last executing test programs:

3m29.672778942s ago: executing program 0 (id=561):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0xa, 0x5, 0x0)
setsockopt$auto(r0, 0x10000000084, 0x7f, 0x0, 0x6) (async)
setsockopt$auto(r0, 0x10000000084, 0x7f, 0x0, 0x6)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, &(0x7f0000000180), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, &(0x7f0000000180), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
io_uring_register$auto_IORING_REGISTER_IOWQ_AFF(0xffffffffffffffff, 0x11, &(0x7f0000000000)="9c16621980be2b98adfcf06e9275c9c0ce45db9a38f354817a78086f0b44577564eb53086571f7339bec5b21b900a42efaaeb5bab153357b3ee02adbce50", 0x10)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x140242, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
execveat$auto(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
ioctl$auto_USBDEVFS_BULK(r3, 0xc0185502, &(0x7f0000000300)={0x7, 0x0, 0x0, &(0x7f0000000280)="26c3037f36b4cb021dfa3b5f1209ca40cc1b308a156b853f2b5dd78bab704a8788c977a5e4b80dadc78f159201c86d0f0c413398a9f469621e23d92f20d1a752f55ae20be416a9bbe813f89a2218e8df49"}) (async)
ioctl$auto_USBDEVFS_BULK(r3, 0xc0185502, &(0x7f0000000300)={0x7, 0x0, 0x0, &(0x7f0000000280)="26c3037f36b4cb021dfa3b5f1209ca40cc1b308a156b853f2b5dd78bab704a8788c977a5e4b80dadc78f159201c86d0f0c413398a9f469621e23d92f20d1a752f55ae20be416a9bbe813f89a2218e8df49"})
open(0x0, 0x261c2, 0x84) (async)
r4 = open(0x0, 0x261c2, 0x84)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r4, 0x0, 0x6}, 0xc)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff) (async)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_TDLS_CHANNEL_SWITCH(r4, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x50, r5, 0x400, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0xd143}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x1}, @NL80211_ATTR_SCAN_FREQ_KHZ={0x2c, 0x124, 0x0, 0x1, [@generic="34e94af07c6bba46c3763339ecd7c31e73cb247ed4c49577e0a453971ea29fd65c3b8295b215d73e"]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4001}, 0x28000000)
read$auto(r2, 0x0, 0x20)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x10}, 0x3)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

3m28.729933417s ago: executing program 0 (id=564):
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000)
getrlimit$auto(0x3, 0x0)
fdatasync$auto(r0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
openat$auto_percpu_stats_fops_(0xffffffffffffff9c, 0x0, 0x303101, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000200)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\tC:\x84D\x1du\xb4\x9ab\xce\xa7TU\xff\xff\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\x036\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\xfc\xfd\xac\xd4\xbd\b\xb2\xa85\xd9\xd6\r\xc2\x97h\xa4\xeas\x90\xb3\xf7\x83\x11`V5;\xccg\"\xb8\r\xe1\x87j\xed\xe1\xb9WW\x82\\\"\xef\xb2\xc4M\xa0=ii\xfb\xdd\x90\xe0\xda\x10_\xffO\xbb\xb0\xf0<k\x1f\xa0[=\x86\xbaK,}\xd7\x89\t\xa6\x8e\xd8\xecY\'v\x94\xc4d\xca\x16I\a\xd3\xa8\x91\xfa\xe2KC\xc9\xb8\a?\x16y6\xa1\xed\xf8\xbf%],do\xbb\r\xf9Y\x8f\xa9m\xe7\xcey\xf1b\xc8\xee\xf5\x12\xc1\x11\x91N\xb6\xd2\x03\xd2J^\xbb1\xd5\x88l_\xacs(^\f\x10\x94\x8c\xaeR\xd4\x93[rn0\xa4\xb17\xd3a\b\x1e\x1f\xc01\\\xe3\xea\xd6i\xb1f\xc1\xf8\xd0_\x80\xa5\xe2X\x84dy\xe0\xca\xb7', 0x5597)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f00000000c0), 0x41e400, 0x0)
write$auto_cachefiles_daemon_fops_internal(r2, &(0x7f0000000180)="050015000000fafffb00000000e10041ff00000000", 0x15)
mmap$auto(0xfffffffffffffff9, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/fs/netfs/requests\x00', 0x8000, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000300)=""/234, 0xea)
r4 = socket(0xa, 0x801, 0x84)
r5 = openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/error_log\x00', 0x80000, 0x0)
pread64$auto(r5, &(0x7f0000000200)='\\.[@(\x00', 0x7e91, 0x2)
r6 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/036/001\x00', 0x802, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r6, 0xc0185500, &(0x7f0000000000)={0x23, 0x3, 0x5, 0x9, 0x8, 0xd2a0, &(0x7f0000000100)})
socketpair$auto(0x1, 0xfffffffe, 0x1, 0x0)
bpf$auto(0x11, 0xfffffffffffffffc, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
setsockopt$auto(r4, 0x84, 0x14, 0x0, 0x27)
setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27)
r7 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
socket(0x28, 0xa, 0xfffffffe)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008012, r7, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/dummy_hcd.3/usb4/power/autosuspend\x00', 0xc0002, 0x0)

3m27.240483648s ago: executing program 0 (id=568):
mmap$auto(0x0, 0x202000c, 0x3, 0xeb4, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
symlink$auto(&(0x7f0000000080)='./cgroup.cpu/cpuset.cpus\x00', &(0x7f00000000c0)='./cgroup.cpu/cpuset.cpus\x00')
mmap$auto(0x0, 0x6, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="770e0000", @ANYRES16=0x0, @ANYBLOB="080028bd7000fddbdf250300000008000600020000000c0014"], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x405b)
mmap$auto(0x0, 0x40000c, 0x45bd, 0x9b72, 0x2, 0x8000)
epoll_create$auto(0x4)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
socket(0x2, 0x1, 0x106)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdc, 0xeb5, 0x401, 0x41)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="110b27bd7000ffdbdf250900000800030000", @ANYRES32=0x0, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x1000)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc045}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_0={0x8000, 0x1, 0x8, 0x7, 0x5, 0xffffffffffffffff, 0x80000001, "787d66da4a620eab7f736e854ef61529", 0x0, 0xffffffffffffffff, 0x7, 0xffff4e8b, 0x2, 0x1}, 0x7)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)

3m26.905090809s ago: executing program 0 (id=569):
r0 = ioctl$auto_NS_GET_PID_IN_PIDNS(0xffffffffffffffff, 0x8004b708, &(0x7f0000000000)=0xe1)
read$auto(r0, &(0x7f0000000040)='\x00', 0xffff)
fadvise64$auto_POSIX_FADV_NOREUSE(r0, 0x600, 0x7, 0x5) (async)
r1 = epoll_create$auto(0xff)
r2 = openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000080), 0x24000, 0x0) (async)
openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) (async)
r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x181202, 0x0)
ioctl$auto_VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f0000000140)={0x6, <r4=>r0})
sendfile$auto(r1, r4, &(0x7f0000000180)=0x5, 0xe)
r5 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f00000001c0), 0x44000, 0x0)
read$auto(r5, &(0x7f0000000200)='/dev/full\x00', 0x6) (async)
readv$auto(r2, &(0x7f0000000300)={&(0x7f0000000240)="670f904f173c9d6b351b6f10d3efd619db47a87dfa77219abaaee3f8a2dbc00ac3a0addac3f1fa336189e028333b87dbe615698f5a0d43578a07b30c9c3a10fd668928236bf9cd38736433515c1f756423c0ed136e9bd3bf8ee367ea0001d26220af5270618c303a5019db6d0685a5af8fe7c9e8bd80c83668b32ad131d4a20345c41b60bbb511545f8a8070de02fb677c5af7b27b8d807de474aa6807c46b39d78320ca4769a4beec7519c249", 0x9}, 0xfffffffffffffffe) (async)
setsockopt$auto_SO_TIMESTAMPING_OLD(r2, 0x0, 0x25, &(0x7f0000000340)='#\x00', 0x6) (async)
r6 = openat$auto_wakeup_sources_stats_fops_wakeup(0xffffffffffffff9c, &(0x7f0000000380), 0x484840, 0x0)
r7 = pidfd_getfd$auto(r6, r3, 0x8)
socket(0x1a, 0xa, 0x6c83) (async)
read$auto_proc_reg_file_ops_compat_inode(r7, &(0x7f00000003c0)=""/4096, 0x1000) (async)
r8 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/sys/net/ipv6/conf/veth1_to_hsr/router_solicitation_interval\x00', 0x402041, 0x0)
r9 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001440)='/dev/video46\x00', 0x208841, 0x0)
fcntl$auto_F_SETLEASE(r9, 0x400, 0x7)
r10 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001480)='/dev/sequencer2\x00', 0x101000, 0x0) (async)
ioctl$auto_XFS_IOC_ATTRMULTI_BY_HANDLE(r1, 0x4048587b, &(0x7f0000002740)={{0xffffffffffffffff, &(0x7f00000014c0)="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", 0x40000000, &(0x7f00000024c0)="cc78fed0efc2956cc1918d2eec7103", 0x1ff, &(0x7f0000002500)="3a8f31a36f0e908e288e04dbe02467262aba2275ce0c360f0f43e64d123a20ef8ffbd59014988646d9f598c4cb67bc5523449ad98fb7efc08fefbf7fc0f2cd2dcf054406b975879f337572de262db82755b7ec6f1e27023da3b2f338ca7e2f6ccdde7e60840dceae732fd28f13a3007737eb754e98af95fb3741ff9251f3a6afd055b8d280733430f5a1cde1d4e5f5b96a306e26b7f975ac73da00003d93c2fb6db777eeb94b94368747b8b3ccd80ba48d8e31c52c5c6c81a939e6fb78844f885ff4b9", &(0x7f0000002600)=0x1}, 0x5, &(0x7f0000002700)={0x20cd, 0x3, &(0x7f0000002640)="5c2d0a0ee5888b5f6e669c6d", &(0x7f0000002680)="58deaa37973a3a99616b2a339063282f7f125b0b129fef55ee3b10ecfc6181cbb286687d4da2b49e46dd9d69bbf26e6c620ee3afe55a0f40372725fc3a636545ad23ee9d44d385935c0f4902a0", 0x3, 0x619d}})
r11 = openat$auto_regulator_summary_fops_(0xffffffffffffff9c, &(0x7f00000027c0), 0x200, 0x0)
fallocate$auto(r11, 0x94b4, 0xac, 0x81) (async)
ioctl$auto_FS_IOC_ZERO_RANGE(r8, 0x40305839, 0x7797) (async)
read$auto_mISDN_fops_timerdev(r1, &(0x7f0000002800)=""/210, 0xd2) (async)
fsconfig$auto_XFS_DAX_ALWAYS(r3, 0x8, &(0x7f0000002900)=',+\x00', &(0x7f0000002940)="eda278ea5bc9c45aa37ace97f58b6de0d6e98f6309dc8d05313d7720e7adf35315aa4cdb61ee9a8022c42cb77b1f641f8dd705e93eca4d4def2a3a0c8f68b86223", 0x1) (async)
r12 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000002a00), r1)
sendmsg$auto_NFC_CMD_GET_SE(r10, &(0x7f0000002b00)={&(0x7f00000029c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000002ac0)={&(0x7f0000002a40)={0x44, r12, 0x20, 0x70bd25, 0x25dfdbfc, {}, [@NFC_ATTR_SE_INDEX={0x8, 0x15, 0x5}, @NFC_ATTR_VENDOR_SUBCMD={0x8, 0x1e, 0x8000}, @NFC_ATTR_DEVICE_NAME={0xe, 0x2, '/dev/full\x00'}, @NFC_ATTR_VENDOR_SUBCMD={0x8, 0x1e, 0x3}, @NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x7}]}, 0x44}, 0x1, 0x0, 0x0, 0x4010}, 0x20000024)

3m26.704220266s ago: executing program 0 (id=571):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
rseq$auto(0x0, 0x1a, 0x5d7, 0x2)
mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000)
r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r1, 0x65, 0x1, 0xffffffffffffffff, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c)
sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, 0x0, 0x8000800)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/030/001\x00', 0x20802, 0x0)
syz_genetlink_get_family_id$auto_nfc(0x0, r3)
sendmsg$auto_NFC_CMD_DISABLE_SE(r0, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x181240, 0x0)
io_setup$auto(0x207ffc, &(0x7f0000000180))
r4 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0)
syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), r2)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x2}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"})
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
r6 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x8a403, 0x0)
ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r6, 0x7af, 0x0)
ioctl$auto(0x3, 0xae41, r5)

3m25.188569601s ago: executing program 0 (id=576):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
r0 = socket(0x10, 0x2, 0x0) (async, rerun: 32)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
read$auto(r0, 0x0, 0x6) (async, rerun: 64)
r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x2, 0x0) (rerun: 64)
ioctl$auto(r1, 0x900064b0, 0x2000000000000c38) (async)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) (async, rerun: 32)
r2 = socket(0x10, 0x2, 0x6)
msgctl$auto_IPC_RMID(0x2, 0x0, &(0x7f0000000340)={{0x7, <r3=>0x0, 0xffffffffffffffff, 0x6, 0x5, 0x2, 0x8}, &(0x7f0000000280)=0xca, &(0x7f0000000300)=0x6, 0x8, 0x5, 0x5b5, 0xb, 0x28000000000, 0xcd7, 0x9, 0x3, @raw=0x3})
r4 = getpid()
process_vm_readv$auto(r4, &(0x7f0000000080)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
sendmsg$auto_NL802154_CMD_DEL_SEC_DEV(r0, &(0x7f0000001780)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000001740)={&(0x7f00000003c0)={0x1344, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@NL802154_ATTR_SUPPORTED_COMMANDS={0x1308, 0x19, 0x0, 0x1, [@nested={0x14, 0x120, 0x0, 0x1, [@nested={0x4, 0x129}, @typed={0x8, 0x3d, 0x0, 0x0, @uid=r3}, @typed={0x4, 0x141}]}, @generic="ac6c23487b31a1d87007b06ae8c988ee3d946d62a08b4bd5f805e77ad5d04a724f120bafd3afbe5f9825057c6232d9ddbc09529377726455a59ee0df33c8500b02d645ddbcc1874a75d7eab8062eeb8aa443a595e88c0cf4b5d78ee1f561d7e19c71c6b3b7743690872b0c02ac9cc2d2223bb2588d43ac9553a06871ec2fcf8f6b60fc9fb1d9d5b53c9a3936", @nested={0x145, 0xba, 0x0, 0x1, [@generic="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", @nested={0x4, 0xe4}, @generic="a74c61cbb11f981a3725a7f02e360f319c55cb7ca7a4bbe881aa41a49f6fe08ccc9f", @nested={0x4, 0xab}, @nested={0x4, 0x1c}, @typed={0x14, 0x13c, 0x0, 0x0, @ipv6=@private2}]}, @generic="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", @nested={0x23, 0x22, 0x0, 0x1, [@typed={0x8, 0x53, 0x0, 0x0, @str='\xc5+-\x00'}, @generic="ade955d6314e", @nested={0x4, 0x130}, @generic="6c361f48a8d991043fb7f291c5"]}, @typed={0x8, 0x30, 0x0, 0x0, @pid=r4}, @nested={0x24, 0xeb, 0x0, 0x1, [@nested={0x4, 0x136}, @typed={0x4, 0xac}, @typed={0x11, 0xdd, 0x0, 0x0, @binary="16d6a34523f9c71d61e08aac10"}, @nested={0x4, 0xde}]}, @generic="9d193eb7a7151daab7a2488ff97c1bf6daef78b9b765cea1cd7f70460c7d0fb8ede9b88d57d6788cb92fcb7ae19e47e668c32004374e", @generic="866a6bb0000a3b7bf7ec73a7e2dc2f7ff1bcf2fafeaf8b194aff34b997f18cf22a13c38669680fe51016fc71e968bab0d514b900c4d6d9166c5a50", @generic="1681b87ace2c1a07ef7eabe4842a55985f3beb461661631d97183d7699fd7127ed7fd471c1b5f99dc4a3a31f6867f0166af37fcf40d0a9767f45388b9d0c0226a0f7dbb7a137945ad557dc4281b7c20e4b043e55ad16daf6e86540"]}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x4}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x9}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0xfff7}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x4}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x2c, 0x92f0}]}, 0x1344}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYRES32=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000801) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) (async, rerun: 32)
syncfs$auto(r0) (async, rerun: 32)
socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x80000000000000a, 0x2, 0x0)
socket(0xa, 0x801, 0x84)
move_pages$auto(0x1, 0x400000000f54, 0x0, 0x0, 0x0, 0x8000000000000000) (async, rerun: 32)
setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010600bd7000fbdbdf25"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

3m10.129129857s ago: executing program 32 (id=576):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
r0 = socket(0x10, 0x2, 0x0) (async, rerun: 32)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
read$auto(r0, 0x0, 0x6) (async, rerun: 64)
r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x2, 0x0) (rerun: 64)
ioctl$auto(r1, 0x900064b0, 0x2000000000000c38) (async)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) (async, rerun: 32)
r2 = socket(0x10, 0x2, 0x6)
msgctl$auto_IPC_RMID(0x2, 0x0, &(0x7f0000000340)={{0x7, <r3=>0x0, 0xffffffffffffffff, 0x6, 0x5, 0x2, 0x8}, &(0x7f0000000280)=0xca, &(0x7f0000000300)=0x6, 0x8, 0x5, 0x5b5, 0xb, 0x28000000000, 0xcd7, 0x9, 0x3, @raw=0x3})
r4 = getpid()
process_vm_readv$auto(r4, &(0x7f0000000080)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
sendmsg$auto_NL802154_CMD_DEL_SEC_DEV(r0, &(0x7f0000001780)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000001740)={&(0x7f00000003c0)={0x1344, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@NL802154_ATTR_SUPPORTED_COMMANDS={0x1308, 0x19, 0x0, 0x1, [@nested={0x14, 0x120, 0x0, 0x1, [@nested={0x4, 0x129}, @typed={0x8, 0x3d, 0x0, 0x0, @uid=r3}, @typed={0x4, 0x141}]}, @generic="ac6c23487b31a1d87007b06ae8c988ee3d946d62a08b4bd5f805e77ad5d04a724f120bafd3afbe5f9825057c6232d9ddbc09529377726455a59ee0df33c8500b02d645ddbcc1874a75d7eab8062eeb8aa443a595e88c0cf4b5d78ee1f561d7e19c71c6b3b7743690872b0c02ac9cc2d2223bb2588d43ac9553a06871ec2fcf8f6b60fc9fb1d9d5b53c9a3936", @nested={0x145, 0xba, 0x0, 0x1, [@generic="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", @nested={0x4, 0xe4}, @generic="a74c61cbb11f981a3725a7f02e360f319c55cb7ca7a4bbe881aa41a49f6fe08ccc9f", @nested={0x4, 0xab}, @nested={0x4, 0x1c}, @typed={0x14, 0x13c, 0x0, 0x0, @ipv6=@private2}]}, @generic="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", @nested={0x23, 0x22, 0x0, 0x1, [@typed={0x8, 0x53, 0x0, 0x0, @str='\xc5+-\x00'}, @generic="ade955d6314e", @nested={0x4, 0x130}, @generic="6c361f48a8d991043fb7f291c5"]}, @typed={0x8, 0x30, 0x0, 0x0, @pid=r4}, @nested={0x24, 0xeb, 0x0, 0x1, [@nested={0x4, 0x136}, @typed={0x4, 0xac}, @typed={0x11, 0xdd, 0x0, 0x0, @binary="16d6a34523f9c71d61e08aac10"}, @nested={0x4, 0xde}]}, @generic="9d193eb7a7151daab7a2488ff97c1bf6daef78b9b765cea1cd7f70460c7d0fb8ede9b88d57d6788cb92fcb7ae19e47e668c32004374e", @generic="866a6bb0000a3b7bf7ec73a7e2dc2f7ff1bcf2fafeaf8b194aff34b997f18cf22a13c38669680fe51016fc71e968bab0d514b900c4d6d9166c5a50", @generic="1681b87ace2c1a07ef7eabe4842a55985f3beb461661631d97183d7699fd7127ed7fd471c1b5f99dc4a3a31f6867f0166af37fcf40d0a9767f45388b9d0c0226a0f7dbb7a137945ad557dc4281b7c20e4b043e55ad16daf6e86540"]}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x4}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x9}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0xfff7}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x4}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x2c, 0x92f0}]}, 0x1344}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYRES32=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000801) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) (async, rerun: 32)
syncfs$auto(r0) (async, rerun: 32)
socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x80000000000000a, 0x2, 0x0)
socket(0xa, 0x801, 0x84)
move_pages$auto(0x1, 0x400000000f54, 0x0, 0x0, 0x0, 0x8000000000000000) (async, rerun: 32)
setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010600bd7000fbdbdf25"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

2m30.236350455s ago: executing program 3 (id=701):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101200, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae90, &(0x7f0000000300)={0x2, 0x0, [{0x40000001, 0x7ff, 0x8}]})
userfaultfd$auto(0x7ff)
mmap$auto(0x9, 0x2, 0x3, 0x19, r2, 0x8002)
openat$auto_random_fops_random(0xffffffffffffff9c, 0x0, 0x4200, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) (async)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x6)
socket(0x2, 0x1, 0x0) (async)
r4 = socket(0x2, 0x1, 0x0)
bind$auto(r4, &(0x7f0000000040)=@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x6a)
mkdir$auto(&(0x7f0000000180)='}[,&*}\x00', 0x4f5f) (async)
mkdir$auto(&(0x7f0000000180)='}[,&*}\x00', 0x4f5f)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x14d, 0x0, 0x2, 0x0, 0x1f, 0xb}, 0x800008}, 0x5, 0x20000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0xc, 0xd52, 0x8000000000000000, 0x0) (async)
socketpair$auto(0xc, 0xd52, 0x8000000000000000, 0x0)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x582, 0x0)
mmap$auto(0x0, 0x2000b, 0xdf, 0x16, 0x401, 0x9) (async)
mmap$auto(0x0, 0x2000b, 0xdf, 0x16, 0x401, 0x9)
r5 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0)
read$auto(r5, 0x0, 0x7fff)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
get_robust_list$auto(0x0, 0x0, 0x0)

2m29.864405463s ago: executing program 3 (id=703):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
rseq$auto(0x0, 0x1a, 0x5d7, 0x2)
mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000)
r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r1, 0x65, 0x1, 0xffffffffffffffff, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c)
sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, 0x0, 0x8000800)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/030/001\x00', 0x20802, 0x0)
syz_genetlink_get_family_id$auto_nfc(0x0, r3)
sendmsg$auto_NFC_CMD_DISABLE_SE(r0, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x181240, 0x0)
io_setup$auto(0x207ffc, &(0x7f0000000180))
syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), r2)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x2}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"})
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r4, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
r6 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x8a403, 0x0)
ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r6, 0x7af, 0x0)
ioctl$auto(0x3, 0xae41, r5)

2m27.798360228s ago: executing program 3 (id=708):
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0xffffffffffffffff, 0x300000000000)
socket(0x2, 0x2, 0x88)
connect$auto(0x3, 0x0, 0x55)
io_uring_setup$auto(0x86, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x48041, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/miimon\x00', 0x303b42, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x2, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
socketpair$auto(0x5b, 0x1, 0x420000, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000a00000008000200", @ANYRES32=0x0, @ANYBLOB="080140"], 0x68}, 0x1, 0x0, 0x0, 0x18a64d47ddeca1f0}, 0x40090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
r2 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r2, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)
ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)

2m27.415956835s ago: executing program 3 (id=711):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
eventfd$auto(0x4)
socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000640)='/dev/snd/controlC2\x00', 0x8080, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, 0x0)
r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0)
write$auto_fuse_dev_operations_fuse_i(r1, &(0x7f0000000440)="1100000007000000000000000000000001", 0x11)
fcntl$auto_F_UNLCK(r1, 0x8, 0x2)

