last executing test programs:

2m46.305291949s ago: executing program 3 (id=243):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x4)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0xc78, 0xffffffffffffffff, 0x0, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x5)
madvise$auto(0xfffffffffffffffd, 0xc3a5, 0x1d)
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, 0x0, 0x1)
madvise$auto(0x0, 0x200007, 0x19)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
mmap$auto(0x20000000000, 0x1000000020009, 0x40, 0xeb1, r1, 0x9)
mmap$auto(0x8000000000000000, 0x400008, 0x11, 0x1c, r1, 0x800007)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000002040)='/dev/snd/pcmC1D1c\x00', 0x80, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/class/devcoredump/disabled\x00', 0x1a6502, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x201, 0x0)
write$auto(r2, 0x0, 0x100000a3d9)
select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0x3f, 0x5, 0x2000000000948b, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x62, 0x80000001, 0x50a7, 0x6d3f, 0x9, 0x3, 0xfffffffffffffffe]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x400000d, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, r3, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

2m43.984489458s ago: executing program 3 (id=254):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
r1 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400005, 0x100000005}})
io_uring_enter$auto(r1, 0x9, 0x820e, 0x6, 0x0, 0x18)
msgctl$auto_IPC_SET(0x0, 0x1, &(0x7f0000000340)={{0x74f6, 0xffffffffffffffff, <r2=>0x0, 0x8, 0x56a4, 0x5, 0x5}, &(0x7f0000000240)=0x5, &(0x7f0000000280)=0x3, 0x2, 0x7, 0x927, 0x6, 0x1, 0x4b, 0x7, 0x0, @inferred=0xffffffffffffffff, @raw=0xd})
r3 = getuid()
keyctl$auto_KEY_REQKEY_DEFL_NO_CHANGE(0x7, 0xffffffffffffffff, r3, r2, 0x7fff)
ioctl$auto_EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x2, 0x2, 0x1, 0x2})
r4 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmsg$auto_OVS_VPORT_CMD_GET(r4, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x0, 0x8, 0x70bd27, 0x25dfdbfe}, 0x14}}, 0x1)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xe8, 0x9, 0x2, 0x1, 0x5, 0x4, 0x15f4da0e, 0x8, 0x9, 0x100000000000000c, 0x8, 0x1, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
getsockopt$auto_SO_RCVMARK(r5, 0x0, 0x4b, &(0x7f0000000000)='}\'.^\x00', &(0x7f00000000c0)=0x7)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/pm_test\x00', 0x20461, 0x0)
write$auto(r6, &(0x7f00000000c0)='&(--\x00', 0x8)
mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000)
r7 = socket(0x2, 0x80002, 0x73)
bind$auto(r7, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
close_range$auto(0x2, r5, 0x40000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
mlockall$auto(0x7)

2m41.944606398s ago: executing program 3 (id=263):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio1\x00', 0x20000, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/reboot/cpu\x00', 0x1a1842, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) (async)
read$auto(r0, &(0x7f0000000000)='/dev/audio1\x00', 0x6) (async)
mmap$auto(0x40000000, 0x9, 0x3, 0x8012, 0x3, 0x8000)

2m40.87891062s ago: executing program 3 (id=268):
openat$auto_page_owner_stack_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000140), 0x121140, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/event1\x00', 0x141100, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7)
ioctl$auto_EVIOCGMASK(r0, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x9})
close_range$auto(0x2, 0x8, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
getrlimit$auto(0x3, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/vhci_hcd.12/usb33/33-0:1.0/usb33-port4/power/pm_qos_no_power_off\x00', 0x82942, 0x0)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x3, 0x2, 0x3, 0x1)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x8, 0x3, 0x2, 0x4)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x401, 0x200000000000000, 0xfffffffffffffff8, 0x0)
setrlimit$auto(0xc, &(0x7f0000000040)={0x5, 0x2})
socket(0xf, 0x800, 0x4)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
ioctl$auto(0x3, 0xae41, r2)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/admmidi2\x00', 0x88042, 0x0)
ioprio_set$auto(0x1, 0x0, 0x0)
sendfile$auto(0xffffffffffffffff, 0x3, 0x0, 0x400000000006)
read$auto(r3, 0x0, 0x20)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x20800, 0x0)
close_range$auto(0x2, r1, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-0/xps_cpus\x00', 0x10b062, 0x0)
write$auto(r4, &(0x7f00000001c0)=',\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
pwrite64$auto(0xc8, 0x0, 0xfdef, 0x3)
prctl$auto(0x6, 0x771c, 0xffffffffffffffff, 0x4285, 0x4)
socket(0x2, 0x3, 0x2)

2m39.56395715s ago: executing program 3 (id=276):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/040/001\x00', 0x802, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x1c, 0x2, 0x8, 0x7fa, &(0x7f0000001800)})
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = syz_clone(0x20011, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x4206, r2, 0x0, 0x200005)
prctl$auto(0x9, 0x1, r2, 0x7, 0x40)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x0, 0x0)
r3 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001140)='/dev/psaux\x00', 0x42000, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000280)={0x7ffffffc, 0x8, 0x3000, 0x6, 0x7, 0x400b, r3, [0x0, 0x0, 0x4], {0x6, 0x6, 0x8c48, 0x29a, 0x109, 0x80, 0x104, 0x6, 0x4}, {0x100, 0x1, 0x101, 0x85, 0x2, 0x24, 0xfe000000, 0x8, 0x3}})
r4 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x0, 0x0)
read$auto_vhci_fops_hci_vhci(r4, &(0x7f0000000d40)=""/16, 0x10)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000580)={[0x7, 0x8000, 0xd, 0x1, 0x948d, 0x3, 0x10015f4da06, 0xc, 0x7, 0x64c1, 0x8000001f, 0x8, 0x6d42, 0x100c, 0x2]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2b, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2b, 0x1, 0x1)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x5, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r6)
ioctl$auto_KVM_GET_MSRS(r5, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x40000083, 0x402}]})
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)
close_range$auto(0x2, 0x8, 0x0)

2m38.339920551s ago: executing program 3 (id=282):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
unshare$auto(0x40000080)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xe985, 0xdb, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000894}, 0x800)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_11={0x1, 0x6, 0x6, 0x7, 0x1bb080, 0x97, 0xff, r0}, 0x6f3)
unshare$auto(0x7)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000)
rt_tgsigqueueinfo$auto(0x3, 0x96, 0x7, &(0x7f0000000180)={@siginfo_0_0={0x0, 0x9c2a, 0xffffffff, @_sigsys={0x0, 0x5d35, 0x6}}})
open(&(0x7f00000001c0)='./cgroup\x00', 0x0, 0x6f)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x8040)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socket(0x10, 0x2, 0x0)
getsockopt$auto(0xffffffffffffffff, 0x6, 0x7, &(0x7f0000000080)=':}\'*,\x00', &(0x7f0000000000)=0xffffff86)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x8, 0x3, 0x0)
getsockopt$auto(r1, 0x0, 0x80, 0x0, 0x0)
openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)

2m23.200956585s ago: executing program 32 (id=282):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
unshare$auto(0x40000080)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xe985, 0xdb, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000894}, 0x800)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_11={0x1, 0x6, 0x6, 0x7, 0x1bb080, 0x97, 0xff, r0}, 0x6f3)
unshare$auto(0x7)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000)
rt_tgsigqueueinfo$auto(0x3, 0x96, 0x7, &(0x7f0000000180)={@siginfo_0_0={0x0, 0x9c2a, 0xffffffff, @_sigsys={0x0, 0x5d35, 0x6}}})
open(&(0x7f00000001c0)='./cgroup\x00', 0x0, 0x6f)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x8040)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socket(0x10, 0x2, 0x0)
getsockopt$auto(0xffffffffffffffff, 0x6, 0x7, &(0x7f0000000080)=':}\'*,\x00', &(0x7f0000000000)=0xffffff86)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x8, 0x3, 0x0)
getsockopt$auto(r1, 0x0, 0x80, 0x0, 0x0)
openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)

2m21.29248569s ago: executing program 1 (id=338):
mmap$auto(0x2, 0x202000b, 0x4, 0x15, 0xfffffffffffffffa, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC0\x00', 0xa02, 0x0)
syz_clone3(&(0x7f0000000500)={0x168200000, &(0x7f0000000000), &(0x7f0000000080), &(0x7f0000000100), {0x1c}, &(0x7f0000000300)=""/218, 0xda, &(0x7f0000000400)=""/195, &(0x7f0000000140)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0], 0x6}, 0x58)
mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x140242, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x200000, 0x0)
read$auto(r1, 0x0, 0x20)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
bpf$auto(0x6, &(0x7f00000002c0)=@enable_stats={0x1}, 0x3)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x10}, 0x3)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0x401, 0x8000)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x147)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmmsg$auto(r1, &(0x7f0000001100)={{0x0, 0x3, &(0x7f0000000100)={0x0, 0x4}, 0x1000000000029, 0x0, 0x4000000000004, 0x1002}, 0x801}, 0x406, 0x4808)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
open(0x0, 0x2240, 0x196)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x16240, 0x0)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
mmap$auto(0xffff, 0x8, 0x40000003, 0xeb4, 0xfffffffffffffffa, 0x8000)
mbind$auto(0x0, 0xfa9d, 0x8001, &(0x7f0000000280)=0xc9e, 0x400, 0x1)
r3 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/numa_maps\x00', 0x20000, 0x0)
read$auto_proc_sessionid_operations_base(r3, &(0x7f00000000c0)=""/4073, 0xfe9)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x4000, 0x0)

2m19.865082002s ago: executing program 1 (id=340):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1adac3, 0x0)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xc0400, 0x0) (async)
socketpair$auto(0x1, 0x2, 0xfffffffd, 0x0) (async)
setrlimit$auto(0x7, &(0x7f0000001380)={0x5, 0x6}) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
io_uring_setup$auto(0x1, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r1, 0xffffffffffdffe00, &(0x7f0000000140)=';') (async)
r2 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioctl$auto(0x3, 0xc0086202, r2) (async)
r3 = open(0x0, 0x64842, 0x0) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/ptyb0\x00', 0x5e1001, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001d80)='/sys/devices/virtual/sound/ctl-led/speaker/card0/attach\x00', 0x1, 0x0) (async)
unshare$auto(0x40000080)
r4 = socket(0xa, 0x3, 0x3a)
r5 = syz_genetlink_get_family_id$auto_batadv(0x0, r4)
sendmsg$auto_BATADV_CMD_TP_METER(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r5, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [@BATADV_ATTR_TT_TTVN={0x5, 0x11, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2000c001}, 0x40001)
mmap$auto(0x0, 0x3fffff, 0x7, 0x11, 0xdd, 0x0)
ioctl$auto(r4, 0x8982, 0x1)
flock$auto(0xffffffffffffffff, 0xffff)

2m18.056484859s ago: executing program 1 (id=343):
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
connect$auto(0xffffffffffffffff, 0x0, 0x4c85)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4)
futex_wake$auto(&(0x7f0000000580)="356770ca91dce6a2d883429e433336518dc48d965fbfcf84c028b08ede341031ea98282be51384a1c8a75662b90d4fb85c1c7cb7209ed4f388073f3778a693fdbfb57958582886fe073c04f6b963d3a56e0795ba76097ef67e9a01f2fd28a4756ca43c533ed5ca7062d092ab221c62fe9977f4ae176d97f02454fc04dc86dadea408d975952e6eb50e5e0576f6fd0f1b5cf18455c2bb002dee692cfd1bf8e93c1e1a64123b7db2661373395524647e976de949360ad580e5dc885cc2e1863a77227989ac8db5", 0x56d, 0x1, 0x80)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0xd561, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000)
timer_create$auto(0x2, 0x0, 0x0)
timer_settime$auto(0x180, 0x3, &(0x7f0000000380)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
kexec_load$auto(0x200000000007, 0x1, &(0x7f0000000040)={@kbuf=0x0, 0x2aaa, 0x6c0000c000, 0xc000}, 0x4)
fchownat$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x6)
setsockopt$auto(0x400000000000003, 0x28, 0x6, 0x0, 0x56d)
mmap$auto(0x0, 0x20000a00006, 0x100, 0x91, 0xffffffffffffffff, 0x2ffffffffffe)
mmap$auto(0x0, 0x8, 0x3, 0x9b72, 0x2, 0x8000)
r1 = socket(0x2, 0x1, 0x106)
bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xc, 0x4, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x3, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x800000000000000]}, 0x1fe, 0xffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="f91c5acc2195a6f094ff08ba6d02e4ec504acd62e103e5fd6f7244bf2e9918a0327ba444e173af560aa2670921addde8898c95a405f377b62e74091b15b18845a838c74a7977f468e20b2259bedb931b2f635995c57742df7936f0869b7632bf38b60754b308fe6edb977eb731219f922d02dfde4c4acca3e0f6893ff30f4d5fd8", @ANYRESDEC], 0x1ac}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0x7980, 0x6}, 0x2, 0x0, 0x0, 0x8)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x2)
mount$auto(0x0, &(0x7f0000000540)='}[,&*}\x00', &(0x7f0000000040)='nfsd\x00', 0x3, &(0x7f00000003c0)="3dd1fa31")
fcntl$auto(0x0, 0x407, 0x100000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24004000)
socket(0x18, 0x80f, 0x2)

2m16.727351783s ago: executing program 1 (id=347):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/rose7/flags\x00', 0x2262, 0x0)
socket(0x11, 0x3, 0xe)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xc0803, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000280), 0x1)
r1 = clone$auto(0x20003b48, 0x2, 0x0, 0x0, 0x5)
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000040)='/dev/media1\x00', 0x30001, 0x0)
select$auto(0x7, 0x0, &(0x7f0000000080)={[0x8, 0xc0b, 0x8, 0x5, 0x1001, 0xffffffffffffffff, 0xf, 0x1000, 0xb, 0x1, 0xced80000000000, 0x9, 0x6, 0x0, 0x1, 0x7fffffff]}, 0x0, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x5, 0xc, 0x82000000000940, 0x1ffde, 0x7, 0x4, 0x9, 0x9, 0x1, 0x2, 0x7, 0x9, 0x3979d5ff, 0x8, 0x1407, 0x5, 0x8000000007, 0x8000, 0x0, 0x0, 0x0, 0x0, 0xf3, 0x0, 0xfffffffc, 0x0, 0x4, 0x0, [0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x80000000004, 0x0, 0x0, 0x40000000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffff5, 0x1, 0x0, 0xffffffffffffffff, 0x47e, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x400000000e3a, 0x101, 0xfffffffffffffffe, 0x80000000, 0x2000000]}, 0x400, 0x9632)
r2 = socket(0x10, 0x2, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000003c0)='+&\x00', 0x273f)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB], 0x1ac}}, 0x40000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram5\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffffffffffe11, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200440c4}, 0x40048c5)
msgctl$auto_MSG_INFO(0x9, 0xc, &(0x7f0000000440)={{0xfffffff2, <r3=>0x0, 0xffffffffffffffff, 0x7f, 0x5, 0x4, 0x7}, &(0x7f0000000380)=0x2, &(0x7f0000000500), 0x9, 0x80, 0x7, 0x4, 0x0, 0x38, 0x0, 0x22f0, @inferred=r1, @inferred=r1})
lstat$auto(0x0, &(0x7f0000000180)={0x7, 0x3b, 0x2, 0x10009, r3, 0x0, 0x0, 0x1000000009, 0x10001, 0x3, 0x400, 0x7ffffffb, 0x5, 0x4, 0x5, 0x61, 0x104})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x1, 0x2, 0xe, 0x12, 0xffffffffffffffff, 0x5)
ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/thread-self/fail-nth\x00', 0x40, 0x0)
write$auto(r5, &(0x7f0000000200)='7\x00\\\xa0\x04|\x03\'g\t$K\xcb\x12\xfa\x00\x00\xcfk', 0xb7f)
select$auto(0x1, &(0x7f0000000040)={[0xfffffffffffff91e, 0x40, 0x4, 0x80, 0x7, 0x3, 0x80000001, 0x7c, 0x3, 0xfffffffffffffffc, 0x5, 0xb, 0x4, 0x7, 0x0, 0x6]}, &(0x7f00000000c0)={[0xffffffffffffffff, 0x4, 0x0, 0x1, 0xffffffffffffffee, 0x6, 0x7f, 0x4, 0x2, 0xc6d, 0x8, 0xffffffff, 0x1, 0x0, 0x7491, 0x40]}, 0x0, &(0x7f00000001c0)={0x9, 0x1})
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r6, &(0x7f0000000180)='7\x00\\\xa0\x04|4\x00\x00\x03\x00\x00\x00\x10\x01\x00\x00\x00\x00\x00\x00\x00\x00rRVr\xc4O\xdc1\x9b%\x10Z\'\xb9\'\xa3stC<s\xbf\xf4\xf37o\xec\f\xf4\xde\x06\xb4x\xcep|\xa1\xd5\xc3r\x8d\xe5\xda#\f\xa7-\xaf@\xc3x\xa2\"h\xec\xa0\x9ay\'\x99\xca\x9a\xa6\xda6\xb3E\xe1-\x17I!J\xf0\xb7\xc9O\xe9f\x93~\xce\x0e\x8c\xfa\xe3\x89\xca\xf5\xa2\xd2t\x84\xf8`e\x16\xf49\x9aVBa~i\xb9s\x00\x00\x00\x00\x00\x00\x00\x00\n\x04>=\x85\xc6\xf6\x13 \xeb\xff%\x11\x82\x05\xdfV\x02\xca&\xd8$<\xab&\xc8B-\xcc\x15\x04&\x13;\xfe\xbdQ\xaa\x16o\x1f\xc7\x94\xa3\xc9\x9a\xe1d\xf5\n\xe2\x88\x84\vT?\x98\xa2\x00'/206, 0x5)
fsopen$auto(0x0, 0x1)
write$auto(r0, &(0x7f0000000140)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\xfc\xb2\x00\x00\x00\x00y\x113!\x05\xa7\xd6M\xce\xd6\'\xdf@\x9f\xf5 \x8b_hw\x8em\xd0\b\xe7~1\xf5\xf8\x93*jH\x85H\x05\xae\xdf\xf0\x15A\xdb$\'\x87', 0x81)

2m16.012344038s ago: executing program 1 (id=348):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
r1 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400005, 0x100000005}})
io_uring_enter$auto(r1, 0x9, 0x820e, 0x6, 0x0, 0x18)
msgctl$auto_IPC_SET(0x0, 0x1, &(0x7f0000000340)={{0x74f6, 0xffffffffffffffff, <r2=>0x0, 0x8, 0x56a4, 0x5, 0x5}, &(0x7f0000000240)=0x5, &(0x7f0000000280)=0x3, 0x2, 0x7, 0x927, 0x6, 0x1, 0x4b, 0x7, 0x0, @inferred=0xffffffffffffffff, @raw=0xd})
r3 = getuid()
keyctl$auto_KEY_REQKEY_DEFL_NO_CHANGE(0x7, 0xffffffffffffffff, r3, r2, 0x7fff)
ioctl$auto_EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x2, 0x2, 0x1, 0x2})
r4 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmsg$auto_OVS_VPORT_CMD_GET(r4, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x0, 0x8, 0x70bd27, 0x25dfdbfe}, 0x14}}, 0x1)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xe8, 0x9, 0x2, 0x1, 0x5, 0x4, 0x15f4da0e, 0x8, 0x9, 0x100000000000000c, 0x8, 0x1, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
getsockopt$auto_SO_RCVMARK(r5, 0x0, 0x4b, &(0x7f0000000000)='}\'.^\x00', &(0x7f00000000c0)=0x7)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/pm_test\x00', 0x20461, 0x0)
write$auto(r6, &(0x7f00000000c0)='&(--\x00', 0x8)
mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000)
r7 = socket(0x2, 0x80002, 0x73)
bind$auto(r7, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
close_range$auto(0x2, r5, 0x40000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
mlockall$auto(0x7)

2m13.880999936s ago: executing program 1 (id=351):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xa2102, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0)
io_uring_setup$auto(0xe, 0x0)
r0 = bpf$auto(0x12, 0x0, 0x26)
mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x999, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x2, 0x0)
r1 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
r2 = socket(0x2, 0x1, 0x106)
listen$auto(0x3, 0x81)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NETDEV_CMD_DEV_GET(r2, &(0x7f0000000200)={0x0, 0xffffffffffffffa8, 0x0, 0x1, 0x0, 0x0, 0x20004091}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
read$auto(r0, 0x0, 0x9)
unshare$auto(0x40000080)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x8202, 0x0)
mlock2$auto(0x1, 0x8001, 0x0)

1m58.667540644s ago: executing program 33 (id=351):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xa2102, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0)
io_uring_setup$auto(0xe, 0x0)
r0 = bpf$auto(0x12, 0x0, 0x26)
mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x999, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x2, 0x0)
r1 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
r2 = socket(0x2, 0x1, 0x106)
listen$auto(0x3, 0x81)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NETDEV_CMD_DEV_GET(r2, &(0x7f0000000200)={0x0, 0xffffffffffffffa8, 0x0, 0x1, 0x0, 0x0, 0x20004091}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
read$auto(r0, 0x0, 0x9)
unshare$auto(0x40000080)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x8202, 0x0)
mlock2$auto(0x1, 0x8001, 0x0)

1m10.276989924s ago: executing program 5 (id=545):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x1, 0x106)
migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x106)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40280, 0x0)
r1 = socket(0x1d, 0x2, 0x6)
bind$auto(r1, 0x0, 0x13)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000c00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'batadv0\x00'})
sendmsg$auto_BATADV_CMD_GET_VLAN(r2, 0x0, 0x4008090)
socket(0xa, 0x3, 0x100)
writev$auto(r0, &(0x7f0000000240)={&(0x7f0000000340)="b9e1242c152baea381f9987ae20716cf98f577528fac8e6ae6e93ae3ac65bee75fdb52e04d42c0634a21b77ec62cab4ffda7da234bd3c1af2f9ee13fad004dc1e728f66cde6edfd6d53974d285f7eee8bf8e1e92d9b51be199195ee227da80e470aa63a90e93ad184dc940e15d9f0c93aa76af09a3a52db77e1979d7574b6da2851d4eeef9ae92f76a4ffe326e2044137242a0ffb3090925b699fe61e5d509b6fa60d1dca6bb7b223676eae120358716a9f3243d9ff9d0b4714338d0f3af7f8ec885d0b10590f796e06b0bd72dd924a915cf8929d8aab8434542984b56653c3b18e0c57a39393e0ada", 0x5}, 0x2)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x7, 0x637b, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x80900, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self/net/rt_cache\x00', 0x2000, 0x0)
select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0x1800000, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x400, 0x40000000000003, 0x462, 0x80000001, 0x50a7, 0x6d3f, 0x5, 0x1, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x1, 0x948f, 0x1005, 0x20a, 0x6, 0xfffffffffffffff6, 0x7, 0x9, 0x79c, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0x400000000000f]}, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
io_uring_setup$auto(0x1, &(0x7f0000000080)={0x80000003, 0xd, 0x4002, 0x6, 0x4, 0x8, 0xffffffffffffffff, [], {0x9, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x4000006, 0x5}, {0x100, 0x1, 0x80052, 0x5, 0x5, 0x40, 0x104, 0x0, 0x100000000}})
syz_clone(0x1002000, 0x0, 0x0, 0x0, 0x0, 0x0)
futex_wake$auto(0x0, 0x5, 0x4, 0xa)
close_range$auto(0x2, 0x8, 0x0)
creat$auto(&(0x7f0000000000)='./file0\x00', 0x3ff)

1m8.529203267s ago: executing program 5 (id=541):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = fsopen$auto(0x0, 0x1)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
writev$auto(0x8, &(0x7f0000000040)={&(0x7f0000000000), 0x2000000000001}, 0xabc)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:01.3/msi_bus\x00', 0x800, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000100)=""/16, 0x10)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
r2 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3d}}, 0x6a)
listen$auto(0x3, 0x81)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x128}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x4, 0x8000)
r3 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
ioctl$auto_EVIOCGMASK(r3, 0x80104592, &(0x7f0000000180)={0x86f, 0x7})
mmap$auto(0x0, 0x8, 0x72, 0x8b72, 0x8f1, 0x8000)
socket(0x2, 0x5, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
bpf$auto(0x5, 0x0, 0x504)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/nbd11/queue/iostats_passthrough\x00', 0x2a001, 0x0)
write$auto(r4, &(0x7f0000000040)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
close_range$auto(0x2, 0xa, 0x0)

1m8.124727221s ago: executing program 5 (id=546):
fanotify_init$auto(0x5, 0x2000000000002)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20804, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/fail-nth\x00', 0x11b400, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x85)
madvise$auto(0x9, 0x2003f4, 0x4)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
r1 = socket(0xa, 0x801, 0x84)
r2 = getsockopt$auto(r1, 0x84, 0x10, 0x0, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x2)
open_tree_attr$auto(0xffffffffffffff9c, &(0x7f0000000240)='}[,&*}\x00', 0x5, &(0x7f0000000280)={0xa, 0x1fe, 0xd}, 0x9)
openat$auto_ftrace_formats_fops_trace_printk(0xffffffffffffff9c, 0x0, 0x109000, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/memory.kmem.tcp.limit_in_bytes\x00', 0xc2481, 0x0)
sendmsg$auto_NFC_CMD_GET_SE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYRESDEC], 0x3c}}, 0x0)
writev$auto(r3, &(0x7f0000000080)={&(0x7f0000000300)="03a00d6bb425d6b1ae98a4f9a7a074a0282de6609c5292324be125af723e17d61d0900000000000000e151546d20c6312a0940c22d9b3ff2369023126c15ddb6a526a3f13bb290aff992b657eaf33e0808e3871d8fed6f4efc59d380cb1d402c7b82dae05a5436759213a0d47e07e225e490b42f70b0db59ae2dd00b192138dad99a49d411a5b9d0b540952ccd59341171873e9a8a0a5958464f6ecc6db90d01c40ef3", 0x800000000003}, 0x0)
bpf$auto_BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000001c0)=@bpf_attr_0={0x2, 0x3, 0xfffffffd, 0xfffffff8, 0x2, r2, 0xfd2b, "cbae27bee10d41bee27a29a228064b51", 0x0, r0, 0x9, 0x7, 0x5, 0x7, 0xffffffffffffffff, r0}, 0xb548)
mmap$auto(0x3389, 0x202000b, 0x5, 0x10, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
fcntl$auto(0x8000000000000001, 0x26, 0x8)
io_uring_setup$auto(0x1, 0x0)
fcntl$auto(0x8000000000000001, 0x26, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
ioctl$auto_VHOST_SET_VRING_CALL2(0xffffffffffffffff, 0x4008af21, &(0x7f0000000000)={0xd, r3})

1m7.791565541s ago: executing program 5 (id=548):
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
statmount$auto(0x0, &(0x7f0000000500)={0x6, 0x7, 0x7, 0x0, 0x20000000, 0x6, 0x800, 0x9, 0x4, 0x2000000, 0x2, 0xf701, 0x7, 0x0, 0x2, 0x80000000, 0xa99, 0x5, 0x9, 0x2, 0x8, 0x1, 0x7, 0x5, 0x62, 0x7, 0x9, 0xc5, 0x7, 0x4, 0x3677, [0x4, 0x204b, 0x2, 0x200, 0x4, 0x1a2, 0x2, 0x0, 0x4, 0x400, 0x2, 0x216, 0x1, 0x7fffffffffffffff, 0x247ec0000000000, 0x0, 0x80000001, 0x10001, 0x2, 0x7f, 0x1, 0x3, 0x3, 0x180, 0x7, 0xe7bf, 0x6, 0x8a88, 0x2, 0x5, 0x8, 0x7, 0x6, 0x66, 0x3b, 0x3, 0x50a5, 0xffffffffffff7fff, 0x9, 0x7, 0x100000001, 0x6, 0x7fffffffffffffff]}, 0x3, 0x5)
r1 = socketcall$auto(0x8000, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae8a, &(0x7f0000000100)={0x66})

1m7.160293788s ago: executing program 5 (id=550):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/rose7/flags\x00', 0x2262, 0x0)
socket(0x11, 0x3, 0xe)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xc0803, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000280), 0x1)
r1 = clone$auto(0x20003b48, 0x2, 0x0, 0x0, 0x5)
select$auto(0x7, 0x0, &(0x7f0000000080)={[0x8, 0xc0b, 0x8, 0x5, 0x1001, 0xffffffffffffffff, 0xf, 0x1000, 0xb, 0x1, 0xced80000000000, 0x9, 0x6, 0x0, 0x1, 0x7fffffff]}, 0x0, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x5, 0xc, 0x82000000000940, 0x1ffde, 0x7, 0x4, 0x9, 0x9, 0x1, 0x2, 0x7, 0x9, 0x3979d5ff, 0x8, 0x1407, 0x5, 0x8000000007, 0x8000, 0x0, 0x0, 0x0, 0x0, 0xf3, 0x0, 0xfffffffc, 0x0, 0x4, 0x0, [0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x80000000004, 0x0, 0x0, 0x40000000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffff5, 0x1, 0x0, 0xffffffffffffffff, 0x47e, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x400000000e3a, 0x101, 0xfffffffffffffffe, 0x80000000, 0x2000000]}, 0x400, 0x9632)
r2 = socket(0x10, 0x2, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000003c0)='+&\x00', 0x273f)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='p\x00', @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x24048040}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB], 0x1ac}}, 0x40000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram5\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffffffffffe11, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200440c4}, 0x40048c5)
msgctl$auto_MSG_INFO(0x9, 0xc, &(0x7f0000000440)={{0xfffffff2, <r3=>0x0, 0xffffffffffffffff, 0x7f, 0x5, 0x4, 0x7}, &(0x7f0000000380)=0x2, &(0x7f0000000500), 0x9, 0x80, 0x7, 0x4, 0x0, 0x38, 0x0, 0x22f0, @inferred=r1, @inferred=r1})
lstat$auto(0x0, &(0x7f0000000180)={0x7, 0x3b, 0x2, 0x10009, r3, 0x0, 0x0, 0x1000000009, 0x10001, 0x3, 0x400, 0x7ffffffb, 0x5, 0x4, 0x5, 0x61, 0x104})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x1, 0x2, 0xe, 0x12, 0xffffffffffffffff, 0x5)
ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/thread-self/fail-nth\x00', 0x40, 0x0)
write$auto(r5, &(0x7f0000000200)='7\x00\\\xa0\x04|\x03\'g\t$K\xcb\x12\xfa\x00\x00\xcfk', 0xb7f)
select$auto(0x1, &(0x7f0000000040)={[0xfffffffffffff91e, 0x40, 0x4, 0x80, 0x7, 0x3, 0x80000001, 0x7c, 0x3, 0xfffffffffffffffc, 0x5, 0xb, 0x4, 0x7, 0x0, 0x6]}, &(0x7f00000000c0)={[0xffffffffffffffff, 0x4, 0x0, 0x1, 0xffffffffffffffee, 0x6, 0x7f, 0x4, 0x2, 0xc6d, 0x8, 0xffffffff, 0x1, 0x0, 0x7491, 0x40]}, 0x0, &(0x7f00000001c0)={0x9, 0x1})
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r6, &(0x7f0000000180)='7\x00\\\xa0\x04|4\x00\x00\x03\x00\x00\x00\x10\x01\x00\x00\x00\x00\x00\x00\x00\x00rRVr\xc4O\xdc1\x9b%\x10Z\'\xb9\'\xa3stC<s\xbf\xf4\xf37o\xec\f\xf4\xde\x06\xb4x\xcep|\xa1\xd5\xc3r\x8d\xe5\xda#\f\xa7-\xaf@\xc3x\xa2\"h\xec\xa0\x9ay\'\x99\xca\x9a\xa6\xda6\xb3E\xe1-\x17I!J\xf0\xb7\xc9O\xe9f\x93~\xce\x0e\x8c\xfa\xe3\x89\xca\xf5\xa2\xd2t\x84\xf8`e\x16\xf49\x9aVBa~i\xb9s\x00\x00\x00\x00\x00\x00\x00\x00\n\x04>=\x85\xc6\xf6\x13 \xeb\xff%\x11\x82\x05\xdfV\x02\xca&\xd8$<\xab&\xc8B-\xcc\x15\x04&\x13;\xfe\xbdQ\xaa\x16o\x1f\xc7\x94\xa3\xc9\x9a\xe1d\xf5\n\xe2\x88\x84\vT?\x98\xa2\x00'/206, 0x5)
fsopen$auto(0x0, 0x1)
write$auto(r0, &(0x7f0000000140)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\xfc\xb2\x00\x00\x00\x00y\x113!\x05\xa7\xd6M\xce\xd6\'\xdf@\x9f\xf5 \x8b_hw\x8em\xd0\b\xe7~1\xf5\xf8\x93*jH\x85H\x05\xae\xdf\xf0\x15A\xdb$\'\x87', 0x81)

