout
[  117.816181][ T6553] syz.3.135 uses obsolete (PF_INET,SOCK_PACKET)
[  118.545892][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout
[  119.015413][ T6590] FAULT_INJECTION: forcing a failure.
[  119.015413][ T6590] name failslab, interval 1, probability 0, space 0, times 0
[  119.028225][ T6590] CPU: 0 UID: 0 PID: 6590 Comm: syz.3.141 Not tainted syzkaller #0 PREEMPT(full) 
[  119.028257][ T6590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  119.028271][ T6590] Call Trace:
[  119.028280][ T6590]  <TASK>
[  119.028289][ T6590]  dump_stack_lvl+0x16c/0x1f0
[  119.028323][ T6590]  should_fail_ex+0x512/0x640
[  119.028359][ T6590]  ? fs_reclaim_acquire+0xae/0x150
[  119.028394][ T6590]  should_failslab+0xc2/0x120
[  119.028427][ T6590]  __kmalloc_noprof+0xdd/0x880
[  119.028464][ T6590]  ? kfree+0x252/0x6d0
[  119.028498][ T6590]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  119.028535][ T6590]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  119.028563][ T6590]  tomoyo_realpath_from_path+0xc2/0x6e0
[  119.028604][ T6590]  tomoyo_check_open_permission+0x2ab/0x3c0
[  119.028651][ T6590]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  119.028730][ T6590]  ? do_raw_spin_lock+0x12c/0x2b0
[  119.028775][ T6590]  tomoyo_file_open+0x6b/0x90
[  119.028808][ T6590]  security_file_open+0x84/0x1e0
[  119.028835][ T6590]  do_dentry_open+0x596/0x1530
[  119.028870][ T6590]  vfs_open+0x82/0x3f0
[  119.028906][ T6590]  path_openat+0x1de4/0x2cb0
[  119.028943][ T6590]  ? __pfx_path_openat+0x10/0x10
[  119.028973][ T6590]  ? __lock_acquire+0xb8a/0x1c90
[  119.029011][ T6590]  do_filp_open+0x20b/0x470
[  119.029039][ T6590]  ? __pfx_do_filp_open+0x10/0x10
[  119.029094][ T6590]  ? alloc_fd+0x471/0x7d0
[  119.029130][ T6590]  do_sys_openat2+0x11b/0x1d0
[  119.029164][ T6590]  ? __pfx_do_sys_openat2+0x10/0x10
[  119.029215][ T6590]  __x64_sys_openat+0x174/0x210
[  119.029251][ T6590]  ? __pfx___x64_sys_openat+0x10/0x10
[  119.029302][ T6590]  do_syscall_64+0xcd/0xfa0
[  119.029335][ T6590]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.029361][ T6590] RIP: 0033:0x7f7f20b8f6c9
[  119.029380][ T6590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.029404][ T6590] RSP: 002b:00007f7f219ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  119.029436][ T6590] RAX: ffffffffffffffda RBX: 00007f7f20de6090 RCX: 00007f7f20b8f6c9
[  119.029453][ T6590] RDX: 00000000000c0402 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  119.029469][ T6590] RBP: 00007f7f20c11f91 R08: 0000000000000000 R09: 0000000000000000
[  119.029484][ T6590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  119.029499][ T6590] R13: 00007f7f20de6128 R14: 00007f7f20de6090 R15: 00007ffd5411b0c8
[  119.029536][ T6590]  </TASK>
[  119.029546][ T6590] ERROR: Out of memory at tomoyo_realpath_from_path.
[  119.505041][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout
[  119.575353][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout
[  119.654856][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout
[  120.619716][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout
[  120.877720][ T6641] __vm_enough_memory: pid: 6641, comm: syz.2.151, bytes: 4398046511104 not enough memory for the allocation
[  121.273184][ T6657] vhci_hcd: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  121.575062][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout
[  121.656258][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout
[  121.734854][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout
[  121.811530][ T6628] kexec: Could not allocate control_code_buffer
[  122.530632][ T6679] zswap: compressor  not available
[  122.599827][ T6686] netlink: 28 bytes leftover after parsing attributes in process `syz.0.158'.
[  122.635229][ T6686] ipvlan0: entered promiscuous mode
[  122.649310][ T6686] ipvlan0: entered allmulticast mode
[  122.682532][ T6686] veth0_vlan: entered allmulticast mode
[  122.849708][ T6676] ptrace attach of ""[6691] was attempted by "./syz-executor exec"[6676]
[  123.236667][ T6701] netlink: 4 bytes leftover after parsing attributes in process `syz.2.164'.
[  123.340775][ T6701] netlink: 'syz.2.164': attribute type 10 has an invalid length.
[  123.349009][ T6701] netlink: 330 bytes leftover after parsing attributes in process `syz.2.164'.
[  123.847584][ T6719] QAT: Stopping all acceleration devices.
[  124.127700][ T5838] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  124.127738][ T5838] Bluetooth: hci0: unexpected subevent 0x0a length: 725 > 30
[  124.398993][ T6721] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.773037][ T6746] Invalid ELF header magic: != ELF
[  126.112011][ T6766] netlink: 4 bytes leftover after parsing attributes in process `syz.3.177'.
[  126.176362][ T6762] netlink: 28 bytes leftover after parsing attributes in process `syz.1.176'.
[  126.200608][ T6766] netlink: 'syz.3.177': attribute type 10 has an invalid length.
[  126.219016][ T6766] netlink: 330 bytes leftover after parsing attributes in process `syz.3.177'.
[  126.448609][ T6762] ipvlan0: entered promiscuous mode
[  126.457620][ T6762] ipvlan0: entered allmulticast mode
[  126.462954][ T6762] veth0_vlan: entered allmulticast mode
[  126.493299][ T6767] ptrace attach of ""[6771] was attempted by "./syz-executor exec"[6767]
[  126.993561][ T6778] ovs_: entered promiscuous mode
[  128.623659][ T6816] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(8)
[  128.675120][ T6819] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  129.625152][ T6838] random: crng reseeded on system resumption
[  129.726698][ T6836] hub 8-0:1.0: USB hub found
[  129.755315][ T6836] hub 8-0:1.0: 1 port detected
[  130.053486][ T6841] hub 8-0:1.0: USB hub found
[  130.313893][ T6841] hub 8-0:1.0: 1 port detected
[  132.859711][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  132.866510][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  132.916723][ T6871] netlink: 8 bytes leftover after parsing attributes in process `syz.2.200'.
[  134.818276][ T6898] zswap: compressor  not available
[  136.251724][ T6921] netlink: 20 bytes leftover after parsing attributes in process `syz.1.212'.
[  137.337167][ T6941] random: crng reseeded on system resumption
[  138.412225][ T6946] ovs_: entered promiscuous mode
[  139.075451][ T6978] FAULT_INJECTION: forcing a failure.
[  139.075451][ T6978] name failslab, interval 1, probability 0, space 0, times 0
[  139.135610][ T6978] CPU: 0 UID: 0 PID: 6978 Comm: syz.2.228 Not tainted syzkaller #0 PREEMPT(full) 
[  139.135648][ T6978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  139.135663][ T6978] Call Trace:
[  139.135671][ T6978]  <TASK>
[  139.135682][ T6978]  dump_stack_lvl+0x16c/0x1f0
[  139.135719][ T6978]  should_fail_ex+0x512/0x640
[  139.135757][ T6978]  ? __kmalloc_cache_noprof+0x5f/0x780
[  139.135801][ T6978]  should_failslab+0xc2/0x120
[  139.135836][ T6978]  __kmalloc_cache_noprof+0x72/0x780
[  139.135875][ T6978]  ? __x64_sys_futex+0x1e9/0x4c0
[  139.135910][ T6978]  ? fsnotify_alloc_group+0x92/0x330
[  139.135944][ T6978]  ? fsnotify_alloc_group+0x92/0x330
[  139.135972][ T6978]  fsnotify_alloc_group+0x92/0x330
[  139.136002][ T6978]  do_inotify_init+0x49/0x5f0
[  139.136034][ T6978]  ? rcu_is_watching+0x12/0xc0
[  139.136064][ T6978]  __x64_sys_inotify_init1+0x30/0x40
[  139.136104][ T6978]  do_syscall_64+0xcd/0xfa0
[  139.136137][ T6978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.136164][ T6978] RIP: 0033:0x7f5b72d8f6c9
[  139.136184][ T6978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.136210][ T6978] RSP: 002b:00007f5b73bf3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000126
[  139.136236][ T6978] RAX: ffffffffffffffda RBX: 00007f5b72fe5fa0 RCX: 00007f5b72d8f6c9
[  139.136254][ T6978] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0003000000000000
[  139.136270][ T6978] RBP: 00007f5b72e11f91 R08: 0000000000000000 R09: 0000000000000000
[  139.136286][ T6978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  139.136301][ T6978] R13: 00007f5b72fe6038 R14: 00007f5b72fe5fa0 R15: 00007ffefa476d68
[  139.136337][ T6978]  </TASK>
[  141.790329][ T7050] netlink: 16 bytes leftover after parsing attributes in process `syz.0.240'.
[  142.333018][ T7047] syz.0.240: vmalloc error: size 268435456, failed to allocated page array size 524288, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  142.351570][ T7047] CPU: 1 UID: 0 PID: 7047 Comm: syz.0.240 Not tainted syzkaller #0 PREEMPT(full) 
[  142.351599][ T7047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  142.351609][ T7047] Call Trace:
[  142.351615][ T7047]  <TASK>
[  142.351620][ T7047]  dump_stack_lvl+0x16c/0x1f0
[  142.351642][ T7047]  warn_alloc+0x248/0x3a0
[  142.351657][ T7047]  ? __pfx_warn_alloc+0x10/0x10
[  142.351679][ T7047]  ? packet_set_ring+0xb4c/0x17e0
[  142.351700][ T7047]  ? __vmalloc_node_noprof+0xad/0xf0
[  142.351723][ T7047]  __vmalloc_node_range_noprof+0xfe2/0x1480
[  142.351750][ T7047]  ? packet_set_ring+0xb4c/0x17e0
[  142.351774][ T7047]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  142.351794][ T7047]  ? alloc_pages_mpol+0x25a/0x550
[  142.351815][ T7047]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  142.351833][ T7047]  ? rcu_is_watching+0x12/0xc0
[  142.351850][ T7047]  ? packet_set_ring+0xb4c/0x17e0
[  142.351869][ T7047]  __vmalloc_node_noprof+0xad/0xf0
[  142.351889][ T7047]  ? packet_set_ring+0xb4c/0x17e0
[  142.351911][ T7047]  packet_set_ring+0xb4c/0x17e0
[  142.351939][ T7047]  packet_setsockopt+0x121b/0x33c0
[  142.351953][ T7047]  ? __pfx___might_resched+0x10/0x10
[  142.351969][ T7047]  ? __lock_acquire+0x622/0x1c90
[  142.351989][ T7047]  ? __pfx_packet_setsockopt+0x10/0x10
[  142.352002][ T7047]  ? aa_sk_perm+0x2f4/0xb10
[  142.352016][ T7047]  ? file_init_path+0x4fe/0x760
[  142.352044][ T7047]  ? __pfx_aa_sk_perm+0x10/0x10
[  142.352059][ T7047]  ? find_held_lock+0x2b/0x80
[  142.352075][ T7047]  ? aa_sock_opt_perm+0xfd/0x1c0
[  142.352095][ T7047]  ? __pfx_packet_setsockopt+0x10/0x10
[  142.352109][ T7047]  do_sock_setsockopt+0xf3/0x1d0
[  142.352129][ T7047]  __sys_setsockopt+0x120/0x1a0
[  142.352155][ T7047]  __x64_sys_setsockopt+0xbd/0x160
[  142.352175][ T7047]  ? do_syscall_64+0x91/0xfa0
[  142.352191][ T7047]  ? lockdep_hardirqs_on+0x7c/0x110
[  142.352208][ T7047]  do_syscall_64+0xcd/0xfa0
[  142.352225][ T7047]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.352240][ T7047] RIP: 0033:0x7f6c8d98f6c9
[  142.352251][ T7047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.352264][ T7047] RSP: 002b:00007f6c8e7b3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  142.352280][ T7047] RAX: ffffffffffffffda RBX: 00007f6c8dbe5fa0 RCX: 00007f6c8d98f6c9
[  142.352289][ T7047] RDX: 0000000000000005 RSI: 0000000000000107 RDI: 000000000000000a
[  142.352298][ T7047] RBP: 00007f6c8da11f91 R08: 000000000000ce24 R09: 0000000000000000
[  142.352306][ T7047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  142.352314][ T7047] R13: 00007f6c8dbe6038 R14: 00007f6c8dbe5fa0 R15: 00007fff21648ac8
[  142.352333][ T7047]  </TASK>
[  142.352339][ T7047] Mem-Info:
[  142.711642][ T7047] active_anon:12127 inactive_anon:0 isolated_anon:0
[  142.711642][ T7047]  active_file:5025 inactive_file:48027 isolated_file:0
[  142.711642][ T7047]  unevictable:768 dirty:290 writeback:0
[  142.711642][ T7047]  slab_reclaimable:10865 slab_unreclaimable:92772
[  142.711642][ T7047]  mapped:25608 shmem:1514 pagetables:1129
[  142.711642][ T7047]  sec_pagetables:0 bounce:0
[  142.711642][ T7047]  kernel_misc_reclaimable:0
[  142.711642][ T7047]  free:1312972 free_pcp:22239 free_cma:0
[  142.785450][ T7047] Node 0 active_anon:48908kB inactive_anon:0kB active_file:20100kB inactive_file:191016kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:102532kB dirty:1160kB writeback:0kB shmem:4520kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11504kB pagetables:4476kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  142.835999][ T7047] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:1092kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  142.896973][ T7047] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  142.941129][ T7047] lowmem_reserve[]: 0 2485 2487 2487 2487
[  142.941199][ T7047] Node 0 DMA32 free:1377860kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52396kB inactive_anon:0kB active_file:20100kB inactive_file:190972kB unevictable:1536kB writepending:1172kB zspages:28kB present:3129332kB managed:2545088kB mlocked:0kB bounce:0kB free_pcp:39108kB local_pcp:19272kB free_cma:0kB
[  142.941284][ T7047] lowmem_reserve[]: 0 0 1 1 1
[  142.941326][ T7047] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  142.941366][ T7047] lowmem_reserve[]: 0 0 0 0 0
[  142.941394][ T7047] Node 1 Normal free:3857264kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:1092kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:47564kB local_pcp:13324kB free_cma:0kB
[  142.941435][ T7047] lowmem_reserve[]: 0 0 0 0 0
[  142.941462][ T7047] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  142.941552][ T7047] Node 0 DMA32: 3107*4kB (M) 971*8kB (M) 590*16kB (UME) 524*32kB (ME) 326*64kB (UME) 247*128kB (M) 130*256kB (UME) 73*512kB (UM) 34*1024kB (UM) 19*2048kB (UM) 277*4096kB (UM) = 1377860kB
[  142.941677][ T7047] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  142.941753][ T7047] Node 1 Normal: 101*4kB (UME) 10*8kB (M) 8*16kB (UME) 8*32kB (UME) 15*64kB (UM) 15*128kB (UME) 9*256kB (UM) 6*512kB (M) 6*1024kB (ME) 4*2048kB (ME) 936*4096kB (UM) = 3857316kB
[  142.941877][ T7047] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  142.941889][ T7047] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  142.941909][ T7047] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  142.941920][ T7047] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  142.941931][ T7047] 54559 total pagecache pages
[  142.941937][ T7047] 8 pages in swap cache
[  142.941942][ T7047] Free swap  = 124960kB
[  142.941947][ T7047] Total swap = 124996kB
[  142.941953][ T7047] 2097051 pages RAM
[  142.941958][ T7047] 0 pages HighMem/MovableOnly
[  142.941963][ T7047] 428689 pages reserved
[  142.941968][ T7047] 0 pages cma reserved
[  144.063475][ T7085] tty tty22: ldisc open failed (-12), clearing slot 21
[  144.224076][ T7117] Invalid ELF header magic: != ELF
[  144.629735][ T7129] snd_virmidi snd_virmidi.0: control 5:9:1:IA��>/�[k<���mgx���<�5��+-C��Y��5:0 is already present
[  146.494062][ T7177] nfs: Bad value for 'source'
[  146.513766][ T7176] nfs: Bad value for 'source'
[  151.433343][ T7260] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  151.442454][ T7260] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  151.465064][ T7260] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  151.535102][ T7260] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  151.979790][ T7277] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  152.010963][ T7277] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  152.205045][ T7286] FAULT_INJECTION: forcing a failure.
