last executing test programs:

10.534266147s ago: executing program 0 (id=2459):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
socket(0xa, 0x3, 0xff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
r2 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
statx$auto(r2, 0x0, 0x401006, 0x4015, 0x0)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1b0026bd7000fddbdf25030000002c00000028000180240006801d0074804cfe4d808847d00003080000040003002a9d272f660400338000000004000380040002"], 0x48}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)

8.872966824s ago: executing program 0 (id=2467):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
r1 = openat$auto_nsim_nexthop_bucket_activity_fops_fib(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim5/fib/nexthop_bucket_activity\x00', 0x1550c1, 0x0)
copy_file_range$auto(r0, &(0x7f0000000040)=0x5, r1, &(0x7f0000000100)=0x1, 0x1ad8e14b, 0x9c3)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, 0x0, 0x54)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r2)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0)
write$auto(r4, &(0x7f0000000440)='ON\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf0F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\xed\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0xb8c5)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001e40)={0x18, r3, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x10000000400008, 0xdf, 0x9b72, 0x2, 0x40000008000)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
gettid()
clone$auto(0x3, 0x7, &(0x7f0000000180)=0xffffdc94, &(0x7f00000001c0)=0x80000000, 0x3ff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) (async)
openat$auto_nsim_nexthop_bucket_activity_fops_fib(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim5/fib/nexthop_bucket_activity\x00', 0x1550c1, 0x0) (async)
copy_file_range$auto(r0, &(0x7f0000000040)=0x5, r1, &(0x7f0000000100)=0x1, 0x1ad8e14b, 0x9c3) (async)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) (async)
socket(0x2, 0x3, 0xa) (async)
connect$auto(0x3, 0x0, 0x54) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r2) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0) (async)
write$auto(r4, &(0x7f0000000440)='ON\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf0F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\xed\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0xb8c5) (async)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001e40)={0x18, r3, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async)
mmap$auto(0x0, 0x10000000400008, 0xdf, 0x9b72, 0x2, 0x40000008000) (async)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) (async)
gettid() (async)
clone$auto(0x3, 0x7, &(0x7f0000000180)=0xffffdc94, &(0x7f00000001c0)=0x80000000, 0x3ff) (async)

8.535352895s ago: executing program 2 (id=2468):
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2400c0c0}, 0x2004c802)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mbind$auto(0x1c0000, 0x800097, 0x1, 0x0, 0x3, 0x1)
mbind$auto(0x0, 0x800605, 0x1, 0x0, 0xa, 0x3)
r0 = socket(0xa, 0x3, 0x5)
mbind$auto(0x400, 0xff, 0xf, &(0x7f0000000080)=0x8, 0x1, 0x8000)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001080), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)={0x14, r1, 0xb81, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000084}, 0x0)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0xc88, 0x0, 0x0, &(0x7f0000000080), 0x8, 0x200}, 0x5}, 0x3b8b, 0x800)

8.288003867s ago: executing program 2 (id=2470):
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
ioctl$auto_EVIOCGMASK(r0, 0x80104592, 0x0) (async)
mmap$auto(0x0, 0x2040009, 0x20000000df, 0x400000015, 0x7, 0x28000)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (rerun: 32)
madvise$auto(0x813, 0xffffffffffff0001, 0x12)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
lsetxattr$auto(0x0, 0x0, 0x0, 0xfffffffffffffffa, 0x3ff) (async)
mmap$auto(0xfffffffffffffffd, 0x20009, 0x0, 0xeb1, 0x40000000000a5, 0x8000)
mmap$auto(0x80000000, 0xfffffffffffffffc, 0x1c, 0x40eb1, 0xffffffffffffffff, 0x300000000000) (async, rerun: 64)
socket(0xb, 0x80000, 0x8000037) (rerun: 64)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) (async, rerun: 64)
prctl$auto(0x40, 0x3, 0x0, 0xfffffffffffffffd, 0x800) (rerun: 64)
msync$auto(0x0, 0x2000000005, 0x6)
setfsuid$auto(0x0) (async)
write$auto(0xca, &(0x7f0000000040)='\x04\x1c\xdc\xec7z\xdf3\xf2\xd3!\v\xb0M\xf8Q\x15\f', 0x2d8) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
mmap$auto(0x0, 0x400008, 0x800df, 0x9b72, 0xfffffffffffffffe, 0x8000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x8600, 0x0) (async)
fcntl$auto(0x3, 0x4, 0xa553) (async, rerun: 64)
socketpair$auto(0x1e, 0x5, 0x3, 0x0) (async, rerun: 64)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x0) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (rerun: 32)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x80201, 0x0)
socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) (async)
socket(0x2, 0x1, 0x106)

7.924462236s ago: executing program 1 (id=2471):
mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000)
close_range$auto(0x2, 0x8, 0x0)
sysfs$auto(0x2, 0x100000000000027, 0x0)
fsopen$auto(0x0, 0x1)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x1, 0x8, 0xd, 0xe13, 0x81, 0xe, 0x2000000000000002, 0x0, 0x9, 0x1, 0x2, 0x80000001, 0x8627, 0x9, 0x20000800001, 0x3, 0x5, 0x7, 0x6, 0x6, 0x0, 0xffffffee, 0x2a17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x18, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2]}, 0x9, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0xc090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4044810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4000010}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x2aa82, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000000), 0x48040, 0x0)
io_uring_register$auto_IORING_REGISTER_FILES_UPDATE(r2, 0x6, &(0x7f0000000380)="e45da34f693c11bd058cb733cec3235a697f9de12909df18288c94245d56964374895541085604ab6a3ad271cb9720aac01d0b93c4af2763e8f9b435924b6fd5b967c0fc1705d440682db5d930c1b17c984dab44b54a56ebb2b2c39e927d9d11862f395636886d4db729b8c645f0013f778b1f79d7a3259e566cddf4e71581b8c1ee94a9636ffc0376322fd49b649507743b497f5c30a0d18e75f96b4689a355401a8213219ec569087b120e8f02afae4f99dfa0c2981216e9e2f9395a942927088534347b4a95c61a18997664b37e6a094aa7381d9dcd38d3cd10ffdac04a421ce35837bacf16fb653b13baf0", 0x8d77ff60)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_CREATE_VM(r0, 0x4018aee3, 0x88)

7.855202306s ago: executing program 0 (id=2472):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/bus/pci/resource_alignment\x00', 0x8ea182, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
close_range$auto(r0, r0, 0x6)
socket(0x2, 0x801, 0x106)
unshare$auto(0x40000080)
r1 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/36u\x00', 0x26040, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r2)
sendmsg$auto_OVS_DP_CMD_SET(r2, 0x0, 0x0)
close_range$auto(r2, r1, 0xde)

7.247403027s ago: executing program 1 (id=2474):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r0 = socket(0x2, 0x801, 0x106)
getsockopt$auto(r0, 0x11c, 0x3, 0x0, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r1, 0x4bfb, 0x9)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r2, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x24ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
set_mempolicy$auto(0x2006, 0x0, 0x4)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_GET_MSRS(r2, 0x4008ae89, &(0x7f00000000c0)={0x19d, 0x0, [{0x9, 0x100}]})

7.086666112s ago: executing program 1 (id=2475):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x11, 0x807, 0x9)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/admmidi2\x00', 0x450481, 0x0) (async)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/admmidi2\x00', 0x450481, 0x0)
write$auto(r2, &(0x7f0000000080)='/dev/audio1\x00', 0x10000) (async)
write$auto(r2, &(0x7f0000000080)='/dev/audio1\x00', 0x10000)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000100), r1)
sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, 0x0, 0x5b020f7d7a84fe6e) (async)
sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, 0x0, 0x5b020f7d7a84fe6e)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/wireless\x00', 0x80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000180), r0)
ioprio_set$auto(0x3, 0x0, 0x4b34)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2) (async)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2)
mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000)
sendmsg$auto_SMC_NETLINK_GET_SYS_INFO(r4, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="bc1212006a10dd0fdc3e9a0a93e42cfcfc0a0000cf0ddf2328f75fc106c0ef9db9acf5b35856f83fd8d9fa907fe7f03b45021b5a64acc2216f68104030cff7e07fb7182185481daae40ed9e297bfc6c4108a4e8fd60fb50ce0b77b4d13584f98d8541c61e605dc0e99280eb7e32c46d246e420f46e53d040db180d2b9fee882a090000005f4bbf8ac3962527386b0a98fd", @ANYRES16=r5, @ANYBLOB="020025bd7000fbdbdf25010000009fe70a441ff9bdd5f370cfbe8ac297455c7c3b7492b8a5d5d4f44313255b71d4b3ac7541586dd5e6f349c3ed16c4b4c95f0d310f13049e02261f461f02226377f5260e1e197a6571fca438a4eec7f51ece4d6229ce8545520469b40ef54222dcee7ee841eacb0fda74c2fabb26a18fda20660a8460aacda7b2b72e955d8a8eabe8383217b3ce6f97c2c91b4f11b85984d9120d400d4b8d960e2cc575a02f7e6780698e7b44927300"], 0xbc}, 0x1, 0x0, 0x0, 0x40080}, 0x18) (async)
sendmsg$auto_SMC_NETLINK_GET_SYS_INFO(r4, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="bc1212006a10dd0fdc3e9a0a93e42cfcfc0a0000cf0ddf2328f75fc106c0ef9db9acf5b35856f83fd8d9fa907fe7f03b45021b5a64acc2216f68104030cff7e07fb7182185481daae40ed9e297bfc6c4108a4e8fd60fb50ce0b77b4d13584f98d8541c61e605dc0e99280eb7e32c46d246e420f46e53d040db180d2b9fee882a090000005f4bbf8ac3962527386b0a98fd", @ANYRES16=r5, @ANYBLOB="020025bd7000fbdbdf25010000009fe70a441ff9bdd5f370cfbe8ac297455c7c3b7492b8a5d5d4f44313255b71d4b3ac7541586dd5e6f349c3ed16c4b4c95f0d310f13049e02261f461f02226377f5260e1e197a6571fca438a4eec7f51ece4d6229ce8545520469b40ef54222dcee7ee841eacb0fda74c2fabb26a18fda20660a8460aacda7b2b72e955d8a8eabe8383217b3ce6f97c2c91b4f11b85984d9120d400d4b8d960e2cc575a02f7e6780698e7b44927300"], 0xbc}, 0x1, 0x0, 0x0, 0x40080}, 0x18)
pread64$auto(r3, 0x0, 0x201, 0xc000)
mmap$auto(0x100000000, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8003)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x5, 0xfffffffffffefffd, 0x200081)
madvise$auto(0x4, 0x400053, 0x49)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/bus/usb/013/001\x00', 0x331282, 0x0) (async)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/bus/usb/013/001\x00', 0x331282, 0x0)
close_range$auto(0x2, r2, 0x9) (async)
close_range$auto(0x2, r2, 0x9)
madvise$auto(0x1, 0x3d, 0x0) (async)
madvise$auto(0x1, 0x3d, 0x0)

7.035355691s ago: executing program 2 (id=2476):
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="05006ec72788a24a0000", @ANYBLOB="01002d"], 0x14}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) (async)
r0 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000012"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
write$auto(r0, &(0x7f0000000000)='-\x00', 0x2fb)

6.930149068s ago: executing program 2 (id=2477):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYRESOCT=r1, @ANYRES8=r0, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24002005}, 0x1c008)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000180), r1)
close_range$auto(r0, 0x8, 0x0)
brk$auto(0xffffffffffffff66)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0xda)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0)
pread64$auto(r2, 0x0, 0x800003, 0x270)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
io_uring_setup$auto(0x9, &(0x7f0000000080)={0x7fffffff, 0xd, 0xc000, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x9, 0x6, 0x1000000f, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x10000}, {0x5, 0x1, 0x21bb800, 0x5, 0x6f, 0x2, 0x1, 0x8, 0x100002000}})
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000100), 0x202, 0x0)
ppoll$auto(&(0x7f0000001ac0)={0xffffffffffffffff, 0x9, 0x7}, 0x8, &(0x7f0000001b00)={0xf2, 0x9}, &(0x7f00000002c0)={0x10000}, 0x8)
mprotect$auto(0x110c230000, 0xa588, 0x6)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x261c2, 0x184)
openat$auto_generic(0xffffffffffffff9c, 0x0, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x2, 0x0)
socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)

6.538404467s ago: executing program 0 (id=2480):
r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/set_event\x00', 0x20001, 0x0)
write$auto(r0, &(0x7f0000000100)=':%(:#(&-!]\x00', 0xd40a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x0) (async)
r1 = socket(0xa, 0x2, 0x0)
r2 = socket(0xa, 0x801, 0x84)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/netfs/cookies\x00', 0xd00, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
getsockopt$auto(r2, 0x84, 0x6c, 0x0, &(0x7f0000000280)=0x1000c0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x18, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
fsetxattr$auto(0x1, &(0x7f0000000000)='%\x175\xc0\x8d\xbb\x04\xb3\x97\xd8\xf4\xf6', 0x0, 0x0, 0x2) (async)
fsetxattr$auto(0x1, &(0x7f0000000000)='%\x175\xc0\x8d\xbb\x04\xb3\x97\xd8\xf4\xf6', 0x0, 0x0, 0x2)
madvise$auto(0x0, 0x2000040080000004, 0xe) (async)
madvise$auto(0x0, 0x2000040080000004, 0xe)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) (async)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty42\x00', 0x40741, 0x0)
sendfile$auto(r6, r5, &(0x7f0000001480)=0x9, 0x6)
ioctl$auto(0x3, 0x402c542d, r6) (async)
ioctl$auto(0x3, 0x402c542d, r6)
read$auto(0xffffffffffffffff, 0x0, 0x1f40)
write$auto(0x3, 0x0, 0xfffffdef)

5.938933875s ago: executing program 1 (id=2482):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x5b)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0)
sendmsg$auto_NL80211_CMD_JOIN_OCB(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000380)={0x128, r2, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x2}, @NL80211_ATTR_FILS_NONCES={0x20, 0xf3, "8b61beffbed99488090355c9b7ded1a331f2d577626f65c98bb7e6ac"}, @NL80211_ATTR_VHT_CAPABILITY={0xea, 0x9d, "2f07a355d975f44fbaba26e770470d1352e9d9dcd41f2ee93a0957a0a7c1422a750c6d16ddca529566721d796bce30d42489145122b22eb4c3697deb2b0227ff79f6f5d4c2dbe66001a09013ffc7cf602500c3711babac9115148c4f907c8ad328cb04b62e58a1b2d6e074487d8946db9e18baaf2e6a4cca2f34e8cd2f495ad5803e633406faae9c764f64f08265d513ef4555f6df1c37a6594b8d35a55b2690e40f418edd7d00e283f9c198b289a603461b26474b0ac40e956a78d4a3eba76889fc66149614946d250b7a4d34b6d3fcef115e75c73b75a531ff403e71186eaa783f36dcfd46"}]}, 0x128}, 0x1, 0x0, 0x0, 0x4008020}, 0x10)
mmap$auto(0x0, 0xa00005, 0x9, 0x40abe, r1, 0x7)
r3 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, 0x0, 0x40200, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x74c)
mmap$auto(0x0, 0x400008, 0xe4, 0x9b72, 0x2, 0x400)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
bpf$auto(0x9, &(0x7f00000000c0)=@batch={0xffffffffffff3c77, 0x37, 0x2, 0x5, 0x9, 0x1, 0x6, 0x5852}, 0x18)
r4 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000500), r3)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x101100, 0x0)
ioctl$auto_KVM_GET_MSRS(r5, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x491, 0x400, 0x9}]})
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r0, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x14, r4, 0x800, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4004000}, 0x40084)
msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, 0x0, 0x0, 0x1, 0xfff, 0x0, 0x4, 0x9, 0x4, 0x9, 0xf, @raw=0x1008, @raw})
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000053c0), 0x41, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r6, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)
openat$auto_proc_mountstats_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000080), 0x321800, 0x0)

5.766942076s ago: executing program 2 (id=2483):
mmap$auto(0x23, 0x20009, 0x4000000000de, 0x13, 0x401, 0x8) (async)
futex_waitv$auto(&(0x7f0000000180)={0x3fb, 0x6, 0x0, 0xfff}, 0x4, 0xbffffff8, 0x0, 0x81) (async)
r0 = ioctl$auto_UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000000)={0xffffffffffffffff, 0xfff, 0xea, 0x6}) (async)
mmap$auto(0x0, 0x20009, 0x3, 0x40000000000eb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x11, 0x3, 0x2)
getsockopt$auto(r1, 0x107, 0x12, 0x0, 0x0) (async)
r2 = openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/projid_map\x00', 0x0, 0x0)
lseek$auto(r2, 0x1000, 0x80000000)
socket(0x2, 0x4, 0x1) (async)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) (async)
ioctl$auto_SG_GET_RESERVED_SIZE(0xffffffffffffffff, 0x4c03, 0xfffffffffffffffd) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x1, 0x0) (async)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
io_uring_setup$auto(0x6, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
mbind$auto(0x0, 0x2091d1, 0x1, 0x0, 0x6, 0x6) (async)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66) (async)
bpf$auto(0x6, &(0x7f0000000100)=@task_fd_query={0x0, 0x2, 0x4, 0x0, 0x85, 0x4, r0, 0x10001, 0x8001}, 0x101)

5.213274942s ago: executing program 2 (id=2485):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
socket(0x23, 0x5, 0x0) (async)
writev$auto(0x3, 0x0, 0x8)
clone3$auto(0x0, 0xbcf) (async)
recvmmsg$auto(0x3, 0x0, 0xffffffff, 0x700, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x24040, 0x0)
ioctl$auto_BLKTRACESETUP(r0, 0xc0481273, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
madvise$auto(0x10000000002, 0xad, 0x57)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x40000080) (async)
madvise$auto(0x0, 0x2000040080000004, 0xe) (async)
open(0x0, 0x78081, 0x0) (async)
mmap$auto(0x0, 0x9, 0xe2, 0x1000000eb1, 0x401, 0x94c) (async)
r1 = socket(0x18, 0x80000, 0x0)
connect$auto(r1, 0x0, 0x1e) (async)
r2 = socket(0xf, 0x3, 0x2)
unshare$auto(0x40000080)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
read$auto(r3, 0x0, 0x7) (async)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/fail-nth\x00', 0x4000, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x9}, 0x3)
socket(0x1e, 0x1, 0x0)
sendmsg$auto_OVS_METER_CMD_GET(r2, &(0x7f0000001640)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x5b79eaa1b333b03f) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x1, 0x0) (async)
openat$auto_trace_time_stamp_mode_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/timestamp_mode\x00', 0x200, 0x0)

4.799194107s ago: executing program 0 (id=2487):
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ppoll$auto(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, 0x0, 0x2}, 0x84, &(0x7f00000001c0)={0x7, 0x3}, &(0x7f0000000200)={0xfb}, 0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000000), r1)
sendmsg$auto_NFSD_CMD_POOL_MODE_GET(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000004c0)={0x14, r2, 0x1, 0x70bd38, 0x25dfdc00}, 0x14}, 0x1, 0x0, 0x0, 0x2004c804}, 0x40000)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000327bd7000fcdbdf25020000001c0004002f6465762f696e66696e6962616e642f72646d615f636d000800010079fcffff"], 0x38}, 0x1, 0x0, 0x0, 0x880}, 0x81)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/tty/ttyr3/dev\x00', 0x7ef3837b7f62005, 0x0)
socket(0x11, 0x80003, 0x300)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
ioctl$auto(0x3, 0x80108907, 0x38)
io_uring_setup$auto(0xb267, 0x0)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC2\x00', 0x400, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card0/pcm0c/sub3/xrun_injection\x00', 0x800, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r4 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0)
write$auto(r4, 0x0, 0xc3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff)
socket(0xa, 0x2, 0x73)
socket(0xa, 0x3, 0x2f)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRESDEC=0x0, @ANYRES32, @ANYRES32=r3, @ANYRES64], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x10)
r5 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
sendfile$auto(0x1, 0x3, 0x0, 0x74c)

4.327471031s ago: executing program 1 (id=2490):
unshare$auto(0x40000080)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x149e42, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
keyctl$auto(0x3, 0xfffffffffffffffd, 0x0, 0x0, 0xff7)
msgsnd$auto(0xfffffffc, 0x0, 0x1, 0x963)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, 0x0)
listmount$auto(0x0, 0x0, 0xf4240, 0x533)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x8000000eb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044010}, 0x40850)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x88)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x5}, 0x4, 0x9)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x140080e4)
r0 = socket(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/netdevsim3/sriov_numvfs\x00', 0x10b142, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/mac80211_hwsim/hwsim1/ieee80211/phy1/rfkill3/state\x00', 0x102, 0x0)
sendfile$auto(r2, r1, 0x0, 0x7)
socket$nl_generic(0x10, 0x3, 0x10)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x1a6b75d63882a712, 0x0)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/free_buffer\x00', 0x4c000, 0xebff)
mmap$auto(0x0, 0x810002, 0xffb, 0x8000000008011, 0x3, 0x8000)

3.574781576s ago: executing program 0 (id=2493):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x40400, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182b02, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) (async)
keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e) (async)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) (async)
r1 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000f40), 0x2100, 0x0)
ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(r1, 0x80489439, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) (async)
statmount$auto(0x0, 0x0, 0x1fe, 0x5) (async)
unshare$auto(0x40000080) (async, rerun: 32)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) (async, rerun: 32)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS0\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) (async)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0) (async, rerun: 32)
mincore$auto(0x1000, 0x8001, 0x0) (rerun: 32)
fcntl$auto(0x8000000000000001, 0x7, 0x8) (async, rerun: 64)
fcntl$auto(0x8000000000000001, 0x26, 0x8) (rerun: 64)