2m26.986973123s ago: executing program 3 (id=714):
mmap$auto(0xc13, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88ds\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
r1 = socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
getsockopt$auto_SO_SNDLOWAT(r1, 0x0, 0x13, 0x0, 0x0) (rerun: 32)
read$auto(r0, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x400000003) (async, rerun: 32)
r3 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (rerun: 32)
r4 = getpid()
process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000040)="8c9700089d1b208365d5b5d112dbab029ed13881d2f2c7ba2eb01c3db79f77fdc2bb50c64a925009dff4cd1aca925c57100112d88f73348a54396800ed598a0e5500d7c0cbb6b1e91d", 0x40000000001243}, 0x4, 0x0) (async)
ioctl$auto(r3, 0x400454ca, 0x38)
mmap$auto(0x3ff, 0x4020009, 0xdf, 0xeb1, r2, 0x8000) (async, rerun: 64)
r5 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000a00)='/dev/sg0\x00', 0x101000, 0x0) (rerun: 64)
process_madvise$auto_MADV_NORMAL(r1, &(0x7f00000001c0)={&(0x7f0000000240)="531bedf42bf4963ec068477080ff926376b948073c3744a1b3526146b0d01a85e700b7a079704aa5f2010bb43013a84682c2bfa9af640441ba2ba18ab28584fb17f0202b2312c8f547af80622a8915ebd0fbd599ba39009043b3cba56cbd5e9e1c606058e59d26330edb1e9ab49e6836d3ec0fa3d6153c817fc53c9dac72da47f9819a3bc70f88f3f63d6a7750a6a23e1b28fe", 0x7}, 0x5, 0x0, 0x6) (async, rerun: 64)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000300), 0xffffffffffffffff) (async, rerun: 64)
ioctl$auto_BLKSECTGET2(r5, 0x1267, 0x200000000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0xa, 0x2, 0x73) (async)
r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x20b42, 0x0)
write$auto(0x3, 0x0, 0x100082) (async)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r6, 0x40045010, 0x0) (async)
write$auto(0x3, 0x0, 0xffd8) (async)
close_range$auto(0x2, 0x8, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r8 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_RPC_STATUS_GET(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000006c0)={0x14, r8, 0x309, 0x70bd27, 0x25dedbfc}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x20000000)

2m22.912387811s ago: executing program 3 (id=722):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xfffffffffffeffff, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
clock_getres$auto(0x5, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
sysfs$auto(0x2, 0x42, 0x0)
write$auto(0x3, 0x0, 0xfdf3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = gettid()
rt_sigqueueinfo$auto(r0, 0xb, &(0x7f00000001c0)={@siginfo_0_0={0x3, 0x401, 0xfffffffb, @_timer={r0, 0xd, @sival_ptr=0x0, 0x62}}})
ptrace$auto_PTRACE_SETSIGMASK(0x420b, r0, 0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0x20499d, 0x9)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)

2m7.977770328s ago: executing program 33 (id=722):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xfffffffffffeffff, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
clock_getres$auto(0x5, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
sysfs$auto(0x2, 0x42, 0x0)
write$auto(0x3, 0x0, 0xfdf3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = gettid()
rt_sigqueueinfo$auto(r0, 0xb, &(0x7f00000001c0)={@siginfo_0_0={0x3, 0x401, 0xfffffffb, @_timer={r0, 0xd, @sival_ptr=0x0, 0x62}}})
ptrace$auto_PTRACE_SETSIGMASK(0x420b, r0, 0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0x20499d, 0x9)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)

10.173037411s ago: executing program 2 (id=1128):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = io_uring_setup$auto(0x86, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r0)
sendmsg$auto_NL80211_CMD_SET_POWER_SAVE(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000180)={&(0x7f0000000940)=ANY=[@ANYBLOB="fc060000", @ANYRES16=r2, @ANYBLOB="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"], 0x6fc}, 0x1, 0x0, 0x0, 0x20000841}, 0x4004004)
sendfile$auto(r1, r1, 0x0, 0x7)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0x80302, 0x0)
write$auto(r3, &(0x7f0000000340)=',02.15.4 ]\x98\x0f7V\xd4l\xf2AC\x04\xecQ=\xa2\xce\nO}\x1d\xd7\xb5\x92\xf7\xb2\xc2\xddm\xfbR\xfb\x92x\xd8\xb2\x8a&\xda\\\xa1}&^\x03\x02\xf28\xfd|\xed~\a\xaf\x14\xb5.\x92\"-6.\xb2$\x88\xeb\xdc\x0f\xba$?c\x8b\xcb\xf4q\r\xf5<B5\x86\x94a90v\x8a\v\xb9\xd4\xe6\x94\x01e0u_4F\x87\x16>>}4\x99(\xb8D\x15\xb8\xc9U\x14\xd6r\xc9\x81\xbbI\xc9+^\x00\xf6\xb5\xd9\x1e\x89G?/\xc5\x86\xd0\xab\xb3\xfd\xc9?\xa7B\x1b\xdc\xff\xab\xb6~\x96\xd6\x9f\x1d\xfb\xa1dg\x9d\x8d]\xdek\x9c0\xea\xb3\nV\x1d\x10g\xaa\xf9\xf0\xc9\n\x8c\xf25G\x9c\x19\xe5\xd8\xa3\xee\x11\x12f\xd5o\x00\xeaY\n\xe0\x9f\r\xd4\x8e9G\x01\x04\xb2j\xbfYX\x9a)OQ\xedk\xb9\x85\x03c\xf3\x80\x10eG(\x94m81PL\x8d\xa47\x1a\x16\x11\xcd\xcdf\x15\r\x19\xc3\x90\xbe\x12\x85V\xeb\x8d\x97\xf0\x9c!\x86:\xe8\x8b\xa7@l', 0x3)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
statmount$auto(0x0, 0x0, 0x81, 0x40968c)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/pcm0p/oss\x00', 0xaa102, 0x0)
read$auto(r4, 0x0, 0xb4d5)
keyctl$auto(0xc, 0x2, 0x7, 0xc23a, 0xa)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
unshare$auto(0x1)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000080), r0)
fstatfs$auto(0x3, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
capset$auto(0x0, 0x0)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r6 = socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
getsockopt$auto(r6, 0x84, 0x11, 0x0, &(0x7f0000000000)=0x28000000)
capget$auto(0x0, &(0x7f0000000040)={0x0, 0x2000001, 0x3})
ioctl$auto(r5, 0x4b66, 0x1)

7.392390362s ago: executing program 1 (id=1136):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/seccomp/actions_logged\x00', 0x8202, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyr0\x00', 0x60540, 0x0)
socket(0x15, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
pipe2$auto(0x0, 0x0)
io_uring_setup$auto(0x7e1b, 0x0)
socket(0x2, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x5, 0x100000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptya7\x00', 0x101e81, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyde\x00', 0xa0102, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
poll$auto(&(0x7f0000000040)={0x3, 0x0, 0xa}, 0x5, 0x108)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="89d4a692931748a1b8e75ed86288c22b4c2051c65b114491ee4e770698bcbf352f00a1f557ad46ccc61a6f793b8eed7d5f1fba18e7113078b3256286f5401a29bd4abfcb89bff8dd06f086299cec32f38c6c98b77b2f55d01604414f9cc9eae33b4f62a416c38be82f539b676285de209523df19d5dc1ad28dcc2cb671982d96e9fdc9c1acd73029f0ddc53ef9ccbb737cf665cfcdda8e0e0a716c82e238ff5003", @ANYBLOB="00022abd7000fbdbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x2000c081)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)

7.141990781s ago: executing program 4 (id=1137):
keyctl$auto_KEYCTL_PKEY_QUERY(0x18, 0x1, 0xa, 0x7, 0x6)
r0 = socket(0x10, 0x2, 0x0)
mmap$auto(0xfffffffffffffffc, 0x864, 0x100801000000001, 0x80000011, r0, 0x803)
clock_adjtime$auto(0x0, &(0x7f0000000040)={0xfbb, 0x0, 0x7f, 0xfffffffff7fffffe, 0x602, 0x8, 0x7, 0x0, 0x7, 0xb, 0x1, {0x3ff, 0x7}, 0xfffffffffffffffa, 0x200000a5, 0xa, 0x13c, 0x0, 0xc3, 0x7, 0x2, 0x5, 0x90, 0xfffffff5})
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbf4250200080008000300000000001b0004"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x80)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="8b632abd7000fedbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
keyctl$auto_KEYCTL_PKEY_QUERY(0x18, 0x5, 0xfffffffffffffff0, 0x4, 0x6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/waiting_for_supplier\x00', 0x80800, 0x0)
keyctl$auto_KEYCTL_PKEY_QUERY(0x18, 0xffff, 0x1, 0x3, 0x34c)
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x1e, 0x4, 0x3, 0x8}, 0x6f4)
keyctl$auto_KEYCTL_PKEY_QUERY(0x18, 0x7f, 0x1, 0x6, 0x8000)

6.992750703s ago: executing program 2 (id=1138):
mmap$auto(0x0, 0x400008, 0x36, 0x1009b72, 0x2, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/net/erspan0/flags\x00', 0x2062, 0x0)
write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000080), 0xa000, 0x0)
r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x80440, 0x0)
ioctl$auto_I2C_TIMEOUT(r1, 0x702, 0x0)
r2 = socketpair$auto(0x409, 0x5, 0xffffffff, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0)
read$auto(r3, 0x0, 0x7)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/nbd3/queue/nr_requests\x00', 0x1, 0x0)
pwrite64$auto(r4, 0x0, 0xe, 0x7)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto_SO_BUSY_POLL(r2, 0x9f, 0x2e, &(0x7f0000000040)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r6 = socket(0x10, 0x2, 0x6)
sendmmsg$auto(r6, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000040), 0x7, 0xa505}, 0x800}, 0x5, 0x400a)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000280), r7)
sendmsg$auto_HWSIM_CMD_REGISTER(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000480)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="010028bd7000fddbdf2501000000c4e35b98861c9fac64212e33953292a5927be53c975db45f46dfa39b4ec0a276f7a9eda41cf34919583ff15660f0193bd406151108a2a1756daa11f6c48bef388d9dc13a044857cbc02c61e0f37f8965892d07573a2ec69262c0104e12cc7a4d4e571f529567000000"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r6, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="000000425259d03f59050cbd062f4fc832f1bc663f1289c467727ccb343249f3a0742667e5433721cf3c50732561a4865b", @ANYRES16=r8, @ANYBLOB="00022ebd7000ffdbdf25050000000800060007000000040019000800050001000000040019000300170002000000"], 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r9 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
inotify_init1$auto(0x3000000000000)
ioctl$auto(0x3, 0xae41, r9)
ioctl$auto_KVM_CREATE_VM(r5, 0xc048aeca, 0x0)

6.825228284s ago: executing program 4 (id=1139):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
unshare$auto(0x40000080)
write$auto(0xca, &(0x7f0000000000)='\x04>\x01\x01\x00\x00\x00\x01\x00\xb6', 0x7f)
socket(0x1e, 0x1, 0x0)
write$auto(0x1, 0x0, 0x80000000)
preadv$auto(0x3, 0x0, 0x3, 0x10000, 0x10)
sendmsg$auto_NL80211_CMD_TDLS_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0}, 0x4000)
r0 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000540), 0xa0100, 0x0)
lseek$auto(r0, 0x0, 0x0)
vmsplice$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x6, 0x8)

5.857486094s ago: executing program 2 (id=1140):
gettid()
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x54)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/mm/transparent_hugepage/khugepaged/pages_to_scan\x00', 0x1e2102, 0x0)
sendfile$auto(r1, r1, 0x0, 0x7fff)
setsockopt$auto_SO_DEBUG(r0, 0x6, 0x1, 0x0, 0xda3)
r2 = socket(0xa, 0x2, 0xfffffffc)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
rt_sigprocmask$auto(0x0, 0x0, 0x0, 0x8)
mmap$auto(0x0, 0x7, 0x4000000000df, 0x80000010, 0x401, 0x7ffd)
modify_ldt$auto(0x11, 0x0, 0x10)
ioctl$auto(0xc8, 0x400454ce, 0x5c8d)
setsockopt$auto(0x3, 0x0, 0x28, 0xfffffffffffffffc, 0x70)
r3 = syz_genetlink_get_family_id$auto_macsec(0x0, r2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x40, r5, 0x1, 0x2070bd26, 0x25dfdb78, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x11, 0x1, '\xc2\x00\x00\x00\x00\x00\x00\x00\n9\xac\xce\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x7}]}, 0x40}, 0x1, 0x0, 0x0, 0x801}, 0x80)
sendmsg$auto_MACSEC_CMD_DEL_TXSA(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x40, r3, 0x20, 0x70bd2a, 0x25dfdbfb, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x2c, 0x2, 0x0, 0x1, [@typed={0x14, 0xdd, 0x0, 0x0, @ipv6=@mcast1}, @nested={0x8, 0x7, 0x0, 0x1, [@nested={0x4, 0x6e}]}, @typed={0xc, 0x13, 0x0, 0x0, @u64=0x1}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000050}, 0x40000000)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x8402, 0x0)

5.82988007s ago: executing program 1 (id=1141):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyec\x00', 0x505001, 0x0)
settimeofday$auto(&(0x7f0000000040)={0xb, 0xf0e}, &(0x7f0000000080)={0x0, 0x3})
r1 = openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r2 = io_uring_setup$auto(0x7, &(0x7f0000000100)={0x8, 0xb163, 0x3, 0xfff, 0x4, 0x7, <r3=>r1, [0xbb58, 0x89, 0x8], {0x2, 0x9, 0x3, 0xff, 0x5, 0x1, 0x5, 0x4, 0x8}, {0x9, 0x3, 0x7, 0x3, 0x1, 0xffff, 0x2, 0x7, 0x8}})
r4 = eventfd$auto(0x74db)
ioctl$auto(r3, 0x7, r4)
r5 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x80, 0x0)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r4, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000340)={&(0x7f0000000200)={0x124, 0x0, 0x100, 0x70bd25, 0x25dfdbfc, {}, [@NL80211_ATTR_QOS_MAP={0x5a, 0xc7, "e0292973b6f2a6f1e76005e0187a60791c7ae731fe34057e28dad8101277608e39328082643465a5c3871159eac1a414b63c7403765e08a26133a1db56c2ee397cd83108b87c6788cebc318913cc9cf683a8c9d5fe06"}, @NL80211_ATTR_SCAN_FREQUENCIES={0xb4, 0x2c, 0x0, 0x1, [@generic="08c8c6fbc7b68c524e8ba71e55eb63d0399620fcdf032058432fc19e37d4930ffc4633ab8ce5cac407176cdb897e077e8ee3683d5b1f1185458f26de0e8b8fe8f0e386384944e74e51e98d1278c705ff8cee9e495aef349ff1cf32fea6cd985d59ec0ce8f1193ed7059bd542f305bf367170ac48c04c4833b4bd7e85499be2c985cbb741b446f245ba7b0c190997e81b6b8e66212cd331bdf354bbd50ae017424b17fea08e2e7d10", @typed={0x8, 0x9c, 0x0, 0x0, @fd=r5}]}]}, 0x124}, 0x1, 0x0, 0x0, 0x4000001}, 0x40081)
r6 = ioctl$auto_NS_GET_USERNS(r4, 0xb701, 0x0)
read$auto(r6, &(0x7f00000003c0)='/dev/ptyec\x00', 0x6)
r7 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000440), r4)
ioctl$auto_XFS_IOC_SWAPEXT(r2, 0xc0c0586d, &(0x7f0000000480)={0x1, @inferred=<r8=>r4, @inferred=<r9=>r0, 0x3, 0x1, '\x00', {0x100000001, 0x800, 0x5, <r10=>0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x0, 0x0, {0x9, 0x9}, {0x2, 0x3}, {0x4, 0x5}, 0x7, 0x1, 0x7, 0x9551, 0xffffffff, 0x3, 0x8470, 0x1, 0x4, 0x400, '\x00', 0x8, 0x5, 0x9, 0x99}})
r11 = syz_clone3(&(0x7f0000000780)={0x20000, &(0x7f0000000540), &(0x7f0000000580)=<r12=>0x0, &(0x7f00000005c0), {0x2e}, &(0x7f0000000600)=""/134, 0x86, &(0x7f00000006c0)=""/89, &(0x7f0000000740)=[0x0, 0x0, 0xffffffffffffffff, 0x0], 0x4, {r2}}, 0x58)
r13 = syz_open_procfs$namespace(0x0, &(0x7f0000000800)='ns/pid_for_children\x00')
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r3, &(0x7f0000000e40)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000840)={0x59c, r7, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_DEVICE={0x555, 0x2e, 0x0, 0x1, [@typed={0xeb, 0x6f, 0x0, 0x0, @binary="b2e1b84318828437ae3ae0c8df5d1adce95e65a6db48d228c96b5bca085b8044ab81cd81b20233b96777fa134db09d2093df4ee0ec35b735f5dd25aef56f4ef4861075bf059cc5faad4272af8a305e6ae4746fb949a937a8ff26d18ad61c578351abf81dafa0001bf1a62957ef0e1c21644d3f0366ef86c9fbb4ed43dbb7cca2a5099f4f5b62e7d925974692bbf64b7c68575f4d908b31fd7ea1f5baaa8953d64466a27d3978924f4027d0b8a28fe5fe71df84c7315ea83af417128238e38265a8a40f737bc14946048397477a1f247f3efedd872b86ced81b5fe17a0f0efabb7464cd5282f5c4"}, @typed={0x8, 0xe8, 0x0, 0x0, @fd=r6}, @typed={0x8, 0x114, 0x0, 0x0, @ipv4=@private=0xa010100}, @nested={0xe9, 0xd9, 0x0, 0x1, [@typed={0x8, 0x125, 0x0, 0x0, @ipv4=@empty}, @generic="38f7c08c044a19aa87f763e480a083e32003dc13ac65d620319c6b93530c2059ae5f45156b2ef8a768b8efc63afdcf41516ff5bedceb4fae3976d1b684c02707a5606d3f59b3a363313eacd57f0fa6808f193b764765664b9c91edf402fe9100b47a317a012691daa8901f8e618da7bdf5a07fc8de3c96a72e64e866ce25033dd7662a56d113228d9a573bb8fddcea22f156835ad19a4463253f433d78b2d1dd337d109f05ae39d96102c7379754271bc6e35e78c0b3aebb0f339c34f4536836a0176a6d6764188742c5302db7e620d8af07c29c5c4f66397ef38cddd5"]}, @generic="6576420d62a4f1c0044ba8da5fa2f11096c3d1052256eac4ebdbdd3a2abd2a9f945de3279033e92ff29ac58b449bd8a4b6fba08e0a6a4a68530219a6a77d6a9e6993124a1a", @typed={0x8, 0x124, 0x0, 0x0, @uid=r10}, @nested={0xa6, 0x85, 0x0, 0x1, [@generic="da95c7ca1ee71cd520b30a4b4f2c71a71c11351501d0e3aa817092c3f73d1ba4cd389950d248f4e2b5def3bb6a9f8e38d394cb939c3b0700a835b31b31c4232ba7ed6b7795de64c31d890e57d07a9aeafb529febe7474e71d1fbf09911ee347e0b8c025c7e68258183bec4a8902b64799239bf399eafbb6848c8c18013caa6a570ef763d6dfa7652971c1bb04a518a16f4be55ae662e9fbf8874", @typed={0x8, 0x149, 0x0, 0x0, @pid=r11}]}, @nested={0x271, 0x28, 0x0, 0x1, [@typed={0x8, 0x148, 0x0, 0x0, @uid=0xee01}, @generic="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", @generic="489e7c959281e3af0a7b0729217b95dfaab4289e2b6399e0590ef53f4ea8c89ef988bb442edc2105854c69064be119732dae8bfbf3d1c77fd615e9d7da8b1e29d4ce7f4bca235e06f7d65f8ee7ccd3a12ca40abe4be4d66a4ec39dd45395e4406a38d78295a1cea3088d6e24e2a2d7399c30a71741d5b41fa9", @generic="0bf0e07997b6f0bd2f78f151eca531c329c30e9bd1e8dcd19bd0a9c13b84b6fc9e4ae5efffaf511867eb4a63faf2c77207bde86e81163ea3bb0b88ea1ceb95833f4f8766de58d057db39b849bd007f9e0c713139d7b05e10912656b39e5cb8c12978c273de6ecb5b7fc1ea4529f8aaf47b2e65198278805eecda9aa783fe112d282b5c4a9f8cd5fdec800f64e014f34a2f2f40af6725d4fa1c83db3bce82c7829834a94a3756ba0a1fb079ee618ad78eb469e21a27308b8ec98f456a514d8821812def46bde59418cb2c43b98563", @nested={0x4, 0x42}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@empty}, @nested={0x4, 0xe7}, @nested={0x4, 0x104}]}]}, @NL802154_ATTR_SCAN_DONE_REASON={0x5, 0x25, 0x43}, @NL802154_ATTR_NETNS_FD={0x8, 0x1d, r13}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0xf}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x9}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x3}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0xb9}]}, 0x59c}, 0x1, 0x0, 0x0, 0x800}, 0x8000)
r14 = socket$nl_generic(0x10, 0x3, 0x10)
r15 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000ec0), r3)
sendmsg$auto_NL80211_CMD_UPDATE_FT_IES(r14, &(0x7f0000001080)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001040)={&(0x7f0000000f00)={0x118, r15, 0x1, 0x70bd29, 0x25dfdbff, {}, [@NL80211_ATTR_WIPHY_FREQ_HINT={0x8, 0xc9, 0x5}, @NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0xb}, @NL80211_ATTR_MAC_HINT={0xec, 0xc8, "885977737ce1989f9b23a1d825dc05a2cdbd57e80cb57bded92d05ed1eeec569e79edc98262493f4688ece5238602baafcdec4cb99be472b011f98d948dd326768e0401a425b96423ec6bd9b7532134d8980682a4d58f92f448053177549ddb69be346b8645937c2a848258b5a690d3c9ca0c211c0e688381a13f8be34837f7d76c129da941167d9d91985ad15804eba7dbf19fae41bcf9b2a45898fd3e5f278df8d4a5cf4f38c9b795de514a8aec9056379ed8626c1c45a9f65465cf7866ecc57c83510f0dab377826f7f385fddabf6636c68ab0566d52a616289b59e795f3e2d2a2dc17d3d8d8a"}, @NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8, 0xcb, 0x8001}]}, 0x118}, 0x1, 0x0, 0x0, 0x4085}, 0x24004890)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/kernel/debug/ieee80211/phy16/netdev:wlan0/rc_rateidx_vht_mcs_mask_2ghz\x00', 0x800, 0x0)
r16 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000001140)='/sys/kernel/debug/dri/vkms/Writeback-1/edid_override\x00', 0x20000, 0x0)
recvfrom$auto(r16, &(0x7f0000001180)="c5f4cbeb89fd14557f52c4c777e2f301db0d63125fa884a203126dfc0634934086db65b2ef050b1f72343a8055252519e06e2e8855df405e1a08afb315fc5b4f5bba4eecc0661a95ff70eec9991732a56b98b2f5b9ff8e3eae60d0394b899d48d6836192562c532e1383eaf15f50fb34d3bdad7e8f197d11509e29fe5bfcb790fde02cd08c7a413c358401c29ab3af270bacda49b85eec13758b4980fbb0fd6b76dfb2d3be5c767bdb91018dbc960b38a3397c2963f0244be234516b58ba54d66f00d61f8491b2f159a44492658b610a0cba7d9b685b6207f76222f95bc9b2d55f", 0x8, 0x5e6, &(0x7f0000001280)=@xdp={0x2c, 0x6, 0x0, 0x8}, &(0x7f00000012c0))
syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000001300), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_MEDIA_GET(r2, &(0x7f0000001580)={&(0x7f0000001340)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001540)={&(0x7f0000001380)={0x1a4, 0x0, 0x4, 0x70bd29, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x190, 0x1, 0x0, 0x1, [@typed={0x8, 0xe, 0x0, 0x0, @fd=r5}, @typed={0x8, 0x2e, 0x0, 0x0, @uid=r10}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x52, 0x0, 0x0, @pid=r11}]}, @typed={0x14, 0xab, 0x0, 0x0, @ipv6=@local}, @generic="68aa2e8ae783459fbcf18f9d4f07b0fa1191c7df371ce0251dfadc6636904c271d47ef62eacd7be7140ad112f5f0d1b4186c92bc5149b89711fe75343459fa68515739d1301cd2e980b74c605169be078e4469b08cc69fef9c05a24c21ae34686ef1efd927fdd84095ba434e0970892eb348ae0393cdf621db6975b8f6d691d81ee0a3d1d77920d6e0db691747c5143eb71104abb1898211beb05c9f6c137051", @nested={0xbb, 0x146, 0x0, 0x1, [@typed={0x8, 0xcb, 0x0, 0x0, @pid=r12}, @typed={0x8, 0xd1, 0x0, 0x0, @uid=r10}, @generic="64a99c8f", @typed={0x7e, 0xaf, 0x0, 0x0, @binary="7458a5af3d0d0118a82fd253cc7778918aaa7c69fbedd13748e3aee71558f9a80fb6b70fc0e0f826149f12a264aa399d73ba81d43e11316f67b0b68bfc2588bece14be8bd75d8fe6621483ad68c05010cb387bada8bb5ce1a985a0b1b5bd28c63aa750a0649c7111f0a4e4cf4a689851232e282efb52a4fc056e"}, @typed={0x4, 0x85}, @generic="39d3cfd267c8357be0b821dc2d85ed9f8a941b18a637a7c8949a57802c695c"]}]}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x1040}, 0x4)
read$auto_uinput_fops_uinput(r9, &(0x7f00000015c0)=""/192, 0xc0)
r17 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000001680), 0x40c800, 0x0)
write$auto(r17, &(0x7f00000016c0)='/sys/kernel/debug/dri/vkms/Writeback-1/edid_override\x00', 0xbe)
getsockopt$auto_SO_TIMESTAMP_OLD(r16, 0x8, 0x1d, &(0x7f0000001700)='\x00', &(0x7f0000001740)=0x5)
ioctl$auto_UI_GET_VERSION(r2, 0x8004552d, &(0x7f0000001780)=0x1f7a)
fcntl$auto_F_SETPIPE_SZ(r8, 0x407, 0x1)
sendmsg$auto_NET_SHAPER_CMD_GROUP(r4, &(0x7f00000018c0)={&(0x7f00000017c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001880)={&(0x7f0000001840)={0x1c, 0x0, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@NET_SHAPER_A_PRIORITY={0x8, 0x6, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000001}, 0x0)