[  152.205045][ T7286] name fail_futex, interval 1, probability 0, space 0, times 1
[  152.218943][   T30] audit: type=1400 audit(1762621030.297:3): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=7284 comm="syz.2.286"
[  152.275591][ T7286] CPU: 1 UID: 0 PID: 7286 Comm: syz.2.286 Not tainted syzkaller #0 PREEMPT(full) 
[  152.275623][ T7286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  152.275637][ T7286] Call Trace:
[  152.275645][ T7286]  <TASK>
[  152.275654][ T7286]  dump_stack_lvl+0x16c/0x1f0
[  152.275688][ T7286]  should_fail_ex+0x512/0x640
[  152.275729][ T7286]  get_futex_key+0x1d0/0x1560
[  152.275766][ T7286]  ? __pfx_get_futex_key+0x10/0x10
[  152.275810][ T7286]  futex_wake+0xea/0x530
[  152.275850][ T7286]  ? __pfx_futex_wake+0x10/0x10
[  152.275895][ T7286]  ? up_write+0x209/0x520
[  152.275935][ T7286]  do_futex+0x1e3/0x350
[  152.275966][ T7286]  ? __pfx_do_futex+0x10/0x10
[  152.275995][ T7286]  ? find_held_lock+0x2b/0x80
[  152.276027][ T7286]  __x64_sys_futex+0x1e0/0x4c0
[  152.276065][ T7286]  ? __pfx___x64_sys_futex+0x10/0x10
[  152.276096][ T7286]  ? xfd_validate_state+0x61/0x180
[  152.276141][ T7286]  do_syscall_64+0xcd/0xfa0
[  152.276173][ T7286]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.276205][ T7286] RIP: 0033:0x7f5b72d8f6c9
[  152.276225][ T7286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.276248][ T7286] RSP: 002b:00007f5b73bd20e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  152.276271][ T7286] RAX: ffffffffffffffda RBX: 00007f5b72fe6098 RCX: 00007f5b72d8f6c9
[  152.276288][ T7286] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5b72fe609c
[  152.276303][ T7286] RBP: 00007f5b72fe6090 R08: 00007f5b73bf4000 R09: 0000000000000000
[  152.276319][ T7286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  152.276333][ T7286] R13: 00007f5b72fe6128 R14: 00007ffefa476c80 R15: 00007ffefa476d68
[  152.276368][ T7286]  </TASK>
[  152.940507][   T52] Bluetooth: hci0: command 0x0c1a tx timeout
[  153.494907][   T52] Bluetooth: hci2: command 0x0c1a tx timeout
[  153.500987][   T52] Bluetooth: hci1: command 0x0c1a tx timeout
[  153.574964][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  154.295502][ T7328] netlink: 8 bytes leftover after parsing attributes in process `syz.1.297'.
[  155.075410][ T7320] FAULT_INJECTION: forcing a failure.
[  155.075410][ T7320] name fail_futex, interval 1, probability 0, space 0, times 0
[  155.097311][ T7320] CPU: 1 UID: 0 PID: 7320 Comm: syz.3.295 Not tainted syzkaller #0 PREEMPT(full) 
[  155.097332][ T7320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  155.097340][ T7320] Call Trace:
[  155.097345][ T7320]  <TASK>
[  155.097350][ T7320]  dump_stack_lvl+0x16c/0x1f0
[  155.097372][ T7320]  should_fail_ex+0x512/0x640
[  155.097395][ T7320]  get_futex_key+0x1d0/0x1560
[  155.097416][ T7320]  ? __pfx_get_futex_key+0x10/0x10
[  155.097433][ T7320]  ? __mutex_trylock_common+0xe9/0x250
[  155.097457][ T7320]  futex_wake+0xea/0x530
[  155.097479][ T7320]  ? __pfx_futex_wake+0x10/0x10
[  155.097498][ T7320]  ? __lock_acquire+0xb8a/0x1c90
[  155.097524][ T7320]  do_futex+0x1e3/0x350
[  155.097542][ T7320]  ? __pfx_do_futex+0x10/0x10
[  155.097559][ T7320]  ? __might_fault+0xe3/0x190
[  155.097578][ T7320]  mm_release+0x24e/0x300
[  155.097594][ T7320]  do_exit+0x68e/0x2bf0
[  155.097611][ T7320]  ? find_held_lock+0x2b/0x80
[  155.097628][ T7320]  ? __pfx_do_exit+0x10/0x10
[  155.097645][ T7320]  ? do_raw_spin_lock+0x12c/0x2b0
[  155.097711][ T7320]  ? find_held_lock+0x2b/0x80
[  155.097728][ T7320]  do_group_exit+0xd3/0x2a0
[  155.097747][ T7320]  get_signal+0x2671/0x26d0
[  155.097763][ T7320]  ? __mutex_lock+0x1c5/0x1060
[  155.097785][ T7320]  ? __pfx_get_signal+0x10/0x10
[  155.097799][ T7320]  ? do_futex+0x122/0x350
[  155.097817][ T7320]  ? __pfx_do_futex+0x10/0x10
[  155.097837][ T7320]  arch_do_signal_or_restart+0x8f/0x790
[  155.097854][ T7320]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  155.097876][ T7320]  ? xfd_validate_state+0x61/0x180
[  155.097899][ T7320]  exit_to_user_mode_loop+0x85/0x130
[  155.097921][ T7320]  do_syscall_64+0x426/0xfa0
[  155.097938][ T7320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.097951][ T7320] RIP: 0033:0x7f7f20b8f6c9
[  155.097963][ T7320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.097976][ T7320] RSP: 002b:00007f7f219cc038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  155.097988][ T7320] RAX: fffffffffffffdff RBX: 00007f7f20de5fa0 RCX: 00007f7f20b8f6c9
[  155.097997][ T7320] RDX: 0000000000000001 RSI: 000000000000000b RDI: 0000200000000000
[  155.098005][ T7320] RBP: 00007f7f20c11f91 R08: 0000000000000000 R09: 00000000fffffffa
[  155.098013][ T7320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  155.098021][ T7320] R13: 00007f7f20de6038 R14: 00007f7f20de5fa0 R15: 00007ffd5411b0c8
[  155.098039][ T7320]  </TASK>
[  156.017759][ T7344] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  156.025401][ T7344] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  156.125084][ T7349] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  156.182652][ T7349] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  156.298135][ T7349] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  156.365942][ T7349] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  156.728669][ T7362] FAULT_INJECTION: forcing a failure.
[  156.728669][ T7362] name failslab, interval 1, probability 0, space 0, times 0
[  156.824845][ T7362] CPU: 1 UID: 0 PID: 7362 Comm: syz.0.305 Not tainted syzkaller #0 PREEMPT(full) 
[  156.824879][ T7362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  156.824892][ T7362] Call Trace:
[  156.824901][ T7362]  <TASK>
[  156.824911][ T7362]  dump_stack_lvl+0x16c/0x1f0
[  156.824947][ T7362]  should_fail_ex+0x512/0x640
[  156.824982][ T7362]  ? __kmalloc_cache_noprof+0x5f/0x780
[  156.825025][ T7362]  should_failslab+0xc2/0x120
[  156.825058][ T7362]  __kmalloc_cache_noprof+0x72/0x780
[  156.825096][ T7362]  ? _raw_read_unlock_irqrestore+0x3b/0x80
[  156.825125][ T7362]  ? snd_pcm_attach_substream+0x441/0xd60
[  156.825157][ T7362]  ? snd_pcm_attach_substream+0x441/0xd60
[  156.825181][ T7362]  snd_pcm_attach_substream+0x441/0xd60
[  156.825220][ T7362]  snd_pcm_open_substream+0x8d/0x17f0
[  156.825263][ T7362]  ? __pfx_snd_pcm_open_substream+0x10/0x10
[  156.825304][ T7362]  ? rcu_is_watching+0x12/0xc0
[  156.825337][ T7362]  snd_pcm_open+0x29e/0x730
[  156.825381][ T7362]  ? __pfx_snd_pcm_open+0x10/0x10
[  156.825424][ T7362]  ? __pfx_default_wake_function+0x10/0x10
[  156.825462][ T7362]  ? __pfx_snd_pcm_capture_open+0x10/0x10
[  156.825501][ T7362]  snd_pcm_capture_open+0x89/0xe0
[  156.825546][ T7362]  snd_open+0x22d/0x4c0
[  156.825577][ T7362]  ? __pfx_snd_open+0x10/0x10
[  156.825614][ T7362]  chrdev_open+0x234/0x6a0
[  156.825645][ T7362]  ? __pfx_chrdev_open+0x10/0x10
[  156.825677][ T7362]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  156.825712][ T7362]  do_dentry_open+0x982/0x1530
[  156.825742][ T7362]  ? __pfx_chrdev_open+0x10/0x10
[  156.825779][ T7362]  vfs_open+0x82/0x3f0
[  156.825814][ T7362]  path_openat+0x1de4/0x2cb0
[  156.825854][ T7362]  ? __pfx_path_openat+0x10/0x10
[  156.825884][ T7362]  ? __lock_acquire+0xb8a/0x1c90
[  156.825921][ T7362]  do_filp_open+0x20b/0x470
[  156.825949][ T7362]  ? __pfx_do_filp_open+0x10/0x10
[  156.826004][ T7362]  ? alloc_fd+0x471/0x7d0
[  156.826039][ T7362]  do_sys_openat2+0x11b/0x1d0
[  156.826074][ T7362]  ? __pfx_do_sys_openat2+0x10/0x10
[  156.826124][ T7362]  __x64_sys_openat+0x174/0x210
[  156.826159][ T7362]  ? __pfx___x64_sys_openat+0x10/0x10
[  156.826210][ T7362]  do_syscall_64+0xcd/0xfa0
[  156.826242][ T7362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.826268][ T7362] RIP: 0033:0x7f6c8d98f6c9
[  156.826288][ T7362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.826311][ T7362] RSP: 002b:00007f6c8e7b3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  156.826334][ T7362] RAX: ffffffffffffffda RBX: 00007f6c8dbe5fa0 RCX: 00007f6c8d98f6c9
[  156.826351][ T7362] RDX: 0000000000000080 RSI: 0000200000002040 RDI: ffffffffffffff9c
[  156.826367][ T7362] RBP: 00007f6c8da11f91 R08: 0000000000000000 R09: 0000000000000000
[  156.826382][ T7362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  156.826397][ T7362] R13: 00007f6c8dbe6038 R14: 00007f6c8dbe5fa0 R15: 00007fff21648ac8
[  156.826433][ T7362]  </TASK>
[  157.284625][ T7373] FAULT_INJECTION: forcing a failure.
[  157.284625][ T7373] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  157.301060][ T7373] CPU: 1 UID: 0 PID: 7373 Comm: syz.2.309 Not tainted syzkaller #0 PREEMPT(full) 
[  157.301094][ T7373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  157.301108][ T7373] Call Trace:
[  157.301116][ T7373]  <TASK>
[  157.301125][ T7373]  dump_stack_lvl+0x16c/0x1f0
[  157.301160][ T7373]  should_fail_ex+0x512/0x640
[  157.301201][ T7373]  _copy_to_user+0x32/0xd0
[  157.301242][ T7373]  simple_read_from_buffer+0xcb/0x170
[  157.301283][ T7373]  proc_fail_nth_read+0x197/0x240
[  157.301311][ T7373]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  157.301339][ T7373]  ? rw_verify_area+0xcf/0x6c0
[  157.301361][ T7373]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  157.301387][ T7373]  vfs_read+0x1e4/0xcf0
[  157.301419][ T7373]  ? __pfx___mutex_lock+0x10/0x10
[  157.301450][ T7373]  ? __pfx_vfs_read+0x10/0x10
[  157.301496][ T7373]  ? __fget_files+0x20e/0x3c0
[  157.301533][ T7373]  ksys_read+0x12a/0x250
[  157.301559][ T7373]  ? __pfx_ksys_read+0x10/0x10
[  157.301585][ T7373]  ? fput+0x9b/0xd0
[  157.301623][ T7373]  do_syscall_64+0xcd/0xfa0
[  157.301655][ T7373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.301680][ T7373] RIP: 0033:0x7f5b72d8e0dc
[  157.301700][ T7373] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  157.301723][ T7373] RSP: 002b:00007f5b73bf3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  157.301746][ T7373] RAX: ffffffffffffffda RBX: 00007f5b72fe5fa0 RCX: 00007f5b72d8e0dc
[  157.301763][ T7373] RDX: 000000000000000f RSI: 00007f5b73bf30a0 RDI: 0000000000000004
[  157.301777][ T7373] RBP: 00007f5b73bf3090 R08: 0000000000000000 R09: 0000000000000000
[  157.301792][ T7373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  157.301806][ T7373] R13: 00007f5b72fe6038 R14: 00007f5b72fe5fa0 R15: 00007ffefa476d68
[  157.301843][ T7373]  </TASK>
[  158.144883][   T52] Bluetooth: hci0: command 0x0c1a tx timeout
[  158.215854][   T52] Bluetooth: hci1: command 0x0c1a tx timeout
[  158.295327][   T52] Bluetooth: hci2: command 0x0c1a tx timeout
[  158.376196][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  159.145711][   T30] audit: type=1804 audit(1762621037.237:4): pid=7422 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.317" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  161.359828][ T7470] can: request_module (can-proto-3) failed.
[  161.531666][ T7486] CIFS: VFS: Invalid SecurityFlags: 
[  162.841711][ T7517] zswap: compressor  not available
[  162.916371][ T7544] random: crng reseeded on system resumption
[  163.202549][ T7551] writing to auto_msgmni has no effect
[  163.875062][ T7569] random: crng reseeded on system resumption
[  164.581717][ T7585] netlink: 326 bytes leftover after parsing attributes in process `syz.1.349'.
[  164.635400][ T7590] netlink: 342 bytes leftover after parsing attributes in process `syz.2.350'.
[  165.855178][ T7628] IPVS: length: 131 != 8
[  166.462186][ T7653] FAULT_INJECTION: forcing a failure.
[  166.462186][ T7653] name fail_futex, interval 1, probability 0, space 0, times 0
[  166.475439][ T7653] CPU: 1 UID: 0 PID: 7653 Comm: syz.0.362 Not tainted syzkaller #0 PREEMPT(full) 
[  166.475475][ T7653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  166.475489][ T7653] Call Trace:
[  166.475499][ T7653]  <TASK>
[  166.475508][ T7653]  dump_stack_lvl+0x16c/0x1f0
[  166.475543][ T7653]  should_fail_ex+0x512/0x640
[  166.475592][ T7653]  get_futex_key+0xff0/0x1560
[  166.475628][ T7653]  ? __pfx_get_futex_key+0x10/0x10
[  166.475661][ T7653]  ? get_futex_key+0x5b4/0x1560
[  166.475700][ T7653]  futex_wait_setup+0x9d/0x550
[  166.475749][ T7653]  futex_wait_requeue_pi+0x241/0x830
[  166.475790][ T7653]  ? futex_unqueue+0x13d/0x2c0
[  166.475820][ T7653]  ? __pfx_futex_wait_requeue_pi+0x10/0x10
[  166.475857][ T7653]  ? __futex_wait+0x24b/0x2f0
[  166.475898][ T7653]  ? __pfx___futex_wait+0x10/0x10
[  166.475959][ T7653]  ? futex_private_hash_put+0x18a/0x300
[  166.475997][ T7653]  ? __pfx_futex_wake_mark+0x10/0x10
[  166.476043][ T7653]  ? do_writev+0x218/0x340
[  166.476075][ T7653]  do_futex+0x2ae/0x350
[  166.476109][ T7653]  ? __pfx_do_futex+0x10/0x10
[  166.476141][ T7653]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  166.476175][ T7653]  ? __sys_recvmsg+0x189/0x220
[  166.476204][ T7653]  __x64_sys_futex+0x1e0/0x4c0
[  166.476243][ T7653]  ? __pfx___x64_sys_futex+0x10/0x10
[  166.476278][ T7653]  ? xfd_validate_state+0x61/0x180
[  166.476324][ T7653]  do_syscall_64+0xcd/0xfa0
[  166.476355][ T7653]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.476381][ T7653] RIP: 0033:0x7f6c8d98f6c9
[  166.476402][ T7653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.476425][ T7653] RSP: 002b:00007f6c8e7b3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  166.476450][ T7653] RAX: ffffffffffffffda RBX: 00007f6c8dbe5fa0 RCX: 00007f6c8d98f6c9
[  166.476468][ T7653] RDX: 0000000000000001 RSI: 000000000000000b RDI: 0000200000000000
[  166.476484][ T7653] RBP: 00007f6c8da11f91 R08: 0000000000000000 R09: 00000000fffffffa
[  166.476500][ T7653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  166.476513][ T7653] R13: 00007f6c8dbe6038 R14: 00007f6c8dbe5fa0 R15: 00007fff21648ac8
[  166.476553][ T7653]  </TASK>
[  167.428727][ T7673] FAULT_INJECTION: forcing a failure.