2.493834668s ago: executing program 3 (id=2496):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000200), r0)
sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(r1, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x24, r2, 0x800, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_MIN_BE={0x5, 0x11, 0x1}, @NL802154_ATTR_SCAN_TYPE={0x5, 0x1f, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0xc000}, 0x20000001)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_STOP_P2P_DEVICE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES64=r4, @ANYBLOB="01002bbd7000a9c370620eb3419308000300", @ANYRES32=r4], 0x1c}, 0x1, 0x0, 0x0, 0x24045840}, 0x4040004)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
r5 = pipe2$auto(0x0, 0x80)
ioctl$auto(r5, 0x5761, 0x4)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x2)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.1/usb2/2-0:1.0/usb2-port1/disable\x00', 0x102, 0x0)
sendfile$auto(r6, r6, 0x0, 0x7)
r7 = open(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', 0x519f41, 0x115)
r8 = open_by_handle_at$auto(r7, &(0x7f0000000040)={0x8, 0x2, '\a\x00\x00\x00\x00\x00\x00\x00'}, 0x2)
write$auto(r8, 0x0, 0x1)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0)
openat$auto_fops_ulong_ro_(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/ieee80211/phy14/netdev:wlan1/stations/08:02:11:00:00:00/rx_duplicates\x00', 0xa0800, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/ip6_vti0/stable_secret\x00', 0x2, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x8916, 0xffffffffffffffff)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804)

2.204052056s ago: executing program 3 (id=2497):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x20100, 0x0)
socket(0x2, 0x801, 0x106)
socketpair$auto(0x1a, 0x9, 0x8000000000000000, 0x0)
r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtd0ro\x00', 0x0, 0x0)
write$auto_proc_gid_map_operations_base(r0, &(0x7f0000000040)="3c155f5288d01209092fba1db7aa20f19faad1ca5158b9dc93adbd37801c18d4c65e68ef46d1628f09", 0x29)
ioctl$auto_BLKPG2(r0, 0x1269, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nbd6\x00', 0x10000, 0x0)
ioctl$auto_BLKALIGNOFF(r1, 0x127a, 0x0)

2.152935015s ago: executing program 1 (id=2498):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sr0\x00', 0x60742, 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
lseek$auto(0x3, 0x2, 0x4)
ioperm$auto(0x800000005f4, 0x5ad2, 0xffff)
syz_clone3(&(0x7f0000000100)={0x2100000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x7fffffff, 0x10dd, 0x8000000040eb1, 0x401, 0x2008000)
openat$auto_msr_fops_msr(0xffffffffffffff9c, 0x0, 0x1011c0, 0x0)
r0 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002e00), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000003680)={0x0, 0x0, &(0x7f0000003640)={&(0x7f0000002f80)={0x2c, r2, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x20000810)
write$auto(0xffffffffffffffff, 0x0, 0x58c)
socket(0x18, 0x80000, 0x0)
close_range$auto(r0, 0xffffffffffffffff, 0xfffffffd)
io_uring_setup$auto(0x4, 0x0)
socket(0xa, 0x3, 0xe)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace\x00', 0x80800, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto(0x3, 0x541b, 0x38)
r3 = setfsuid$auto(0xee01)
setresuid$auto(0x0, r3, 0x0)
r4 = setfsuid$auto(0xee00)
r5 = setfsuid$auto(0xee01)
setresuid$auto(r4, r5, r4)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001840), r6)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'macsec0\x00'})

1.999155783s ago: executing program 3 (id=2499):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000b80), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_NAPI_GET(r0, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x1c, r1, 0x400, 0x50bd26, 0x25dedbff, {}, [@NETDEV_A_NAPI_ID={0x8, 0x2, 0x31}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x400c991) (async)
sendmsg$auto_NETDEV_CMD_NAPI_GET(r0, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x1c, r1, 0x400, 0x50bd26, 0x25dedbff, {}, [@NETDEV_A_NAPI_ID={0x8, 0x2, 0x31}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x400c991)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x40041, 0x0)
open(&(0x7f0000000040)='./file1\x00', 0x165840, 0x151)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptycf\x00', 0x800, 0x0)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
socket(0x1d, 0x2, 0x7)
socket(0x2, 0x3, 0x1) (async)
socket(0x2, 0x3, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000100)='.\x00', 0x0, 0x448) (async)
open(&(0x7f0000000100)='.\x00', 0x0, 0x448)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x4000, 0x0) (async)
socketpair$auto(0x1, 0x2, 0x4000, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x1aa, 0x0, 0x6, 0x0, 0x5, 0x1001}, 0x5}, 0x2, 0x100)
bpf$auto(0x9, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x71c, 0xfaae, 0x468, 0x2, 0x8000000000000001, 0x80, 0x7, 0x1, 0x1fc, 0xff, 0xb5, 0x4, 0x40004, 0xd9ee}, 0xe3)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x200) (async)
writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x200)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000040), 0xffffffffffffffff)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/net/ip6gre0/statistics/rx_fifo_errors\x00', 0x101000, 0x0)
read$auto(r2, &(0x7f0000000280)='veth1_vlan\x00', 0x7) (async)
read$auto(r2, &(0x7f0000000280)='veth1_vlan\x00', 0x7)

1.593157608s ago: executing program 3 (id=2500):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027617c36720add70ab0343990f7d0bbc96dc0b"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'ip6gre0\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'veth1\x00'})
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r3, 0x4, 0x7ff)
ptrace$auto_PTRACE_SET_THREAD_AREA(0x1a, r3, 0x3, 0x1)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
r5 = openat$auto_bsg_fops_bsg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bsg/0:0:0:0\x00', 0x321800, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r5, 0x2272, &(0x7f0000000340)="d990177ee042290038bbd015b756b700068d8c2004d83176a664db2906107833bc07925d93a5e38a0a5cf09775a1c8a228eff19f08111c396d450a964b4252233329a82243f2d8fd496d5e1571ca0b2bbbc16b415d090113bdd3e06f340470642f9446bca5175761ea59f41bb9ade08dcc1438ce20e50193dbcb178b0a763d23cd29abde1b3a93a76f14c722935f896a5aaf9c5aa8056a1e8cf828083d70c3e3c902af5d7ec79f1b07449f69bdeb046589b64866f25c4de9922be232bdb871e619cbb1fd16ec25454ac5db8acf662be5f032b652a2e510a866cb50e973832816ccc4537d36eda7")
fchdir$auto(r4)
newfstatat$auto(0xffffffffffffff9c, 0x0, 0x0, 0x1000)
sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000180)=ANY=[@ANYBLOB="40000000d8b41575778562c4dbce2ecc69729d6a480865c5918e73c9", @ANYRES16=r2, @ANYBLOB="01002bbd7000ffdbdf2501000000080007000800000008000200", @ANYRES32=r3, @ANYBLOB="110001006f76735f00000000000000000000000008000200", @ANYRES32=0x0, @ANYBLOB], 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000)
read$auto(r0, &(0x7f0000000040)='\x00', 0x10001)

1.011796844s ago: executing program 3 (id=2501):
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_NET_SET(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xd0}, 0x40001) (async)
sendmsg$auto_TIPC_NL_NET_SET(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xd0}, 0x40001)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2000000000000021, 0x2, 0x0) (async)
r1 = socket(0x2000000000000021, 0x2, 0x0)
setsockopt$auto(r1, 0x110, 0x4, 0x0, 0x4)
r2 = socket(0xa, 0x1, 0x100)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio6\x00', 0x8a240, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card2/midi0\x00', 0x28102, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), r2) (async)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), r2)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x8004)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0)
socket(0x2a, 0x2, 0x0)
select$auto(0xd, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x4, 0x7fff, 0x1a000, 0x80000948b, 0x5, 0x8, 0x400000006, 0x100000000003, 0xc, 0x9, 0x3, 0x6, 0x400005, 0x5]}, 0x0) (async)
select$auto(0xd, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x4, 0x7fff, 0x1a000, 0x80000948b, 0x5, 0x8, 0x400000006, 0x100000000003, 0xc, 0x9, 0x3, 0x6, 0x400005, 0x5]}, 0x0)
r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r3, &(0x7f0000000c80)="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", 0x300) (async)
write$auto_seq_oss_f_ops_seq_oss(r3, &(0x7f0000000c80)="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", 0x300)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000680)='/sys/devices/virtual/block/nbd0/make-it-fail\x00', 0xc2681, 0x0) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000680)='/sys/devices/virtual/block/nbd0/make-it-fail\x00', 0xc2681, 0x0)
write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)

0s ago: executing program 3 (id=2502):
mmap$auto(0x0, 0xab4, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x3)
r0 = open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98)
fanotify_mark$auto(0x400000000000, 0x105, 0xfff, r0, 0x0)
read$auto_tomoyo_operations_securityfs_if(r0, &(0x7f0000000200)=""/152, 0x98)
socketpair$auto(0xb, 0xd, 0xfffffffd, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
madvise$auto(0x4000000, 0xffffffffffff0085, 0x1004)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000001c0)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptya7\x00', 0x169701, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyde\x00', 0xa0102, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
r3 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x40980, 0x0)
pread64$auto(r3, 0x0, 0x1000f42d, 0x100)
sysfs$auto(0x2, 0x23, 0x0)
r4 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r4, 0x0, 0x4)

kernel console output (not intermixed with test programs):