5.350788586s ago: executing program 4 (id=1143):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x5, 0x4020009, 0x6, 0xeb1, 0x401, 0x8003)
madvise$auto(0x110c230000, 0x1, 0x9)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
ioctl$auto(0xffffffffffffffff, 0xc0b45545, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
socket(0xa, 0x2, 0x0)
setsockopt$auto(0x3, 0x0, 0x28, 0xfffffffffffffffc, 0x70)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)

4.804027494s ago: executing program 4 (id=1146):
waitid$auto(0x8, 0xffffffffffffffff, &(0x7f0000000100)={@siginfo_0_0={0x5, 0x98, 0x10, @_timer={0x0, 0x2, @sival_int=0x7, 0x2}}}, 0x3, &(0x7f0000000240)={{0xff, 0x80}, {0x2, 0x6}, 0x4, 0x100000000, 0x1, 0x3, 0x0, 0x8000, 0x80000000, 0x7, 0xb7, 0x5d9, 0x5, 0x7ff, 0x2055})
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/state\x00', 0x20a42, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000100)="ba7f75", 0x3)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0)
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)

4.697910089s ago: executing program 1 (id=1148):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0xa, 0x1, 0x100)
open(&(0x7f0000000000)='./file0\x00', 0x3431c3, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/pcm0p/oss\x00', 0xaa102, 0x0) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card0/pcm0p/sub7/hw_params\x00', 0x28102, 0x0) (async)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x801, 0x0) (async)
select$auto(0xd, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x4, 0x7fff, 0x7, 0x80000948b, 0x0, 0x8, 0x400000006, 0x100000000003, 0x9, 0x9, 0x6, 0x200000000000006, 0x400005, 0x6a0, 0x9]}, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x5, 0x6, 0xe2, 0xeb1, 0x405, 0x81f8)
socket(0xa, 0x5, 0x0) (async)
setsockopt$auto(0x3, 0x80, 0x2008001, 0x0, 0xc)
write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, &(0x7f0000000c80)="5f74ab2fc43781e047140a5cbc3ac5229b90633d9cddda9efb1f2c3d5d1e63f3fb5acf079b9336319d009cb514679a42eaca52b81c166d19625d173c26ece6542f2fb29712f4fb9072fc432b4cf3e6f5a7f3c9f91ee88ba5fa11d48fd3658e8f44f8423b4cd02bbec912ed34f9f4b19b03d4c62b24ede44c0c76c34edf7bde061903c2ee4c64110ac668239fa53ba4291bae74c3d173663248ff0945dd2e405e0d378b5a8e4643a7bc3b35a7248431450ca8901467ea6dc5d86de1e90f869f6a04ac1004", 0xc4) (async)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) (async)
select$auto(0x0, 0x0, 0x0, 0x0, 0x0) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000240), 0x8000, 0x0) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
io_uring_setup$auto(0x1, 0x0) (async)
fcntl$auto(0x8000000000000001, 0x26, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000540)='/proc/sys/kernel/watchdog_thresh\x00', 0x20402, 0x0) (async)
write$auto(0x3, 0x0, 0x81) (async)
r0 = fanotify_init$auto(0x5, 0x2002)
eventfd$auto(0x0) (async)
fanotify_mark$auto(r0, 0x9, 0x8, 0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00') (async)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/ksm/sleep_millisecs\x00', 0x181482, 0x0) (async)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
read$auto(r1, 0x0, 0x9)

4.318451682s ago: executing program 2 (id=1150):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram1/queue/add_random\x00', 0x1a1842, 0x0)
write$auto(r0, &(0x7f0000000000)='9\x00d1L\xff\x15\xba\xa17=(\xc1\xf8\xff\xff\v\xb5^\xa1/[', 0x4)
r1 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x11, 0xa, 0x300)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa)
mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(r2, 0x5522, 0xf15)
ioctl$auto(r2, 0x5523, r2)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
bpf$auto(0x8000000, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x5, 0x9, 0x3, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0xe2, 0x4, 0xc28}, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r4, 0x0, 0x24000000)
write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\xbf.W\x1f\x00\xd2e.', 0x81)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x40e00, 0x0)
pread64$auto(r5, 0x0, 0x3, 0x5ef6)
syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0xa, 0x3, 0x3b)
socket(0xa, 0x3, 0x3b)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000f40)={'batadv0\x00'})
sendmsg$auto_BATADV_CMD_SET_MESH(r6, 0x0, 0x20000000)

3.850622322s ago: executing program 4 (id=1152):
mprotect$auto(0x1ffffffff000, 0x1000000000004, 0xa)
syz_clone(0x8008000, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)="8ab8")
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/memfd_noexec\x00', 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = io_uring_setup$auto(0x59, 0x0)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
write$auto(0x3, 0x0, 0xfdef)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/phys\x00', 0x400, 0x0)
read$auto(r1, &(0x7f0000002440)='\x00', 0x9)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r2 = syz_clone(0x1a00000, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0x4, 0xb, 0x6)
ptrace$auto(0x10, r2, 0x4, 0x8000040006)
ptrace$auto(0xf, r2, 0xfffffffffffffffe, 0x8000000000000000)
madvise$auto(0x0, 0x400053, 0x9)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0xffffffffffffffff, 0x28000)
madvise$auto(0xfe91, 0x6, 0x6)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x0, 0x0)
ioctl$auto_TCFLSH2(r3, 0x5453, 0x0)
ioctl$auto_KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04, 0x0)
ioctl$auto_USBDEVFS_CONTROL32(r0, 0xc0105500, &(0x7f00000000c0)={0x7, 0x4, 0x6, 0x16, 0x7, 0x5, 0x7})
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r4 = socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x57)
connect$auto(r4, &(0x7f0000000000)=@generic={0x1e, "ab06fdffff00ff00"}, 0x55)
socket(0xa, 0x2, 0x88)

3.676502191s ago: executing program 1 (id=1153):
r0 = socket(0x2, 0x2, 0x88)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x12}}, 0x54) (async, rerun: 32)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @loopback}, 0x55)
r1 = waitid$auto_P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000000)={@_si_pad}, 0xb7, &(0x7f00000000c0)={{0x2, 0x1}, {0x7fffffff, 0x5}, 0x0, 0x1, 0x3, 0x6, 0x2a, 0x7, 0x5, 0x3, 0x8000000000000001, 0xe6e, 0x4, 0x1ff, 0x3, 0x7})
ptrace$auto_PTRACE_GETSIGMASK(0x420a, r1, 0x1, 0x98) (async, rerun: 64)
sendmmsg$auto(r0, 0x0, 0x9a6, 0xe000) (async, rerun: 64)
write$auto(0x3, 0x0, 0x800)

2.192714189s ago: executing program 5 (id=1158):
read$auto_buffer_percent_fops_trace(0xffffffffffffffff, &(0x7f0000000140)=""/168, 0xa8) (async)
read$auto_buffer_percent_fops_trace(0xffffffffffffffff, &(0x7f0000000140)=""/168, 0xa8)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
shmget$auto(0x0, 0x200000005, 0x7d)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
timer_create$auto(0x2, 0x0, 0x0) (async)
timer_create$auto(0x2, 0x0, 0x0)
timer_settime$auto(0x0, 0x7ff, &(0x7f0000000000)={{0xa6, 0x7}, {0x0, 0x3}}, 0x0)
timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x4, 0x4}, {0x0, 0x83}}, 0x0)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0)
ppoll$auto(&(0x7f0000000000)={r0, 0x40}, 0x2, 0x0, 0x0, 0x8) (async)
ppoll$auto(&(0x7f0000000000)={<r1=>r0, 0x40}, 0x2, 0x0, 0x0, 0x8)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/scsi\x00', 0x80002, 0x0)
preadv$auto(0x3, &(0x7f0000000040)={0x0, 0x8000000}, 0x3, 0xf8, 0x10)
read$auto_nsim_dev_trap_fa_cookie_fops_dev(r1, &(0x7f0000000200)=""/238, 0xee) (async)
read$auto_nsim_dev_trap_fa_cookie_fops_dev(r1, &(0x7f0000000200)=""/238, 0xee)
ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc)
socketpair$auto(0x5, 0x9, 0x80, 0x0) (async)
socketpair$auto(0x5, 0x9, 0x80, 0x0)
r2 = openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_clock\x00', 0x100, 0x0)
setsockopt$auto_SO_ATTACH_REUSEPORT_EBPF(r2, 0x5, 0x34, &(0x7f00000000c0)='/dev/dsp\x00', 0x1)
close_range$auto(0x2, 0x8, 0x0)

1.964311622s ago: executing program 2 (id=1159):
mmap$auto(0x0, 0x400008, 0x36, 0x1009b72, 0x2, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/net/erspan0/flags\x00', 0x2062, 0x0)
write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000080), 0xa000, 0x0)
r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x80440, 0x0)
ioctl$auto_I2C_TIMEOUT(r1, 0x702, 0x0)
r2 = socketpair$auto(0x409, 0x5, 0xffffffff, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0)
read$auto(r3, 0x0, 0x7)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/nbd3/queue/nr_requests\x00', 0x1, 0x0)
pwrite64$auto(r4, 0x0, 0xe, 0x7)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto_SO_BUSY_POLL(r2, 0x9f, 0x2e, &(0x7f0000000040)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r6 = socket(0x10, 0x2, 0x6)
sendmmsg$auto(r6, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000040), 0x7, 0xa505}, 0x800}, 0x5, 0x400a)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000280), r7)
sendmsg$auto_HWSIM_CMD_REGISTER(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000480)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="010028bd7000fddbdf2501000000c4e35b98861c9fac64212e33953292a5927be53c975db45f46dfa39b4ec0a276f7a9eda41cf34919583ff15660f0193bd406151108a2a1756daa11f6c48bef388d9dc13a044857cbc02c61e0f37f8965892d07573a2ec69262c0104e12cc7a4d4e571f529567000000"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r6, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="000000425259d03f59050cbd062f4fc832f1bc663f1289c467727ccb343249f3a0742667e5433721cf3c50732561a4865b", @ANYRES16=r8, @ANYBLOB="00022ebd7000ffdbdf25050000000800060007000000040019000800050001000000040019000300170002000000"], 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r9 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
inotify_init1$auto(0x3000000000000)
ioctl$auto(0x3, 0xae41, r9)
ioctl$auto_KVM_CREATE_VM(r5, 0xc048aeca, 0x0)

1.696766507s ago: executing program 1 (id=1160):
ppoll$auto(0x0, 0xffff, 0x0, 0x0, 0x8)
mmap$auto(0x0, 0x20007, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
ustat$auto(0x801, 0x0)
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6)
ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, 0x0)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy0/misc\x00', 0x20a40, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0x17, r0, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r1, &(0x7f0000003900)='\t', 0x1)
read$auto(0xffffffffffffffff, 0x0, 0x20)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
unshare$auto(0x40000080)
kexec_load$auto(0x7, 0x2, &(0x7f0000000040)={@buf=0x0, 0x2aa7, 0x6c0000c000, 0xc000}, 0x4)

1.415316267s ago: executing program 5 (id=1161):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f0000000100)={{@raw=0xb, 0x3, 0xcf, 0x8, "16a0d89bf208384515b5375a677609aa1bc737276563c3d5a2fca999d5797ab7a10a4d2bc341c4bd369ae535"}, 0x1, @integer=@value=[0x6d, 0x7, 0x0, 0xbb, 0x4, 0x80000000, 0x1, 0x10001, 0x1, 0x9, 0xc4, 0x9bc, 0x6, 0x4, 0x3, 0x6, 0x1, 0x3, 0x5, 0x401, 0x4, 0x0, 0xa0, 0x5, 0x2, 0x9, 0x5, 0xa, 0x8, 0xffffffffffffff01, 0x8, 0x1, 0xffffffffffffdb78, 0x100000000, 0x3, 0x7, 0x7fffffffffffffff, 0x1, 0xd, 0x3, 0x71, 0x0, 0x8, 0x2, 0x3, 0xffffffffffffffbb, 0x2d7, 0x1, 0x5a, 0x6, 0x2, 0x800000000, 0x6, 0x7, 0x0, 0x6, 0x4, 0x3, 0x40a, 0x9, 0x3ff, 0x8, 0x7, 0xffff, 0x50ce0883, 0x3d9, 0x5, 0x9, 0xd8f, 0x80000000, 0x0, 0x7, 0x7, 0xa5cf, 0x8, 0x7, 0xc16b, 0x6, 0x9, 0x6, 0x2, 0x6, 0x1, 0x3, 0x3, 0xfffffffffffff16a, 0x6, 0xffffffffffff0001, 0x100000000, 0x4, 0x6, 0x4, 0x2, 0x0, 0xfffffffffffffffe, 0x20007cf9, 0x40, 0x2, 0x7, 0x100, 0x2, 0x2, 0x45f3, 0x2e1, 0x0, 0x4, 0x0, 0x8001, 0x0, 0x1, 0x7, 0xcf4, 0x1, 0x3, 0x0, 0x4, 0x6, 0x9, 0x25e2, 0xc9a, 0xd09, 0x40, 0x2, 0xffffffffffffff00, 0x8, 0x9, 0xfffffffffffffffb, 0x40], "f3fadb90a56b67d92a5b28b4b23f332550b1e545bc27deaf7c3100aab088cdb3b40dad335c9174f18934845ac2152fef1e0f42b42471efc0225a4eb67e05ce3d4ab429805d5921633ffbce8f1a82ff9dec6c2897431cb7005b85ca8633c55d49c1046064001bca7ba37e4b5eacf1940c9a7800000000000000004000"}) (async)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f0000000100)={{@raw=0xb, 0x3, 0xcf, 0x8, "16a0d89bf208384515b5375a677609aa1bc737276563c3d5a2fca999d5797ab7a10a4d2bc341c4bd369ae535"}, 0x1, @integer=@value=[0x6d, 0x7, 0x0, 0xbb, 0x4, 0x80000000, 0x1, 0x10001, 0x1, 0x9, 0xc4, 0x9bc, 0x6, 0x4, 0x3, 0x6, 0x1, 0x3, 0x5, 0x401, 0x4, 0x0, 0xa0, 0x5, 0x2, 0x9, 0x5, 0xa, 0x8, 0xffffffffffffff01, 0x8, 0x1, 0xffffffffffffdb78, 0x100000000, 0x3, 0x7, 0x7fffffffffffffff, 0x1, 0xd, 0x3, 0x71, 0x0, 0x8, 0x2, 0x3, 0xffffffffffffffbb, 0x2d7, 0x1, 0x5a, 0x6, 0x2, 0x800000000, 0x6, 0x7, 0x0, 0x6, 0x4, 0x3, 0x40a, 0x9, 0x3ff, 0x8, 0x7, 0xffff, 0x50ce0883, 0x3d9, 0x5, 0x9, 0xd8f, 0x80000000, 0x0, 0x7, 0x7, 0xa5cf, 0x8, 0x7, 0xc16b, 0x6, 0x9, 0x6, 0x2, 0x6, 0x1, 0x3, 0x3, 0xfffffffffffff16a, 0x6, 0xffffffffffff0001, 0x100000000, 0x4, 0x6, 0x4, 0x2, 0x0, 0xfffffffffffffffe, 0x20007cf9, 0x40, 0x2, 0x7, 0x100, 0x2, 0x2, 0x45f3, 0x2e1, 0x0, 0x4, 0x0, 0x8001, 0x0, 0x1, 0x7, 0xcf4, 0x1, 0x3, 0x0, 0x4, 0x6, 0x9, 0x25e2, 0xc9a, 0xd09, 0x40, 0x2, 0xffffffffffffff00, 0x8, 0x9, 0xfffffffffffffffb, 0x40], "f3fadb90a56b67d92a5b28b4b23f332550b1e545bc27deaf7c3100aab088cdb3b40dad335c9174f18934845ac2152fef1e0f42b42471efc0225a4eb67e05ce3d4ab429805d5921633ffbce8f1a82ff9dec6c2897431cb7005b85ca8633c55d49c1046064001bca7ba37e4b5eacf1940c9a7800000000000000004000"})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
io_uring_setup$auto(0x8, &(0x7f0000000140)={0x0, 0x1, 0x9, 0x210001, 0xc, 0x32, <r0=>0xffffffffffffffff, [0x7fd, 0x1001, 0x3], {0x9, 0x3, 0x6, 0x0, 0x4, 0x895, 0x3fdc, 0x6, 0x5}, {0x2, 0x1d11, 0x54ed, 0x0, 0x101, 0x10000ff, 0x7, 0xa, 0xb}})
sendmsg$auto_NL802154_CMD_SET_CHANNEL(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16, @ANYBLOB="000329bd7000fedbdf250900000008000c000100008008000300", @ANYRES32, @ANYBLOB="08002c000001000008001d"], 0x3c}, 0x1, 0x0, 0x0, 0x20000828}, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="6015c19c584a4c86dd", @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a00010000000000000000000800040010000000"], 0x58}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000600), 0x40000, 0x0)
socket(0x10, 0x3, 0x6)
setsockopt$auto(r1, 0x104000000000010e, 0xb, 0x0, 0x400)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22040, 0x75) (async)
open(0x0, 0x22040, 0x75)
socket(0x10, 0x2, 0x0) (async)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="7f000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040840}, 0x24004000)
syz_genetlink_get_family_id$auto_nl80211(0x0, r2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x20004884) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x20004884)
r3 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
fchdir$auto(r3)
exit$auto(0x6) (async)
exit$auto(0x6)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0)

855.640072ms ago: executing program 2 (id=1162):
ppoll$auto(0x0, 0xffff, 0x0, 0x0, 0x8)
mmap$auto(0x0, 0x20007, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
ustat$auto(0x801, 0x0)
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6)
ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, 0x0)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy0/misc\x00', 0x20a40, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0x17, r0, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r1, &(0x7f0000003900)='\t', 0x1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.2/usb3/bNumConfigurations\x00', 0x280, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
unshare$auto(0x40000080)
kexec_load$auto(0x7, 0x2, &(0x7f0000000040)={@buf=0x0, 0x2aa7, 0x6c0000c000, 0xc000}, 0x4)

725.408474ms ago: executing program 4 (id=1163):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
rseq$auto(0x0, 0x1a, 0x5d7, 0x2)
mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000)
r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r1, 0x65, 0x1, 0xffffffffffffffff, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/030/001\x00', 0x20802, 0x0)
syz_genetlink_get_family_id$auto_nfc(0x0, r3)
sendmsg$auto_NFC_CMD_DISABLE_SE(r0, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x181240, 0x0)
io_setup$auto(0x207ffc, &(0x7f0000000180))
r4 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0)
syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), r2)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x2}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"})
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r5, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
r7 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x8a403, 0x0)
ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r7, 0x7af, 0x0)
ioctl$auto(0x3, 0xae41, r6)

384.67727ms ago: executing program 5 (id=1164):
r0 = socket(0xa, 0x1, 0x100)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x20000, 0x0)
sendmsg$auto_NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x3a, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x880}, 0x20000001)
ioctl$auto(r1, 0xab00, r0)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[], 0x24}}, 0x4004)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0xe981, 0xfffffffffffff304, 0xeb1, 0x401, 0x8000)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0xfffffffffffffc00, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_IEEE802154_LLSEC_ADD_KEY(r2, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[], 0x5c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
mmap$auto(0x0, 0x5, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r3 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408)
write$auto(r3, 0x0, 0xfffffdf1)
linkat$auto(r3, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x0)
r4 = io_uring_setup$auto(0x440001, 0x0)
close_range$auto(r2, 0x8, 0x0)
utimes$auto(0x0, 0x0)
mprotect$auto(0x3, 0x8, 0x8)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0xa, 0x2, 0x8000000000000000, 0x0)
socket(0x2b, 0xa, 0xc9)
setsockopt$auto(0x400000000000003, 0x29, 0x7, 0x0, 0x401)
syz_genetlink_get_family_id$auto_net_dm(&(0x7f0000000380), r4)
mmap$auto(0x0, 0x105, 0x4000000000dd, 0x400000000000eb4, r3, 0x8000)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)

187.110218ms ago: executing program 5 (id=1165):
mkdir$auto(&(0x7f0000004440)='./file0\x00', 0x735)
rename$auto(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./file1\x00')

120.856209ms ago: executing program 5 (id=1166):
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="770e", @ANYRES16=0x0, @ANYBLOB="080028bd7000fddbdf250300000008000600020000000c0014"], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x405b)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="110b27bd7000ffdbdf250900000800030000", @ANYRES32=0x0, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x1000)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc045}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_0={0x8000, 0x1, 0x8, 0x7, 0x5, 0xffffffffffffffff, 0x80000001, "787d66da4a620eab7f736e854ef61529", 0x0, 0xffffffffffffffff, 0x7, 0xffff4e8b, 0x2, 0x1}, 0x7)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)

10.852261ms ago: executing program 1 (id=1167):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) (async)
unshare$auto(0x40000080) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xebd, 0xfffffffffffffffa, 0x8000) (async)
prctl$auto(0x40037, 0x1, 0x0, 0x1, 0x7)
madvise$auto(0x9, 0xffffffffffff0005, 0x19) (async)
madvise$auto(0x0, 0x2003f2, 0x15) (async)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async, rerun: 32)
madvise$auto(0x1afd, 0x7fffffff, 0x4) (async, rerun: 32)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x24048084) (async)
madvise$auto(0x100000001, 0x3, 0x8)
syslog$auto(0x4, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x97\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xfc#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) (async)
mmap$auto(0x122, 0x20006, 0xa06, 0xff, 0xffffffffffffffff, 0x8000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2800, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
socket(0x1b, 0x800, 0x8) (async, rerun: 32)
r2 = socket(0x2b, 0x1, 0x0) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
select$auto(0x2008, &(0x7f0000000240)={[0x9, 0x1, 0x1000000000000, 0x4, 0xffffffffffff8003, 0x200, 0x20080004, 0x100000000005, 0x1c00, 0x9, 0x6, 0x800000000000, 0x400, 0x400, 0x3, 0x5]}, 0x0, 0x0, 0x0)
sendmmsg$auto(r2, &(0x7f0000000180)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x8, 0xb}, 0x800009}, 0x3, 0x20000000)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x2a400, 0x0) (async)
mmap$auto(0x1, 0x0, 0xdf, 0x14, 0x401, 0x8000) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, &(0x7f0000000380)=@token_create={0x5315, r0}, 0x2) (async)
read$auto(0x3, 0x0, 0x80) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x50183, 0x0)

0s ago: executing program 5 (id=1168):
r0 = getpid()
r1 = openat$auto_ptdump_fops_(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_FICLONERANGE(r1, 0x4020940d, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)="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", 0x9}, 0x8, &(0x7f0000000100)="24db605e3be9a2fef6f279b7ab3f29269d237103029b7444afc7d00200516f4b63091a7c337ee4f0581115f6d81ca8f6e6a3b5125d8b59d562ae3efb9266d293026c7d92248d3334f321d192f3cacffbf4594da76d371f6afa68b6db74bc1e1877914221d8a0cb266d5c29a2aad020cabd23f6aa0efcba5c10e344929c", 0x9, 0x8}, 0x6}, 0x81c, 0x0)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
writev$auto(r3, &(0x7f0000000080)={&(0x7f0000000040), 0xfff}, 0x3)
mmap$auto(0x0, 0x40009, 0xe3, 0x9b72, 0x7, 0x28000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000100)={0x1ff, 0xfff, 0x1000})
bpf$auto(0x5, &(0x7f00000000c0)=@bpf_attr_0={0x5, 0xe, 0x100, 0x80000001, 0x6fca, 0xffffffffffffffff, 0x5, "31b63adcc97aa60ffd8c28b17c06a76e", 0x0, 0xffffffffffffffff, 0x61, 0xffffffff, 0x4, 0x8}, 0x9)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/sg/def_reserved_size\x00', 0x402, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
ioctl$auto(r2, 0x540a, 0x0)
ioctl$auto_TIOCSTI2(r2, 0x5412, &(0x7f0000000080))
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/self/net/rpc/auth.rpcsec.context/channel\x00', 0xc8841, 0x0)
poll$auto(&(0x7f0000000000)={<r5=>r4, 0xe, 0x4}, 0x4, 0xffffff80)
r6 = io_uring_setup$auto(0x59, &(0x7f0000000340)={0x7fffffff, 0xd, 0x2, 0x4, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000200), r6)
r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r11=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r11], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097d751f33e}, 0x80)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000240)={'wg2\x00', <r12=>0x0})
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_SET(r7, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)={0xfc, r8, 0x300, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0x88, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xffff}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg0\x00'}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x10, 0x2, 0x0, 0x1, [@typed={0x8, 0x57, 0x0, 0x0, @pid=r0}, @typed={0x4, 0xd2}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x48011}, 0x24000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

kernel console output (not intermixed with test programs):