1m6.864865661s ago: executing program 5 (id=553):
unshare$auto(0x40000080)
mmap$auto(0x800000, 0x400008, 0xdf, 0x9b74, 0x2, 0x8000)
r0 = socketpair$auto(0x7fff, 0x4, 0x1, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x402440, 0x0)
socket(0x29, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b82, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xfc7c, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40c0}, 0x48050)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f0000000140)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
sendmmsg$auto(r3, &(0x7f0000000640)={{&(0x7f0000000000), 0x5ae, &(0x7f0000000100)={&(0x7f0000000780)="4c030000000000002106000000000000e05f", 0x49}, 0x5, 0x0, 0x5, 0x1}, 0x1}, 0x0, 0x100)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = clone3$auto(&(0x7f0000000180)={0x9, 0x7, 0xa5e7, 0x10000, 0x3, 0x8000000000000000, 0x10, 0x5, 0x10003, 0x1ff, 0x5185}, 0x3ff)
prctl$auto(0x3e, 0x1, r4, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_SNDCTL_DSP_GETBLKSIZE(0xffffffffffffffff, 0xc0045004, &(0x7f0000000000))
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x448801, 0x0)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/tty22\x00', 0x101000, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/virtual/net/bpq1/speed\x00', 0x12000, 0x0)
read$auto(r5, &(0x7f0000000200)='/dev/ptyx3\x00', 0x3)

51.622147437s ago: executing program 34 (id=553):
unshare$auto(0x40000080)
mmap$auto(0x800000, 0x400008, 0xdf, 0x9b74, 0x2, 0x8000)
r0 = socketpair$auto(0x7fff, 0x4, 0x1, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x402440, 0x0)
socket(0x29, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b82, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xfc7c, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40c0}, 0x48050)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f0000000140)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
sendmmsg$auto(r3, &(0x7f0000000640)={{&(0x7f0000000000), 0x5ae, &(0x7f0000000100)={&(0x7f0000000780)="4c030000000000002106000000000000e05f", 0x49}, 0x5, 0x0, 0x5, 0x1}, 0x1}, 0x0, 0x100)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = clone3$auto(&(0x7f0000000180)={0x9, 0x7, 0xa5e7, 0x10000, 0x3, 0x8000000000000000, 0x10, 0x5, 0x10003, 0x1ff, 0x5185}, 0x3ff)
prctl$auto(0x3e, 0x1, r4, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_SNDCTL_DSP_GETBLKSIZE(0xffffffffffffffff, 0xc0045004, &(0x7f0000000000))
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x448801, 0x0)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/tty22\x00', 0x101000, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/virtual/net/bpq1/speed\x00', 0x12000, 0x0)
read$auto(r5, &(0x7f0000000200)='/dev/ptyx3\x00', 0x3)

9.392934231s ago: executing program 0 (id=715):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/oom_adj\x00', 0x8402, 0x0)
read$auto(r0, 0x0, 0x10)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
write$auto(0xca, 0x0, 0x7f)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0)
sendfile$auto(r3, r3, 0x0, 0x10000800000003)
write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xc01)
r4 = socket(0x1d, 0x2, 0x2)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r4)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r5 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
lsm_get_self_attr$auto(0x1ff, 0x0, 0x0, 0x6)
recvmmsg$auto(r1, &(0x7f0000000300)={{&(0x7f0000000100)="ef93fbf5f15d4393e6c87e3dbc83b28c30cb970e33cf1aa331bc1ed8af43e964e5d0589f26baf52063034f66575b1c30c4520e6b6fcc855d729aab1cc6c8d9739b31032f785d14ac73889347153a3a3c0181ad94df55cd46eafa3d", 0x2dba, &(0x7f0000000180)={&(0x7f0000000080)="9bc3c34ba14fc09ae5112f41f6599bf65a06bddc2c6ca3b64b63b2885020fbc61d19a5e1cd", 0xe}, 0xffffffffffffffb5, &(0x7f0000000240)="0c9da4eb5c492dd0932ca306e02e96299a5be2f9c9a24d6f2f8983041cdac85248412486cdf94ffeafa146cb9287403cec0f2d88a70ae1acaf8ceaac2da3473c43a3d852fd79ff8030c041df349c225e005868235595f47aa0587d073c87f6ac738715b5a9747bef0c66c6c1c92e77cbcd3c5bdf70cd81a30b4ba209cc4cde940e86e34377b3a87e7fdd466d917dc83aa58868ad22c816bbebdf65144615c2c0cebfd669e5835b8e43ca", 0x9e, 0x2}, 0x9}, 0x401, 0x6, &(0x7f0000000340)={0x7, 0x9})
open_by_handle_at$auto(r5, &(0x7f0000000040)={0x1, 0x2, '\v'}, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
kexec_load$auto(0x200000000007, 0x1, &(0x7f0000000040)={@kbuf=0x0, 0x2aaa, 0x6c0000c000, 0xc000}, 0x4)

8.462239805s ago: executing program 4 (id=718):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
r1 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400005, 0x100000005}})
io_uring_enter$auto(r1, 0x9, 0x820e, 0x6, 0x0, 0x18)
msgctl$auto_IPC_SET(0x0, 0x1, &(0x7f0000000340)={{0x74f6, 0xffffffffffffffff, <r2=>0x0, 0x8, 0x56a4, 0x5, 0x5}, &(0x7f0000000240)=0x5, &(0x7f0000000280)=0x3, 0x2, 0x7, 0x927, 0x6, 0x1, 0x4b, 0x7, 0x0, @inferred=0xffffffffffffffff, @raw=0xd})
r3 = getuid()
keyctl$auto_KEY_REQKEY_DEFL_NO_CHANGE(0x7, 0xffffffffffffffff, r3, r2, 0x7fff)
ioctl$auto_EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x2, 0x2, 0x1, 0x2})
r4 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmsg$auto_OVS_VPORT_CMD_GET(r4, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x0, 0x8, 0x70bd27, 0x25dfdbfe}, 0x14}}, 0x1)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xe8, 0x9, 0x2, 0x1, 0x5, 0x4, 0x15f4da0e, 0x8, 0x9, 0x100000000000000c, 0x8, 0x1, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000140)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00,\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t,\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/242, 0xfdf0, 0x39)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
getsockopt$auto_SO_RCVMARK(r5, 0x0, 0x4b, &(0x7f0000000000)='}\'.^\x00', &(0x7f00000000c0)=0x7)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/pm_test\x00', 0x20461, 0x0)
write$auto(r6, &(0x7f00000000c0)='&(--\x00', 0x8)
mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000)
r7 = socket(0x2, 0x80002, 0x73)
bind$auto(r7, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
close_range$auto(0x2, r5, 0x40000000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
mlockall$auto(0x7)

7.56187415s ago: executing program 0 (id=728):
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000d80), 0xffffffffffffffff)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram8/queue/discard_max_bytes\x00', 0x181842, 0x0)
r3 = openat$auto_proc_timers_operations_base(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendfile$auto(r2, r3, 0x0, 0x400000000008)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xcfk', 0x84)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xdcfaeb3549df84fd, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x0)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000001c0), 0xffffffffffffffff)
mount$auto(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='nfs\x00', 0x1, &(0x7f0000000200)="5ff3bc7ccab26f1ae87ca684854080ffb1501c97219217af198c6b3306008e30aef8d8ee5ce60ae7097b5a9265c9ec27a12588e8d9eee2d0751bb5192376382ab9cddc5d2ea2b33603cad95a3783861f65165d7ec5dccdf2aca850329ee18f93d07e683d2ba2")
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x81)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r5, 0x4068aea3, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8080000001)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)

6.929775864s ago: executing program 2 (id=720):
r0 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/irq/2/name\x00', 0x800, 0x0)
read$auto(r3, 0x0, 0x1)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x9, 0x1f, 0x940, 0x1ffde, 0x3, 0x6, 0x8000003, 0x9, 0x5, 0x0, 0x4, 0xb0, 0x7, 0x200, 0x3, 0x205, 0x7, 0x0, 0x3ffff, 0x0, 0x3, 0x7069, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x8, 0x5, 0x8000004, 0x0, 0x100000000000000, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x1, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x100000000, 0x0, 0x8000000000000001, 0x0, 0x1, 0x0, 0x5, 0xfff, 0x4, 0x0, 0x0, 0x2000000000000000]}, 0x203, 0x7d)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r4 = socket(0x10, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000000), r5)
sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(r5, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000480)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB], 0x20}, 0x1, 0x3000700, 0x0, 0x1}, 0x8010)
sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(r4, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="c4000000", @ANYRES64=r2, @ANYBLOB="000227bd7000ffdbdf2502000000060001000f0000000600010081000000"], 0x24}}, 0x4000000)
sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000500)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS0\x00', 0x86300, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_NLBL_MGMT_C_LISTALL(r4, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)=ANY=[@ANYBLOB="1467d2b5026beecc150ecbde8ab9befdfc6b6c895a0f182797e45cbce3c66b05ef093f8a2dcf3fad468f3afccaf03603426db212", @ANYRES16=0x0, @ANYBLOB="010025bd7000ffdbdf25030000000800030008000000100001005c5e215b7d252a212d"], 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8c0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1600004f72324a00", @ANYRES16=r2, @ANYBLOB="01002cbd7000fedbdf250400000008000c0002000000"], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/ptys7\x00', 0x60c00, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x4000003a, r5, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x22b42, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x0, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000240)="270824707f051f779d0e12539b315ab8178c889b65d4cbd59fd8467025a91e3dd934ae8148e18b2665ec03caca86ff8da1f297b7d9be4d084e25db1ab029147c31193e4a0575dc0bdece58bda5996994961bca6d82d6813fc56636b58c8c42a57b868ba1cbbac974130a42e733041ec0085d2fd64b085aecdac0f4788aa52147324e61e337289243e573918f0589fba2acb24173c469b21a6aba898aa4405bec9a8d74dbc460066ad7da3163ba6137d6856b09039c8c886ada39b3991d4023ae4b0beca8cea1c265c3e941803b", 0xcd)

6.616635216s ago: executing program 2 (id=722):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/rose7/flags\x00', 0x2262, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xc0803, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000280), 0x1)
r1 = clone$auto(0x20003b48, 0x2, 0x0, 0x0, 0x5)
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000040)='/dev/media1\x00', 0x30001, 0x0)
select$auto(0x7, 0x0, &(0x7f0000000080)={[0x8, 0xc0b, 0x8, 0x5, 0x1001, 0xffffffffffffffff, 0xf, 0x1000, 0xb, 0x1, 0xced80000000000, 0x9, 0x6, 0x0, 0x1, 0x7fffffff]}, 0x0, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x5, 0xc, 0x82000000000940, 0x1ffde, 0x7, 0x4, 0x9, 0x9, 0x1, 0x2, 0x7, 0x9, 0x3979d5ff, 0x8, 0x1407, 0x5, 0x8000000007, 0x8000, 0x0, 0x0, 0x0, 0x0, 0xf3, 0x0, 0xfffffffc, 0x0, 0x4, 0x0, [0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x80000000004, 0x0, 0x0, 0x40000000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffff5, 0x1, 0x0, 0xffffffffffffffff, 0x47e, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x400000000e3a, 0x101, 0xfffffffffffffffe, 0x80000000, 0x2000000]}, 0x400, 0x9632)
r2 = socket(0x10, 0x2, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000003c0)='+&\x00', 0x273f)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='p\x00', @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x24048040}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB], 0x1ac}}, 0x40000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram5\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffffffffffe11, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200440c4}, 0x40048c5)
msgctl$auto_MSG_INFO(0x9, 0xc, &(0x7f0000000440)={{0xfffffff2, <r3=>0x0, 0xffffffffffffffff, 0x7f, 0x5, 0x4, 0x7}, &(0x7f0000000380)=0x2, &(0x7f0000000500), 0x9, 0x80, 0x7, 0x4, 0x0, 0x38, 0x0, 0x22f0, @inferred=r1, @inferred=r1})
lstat$auto(0x0, &(0x7f0000000180)={0x7, 0x3b, 0x2, 0x10009, r3, 0x0, 0x0, 0x1000000009, 0x10001, 0x3, 0x400, 0x7ffffffb, 0x5, 0x4, 0x5, 0x61, 0x104})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x1, 0x2, 0xe, 0x12, 0xffffffffffffffff, 0x5)
ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/thread-self/fail-nth\x00', 0x40, 0x0)
write$auto(r5, &(0x7f0000000200)='7\x00\\\xa0\x04|\x03\'g\t$K\xcb\x12\xfa\x00\x00\xcfk', 0xb7f)
select$auto(0x1, &(0x7f0000000040)={[0xfffffffffffff91e, 0x40, 0x4, 0x80, 0x7, 0x3, 0x80000001, 0x7c, 0x3, 0xfffffffffffffffc, 0x5, 0xb, 0x4, 0x7, 0x0, 0x6]}, &(0x7f00000000c0)={[0xffffffffffffffff, 0x4, 0x0, 0x1, 0xffffffffffffffee, 0x6, 0x7f, 0x4, 0x2, 0xc6d, 0x8, 0xffffffff, 0x1, 0x0, 0x7491, 0x40]}, 0x0, &(0x7f00000001c0)={0x9, 0x1})
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r6, &(0x7f0000000180)='7\x00\\\xa0\x04|4\x00\x00\x03\x00\x00\x00\x10\x01\x00\x00\x00\x00\x00\x00\x00\x00rRVr\xc4O\xdc1\x9b%\x10Z\'\xb9\'\xa3stC<s\xbf\xf4\xf37o\xec\f\xf4\xde\x06\xb4x\xcep|\xa1\xd5\xc3r\x8d\xe5\xda#\f\xa7-\xaf@\xc3x\xa2\"h\xec\xa0\x9ay\'\x99\xca\x9a\xa6\xda6\xb3E\xe1-\x17I!J\xf0\xb7\xc9O\xe9f\x93~\xce\x0e\x8c\xfa\xe3\x89\xca\xf5\xa2\xd2t\x84\xf8`e\x16\xf49\x9aVBa~i\xb9s\x00\x00\x00\x00\x00\x00\x00\x00\n\x04>=\x85\xc6\xf6\x13 \xeb\xff%\x11\x82\x05\xdfV\x02\xca&\xd8$<\xab&\xc8B-\xcc\x15\x04&\x13;\xfe\xbdQ\xaa\x16o\x1f\xc7\x94\xa3\xc9\x9a\xe1d\xf5\n\xe2\x88\x84\vT?\x98\xa2\x00'/206, 0x5)
fsopen$auto(0x0, 0x1)
write$auto(r0, &(0x7f0000000140)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\xfc\xb2\x00\x00\x00\x00y\x113!\x05\xa7\xd6M\xce\xd6\'\xdf@\x9f\xf5 \x8b_hw\x8em\xd0\b\xe7~1\xf5\xf8\x93*jH\x85H\x05\xae\xdf\xf0\x15A\xdb$\'\x87', 0x81)

5.982566111s ago: executing program 2 (id=724):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
r1 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400005, 0x100000005}})
io_uring_enter$auto(r1, 0x9, 0x820e, 0x6, 0x0, 0x18)
msgctl$auto_IPC_SET(0x0, 0x1, &(0x7f0000000340)={{0x74f6, 0xffffffffffffffff, <r2=>0x0, 0x8, 0x56a4, 0x5, 0x5}, &(0x7f0000000240)=0x5, &(0x7f0000000280)=0x3, 0x2, 0x7, 0x927, 0x6, 0x1, 0x4b, 0x7, 0x0, @inferred=0xffffffffffffffff, @raw=0xd})
r3 = getuid()
keyctl$auto_KEY_REQKEY_DEFL_NO_CHANGE(0x7, 0xffffffffffffffff, r3, r2, 0x7fff)
ioctl$auto_EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x2, 0x2, 0x1, 0x2})
r4 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmsg$auto_OVS_VPORT_CMD_GET(r4, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x0, 0x8, 0x70bd27, 0x25dfdbfe}, 0x14}}, 0x1)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xe8, 0x9, 0x2, 0x1, 0x5, 0x4, 0x15f4da0e, 0x8, 0x9, 0x100000000000000c, 0x8, 0x1, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000140)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00,\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t,\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/242, 0xfdf0, 0x39)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
getsockopt$auto_SO_RCVMARK(r5, 0x0, 0x4b, &(0x7f0000000000)='}\'.^\x00', &(0x7f00000000c0)=0x7)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/pm_test\x00', 0x20461, 0x0)
write$auto(r6, &(0x7f00000000c0)='&(--\x00', 0x8)
mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000)
r7 = socket(0x2, 0x80002, 0x73)
bind$auto(r7, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
close_range$auto(0x2, r5, 0x40000000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
mlockall$auto(0x7)

5.701898981s ago: executing program 4 (id=725):
semctl$auto(0x8, 0x1, 0x6, 0xff)
r0 = openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
socket(0x11, 0x4, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/fail-nth\x00', 0x40080, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0xc0402, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0x40103d0b, 0x0)
write$auto(0x3, 0x0, 0x100082)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x212000, 0x0)
r4 = openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
io_uring_setup$auto(0x80, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0)
mmap$auto(0x1, 0x400005, 0x800000000000df, 0x8000000000000014, 0x2, 0x4000000008000)
unshare$auto(0x400)
select$auto(0xd, 0x0, 0x0, 0x0, 0x0)
r5 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x180b01, 0x0)
ioctl$auto_SNAPSHOT_UNFREEZE(r5, 0x3302, 0x0)
clock_settime$auto(0x6, 0x0)
madvise$auto(0x110c230000, 0x1fffffe, 0x9)
pwritev$auto(r4, &(0x7f0000001000)={0x0, 0x8}, 0x4, 0x3, 0x9)
ioctl$auto(r3, 0x5608, 0x1)
ioctl$auto(r0, 0x5270, r4)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x9, 0x400008, 0x2, 0x10009372, 0x2, 0x8b)
socket(0x1e, 0x1, 0x0)
io_uring_setup$auto(0x1, 0x0)

5.628288442s ago: executing program 0 (id=726):
semctl$auto(0x8, 0x1, 0x6, 0xff)
r0 = openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
socket(0x11, 0x4, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/fail-nth\x00', 0x40080, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0xc0402, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0x40103d0b, 0x0)
write$auto(0x3, 0x0, 0x100082)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x212000, 0x0)
r4 = openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
io_uring_setup$auto(0x80, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0)
mmap$auto(0x1, 0x400005, 0x800000000000df, 0x8000000000000014, 0x2, 0x4000000008000)
unshare$auto(0x400)
select$auto(0xd, 0x0, 0x0, 0x0, 0x0)
r5 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x180b01, 0x0)
ioctl$auto_SNAPSHOT_UNFREEZE(r5, 0x3302, 0x0)
clock_settime$auto(0x6, 0x0)
madvise$auto(0x110c230000, 0x1fffffe, 0x9)
pwritev$auto(r4, &(0x7f0000001000)={0x0, 0x8}, 0x4, 0x3, 0x9)
ioctl$auto(r3, 0x5608, 0x1)
ioctl$auto(r0, 0x5270, r4)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x9, 0x400008, 0x2, 0x10009372, 0x2, 0x8b)
socket(0x1e, 0x1, 0x0)
io_uring_setup$auto(0x1, 0x0)

5.254783867s ago: executing program 6 (id=727):
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0x8)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x25, 0x5, 0x2)
socket(0x848000000015, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
statmount$auto(&(0x7f00000000c0)={0x8059, @inferred=r0, 0x2, 0x8000000000000000, 0x35ba}, &(0x7f0000000500)={0x6, 0x7, 0x7, 0x0, 0x20000000, 0x6, 0x800, 0x9, 0x4, 0x2000000, 0x2, 0xf701, 0x7, 0x0, 0x2, 0x80000000, 0xa99, 0x5, 0x9, 0x2, 0x8, 0x1, 0x7, 0x5, 0x62, 0x7, 0x9, 0xc5, 0x7, 0x4, 0x3677, [0x4, 0x204b, 0x2, 0x200, 0x4, 0x1a2, 0x2, 0x0, 0x4, 0x400, 0x2, 0x216, 0x1, 0x7fffffffffffffff, 0x247ec0000000000, 0x0, 0x80000001, 0x10001, 0x2, 0x7f, 0x1, 0x3, 0x3, 0x180, 0x7, 0xe7bf, 0x6, 0x8a88, 0x2, 0x5, 0x8, 0x7, 0x6, 0x66, 0x3b, 0x3, 0x50a5, 0xffffffffffff7fff, 0x9, 0x7, 0x100000001, 0x6, 0x7fffffffffffffff], "dea07cf503f7d5c1b5ba920b5537c230c4b7fbda2352a4fff095a2b06eb3ce55b9831c27a91f39ae41f39b1beac686c3acc041b2d2ab7894a89b7854de778eecdbdf459f6cacdba74793109dc022da45914d04aebf93c003409f3218a555508d1b557bc9f009974f928aac27ffb3555116ff21f1b6804e1f0777a0d983693b183fc686e88a45574d983a6926459a82f57ae9f3405e75e6b8b8d4881a0df2b9df83a214fc673a71dd063a784861467742685e4c3af37274000498864329cd7aa1a93c0ba7d5621add5ade08995cc5b2db17effc5c77468f618f7a88010c304d28529b"}, 0x3, 0x5)
r2 = socketcall$auto(0x8000, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae8a, &(0x7f0000000100)={0x66})

4.143957429s ago: executing program 6 (id=729):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x1, 0x106)
migrate_pages$auto(0x0, 0x99, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x106)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/rxrpc/calls\x00', 0x40280, 0x0)
r1 = socket(0x1d, 0x2, 0x6)
bind$auto(r1, 0x0, 0x13)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000c00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$auto_BATADV_CMD_GET_VLAN(r2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40801}, 0x4008090)
socket(0xa, 0x3, 0x100)
writev$auto(r0, 0x0, 0x2)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x7, 0x637b, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_generic(0xffffffffffffff9c, 0x0, 0x80900, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self/net/rt_cache\x00', 0x2000, 0x0)
select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0x1800000, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x400, 0x40000000000003, 0x462, 0x80000001, 0x50a7, 0x6d3f, 0x5, 0x1, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x1, 0x948f, 0x1005, 0x20a, 0x6, 0xfffffffffffffff6, 0x7, 0x9, 0x79c, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0x400000000000f]}, 0x0)

4.104942309s ago: executing program 0 (id=730):
mmap$auto(0x0, 0x40000c, 0x45bd, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
select$auto(0x9, 0x0, 0x0, &(0x7f0000000040)={[0xfffffffffffffffd, 0x0, 0xa, 0x40007fff, 0x948b, 0x3, 0x15f4da0a, 0x511, 0x20000000000003, 0x8000402, 0x3, 0x20000007, 0x2, 0x93, 0x400000001, 0x20002]}, 0x0)
r0 = getpid()
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
fanotify_init$auto(0x81, 0x7)
r2 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000002dc0), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_DEL(r1, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bde300fb7f002503000000040002000800012f0600000004bf91591fb45d1565f13d01d8341a45aabc2ade90cf9d4f1b0b206684390a5b5ea2fecead713f8b437d6250c290524d992a8efcb28c27af1691baf40c2bd5ee07a0b6b3c3dfa7812182d0667f680e35c72cd3e7cfd008bf10253d8b1683ab44ead226e550e635eec82292"], 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x0)
mmap$auto(0x0, 0x2020009, 0xffffffffffffffff, 0xeb2, 0xfffffffffffffffb, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x100, 0x0)
ioctl$auto(r3, 0x4b46, 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x2, 0x0)
statmount$auto(0x0, 0x0, 0x8, 0xd)
openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x101b00, 0x0)
open(&(0x7f0000000040)='.\x00', 0x100, 0x161)
socket(0xa, 0x3, 0x3a)
ioctl$auto(0x1, 0x8941, 0x8)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)

3.483958067s ago: executing program 4 (id=731):
r0 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/irq/2/name\x00', 0x800, 0x0)
read$auto(r3, 0x0, 0x1)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x9, 0x1f, 0x940, 0x1ffde, 0x3, 0x6, 0x8000003, 0x9, 0x5, 0x0, 0x4, 0xb0, 0x7, 0x200, 0x3, 0x205, 0x7, 0x0, 0x3ffff, 0x0, 0x3, 0x7069, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x8, 0x5, 0x8000004, 0x0, 0x100000000000000, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x1, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x100000000, 0x0, 0x8000000000000001, 0x0, 0x1, 0x0, 0x5, 0xfff, 0x4, 0x0, 0x0, 0x2000000000000000]}, 0x203, 0x7d)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r4 = socket(0x10, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000000), r5)
sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(r5, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000480)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB], 0x20}, 0x1, 0x3000700, 0x0, 0x1}, 0x8010)
sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(r4, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="c4000000", @ANYRES64=r2, @ANYBLOB="000227bd7000ffdbdf2502000000060001000f0000000600010081000000"], 0x24}}, 0x4000000)
sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000500)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS0\x00', 0x86300, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_NLBL_MGMT_C_LISTALL(r4, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)=ANY=[@ANYBLOB="1467d2b5026beecc150ecbde8ab9befdfc6b6c895a0f182797e45cbce3c66b05ef093f8a2dcf3fad468f3afccaf03603426db212", @ANYRES16=0x0, @ANYBLOB="010025bd7000ffdbdf25030000000800030008000000100001005c5e215b7d252a212d"], 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8c0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1600004f72324a00", @ANYRES16=r2, @ANYBLOB="01002cbd7000fedbdf250400000008000c0002000000"], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/ptys7\x00', 0x60c00, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x4000003a, r5, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x22b42, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x0, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000240)="270824707f051f779d0e12539b315ab8178c889b65d4cbd59fd8467025a91e3dd934ae8148e18b2665ec03caca86ff8da1f297b7d9be4d084e25db1ab029147c31193e4a0575dc0bdece58bda5996994961bca6d82d6813fc56636b58c8c42a57b868ba1cbbac974130a42e733041ec0085d2fd64b085aecdac0f4788aa52147324e61e337289243e573918f0589fba2acb24173c469b21a6aba898aa4405bec9a8d74dbc460066ad7da3163ba6137d6856b09039c8c886ada39b3991d4023ae4b0beca8cea1c265c3e941803b", 0xcd)

3.171577131s ago: executing program 6 (id=732):
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0x8)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x25, 0x5, 0x2)
r0 = socket(0x848000000015, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000240)=@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x23}}, 0x6b)
connect$auto(0x3, &(0x7f00000002c0)=@generic={0xa, "5457c29004e0b991da88f70ef61b"}, 0x55)
sendmsg$auto_NL80211_CMD_GET_MPATH(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x100000)
r1 = socket(0x2, 0x801, 0x106)
getsockopt$auto(r1, 0x11c, 0x3616, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socketcall$auto(0x8000, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_GET_MSRS(r2, 0x4008ae8a, &(0x7f0000000100)={0x66})