[  167.428727][ T7673] name failslab, interval 1, probability 0, space 0, times 0
[  167.441959][ T7673] CPU: 1 UID: 0 PID: 7673 Comm: syz.3.369 Not tainted syzkaller #0 PREEMPT(full) 
[  167.441992][ T7673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  167.442006][ T7673] Call Trace:
[  167.442014][ T7673]  <TASK>
[  167.442024][ T7673]  dump_stack_lvl+0x16c/0x1f0
[  167.442060][ T7673]  should_fail_ex+0x512/0x640
[  167.442096][ T7673]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  167.442124][ T7673]  should_failslab+0xc2/0x120
[  167.442159][ T7673]  kmem_cache_alloc_noprof+0x75/0x6e0
[  167.442183][ T7673]  ? __proc_create+0x2ce/0x8e0
[  167.442224][ T7673]  ? __proc_create+0x2ce/0x8e0
[  167.442254][ T7673]  __proc_create+0x2ce/0x8e0
[  167.442289][ T7673]  ? __pfx___proc_create+0x10/0x10
[  167.442324][ T7673]  ? __pfx___netlink_kernel_create+0x10/0x10
[  167.442360][ T7673]  proc_create_reg+0x7d/0x180
[  167.442402][ T7673]  proc_create_net_data+0x8e/0x1c0
[  167.442442][ T7673]  ? __pfx_proc_create_net_data+0x10/0x10
[  167.442475][ T7673]  ? __pfx_uevent_net_rcv+0x10/0x10
[  167.442511][ T7673]  ? ops_init+0x77/0x5f0
[  167.442539][ T7673]  ? __pfx_proto_init_net+0x10/0x10
[  167.442569][ T7673]  proto_init_net+0x53/0x70
[  167.442597][ T7673]  ops_init+0x1e2/0x5f0
[  167.442628][ T7673]  setup_net+0x100/0x390
[  167.442652][ T7673]  ? __pfx_setup_net+0x10/0x10
[  167.442680][ T7673]  ? debug_mutex_init+0x37/0x70
[  167.442721][ T7673]  copy_net_ns+0x2f8/0x690
[  167.442757][ T7673]  create_new_namespaces+0x3ea/0xa90
[  167.442797][ T7673]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  167.442831][ T7673]  ksys_unshare+0x45b/0xa40
[  167.442868][ T7673]  ? __pfx_ksys_unshare+0x10/0x10
[  167.442904][ T7673]  ? xfd_validate_state+0x61/0x180
[  167.442953][ T7673]  __x64_sys_unshare+0x31/0x40
[  167.442985][ T7673]  do_syscall_64+0xcd/0xfa0
[  167.443019][ T7673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.443045][ T7673] RIP: 0033:0x7f7f20b8f6c9
[  167.443066][ T7673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.443090][ T7673] RSP: 002b:00007f7f219cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  167.443115][ T7673] RAX: ffffffffffffffda RBX: 00007f7f20de5fa0 RCX: 00007f7f20b8f6c9
[  167.443133][ T7673] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  167.443149][ T7673] RBP: 00007f7f20c11f91 R08: 0000000000000000 R09: 0000000000000000
[  167.443165][ T7673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  167.443180][ T7673] R13: 00007f7f20de6038 R14: 00007f7f20de5fa0 R15: 00007ffd5411b0c8
[  167.443218][ T7673]  </TASK>
[  168.418191][   T30] audit: type=1806 audit(1762621046.497:5): xattr="." res=0
[  169.005477][ T7709] netlink: 12 bytes leftover after parsing attributes in process `syz.0.376'.
[  170.878463][ T7757] netlink: 'syz.0.387': attribute type 27 has an invalid length.
[  170.896599][ T7757] netlink: 146 bytes leftover after parsing attributes in process `syz.0.387'.
[  171.465173][ T7769] netlink: 4 bytes leftover after parsing attributes in process `syz.2.392'.
[  171.829382][ T7782] netlink: 16 bytes leftover after parsing attributes in process `syz.2.402'.
[  172.013020][   T30] audit: type=1804 audit(1762621050.107:6): pid=7787 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.394" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  172.640924][ T7805] ptrace attach of "./syz-executor exec"[5831] was attempted by "D���q�m����?�T,ܨ���ٞ,\x0a��t��ɉ��o��� �\x0d�`�V�ۏ*@��X$.�~�ޱ2G�q�\x5c��;^7'�∑��U��0����ՠW0�����u `o��6�]3�EF�8C�9�҈ �(\x22#�K�n#�̣
R���\x09��+�]�@x�d:џ�9~�&\x1b�J���[M\x0cu@#:�� �
�\x07,h�i��\x09F�7�^��3�{V˅�/5\x22���'l,��pR��h�(�0�ʕ +�_��:�1���HVFvR��=��PWC�:�8�@�:H��]\x09{��U�2��r@��ά����)_���!Y�Yq.5ܵ�%��vD!i��,����-�\x5c���7��2\x09��\x09;τ��!�r�J��4���dk��Kwժ�A$���6��$�~�=�]����!`�='~��.$�!%S.�{��\x0aժ�Q�Ns�����Q�%��t��H~{�c��c6�R�b(�n�)$�m^zW�~@�\x0at��R�M�e8H�
���:��,�japP�N&U��2�n-���H7�-ε#��4{b�l|��:��\x1b挀\x5c�)Xa��W<,u�ND����b�ӷ�@�N=�������B�����\x0c�?e��0
����%�$�%�����7,�:B6�� \x07뀝\x0a\x0dE�I��~�\x09�q4��L��_]˝����yz�M���x����������/e� �?����������{Z\x0d6�ӭ����S�'��n�0�?�����/*�j}6E�s��h\x0a�X�s2{�9����(��Q����/52�ۮC��3�� �)Lodp毠��d�?\x0d=��^9O'��K\x0c)�����h|&8�֎����vI'�E����7Ghc@P�z��k1k?9(5�������wi�D
[  172.644945][ T7805] ptrace attach of "./syz-executor exec"[5831] was attempted by ""[7805]
[  173.063952][ T7805] ptrace attach of "./syz-executor exec"[5831] was attempted by ""[7805]
[  173.120875][ T7805] ptrace attach of "./syz-executor exec"[5831] was attempted by ""[7805]
[  173.201236][ T7805] ptrace attach of "./syz-executor exec"[5831] was attempted by ""[7805]
[  173.244163][ T7805] ptrace attach of "./syz-executor exec"[5831] was attempted by ""[7805]
[  173.351708][ T7805] ptrace attach of "./syz-executor exec"[5831] was attempted by ""[7805]
[  173.413129][ T7805] ptrace attach of "./syz-executor exec"[5831] was attempted by ""[7805]
[  173.975690][ T7839] netlink: 28 bytes leftover after parsing attributes in process `syz.3.409'.
[  174.097221][ T7844] netlink: 28 bytes leftover after parsing attributes in process `syz.3.409'.
[  174.117705][ T7845] WARNING! power/level is deprecated; use power/control instead
[  174.126942][ T7847] ICMPv6: process `syz.0.410' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead
[  174.946947][ T7859] FAULT_INJECTION: forcing a failure.
[  174.946947][ T7859] name failslab, interval 1, probability 0, space 0, times 0
[  174.971201][ T7859] CPU: 1 UID: 0 PID: 7859 Comm: syz.3.411 Not tainted syzkaller #0 PREEMPT(full) 
[  174.971240][ T7859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  174.971257][ T7859] Call Trace:
[  174.971266][ T7859]  <TASK>
[  174.971276][ T7859]  dump_stack_lvl+0x16c/0x1f0
[  174.971313][ T7859]  should_fail_ex+0x512/0x640
[  174.971352][ T7859]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  174.971384][ T7859]  should_failslab+0xc2/0x120
[  174.971420][ T7859]  kmem_cache_alloc_noprof+0x75/0x6e0
[  174.971448][ T7859]  ? alloc_empty_file+0x55/0x1e0
[  174.971493][ T7859]  ? alloc_empty_file+0x55/0x1e0
[  174.971525][ T7859]  ? _raw_spin_unlock+0x28/0x50
[  174.971551][ T7859]  alloc_empty_file+0x55/0x1e0
[  174.971587][ T7859]  alloc_file_pseudo+0x13a/0x230
[  174.971626][ T7859]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  174.971666][ T7859]  ? _raw_spin_unlock+0x28/0x50
[  174.971691][ T7859]  ? alloc_fd+0x471/0x7d0
[  174.971720][ T7859]  __anon_inode_getfile+0xe8/0x280
[  174.971757][ T7859]  anon_inode_getfd+0x52/0xb0
[  174.971791][ T7859]  do_inotify_init+0x497/0x5f0
[  174.971830][ T7859]  ? rcu_is_watching+0x12/0xc0
[  174.971861][ T7859]  __x64_sys_inotify_init1+0x30/0x40
[  174.971899][ T7859]  do_syscall_64+0xcd/0xfa0
[  174.971934][ T7859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.971960][ T7859] RIP: 0033:0x7f7f20b8f6c9
[  174.971980][ T7859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.972004][ T7859] RSP: 002b:00007f7f219cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000126
[  174.972028][ T7859] RAX: ffffffffffffffda RBX: 00007f7f20de5fa0 RCX: 00007f7f20b8f6c9
[  174.972045][ T7859] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0003000000000000
[  174.972060][ T7859] RBP: 00007f7f20c11f91 R08: 0000000000000000 R09: 0000000000000000
[  174.972076][ T7859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  174.972091][ T7859] R13: 00007f7f20de6038 R14: 00007f7f20de5fa0 R15: 00007ffd5411b0c8
[  174.972128][ T7859]  </TASK>
[  175.394974][   T30] audit: type=1804 audit(1762621053.357:7): pid=7864 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.412" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  177.913273][ T7907] FAULT_INJECTION: forcing a failure.
[  177.913273][ T7907] name failslab, interval 1, probability 0, space 0, times 0
[  177.980106][ T7907] CPU: 1 UID: 0 PID: 7907 Comm: syz.0.422 Not tainted syzkaller #0 PREEMPT(full) 
[  177.980143][ T7907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  177.980157][ T7907] Call Trace:
[  177.980166][ T7907]  <TASK>
[  177.980176][ T7907]  dump_stack_lvl+0x16c/0x1f0
[  177.980210][ T7907]  should_fail_ex+0x512/0x640
[  177.980248][ T7907]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  177.980280][ T7907]  should_failslab+0xc2/0x120
[  177.980315][ T7907]  kmem_cache_alloc_noprof+0x75/0x6e0
[  177.980343][ T7907]  ? alloc_empty_file+0x55/0x1e0
[  177.980398][ T7907]  ? alloc_empty_file+0x55/0x1e0
[  177.980427][ T7907]  ? _raw_spin_unlock+0x28/0x50
[  177.980452][ T7907]  alloc_empty_file+0x55/0x1e0
[  177.980487][ T7907]  alloc_file_pseudo+0x13a/0x230
[  177.980526][ T7907]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  177.980564][ T7907]  ? _raw_spin_unlock+0x28/0x50
[  177.980589][ T7907]  ? alloc_fd+0x471/0x7d0
[  177.980617][ T7907]  __anon_inode_getfile+0xe8/0x280
[  177.980653][ T7907]  anon_inode_getfd+0x52/0xb0
[  177.980688][ T7907]  do_inotify_init+0x497/0x5f0
[  177.980721][ T7907]  ? rcu_is_watching+0x12/0xc0
[  177.980752][ T7907]  __x64_sys_inotify_init1+0x30/0x40
[  177.980787][ T7907]  do_syscall_64+0xcd/0xfa0
[  177.980819][ T7907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.980846][ T7907] RIP: 0033:0x7f6c8d98f6c9
[  177.980868][ T7907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.980893][ T7907] RSP: 002b:00007f6c8e7b3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000126
[  177.980917][ T7907] RAX: ffffffffffffffda RBX: 00007f6c8dbe5fa0 RCX: 00007f6c8d98f6c9
[  177.980936][ T7907] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0003000000000000
[  177.980952][ T7907] RBP: 00007f6c8da11f91 R08: 0000000000000000 R09: 0000000000000000
[  177.980968][ T7907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  177.980984][ T7907] R13: 00007f6c8dbe6038 R14: 00007f6c8dbe5fa0 R15: 00007fff21648ac8
[  177.981020][ T7907]  </TASK>
[  180.112503][ T7953] FAULT_INJECTION: forcing a failure.
[  180.112503][ T7953] name failslab, interval 1, probability 0, space 0, times 0
[  180.154873][ T7953] CPU: 0 UID: 0 PID: 7953 Comm: syz.2.431 Not tainted syzkaller #0 PREEMPT(full) 
[  180.154912][ T7953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  180.154928][ T7953] Call Trace:
[  180.154936][ T7953]  <TASK>
[  180.154946][ T7953]  dump_stack_lvl+0x16c/0x1f0
[  180.154980][ T7953]  should_fail_ex+0x512/0x640
[  180.155016][ T7953]  ? fs_reclaim_acquire+0xae/0x150
[  180.155053][ T7953]  should_failslab+0xc2/0x120
[  180.155086][ T7953]  __kmalloc_noprof+0xdd/0x880
[  180.155137][ T7953]  ? ima_alloc_init_template+0xb5/0x720
[  180.155181][ T7953]  ? ima_alloc_init_template+0xb5/0x720
[  180.155219][ T7953]  ima_alloc_init_template+0xb5/0x720
[  180.155261][ T7953]  ? take_dentry_name_snapshot+0x319/0x7d0
[  180.155300][ T7953]  ima_store_measurement+0x1eb/0x5c0
[  180.155342][ T7953]  ? __pfx_ima_store_measurement+0x10/0x10
[  180.155383][ T7953]  ? vfs_getxattr_alloc+0xec/0x350
[  180.155417][ T7953]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  180.155458][ T7953]  process_measurement+0x1ddb/0x23e0
[  180.155506][ T7953]  ? __lock_acquire+0x622/0x1c90
[  180.155538][ T7953]  ? __pfx_process_measurement+0x10/0x10
[  180.155570][ T7953]  ? __kasan_slab_alloc+0x89/0x90
[  180.155597][ T7953]  ? security_file_alloc+0x34/0x2b0
[  180.155620][ T7953]  ? alloc_empty_file+0x73/0x1e0
[  180.155648][ T7953]  ? alloc_file_pseudo+0x13a/0x230
[  180.155687][ T7953]  ? find_held_lock+0x2b/0x80
[  180.155759][ T7953]  ima_file_mmap+0x1b1/0x1d0
[  180.155793][ T7953]  ? __pfx_ima_file_mmap+0x10/0x10
[  180.155838][ T7953]  security_mmap_file+0x88c/0x990
[  180.155868][ T7953]  vm_mmap_pgoff+0xec/0x470
[  180.155907][ T7953]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  180.155935][ T7953]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  180.155972][ T7953]  ? hugetlbfs_get_inode+0x31f/0x730
[  180.156010][ T7953]  ksys_mmap_pgoff+0x1c8/0x5c0
[  180.156045][ T7953]  __x64_sys_mmap+0x125/0x190
[  180.156082][ T7953]  do_syscall_64+0xcd/0xfa0
[  180.156125][ T7953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.156149][ T7953] RIP: 0033:0x7f5b72d8f6c9
[  180.156169][ T7953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.156191][ T7953] RSP: 002b:00007f5b73bf3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  180.156212][ T7953] RAX: ffffffffffffffda RBX: 00007f5b72fe5fa0 RCX: 00007f5b72d8f6c9
[  180.156227][ T7953] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000
[  180.156241][ T7953] RBP: 00007f5b72e11f91 R08: ffffffffffffffff R09: 0000300000000000
[  180.156256][ T7953] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000
[  180.156270][ T7953] R13: 00007f5b72fe6038 R14: 00007f5b72fe5fa0 R15: 00007ffefa476d68
[  180.156304][ T7953]  </TASK>
[  180.174800][   T30] audit: type=1804 audit(1762621058.257:8): pid=7953 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.431" name="anon_hugepage" dev="hugetlbfs" ino=16319 res=0 errno=0
[  180.638303][ T7967] netlink: 338 bytes leftover after parsing attributes in process `syz.2.434'.