[  342.789794][ T9739]  ? __pfx_genl_rcv_msg+0x10/0x10
[  342.789816][ T9739]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  342.789859][ T9739]  netlink_rcv_skb+0x158/0x420
[  342.789891][ T9739]  ? __pfx_genl_rcv_msg+0x10/0x10
[  342.789914][ T9739]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  342.789957][ T9739]  ? netlink_deliver_tap+0x1ae/0xd30
[  342.789992][ T9739]  genl_rcv+0x28/0x40
[  342.790023][ T9739]  netlink_unicast+0x5aa/0x870
[  342.790058][ T9739]  ? __pfx_netlink_unicast+0x10/0x10
[  342.790101][ T9739]  netlink_sendmsg+0x8c8/0xdd0
[  342.790137][ T9739]  ? __pfx_netlink_sendmsg+0x10/0x10
[  342.790172][ T9739]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  342.790213][ T9739]  ____sys_sendmsg+0xa5d/0xc30
[  342.790247][ T9739]  ? copy_msghdr_from_user+0x10a/0x160
[  342.790275][ T9739]  ? __pfx_____sys_sendmsg+0x10/0x10
[  342.790316][ T9739]  ? __pfx_futex_wake_mark+0x10/0x10
[  342.790400][ T9739]  ___sys_sendmsg+0x134/0x1d0
[  342.790433][ T9739]  ? __pfx____sys_sendmsg+0x10/0x10
[  342.790462][ T9739]  ? futex_private_hash_put+0x160/0x1b0
[  342.790523][ T9739]  __sys_sendmsg+0x16d/0x220
[  342.790552][ T9739]  ? __pfx___sys_sendmsg+0x10/0x10
[  342.790579][ T9739]  ? __x64_sys_futex+0x1e0/0x4c0
[  342.790618][ T9739]  ? syscall_user_dispatch+0x78/0x140
[  342.790657][ T9739]  do_syscall_64+0xcd/0xf80
[  342.790695][ T9739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.790718][ T9739] RIP: 0033:0x7fb5a178f7c9
[  342.790737][ T9739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.790760][ T9739] RSP: 002b:00007fb5a2608038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  342.790782][ T9739] RAX: ffffffffffffffda RBX: 00007fb5a19e5fa0 RCX: 00007fb5a178f7c9
[  342.790798][ T9739] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 000000000000000b
[  342.790813][ T9739] RBP: 00007fb5a1813f91 R08: 0000000000000000 R09: 0000000000000000
[  342.790828][ T9739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  342.790842][ T9739] R13: 00007fb5a19e6038 R14: 00007fb5a19e5fa0 R15: 00007fffea5bf9e8
[  342.790874][ T9739]  </TASK>
[  344.214951][ T9750] vhci_hcd vhci_hcd.2: default hub control req: 3132 v0a38 i0000 l0
[  344.773916][ T9754] FAULT_INJECTION: forcing a failure.
[  344.773916][ T9754] name failslab, interval 1, probability 0, space 0, times 0
[  344.839710][ T9754] CPU: 1 UID: 0 PID: 9754 Comm: syz.2.796 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  344.839762][ T9754] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  344.839773][ T9754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  344.839790][ T9754] Call Trace:
[  344.839800][ T9754]  <TASK>
[  344.839811][ T9754]  dump_stack_lvl+0x16c/0x1f0
[  344.839860][ T9754]  should_fail_ex+0x512/0x640
[  344.839891][ T9754]  ? __kmalloc_cache_noprof+0x5f/0x800
[  344.839928][ T9754]  should_failslab+0xc2/0x120
[  344.839971][ T9754]  __kmalloc_cache_noprof+0x80/0x800
[  344.840004][ T9754]  ? copy_time_ns+0xf6/0x7f0
[  344.840052][ T9754]  ? copy_time_ns+0xf6/0x7f0
[  344.840091][ T9754]  copy_time_ns+0xf6/0x7f0
[  344.840132][ T9754]  ? copy_cgroup_ns+0x71/0x980
[  344.840163][ T9754]  create_new_namespaces+0x48a/0xab0
[  344.840209][ T9754]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  344.840250][ T9754]  ksys_unshare+0x45b/0xa40
[  344.840292][ T9754]  ? __pfx_ksys_unshare+0x10/0x10
[  344.840340][ T9754]  ? xfd_validate_state+0x61/0x180
[  344.840377][ T9754]  __x64_sys_unshare+0x31/0x40
[  344.840402][ T9754]  do_syscall_64+0xcd/0xf80
[  344.840446][ T9754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.840475][ T9754] RIP: 0033:0x7fb5a178f7c9
[  344.840498][ T9754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  344.840526][ T9754] RSP: 002b:00007fb5a2608038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  344.840553][ T9754] RAX: ffffffffffffffda RBX: 00007fb5a19e5fa0 RCX: 00007fb5a178f7c9
[  344.840573][ T9754] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080
[  344.840591][ T9754] RBP: 00007fb5a1813f91 R08: 0000000000000000 R09: 0000000000000000
[  344.840609][ T9754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  344.840627][ T9754] R13: 00007fb5a19e6038 R14: 00007fb5a19e5fa0 R15: 00007fffea5bf9e8
[  344.840665][ T9754]  </TASK>
[  345.319740][ T9759] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  345.364726][ T9759] EXT4-fs (sda1): This should not happen!! Data will be lost
[  345.364726][ T9759] 
[  346.373159][ T9769] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjEùrõ£Ò„yù*›"¤l-ý¤ôy–ú„
[  348.606826][ T9800] random: crng reseeded on system resumption
[  348.991804][ T9781] Invalid ELF header magic: != ELF
[  350.129063][ T7414] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1491 with max blocks 1 with error 117
[  350.129102][ T7414] EXT4-fs (sda1): This should not happen!! Data will be lost
[  350.129102][ T7414] 
[  350.132829][ T7414] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 950 with max blocks 74 with error 117
[  350.188601][ T7414] EXT4-fs (sda1): This should not happen!! Data will be lost
[  350.188601][ T7414] 
[  350.243846][ T7414] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1493 with max blocks 2 with error 117
[  350.256815][ T7414] EXT4-fs (sda1): This should not happen!! Data will be lost
[  350.256815][ T7414] 
[  350.268432][ T7414] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1005 with max blocks 4 with error 117
[  350.286078][ T7414] EXT4-fs (sda1): This should not happen!! Data will be lost
[  350.286078][ T7414] 
[  350.758494][ T9846] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  350.805313][ T9846] EXT4-fs (sda1): This should not happen!! Data will be lost
[  350.805313][ T9846] 
[  352.015828][ T7090] Bluetooth: hci1: command 0x0c1a tx timeout
[  352.017243][ T9828] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  352.069479][ T9874] binder: 9872:9874 ioctl 541b fffffffffffff4e0 returned -22
[  352.112334][ T9828] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  352.150877][ T9828] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  352.172727][ T9828] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  352.198261][ T9828] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  352.271146][ T9828] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  352.295078][ T9828] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  352.337884][ T9828] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  352.608050][ T9881] netlink: 342 bytes leftover after parsing attributes in process `syz.2.822'.
[  352.812441][ T9882] serio: Serial port ttyS2
[  353.327310][ T9909] netlink: 8 bytes leftover after parsing attributes in process `syz.2.830'.
[  353.416969][ T9911] netlink: 342 bytes leftover after parsing attributes in process `syz.5.831'.
[  354.166050][ T6274] Bluetooth: hci3: command 0x0c1a tx timeout
[  354.175725][ T7090] Bluetooth: hci4: command 0x0c1a tx timeout
[  354.200676][ T7090] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[  354.200716][ T7090] Bluetooth: hci4: unexpected subevent 0x0e length: 725 > 15
[  354.216174][ T7090] Bluetooth: hci4: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  354.329707][ T7090] Bluetooth: hci5: command 0x0c1a tx timeout
[  354.371308][ T9944] cifs: Unknown parameter 'T.ŸÜÛæ¨Å¼c[ŸÐê€$â��æµÈ)ü±UóÑnEó-Ê™¾l®öÚ-ºŒ	�-¾_€™¯Ôåáª5Zäoåé¢mžÐfwYÍhº*/ÿxD
lÝ©Š×ígÕkÇ�Aí³ùÏ7ÍØØ9’�ôXöa/fê_ÿAR£ˆ™�‘ÈxM	‚v¬—pÿ±$^;ôØq‡3±«£n졵-
6�©+e„k�„¾ñÇ<°kœcÔ)n.üeMÍ÷Na¨�t®ÐSMÎÆ1,'
[  354.404635][ T9944] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  354.547332][ T9944] CIFS mount error: No usable UNC path provided in device string!
[  354.547332][ T9944] 
[  354.559282][ T9949] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.4.838: iget: checksum invalid
[  354.590988][ T9949] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  354.660472][ T9944] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  354.787729][ T9949] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.4.838: iget: checksum invalid
[  354.866062][ T9949] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  355.008052][ T9949] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.4.838: iget: checksum invalid
[  355.069891][ T9949] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  355.165598][ T9949] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.4.838: iget: checksum invalid
[  355.200200][ T9949] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  355.233497][ T9949] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  355.257540][ T9949] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  355.290695][ T7411] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1498 with max blocks 1 with error 117
[  355.311027][ T9952] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11
[  355.353737][ T7411] EXT4-fs (sda1): This should not happen!! Data will be lost
[  355.353737][ T7411] 
[  355.568828][ T9955] netlink: 342 bytes leftover after parsing attributes in process `syz.5.840'.
[  356.232797][ T9969] input: jJǸ-�¶š9ã% as /devices/virtual/input/input12
[  356.241511][ T7090] Bluetooth: hci4: command 0x0c1a tx timeout
[  356.397205][ T7090] Bluetooth: hci5: command 0x0c1a tx timeout
[  357.388782][ T9987] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xeffefd85
[  358.288030][ T5839] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  358.306432][ T7090] Bluetooth: hci4: command 0x0c1a tx timeout
[  358.325654][ T5839] CPU: 1 UID: 0 PID: 5839 Comm: syz-executor Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  358.325681][ T5839] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  358.325687][ T5839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  358.325695][ T5839] Call Trace:
[  358.325700][ T5839]  <TASK>
[  358.325705][ T5839]  dump_stack_lvl+0x16c/0x1f0
[  358.325733][ T5839]  dump_header+0x101/0x960
[  358.325752][ T5839]  oom_kill_process+0x176/0x910
[  358.325770][ T5839]  out_of_memory+0x350/0x1700
[  358.325785][ T5839]  ? __lock_acquire+0x436/0x2890
[  358.325802][ T5839]  ? __pfx_out_of_memory+0x10/0x10
[  358.325822][ T5839]  mem_cgroup_out_of_memory+0x118/0x130
[  358.325840][ T5839]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  358.325861][ T5839]  ? do_raw_spin_unlock+0x172/0x230
[  358.325881][ T5839]  try_charge_memcg+0x695/0xd30
[  358.325906][ T5839]  ? __pfx_try_charge_memcg+0x10/0x10
[  358.325932][ T5839]  ? find_held_lock+0x2b/0x80
[  358.325952][ T5839]  charge_memcg+0x8a/0x230
[  358.325974][ T5839]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  358.325992][ T5839]  __read_swap_cache_async+0x397/0x500
[  358.326012][ T5839]  ? __pfx___read_swap_cache_async+0x10/0x10
[  358.326034][ T5839]  ? mlock_drain_local+0x22d/0x4e0
[  358.326073][ T5839]  swap_cluster_readahead+0x432/0x770
[  358.326110][ T5839]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  358.326144][ T5839]  ? __lock_acquire+0x436/0x2890
[  358.326183][ T5839]  ? get_vma_policy+0x242/0x3c0
[  358.326211][ T5839]  swapin_readahead+0x160/0x1220
[  358.326256][ T5839]  ? __pfx_swapin_readahead+0x10/0x10
[  358.326289][ T5839]  ? find_held_lock+0x2b/0x80
[  358.326319][ T5839]  ? swap_cache_get_folio+0x267/0x8e0
[  358.326348][ T5839]  ? swap_cache_get_folio+0x267/0x8e0
[  358.326380][ T5839]  ? swap_cache_get_folio+0x267/0x8e0
[  358.326398][ T5839]  ? swap_cache_get_folio+0x267/0x8e0
[  358.326414][ T5839]  ? swap_cache_get_folio+0x293/0x8e0
[  358.326431][ T5839]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  358.326447][ T5839]  ? __pfx_get_swap_device+0x10/0x10
[  358.326466][ T5839]  ? rcu_read_unlock+0x2d/0xb0
[  358.326485][ T5839]  ? do_swap_page+0x962/0x64a0
[  358.326498][ T5839]  do_swap_page+0x962/0x64a0
[  358.326515][ T5839]  ? __lock_acquire+0x436/0x2890
[  358.326534][ T5839]  ? __pfx_do_swap_page+0x10/0x10
[  358.326550][ T5839]  ? __pfx_default_wake_function+0x10/0x10
[  358.326575][ T5839]  ? rcu_is_watching+0x12/0xc0
[  358.326595][ T5839]  ? ___pte_offset_map+0x175/0x380
[  358.326617][ T5839]  __handle_mm_fault+0x19cb/0x2bb0
[  358.326635][ T5839]  ? reacquire_held_locks+0xcd/0x1f0
[  358.326649][ T5839]  ? __pfx___handle_mm_fault+0x10/0x10
[  358.326666][ T5839]  ? lock_vma_under_rcu+0x176/0x580
[  358.326687][ T5839]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  358.326712][ T5839]  handle_mm_fault+0x3fe/0xad0
[  358.326730][ T5839]  do_user_addr_fault+0x60c/0x1370
[  358.326750][ T5839]  ? rcu_is_watching+0x12/0xc0
[  358.326771][ T5839]  exc_page_fault+0x64/0xc0
[  358.326791][ T5839]  asm_exc_page_fault+0x26/0x30
[  358.326805][ T5839] RIP: 0033:0x7fb5a178f779
[  358.326818][ T5839] Code: 29 c7 48 69 ff e8 03 00 00 48 89 7c 24 08 48 89 e7 e8 7b 62 ff ff 48 8b 54 24 18 64 48 2b 14 25 28 00 00 00 75 05 48 83 c4 28 <c3> e8 b1 32 00 00 90 b8 4d 00 00 00 0f 05 48 3d 00 f0 ff ff 77 01
[  358.326832][ T5839] RSP: 002b:00007fffea5bfd68 EFLAGS: 00010202
[  358.326843][ T5839] RAX: 0000000000000000 RBX: 000000000000024d RCX: 0000000000000000
[  358.326852][ T5839] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005555896fb808
[  358.326862][ T5839] RBP: 00007fffea5bfdac R08: 0000000000000000 R09: 0000000000000000
[  358.326871][ T5839] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000001388
[  358.326879][ T5839] R13: 00000000000927c0 R14: 0000000000057b25 R15: 00007fffea5bfe00
[  358.326899][ T5839]  </TASK>
[  358.701120][ T7090] Bluetooth: hci5: command 0x0c1a tx timeout
[  359.200454][ T5839] memory: usage 3072kB, limit 3072kB, failcnt 174126
[  359.222115][ T5839] memory+swap: usage 3084kB, limit 9007199254740988kB, failcnt 0
[  359.251149][ T5839] kmem: usage 1144kB, limit 9007199254740988kB, failcnt 0
[  359.265637][ T5839] Memory cgroup stats for /syz2:
[  359.265824][ T5839] cache 1597440
[  359.282807][ T5839] rss 253952
[  359.290098][ T5839] rss_huge 0
[  359.307217][T10022] netlink: 330 bytes leftover after parsing attributes in process `syz.5.854'.
[  359.356283][ T5839] shmem 0
[  359.401262][ T5839] mapped_file 1597440
[  359.411146][ T5839] dirty 0
[  359.414100][ T5839] writeback 0
[  359.427476][ T5839] workingset_refault_anon 11247
[  359.438094][ T5839] workingset_refault_file 119806
[  359.450415][ T5839] swap 12288
[  359.456530][ T5839] swapcached 16384
[  359.470914][ T5839] pgpgin 352660
[  359.474420][ T5839] pgpgout 352206
[  359.488207][ T5839] pgfault 179207
[  359.495836][ T5839] pgmajfault 7345
[  359.499499][ T5839] inactive_anon 8192
[  359.515688][ T5839] active_anon 0
[  359.524438][ T5839] inactive_file 0
[  359.528113][ T5839] active_file 0
[  359.550339][ T5839] unevictable 1851392
[  359.554359][ T5839] hierarchical_memory_limit 3145728
[  359.569253][ T5839] hierarchical_memsw_limit 9223372036854771712
[  359.584372][ T5839] total_cache 1597440
[  359.590396][ T5839] total_rss 253952
[  359.594177][ T5839] total_rss_huge 0
[  359.597905][ T5839] total_shmem 0
[  359.618491][ T5839] total_mapped_file 1597440
[  359.624054][ T5839] total_dirty 0
[  359.627584][ T5839] total_writeback 0
[  359.643837][ T5839] total_workingset_refault_anon 11247
[  359.649272][ T5839] total_workingset_refault_file 119806
[  359.669796][ T5839] total_swap 12288
[  359.673562][ T5839] total_swapcached 16384
[  359.685100][ T5839] total_pgpgin 352660
[  359.691501][ T5839] total_pgpgout 352206
[  359.699894][ T5839] total_pgfault 179207
[  359.704034][ T5839] total_pgmajfault 7345
[  359.720454][ T5839] total_inactive_anon 8192
[  359.728437][ T5839] total_active_anon 0
[  359.744077][ T5839] total_inactive_file 0
[  359.752561][ T5839] total_active_file 0
[  359.756588][ T5839] total_unevictable 1851392
[  359.773416][ T5839] anon_cost 0
[  359.776775][ T5839] file_cost 0
[  359.787227][ T5839] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.851,pid=10001,uid=0
[  359.820108][ T5839] Memory cgroup out of memory: OOM victim 10001 (syz.2.851) is already exiting. Skip killing the task
[  359.930135][T10031] netlink: 342 bytes leftover after parsing attributes in process `syz.2.858'.
[  360.459355][T10048] random: crng reseeded on system resumption
[  360.841910][ T7404] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1005 with max blocks 19 with error 117
[  360.873929][ T7404] EXT4-fs (sda1): This should not happen!! Data will be lost
[  360.873929][ T7404] 
[  360.909933][ T7404] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1504 with max blocks 1 with error 117
[  360.909977][ T7404] EXT4-fs (sda1): This should not happen!! Data will be lost
[  360.909977][ T7404] 
[  360.910469][ T7404] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1005 with max blocks 3 with error 117
[  360.910504][ T7404] EXT4-fs (sda1): This should not happen!! Data will be lost
[  360.910504][ T7404] 
[  360.911033][ T7404] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1508 with max blocks 1 with error 117
[  360.911066][ T7404] EXT4-fs (sda1): This should not happen!! Data will be lost
[  360.911066][ T7404] 
[  360.936914][ T7412] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1384 with max blocks 1 with error 117
[  360.936957][ T7412] EXT4-fs (sda1): This should not happen!! Data will be lost
[  360.936957][ T7412] 
[  361.338433][T10062] netlink: 8 bytes leftover after parsing attributes in process `syz.2.868'.
[  361.821124][T10026] netlink: 28 bytes leftover after parsing attributes in process `syz.4.856'.
[  361.871561][T10026] bond0: entered allmulticast mode
[  361.876839][T10026] bond_slave_0: entered allmulticast mode
[  361.908498][T10026] bond_slave_1: entered allmulticast mode
[  362.310857][T10083] synth uevent: /module/button: unknown uevent action string
[  362.914819][ T7090] Bluetooth: hci4: unexpected event 0x3c length: 254 > 7
[  362.919816][T10094] random: crng reseeded on system resumption
[  363.188016][T10099] netlink: 16 bytes leftover after parsing attributes in process `syz.5.875'.
[  363.411922][T10077] hub 1-0:1.0: USB hub found
[  363.447123][T10077] hub 1-0:1.0: 1 port detected
[  364.363226][T10116] nvme_fabrics: unknown parameter or missing value 'û@è' in ctrl creation request
[  364.405790][T10111] zswap: compressor  not available
[  365.882346][T10117] kexec: Could not allocate control_code_buffer
[  366.123647][T10135] random: crng reseeded on system resumption
[  366.151299][T10131] netlink: 28 bytes leftover after parsing attributes in process `syz.5.882'.
[  366.320638][T10140] random: crng reseeded on system resumption
[  366.364794][T10140] EXT4-fs: 174 callbacks suppressed
[  366.364811][T10140] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  366.403204][T10140] EXT4-fs (sda1): This should not happen!! Data will be lost
[  366.403204][T10140] 
[  367.369598][T10159] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  368.588309][T10179] random: crng reseeded on system resumption
[  369.436106][T10198] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  369.483733][T10198] EXT4-fs (sda1): This should not happen!! Data will be lost
[  369.483733][T10198] 
[  369.517717][T10172] kexec: Could not allocate control_code_buffer
[  369.876327][T10209] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  369.900201][T10209] EXT4-fs (sda1): This should not happen!! Data will be lost
[  369.900201][T10209] 
[  370.126499][T10215] random: crng reseeded on system resumption
[  370.241751][ T7400] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1735 with max blocks 1 with error 117
[  370.289954][ T7400] EXT4-fs (sda1): This should not happen!! Data will be lost
[  370.289954][ T7400] 
[  370.321405][ T7400] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  370.351161][ T7400] EXT4-fs (sda1): This should not happen!! Data will be lost
[  370.351161][ T7400] 
[  370.401151][T10217] netlink: 28 bytes leftover after parsing attributes in process `syz.1.902'.
[  370.740457][T10227] zswap: compressor  not available
[  371.371380][ T7410] EXT4-fs: 30 callbacks suppressed
[  371.371401][ T7410] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1767 with max blocks 1 with error 117
[  371.440510][ T7410] EXT4-fs (sda1): This should not happen!! Data will be lost
[  371.440510][ T7410] 
[  371.459516][ T7410] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  371.483920][ T7410] EXT4-fs (sda1): This should not happen!! Data will be lost
[  371.483920][ T7410] 
[  371.516032][ T7410] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1771 with max blocks 1 with error 117
[  371.564159][ T7410] EXT4-fs (sda1): This should not happen!! Data will be lost
[  371.564159][ T7410] 
[  371.594467][ T7410] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 975 with max blocks 30 with error 117
[  371.621808][ T7410] EXT4-fs (sda1): This should not happen!! Data will be lost
[  371.621808][ T7410] 
[  371.658012][T10243] EXT4-fs error (device sda1): ext4_discard_preallocations:5703: comm syz.5.908: Error -117 reading block bitmap for 5
[  371.701362][T10231] kexec: Could not allocate control_code_buffer
[  373.288662][T10258] can0: slcan on ttyS2.
[  373.654362][T10257] can0 (unregistered): slcan off ttyS2.
[  373.716525][T10257] delete_channel: no stack
[  374.133124][T10274] bond0: Unable to set down delay as MII monitoring is disabled
[  375.133545][T10302] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  375.575208][T10302] EXT4-fs (sda1): This should not happen!! Data will be lost
[  375.575208][T10302] 
[  375.595686][T10317] netlink: 'syz.4.920': attribute type 1 has an invalid length.
[  376.950963][T10335] hub 1-0:1.0: USB hub found
[  376.968824][T10335] hub 1-0:1.0: 1 port detected
[  377.319014][T10338] FAULT_INJECTION: forcing a failure.
[  377.319014][T10338] name fail_futex, interval 1, probability 0, space 0, times 0
[  377.356669][T10338] CPU: 1 UID: 0 PID: 10338 Comm: syz.2.925 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  377.356721][T10338] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  377.356731][T10338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  377.356748][T10338] Call Trace:
[  377.356758][T10338]  <TASK>
[  377.356769][T10338]  dump_stack_lvl+0x16c/0x1f0
[  377.356816][T10338]  should_fail_ex+0x512/0x640
[  377.356847][T10338]  ? arch_stack_walk+0xa6/0x100
[  377.356891][T10338]  get_futex_key+0x1d0/0x15f0
[  377.356927][T10338]  ? __pfx_get_futex_key+0x10/0x10
[  377.356956][T10338]  ? stack_trace_save+0x8e/0xc0
[  377.356997][T10338]  ? __pfx_stack_trace_save+0x10/0x10
[  377.357039][T10338]  ? stack_depot_save_flags+0x29/0x9b0
[  377.357078][T10338]  futex_wait_setup+0x9d/0x570
[  377.357125][T10338]  __futex_wait+0x193/0x2f0
[  377.357158][T10338]  ? __pfx___futex_wait+0x10/0x10
[  377.357199][T10338]  ? __pfx_futex_wake_mark+0x10/0x10
[  377.357247][T10338]  ? futex_hash+0x2c5/0x380
[  377.357277][T10338]  ? futex_private_hash_put+0x160/0x1b0
[  377.357307][T10338]  futex_wait+0xe8/0x380
[  377.357339][T10338]  ? __pfx_futex_wait+0x10/0x10
[  377.357379][T10338]  ? putname+0xf5/0x1a0
[  377.357408][T10338]  do_futex+0x229/0x350
[  377.357439][T10338]  ? __pfx_do_futex+0x10/0x10
[  377.357478][T10338]  __x64_sys_futex+0x1e0/0x4c0
[  377.357510][T10338]  ? __x64_sys_openat+0x174/0x210
[  377.357541][T10338]  ? __pfx___x64_sys_futex+0x10/0x10
[  377.357583][T10338]  do_syscall_64+0xcd/0xf80
[  377.357626][T10338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.357655][T10338] RIP: 0033:0x7fb5a178f7c9
[  377.357679][T10338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  377.357707][T10338] RSP: 002b:00007fb5a26080e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  377.357734][T10338] RAX: ffffffffffffffda RBX: 00007fb5a19e5fa8 RCX: 00007fb5a178f7c9
[  377.357752][T10338] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb5a19e5fa8
[  377.357769][T10338] RBP: 00007fb5a19e5fa0 R08: 0000000000000000 R09: 0000000000000000
[  377.357785][T10338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  377.357801][T10338] R13: 00007fb5a19e6038 R14: 00007fffea5bf900 R15: 00007fffea5bf9e8
[  377.357837][T10338]  </TASK>
[  379.607695][T10365] random: crng reseeded on system resumption
[  380.440807][T10370] FAULT_INJECTION: forcing a failure.
[  380.440807][T10370] name failslab, interval 1, probability 0, space 0, times 0
[  380.509352][T10370] CPU: 0 UID: 0 PID: 10370 Comm: syz.5.932 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  380.509382][T10370] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  380.509388][T10370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  380.509397][T10370] Call Trace:
[  380.509402][T10370]  <TASK>
[  380.509409][T10370]  dump_stack_lvl+0x16c/0x1f0
[  380.509435][T10370]  should_fail_ex+0x512/0x640
[  380.509452][T10370]  ? kmem_cache_alloc_noprof+0x62/0x770
[  380.509473][T10370]  should_failslab+0xc2/0x120
[  380.509495][T10370]  kmem_cache_alloc_noprof+0x83/0x770
[  380.509512][T10370]  ? security_file_alloc+0x34/0x2b0
[  380.509534][T10370]  ? security_file_alloc+0x34/0x2b0
[  380.509551][T10370]  security_file_alloc+0x34/0x2b0
[  380.509569][T10370]  init_file+0x93/0x4c0
[  380.509584][T10370]  alloc_empty_file+0x73/0x1e0
[  380.509600][T10370]  alloc_file_pseudo+0x13a/0x230
[  380.509617][T10370]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  380.509633][T10370]  ? alloc_fd+0x471/0x7d0
[  380.509656][T10370]  sock_alloc_file+0x50/0x210
[  380.509677][T10370]  __sys_socket+0x1c0/0x260
[  380.509691][T10370]  ? __pfx___sys_socket+0x10/0x10
[  380.509704][T10370]  ? xfd_validate_state+0x61/0x180
[  380.509718][T10370]  ? __task_pid_nr_ns+0x1f5/0x500
[  380.509735][T10370]  __x64_sys_socket+0x72/0xb0
[  380.509748][T10370]  ? lockdep_hardirqs_on+0x7c/0x110
[  380.509770][T10370]  do_syscall_64+0xcd/0xf80
[  380.509792][T10370]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.509807][T10370] RIP: 0033:0x7feb3758f7c9
[  380.509820][T10370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  380.509834][T10370] RSP: 002b:00007feb38360038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  380.509849][T10370] RAX: ffffffffffffffda RBX: 00007feb377e5fa0 RCX: 00007feb3758f7c9
[  380.509858][T10370] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000002a
[  380.509866][T10370] RBP: 00007feb37613f91 R08: 0000000000000000 R09: 0000000000000000
[  380.509875][T10370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  380.509883][T10370] R13: 00007feb377e6038 R14: 00007feb377e5fa0 R15: 00007ffc64edb148
[  380.509902][T10370]  </TASK>
[  380.913692][T10362] random: crng reseeded on system resumption
[  380.935139][ T7415] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  380.947810][ T7415] EXT4-fs (sda1): This should not happen!! Data will be lost
[  380.947810][ T7415] 
[  381.011577][ T7415] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  381.044123][ T7415] EXT4-fs (sda1): This should not happen!! Data will be lost
[  381.044123][ T7415] 
[  381.943755][T10385] rtc_cmos 00:00: Alarms can be up to one day in the future
[  382.201611][ T5916] rtc_cmos 00:00: Alarms can be up to one day in the future
[  382.227358][ T5916] rtc_cmos 00:00: Alarms can be up to one day in the future
[  382.243996][ T5916] rtc_cmos 00:00: Alarms can be up to one day in the future
[  382.282068][ T5916] rtc_cmos 00:00: Alarms can be up to one day in the future
[  382.303459][ T5916] rtc rtc0: __rtc_set_alarm: err=-22
[  382.437568][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  382.444959][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  383.592972][T10403] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(9.0.384), cmd(16)
[  386.338475][T10414] netlink: 342 bytes leftover after parsing attributes in process `syz.4.944'.
[  386.580305][T10421] vivid-007: =================  START STATUS  =================
[  386.634723][T10421] vivid-007: Generate PTS: true
[  386.661606][T10421] vivid-007: Generate SCR: true
[  386.721162][T10421] tpg source WxH: 320x240 (Y'CbCr)
[  386.729104][T10421] tpg field: 1
[  386.735009][T10421] tpg crop: (0,0)/320x240
[  386.739465][T10421] tpg compose: (0,0)/320x240
[  386.744518][T10421] tpg colorspace: 8
[  386.748435][T10421] tpg transfer function: 0/0
[  386.754028][T10421] tpg Y'CbCr encoding: 0/0
[  386.760259][T10421] tpg quantization: 0/0
[  386.770433][T10421] tpg RGB range: 0/2
[  386.776589][T10421] vivid-007: ==================  END STATUS  ==================
[  387.027222][T10426] netlink: 'syz.4.947': attribute type 2 has an invalid length.
[  387.535887][T10395] syz.2.939 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  387.582141][T10395] CPU: 1 UID: 0 PID: 10395 Comm: syz.2.939 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  387.582183][T10395] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  387.582192][T10395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  387.582201][T10395] Call Trace:
[  387.582206][T10395]  <TASK>
[  387.582213][T10395]  dump_stack_lvl+0x16c/0x1f0
[  387.582240][T10395]  dump_header+0x101/0x960
[  387.582258][T10395]  oom_kill_process+0x176/0x910
[  387.582276][T10395]  out_of_memory+0x350/0x1700
[  387.582292][T10395]  ? __lock_acquire+0x436/0x2890
[  387.582309][T10395]  ? __pfx_out_of_memory+0x10/0x10
[  387.582329][T10395]  mem_cgroup_out_of_memory+0x118/0x130
[  387.582348][T10395]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  387.582369][T10395]  ? do_raw_spin_unlock+0x172/0x230
[  387.582389][T10395]  try_charge_memcg+0x695/0xd30
[  387.582415][T10395]  ? __pfx_try_charge_memcg+0x10/0x10
[  387.582442][T10395]  ? find_held_lock+0x11/0x80
[  387.582461][T10395]  ? rcu_read_unlock+0x17/0x60
[  387.582479][T10395]  charge_memcg+0x8a/0x230
[  387.582500][T10395]  __mem_cgroup_charge+0x2b/0x1e0
[  387.582516][T10395]  shmem_alloc_and_add_folio+0x50c/0xc20
[  387.582537][T10395]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  387.582555][T10395]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  387.582576][T10395]  shmem_get_folio_gfp+0x67f/0x1610
[  387.582596][T10395]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  387.582613][T10395]  ? __pfx_timestamp_truncate+0x10/0x10
[  387.582642][T10395]  shmem_write_begin+0x1a4/0x3b0
[  387.582659][T10395]  ? __pfx_shmem_write_begin+0x10/0x10
[  387.582676][T10395]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  387.582701][T10395]  generic_perform_write+0x3c4/0x900
[  387.582721][T10395]  ? __pfx_generic_perform_write+0x10/0x10
[  387.582744][T10395]  ? generic_update_time+0xcf/0xf0
[  387.582758][T10395]  ? mnt_put_write_access_file+0x45/0xf0
[  387.582778][T10395]  ? file_update_time_flags+0x35c/0x520
[  387.582795][T10395]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  387.582814][T10395]  shmem_file_write_iter+0x10e/0x140
[  387.582834][T10395]  __kernel_write_iter+0x31a/0xb10
[  387.582856][T10395]  ? __pfx___kernel_write_iter+0x10/0x10
[  387.582876][T10395]  ? __up_read+0x2d1/0x700
[  387.582894][T10395]  ? dump_user_range+0x756/0xb70
[  387.582914][T10395]  ? dump_user_range+0x234/0xb70
[  387.582937][T10395]  dump_user_range+0x413/0xb70
[  387.582962][T10395]  ? __pfx_dump_user_range+0x10/0x10
[  387.582984][T10395]  ? elf_coredump_extra_notes_write+0xbd/0x500
[  387.583003][T10395]  ? __pfx_writenote+0x10/0x10
[  387.583030][T10395]  elf_core_dump+0x29c3/0x3c10
[  387.583053][T10395]  ? __pfx_elf_core_dump+0x10/0x10
[  387.583065][T10395]  ? kasan_save_stack+0x33/0x60
[  387.583082][T10395]  ? kasan_save_track+0x14/0x30
[  387.583099][T10395]  ? __kasan_kmalloc+0xaa/0xb0
[  387.583116][T10395]  ? __kvmalloc_node_noprof+0x3ac/0xa40
[  387.583134][T10395]  ? vfs_coredump+0x1dd9/0x55e0
[  387.583153][T10395]  ? arch_do_signal_or_restart+0x8f/0x7a0
[  387.583173][T10395]  ? irqentry_exit+0x38a/0x8c0
[  387.583195][T10395]  ? asm_exc_page_fault+0x26/0x30
[  387.583213][T10395]  ? 0xffffffffff600000
[  387.583257][T10395]  ? vfs_coredump+0x2b85/0x55e0
[  387.583276][T10395]  vfs_coredump+0x2b85/0x55e0
[  387.583304][T10395]  ? __pfx_vfs_coredump+0x10/0x10
[  387.583323][T10395]  ? __lock_acquire+0x436/0x2890
[  387.583340][T10395]  ? __lock_acquire+0x436/0x2890
[  387.583355][T10395]  ? lock_acquire+0x179/0x330
[  387.583372][T10395]  ? lock_acquire+0x179/0x330
[  387.583398][T10395]  ? arch_stack_walk+0xa6/0x100
[  387.583422][T10395]  ? stack_trace_save+0x8e/0xc0
[  387.583448][T10395]  ? __pfx_stack_trace_save+0x10/0x10
[  387.583470][T10395]  ? stack_depot_save_flags+0x29/0x9b0
[  387.583487][T10395]  ? __lock_acquire+0x436/0x2890
[  387.583502][T10395]  ? kasan_save_stack+0x42/0x60
[  387.583551][T10395]  ? proc_coredump_connector+0x2d1/0x4f0
[  387.583574][T10395]  ? __pfx_proc_coredump_connector+0x10/0x10
[  387.583600][T10395]  ? rcu_is_watching+0x12/0xc0
[  387.583623][T10395]  get_signal+0x22e1/0x26d0
[  387.583650][T10395]  ? __pfx_get_signal+0x10/0x10
[  387.583668][T10395]  ? find_held_lock+0x2b/0x80
[  387.583685][T10395]  ? fixup_vdso_exception+0x34b/0x400
[  387.583711][T10395]  arch_do_signal_or_restart+0x8f/0x7a0
[  387.583732][T10395]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  387.583758][T10395]  ? do_user_addr_fault+0xa62/0x1370
[  387.583779][T10395]  irqentry_exit+0x38a/0x8c0
[  387.583802][T10395]  asm_exc_page_fault+0x26/0x30
[  387.583816][T10395] RIP: 0033:0x0
[  387.583825][T10395] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  387.583832][T10395] RSP: 002b:000000000000000a EFLAGS: 00010217
[  387.583844][T10395] RAX: 0000000000000000 RBX: 00007fb5a19e6180 RCX: 00007fb5a178f7c9
[  387.583853][T10395] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46
[  387.583862][T10395] RBP: 00007fb5a1813f91 R08: 0000000000000002 R09: 0000000000000000
[  387.583871][T10395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  387.583879][T10395] R13: 00007fb5a19e6218 R14: 00007fb5a19e6180 R15: 00007fffea5bf9e8
[  387.583898][T10395]  </TASK>
[  387.583904][T10395] memory: usage 3072kB, limit 3072kB, failcnt 190205
[  388.250815][T10395] memory+swap: usage 21424kB, limit 9007199254740988kB, failcnt 0
[  388.258780][T10395] kmem: usage 1332kB, limit 9007199254740988kB, failcnt 0
[  388.266356][T10395] Memory cgroup stats for /syz2:
[  388.266461][T10395] cache 1687552
[  388.274903][T10395] rss 81920
[  388.279276][T10395] rss_huge 0
[  388.283603][T10395] shmem 1687552
[  388.287179][T10395] mapped_file 909312
[  388.291127][T10395] dirty 0
[  388.294055][T10395] writeback 0
[  388.297433][T10395] workingset_refault_anon 11903
[  388.302334][T10395] workingset_refault_file 119881
[  388.307512][T10395] swap 18792448
[  388.310972][T10395] swapcached 12288
[  388.314745][T10395] pgpgin 377525
[  388.318335][T10395] pgpgout 377090
[  388.323388][T10395] pgfault 205545
[  388.330745][T10395] pgmajfault 7895
[  388.334429][T10395] inactive_anon 1024000
[  388.338694][T10395] active_anon 757760
[  388.342647][T10395] inactive_file 0
[  388.348215][T10395] active_file 0
[  388.351729][T10395] unevictable 0
[  388.355479][T10395] hierarchical_memory_limit 3145728
[  388.360710][T10395] hierarchical_memsw_limit 9223372036854771712
[  388.366991][T10395] total_cache 1687552
[  388.370981][T10395] total_rss 81920
[  388.374602][T10395] total_rss_huge 0
[  388.378466][T10395] total_shmem 1687552
[  388.382455][T10395] total_mapped_file 909312
[  388.386973][T10395] total_dirty 0
[  388.391778][T10395] total_writeback 0
[  388.400776][T10395] total_workingset_refault_anon 11903
[  388.406543][T10395] total_workingset_refault_file 119881
[  388.414758][T10395] total_swap 18792448
[  388.418740][T10395] total_swapcached 12288
[  388.423094][T10395] total_pgpgin 377525
[  388.432399][T10395] total_pgpgout 377090
[  388.437183][T10395] total_pgfault 205545
[  388.441309][T10395] total_pgmajfault 7895
[  388.445817][T10395] total_inactive_anon 1024000
[  388.452322][T10395] total_active_anon 757760
[  388.474610][T10395] total_inactive_file 0
[  388.478794][T10395] total_active_file 0
[  388.501894][T10395] total_unevictable 0
[  388.506764][T10395] anon_cost 0
[  388.510044][T10395] file_cost 0
[  388.513308][T10395] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.939,pid=10395,uid=0
[  388.545076][T10395] Memory cgroup out of memory: Killed process 10395 (syz.2.939) total-vm:135196kB, anon-rss:1268kB, file-rss:22232kB, shmem-rss:896kB, UID:0 pgtables:180kB oom_score_adj:1000
[  388.568859][T10428] syz.4.948 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  388.588667][T10428] CPU: 0 UID: 0 PID: 10428 Comm: syz.4.948 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  388.588694][T10428] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  388.588700][T10428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  388.588708][T10428] Call Trace:
[  388.588713][T10428]  <TASK>
[  388.588719][T10428]  dump_stack_lvl+0x16c/0x1f0
[  388.588745][T10428]  dump_header+0x101/0x960
[  388.588764][T10428]  oom_kill_process+0x176/0x910
[  388.588781][T10428]  out_of_memory+0x350/0x1700
[  388.588797][T10428]  ? __lock_acquire+0x436/0x2890
[  388.588814][T10428]  ? __pfx_out_of_memory+0x10/0x10
[  388.588834][T10428]  mem_cgroup_out_of_memory+0x118/0x130
[  388.588852][T10428]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  388.588873][T10428]  ? do_raw_spin_unlock+0x172/0x230
[  388.588893][T10428]  try_charge_memcg+0x695/0xd30
[  388.588919][T10428]  ? __pfx_try_charge_memcg+0x10/0x10
[  388.588940][T10428]  ? find_held_lock+0x11/0x80
[  388.588958][T10428]  ? rcu_read_unlock+0x17/0x60
[  388.588976][T10428]  charge_memcg+0x8a/0x230
[  388.588998][T10428]  __mem_cgroup_charge+0x2b/0x1e0
[  388.589013][T10428]  do_anonymous_page+0xca9/0x2190
[  388.589036][T10428]  __handle_mm_fault+0x1ecf/0x2bb0
[  388.589056][T10428]  ? __pfx___handle_mm_fault+0x10/0x10
[  388.589073][T10428]  ? __pte_offset_map_lock+0x174/0x310
[  388.589093][T10428]  ? find_held_lock+0x2b/0x80
[  388.589116][T10428]  ? follow_page_pte+0x5cf/0x1390
[  388.589141][T10428]  handle_mm_fault+0x3fe/0xad0
[  388.589166][T10428]  __get_user_pages+0x54e/0x3590
[  388.589195][T10428]  ? __pfx___get_user_pages+0x10/0x10
[  388.589221][T10428]  populate_vma_page_range+0x267/0x3f0
[  388.589243][T10428]  ? __pfx_populate_vma_page_range+0x10/0x10
[  388.589265][T10428]  ? __pfx_find_vma_intersection+0x10/0x10
[  388.589286][T10428]  ? do_mmap+0x69c/0x1210
[  388.589308][T10428]  __mm_populate+0x1d8/0x380
[  388.589330][T10428]  ? __pfx___mm_populate+0x10/0x10
[  388.589353][T10428]  ? up_write+0x282/0x4e0
[  388.589370][T10428]  vm_mmap_pgoff+0x37f/0x470
[  388.589392][T10428]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  388.589412][T10428]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  388.589431][T10428]  ? count_memcg_events+0x122/0x290
[  388.589452][T10428]  ? find_held_lock+0x2b/0x80
[  388.589473][T10428]  ksys_mmap_pgoff+0x7d/0x5c0
[  388.589502][T10428]  __x64_sys_mmap+0x125/0x190
[  388.589520][T10428]  do_syscall_64+0xcd/0xf80
[  388.589542][T10428]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.589557][T10428] RIP: 0033:0x7f0a6618f7c9
[  388.589570][T10428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.589584][T10428] RSP: 002b:00007f0a66f40038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  388.589599][T10428] RAX: ffffffffffffffda RBX: 00007f0a663e5fa0 RCX: 00007f0a6618f7c9
[  388.589608][T10428] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  388.589617][T10428] RBP: 00007f0a66213f91 R08: 0000000000000002 R09: 0000000000008000
[  388.589626][T10428] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  388.589634][T10428] R13: 00007f0a663e6038 R14: 00007f0a663e5fa0 R15: 00007ffdad3f7568
[  388.589654][T10428]  </TASK>
[  388.589659][T10428] memory: usage 3072kB, limit 3072kB, failcnt 37981
[  388.912462][T10428] memory+swap: usage 64300kB, limit 9007199254740988kB, failcnt 0
[  388.921531][T10428] kmem: usage 1388kB, limit 9007199254740988kB, failcnt 0
[  388.949309][T10428] Memory cgroup stats for /syz4:
[  388.949439][T10428] cache 1146880
[  388.975137][T10428] rss 397312
[  388.978365][T10428] rss_huge 0
[  388.989221][T10428] shmem 1146880
[  388.996884][T10428] mapped_file 0
[  389.000386][T10428] dirty 0
[  389.021904][T10428] writeback 0
[  389.034731][T10428] workingset_refault_anon 3865
[  389.048813][T10428] workingset_refault_file 17903
[  389.064668][T10428] swap 62697472
[  389.069829][T10428] swapcached 126976
[  389.074086][T10428] pgpgin 123204
[  389.078637][T10428] pgpgout 122796
[  389.082496][T10428] pgfault 90603
[  389.085982][T10428] pgmajfault 2125
[  389.089783][T10428] inactive_anon 1605632
[  389.094378][T10428] active_anon 65536
[  389.098205][T10428] inactive_file 0
[  389.102414][T10428] active_file 0
[  389.105931][T10428] unevictable 0
[  389.109381][T10428] hierarchical_memory_limit 3145728
[  389.114724][T10428] hierarchical_memsw_limit 9223372036854771712
[  389.120949][T10428] total_cache 1146880
[  389.125049][T10428] total_rss 397312
[  389.128778][T10428] total_rss_huge 0
[  389.132637][T10428] total_shmem 1146880
[  389.136688][T10428] total_mapped_file 0
[  389.140669][T10428] total_dirty 0
[  389.144315][T10428] total_writeback 0
[  389.148190][T10428] total_workingset_refault_anon 3865
[  389.153552][T10428] total_workingset_refault_file 17903
[  389.159023][T10428] total_swap 62697472
[  389.164645][T10428] total_swapcached 126976
[  389.168994][T10428] total_pgpgin 123204
[  389.173158][T10428] total_pgpgout 122796
[  389.177234][T10428] total_pgfault 90603
[  389.181270][T10428] total_pgmajfault 2125
[  389.185568][T10428] total_inactive_anon 1605632
[  389.190238][T10428] total_active_anon 65536
[  389.194629][T10428] total_inactive_file 0
[  389.198889][T10428] total_active_file 0
[  389.202930][T10428] total_unevictable 0
[  389.206911][T10428] anon_cost 0
[  389.210276][T10428] file_cost 0
[  389.213599][T10428] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.873,pid=10095,uid=0
[  389.228984][T10428] Memory cgroup out of memory: Killed process 10095 (syz.4.873) total-vm:139432kB, anon-rss:1140kB, file-rss:46320kB, shmem-rss:0kB, UID:0 pgtables:236kB oom_score_adj:1000
[  389.246510][T10432] syz.1.950 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  389.256393][T10432] CPU: 1 UID: 0 PID: 10432 Comm: syz.1.950 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  389.256437][T10432] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  389.256447][T10432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  389.256463][T10432] Call Trace:
[  389.256472][T10432]  <TASK>
[  389.256482][T10432]  dump_stack_lvl+0x16c/0x1f0
[  389.256523][T10432]  dump_header+0x101/0x960
[  389.256560][T10432]  oom_kill_process+0x176/0x910
[  389.256595][T10432]  out_of_memory+0x350/0x1700
[  389.256633][T10432]  ? __pfx_out_of_memory+0x10/0x10
[  389.256660][T10432]  ? irqentry_exit+0x1dd/0x8c0
[  389.256700][T10432]  ? lockdep_hardirqs_on+0x7c/0x110
[  389.256749][T10432]  mem_cgroup_out_of_memory+0x118/0x130
[  389.256782][T10432]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  389.256825][T10432]  ? _raw_spin_unlock+0x33/0x50
[  389.256867][T10432]  try_charge_memcg+0x695/0xd30
[  389.256915][T10432]  ? __pfx_try_charge_memcg+0x10/0x10
[  389.256955][T10432]  ? find_held_lock+0x11/0x80
[  389.256990][T10432]  ? rcu_read_unlock+0x17/0x60
[  389.257141][T10432]  charge_memcg+0x8a/0x230
[  389.257184][T10432]  __mem_cgroup_charge+0x2b/0x1e0
[  389.257215][T10432]  do_anonymous_page+0xca9/0x2190
[  389.257260][T10432]  __handle_mm_fault+0x1ecf/0x2bb0
[  389.257295][T10432]  ? __pfx___handle_mm_fault+0x10/0x10
[  389.257320][T10432]  ? __pte_offset_map_lock+0x174/0x310
[  389.257356][T10432]  ? find_held_lock+0x2b/0x80
[  389.257402][T10432]  ? follow_page_pte+0x5cf/0x1390
[  389.257450][T10432]  handle_mm_fault+0x3fe/0xad0
[  389.257487][T10432]  __get_user_pages+0x54e/0x3590
[  389.257544][T10432]  ? __pfx___get_user_pages+0x10/0x10