3.107338152s ago: executing program 4 (id=733):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/rose7/flags\x00', 0x2262, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xc0803, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000280), 0x1)
r1 = clone$auto(0x20003b48, 0x2, 0x0, 0x0, 0x5)
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000040)='/dev/media1\x00', 0x30001, 0x0)
select$auto(0x7, 0x0, &(0x7f0000000080)={[0x8, 0xc0b, 0x8, 0x5, 0x1001, 0xffffffffffffffff, 0xf, 0x1000, 0xb, 0x1, 0xced80000000000, 0x9, 0x6, 0x0, 0x1, 0x7fffffff]}, 0x0, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x5, 0xc, 0x82000000000940, 0x1ffde, 0x7, 0x4, 0x9, 0x9, 0x1, 0x2, 0x7, 0x9, 0x3979d5ff, 0x8, 0x1407, 0x5, 0x8000000007, 0x8000, 0x0, 0x0, 0x0, 0x0, 0xf3, 0x0, 0xfffffffc, 0x0, 0x4, 0x0, [0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x80000000004, 0x0, 0x0, 0x40000000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffff5, 0x1, 0x0, 0xffffffffffffffff, 0x47e, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x400000000e3a, 0x101, 0xfffffffffffffffe, 0x80000000, 0x2000000]}, 0x400, 0x9632)
r2 = socket(0x10, 0x2, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000003c0)='+&\x00', 0x273f)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='p\x00', @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x24048040}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB], 0x1ac}}, 0x40000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram5\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffffffffffe11, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200440c4}, 0x40048c5)
msgctl$auto_MSG_INFO(0x9, 0xc, &(0x7f0000000440)={{0xfffffff2, <r3=>0x0, 0xffffffffffffffff, 0x7f, 0x5, 0x4, 0x7}, &(0x7f0000000380)=0x2, &(0x7f0000000500), 0x9, 0x80, 0x7, 0x4, 0x0, 0x38, 0x0, 0x22f0, @inferred=r1, @inferred=r1})
lstat$auto(0x0, &(0x7f0000000180)={0x7, 0x3b, 0x2, 0x10009, r3, 0x0, 0x0, 0x1000000009, 0x10001, 0x3, 0x400, 0x7ffffffb, 0x5, 0x4, 0x5, 0x61, 0x104})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x1, 0x2, 0xe, 0x12, 0xffffffffffffffff, 0x5)
ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/thread-self/fail-nth\x00', 0x40, 0x0)
write$auto(r5, &(0x7f0000000200)='7\x00\\\xa0\x04|\x03\'g\t$K\xcb\x12\xfa\x00\x00\xcfk', 0xb7f)
select$auto(0x1, &(0x7f0000000040)={[0xfffffffffffff91e, 0x40, 0x4, 0x80, 0x7, 0x3, 0x80000001, 0x7c, 0x3, 0xfffffffffffffffc, 0x5, 0xb, 0x4, 0x7, 0x0, 0x6]}, &(0x7f00000000c0)={[0xffffffffffffffff, 0x4, 0x0, 0x1, 0xffffffffffffffee, 0x6, 0x7f, 0x4, 0x2, 0xc6d, 0x8, 0xffffffff, 0x1, 0x0, 0x7491, 0x40]}, 0x0, &(0x7f00000001c0)={0x9, 0x1})
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r6, &(0x7f0000000180)='7\x00\\\xa0\x04|4\x00\x00\x03\x00\x00\x00\x10\x01\x00\x00\x00\x00\x00\x00\x00\x00rRVr\xc4O\xdc1\x9b%\x10Z\'\xb9\'\xa3stC<s\xbf\xf4\xf37o\xec\f\xf4\xde\x06\xb4x\xcep|\xa1\xd5\xc3r\x8d\xe5\xda#\f\xa7-\xaf@\xc3x\xa2\"h\xec\xa0\x9ay\'\x99\xca\x9a\xa6\xda6\xb3E\xe1-\x17I!J\xf0\xb7\xc9O\xe9f\x93~\xce\x0e\x8c\xfa\xe3\x89\xca\xf5\xa2\xd2t\x84\xf8`e\x16\xf49\x9aVBa~i\xb9s\x00\x00\x00\x00\x00\x00\x00\x00\n\x04>=\x85\xc6\xf6\x13 \xeb\xff%\x11\x82\x05\xdfV\x02\xca&\xd8$<\xab&\xc8B-\xcc\x15\x04&\x13;\xfe\xbdQ\xaa\x16o\x1f\xc7\x94\xa3\xc9\x9a\xe1d\xf5\n\xe2\x88\x84\vT?\x98\xa2\x00'/206, 0x5)
fsopen$auto(0x0, 0x1)
write$auto(r0, &(0x7f0000000140)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\xfc\xb2\x00\x00\x00\x00y\x113!\x05\xa7\xd6M\xce\xd6\'\xdf@\x9f\xf5 \x8b_hw\x8em\xd0\b\xe7~1\xf5\xf8\x93*jH\x85H\x05\xae\xdf\xf0\x15A\xdb$\'\x87', 0x81)

3.007629719s ago: executing program 0 (id=734):
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0x8)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x25, 0x5, 0x2)
r0 = socket(0x848000000015, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000240)=@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x23}}, 0x6b)
connect$auto(0x3, &(0x7f00000002c0)=@generic={0xa, "5457c29004e0b991da88f70ef61b"}, 0x55)
sendmsg$auto_NL80211_CMD_GET_MPATH(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x100000)
r1 = socket(0x2, 0x801, 0x106)
getsockopt$auto(r1, 0x11c, 0x3616, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
statmount$auto(&(0x7f00000000c0)={0x8059, @inferred=r2, 0x2, 0x8000000000000000, 0x35ba}, &(0x7f0000000500)={0x6, 0x7, 0x7, 0x0, 0x20000000, 0x6, 0x800, 0x9, 0x4, 0x2000000, 0x2, 0xf701, 0x7, 0x0, 0x2, 0x80000000, 0xa99, 0x5, 0x9, 0x2, 0x8, 0x1, 0x7, 0x5, 0x62, 0x7, 0x9, 0xc5, 0x7, 0x4, 0x3677, [0x4, 0x204b, 0x2, 0x200, 0x4, 0x1a2, 0x2, 0x0, 0x4, 0x400, 0x2, 0x216, 0x1, 0x7fffffffffffffff, 0x247ec0000000000, 0x0, 0x80000001, 0x10001, 0x2, 0x7f, 0x1, 0x3, 0x3, 0x180, 0x7, 0xe7bf, 0x6, 0x8a88, 0x2, 0x5, 0x8, 0x7, 0x6, 0x66, 0x3b, 0x3, 0x50a5, 0xffffffffffff7fff, 0x9, 0x7, 0x100000001, 0x6, 0x7fffffffffffffff], "dea07cf503f7d5c1b5ba920b5537c230c4b7fbda2352a4fff095a2b06eb3ce55b9831c27a91f39ae41f39b1beac686c3acc041b2d2ab7894a89b7854de778eecdbdf459f6cacdba74793109dc022da45914d04aebf93c003409f3218a555508d1b557bc9f009974f928aac27ffb3555116ff21f1b6804e1f0777a0d983693b183fc686e88a45574d983a6926459a82f57ae9f3405e75e6b8b8d4881a0df2b9df83a214fc673a71dd063a784861467742685e4c3af37274000498864329cd7aa1a93c0ba7d5621add5ade08995cc5b2db17effc5c77468f618f7a88010c304d28529b"}, 0x3, 0x5)
r3 = socketcall$auto(0x8000, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0x4008ae8a, &(0x7f0000000100)={0x66})

2.965164764s ago: executing program 2 (id=735):
semctl$auto(0x8, 0x1, 0x6, 0xff)
r0 = openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
socket(0x11, 0x4, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/fail-nth\x00', 0x40080, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0xc0402, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0x40103d0b, 0x0)
write$auto(0x3, 0x0, 0x100082)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x212000, 0x0)
r4 = openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
io_uring_setup$auto(0x80, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0)
mmap$auto(0x1, 0x400005, 0x800000000000df, 0x8000000000000014, 0x2, 0x4000000008000)
unshare$auto(0x400)
select$auto(0xd, 0x0, 0x0, 0x0, 0x0)
r5 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
ioctl$auto_SNAPSHOT_UNFREEZE(r5, 0x3302, 0x0)
clock_settime$auto(0x6, 0x0)
madvise$auto(0x110c230000, 0x1fffffe, 0x9)
pwritev$auto(r4, 0x0, 0x4, 0x3, 0x9)
ioctl$auto(r3, 0x5608, 0x1)
ioctl$auto(r0, 0x5270, r4)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x9, 0x400008, 0x2, 0x10009372, 0x2, 0x8b)
socket(0x1e, 0x1, 0x0)
io_uring_setup$auto(0x1, 0x0)

2.662055268s ago: executing program 4 (id=736):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x82802, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_SG_SET_TIMEOUT2(r0, 0x2201, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
write$auto(0x3, 0x0, 0x100082)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r2, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000000000)={0x14, r3, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4050}, 0x4)

1.569452244s ago: executing program 6 (id=737):
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0x8)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x25, 0x5, 0x2)
r0 = socket(0x848000000015, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000240)=@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x23}}, 0x6b)
connect$auto(0x3, &(0x7f00000002c0)=@generic={0xa, "5457c29004e0b991da88f70ef61b"}, 0x55)
sendmsg$auto_NL80211_CMD_GET_MPATH(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x100000)
r1 = socket(0x2, 0x801, 0x106)
getsockopt$auto(r1, 0x11c, 0x3616, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
statmount$auto(&(0x7f00000000c0)={0x8059, @inferred, 0x2, 0x8000000000000000, 0x35ba}, &(0x7f0000000500)={0x6, 0x7, 0x7, 0x0, 0x20000000, 0x6, 0x800, 0x9, 0x4, 0x2000000, 0x2, 0xf701, 0x7, 0x0, 0x2, 0x80000000, 0xa99, 0x5, 0x9, 0x2, 0x8, 0x1, 0x7, 0x5, 0x62, 0x7, 0x9, 0xc5, 0x7, 0x4, 0x3677, [0x4, 0x204b, 0x2, 0x200, 0x4, 0x1a2, 0x2, 0x0, 0x4, 0x400, 0x2, 0x216, 0x1, 0x7fffffffffffffff, 0x247ec0000000000, 0x0, 0x80000001, 0x10001, 0x2, 0x7f, 0x1, 0x3, 0x3, 0x180, 0x7, 0xe7bf, 0x6, 0x8a88, 0x2, 0x5, 0x8, 0x7, 0x6, 0x66, 0x3b, 0x3, 0x50a5, 0xffffffffffff7fff, 0x9, 0x7, 0x100000001, 0x6, 0x7fffffffffffffff], "dea07cf503f7d5c1b5ba920b5537c230c4b7fbda2352a4fff095a2b06eb3ce55b9831c27a91f39ae41f39b1beac686c3acc041b2d2ab7894a89b7854de778eecdbdf459f6cacdba74793109dc022da45914d04aebf93c003409f3218a555508d1b557bc9f009974f928aac27ffb3555116ff21f1b6804e1f0777a0d983693b183fc686e88a45574d983a6926459a82f57ae9f3405e75e6b8b8d4881a0df2b9df83a214fc673a71dd063a784861467742685e4c3af37274000498864329cd7aa1a93c0ba7d5621add5ade08995cc5b2db17effc5c77468f618f7a88010c304d28529b"}, 0x3, 0x5)
r3 = socketcall$auto(0x8000, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_GET_MSRS(r2, 0x4008ae8a, &(0x7f0000000100)={0x66})

1.567261104s ago: executing program 4 (id=745):
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x80011, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000840)="fda203ba", 0x4)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000d80), 0xffffffffffffffff)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
ioctl$auto_BLKALIGNOFF(r1, 0x127a, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800)
sendmsg$auto_NL80211_CMD_GET_MPATH(r3, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x41815}, 0x44808)
close_range$auto(0x2, 0x8, 0x0)
r4 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="100000000214af"], 0x14}, 0x1, 0x0, 0x0, 0x20000045}, 0x24000044)
write$auto(r4, &(0x7f0000000100)='\x00', 0xfffffffffffffffa)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.7/usb8/remove\x00', 0xa001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2)
madvise$auto(0x110c230000, 0x8031ca, 0x9)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
bpf$auto(0x7fffffe, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x5, 0x9, 0x3, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0xe2, 0x4, 0xd}, 0x0)
r6 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r6, 0x0, 0x24000000)
write$auto(r7, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

1.478959617s ago: executing program 0 (id=738):
r0 = socket(0xb, 0x80000, 0x400003)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r1 = socket(0x2, 0x2, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendfile$auto(r0, r1, 0x0, 0xfffffffffffffffa)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, &(0x7f0000001480)='/proc/thread-self/gid_map\x00', 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/rpc/nfsd.fh/channel\x00', 0x8f3b7a51b8063981, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000040)=' \\x', 0x3)
mmap$auto(0x0, 0x20009, 0x8, 0x1d, 0x40000000000a5, 0x8000)
r4 = socket(0x29, 0x6, 0x1)
socketpair$auto(0xfffffffe, 0x1, 0x8000000000000000, 0x0)
ioctl$auto(r4, 0x89a0, 0x4)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
unshare$auto(0x40000080)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0)
sendto$auto(0x3, 0x0, 0x100000000, 0x40000008, 0x0, 0x19)

763.883025ms ago: executing program 6 (id=739):
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0x8)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x25, 0x5, 0x2)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
statmount$auto(&(0x7f00000000c0)={0x8059, @inferred=r0, 0x2, 0x8000000000000000, 0x35ba}, &(0x7f0000000500)={0x6, 0x7, 0x7, 0x0, 0x20000000, 0x6, 0x800, 0x9, 0x4, 0x2000000, 0x2, 0xf701, 0x7, 0x0, 0x2, 0x80000000, 0xa99, 0x5, 0x9, 0x2, 0x8, 0x1, 0x7, 0x5, 0x62, 0x7, 0x9, 0xc5, 0x7, 0x4, 0x3677, [0x4, 0x204b, 0x2, 0x200, 0x4, 0x1a2, 0x2, 0x0, 0x4, 0x400, 0x2, 0x216, 0x1, 0x7fffffffffffffff, 0x247ec0000000000, 0x0, 0x80000001, 0x10001, 0x2, 0x7f, 0x1, 0x3, 0x3, 0x180, 0x7, 0xe7bf, 0x6, 0x8a88, 0x2, 0x5, 0x8, 0x7, 0x6, 0x66, 0x3b, 0x3, 0x50a5, 0xffffffffffff7fff, 0x9, 0x7, 0x100000001, 0x6, 0x7fffffffffffffff], "dea07cf503f7d5c1b5ba920b5537c230c4b7fbda2352a4fff095a2b06eb3ce55b9831c27a91f39ae41f39b1beac686c3acc041b2d2ab7894a89b7854de778eecdbdf459f6cacdba74793109dc022da45914d04aebf93c003409f3218a555508d1b557bc9f009974f928aac27ffb3555116ff21f1b6804e1f0777a0d983693b183fc686e88a45574d983a6926459a82f57ae9f3405e75e6b8b8d4881a0df2b9df83a214fc673a71dd063a784861467742685e4c3af37274000498864329cd7aa1a93c0ba7d5621add5ade08995cc5b2db17effc5c77468f618f7a88010c304d28529b"}, 0x3, 0x5)
r2 = socketcall$auto(0x8000, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae8a, &(0x7f0000000100)={0x66})

548.215707ms ago: executing program 2 (id=740):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x2000000000043, 0x0)
r0 = fsopen$auto(0x0, 0x1)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
writev$auto(0x8, &(0x7f0000000040)={&(0x7f0000000000), 0x2000000000001}, 0xabc)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x800, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000100)=""/16, 0x10)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
r2 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3d}}, 0x6a)
listen$auto(0x3, 0x81)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x128}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x4, 0x8000)
r3 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
ioctl$auto_EVIOCGMASK(r3, 0x80104592, &(0x7f0000000180)={0x86f, 0x7})
mmap$auto(0x0, 0x8, 0x72, 0x8b72, 0x8f1, 0x8000)
socket(0x2, 0x5, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
bpf$auto(0x5, 0x0, 0x504)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/nbd11/queue/iostats_passthrough\x00', 0x2a001, 0x0)
write$auto(r4, &(0x7f0000000040)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
close_range$auto(0x2, 0xa, 0x0)

37.904275ms ago: executing program 2 (id=741):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x1, 0x106)
migrate_pages$auto(0x0, 0x99, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x106)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/rxrpc/calls\x00', 0x40280, 0x0)
r1 = socket(0x1d, 0x2, 0x6)
bind$auto(r1, 0x0, 0x13)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000c00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$auto_BATADV_CMD_GET_VLAN(r2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40801}, 0x4008090)
socket(0xa, 0x3, 0x100)
writev$auto(r0, 0x0, 0x2)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x7, 0x637b, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_generic(0xffffffffffffff9c, 0x0, 0x80900, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self/net/rt_cache\x00', 0x2000, 0x0)
select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0x1800000, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x400, 0x40000000000003, 0x462, 0x80000001, 0x50a7, 0x6d3f, 0x5, 0x1, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x1, 0x948f, 0x1005, 0x20a, 0x6, 0xfffffffffffffff6, 0x7, 0x9, 0x79c, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0x400000000000f]}, 0x0)

0s ago: executing program 6 (id=742):
r0 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/irq/2/name\x00', 0x800, 0x0)
read$auto(r3, 0x0, 0x1)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x9, 0x1f, 0x940, 0x1ffde, 0x3, 0x6, 0x8000003, 0x9, 0x5, 0x0, 0x4, 0xb0, 0x7, 0x200, 0x3, 0x205, 0x7, 0x0, 0x3ffff, 0x0, 0x3, 0x7069, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x8, 0x5, 0x8000004, 0x0, 0x100000000000000, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x1, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x100000000, 0x0, 0x8000000000000001, 0x0, 0x1, 0x0, 0x5, 0xfff, 0x4, 0x0, 0x0, 0x2000000000000000]}, 0x203, 0x7d)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r4 = socket(0x10, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000000), r5)
sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(r5, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000480)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB], 0x20}, 0x1, 0x3000700, 0x0, 0x1}, 0x8010)
sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(r4, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="c4000000", @ANYRES64=r2, @ANYBLOB="000227bd7000ffdbdf2502000000060001000f0000000600010081000000"], 0x24}}, 0x4000000)
sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000500)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS0\x00', 0x86300, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_NLBL_MGMT_C_LISTALL(r4, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)=ANY=[@ANYBLOB="1467d2b5026beecc150ecbde8ab9befdfc6b6c895a0f182797e45cbce3c66b05ef093f8a2dcf3fad468f3afccaf03603426db212", @ANYRES16=0x0, @ANYBLOB="010025bd7000ffdbdf25030000000800030008000000100001005c5e215b7d252a212d"], 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8c0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1600004f72324a00", @ANYRES16=r2, @ANYBLOB="01002cbd7000fedbdf250400000008000c0002000000"], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/ptys7\x00', 0x60c00, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x4000003a, r5, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x22b42, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x0, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000240)="270824707f051f779d0e12539b315ab8178c889b65d4cbd59fd8467025a91e3dd934ae8148e18b2665ec03caca86ff8da1f297b7d9be4d084e25db1ab029147c31193e4a0575dc0bdece58bda5996994961bca6d82d6813fc56636b58c8c42a57b868ba1cbbac974130a42e733041ec0085d2fd64b085aecdac0f4788aa52147324e61e337289243e573918f0589fba2acb24173c469b21a6aba898aa4405bec9a8d74dbc460066ad7da3163ba6137d6856b09039c8c886ada39b3991d4023ae4b0beca8cea1c265c3e941803b", 0xcd)

kernel console output (not intermixed with test programs):