[  180.690524][ T7964] netlink: 252 bytes leftover after parsing attributes in process `syz.0.433'.
[  180.786894][ T7964] unsupported nla_type 12336
[  181.675274][ T7991] binder: 7988:7991 unknown command 0
[  181.755078][ T7991] binder: 7988:7991 ioctl c0306201 2000000000c0 returned -22
[  181.845840][ T7991] binder: 7988:7991 unknown command 0
[  181.851278][ T7991] binder: 7988:7991 ioctl c0306201 2000000000c0 returned -22
[  181.911489][ T7991] binder: 7988:7991 unknown command 0
[  181.920202][ T7991] binder: 7988:7991 ioctl c0306201 2000000000c0 returned -22
[  181.934451][ T7991] binder: 7988:7991 unknown command 0
[  181.941269][ T7991] binder: 7988:7991 ioctl c0306201 2000000000c0 returned -22
[  181.955153][ T7991] binder: 7988:7991 unknown command 0
[  181.960665][ T7991] binder: 7988:7991 ioctl c0306201 2000000000c0 returned -22
[  181.968625][ T7991] binder: 7988:7991 unknown command 0
[  181.974142][ T7991] binder: 7988:7991 ioctl c0306201 2000000000c0 returned -22
[  181.982258][ T7991] binder: 7988:7991 unknown command 8
[  182.029437][ T7991] binder: 7988:7991 ioctl c0306201 2000000000c0 returned -22
[  182.075115][ T7991] binder: 7988:7991 unknown command 0
[  182.105396][ T7991] binder: 7988:7991 ioctl c0306201 2000000000c0 returned -22
[  182.152368][ T7991] binder: 7988:7991 unknown command 0
[  182.480339][ T7991] binder: 7988:7991 ioctl c0306201 2000000000c0 returned -22
[  183.620575][ T8013] random: crng reseeded on system resumption
[  183.856594][ T8028] FAULT_INJECTION: forcing a failure.
[  183.856594][ T8028] name failslab, interval 1, probability 0, space 0, times 0
[  183.870576][ T8028] CPU: 1 UID: 0 PID: 8028 Comm: syz.0.445 Not tainted syzkaller #0 PREEMPT(full) 
[  183.870611][ T8028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  183.870627][ T8028] Call Trace:
[  183.870635][ T8028]  <TASK>
[  183.870645][ T8028]  dump_stack_lvl+0x16c/0x1f0
[  183.870682][ T8028]  should_fail_ex+0x512/0x640
[  183.870719][ T8028]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  183.870759][ T8028]  should_failslab+0xc2/0x120
[  183.870794][ T8028]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  183.870821][ T8028]  ? __lock_acquire+0xb8a/0x1c90
[  183.870856][ T8028]  ? __d_alloc+0x32/0xae0
[  183.870891][ T8028]  ? __d_alloc+0x32/0xae0
[  183.870917][ T8028]  __d_alloc+0x32/0xae0
[  183.870950][ T8028]  d_alloc_pseudo+0x1c/0xc0
[  183.870986][ T8028]  alloc_file_pseudo+0xcf/0x230
[  183.871023][ T8028]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  183.871062][ T8028]  ? _raw_spin_unlock+0x28/0x50
[  183.871086][ T8028]  ? alloc_fd+0x471/0x7d0
[  183.871114][ T8028]  __anon_inode_getfile+0xe8/0x280
[  183.871149][ T8028]  anon_inode_getfd+0x52/0xb0
[  183.871183][ T8028]  do_inotify_init+0x497/0x5f0
[  183.871216][ T8028]  ? rcu_is_watching+0x12/0xc0
[  183.871245][ T8028]  __x64_sys_inotify_init1+0x30/0x40
[  183.871280][ T8028]  do_syscall_64+0xcd/0xfa0
[  183.871312][ T8028]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.871339][ T8028] RIP: 0033:0x7f6c8d98f6c9
[  183.871360][ T8028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.871386][ T8028] RSP: 002b:00007f6c8e7b3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000126
[  183.871412][ T8028] RAX: ffffffffffffffda RBX: 00007f6c8dbe5fa0 RCX: 00007f6c8d98f6c9
[  183.871430][ T8028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0003000000000000
[  183.871446][ T8028] RBP: 00007f6c8da11f91 R08: 0000000000000000 R09: 0000000000000000
[  183.871459][ T8028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  183.871473][ T8028] R13: 00007f6c8dbe6038 R14: 00007f6c8dbe5fa0 R15: 00007fff21648ac8
[  183.871506][ T8028]  </TASK>
[  185.310775][ T8066] FAULT_INJECTION: forcing a failure.
[  185.310775][ T8066] name failslab, interval 1, probability 0, space 0, times 0
[  185.323651][ T8066] CPU: 1 UID: 0 PID: 8066 Comm: syz.0.455 Not tainted syzkaller #0 PREEMPT(full) 
[  185.323685][ T8066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  185.323700][ T8066] Call Trace:
[  185.323709][ T8066]  <TASK>
[  185.323719][ T8066]  dump_stack_lvl+0x16c/0x1f0
[  185.323755][ T8066]  should_fail_ex+0x512/0x640
[  185.323805][ T8066]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  185.323837][ T8066]  should_failslab+0xc2/0x120
[  185.323873][ T8066]  kmem_cache_alloc_noprof+0x75/0x6e0
[  185.323900][ T8066]  ? security_file_alloc+0x34/0x2b0
[  185.323935][ T8066]  ? security_file_alloc+0x34/0x2b0
[  185.323960][ T8066]  security_file_alloc+0x34/0x2b0
[  185.323989][ T8066]  init_file+0x93/0x4c0
[  185.324024][ T8066]  alloc_empty_file+0x73/0x1e0
[  185.324062][ T8066]  alloc_file_pseudo+0x13a/0x230
[  185.324101][ T8066]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  185.324140][ T8066]  ? _raw_spin_unlock+0x28/0x50
[  185.324166][ T8066]  ? alloc_fd+0x471/0x7d0
[  185.324194][ T8066]  __anon_inode_getfile+0xe8/0x280
[  185.324231][ T8066]  anon_inode_getfd+0x52/0xb0
[  185.324266][ T8066]  do_inotify_init+0x497/0x5f0
[  185.324299][ T8066]  ? rcu_is_watching+0x12/0xc0
[  185.324329][ T8066]  __x64_sys_inotify_init1+0x30/0x40
[  185.324365][ T8066]  do_syscall_64+0xcd/0xfa0
[  185.324398][ T8066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.324424][ T8066] RIP: 0033:0x7f6c8d98f6c9
[  185.324445][ T8066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.324470][ T8066] RSP: 002b:00007f6c8e7b3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000126
[  185.324495][ T8066] RAX: ffffffffffffffda RBX: 00007f6c8dbe5fa0 RCX: 00007f6c8d98f6c9
[  185.324512][ T8066] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0003000000000000
[  185.324528][ T8066] RBP: 00007f6c8da11f91 R08: 0000000000000000 R09: 0000000000000000
[  185.324543][ T8066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  185.324557][ T8066] R13: 00007f6c8dbe6038 R14: 00007f6c8dbe5fa0 R15: 00007fff21648ac8
[  185.324593][ T8066]  </TASK>
[  185.816005][ T8071] netlink: 28 bytes leftover after parsing attributes in process `syz.1.458'.
[  185.885434][ T8073] netlink: 28 bytes leftover after parsing attributes in process `syz.1.458'.
[  185.987914][ T8069] netlink: 28 bytes leftover after parsing attributes in process `syz.0.457'.
[  186.005214][ T8069] bond0: entered allmulticast mode
[  186.025204][ T8069] bond_slave_0: entered allmulticast mode
[  186.030989][ T8069] bond_slave_1: entered allmulticast mode
[  186.569254][ T8101] capability: warning: `syz.0.465' uses 32-bit capabilities (legacy support in use)
[  186.770280][ T8105] netlink: 268 bytes leftover after parsing attributes in process `syz.1.467'.
[  186.792454][ T8107] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 2908669451 out of range (51000000..2150000000)
[  187.048630][ T8105] syz.1.467 (8105) used greatest stack depth: 19656 bytes left
[  187.936451][ T8119] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  187.980019][ T8119] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  188.009713][ T8119] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  188.040447][ T8119] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  189.132810][ T8176] netlink: 12 bytes leftover after parsing attributes in process `syz.0.482'.
[  189.148300][ T8175] netlink: 12 bytes leftover after parsing attributes in process `syz.0.482'.
[  189.494834][   T52] Bluetooth: hci0: command 0x0c1a tx timeout
[  189.973246][   T30] audit: type=1804 audit(1762621068.067:9): pid=8192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.485" name=22050820 dev="tmpfs" ino=657 res=1 errno=0
[  190.045503][   T30] audit: type=1800 audit(1762621068.097:10): pid=8192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.485" name=22050820 dev="tmpfs" ino=657 res=0 errno=0
[  190.055383][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout
[  190.055462][ T5827] Bluetooth: hci1: command 0x0c1a tx timeout
[  190.082718][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  190.500921][ T8199] netlink: 11 bytes leftover after parsing attributes in process `syz.1.488'.
[  190.516240][ T8199] netlink: 11 bytes leftover after parsing attributes in process `syz.1.488'.
[  193.879170][ T8266] Line length is too long: Should be less than 4094
[  194.299937][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  194.306560][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  196.995498][ T8322] can: request_module (can-proto-0) failed.
[  200.091954][ T8384] warning: `syz.2.524' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  200.379719][ T8386] ovs_: entered promiscuous mode
[  203.908350][ T8459] Invalid ELF header magic: != ELF
[  204.069567][   T30] audit: type=1804 audit(1762621082.167:11): pid=8468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.544" name=2F6E6577726F6F742F3133342F22050820 dev="tmpfs" ino=704 res=1 errno=0
[  204.173395][   T30] audit: type=1800 audit(1762621082.167:12): pid=8468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.544" name=22050820 dev="tmpfs" ino=704 res=0 errno=0
[  204.778501][ T8475] usbip-vudc usbip-vudc.0: gadget not bound
[  204.818467][ T8475] netlink: 8 bytes leftover after parsing attributes in process `syz.2.547'.
[  205.232753][ T5827] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  205.255773][ T5827] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  205.266017][ T5827] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  205.284027][ T5827] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  205.296307][ T5827] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  206.028586][ T8482] netlink: 4 bytes leftover after parsing attributes in process `syz.0.548'.
[  206.381978][ T8477] chnl_net:caif_netlink_parms(): no params data found
[  206.793525][ T8477] bridge0: port 1(bridge_slave_0) entered blocking state
[  206.895048][ T8477] bridge0: port 1(bridge_slave_0) entered disabled state
[  206.902567][ T8477] bridge_slave_0: entered allmulticast mode
[  206.928447][ T8477] bridge_slave_0: entered promiscuous mode
[  206.951700][ T8477] bridge0: port 2(bridge_slave_1) entered blocking state
[  206.959705][ T8477] bridge0: port 2(bridge_slave_1) entered disabled state
[  206.967430][ T8477] bridge_slave_1: entered allmulticast mode
[  206.984006][ T8477] bridge_slave_1: entered promiscuous mode
[  207.127002][ T8477] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  207.148640][ T8477] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  207.335098][ T5827] Bluetooth: hci4: command tx timeout
[  207.486976][ T8477] team0: Port device team_slave_0 added
[  207.526678][ T8477] team0: Port device team_slave_1 added
[  207.647029][ T8477] batman_adv: batadv0: Adding interface: batadv_slave_0
[  207.654490][ T8477] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  207.681289][ T8477] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  207.702875][ T8477] batman_adv: batadv0: Adding interface: batadv_slave_1
[  207.711946][ T8477] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  207.740523][ T8477] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  208.071638][ T8477] hsr_slave_0: entered promiscuous mode
[  208.110278][ T8477] hsr_slave_1: entered promiscuous mode
[  208.139810][ T8477] debugfs: 'hsr0' already exists in 'hsr'
[  208.186398][ T8517] netlink: 28 bytes leftover after parsing attributes in process `syz.2.554'.
[  208.197736][ T8477] Cannot create hsr debugfs directory
[  209.010937][ T8477] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  209.034442][ T8477] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  209.073475][ T8477] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  209.134558][ T8477] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  209.414887][ T5827] Bluetooth: hci4: command tx timeout
[  209.555561][ T8477] 8021q: adding VLAN 0 to HW filter on device bond0
[  209.583813][ T8477] 8021q: adding VLAN 0 to HW filter on device team0
[  209.617949][ T7645] bridge0: port 1(bridge_slave_0) entered blocking state
[  209.625206][ T7645] bridge0: port 1(bridge_slave_0) entered forwarding state
[  209.723693][ T7614] bridge0: port 2(bridge_slave_1) entered blocking state
[  209.730905][ T7614] bridge0: port 2(bridge_slave_1) entered forwarding state
[  210.352661][ T8477] 8021q: adding VLAN 0 to HW filter on device batadv0
[  210.643279][ T8584] Line length is too long: Should be less than 4094
[  211.114630][ T8477] veth0_vlan: entered promiscuous mode
[  211.164825][ T8477] veth1_vlan: entered promiscuous mode
[  211.307147][ T8477] veth0_macvtap: entered promiscuous mode
[  211.345053][ T8477] veth1_macvtap: entered promiscuous mode
[  211.365155][ T8477] batman_adv: batadv0: Interface activated: batadv_slave_0
[  211.381058][ T8477] batman_adv: batadv0: Interface activated: batadv_slave_1
[  211.401559][ T7614] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  211.429280][ T7614] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  211.455478][ T7614] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  211.455898][ T7614] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  211.496731][ T5827] Bluetooth: hci4: command tx timeout
[  211.503497][ T7645] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  211.503515][ T7645] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  211.555674][ T7614] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  211.555702][ T7614] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  211.557008][ T8606] MTRR 1 not used
[  212.758634][ T8648] netlink: 'syz.2.579': attribute type 4 has an invalid length.
[  212.771301][ T8648] netlink: 314 bytes leftover after parsing attributes in process `syz.2.579'.
[  212.796180][ T8648] netlink: 28 bytes leftover after parsing attributes in process `syz.2.579'.
[  213.001710][ T8653] netlink: 342 bytes leftover after parsing attributes in process `syz.4.582'.
[  213.036296][ T8653] netlink: 342 bytes leftover after parsing attributes in process `syz.4.582'.
[  213.239771][ T8654] netlink: 206 bytes leftover after parsing attributes in process `syz.0.580'.
[  213.575131][ T5827] Bluetooth: hci4: command tx timeout
[  214.355785][ T8697] snd_virmidi snd_virmidi.0: control 5:9:1:IA��>/�[k<���mgx���<�5��+-C��Y��5:0 is already present
[  214.558837][ T8688] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  214.580776][ T8688] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  214.607449][ T8688] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  214.626624][ T8688] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  214.645713][ T8688] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  214.672272][ T8688] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  215.232578][ T8706] ima: policy update failed
[  215.254154][   T30] audit: type=1802 audit(1762621093.337:13): pid=8706 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.595" res=0 errno=0
[  215.368653][ T8719] netlink: 334 bytes leftover after parsing attributes in process `syz.2.599'.
[  216.055725][ T5827] Bluetooth: hci1: command 0x0c1a tx timeout
[  216.244027][ T8741] FAULT_INJECTION: forcing a failure.