 Opcode 0x0c03 failed: -110
[  381.339425][T12496] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1464'.
[  381.508424][ T5834] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5
[  382.922947][T12545] TCP: TCP_TX_DELAY enabled
[  382.963802][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  382.971660][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  387.053862][   T30] audit: type=1800 audit(4294992018.871:8): pid=12645 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1501" name="dbroot" dev="configfs" ino=47334 res=0 errno=0
[  387.109033][T12645] db_root: cannot open: 
[  387.329930][T12649] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1503'.
[  389.079024][T12689] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19
[  390.657210][T12718] __vm_enough_memory: pid: 12718, comm: syz.2.1519, bytes: 8589938688 not enough memory for the allocation
[  390.901399][T12725] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1520'.
[  391.435363][T12732] net_ratelimit: 120 callbacks suppressed
[  391.435377][T12732] openvswitch: netlink: Key 15 has unexpected len 16 expected 4
[  391.661108][T12738] random: crng reseeded on system resumption
[  391.928694][T12737] FAULT_INJECTION: forcing a failure.
[  391.928694][T12737] name fail_futex, interval 1, probability 0, space 0, times 0
[  392.019764][T12737] CPU: 0 UID: 0 PID: 12737 Comm: syz.0.1524 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  392.019790][T12737] Tainted: [L]=SOFTLOCKUP
[  392.019795][T12737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  392.019804][T12737] Call Trace:
[  392.019809][T12737]  <TASK>
[  392.019815][T12737]  dump_stack_lvl+0x16c/0x1f0
[  392.019841][T12737]  should_fail_ex+0x512/0x640
[  392.019861][T12737]  get_futex_key+0x1d0/0x15f0
[  392.019879][T12737]  ? __lock_acquire+0x436/0x2890
[  392.019892][T12737]  ? __pfx_get_futex_key+0x10/0x10
[  392.019908][T12737]  ? trace_sched_set_need_resched_tp+0xf3/0x130
[  392.019936][T12737]  futex_wait_setup+0x9d/0x570
[  392.019961][T12737]  __futex_wait+0x193/0x2f0
[  392.019990][T12737]  ? __pfx___futex_wait+0x10/0x10
[  392.020012][T12737]  ? __pfx_futex_wake_mark+0x10/0x10
[  392.020034][T12737]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  392.020051][T12737]  ? __hrtimer_setup+0x176/0x280
[  392.020070][T12737]  ? ktime_add_safe+0x60/0x70
[  392.020089][T12737]  futex_wait+0xe8/0x380
[  392.020109][T12737]  ? __pfx_futex_wait+0x10/0x10
[  392.020126][T12737]  ? __lock_acquire+0x436/0x2890
[  392.020141][T12737]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  392.020165][T12737]  do_futex+0x229/0x350
[  392.020182][T12737]  ? __pfx_do_futex+0x10/0x10
[  392.020196][T12737]  ? rcu_is_watching+0x12/0xc0
[  392.020216][T12737]  ? ktime_get+0x200/0x310
[  392.020228][T12737]  ? lockdep_hardirqs_on+0x7c/0x110
[  392.020255][T12737]  ? read_tsc+0x9/0x20
[  392.020282][T12737]  __x64_sys_futex+0x1e0/0x4c0
[  392.020301][T12737]  ? __pfx___x64_sys_futex+0x10/0x10
[  392.020317][T12737]  ? xfd_validate_state+0x61/0x180
[  392.020336][T12737]  do_syscall_64+0xcd/0xf80
[  392.020359][T12737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  392.020374][T12737] RIP: 0033:0x7f334cb8f7c9
[  392.020387][T12737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  392.020401][T12737] RSP: 002b:00007ffdd70dad18 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  392.020415][T12737] RAX: ffffffffffffffda RBX: 000000000005fe3f RCX: 00007f334cb8f7c9
[  392.020425][T12737] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f334cde618c
[  392.020433][T12737] RBP: 0000000000000032 R08: 00007f334d9d3000 R09: 00000016d70db00f
[  392.020442][T12737] R10: 00007ffdd70dae10 R11: 0000000000000246 R12: 00007f334cde618c
[  392.020451][T12737] R13: 00007ffdd70dae10 R14: 000000000005fe71 R15: 00007ffdd70dae30
[  392.020470][T12737]  </TASK>
[  392.752057][T12750] [U] 	
[  392.754863][T12750] [U] 
[  392.757537][T12750] [U] 
[  392.760216][T12750] [U] 
[  392.762892][T12750] [U] 
[  392.796825][T12750] [U] 
[  392.799538][T12750] [U] 
[  392.802217][T12750] [U] 
[  392.804888][T12750] [U] 
[  392.878441][T12750] [U] 
[  392.881148][T12750] [U] 
[  392.883824][T12750] [U] 
[  392.886493][T12750] [U] 
[  392.913455][T12750] [U] 
[  392.916197][T12750] [U] 
[  392.918875][T12750] [U] 
[  392.921548][T12750] [U] 
[  392.941215][T12750] [U] 
[  392.943932][T12750] [U] 
[  392.946618][T12750] [U] 
[  392.949292][T12750] [U] 
[  393.122462][T12747] [U] 
[  393.393627][T12758] zswap: compressor  not available
[  394.748843][T12778] netlink: 'syz.0.1532': attribute type 10 has an invalid length.
[  394.796758][T12778] netlink: 230 bytes leftover after parsing attributes in process `syz.0.1532'.
[  394.892716][T12778] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  396.070045][T12809] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1539'.
[  396.277633][T12821] FAULT_INJECTION: forcing a failure.
[  396.277633][T12821] name failslab, interval 1, probability 0, space 0, times 0
[  396.361649][T12821] CPU: 0 UID: 0 PID: 12821 Comm: syz.2.1542 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  396.361677][T12821] Tainted: [L]=SOFTLOCKUP
[  396.361683][T12821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  396.361692][T12821] Call Trace:
[  396.361697][T12821]  <TASK>
[  396.361704][T12821]  dump_stack_lvl+0x16c/0x1f0
[  396.361730][T12821]  should_fail_ex+0x512/0x640
[  396.361747][T12821]  ? __kmalloc_cache_noprof+0x5f/0x800
[  396.361767][T12821]  should_failslab+0xc2/0x120
[  396.361790][T12821]  __kmalloc_cache_noprof+0x80/0x800
[  396.361806][T12821]  ? rcu_is_watching+0x12/0xc0
[  396.361826][T12821]  ? call_usermodehelper_setup+0xaf/0x360
[  396.361845][T12821]  ? __pfx_free_modprobe_argv+0x10/0x10
[  396.361864][T12821]  ? call_usermodehelper_setup+0xaf/0x360
[  396.361881][T12821]  call_usermodehelper_setup+0xaf/0x360
[  396.361902][T12821]  __request_module+0x3bd/0x660
[  396.361921][T12821]  ? __pfx___request_module+0x10/0x10
[  396.361948][T12821]  ? rcu_is_watching+0x12/0xc0
[  396.361968][T12821]  ? lockdep_hardirqs_on+0x7c/0x110
[  396.361994][T12821]  netlink_create+0x226/0x620
[  396.362016][T12821]  __sock_create+0x339/0x8a0
[  396.362033][T12821]  __sys_socket+0x14d/0x260
[  396.362047][T12821]  ? __pfx___sys_socket+0x10/0x10
[  396.362060][T12821]  ? xfd_validate_state+0x61/0x180
[  396.362073][T12821]  ? __pfx_ksys_write+0x10/0x10
[  396.362097][T12821]  __x64_sys_socket+0x72/0xb0
[  396.362110][T12821]  ? lockdep_hardirqs_on+0x7c/0x110
[  396.362131][T12821]  do_syscall_64+0xcd/0xf80
[  396.362153][T12821]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  396.362168][T12821] RIP: 0033:0x7fbb21b8f7c9
[  396.362181][T12821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  396.362196][T12821] RSP: 002b:00007fbb22a57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  396.362210][T12821] RAX: ffffffffffffffda RBX: 00007fbb21de5fa0 RCX: 00007fbb21b8f7c9
[  396.362220][T12821] RDX: 000000000000001f RSI: 0000000000000003 RDI: 0000000000000010
[  396.362228][T12821] RBP: 00007fbb21c13f91 R08: 0000000000000000 R09: 0000000000000000
[  396.362237][T12821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  396.362245][T12821] R13: 00007fbb21de6038 R14: 00007fbb21de5fa0 R15: 00007fff98df6318
[  396.362264][T12821]  </TASK>
[  398.478660][   T30] audit: type=1800 audit(4294992030.361:9): pid=12873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1555" name="dbroot" dev="configfs" ino=48399 res=0 errno=0
[  399.291223][T12895] random: crng reseeded on system resumption
[  400.844642][T12921] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1567'.
[  403.520954][T12961] input: f¬
 as /devices/virtual/input/input20
[  403.817534][T12970] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1986356271.812086063.0), cmd(3)
[  403.889167][T12967] nvme_fabrics: missing parameter 'transport=%s'
[  403.927528][T12967] nvme_fabrics: missing parameter 'nqn=%s'
[  404.329840][T12976] eql: remember to turn off Van-Jacobson compression on your slave devices
[  405.313315][   T30] audit: type=1326 audit(4294992037.216:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12999 comm="syz.3.1586" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ffa58f7c9 code=0x0
[  405.501166][T13014] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1591'.
[  405.597811][T13005] zswap: compressor  not available
[  407.173611][T13045] binder: 13037:13045 ioctl 541b fffffffffffff4e0 returned -22
[  407.291453][T13049] vhci_hcd vhci_hcd.0: invalid port number 16
[  407.638764][T13057] netlink: 'syz.0.1600': attribute type 1 has an invalid length.
[  409.716140][T13121] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1615'.
[  412.298044][T13176] netlink: 'syz.0.1627': attribute type 21 has an invalid length.
[  412.325599][T13176] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1627'.
[  413.512671][T13203] random: crng reseeded on system resumption
[  415.863078][T13232] bridge0: port 1(syz_tun) entered blocking state
[  415.899480][T13232] bridge0: port 1(syz_tun) entered disabled state
[  415.932506][T13232] syz_tun: entered allmulticast mode
[  415.953407][T13232] syz_tun: entered promiscuous mode
[  415.986212][ T5834] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  417.803164][T13253] FAULT_INJECTION: forcing a failure.
[  417.803164][T13253] name fail_futex, interval 1, probability 0, space 0, times 0
[  417.884912][T13253] CPU: 0 UID: 0 PID: 13253 Comm: syz.2.1644 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  417.884938][T13253] Tainted: [L]=SOFTLOCKUP
[  417.884943][T13253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  417.884952][T13253] Call Trace:
[  417.884957][T13253]  <TASK>
[  417.884963][T13253]  dump_stack_lvl+0x16c/0x1f0
[  417.884990][T13253]  should_fail_ex+0x512/0x640
[  417.885009][T13253]  get_futex_key+0x1085/0x15f0
[  417.885028][T13253]  ? __pfx_get_futex_key+0x10/0x10
[  417.885049][T13253]  futex_wake+0xea/0x530
[  417.885070][T13253]  ? __pfx_futex_wake+0x10/0x10
[  417.885097][T13253]  do_futex+0x1e3/0x350
[  417.885113][T13253]  ? __pfx_do_futex+0x10/0x10
[  417.885128][T13253]  ? __might_fault+0xe3/0x190
[  417.885149][T13253]  mm_release+0x24e/0x300
[  417.885169][T13253]  do_exit+0x69e/0x2bd0
[  417.885187][T13253]  ? __pfx_do_exit+0x10/0x10
[  417.885200][T13253]  ? do_raw_spin_lock+0x12c/0x2b0
[  417.885217][T13253]  ? find_held_lock+0x2b/0x80
[  417.885238][T13253]  do_group_exit+0xd3/0x2a0
[  417.885253][T13253]  get_signal+0x2671/0x26d0
[  417.885277][T13253]  ? __lock_acquire+0x436/0x2890
[  417.885291][T13253]  ? __pfx_get_signal+0x10/0x10
[  417.885312][T13253]  ? do_futex+0x122/0x350
[  417.885329][T13253]  arch_do_signal_or_restart+0x8f/0x7a0
[  417.885350][T13253]  ? do_raw_spin_lock+0x12c/0x2b0
[  417.885366][T13253]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  417.885390][T13253]  ? __do_sys_ioprio_set+0x100/0xb50
[  417.885413][T13253]  ? __pfx___x64_sys_futex+0x10/0x10
[  417.885433][T13253]  exit_to_user_mode_loop+0x8c/0x540
[  417.885453][T13253]  do_syscall_64+0x4ee/0xf80
[  417.885477][T13253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.885492][T13253] RIP: 0033:0x7fbb21b8f7c9
[  417.885511][T13253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.885525][T13253] RSP: 002b:00007fbb22a150e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  417.885539][T13253] RAX: fffffffffffffe00 RBX: 00007fbb21de6188 RCX: 00007fbb21b8f7c9
[  417.885549][T13253] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbb21de6188
[  417.885557][T13253] RBP: 00007fbb21de6180 R08: 0000000000000000 R09: 0000000000000000
[  417.885566][T13253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  417.885574][T13253] R13: 00007fbb21de6218 R14: 00007fff98df6230 R15: 00007fff98df6318
[  417.885593][T13253]  </TASK>
[  418.214674][T13251] kexec: Could not allocate control_code_buffer
[  420.414962][T13311] Invalid ELF header magic: != ELF
[  420.760536][T13321] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1661'.
[  420.856615][T13321] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  420.946399][T13321] batman_adv: batadv0: Removing interface: batadv_slave_1
[  423.916584][T13387] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  423.945063][ T5834] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  423.959494][T13387] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  423.996450][T13387] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  424.029296][T13387] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  424.551175][T13410] random: crng reseeded on system resumption
[  425.457013][ T5834] Bluetooth: hci0: command 0x0406 tx timeout
[  426.000260][T13432] vivid-007: =================  START STATUS  =================
[  426.016823][ T5837] Bluetooth: hci1: command 0x0406 tx timeout
[  426.022870][ T5834] Bluetooth: hci2: command 0x0406 tx timeout
[  426.029426][ T5839] Bluetooth: hci3: command 0x0406 tx timeout
[  426.051446][T13432] vivid-007: Generate PTS: true
[  426.066589][T13432] vivid-007: Generate SCR: true
[  426.090325][T13432] tpg source WxH: 320x240 (Y'CbCr)
[  426.114404][T13432] tpg field: 1
[  426.127903][T13432] tpg crop: (0,0)/320x240
[  426.139260][T13432] tpg compose: (0,0)/320x240
[  426.158317][T13432] tpg colorspace: 8
[  426.192698][T13432] tpg transfer function: 0/0
[  426.215724][T13432] tpg Y'CbCr encoding: 0/0
[  426.230100][T13432] tpg quantization: 0/0
[  426.264569][T13432] tpg RGB range: 0/2
[  426.289829][T13432] vivid-007: ==================  END STATUS  ==================
[  428.202104][T13496] ubi0: attaching mtd0
[  428.221583][T13496] ubi0: scanning is finished
[  428.240514][T13496] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  428.376356][T13496] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  429.211302][   T30] audit: type=1800 audit(4294992061.251:11): pid=13523 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1711" name="features" dev="configfs" ino=51868 res=0 errno=0
[  429.487572][T13533] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1712'.
[  429.535726][T13533] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  430.832160][T13583] netlink: 306 bytes leftover after parsing attributes in process `syz.2.1722'.
[  431.147589][T13591] __vm_enough_memory: pid: 13591, comm: syz.1.1726, bytes: 4398046511104 not enough memory for the allocation
[  433.542394][T13668] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1744'.
[  433.556765][T13665] =======================================================
[  433.556765][T13665] WARNING: The mand mount option has been deprecated and
[  433.556765][T13665]          and is ignored by this kernel. Remove the mand
[  433.556765][T13665]          option from the mount to silence this warning.
[  433.556765][T13665] =======================================================
[  433.727198][T13667] zswap: compressor  not available
[  433.911240][T13678] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1748'.
[  433.961378][T13678] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1748'.
[  434.873613][T13700] Invalid ELF header magic: != ELF
[  435.104102][T13712] syz.1.1756 (13712): attempted to duplicate a private mapping with mremap.  This is not supported.
[  435.315467][T13719] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21
[  438.793271][T13802] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1773'.
[  442.379453][T13870] syz_tun: tun_chr_ioctl cmd 1074025678
[  442.926416][T13887] ptp ptp0: only physical clock in use now
[  444.083464][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  444.090099][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  444.884578][T13931] Invalid ELF header magic: != ELF
[  446.084468][T13947] netlink: 'syz.0.1807': attribute type 1 has an invalid length.
[  446.720758][T13970] nfs: Unknown parameter '1%Þ|dMó(FLæ8."„»›Y·±²À²Uñ½c@ÿ™FÁà‹çþ(™6ƒZðUDnêšG#'
[  446.771960][T13970] usb usb26: usbfs: interface 0 claimed by hub while 'syz.0.1814' resets device
[  446.844270][ T5839] Bluetooth: hci3: SCO packet for unknown connection handle 0
[  447.104016][T13995] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1817'.
[  447.318565][T14010] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  447.357989][T14009] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  447.876534][   T30] audit: type=1800 audit(4294992080.008:12): pid=14030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1826" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  448.202000][ T5839] Bluetooth: hci2: unexpected event 0x36 length: 123 > 7
[  449.425234][T14082] FAULT_INJECTION: forcing a failure.
[  449.425234][T14082] name failslab, interval 1, probability 0, space 0, times 0
[  449.468579][T14082] CPU: 0 UID: 0 PID: 14082 Comm: syz.0.1839 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  449.468605][T14082] Tainted: [L]=SOFTLOCKUP
[  449.468610][T14082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  449.468618][T14082] Call Trace:
[  449.468623][T14082]  <TASK>
[  449.468629][T14082]  dump_stack_lvl+0x16c/0x1f0
[  449.468656][T14082]  should_fail_ex+0x512/0x640
[  449.468672][T14082]  ? __kmalloc_cache_noprof+0x5f/0x800
[  449.468691][T14082]  should_failslab+0xc2/0x120
[  449.468714][T14082]  __kmalloc_cache_noprof+0x80/0x800
[  449.468730][T14082]  ? alloc_pipe_info+0x10e/0x590
[  449.468755][T14082]  ? alloc_pipe_info+0x10e/0x590
[  449.468776][T14082]  alloc_pipe_info+0x10e/0x590
[  449.468800][T14082]  splice_direct_to_actor+0x77d/0xa30
[  449.468822][T14082]  ? __lock_acquire+0x436/0x2890
[  449.468835][T14082]  ? __pfx_direct_splice_actor+0x10/0x10
[  449.468856][T14082]  ? __pfx_aa_file_perm+0x10/0x10
[  449.468878][T14082]  ? finish_task_switch.isra.0+0x202/0xbd0
[  449.468898][T14082]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  449.468919][T14082]  ? rcu_is_watching+0x12/0xc0
[  449.468943][T14082]  do_splice_direct+0x174/0x240
[  449.468964][T14082]  ? __pfx_do_splice_direct+0x10/0x10
[  449.468986][T14082]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  449.469009][T14082]  ? rw_verify_area+0xcf/0x6c0
[  449.469030][T14082]  do_sendfile+0xb06/0xe50
[  449.469052][T14082]  ? __pfx_do_sendfile+0x10/0x10
[  449.469071][T14082]  ? irqentry_exit+0x1dd/0x8c0
[  449.469093][T14082]  ? irqentry_exit+0x1dd/0x8c0
[  449.469117][T14082]  __x64_sys_sendfile64+0x1d8/0x220
[  449.469132][T14082]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  449.469147][T14082]  ? trace_irq_enable.constprop.0+0x2f/0x110
[  449.469174][T14082]  do_syscall_64+0xcd/0xf80
[  449.469196][T14082]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  449.469212][T14082] RIP: 0033:0x7f334cb8f7c9
[  449.469224][T14082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  449.469238][T14082] RSP: 002b:00007f334d9d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  449.469252][T14082] RAX: ffffffffffffffda RBX: 00007f334cde5fa0 RCX: 00007f334cb8f7c9
[  449.469262][T14082] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  449.469270][T14082] RBP: 00007f334d9d2090 R08: 0000000000000000 R09: 0000000000000000
[  449.469278][T14082] R10: 0000400000000006 R11: 0000000000000246 R12: 0000000000000001
[  449.469287][T14082] R13: 00007f334cde6038 R14: 00007f334cde5fa0 R15: 00007ffdd70dabb8
[  449.469305][T14082]  </TASK>
[  449.959803][T14098] Unable to find swap-space signature
[  450.081903][T14104] FAULT_INJECTION: forcing a failure.
[  450.081903][T14104] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  450.182852][T14104] CPU: 0 UID: 0 PID: 14104 Comm: syz.2.1843 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  450.182880][T14104] Tainted: [L]=SOFTLOCKUP
[  450.182886][T14104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  450.182895][T14104] Call Trace:
[  450.182901][T14104]  <TASK>
[  450.182907][T14104]  dump_stack_lvl+0x16c/0x1f0
[  450.182934][T14104]  should_fail_ex+0x512/0x640
[  450.182955][T14104]  _copy_from_user+0x2e/0xd0
[  450.182972][T14104]  do_semtimedop+0x182/0x2e0
[  450.182991][T14104]  ? __pfx_do_semtimedop+0x10/0x10
[  450.183030][T14104]  ? __x64_sys_futex+0x1e0/0x4c0
[  450.183047][T14104]  ? __x64_sys_futex+0x1e9/0x4c0
[  450.183066][T14104]  __x64_sys_semtimedop+0x1b4/0x1f0
[  450.183083][T14104]  ? __pfx___x64_sys_semtimedop+0x10/0x10
[  450.183105][T14104]  do_syscall_64+0xcd/0xf80
[  450.183129][T14104]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  450.183143][T14104] RIP: 0033:0x7fbb21b8f7c9
[  450.183156][T14104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  450.183170][T14104] RSP: 002b:00007fbb22a15038 EFLAGS: 00000246 ORIG_RAX: 00000000000000dc
[  450.183184][T14104] RAX: ffffffffffffffda RBX: 00007fbb21de6180 RCX: 00007fbb21b8f7c9
[  450.183194][T14104] RDX: 00000000000001f4 RSI: 0000000000000000 RDI: 0000000000000000
[  450.183202][T14104] RBP: 00007fbb21c13f91 R08: 0000000000000000 R09: 0000000000000000
[  450.183211][T14104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  450.183219][T14104] R13: 00007fbb21de6218 R14: 00007fbb21de6180 R15: 00007fff98df6318
[  450.183258][T14104]  </TASK>
[  450.691226][T14110] FAULT_INJECTION: forcing a failure.
[  450.691226][T14110] name failslab, interval 1, probability 0, space 0, times 0