[  389.257591][T10432]  populate_vma_page_range+0x267/0x3f0
[  389.257636][T10432]  ? __pfx_populate_vma_page_range+0x10/0x10
[  389.257678][T10432]  ? __pfx_find_vma_intersection+0x10/0x10
[  389.257730][T10432]  ? do_mmap+0x69c/0x1210
[  389.257774][T10432]  __mm_populate+0x1d8/0x380
[  389.257818][T10432]  ? __pfx___mm_populate+0x10/0x10
[  389.257863][T10432]  ? up_write+0x282/0x4e0
[  389.257897][T10432]  vm_mmap_pgoff+0x37f/0x470
[  389.257940][T10432]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  389.257978][T10432]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  389.258016][T10432]  ? count_memcg_events+0x122/0x290
[  389.258065][T10432]  ? __x64_sys_futex+0x1e0/0x4c0
[  389.258096][T10432]  ? __x64_sys_futex+0x1e9/0x4c0
[  389.258133][T10432]  ksys_mmap_pgoff+0x7d/0x5c0
[  389.258170][T10432]  ? xfd_validate_state+0x61/0x180
[  389.258202][T10432]  __x64_sys_mmap+0x125/0x190
[  389.258242][T10432]  do_syscall_64+0xcd/0xf80
[  389.258285][T10432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.258315][T10432] RIP: 0033:0x7f906ef8f7c9
[  389.258339][T10432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.258367][T10432] RSP: 002b:00007f906fdcb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  389.258394][T10432] RAX: ffffffffffffffda RBX: 00007f906f1e5fa0 RCX: 00007f906ef8f7c9
[  389.258413][T10432] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  389.258430][T10432] RBP: 00007f906f013f91 R08: ffffffffffffffff R09: 0000000000000000
[  389.258449][T10432] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  389.258466][T10432] R13: 00007f906f1e6038 R14: 00007f906f1e5fa0 R15: 00007ffca0d7f6a8
[  389.258506][T10432]  </TASK>
[  389.258517][T10432] memory: usage 3072kB, limit 3072kB, failcnt 128807
[  389.610232][T10432] memory+swap: usage 48124kB, limit 9007199254740988kB, failcnt 0
[  389.618190][T10432] kmem: usage 1904kB, limit 9007199254740988kB, failcnt 0
[  389.625526][T10432] Memory cgroup stats for /syz1:
[  389.625734][T10432] cache 724992
[  389.634179][T10432] rss 372736
[  389.637459][T10432] rss_huge 0
[  389.640727][T10432] shmem 720896
[  389.644106][T10432] mapped_file 0
[  389.647719][T10432] dirty 0
[  389.650791][T10432] writeback 0
[  389.654084][T10432] workingset_refault_anon 15472
[  389.698745][T10432] workingset_refault_file 23587
[  389.713882][T10432] swap 46133248
[  389.717380][T10432] swapcached 90112
[  389.722733][T10432] pgpgin 276613
[  389.728733][T10432] pgpgout 276323
[  389.732394][T10432] pgfault 296109
[  389.735944][T10432] pgmajfault 7951
[  389.749245][T10432] inactive_anon 700416
[  389.759583][T10432] active_anon 483328
[  389.763604][T10432] inactive_file 4096
[  389.767511][T10432] active_file 0
[  389.771143][T10432] unevictable 0
[  389.778940][T10432] hierarchical_memory_limit 3145728
[  389.786791][T10432] hierarchical_memsw_limit 9223372036854771712
[  389.796882][T10432] total_cache 724992
[  389.807002][T10432] total_rss 372736
[  389.810903][T10432] total_rss_huge 0
[  389.814636][T10432] total_shmem 720896
[  389.828207][T10432] total_mapped_file 0
[  389.832489][T10432] total_dirty 0
[  389.835968][T10432] total_writeback 0
[  389.845222][T10432] total_workingset_refault_anon 15472
[  389.853377][T10432] total_workingset_refault_file 23587
[  389.863792][T10432] total_swap 46133248
[  389.872907][T10432] total_swapcached 90112
[  389.879491][T10432] total_pgpgin 276613
[  389.887998][T10432] total_pgpgout 276323
[  389.892224][T10432] total_pgfault 296109
[  389.896384][T10432] total_pgmajfault 7951
[  389.906517][T10432] total_inactive_anon 700416
[  389.911468][T10432] total_active_anon 483328
[  389.915901][T10432] total_inactive_file 4096
[  389.928074][T10432] total_active_file 0
[  389.932185][T10432] total_unevictable 0
[  389.936183][T10432] anon_cost 0
[  389.939859][T10432] file_cost 0
[  389.947693][T10432] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.902,pid=10220,uid=0
[  389.967543][T10432] Memory cgroup out of memory: Killed process 10220 (syz.1.902) total-vm:104212kB, anon-rss:1172kB, file-rss:51352kB, shmem-rss:0kB, UID:0 pgtables:192kB oom_score_adj:1000
[  390.324825][T10454] netlink: 342 bytes leftover after parsing attributes in process `syz.4.955'.
[  390.387388][T10455] random: crng reseeded on system resumption
[  391.367379][T10473] zswap: compressor  not available
[  391.887674][T10471] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  391.920326][T10471] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  391.942691][T10471] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  391.957372][T10471] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  392.358086][T10493] FAULT_INJECTION: forcing a failure.
[  392.358086][T10493] name failslab, interval 1, probability 0, space 0, times 0
[  392.427927][T10493] CPU: 0 UID: 0 PID: 10493 Comm: syz.4.963 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  392.427974][T10493] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  392.427984][T10493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  392.428000][T10493] Call Trace:
[  392.428009][T10493]  <TASK>
[  392.428019][T10493]  dump_stack_lvl+0x16c/0x1f0
[  392.428073][T10493]  should_fail_ex+0x512/0x640
[  392.428102][T10493]  ? fs_reclaim_acquire+0xae/0x150
[  392.428145][T10493]  should_failslab+0xc2/0x120
[  392.428184][T10493]  __kmalloc_noprof+0xeb/0x910
[  392.428213][T10493]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  392.428256][T10493]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  392.428291][T10493]  tomoyo_realpath_from_path+0xc2/0x6e0
[  392.428330][T10493]  ? tomoyo_profile+0x47/0x60
[  392.428372][T10493]  tomoyo_path_number_perm+0x245/0x580
[  392.428402][T10493]  ? tomoyo_path_number_perm+0x237/0x580
[  392.428434][T10493]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  392.428467][T10493]  ? find_held_lock+0x2b/0x80
[  392.428531][T10493]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  392.428566][T10493]  ? count_memcg_events+0x122/0x290
[  392.428602][T10493]  ? hook_file_ioctl_common+0x144/0x410
[  392.428637][T10493]  ? find_held_lock+0x2b/0x80
[  392.428680][T10493]  security_file_ioctl+0x9b/0x240
[  392.428713][T10493]  __x64_sys_ioctl+0xb7/0x210
[  392.428747][T10493]  do_syscall_64+0xcd/0xf80
[  392.428789][T10493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  392.428815][T10493] RIP: 0033:0x7f0a6618f7c9
[  392.428836][T10493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  392.428862][T10493] RSP: 002b:00007f0a66f40038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  392.428888][T10493] RAX: ffffffffffffffda RBX: 00007f0a663e5fa0 RCX: 00007f0a6618f7c9
[  392.428907][T10493] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000002
[  392.428923][T10493] RBP: 00007f0a66f40090 R08: 0000000000000000 R09: 0000000000000000
[  392.428939][T10493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  392.428955][T10493] R13: 00007f0a663e6038 R14: 00007f0a663e5fa0 R15: 00007ffdad3f7568
[  392.428993][T10493]  </TASK>
[  392.666053][T10493] ERROR: Out of memory at tomoyo_realpath_from_path.
[  392.727558][T10502] netlink: 342 bytes leftover after parsing attributes in process `syz.2.965'.
[  393.216108][T10513] FAULT_INJECTION: forcing a failure.
[  393.216108][T10513] name failslab, interval 1, probability 0, space 0, times 0
[  393.233390][ T7415] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  393.251116][ T7415] EXT4-fs (sda1): This should not happen!! Data will be lost
[  393.251116][ T7415] 
[  393.251523][T10513] CPU: 1 UID: 0 PID: 10513 Comm: syz.2.969 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  393.251570][T10513] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  393.251581][T10513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  393.251598][T10513] Call Trace:
[  393.251606][T10513]  <TASK>
[  393.251615][T10513]  dump_stack_lvl+0x16c/0x1f0
[  393.251661][T10513]  should_fail_ex+0x512/0x640
[  393.251691][T10513]  ? __kmalloc_noprof+0xca/0x910
[  393.251733][T10513]  should_failslab+0xc2/0x120
[  393.251776][T10513]  __kmalloc_noprof+0xeb/0x910
[  393.251804][T10513]  ? lockdep_init_map_type+0x5c/0x270
[  393.251833][T10513]  ? udpv6_init_sock+0x24e/0x450
[  393.251872][T10513]  ? udpv6_init_sock+0x24e/0x450
[  393.251908][T10513]  udpv6_init_sock+0x24e/0x450
[  393.251944][T10513]  udplitev6_sk_init+0x15/0x60
[  393.251979][T10513]  ? __pfx_udplitev6_sk_init+0x10/0x10
[  393.252015][T10513]  inet6_create+0xb30/0x12b0
[  393.252057][T10513]  ? inet6_create+0x7f/0x12b0
[  393.252098][T10513]  __sock_create+0x339/0x8a0
[  393.252130][T10513]  __sys_socket+0x14d/0x260
[  393.252154][T10513]  ? fput+0x70/0xf0
[  393.252178][T10513]  ? __pfx___sys_socket+0x10/0x10
[  393.252204][T10513]  ? xfd_validate_state+0x61/0x180
[  393.252228][T10513]  ? __pfx_ksys_write+0x10/0x10
[  393.252272][T10513]  __x64_sys_socket+0x72/0xb0
[  393.252297][T10513]  ? lockdep_hardirqs_on+0x7c/0x110
[  393.252335][T10513]  do_syscall_64+0xcd/0xf80
[  393.252377][T10513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  393.252405][T10513] RIP: 0033:0x7fb5a178f7c9
[  393.252426][T10513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  393.252454][T10513] RSP: 002b:00007fb5a2608038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  393.252480][T10513] RAX: ffffffffffffffda RBX: 00007fb5a19e5fa0 RCX: 00007fb5a178f7c9
[  393.252499][T10513] RDX: 0000000000000088 RSI: 0000000000000002 RDI: 000000000000000a
[  393.252515][T10513] RBP: 00007fb5a1813f91 R08: 0000000000000000 R09: 0000000000000000
[  393.252532][T10513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  393.252548][T10513] R13: 00007fb5a19e6038 R14: 00007fb5a19e5fa0 R15: 00007fffea5bf9e8
[  393.252584][T10513]  </TASK>
[  393.288284][T10515] netlink: 16 bytes leftover after parsing attributes in process `syz.5.970'.
[  393.344543][ T7090] Bluetooth: hci1: command 0x0c1a tx timeout
[  393.691262][T10526] random: crng reseeded on system resumption
[  393.705070][T10521] zswap: compressor  not available
[  393.978620][ T6240] Bluetooth: hci3: command 0x0c1a tx timeout
[  393.984787][ T6274] Bluetooth: hci4: command 0x0c1a tx timeout
[  393.991247][ T7090] Bluetooth: hci5: command 0x0c1a tx timeout
[  395.205825][T10529] kexec: Could not allocate control_code_buffer
[  395.497120][T10552] netlink: 342 bytes leftover after parsing attributes in process `syz.5.975'.
[  395.760333][ T7090] Bluetooth: hci5: unexpected subevent 0x01 length: 123 > 18
[  395.775541][ T7090] Bluetooth: hci5: Invalid handle: 0x3a4a > 0x0eff
[  396.019865][ T5162] Trying to write to read-only block-device sda1
[  396.659980][T10562] sp0: Synchronizing with TNC
[  396.749122][T10565] FAULT_INJECTION: forcing a failure.
[  396.749122][T10565] name failslab, interval 1, probability 0, space 0, times 0
[  396.795965][T10565] CPU: 1 UID: 0 PID: 10565 Comm: syz.2.979 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  396.796012][T10565] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  396.796022][T10565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  396.796037][T10565] Call Trace:
[  396.796046][T10565]  <TASK>
[  396.796056][T10565]  dump_stack_lvl+0x16c/0x1f0
[  396.796100][T10565]  should_fail_ex+0x512/0x640
[  396.796129][T10565]  ? fs_reclaim_acquire+0xae/0x150
[  396.796172][T10565]  should_failslab+0xc2/0x120
[  396.796211][T10565]  __kmalloc_noprof+0xeb/0x910
[  396.796240][T10565]  ? tomoyo_encode2+0x100/0x3e0
[  396.796281][T10565]  ? tomoyo_encode2+0x100/0x3e0
[  396.796313][T10565]  tomoyo_encode2+0x100/0x3e0
[  396.796352][T10565]  tomoyo_encode+0x29/0x50
[  396.796385][T10565]  tomoyo_realpath_from_path+0x18f/0x6e0
[  396.796431][T10565]  tomoyo_path_number_perm+0x245/0x580
[  396.796460][T10565]  ? tomoyo_path_number_perm+0x237/0x580
[  396.796491][T10565]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  396.796523][T10565]  ? find_held_lock+0x2b/0x80
[  396.796594][T10565]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  396.796631][T10565]  ? count_memcg_events+0x122/0x290
[  396.796663][T10565]  ? hook_file_ioctl_common+0x144/0x410
[  396.796693][T10565]  ? find_held_lock+0x2b/0x80
[  396.796733][T10565]  security_file_ioctl+0x9b/0x240
[  396.796764][T10565]  __x64_sys_ioctl+0xb7/0x210
[  396.796797][T10565]  do_syscall_64+0xcd/0xf80
[  396.796833][T10565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  396.796856][T10565] RIP: 0033:0x7fb5a178f7c9
[  396.796876][T10565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  396.796899][T10565] RSP: 002b:00007fb5a2608038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  396.796926][T10565] RAX: ffffffffffffffda RBX: 00007fb5a19e5fa0 RCX: 00007fb5a178f7c9
[  396.796942][T10565] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000002
[  396.796957][T10565] RBP: 00007fb5a2608090 R08: 0000000000000000 R09: 0000000000000000
[  396.796973][T10565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  396.796989][T10565] R13: 00007fb5a19e6038 R14: 00007fb5a19e5fa0 R15: 00007fffea5bf9e8
[  396.797025][T10565]  </TASK>
[  396.797110][T10565] ERROR: Out of memory at tomoyo_realpath_from_path.
[  397.870585][T10591] size and base must be multiples of 4 kiB
[  397.876618][T10591] CPU: 0 UID: 0 PID: 10591 Comm: syz.5.985 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  397.876665][T10591] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  397.876678][T10591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  397.876695][T10591] Call Trace:
[  397.876705][T10591]  <TASK>
[  397.876716][T10591]  dump_stack_lvl+0x16c/0x1f0
[  397.876764][T10591]  mtrr_del+0xd1/0x110
[  397.876798][T10591]  mtrr_ioctl+0x922/0xcf0
[  397.876823][T10591]  ? __pfx_mtrr_ioctl+0x10/0x10
[  397.876857][T10591]  ? find_held_lock+0x2b/0x80
[  397.876902][T10591]  ? __fget_files+0x20e/0x3c0
[  397.876942][T10591]  ? __pfx_mtrr_ioctl+0x10/0x10
[  397.876969][T10591]  proc_reg_unlocked_ioctl+0x229/0x320
[  397.877003][T10591]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  397.877040][T10591]  __x64_sys_ioctl+0x18e/0x210
[  397.877074][T10591]  do_syscall_64+0xcd/0xf80
[  397.877117][T10591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  397.877145][T10591] RIP: 0033:0x7feb3758f7c9
[  397.877167][T10591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.877191][T10591] RSP: 002b:00007feb357f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  397.877219][T10591] RAX: ffffffffffffffda RBX: 00007feb377e6180 RCX: 00007feb3758f7c9
[  397.877238][T10591] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000009
[  397.877256][T10591] RBP: 00007feb37613f91 R08: 0000000000000000 R09: 0000000000000000
[  397.877272][T10591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  397.877289][T10591] R13: 00007feb377e6218 R14: 00007feb377e6180 R15: 00007ffc64edb148
[  397.877326][T10591]  </TASK>
[  398.263970][T10597] FAULT_INJECTION: forcing a failure.
[  398.263970][T10597] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  398.298637][T10595] rcu: RCU calculated value of scheduler-enlistment delay is 10 jiffies.
[  398.306043][T10597] CPU: 1 UID: 0 PID: 10597 Comm: syz.1.988 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  398.306093][T10597] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  398.306105][T10597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  398.306123][T10597] Call Trace:
[  398.306133][T10597]  <TASK>
[  398.306145][T10597]  dump_stack_lvl+0x16c/0x1f0
[  398.306201][T10597]  should_fail_ex+0x512/0x640
[  398.306238][T10597]  should_fail_alloc_page+0xe7/0x130
[  398.306285][T10597]  prepare_alloc_pages+0x401/0x670
[  398.306329][T10597]  ? rcu_is_watching+0x12/0xc0
[  398.306371][T10597]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  398.306415][T10597]  ? __lock_acquire+0x436/0x2890
[  398.306447][T10597]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  398.306483][T10597]  ? __mod_zone_page_state+0xcc/0x1a0
[  398.306514][T10597]  ? lru_gen_add_folio+0x1a4/0xef0
[  398.306551][T10597]  ? __lock_acquire+0x436/0x2890
[  398.306580][T10597]  ? __lock_acquire+0x436/0x2890
[  398.306606][T10597]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  398.306648][T10597]  ? policy_nodemask+0xea/0x4e0
[  398.306692][T10597]  alloc_pages_mpol+0x1fb/0x550
[  398.306733][T10597]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  398.306783][T10597]  folio_alloc_mpol_noprof+0x36/0x2f0
[  398.306822][T10597]  vma_alloc_folio_noprof+0xed/0x1e0
[  398.306851][T10597]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  398.306891][T10597]  do_anonymous_page+0xc81/0x2190
[  398.306942][T10597]  __handle_mm_fault+0x1ecf/0x2bb0
[  398.306982][T10597]  ? __pfx___handle_mm_fault+0x10/0x10
[  398.307015][T10597]  ? __pte_offset_map_lock+0x174/0x310
[  398.307056][T10597]  ? find_held_lock+0x2b/0x80
[  398.307097][T10597]  ? follow_page_pte+0x5cf/0x1390
[  398.307148][T10597]  handle_mm_fault+0x3fe/0xad0
[  398.307194][T10597]  __get_user_pages+0x54e/0x3590
[  398.307251][T10597]  ? __pfx___get_user_pages+0x10/0x10
[  398.307297][T10597]  populate_vma_page_range+0x267/0x3f0
[  398.307342][T10597]  ? __pfx_populate_vma_page_range+0x10/0x10
[  398.307384][T10597]  ? __pfx_find_vma_intersection+0x10/0x10
[  398.307425][T10597]  ? do_mmap+0x69c/0x1210
[  398.307467][T10597]  __mm_populate+0x1d8/0x380
[  398.307510][T10597]  ? __pfx___mm_populate+0x10/0x10
[  398.307554][T10597]  ? up_write+0x282/0x4e0
[  398.307587][T10597]  vm_mmap_pgoff+0x37f/0x470
[  398.307630][T10597]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  398.307667][T10597]  ? fd_install+0x223/0x570
[  398.307711][T10597]  ? __x64_sys_futex+0x1e0/0x4c0
[  398.307742][T10597]  ? __x64_sys_futex+0x1e9/0x4c0
[  398.307778][T10597]  ksys_mmap_pgoff+0x7d/0x5c0
[  398.307827][T10597]  ? xfd_validate_state+0x61/0x180
[  398.307860][T10597]  __x64_sys_mmap+0x125/0x190
[  398.307893][T10597]  do_syscall_64+0xcd/0xf80
[  398.307937][T10597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.307965][T10597] RIP: 0033:0x7f906ef8f7c9
[  398.307989][T10597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  398.308018][T10597] RSP: 002b:00007f906fdcb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  398.308045][T10597] RAX: ffffffffffffffda RBX: 00007f906f1e5fa0 RCX: 00007f906ef8f7c9
[  398.308065][T10597] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  398.308083][T10597] RBP: 00007f906f013f91 R08: ffffffffffffffff R09: 0000000000008000
[  398.308103][T10597] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  398.308121][T10597] R13: 00007f906f1e6038 R14: 00007f906f1e5fa0 R15: 00007ffca0d7f6a8
[  398.308171][T10597]  </TASK>
[  399.967132][ T7414] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  399.980885][ T7414] EXT4-fs (sda1): This should not happen!! Data will be lost
[  399.980885][ T7414] 
[  400.001165][ T7414] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 63 with max blocks 1 with error 117
[  400.016112][ T7414] EXT4-fs (sda1): This should not happen!! Data will be lost
[  400.016112][ T7414] 
[  400.032267][ T7414] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 919 with max blocks 105 with error 117
[  400.056518][ T7414] EXT4-fs (sda1): This should not happen!! Data will be lost
[  400.056518][ T7414] 
[  401.244656][T10655] random: crng reseeded on system resumption
[  401.713280][T10662] random: crng reseeded on system resumption
[  402.023773][T10666] zswap: compressor  not available
[  402.950412][T10672] kexec: Could not allocate control_code_buffer
[  403.421169][T10693] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1013'.
[  403.430671][T10693] bridge_slave_1: left allmulticast mode
[  403.446042][T10693] bridge_slave_1: left promiscuous mode
[  403.452606][T10693] bridge0: port 2(bridge_slave_1) entered disabled state
[  403.469178][T10693] bridge_slave_0: left allmulticast mode
[  403.482871][T10693] bridge_slave_0: left promiscuous mode
[  403.504960][T10693] bridge0: port 1(bridge_slave_0) entered disabled state
[  405.028168][T10713] FAULT_INJECTION: forcing a failure.
[  405.028168][T10713] name failslab, interval 1, probability 0, space 0, times 0
[  405.068683][T10713] CPU: 0 UID: 0 PID: 10713 Comm: syz.4.1019 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  405.068737][T10713] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  405.068750][T10713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  405.068767][T10713] Call Trace:
[  405.068777][T10713]  <TASK>
[  405.068788][T10713]  dump_stack_lvl+0x16c/0x1f0
[  405.068838][T10713]  should_fail_ex+0x512/0x640
[  405.068898][T10713]  ? kmem_cache_alloc_noprof+0x62/0x770
[  405.068938][T10713]  should_failslab+0xc2/0x120
[  405.068982][T10713]  kmem_cache_alloc_noprof+0x83/0x770
[  405.069017][T10713]  ? stack_depot_save_flags+0x29/0x9b0
[  405.069049][T10713]  ? alloc_empty_file+0x55/0x1e0
[  405.069087][T10713]  ? alloc_empty_file+0x55/0x1e0
[  405.069115][T10713]  ? kasan_save_track+0x14/0x30
[  405.069151][T10713]  alloc_empty_file+0x55/0x1e0
[  405.069184][T10713]  path_openat+0xde/0x3140
[  405.069223][T10713]  ? do_syscall_64+0xcd/0xf80
[  405.069263][T10713]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.069303][T10713]  ? __pfx_path_openat+0x10/0x10
[  405.069350][T10713]  ? __lock_acquire+0x436/0x2890
[  405.069383][T10713]  do_filp_open+0x20b/0x470
[  405.069426][T10713]  ? __pfx_do_filp_open+0x10/0x10
[  405.069493][T10713]  ? _raw_spin_unlock+0x28/0x50
[  405.069529][T10713]  ? alloc_fd+0x471/0x7d0
[  405.069578][T10713]  do_sys_openat2+0x121/0x290
[  405.069609][T10713]  ? __pfx_do_sys_openat2+0x10/0x10
[  405.069654][T10713]  __x64_sys_open+0x153/0x1e0
[  405.069686][T10713]  ? __pfx___x64_sys_open+0x10/0x10
[  405.069732][T10713]  do_syscall_64+0xcd/0xf80
[  405.069776][T10713]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.069806][T10713] RIP: 0033:0x7f0a6618f7c9