 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  263.219236][ T8168] RSP: 002b:00007f93986790e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  263.219267][ T8168] RAX: ffffffffffffffda RBX: 00007f9397a15fa8 RCX: 00007f939779c629
[  263.219289][ T8168] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9397a15fac
[  263.219309][ T8168] RBP: 00007f9397a15fa0 R08: 0000000000000000 R09: 0000000000000000
[  263.219328][ T8168] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  263.219347][ T8168] R13: 00007f9397a16038 R14: 00007ffeb7b8cdc0 R15: 00007ffeb7b8cea8
[  263.219390][ T8168]  </TASK>
[  266.499948][ T8221] netlink: 28 bytes leftover after parsing attributes in process `syz.2.483'.
[  267.291710][ T8227] FAULT_INJECTION: forcing a failure.
[  267.291710][ T8227] name fail_futex, interval 1, probability 0, space 0, times 0
[  267.409093][ T8227] CPU: 1 UID: 0 PID: 8227 Comm: syz.2.485 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  267.409145][ T8227] Tainted: [L]=SOFTLOCKUP
[  267.409158][ T8227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  267.409178][ T8227] Call Trace:
[  267.409189][ T8227]  <TASK>
[  267.409202][ T8227]  dump_stack_lvl+0x100/0x190
[  267.409259][ T8227]  should_fail_ex.cold+0x5/0xa
[  267.409300][ T8227]  get_futex_key+0x1d2/0x1620
[  267.409345][ T8227]  ? __pfx_get_futex_key+0x10/0x10
[  267.409389][ T8227]  ? kasan_quarantine_put+0x104/0x240
[  267.409439][ T8227]  ? lockdep_hardirqs_on+0x78/0x100
[  267.409484][ T8227]  futex_wake+0xea/0x530
[  267.409544][ T8227]  ? find_held_lock+0x2b/0x80
[  267.409602][ T8227]  ? __pfx_futex_wake+0x10/0x10
[  267.409657][ T8227]  ? ksys_write+0x190/0x250
[  267.409709][ T8227]  ? ksys_write+0x190/0x250
[  267.409768][ T8227]  do_futex+0x32b/0x350
[  267.409812][ T8227]  ? __pfx_do_futex+0x10/0x10
[  267.409877][ T8227]  __x64_sys_futex+0x34f/0x4d0
[  267.409929][ T8227]  ? fput+0x79/0x100
[  267.409964][ T8227]  ? __pfx___x64_sys_futex+0x10/0x10
[  267.410007][ T8227]  ? ksys_write+0x1ac/0x250
[  267.410057][ T8227]  ? __pfx_ksys_write+0x10/0x10
[  267.410120][ T8227]  do_syscall_64+0x106/0xf80
[  267.410156][ T8227]  ? clear_bhb_loop+0x40/0x90
[  267.410197][ T8227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.410238][ T8227] RIP: 0033:0x7f027299c629
[  267.410267][ T8227] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  267.410301][ T8227] RSP: 002b:00007f02739050e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  267.410334][ T8227] RAX: ffffffffffffffda RBX: 00007f0272c15fa8 RCX: 00007f027299c629
[  267.410357][ T8227] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0272c15fac
[  267.410377][ T8227] RBP: 00007f0272c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  267.410398][ T8227] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  267.410418][ T8227] R13: 00007f0272c16038 R14: 00007ffec48c5a10 R15: 00007ffec48c5af8
[  267.410462][ T8227]  </TASK>
[  270.823801][ T8279] FAULT_INJECTION: forcing a failure.
[  270.823801][ T8279] name fail_futex, interval 1, probability 0, space 0, times 0
[  270.939417][ T8279] CPU: 1 UID: 0 PID: 8279 Comm: syz.2.498 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  270.939468][ T8279] Tainted: [L]=SOFTLOCKUP
[  270.939480][ T8279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  270.939511][ T8279] Call Trace:
[  270.939522][ T8279]  <TASK>
[  270.939534][ T8279]  dump_stack_lvl+0x100/0x190
[  270.939590][ T8279]  should_fail_ex.cold+0x5/0xa
[  270.939629][ T8279]  get_futex_key+0x1d2/0x1620
[  270.939674][ T8279]  ? __pfx_get_futex_key+0x10/0x10
[  270.939716][ T8279]  ? kasan_quarantine_put+0x104/0x240
[  270.939764][ T8279]  ? lockdep_hardirqs_on+0x78/0x100
[  270.939808][ T8279]  futex_wake+0xea/0x530
[  270.939858][ T8279]  ? find_held_lock+0x2b/0x80
[  270.939914][ T8279]  ? __pfx_futex_wake+0x10/0x10
[  270.939969][ T8279]  ? ksys_write+0x190/0x250
[  270.940017][ T8279]  ? ksys_write+0x190/0x250
[  270.940076][ T8279]  do_futex+0x32b/0x350
[  270.940119][ T8279]  ? __pfx_do_futex+0x10/0x10
[  270.940191][ T8279]  __x64_sys_futex+0x34f/0x4d0
[  270.940238][ T8279]  ? fput+0x79/0x100
[  270.940271][ T8279]  ? __pfx___x64_sys_futex+0x10/0x10
[  270.940312][ T8279]  ? ksys_write+0x1ac/0x250
[  270.940361][ T8279]  ? __pfx_ksys_write+0x10/0x10
[  270.940425][ T8279]  do_syscall_64+0x106/0xf80
[  270.940460][ T8279]  ? clear_bhb_loop+0x40/0x90
[  270.940508][ T8279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.940544][ T8279] RIP: 0033:0x7f027299c629
[  270.940572][ T8279] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  270.940606][ T8279] RSP: 002b:00007f02739050e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  270.940638][ T8279] RAX: ffffffffffffffda RBX: 00007f0272c15fa8 RCX: 00007f027299c629
[  270.940661][ T8279] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0272c15fac
[  270.940681][ T8279] RBP: 00007f0272c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  270.940707][ T8279] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  270.940727][ T8279] R13: 00007f0272c16038 R14: 00007ffec48c5a10 R15: 00007ffec48c5af8
[  270.940770][ T8279]  </TASK>
[  272.464247][ T8298] synth uevent: /bus/platform/drivers/vhci_hcd: unknown uevent action string
[  274.192797][ T8322] FAULT_INJECTION: forcing a failure.
[  274.192797][ T8322] name failslab, interval 1, probability 0, space 0, times 0
[  274.238953][ T8322] CPU: 1 UID: 0 PID: 8322 Comm: syz.4.511 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  274.239001][ T8322] Tainted: [L]=SOFTLOCKUP
[  274.239012][ T8322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  274.239030][ T8322] Call Trace:
[  274.239040][ T8322]  <TASK>
[  274.239052][ T8322]  dump_stack_lvl+0x100/0x190
[  274.239104][ T8322]  should_fail_ex.cold+0x5/0xa
[  274.239140][ T8322]  ? tomoyo_realpath_from_path+0xb6/0x690
[  274.239173][ T8322]  should_failslab+0xc2/0x120
[  274.239225][ T8322]  __kmalloc_noprof+0xe0/0x850
[  274.239279][ T8322]  tomoyo_realpath_from_path+0xb6/0x690
[  274.239324][ T8322]  tomoyo_path_number_perm+0x23c/0x580
[  274.239371][ T8322]  ? tomoyo_path_number_perm+0x22e/0x580
[  274.239421][ T8322]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  274.239513][ T8322]  ? find_held_lock+0x2b/0x80
[  274.239563][ T8322]  ? __fget_files+0x215/0x3d0
[  274.239609][ T8322]  ? hook_file_ioctl_common+0x146/0x410
[  274.239667][ T8322]  ? __fget_files+0x21f/0x3d0
[  274.239722][ T8322]  security_file_ioctl+0xd3/0x230
[  274.239773][ T8322]  __x64_sys_ioctl+0xb7/0x210
[  274.239819][ T8322]  do_syscall_64+0x106/0xf80
[  274.239873][ T8322]  ? clear_bhb_loop+0x40/0x90
[  274.239920][ T8322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.239954][ T8322] RIP: 0033:0x7ff8d799c629
[  274.239981][ T8322] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  274.240012][ T8322] RSP: 002b:00007ff8d87a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  274.240042][ T8322] RAX: ffffffffffffffda RBX: 00007ff8d7c15fa0 RCX: 00007ff8d799c629
[  274.240063][ T8322] RDX: 0000200000000100 RSI: 000000004008ae8a RDI: 0000000000000004
[  274.240082][ T8322] RBP: 00007ff8d87a6090 R08: 0000000000000000 R09: 0000000000000000
[  274.240101][ T8322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  274.240125][ T8322] R13: 00007ff8d7c16038 R14: 00007ff8d7c15fa0 R15: 00007fffc181dba8
[  274.240170][ T8322]  </TASK>
[  274.240183][ T8322] ERROR: Out of memory at tomoyo_realpath_from_path.
[  276.308553][ T8340] netlink: 28 bytes leftover after parsing attributes in process `syz.0.523'.
[  276.716026][ T8349] netlink: 342 bytes leftover after parsing attributes in process `syz.2.513'.
[  277.454078][ T8358] FAULT_INJECTION: forcing a failure.
[  277.454078][ T8358] name fail_futex, interval 1, probability 0, space 0, times 0
[  277.490268][ T8358] CPU: 1 UID: 0 PID: 8358 Comm: syz.0.525 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  277.490320][ T8358] Tainted: [L]=SOFTLOCKUP
[  277.490331][ T8358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  277.490350][ T8358] Call Trace:
[  277.490360][ T8358]  <TASK>
[  277.490372][ T8358]  dump_stack_lvl+0x100/0x190
[  277.490428][ T8358]  should_fail_ex.cold+0x5/0xa
[  277.490470][ T8358]  get_futex_key+0x1d2/0x1620
[  277.490515][ T8358]  ? __pfx_get_futex_key+0x10/0x10
[  277.490558][ T8358]  ? kasan_quarantine_put+0x104/0x240
[  277.490606][ T8358]  ? lockdep_hardirqs_on+0x78/0x100
[  277.490649][ T8358]  futex_wake+0xea/0x530
[  277.490699][ T8358]  ? find_held_lock+0x2b/0x80
[  277.490753][ T8358]  ? __pfx_futex_wake+0x10/0x10
[  277.490817][ T8358]  ? ksys_write+0x190/0x250
[  277.490868][ T8358]  ? ksys_write+0x190/0x250
[  277.490925][ T8358]  do_futex+0x32b/0x350
[  277.490967][ T8358]  ? __pfx_do_futex+0x10/0x10
[  277.491019][ T8358]  __x64_sys_futex+0x34f/0x4d0
[  277.491064][ T8358]  ? fput+0x79/0x100
[  277.491097][ T8358]  ? __pfx___x64_sys_futex+0x10/0x10
[  277.491138][ T8358]  ? ksys_write+0x1ac/0x250
[  277.491186][ T8358]  ? __pfx_ksys_write+0x10/0x10
[  277.491264][ T8358]  do_syscall_64+0x106/0xf80
[  277.491300][ T8358]  ? clear_bhb_loop+0x40/0x90
[  277.491342][ T8358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.491376][ T8358] RIP: 0033:0x7f8f1539c629
[  277.491406][ T8358] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  277.491440][ T8358] RSP: 002b:00007f8f163070e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  277.491473][ T8358] RAX: ffffffffffffffda RBX: 00007f8f15615fa8 RCX: 00007f8f1539c629
[  277.491496][ T8358] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8f15615fac
[  277.491516][ T8358] RBP: 00007f8f15615fa0 R08: 0000000000000000 R09: 0000000000000000
[  277.491537][ T8358] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  277.491558][ T8358] R13: 00007f8f15616038 R14: 00007ffd1ecf5fb0 R15: 00007ffd1ecf6098
[  277.491602][ T8358]  </TASK>
[  278.281699][ T8372] FAULT_INJECTION: forcing a failure.
[  278.281699][ T8372] name fail_futex, interval 1, probability 0, space 0, times 0
[  278.295964][ T8372] CPU: 0 UID: 0 PID: 8372 Comm: syz.0.520 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  278.296016][ T8372] Tainted: [L]=SOFTLOCKUP
[  278.296027][ T8372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  278.296046][ T8372] Call Trace:
[  278.296056][ T8372]  <TASK>
[  278.296067][ T8372]  dump_stack_lvl+0x100/0x190
[  278.296122][ T8372]  should_fail_ex.cold+0x5/0xa
[  278.296162][ T8372]  get_futex_key+0x1d2/0x1620
[  278.296206][ T8372]  ? __pfx_get_futex_key+0x10/0x10
[  278.296248][ T8372]  ? kasan_quarantine_put+0x104/0x240
[  278.296293][ T8372]  ? lockdep_hardirqs_on+0x78/0x100
[  278.296336][ T8372]  futex_wake+0xea/0x530
[  278.296386][ T8372]  ? find_held_lock+0x2b/0x80
[  278.296439][ T8372]  ? __pfx_futex_wake+0x10/0x10
[  278.296491][ T8372]  ? ksys_write+0x190/0x250
[  278.296539][ T8372]  ? ksys_write+0x190/0x250
[  278.296593][ T8372]  do_futex+0x32b/0x350
[  278.296634][ T8372]  ? __pfx_do_futex+0x10/0x10
[  278.296683][ T8372]  __x64_sys_futex+0x34f/0x4d0
[  278.296741][ T8372]  ? fput+0x79/0x100
[  278.296776][ T8372]  ? __pfx___x64_sys_futex+0x10/0x10
[  278.296817][ T8372]  ? ksys_write+0x1ac/0x250
[  278.296868][ T8372]  ? __pfx_ksys_write+0x10/0x10
[  278.296930][ T8372]  do_syscall_64+0x106/0xf80
[  278.296967][ T8372]  ? clear_bhb_loop+0x40/0x90
[  278.297008][ T8372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.297045][ T8372] RIP: 0033:0x7f8f1539c629
[  278.297074][ T8372] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  278.297108][ T8372] RSP: 002b:00007f8f163070e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  278.297141][ T8372] RAX: ffffffffffffffda RBX: 00007f8f15615fa8 RCX: 00007f8f1539c629
[  278.297163][ T8372] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8f15615fac
[  278.297184][ T8372] RBP: 00007f8f15615fa0 R08: 0000000000000000 R09: 0000000000000000
[  278.297205][ T8372] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  278.297224][ T8372] R13: 00007f8f15616038 R14: 00007ffd1ecf5fb0 R15: 00007ffd1ecf6098
[  278.297267][ T8372]  </TASK>
[  278.824053][ T8379] netlink: 28 bytes leftover after parsing attributes in process `syz.4.522'.
[  279.113089][ T8383] netlink: 28 bytes leftover after parsing attributes in process `syz.4.526'.
[  279.432422][   T30] audit: type=1800 audit(1771713005.346:4): pid=8391 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.527" name="members" dev="configfs" ino=91143 res=0 errno=0
[  279.465944][ T8393] batman_adv: batadv0: adding TT local entry 00:00:03:00:00:00 to non-existent VLAN 16
[  279.501436][ T8394] FAULT_INJECTION: forcing a failure.
[  279.501436][ T8394] name fail_futex, interval 1, probability 0, space 0, times 0
[  279.514610][ T8394] CPU: 0 UID: 0 PID: 8394 Comm: syz.4.529 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  279.514666][ T8394] Tainted: [L]=SOFTLOCKUP
[  279.514679][ T8394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  279.514701][ T8394] Call Trace:
[  279.514712][ T8394]  <TASK>
[  279.514725][ T8394]  dump_stack_lvl+0x100/0x190
[  279.514783][ T8394]  should_fail_ex.cold+0x5/0xa
[  279.514824][ T8394]  get_futex_key+0x1d2/0x1620
[  279.514868][ T8394]  ? __pfx_get_futex_key+0x10/0x10
[  279.514912][ T8394]  ? kasan_quarantine_put+0x104/0x240
[  279.514963][ T8394]  ? lockdep_hardirqs_on+0x78/0x100
[  279.515008][ T8394]  futex_wake+0xea/0x530
[  279.515059][ T8394]  ? find_held_lock+0x2b/0x80
[  279.515114][ T8394]  ? __pfx_futex_wake+0x10/0x10
[  279.515169][ T8394]  ? ksys_write+0x190/0x250
[  279.515219][ T8394]  ? ksys_write+0x190/0x250
[  279.515278][ T8394]  do_futex+0x32b/0x350
[  279.515322][ T8394]  ? __pfx_do_futex+0x10/0x10
[  279.515389][ T8394]  __x64_sys_futex+0x34f/0x4d0
[  279.515437][ T8394]  ? fput+0x79/0x100
[  279.515471][ T8394]  ? __pfx___x64_sys_futex+0x10/0x10
[  279.515514][ T8394]  ? ksys_write+0x1ac/0x250
[  279.515564][ T8394]  ? __pfx_ksys_write+0x10/0x10
[  279.515627][ T8394]  do_syscall_64+0x106/0xf80
[  279.515663][ T8394]  ? clear_bhb_loop+0x40/0x90
[  279.515704][ T8394]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.515740][ T8394] RIP: 0033:0x7ff8d799c629
[  279.515768][ T8394] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  279.515802][ T8394] RSP: 002b:00007ff8d87a60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  279.515837][ T8394] RAX: ffffffffffffffda RBX: 00007ff8d7c15fa8 RCX: 00007ff8d799c629
[  279.515858][ T8394] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff8d7c15fac
[  279.515879][ T8394] RBP: 00007ff8d7c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  279.515899][ T8394] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  279.515919][ T8394] R13: 00007ff8d7c16038 R14: 00007fffc181dac0 R15: 00007fffc181dba8
[  279.515962][ T8394]  </TASK>
[  280.814151][ T8409] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  280.943766][ T8409] FAULT_INJECTION: forcing a failure.
[  280.943766][ T8409] name failslab, interval 1, probability 0, space 0, times 0
[  281.205112][ T8409] CPU: 1 UID: 0 PID: 8409 Comm: syz.4.533 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  281.205166][ T8409] Tainted: [L]=SOFTLOCKUP
[  281.205179][ T8409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  281.205200][ T8409] Call Trace:
[  281.205210][ T8409]  <TASK>
[  281.205231][ T8409]  dump_stack_lvl+0x100/0x190
[  281.205289][ T8409]  should_fail_ex.cold+0x5/0xa
[  281.205328][ T8409]  should_failslab+0xc2/0x120
[  281.205384][ T8409]  __kmalloc_cache_node_noprof+0x7d/0x770
[  281.205437][ T8409]  ? do_kmem_cache_create+0x16d/0x540
[  281.205505][ T8409]  do_kmem_cache_create+0x16d/0x540
[  281.205567][ T8409]  __kmem_cache_create_args+0x386/0x420
[  281.205621][ T8409]  mon_text_open+0x333/0x510
[  281.205668][ T8409]  ? __pfx_mon_text_open+0x10/0x10
[  281.205716][ T8409]  ? __pfx_mon_text_ctor+0x10/0x10
[  281.205761][ T8409]  ? __pfx_apparmor_file_open+0x10/0x10
[  281.205805][ T8409]  ? lockdown_is_locked_down+0x3d/0x140
[  281.205846][ T8409]  ? bpf_lsm_locked_down+0x9/0x10
[  281.205884][ T8409]  ? __pfx_mon_text_open+0x10/0x10
[  281.205926][ T8409]  full_proxy_open_regular+0x1b6/0x370
[  281.205973][ T8409]  do_dentry_open+0x6d8/0x1660
[  281.206025][ T8409]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  281.206079][ T8409]  vfs_open+0x82/0x3f0
[  281.206123][ T8409]  path_openat+0x208c/0x31a0
[  281.206163][ T8409]  ? __pfx___schedule+0x10/0x10
[  281.206197][ T8409]  ? __pfx_path_openat+0x10/0x10
[  281.206266][ T8409]  ? irqentry_exit+0x180/0x670
[  281.206302][ T8409]  ? lockdep_hardirqs_on+0x78/0x100
[  281.206346][ T8409]  do_file_open+0x20e/0x430
[  281.206381][ T8409]  ? __pfx_do_file_open+0x10/0x10
[  281.206445][ T8409]  ? alloc_fd+0x476/0x790
[  281.206500][ T8409]  ? do_getname+0x191/0x390
[  281.206543][ T8409]  do_sys_openat2+0x10d/0x1e0
[  281.206584][ T8409]  ? __pfx_do_sys_openat2+0x10/0x10
[  281.206627][ T8409]  ? lockdep_hardirqs_on+0x78/0x100
[  281.206674][ T8409]  __x64_sys_openat+0x12d/0x210
[  281.206716][ T8409]  ? __pfx___x64_sys_openat+0x10/0x10
[  281.206774][ T8409]  do_syscall_64+0x106/0xf80
[  281.206809][ T8409]  ? clear_bhb_loop+0x40/0x90
[  281.206852][ T8409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.206887][ T8409] RIP: 0033:0x7ff8d799c629
[  281.206917][ T8409] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  281.206952][ T8409] RSP: 002b:00007ff8d87a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  281.206984][ T8409] RAX: ffffffffffffffda RBX: 00007ff8d7c15fa0 RCX: 00007ff8d799c629
[  281.207005][ T8409] RDX: 0000000000022202 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  281.207023][ T8409] RBP: 00007ff8d7a32b39 R08: 0000000000000000 R09: 0000000000000000
[  281.207042][ T8409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  281.207059][ T8409] R13: 00007ff8d7c16038 R14: 00007ff8d7c15fa0 R15: 00007fffc181dba8
[  281.207101][ T8409]  </TASK>
[  281.207267][ T8409] __kmem_cache_create_args(mon_text_ffff88807c6e1800) failed with error -22
[  281.630471][ T8409] CPU: 1 UID: 0 PID: 8409 Comm: syz.4.533 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  281.630526][ T8409] Tainted: [L]=SOFTLOCKUP
[  281.630537][ T8409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  281.630557][ T8409] Call Trace:
[  281.630568][ T8409]  <TASK>
[  281.630580][ T8409]  dump_stack_lvl+0x100/0x190
[  281.630636][ T8409]  __kmem_cache_create_args.cold+0x33/0x6e
[  281.630690][ T8409]  mon_text_open+0x333/0x510
[  281.630737][ T8409]  ? __pfx_mon_text_open+0x10/0x10
[  281.630787][ T8409]  ? __pfx_mon_text_ctor+0x10/0x10
[  281.630833][ T8409]  ? __pfx_apparmor_file_open+0x10/0x10
[  281.630878][ T8409]  ? lockdown_is_locked_down+0x3d/0x140
[  281.630918][ T8409]  ? bpf_lsm_locked_down+0x9/0x10
[  281.630955][ T8409]  ? __pfx_mon_text_open+0x10/0x10
[  281.630997][ T8409]  full_proxy_open_regular+0x1b6/0x370
[  281.631044][ T8409]  do_dentry_open+0x6d8/0x1660
[  281.631097][ T8409]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  281.631157][ T8409]  vfs_open+0x82/0x3f0
[  281.631202][ T8409]  path_openat+0x208c/0x31a0
[  281.631239][ T8409]  ? __pfx___schedule+0x10/0x10
[  281.631274][ T8409]  ? __pfx_path_openat+0x10/0x10
[  281.631331][ T8409]  ? irqentry_exit+0x180/0x670
[  281.631366][ T8409]  ? lockdep_hardirqs_on+0x78/0x100
[  281.631408][ T8409]  do_file_open+0x20e/0x430
[  281.631442][ T8409]  ? __pfx_do_file_open+0x10/0x10
[  281.631510][ T8409]  ? alloc_fd+0x476/0x790
[  281.631565][ T8409]  ? do_getname+0x191/0x390
[  281.631606][ T8409]  do_sys_openat2+0x10d/0x1e0
[  281.631647][ T8409]  ? __pfx_do_sys_openat2+0x10/0x10
[  281.631690][ T8409]  ? lockdep_hardirqs_on+0x78/0x100
[  281.631737][ T8409]  __x64_sys_openat+0x12d/0x210
[  281.631779][ T8409]  ? __pfx___x64_sys_openat+0x10/0x10
[  281.631838][ T8409]  do_syscall_64+0x106/0xf80
[  281.631872][ T8409]  ? clear_bhb_loop+0x40/0x90
[  281.631913][ T8409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.631948][ T8409] RIP: 0033:0x7ff8d799c629
[  281.631975][ T8409] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  281.632008][ T8409] RSP: 002b:00007ff8d87a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  281.632040][ T8409] RAX: ffffffffffffffda RBX: 00007ff8d7c15fa0 RCX: 00007ff8d799c629
[  281.632061][ T8409] RDX: 0000000000022202 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  281.632080][ T8409] RBP: 00007ff8d7a32b39 R08: 0000000000000000 R09: 0000000000000000
[  281.632098][ T8409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  281.632115][ T8409] R13: 00007ff8d7c16038 R14: 00007ff8d7c15fa0 R15: 00007fffc181dba8
[  281.632165][ T8409]  </TASK>
[  282.055383][ T8419] netlink: 28 bytes leftover after parsing attributes in process `syz.5.535'.
[  282.231064][ T8419] bridge0: port 2(bridge_slave_1) entered disabled state
[  282.321766][ T8419] bridge_slave_1 (unregistering): left allmulticast mode
[  282.372805][ T8419] bridge_slave_1 (unregistering): left promiscuous mode
[  282.380201][ T8419] bridge0: port 2(bridge_slave_1) entered disabled state
[  282.937730][ T8431] FAULT_INJECTION: forcing a failure.
[  282.937730][ T8431] name failslab, interval 1, probability 0, space 0, times 0
[  282.967189][ T8431] CPU: 1 UID: 0 PID: 8431 Comm: syz.2.538 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  282.967226][ T8431] Tainted: [L]=SOFTLOCKUP
[  282.967235][ T8431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  282.967248][ T8431] Call Trace:
[  282.967262][ T8431]  <TASK>
[  282.967270][ T8431]  dump_stack_lvl+0x100/0x190
[  282.967309][ T8431]  should_fail_ex.cold+0x5/0xa
[  282.967335][ T8431]  ? tomoyo_encode2+0xfb/0x3c0
[  282.967357][ T8431]  should_failslab+0xc2/0x120
[  282.967394][ T8431]  __kmalloc_noprof+0xe0/0x850
[  282.967432][ T8431]  tomoyo_encode2+0xfb/0x3c0
[  282.967459][ T8431]  tomoyo_encode+0x29/0x50
[  282.967480][ T8431]  tomoyo_realpath_from_path+0x18c/0x690
[  282.967511][ T8431]  tomoyo_path_number_perm+0x23c/0x580
[  282.967544][ T8431]  ? tomoyo_path_number_perm+0x22e/0x580
[  282.967580][ T8431]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  282.967644][ T8431]  ? find_held_lock+0x2b/0x80
[  282.967679][ T8431]  ? __fget_files+0x215/0x3d0
[  282.967713][ T8431]  ? hook_file_ioctl_common+0x146/0x410
[  282.967754][ T8431]  ? __fget_files+0x21f/0x3d0
[  282.967793][ T8431]  security_file_ioctl+0xd3/0x230
[  282.967828][ T8431]  __x64_sys_ioctl+0xb7/0x210
[  282.967861][ T8431]  do_syscall_64+0x106/0xf80
[  282.967885][ T8431]  ? clear_bhb_loop+0x40/0x90
[  282.967914][ T8431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.967937][ T8431] RIP: 0033:0x7f027299c629
[  282.967956][ T8431] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  282.967978][ T8431] RSP: 002b:00007f0273905028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  282.968001][ T8431] RAX: ffffffffffffffda RBX: 00007f0272c15fa0 RCX: 00007f027299c629
[  282.968016][ T8431] RDX: 0000200000000100 RSI: 000000004008ae8a RDI: 0000000000000004
[  282.968030][ T8431] RBP: 00007f0273905090 R08: 0000000000000000 R09: 0000000000000000
[  282.968045][ T8431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  282.968058][ T8431] R13: 00007f0272c16038 R14: 00007f0272c15fa0 R15: 00007ffec48c5af8
[  282.968088][ T8431]  </TASK>
[  282.968108][ T8431] ERROR: Out of memory at tomoyo_realpath_from_path.
[  283.909778][ T8445] FAULT_INJECTION: forcing a failure.
[  283.909778][ T8445] name fail_futex, interval 1, probability 0, space 0, times 0
[  284.093730][ T8445] CPU: 1 UID: 0 PID: 8445 Comm: syz.2.539 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  284.093786][ T8445] Tainted: [L]=SOFTLOCKUP
[  284.093795][ T8445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  284.093809][ T8445] Call Trace:
[  284.093817][ T8445]  <TASK>
[  284.093826][ T8445]  dump_stack_lvl+0x100/0x190
[  284.093866][ T8445]  should_fail_ex.cold+0x5/0xa
[  284.093894][ T8445]  get_futex_key+0x1d2/0x1620
[  284.093926][ T8445]  ? __pfx_get_futex_key+0x10/0x10
[  284.093957][ T8445]  ? kasan_quarantine_put+0x104/0x240
[  284.093992][ T8445]  ? lockdep_hardirqs_on+0x78/0x100
[  284.094023][ T8445]  futex_wake+0xea/0x530
[  284.094058][ T8445]  ? find_held_lock+0x2b/0x80
[  284.094097][ T8445]  ? __pfx_futex_wake+0x10/0x10
[  284.094147][ T8445]  ? ksys_write+0x190/0x250
[  284.094182][ T8445]  ? ksys_write+0x190/0x250
[  284.094223][ T8445]  do_futex+0x32b/0x350
[  284.094254][ T8445]  ? __pfx_do_futex+0x10/0x10
[  284.094292][ T8445]  __x64_sys_futex+0x34f/0x4d0
[  284.094325][ T8445]  ? fput+0x79/0x100
[  284.094348][ T8445]  ? __pfx___x64_sys_futex+0x10/0x10
[  284.094377][ T8445]  ? ksys_write+0x1ac/0x250
[  284.094413][ T8445]  ? __pfx_ksys_write+0x10/0x10
[  284.094457][ T8445]  do_syscall_64+0x106/0xf80
[  284.094482][ T8445]  ? clear_bhb_loop+0x40/0x90
[  284.094512][ T8445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.094536][ T8445] RIP: 0033:0x7f027299c629
[  284.094556][ T8445] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  284.094580][ T8445] RSP: 002b:00007f02739050e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  284.094604][ T8445] RAX: ffffffffffffffda RBX: 00007f0272c15fa8 RCX: 00007f027299c629
[  284.094621][ T8445] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0272c15fac
[  284.094636][ T8445] RBP: 00007f0272c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  284.094651][ T8445] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  284.094665][ T8445] R13: 00007f0272c16038 R14: 00007ffec48c5a10 R15: 00007ffec48c5af8
[  284.094696][ T8445]  </TASK>
[  285.063850][ T8457] sctp: [Deprecated]: syz.5.546 (pid 8457) Use of struct sctp_assoc_value in delayed_ack socket option.
[  285.063850][ T8457] Use struct sctp_sack_info instead
[  285.122744][ T8460] netlink: 28 bytes leftover after parsing attributes in process `syz.4.544'.
[  285.726574][ T8468] netlink: 342 bytes leftover after parsing attributes in process `syz.0.549'.
[  286.007885][ T8479] FAULT_INJECTION: forcing a failure.
[  286.007885][ T8479] name fail_futex, interval 1, probability 0, space 0, times 0
[  286.144566][ T8479] CPU: 0 UID: 0 PID: 8479 Comm: syz.5.550 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  286.144621][ T8479] Tainted: [L]=SOFTLOCKUP
[  286.144634][ T8479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  286.144654][ T8479] Call Trace:
[  286.144664][ T8479]  <TASK>
[  286.144676][ T8479]  dump_stack_lvl+0x100/0x190
[  286.144748][ T8479]  should_fail_ex.cold+0x5/0xa
[  286.144788][ T8479]  get_futex_key+0x1d2/0x1620
[  286.144834][ T8479]  ? __pfx_get_futex_key+0x10/0x10
[  286.144878][ T8479]  ? kasan_quarantine_put+0x104/0x240
[  286.144928][ T8479]  ? lockdep_hardirqs_on+0x78/0x100
[  286.144971][ T8479]  futex_wake+0xea/0x530
[  286.145021][ T8479]  ? find_held_lock+0x2b/0x80
[  286.145076][ T8479]  ? __pfx_futex_wake+0x10/0x10
[  286.145132][ T8479]  ? ksys_write+0x190/0x250
[  286.145181][ T8479]  ? ksys_write+0x190/0x250
[  286.145238][ T8479]  do_futex+0x32b/0x350
[  286.145281][ T8479]  ? __pfx_do_futex+0x10/0x10
[  286.145333][ T8479]  __x64_sys_futex+0x34f/0x4d0
[  286.145379][ T8479]  ? fput+0x79/0x100
[  286.145412][ T8479]  ? __pfx___x64_sys_futex+0x10/0x10
[  286.145454][ T8479]  ? ksys_write+0x1ac/0x250
[  286.145503][ T8479]  ? __pfx_ksys_write+0x10/0x10
[  286.145565][ T8479]  do_syscall_64+0x106/0xf80
[  286.145600][ T8479]  ? clear_bhb_loop+0x40/0x90
[  286.145641][ T8479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.145675][ T8479] RIP: 0033:0x7f939779c629
[  286.145704][ T8479] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  286.145790][ T8479] RSP: 002b:00007f93986790e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  286.145824][ T8479] RAX: ffffffffffffffda RBX: 00007f9397a15fa8 RCX: 00007f939779c629
[  286.145847][ T8479] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9397a15fac
[  286.145867][ T8479] RBP: 00007f9397a15fa0 R08: 0000000000000000 R09: 0000000000000000
[  286.145887][ T8479] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  286.145907][ T8479] R13: 00007f9397a16038 R14: 00007ffeb7b8cdc0 R15: 00007ffeb7b8cea8
[  286.145951][ T8479]  </TASK>
[  288.304328][ T8504] netlink: 28 bytes leftover after parsing attributes in process `syz.2.556'.