[  450.731960][T14110] CPU: 0 UID: 0 PID: 14110 Comm: syz.0.1848 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  450.731987][T14110] Tainted: [L]=SOFTLOCKUP
[  450.731992][T14110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  450.732002][T14110] Call Trace:
[  450.732008][T14110]  <TASK>
[  450.732014][T14110]  dump_stack_lvl+0x16c/0x1f0
[  450.732043][T14110]  should_fail_ex+0x512/0x640
[  450.732060][T14110]  ? __kmalloc_node_track_caller_noprof+0xcb/0x930
[  450.732085][T14110]  should_failslab+0xc2/0x120
[  450.732108][T14110]  __kmalloc_node_track_caller_noprof+0xec/0x930
[  450.732130][T14110]  ? snd_timer_instance_new+0x65/0x2e0
[  450.732158][T14110]  ? kstrdup+0x53/0x100
[  450.732173][T14110]  kstrdup+0x53/0x100
[  450.732190][T14110]  snd_timer_instance_new+0x65/0x2e0
[  450.732213][T14110]  snd_seq_timer_open+0x1cc/0x600
[  450.732234][T14110]  ? __pfx_snd_seq_timer_open+0x10/0x10
[  450.732258][T14110]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  450.732279][T14110]  ? lockdep_hardirqs_on+0x7c/0x110
[  450.732300][T14110]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  450.732330][T14110]  queue_use+0xe3/0x250
[  450.732345][T14110]  snd_seq_queue_alloc+0x2e5/0x5a0
[  450.732364][T14110]  snd_seq_ioctl_create_queue+0xa9/0x390
[  450.732387][T14110]  call_seq_client_ctl+0xa3/0x130
[  450.732410][T14110]  snd_seq_kernel_client_ctl+0x7a/0xc0
[  450.732433][T14110]  alloc_seq_queue+0xda/0x180
[  450.732455][T14110]  ? __pfx_alloc_seq_queue+0x10/0x10
[  450.732487][T14110]  ? mark_held_locks+0x49/0x80
[  450.732500][T14110]  ? _raw_spin_unlock_irq+0x23/0x50
[  450.732519][T14110]  ? lockdep_hardirqs_on+0x7c/0x110
[  450.732542][T14110]  snd_seq_oss_open+0x38c/0xa40
[  450.732568][T14110]  odev_open+0x79/0xc0
[  450.732587][T14110]  ? __pfx_odev_open+0x10/0x10
[  450.732607][T14110]  soundcore_open+0x40c/0x580
[  450.732630][T14110]  ? __pfx_soundcore_open+0x10/0x10
[  450.732650][T14110]  chrdev_open+0x234/0x6a0
[  450.732673][T14110]  ? __pfx_apparmor_file_open+0x10/0x10
[  450.732688][T14110]  ? __pfx_chrdev_open+0x10/0x10
[  450.732711][T14110]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  450.732738][T14110]  do_dentry_open+0x748/0x1590
[  450.732759][T14110]  ? __pfx_chrdev_open+0x10/0x10
[  450.732786][T14110]  vfs_open+0x82/0x3f0
[  450.732804][T14110]  path_openat+0x2078/0x3140
[  450.732831][T14110]  ? __pfx_path_openat+0x10/0x10
[  450.732860][T14110]  do_filp_open+0x20b/0x470
[  450.732882][T14110]  ? __pfx_do_filp_open+0x10/0x10
[  450.732917][T14110]  ? alloc_fd+0x471/0x7d0
[  450.732943][T14110]  do_sys_openat2+0x121/0x290
[  450.732962][T14110]  ? __pfx_do_sys_openat2+0x10/0x10
[  450.732986][T14110]  __x64_sys_openat+0x174/0x210
[  450.733002][T14110]  ? __pfx___x64_sys_openat+0x10/0x10
[  450.733027][T14110]  do_syscall_64+0xcd/0xf80
[  450.733050][T14110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  450.733066][T14110] RIP: 0033:0x7f334cb8f7c9
[  450.733079][T14110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  450.733093][T14110] RSP: 002b:00007f334d9d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  450.733107][T14110] RAX: ffffffffffffffda RBX: 00007f334cde5fa0 RCX: 00007f334cb8f7c9
[  450.733118][T14110] RDX: 0000000000100842 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  450.733128][T14110] RBP: 00007f334cc13f91 R08: 0000000000000000 R09: 0000000000000000
[  450.733137][T14110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  450.733146][T14110] R13: 00007f334cde6038 R14: 00007f334cde5fa0 R15: 00007ffdd70dabb8
[  450.733167][T14110]  </TASK>
[  452.737561][T14171] KVM: debugfs: duplicate directory 14171-3
[  453.052256][T14187] random: crng reseeded on system resumption
[  453.495889][T14193] random: crng reseeded on system resumption
[  453.562871][T14193] hub 1-0:1.0: USB hub found
[  453.626626][T14193] hub 1-0:1.0: 1 port detected
[  455.519568][T14252] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1887'.
[  456.905755][T14302] netlink: 'syz.2.1902': attribute type 1 has an invalid length.
[  458.049290][T14331] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1911'.
[  458.094509][T14331] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1911'.
[  458.418462][T14337] FAULT_INJECTION: forcing a failure.
[  458.418462][T14337] name failslab, interval 1, probability 0, space 0, times 0
[  458.477842][T14337] CPU: 0 UID: 8 PID: 14337 Comm: syz.0.1913 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  458.477869][T14337] Tainted: [L]=SOFTLOCKUP
[  458.477874][T14337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  458.477883][T14337] Call Trace:
[  458.477888][T14337]  <TASK>
[  458.477893][T14337]  dump_stack_lvl+0x16c/0x1f0
[  458.477919][T14337]  should_fail_ex+0x512/0x640
[  458.477936][T14337]  ? fs_reclaim_acquire+0xae/0x150
[  458.477960][T14337]  should_failslab+0xc2/0x120
[  458.477983][T14337]  __kmalloc_noprof+0xeb/0x910
[  458.477999][T14337]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  458.478023][T14337]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  458.478042][T14337]  tomoyo_realpath_from_path+0xc2/0x6e0
[  458.478063][T14337]  ? tomoyo_profile+0x47/0x60
[  458.478087][T14337]  tomoyo_path_number_perm+0x245/0x580
[  458.478102][T14337]  ? tomoyo_path_number_perm+0x237/0x580
[  458.478121][T14337]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  458.478138][T14337]  ? find_held_lock+0x2b/0x80
[  458.478173][T14337]  ? find_held_lock+0x2b/0x80
[  458.478191][T14337]  ? hook_file_ioctl_common+0x144/0x410
[  458.478212][T14337]  ? __fget_files+0x20e/0x3c0
[  458.478244][T14337]  security_file_ioctl+0x9b/0x240
[  458.478266][T14337]  __x64_sys_ioctl+0xb7/0x210
[  458.478289][T14337]  do_syscall_64+0xcd/0xf80
[  458.478321][T14337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  458.478336][T14337] RIP: 0033:0x7f334cb8f7c9
[  458.478361][T14337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  458.478381][T14337] RSP: 002b:00007f334d9d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  458.478395][T14337] RAX: ffffffffffffffda RBX: 00007f334cde5fa0 RCX: 00007f334cb8f7c9
[  458.478405][T14337] RDX: 0000000000000000 RSI: 00000000801070cf RDI: 0000000000000003
[  458.478413][T14337] RBP: 00007f334d9d2090 R08: 0000000000000000 R09: 0000000000000000
[  458.478426][T14337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  458.478434][T14337] R13: 00007f334cde6038 R14: 00007f334cde5fa0 R15: 00007ffdd70dabb8
[  458.478453][T14337]  </TASK>
[  458.478460][T14337] ERROR: Out of memory at tomoyo_realpath_from_path.
[  459.300927][T14363] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1918'.
[  459.740662][T14385] random: crng reseeded on system resumption
[  459.967380][T14388] FAULT_INJECTION: forcing a failure.
[  459.967380][T14388] name failslab, interval 1, probability 0, space 0, times 0
[  460.132458][T14388] CPU: 0 UID: 0 PID: 14388 Comm: syz.2.1924 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  460.132502][T14388] Tainted: [L]=SOFTLOCKUP
[  460.132507][T14388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  460.132516][T14388] Call Trace:
[  460.132521][T14388]  <TASK>
[  460.132528][T14388]  dump_stack_lvl+0x16c/0x1f0
[  460.132556][T14388]  should_fail_ex+0x512/0x640
[  460.132573][T14388]  ? kmem_cache_alloc_noprof+0x62/0x770
[  460.132596][T14388]  should_failslab+0xc2/0x120
[  460.132619][T14388]  kmem_cache_alloc_noprof+0x83/0x770
[  460.132636][T14388]  ? prepare_creds+0x2c/0x940
[  460.132656][T14388]  ? prepare_creds+0x2c/0x940
[  460.132672][T14388]  prepare_creds+0x2c/0x940
[  460.132689][T14388]  join_session_keyring+0x17/0x340
[  460.132708][T14388]  lookup_user_key+0x576/0x1300
[  460.132726][T14388]  ? __pfx_lookup_user_key+0x10/0x10
[  460.132744][T14388]  ? __pfx_do_futex+0x10/0x10
[  460.132764][T14388]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  460.132790][T14388]  keyctl_keyring_move+0xb4/0x150
[  460.132806][T14388]  __do_sys_keyctl+0x171/0x590
[  460.132822][T14388]  do_syscall_64+0xcd/0xf80
[  460.132845][T14388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.132860][T14388] RIP: 0033:0x7fbb21b8f7c9
[  460.132873][T14388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  460.132887][T14388] RSP: 002b:00007fbb22a15038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  460.132902][T14388] RAX: ffffffffffffffda RBX: 00007fbb21de6180 RCX: 00007fbb21b8f7c9
[  460.132911][T14388] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 000000000000001e
[  460.132920][T14388] RBP: 00007fbb21c13f91 R08: 0000000000000001 R09: 0000000000000000
[  460.132929][T14388] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000
[  460.132937][T14388] R13: 00007fbb21de6218 R14: 00007fbb21de6180 R15: 00007fff98df6318
[  460.132957][T14388]  </TASK>
[  461.573573][T14424] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1930'.
[  461.600677][   T30] audit: type=1806 audit(4294992093.789:13): xattr=9A50DE9914A0 res=-22
[  462.417493][T14454] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1938'.
[  463.911286][T14514] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1956'.
[  464.262708][T14530] HfR: entered promiscuous mode
[  464.288050][T14524] netlink: set zone limit has 8 unknown bytes
[  464.637717][T14553] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1965'.
[  464.954643][T14562] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1968'.
[  465.652581][T14585] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1975'.
[  465.992309][T14591] ubi0: attaching mtd0
[  466.013683][T14591] ubi0: scanning is finished
[  466.055108][T14591] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  466.398393][T14591] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  466.958137][T14616] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1985'.
[  467.220821][T14624] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22
[  467.945219][T14643] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1992'.
[  469.856760][ T5839] Bluetooth: hci0: Malformed Event: 0x13
[  470.238928][T14692] queue_state_write: operation too long
[  470.313724][T14692] queue_state_write: use 'run', 'start' or 'kick'
[  470.386720][T14682] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2)
[  472.211456][T14742] bridge0: port 4(dummy0) entered blocking state
[  472.276403][T14742] bridge0: port 4(dummy0) entered disabled state
[  472.282874][T14742] dummy0: entered allmulticast mode
[  472.494131][T14742] dummy0: entered promiscuous mode
[  472.514491][T14764] vhci_hcd: pdev 6642611
[  472.615648][T14742] bridge0: port 4(dummy0) entered blocking state
[  472.622111][T14742] bridge0: port 4(dummy0) entered forwarding state
[  472.990618][T14777] ubi0: attaching mtd0
[  473.048735][T14777] ubi0: scanning is finished
[  473.098182][T14777] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  473.608050][T14777] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  473.692255][T14782] input: jJǸ-�¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input23
[  473.806113][T14782] usb usb24: usbfs: process 14782 (syz.2.2018) did not claim interface 0 before use
[  474.388857][T14814] ptrace attach of "./syz-executor exec"[5835] was attempted by "ÔÔ\x0aôSÛÂ\x09ÒÊœÕ6óø÷Ø\x1bsám…þèZ” D‚ϧ%uAJy®ËÏqä «\x0c”R“‡yX]˜ÆpAArg9§’ƒJ`³X4;È••Ô§–<�®vŒ.\x0c-a&Àõj¬\x22´dFÈÖÓ0Ëaцc·A{z d%‡‹®½}:¿<i\x0cžD6û·žfGb ³F™Æ‡X úšpO#|©qhPW2<BIé˜Õf-\x09ïæùˆÏðá–Ъ7«
NA�E“±·÷øºcO=¸‹Ç(t�´q~Ib\x5c%L¶´R†Ö±!ÂÅÓžë¸}-÷“Ã{pñE�£òYN£¦¯HÆñÍÂ@4rNI
8‘¦mËÑ3ª‰hDhrï{EÔ\x09Û<ã×�¼> ¼)ŠFÔ;£\x0d„¿ŸüLŠ\x22²æ¥]Úê ã¦GgIµ»ÇÃæeówÙÿIŠý±b'u$œŠfð�y‡±àÚ?‚¾Í'ád…zðp1Íáòë¤N“®·Ù  ±!hQ\x0ar”öâìTê\x09$�G¯ø`ÓœS±‘¥¨¥0\x0b�ê@²rXLÒ1\x0c]›ÐÁš ÞÊ#\x1b8L)EÔv¬úÉ\x0d£uü­!;µVø'�»Þ„D:7æ|bïàÙÔÇ\x22i°¤·kp\x07Ø!?íݪFUõi‚\x09Úò¡lm%µ™*od“M¸¦
º’®ÿŸ\x0aIYÁ×”»YZÛÇ`\x5c\x0d\x07u\x07¼¬ž}˜k=‡·ÕÌ�Cu‡à\x0dƒ$…\x1bq?Ú£aþ®í�'8Ù•»Žq9\x1b(;@(¢ÊA,;ñ1ŠàP<*9î5º/ã·§àPkû¬#TxΓ d¢×�qju¶ðO
'žœ¿ï°rÔøvÂõ þ¯0@†í)g=P‚CV”T\x0a‹ït.Ä©ê¹þù9Ò{W‰àhÚ»³=dá‹f-,-\x1b…*±ŽdIÜÅ!B„ÏçrDR[†ªÎBj®Tpƒ�zÀ ÞQ[[S�ˆàß &\x09ÿv—»þ*\x0doÀR€¾ˆíÈÒ8/ž Mü6kg F¼ç:¤ü<\x0cå¤û¹mrßËÈ8?E+À²Y éA\x0d…
¦¤€8N]´0î¹ü?õÇ8®‰‚™‘.\x5cÆ­\x0aEà=tæ|­§$§xÉ
[  474.400160][T14814] ptrace attach of "./syz-executor exec"[5835] was attempted by "ÔÔ\x0aôSÛÂ\x09ÒÊœÕ6óø÷Ø\x1bsám…þèZ” D‚ϧ%uAJy®ËÏqä «\x0c”R“‡yX]˜ÆpAArg9§’ƒJ`³X4;È••Ô§–<�®vŒ.\x0c-a&Àõj¬\x22´dFÈÖÓ0Ëaцc·A{z d%‡‹®½}:¿<i\x0cžD6û·žfGb ³F™Æ‡X úšpO#|©qhPW2<BIé˜Õf-\x09ïæùˆÏðá–Ъ7«
NA�E“±·÷øºcO=¸‹Ç(t�´q~Ib\x5c%L¶´R†Ö±!ÂÅÓžë¸}-÷“Ã{pñE�£òYN£¦¯HÆñÍÂ@4rNI
8‘¦mËÑ3ª‰hDhrï{EÔ\x09Û<ã×�¼> ¼)ŠFÔ;£\x0d„¿ŸüLŠ\x22²æ¥]Úê ã¦GgIµ»ÇÃæeówÙÿIŠý±b'u$œŠfð�y‡±àÚ?‚¾Í'ád…zðp1Íáòë¤N“®·Ù  ±!hQ\x0ar”öâìTê\x09$�G¯ø`ÓœS±‘¥¨¥0\x0b�ê@²rXLÒ1\x0c]›ÐÁš ÞÊ#\x1b8L)EÔv¬úÉ\x0d£uü­!;µVø'�»Þ„D:7æ|bïàÙÔÇ\x22i°¤·kp\x07Ø!?íݪFUõi‚\x09Úò¡lm%µ™*od“M¸¦
º’®ÿŸ\x0aIYÁ×”»YZÛÇ`\x5c\x0d\x07u\x07¼¬ž}˜k=‡·ÕÌ�Cu‡à\x0dƒ$…\x1bq?Ú£aþ®í�'8Ù•»Žq9\x1b(;@(¢ÊA,;ñ1ŠàP<*9î5º/ã·§àPkû¬#TxΓ d¢×�qju¶ðO
'žœ¿ï°rÔøvÂõ þ¯0@†í)g=P‚CV”T\x0a‹ït.Ä©ê¹þù9Ò{W‰àhÚ»³=dá‹f-,-\x1b…*±ŽdIÜÅ!B„ÏçrDR[†ªÎBj®Tpƒ�zÀ ÞQ[[S�ˆàß &\x09ÿv—»þ*\x0doÀR€¾ˆíÈÒ8/ž Mü6kg F¼ç:¤ü<\x0cå¤û¹mrßËÈ8?E+À²Y éA\x0d…
¦¤€8N]´0î¹ü?õÇ8®‰‚™‘.\x5cÆ­\x0aEà=tæ|­§$§xÉ
[  474.850499][T14814] ptrace attach of "./syz-executor exec"[5835] was attempted by "ÔÔ\x0aôSÛÂ\x09ÒÊœÕ6óø÷Ø\x1bsám…þèZ” D‚ϧ%uAJy®ËÏqä «\x0c”R“‡yX]˜ÆpAArg9§’ƒJ`³X4;È••Ô§–<�®vŒ.\x0c-a&Àõj¬\x22´dFÈÖÓ0Ëaцc·A{z d%‡‹®½}:¿<i\x0cžD6û·žfGb ³F™Æ‡X úšpO#|©qhPW2<BIé˜Õf-\x09ïæùˆÏðá–Ъ7«
NA�E“±·÷øºcO=¸‹Ç(t�´q~Ib\x5c%L¶´R†Ö±!ÂÅÓžë¸}-÷“Ã{pñE�£òYN£¦¯HÆñÍÂ@4rNI
8‘¦mËÑ3ª‰hDhrï{EÔ\x09Û<ã×�¼> ¼)ŠFÔ;£\x0d„¿ŸüLŠ\x22²æ¥]Úê ã¦GgIµ»ÇÃæeówÙÿIŠý±b'u$œŠfð�y‡±àÚ?‚¾Í'ád…zðp1Íáòë¤N“®·Ù  ±!hQ\x0ar”öâìTê\x09$�G¯ø`ÓœS±‘¥¨¥0\x0b�ê@²rXLÒ1\x0c]›ÐÁš ÞÊ#\x1b8L)EÔv¬úÉ\x0d£uü­!;µVø'�»Þ„D:7æ|bïàÙÔÇ\x22i°¤·kp\x07Ø!?íݪFUõi‚\x09Úò¡lm%µ™*od“M¸¦
º’®ÿŸ\x0aIYÁ×”»YZÛÇ`\x5c\x0d\x07u\x07¼¬ž}˜k=‡·ÕÌ�Cu‡à\x0dƒ$…\x1bq?Ú£aþ®í�'8Ù•»Žq9\x1b(;@(¢ÊA,;ñ1ŠàP<*9î5º/ã·§àPkû¬#TxΓ d¢×�qju¶ðO
'žœ¿ï°rÔøvÂõ þ¯0@†í)g=P‚CV”T\x0a‹ït.Ä©ê¹þù9Ò{W‰àhÚ»³=dá‹f-,-\x1b…*±ŽdIÜÅ!B„ÏçrDR[†ªÎBj®Tpƒ�zÀ ÞQ[[S�ˆàß &\x09ÿv—»þ*\x0doÀR€¾ˆíÈÒ8/ž Mü6kg F¼ç:¤ü<\x0cå¤û¹mrßËÈ8?E+À²Y éA\x0d…
¦¤€8N]´0î¹ü?õÇ8®‰‚™‘.\x5cÆ­\x0aEà=tæ|­§$§xÉ
[  475.405820][T14846] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2027'.
[  475.601017][T14855] netlink: 354 bytes leftover after parsing attributes in process `syz.2.2030'.
[  476.098625][T14868] netlink: 'syz.0.2034': attribute type 1 has an invalid length.
[  476.267223][T14872] binder: 14871:14872 ioctl c018620c 0 returned -22
[  476.277640][T14873] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2035'.
[  476.300207][T14874] binder: 14871:14874 ioctl c018620c 0 returned -22
[  476.354840][T14872] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2036'.
[  476.386376][T14873] mac80211_hwsim hwsim3 wlan1: entered promiscuous mode
[  476.396010][T14874] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2036'.
[  476.461564][T14873] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  477.068912][   T30] audit: type=1326 audit(4294992109.360:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14893 comm="syz.1.2041" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe45978f7c9 code=0x0
[  477.395771][T14897] zswap: compressor  not available
[  477.729866][T14898] zswap: compressor  not available
[  478.126542][T14923] netlink: 302 bytes leftover after parsing attributes in process `syz.1.2046'.
[  478.789543][T14936] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2048'.
[  478.889596][T14944] futex_wake_op: syz.3.2050 tries to shift op by -2048; fix this program
[  478.998148][T14937] bridge0: port 3(dummy0) entered blocking state
[  479.018737][T14937] bridge0: port 3(dummy0) entered disabled state
[  479.037253][T14944] futex_wake_op: syz.3.2050 tries to shift op by -2048; fix this program
[  479.048234][T14937] dummy0: entered allmulticast mode
[  479.065449][T14937] dummy0: entered promiscuous mode
[  479.098264][T14951] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2053'.
[  479.107517][T14937] FAULT_INJECTION: forcing a failure.
[  479.107517][T14937] name failslab, interval 1, probability 0, space 0, times 0
[  479.209875][T14937] CPU: 0 UID: 0 PID: 14937 Comm: syz.0.2049 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  479.209902][T14937] Tainted: [L]=SOFTLOCKUP
[  479.209907][T14937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  479.209917][T14937] Call Trace:
[  479.209923][T14937]  <TASK>
[  479.209929][T14937]  dump_stack_lvl+0x16c/0x1f0
[  479.209957][T14937]  should_fail_ex+0x512/0x640
[  479.209974][T14937]  ? __kvmalloc_node_noprof+0x129/0xa40
[  479.209998][T14937]  should_failslab+0xc2/0x120
[  479.210021][T14937]  __kvmalloc_node_noprof+0x14a/0xa40
[  479.210042][T14937]  ? switchdev_port_attr_notify.constprop.0+0x11c/0x1c0
[  479.210064][T14937]  ? bucket_table_alloc.isra.0+0x88/0x460
[  479.210087][T14937]  ? __pfx_switchdev_port_attr_notify.constprop.0+0x10/0x10
[  479.210113][T14937]  ? bucket_table_alloc.isra.0+0x88/0x460
[  479.210134][T14937]  bucket_table_alloc.isra.0+0x88/0x460
[  479.210160][T14937]  rhashtable_init_noprof+0x41a/0x7e0
[  479.210185][T14937]  nbp_vlan_init+0x238/0x500
[  479.210206][T14937]  ? __pfx_nbp_vlan_init+0x10/0x10
[  479.210228][T14937]  ? __local_bh_enable_ip+0xa4/0x120
[  479.210249][T14937]  ? lockdep_hardirqs_on+0x7c/0x110
[  479.210270][T14937]  ? br_fdb_add_local+0x43/0x60
[  479.210294][T14937]  ? __local_bh_enable_ip+0xa4/0x120
[  479.210318][T14937]  br_add_if+0xfa6/0x1b70
[  479.210345][T14937]  add_del_if+0x114/0x160
[  479.210367][T14937]  br_dev_siocdevprivate+0x908/0x1650
[  479.210392][T14937]  ? __pfx_br_dev_siocdevprivate+0x10/0x10
[  479.210422][T14937]  ? lock_acquire+0x179/0x330
[  479.210438][T14937]  ? __pfx___might_resched+0x10/0x10
[  479.210461][T14937]  ? netdev_name_node_lookup+0x127/0x180
[  479.210479][T14937]  ? __mutex_lock+0x27b/0x1ca0
[  479.210503][T14937]  dev_ifsioc+0x8ee/0x1ee0
[  479.210523][T14937]  ? __pfx_dev_ifsioc+0x10/0x10
[  479.210539][T14937]  ? __pfx___mutex_lock+0x10/0x10
[  479.210584][T14937]  ? dev_load+0x8e/0x240
[  479.210607][T14937]  dev_ioctl+0x1b2/0x1060
[  479.210628][T14937]  sock_ioctl+0x5b3/0x6b0
[  479.210642][T14937]  ? __pfx_sock_ioctl+0x10/0x10
[  479.210655][T14937]  ? hook_file_ioctl_common+0x144/0x410
[  479.210676][T14937]  ? __fget_files+0x20e/0x3c0
[  479.210700][T14937]  ? __pfx_sock_ioctl+0x10/0x10
[  479.210714][T14937]  __x64_sys_ioctl+0x18e/0x210
[  479.210733][T14937]  do_syscall_64+0xcd/0xf80
[  479.210757][T14937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  479.210773][T14937] RIP: 0033:0x7f334cb8f7c9
[  479.210786][T14937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  479.210801][T14937] RSP: 002b:00007f334d9d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  479.210816][T14937] RAX: ffffffffffffffda RBX: 00007f334cde5fa0 RCX: 00007f334cb8f7c9
[  479.210825][T14937] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000006
[  479.210835][T14937] RBP: 00007f334cc13f91 R08: 0000000000000000 R09: 0000000000000000
[  479.210844][T14937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  479.210853][T14937] R13: 00007f334cde6038 R14: 00007f334cde5fa0 R15: 00007ffdd70dabb8
[  479.210873][T14937]  </TASK>
[  479.216293][T14937] bridge0: port 3(dummy0) entered blocking state
[  479.524067][T14937] bridge0: port 3(dummy0) entered forwarding state
[  480.063790][T14951] mac80211_hwsim hwsim5 wlan1: entered promiscuous mode
[  480.077336][T14951] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode
[  480.290022][T14965] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2055'.
[  480.804784][T14987] nfsd: Unknown parameter '^BÔ-'
[  481.453537][T15004] FAULT_INJECTION: forcing a failure.
[  481.453537][T15004] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  481.495816][T15004] CPU: 0 UID: 0 PID: 15004 Comm: syz.0.2064 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  481.495843][T15004] Tainted: [L]=SOFTLOCKUP
[  481.495848][T15004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  481.495857][T15004] Call Trace:
[  481.495863][T15004]  <TASK>
[  481.495872][T15004]  dump_stack_lvl+0x16c/0x1f0
[  481.495901][T15004]  should_fail_ex+0x512/0x640
[  481.495921][T15004]  _copy_from_user+0x2e/0xd0
[  481.495938][T15004]  post_copy_siginfo_from_user.isra.0+0x16e/0x300
[  481.495955][T15004]  ? __pfx_post_copy_siginfo_from_user.isra.0+0x10/0x10
[  481.495971][T15004]  ? find_held_lock+0x2b/0x80
[  481.495998][T15004]  __x64_sys_rt_tgsigqueueinfo+0x151/0x210
[  481.496015][T15004]  ? __pfx___x64_sys_rt_tgsigqueueinfo+0x10/0x10
[  481.496048][T15004]  do_syscall_64+0xcd/0xf80
[  481.496071][T15004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.496086][T15004] RIP: 0033:0x7f334cb8f7c9
[  481.496099][T15004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  481.496113][T15004] RSP: 002b:00007f334d9d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000129
[  481.496127][T15004] RAX: ffffffffffffffda RBX: 00007f334cde5fa0 RCX: 00007f334cb8f7c9
[  481.496137][T15004] RDX: 0000000000000021 RSI: 00000000000007cb RDI: 00000000000007ca
[  481.496146][T15004] RBP: 00007f334cc13f91 R08: 0000000000000000 R09: 0000000000000000
[  481.496155][T15004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  481.496163][T15004] R13: 00007f334cde6038 R14: 00007f334cde5fa0 R15: 00007ffdd70dabb8
[  481.496182][T15004]  </TASK>
[  486.311007][T15108] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2091'.