[  405.069830][T10713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  405.069867][T10713] RSP: 002b:00007f0a66f40038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  405.069901][T10713] RAX: ffffffffffffffda RBX: 00007f0a663e5fa0 RCX: 00007f0a6618f7c9
[  405.069921][T10713] RDX: 0000000000000408 RSI: 0000000000595002 RDI: 0000200000000100
[  405.069941][T10713] RBP: 00007f0a66213f91 R08: 0000000000000000 R09: 0000000000000000
[  405.069960][T10713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  405.069978][T10713] R13: 00007f0a663e6038 R14: 00007f0a663e5fa0 R15: 00007ffdad3f7568
[  405.070016][T10713]  </TASK>
[  405.980217][T10724] ubi31: attaching mtd0
[  405.999814][T10724] ubi31: scanning is finished
[  406.024252][T10724] ubi31 error: ubi_read_volume_table: the layout volume was not found
[  406.165408][T10724] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  408.594130][T10763] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1031'.
[  411.390786][T10780] random: crng reseeded on system resumption
[  411.659534][T10786] netlink: 338 bytes leftover after parsing attributes in process `syz.5.1036'.
[  411.681698][T10786] bond_slave_0: entered allmulticast mode
[  411.694079][T10786] netlink: 338 bytes leftover after parsing attributes in process `syz.5.1036'.
[  412.688725][T10770] syz.2.1034 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  412.866986][T10797] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.5.1038: iget: checksum invalid
[  412.890276][T10797] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  412.944855][T10797] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.5.1038: iget: checksum invalid
[  412.984350][T10770] CPU: 1 UID: 0 PID: 10770 Comm: syz.2.1034 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  412.984378][T10770] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  412.984384][T10770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  412.984393][T10770] Call Trace:
[  412.984399][T10770]  <TASK>
[  412.984405][T10770]  dump_stack_lvl+0x16c/0x1f0
[  412.984431][T10770]  dump_header+0x101/0x960
[  412.984451][T10770]  oom_kill_process+0x176/0x910
[  412.984469][T10770]  out_of_memory+0x350/0x1700
[  412.984485][T10770]  ? __lock_acquire+0x436/0x2890
[  412.984502][T10770]  ? __pfx_out_of_memory+0x10/0x10
[  412.984523][T10770]  mem_cgroup_out_of_memory+0x118/0x130
[  412.984542][T10770]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  412.984564][T10770]  ? do_raw_spin_unlock+0x172/0x230
[  412.984583][T10770]  try_charge_memcg+0x695/0xd30
[  412.984609][T10770]  ? __pfx_try_charge_memcg+0x10/0x10
[  412.984635][T10770]  ? find_held_lock+0x2b/0x80
[  412.984656][T10770]  charge_memcg+0x8a/0x230
[  412.984678][T10770]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  412.984695][T10770]  __read_swap_cache_async+0x397/0x500
[  412.984716][T10770]  ? __pfx___read_swap_cache_async+0x10/0x10
[  412.984734][T10770]  ? mlock_drain_local+0x130/0x4e0
[  412.984758][T10770]  swap_cluster_readahead+0x432/0x770
[  412.984794][T10770]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  412.984835][T10770]  ? __lock_acquire+0x436/0x2890
[  412.984873][T10770]  ? get_vma_policy+0x242/0x3c0
[  412.984901][T10770]  swapin_readahead+0x160/0x1220
[  412.984946][T10770]  ? __pfx_swapin_readahead+0x10/0x10
[  412.984981][T10770]  ? find_held_lock+0x2b/0x80
[  412.985013][T10770]  ? swap_cache_get_folio+0x267/0x8e0
[  412.985041][T10770]  ? swap_cache_get_folio+0x267/0x8e0
[  412.985067][T10770]  ? swap_cache_get_folio+0x267/0x8e0
[  412.985098][T10770]  ? swap_cache_get_folio+0x267/0x8e0
[  412.985125][T10770]  ? swap_cache_get_folio+0x293/0x8e0
[  412.985155][T10770]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  412.985182][T10770]  ? __pfx_get_swap_device+0x10/0x10
[  412.985216][T10770]  ? rcu_read_unlock+0x2d/0xb0
[  412.985249][T10770]  ? do_swap_page+0x962/0x64a0
[  412.985272][T10770]  do_swap_page+0x962/0x64a0
[  412.985301][T10770]  ? __lock_acquire+0x436/0x2890
[  412.985333][T10770]  ? __pfx_do_swap_page+0x10/0x10
[  412.985362][T10770]  ? __pfx_default_wake_function+0x10/0x10
[  412.985404][T10770]  ? rcu_is_watching+0x12/0xc0
[  412.985437][T10770]  ? ___pte_offset_map+0x175/0x380
[  412.985475][T10770]  __handle_mm_fault+0x19cb/0x2bb0
[  412.985507][T10770]  ? reacquire_held_locks+0xcd/0x1f0
[  412.985532][T10770]  ? __pfx___handle_mm_fault+0x10/0x10
[  412.985562][T10770]  ? lock_vma_under_rcu+0x176/0x580
[  412.985599][T10770]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  412.985641][T10770]  handle_mm_fault+0x3fe/0xad0
[  412.985673][T10770]  do_user_addr_fault+0x60c/0x1370
[  412.985706][T10770]  ? rcu_is_watching+0x12/0xc0
[  412.985742][T10770]  exc_page_fault+0x64/0xc0
[  412.985778][T10770]  asm_exc_page_fault+0x26/0x30
[  412.985808][T10770] RIP: 0033:0x7fb5a164d72d
[  412.985828][T10770] Code: 44 8d 56 04 4c 8d 0d f2 48 38 00 89 f0 4c 8d 05 e9 28 38 00 89 c2 81 e2 ff 1f 00 00 49 8b 0c d1 48 39 f1 74 28 48 85 c9 74 29 <45> 38 1c 10 75 23 83 c0 01 44 39 d0 75 dc 48 89 f0 25 ff 1f 00 00
[  412.985852][T10770] RSP: 002b:00007fffea5bfa68 EFLAGS: 00010282
[  412.985872][T10770] RAX: 00000000821c60d6 RBX: 00007fb5a2515720 RCX: ffffffff820460d6
[  412.985890][T10770] RDX: 00000000000000d6 RSI: ffffffff821c60d6 RDI: 0000000000000014
[  412.985906][T10770] RBP: ffffffff821c60d6 R08: 00007fb5a19d0000 R09: 00007fb5a19d2000
[  412.985923][T10770] R10: 00000000821c60da R11: 0000000000000014 R12: 0000000000000014
[  412.985939][T10770] R13: 0000000000000002 R14: ffffffff821c66e1 R15: 0000000000000002
[  412.985956][T10770]  ? is_valid_madvise+0x11/0xd0
[  412.985991][T10770]  ? do_kmem_cache_create+0x456/0x740
[  412.986029][T10770]  ? pcpu_block_update_hint_alloc+0x6f6/0xb80
[  412.986055][T10770]  ? do_kmem_cache_create+0x456/0x740
[  412.986094][T10770]  </TASK>
[  412.987842][T10770] memory: usage 3072kB, limit 3072kB, failcnt 198461
[  413.020267][T10797] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  413.423056][T10770] memory+swap: usage 11384kB, limit 9007199254740988kB, failcnt 0
[  413.435917][T10797] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.5.1038: iget: checksum invalid
[  413.447195][T10797] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  413.457731][T10797] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.5.1038: iget: checksum invalid
[  413.461727][T10770] kmem: usage 1884kB, limit 9007199254740988kB, failcnt 0
[  413.470366][T10797] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  413.486784][T10797] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  413.507636][T10770] Memory cgroup stats for /syz2:
[  413.529500][T10770] cache 1200128
[  413.558268][T10770] rss 0
[  413.561057][T10770] rss_huge 0
[  413.564233][T10770] shmem 1200128
[  413.570603][T10797] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  413.591609][T10770] mapped_file 1200128
[  413.595604][T10770] dirty 0
[  413.608712][T10770] writeback 0
[  413.616870][T10770] workingset_refault_anon 12874
[  413.632240][T10770] workingset_refault_file 119888
[  413.641542][T10770] swap 8511488
[  413.644923][T10770] swapcached 16384
[  413.664266][T10770] pgpgin 397164
[  413.674381][T10770] pgpgout 396867
[  413.685969][T10770] pgfault 228773
[  413.689526][T10770] pgmajfault 8704
[  413.700941][T10770] inactive_anon 0
[  413.708965][T10770] active_anon 16384
[  413.712802][T10770] inactive_file 0
[  413.727328][T10770] active_file 0
[  413.730900][T10770] unevictable 1200128
[  413.734871][T10770] hierarchical_memory_limit 3145728
[  413.755589][T10770] hierarchical_memsw_limit 9223372036854771712
[  413.769688][T10770] total_cache 1200128
[  413.777932][T10770] total_rss 0
[  413.781237][T10770] total_rss_huge 0
[  413.795161][T10770] total_shmem 1200128
[  413.809515][T10770] total_mapped_file 1200128
[  413.814044][T10770] total_dirty 0
[  413.827358][T10770] total_writeback 0
[  413.836335][T10770] total_workingset_refault_anon 12874
[  413.846191][T10770] total_workingset_refault_file 119888
[  413.851690][T10770] total_swap 8511488
[  413.870908][T10770] total_swapcached 16384
[  413.895056][T10770] total_pgpgin 397164
[  413.919514][T10770] total_pgpgout 396867
[  413.923608][T10770] total_pgfault 228773
[  413.938506][T10770] total_pgmajfault 8704
[  413.950601][T10770] total_inactive_anon 0
[  413.964885][T10770] total_active_anon 16384
[  413.971704][T10770] total_inactive_file 0
[  413.984660][T10770] total_active_file 0
[  413.994502][T10770] total_unevictable 1200128
[  414.004465][T10770] anon_cost 0
[  414.013048][T10770] file_cost 0
[  414.023474][T10770] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1034,pid=10770,uid=0
[  414.067745][T10770] Memory cgroup out of memory: Killed process 10770 (syz.2.1034) total-vm:137244kB, anon-rss:1176kB, file-rss:22996kB, shmem-rss:1152kB, UID:0 pgtables:156kB oom_score_adj:1000
[  416.518601][   T32] oom_reaper: reaped process 10770 (syz.2.1034), now anon-rss:32kB, file-rss:21796kB, shmem-rss:1152kB
[  417.458455][T10837] FAULT_INJECTION: forcing a failure.
[  417.458455][T10837] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  417.520714][T10837] CPU: 1 UID: 0 PID: 10837 Comm: syz.4.1047 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  417.520768][T10837] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  417.520781][T10837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  417.520799][T10837] Call Trace:
[  417.520811][T10837]  <TASK>
[  417.520823][T10837]  dump_stack_lvl+0x16c/0x1f0
[  417.520873][T10837]  should_fail_ex+0x512/0x640
[  417.520923][T10837]  should_fail_alloc_page+0xe7/0x130
[  417.520979][T10837]  prepare_alloc_pages+0x401/0x670
[  417.521023][T10837]  ? __kasan_slab_free+0x5f/0x80
[  417.521066][T10837]  ? kmem_cache_free+0x2d8/0x770
[  417.521103][T10837]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  417.521136][T10837]  ? do_user_addr_fault+0x60c/0x1370
[  417.521166][T10837]  ? exc_page_fault+0x64/0xc0
[  417.521216][T10837]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  417.521254][T10837]  ? __lock_acquire+0x436/0x2890
[  417.521298][T10837]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  417.521340][T10837]  ? policy_nodemask+0xea/0x4e0
[  417.521382][T10837]  alloc_pages_mpol+0x1fb/0x550
[  417.521422][T10837]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  417.521462][T10837]  ? swap_entry_swapped+0x1df/0x290
[  417.521499][T10837]  ? __pfx_swap_entry_swapped+0x10/0x10
[  417.521540][T10837]  folio_alloc_mpol_noprof+0x36/0x2f0
[  417.521569][T10837]  __read_swap_cache_async+0x20a/0x500
[  417.521605][T10837]  ? __pfx___read_swap_cache_async+0x10/0x10
[  417.521643][T10837]  ? update_load_avg+0x233/0x2220
[  417.521672][T10837]  swap_cluster_readahead+0x528/0x770
[  417.521712][T10837]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  417.521751][T10837]  ? __lock_acquire+0x436/0x2890
[  417.521789][T10837]  ? get_vma_policy+0x242/0x3c0
[  417.521815][T10837]  swapin_readahead+0x160/0x1220
[  417.521847][T10837]  ? rcu_is_watching+0x12/0xc0
[  417.521882][T10837]  ? finish_task_switch.isra.0+0x207/0xbd0
[  417.521925][T10837]  ? __pfx_swapin_readahead+0x10/0x10
[  417.521958][T10837]  ? find_held_lock+0x2b/0x80
[  417.521989][T10837]  ? swap_cache_get_folio+0x267/0x8e0
[  417.522018][T10837]  ? swap_cache_get_folio+0x267/0x8e0
[  417.522046][T10837]  ? swap_cache_get_folio+0x267/0x8e0
[  417.522078][T10837]  ? swap_cache_get_folio+0x267/0x8e0
[  417.522107][T10837]  ? swap_cache_get_folio+0x293/0x8e0
[  417.522139][T10837]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  417.522168][T10837]  ? __pfx_get_swap_device+0x10/0x10
[  417.522204][T10837]  ? rcu_read_unlock+0x2d/0xb0
[  417.522238][T10837]  ? do_swap_page+0x962/0x64a0
[  417.522262][T10837]  do_swap_page+0x962/0x64a0
[  417.522302][T10837]  ? __lock_acquire+0x436/0x2890
[  417.522328][T10837]  ? __futex_wait+0x24b/0x2f0
[  417.522365][T10837]  ? __pfx___futex_wait+0x10/0x10
[  417.522402][T10837]  ? __pfx_do_swap_page+0x10/0x10
[  417.522433][T10837]  ? __pfx_default_wake_function+0x10/0x10
[  417.522472][T10837]  ? futex_hash+0x2c5/0x380
[  417.522500][T10837]  ? rcu_is_watching+0x12/0xc0
[  417.522534][T10837]  ? ___pte_offset_map+0x175/0x380
[  417.522574][T10837]  __handle_mm_fault+0x19cb/0x2bb0
[  417.522607][T10837]  ? reacquire_held_locks+0xcd/0x1f0
[  417.522632][T10837]  ? __pfx___handle_mm_fault+0x10/0x10
[  417.522664][T10837]  ? lock_vma_under_rcu+0x176/0x580
[  417.522701][T10837]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  417.522745][T10837]  handle_mm_fault+0x3fe/0xad0
[  417.522777][T10837]  do_user_addr_fault+0x60c/0x1370
[  417.522817][T10837]  ? rcu_is_watching+0x12/0xc0
[  417.522854][T10837]  exc_page_fault+0x64/0xc0
[  417.522891][T10837]  asm_exc_page_fault+0x26/0x30
[  417.522917][T10837] RIP: 0033:0x7f0a6604df7e
[  417.522939][T10837] Code: f6 31 c0 e8 e4 ff 13 00 48 81 c4 90 00 00 00 48 98 5b c3 66 0f 1f 84 00 00 00 00 00 41 54 55 53 48 89 fb 48 81 ec d0 00 00 00 <48> 89 74 24 28 48 89 54 24 30 48 89 4c 24 38 4c 89 44 24 40 4c 89
[  417.522966][T10837] RSP: 002b:00007f0a66f3ff70 EFLAGS: 00010202
[  417.522988][T10837] RAX: 0000000000000000 RBX: 00007f0a66215371 RCX: 00007f0a6622bcdf
[  417.523006][T10837] RDX: 0000000000023e23 RSI: 0000000000000000 RDI: 00007f0a66215371
[  417.523022][T10837] RBP: 00007f0a663e5fa0 R08: 0000000000000000 R09: 00007f0a66f41000
[  417.523040][T10837] R10: 0000000000000001 R11: 00000000000137a8 R12: 0000000000000000
[  417.523056][T10837] R13: 00007f0a663e6038 R14: 00007f0a663e5fa0 R15: 00007ffdad3f7568
[  417.523092][T10837]  </TASK>
[  417.523453][T10837] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  418.836138][T10844] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1050'.
[  418.893438][T10844] : renamed from veth1_vlan (while UP)
[  418.932439][T10860] random: crng reseeded on system resumption
[  418.971635][T10844] : entered allmulticast mode
[  419.121585][T10866] FAULT_INJECTION: forcing a failure.
[  419.121585][T10866] name failslab, interval 1, probability 0, space 0, times 0
[  419.156802][T10866] CPU: 1 UID: 0 PID: 10866 Comm: syz.2.1055 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  419.156846][T10866] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  419.156855][T10866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  419.156866][T10866] Call Trace:
[  419.156873][T10866]  <TASK>
[  419.156880][T10866]  dump_stack_lvl+0x16c/0x1f0
[  419.156909][T10866]  should_fail_ex+0x512/0x640
[  419.156926][T10866]  ? __kmalloc_node_track_caller_noprof+0xcb/0x930
[  419.156950][T10866]  should_failslab+0xc2/0x120
[  419.156973][T10866]  __kmalloc_node_track_caller_noprof+0xec/0x930
[  419.156995][T10866]  ? __kthread_create_on_node+0x186/0x3f0
[  419.157021][T10866]  ? kvasprintf+0xbc/0x150
[  419.157036][T10866]  kvasprintf+0xbc/0x150
[  419.157052][T10866]  ? __pfx_kvasprintf+0x10/0x10
[  419.157075][T10866]  ? __pfx_dvb_frontend_thread+0x10/0x10
[  419.157097][T10866]  __kthread_create_on_node+0x186/0x3f0
[  419.157120][T10866]  ? __pfx___kthread_create_on_node+0x10/0x10
[  419.157147][T10866]  ? dvb_frontend_open+0x5e8/0x1780
[  419.157175][T10866]  ? __lock_acquire+0x436/0x2890
[  419.157192][T10866]  ? __pfx_dvb_frontend_thread+0x10/0x10
[  419.157215][T10866]  kthread_create_on_node+0xc7/0x100
[  419.157238][T10866]  ? __pfx_kthread_create_on_node+0x10/0x10
[  419.157265][T10866]  ? mark_held_locks+0x49/0x80
[  419.157279][T10866]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  419.157299][T10866]  ? lockdep_hardirqs_on+0x7c/0x110
[  419.157323][T10866]  dvb_frontend_open+0xf97/0x1780
[  419.157348][T10866]  ? find_held_lock+0x2b/0x80
[  419.157366][T10866]  ? __pfx_dvb_frontend_open+0x10/0x10
[  419.157389][T10866]  dvb_device_open+0x270/0x3b0
[  419.157414][T10866]  ? __pfx_dvb_device_open+0x10/0x10
[  419.157436][T10866]  chrdev_open+0x234/0x6a0
[  419.157458][T10866]  ? __pfx_apparmor_file_open+0x10/0x10
[  419.157473][T10866]  ? __pfx_chrdev_open+0x10/0x10
[  419.157496][T10866]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  419.157523][T10866]  do_dentry_open+0x748/0x1590
[  419.157543][T10866]  ? __pfx_chrdev_open+0x10/0x10
[  419.157569][T10866]  vfs_open+0x82/0x3f0
[  419.157588][T10866]  path_openat+0x2078/0x3140
[  419.157615][T10866]  ? __pfx_path_openat+0x10/0x10
[  419.157643][T10866]  do_filp_open+0x20b/0x470
[  419.157665][T10866]  ? __pfx_do_filp_open+0x10/0x10
[  419.157700][T10866]  ? alloc_fd+0x471/0x7d0
[  419.157726][T10866]  do_sys_openat2+0x121/0x290
[  419.157743][T10866]  ? __pfx_do_sys_openat2+0x10/0x10
[  419.157767][T10866]  __x64_sys_openat+0x174/0x210
[  419.157784][T10866]  ? __pfx___x64_sys_openat+0x10/0x10
[  419.157812][T10866]  do_syscall_64+0xcd/0xf80
[  419.157848][T10866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  419.157877][T10866] RIP: 0033:0x7fb5a178f7c9
[  419.157899][T10866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  419.157926][T10866] RSP: 002b:00007fb5a2608038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  419.157954][T10866] RAX: ffffffffffffffda RBX: 00007fb5a19e5fa0 RCX: 00007fb5a178f7c9
[  419.157974][T10866] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  419.157993][T10866] RBP: 00007fb5a1813f91 R08: 0000000000000000 R09: 0000000000000000
[  419.158010][T10866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  419.158028][T10866] R13: 00007fb5a19e6038 R14: 00007fb5a19e5fa0 R15: 00007fffea5bf9e8
[  419.158067][T10866]  </TASK>
[  419.160091][T10866] i2c i2c-0: dvb_frontend_start: failed to start kthread (-12)
[  419.960087][T10866] FAULT_INJECTION: forcing a failure.
[  419.960087][T10866] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  420.039933][T10866] CPU: 1 UID: 0 PID: 10866 Comm: syz.2.1055 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  420.039962][T10866] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  420.039968][T10866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  420.039978][T10866] Call Trace:
[  420.039984][T10866]  <TASK>
[  420.039991][T10866]  dump_stack_lvl+0x16c/0x1f0
[  420.040020][T10866]  should_fail_ex+0x512/0x640
[  420.040045][T10866]  should_fail_alloc_page+0xe7/0x130
[  420.040072][T10866]  prepare_alloc_pages+0x401/0x670
[  420.040101][T10866]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  420.040126][T10866]  ? find_held_lock+0x2b/0x80
[  420.040146][T10866]  ? is_bpf_text_address+0x8a/0x1a0
[  420.040166][T10866]  ? bpf_ksym_find+0x124/0x1c0
[  420.040181][T10866]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  420.040199][T10866]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  420.040223][T10866]  ? is_bpf_text_address+0x94/0x1a0
[  420.040241][T10866]  ? kernel_text_address+0x8d/0x100
[  420.040258][T10866]  ? __kernel_text_address+0xd/0x40
[  420.040290][T10866]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  420.040315][T10866]  ? policy_nodemask+0xea/0x4e0
[  420.040340][T10866]  alloc_pages_mpol+0x1fb/0x550
[  420.040364][T10866]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  420.040392][T10866]  folio_alloc_mpol_noprof+0x36/0x2f0
[  420.040408][T10866]  vma_alloc_folio_noprof+0xed/0x1e0
[  420.040424][T10866]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  420.040445][T10866]  do_anonymous_page+0xc81/0x2190
[  420.040468][T10866]  __handle_mm_fault+0x1ecf/0x2bb0
[  420.040489][T10866]  ? __pfx___handle_mm_fault+0x10/0x10
[  420.040516][T10866]  ? find_vma+0xbf/0x140
[  420.040535][T10866]  ? __pfx_find_vma+0x10/0x10
[  420.040556][T10866]  handle_mm_fault+0x3fe/0xad0
[  420.040576][T10866]  do_user_addr_fault+0x7a6/0x1370
[  420.040596][T10866]  ? rcu_is_watching+0x12/0xc0
[  420.040618][T10866]  exc_page_fault+0x64/0xc0
[  420.040640][T10866]  asm_exc_page_fault+0x26/0x30
[  420.040655][T10866] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  420.040673][T10866] Code: 81 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  420.040687][T10866] RSP: 0018:ffffc9000b1bf9e8 EFLAGS: 00050202
[  420.040701][T10866] RAX: 0000000000000001 RBX: 0000000000000ff6 RCX: 0000000000000576
[  420.040712][T10866] RDX: ffffed10044f7dff RSI: ffff8880227bea80 RDI: 0000200000001000
[  420.040722][T10866] RBP: 0000000000000ff6 R08: 0000000000000000 R09: ffffed10044f7dfe
[  420.040732][T10866] R10: ffff8880227beff5 R11: 0000000000000000 R12: 0000000000000000
[  420.040742][T10866] R13: ffffc9000b1bfc00 R14: ffff8880227be000 R15: 0000200000000580
[  420.040762][T10866]  _copy_to_iter+0x4eb/0x1710
[  420.040782][T10866]  ? find_held_lock+0x2b/0x80
[  420.040801][T10866]  ? __pfx__copy_to_iter+0x10/0x10
[  420.040815][T10866]  ? __up_read+0x2d1/0x700
[  420.040830][T10866]  ? seq_write+0xd6/0x150
[  420.040847][T10866]  ? __pfx___up_read+0x10/0x10
[  420.040863][T10866]  ? seq_read_iter+0xc8a/0x12d0
[  420.040886][T10866]  seq_read_iter+0xd02/0x12d0
[  420.040914][T10866]  seq_read+0x3a3/0x570
[  420.040933][T10866]  ? __pfx_seq_read+0x10/0x10
[  420.040952][T10866]  ? lock_acquire+0x179/0x330
[  420.040979][T10866]  ? rw_verify_area+0xcf/0x6c0
[  420.040997][T10866]  ? __pfx_seq_read+0x10/0x10
[  420.041016][T10866]  vfs_read+0x1e4/0xcf0
[  420.041040][T10866]  ? __pfx___mutex_lock+0x10/0x10
[  420.041065][T10866]  ? __pfx_vfs_read+0x10/0x10
[  420.041091][T10866]  ? __fget_files+0x20e/0x3c0
[  420.041117][T10866]  ksys_read+0x12a/0x250
[  420.041136][T10866]  ? __pfx_ksys_read+0x10/0x10
[  420.041162][T10866]  do_syscall_64+0xcd/0xf80
[  420.041185][T10866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.041201][T10866] RIP: 0033:0x7fb5a178f7c9
[  420.041215][T10866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.041228][T10866] RSP: 002b:00007fb5a2608038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  420.041243][T10866] RAX: ffffffffffffffda RBX: 00007fb5a19e5fa0 RCX: 00007fb5a178f7c9