[  290.758958][ T8531] FAULT_INJECTION: forcing a failure.
[  290.758958][ T8531] name fail_futex, interval 1, probability 0, space 0, times 0
[  290.772671][ T8531] CPU: 0 UID: 0 PID: 8531 Comm: syz.4.562 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  290.772721][ T8531] Tainted: [L]=SOFTLOCKUP
[  290.772732][ T8531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  290.772751][ T8531] Call Trace:
[  290.772761][ T8531]  <TASK>
[  290.772773][ T8531]  dump_stack_lvl+0x100/0x190
[  290.772830][ T8531]  should_fail_ex.cold+0x5/0xa
[  290.772871][ T8531]  get_futex_key+0x1d2/0x1620
[  290.772917][ T8531]  ? __pfx_get_futex_key+0x10/0x10
[  290.772960][ T8531]  ? kasan_quarantine_put+0x104/0x240
[  290.773010][ T8531]  ? lockdep_hardirqs_on+0x78/0x100
[  290.773054][ T8531]  futex_wake+0xea/0x530
[  290.773105][ T8531]  ? find_held_lock+0x2b/0x80
[  290.773159][ T8531]  ? __pfx_futex_wake+0x10/0x10
[  290.773215][ T8531]  ? ksys_write+0x190/0x250
[  290.773264][ T8531]  ? ksys_write+0x190/0x250
[  290.773331][ T8531]  do_futex+0x32b/0x350
[  290.773376][ T8531]  ? __pfx_do_futex+0x10/0x10
[  290.773430][ T8531]  __x64_sys_futex+0x34f/0x4d0
[  290.773478][ T8531]  ? fput+0x79/0x100
[  290.773513][ T8531]  ? __pfx___x64_sys_futex+0x10/0x10
[  290.773555][ T8531]  ? ksys_write+0x1ac/0x250
[  290.773603][ T8531]  ? __pfx_ksys_write+0x10/0x10
[  290.773667][ T8531]  do_syscall_64+0x106/0xf80
[  290.773703][ T8531]  ? clear_bhb_loop+0x40/0x90
[  290.773745][ T8531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.773781][ T8531] RIP: 0033:0x7ff8d799c629
[  290.773809][ T8531] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  290.773844][ T8531] RSP: 002b:00007ff8d87a60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  290.773877][ T8531] RAX: ffffffffffffffda RBX: 00007ff8d7c15fa8 RCX: 00007ff8d799c629
[  290.773899][ T8531] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff8d7c15fac
[  290.773919][ T8531] RBP: 00007ff8d7c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  290.773939][ T8531] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  290.773958][ T8531] R13: 00007ff8d7c16038 R14: 00007fffc181dac0 R15: 00007fffc181dba8
[  290.774003][ T8531]  </TASK>
[  291.329074][   T30] audit: type=1326 audit(1771713017.230:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8545 comm="syz.2.566" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f027299c629 code=0x0
[  292.211681][ T8556] netlink: 28 bytes leftover after parsing attributes in process `syz.4.567'.
[  293.408435][ T8576] FAULT_INJECTION: forcing a failure.
[  293.408435][ T8576] name fail_futex, interval 1, probability 0, space 0, times 0
[  293.456938][ T8579] FAULT_INJECTION: forcing a failure.
[  293.456938][ T8579] name failslab, interval 1, probability 0, space 0, times 0
[  293.470147][ T8579] CPU: 1 UID: 0 PID: 8579 Comm: syz.4.574 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  293.470194][ T8579] Tainted: [L]=SOFTLOCKUP
[  293.470205][ T8579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  293.470223][ T8579] Call Trace:
[  293.470233][ T8579]  <TASK>
[  293.470244][ T8579]  dump_stack_lvl+0x100/0x190
[  293.470306][ T8579]  should_fail_ex.cold+0x5/0xa
[  293.470343][ T8579]  should_failslab+0xc2/0x120
[  293.470396][ T8579]  __kvmalloc_node_noprof+0xfa/0xa00
[  293.470442][ T8579]  ? vmemdup_user+0x2a/0xe0
[  293.470489][ T8579]  ? find_held_lock+0x2b/0x80
[  293.470539][ T8579]  ? __might_fault+0xc5/0x140
[  293.470585][ T8579]  vmemdup_user+0x2a/0xe0
[  293.470632][ T8579]  kvm_vcpu_ioctl_set_cpuid+0xea/0x600
[  293.470684][ T8579]  kvm_arch_vcpu_ioctl+0x2df1/0x5740
[  293.470733][ T8579]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  293.470765][ T8579]  ? __pfx_stack_trace_save+0x10/0x10
[  293.470818][ T8579]  ? stack_depot_save_flags+0x27/0x9d0
[  293.470870][ T8579]  ? __lock_acquire+0x4a5/0x2630
[  293.470909][ T8579]  ? tomoyo_path_number_perm+0x46d/0x580
[  293.470963][ T8579]  ? __lock_acquire+0x4a5/0x2630
[  293.471001][ T8579]  ? do_syscall_64+0x106/0xf80
[  293.471035][ T8579]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.471083][ T8579]  ? lock_acquire+0x1cf/0x380
[  293.471128][ T8579]  ? rcu_is_watching+0x12/0xc0
[  293.471175][ T8579]  ? trace_contention_end+0x140/0x180
[  293.471219][ T8579]  ? __mutex_lock+0x26a/0x1b90
[  293.471274][ T8579]  ? kvm_vcpu_ioctl+0x322/0x1730
[  293.471325][ T8579]  ? __pfx___mutex_lock+0x10/0x10
[  293.471361][ T8579]  ? kasan_quarantine_put+0x104/0x240
[  293.471405][ T8579]  ? lockdep_hardirqs_on+0x78/0x100
[  293.471445][ T8579]  ? tomoyo_path_number_perm+0x28f/0x580
[  293.471502][ T8579]  ? tomoyo_path_number_perm+0x188/0x580
[  293.471556][ T8579]  ? kvm_vcpu_ioctl+0x8a0/0x1730
[  293.471596][ T8579]  kvm_vcpu_ioctl+0x8a0/0x1730
[  293.471641][ T8579]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  293.471684][ T8579]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  293.471738][ T8579]  ? do_vfs_ioctl+0x226/0x13e0
[  293.471781][ T8579]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  293.471837][ T8579]  ? find_held_lock+0x2b/0x80
[  293.471886][ T8579]  ? __fget_files+0x215/0x3d0
[  293.471932][ T8579]  ? hook_file_ioctl_common+0x146/0x410
[  293.471989][ T8579]  ? __fget_files+0x21f/0x3d0
[  293.472043][ T8579]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  293.472086][ T8579]  __x64_sys_ioctl+0x18e/0x210
[  293.472131][ T8579]  do_syscall_64+0x106/0xf80
[  293.472164][ T8579]  ? clear_bhb_loop+0x40/0x90
[  293.472202][ T8579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.472233][ T8579] RIP: 0033:0x7ff8d799c629
[  293.472266][ T8579] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  293.472298][ T8579] RSP: 002b:00007ff8d87a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  293.472329][ T8579] RAX: ffffffffffffffda RBX: 00007ff8d7c15fa0 RCX: 00007ff8d799c629
[  293.472349][ T8579] RDX: 0000200000000100 RSI: 000000004008ae8a RDI: 0000000000000004
[  293.472369][ T8579] RBP: 00007ff8d87a6090 R08: 0000000000000000 R09: 0000000000000000
[  293.472388][ T8579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.472405][ T8579] R13: 00007ff8d7c16038 R14: 00007ff8d7c15fa0 R15: 00007fffc181dba8
[  293.472443][ T8579]  </TASK>
[  293.472463][ T8576] CPU: 0 UID: 0 PID: 8576 Comm: syz.0.573 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  293.472510][ T8576] Tainted: [L]=SOFTLOCKUP
[  293.472521][ T8576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  293.472539][ T8576] Call Trace:
[  293.472547][ T8576]  <TASK>
[  293.472558][ T8576]  dump_stack_lvl+0x100/0x190
[  293.472608][ T8576]  should_fail_ex.cold+0x5/0xa
[  293.472640][ T8576]  get_futex_key+0x1d2/0x1620
[  293.472684][ T8576]  ? __pfx_get_futex_key+0x10/0x10
[  293.472726][ T8576]  ? kasan_quarantine_put+0x104/0x240
[  293.472773][ T8576]  ? lockdep_hardirqs_on+0x78/0x100
[  293.472816][ T8576]  futex_wake+0xea/0x530
[  293.472864][ T8576]  ? find_held_lock+0x2b/0x80
[  293.472916][ T8576]  ? __pfx_futex_wake+0x10/0x10
[  293.472968][ T8576]  ? ksys_write+0x190/0x250
[  293.473049][ T8576]  ? ksys_write+0x190/0x250
[  293.473098][ T8576]  do_futex+0x32b/0x350
[  293.473132][ T8576]  ? __pfx_do_futex+0x10/0x10
[  293.473175][ T8576]  __x64_sys_futex+0x34f/0x4d0
[  293.473218][ T8576]  ? fput+0x79/0x100
[  293.473247][ T8576]  ? __pfx___x64_sys_futex+0x10/0x10
[  293.473284][ T8576]  ? ksys_write+0x1ac/0x250
[  293.473325][ T8576]  ? __pfx_ksys_write+0x10/0x10
[  293.473377][ T8576]  do_syscall_64+0x106/0xf80
[  293.473409][ T8576]  ? clear_bhb_loop+0x40/0x90
[  293.473449][ T8576]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.473483][ T8576] RIP: 0033:0x7f8f1539c629
[  293.473511][ T8576] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  293.473545][ T8576] RSP: 002b:00007f8f163070e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  293.473577][ T8576] RAX: ffffffffffffffda RBX: 00007f8f15615fa8 RCX: 00007f8f1539c629
[  293.473599][ T8576] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8f15615fac
[  293.473619][ T8576] RBP: 00007f8f15615fa0 R08: 0000000000000000 R09: 0000000000000000
[  293.473639][ T8576] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  293.473659][ T8576] R13: 00007f8f15616038 R14: 00007ffd1ecf5fb0 R15: 00007ffd1ecf6098
[  293.473700][ T8576]  </TASK>
[  294.058155][ T8581] FAULT_INJECTION: forcing a failure.
[  294.058155][ T8581] name failslab, interval 1, probability 0, space 0, times 0
[  294.072741][ T8581] CPU: 0 UID: 0 PID: 8581 Comm: syz.2.575 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  294.072809][ T8581] Tainted: [L]=SOFTLOCKUP
[  294.072821][ T8581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  294.072840][ T8581] Call Trace:
[  294.072852][ T8581]  <TASK>
[  294.072864][ T8581]  dump_stack_lvl+0x100/0x190
[  294.072919][ T8581]  should_fail_ex.cold+0x5/0xa
[  294.072956][ T8581]  should_failslab+0xc2/0x120
[  294.073012][ T8581]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  294.073063][ T8581]  ? do_kmem_cache_create+0x18c/0x540
[  294.073129][ T8581]  do_kmem_cache_create+0x18c/0x540
[  294.073192][ T8581]  __kmem_cache_create_args+0x386/0x420
[  294.073255][ T8581]  mon_text_open+0x333/0x510
[  294.073302][ T8581]  ? __pfx_mon_text_open+0x10/0x10
[  294.073352][ T8581]  ? __pfx_mon_text_ctor+0x10/0x10
[  294.073396][ T8581]  ? find_held_lock+0x2b/0x80
[  294.073451][ T8581]  ? __pfx_apparmor_file_open+0x10/0x10
[  294.073495][ T8581]  ? lockdown_is_locked_down+0x3d/0x140
[  294.073535][ T8581]  ? bpf_lsm_locked_down+0x9/0x10
[  294.073574][ T8581]  ? __pfx_mon_text_open+0x10/0x10
[  294.073615][ T8581]  full_proxy_open_regular+0x1b6/0x370
[  294.073662][ T8581]  do_dentry_open+0x6d8/0x1660
[  294.073716][ T8581]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  294.073771][ T8581]  vfs_open+0x82/0x3f0
[  294.073817][ T8581]  path_openat+0x208c/0x31a0
[  294.073864][ T8581]  ? __pfx_path_openat+0x10/0x10
[  294.073936][ T8581]  do_file_open+0x20e/0x430
[  294.073972][ T8581]  ? __pfx_do_file_open+0x10/0x10
[  294.074036][ T8581]  ? alloc_fd+0x476/0x790
[  294.074092][ T8581]  ? do_getname+0x191/0x390
[  294.074136][ T8581]  do_sys_openat2+0x10d/0x1e0
[  294.074176][ T8581]  ? __pfx_do_sys_openat2+0x10/0x10
[  294.074241][ T8581]  __x64_sys_openat+0x12d/0x210
[  294.074286][ T8581]  ? __pfx___x64_sys_openat+0x10/0x10
[  294.074344][ T8581]  do_syscall_64+0x106/0xf80
[  294.074380][ T8581]  ? clear_bhb_loop+0x40/0x90
[  294.074424][ T8581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.074458][ T8581] RIP: 0033:0x7f027299c629
[  294.074487][ T8581] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  294.074520][ T8581] RSP: 002b:00007f0273905028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  294.074554][ T8581] RAX: ffffffffffffffda RBX: 00007f0272c15fa0 RCX: 00007f027299c629
[  294.074575][ T8581] RDX: 0000000000022202 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  294.074596][ T8581] RBP: 00007f0272a32b39 R08: 0000000000000000 R09: 0000000000000000
[  294.074615][ T8581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  294.074634][ T8581] R13: 00007f0272c16038 R14: 00007f0272c15fa0 R15: 00007ffec48c5af8
[  294.074677][ T8581]  </TASK>
[  294.074824][ T8581] __kmem_cache_create_args(mon_text_ffff888034afc400) failed with error -22
[  294.419021][ T8581] CPU: 0 UID: 0 PID: 8581 Comm: syz.2.575 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  294.419073][ T8581] Tainted: [L]=SOFTLOCKUP
[  294.419084][ T8581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  294.419103][ T8581] Call Trace:
[  294.419114][ T8581]  <TASK>
[  294.419127][ T8581]  dump_stack_lvl+0x100/0x190
[  294.419191][ T8581]  __kmem_cache_create_args.cold+0x33/0x6e
[  294.419243][ T8581]  mon_text_open+0x333/0x510
[  294.419290][ T8581]  ? __pfx_mon_text_open+0x10/0x10
[  294.419338][ T8581]  ? __pfx_mon_text_ctor+0x10/0x10
[  294.419379][ T8581]  ? find_held_lock+0x2b/0x80
[  294.419432][ T8581]  ? __pfx_apparmor_file_open+0x10/0x10
[  294.419476][ T8581]  ? lockdown_is_locked_down+0x3d/0x140
[  294.419517][ T8581]  ? bpf_lsm_locked_down+0x9/0x10
[  294.419554][ T8581]  ? __pfx_mon_text_open+0x10/0x10
[  294.419595][ T8581]  full_proxy_open_regular+0x1b6/0x370
[  294.419642][ T8581]  do_dentry_open+0x6d8/0x1660
[  294.419694][ T8581]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  294.419747][ T8581]  vfs_open+0x82/0x3f0
[  294.419792][ T8581]  path_openat+0x208c/0x31a0
[  294.419837][ T8581]  ? __pfx_path_openat+0x10/0x10
[  294.419907][ T8581]  do_file_open+0x20e/0x430
[  294.419948][ T8581]  ? __pfx_do_file_open+0x10/0x10
[  294.420011][ T8581]  ? alloc_fd+0x476/0x790
[  294.420065][ T8581]  ? do_getname+0x191/0x390
[  294.420107][ T8581]  do_sys_openat2+0x10d/0x1e0
[  294.420158][ T8581]  ? __pfx_do_sys_openat2+0x10/0x10
[  294.420224][ T8581]  __x64_sys_openat+0x12d/0x210
[  294.420267][ T8581]  ? __pfx___x64_sys_openat+0x10/0x10
[  294.420325][ T8581]  do_syscall_64+0x106/0xf80
[  294.420360][ T8581]  ? clear_bhb_loop+0x40/0x90
[  294.420402][ T8581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.420436][ T8581] RIP: 0033:0x7f027299c629
[  294.420465][ T8581] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  294.420499][ T8581] RSP: 002b:00007f0273905028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  294.420531][ T8581] RAX: ffffffffffffffda RBX: 00007f0272c15fa0 RCX: 00007f027299c629
[  294.420553][ T8581] RDX: 0000000000022202 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  294.420574][ T8581] RBP: 00007f0272a32b39 R08: 0000000000000000 R09: 0000000000000000
[  294.420594][ T8581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  294.420613][ T8581] R13: 00007f0272c16038 R14: 00007f0272c15fa0 R15: 00007ffec48c5af8
[  294.420658][ T8581]  </TASK>
[  295.208061][ T8598] FAULT_INJECTION: forcing a failure.
[  295.208061][ T8598] name failslab, interval 1, probability 0, space 0, times 0
[  295.225059][ T8598] CPU: 0 UID: 0 PID: 8598 Comm: syz.0.586 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  295.225118][ T8598] Tainted: [L]=SOFTLOCKUP
[  295.225129][ T8598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  295.225147][ T8598] Call Trace:
[  295.225157][ T8598]  <TASK>
[  295.225169][ T8598]  dump_stack_lvl+0x100/0x190
[  295.225221][ T8598]  should_fail_ex.cold+0x5/0xa
[  295.225256][ T8598]  ? kernfs_fop_write_iter+0x26a/0x5f0
[  295.225307][ T8598]  should_failslab+0xc2/0x120
[  295.225360][ T8598]  __kmalloc_noprof+0xe0/0x850
[  295.225415][ T8598]  kernfs_fop_write_iter+0x26a/0x5f0
[  295.225476][ T8598]  vfs_write+0x6ac/0x1070
[  295.225513][ T8598]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  295.225553][ T8598]  ? __pfx_vfs_write+0x10/0x10
[  295.225606][ T8598]  ksys_write+0x12a/0x250
[  295.225639][ T8598]  ? __pfx_ksys_write+0x10/0x10
[  295.225681][ T8598]  do_syscall_64+0x106/0xf80
[  295.225706][ T8598]  ? clear_bhb_loop+0x40/0x90
[  295.225734][ T8598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.225757][ T8598] RIP: 0033:0x7f8f1539c629
[  295.225777][ T8598] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  295.225800][ T8598] RSP: 002b:00007f8f16307028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  295.225821][ T8598] RAX: ffffffffffffffda RBX: 00007f8f15615fa0 RCX: 00007f8f1539c629
[  295.225837][ T8598] RDX: 0000000000000001 RSI: 00002000000004c0 RDI: 0000000000000003
[  295.225850][ T8598] RBP: 00007f8f16307090 R08: 0000000000000000 R09: 0000000000000000
[  295.225864][ T8598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  295.225877][ T8598] R13: 00007f8f15616038 R14: 00007f8f15615fa0 R15: 00007ffd1ecf6098
[  295.225907][ T8598]  </TASK>
[  296.532484][ T8631] FAULT_INJECTION: forcing a failure.
[  296.532484][ T8631] name failslab, interval 1, probability 0, space 0, times 0
[  296.577933][ T8631] CPU: 0 UID: 0 PID: 8631 Comm: syz.2.584 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  296.577971][ T8631] Tainted: [L]=SOFTLOCKUP
[  296.577979][ T8631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  296.577995][ T8631] Call Trace:
[  296.578003][ T8631]  <TASK>
[  296.578011][ T8631]  dump_stack_lvl+0x100/0x190
[  296.578049][ T8631]  should_fail_ex.cold+0x5/0xa
[  296.578075][ T8631]  should_failslab+0xc2/0x120
[  296.578112][ T8631]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  296.578145][ T8631]  ? taskstats_exit+0x650/0xbd0
[  296.578185][ T8631]  taskstats_exit+0x650/0xbd0
[  296.578220][ T8631]  ? __pfx_acct_update_integrals+0x10/0x10
[  296.578258][ T8631]  ? __pfx_taskstats_exit+0x10/0x10
[  296.578295][ T8631]  ? rcu_read_lock_any_held+0x6a/0xa0
[  296.578331][ T8631]  ? exit_signals+0x395/0xaf0
[  296.578357][ T8631]  do_exit+0x5ca/0x2aa0
[  296.578390][ T8631]  ? __pfx_do_exit+0x10/0x10
[  296.578419][ T8631]  ? do_raw_spin_lock+0x128/0x260
[  296.578450][ T8631]  ? find_held_lock+0x2b/0x80
[  296.578485][ T8631]  ? get_signal+0x7e0/0x21e0
[  296.578510][ T8631]  do_group_exit+0xd5/0x2a0
[  296.578541][ T8631]  get_signal+0x1ec7/0x21e0
[  296.578571][ T8631]  ? ksys_write+0x190/0x250
[  296.578606][ T8631]  ? __pfx_get_signal+0x10/0x10
[  296.578630][ T8631]  ? do_futex+0x192/0x350
[  296.578662][ T8631]  arch_do_signal_or_restart+0x91/0x770
[  296.578691][ T8631]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  296.578761][ T8631]  ? __pfx___x64_sys_futex+0x10/0x10
[  296.578810][ T8631]  exit_to_user_mode_loop+0x86/0x4a0
[  296.578853][ T8631]  do_syscall_64+0x668/0xf80
[  296.578886][ T8631]  ? clear_bhb_loop+0x40/0x90
[  296.578924][ T8631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.578957][ T8631] RIP: 0033:0x7f027299c629
[  296.578983][ T8631] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  296.579013][ T8631] RSP: 002b:00007f02739050e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  296.579043][ T8631] RAX: fffffffffffffe00 RBX: 00007f0272c15fa8 RCX: 00007f027299c629
[  296.579061][ T8631] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0272c15fa8
[  296.579078][ T8631] RBP: 00007f0272c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  296.579096][ T8631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  296.579113][ T8631] R13: 00007f0272c16038 R14: 00007ffec48c5a10 R15: 00007ffec48c5af8
[  296.579154][ T8631]  </TASK>
[  297.417214][ T8646] FAULT_INJECTION: forcing a failure.
[  297.417214][ T8646] name failslab, interval 1, probability 0, space 0, times 0
[  297.434797][ T8646] CPU: 0 UID: 0 PID: 8646 Comm: syz.0.588 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  297.434837][ T8646] Tainted: [L]=SOFTLOCKUP
[  297.434845][ T8646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  297.434860][ T8646] Call Trace:
[  297.434867][ T8646]  <TASK>
[  297.434877][ T8646]  dump_stack_lvl+0x100/0x190
[  297.434918][ T8646]  should_fail_ex.cold+0x5/0xa
[  297.434946][ T8646]  should_failslab+0xc2/0x120
[  297.434986][ T8646]  __kmalloc_cache_noprof+0x7a/0x6f0
[  297.435016][ T8646]  ? mon_text_open+0x1d9/0x510
[  297.435046][ T8646]  ? lockdep_init_map_type+0x5c/0x250
[  297.435082][ T8646]  ? __pfx_mon_text_open+0x10/0x10
[  297.435112][ T8646]  mon_text_open+0x1d9/0x510
[  297.435144][ T8646]  ? __pfx_mon_text_open+0x10/0x10
[  297.435177][ T8646]  ? __debugfs_file_get+0x1fc/0x860
[  297.435203][ T8646]  ? __pfx___debugfs_file_get+0x10/0x10
[  297.435228][ T8646]  ? find_held_lock+0x2b/0x80
[  297.435266][ T8646]  ? __pfx_apparmor_file_open+0x10/0x10
[  297.435297][ T8646]  ? lockdown_is_locked_down+0x3d/0x140
[  297.435327][ T8646]  ? bpf_lsm_locked_down+0x9/0x10
[  297.435353][ T8646]  ? __pfx_mon_text_open+0x10/0x10
[  297.435383][ T8646]  full_proxy_open_regular+0x1b6/0x370
[  297.435416][ T8646]  do_dentry_open+0x6d8/0x1660
[  297.435454][ T8646]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  297.435492][ T8646]  vfs_open+0x82/0x3f0
[  297.435522][ T8646]  path_openat+0x208c/0x31a0
[  297.435554][ T8646]  ? __pfx_path_openat+0x10/0x10
[  297.435604][ T8646]  do_file_open+0x20e/0x430
[  297.435637][ T8646]  ? __pfx_do_file_open+0x10/0x10
[  297.435682][ T8646]  ? alloc_fd+0x476/0x790
[  297.435722][ T8646]  ? do_getname+0x191/0x390
[  297.435753][ T8646]  do_sys_openat2+0x10d/0x1e0
[  297.435782][ T8646]  ? __pfx_do_sys_openat2+0x10/0x10
[  297.435822][ T8646]  __x64_sys_openat+0x12d/0x210
[  297.435853][ T8646]  ? __pfx___x64_sys_openat+0x10/0x10
[  297.435894][ T8646]  do_syscall_64+0x106/0xf80
[  297.435920][ T8646]  ? clear_bhb_loop+0x40/0x90
[  297.435950][ T8646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.435975][ T8646] RIP: 0033:0x7f8f1539c629
[  297.435994][ T8646] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  297.436018][ T8646] RSP: 002b:00007f8f16307028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  297.436041][ T8646] RAX: ffffffffffffffda RBX: 00007f8f15615fa0 RCX: 00007f8f1539c629
[  297.436057][ T8646] RDX: 0000000000022202 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  297.436072][ T8646] RBP: 00007f8f15432b39 R08: 0000000000000000 R09: 0000000000000000
[  297.436087][ T8646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  297.436102][ T8646] R13: 00007f8f15616038 R14: 00007f8f15615fa0 R15: 00007ffd1ecf6098
[  297.436134][ T8646]  </TASK>
[  299.485513][ T8681] FAULT_INJECTION: forcing a failure.
[  299.485513][ T8681] name fail_futex, interval 1, probability 0, space 0, times 0
[  299.560237][ T8681] CPU: 1 UID: 0 PID: 8681 Comm: syz.4.595 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  299.560288][ T8681] Tainted: [L]=SOFTLOCKUP
[  299.560301][ T8681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  299.560320][ T8681] Call Trace:
[  299.560331][ T8681]  <TASK>
[  299.560348][ T8681]  dump_stack_lvl+0x100/0x190
[  299.560405][ T8681]  should_fail_ex.cold+0x5/0xa
[  299.560443][ T8681]  get_futex_key+0x1d2/0x1620
[  299.560489][ T8681]  ? __pfx_get_futex_key+0x10/0x10
[  299.560533][ T8681]  ? kasan_quarantine_put+0x104/0x240
[  299.560584][ T8681]  ? lockdep_hardirqs_on+0x78/0x100
[  299.560628][ T8681]  futex_wake+0xea/0x530
[  299.560688][ T8681]  ? find_held_lock+0x2b/0x80
[  299.560743][ T8681]  ? __pfx_futex_wake+0x10/0x10
[  299.560798][ T8681]  ? ksys_write+0x190/0x250
[  299.560847][ T8681]  ? ksys_write+0x190/0x250
[  299.560906][ T8681]  do_futex+0x32b/0x350
[  299.560949][ T8681]  ? __pfx_do_futex+0x10/0x10
[  299.561002][ T8681]  __x64_sys_futex+0x34f/0x4d0
[  299.561047][ T8681]  ? fput+0x79/0x100
[  299.561079][ T8681]  ? __pfx___x64_sys_futex+0x10/0x10
[  299.561120][ T8681]  ? ksys_write+0x1ac/0x250
[  299.561166][ T8681]  ? __pfx_ksys_write+0x10/0x10
[  299.561226][ T8681]  do_syscall_64+0x106/0xf80
[  299.561262][ T8681]  ? clear_bhb_loop+0x40/0x90
[  299.561300][ T8681]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  299.561335][ T8681] RIP: 0033:0x7ff8d799c629
[  299.561362][ T8681] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  299.561396][ T8681] RSP: 002b:00007ff8d87a60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  299.561429][ T8681] RAX: ffffffffffffffda RBX: 00007ff8d7c15fa8 RCX: 00007ff8d799c629
[  299.561452][ T8681] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff8d7c15fac
[  299.561473][ T8681] RBP: 00007ff8d7c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  299.561493][ T8681] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  299.561511][ T8681] R13: 00007ff8d7c16038 R14: 00007fffc181dac0 R15: 00007fffc181dba8
[  299.561555][ T8681]  </TASK>
[  302.105909][ T7126] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  302.117465][ T7126] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  302.129393][ T7126] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  302.137906][ T7126] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  302.154629][ T7126] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  302.613662][ T8714] chnl_net:caif_netlink_parms(): no params data found
[  302.767959][ T8714] bridge0: port 1(bridge_slave_0) entered blocking state
[  302.775370][ T8714] bridge0: port 1(bridge_slave_0) entered disabled state
[  302.782694][ T8714] bridge_slave_0: entered allmulticast mode
[  302.791619][ T8714] bridge_slave_0: entered promiscuous mode
[  302.801778][ T8714] bridge0: port 2(bridge_slave_1) entered blocking state
[  302.809650][ T8714] bridge0: port 2(bridge_slave_1) entered disabled state
[  302.817870][ T8714] bridge_slave_1: entered allmulticast mode
[  302.829899][ T8714] bridge_slave_1: entered promiscuous mode
[  302.886722][ T8714] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  302.900770][ T8714] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  302.962800][ T8714] team0: Port device team_slave_0 added
[  302.972506][ T8714] team0: Port device team_slave_1 added
[  303.020413][ T8714] batman_adv: batadv0: Adding interface: batadv_slave_0
[  303.030847][ T8714] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  303.057859][ T8714] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  303.076178][ T8714] batman_adv: batadv0: Adding interface: batadv_slave_1
[  303.090481][ T8714] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  303.117598][ T8714] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  303.200119][ T8714] hsr_slave_0: entered promiscuous mode
[  303.207345][ T8714] hsr_slave_1: entered promiscuous mode
[  303.214672][ T8714] debugfs: 'hsr0' already exists in 'hsr'
[  303.220456][ T8714] Cannot create hsr debugfs directory
[  303.507741][ T8714] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  303.520463][ T8714] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  303.535580][ T8714] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  303.549371][ T8714] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  303.648927][ T8714] 8021q: adding VLAN 0 to HW filter on device bond0
[  303.669964][ T8714] 8021q: adding VLAN 0 to HW filter on device team0
[  303.683016][ T7254] bridge0: port 1(bridge_slave_0) entered blocking state
[  303.690221][ T7254] bridge0: port 1(bridge_slave_0) entered forwarding state
[  303.707474][ T7263] bridge0: port 2(bridge_slave_1) entered blocking state
[  303.714720][ T7263] bridge0: port 2(bridge_slave_1) entered forwarding state
[  303.972322][ T8714] 8021q: adding VLAN 0 to HW filter on device batadv0
[  304.193993][ T7126] Bluetooth: hci6: command tx timeout
[  304.252996][ T8714] veth0_vlan: entered promiscuous mode
[  304.269580][ T8714] veth1_vlan: entered promiscuous mode
[  304.303177][ T8714] veth0_macvtap: entered promiscuous mode
[  304.315612][ T8714] veth1_macvtap: entered promiscuous mode
[  304.336926][ T8714] batman_adv: batadv0: Interface activated: batadv_slave_0
[  304.352602][ T8714] batman_adv: batadv0: Interface activated: batadv_slave_1
[  304.371689][ T7074] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  304.382286][ T7074] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  304.393295][ T7074] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  304.406729][ T7074] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  304.488988][ T7254] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  304.500892][ T7254] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  304.540164][ T7074] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  304.549316][ T7074] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  304.742862][ T8746] netlink: 28 bytes leftover after parsing attributes in process `syz.6.600'.
[  304.822427][ T8746] bridge0: port 2(bridge_slave_1) entered disabled state
[  304.862779][ T8746] bridge_slave_1 (unregistering): left allmulticast mode
[  304.979726][ T8746] bridge_slave_1 (unregistering): left promiscuous mode
[  304.990208][ T8746] bridge0: port 2(bridge_slave_1) entered disabled state
[  305.992178][ T8762] netlink: 28 bytes leftover after parsing attributes in process `syz.4.604'.
[  306.016192][ T8767] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  306.031631][ T8767] FAULT_INJECTION: forcing a failure.
[  306.031631][ T8767] name failslab, interval 1, probability 0, space 0, times 0
[  306.060868][ T8767] CPU: 0 UID: 0 PID: 8767 Comm: syz.6.602 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  306.060925][ T8767] Tainted: [L]=SOFTLOCKUP
[  306.060939][ T8767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  306.060964][ T8767] Call Trace:
[  306.060976][ T8767]  <TASK>