[  486.710658][T15122] netlink: 'syz.3.2094': attribute type 1 has an invalid length.
[  486.936812][T15130] could not allocate digest TFM handle 
[  487.072081][T15141] nbd: must specify at least one socket
[  489.065248][ T8083] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  492.992842][T15275] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2122'.
[  493.653019][T15292] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2124'.
[  495.939063][T15320] futex_wake_op: syz.1.2132 tries to shift op by -2048; fix this program
[  499.232574][T15356] FAULT_INJECTION: forcing a failure.
[  499.232574][T15356] name failslab, interval 1, probability 0, space 0, times 0
[  499.293449][T15356] CPU: 0 UID: 0 PID: 15356 Comm: syz.2.2140 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  499.293477][T15356] Tainted: [L]=SOFTLOCKUP
[  499.293482][T15356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  499.293492][T15356] Call Trace:
[  499.293498][T15356]  <TASK>
[  499.293504][T15356]  dump_stack_lvl+0x16c/0x1f0
[  499.293532][T15356]  should_fail_ex+0x512/0x640
[  499.293549][T15356]  ? kmem_cache_alloc_noprof+0x62/0x770
[  499.293569][T15356]  should_failslab+0xc2/0x120
[  499.293592][T15356]  kmem_cache_alloc_noprof+0x83/0x770
[  499.293610][T15356]  ? ptlock_alloc+0x1f/0x70
[  499.293629][T15356]  ? ptlock_alloc+0x1f/0x70
[  499.293643][T15356]  ptlock_alloc+0x1f/0x70
[  499.293666][T15356]  pte_alloc_one+0x84/0x3d0
[  499.293688][T15356]  __pte_alloc+0x6d/0x3f0
[  499.293709][T15356]  ? __pfx___pte_alloc+0x10/0x10
[  499.293729][T15356]  ? __pfx___might_resched+0x10/0x10
[  499.293749][T15356]  ? copy_page_range+0x22fb/0x6780
[  499.293767][T15356]  copy_page_range+0x3f3e/0x6780
[  499.293804][T15356]  ? __pfx_copy_page_range+0x10/0x10
[  499.293826][T15356]  ? __pfx___might_resched+0x10/0x10
[  499.293845][T15356]  ? __pfx_mas_store+0x10/0x10
[  499.293862][T15356]  ? dup_mmap+0xba4/0x20e0
[  499.293873][T15356]  ? down_write+0x14d/0x200
[  499.293889][T15356]  ? up_write+0x282/0x4e0
[  499.293908][T15356]  dup_mmap+0xbea/0x20e0
[  499.293929][T15356]  ? __pfx_dup_mmap+0x10/0x10
[  499.293964][T15356]  copy_process+0x3b9f/0x7430
[  499.293986][T15356]  ? __pfx___futex_wait+0x10/0x10
[  499.294013][T15356]  ? __pfx_copy_process+0x10/0x10
[  499.294039][T15356]  ? futex_private_hash_put+0x160/0x1b0
[  499.294057][T15356]  kernel_clone+0xfc/0x910
[  499.294080][T15356]  ? __pfx_kernel_clone+0x10/0x10
[  499.294112][T15356]  __do_sys_clone+0xce/0x120
[  499.294133][T15356]  ? __pfx___do_sys_clone+0x10/0x10
[  499.294163][T15356]  ? xfd_validate_state+0x61/0x180
[  499.294176][T15356]  ? __pfx_do_writev+0x10/0x10
[  499.294201][T15356]  do_syscall_64+0xcd/0xf80
[  499.294224][T15356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  499.294239][T15356] RIP: 0033:0x7fbb21b8f7c9
[  499.294251][T15356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  499.294266][T15356] RSP: 002b:00007fbb22a35fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  499.294280][T15356] RAX: ffffffffffffffda RBX: 00007fbb21de6090 RCX: 00007fbb21b8f7c9
[  499.294289][T15356] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  499.294298][T15356] RBP: 00007fbb21c13f91 R08: 0000000000000000 R09: 0000000000000000
[  499.294306][T15356] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  499.294314][T15356] R13: 00007fbb21de6128 R14: 00007fbb21de6090 R15: 00007fff98df6318
[  499.294334][T15356]  </TASK>
[  500.626814][T15364] FAULT_INJECTION: forcing a failure.
[  500.626814][T15364] name failslab, interval 1, probability 0, space 0, times 0
[  500.674186][T15364] CPU: 0 UID: 0 PID: 15364 Comm: syz.0.2143 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  500.674213][T15364] Tainted: [L]=SOFTLOCKUP
[  500.674219][T15364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  500.674228][T15364] Call Trace:
[  500.674233][T15364]  <TASK>
[  500.674239][T15364]  dump_stack_lvl+0x16c/0x1f0
[  500.674267][T15364]  should_fail_ex+0x512/0x640
[  500.674285][T15364]  ? kmem_cache_alloc_noprof+0x62/0x770
[  500.674306][T15364]  should_failslab+0xc2/0x120
[  500.674329][T15364]  kmem_cache_alloc_noprof+0x83/0x770
[  500.674347][T15364]  ? ptlock_alloc+0x1f/0x70
[  500.674365][T15364]  ? ptlock_alloc+0x1f/0x70
[  500.674379][T15364]  ptlock_alloc+0x1f/0x70
[  500.674394][T15364]  pte_alloc_one+0x84/0x3d0
[  500.674415][T15364]  do_fault+0x8b8/0x1ad0
[  500.674435][T15364]  ? __pfx_filemap_map_pages+0x10/0x10
[  500.674452][T15364]  ? __pmd_alloc+0x6aa/0x9c0
[  500.674475][T15364]  __handle_mm_fault+0x1919/0x2bb0
[  500.674496][T15364]  ? __pfx___handle_mm_fault+0x10/0x10
[  500.674522][T15364]  ? find_vma+0xbf/0x140
[  500.674541][T15364]  ? __pfx_find_vma+0x10/0x10
[  500.674563][T15364]  handle_mm_fault+0x3fe/0xad0
[  500.674581][T15364]  do_user_addr_fault+0x7a6/0x1370
[  500.674601][T15364]  ? rcu_is_watching+0x12/0xc0
[  500.674633][T15364]  exc_page_fault+0x64/0xc0
[  500.674656][T15364]  asm_exc_page_fault+0x26/0x30
[  500.674672][T15364] RIP: 0010:rep_movs_alternative+0xf/0x90
[  500.674690][T15364] Code: c4 10 e9 44 81 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 0d 81 04 00 66 66
[  500.674705][T15364] RSP: 0018:ffffc9000480fd60 EFLAGS: 00050202
[  500.674718][T15364] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000004
[  500.674727][T15364] RDX: fffff52000901fba RSI: 0000000000000000 RDI: ffffc9000480fdd0
[  500.674737][T15364] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff52000901fba
[  500.674745][T15364] R10: 0000000000000003 R11: ffff88803590a9b0 R12: 0000000000000000
[  500.674754][T15364] R13: ffffc9000480fdd0 R14: 0000000000000000 R15: 0000000000000000
[  500.674772][T15364]  _copy_from_user+0x98/0xd0
[  500.674789][T15364]  do_sock_getsockopt+0x3a1/0x410
[  500.674813][T15364]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  500.674834][T15364]  ? __fget_files+0x204/0x3c0
[  500.674864][T15364]  __sys_getsockopt+0x123/0x1b0
[  500.674887][T15364]  __x64_sys_getsockopt+0xbd/0x160
[  500.674905][T15364]  ? do_syscall_64+0x91/0xf80
[  500.674925][T15364]  ? lockdep_hardirqs_on+0x7c/0x110
[  500.674946][T15364]  do_syscall_64+0xcd/0xf80
[  500.674969][T15364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  500.674984][T15364] RIP: 0033:0x7f334cb8f7c9
[  500.674996][T15364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  500.675010][T15364] RSP: 002b:00007f334d9d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  500.675023][T15364] RAX: ffffffffffffffda RBX: 00007f334cde5fa0 RCX: 00007f334cb8f7c9
[  500.675032][T15364] RDX: 0000000000000003 RSI: 000000000000011c RDI: 0000000000000002
[  500.675041][T15364] RBP: 00007f334cc13f91 R08: 0000000000000000 R09: 0000000000000000
[  500.675049][T15364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  500.675057][T15364] R13: 00007f334cde6038 R14: 00007f334cde5fa0 R15: 00007ffdd70dabb8
[  500.675077][T15364]  </TASK>
[  504.693400][T15417] futex_wake_op: syz.2.2153 tries to shift op by -2048; fix this program
[  505.136527][T15427] Device name cannot be null; rc = [-22]
[  505.221360][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  505.227762][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  505.677140][T15434] Invalid ELF header magic: != ELF
[  506.975807][T15459] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2164'.
[  507.073902][T15464] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2164'.
[  507.477480][T15421] syz.0.2155 (15421) used greatest stack depth: 19128 bytes left
[  509.015512][T15523] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2179'.
[  511.087589][T15480] FAULT_INJECTION: forcing a failure.
[  511.087589][T15480] name failslab, interval 1, probability 0, space 0, times 0
[  511.176571][T15480] CPU: 0 UID: 0 PID: 15480 Comm: syz.0.2170 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  511.176599][T15480] Tainted: [L]=SOFTLOCKUP
[  511.176605][T15480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  511.176615][T15480] Call Trace:
[  511.176620][T15480]  <TASK>
[  511.176626][T15480]  dump_stack_lvl+0x16c/0x1f0
[  511.176653][T15480]  should_fail_ex+0x512/0x640
[  511.176670][T15480]  ? kmem_cache_alloc_noprof+0x62/0x770
[  511.176691][T15480]  should_failslab+0xc2/0x120
[  511.176714][T15480]  kmem_cache_alloc_noprof+0x83/0x770
[  511.176732][T15480]  ? ptlock_alloc+0x1f/0x70
[  511.176750][T15480]  ? ptlock_alloc+0x1f/0x70
[  511.176763][T15480]  ptlock_alloc+0x1f/0x70
[  511.176778][T15480]  pte_alloc_one+0x84/0x3d0
[  511.176798][T15480]  __pte_alloc+0x6d/0x3f0
[  511.176818][T15480]  ? __pfx___pte_alloc+0x10/0x10
[  511.176837][T15480]  ? __pfx___might_resched+0x10/0x10
[  511.176857][T15480]  ? copy_page_range+0x22fb/0x6780
[  511.176874][T15480]  copy_page_range+0x3f3e/0x6780
[  511.176920][T15480]  ? __pfx_copy_page_range+0x10/0x10
[  511.176942][T15480]  ? __pfx___might_resched+0x10/0x10
[  511.176962][T15480]  ? __pfx_mas_store+0x10/0x10
[  511.176980][T15480]  ? dup_mmap+0xba4/0x20e0
[  511.176991][T15480]  ? down_write+0x14d/0x200
[  511.177008][T15480]  ? up_write+0x282/0x4e0
[  511.177027][T15480]  dup_mmap+0xbea/0x20e0
[  511.177046][T15480]  ? __pfx_dup_mmap+0x10/0x10
[  511.177082][T15480]  copy_process+0x3b9f/0x7430
[  511.177106][T15480]  ? __pfx___futex_wait+0x10/0x10
[  511.177133][T15480]  ? __pfx_copy_process+0x10/0x10
[  511.177159][T15480]  ? futex_private_hash_put+0x160/0x1b0
[  511.177178][T15480]  kernel_clone+0xfc/0x910
[  511.177204][T15480]  ? __pfx_kernel_clone+0x10/0x10
[  511.177236][T15480]  __do_sys_clone+0xce/0x120
[  511.177257][T15480]  ? __pfx___do_sys_clone+0x10/0x10
[  511.177287][T15480]  ? xfd_validate_state+0x61/0x180
[  511.177299][T15480]  ? __pfx_do_writev+0x10/0x10
[  511.177324][T15480]  do_syscall_64+0xcd/0xf80
[  511.177348][T15480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  511.177415][T15480] RIP: 0033:0x7f334cb8f7c9
[  511.177428][T15480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  511.177442][T15480] RSP: 002b:00007f334d9d1fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  511.177457][T15480] RAX: ffffffffffffffda RBX: 00007f334cde5fa0 RCX: 00007f334cb8f7c9
[  511.177467][T15480] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  511.177475][T15480] RBP: 00007f334cc13f91 R08: 0000000000000000 R09: 0000000000000000
[  511.177483][T15480] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  511.177492][T15480] R13: 00007f334cde6038 R14: 00007f334cde5fa0 R15: 00007ffdd70dabb8
[  511.177512][T15480]  </TASK>
[  514.452414][T15629] openvswitch: netlink: Missing valid actions attribute.
[  515.133593][T15642] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2204'.
[  515.296993][ T5839] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  516.735928][T15669] netlink: 'syz.0.2211': attribute type 23 has an invalid length.
[  517.070206][T15683] netlink: 'syz.3.2217': attribute type 12 has an invalid length.
[  517.300451][ T5834] Bluetooth: hci3: command 0x0406 tx timeout
[  518.597045][ T5839] Bluetooth: hci1: ACL packet for unknown connection handle 0
[  519.368659][ T5839] Bluetooth: hci3: command 0x0406 tx timeout
[  519.612432][T15744] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2229'.
[  521.602873][ T5837] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  521.612242][ T5837] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  521.620783][ T5837] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  521.642467][ T5837] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  521.660023][ T5837] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  522.581408][T15790] Console: switching to colour frame buffer device 128x48
[  522.599015][T15774] chnl_net:caif_netlink_parms(): no params data found
[  523.020719][T15774] bridge0: port 1(bridge_slave_0) entered blocking state
[  523.052441][T15774] bridge0: port 1(bridge_slave_0) entered disabled state
[  523.077263][T15774] bridge_slave_0: entered allmulticast mode
[  523.104984][T15774] bridge_slave_0: entered promiscuous mode
[  523.134843][T15774] bridge0: port 2(bridge_slave_1) entered blocking state
[  523.158434][T15774] bridge0: port 2(bridge_slave_1) entered disabled state
[  523.187295][T15774] bridge_slave_1: entered allmulticast mode
[  523.210892][T15774] bridge_slave_1: entered promiscuous mode
[  523.302799][T15774] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  523.437572][ T6333] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  523.499832][T15774] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  523.598976][ T6333] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  523.751371][ T5837] Bluetooth: hci4: command tx timeout
[  523.772978][ T6333] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  523.789324][T15819] FAULT_INJECTION: forcing a failure.
[  523.789324][T15819] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  523.843672][T15819] CPU: 0 UID: 0 PID: 15819 Comm: syz.2.2250 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  523.843697][T15819] Tainted: [L]=SOFTLOCKUP
[  523.843702][T15819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  523.843711][T15819] Call Trace:
[  523.843717][T15819]  <TASK>
[  523.843723][T15819]  dump_stack_lvl+0x16c/0x1f0
[  523.843751][T15819]  should_fail_ex+0x512/0x640
[  523.843771][T15819]  strncpy_from_user+0x3b/0x2e0
[  523.843788][T15819]  getname_flags.part.0+0x8f/0x550
[  523.843808][T15819]  getname_flags+0x93/0xf0
[  523.843827][T15819]  do_sys_openat2+0xb9/0x290
[  523.843844][T15819]  ? __pfx_do_sys_openat2+0x10/0x10
[  523.843867][T15819]  __x64_sys_open+0x153/0x1e0
[  523.843883][T15819]  ? __pfx___x64_sys_open+0x10/0x10
[  523.843903][T15819]  ? rcu_is_watching+0x12/0xc0
[  523.843925][T15819]  do_syscall_64+0xcd/0xf80
[  523.843949][T15819]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  523.843963][T15819] RIP: 0033:0x7fbb21b8f7c9
[  523.843976][T15819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  523.843990][T15819] RSP: 002b:00007fbb22a57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  523.844004][T15819] RAX: ffffffffffffffda RBX: 00007fbb21de5fa0 RCX: 00007fbb21b8f7c9
[  523.844014][T15819] RDX: 000000000000004b RSI: 0000000000026142 RDI: 0000200000000000
[  523.844023][T15819] RBP: 00007fbb21c13f91 R08: 0000000000000000 R09: 0000000000000000
[  523.844031][T15819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  523.844039][T15819] R13: 00007fbb21de6038 R14: 00007fbb21de5fa0 R15: 00007fff98df6318
[  523.844058][T15819]  </TASK>
[  524.190032][T15774] team0: Port device team_slave_0 added
[  524.225041][T15774] team0: Port device team_slave_1 added
[  524.293751][T15774] batman_adv: batadv0: Adding interface: batadv_slave_0
[  524.300713][T15774] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  524.372890][T15774] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  524.412502][T15774] batman_adv: batadv0: Adding interface: batadv_slave_1
[  524.436606][T15774] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  524.511520][T15774] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  524.578370][T15825] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24
[  524.788618][ T6333] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  524.805097][T15826] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25
[  524.954094][T15774] hsr_slave_0: entered promiscuous mode
[  524.990649][T15774] hsr_slave_1: entered promiscuous mode
[  525.024873][T15774] debugfs: 'hsr0' already exists in 'hsr'
[  525.066755][T15774] Cannot create hsr debugfs directory
[  525.625600][ T6333] dummy0: left allmulticast mode
[  525.643509][ T6333] dummy0: left promiscuous mode
[  525.655423][ T6333] bridge0: port 4(dummy0) entered disabled state
[  525.674980][ T6333] team0: left allmulticast mode
[  525.690708][ T6333] team_slave_0: left allmulticast mode
[  525.709670][ T6333] team_slave_1: left allmulticast mode
[  525.721754][ T6333] team0: left promiscuous mode
[  525.734185][ T6333] team_slave_0: left promiscuous mode
[  525.749039][ T6333] team_slave_1: left promiscuous mode
[  525.762636][ T6333] bridge0: port 3(team0) entered disabled state
[  525.783219][ T6333] : left promiscuous mode
[  525.797711][ T6333] bridge0: port 2() entered disabled state
[  525.814964][ T5837] Bluetooth: hci4: command tx timeout
[  525.821736][ T6333] bridge_slave_0: left allmulticast mode
[  525.831044][ T6333] bridge_slave_0: left promiscuous mode
[  525.847770][ T6333] bridge0: port 1(bridge_slave_0) entered disabled state
[  526.250817][ T6333] ovs_: left promiscuous mode
[  526.727516][T15859] random: crng reseeded on system resumption
[  527.085708][T15872] futex_wake_op: syz.1.2260 tries to shift op by -2048; fix this program
[  527.160786][T15872] futex_wake_op: syz.1.2260 tries to shift op by -2048; fix this program
[  527.587588][ T6333] hsr_slave_0: left promiscuous mode
[  527.625835][ T6333] hsr_slave_1: left promiscuous mode
[  527.653443][ T6333] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  527.689565][ T6333] batman_adv: batadv0: Removing interface: batadv_slave_0
[  527.772166][ T6333] veth1_macvtap: left allmulticast mode
[  527.794858][ T6333] veth1_macvtap: left promiscuous mode
[  527.813621][ T6333] veth0_macvtap: left promiscuous mode
[  527.885422][ T5837] Bluetooth: hci4: command tx timeout
[  528.426005][T15888] futex_wake_op: syz.1.2264 tries to shift op by -2048; fix this program
[  528.458846][T15888] futex_wake_op: syz.1.2264 tries to shift op by -2048; fix this program
[  528.935107][ T6333] team0 (unregistering): Port device team_slave_1 removed
[  529.066804][ T6333] team0 (unregistering): Port device team_slave_0 removed
[  529.953719][ T5837] Bluetooth: hci4: command tx timeout
[  529.986596][T15774] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  530.030413][T15774] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  530.071877][T15774] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  530.099804][T15774] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  530.394725][T15774] 8021q: adding VLAN 0 to HW filter on device bond0
[  530.464790][T15918] Unable to find swap-space signature
[  530.547375][T15774] 8021q: adding VLAN 0 to HW filter on device team0
[  530.600341][ T6333] bridge0: port 1(bridge_slave_0) entered blocking state
[  530.607468][ T6333] bridge0: port 1(bridge_slave_0) entered forwarding state
[  530.691358][ T6333] bridge0: port 2(bridge_slave_1) entered blocking state
[  530.698472][ T6333] bridge0: port 2(bridge_slave_1) entered forwarding state
[  531.642237][T15774] 8021q: adding VLAN 0 to HW filter on device batadv0
[  531.803290][T15774] veth0_vlan: entered promiscuous mode
[  531.850615][T15774] veth1_vlan: entered promiscuous mode
[  531.965260][T15774] veth0_macvtap: entered promiscuous mode
[  532.008963][T15774] veth1_macvtap: entered promiscuous mode
[  532.088631][T15774] batman_adv: batadv0: Interface activated: batadv_slave_0
[  532.144023][T15774] batman_adv: batadv0: Interface activated: batadv_slave_1
[  532.207736][ T7294] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  532.250042][ T7294] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  532.309921][ T7294] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  532.385022][ T8081] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  532.581913][ T7294] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  532.618565][ T7294] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  532.706521][ T8142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  532.750730][ T8142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  532.816404][T15973] tipc: Started in network mode
[  532.842298][T15973] tipc: Node identity ee00, cluster identity 4711
[  532.881879][T15973] tipc: Node number set to 60928
[  533.044226][T15970] Process accounting resumed
[  533.208207][T15986] Invalid ELF header magic: != ELF
[  534.275049][T16011] FAULT_INJECTION: forcing a failure.
[  534.275049][T16011] name failslab, interval 1, probability 0, space 0, times 0
[  534.385326][T16011] CPU: 0 UID: 0 PID: 16011 Comm: syz.0.2281 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  534.385354][T16011] Tainted: [L]=SOFTLOCKUP
[  534.385360][T16011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  534.385369][T16011] Call Trace:
[  534.385374][T16011]  <TASK>
[  534.385381][T16011]  dump_stack_lvl+0x16c/0x1f0
[  534.385408][T16011]  should_fail_ex+0x512/0x640
[  534.385425][T16011]  ? kmem_cache_alloc_noprof+0x62/0x770
[  534.385445][T16011]  should_failslab+0xc2/0x120
[  534.385468][T16011]  kmem_cache_alloc_noprof+0x83/0x770
[  534.385485][T16011]  ? prepare_creds+0x2c/0x940
[  534.385506][T16011]  ? prepare_creds+0x2c/0x940
[  534.385520][T16011]  prepare_creds+0x2c/0x940
[  534.385538][T16011]  __sys_setregid+0x101/0x910
[  534.385556][T16011]  ? rcu_is_watching+0x12/0xc0
[  534.385578][T16011]  do_syscall_64+0xcd/0xf80
[  534.385601][T16011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  534.385617][T16011] RIP: 0033:0x7f334cb8f7c9
[  534.385630][T16011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  534.385644][T16011] RSP: 002b:00007f334d9b1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000072
[  534.385658][T16011] RAX: ffffffffffffffda RBX: 00007f334cde6090 RCX: 00007f334cb8f7c9