[  216.244027][ T8741] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  216.263061][ T8741] CPU: 1 UID: 0 PID: 8741 Comm: syz.2.604 Not tainted syzkaller #0 PREEMPT(full) 
[  216.263097][ T8741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  216.263111][ T8741] Call Trace:
[  216.263119][ T8741]  <TASK>
[  216.263128][ T8741]  dump_stack_lvl+0x16c/0x1f0
[  216.263165][ T8741]  should_fail_ex+0x512/0x640
[  216.263210][ T8741]  strncpy_from_user+0x3b/0x2e0
[  216.263252][ T8741]  getname_flags.part.0+0x8f/0x550
[  216.263293][ T8741]  getname_flags+0x93/0xf0
[  216.263318][ T8741]  do_sys_openat2+0xb8/0x1d0
[  216.263354][ T8741]  ? __pfx_do_sys_openat2+0x10/0x10
[  216.263387][ T8741]  ? __pfx_do_sys_openat2+0x10/0x10
[  216.263437][ T8741]  __x64_sys_openat+0x174/0x210
[  216.263476][ T8741]  ? __pfx___x64_sys_openat+0x10/0x10
[  216.263530][ T8741]  do_syscall_64+0xcd/0xfa0
[  216.263564][ T8741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.263590][ T8741] RIP: 0033:0x7f5b72d8f6c9
[  216.263611][ T8741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.263643][ T8741] RSP: 002b:00007f5b73bf3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  216.263668][ T8741] RAX: ffffffffffffffda RBX: 00007f5b72fe5fa0 RCX: 00007f5b72d8f6c9
[  216.263686][ T8741] RDX: 0000000000182b02 RSI: 0000200000000300 RDI: ffffffffffffff9c
[  216.263704][ T8741] RBP: 00007f5b72e11f91 R08: 0000000000000000 R09: 0000000000000000
[  216.263720][ T8741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  216.263736][ T8741] R13: 00007f5b72fe6038 R14: 00007f5b72fe5fa0 R15: 00007ffefa476d68
[  216.263774][ T8741]  </TASK>
[  216.615319][ T5827] Bluetooth: hci3: command 0x0c1a tx timeout
[  216.621397][ T5827] Bluetooth: hci2: command 0x0c1a tx timeout
[  216.695812][ T5827] Bluetooth: hci4: command 0x0c1a tx timeout
[  217.876927][ T8772] netlink: 28 bytes leftover after parsing attributes in process `syz.0.612'.
[  218.019465][ T5827] Bluetooth: hci4: unexpected event 0x34 length: 15 > 6
[  218.354633][ T8763] kexec: Could not allocate control_code_buffer
[  218.637210][ T8806] Process accounting resumed
[  218.774879][ T5827] Bluetooth: hci4: command 0x0c1a tx timeout
[  218.856001][ T8808] netlink: 206 bytes leftover after parsing attributes in process `syz.1.622'.
[  218.870360][ T8814] FAULT_INJECTION: forcing a failure.
[  218.870360][ T8814] name failslab, interval 1, probability 0, space 0, times 0
[  218.932991][ T8814] CPU: 1 UID: 0 PID: 8814 Comm: syz.2.623 Not tainted syzkaller #0 PREEMPT(full) 
[  218.933030][ T8814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  218.933046][ T8814] Call Trace:
[  218.933056][ T8814]  <TASK>
[  218.933067][ T8814]  dump_stack_lvl+0x16c/0x1f0
[  218.933104][ T8814]  should_fail_ex+0x512/0x640
[  218.933142][ T8814]  ? fs_reclaim_acquire+0xae/0x150
[  218.933180][ T8814]  should_failslab+0xc2/0x120
[  218.933211][ T8814]  kmem_cache_alloc_noprof+0x75/0x6e0
[  218.933237][ T8814]  ? __pfx_map_id_range_down+0x10/0x10
[  218.933273][ T8814]  ? security_inode_alloc+0x3b/0x2b0
[  218.933325][ T8814]  ? security_inode_alloc+0x3b/0x2b0
[  218.933365][ T8814]  security_inode_alloc+0x3b/0x2b0
[  218.933404][ T8814]  inode_init_always_gfp+0xce4/0x1030
[  218.933436][ T8814]  alloc_inode+0x86/0x240
[  218.933468][ T8814]  new_inode+0x22/0x1c0
[  218.933504][ T8814]  shmem_get_inode+0x19a/0xfb0
[  218.933546][ T8814]  shmem_symlink+0xf8/0x9f0
[  218.933577][ T8814]  ? __pfx_shmem_symlink+0x10/0x10
[  218.933605][ T8814]  ? bpf_lsm_inode_permission+0x9/0x10
[  218.933632][ T8814]  ? security_inode_permission+0xbf/0x260
[  218.933674][ T8814]  ? inode_permission+0x156/0x630
[  218.933714][ T8814]  vfs_symlink+0x403/0x680
[  218.933757][ T8814]  do_symlinkat+0x261/0x310
[  218.933789][ T8814]  ? __pfx_do_symlinkat+0x10/0x10
[  218.933820][ T8814]  ? getname_flags.part.0+0x1c5/0x550
[  218.933865][ T8814]  __x64_sys_symlink+0x75/0x90
[  218.933897][ T8814]  do_syscall_64+0xcd/0xfa0
[  218.933932][ T8814]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.933959][ T8814] RIP: 0033:0x7f5b72d8f6c9
[  218.933980][ T8814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.934004][ T8814] RSP: 002b:00007f5b73bf3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[  218.934028][ T8814] RAX: ffffffffffffffda RBX: 00007f5b72fe5fa0 RCX: 00007f5b72d8f6c9
[  218.934044][ T8814] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  218.934057][ T8814] RBP: 00007f5b72e11f91 R08: 0000000000000000 R09: 0000000000000000
[  218.934073][ T8814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  218.934089][ T8814] R13: 00007f5b72fe6038 R14: 00007f5b72fe5fa0 R15: 00007ffefa476d68
[  218.934127][ T8814]  </TASK>
[  219.621337][ T8831] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  220.633620][ T8850] netlink: 342 bytes leftover after parsing attributes in process `syz.4.633'.
[  220.855764][ T5827] Bluetooth: hci4: command 0x0c1a tx timeout
[  223.720581][ T5827] Bluetooth: hci2: unexpected event 0x34 length: 15 > 6
[  224.018935][ T8931] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  224.102952][ T8931] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  224.147869][ T8931] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  224.207341][ T8931] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  226.016583][ T5827] Bluetooth: hci1: unexpected event 0x02 length: 726 > 260
[  226.017039][ T8998] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[8998]
[  226.054929][ T5827] Bluetooth: hci1: command 0x0c1a tx timeout
[  226.135427][ T5827] Bluetooth: hci2: command 0x0c1a tx timeout
[  226.214936][ T5827] Bluetooth: hci4: command 0x0c1a tx timeout
[  226.221007][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  226.292767][ T9006] bonding: no command found in bonding_masters - use +ifname or -ifname
[  226.544554][ T9017] openvswitch: netlink: nsh attr 1 has unexpected len 14 expected 8
[  226.915263][ T9025] random: crng reseeded on system resumption
[  226.946977][ T9028] netlink: 4 bytes leftover after parsing attributes in process `syz.1.674'.
[  226.981306][ T9028] netlink: 13 bytes leftover after parsing attributes in process `syz.1.674'.
[  227.306879][ T9022] nfs: Unknown parameter 'w��`_�����I+;��	��HY� ������Lu�>>��uh�*��C<+����'
[  229.988857][ T9064] cougar: G6 mapped to space
[  230.181558][ T9079] random: crng reseeded on system resumption
[  230.662218][   T30] audit: type=1326 audit(1762621108.757:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9087 comm="syz.0.689" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6c8d98f6c9 code=0x0
[  231.372042][ T9111] netlink: 2056 bytes leftover after parsing attributes in process `syz.2.696'.
[  231.991651][ T9143] random: crng reseeded on system resumption
[  232.048990][ T9144] hub 1-0:1.0: USB hub found
[  232.054145][ T9144] hub 1-0:1.0: 1 port detected
[  232.079480][ T9143] Restarting kernel threads ...
[  232.089278][ T9143] Done restarting kernel threads.
[  232.466067][ T9161] FAULT_INJECTION: forcing a failure.
[  232.466067][ T9161] name fail_futex, interval 1, probability 0, space 0, times 0
[  232.506501][ T9161] CPU: 1 UID: 0 PID: 9161 Comm: syz.2.707 Not tainted syzkaller #0 PREEMPT(full) 
[  232.506539][ T9161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  232.506574][ T9161] Call Trace:
[  232.506584][ T9161]  <TASK>
[  232.506594][ T9161]  dump_stack_lvl+0x16c/0x1f0
[  232.506633][ T9161]  should_fail_ex+0x512/0x640
[  232.506678][ T9161]  get_futex_key+0x1d0/0x1560
[  232.506714][ T9161]  ? __pfx_get_futex_key+0x10/0x10
[  232.506746][ T9161]  ? stack_trace_save+0x8e/0xc0
[  232.506768][ T9161]  ? __pfx_stack_trace_save+0x10/0x10
[  232.506793][ T9161]  ? stack_depot_save_flags+0x29/0x9c0
[  232.506831][ T9161]  futex_wait_setup+0x9d/0x550
[  232.506875][ T9161]  __futex_wait+0x193/0x2f0
[  232.506922][ T9161]  ? __pfx___futex_wait+0x10/0x10
[  232.506966][ T9161]  ? __pfx_futex_wake_mark+0x10/0x10
[  232.507011][ T9161]  ? futex_private_hash_put+0x176/0x300
[  232.507047][ T9161]  ? futex_private_hash_put+0x18a/0x300
[  232.507081][ T9161]  futex_wait+0xe8/0x380
[  232.507120][ T9161]  ? __pfx_futex_wait+0x10/0x10
[  232.507162][ T9161]  ? kmem_cache_free+0x2d4/0x6c0
[  232.507186][ T9161]  ? putname+0x154/0x1a0
[  232.507225][ T9161]  do_futex+0x229/0x350
[  232.507261][ T9161]  ? __pfx_do_futex+0x10/0x10
[  232.507295][ T9161]  ? __fput+0x68d/0xb70
[  232.507328][ T9161]  __x64_sys_futex+0x1e0/0x4c0
[  232.507363][ T9161]  ? __x64_sys_openat+0x174/0x210
[  232.507397][ T9161]  ? __pfx___x64_sys_futex+0x10/0x10
[  232.507431][ T9161]  ? xfd_validate_state+0x61/0x180
[  232.507478][ T9161]  do_syscall_64+0xcd/0xfa0
[  232.507511][ T9161]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.507538][ T9161] RIP: 0033:0x7f5b72d8f6c9
[  232.507560][ T9161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.507582][ T9161] RSP: 002b:00007f5b73bd20e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  232.507605][ T9161] RAX: ffffffffffffffda RBX: 00007f5b72fe6098 RCX: 00007f5b72d8f6c9
[  232.507620][ T9161] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5b72fe6098
[  232.507635][ T9161] RBP: 00007f5b72fe6090 R08: 0000000000000000 R09: 0000000000000000
[  232.507650][ T9161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  232.507664][ T9161] R13: 00007f5b72fe6128 R14: 00007ffefa476c80 R15: 00007ffefa476d68
[  232.507697][ T9161]  </TASK>
[  232.873067][ T9168] netlink: 'syz.0.711': attribute type 11 has an invalid length.
[  232.882471][ T9168] netlink: 'syz.0.711': attribute type 11 has an invalid length.
[  232.890745][ T9168] netlink: 'syz.0.711': attribute type 11 has an invalid length.
[  232.899562][ T9168] netlink: 'syz.0.711': attribute type 11 has an invalid length.
[  232.908054][ T9168] netlink: 'syz.0.711': attribute type 11 has an invalid length.
[  232.917383][ T9168] vhci_hcd: invalid port number 16
[  232.922564][ T9168] vhci_hcd: invalid port number 16
[  233.159096][ T9180] block nbd9: NBD_DISCONNECT
[  233.210287][ T9175] openvswitch: netlink: nsh attribute has 14 unknown bytes.
[  233.338594][ T5827] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5
[  234.534203][ T9203] netlink: 20 bytes leftover after parsing attributes in process `syz.2.720'.
[  236.111082][ T9256] can: request_module (can-proto-3) failed.
[  236.360115][ T9270] netlink: 24 bytes leftover after parsing attributes in process `syz.2.738'.
[  237.864432][ T9297] FAULT_INJECTION: forcing a failure.
[  237.864432][ T9297] name failslab, interval 1, probability 0, space 0, times 0
[  237.878134][ T9297] CPU: 0 UID: 0 PID: 9297 Comm: syz.4.746 Not tainted syzkaller #0 PREEMPT(full) 
[  237.878177][ T9297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  237.878193][ T9297] Call Trace:
[  237.878202][ T9297]  <TASK>
[  237.878212][ T9297]  dump_stack_lvl+0x16c/0x1f0
[  237.878250][ T9297]  should_fail_ex+0x512/0x640
[  237.878289][ T9297]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  237.878321][ T9297]  should_failslab+0xc2/0x120
[  237.878356][ T9297]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  237.878381][ T9297]  ? d_lookup+0xe7/0x190
[  237.878414][ T9297]  ? alloc_inode+0x64/0x240
[  237.878450][ T9297]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  237.878488][ T9297]  ? alloc_inode+0x64/0x240
[  237.878518][ T9297]  alloc_inode+0x64/0x240
[  237.878549][ T9297]  new_inode+0x22/0x1c0
[  237.878584][ T9297]  __debugfs_create_file+0x11c/0x6b0
[  237.878613][ T9297]  debugfs_create_file_full+0x41/0x60
[  237.878642][ T9297]  ref_tracker_dir_debugfs+0x19d/0x290
[  237.878683][ T9297]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  237.878753][ T9297]  ? lockdep_init_map_type+0x5c/0x280
[  237.878796][ T9297]  preinit_net.part.0+0x437/0x8a0
[  237.878825][ T9297]  copy_net_ns+0x3ba/0x690
[  237.878858][ T9297]  create_new_namespaces+0x3ea/0xa90
[  237.878892][ T9297]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  237.878921][ T9297]  ksys_unshare+0x45b/0xa40
[  237.878952][ T9297]  ? __pfx_ksys_unshare+0x10/0x10
[  237.878986][ T9297]  ? xfd_validate_state+0x61/0x180
[  237.879030][ T9297]  __x64_sys_unshare+0x31/0x40
[  237.879061][ T9297]  do_syscall_64+0xcd/0xfa0
[  237.879091][ T9297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.879117][ T9297] RIP: 0033:0x7f245098f6c9
[  237.879139][ T9297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.879172][ T9297] RSP: 002b:00007f2451793038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  237.879198][ T9297] RAX: ffffffffffffffda RBX: 00007f2450be5fa0 RCX: 00007f245098f6c9
[  237.879215][ T9297] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  237.879228][ T9297] RBP: 00007f2450a11f91 R08: 0000000000000000 R09: 0000000000000000
[  237.879242][ T9297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  237.879255][ T9297] R13: 00007f2450be6038 R14: 00007f2450be5fa0 R15: 00007ffee0affa88
[  237.879291][ T9297]  </TASK>
[  237.879301][ T9297] debugfs: out of free dentries, can not create file 'net_notrefcnt@ffff888078b90220'
[  238.287789][ T9304] random: crng reseeded on system resumption
[  238.678829][ T9308] can0: slcan on pty238.
[  238.729283][ T9311] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  238.840361][ T9306] can0 (unregistered): slcan off pty238.
[  240.779428][ T9358] svc: failed to register nfsdv3 RPC service (errno 111).
[  240.847373][ T9358] svc: failed to register nfsaclv3 RPC service (errno 111).
[  241.798655][ T9389] netlink: 8 bytes leftover after parsing attributes in process `syz.1.761'.
[  241.881489][ T9389] netlink: 334 bytes leftover after parsing attributes in process `syz.1.761'.
[  243.771403][ T9447] netlink: ct_mark mask cannot be 0
[  244.525140][ T9455] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  244.531579][ T9455] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  244.541510][ T9455] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  244.556419][ T9455] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  245.364152][ T9481] cougar: G6 mapped to space
[  245.547509][ T9496] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  246.096092][ T9507] netlink: 28 bytes leftover after parsing attributes in process `syz.1.788'.