[  306.060990][ T8767]  dump_stack_lvl+0x100/0x190
[  306.061048][ T8767]  should_fail_ex.cold+0x5/0xa
[  306.061089][ T8767]  should_failslab+0xc2/0x120
[  306.061145][ T8767]  __kmalloc_cache_node_noprof+0x7d/0x770
[  306.061198][ T8767]  ? do_kmem_cache_create+0x16d/0x540
[  306.061251][ T8767]  ? __raw_spin_lock_init+0x3a/0x110
[  306.061306][ T8767]  do_kmem_cache_create+0x16d/0x540
[  306.061366][ T8767]  __kmem_cache_create_args+0x386/0x420
[  306.061417][ T8767]  mon_text_open+0x333/0x510
[  306.061462][ T8767]  ? __pfx_mon_text_open+0x10/0x10
[  306.061511][ T8767]  ? __pfx_mon_text_ctor+0x10/0x10
[  306.061555][ T8767]  ? find_held_lock+0x2b/0x80
[  306.061609][ T8767]  ? __pfx_apparmor_file_open+0x10/0x10
[  306.061654][ T8767]  ? lockdown_is_locked_down+0x3d/0x140
[  306.061704][ T8767]  ? bpf_lsm_locked_down+0x9/0x10
[  306.061837][ T8767]  ? __pfx_mon_text_open+0x10/0x10
[  306.061886][ T8767]  full_proxy_open_regular+0x1b6/0x370
[  306.061936][ T8767]  do_dentry_open+0x6d8/0x1660
[  306.061990][ T8767]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  306.062044][ T8767]  vfs_open+0x82/0x3f0
[  306.062088][ T8767]  path_openat+0x208c/0x31a0
[  306.062134][ T8767]  ? __pfx_path_openat+0x10/0x10
[  306.062208][ T8767]  do_file_open+0x20e/0x430
[  306.062245][ T8767]  ? __pfx_do_file_open+0x10/0x10
[  306.062309][ T8767]  ? alloc_fd+0x476/0x790
[  306.062369][ T8767]  ? do_getname+0x191/0x390
[  306.062415][ T8767]  do_sys_openat2+0x10d/0x1e0
[  306.062459][ T8767]  ? __pfx_do_sys_openat2+0x10/0x10
[  306.062519][ T8767]  __x64_sys_openat+0x12d/0x210
[  306.062563][ T8767]  ? __pfx___x64_sys_openat+0x10/0x10
[  306.062627][ T8767]  do_syscall_64+0x106/0xf80
[  306.062667][ T8767]  ? clear_bhb_loop+0x40/0x90
[  306.062713][ T8767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.062784][ T8767] RIP: 0033:0x7fa104f9c629
[  306.062817][ T8767] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  306.062855][ T8767] RSP: 002b:00007fa105e07028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  306.062902][ T8767] RAX: ffffffffffffffda RBX: 00007fa105215fa0 RCX: 00007fa104f9c629
[  306.062926][ T8767] RDX: 0000000000022202 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  306.062949][ T8767] RBP: 00007fa105032b39 R08: 0000000000000000 R09: 0000000000000000
[  306.062970][ T8767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  306.062991][ T8767] R13: 00007fa105216038 R14: 00007fa105215fa0 R15: 00007ffd877d21a8
[  306.063039][ T8767]  </TASK>
[  306.063154][ T8767] __kmem_cache_create_args(mon_text_ffff888037f36c00) failed with error -22
[  306.382261][ T7126] Bluetooth: hci6: command tx timeout
[  306.397455][ T8767] CPU: 1 UID: 0 PID: 8767 Comm: syz.6.602 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  306.397501][ T8767] Tainted: [L]=SOFTLOCKUP
[  306.397510][ T8767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  306.397524][ T8767] Call Trace:
[  306.397532][ T8767]  <TASK>
[  306.397541][ T8767]  dump_stack_lvl+0x100/0x190
[  306.397582][ T8767]  __kmem_cache_create_args.cold+0x33/0x6e
[  306.397619][ T8767]  mon_text_open+0x333/0x510
[  306.397651][ T8767]  ? __pfx_mon_text_open+0x10/0x10
[  306.397685][ T8767]  ? __pfx_mon_text_ctor+0x10/0x10
[  306.397715][ T8767]  ? find_held_lock+0x2b/0x80
[  306.397754][ T8767]  ? __pfx_apparmor_file_open+0x10/0x10
[  306.397786][ T8767]  ? lockdown_is_locked_down+0x3d/0x140
[  306.397814][ T8767]  ? bpf_lsm_locked_down+0x9/0x10
[  306.397840][ T8767]  ? __pfx_mon_text_open+0x10/0x10
[  306.397870][ T8767]  full_proxy_open_regular+0x1b6/0x370
[  306.397903][ T8767]  do_dentry_open+0x6d8/0x1660
[  306.397941][ T8767]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  306.397978][ T8767]  vfs_open+0x82/0x3f0
[  306.398015][ T8767]  path_openat+0x208c/0x31a0
[  306.398047][ T8767]  ? __pfx_path_openat+0x10/0x10
[  306.398097][ T8767]  do_file_open+0x20e/0x430
[  306.398121][ T8767]  ? __pfx_do_file_open+0x10/0x10
[  306.398164][ T8767]  ? alloc_fd+0x476/0x790
[  306.398203][ T8767]  ? do_getname+0x191/0x390
[  306.398232][ T8767]  do_sys_openat2+0x10d/0x1e0
[  306.398260][ T8767]  ? __pfx_do_sys_openat2+0x10/0x10
[  306.398300][ T8767]  __x64_sys_openat+0x12d/0x210
[  306.398329][ T8767]  ? __pfx___x64_sys_openat+0x10/0x10
[  306.398369][ T8767]  do_syscall_64+0x106/0xf80
[  306.398394][ T8767]  ? clear_bhb_loop+0x40/0x90
[  306.398423][ T8767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.398446][ T8767] RIP: 0033:0x7fa104f9c629
[  306.398466][ T8767] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  306.398489][ T8767] RSP: 002b:00007fa105e07028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  306.398512][ T8767] RAX: ffffffffffffffda RBX: 00007fa105215fa0 RCX: 00007fa104f9c629
[  306.398528][ T8767] RDX: 0000000000022202 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  306.398543][ T8767] RBP: 00007fa105032b39 R08: 0000000000000000 R09: 0000000000000000
[  306.398557][ T8767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  306.398570][ T8767] R13: 00007fa105216038 R14: 00007fa105215fa0 R15: 00007ffd877d21a8
[  306.398601][ T8767]  </TASK>
[  307.246510][ T8779] FAULT_INJECTION: forcing a failure.
[  307.246510][ T8779] name fail_futex, interval 1, probability 0, space 0, times 0
[  307.319341][ T8779] CPU: 1 UID: 0 PID: 8779 Comm: syz.6.606 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  307.319397][ T8779] Tainted: [L]=SOFTLOCKUP
[  307.319409][ T8779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  307.319429][ T8779] Call Trace:
[  307.319440][ T8779]  <TASK>
[  307.319453][ T8779]  dump_stack_lvl+0x100/0x190
[  307.319510][ T8779]  should_fail_ex.cold+0x5/0xa
[  307.319550][ T8779]  get_futex_key+0x1d2/0x1620
[  307.319596][ T8779]  ? __pfx_get_futex_key+0x10/0x10
[  307.319651][ T8779]  ? kasan_quarantine_put+0x104/0x240
[  307.319700][ T8779]  ? lockdep_hardirqs_on+0x78/0x100
[  307.319744][ T8779]  futex_wake+0xea/0x530
[  307.319792][ T8779]  ? find_held_lock+0x2b/0x80
[  307.319845][ T8779]  ? __pfx_futex_wake+0x10/0x10
[  307.319899][ T8779]  ? ksys_write+0x190/0x250
[  307.319948][ T8779]  ? ksys_write+0x190/0x250
[  307.320004][ T8779]  do_futex+0x32b/0x350
[  307.320046][ T8779]  ? __pfx_do_futex+0x10/0x10
[  307.320099][ T8779]  __x64_sys_futex+0x34f/0x4d0
[  307.320145][ T8779]  ? fput+0x79/0x100
[  307.320177][ T8779]  ? __pfx___x64_sys_futex+0x10/0x10
[  307.320220][ T8779]  ? ksys_write+0x1ac/0x250
[  307.320269][ T8779]  ? __pfx_ksys_write+0x10/0x10
[  307.320330][ T8779]  do_syscall_64+0x106/0xf80
[  307.320366][ T8779]  ? clear_bhb_loop+0x40/0x90
[  307.320408][ T8779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.320443][ T8779] RIP: 0033:0x7fa104f9c629
[  307.320471][ T8779] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  307.320504][ T8779] RSP: 002b:00007fa105e070e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  307.320536][ T8779] RAX: ffffffffffffffda RBX: 00007fa105215fa8 RCX: 00007fa104f9c629
[  307.320560][ T8779] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa105215fac
[  307.320581][ T8779] RBP: 00007fa105215fa0 R08: 0000000000000000 R09: 0000000000000000
[  307.320601][ T8779] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  307.320629][ T8779] R13: 00007fa105216038 R14: 00007ffd877d20c0 R15: 00007ffd877d21a8
[  307.320674][ T8779]  </TASK>
[  308.401852][ T8798] random: crng reseeded on system resumption
[  308.452123][ T7126] Bluetooth: hci6: command tx timeout
[  310.517231][ T7126] Bluetooth: hci6: command tx timeout
[  310.988396][ T8830] FAULT_INJECTION: forcing a failure.
[  310.988396][ T8830] name fail_futex, interval 1, probability 0, space 0, times 0
[  311.026982][ T8830] CPU: 0 UID: 0 PID: 8830 Comm: syz.6.621 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  311.027034][ T8830] Tainted: [L]=SOFTLOCKUP
[  311.027045][ T8830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  311.027065][ T8830] Call Trace:
[  311.027076][ T8830]  <TASK>
[  311.027088][ T8830]  dump_stack_lvl+0x100/0x190
[  311.027141][ T8830]  should_fail_ex.cold+0x5/0xa
[  311.027178][ T8830]  get_futex_key+0x295/0x1620
[  311.027222][ T8830]  ? __pfx_get_futex_key+0x10/0x10
[  311.027255][ T8830]  ? lock_acquire+0x1cf/0x380
[  311.027318][ T8830]  futex_wake+0xea/0x530
[  311.027370][ T8830]  ? __pfx_futex_wake+0x10/0x10
[  311.027418][ T8830]  ? exit_mm_release+0x19/0x30
[  311.027468][ T8830]  do_futex+0x32b/0x350
[  311.027507][ T8830]  ? __pfx_do_futex+0x10/0x10
[  311.027542][ T8830]  ? __might_fault+0xc5/0x140
[  311.027596][ T8830]  mm_release+0x24a/0x2f0
[  311.027628][ T8830]  do_exit+0x675/0x2aa0
[  311.027674][ T8830]  ? __pfx_do_exit+0x10/0x10
[  311.027712][ T8830]  ? do_raw_spin_lock+0x128/0x260
[  311.027755][ T8830]  ? find_held_lock+0x2b/0x80
[  311.027803][ T8830]  ? get_signal+0x7e0/0x21e0
[  311.027838][ T8830]  do_group_exit+0xd5/0x2a0
[  311.027882][ T8830]  get_signal+0x1ec7/0x21e0
[  311.027924][ T8830]  ? ksys_write+0x190/0x250
[  311.027972][ T8830]  ? __pfx_get_signal+0x10/0x10
[  311.028007][ T8830]  ? do_futex+0x192/0x350
[  311.028052][ T8830]  arch_do_signal_or_restart+0x91/0x770
[  311.028093][ T8830]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  311.028143][ T8830]  ? __pfx___x64_sys_futex+0x10/0x10
[  311.028181][ T8830]  ? ksys_write+0x1ac/0x250
[  311.028235][ T8830]  exit_to_user_mode_loop+0x86/0x4a0
[  311.028281][ T8830]  do_syscall_64+0x668/0xf80
[  311.028321][ T8830]  ? clear_bhb_loop+0x40/0x90
[  311.028360][ T8830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.028394][ T8830] RIP: 0033:0x7fa104f9c629
[  311.028420][ T8830] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  311.028452][ T8830] RSP: 002b:00007fa105e070e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  311.028483][ T8830] RAX: 0000000000000001 RBX: 00007fa105215fa8 RCX: 00007fa104f9c629
[  311.028502][ T8830] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa105215fac
[  311.028520][ T8830] RBP: 00007fa105215fa0 R08: 0000000000000000 R09: 0000000000000000
[  311.028539][ T8830] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  311.028557][ T8830] R13: 00007fa105216038 R14: 00007ffd877d20c0 R15: 00007ffd877d21a8
[  311.028602][ T8830]  </TASK>
[  311.842419][ T8833] FAULT_INJECTION: forcing a failure.
[  311.842419][ T8833] name failslab, interval 1, probability 0, space 0, times 0
[  311.887640][ T8833] CPU: 0 UID: 0 PID: 8833 Comm: syz.0.624 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  311.887697][ T8833] Tainted: [L]=SOFTLOCKUP
[  311.887710][ T8833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  311.887730][ T8833] Call Trace:
[  311.887741][ T8833]  <TASK>
[  311.887754][ T8833]  dump_stack_lvl+0x100/0x190
[  311.887811][ T8833]  should_fail_ex.cold+0x5/0xa
[  311.887851][ T8833]  should_failslab+0xc2/0x120
[  311.887906][ T8833]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  311.887955][ T8833]  ? ptlock_alloc+0x1f/0x70
[  311.888013][ T8833]  ptlock_alloc+0x1f/0x70
[  311.888056][ T8833]  pte_alloc_one+0x84/0x3e0
[  311.888095][ T8833]  do_fault+0x8cc/0x1950
[  311.888129][ T8833]  ? __pmd_alloc+0x6aa/0x9c0
[  311.888167][ T8833]  __handle_mm_fault+0x180f/0x2b60
[  311.888225][ T8833]  ? mt_find+0x45e/0x8e0
[  311.888269][ T8833]  ? __pfx___handle_mm_fault+0x10/0x10
[  311.888310][ T8833]  ? __pfx_mt_find+0x10/0x10
[  311.888375][ T8833]  ? find_vma+0xbf/0x140
[  311.888426][ T8833]  ? __pfx_find_vma+0x10/0x10
[  311.888481][ T8833]  handle_mm_fault+0x36d/0xa20
[  311.888533][ T8833]  do_user_addr_fault+0x74c/0x12f0
[  311.888601][ T8833]  exc_page_fault+0x6f/0xd0
[  311.888639][ T8833]  asm_exc_page_fault+0x26/0x30
[  311.888673][ T8833] RIP: 0010:rep_movs_alternative+0x30/0x90
[  311.888723][ T8833] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  311.888757][ T8833] RSP: 0018:ffffc90007fd7a98 EFLAGS: 00050212
[  311.888786][ T8833] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000024
[  311.888806][ T8833] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90007fd7b28
[  311.888825][ T8833] RBP: 0000000000000024 R08: 0000000000000001 R09: fffff52000ffaf69
[  311.888845][ T8833] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  311.888864][ T8833] R13: ffffc90007fd7b28 R14: 0000000000000000 R15: 0000000000100082
[  311.888908][ T8833]  _copy_from_user+0x98/0xd0
[  311.888963][ T8833]  sg_write+0x2af/0xdb0
[  311.889012][ T8833]  ? __pfx_sg_write+0x10/0x10
[  311.889099][ T8833]  ? apparmor_file_permission+0x13f/0x1c0
[  311.889154][ T8833]  ? bpf_lsm_file_permission+0x9/0x10
[  311.889215][ T8833]  ? security_file_permission+0x76/0x210
[  311.889273][ T8833]  ? rw_verify_area+0xce/0x6d0
[  311.889324][ T8833]  vfs_write+0x2aa/0x1070
[  311.889375][ T8833]  ? __pfx_sg_write+0x10/0x10
[  311.889422][ T8833]  ? __pfx_vfs_write+0x10/0x10
[  311.889469][ T8833]  ? find_held_lock+0x2b/0x80
[  311.889521][ T8833]  ? __fget_files+0x215/0x3d0
[  311.889581][ T8833]  ? __fget_files+0x215/0x3d0
[  311.889640][ T8833]  ? __fget_files+0x21f/0x3d0
[  311.889705][ T8833]  ksys_write+0x12a/0x250
[  311.889757][ T8833]  ? __pfx_ksys_write+0x10/0x10
[  311.889821][ T8833]  do_syscall_64+0x106/0xf80
[  311.889857][ T8833]  ? clear_bhb_loop+0x40/0x90
[  311.889900][ T8833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.889935][ T8833] RIP: 0033:0x7f8f1539c629
[  311.889963][ T8833] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  311.889996][ T8833] RSP: 002b:00007f8f16307028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  311.890029][ T8833] RAX: ffffffffffffffda RBX: 00007f8f15615fa0 RCX: 00007f8f1539c629
[  311.890051][ T8833] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  311.890071][ T8833] RBP: 00007f8f15432b39 R08: 0000000000000000 R09: 0000000000000000
[  311.890090][ T8833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  311.890109][ T8833] R13: 00007f8f15616038 R14: 00007f8f15615fa0 R15: 00007ffd1ecf6098
[  311.890162][ T8833]  </TASK>
[  313.799489][ T8852] netlink: 28 bytes leftover after parsing attributes in process `syz.0.628'.
[  315.630449][ T8881] FAULT_INJECTION: forcing a failure.
[  315.630449][ T8881] name fail_futex, interval 1, probability 0, space 0, times 0
[  315.643523][ T8881] CPU: 0 UID: 0 PID: 8881 Comm: syz.0.634 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  315.643576][ T8881] Tainted: [L]=SOFTLOCKUP
[  315.643587][ T8881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  315.643607][ T8881] Call Trace:
[  315.643617][ T8881]  <TASK>
[  315.643628][ T8881]  dump_stack_lvl+0x100/0x190
[  315.643684][ T8881]  should_fail_ex.cold+0x5/0xa
[  315.643721][ T8881]  should_fail_futex+0x4c/0x60
[  315.643761][ T8881]  futex_lock_pi_atomic+0x12d/0xaf0
[  315.643829][ T8881]  futex_lock_pi+0x246/0x7b0
[  315.643886][ T8881]  ? __pfx_futex_lock_pi+0x10/0x10
[  315.643937][ T8881]  ? __pfx___futex_wait+0x10/0x10
[  315.644026][ T8881]  ? __pfx_futex_wake_mark+0x10/0x10
[  315.644086][ T8881]  ? ksys_write+0x190/0x250
[  315.644134][ T8881]  ? ksys_write+0x190/0x250
[  315.644191][ T8881]  do_futex+0x18a/0x350
[  315.644234][ T8881]  ? __pfx_do_futex+0x10/0x10
[  315.644288][ T8881]  __x64_sys_futex+0x34f/0x4d0
[  315.644334][ T8881]  ? __pfx___x64_sys_futex+0x10/0x10
[  315.644393][ T8881]  do_syscall_64+0x106/0xf80
[  315.644430][ T8881]  ? clear_bhb_loop+0x40/0x90
[  315.644472][ T8881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.644506][ T8881] RIP: 0033:0x7f8f1539c629
[  315.644535][ T8881] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  315.644569][ T8881] RSP: 002b:00007f8f16307028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  315.644602][ T8881] RAX: ffffffffffffffda RBX: 00007f8f15615fa0 RCX: 00007f8f1539c629
[  315.644625][ T8881] RDX: 000000000000001f RSI: 0000000000000006 RDI: 0000000000000000
[  315.644645][ T8881] RBP: 00007f8f15432b39 R08: 0000000000000000 R09: 000000008000fff5
[  315.644665][ T8881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  315.644684][ T8881] R13: 00007f8f15616038 R14: 00007f8f15615fa0 R15: 00007ffd1ecf6098
[  315.644728][ T8881]  </TASK>
[  316.112584][ T8876] random: crng reseeded on system resumption
[  317.406043][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  317.412486][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  318.221841][ T8907] netlink: 28 bytes leftover after parsing attributes in process `syz.6.638'.
[  320.645713][ T8943] random: crng reseeded on system resumption
[  320.683317][ T8942] FAULT_INJECTION: forcing a failure.
[  320.683317][ T8942] name fail_futex, interval 1, probability 0, space 0, times 0
[  320.696352][ T8942] CPU: 1 UID: 0 PID: 8942 Comm: syz.6.645 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  320.696407][ T8942] Tainted: [L]=SOFTLOCKUP
[  320.696420][ T8942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  320.696439][ T8942] Call Trace:
[  320.696451][ T8942]  <TASK>
[  320.696463][ T8942]  dump_stack_lvl+0x100/0x190
[  320.696527][ T8942]  should_fail_ex.cold+0x5/0xa
[  320.696566][ T8942]  should_fail_futex+0x4c/0x60
[  320.696604][ T8942]  futex_lock_pi_atomic+0x12d/0xaf0
[  320.696660][ T8942]  futex_lock_pi+0x246/0x7b0
[  320.696716][ T8942]  ? __pfx_futex_lock_pi+0x10/0x10
[  320.696768][ T8942]  ? __pfx___futex_wait+0x10/0x10
[  320.696819][ T8942]  ? lockdep_hardirqs_on+0x78/0x100
[  320.696897][ T8942]  ? __pfx_futex_wake_mark+0x10/0x10
[  320.696959][ T8942]  ? ksys_write+0x190/0x250
[  320.697010][ T8942]  ? ksys_write+0x190/0x250
[  320.697068][ T8942]  do_futex+0x18a/0x350
[  320.697112][ T8942]  ? __pfx_do_futex+0x10/0x10
[  320.697166][ T8942]  __x64_sys_futex+0x34f/0x4d0
[  320.697216][ T8942]  ? __pfx___x64_sys_futex+0x10/0x10
[  320.697277][ T8942]  do_syscall_64+0x106/0xf80
[  320.697313][ T8942]  ? clear_bhb_loop+0x40/0x90
[  320.697356][ T8942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.697391][ T8942] RIP: 0033:0x7fa104f9c629
[  320.697420][ T8942] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  320.697455][ T8942] RSP: 002b:00007fa105e07028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  320.697490][ T8942] RAX: ffffffffffffffda RBX: 00007fa105215fa0 RCX: 00007fa104f9c629
[  320.697520][ T8942] RDX: 000000000000001f RSI: 0000000000000006 RDI: 0000000000000000
[  320.697541][ T8942] RBP: 00007fa105032b39 R08: 0000000000000000 R09: 000000008000fff5
[  320.697562][ T8942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  320.697581][ T8942] R13: 00007fa105216038 R14: 00007fa105215fa0 R15: 00007ffd877d21a8
[  320.697625][ T8942]  </TASK>
[  321.197837][ T8948] FAULT_INJECTION: forcing a failure.
[  321.197837][ T8948] name failslab, interval 1, probability 0, space 0, times 0
[  321.234167][ T8948] CPU: 0 UID: 0 PID: 8948 Comm: syz.2.655 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  321.234221][ T8948] Tainted: [L]=SOFTLOCKUP
[  321.234233][ T8948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  321.234259][ T8948] Call Trace:
[  321.234269][ T8948]  <TASK>
[  321.234282][ T8948]  dump_stack_lvl+0x100/0x190
[  321.234337][ T8948]  should_fail_ex.cold+0x5/0xa
[  321.234375][ T8948]  should_failslab+0xc2/0x120
[  321.234431][ T8948]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  321.234479][ T8948]  ? ptlock_alloc+0x1f/0x70
[  321.234528][ T8948]  ptlock_alloc+0x1f/0x70
[  321.234568][ T8948]  pte_alloc_one+0x84/0x3e0
[  321.234605][ T8948]  do_fault+0x8cc/0x1950
[  321.234639][ T8948]  ? __pmd_alloc+0x6aa/0x9c0
[  321.234678][ T8948]  __handle_mm_fault+0x180f/0x2b60
[  321.234728][ T8948]  ? mt_find+0x45e/0x8e0
[  321.234775][ T8948]  ? __pfx___handle_mm_fault+0x10/0x10
[  321.234815][ T8948]  ? __pfx_mt_find+0x10/0x10
[  321.234878][ T8948]  ? find_vma+0xbf/0x140
[  321.234929][ T8948]  ? __pfx_find_vma+0x10/0x10
[  321.234985][ T8948]  handle_mm_fault+0x36d/0xa20
[  321.235037][ T8948]  do_user_addr_fault+0x74c/0x12f0
[  321.235104][ T8948]  exc_page_fault+0x6f/0xd0
[  321.235141][ T8948]  asm_exc_page_fault+0x26/0x30
[  321.235174][ T8948] RIP: 0010:rep_movs_alternative+0x30/0x90
[  321.235242][ T8948] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  321.235281][ T8948] RSP: 0018:ffffc90005b7fa98 EFLAGS: 00050212
[  321.235314][ T8948] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000024
[  321.235334][ T8948] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90005b7fb28
[  321.235354][ T8948] RBP: 0000000000000024 R08: 0000000000000001 R09: fffff52000b6ff69
[  321.235374][ T8948] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  321.235393][ T8948] R13: ffffc90005b7fb28 R14: 0000000000000000 R15: 0000000000100082
[  321.235436][ T8948]  _copy_from_user+0x98/0xd0
[  321.235491][ T8948]  sg_write+0x2af/0xdb0
[  321.235539][ T8948]  ? __pfx_sg_write+0x10/0x10
[  321.235625][ T8948]  ? apparmor_file_permission+0x13f/0x1c0
[  321.235678][ T8948]  ? bpf_lsm_file_permission+0x9/0x10
[  321.235727][ T8948]  ? security_file_permission+0x76/0x210
[  321.235784][ T8948]  ? rw_verify_area+0xce/0x6d0
[  321.235831][ T8948]  vfs_write+0x2aa/0x1070
[  321.235882][ T8948]  ? __pfx_sg_write+0x10/0x10
[  321.235928][ T8948]  ? __pfx_vfs_write+0x10/0x10
[  321.235974][ T8948]  ? find_held_lock+0x2b/0x80
[  321.236025][ T8948]  ? __fget_files+0x215/0x3d0
[  321.236073][ T8948]  ? __fget_files+0x215/0x3d0
[  321.236130][ T8948]  ? __fget_files+0x21f/0x3d0
[  321.236191][ T8948]  ksys_write+0x12a/0x250
[  321.236237][ T8948]  ? __pfx_ksys_write+0x10/0x10
[  321.236309][ T8948]  do_syscall_64+0x106/0xf80
[  321.236345][ T8948]  ? clear_bhb_loop+0x40/0x90
[  321.236387][ T8948]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.236421][ T8948] RIP: 0033:0x7f027299c629
[  321.236448][ T8948] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  321.236481][ T8948] RSP: 002b:00007f0273905028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  321.236512][ T8948] RAX: ffffffffffffffda RBX: 00007f0272c15fa0 RCX: 00007f027299c629
[  321.236534][ T8948] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  321.236553][ T8948] RBP: 00007f0272a32b39 R08: 0000000000000000 R09: 0000000000000000
[  321.236573][ T8948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  321.236592][ T8948] R13: 00007f0272c16038 R14: 00007f0272c15fa0 R15: 00007ffec48c5af8
[  321.236637][ T8948]  </TASK>
[  322.155549][ T8963] netlink: 28 bytes leftover after parsing attributes in process `syz.4.650'.
[  323.470512][ T8981] netlink: 8 bytes leftover after parsing attributes in process `syz.0.652'.
[  324.824311][ T8997] random: crng reseeded on system resumption
[  325.558733][ T7126] Bluetooth: hci1: Unable to find connection for big 0xd2
[  325.576027][ T9006] netlink: 'syz.0.660': attribute type 16 has an invalid length.
[  325.626462][ T9006] netlink: 226 bytes leftover after parsing attributes in process `syz.0.660'.
[  325.669888][ T9006] netlink: 4 bytes leftover after parsing attributes in process `syz.0.660'.
[  327.253498][ T9028] netlink: 28 bytes leftover after parsing attributes in process `syz.2.667'.
[  328.055944][ T9040] random: crng reseeded on system resumption
[  328.139194][ T9042] overlayfs: missing 'lowerdir'
[  328.151758][ T9042] overlayfs: missing 'lowerdir'
[  330.842736][ T9084] FAULT_INJECTION: forcing a failure.
[  330.842736][ T9084] name failslab, interval 1, probability 0, space 0, times 0
[  330.889254][ T9084] CPU: 0 UID: 0 PID: 9084 Comm: syz.0.678 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  330.889306][ T9084] Tainted: [L]=SOFTLOCKUP
[  330.889315][ T9084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  330.889329][ T9084] Call Trace:
[  330.889337][ T9084]  <TASK>
[  330.889345][ T9084]  dump_stack_lvl+0x100/0x190
[  330.889385][ T9084]  should_fail_ex.cold+0x5/0xa
[  330.889414][ T9084]  should_failslab+0xc2/0x120
[  330.889452][ T9084]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  330.889485][ T9084]  ? taskstats_exit+0x650/0xbd0
[  330.889526][ T9084]  taskstats_exit+0x650/0xbd0
[  330.889568][ T9084]  ? __pfx_acct_update_integrals+0x10/0x10
[  330.889606][ T9084]  ? __pfx_taskstats_exit+0x10/0x10
[  330.889645][ T9084]  ? rcu_read_lock_any_held+0x6a/0xa0
[  330.889683][ T9084]  ? exit_signals+0x395/0xaf0
[  330.889713][ T9084]  do_exit+0x5ca/0x2aa0
[  330.889747][ T9084]  ? __pfx_do_exit+0x10/0x10
[  330.889776][ T9084]  ? do_raw_spin_lock+0x128/0x260
[  330.889808][ T9084]  ? find_held_lock+0x2b/0x80
[  330.889843][ T9084]  ? get_signal+0x7e0/0x21e0
[  330.889868][ T9084]  do_group_exit+0xd5/0x2a0
[  330.889900][ T9084]  get_signal+0x1ec7/0x21e0
[  330.889929][ T9084]  ? ksys_write+0x190/0x250
[  330.889965][ T9084]  ? __pfx_get_signal+0x10/0x10
[  330.889989][ T9084]  ? do_futex+0x192/0x350
[  330.890021][ T9084]  arch_do_signal_or_restart+0x91/0x770
[  330.890050][ T9084]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  330.890086][ T9084]  ? __pfx___x64_sys_futex+0x10/0x10
[  330.890121][ T9084]  exit_to_user_mode_loop+0x86/0x4a0
[  330.890153][ T9084]  do_syscall_64+0x668/0xf80
[  330.890178][ T9084]  ? clear_bhb_loop+0x40/0x90
[  330.890206][ T9084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.890229][ T9084] RIP: 0033:0x7f8f1539c629
[  330.890248][ T9084] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  330.890271][ T9084] RSP: 002b:00007f8f163070e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  330.890294][ T9084] RAX: fffffffffffffe00 RBX: 00007f8f15615fa8 RCX: 00007f8f1539c629
[  330.890309][ T9084] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8f15615fa8
[  330.890323][ T9084] RBP: 00007f8f15615fa0 R08: 0000000000000000 R09: 0000000000000000
[  330.890337][ T9084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  330.890350][ T9084] R13: 00007f8f15616038 R14: 00007ffd1ecf5fb0 R15: 00007ffd1ecf6098
[  330.890380][ T9084]  </TASK>
[  331.477988][ T9079] zswap: compressor û not available
[  332.466069][ T9102] FAULT_INJECTION: forcing a failure.
[  332.466069][ T9102] name failslab, interval 1, probability 0, space 0, times 0
[  332.487747][ T9102] CPU: 0 UID: 0 PID: 9102 Comm: syz.4.684 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  332.487801][ T9102] Tainted: [L]=SOFTLOCKUP
[  332.487812][ T9102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  332.487832][ T9102] Call Trace:
[  332.487843][ T9102]  <TASK>
[  332.487855][ T9102]  dump_stack_lvl+0x100/0x190
[  332.487912][ T9102]  should_fail_ex.cold+0x5/0xa
[  332.487951][ T9102]  ? lsm_blob_alloc+0x68/0x90
[  332.487987][ T9102]  should_failslab+0xc2/0x120
[  332.488043][ T9102]  __kmalloc_noprof+0xe0/0x850
[  332.488088][ T9102]  ? trace_kmalloc+0x101/0x130
[  332.488124][ T9102]  lsm_blob_alloc+0x68/0x90
[  332.488162][ T9102]  security_sk_alloc+0x2d/0x290
[  332.488210][ T9102]  sk_prot_alloc+0x12a/0x2a0
[  332.488259][ T9102]  sk_alloc+0x36/0xe80
[  332.488293][ T9102]  __netlink_create+0x5e/0x2c0
[  332.488323][ T9102]  ? __wake_up+0x3f/0x60
[  332.488358][ T9102]  netlink_create+0x293/0x610
[  332.488390][ T9102]  ? __pfx_genl_bind+0x10/0x10
[  332.488439][ T9102]  ? __pfx_genl_unbind+0x10/0x10
[  332.488479][ T9102]  ? __pfx_genl_release+0x10/0x10
[  332.488528][ T9102]  __sock_create+0x339/0x860
[  332.488583][ T9102]  __sys_socket+0x14d/0x260
[  332.488633][ T9102]  ? __pfx___sys_socket+0x10/0x10
[  332.488694][ T9102]  __x64_sys_socket+0x72/0xb0
[  332.488741][ T9102]  ? lockdep_hardirqs_on+0x78/0x100
[  332.488780][ T9102]  do_syscall_64+0x106/0xf80
[  332.488815][ T9102]  ? clear_bhb_loop+0x40/0x90
[  332.488855][ T9102]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.488889][ T9102] RIP: 0033:0x7ff8d799c629
[  332.488917][ T9102] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  332.488951][ T9102] RSP: 002b:00007ff8d87a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  332.488984][ T9102] RAX: ffffffffffffffda RBX: 00007ff8d7c15fa0 RCX: 00007ff8d799c629
[  332.489006][ T9102] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  332.489025][ T9102] RBP: 00007ff8d7a32b39 R08: 0000000000000000 R09: 0000000000000000
[  332.489045][ T9102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  332.489064][ T9102] R13: 00007ff8d7c16038 R14: 00007ff8d7c15fa0 R15: 00007fffc181dba8
[  332.489108][ T9102]  </TASK>
[  334.771999][ T9142] FAULT_INJECTION: forcing a failure.
[  334.771999][ T9142] name fail_futex, interval 1, probability 0, space 0, times 0