[  534.385667][T16011] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[  534.385676][T16011] RBP: 00007f334cc13f91 R08: 0000000000000000 R09: 0000000000000000
[  534.385684][T16011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  534.385693][T16011] R13: 00007f334cde6128 R14: 00007f334cde6090 R15: 00007ffdd70dabb8
[  534.385712][T16011]  </TASK>
[  534.825104][T16021] FAULT_INJECTION: forcing a failure.
[  534.825104][T16021] name failslab, interval 1, probability 0, space 0, times 0
[  534.949308][T16023] openvswitch: netlink: Flow key attribute not present in set flow.
[  534.960107][T16021] CPU: 0 UID: 0 PID: 16021 Comm: syz.2.2286 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  534.960131][T16021] Tainted: [L]=SOFTLOCKUP
[  534.960136][T16021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  534.960145][T16021] Call Trace:
[  534.960150][T16021]  <TASK>
[  534.960155][T16021]  dump_stack_lvl+0x16c/0x1f0
[  534.960182][T16021]  should_fail_ex+0x512/0x640
[  534.960199][T16021]  ? kmem_cache_alloc_noprof+0x62/0x770
[  534.960227][T16021]  should_failslab+0xc2/0x120
[  534.960249][T16021]  kmem_cache_alloc_noprof+0x83/0x770
[  534.960266][T16021]  ? alloc_uid+0x13d/0x4c0
[  534.960291][T16021]  ? alloc_uid+0x13d/0x4c0
[  534.960311][T16021]  alloc_uid+0x13d/0x4c0
[  534.960331][T16021]  ? apparmor_cred_prepare+0x173/0x370
[  534.960346][T16021]  ? __pfx_alloc_uid+0x10/0x10
[  534.960367][T16021]  ? security_prepare_creds+0xa6/0x270
[  534.960391][T16021]  __sys_setresuid+0x507/0x1160
[  534.960414][T16021]  do_syscall_64+0xcd/0xf80
[  534.960439][T16021]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  534.960455][T16021] RIP: 0033:0x7fbb21b8f7c9
[  534.960468][T16021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  534.960482][T16021] RSP: 002b:00007fbb22a57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000075
[  534.960496][T16021] RAX: ffffffffffffffda RBX: 00007fbb21de5fa0 RCX: 00007fbb21b8f7c9
[  534.960505][T16021] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000008
[  534.960514][T16021] RBP: 00007fbb21c13f91 R08: 0000000000000000 R09: 0000000000000000
[  534.960522][T16021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  534.960530][T16021] R13: 00007fbb21de6038 R14: 00007fbb21de5fa0 R15: 00007fff98df6318
[  534.960549][T16021]  </TASK>
[  536.751031][T16057] FAULT_INJECTION: forcing a failure.
[  536.751031][T16057] name fail_futex, interval 1, probability 0, space 0, times 0
[  536.828336][T16057] CPU: 0 UID: 0 PID: 16057 Comm: syz.3.2292 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  536.828363][T16057] Tainted: [L]=SOFTLOCKUP
[  536.828368][T16057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  536.828377][T16057] Call Trace:
[  536.828382][T16057]  <TASK>
[  536.828389][T16057]  dump_stack_lvl+0x16c/0x1f0
[  536.828420][T16057]  should_fail_ex+0x512/0x640
[  536.828440][T16057]  get_futex_key+0x1d0/0x15f0
[  536.828458][T16057]  ? kasan_save_stack+0x42/0x60
[  536.828479][T16057]  ? __pfx_get_futex_key+0x10/0x10
[  536.828492][T16057]  ? __kasan_slab_free+0x5f/0x80
[  536.828512][T16057]  ? trace_parse_run_command+0x2f8/0x400
[  536.828534][T16057]  ? vfs_write+0x2a0/0x11d0
[  536.828553][T16057]  ? ksys_write+0x12a/0x250
[  536.828572][T16057]  ? do_syscall_64+0xcd/0xf80
[  536.828593][T16057]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.828612][T16057]  futex_wait_setup+0x9d/0x570
[  536.828637][T16057]  __futex_wait+0x193/0x2f0
[  536.828658][T16057]  ? __pfx___futex_wait+0x10/0x10
[  536.828681][T16057]  ? __pfx_futex_wake_mark+0x10/0x10
[  536.828703][T16057]  ? futex_hash+0x2c5/0x380
[  536.828719][T16057]  ? futex_private_hash_put+0x160/0x1b0
[  536.828736][T16057]  futex_wait+0xe8/0x380
[  536.828755][T16057]  ? __pfx_futex_wait+0x10/0x10
[  536.828780][T16057]  ? ksys_write+0x190/0x250
[  536.828804][T16057]  do_futex+0x229/0x350
[  536.828820][T16057]  ? __pfx_do_futex+0x10/0x10
[  536.828841][T16057]  __x64_sys_futex+0x1e0/0x4c0
[  536.828859][T16057]  ? fput+0x70/0xf0
[  536.828872][T16057]  ? __pfx___x64_sys_futex+0x10/0x10
[  536.828888][T16057]  ? ksys_write+0x1ac/0x250
[  536.828907][T16057]  ? __pfx_ksys_write+0x10/0x10
[  536.828933][T16057]  do_syscall_64+0xcd/0xf80
[  536.828955][T16057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.828970][T16057] RIP: 0033:0x7f00dcf8f7c9
[  536.828983][T16057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  536.828997][T16057] RSP: 002b:00007f00dde3d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  536.829011][T16057] RAX: ffffffffffffffda RBX: 00007f00dd1e5fa8 RCX: 00007f00dcf8f7c9
[  536.829020][T16057] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f00dd1e5fa8
[  536.829029][T16057] RBP: 00007f00dd1e5fa0 R08: 0000000000000000 R09: 0000000000000000
[  536.829037][T16057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  536.829052][T16057] R13: 00007f00dd1e6038 R14: 00007ffd90ac0700 R15: 00007ffd90ac07e8
[  536.829072][T16057]  </TASK>
[  537.456232][T16070] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2292'.
[  537.757878][T16070] team0: entered promiscuous mode
[  537.792770][T16070] team_slave_0: entered promiscuous mode
[  537.802963][T16070] team_slave_1: entered promiscuous mode
[  537.813017][T16070] team0: entered allmulticast mode
[  537.818139][T16070] team_slave_0: entered allmulticast mode
[  537.862355][T16070] team_slave_1: entered allmulticast mode
[  540.102150][ T5834] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  540.112001][ T5834] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  540.119818][ T5834] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  540.128319][ T5834] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  540.136020][ T5834] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  540.992760][T16111] chnl_net:caif_netlink_parms(): no params data found
[  541.134535][T10577] syz_tun (unregistering): left allmulticast mode
[  541.170061][T10577] syz_tun (unregistering): left promiscuous mode
[  541.194633][T10577] bridge0: port 1(syz_tun) entered disabled state
[  541.718286][ T6333] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  541.797764][T16111] bridge0: port 1(bridge_slave_0) entered blocking state
[  541.826873][T16111] bridge0: port 1(bridge_slave_0) entered disabled state
[  541.862247][T16111] bridge_slave_0: entered allmulticast mode
[  541.884920][T16111] bridge_slave_0: entered promiscuous mode
[  542.009746][ T6333] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  542.037545][T16111] bridge0: port 2(bridge_slave_1) entered blocking state
[  542.073915][T16111] bridge0: port 2(bridge_slave_1) entered disabled state
[  542.101200][T16111] bridge_slave_1: entered allmulticast mode
[  542.120336][T16111] bridge_slave_1: entered promiscuous mode
[  542.187505][ T6333] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  542.211280][ T5834] Bluetooth: hci0: command tx timeout
[  542.334569][ T6333] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  542.359877][T16171] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  542.387307][T16111] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  542.442335][T16111] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  542.585729][T16111] team0: Port device team_slave_0 added
[  542.634476][T16111] team0: Port device team_slave_1 added
[  542.806642][T16111] batman_adv: batadv0: Adding interface: batadv_slave_0
[  542.835578][T16169] openvswitch: netlink: Key type 106 is out of range max 32
[  542.843378][T16111] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  542.946799][T16111] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  542.980699][T16179] FAULT_INJECTION: forcing a failure.
[  542.980699][T16179] name failslab, interval 1, probability 0, space 0, times 0
[  543.029244][T16179] CPU: 0 UID: 0 PID: 16179 Comm: syz.2.2320 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  543.029275][T16179] Tainted: [L]=SOFTLOCKUP
[  543.029280][T16179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  543.029289][T16179] Call Trace:
[  543.029295][T16179]  <TASK>
[  543.029302][T16179]  dump_stack_lvl+0x16c/0x1f0
[  543.029330][T16179]  should_fail_ex+0x512/0x640
[  543.029348][T16179]  ? __kmalloc_noprof+0xca/0x910
[  543.029366][T16179]  should_failslab+0xc2/0x120
[  543.029388][T16179]  __kmalloc_noprof+0xeb/0x910
[  543.029404][T16179]  ? __register_sysctl_table+0xb3/0x1900
[  543.029428][T16179]  ? __register_sysctl_table+0xb3/0x1900
[  543.029447][T16179]  __register_sysctl_table+0xb3/0x1900
[  543.029467][T16179]  ? rcu_is_watching+0x12/0xc0
[  543.029488][T16179]  ? __kmalloc_node_track_caller_noprof+0x370/0x930
[  543.029509][T16179]  ? __pfx___register_sysctl_table+0x10/0x10
[  543.029531][T16179]  ? __asan_memcpy+0x3c/0x60
[  543.029550][T16179]  register_pidns_sysctls+0x120/0x1c0
[  543.029565][T16179]  ? __ns_common_init+0x24e/0x4b0
[  543.029588][T16179]  copy_pid_ns+0x666/0x10d0
[  543.029603][T16179]  ? lock_acquire+0x179/0x330
[  543.029617][T16179]  ? __pfx_copy_pid_ns+0x10/0x10
[  543.029629][T16179]  ? find_held_lock+0x2b/0x80
[  543.029647][T16179]  ? find_held_lock+0x2b/0x80
[  543.029665][T16179]  ? copy_ipcs+0x5cd/0x7d0
[  543.029684][T16179]  ? _raw_spin_unlock+0x28/0x50
[  543.029706][T16179]  create_new_namespaces+0x2aa/0xab0
[  543.029736][T16179]  copy_namespaces+0x468/0x570
[  543.029758][T16179]  copy_process+0x2a70/0x7430
[  543.029780][T16179]  ? __pfx___schedule+0x10/0x10
[  543.029809][T16179]  ? __pfx_copy_process+0x10/0x10
[  543.029836][T16179]  ? _copy_from_user+0x59/0xd0
[  543.029855][T16179]  kernel_clone+0xfc/0x910
[  543.029878][T16179]  ? __pfx_kernel_clone+0x10/0x10
[  543.029898][T16179]  ? futex_private_hash_put+0x160/0x1b0
[  543.029919][T16179]  ? __pfx_futex_wake+0x10/0x10
[  543.029940][T16179]  __do_sys_clone3+0x212/0x290
[  543.029962][T16179]  ? __pfx___do_sys_clone3+0x10/0x10
[  543.029991][T16179]  ? find_held_lock+0x2b/0x80
[  543.030024][T16179]  do_syscall_64+0xcd/0xf80
[  543.030048][T16179]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  543.030070][T16179] RIP: 0033:0x7fbb21b8f7c9
[  543.030084][T16179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  543.030099][T16179] RSP: 002b:00007fbb22a56f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  543.030113][T16179] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fbb21b8f7c9
[  543.030123][T16179] RDX: 00007fbb22a56f20 RSI: 0000000000000058 RDI: 00007fbb22a56f20
[  543.030132][T16179] RBP: 00007fbb21c13f91 R08: 0000000000000000 R09: 0000000000000058
[  543.030141][T16179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  543.030150][T16179] R13: 00007fbb21de6038 R14: 00007fbb21de5fa0 R15: 00007fff98df6318
[  543.030170][T16179]  </TASK>
[  543.637339][T16111] batman_adv: batadv0: Adding interface: batadv_slave_1
[  543.685249][T16111] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  543.771508][T16111] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  543.821031][ T6333] HfR: left promiscuous mode
[  543.833521][T16195] FAULT_INJECTION: forcing a failure.
[  543.833521][T16195] name failslab, interval 1, probability 0, space 0, times 0
[  543.852573][T16195] CPU: 0 UID: 0 PID: 16195 Comm: syz.2.2324 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  543.852598][T16195] Tainted: [L]=SOFTLOCKUP
[  543.852604][T16195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  543.852613][T16195] Call Trace:
[  543.852618][T16195]  <TASK>
[  543.852625][T16195]  dump_stack_lvl+0x16c/0x1f0
[  543.852651][T16195]  should_fail_ex+0x512/0x640
[  543.852669][T16195]  ? kmem_cache_alloc_noprof+0x62/0x770
[  543.852689][T16195]  should_failslab+0xc2/0x120
[  543.852712][T16195]  kmem_cache_alloc_noprof+0x83/0x770
[  543.852730][T16195]  ? stack_depot_save_flags+0x29/0x9b0
[  543.852746][T16195]  ? alloc_empty_file+0x55/0x1e0
[  543.852764][T16195]  ? alloc_empty_file+0x55/0x1e0
[  543.852778][T16195]  ? kasan_save_track+0x14/0x30
[  543.852797][T16195]  alloc_empty_file+0x55/0x1e0
[  543.852813][T16195]  path_openat+0xde/0x3140
[  543.852833][T16195]  ? do_syscall_64+0xcd/0xf80
[  543.852853][T16195]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  543.852874][T16195]  ? __pfx_path_openat+0x10/0x10
[  543.852903][T16195]  do_filp_open+0x20b/0x470
[  543.852925][T16195]  ? __pfx_do_filp_open+0x10/0x10
[  543.852959][T16195]  ? alloc_fd+0x471/0x7d0
[  543.852985][T16195]  do_sys_openat2+0x121/0x290
[  543.853001][T16195]  ? __pfx_do_sys_openat2+0x10/0x10
[  543.853024][T16195]  __x64_sys_openat+0x174/0x210
[  543.853041][T16195]  ? __pfx___x64_sys_openat+0x10/0x10
[  543.853065][T16195]  do_syscall_64+0xcd/0xf80
[  543.853087][T16195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  543.853102][T16195] RIP: 0033:0x7fbb21b8f7c9
[  543.853114][T16195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  543.853128][T16195] RSP: 002b:00007fbb22a57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  543.853142][T16195] RAX: ffffffffffffffda RBX: 00007fbb21de5fa0 RCX: 00007fbb21b8f7c9
[  543.853152][T16195] RDX: 0000000000000001 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  543.853161][T16195] RBP: 00007fbb21c13f91 R08: 0000000000000000 R09: 0000000000000000
[  543.853169][T16195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  543.853178][T16195] R13: 00007fbb21de6038 R14: 00007fbb21de5fa0 R15: 00007fff98df6318
[  543.853197][T16195]  </TASK>
[  544.125526][T16196] nbd: must specify a device to reconfigure
[  544.367239][ T5834] Bluetooth: hci0: command tx timeout
[  544.575596][T16111] hsr_slave_0: entered promiscuous mode
[  544.613379][T16111] hsr_slave_1: entered promiscuous mode
[  544.628988][T16209] binder: 16207:16209 ioctl 4020565a 38 returned -22
[  544.653676][T16111] debugfs: 'hsr0' already exists in 'hsr'
[  544.689800][T16111] Cannot create hsr debugfs directory
[  545.359036][T16244] FAULT_INJECTION: forcing a failure.
[  545.359036][T16244] name failslab, interval 1, probability 0, space 0, times 0
[  545.437053][T16244] CPU: 0 UID: 0 PID: 16244 Comm: syz.2.2333 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  545.437079][T16244] Tainted: [L]=SOFTLOCKUP
[  545.437085][T16244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  545.437099][T16244] Call Trace:
[  545.437105][T16244]  <TASK>
[  545.437111][T16244]  dump_stack_lvl+0x16c/0x1f0
[  545.437142][T16244]  should_fail_ex+0x512/0x640
[  545.437158][T16244]  ? __kmalloc_noprof+0xca/0x910
[  545.437177][T16244]  should_failslab+0xc2/0x120
[  545.437200][T16244]  __kmalloc_noprof+0xeb/0x910
[  545.437276][T16244]  ? tracepoint_add_func+0x2a6/0xea0
[  545.437301][T16244]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  545.437325][T16244]  ? tracepoint_add_func+0x2a6/0xea0
[  545.437346][T16244]  tracepoint_add_func+0x2a6/0xea0
[  545.437367][T16244]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  545.437393][T16244]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  545.437415][T16244]  tracepoint_probe_register+0xbf/0x100
[  545.437438][T16244]  ? __pfx_tracepoint_probe_register+0x10/0x10
[  545.437460][T16244]  ? ftrace_set_clr_event+0x156/0x330
[  545.437477][T16244]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  545.437505][T16244]  tracing_start_sched_switch+0xdc/0x1e0
[  545.437526][T16244]  __ftrace_event_enable_disable+0x692/0x800
[  545.437545][T16244]  __ftrace_set_clr_event_nolock+0x390/0xb70
[  545.437567][T16244]  ftrace_set_clr_event+0x16e/0x330
[  545.437584][T16244]  ? __pfx_ftrace_set_clr_event+0x10/0x10
[  545.437607][T16244]  ftrace_event_write+0x259/0x2c0
[  545.437623][T16244]  ? __pfx_ftrace_event_write+0x10/0x10
[  545.437647][T16244]  ? __pfx_ftrace_event_write+0x10/0x10
[  545.437662][T16244]  vfs_write+0x2a0/0x11d0
[  545.437684][T16244]  ? __pfx___mutex_lock+0x10/0x10
[  545.437710][T16244]  ? __pfx_vfs_write+0x10/0x10
[  545.437736][T16244]  ? __fget_files+0x20e/0x3c0
[  545.437762][T16244]  ksys_write+0x12a/0x250
[  545.437783][T16244]  ? __pfx_ksys_write+0x10/0x10
[  545.437811][T16244]  do_syscall_64+0xcd/0xf80
[  545.437834][T16244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  545.437850][T16244] RIP: 0033:0x7fbb21b8f7c9
[  545.437863][T16244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  545.437877][T16244] RSP: 002b:00007fbb22a57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  545.437891][T16244] RAX: ffffffffffffffda RBX: 00007fbb21de5fa0 RCX: 00007fbb21b8f7c9
[  545.437902][T16244] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000004
[  545.437910][T16244] RBP: 00007fbb21c13f91 R08: 0000000000000000 R09: 0000000000000000
[  545.437919][T16244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  545.437928][T16244] R13: 00007fbb21de6038 R14: 00007fbb21de5fa0 R15: 00007fff98df6318
[  545.437950][T16244]  </TASK>
[  545.438036][T16244] wakeup trace: Couldn't activate tracepoint probe to kernel_sched_wakeup_new
[  546.102509][T16253] netlink: 21 bytes leftover after parsing attributes in process `syz.0.2334'.
[  546.216914][T16253] FAULT_INJECTION: forcing a failure.
[  546.216914][T16253] name failslab, interval 1, probability 0, space 0, times 0
[  546.286660][T16253] CPU: 0 UID: 0 PID: 16253 Comm: syz.0.2334 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  546.286686][T16253] Tainted: [L]=SOFTLOCKUP
[  546.286692][T16253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  546.286701][T16253] Call Trace:
[  546.286707][T16253]  <TASK>
[  546.286714][T16253]  dump_stack_lvl+0x16c/0x1f0
[  546.286741][T16253]  should_fail_ex+0x512/0x640
[  546.286758][T16253]  ? __kmalloc_noprof+0xca/0x910
[  546.286777][T16253]  should_failslab+0xc2/0x120
[  546.286800][T16253]  __kmalloc_noprof+0xeb/0x910
[  546.286816][T16253]  ? vb2_core_allocated_buffers_storage+0xc4/0x220
[  546.286837][T16253]  ? vb2_core_allocated_buffers_storage+0xc4/0x220
[  546.286853][T16253]  vb2_core_allocated_buffers_storage+0xc4/0x220
[  546.286870][T16253]  vb2_core_reqbufs+0x398/0xfe0
[  546.286891][T16253]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  546.286918][T16253]  __vb2_init_fileio+0x3f1/0x1100
[  546.286941][T16253]  vb2_core_poll+0x486/0x700
[  546.286958][T16253]  vb2_poll+0x4b/0xe0
[  546.286972][T16253]  vb2_fop_poll+0x10f/0x2c0
[  546.286988][T16253]  ? __pfx_vb2_fop_poll+0x10/0x10
[  546.287002][T16253]  v4l2_poll+0x163/0x320
[  546.287021][T16253]  ? __pfx_v4l2_poll+0x10/0x10
[  546.287040][T16253]  do_select+0xd3d/0x17e0
[  546.287074][T16253]  ? __pfx_do_select+0x10/0x10
[  546.287100][T16253]  ? __pfx_pollwake+0x10/0x10
[  546.287148][T16253]  ? find_held_lock+0x2b/0x80
[  546.287167][T16253]  ? __might_fault+0xe3/0x190
[  546.287182][T16253]  ? __might_fault+0xe3/0x190
[  546.287197][T16253]  ? __might_fault+0x13b/0x190
[  546.287227][T16253]  ? core_sys_select+0x453/0xc20
[  546.287246][T16253]  core_sys_select+0x453/0xc20
[  546.287271][T16253]  ? __pfx_core_sys_select+0x10/0x10
[  546.287296][T16253]  ? futex_wake+0x1ad/0x530
[  546.287332][T16253]  ? __pfx_do_futex+0x10/0x10
[  546.287353][T16253]  kern_select+0x15d/0x1e0
[  546.287373][T16253]  ? __pfx_kern_select+0x10/0x10
[  546.287395][T16253]  ? xfd_validate_state+0x61/0x180
[  546.287408][T16253]  ? __pfx_ksys_write+0x10/0x10
[  546.287432][T16253]  __x64_sys_select+0xbd/0x160
[  546.287451][T16253]  ? do_syscall_64+0x91/0xf80
[  546.287472][T16253]  ? lockdep_hardirqs_on+0x7c/0x110
[  546.287493][T16253]  do_syscall_64+0xcd/0xf80
[  546.287516][T16253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  546.287531][T16253] RIP: 0033:0x7f334cb8f7c9
[  546.287544][T16253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  546.287565][T16253] RSP: 002b:00007f334d9d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  546.287581][T16253] RAX: ffffffffffffffda RBX: 00007f334cde5fa0 RCX: 00007f334cb8f7c9
[  546.287590][T16253] RDX: 00002000000005c0 RSI: 0000000000000000 RDI: 0000000000000005
[  546.287599][T16253] RBP: 00007f334cc13f91 R08: 0000000000000000 R09: 0000000000000000
[  546.287608][T16253] R10: 00002000000006c0 R11: 0000000000000246 R12: 0000000000000000
[  546.287617][T16253] R13: 00007f334cde6038 R14: 00007f334cde5fa0 R15: 00007ffdd70dabb8
[  546.287637][T16253]  </TASK>
[  546.624810][ T5834] Bluetooth: hci0: command tx timeout
[  547.218941][ T5841] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  547.252017][ T5841] CPU: 0 UID: 0 PID: 5841 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  547.252041][ T5841] Tainted: [L]=SOFTLOCKUP
[  547.252046][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  547.252060][ T5841] Call Trace:
[  547.252065][ T5841]  <TASK>
[  547.252071][ T5841]  dump_stack_lvl+0x16c/0x1f0
[  547.252099][ T5841]  dump_header+0x101/0x960
[  547.252126][ T5841]  oom_kill_process+0x176/0x910
[  547.252144][ T5841]  out_of_memory+0x350/0x1700
[  547.252160][ T5841]  ? __lock_acquire+0x436/0x2890
[  547.252177][ T5841]  ? __pfx_out_of_memory+0x10/0x10
[  547.252198][ T5841]  mem_cgroup_out_of_memory+0x118/0x130
[  547.252216][ T5841]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  547.252238][ T5841]  ? do_raw_spin_unlock+0x172/0x230
[  547.252258][ T5841]  try_charge_memcg+0x695/0xd30
[  547.252284][ T5841]  ? __pfx_try_charge_memcg+0x10/0x10
[  547.252310][ T5841]  ? find_held_lock+0x2b/0x80
[  547.252332][ T5841]  charge_memcg+0x8a/0x230