[  246.222340][ T7645] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  246.372663][ T9515] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  246.672418][   T52] Bluetooth: hci4: command 0x0c1a tx timeout
[  246.687716][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  246.693706][   T52] Bluetooth: hci2: command 0x0c1a tx timeout
[  246.704961][   T52] Bluetooth: hci1: command 0x0c1a tx timeout
[  246.902321][ T9507] bond0: (slave bond_slave_1): Releasing backup interface
[  247.077684][ T7645] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  247.530423][ T7645] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  247.647615][ T9529] Invalid ELF header magic: != ELF
[  247.808621][ T7645] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  248.678388][ T7645] bridge_slave_1: left allmulticast mode
[  248.684226][ T7645] bridge_slave_1: left promiscuous mode
[  248.722112][ T7645] bridge0: port 2(bridge_slave_1) entered disabled state
[  248.832418][ T7645] bridge_slave_0: left allmulticast mode
[  248.850645][ T7645] bridge_slave_0: left promiscuous mode
[  248.892949][ T7645] bridge0: port 1(bridge_slave_0) entered disabled state
[  250.113544][   T30] audit: type=1800 audit(4294967316.879:15): pid=9562 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.796" name="dbroot" dev="configfs" ino=24483 res=0 errno=0
[  250.655225][ T7645] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  250.668867][ T7645] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  250.679998][ T7645] bond0 (unregistering): Released all slaves
[  250.819119][ T7645] ovs_: left promiscuous mode
[  251.341026][   T30] audit: type=1326 audit(4294967318.099:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9570 comm="syz.1.797" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5900b8f6c9 code=0x0
[  252.005066][ T7645] hsr_slave_0: left promiscuous mode
[  252.027256][ T7645] hsr_slave_1: left promiscuous mode
[  252.071936][ T7645] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  252.104089][ T7645] batman_adv: batadv0: Removing interface: batadv_slave_0
[  252.180046][ T7645] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  252.201655][ T7645] batman_adv: batadv0: Removing interface: batadv_slave_1
[  252.333012][ T7645] veth1_macvtap: left promiscuous mode
[  252.343430][ T7645] veth0_macvtap: left promiscuous mode
[  252.361293][ T7645] veth1_vlan: left promiscuous mode
[  252.395629][ T7645] veth0_vlan: left promiscuous mode
[  253.197632][ T9617] block nbd9: NBD_DISCONNECT
[  253.627249][ T7645] team0 (unregistering): Port device team_slave_1 removed
[  253.718307][ T7645] team0 (unregistering): Port device team_slave_0 removed
[  254.598564][ T9627] smc: net device dummy0 applied user defined pnetid DUMMY0
[  254.700729][ T9634] =======================================================
[  254.700729][ T9634] WARNING: The mand mount option has been deprecated and
[  254.700729][ T9634]          and is ignored by this kernel. Remove the mand
[  254.700729][ T9634]          option from the mount to silence this warning.
[  254.700729][ T9634] =======================================================
[  254.735636][    C0] vkms_vblank_simulate: vblank timer overrun
[  254.911774][ T9641] sctp: Failed to create the SCTP UDP tunneling v4 sock
[  255.742054][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  255.748525][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  257.435700][ T9717] FAULT_INJECTION: forcing a failure.
[  257.435700][ T9717] name fail_futex, interval 1, probability 0, space 0, times 0
[  257.464943][ T9717] CPU: 1 UID: 0 PID: 9717 Comm: syz.2.825 Not tainted syzkaller #0 PREEMPT(full) 
[  257.464979][ T9717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  257.464998][ T9717] Call Trace:
[  257.465006][ T9717]  <TASK>
[  257.465015][ T9717]  dump_stack_lvl+0x16c/0x1f0
[  257.465049][ T9717]  should_fail_ex+0x512/0x640
[  257.465092][ T9717]  get_futex_key+0xff0/0x1560
[  257.465127][ T9717]  ? __pfx_get_futex_key+0x10/0x10
[  257.465157][ T9717]  ? get_futex_key+0x5b4/0x1560
[  257.465192][ T9717]  futex_wait_setup+0x9d/0x550
[  257.465239][ T9717]  futex_wait_requeue_pi+0x241/0x830
[  257.465278][ T9717]  ? futex_unqueue+0x13d/0x2c0
[  257.465307][ T9717]  ? __pfx_futex_wait_requeue_pi+0x10/0x10
[  257.465355][ T9717]  ? __futex_wait+0x24b/0x2f0
[  257.465394][ T9717]  ? __pfx___futex_wait+0x10/0x10
[  257.465452][ T9717]  ? futex_private_hash_put+0x18a/0x300
[  257.465487][ T9717]  ? __pfx_futex_wake_mark+0x10/0x10
[  257.465534][ T9717]  ? do_writev+0x218/0x340
[  257.465563][ T9717]  do_futex+0x2ae/0x350
[  257.465595][ T9717]  ? __pfx_do_futex+0x10/0x10
[  257.465623][ T9717]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  257.465656][ T9717]  ? __sys_recvmsg+0x189/0x220
[  257.465683][ T9717]  __x64_sys_futex+0x1e0/0x4c0
[  257.465718][ T9717]  ? __pfx___x64_sys_futex+0x10/0x10
[  257.465749][ T9717]  ? xfd_validate_state+0x61/0x180
[  257.465791][ T9717]  do_syscall_64+0xcd/0xfa0
[  257.465821][ T9717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.465844][ T9717] RIP: 0033:0x7f5b72d8f6c9
[  257.465863][ T9717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  257.465886][ T9717] RSP: 002b:00007f5b73bf3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  257.465908][ T9717] RAX: ffffffffffffffda RBX: 00007f5b72fe5fa0 RCX: 00007f5b72d8f6c9
[  257.465924][ T9717] RDX: 0000000000000001 RSI: 000000000000000b RDI: 0000200000000000
[  257.465939][ T9717] RBP: 00007f5b72e11f91 R08: 0000000000000000 R09: 00000000fffffffa
[  257.465954][ T9717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  257.465968][ T9717] R13: 00007f5b72fe6038 R14: 00007f5b72fe5fa0 R15: 00007ffefa476d68
[  257.466001][ T9717]  </TASK>
[  258.318648][ T9736] netlink: 4 bytes leftover after parsing attributes in process `syz.0.828'.
[  258.379702][ T9736] netlink: 354 bytes leftover after parsing attributes in process `syz.0.828'.
[  260.684578][ T9791] svc: failed to register nfsdv3 RPC service (errno 111).
[  260.765532][ T9791] svc: failed to register nfsaclv3 RPC service (errno 111).
[  261.596636][ T9802] program syz.2.842 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  261.973178][ T9813] cgroup: fork rejected by pids controller in /syz2
[  266.309305][ T9950] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  266.800611][ T9938] netlink: 4696 bytes leftover after parsing attributes in process `syz.4.859'.
[  266.829474][ T9938] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  269.953503][T10016] netlink: 'syz.2.870': attribute type 22 has an invalid length.
[  269.974962][T10016] netlink: 252 bytes leftover after parsing attributes in process `syz.2.870'.
[  270.265060][T10021] ovs_��: entered promiscuous mode
[  271.392885][T10042] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15
[  273.865156][T10103] netlink: 206 bytes leftover after parsing attributes in process `syz.1.888'.
[  274.456508][T10109] zswap: compressor  not available
[  275.416257][T10157] netlink: 40 bytes leftover after parsing attributes in process `syz.1.897'.
[  279.064329][T10225] FAULT_INJECTION: forcing a failure.
[  279.064329][T10225] name failslab, interval 1, probability 0, space 0, times 0
[  279.115477][T10225] CPU: 1 UID: 0 PID: 10225 Comm: syz.2.910 Not tainted syzkaller #0 PREEMPT(full) 
[  279.115515][T10225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  279.115531][T10225] Call Trace:
[  279.115539][T10225]  <TASK>
[  279.115549][T10225]  dump_stack_lvl+0x16c/0x1f0
[  279.115585][T10225]  should_fail_ex+0x512/0x640
[  279.115623][T10225]  ? __kmalloc_cache_noprof+0x5f/0x780
[  279.115667][T10225]  should_failslab+0xc2/0x120
[  279.115702][T10225]  __kmalloc_cache_noprof+0x72/0x780
[  279.115741][T10225]  ? __x64_sys_futex+0x1e9/0x4c0
[  279.115776][T10225]  ? fsnotify_alloc_group+0x92/0x330
[  279.115812][T10225]  ? fsnotify_alloc_group+0x92/0x330
[  279.115838][T10225]  fsnotify_alloc_group+0x92/0x330
[  279.115869][T10225]  do_inotify_init+0x49/0x5f0
[  279.115901][T10225]  ? rcu_is_watching+0x12/0xc0
[  279.115931][T10225]  __x64_sys_inotify_init1+0x30/0x40
[  279.115967][T10225]  do_syscall_64+0xcd/0xfa0
[  279.115999][T10225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.116024][T10225] RIP: 0033:0x7f5b72d8f6c9
[  279.116044][T10225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  279.116068][T10225] RSP: 002b:00007f5b73bf3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000126
[  279.116097][T10225] RAX: ffffffffffffffda RBX: 00007f5b72fe5fa0 RCX: 00007f5b72d8f6c9
[  279.116115][T10225] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0003000000000000
[  279.116131][T10225] RBP: 00007f5b72e11f91 R08: 0000000000000000 R09: 0000000000000000
[  279.116147][T10225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  279.116163][T10225] R13: 00007f5b72fe6038 R14: 00007f5b72fe5fa0 R15: 00007ffefa476d68
[  279.116200][T10225]  </TASK>
[  280.030896][T10241] program syz.0.911 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  280.055390][T10240] program syz.0.911 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  281.165288][T10243] netlink: 4696 bytes leftover after parsing attributes in process `syz.1.914'.
[  281.202794][T10243] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  281.968003][T10262] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  281.978204][T10262] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  281.984659][T10262] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  281.990925][T10262] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  283.344937][ T5827] Bluetooth: hci1: command 0x0c1a tx timeout
[  284.055146][ T5827] Bluetooth: hci3: command 0x0c1a tx timeout
[  284.067104][   T52] Bluetooth: hci4: command 0x0c1a tx timeout
[  284.073715][   T52] Bluetooth: hci2: command 0x0c1a tx timeout
[  285.734259][T10388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.942'.
[  285.753348][T10388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.942'.
[  285.850576][T10388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.942'.
[  285.862388][T10388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.942'.
[  285.871256][   T30] audit: type=1800 audit(4294967352.639:17): pid=10383 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.941" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  285.892177][T10388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.942'.
[  285.905070][T10388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.942'.
[  286.280386][T10408] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16
[  287.125823][T10410] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17
[  287.325384][T10425] Format for adding new device is "id port_count num_queues" (uint uint unit).
[  288.305225][   T30] audit: type=1800 audit(4294967355.059:18): pid=10440 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.952" name="trace_pipe" dev="tracefs" ino=1178 res=0 errno=0
[  288.325544][    C1] vkms_vblank_simulate: vblank timer overrun
[  289.260631][T10457] FAULT_INJECTION: forcing a failure.
[  289.260631][T10457] name fail_futex, interval 1, probability 0, space 0, times 0
[  289.285284][T10457] CPU: 0 UID: 0 PID: 10457 Comm: syz.0.955 Not tainted syzkaller #0 PREEMPT(full) 
[  289.285311][T10457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  289.285320][T10457] Call Trace:
[  289.285324][T10457]  <TASK>
[  289.285330][T10457]  dump_stack_lvl+0x16c/0x1f0
[  289.285352][T10457]  should_fail_ex+0x512/0x640
[  289.285376][T10457]  get_futex_key+0x1d0/0x1560
[  289.285396][T10457]  ? __pfx_get_futex_key+0x10/0x10
[  289.285414][T10457]  ? rcu_is_watching+0x12/0xc0
[  289.285433][T10457]  futex_wait_setup+0x9d/0x550
[  289.285460][T10457]  __futex_wait+0x193/0x2f0
[  289.285481][T10457]  ? __pfx___futex_wait+0x10/0x10
[  289.285501][T10457]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  289.285516][T10457]  ? lockdep_hardirqs_on+0x7c/0x110
[  289.285534][T10457]  ? __pfx_futex_wake_mark+0x10/0x10
[  289.285558][T10457]  ? futex_private_hash_put+0x176/0x300
[  289.285577][T10457]  ? futex_private_hash_put+0x18a/0x300
[  289.285596][T10457]  futex_wait+0xe8/0x380
[  289.285617][T10457]  ? __pfx_futex_wait+0x10/0x10
[  289.285647][T10457]  do_futex+0x229/0x350
[  289.285666][T10457]  ? __pfx_do_futex+0x10/0x10
[  289.285689][T10457]  __x64_sys_futex+0x1e0/0x4c0
[  289.285708][T10457]  ? __do_sys_close_range+0x278/0x730
[  289.285725][T10457]  ? __pfx___x64_sys_futex+0x10/0x10
[  289.285743][T10457]  ? xfd_validate_state+0x61/0x180
[  289.285768][T10457]  ? __pfx___do_sys_close_range+0x10/0x10
[  289.285788][T10457]  do_syscall_64+0xcd/0xfa0
[  289.285806][T10457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.285820][T10457] RIP: 0033:0x7f6c8d98f6c9
[  289.285832][T10457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  289.285845][T10457] RSP: 002b:00007f6c8e7b30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  289.285859][T10457] RAX: ffffffffffffffda RBX: 00007f6c8dbe5fa8 RCX: 00007f6c8d98f6c9
[  289.285868][T10457] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6c8dbe5fa8
[  289.285877][T10457] RBP: 00007f6c8dbe5fa0 R08: 0000000000000000 R09: 0000000000000000
[  289.285885][T10457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  289.285893][T10457] R13: 00007f6c8dbe6038 R14: 00007fff216489e0 R15: 00007fff21648ac8
[  289.285911][T10457]  </TASK>
[  289.286143][T10457] FAULT_INJECTION: forcing a failure.
[  289.286143][T10457] name failslab, interval 1, probability 0, space 0, times 0
[  289.594843][T10457] CPU: 1 UID: 0 PID: 10457 Comm: syz.0.955 Not tainted syzkaller #0 PREEMPT(full) 
[  289.594864][T10457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  289.594872][T10457] Call Trace:
[  289.594878][T10457]  <TASK>
[  289.594883][T10457]  dump_stack_lvl+0x16c/0x1f0
[  289.594904][T10457]  should_fail_ex+0x512/0x640
[  289.594925][T10457]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  289.594942][T10457]  should_failslab+0xc2/0x120
[  289.594960][T10457]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  289.594973][T10457]  ? __lock_acquire+0xb8a/0x1c90
[  289.594993][T10457]  ? __d_alloc+0x32/0xae0
[  289.595011][T10457]  ? __d_alloc+0x32/0xae0
[  289.595031][T10457]  __d_alloc+0x32/0xae0
[  289.595048][T10457]  d_alloc_pseudo+0x1c/0xc0
[  289.595067][T10457]  alloc_file_pseudo+0xcf/0x230
[  289.595089][T10457]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  289.595109][T10457]  ? _raw_spin_unlock+0x28/0x50
[  289.595123][T10457]  ? alloc_fd+0x471/0x7d0
[  289.595137][T10457]  __anon_inode_getfile+0xe8/0x280
[  289.595157][T10457]  anon_inode_getfd+0x52/0xb0
[  289.595174][T10457]  do_inotify_init+0x497/0x5f0
[  289.595192][T10457]  ? rcu_is_watching+0x12/0xc0
[  289.595208][T10457]  __x64_sys_inotify_init1+0x30/0x40
[  289.595226][T10457]  do_syscall_64+0xcd/0xfa0
[  289.595244][T10457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.595258][T10457] RIP: 0033:0x7f6c8d98f6c9
[  289.595269][T10457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  289.595282][T10457] RSP: 002b:00007f6c8e7b3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000126
[  289.595295][T10457] RAX: ffffffffffffffda RBX: 00007f6c8dbe5fa0 RCX: 00007f6c8d98f6c9
[  289.595305][T10457] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0003000000000000
[  289.595313][T10457] RBP: 00007f6c8e7b3090 R08: 0000000000000000 R09: 0000000000000000
[  289.595321][T10457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  289.595329][T10457] R13: 00007f6c8dbe6038 R14: 00007f6c8dbe5fa0 R15: 00007fff21648ac8
[  289.595347][T10457]  </TASK>
[  290.414164][T10473] FAULT_INJECTION: forcing a failure.