[  334.795156][ T9142] CPU: 1 UID: 0 PID: 9142 Comm: syz.2.691 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  334.795195][ T9142] Tainted: [L]=SOFTLOCKUP
[  334.795204][ T9142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  334.795218][ T9142] Call Trace:
[  334.795232][ T9142]  <TASK>
[  334.795241][ T9142]  dump_stack_lvl+0x100/0x190
[  334.795282][ T9142]  should_fail_ex.cold+0x5/0xa
[  334.795309][ T9142]  get_futex_key+0x1d2/0x1620
[  334.795341][ T9142]  ? __pfx_get_futex_key+0x10/0x10
[  334.795371][ T9142]  ? kasan_quarantine_put+0x104/0x240
[  334.795406][ T9142]  ? lockdep_hardirqs_on+0x78/0x100
[  334.795437][ T9142]  futex_wake+0xea/0x530
[  334.795472][ T9142]  ? find_held_lock+0x2b/0x80
[  334.795511][ T9142]  ? __pfx_futex_wake+0x10/0x10
[  334.795550][ T9142]  ? ksys_write+0x190/0x250
[  334.795585][ T9142]  ? ksys_write+0x190/0x250
[  334.795626][ T9142]  do_futex+0x32b/0x350
[  334.795656][ T9142]  ? __pfx_do_futex+0x10/0x10
[  334.795694][ T9142]  __x64_sys_futex+0x34f/0x4d0
[  334.795727][ T9142]  ? fput+0x79/0x100
[  334.795750][ T9142]  ? __pfx___x64_sys_futex+0x10/0x10
[  334.795780][ T9142]  ? ksys_write+0x1ac/0x250
[  334.795815][ T9142]  ? __pfx_ksys_write+0x10/0x10
[  334.795859][ T9142]  do_syscall_64+0x106/0xf80
[  334.795884][ T9142]  ? clear_bhb_loop+0x40/0x90
[  334.795913][ T9142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.795938][ T9142] RIP: 0033:0x7f027299c629
[  334.795958][ T9142] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  334.795982][ T9142] RSP: 002b:00007f02739050e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  334.796006][ T9142] RAX: ffffffffffffffda RBX: 00007f0272c15fa8 RCX: 00007f027299c629
[  334.796021][ T9142] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0272c15fac
[  334.796036][ T9142] RBP: 00007f0272c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  334.796051][ T9142] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  334.796065][ T9142] R13: 00007f0272c16038 R14: 00007ffec48c5a10 R15: 00007ffec48c5af8
[  334.796096][ T9142]  </TASK>
[  335.053164][ T7071] Bluetooth: hci4: command 0x0406 tx timeout
[  335.476655][ T7126] Bluetooth: hci2: Unable to find connection for big 0xd2
[  335.490757][ T9153] netlink: 'syz.2.701': attribute type 16 has an invalid length.
[  335.511803][ T9153] netlink: 226 bytes leftover after parsing attributes in process `syz.2.701'.
[  335.530984][ T9153] netlink: 4 bytes leftover after parsing attributes in process `syz.2.701'.
[  336.663715][ T9165] FAULT_INJECTION: forcing a failure.
[  336.663715][ T9165] name failslab, interval 1, probability 0, space 0, times 0
[  336.681934][ T9165] CPU: 0 UID: 0 PID: 9165 Comm: syz.4.696 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  336.681998][ T9165] Tainted: [L]=SOFTLOCKUP
[  336.682011][ T9165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  336.682032][ T9165] Call Trace:
[  336.682043][ T9165]  <TASK>
[  336.682055][ T9165]  dump_stack_lvl+0x100/0x190
[  336.682114][ T9165]  should_fail_ex.cold+0x5/0xa
[  336.682155][ T9165]  should_failslab+0xc2/0x120
[  336.682212][ T9165]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  336.682261][ T9165]  ? security_inode_alloc+0x3b/0x2c0
[  336.682308][ T9165]  ? lockdep_init_map_type+0x5c/0x250
[  336.682359][ T9165]  security_inode_alloc+0x3b/0x2c0
[  336.682408][ T9165]  inode_init_always_gfp+0xced/0x1040
[  336.682469][ T9165]  alloc_inode+0x8e/0x250
[  336.682510][ T9165]  sock_alloc+0x44/0x280
[  336.682548][ T9165]  ? security_socket_create+0x7f/0x250
[  336.682594][ T9165]  __sock_create+0xc2/0x860
[  336.682650][ T9165]  __sys_socket+0x14d/0x260
[  336.682700][ T9165]  ? __pfx___sys_socket+0x10/0x10
[  336.682764][ T9165]  __x64_sys_socket+0x72/0xb0
[  336.682812][ T9165]  ? lockdep_hardirqs_on+0x78/0x100
[  336.682850][ T9165]  do_syscall_64+0x106/0xf80
[  336.682886][ T9165]  ? clear_bhb_loop+0x40/0x90
[  336.682927][ T9165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.682963][ T9165] RIP: 0033:0x7ff8d799c629
[  336.682998][ T9165] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  336.683033][ T9165] RSP: 002b:00007ff8d87a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  336.683067][ T9165] RAX: ffffffffffffffda RBX: 00007ff8d7c15fa0 RCX: 00007ff8d799c629
[  336.683089][ T9165] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  336.683109][ T9165] RBP: 00007ff8d7a32b39 R08: 0000000000000000 R09: 0000000000000000
[  336.683129][ T9165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  336.683149][ T9165] R13: 00007ff8d7c16038 R14: 00007ff8d7c15fa0 R15: 00007fffc181dba8
[  336.683193][ T9165]  </TASK>
[  336.683409][ T9165] socket: no more sockets
[  336.734771][ T9163] netlink: 28 bytes leftover after parsing attributes in process `syz.0.695'.
[  337.068743][ T9171] FAULT_INJECTION: forcing a failure.
[  337.068743][ T9171] name failslab, interval 1, probability 0, space 0, times 0
[  337.100372][ T9161] random: crng reseeded on system resumption
[  337.110841][ T9171] CPU: 1 UID: 0 PID: 9171 Comm: syz.4.707 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  337.110894][ T9171] Tainted: [L]=SOFTLOCKUP
[  337.110905][ T9171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  337.110928][ T9171] Call Trace:
[  337.110938][ T9171]  <TASK>
[  337.110951][ T9171]  dump_stack_lvl+0x100/0x190
[  337.111008][ T9171]  should_fail_ex.cold+0x5/0xa
[  337.111047][ T9171]  should_failslab+0xc2/0x120
[  337.111103][ T9171]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  337.111152][ T9171]  ? ptlock_alloc+0x1f/0x70
[  337.111202][ T9171]  ptlock_alloc+0x1f/0x70
[  337.111243][ T9171]  pte_alloc_one+0x84/0x3e0
[  337.111282][ T9171]  do_fault+0x8cc/0x1950
[  337.111315][ T9171]  ? __pmd_alloc+0x6aa/0x9c0
[  337.111355][ T9171]  __handle_mm_fault+0x180f/0x2b60
[  337.111405][ T9171]  ? mt_find+0x45e/0x8e0
[  337.111448][ T9171]  ? __pfx___handle_mm_fault+0x10/0x10
[  337.111488][ T9171]  ? __pfx_mt_find+0x10/0x10
[  337.111554][ T9171]  ? find_vma+0xbf/0x140
[  337.111603][ T9171]  ? __pfx_find_vma+0x10/0x10
[  337.111673][ T9171]  handle_mm_fault+0x36d/0xa20
[  337.111725][ T9171]  do_user_addr_fault+0x74c/0x12f0
[  337.111794][ T9171]  exc_page_fault+0x6f/0xd0
[  337.111832][ T9171]  asm_exc_page_fault+0x26/0x30
[  337.111865][ T9171] RIP: 0010:rep_movs_alternative+0x30/0x90
[  337.111915][ T9171] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  337.112036][ T9171] RSP: 0018:ffffc900052cfb78 EFLAGS: 00050212
[  337.112065][ T9171] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000022
[  337.112085][ T9171] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc900052cfbd8
[  337.112106][ T9171] RBP: 0000000000000022 R08: 0000000000000001 R09: fffff52000a59f7f
[  337.112127][ T9171] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[  337.112147][ T9171] R13: ffffc900052cfbd8 R14: ffffc900052cfca0 R15: ffffc900052cfbd8
[  337.112195][ T9171]  _copy_from_user+0x98/0xd0
[  337.112252][ T9171]  kstrtouint_from_user+0xd6/0x1d0
[  337.112293][ T9171]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  337.112332][ T9171]  ? __lock_acquire+0x4a5/0x2630
[  337.112378][ T9171]  ? lock_acquire+0x1cf/0x380
[  337.112429][ T9171]  proc_fail_nth_write+0x83/0x220
[  337.112470][ T9171]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  337.112521][ T9171]  vfs_write+0x2aa/0x1070
[  337.112573][ T9171]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  337.112616][ T9171]  ? __pfx_vfs_write+0x10/0x10
[  337.112667][ T9171]  ? __fget_files+0x215/0x3d0
[  337.112740][ T9171]  ? __fget_files+0x21f/0x3d0
[  337.112807][ T9171]  ksys_write+0x12a/0x250
[  337.112857][ T9171]  ? __pfx_ksys_write+0x10/0x10
[  337.112922][ T9171]  do_syscall_64+0x106/0xf80
[  337.112959][ T9171]  ? clear_bhb_loop+0x40/0x90
[  337.113005][ T9171]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.113038][ T9171] RIP: 0033:0x7ff8d799c629
[  337.113067][ T9171] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  337.113100][ T9171] RSP: 002b:00007ff8d87a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  337.113133][ T9171] RAX: ffffffffffffffda RBX: 00007ff8d7c15fa0 RCX: 00007ff8d799c629
[  337.113156][ T9171] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  337.113176][ T9171] RBP: 00007ff8d7a32b39 R08: 0000000000000000 R09: 0000000000000000
[  337.113196][ T9171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  337.113216][ T9171] R13: 00007ff8d7c16038 R14: 00007ff8d7c15fa0 R15: 00007fffc181dba8
[  337.113259][ T9171]  </TASK>
[  337.880668][ T9177] FAULT_INJECTION: forcing a failure.
[  337.880668][ T9177] name fail_futex, interval 1, probability 0, space 0, times 0
[  337.941888][ T9177] CPU: 1 UID: 0 PID: 9177 Comm: syz.4.702 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  337.941944][ T9177] Tainted: [L]=SOFTLOCKUP
[  337.941955][ T9177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  337.941975][ T9177] Call Trace:
[  337.941985][ T9177]  <TASK>
[  337.941997][ T9177]  dump_stack_lvl+0x100/0x190
[  337.942050][ T9177]  should_fail_ex.cold+0x5/0xa
[  337.942090][ T9177]  get_futex_key+0x1d2/0x1620
[  337.942136][ T9177]  ? __pfx_get_futex_key+0x10/0x10
[  337.942175][ T9177]  ? kernfs_fop_write_iter+0x1df/0x5f0
[  337.942228][ T9177]  ? kasan_save_stack+0x3f/0x50
[  337.942270][ T9177]  ? kasan_save_stack+0x30/0x50
[  337.942315][ T9177]  ? kasan_save_track+0x14/0x30
[  337.942359][ T9177]  ? kasan_save_free_info+0x3b/0x70
[  337.942398][ T9177]  ? __kasan_slab_free+0x5f/0x80
[  337.942445][ T9177]  ? kfree+0x1f6/0x6b0
[  337.942481][ T9177]  ? kernfs_fop_write_iter+0x1df/0x5f0
[  337.942540][ T9177]  futex_wait_setup+0x81/0x500
[  337.942603][ T9177]  __futex_wait+0x19f/0x300
[  337.942666][ T9177]  ? __pfx___futex_wait+0x10/0x10
[  337.942725][ T9177]  ? __pfx_futex_wake_mark+0x10/0x10
[  337.942781][ T9177]  ? futex_hash+0x2c5/0x380
[  337.942832][ T9177]  futex_wait+0xed/0x380
[  337.942883][ T9177]  ? __pfx_futex_wait+0x10/0x10
[  337.942943][ T9177]  ? ksys_write+0x190/0x250
[  337.942992][ T9177]  ? ksys_write+0x190/0x250
[  337.943049][ T9177]  do_futex+0x1ef/0x350
[  337.943090][ T9177]  ? __pfx_do_futex+0x10/0x10
[  337.943143][ T9177]  __x64_sys_futex+0x34f/0x4d0
[  337.943188][ T9177]  ? fput+0x79/0x100
[  337.943220][ T9177]  ? __pfx___x64_sys_futex+0x10/0x10
[  337.943262][ T9177]  ? ksys_write+0x1ac/0x250
[  337.943310][ T9177]  ? __pfx_ksys_write+0x10/0x10
[  337.943372][ T9177]  do_syscall_64+0x106/0xf80
[  337.943409][ T9177]  ? clear_bhb_loop+0x40/0x90
[  337.943451][ T9177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.943486][ T9177] RIP: 0033:0x7ff8d799c629
[  337.943516][ T9177] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  337.943550][ T9177] RSP: 002b:00007ff8d87a60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  337.943582][ T9177] RAX: ffffffffffffffda RBX: 00007ff8d7c15fa8 RCX: 00007ff8d799c629
[  337.943604][ T9177] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff8d7c15fa8
[  337.943624][ T9177] RBP: 00007ff8d7c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  337.943644][ T9177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  337.943671][ T9177] R13: 00007ff8d7c16038 R14: 00007fffc181dac0 R15: 00007fffc181dba8
[  337.943716][ T9177]  </TASK>
[  339.435473][ T9200] netlink: 28 bytes leftover after parsing attributes in process `syz.4.708'.
[  339.830764][ T9208] FAULT_INJECTION: forcing a failure.
[  339.830764][ T9208] name failslab, interval 1, probability 0, space 0, times 0
[  339.847803][ T9208] CPU: 0 UID: 0 PID: 9208 Comm: syz.0.710 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  339.847841][ T9208] Tainted: [L]=SOFTLOCKUP
[  339.847850][ T9208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  339.847864][ T9208] Call Trace:
[  339.847872][ T9208]  <TASK>
[  339.847881][ T9208]  dump_stack_lvl+0x100/0x190
[  339.847922][ T9208]  should_fail_ex.cold+0x5/0xa
[  339.847950][ T9208]  should_failslab+0xc2/0x120
[  339.847990][ T9208]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  339.848025][ T9208]  ? ptlock_alloc+0x1f/0x70
[  339.848060][ T9208]  ptlock_alloc+0x1f/0x70
[  339.848089][ T9208]  pte_alloc_one+0x84/0x3e0
[  339.848116][ T9208]  do_fault+0x8cc/0x1950
[  339.848139][ T9208]  ? __pmd_alloc+0x6aa/0x9c0
[  339.848167][ T9208]  __handle_mm_fault+0x180f/0x2b60
[  339.848202][ T9208]  ? mt_find+0x45e/0x8e0
[  339.848232][ T9208]  ? __pfx___handle_mm_fault+0x10/0x10
[  339.848261][ T9208]  ? __pfx_mt_find+0x10/0x10
[  339.848306][ T9208]  ? find_vma+0xbf/0x140
[  339.848341][ T9208]  ? __pfx_find_vma+0x10/0x10
[  339.848382][ T9208]  handle_mm_fault+0x36d/0xa20
[  339.848418][ T9208]  do_user_addr_fault+0x74c/0x12f0
[  339.848468][ T9208]  exc_page_fault+0x6f/0xd0
[  339.848494][ T9208]  asm_exc_page_fault+0x26/0x30
[  339.848518][ T9208] RIP: 0010:rep_movs_alternative+0x30/0x90
[  339.848553][ T9208] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  339.848576][ T9208] RSP: 0018:ffffc900050cfb78 EFLAGS: 00050212
[  339.848595][ T9208] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000022
[  339.848610][ T9208] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc900050cfbd8
[  339.848625][ T9208] RBP: 0000000000000022 R08: 0000000000000001 R09: fffff52000a19f7f
[  339.848639][ T9208] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[  339.848652][ T9208] R13: ffffc900050cfbd8 R14: ffffc900050cfca0 R15: ffffc900050cfbd8
[  339.848683][ T9208]  _copy_from_user+0x98/0xd0
[  339.848731][ T9208]  kstrtouint_from_user+0xd6/0x1d0
[  339.848761][ T9208]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  339.848788][ T9208]  ? __lock_acquire+0x4a5/0x2630
[  339.848822][ T9208]  ? lock_acquire+0x1cf/0x380
[  339.848857][ T9208]  proc_fail_nth_write+0x83/0x220
[  339.848885][ T9208]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  339.848920][ T9208]  vfs_write+0x2aa/0x1070
[  339.848957][ T9208]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  339.848987][ T9208]  ? __pfx_vfs_write+0x10/0x10
[  339.849023][ T9208]  ? __fget_files+0x215/0x3d0
[  339.849066][ T9208]  ? __fget_files+0x21f/0x3d0
[  339.849110][ T9208]  ksys_write+0x12a/0x250
[  339.849146][ T9208]  ? __pfx_ksys_write+0x10/0x10
[  339.849191][ T9208]  do_syscall_64+0x106/0xf80
[  339.849216][ T9208]  ? clear_bhb_loop+0x40/0x90
[  339.849246][ T9208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.849270][ T9208] RIP: 0033:0x7f8f1539c629
[  339.849289][ T9208] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  339.849312][ T9208] RSP: 002b:00007f8f16307028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  339.849333][ T9208] RAX: ffffffffffffffda RBX: 00007f8f15615fa0 RCX: 00007f8f1539c629
[  339.849349][ T9208] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  339.849364][ T9208] RBP: 00007f8f15432b39 R08: 0000000000000000 R09: 0000000000000000
[  339.849378][ T9208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  339.849393][ T9208] R13: 00007f8f15616038 R14: 00007f8f15615fa0 R15: 00007ffd1ecf6098
[  339.849424][ T9208]  </TASK>
[  340.243601][ T7126] Bluetooth: hci6: unexpected event 0x3e length: 508 > 260
[  340.243642][ T7126] Bluetooth: hci6: unexpected subevent 0x02 length: 507 > 260
[  340.258507][ T7126] Bluetooth: hci6: Dropping invalid advertising data
[  340.267943][ T7126] Bluetooth: hci6: unknown advertising packet type: 0xe9
[  340.518372][ T9216] FAULT_INJECTION: forcing a failure.
[  340.518372][ T9216] name fail_futex, interval 1, probability 0, space 0, times 0
[  340.518421][ T9216] CPU: 1 UID: 0 PID: 9216 Comm: syz.2.712 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  340.518452][ T9216] Tainted: [L]=SOFTLOCKUP
[  340.518460][ T9216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  340.518474][ T9216] Call Trace:
[  340.518481][ T9216]  <TASK>
[  340.518489][ T9216]  dump_stack_lvl+0x100/0x190
[  340.518527][ T9216]  should_fail_ex.cold+0x5/0xa
[  340.518554][ T9216]  get_futex_key+0x295/0x1620
[  340.518584][ T9216]  ? __pfx_get_futex_key+0x10/0x10
[  340.518609][ T9216]  ? lock_acquire+0x1cf/0x380
[  340.518646][ T9216]  futex_wake+0xea/0x530
[  340.518682][ T9216]  ? __pfx_futex_wake+0x10/0x10
[  340.518716][ T9216]  ? exit_mm_release+0x19/0x30
[  340.518751][ T9216]  do_futex+0x32b/0x350
[  340.518779][ T9216]  ? __pfx_do_futex+0x10/0x10
[  340.518806][ T9216]  ? __might_fault+0xc5/0x140
[  340.518844][ T9216]  mm_release+0x24a/0x2f0
[  340.518866][ T9216]  do_exit+0x675/0x2aa0
[  340.518903][ T9216]  ? __pfx_do_exit+0x10/0x10
[  340.518931][ T9216]  ? do_raw_spin_lock+0x128/0x260
[  340.518963][ T9216]  ? find_held_lock+0x2b/0x80
[  340.518999][ T9216]  ? get_signal+0x7e0/0x21e0
[  340.519024][ T9216]  do_group_exit+0xd5/0x2a0
[  340.519056][ T9216]  get_signal+0x1ec7/0x21e0
[  340.519086][ T9216]  ? ksys_write+0x190/0x250
[  340.519122][ T9216]  ? __pfx_get_signal+0x10/0x10
[  340.519146][ T9216]  ? do_futex+0x192/0x350
[  340.519177][ T9216]  arch_do_signal_or_restart+0x91/0x770
[  340.519207][ T9216]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  340.519243][ T9216]  ? __pfx___x64_sys_futex+0x10/0x10
[  340.519271][ T9216]  ? ksys_write+0x1ac/0x250
[  340.519310][ T9216]  exit_to_user_mode_loop+0x86/0x4a0
[  340.519342][ T9216]  do_syscall_64+0x668/0xf80
[  340.519367][ T9216]  ? clear_bhb_loop+0x40/0x90
[  340.519400][ T9216]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.519423][ T9216] RIP: 0033:0x7f027299c629
[  340.519442][ T9216] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  340.519465][ T9216] RSP: 002b:00007f02739050e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  340.519486][ T9216] RAX: 0000000000000001 RBX: 00007f0272c15fa8 RCX: 00007f027299c629
[  340.519501][ T9216] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0272c15fac
[  340.519515][ T9216] RBP: 00007f0272c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  340.519530][ T9216] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  340.519543][ T9216] R13: 00007f0272c16038 R14: 00007ffec48c5a10 R15: 00007ffec48c5af8
[  340.519573][ T9216]  </TASK>
[  342.206646][ T9233] netlink: 8 bytes leftover after parsing attributes in process `syz.0.714'.
[  342.856779][ T7126] Bluetooth: hci0: command 0x0c1a tx timeout
[  342.870053][ T9220] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  343.393891][ T9220] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  343.423612][ T9220] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  343.444894][ T9220] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  343.456317][ T9220] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  343.462336][ T9220] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  343.534159][ T9220] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  343.540603][ T9220] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  343.623863][ T9220] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  343.684567][ T9220] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  343.703611][ T9220] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  343.714390][ T9238] FAULT_INJECTION: forcing a failure.
[  343.714390][ T9238] name fail_futex, interval 1, probability 0, space 0, times 0
[  343.738886][ T9220] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  343.747136][ T9238] CPU: 0 UID: 0 PID: 9238 Comm: syz.0.715 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  343.747200][ T9238] Tainted: [L]=SOFTLOCKUP
[  343.747212][ T9238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  343.747232][ T9238] Call Trace:
[  343.747243][ T9238]  <TASK>
[  343.747256][ T9238]  dump_stack_lvl+0x100/0x190
[  343.747313][ T9238]  should_fail_ex.cold+0x5/0xa
[  343.747353][ T9238]  get_futex_key+0x1d2/0x1620
[  343.747399][ T9238]  ? __pfx_get_futex_key+0x10/0x10
[  343.747455][ T9238]  futex_wake+0xea/0x530
[  343.747509][ T9238]  ? __pfx_futex_wake+0x10/0x10
[  343.747565][ T9238]  ? putname+0xb1/0x110
[  343.747595][ T9238]  ? kmem_cache_free+0x124/0x6a0
[  343.747646][ T9238]  do_futex+0x32b/0x350
[  343.747690][ T9238]  ? __pfx_do_futex+0x10/0x10
[  343.747730][ T9238]  ? __pfx_do_sys_openat2+0x10/0x10
[  343.747782][ T9238]  __x64_sys_futex+0x34f/0x4d0
[  343.747828][ T9238]  ? __x64_sys_openat+0x12d/0x210
[  343.747870][ T9238]  ? __pfx___x64_sys_futex+0x10/0x10
[  343.747931][ T9238]  do_syscall_64+0x106/0xf80
[  343.747968][ T9238]  ? clear_bhb_loop+0x40/0x90
[  343.748010][ T9238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.748056][ T9238] RIP: 0033:0x7f8f1539c629
[  343.748086][ T9238] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  343.748121][ T9238] RSP: 002b:00007f8f163070e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  343.748154][ T9238] RAX: ffffffffffffffda RBX: 00007f8f15615fa8 RCX: 00007f8f1539c629
[  343.748177][ T9238] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8f15615fac
[  343.748198][ T9238] RBP: 00007f8f15615fa0 R08: 0000000000000000 R09: 0000000000000000
[  343.748217][ T9238] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  343.748236][ T9238] R13: 00007f8f15616038 R14: 00007ffd1ecf5fb0 R15: 00007ffd1ecf6098
[  343.748281][ T9238]  </TASK>
[  343.966810][ T9238] FAULT_INJECTION: forcing a failure.
[  343.966810][ T9238] name failslab, interval 1, probability 0, space 0, times 0
[  343.979869][ T9238] CPU: 0 UID: 0 PID: 9238 Comm: syz.0.715 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  343.979923][ T9238] Tainted: [L]=SOFTLOCKUP
[  343.979935][ T9238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  343.979956][ T9238] Call Trace:
[  343.979968][ T9238]  <TASK>
[  343.979980][ T9238]  dump_stack_lvl+0x100/0x190
[  343.980047][ T9238]  should_fail_ex.cold+0x5/0xa
[  343.980086][ T9238]  ? copy_splice_read+0x1a3/0xb90
[  343.980137][ T9238]  should_failslab+0xc2/0x120
[  343.980193][ T9238]  __kmalloc_noprof+0xe0/0x850
[  343.980250][ T9238]  copy_splice_read+0x1a3/0xb90
[  343.980299][ T9238]  ? __pfx_pipe_to_null+0x10/0x10
[  343.980346][ T9238]  ? __pfx_copy_splice_read+0x10/0x10
[  343.980401][ T9238]  ? __pfx_splice_from_pipe+0x10/0x10
[  343.980465][ T9238]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  343.980519][ T9238]  ? __pfx_copy_splice_read+0x10/0x10
[  343.980570][ T9238]  do_splice_read+0x285/0x370
[  343.980626][ T9238]  splice_direct_to_actor+0x2a1/0xa30
[  343.980681][ T9238]  ? __pfx_direct_splice_actor+0x10/0x10
[  343.980743][ T9238]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  343.980809][ T9238]  do_splice_direct+0x174/0x240
[  343.980862][ T9238]  ? __pfx_do_splice_direct+0x10/0x10
[  343.980916][ T9238]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  343.980970][ T9238]  ? bpf_lsm_file_permission+0x9/0x10
[  343.981029][ T9238]  ? security_file_permission+0x76/0x210
[  343.981088][ T9238]  ? rw_verify_area+0xce/0x6d0
[  343.981138][ T9238]  do_sendfile+0xadc/0xe20
[  343.981194][ T9238]  ? __pfx_do_sendfile+0x10/0x10
[  343.981249][ T9238]  ? __x64_sys_futex+0x34f/0x4d0
[  343.981291][ T9238]  ? __x64_sys_futex+0x358/0x4d0
[  343.981338][ T9238]  __x64_sys_sendfile64+0x1d8/0x220
[  343.981375][ T9238]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  343.981422][ T9238]  do_syscall_64+0x106/0xf80
[  343.981458][ T9238]  ? clear_bhb_loop+0x40/0x90
[  343.981498][ T9238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.981532][ T9238] RIP: 0033:0x7f8f1539c629
[  343.981561][ T9238] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  343.981594][ T9238] RSP: 002b:00007f8f16307028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  343.981627][ T9238] RAX: ffffffffffffffda RBX: 00007f8f15615fa0 RCX: 00007f8f1539c629
[  343.981649][ T9238] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[  343.981669][ T9238] RBP: 00007f8f15432b39 R08: 0000000000000000 R09: 0000000000000000
[  343.981689][ T9238] R10: 0010000800000003 R11: 0000000000000246 R12: 0000000000000000
[  343.981710][ T9238] R13: 00007f8f15616038 R14: 00007f8f15615fa0 R15: 00007ffd1ecf6098
[  343.981753][ T9238]  </TASK>
[  344.944866][ T7126] Bluetooth: hci1: command 0x0c1a tx timeout
[  345.431019][ T7071] Bluetooth: hci2: command 0x0c1a tx timeout
[  345.500147][ T7071] Bluetooth: hci4: command 0x0406 tx timeout
[  345.506447][ T7126] Bluetooth: hci3: command 0x0c1a tx timeout
[  345.574429][ T7071] Bluetooth: hci5: command 0x0c1a tx timeout
[  345.635206][ T9260] FAULT_INJECTION: forcing a failure.
[  345.635206][ T9260] name failslab, interval 1, probability 0, space 0, times 0
[  345.709697][ T9260] CPU: 0 UID: 0 PID: 9260 Comm: syz.0.728 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  345.709751][ T9260] Tainted: [L]=SOFTLOCKUP
[  345.709762][ T9260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  345.709780][ T9260] Call Trace:
[  345.709790][ T9260]  <TASK>
[  345.709802][ T9260]  dump_stack_lvl+0x100/0x190
[  345.709908][ T9260]  should_fail_ex.cold+0x5/0xa
[  345.709949][ T9260]  should_failslab+0xc2/0x120
[  345.710004][ T9260]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  345.710053][ T9260]  ? alloc_empty_file+0x55/0x1c0
[  345.710089][ T9260]  ? stack_trace_save+0x8e/0xc0
[  345.710151][ T9260]  alloc_empty_file+0x55/0x1c0
[  345.710191][ T9260]  path_openat+0xe8/0x31a0
[  345.710222][ T9260]  ? kasan_save_stack+0x3f/0x50
[  345.710269][ T9260]  ? kasan_save_stack+0x30/0x50
[  345.710316][ T9260]  ? kasan_save_track+0x14/0x30
[  345.710365][ T9260]  ? __kasan_slab_alloc+0x89/0x90
[  345.710421][ T9260]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  345.710468][ T9260]  ? do_getname+0x35/0x390
[  345.710506][ T9260]  ? do_syscall_64+0x106/0xf80
[  345.710543][ T9260]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.710584][ T9260]  ? __pfx_path_openat+0x10/0x10
[  345.710655][ T9260]  do_file_open+0x20e/0x430
[  345.710691][ T9260]  ? __pfx_do_file_open+0x10/0x10
[  345.710752][ T9260]  ? _raw_spin_unlock+0x28/0x50
[  345.710806][ T9260]  ? alloc_fd+0x476/0x790
[  345.710882][ T9260]  do_sys_openat2+0x10d/0x1e0
[  345.710925][ T9260]  ? __pfx_do_sys_openat2+0x10/0x10
[  345.710982][ T9260]  __x64_sys_open+0xfe/0x1d0
[  345.711025][ T9260]  ? __pfx___x64_sys_open+0x10/0x10
[  345.711081][ T9260]  do_syscall_64+0x106/0xf80
[  345.711118][ T9260]  ? clear_bhb_loop+0x40/0x90
[  345.711159][ T9260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.711195][ T9260] RIP: 0033:0x7f8f1539c629
[  345.711222][ T9260] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  345.711257][ T9260] RSP: 002b:00007f8f162e6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  345.711289][ T9260] RAX: ffffffffffffffda RBX: 00007f8f15616090 RCX: 00007f8f1539c629
[  345.711312][ T9260] RDX: 0000000000000000 RSI: 0000000000022240 RDI: 00002000000000c0
[  345.711332][ T9260] RBP: 00007f8f15432b39 R08: 0000000000000000 R09: 0000000000000000
[  345.711352][ T9260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  345.711372][ T9260] R13: 00007f8f15616128 R14: 00007f8f15616090 R15: 00007ffd1ecf6098
[  345.711416][ T9260]  </TASK>
[  345.968870][ T7126] Bluetooth: hci6: command 0x0c1a tx timeout
[  346.330346][ T9265] netlink: 28 bytes leftover after parsing attributes in process `syz.2.720'.
[  346.723185][ T9270] FAULT_INJECTION: forcing a failure.
[  346.723185][ T9270] name fail_futex, interval 1, probability 0, space 0, times 0
[  346.745118][ T9270] CPU: 0 UID: 0 PID: 9270 Comm: syz.2.722 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  346.745155][ T9270] Tainted: [L]=SOFTLOCKUP
[  346.745163][ T9270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  346.745177][ T9270] Call Trace:
[  346.745187][ T9270]  <TASK>
[  346.745196][ T9270]  dump_stack_lvl+0x100/0x190
[  346.745235][ T9270]  should_fail_ex.cold+0x5/0xa
[  346.745261][ T9270]  get_futex_key+0x295/0x1620
[  346.745292][ T9270]  ? __pfx_get_futex_key+0x10/0x10
[  346.745317][ T9270]  ? lock_acquire+0x1cf/0x380
[  346.745355][ T9270]  futex_wake+0xea/0x530
[  346.745392][ T9270]  ? __pfx_futex_wake+0x10/0x10
[  346.745426][ T9270]  ? exit_mm_release+0x19/0x30
[  346.745461][ T9270]  do_futex+0x32b/0x350
[  346.745491][ T9270]  ? __pfx_do_futex+0x10/0x10
[  346.745518][ T9270]  ? __might_fault+0xc5/0x140
[  346.745556][ T9270]  mm_release+0x24a/0x2f0
[  346.745579][ T9270]  do_exit+0x675/0x2aa0
[  346.745612][ T9270]  ? __pfx_do_exit+0x10/0x10