[  547.252354][ T5841]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  547.252371][ T5841]  __read_swap_cache_async+0x397/0x500
[  547.252392][ T5841]  ? __pfx___read_swap_cache_async+0x10/0x10
[  547.252411][ T5841]  ? __lock_acquire+0x436/0x2890
[  547.252429][ T5841]  swap_cluster_readahead+0x432/0x770
[  547.252451][ T5841]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  547.252472][ T5841]  ? trace_pelt_se_tp+0xed/0x130
[  547.252486][ T5841]  ? __update_load_avg_se+0x3fb/0x940
[  547.252512][ T5841]  ? update_load_avg+0x233/0x2220
[  547.252526][ T5841]  ? get_vma_policy+0x242/0x3c0
[  547.252541][ T5841]  swapin_readahead+0x160/0x1220
[  547.252566][ T5841]  ? __pfx_swapin_readahead+0x10/0x10
[  547.252584][ T5841]  ? find_held_lock+0x2b/0x80
[  547.252601][ T5841]  ? swap_cache_get_folio+0x267/0x8e0
[  547.252617][ T5841]  ? swap_cache_get_folio+0x267/0x8e0
[  547.252633][ T5841]  ? swap_cache_get_folio+0x267/0x8e0
[  547.252650][ T5841]  ? swap_cache_get_folio+0x267/0x8e0
[  547.252670][ T5841]  ? swap_cache_get_folio+0x293/0x8e0
[  547.252688][ T5841]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  547.252704][ T5841]  ? __pfx_get_swap_device+0x10/0x10
[  547.252724][ T5841]  ? rcu_read_unlock+0x2d/0xb0
[  547.252743][ T5841]  ? do_swap_page+0x962/0x64a0
[  547.252756][ T5841]  do_swap_page+0x962/0x64a0
[  547.252773][ T5841]  ? __lock_acquire+0x436/0x2890
[  547.252791][ T5841]  ? __pfx_do_swap_page+0x10/0x10
[  547.252812][ T5841]  ? __pfx_default_wake_function+0x10/0x10
[  547.252841][ T5841]  ? rcu_is_watching+0x12/0xc0
[  547.252860][ T5841]  ? __free_object+0x286/0x410
[  547.252883][ T5841]  ? rcu_is_watching+0x12/0xc0
[  547.252902][ T5841]  ? ___pte_offset_map+0x175/0x380
[  547.252925][ T5841]  __handle_mm_fault+0x19cb/0x2bb0
[  547.252944][ T5841]  ? reacquire_held_locks+0xcd/0x1f0
[  547.252958][ T5841]  ? __pfx___handle_mm_fault+0x10/0x10
[  547.252976][ T5841]  ? lock_vma_under_rcu+0x176/0x580
[  547.253001][ T5841]  ? get_timespec64+0x136/0x1b0
[  547.253020][ T5841]  handle_mm_fault+0x3fe/0xad0
[  547.253038][ T5841]  do_user_addr_fault+0x60c/0x1370
[  547.253058][ T5841]  ? rcu_is_watching+0x12/0xc0
[  547.253080][ T5841]  exc_page_fault+0x64/0xc0
[  547.253102][ T5841]  asm_exc_page_fault+0x26/0x30
[  547.253121][ T5841] RIP: 0033:0x7f334cbc2088
[  547.253134][ T5841] Code: 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[  547.253148][ T5841] RSP: 002b:00007ffdd70daed0 EFLAGS: 00010293
[  547.253161][ T5841] RAX: 0000000000000000 RBX: 00000000000008a7 RCX: 00007f334cbc2085
[  547.253170][ T5841] RDX: 00007ffdd70daf10 RSI: 0000000000000000 RDI: 0000000000000000
[  547.253178][ T5841] RBP: 00007ffdd70daf7c R08: 0000000000000000 R09: 0000000000000000
[  547.253187][ T5841] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000001388
[  547.253195][ T5841] R13: 00000000000927c0 R14: 0000000000085f83 R15: 00007ffdd70dafd0
[  547.253215][ T5841]  </TASK>
[  547.639146][ T5841] memory: usage 3072kB, limit 3072kB, failcnt 43812
[  547.645811][ T5841] memory+swap: usage 7316kB, limit 9007199254740988kB, failcnt 0
[  547.653633][ T5841] kmem: usage 2996kB, limit 9007199254740988kB, failcnt 0
[  547.660728][ T5841] Memory cgroup stats for /syz0:
[  547.660935][ T5841] cache 0
[  547.669246][ T5841] rss 28672
[  547.672359][ T5841] rss_huge 0
[  547.675534][ T5841] shmem 0
[  547.678448][ T5841] mapped_file 0
[  547.681935][ T5841] dirty 0
[  547.684853][ T5841] writeback 0
[  547.688117][ T5841] workingset_refault_anon 8540
[  547.692892][ T5841] workingset_refault_file 9770
[  547.697648][ T5841] swap 4354048
[  547.701101][ T5841] swapcached 61440
[  547.704800][ T5841] pgpgin 567328
[  547.708234][ T5841] pgpgout 597584
[  547.711775][ T5841] pgfault 320433
[  547.715311][ T5841] pgmajfault 2965
[  547.718918][ T5841] inactive_anon 69632
[  547.722899][ T5841] active_anon 0
[  547.726334][ T5841] inactive_file 0
[  547.729954][ T5841] active_file 0
[  547.733438][ T5841] unevictable 0
[  547.737694][ T5841] hierarchical_memory_limit 3145728
[  547.742917][ T5841] hierarchical_memsw_limit 9223372036854771712
[  547.749074][ T5841] total_cache 0
[  547.752538][ T5841] total_rss 28672
[  547.756148][ T5841] total_rss_huge 0
[  547.759842][ T5841] total_shmem 0
[  547.763320][ T5841] total_mapped_file 0
[  547.767707][ T5841] total_dirty 0
[  547.771183][ T5841] total_writeback 0
[  547.774965][ T5841] total_workingset_refault_anon 8540
[  547.780242][ T5841] total_workingset_refault_file 9770
[  547.785652][ T5841] total_swap 4354048
[  547.789520][ T5841] total_swapcached 61440
[  547.793773][ T5841] total_pgpgin 567328
[  547.797750][ T5841] total_pgpgout 597584
[  547.801830][ T5841] total_pgfault 320433
[  547.805873][ T5841] total_pgmajfault 2965
[  547.810003][ T5841] total_inactive_anon 69632
[  547.814515][ T5841] total_active_anon 0
[  547.818472][ T5841] total_inactive_file 0
[  547.822631][ T5841] total_active_file 0
[  547.826587][ T5841] total_unevictable 0
[  547.830565][ T5841] anon_cost 10
[  547.833912][ T5841] file_cost 0
[  547.837193][ T5841] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2336,pid=16258,uid=0
[  547.854437][ T5841] Memory cgroup out of memory: Killed process 16258 (syz.0.2336) total-vm:102952kB, anon-rss:1268kB, file-rss:21648kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[  548.112067][ T6333] hsr_slave_0: left promiscuous mode
[  548.117840][ T6333] hsr_slave_1: left promiscuous mode
[  548.134509][ T6333] veth1_macvtap: left promiscuous mode
[  548.140407][ T6333] veth0_macvtap: left promiscuous mode
[  548.147098][ T6333] veth1_vlan: left promiscuous mode
[  548.154177][ T6333] veth0_vlan: left promiscuous mode
[  548.633356][ T6333] team0 (unregistering): Port device team_slave_1 removed
[  548.658110][ T5834] Bluetooth: hci0: command tx timeout
[  548.687307][ T6333] team0 (unregistering): Port device team_slave_0 removed
[  549.062636][T16111] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  549.142192][T16111] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  549.185868][T16111] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  549.224830][T16111] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  549.457209][T16277] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2340'.
[  549.981094][T16297] zswap: compressor  not available
[  550.072986][T16111] 8021q: adding VLAN 0 to HW filter on device bond0
[  550.343235][T16111] 8021q: adding VLAN 0 to HW filter on device team0
[  550.411964][ T8142] bridge0: port 1(bridge_slave_0) entered blocking state
[  550.419119][ T8142] bridge0: port 1(bridge_slave_0) entered forwarding state
[  550.549814][ T8489] bridge0: port 2(bridge_slave_1) entered blocking state
[  550.556989][ T8489] bridge0: port 2(bridge_slave_1) entered forwarding state
[  550.752593][T16330] sg_write: data in/out 14745563/34144 bytes for SCSI command 0x0-- guessing data in;
[  550.752593][T16330]    program syz.3.2346 not setting count and/or reply_len properly
[  551.096317][T16341] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2349'.
[  551.174066][T16341] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  551.181468][T16341] batman_adv: batadv0: Removing interface: batadv_slave_0
[  551.245545][T16344] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2349'.
[  551.295579][T16341] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  551.319933][T16341] batman_adv: batadv0: Removing interface: batadv_slave_1
[  551.479583][T16111] 8021q: adding VLAN 0 to HW filter on device batadv0
[  551.623383][T16111] veth0_vlan: entered promiscuous mode
[  551.660645][T16111] veth1_vlan: entered promiscuous mode
[  551.747489][T16111] veth0_macvtap: entered promiscuous mode
[  551.799980][T16111] veth1_macvtap: entered promiscuous mode
[  551.864998][T16111] batman_adv: batadv0: Interface activated: batadv_slave_0
[  551.917154][T16336] ima: policy update failed
[  551.922629][T16111] batman_adv: batadv0: Interface activated: batadv_slave_1
[  551.970908][   T30] audit: type=1802 audit(4294992184.649:15): pid=16336 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2348" res=0 errno=0
[  552.012370][ T8084] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  552.058203][ T8084] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  552.103723][ T8084] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  552.162257][ T8084] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  552.339194][ T8142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  552.398916][ T8142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  552.488491][ T2926] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  552.522923][ T2926] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  552.608966][T16367] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2354'.
[  552.652673][T16367] bond0: entered promiscuous mode
[  552.680324][T16367] bond_slave_0: entered promiscuous mode
[  552.712748][T16367] bond_slave_1: entered promiscuous mode
[  552.740073][T16367] bond0: entered allmulticast mode
[  552.754337][T16367] bond_slave_0: entered allmulticast mode
[  552.815312][T16367] bond_slave_1: entered allmulticast mode
[  552.880759][T16372] tc_dump_action: action bad kind
[  553.059566][T16377] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  553.740799][T16386] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2358'.
[  554.008595][T16381] sp0: Synchronizing with TNC
[  554.724978][T16418] netlink: 'syz.2.2362': attribute type 2 has an invalid length.
[  556.049726][T16469] binder: 16468:16469 ioctl c018620c 0 returned -22
[  556.519853][T16465] FAULT_INJECTION: forcing a failure.
[  556.519853][T16465] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  556.605993][T16465] CPU: 0 UID: 0 PID: 16465 Comm: syz.0.2370 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  556.606019][T16465] Tainted: [L]=SOFTLOCKUP
[  556.606024][T16465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  556.606033][T16465] Call Trace:
[  556.606038][T16465]  <TASK>
[  556.606044][T16465]  dump_stack_lvl+0x16c/0x1f0
[  556.606071][T16465]  should_fail_ex+0x512/0x640
[  556.606090][T16465]  should_fail_alloc_page+0xe7/0x130
[  556.606115][T16465]  prepare_alloc_pages+0x401/0x670
[  556.606140][T16465]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  556.606158][T16465]  ? __pfx_try_to_migrate_one+0x10/0x10
[  556.606179][T16465]  ? __up_read+0x2d1/0x700
[  556.606196][T16465]  ? __pfx___up_read+0x10/0x10
[  556.606216][T16465]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  556.606234][T16465]  ? rmap_walk_anon+0x559/0x790
[  556.606272][T16465]  __folio_alloc_noprof+0x11/0x220
[  556.606289][T16465]  alloc_migration_target+0x1a0/0x560
[  556.606315][T16465]  migrate_pages_batch+0x3bc/0x3bb0
[  556.606332][T16465]  ? __pfx_alloc_migration_target+0x10/0x10
[  556.606362][T16465]  ? __pfx_migrate_pages_batch+0x10/0x10
[  556.606383][T16465]  ? __pfx_walk_pgd_range+0x10/0x10
[  556.606403][T16465]  migrate_pages_sync+0x12d/0x8a0
[  556.606418][T16465]  ? __pfx_alloc_migration_target+0x10/0x10
[  556.606445][T16465]  ? queue_pages_test_walk+0x279/0x410
[  556.606458][T16465]  ? __pfx_migrate_pages_sync+0x10/0x10
[  556.606473][T16465]  ? walk_page_test+0x9b/0x180
[  556.606492][T16465]  ? walk_page_range_mm_unsafe+0x235/0xb40
[  556.606514][T16465]  migrate_pages+0x1b0b/0x2350
[  556.606530][T16465]  ? __pfx_alloc_migration_target+0x10/0x10
[  556.606559][T16465]  ? __pfx_migrate_pages+0x10/0x10
[  556.606574][T16465]  ? queue_pages_range+0x11e/0x180
[  556.606596][T16465]  ? __pfx___up_read+0x10/0x10
[  556.606612][T16465]  ? do_migrate_pages+0x45b/0x750
[  556.606637][T16465]  do_migrate_pages+0x491/0x750
[  556.606663][T16465]  ? __pfx_do_migrate_pages+0x10/0x10
[  556.606688][T16465]  ? rcu_is_watching+0x12/0xc0
[  556.606708][T16465]  ? cap_capable+0x10d/0x3f0
[  556.606719][T16465]  ? get_task_mm+0xc2/0xf0
[  556.606739][T16465]  ? security_capable+0x250/0x260
[  556.606763][T16465]  kernel_migrate_pages+0x55b/0x700
[  556.606786][T16465]  ? __pfx_kernel_migrate_pages+0x10/0x10
[  556.606809][T16465]  ? __pfx_do_writev+0x10/0x10
[  556.606832][T16465]  __x64_sys_migrate_pages+0x96/0x100
[  556.606854][T16465]  ? lockdep_hardirqs_on+0x7c/0x110
[  556.606876][T16465]  do_syscall_64+0xcd/0xf80
[  556.606899][T16465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.606914][T16465] RIP: 0033:0x7f334cb8f7c9
[  556.606926][T16465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  556.606940][T16465] RSP: 002b:00007f334d9d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000100
[  556.606954][T16465] RAX: ffffffffffffffda RBX: 00007f334cde5fa0 RCX: 00007f334cb8f7c9
[  556.606963][T16465] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000
[  556.606972][T16465] RBP: 00007f334cc13f91 R08: 0000000000000000 R09: 0000000000000000
[  556.606981][T16465] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000
[  556.606989][T16465] R13: 00007f334cde6038 R14: 00007f334cde5fa0 R15: 00007ffdd70dabb8
[  556.607008][T16465]  </TASK>
[  559.735135][T16536] Process accounting resumed
[  559.993945][T16541] zswap: compressor  not available
[  561.956465][T16582] netlink: 'syz.3.2392': attribute type 1 has an invalid length.
[  563.682498][T16607] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27
[  565.271208][T16646] __vm_enough_memory: pid: 16646, comm: syz.3.2406, bytes: 4398046511104 not enough memory for the allocation
[  566.338890][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  566.348061][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  567.440935][T16684] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2415'.
[  567.480796][T16684] mac80211_hwsim hwsim38 wlan1: entered promiscuous mode
[  567.519895][T16684] mac80211_hwsim hwsim38 wlan1: entered allmulticast mode
[  567.565781][T16690] FAULT_INJECTION: forcing a failure.
[  567.565781][T16690] name fail_futex, interval 1, probability 0, space 0, times 0
[  567.662212][T16690] CPU: 0 UID: 0 PID: 16690 Comm: syz.1.2415 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  567.662238][T16690] Tainted: [L]=SOFTLOCKUP
[  567.662244][T16690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  567.662252][T16690] Call Trace:
[  567.662257][T16690]  <TASK>
[  567.662264][T16690]  dump_stack_lvl+0x16c/0x1f0
[  567.662291][T16690]  should_fail_ex+0x512/0x640
[  567.662310][T16690]  get_futex_key+0x1d0/0x15f0
[  567.662328][T16690]  ? find_held_lock+0x2b/0x80
[  567.662347][T16690]  ? __pfx_get_futex_key+0x10/0x10
[  567.662365][T16690]  ? tomoyo_path_number_perm+0x18d/0x580
[  567.662384][T16690]  futex_wake+0xea/0x530
[  567.662406][T16690]  ? __pfx_futex_wake+0x10/0x10
[  567.662426][T16690]  ? __pfx_sock_do_ioctl+0x10/0x10
[  567.662454][T16690]  do_futex+0x1e3/0x350
[  567.662471][T16690]  ? __pfx_do_futex+0x10/0x10
[  567.662487][T16690]  ? sock_ioctl+0x3a9/0x6b0
[  567.662503][T16690]  __x64_sys_futex+0x1e0/0x4c0
[  567.662521][T16690]  ? __fget_files+0x20e/0x3c0
[  567.662541][T16690]  ? __pfx___x64_sys_futex+0x10/0x10
[  567.662561][T16690]  ? fput+0x70/0xf0
[  567.662589][T16690]  do_syscall_64+0xcd/0xf80
[  567.662613][T16690]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.662629][T16690] RIP: 0033:0x7f8642d8f7c9
[  567.662642][T16690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  567.662656][T16690] RSP: 002b:00007f8643b630e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  567.662670][T16690] RAX: ffffffffffffffda RBX: 00007f8642fe6098 RCX: 00007f8642d8f7c9
[  567.662679][T16690] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8642fe609c
[  567.662688][T16690] RBP: 00007f8642fe6090 R08: 00007f8643b85000 R09: 0000000000000000
[  567.662697][T16690] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  567.662706][T16690] R13: 00007f8642fe6128 R14: 00007ffde4766140 R15: 00007ffde4766228
[  567.662724][T16690]  </TASK>
[  568.033516][ T5841] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  568.045374][ T5841] CPU: 0 UID: 0 PID: 5841 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  568.045398][ T5841] Tainted: [L]=SOFTLOCKUP
[  568.045403][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  568.045411][ T5841] Call Trace:
[  568.045416][ T5841]  <TASK>
[  568.045421][ T5841]  dump_stack_lvl+0x16c/0x1f0
[  568.045448][ T5841]  dump_header+0x101/0x960
[  568.045466][ T5841]  oom_kill_process+0x176/0x910
[  568.045484][ T5841]  out_of_memory+0x350/0x1700
[  568.045499][ T5841]  ? __lock_acquire+0x436/0x2890
[  568.045516][ T5841]  ? __pfx_out_of_memory+0x10/0x10
[  568.045537][ T5841]  mem_cgroup_out_of_memory+0x118/0x130
[  568.045555][ T5841]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  568.045576][ T5841]  ? do_raw_spin_unlock+0x172/0x230
[  568.045596][ T5841]  try_charge_memcg+0x695/0xd30
[  568.045622][ T5841]  ? __pfx_try_charge_memcg+0x10/0x10
[  568.045648][ T5841]  ? find_held_lock+0x2b/0x80
[  568.045670][ T5841]  charge_memcg+0x8a/0x230
[  568.045691][ T5841]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  568.045708][ T5841]  __read_swap_cache_async+0x397/0x500
[  568.045729][ T5841]  ? __pfx___read_swap_cache_async+0x10/0x10
[  568.045748][ T5841]  ? __lock_acquire+0x436/0x2890
[  568.045766][ T5841]  swap_cluster_readahead+0x528/0x770
[  568.045789][ T5841]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  568.045809][ T5841]  ? __lock_acquire+0x436/0x2890
[  568.045828][ T5841]  ? update_load_avg+0x233/0x2220
[  568.045843][ T5841]  ? get_vma_policy+0x242/0x3c0
[  568.045857][ T5841]  swapin_readahead+0x160/0x1220
[  568.045882][ T5841]  ? __pfx_swapin_readahead+0x10/0x10
[  568.045900][ T5841]  ? find_held_lock+0x2b/0x80
[  568.045917][ T5841]  ? swap_cache_get_folio+0x267/0x8e0
[  568.045932][ T5841]  ? swap_cache_get_folio+0x267/0x8e0
[  568.045947][ T5841]  ? swap_cache_get_folio+0x267/0x8e0
[  568.045965][ T5841]  ? swap_cache_get_folio+0x267/0x8e0
[  568.045981][ T5841]  ? swap_cache_get_folio+0x293/0x8e0
[  568.045998][ T5841]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  568.046014][ T5841]  ? __pfx_get_swap_device+0x10/0x10
[  568.046040][ T5841]  ? rcu_read_unlock+0x2d/0xb0
[  568.046060][ T5841]  ? do_swap_page+0x962/0x64a0
[  568.046073][ T5841]  do_swap_page+0x962/0x64a0
[  568.046090][ T5841]  ? __lock_acquire+0x436/0x2890
[  568.046108][ T5841]  ? __pfx_do_swap_page+0x10/0x10
[  568.046125][ T5841]  ? __pfx_default_wake_function+0x10/0x10
[  568.046146][ T5841]  ? rcu_is_watching+0x12/0xc0
[  568.046165][ T5841]  ? __free_object+0x286/0x410
[  568.046188][ T5841]  ? rcu_is_watching+0x12/0xc0
[  568.046207][ T5841]  ? ___pte_offset_map+0x175/0x380
[  568.046230][ T5841]  __handle_mm_fault+0x19cb/0x2bb0
[  568.046249][ T5841]  ? reacquire_held_locks+0xcd/0x1f0
[  568.046263][ T5841]  ? __pfx___handle_mm_fault+0x10/0x10
[  568.046281][ T5841]  ? lock_vma_under_rcu+0x176/0x580
[  568.046303][ T5841]  ? get_timespec64+0x136/0x1b0
[  568.046322][ T5841]  handle_mm_fault+0x3fe/0xad0
[  568.046340][ T5841]  do_user_addr_fault+0x60c/0x1370
[  568.046360][ T5841]  ? rcu_is_watching+0x12/0xc0
[  568.046382][ T5841]  exc_page_fault+0x64/0xc0
[  568.046404][ T5841]  asm_exc_page_fault+0x26/0x30
[  568.046418][ T5841] RIP: 0033:0x7f334cbc2088
[  568.046431][ T5841] Code: 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[  568.046445][ T5841] RSP: 002b:00007ffdd70daed0 EFLAGS: 00010293
[  568.046457][ T5841] RAX: 0000000000000000 RBX: 00000000000008d8 RCX: 00007f334cbc2085
[  568.046466][ T5841] RDX: 00007ffdd70daf10 RSI: 0000000000000000 RDI: 0000000000000000
[  568.046475][ T5841] RBP: 00007ffdd70daf7c R08: 0000000000000000 R09: 0000000000000000
[  568.046483][ T5841] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000001388
[  568.046492][ T5841] R13: 00000000000927c0 R14: 000000000008ad0e R15: 00007ffdd70dafd0
[  568.046511][ T5841]  </TASK>
[  568.046517][ T5841] memory: usage 3072kB, limit 3072kB, failcnt 62378
[  568.787612][T16702] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2419'.
[  569.498831][T16727] kfence: disabled
[  569.797678][T16724] serio: Serial port pty6
[  569.816808][T16735] FAULT_INJECTION: forcing a failure.
[  569.816808][T16735] name failslab, interval 1, probability 0, space 0, times 0
[  569.898521][T16735] CPU: 0 UID: 0 PID: 16735 Comm: syz.2.2426 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  569.898548][T16735] Tainted: [L]=SOFTLOCKUP
[  569.898553][T16735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  569.898562][T16735] Call Trace:
[  569.898568][T16735]  <TASK>
[  569.898574][T16735]  dump_stack_lvl+0x16c/0x1f0
[  569.898600][T16735]  should_fail_ex+0x512/0x640
[  569.898617][T16735]  ? __kmalloc_node_track_caller_noprof+0xcb/0x930
[  569.898642][T16735]  should_failslab+0xc2/0x120
[  569.898665][T16735]  __kmalloc_node_track_caller_noprof+0xec/0x930
[  569.898686][T16735]  ? kstrdup_const+0x63/0x80
[  569.898708][T16735]  ? kstrdup+0x53/0x100
[  569.898723][T16735]  kstrdup+0x53/0x100
[  569.898740][T16735]  kstrdup_const+0x63/0x80
[  569.898757][T16735]  __kernfs_new_node+0x9b/0x990
[  569.898773][T16735]  ? do_filp_open+0x20b/0x470
[  569.898794][T16735]  ? do_sys_openat2+0x121/0x290
[  569.898809][T16735]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  569.898825][T16735]  ? __pfx___kernfs_new_node+0x10/0x10