[  290.414164][T10473] name fail_futex, interval 1, probability 0, space 0, times 0
[  290.446003][T10473] CPU: 1 UID: 0 PID: 10473 Comm: syz.0.959 Not tainted syzkaller #0 PREEMPT(full) 
[  290.446040][T10473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  290.446055][T10473] Call Trace:
[  290.446064][T10473]  <TASK>
[  290.446074][T10473]  dump_stack_lvl+0x16c/0x1f0
[  290.446112][T10473]  should_fail_ex+0x512/0x640
[  290.446158][T10473]  get_futex_key+0x1d0/0x1560
[  290.446200][T10473]  ? __pfx_get_futex_key+0x10/0x10
[  290.446248][T10473]  futex_wait_setup+0x9d/0x550
[  290.446300][T10473]  __futex_wait+0x193/0x2f0
[  290.446331][T10473]  ? __pfx___futex_wait+0x10/0x10
[  290.446354][T10473]  ? irqentry_exit+0x3b/0x90
[  290.446375][T10473]  ? __pfx_futex_wake_mark+0x10/0x10
[  290.446401][T10473]  ? futex_private_hash_put+0x176/0x300
[  290.446423][T10473]  ? futex_private_hash_put+0x18a/0x300
[  290.446444][T10473]  futex_wait+0xe8/0x380
[  290.446466][T10473]  ? __pfx_futex_wait+0x10/0x10
[  290.446500][T10473]  do_futex+0x229/0x350
[  290.446521][T10473]  ? __pfx_do_futex+0x10/0x10
[  290.446546][T10473]  __x64_sys_futex+0x1e0/0x4c0
[  290.446568][T10473]  ? __do_sys_close_range+0x278/0x730
[  290.446585][T10473]  ? __pfx___x64_sys_futex+0x10/0x10
[  290.446606][T10473]  ? xfd_validate_state+0x61/0x180
[  290.446627][T10473]  ? __pfx___do_sys_close_range+0x10/0x10
[  290.446650][T10473]  do_syscall_64+0xcd/0xfa0
[  290.446669][T10473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.446685][T10473] RIP: 0033:0x7f6c8d98f6c9
[  290.446699][T10473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.446724][T10473] RSP: 002b:00007f6c8e7b30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  290.446741][T10473] RAX: ffffffffffffffda RBX: 00007f6c8dbe5fa8 RCX: 00007f6c8d98f6c9
[  290.446752][T10473] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6c8dbe5fa8
[  290.446763][T10473] RBP: 00007f6c8dbe5fa0 R08: 0000000000000000 R09: 0000000000000000
[  290.446772][T10473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  290.446782][T10473] R13: 00007f6c8dbe6038 R14: 00007fff216489e0 R15: 00007fff21648ac8
[  290.446803][T10473]  </TASK>
[  291.000869][T10476] FAULT_INJECTION: forcing a failure.
[  291.000869][T10476] name fail_futex, interval 1, probability 0, space 0, times 0
[  291.034911][T10476] CPU: 1 UID: 0 PID: 10476 Comm: syz.0.968 Not tainted syzkaller #0 PREEMPT(full) 
[  291.034950][T10476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  291.034967][T10476] Call Trace:
[  291.034977][T10476]  <TASK>
[  291.034989][T10476]  dump_stack_lvl+0x16c/0x1f0
[  291.035025][T10476]  should_fail_ex+0x512/0x640
[  291.035068][T10476]  get_futex_key+0x1d0/0x1560
[  291.035106][T10476]  ? __pfx_get_futex_key+0x10/0x10
[  291.035152][T10476]  futex_wait_setup+0x9d/0x550
[  291.035207][T10476]  __futex_wait+0x193/0x2f0
[  291.035250][T10476]  ? __pfx___futex_wait+0x10/0x10
[  291.035296][T10476]  ? __pfx_futex_wake_mark+0x10/0x10
[  291.035341][T10476]  ? futex_private_hash_put+0x176/0x300
[  291.035379][T10476]  ? futex_private_hash_put+0x18a/0x300
[  291.035416][T10476]  futex_wait+0xe8/0x380
[  291.035455][T10476]  ? __pfx_futex_wait+0x10/0x10
[  291.035515][T10476]  do_futex+0x229/0x350
[  291.035546][T10476]  ? __pfx_do_futex+0x10/0x10
[  291.035585][T10476]  __x64_sys_futex+0x1e0/0x4c0
[  291.035623][T10476]  ? __do_sys_close_range+0x278/0x730
[  291.035654][T10476]  ? __pfx___x64_sys_futex+0x10/0x10
[  291.035687][T10476]  ? xfd_validate_state+0x61/0x180
[  291.035722][T10476]  ? __pfx___do_sys_close_range+0x10/0x10
[  291.035762][T10476]  do_syscall_64+0xcd/0xfa0
[  291.035796][T10476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.035831][T10476] RIP: 0033:0x7f6c8d98f6c9
[  291.035853][T10476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  291.035879][T10476] RSP: 002b:00007f6c8e7b30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  291.035906][T10476] RAX: ffffffffffffffda RBX: 00007f6c8dbe5fa8 RCX: 00007f6c8d98f6c9
[  291.035924][T10476] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6c8dbe5fa8
[  291.035940][T10476] RBP: 00007f6c8dbe5fa0 R08: 0000000000000000 R09: 0000000000000000
[  291.035956][T10476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  291.035972][T10476] R13: 00007f6c8dbe6038 R14: 00007fff216489e0 R15: 00007fff21648ac8
[  291.036009][T10476]  </TASK>
[  292.246351][T10501] can0: slcan on ttyS2.
[  292.345504][T10502] can0 (unregistered): slcan off ttyS2.
[  293.095057][T10523] FAULT_INJECTION: forcing a failure.
[  293.095057][T10523] name fail_futex, interval 1, probability 0, space 0, times 0
[  293.149348][T10523] CPU: 0 UID: 0 PID: 10523 Comm: syz.0.971 Not tainted syzkaller #0 PREEMPT(full) 
[  293.149395][T10523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  293.149412][T10523] Call Trace:
[  293.149420][T10523]  <TASK>
[  293.149431][T10523]  dump_stack_lvl+0x16c/0x1f0
[  293.149468][T10523]  should_fail_ex+0x512/0x640
[  293.149512][T10523]  get_futex_key+0x1d0/0x1560
[  293.149550][T10523]  ? __pfx_get_futex_key+0x10/0x10
[  293.149583][T10523]  ? futex_private_hash_put+0x176/0x300
[  293.149628][T10523]  futex_wake+0xea/0x530
[  293.149670][T10523]  ? __pfx_futex_wake+0x10/0x10
[  293.149726][T10523]  do_futex+0x1e3/0x350
[  293.149762][T10523]  ? __pfx_do_futex+0x10/0x10
[  293.149806][T10523]  __x64_sys_futex+0x1e0/0x4c0
[  293.149843][T10523]  ? __do_sys_close_range+0x278/0x730
[  293.149873][T10523]  ? __pfx___x64_sys_futex+0x10/0x10
[  293.149909][T10523]  ? xfd_validate_state+0x61/0x180
[  293.149943][T10523]  ? __pfx___do_sys_close_range+0x10/0x10
[  293.149984][T10523]  do_syscall_64+0xcd/0xfa0
[  293.150018][T10523]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.150044][T10523] RIP: 0033:0x7f6c8d98f6c9
[  293.150065][T10523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.150090][T10523] RSP: 002b:00007f6c8e7b30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  293.150116][T10523] RAX: ffffffffffffffda RBX: 00007f6c8dbe5fa8 RCX: 00007f6c8d98f6c9
[  293.150134][T10523] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6c8dbe5fac
[  293.150152][T10523] RBP: 00007f6c8dbe5fa0 R08: 00007f6c8e7b4000 R09: 0000000000000000
[  293.150168][T10523] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  293.150185][T10523] R13: 00007f6c8dbe6038 R14: 00007fff216489e0 R15: 00007fff21648ac8
[  293.150220][T10523]  </TASK>
[  293.627605][T10524] netlink: 8 bytes leftover after parsing attributes in process `syz.4.972'.
[  295.603281][T10598] netlink: 20 bytes leftover after parsing attributes in process `syz.2.983'.
[  296.138096][T10614] can0: slcan on ttyS2.
[  297.132094][T10629] input: f�
 as /devices/virtual/input/input18
[  299.806738][ T5827] Bluetooth: hci4: unexpected event 0x14 length: 16 > 6
[  299.860740][T10703] vhci_hcd: invalid port number 135
[  299.877565][T10703] vhci_hcd: invalid port number 135
[  300.236336][T10722] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1007'.
[  301.391639][T10735] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  301.398059][T10735] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  301.406361][T10735] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  301.412453][T10735] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  301.671660][T10764] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1015'.
[  302.705853][ T5827] Bluetooth: hci1: command 0x0c1a tx timeout
[  302.817892][T10781] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1022'.
[  303.415490][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout
[  303.422212][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  303.428430][ T5827] Bluetooth: hci4: command 0x0c1a tx timeout
[  303.950384][T10807] FAULT_INJECTION: forcing a failure.
[  303.950384][T10807] name fail_futex, interval 1, probability 0, space 0, times 0
[  303.963490][T10807] CPU: 0 UID: 0 PID: 10807 Comm: syz.2.1029 Not tainted syzkaller #0 PREEMPT(full) 
[  303.963527][T10807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  303.963550][T10807] Call Trace:
[  303.963559][T10807]  <TASK>
[  303.963569][T10807]  dump_stack_lvl+0x16c/0x1f0
[  303.963603][T10807]  should_fail_ex+0x512/0x640
[  303.963636][T10807]  get_futex_key+0x1d0/0x1560
[  303.963659][T10807]  ? __pfx_get_futex_key+0x10/0x10
[  303.963683][T10807]  futex_wait_setup+0x9d/0x550
[  303.963709][T10807]  __futex_wait+0x193/0x2f0
[  303.963731][T10807]  ? __pfx___futex_wait+0x10/0x10
[  303.963754][T10807]  ? __pfx_futex_wake_mark+0x10/0x10
[  303.963785][T10807]  ? futex_private_hash_put+0x176/0x300
[  303.963819][T10807]  ? futex_private_hash_put+0x18a/0x300
[  303.963849][T10807]  futex_wait+0xe8/0x380
[  303.963886][T10807]  ? __pfx_futex_wait+0x10/0x10
[  303.963925][T10807]  do_futex+0x229/0x350
[  303.963944][T10807]  ? __pfx_do_futex+0x10/0x10
[  303.963967][T10807]  __x64_sys_futex+0x1e0/0x4c0
[  303.963986][T10807]  ? __do_sys_close_range+0x278/0x730
[  303.964002][T10807]  ? __pfx___x64_sys_futex+0x10/0x10
[  303.964020][T10807]  ? xfd_validate_state+0x61/0x180
[  303.964038][T10807]  ? __pfx___do_sys_close_range+0x10/0x10
[  303.964058][T10807]  do_syscall_64+0xcd/0xfa0
[  303.964076][T10807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.964090][T10807] RIP: 0033:0x7f5b72d8f6c9
[  303.964102][T10807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  303.964117][T10807] RSP: 002b:00007f5b73bf30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  303.964132][T10807] RAX: ffffffffffffffda RBX: 00007f5b72fe5fa8 RCX: 00007f5b72d8f6c9
[  303.964141][T10807] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5b72fe5fa8
[  303.964149][T10807] RBP: 00007f5b72fe5fa0 R08: 0000000000000000 R09: 0000000000000000
[  303.964157][T10807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  303.964165][T10807] R13: 00007f5b72fe6038 R14: 00007ffefa476c80 R15: 00007ffefa476d68
[  303.964183][T10807]  </TASK>
[  305.359184][T10838] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1033'.
[  305.417204][T10818] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  305.502855][T10818] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  305.548261][T10818] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  305.554442][T10818] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  306.942525][T10877] Process accounting resumed
[  307.261717][   T52] Bluetooth: hci1: command 0x0c1a tx timeout
[  307.592787][   T52] Bluetooth: hci4: command 0x0c1a tx timeout
[  307.592806][ T5827] Bluetooth: hci3: command 0x0c1a tx timeout
[  307.592851][ T5827] Bluetooth: hci2: command 0x0c1a tx timeout
[  310.300837][T10951] delete_channel: no stack
[  311.059504][T10960] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1061'.
[  312.089025][T10987] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1066'.
[  312.324239][ T5827] Bluetooth: hci1: unexpected event 0x14 length: 16 > 6
[  312.478774][T10987] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  312.508738][T10987] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  312.519171][T10987] bond0 (unregistering): Released all slaves
[  312.766119][T11007] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1071'.
[  312.824209][T11007] bridge0: port 2(bridge_slave_1) entered disabled state
[  312.933428][T11007] bridge_slave_1 (unregistering): left allmulticast mode
[  312.954369][T11007] bridge_slave_1 (unregistering): left promiscuous mode
[  312.965956][T11007] bridge0: port 2(bridge_slave_1) entered disabled state
[  314.078422][T11049] futex_wake_op: syz.4.1080 tries to shift op by -2048; fix this program
[  314.185605][T11050] zswap: compressor 5���hH���X^rRO�ת��WCn#ТڪeBH�V�����Q.V�dl��M�_ not available
[  314.216914][T11050] i2c i2c-0: new_device: Missing parameters
[  314.250037][T11058] i2c i2c-0: new_device: Missing parameters
[  314.592584][T11068] vivid-007: =================  START STATUS  =================
[  314.637106][T11068] vivid-007: Generate PTS: true
[  314.657153][T11068] vivid-007: Generate SCR: true
[  314.665190][T11068] tpg source WxH: 320x240 (Y'CbCr)
[  314.768085][T11068] tpg field: 1
[  314.788320][T11068] tpg crop: (0,0)/320x240
[  314.802439][T11074] i2c i2c-0: new_device: Missing parameters
[  314.841555][T11068] tpg compose: (0,0)/320x240
[  314.865760][T11068] tpg colorspace: 8
[  314.873914][T11068] tpg transfer function: 0/0
[  314.891608][T11068] tpg Y'CbCr encoding: 0/0
[  314.924924][T11068] tpg quantization: 0/0
[  314.933785][T11068] tpg RGB range: 0/2
[  314.938612][T11068] vivid-007: ==================  END STATUS  ==================
[  315.333600][T11089] bond0: invalid ARP target specified
[  316.231695][T11110] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1092'.
[  316.821709][T11141] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1097'.
[  317.178571][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  317.184987][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  317.617949][T11153] can: request_module (can-proto-4) failed.
[  317.797553][T11162] FAULT_INJECTION: forcing a failure.
[  317.797553][T11162] name failslab, interval 1, probability 0, space 0, times 0
[  317.811598][T11162] CPU: 1 UID: 0 PID: 11162 Comm: syz.4.1103 Not tainted syzkaller #0 PREEMPT(full) 
[  317.811637][T11162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  317.811653][T11162] Call Trace:
[  317.811661][T11162]  <TASK>
[  317.811673][T11162]  dump_stack_lvl+0x16c/0x1f0
[  317.811709][T11162]  should_fail_ex+0x512/0x640
[  317.811748][T11162]  ? __kvmalloc_node_noprof+0x12e/0x9c0
[  317.811783][T11162]  should_failslab+0xc2/0x120
[  317.811817][T11162]  __kvmalloc_node_noprof+0x141/0x9c0
[  317.811851][T11162]  ? fib4_semantics_init+0x2a/0x100
[  317.811905][T11162]  ? fib4_semantics_init+0x2a/0x100
[  317.811944][T11162]  fib4_semantics_init+0x2a/0x100
[  317.811984][T11162]  fib_net_init+0x1fc/0x3f0
[  317.812015][T11162]  ? __pfx___register_sysctl_table+0x10/0x10
[  317.812054][T11162]  ? __pfx_fib_net_init+0x10/0x10
[  317.812083][T11162]  ? lockdep_init_map_type+0x5c/0x280
[  317.812120][T11162]  ? do_init_timer+0xc9/0x110
[  317.812153][T11162]  ? devinet_init_net+0x5c2/0x910
[  317.812190][T11162]  ? __pfx_fib_net_init+0x10/0x10
[  317.812217][T11162]  ops_init+0x1e2/0x5f0
[  317.812246][T11162]  setup_net+0x100/0x390
[  317.812274][T11162]  ? __pfx_setup_net+0x10/0x10
[  317.812302][T11162]  ? debug_mutex_init+0x37/0x70
[  317.812329][T11162]  copy_net_ns+0x2f8/0x690
[  317.812361][T11162]  create_new_namespaces+0x3ea/0xa90
[  317.812393][T11162]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  317.812421][T11162]  ksys_unshare+0x45b/0xa40
[  317.812453][T11162]  ? __pfx_ksys_unshare+0x10/0x10
[  317.812483][T11162]  ? xfd_validate_state+0x61/0x180
[  317.812523][T11162]  __x64_sys_unshare+0x31/0x40
[  317.812555][T11162]  do_syscall_64+0xcd/0xfa0
[  317.812588][T11162]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.812613][T11162] RIP: 0033:0x7f245098f6c9
[  317.812633][T11162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.812658][T11162] RSP: 002b:00007f2451793038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  317.812684][T11162] RAX: ffffffffffffffda RBX: 00007f2450be5fa0 RCX: 00007f245098f6c9
[  317.812702][T11162] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  317.812716][T11162] RBP: 00007f2450a11f91 R08: 0000000000000000 R09: 0000000000000000
[  317.812732][T11162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  317.812747][T11162] R13: 00007f2450be6038 R14: 00007f2450be5fa0 R15: 00007ffee0affa88
[  317.812786][T11162]  </TASK>
[  318.994240][T11201] FAULT_INJECTION: forcing a failure.