[  346.745641][ T9270]  ? do_raw_spin_lock+0x128/0x260
[  346.745673][ T9270]  ? find_held_lock+0x2b/0x80
[  346.745709][ T9270]  ? get_signal+0x7e0/0x21e0
[  346.745735][ T9270]  do_group_exit+0xd5/0x2a0
[  346.745768][ T9270]  get_signal+0x1ec7/0x21e0
[  346.745804][ T9270]  ? ksys_write+0x190/0x250
[  346.745841][ T9270]  ? __pfx_get_signal+0x10/0x10
[  346.745865][ T9270]  ? do_futex+0x192/0x350
[  346.745897][ T9270]  arch_do_signal_or_restart+0x91/0x770
[  346.745927][ T9270]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  346.745963][ T9270]  ? __pfx___x64_sys_futex+0x10/0x10
[  346.745991][ T9270]  ? ksys_write+0x1ac/0x250
[  346.746031][ T9270]  exit_to_user_mode_loop+0x86/0x4a0
[  346.746063][ T9270]  do_syscall_64+0x668/0xf80
[  346.746089][ T9270]  ? clear_bhb_loop+0x40/0x90
[  346.746117][ T9270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.746142][ T9270] RIP: 0033:0x7f027299c629
[  346.746160][ T9270] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  346.746182][ T9270] RSP: 002b:00007f02739050e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  346.746203][ T9270] RAX: 0000000000000001 RBX: 00007f0272c15fa8 RCX: 00007f027299c629
[  346.746218][ T9270] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0272c15fac
[  346.746232][ T9270] RBP: 00007f0272c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  346.746246][ T9270] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  346.746259][ T9270] R13: 00007f0272c16038 R14: 00007ffec48c5a10 R15: 00007ffec48c5af8
[  346.746288][ T9270]  </TASK>
[  347.583053][ T7126] Bluetooth: hci4: command 0x0406 tx timeout
[  347.655882][ T7126] Bluetooth: hci5: command 0x0c1a tx timeout
[  348.055781][ T7126] Bluetooth: hci6: command 0x0c1a tx timeout
[  349.712894][ T9301] netlink: 28 bytes leftover after parsing attributes in process `syz.4.731'.
[  349.739275][ T7126] Bluetooth: hci5: command 0x0c1a tx timeout
[  350.101020][ T9306] FAULT_INJECTION: forcing a failure.
[  350.101020][ T9306] name fail_futex, interval 1, probability 0, space 0, times 0
[  350.139431][ T7126] Bluetooth: hci6: command 0x0c1a tx timeout
[  350.156677][ T9306] CPU: 1 UID: 0 PID: 9306 Comm: syz.4.733 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  350.156732][ T9306] Tainted: [L]=SOFTLOCKUP
[  350.156743][ T9306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  350.156762][ T9306] Call Trace:
[  350.156779][ T9306]  <TASK>
[  350.156791][ T9306]  dump_stack_lvl+0x100/0x190
[  350.156845][ T9306]  should_fail_ex.cold+0x5/0xa
[  350.156873][ T9306]  get_futex_key+0x1d2/0x1620
[  350.156904][ T9306]  ? __pfx_get_futex_key+0x10/0x10
[  350.156935][ T9306]  ? kasan_quarantine_put+0x104/0x240
[  350.156969][ T9306]  ? lockdep_hardirqs_on+0x78/0x100
[  350.157000][ T9306]  futex_wake+0xea/0x530
[  350.157036][ T9306]  ? find_held_lock+0x2b/0x80
[  350.157080][ T9306]  ? __pfx_futex_wake+0x10/0x10
[  350.157128][ T9306]  ? ksys_write+0x190/0x250
[  350.157164][ T9306]  ? ksys_write+0x190/0x250
[  350.157205][ T9306]  do_futex+0x32b/0x350
[  350.157236][ T9306]  ? __pfx_do_futex+0x10/0x10
[  350.157273][ T9306]  __x64_sys_futex+0x34f/0x4d0
[  350.157306][ T9306]  ? fput+0x79/0x100
[  350.157329][ T9306]  ? __pfx___x64_sys_futex+0x10/0x10
[  350.157359][ T9306]  ? ksys_write+0x1ac/0x250
[  350.157402][ T9306]  ? __pfx_ksys_write+0x10/0x10
[  350.157446][ T9306]  do_syscall_64+0x106/0xf80
[  350.157472][ T9306]  ? clear_bhb_loop+0x40/0x90
[  350.157501][ T9306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.157526][ T9306] RIP: 0033:0x7ff8d799c629
[  350.157547][ T9306] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  350.157570][ T9306] RSP: 002b:00007ff8d87a60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  350.157594][ T9306] RAX: ffffffffffffffda RBX: 00007ff8d7c15fa8 RCX: 00007ff8d799c629
[  350.157610][ T9306] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff8d7c15fac
[  350.157625][ T9306] RBP: 00007ff8d7c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  350.157641][ T9306] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[  350.157655][ T9306] R13: 00007ff8d7c16038 R14: 00007fffc181dac0 R15: 00007fffc181dba8
[  350.157686][ T9306]  </TASK>
[  350.530932][ T9315] FAULT_INJECTION: forcing a failure.
[  350.530932][ T9315] name failslab, interval 1, probability 0, space 0, times 0
[  350.566881][ T9315] CPU: 0 UID: 0 PID: 9315 Comm: syz.4.736 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  350.566938][ T9315] Tainted: [L]=SOFTLOCKUP
[  350.566951][ T9315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  350.566973][ T9315] Call Trace:
[  350.566984][ T9315]  <TASK>
[  350.566997][ T9315]  dump_stack_lvl+0x100/0x190
[  350.567056][ T9315]  should_fail_ex.cold+0x5/0xa
[  350.567098][ T9315]  should_failslab+0xc2/0x120
[  350.567155][ T9315]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  350.567203][ T9315]  ? ptlock_alloc+0x1f/0x70
[  350.567253][ T9315]  ptlock_alloc+0x1f/0x70
[  350.567294][ T9315]  pte_alloc_one+0x84/0x3e0
[  350.567332][ T9315]  do_fault+0x8cc/0x1950
[  350.567366][ T9315]  ? __pmd_alloc+0x6aa/0x9c0
[  350.567405][ T9315]  __handle_mm_fault+0x180f/0x2b60
[  350.567455][ T9315]  ? mt_find+0x45e/0x8e0
[  350.567499][ T9315]  ? __pfx___handle_mm_fault+0x10/0x10
[  350.567539][ T9315]  ? __pfx_mt_find+0x10/0x10
[  350.567613][ T9315]  ? find_vma+0xbf/0x140
[  350.567665][ T9315]  ? __pfx_find_vma+0x10/0x10
[  350.567722][ T9315]  handle_mm_fault+0x36d/0xa20
[  350.567773][ T9315]  do_user_addr_fault+0x74c/0x12f0
[  350.567844][ T9315]  exc_page_fault+0x6f/0xd0
[  350.567882][ T9315]  asm_exc_page_fault+0x26/0x30
[  350.567915][ T9315] RIP: 0010:rep_movs_alternative+0x30/0x90
[  350.567964][ T9315] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  350.567996][ T9315] RSP: 0018:ffffc900050dfb78 EFLAGS: 00050212
[  350.568023][ T9315] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000022
[  350.568043][ T9315] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc900050dfbd8
[  350.568063][ T9315] RBP: 0000000000000022 R08: 0000000000000001 R09: fffff52000a1bf7f
[  350.568082][ T9315] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[  350.568101][ T9315] R13: ffffc900050dfbd8 R14: ffffc900050dfca0 R15: ffffc900050dfbd8
[  350.568144][ T9315]  _copy_from_user+0x98/0xd0
[  350.568198][ T9315]  kstrtouint_from_user+0xd6/0x1d0
[  350.568238][ T9315]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  350.568276][ T9315]  ? __lock_acquire+0x4a5/0x2630
[  350.568322][ T9315]  ? lock_acquire+0x1cf/0x380
[  350.568372][ T9315]  proc_fail_nth_write+0x83/0x220
[  350.568412][ T9315]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  350.568461][ T9315]  vfs_write+0x2aa/0x1070
[  350.568510][ T9315]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  350.568551][ T9315]  ? __pfx_vfs_write+0x10/0x10
[  350.568615][ T9315]  ? __fget_files+0x215/0x3d0
[  350.568673][ T9315]  ? __fget_files+0x21f/0x3d0
[  350.568735][ T9315]  ksys_write+0x12a/0x250
[  350.568783][ T9315]  ? __pfx_ksys_write+0x10/0x10
[  350.568847][ T9315]  do_syscall_64+0x106/0xf80
[  350.568883][ T9315]  ? clear_bhb_loop+0x40/0x90
[  350.568926][ T9315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.568961][ T9315] RIP: 0033:0x7ff8d799c629
[  350.568991][ T9315] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  350.569024][ T9315] RSP: 002b:00007ff8d87a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  350.569056][ T9315] RAX: ffffffffffffffda RBX: 00007ff8d7c15fa0 RCX: 00007ff8d799c629
[  350.569079][ T9315] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  350.569099][ T9315] RBP: 00007ff8d7a32b39 R08: 0000000000000000 R09: 0000000000000000
[  350.569119][ T9315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  350.569139][ T9315] R13: 00007ff8d7c16038 R14: 00007ff8d7c15fa0 R15: 00007fffc181dba8
[  350.569184][ T9315]  </TASK>
[  351.322310][ T9316] random: crng reseeded on system resumption
[  353.274555][   T31] INFO: task kworker/u10:3:7086 blocked for more than 143 seconds.
[  353.295280][ T9344] netlink: 28 bytes leftover after parsing attributes in process `syz.6.742'.
[  353.305354][   T31]       Tainted: G             L      syzkaller #0
[  353.305383][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  353.305398][   T31] task:kworker/u10:3   state:D stack:26888 pid:7086  tgid:7086  ppid:2      task_flags:0x4208060 flags:0x00080000
[  353.305539][   T31] Workqueue: netns cleanup_net
[  353.305587][   T31] Call Trace:
[  353.305599][   T31]  <TASK>
[  353.305618][   T31]  __schedule+0xfee/0x60e0
[  353.305655][   T31]  ? __lock_acquire+0x4a5/0x2630
[  353.305718][   T31]  ? __pfx___schedule+0x10/0x10
[  353.305750][   T31]  ? find_held_lock+0x2b/0x80
[  353.305801][   T31]  ? schedule+0x2bf/0x390
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  353.305839][   T31]  schedule+0xdd/0x390
[  353.305871][   T31]  schedule_timeout+0x1b2/0x280
[  353.305920][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  353.305997][   T31]  ? mark_held_locks+0x40/0x70
[  353.306046][   T31]  __wait_for_common+0x2e7/0x4c0
[  353.306084][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  353.306139][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  353.529477][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  353.820647][   T31]  ? flush_workqueue_prep_pwqs+0x2e9/0x510
[  353.848190][   T31]  __flush_workqueue+0x3f7/0x1200
[  353.866607][   T31]  ? __lock_acquire+0x4a5/0x2630
[  353.909183][   T31]  ? __lock_acquire+0x4a5/0x2630
[  354.014732][   T31]  ? __pfx___flush_workqueue+0x10/0x10
[  354.049372][   T31]  ? reacquire_held_locks+0xce/0x1e0
[  354.082165][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[  354.108889][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[  354.125787][   T31]  rds_tcp_listen_stop+0x104/0x160
[  354.218567][   T31]  rds_tcp_exit_net+0xe0/0x870
[  354.223458][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  354.253969][   T31]  ? __pfx___might_resched+0x10/0x10
[  354.288739][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  354.317534][   T31]  ops_undo_list+0x2ee/0xab0
[  354.339438][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[  354.344628][   T31]  ? cleanup_net+0x332/0x920
[  354.368613][   T31]  ? idr_destroy+0x62/0x2e0
[  354.373243][   T31]  cleanup_net+0x499/0x920
[  354.377829][   T31]  ? __pfx_cleanup_net+0x10/0x10
[  354.408450][   T31]  ? rcu_is_watching+0x12/0xc0
[  354.413463][   T31]  process_one_work+0x9d7/0x1920
[  354.433551][   T31]  ? __pfx_process_one_work+0x10/0x10
[  354.449961][   T31]  ? __pfx_cleanup_net+0x10/0x10
[  354.454964][   T31]  worker_thread+0x5da/0xe40
[  354.478677][   T31]  ? __pfx_worker_thread+0x10/0x10
[  354.483859][   T31]  ? kthread+0x13a/0x450
[  354.488126][   T31]  ? __pfx_worker_thread+0x10/0x10
[  354.598738][   T31]  kthread+0x370/0x450
[  354.602920][   T31]  ? __pfx_kthread+0x10/0x10
[  354.607597][   T31]  ret_from_fork+0x754/0xd80
[  354.614519][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  354.627170][   T31]  ? __switch_to+0x7b4/0x1120
[  354.644207][   T31]  ? __pfx_kthread+0x10/0x10
[  354.692258][   T31]  ret_from_fork_asm+0x1a/0x30
[  354.697273][   T31]  </TASK>
[  354.709204][   T31] INFO: task syz.3.282:7236 blocked for more than 144 seconds.
[  354.716827][   T31]       Tainted: G             L      syzkaller #0
[  354.739246][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  354.778783][   T31] task:syz.3.282       state:D stack:27272 pid:7236  tgid:7235  ppid:5828   task_flags:0x400140 flags:0x00080002
[  354.825202][   T31] Call Trace:
[  354.848970][   T31]  <TASK>
[  354.851984][   T31]  __schedule+0xfee/0x60e0
[  354.856460][   T31]  ? __lock_acquire+0x4a5/0x2630
[  354.898896][   T31]  ? __pfx___schedule+0x10/0x10
[  354.903821][   T31]  ? find_held_lock+0x2b/0x80
[  354.908546][   T31]  ? schedule+0x2bf/0x390
[  354.942503][   T31]  schedule+0xdd/0x390
[  354.958883][   T31]  schedule_timeout+0x1b2/0x280
[  354.963845][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  354.998979][   T31]  ? mark_held_locks+0x40/0x70
[  355.003854][   T31]  __wait_for_common+0x2e7/0x4c0
[  355.019178][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  355.024657][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  355.047913][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  355.073462][   T31]  ? flush_workqueue_prep_pwqs+0x2e9/0x510
[  355.095398][   T31]  __flush_workqueue+0x3f7/0x1200
[  355.109354][   T31]  ? __pfx___flush_workqueue+0x10/0x10
[  355.119046][   T31]  ? reacquire_held_locks+0xce/0x1e0
[  355.124421][   T31]  ? release_sock+0x21/0x220
[  355.130528][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[  355.136047][   T31]  ? __local_bh_enable_ip+0x9e/0x120
[  355.141562][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[  355.147083][   T31]  rds_tcp_listen_stop+0x104/0x160
[  355.153424][   T31]  rds_tcp_exit_net+0xe0/0x870
[  355.158526][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  355.166705][   T31]  ? __pfx___might_resched+0x10/0x10
[  355.172314][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  355.185871][   T31]  ops_undo_list+0x2ee/0xab0
[  355.194030][   T31]  ? kfree+0x1a0/0x6b0
[  355.198152][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[  355.203419][   T31]  ? ops_init+0x2fa/0x5f0
[  355.207831][   T31]  setup_net+0x1fa/0x3a0
[  355.212221][   T31]  ? __pfx_setup_net+0x10/0x10
[  355.217124][   T31]  ? lockdep_init_map_type+0x5c/0x250
[  355.222612][   T31]  ? mutex_init_lockep+0x110/0x150
[  355.227789][   T31]  copy_net_ns+0x46f/0x7c0
[  355.232366][   T31]  create_new_namespaces+0x3ea/0xac0
[  355.237973][   T31]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  355.243869][   T31]  ksys_unshare+0x455/0xab0
[  355.248457][   T31]  ? __pfx_ksys_unshare+0x10/0x10
[  355.254333][   T31]  __x64_sys_unshare+0x31/0x40
[  355.260512][   T31]  do_syscall_64+0x106/0xf80
[  355.265247][   T31]  ? clear_bhb_loop+0x40/0x90
[  355.272389][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.281118][   T31] RIP: 0033:0x7f2202b9c629
[  355.285589][   T31] RSP: 002b:00007f2203a2a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  355.294240][   T31] RAX: ffffffffffffffda RBX: 00007f2202e15fa0 RCX: 00007f2202b9c629
[  355.305487][   T31] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  355.313625][   T31] RBP: 00007f2202c32b39 R08: 0000000000000000 R09: 0000000000000000
[  355.321734][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  355.329816][   T31] R13: 00007f2202e16038 R14: 00007f2202e15fa0 R15: 00007ffff9f564c8
[  355.338117][   T31]  </TASK>
[  355.419269][   T31] 
[  355.419269][   T31] Showing all locks held in the system:
[  355.427058][   T31] 1 lock held by pool_workqueue_/3:
[  355.457925][   T31]  #0: ffffffff8e7f4e38 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0
[  355.479175][   T31] 2 locks held by kworker/1:0/24:
[  355.485040][   T31]  #0: ffff88813fe63548 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1287/0x1920
[  355.509591][   T31]  #1: ffffc900001e7d08 (free_ipc_work){+.+.}-{0:0}, at: process_one_work+0x93c/0x1920
[  355.529861][   T31] 1 lock held by khungtaskd/31:
[  355.534791][   T31]  #0: ffffffff8e7e9220 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[  355.569294][   T31] 1 lock held by syz-executor/5823:
[  355.574577][   T31]  #0: ffffffff90611fa8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x220
[  355.599205][   T31] 6 locks held by kworker/0:4/5886:
[  355.604505][   T31] 2 locks held by getty/6353:
[  355.619646][   T31]  #0: ffff888038d040a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  355.639910][   T31]  #1: ffffc9000380b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x1500
[  355.660942][   T31] 3 locks held by kworker/u10:0/7070:
[  355.666419][   T31]  #0: ffff88813fea4148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x1287/0x1920
[  355.699250][   T31]  #1: ffffc9000b14fd08 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x93c/0x1920
[  355.719533][   T31]  #2: ffffffff90611fa8 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0x51/0xc0
[  355.728862][   T31] 3 locks held by kworker/u10:3/7086:
[  355.749336][   T31]  #0: ffff88801c6ae948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x1287/0x1920
[  355.770226][   T31]  #1: ffffc9000b12fd08 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x93c/0x1920
[  355.789643][   T31]  #2: ffffffff905f9650 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xb8/0x920
[  355.807324][   T31] 1 lock held by syz.3.282/7236:
[  355.812738][   T31]  #0: ffffffff905f9650 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[  355.823055][   T31] 2 locks held by kworker/u10:22/7269:
[  355.828611][   T31]  #0: ffff88801f764148 ((wq_completion)iou_exit){+.+.}-{0:0}, at: process_one_work+0x1287/0x1920
[  355.839880][   T31]  #1: ffffc90003747d08 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x93c/0x1920
[  355.851855][   T31] 1 lock held by syz.1.351/7588:
[  355.856844][   T31]  #0: ffffffff905f9650 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[  355.868469][   T31] 1 lock held by syz.5.553/8482:
[  355.874042][   T31]  #0: ffffffff905f9650 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[  355.884047][   T31] 2 locks held by syz-executor/8714:
[  355.889744][   T31]  #0: ffffffff90611fa8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x220
[  355.900240][   T31]  #1: ffffffff8e7f4e38 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0
[  355.911670][   T31] 1 lock held by syz.4.733/9307:
[  355.916964][   T31]  #0: ffffffff90611fa8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x220
[  355.953227][   T31] 
[  355.955980][   T31] =============================================
[  355.955980][   T31] 
[  355.965928][   T31] NMI backtrace for cpu 1
[  355.965956][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  355.965999][   T31] Tainted: [L]=SOFTLOCKUP
[  355.966010][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  355.966028][   T31] Call Trace:
[  355.966038][   T31]  <TASK>
[  355.966050][   T31]  dump_stack_lvl+0x100/0x190
[  355.966096][   T31]  nmi_cpu_backtrace.cold+0x12d/0x151
[  355.966157][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  355.966194][   T31]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[  355.966238][   T31]  sys_info+0x141/0x190
[  355.966269][   T31]  watchdog+0xd25/0x1050
[  355.966301][   T31]  ? __pfx_watchdog+0x10/0x10
[  355.966327][   T31]  ? __kthread_parkme+0x18c/0x230
[  355.966362][   T31]  ? kthread+0x13a/0x450
[  355.966396][   T31]  ? __pfx_watchdog+0x10/0x10
[  355.966419][   T31]  kthread+0x370/0x450
[  355.966454][   T31]  ? __pfx_kthread+0x10/0x10
[  355.966492][   T31]  ret_from_fork+0x754/0xd80
[  355.966530][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  355.966569][   T31]  ? __switch_to+0x7b4/0x1120
[  355.966596][   T31]  ? __pfx_kthread+0x10/0x10
[  355.966631][   T31]  ret_from_fork_asm+0x1a/0x30
[  355.966675][   T31]  </TASK>
[  355.966685][   T31] Sending NMI from CPU 1 to CPUs 0:
[  356.096285][    C0] NMI backtrace for cpu 0
[  356.096308][    C0] CPU: 0 UID: 0 PID: 7074 Comm: kworker/u10:1 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  356.096344][    C0] Tainted: [L]=SOFTLOCKUP
[  356.096353][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  356.096381][    C0] Workqueue: events_unbound nsim_dev_trap_report_work
[  356.096412][    C0] RIP: 0010:lock_acquire+0x14e/0x380
[  356.096443][    C0] Code: 05 8b ad 28 12 83 f8 07 0f 86 10 ff ff ff 90 0f 0b 90 e9 07 ff ff ff 48 8b 74 24 68 48 89 ef e8 18 fa 8e 00 8b 0d 16 81 f5 0e <85> c9 0f 84 bd 00 00 00 65 8b 05 ab f4 28 12 85 c0 0f 85 ae 00 00
[  356.096466][    C0] RSP: 0018:ffffc900000076e0 EFLAGS: 00000202
[  356.096483][    C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000001
[  356.096497][    C0] RDX: 0000000000000000 RSI: ffffffff81b7aaf1 RDI: fffffbfff1cfd244
[  356.096512][    C0] RBP: ffffffff8e7e9220 R08: 0000000000000000 R09: 0000000000000000
[  356.096526][    C0] R10: 0000000000000200 R11: 00000000000857a2 R12: 0000000000000002
[  356.096541][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  356.096555][    C0] FS:  0000000000000000(0000) GS:ffff888124351000(0000) knlGS:0000000000000000
[  356.096578][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  356.096593][    C0] CR2: 000055558d8a39b8 CR3: 0000000036d12000 CR4: 00000000003526f0
[  356.096608][    C0] Call Trace:
[  356.096615][    C0]  <IRQ>
[  356.096623][    C0]  ? unwind_next_frame+0x3be/0x1ea0
[  356.096647][    C0]  ? unwind_next_frame+0x3be/0x1ea0
[  356.096670][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  356.096711][    C0]  unwind_next_frame+0xd1/0x1ea0
[  356.096732][    C0]  ? unwind_next_frame+0xbd/0x1ea0
[  356.096753][    C0]  ? mac80211_hwsim_tx_frame+0x1fe/0x2a0
[  356.096788][    C0]  ? ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0
[  356.096819][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  356.096864][    C0]  arch_stack_walk+0x94/0xf0
[  356.096888][    C0]  ? mac80211_hwsim_tx_frame+0x1fe/0x2a0
[  356.096918][    C0]  ? skb_free_head+0x1c6/0x220
[  356.096962][    C0]  stack_trace_save+0x8e/0xc0
[  356.096998][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  356.097037][    C0]  ? __lock_acquire+0x4a5/0x2630
[  356.097065][    C0]  kasan_save_stack+0x30/0x50
[  356.097099][    C0]  ? kasan_save_stack+0x30/0x50
[  356.097131][    C0]  ? kasan_save_track+0x14/0x30
[  356.097164][    C0]  ? kasan_save_free_info+0x3b/0x70
[  356.097190][    C0]  ? __kasan_slab_free+0x5f/0x80
[  356.097242][    C0]  ? kmem_cache_free+0x124/0x6a0
[  356.097270][    C0]  ? skb_free_head+0x1c6/0x220
[  356.097306][    C0]  ? skb_release_data+0x79b/0x9d0
[  356.097330][    C0]  ? consume_skb+0xc4/0x110
[  356.097357][    C0]  ? mac80211_hwsim_tx_frame+0x1fe/0x2a0
[  356.097411][    C0]  kasan_save_track+0x14/0x30
[  356.097445][    C0]  kasan_save_free_info+0x3b/0x70
[  356.097473][    C0]  __kasan_slab_free+0x5f/0x80
[  356.097509][    C0]  kmem_cache_free+0x124/0x6a0
[  356.097542][    C0]  skb_free_head+0x1c6/0x220
[  356.097581][    C0]  skb_release_data+0x79b/0x9d0
[  356.097606][    C0]  ? mac80211_hwsim_tx_frame+0x1fe/0x2a0
[  356.097635][    C0]  ? rcu_is_watching+0x12/0xc0
[  356.097672][    C0]  consume_skb+0xc4/0x110
[  356.097700][    C0]  mac80211_hwsim_tx_frame+0x1fe/0x2a0
[  356.097732][    C0]  mac80211_hwsim_beacon_tx+0x57e/0xa00
[  356.097769][    C0]  __iterate_interfaces+0x2e6/0x650
[  356.097796][    C0]  ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10
[  356.097829][    C0]  ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10
[  356.097867][    C0]  ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0
[  356.097900][    C0]  mac80211_hwsim_beacon+0x105/0x1b0
[  356.097939][    C0]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  356.097979][    C0]  __hrtimer_run_queues+0x50e/0xa70
[  356.098017][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  356.098050][    C0]  ? ktime_get_update_offsets_now+0x2cd/0x4d0
[  356.098084][    C0]  hrtimer_run_softirq+0x17d/0x350
[  356.098120][    C0]  handle_softirqs+0x1eb/0x9e0
[  356.098147][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  356.098174][    C0]  __irq_exit_rcu+0xef/0x150
[  356.098196][    C0]  irq_exit_rcu+0x9/0x30
[  356.098218][    C0]  sysvec_apic_timer_interrupt+0xa3/0xc0
[  356.098244][    C0]  </IRQ>
[  356.098251][    C0]  <TASK>
[  356.098259][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  356.098287][    C0] RIP: 0010:__orc_find+0x9a/0xf0
[  356.098308][    C0] Code: 48 89 da 83 e2 07 83 c2 03 40 38 f2 7c 05 40 84 f6 75 4b 48 63 13 48 01 da 49 39 d5 73 af 4c 8d 63 fc 49 39 ec 73 b2 4d 29 f7 <49> c1 ff 02 4b 8d 14 7f 48 8d 04 50 48 83 c4 08 5b 5d 41 5c 41 5d
[  356.098331][    C0] RSP: 0018:ffffc9000ace7628 EFLAGS: 00000246
[  356.098349][    C0] RAX: ffffffff9185ef7a RBX: ffffffff90faef10 RCX: dffffc0000000000
[  356.098365][    C0] RDX: ffffffff8267531d RSI: 0000000000000000 RDI: ffffffff90faef10
[  356.098381][    C0] RBP: ffffffff90faef14 R08: ffffffff9185ef8c R09: 0000000000000007
[  356.098405][    C0] R10: 0000000000000200 R11: 0000000000016754 R12: ffffffff90faef10
[  356.098421][    C0] R13: ffffffff82675455 R14: ffffffff90faef10 R15: 0000000000000000
[  356.098437][    C0]  ? kfree+0x1f5/0x6b0
[  356.098467][    C0]  ? kfree+0xbd/0x6b0
[  356.098498][    C0]  ? kfree+0x1f5/0x6b0
[  356.098524][    C0]  unwind_next_frame+0x2ec/0x1ea0
[  356.098546][    C0]  ? kfree+0x1f6/0x6b0
[  356.098575][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  356.098615][    C0]  arch_stack_walk+0x94/0xf0
[  356.098640][    C0]  ? kfree+0x1f6/0x6b0
[  356.098668][    C0]  ? skb_free_head+0x119/0x220
[  356.098705][    C0]  stack_trace_save+0x8e/0xc0
[  356.098743][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  356.098780][    C0]  ? stack_trace_save+0x8e/0xc0
[  356.098819][    C0]  ? __lock_acquire+0x4a5/0x2630
[  356.098855][    C0]  kasan_save_stack+0x30/0x50
[  356.098888][    C0]  ? kasan_save_stack+0x30/0x50
[  356.098921][    C0]  ? kasan_save_track+0x14/0x30
[  356.098954][    C0]  ? kasan_save_free_info+0x3b/0x70
[  356.098981][    C0]  ? __kasan_slab_free+0x5f/0x80
[  356.099016][    C0]  ? kfree+0x1f6/0x6b0
[  356.099068][    C0]  kasan_save_track+0x14/0x30
[  356.099103][    C0]  kasan_save_free_info+0x3b/0x70
[  356.099131][    C0]  __kasan_slab_free+0x5f/0x80
[  356.099168][    C0]  kfree+0x1f6/0x6b0
[  356.099198][    C0]  skb_free_head+0x119/0x220
[  356.099236][    C0]  skb_release_data+0x79b/0x9d0
[  356.099261][    C0]  ? nsim_dev_trap_report_work+0x8cf/0xd10
[  356.099286][    C0]  ? rcu_is_watching+0x12/0xc0
[  356.099323][    C0]  consume_skb+0xc4/0x110
[  356.099350][    C0]  nsim_dev_trap_report_work+0x8cf/0xd10
[  356.099393][    C0]  process_one_work+0x9d7/0x1920
[  356.099438][    C0]  ? __pfx_process_one_work+0x10/0x10
[  356.099482][    C0]  ? __pfx_nsim_dev_trap_report_work+0x10/0x10
[  356.099515][    C0]  worker_thread+0x5da/0xe40
[  356.099559][    C0]  ? kthread+0x13a/0x450
[  356.099591][    C0]  ? __pfx_worker_thread+0x10/0x10
[  356.099629][    C0]  kthread+0x370/0x450
[  356.099663][    C0]  ? __pfx_kthread+0x10/0x10
[  356.099699][    C0]  ret_from_fork+0x754/0xd80
[  356.099735][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  356.099771][    C0]  ? __switch_to+0x7b4/0x1120
[  356.099796][    C0]  ? __pfx_kthread+0x10/0x10
[  356.099827][    C0]  ret_from_fork_asm+0x1a/0x30
[  356.099870][    C0]  </TASK>
[  356.153374][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  356.153459][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  356.153575][   T31] Tainted: [L]=SOFTLOCKUP
[  356.153607][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  356.153659][   T31] Call Trace:
[  356.153691][   T31]  <TASK>
[  356.153723][   T31]  dump_stack_lvl+0x100/0x190
[  356.153863][   T31]  vpanic+0x552/0x970
[  356.153942][   T31]  ? __pfx_vpanic+0x10/0x10
[  356.154036][   T31]  ? rcu_is_watching+0x12/0xc0
[  356.154205][   T31]  panic+0xd1/0xe0
[  356.154288][   T31]  ? __pfx_panic+0x10/0x10
[  356.154383][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[  356.154575][   T31]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[  356.154701][   T31]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[  356.154832][   T31]  ? watchdog.cold+0x198/0x1ca
[  356.154932][   T31]  ? watchdog+0xd35/0x1050
[  356.155016][   T31]  watchdog.cold+0x1a9/0x1ca
[  356.155145][   T31]  ? __pfx_watchdog+0x10/0x10
[  356.155222][   T31]  ? __kthread_parkme+0x18c/0x230
[  356.155329][   T31]  ? kthread+0x13a/0x450
[  356.155425][   T31]  ? __pfx_watchdog+0x10/0x10
[  356.155497][   T31]  kthread+0x370/0x450
[  356.155595][   T31]  ? __pfx_kthread+0x10/0x10
[  356.155712][   T31]  ret_from_fork+0x754/0xd80
[  356.155864][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  356.156013][   T31]  ? __switch_to+0x7b4/0x1120
[  356.156116][   T31]  ? __pfx_kthread+0x10/0x10
[  356.156226][   T31]  ret_from_fork_asm+0x1a/0x30
[  356.156363][   T31]  </TASK>
[  356.938890][   T31] Kernel Offset: disabled
[  356.943236][   T31] Rebooting in 86400 seconds..