[  569.898847][T16735]  ? find_held_lock+0x2b/0x80
[  569.898867][T16735]  ? kernfs_root+0xee/0x2a0
[  569.898893][T16735]  kernfs_new_node+0x13c/0x1e0
[  569.898917][T16735]  kernfs_create_dir_ns+0x4c/0x1a0
[  569.898940][T16735]  sysfs_create_dir_ns+0x13a/0x2b0
[  569.898958][T16735]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  569.898973][T16735]  ? find_held_lock+0x2b/0x80
[  569.898996][T16735]  ? do_raw_spin_unlock+0x172/0x230
[  569.899014][T16735]  kobject_add_internal+0x2c4/0x9d0
[  569.899028][T16735]  ? kmemdup_noprof+0x51/0x60
[  569.899047][T16735]  kobject_init_and_add+0x11b/0x190
[  569.899063][T16735]  ? __pfx_kobject_init_and_add+0x10/0x10
[  569.899082][T16735]  ? up_write+0x282/0x4e0
[  569.899101][T16735]  sysfs_slab_add+0x194/0x1f0
[  569.899120][T16735]  do_kmem_cache_create+0x5c1/0x740
[  569.899145][T16735]  __kmem_cache_create_args+0x1fc/0x3b0
[  569.899163][T16735]  mon_text_open+0x333/0x510
[  569.899184][T16735]  ? __pfx_mon_text_open+0x10/0x10
[  569.899204][T16735]  ? __pfx_mon_text_ctor+0x10/0x10
[  569.899224][T16735]  ? __pfx_apparmor_file_open+0x10/0x10
[  569.899238][T16735]  ? lockdown_is_locked_down+0x3f/0x130
[  569.899260][T16735]  ? bpf_lsm_locked_down+0x9/0x10
[  569.899282][T16735]  ? __pfx_mon_text_open+0x10/0x10
[  569.899300][T16735]  full_proxy_open_regular+0x1b9/0x350
[  569.899323][T16735]  do_dentry_open+0x748/0x1590
[  569.899347][T16735]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  569.899374][T16735]  vfs_open+0x82/0x3f0
[  569.899392][T16735]  path_openat+0x2078/0x3140
[  569.899421][T16735]  ? __pfx_path_openat+0x10/0x10
[  569.899451][T16735]  do_filp_open+0x20b/0x470
[  569.899473][T16735]  ? __pfx_do_filp_open+0x10/0x10
[  569.899509][T16735]  ? alloc_fd+0x471/0x7d0
[  569.899535][T16735]  do_sys_openat2+0x121/0x290
[  569.899551][T16735]  ? __pfx_do_sys_openat2+0x10/0x10
[  569.899574][T16735]  __x64_sys_openat+0x174/0x210
[  569.899591][T16735]  ? __pfx___x64_sys_openat+0x10/0x10
[  569.899615][T16735]  do_syscall_64+0xcd/0xf80
[  569.899639][T16735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  569.899653][T16735] RIP: 0033:0x7fbb21b8f7c9
[  569.899667][T16735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  569.899682][T16735] RSP: 002b:00007fbb22a57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  569.899696][T16735] RAX: ffffffffffffffda RBX: 00007fbb21de5fa0 RCX: 00007fbb21b8f7c9
[  569.899707][T16735] RDX: 0000000000020443 RSI: 0000200000001140 RDI: ffffffffffffff9c
[  569.899717][T16735] RBP: 00007fbb21c13f91 R08: 0000000000000000 R09: 0000000000000000
[  569.899726][T16735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  569.899735][T16735] R13: 00007fbb21de6038 R14: 00007fbb21de5fa0 R15: 00007fff98df6318
[  569.899755][T16735]  </TASK>
[  569.903980][T16735] kobject: kobject_add_internal failed for mon_text_ffff88805c6b6400 (error: -12 parent: slab)
[  570.346900][ T5841] memory+swap: usage 58824kB, limit 9007199254740988kB, failcnt 0
[  570.363227][ T5841] kmem: usage 2908kB, limit 9007199254740988kB, failcnt 0
[  570.381925][ T5841] Memory cgroup stats for /syz0:
[  570.382027][ T5841] cache 8192
[  570.400720][ T5841] rss 0
[  570.405970][ T5841] rss_huge 0
[  570.422103][ T5841] shmem 4096
[  570.426614][ T5841] mapped_file 0
[  570.430065][ T5841] dirty 0
[  570.464765][ T5841] writeback 0
[  570.468080][ T5841] workingset_refault_anon 12014
[  570.478244][T16745] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  570.504987][ T5841] workingset_refault_file 9869
[  570.509769][ T5841] swap 57090048
[  570.517662][ T5841] swapcached 159744
[  570.521475][ T5841] pgpgin 594804
[  570.525261][ T5841] pgpgout 625036
[  570.528908][T16745] CIFS mount error: No usable UNC path provided in device string!
[  570.528908][T16745] 
[  570.539772][ T5841] pgfault 336263
[  570.553455][ T5841] pgmajfault 3880
[  570.558595][ T5841] inactive_anon 40960
[  570.569013][ T5841] active_anon 122880
[  570.573492][ T5841] inactive_file 4096
[  570.582284][T16745] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  570.591473][ T5841] active_file 0
[  570.595343][ T5841] unevictable 0
[  570.598811][ T5841] hierarchical_memory_limit 3145728
[  570.604166][ T5841] hierarchical_memsw_limit 9223372036854771712
[  570.610362][ T5841] total_cache 8192
[  570.614127][ T5841] total_rss 0
[  570.617392][ T5841] total_rss_huge 0
[  570.621089][ T5841] total_shmem 4096
[  570.625205][ T5841] total_mapped_file 0
[  570.629170][ T5841] total_dirty 0
[  570.632721][ T5841] total_writeback 0
[  570.636507][ T5841] total_workingset_refault_anon 12014
[  570.642038][ T5841] total_workingset_refault_file 9869
[  570.647476][ T5841] total_swap 57090048
[  570.651438][ T5841] total_swapcached 159744
[  570.671618][ T5841] total_pgpgin 594804
[  570.675629][ T5841] total_pgpgout 625036
[  570.703208][ T5841] total_pgfault 336263
[  570.707535][ T5841] total_pgmajfault 3880
[  570.721531][ T5841] total_inactive_anon 40960
[  570.726895][ T5841] total_active_anon 122880
[  570.736336][ T5841] total_inactive_file 4096
[  570.745703][ T5841] total_active_file 0
[  570.758824][ T5841] total_unevictable 0
[  570.763499][ T5841] anon_cost 185
[  570.770823][ T5841] file_cost 0
[  570.775891][ T5841] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2370,pid=16485,uid=0
[  570.824841][ T5841] Memory cgroup out of memory: Killed process 16485 (syz.0.2370) total-vm:102424kB, anon-rss:1268kB, file-rss:54864kB, shmem-rss:0kB, UID:0 pgtables:204kB oom_score_adj:1000
[  571.242770][T16735] SLUB: Unable to add cache mon_text_ffff88805c6b6400 to sysfs
[  571.397948][T16762] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2434'.
[  571.568156][T16769] FAULT_INJECTION: forcing a failure.
[  571.568156][T16769] name failslab, interval 1, probability 0, space 0, times 0
[  571.619741][T16769] CPU: 0 UID: 0 PID: 16769 Comm: syz.2.2436 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  571.619770][T16769] Tainted: [L]=SOFTLOCKUP
[  571.619775][T16769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  571.619785][T16769] Call Trace:
[  571.619790][T16769]  <TASK>
[  571.619796][T16769]  dump_stack_lvl+0x16c/0x1f0
[  571.619824][T16769]  should_fail_ex+0x512/0x640
[  571.619842][T16769]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  571.619866][T16769]  should_failslab+0xc2/0x120
[  571.619889][T16769]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  571.619908][T16769]  ? __d_alloc+0x35/0xa80
[  571.619924][T16769]  ? __d_alloc+0x35/0xa80
[  571.619936][T16769]  __d_alloc+0x35/0xa80
[  571.619950][T16769]  d_alloc_pseudo+0x1c/0xc0
[  571.619968][T16769]  alloc_file_pseudo+0xcf/0x230
[  571.619986][T16769]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  571.620009][T16769]  ? alloc_fd+0x471/0x7d0
[  571.620034][T16769]  sock_alloc_file+0x50/0x210
[  571.620056][T16769]  __sys_socket+0x1c0/0x260
[  571.620069][T16769]  ? fput+0x70/0xf0
[  571.620083][T16769]  ? __pfx___sys_socket+0x10/0x10
[  571.620096][T16769]  ? xfd_validate_state+0x61/0x180
[  571.620110][T16769]  ? __pfx_ksys_write+0x10/0x10
[  571.620133][T16769]  __x64_sys_socket+0x72/0xb0
[  571.620146][T16769]  ? lockdep_hardirqs_on+0x7c/0x110
[  571.620168][T16769]  do_syscall_64+0xcd/0xf80
[  571.620191][T16769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  571.620206][T16769] RIP: 0033:0x7fbb21b8f7c9
[  571.620219][T16769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  571.620233][T16769] RSP: 002b:00007fbb22a57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  571.620247][T16769] RAX: ffffffffffffffda RBX: 00007fbb21de5fa0 RCX: 00007fbb21b8f7c9
[  571.620257][T16769] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  571.620265][T16769] RBP: 00007fbb21c13f91 R08: 0000000000000000 R09: 0000000000000000
[  571.620273][T16769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  571.620282][T16769] R13: 00007fbb21de6038 R14: 00007fbb21de5fa0 R15: 00007fff98df6318
[  571.620302][T16769]  </TASK>
[  572.125071][T16769] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2436'.
[  572.438359][T16771] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  573.134773][T16806] ima: Unable to open file: /surit‹¯Ròy/integrity?iqa/policy (-2)
[  573.153833][T16796] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2442'.
[  573.448097][T16805] ima: policy update failed
[  573.463405][   T30] audit: type=1802 audit(8277292041.151:16): pid=16805 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2443" res=0 errno=0
[  575.151544][T16851] FAULT_INJECTION: forcing a failure.
[  575.151544][T16851] name failslab, interval 1, probability 0, space 0, times 0
[  575.313458][T16851] CPU: 0 UID: 0 PID: 16851 Comm: syz.1.2452 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  575.313484][T16851] Tainted: [L]=SOFTLOCKUP
[  575.313489][T16851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  575.313498][T16851] Call Trace:
[  575.313503][T16851]  <TASK>
[  575.313510][T16851]  dump_stack_lvl+0x16c/0x1f0
[  575.313537][T16851]  should_fail_ex+0x512/0x640
[  575.313554][T16851]  ? __kmalloc_noprof+0xca/0x910
[  575.313573][T16851]  should_failslab+0xc2/0x120
[  575.313596][T16851]  __kmalloc_noprof+0xeb/0x910
[  575.313612][T16851]  ? lsm_blob_alloc+0x68/0x90
[  575.313637][T16851]  ? lsm_blob_alloc+0x68/0x90
[  575.313656][T16851]  lsm_blob_alloc+0x68/0x90
[  575.313677][T16851]  security_prepare_creds+0x2f/0x270
[  575.313698][T16851]  prepare_creds+0x5d6/0x940
[  575.313717][T16851]  __sys_setfsuid+0xda/0x350
[  575.313736][T16851]  ? rcu_is_watching+0x12/0xc0
[  575.313759][T16851]  do_syscall_64+0xcd/0xf80
[  575.313783][T16851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  575.313798][T16851] RIP: 0033:0x7f8642d8f7c9
[  575.313811][T16851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  575.313825][T16851] RSP: 002b:00007f8643b42038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a
[  575.313839][T16851] RAX: ffffffffffffffda RBX: 00007f8642fe6180 RCX: 00007f8642d8f7c9
[  575.313849][T16851] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee01
[  575.313858][T16851] RBP: 00007f8642e13f91 R08: 0000000000000000 R09: 0000000000000000
[  575.313866][T16851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  575.313874][T16851] R13: 00007f8642fe6218 R14: 00007f8642fe6180 R15: 00007ffde4766228
[  575.313893][T16851]  </TASK>
[  577.883487][T16901] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552].
[  578.867073][T16915] zswap: compressor  not available
[  578.950912][T16932] random: crng reseeded on system resumption
[  579.171943][ T5834] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5
[  579.341664][T16946] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2471'.
[  579.402004][T16946] bridge_slave_1: left allmulticast mode
[  579.427794][T16946] bridge_slave_1: left promiscuous mode
[  579.433543][T16946] bridge0: port 2(bridge_slave_1) entered disabled state
[  579.560304][T16946] bridge_slave_0: left allmulticast mode
[  579.575359][T16946] bridge_slave_0: left promiscuous mode
[  579.593629][T16946] bridge0: port 1(bridge_slave_0) entered disabled state
[  580.443327][T16973] zero sized request
[  580.487783][T16972] netlink: Conntrack attr has 16 unknown bytes
[  580.697365][   T30] audit: type=1804 audit(8277292048.419:17): pid=16982 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2479" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=1068 res=1 errno=0
[  582.354497][T17023] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2486'.
[  583.644002][ T5837] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  583.656272][ T5837] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  583.664949][ T5837] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  583.673797][ T5837] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  583.682288][ T5837] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  584.362784][ T5837] Bluetooth: hci4: unexpected event 0x36 length: 123 > 7
[  585.146218][T17051] chnl_net:caif_netlink_parms(): no params data found
[  585.565971][T17051] bridge0: port 1(bridge_slave_0) entered blocking state
[  585.573711][T17051] bridge0: port 1(bridge_slave_0) entered disabled state
[  585.634483][T17051] bridge_slave_0: entered allmulticast mode
[  585.675975][T17051] bridge_slave_0: entered promiscuous mode
[  585.719221][T17051] bridge0: port 2(bridge_slave_1) entered blocking state
[  585.743369][ T5837] Bluetooth: hci2: command tx timeout
[  585.778460][T17051] bridge0: port 2(bridge_slave_1) entered disabled state
[  585.822177][T17051] bridge_slave_1: entered allmulticast mode
[  585.851381][T17051] bridge_slave_1: entered promiscuous mode
[  585.998497][T17051] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  586.072139][T17051] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  586.227617][T17051] team0: Port device team_slave_0 added
[  586.276839][T17051] team0: Port device team_slave_1 added
[  586.379213][T17051] batman_adv: batadv0: Adding interface: batadv_slave_0
[  586.424756][T17051] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  586.533598][T17051] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  586.594771][T17051] batman_adv: batadv0: Adding interface: batadv_slave_1
[  586.632086][T17051] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  586.739018][T17051] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  586.932495][T17051] hsr_slave_0: entered promiscuous mode
[  586.964768][T17051] hsr_slave_1: entered promiscuous mode
[  586.994635][T17051] debugfs: 'hsr0' already exists in 'hsr'
[  587.021526][T17051] Cannot create hsr debugfs directory
[  587.402112][T17141] ------------[ cut here ]------------
[  587.407955][T17141] WARNING: kernel/tracepoint.c:358 at tracepoint_probe_unregister+0x894/0xd70, CPU#0: syz.3.2502/17141
[  587.419116][T17141] Modules linked in:
[  587.423241][T17141] CPU: 0 UID: 0 PID: 17141 Comm: syz.3.2502 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  587.434400][T17141] Tainted: [L]=SOFTLOCKUP
[  587.438717][T17141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  587.448839][T17141] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70
[  587.455533][T17141] Code: 41 5e 41 5f c3 cc cc cc cc e8 d8 21 fe ff 48 c7 c6 a0 25 c0 81 48 89 df e8 19 ab e3 ff eb 9f bb fe ff ff ff e8 bd 21 fe ff 90 <0f> 0b 90 eb 91 e8 b2 21 fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff
[  587.476393][T17141] RSP: 0018:ffffc900046df878 EFLAGS: 00010283
[  587.482466][T17141] RAX: 000000000003537a RBX: 00000000fffffffe RCX: ffffc900181dd000
[  587.490953][T17141] RDX: 0000000000080000 RSI: ffffffff81c036e3 RDI: 0000000000000005
[  587.499629][T17141] RBP: ffff88801b6fe7c8 R08: 0000000000000005 R09: 0000000000000000
[  587.508154][T17141] R10: 0000000000000001 R11: ffff88803177e6b0 R12: ffffffff81c66a30
[  587.516266][T17141] R13: 0000000000000002 R14: 0000000000000000 R15: ffffffff8e755000
[  587.524473][T17141] FS:  00007f00dde1c6c0(0000) GS:ffff8881248fc000(0000) knlGS:0000000000000000
[  587.533458][T17141] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  587.540095][T17141] CR2: 0000001b2ec04ff8 CR3: 00000000556ca000 CR4: 00000000003526f0
[  587.548099][T17141] Call Trace:
[  587.551364][T17141]  <TASK>
[  587.554318][T17141]  ? __pfx_tracepoint_probe_unregister+0x10/0x10
[  587.560660][T17141]  tracing_stop_cmdline_record+0x66/0xa0
[  587.566346][T17141]  __ftrace_event_enable_disable+0x700/0x800
[  587.572808][T17141]  ftrace_event_set_open+0x232/0x380
[  587.578617][T17141]  do_dentry_open+0x748/0x1590
[  587.583381][T17141]  ? __pfx_ftrace_event_set_open+0x10/0x10
[  587.589240][T17141]  vfs_open+0x82/0x3f0
[  587.593301][T17141]  path_openat+0x2078/0x3140
[  587.598389][T17141]  ? __pfx_path_openat+0x10/0x10
[  587.603345][T17141]  do_filp_open+0x20b/0x470
[  587.608318][T17141]  ? __pfx_do_filp_open+0x10/0x10
[  587.613367][T17141]  ? alloc_fd+0x471/0x7d0
[  587.617771][T17141]  do_sys_openat2+0x121/0x290
[  587.622455][T17141]  ? __pfx_do_sys_openat2+0x10/0x10
[  587.627744][T17141]  ? find_held_lock+0x2b/0x80
[  587.632428][T17141]  __x64_sys_openat+0x174/0x210
[  587.637340][T17141]  ? __pfx___x64_sys_openat+0x10/0x10
[  587.642715][T17141]  do_syscall_64+0xcd/0xf80
[  587.647318][T17141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.653584][T17141] RIP: 0033:0x7f00dcf8f7c9
[  587.658011][T17141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  587.678204][T17141] RSP: 002b:00007f00dde1c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  587.687069][T17141] RAX: ffffffffffffffda RBX: 00007f00dd1e6090 RCX: 00007f00dcf8f7c9
[  587.695105][T17141] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  587.703578][T17141] RBP: 00007f00dd013f91 R08: 0000000000000000 R09: 0000000000000000
[  587.711545][T17141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  587.719974][T17141] R13: 00007f00dd1e6128 R14: 00007f00dd1e6090 R15: 00007ffd90ac07e8
[  587.728043][T17141]  </TASK>
[  587.731086][T17141] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  587.738371][T17141] CPU: 0 UID: 0 PID: 17141 Comm: syz.3.2502 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  587.749308][T17141] Tainted: [L]=SOFTLOCKUP
[  587.753620][T17141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  587.763659][T17141] Call Trace:
[  587.766928][T17141]  <TASK>
[  587.769845][T17141]  dump_stack_lvl+0x3d/0x1f0
[  587.774435][T17141]  vpanic+0x640/0x6f0
[  587.778407][T17141]  ? tracepoint_probe_unregister+0x894/0xd70
[  587.784404][T17141]  panic+0xca/0xd0
[  587.788112][T17141]  ? __pfx_panic+0x10/0x10
[  587.792521][T17141]  check_panic_on_warn+0xab/0xb0
[  587.797448][T17141]  __warn+0x108/0x3c0
[  587.801419][T17141]  __report_bug+0x2a0/0x520
[  587.805911][T17141]  ? tracepoint_probe_unregister+0x894/0xd70
[  587.811885][T17141]  ? __pfx___report_bug+0x10/0x10
[  587.816901][T17141]  ? rcu_is_watching+0x12/0xc0
[  587.821685][T17141]  ? trace_contention_end+0xdd/0x110
[  587.826960][T17141]  ? __mutex_lock+0x27b/0x1ca0
[  587.831719][T17141]  ? tracepoint_probe_unregister+0x9c/0xd70
[  587.837604][T17141]  ? tracepoint_probe_unregister+0x894/0xd70
[  587.843583][T17141]  report_bug+0xb2/0x220
[  587.847820][T17141]  ? tracepoint_probe_unregister+0x894/0xd70
[  587.853794][T17141]  handle_bug+0x127/0x260
[  587.858112][T17141]  exc_invalid_op+0x17/0x50
[  587.862600][T17141]  asm_exc_invalid_op+0x1a/0x20
[  587.867436][T17141] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70
[  587.874018][T17141] Code: 41 5e 41 5f c3 cc cc cc cc e8 d8 21 fe ff 48 c7 c6 a0 25 c0 81 48 89 df e8 19 ab e3 ff eb 9f bb fe ff ff ff e8 bd 21 fe ff 90 <0f> 0b 90 eb 91 e8 b2 21 fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff
[  587.893616][T17141] RSP: 0018:ffffc900046df878 EFLAGS: 00010283
[  587.899680][T17141] RAX: 000000000003537a RBX: 00000000fffffffe RCX: ffffc900181dd000
[  587.907653][T17141] RDX: 0000000000080000 RSI: ffffffff81c036e3 RDI: 0000000000000005
[  587.915626][T17141] RBP: ffff88801b6fe7c8 R08: 0000000000000005 R09: 0000000000000000
[  587.923682][T17141] R10: 0000000000000001 R11: ffff88803177e6b0 R12: ffffffff81c66a30
[  587.931658][T17141] R13: 0000000000000002 R14: 0000000000000000 R15: ffffffff8e755000
[  587.939619][T17141]  ? __pfx_probe_sched_switch+0x10/0x10
[  587.945162][T17141]  ? tracepoint_probe_unregister+0x893/0xd70
[  587.951143][T17141]  ? tracepoint_probe_unregister+0x893/0xd70
[  587.957128][T17141]  ? __pfx_tracepoint_probe_unregister+0x10/0x10
[  587.963458][T17141]  tracing_stop_cmdline_record+0x66/0xa0
[  587.969083][T17141]  __ftrace_event_enable_disable+0x700/0x800
[  587.975053][T17141]  ftrace_event_set_open+0x232/0x380
[  587.980324][T17141]  do_dentry_open+0x748/0x1590
[  587.985090][T17141]  ? __pfx_ftrace_event_set_open+0x10/0x10
[  587.990886][T17141]  vfs_open+0x82/0x3f0
[  587.994948][T17141]  path_openat+0x2078/0x3140
[  587.999535][T17141]  ? __pfx_path_openat+0x10/0x10
[  588.004470][T17141]  do_filp_open+0x20b/0x470
[  588.008963][T17141]  ? __pfx_do_filp_open+0x10/0x10
[  588.013989][T17141]  ? alloc_fd+0x471/0x7d0
[  588.018312][T17141]  do_sys_openat2+0x121/0x290
[  588.022977][T17141]  ? __pfx_do_sys_openat2+0x10/0x10
[  588.028165][T17141]  ? find_held_lock+0x2b/0x80
[  588.032834][T17141]  __x64_sys_openat+0x174/0x210
[  588.037670][T17141]  ? __pfx___x64_sys_openat+0x10/0x10
[  588.043053][T17141]  do_syscall_64+0xcd/0xf80
[  588.047566][T17141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.053449][T17141] RIP: 0033:0x7f00dcf8f7c9
[  588.057855][T17141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  588.077452][T17141] RSP: 002b:00007f00dde1c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  588.085859][T17141] RAX: ffffffffffffffda RBX: 00007f00dd1e6090 RCX: 00007f00dcf8f7c9
[  588.093813][T17141] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  588.101771][T17141] RBP: 00007f00dd013f91 R08: 0000000000000000 R09: 0000000000000000
[  588.109722][T17141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  588.117679][T17141] R13: 00007f00dd1e6128 R14: 00007f00dd1e6090 R15: 00007ffd90ac07e8
[  588.125648][T17141]  </TASK>
[  588.128712][T17141] Kernel Offset: disabled
[  588.133026][T17141] Rebooting in 86400 seconds..