[  318.994240][T11201] name failslab, interval 1, probability 0, space 0, times 0
[  319.025460][T11201] CPU: 1 UID: 0 PID: 11201 Comm: syz.2.1112 Not tainted syzkaller #0 PREEMPT(full) 
[  319.025499][T11201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  319.025515][T11201] Call Trace:
[  319.025525][T11201]  <TASK>
[  319.025535][T11201]  dump_stack_lvl+0x16c/0x1f0
[  319.025572][T11201]  should_fail_ex+0x512/0x640
[  319.025610][T11201]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  319.025640][T11201]  should_failslab+0xc2/0x120
[  319.025685][T11201]  kmem_cache_alloc_noprof+0x75/0x6e0
[  319.025709][T11201]  ? is_bpf_text_address+0x94/0x1a0
[  319.025741][T11201]  ? alloc_empty_file+0x55/0x1e0
[  319.025782][T11201]  ? alloc_empty_file+0x55/0x1e0
[  319.025813][T11201]  alloc_empty_file+0x55/0x1e0
[  319.025847][T11201]  path_openat+0xda/0x2cb0
[  319.025881][T11201]  ? stack_trace_save+0x8e/0xc0
[  319.025912][T11201]  ? __pfx_path_openat+0x10/0x10
[  319.025937][T11201]  ? stack_depot_save_flags+0x29/0x9c0
[  319.025979][T11201]  do_filp_open+0x20b/0x470
[  319.026002][T11201]  ? kmem_cache_alloc_noprof+0x250/0x6e0
[  319.026028][T11201]  ? __pfx_do_filp_open+0x10/0x10
[  319.026053][T11201]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.026112][T11201]  do_open_execat+0xf9/0x3a0
[  319.026135][T11201]  ? __pfx_do_open_execat+0x10/0x10
[  319.026171][T11201]  alloc_bprm+0x2d/0x710
[  319.026202][T11201]  do_execveat_common.isra.0+0x1ce/0x610
[  319.026237][T11201]  __x64_sys_execve+0x8e/0xb0
[  319.026267][T11201]  do_syscall_64+0xcd/0xfa0
[  319.026300][T11201]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.026326][T11201] RIP: 0033:0x7f5b72d8f6c9
[  319.026348][T11201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  319.026375][T11201] RSP: 002b:00007f5b73bf3038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  319.026401][T11201] RAX: ffffffffffffffda RBX: 00007f5b72fe5fa0 RCX: 00007f5b72d8f6c9
[  319.026419][T11201] RDX: 0000200000000140 RSI: 00002000000000c0 RDI: 0000200000000040
[  319.026437][T11201] RBP: 00007f5b72e11f91 R08: 0000000000000000 R09: 0000000000000000
[  319.026453][T11201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  319.026469][T11201] R13: 00007f5b72fe6038 R14: 00007f5b72fe5fa0 R15: 00007ffefa476d68
[  319.026508][T11201]  </TASK>
[  320.267508][T11230] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  320.273698][T11230] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  320.287338][T11230] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  320.293611][T11230] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  321.722770][T11260] input: jJǸ���;9�%v����l��Q�	J86�� as /devices/virtual/input/input20
[  322.299007][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout
[  322.305141][ T5827] Bluetooth: hci4: command 0x0c1a tx timeout
[  322.311133][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  322.317200][   T52] Bluetooth: hci2: command 0x0c1a tx timeout
[  323.388303][T11313] __vm_enough_memory: pid: 11313, comm: syz.2.1138, bytes: 4398046511104 not enough memory for the allocation
[  323.687103][T11321] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1139'.
[  323.795050][T11327] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22
[  324.030933][T11336] binder: 11334:11336 ioctl c018620c 0 returned -1
[  324.212764][ T5838] Bluetooth: hci3: unexpected event 0x01 length: 5 > 1
[  327.850180][T11429] mkiss: ax0: crc mode is auto.
[  328.657651][T11444] vhci_hcd: invalid port number 16
[  328.674775][T11444] vhci_hcd: invalid port number 16
[  328.884302][ T5838] Bluetooth: hci2: unexpected event 0x0f length: 5 > 4
[  328.884344][ T5838] Bluetooth: hci2: unexpected event for opcode 0xf100
[  329.271931][T11447] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1167'.
[  330.229076][T11480] random: crng reseeded on system resumption
[  332.468572][T11510] openvswitch: ovs_: Dropping previously announced user features
[  333.580568][T11543] futex_wake_op: syz.2.1188 tries to shift op by -2048; fix this program
[  333.656141][T11543] futex_wake_op: syz.2.1188 tries to shift op by -2048; fix this program
[  333.868058][T11543] futex_wake_op: syz.2.1188 tries to shift op by -2048; fix this program
[  333.975053][T11543] futex_wake_op: syz.2.1188 tries to shift op by -2048; fix this program
[  334.077527][T11543] futex_wake_op: syz.2.1188 tries to shift op by -2048; fix this program
[  334.218186][T11543] futex_wake_op: syz.2.1188 tries to shift op by -2048; fix this program
[  334.337590][T11543] futex_wake_op: syz.2.1188 tries to shift op by -2048; fix this program
[  334.368021][T11543] futex_wake_op: syz.2.1188 tries to shift op by -2048; fix this program
[  334.442963][T11555] syz.2.1188(11555): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  334.525854][T11543] futex_wake_op: syz.2.1188 tries to shift op by -2048; fix this program
[  334.658866][T11543] futex_wake_op: syz.2.1188 tries to shift op by -2048; fix this program
[  335.716645][T11592] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  336.036390][T11564] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  336.206421][T11612] zram: Removed device: zram0
[  336.387011][T11615] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1200'.
[  337.705894][T11651] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1208'.
[  337.739511][T11651] delete_channel: no stack
[  339.825331][T11694] 
[  339.827704][T11694] ======================================================
[  339.834720][T11694] WARNING: possible circular locking dependency detected
[  339.841737][T11694] syzkaller #0 Not tainted
[  339.846166][T11694] ------------------------------------------------------
[  339.853185][T11694] syz.2.1217/11694 is trying to acquire lock:
[  339.859251][T11694] ffff888079bfc1e0 (&type->i_mutex_dir_key#6){++++}-{4:4}, at: walk_component+0x345/0x5b0
[  339.869210][T11694] 
[  339.869210][T11694] but task is already holding lock:
[  339.876573][T11694] ffffffff8e281be8 (param_lock){+.+.}-{4:4}, at: param_attr_store+0xec/0x300
[  339.885384][T11694] 
[  339.885384][T11694] which lock already depends on the new lock.
[  339.885384][T11694] 
[  339.895776][T11694] 
[  339.895776][T11694] the existing dependency chain (in reverse order) is:
[  339.904782][T11694] 
[  339.904782][T11694] -> #3 (param_lock){+.+.}-{4:4}:
[  339.911994][T11694]        __mutex_lock+0x193/0x1060
[  339.917110][T11694]        ieee80211_init_rate_ctrl_alg+0x18d/0x6b0
[  339.923526][T11694]        ieee80211_register_hw+0x21b5/0x4120
[  339.929509][T11694]        mac80211_hwsim_new_radio+0x32d8/0x50b0
[  339.935747][T11694]        init_mac80211_hwsim+0x44e/0x900
[  339.941385][T11694]        do_one_initcall+0x123/0x6e0
[  339.946672][T11694]        kernel_init_freeable+0x5c8/0x920
[  339.952400][T11694]        kernel_init+0x1c/0x2b0
[  339.957255][T11694]        ret_from_fork+0x675/0x7d0
[  339.962373][T11694]        ret_from_fork_asm+0x1a/0x30
[  339.967660][T11694] 
[  339.967660][T11694] -> #2 (rtnl_mutex){+.+.}-{4:4}:
[  339.974874][T11694]        __mutex_lock+0x193/0x1060
[  339.979993][T11694]        cgrp_css_online+0xa2/0x1f0
[  339.985187][T11694]        online_css+0xb2/0x350
[  339.989959][T11694]        cgroup_apply_control_enable+0x702/0xbb0
[  339.996293][T11694]        cgroup_mkdir+0x5e0/0x1310
[  340.001401][T11694]        kernfs_iop_mkdir+0x111/0x190
[  340.006779][T11694]        vfs_mkdir+0x593/0x8c0
[  340.011553][T11694]        do_mkdirat+0x304/0x3e0
[  340.016401][T11694]        __x64_sys_mkdirat+0x83/0xb0
[  340.021686][T11694]        do_syscall_64+0xcd/0xfa0
[  340.026712][T11694]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.033124][T11694] 
[  340.033124][T11694] -> #1 (cgroup_mutex){+.+.}-{4:4}:
[  340.040510][T11694]        __mutex_lock+0x193/0x1060
[  340.045624][T11694]        cgroup_kn_lock_live+0x116/0x520
[  340.051266][T11694]        cgroup_rmdir+0x20/0x2b0
[  340.056199][T11694]        kernfs_iop_rmdir+0x106/0x170
[  340.061575][T11694]        vfs_rmdir+0x206/0x690
[  340.066350][T11694]        do_rmdir+0x2e8/0x3c0
[  340.071022][T11694]        __x64_sys_rmdir+0xc5/0x110
[  340.076218][T11694]        do_syscall_64+0xcd/0xfa0
[  340.081240][T11694]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.087654][T11694] 
[  340.087654][T11694] -> #0 (&type->i_mutex_dir_key#6){++++}-{4:4}:
[  340.096095][T11694]        __lock_acquire+0x126f/0x1c90
[  340.101476][T11694]        lock_acquire+0x179/0x350
[  340.106505][T11694]        down_read+0x9b/0x480
[  340.111192][T11694]        walk_component+0x345/0x5b0
[  340.116390][T11694]        path_lookupat+0x142/0x6d0
[  340.121495][T11694]        filename_lookup+0x224/0x5f0
[  340.126776][T11694]        kern_path+0x35/0x50
[  340.131361][T11694]        lookup_bdev+0xd8/0x280
[  340.136214][T11694]        bdev_file_open_by_path+0x82/0x330
[  340.142017][T11694]        block2mtd_setup2+0x317/0xe10
[  340.147414][T11694]        block2mtd_setup+0xbd/0x110
[  340.152616][T11694]        param_attr_store+0x199/0x300
[  340.157982][T11694]        module_attr_store+0x58/0x80
[  340.163269][T11694]        sysfs_kf_write+0xf2/0x150
[  340.168380][T11694]        kernfs_fop_write_iter+0x3af/0x570
[  340.174190][T11694]        vfs_write+0x7d3/0x11d0
[  340.179034][T11694]        ksys_write+0x12a/0x250
[  340.183887][T11694]        do_syscall_64+0xcd/0xfa0
[  340.188911][T11694]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.195321][T11694] 
[  340.195321][T11694] other info that might help us debug this:
[  340.195321][T11694] 
[  340.205549][T11694] Chain exists of:
[  340.205549][T11694]   &type->i_mutex_dir_key#6 --> rtnl_mutex --> param_lock
[  340.205549][T11694] 
[  340.218514][T11694]  Possible unsafe locking scenario:
[  340.218514][T11694] 
[  340.225948][T11694]        CPU0                    CPU1
[  340.231298][T11694]        ----                    ----
[  340.236648][T11694]   lock(param_lock);
[  340.240622][T11694]                                lock(rtnl_mutex);
[  340.247119][T11694]                                lock(param_lock);
[  340.253616][T11694]   rlock(&type->i_mutex_dir_key#6);
[  340.258902][T11694] 
[  340.258902][T11694]  *** DEADLOCK ***
[  340.258902][T11694] 
[  340.267028][T11694] 5 locks held by syz.2.1217/11694:
[  340.272213][T11694]  #0: ffff88803170b278 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[  340.281361][T11694]  #1: ffff8880247dc420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  340.290343][T11694]  #2: ffff88807d9dec88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  340.300108][T11694]  #3: ffff888031082008 (kn->active#4){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  340.310056][T11694]  #4: ffffffff8e281be8 (param_lock){+.+.}-{4:4}, at: param_attr_store+0xec/0x300
[  340.319289][T11694] 
[  340.319289][T11694] stack backtrace:
[  340.325165][T11694] CPU: 1 UID: 0 PID: 11694 Comm: syz.2.1217 Not tainted syzkaller #0 PREEMPT(full) 
[  340.325195][T11694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  340.325209][T11694] Call Trace:
[  340.325217][T11694]  <TASK>
[  340.325227][T11694]  dump_stack_lvl+0x116/0x1f0
[  340.325255][T11694]  print_circular_bug+0x275/0x350
[  340.325286][T11694]  check_noncircular+0x14c/0x170
[  340.325319][T11694]  __lock_acquire+0x126f/0x1c90
[  340.325353][T11694]  lock_acquire+0x179/0x350
[  340.325382][T11694]  ? walk_component+0x345/0x5b0
[  340.325404][T11694]  ? __pfx___might_resched+0x10/0x10
[  340.325428][T11694]  ? __d_lookup+0x25c/0x4a0
[  340.325461][T11694]  down_read+0x9b/0x480
[  340.325489][T11694]  ? walk_component+0x345/0x5b0
[  340.325509][T11694]  ? __d_lookup+0x266/0x4a0
[  340.325538][T11694]  ? __pfx_down_read+0x10/0x10
[  340.325573][T11694]  ? lookup_fast+0x156/0x610
[  340.325595][T11694]  walk_component+0x345/0x5b0
[  340.325617][T11694]  path_lookupat+0x142/0x6d0
[  340.325640][T11694]  filename_lookup+0x224/0x5f0
[  340.325665][T11694]  ? __pfx_filename_lookup+0x10/0x10
[  340.325698][T11694]  ? getname_kernel+0x52/0x370
[  340.325728][T11694]  ? __asan_memcpy+0x3c/0x60
[  340.325752][T11694]  kern_path+0x35/0x50
[  340.325774][T11694]  lookup_bdev+0xd8/0x280
[  340.325807][T11694]  ? __pfx_lookup_bdev+0x10/0x10
[  340.325844][T11694]  bdev_file_open_by_path+0x82/0x330
[  340.325868][T11694]  ? __pfx_bdev_file_open_by_path+0x10/0x10
[  340.325895][T11694]  block2mtd_setup2+0x317/0xe10
[  340.325929][T11694]  ? __pfx_block2mtd_setup2+0x10/0x10
[  340.325959][T11694]  ? __pfx___mutex_trylock_common+0x10/0x10
[  340.325995][T11694]  ? trace_contention_end+0xdd/0x130
[  340.326038][T11694]  block2mtd_setup+0xbd/0x110
[  340.326069][T11694]  param_attr_store+0x199/0x300
[  340.326095][T11694]  ? __pfx_param_attr_store+0x10/0x10
[  340.326119][T11694]  module_attr_store+0x58/0x80
[  340.326140][T11694]  ? __pfx_module_attr_store+0x10/0x10
[  340.326161][T11694]  sysfs_kf_write+0xf2/0x150
[  340.326186][T11694]  kernfs_fop_write_iter+0x3af/0x570
[  340.326221][T11694]  ? __pfx_sysfs_kf_write+0x10/0x10
[  340.326247][T11694]  vfs_write+0x7d3/0x11d0
[  340.326271][T11694]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  340.326306][T11694]  ? __pfx___mutex_lock+0x10/0x10
[  340.326333][T11694]  ? __pfx_vfs_write+0x10/0x10
[  340.326365][T11694]  ksys_write+0x12a/0x250
[  340.326389][T11694]  ? __pfx_ksys_write+0x10/0x10
[  340.326416][T11694]  do_syscall_64+0xcd/0xfa0
[  340.326443][T11694]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.326468][T11694] RIP: 0033:0x7f5b72d8f6c9
[  340.326486][T11694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  340.326508][T11694] RSP: 002b:00007f5b73bf3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  340.326530][T11694] RAX: ffffffffffffffda RBX: 00007f5b72fe5fa0 RCX: 00007f5b72d8f6c9
[  340.326546][T11694] RDX: 0000000000000024 RSI: 0000200000000140 RDI: 0000000000000006
[  340.326565][T11694] RBP: 00007f5b72e11f91 R08: 0000000000000000 R09: 0000000000000000
[  340.326579][T11694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  340.326593][T11694] R13: 00007f5b72fe6038 R14: 00007f5b72fe5fa0 R15: 00007ffefa476d68
[  340.326616][T11694]  </TASK>
[  340.690716][T11694] block2mtd: error: cannot open device �inX�����±��jFB�B>U�;߸�Ilk