[  420.041253][T10866] RDX: 0000000000001000 RSI: 0000200000000580 RDI: 0000000000000006
[  420.041262][T10866] RBP: 00007fb5a1813f91 R08: 0000000000000000 R09: 0000000000000000
[  420.041278][T10866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  420.041288][T10866] R13: 00007fb5a19e6038 R14: 00007fb5a19e5fa0 R15: 00007fffea5bf9e8
[  420.041309][T10866]  </TASK>
[  420.814000][T10876] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1058'.
[  421.669642][T10883] FAULT_INJECTION: forcing a failure.
[  421.669642][T10883] name failslab, interval 1, probability 0, space 0, times 0
[  421.745367][T10883] CPU: 1 UID: 0 PID: 10883 Comm: syz.1.1059 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  421.745418][T10883] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  421.745430][T10883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  421.745448][T10883] Call Trace:
[  421.745459][T10883]  <TASK>
[  421.745470][T10883]  dump_stack_lvl+0x16c/0x1f0
[  421.745516][T10883]  should_fail_ex+0x512/0x640
[  421.745546][T10883]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  421.745584][T10883]  should_failslab+0xc2/0x120
[  421.745624][T10883]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  421.745660][T10883]  ? __d_alloc+0x35/0xa80
[  421.745688][T10883]  ? __d_alloc+0x35/0xa80
[  421.745710][T10883]  __d_alloc+0x35/0xa80
[  421.745739][T10883]  d_alloc_pseudo+0x1c/0xc0
[  421.745772][T10883]  alloc_file_pseudo+0xcf/0x230
[  421.745803][T10883]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  421.745836][T10883]  ? do_raw_spin_unlock+0x172/0x230
[  421.745874][T10883]  __anon_inode_getfile+0xe8/0x280
[  421.745907][T10883]  anon_inode_getfile_fmode+0x37/0xa0
[  421.745951][T10883]  do_signalfd4+0x206/0x510
[  421.745984][T10883]  __x64_sys_signalfd+0x120/0x1a0
[  421.746014][T10883]  ? __pfx___x64_sys_signalfd+0x10/0x10
[  421.746053][T10883]  do_syscall_64+0xcd/0xf80
[  421.746095][T10883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.746121][T10883] RIP: 0033:0x7f906ef8f7c9
[  421.746143][T10883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.746170][T10883] RSP: 002b:00007f906fdaa038 EFLAGS: 00000246 ORIG_RAX: 000000000000011a
[  421.746195][T10883] RAX: ffffffffffffffda RBX: 00007f906f1e6090 RCX: 00007f906ef8f7c9
[  421.746213][T10883] RDX: 0000000000000008 RSI: 0000200000000000 RDI: 00000000ffffffff
[  421.746230][T10883] RBP: 00007f906f013f91 R08: 0000000000000000 R09: 0000000000000000
[  421.746248][T10883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  421.746264][T10883] R13: 00007f906f1e6128 R14: 00007f906f1e6090 R15: 00007ffca0d7f6a8
[  421.746299][T10883]  </TASK>
[  422.449148][ T7398] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  422.484787][ T7398] EXT4-fs (sda1): This should not happen!! Data will be lost
[  422.484787][ T7398] 
[  422.755755][ T7398] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 63 with max blocks 1 with error 117
[  422.775201][ T7398] EXT4-fs (sda1): This should not happen!! Data will be lost
[  422.775201][ T7398] 
[  423.263990][T10897] syz.4.1063 invoked oom-killer: gfp_mask=0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), order=0, oom_score_adj=1000
[  423.281349][T10897] CPU: 0 UID: 0 PID: 10897 Comm: syz.4.1063 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  423.281398][T10897] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  423.281409][T10897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  423.281425][T10897] Call Trace:
[  423.281435][T10897]  <TASK>
[  423.281447][T10897]  dump_stack_lvl+0x16c/0x1f0
[  423.281492][T10897]  dump_header+0x101/0x960
[  423.281527][T10897]  oom_kill_process+0x176/0x910
[  423.281561][T10897]  out_of_memory+0x350/0x1700
[  423.281599][T10897]  ? __pfx_out_of_memory+0x10/0x10
[  423.281641][T10897]  mem_cgroup_out_of_memory+0x118/0x130
[  423.281679][T10897]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  423.281721][T10897]  ? do_raw_spin_unlock+0x172/0x230
[  423.281761][T10897]  try_charge_memcg+0x695/0xd30
[  423.281808][T10897]  ? __pfx_try_charge_memcg+0x10/0x10
[  423.281849][T10897]  ? peak_open+0x31/0x50
[  423.281880][T10897]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  423.281920][T10897]  __memcg_kmem_charge_page+0xda/0x420
[  423.281967][T10897]  __alloc_frozen_pages_noprof+0x323/0x2430
[  423.282002][T10897]  ? kasan_save_stack+0x42/0x60
[  423.282037][T10897]  ? kasan_save_track+0x14/0x30
[  423.282077][T10897]  ? __kasan_slab_alloc+0x89/0x90
[  423.282112][T10897]  ? kmem_cache_alloc_noprof+0x25e/0x770
[  423.282143][T10897]  ? ptlock_alloc+0x1f/0x70
[  423.282168][T10897]  ? pte_alloc_one+0x84/0x3d0
[  423.282202][T10897]  ? __pte_alloc+0x6d/0x3f0
[  423.282236][T10897]  ? do_anonymous_page+0x1092/0x2190
[  423.282262][T10897]  ? __handle_mm_fault+0x1ecf/0x2bb0
[  423.282289][T10897]  ? handle_mm_fault+0x3fe/0xad0
[  423.282315][T10897]  ? do_user_addr_fault+0x7a6/0x1370
[  423.282345][T10897]  ? exc_page_fault+0x64/0xc0
[  423.282381][T10897]  ? asm_exc_page_fault+0x26/0x30
[  423.282407][T10897]  ? rep_movs_alternative+0x4a/0x90
[  423.282436][T10897]  ? _copy_from_user+0x98/0xd0
[  423.282463][T10897]  ? snd_rawmidi_kernel_write1+0x50a/0x8a0
[  423.282491][T10897]  ? snd_rawmidi_write+0x26e/0xc10
[  423.282519][T10897]  ? vfs_write+0x2a0/0x11d0
[  423.282553][T10897]  ? ksys_write+0x1f8/0x250
[  423.282588][T10897]  ? do_syscall_64+0xcd/0xf80
[  423.282627][T10897]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  423.282667][T10897]  ? __pfx_css_rstat_updated+0x10/0x10
[  423.282699][T10897]  ? __lock_acquire+0x436/0x2890
[  423.282733][T10897]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  423.282776][T10897]  ? policy_nodemask+0xea/0x4e0
[  423.282820][T10897]  alloc_pages_mpol+0x1fb/0x550
[  423.282861][T10897]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  423.282899][T10897]  ? css_rstat_updated+0x1d1/0x590
[  423.282927][T10897]  ? __pfx_css_rstat_updated+0x10/0x10
[  423.282961][T10897]  alloc_pages_noprof+0x131/0x390
[  423.283002][T10897]  pte_alloc_one+0x1e/0x3d0
[  423.283040][T10897]  __pte_alloc+0x6d/0x3f0
[  423.283081][T10897]  ? __pfx___pte_alloc+0x10/0x10
[  423.283127][T10897]  do_anonymous_page+0x1092/0x2190
[  423.283157][T10897]  ? mtree_range_walk+0x718/0xc00
[  423.283197][T10897]  ? find_held_lock+0x2b/0x80
[  423.283236][T10897]  __handle_mm_fault+0x1ecf/0x2bb0
[  423.283276][T10897]  ? __pfx___handle_mm_fault+0x10/0x10
[  423.283328][T10897]  ? find_vma+0xbf/0x140
[  423.283363][T10897]  ? __pfx_find_vma+0x10/0x10
[  423.283403][T10897]  handle_mm_fault+0x3fe/0xad0
[  423.283440][T10897]  do_user_addr_fault+0x7a6/0x1370
[  423.283473][T10897]  ? __lock_acquire+0x436/0x2890
[  423.283500][T10897]  ? rcu_is_watching+0x12/0xc0
[  423.283541][T10897]  exc_page_fault+0x64/0xc0
[  423.283580][T10897]  asm_exc_page_fault+0x26/0x30
[  423.283607][T10897] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  423.283639][T10897] Code: 81 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  423.283667][T10897] RSP: 0018:ffffc90003627b10 EFLAGS: 00050206
[  423.283690][T10897] RAX: 0000000000000001 RBX: 00002000005ff0c0 RCX: 00000000000000c0
[  423.283709][T10897] RDX: 0000000000000000 RSI: 0000200000600000 RDI: ffff88805b2d4f40
[  423.283727][T10897] RBP: 0000000000001000 R08: 0000000000000001 R09: ffffed100b65a9ff
[  423.283746][T10897] R10: ffff88805b2d4fff R11: 0000000000000000 R12: 0000000000000000
[  423.283762][T10897] R13: ffff88805b2d4000 R14: dffffc0000000000 R15: 00002000005ff0c0
[  423.283800][T10897]  _copy_from_user+0x98/0xd0
[  423.283831][T10897]  snd_rawmidi_kernel_write1+0x50a/0x8a0
[  423.283876][T10897]  snd_rawmidi_write+0x26e/0xc10
[  423.283916][T10897]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  423.283946][T10897]  ? common_file_perm+0x1b1/0x500
[  423.283979][T10897]  ? __pfx_default_wake_function+0x10/0x10
[  423.284018][T10897]  ? bpf_lsm_file_permission+0x9/0x10
[  423.284055][T10897]  ? security_file_permission+0x71/0x210
[  423.284091][T10897]  ? rw_verify_area+0xcf/0x6c0
[  423.284126][T10897]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  423.284156][T10897]  vfs_write+0x2a0/0x11d0
[  423.284201][T10897]  ? __pfx_vfs_write+0x10/0x10
[  423.284241][T10897]  ? find_held_lock+0x2b/0x80
[  423.284276][T10897]  ? __fget_files+0x204/0x3c0
[  423.284320][T10897]  ? __fget_files+0x20e/0x3c0
[  423.284368][T10897]  ksys_write+0x1f8/0x250
[  423.284404][T10897]  ? __pfx_ksys_write+0x10/0x10
[  423.284453][T10897]  do_syscall_64+0xcd/0xf80
[  423.284495][T10897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.284522][T10897] RIP: 0033:0x7f0a6618f7c9
[  423.284544][T10897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  423.284571][T10897] RSP: 002b:00007f0a643f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  423.284595][T10897] RAX: ffffffffffffffda RBX: 00007f0a663e6090 RCX: 00007f0a6618f7c9
[  423.284615][T10897] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000006
[  423.284633][T10897] RBP: 00007f0a66213f91 R08: 0000000000000000 R09: 0000000000000000
[  423.284650][T10897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  423.284667][T10897] R13: 00007f0a663e6128 R14: 00007f0a663e6090 R15: 00007ffdad3f7568
[  423.284707][T10897]  </TASK>
[  423.284792][T10897] memory: usage 3072kB, limit 3072kB, failcnt 62094
[  423.902301][T10897] memory+swap: usage 54560kB, limit 9007199254740988kB, failcnt 0
[  423.912339][T10897] kmem: usage 2972kB, limit 9007199254740988kB, failcnt 0
[  423.920685][T10897] Memory cgroup stats for /syz4:
[  423.920865][T10897] cache 0
[  423.928886][T10897] rss 0
[  423.931680][T10897] rss_huge 0
[  423.934917][T10897] shmem 0
[  423.938003][T10897] mapped_file 0
[  423.941961][T10897] dirty 0
[  423.945286][T10897] writeback 0
[  423.949177][T10897] workingset_refault_anon 6491
[  423.953962][T10897] workingset_refault_file 17916
[  423.958948][T10897] swap 52723712
[  423.962425][T10897] swapcached 102400
[  423.966242][T10897] pgpgin 162084
[  423.969758][T10897] pgpgout 162059
[  423.973335][T10897] pgfault 123609
[  423.976939][T10897] pgmajfault 3438
[  423.980659][T10897] inactive_anon 102400
[  423.984733][T10897] active_anon 0
[  423.989456][T10897] inactive_file 0
[  423.993181][T10897] active_file 0
[  423.996840][T10897] unevictable 0
[  424.003891][T10897] hierarchical_memory_limit 3145728
[  424.013651][T10897] hierarchical_memsw_limit 9223372036854771712
[  424.021080][T10897] total_cache 0
[  424.024555][T10897] total_rss 0
[  424.028125][T10897] total_rss_huge 0
[  424.031856][T10897] total_shmem 0
[  424.035327][T10897] total_mapped_file 0
[  424.039639][T10897] total_dirty 0
[  424.043109][T10897] total_writeback 0
[  424.046946][T10897] total_workingset_refault_anon 6491
[  424.052606][T10897] total_workingset_refault_file 17916
[  424.058340][T10897] total_swap 52723712
[  424.062342][T10897] total_swapcached 102400
[  424.066683][T10897] total_pgpgin 162084
[  424.071036][T10897] total_pgpgout 162059
[  424.075120][T10897] total_pgfault 123609
[  424.080233][T10897] total_pgmajfault 3438
[  424.084409][T10897] total_inactive_anon 102400
[  424.089318][T10897] total_active_anon 0
[  424.093311][T10897] total_inactive_file 0
[  424.099493][T10897] total_active_file 0
[  424.103490][T10897] total_unevictable 0
[  424.116164][T10897] anon_cost 0
[  424.123355][T10897] file_cost 0
[  424.126704][T10897] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1029,pid=10759,uid=0
[  424.142200][T10897] Memory cgroup out of memory: Killed process 10759 (syz.4.1029) total-vm:180672kB, anon-rss:1268kB, file-rss:48220kB, shmem-rss:128kB, UID:0 pgtables:244kB oom_score_adj:1000
[  425.826472][ T7411] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  426.024712][ T7411] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  426.134388][ T7411] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  426.401488][ T7411] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  426.711114][ T7411] bridge_slave_1: left allmulticast mode
[  426.759129][ T7411] bridge_slave_1: left promiscuous mode
[  426.794618][ T7411] bridge0: port 2(bridge_slave_1) entered disabled state
[  426.851546][T10962] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1068'.
[  426.870862][ T7411] bridge_slave_0: left allmulticast mode
[  426.887976][ T7411] bridge_slave_0: left promiscuous mode
[  426.893847][ T7411] bridge0: port 1(bridge_slave_0) entered disabled state
[  427.734389][ T7411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  427.770335][ T7411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  427.798829][ T7411] bond0 (unregistering): Released all slaves
[  428.983606][ T7411] hsr_slave_0: left promiscuous mode
[  429.002646][ T7411] hsr_slave_1: left promiscuous mode
[  429.024920][ T7411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  429.073723][ T7411] batman_adv: batadv0: Removing interface: batadv_slave_0
[  429.331872][ T7411] veth1_macvtap: left promiscuous mode
[  429.363598][ T7411] veth0_macvtap: left promiscuous mode
[  429.389879][ T7411] veth1_vlan: left promiscuous mode
[  429.402473][ T7411] veth0_vlan: left promiscuous mode
[  430.818330][ T7411] team0 (unregistering): Port device team_slave_1 removed
[  430.888772][ T7411] team0 (unregistering): Port device team_slave_0 removed
[  431.030104][T11014] random: crng reseeded on system resumption
[  434.061096][   T30] audit: type=1806 audit(1766865172.429:5): xattr="." res=0
[  434.742151][T11068] zswap: compressor  not available
[  434.946360][T11082] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13
[  435.515304][T11087] kexec: Could not allocate control_code_buffer
[  437.908444][ T7410] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 63 with max blocks 1 with error 117
[  437.937165][ T7410] EXT4-fs (sda1): This should not happen!! Data will be lost
[  437.937165][ T7410] 
[  438.116158][ T7410] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 910 with max blocks 114 with error 117
[  438.152510][ T7410] EXT4-fs (sda1): This should not happen!! Data will be lost
[  438.152510][ T7410] 
[  438.657039][ T7398] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1358 with max blocks 27 with error 117
[  438.673548][ T7398] EXT4-fs (sda1): This should not happen!! Data will be lost
[  438.673548][ T7398] 
[  438.757136][ T7415] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  438.825007][ T7415] EXT4-fs (sda1): This should not happen!! Data will be lost
[  438.825007][ T7415] 
[  438.915866][ T7414] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  438.950391][ T7414] EXT4-fs (sda1): This should not happen!! Data will be lost
[  438.950391][ T7414] 
[  440.554220][T11166] syz.2.1101 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  441.677392][T11192] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1105'.
[  441.800342][T11195] vhci_hcd vhci_hcd.0: invalid port number 16
[  441.851731][T11195] FAULT_INJECTION: forcing a failure.
[  441.851731][T11195] name failslab, interval 1, probability 0, space 0, times 0
[  441.893403][T11195] CPU: 1 UID: 0 PID: 11195 Comm: syz.2.1106 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  441.893452][T11195] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  441.893463][T11195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  441.893479][T11195] Call Trace:
[  441.893490][T11195]  <TASK>
[  441.893503][T11195]  dump_stack_lvl+0x16c/0x1f0
[  441.893555][T11195]  should_fail_ex+0x512/0x640
[  441.893593][T11195]  should_failslab+0xc2/0x120
[  441.893639][T11195]  __kmalloc_cache_noprof+0x80/0x800
[  441.893674][T11195]  ? sctp_add_bind_addr+0xae/0x3f0
[  441.893717][T11195]  ? sctp_add_bind_addr+0xae/0x3f0
[  441.893751][T11195]  sctp_add_bind_addr+0xae/0x3f0
[  441.893792][T11195]  sctp_copy_local_addr_list+0x349/0x550
[  441.893841][T11195]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  441.893888][T11195]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  441.893946][T11195]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  441.893994][T11195]  sctp_bind_addr_copy+0xe0/0x530
[  441.894041][T11195]  sctp_connect_new_asoc+0x1c9/0x770
[  441.894088][T11195]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  441.894129][T11195]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  441.894174][T11195]  sctp_sendmsg+0x157c/0x1e20
[  441.894213][T11195]  ? __pfx_sctp_sendmsg+0x10/0x10
[  441.894242][T11195]  ? __pfx___might_resched+0x10/0x10
[  441.894278][T11195]  ? __lock_acquire+0x436/0x2890
[  441.894312][T11195]  ? aa_sk_perm+0x2f2/0xae0
[  441.894349][T11195]  ? __pfx_aa_sk_perm+0x10/0x10
[  441.894393][T11195]  ? __pfx_sctp_sendmsg+0x10/0x10
[  441.894427][T11195]  inet_sendmsg+0x11c/0x140
[  441.894462][T11195]  ____sys_sendmsg+0x973/0xc30
[  441.894508][T11195]  ? __pfx_____sys_sendmsg+0x10/0x10
[  441.894555][T11195]  ? find_held_lock+0x2b/0x80
[  441.894592][T11195]  ? futex_unqueue+0x133/0x2c0
[  441.894627][T11195]  ___sys_sendmsg+0x134/0x1d0
[  441.894666][T11195]  ? __pfx____sys_sendmsg+0x10/0x10
[  441.894701][T11195]  ? __pfx___futex_wait+0x10/0x10
[  441.894737][T11195]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  441.894792][T11195]  ? find_held_lock+0x2b/0x80
[  441.894850][T11195]  __sys_sendmmsg+0x200/0x420
[  441.894891][T11195]  ? __pfx___sys_sendmmsg+0x10/0x10
[  441.894947][T11195]  ? __pfx_do_futex+0x10/0x10
[  441.894995][T11195]  ? __x64_sys_openat+0x174/0x210
[  441.895030][T11195]  ? xfd_validate_state+0x61/0x180
[  441.895066][T11195]  __x64_sys_sendmmsg+0x9c/0x100
[  441.895101][T11195]  ? lockdep_hardirqs_on+0x7c/0x110
[  441.895143][T11195]  do_syscall_64+0xcd/0xf80
[  441.895185][T11195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.895214][T11195] RIP: 0033:0x7fb5a178f7c9
[  441.895239][T11195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  441.895267][T11195] RSP: 002b:00007fb5a2608038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  441.895295][T11195] RAX: ffffffffffffffda RBX: 00007fb5a19e5fa0 RCX: 00007fb5a178f7c9
[  441.895316][T11195] RDX: 0000000000000008 RSI: 0000200000000140 RDI: 0000000000000007
[  441.895336][T11195] RBP: 00007fb5a1813f91 R08: 0000000000000000 R09: 0000000000000000
[  441.895362][T11195] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000000
[  441.895400][T11195] R13: 00007fb5a19e6038 R14: 00007fb5a19e5fa0 R15: 00007fffea5bf9e8
[  441.895441][T11195]  </TASK>
[  443.411591][ T6248] EXT4-fs: 2 callbacks suppressed
[  443.411614][ T6248] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  443.475335][ T6248] EXT4-fs (sda1): This should not happen!! Data will be lost
[  443.475335][ T6248] 
[  443.563365][ T6248] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 63 with max blocks 1 with error 117
[  443.603128][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  443.621002][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  443.633482][ T6248] EXT4-fs (sda1): This should not happen!! Data will be lost
[  443.633482][ T6248] 
[  443.675799][ T6248] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 974 with max blocks 50 with error 117
[  443.691048][ T6248] EXT4-fs (sda1): This should not happen!! Data will be lost
[  443.691048][ T6248] 
[  443.712826][ T6248] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1360 with max blocks 25 with error 117
[  443.734064][ T6248] EXT4-fs (sda1): This should not happen!! Data will be lost
[  443.734064][ T6248] 
[  444.872447][T11209] syz.2.1109 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  444.916171][T11209] CPU: 1 UID: 0 PID: 11209 Comm: syz.2.1109 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  444.916221][T11209] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  444.916233][T11209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  444.916249][T11209] Call Trace:
[  444.916260][T11209]  <TASK>
[  444.916272][T11209]  dump_stack_lvl+0x16c/0x1f0
[  444.916318][T11209]  dump_header+0x101/0x960
[  444.916355][T11209]  oom_kill_process+0x176/0x910
[  444.916391][T11209]  out_of_memory+0x350/0x1700
[  444.916423][T11209]  ? __lock_acquire+0x436/0x2890
[  444.916456][T11209]  ? __pfx_out_of_memory+0x10/0x10
[  444.916499][T11209]  mem_cgroup_out_of_memory+0x118/0x130
[  444.916535][T11209]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  444.916578][T11209]  ? do_raw_spin_unlock+0x172/0x230
[  444.916618][T11209]  try_charge_memcg+0x695/0xd30
[  444.916675][T11209]  ? __pfx_try_charge_memcg+0x10/0x10
[  444.916719][T11209]  ? find_held_lock+0x11/0x80
[  444.916757][T11209]  ? rcu_read_unlock+0x17/0x60
[  444.916793][T11209]  charge_memcg+0x8a/0x230
[  444.916836][T11209]  __mem_cgroup_charge+0x2b/0x1e0
[  444.916872][T11209]  do_anonymous_page+0xca9/0x2190
[  444.916917][T11209]  __handle_mm_fault+0x1ecf/0x2bb0
[  444.916959][T11209]  ? __pfx___handle_mm_fault+0x10/0x10
[  444.916992][T11209]  ? __pte_offset_map_lock+0x174/0x310
[  444.917033][T11209]  ? find_held_lock+0x2b/0x80
[  444.917081][T11209]  ? follow_page_pte+0x5cf/0x1390
[  444.917131][T11209]  handle_mm_fault+0x3fe/0xad0
[  444.917170][T11209]  __get_user_pages+0x54e/0x3590
[  444.917223][T11209]  ? down_read_killable+0x313/0x4c0
[  444.917255][T11209]  ? __pfx___get_user_pages+0x10/0x10
[  444.917301][T11209]  ? faultin_page_range+0x4f4/0x940
[  444.917349][T11209]  faultin_page_range+0x338/0x940
[  444.917400][T11209]  madvise_do_behavior+0x34c/0x530
[  444.917433][T11209]  ? __pfx_madvise_do_behavior+0x10/0x10
[  444.917464][T11209]  ? down_read+0x13d/0x460
[  444.917511][T11209]  do_madvise+0x176/0x240
[  444.917538][T11209]  ? __pfx_do_madvise+0x10/0x10
[  444.917564][T11209]  ? do_futex+0x122/0x350
[  444.917603][T11209]  ? count_memcg_events+0x122/0x290
[  444.917669][T11209]  ? xfd_validate_state+0x61/0x180
[  444.917705][T11209]  __x64_sys_madvise+0xa9/0x110
[  444.917732][T11209]  ? lockdep_hardirqs_on+0x7c/0x110
[  444.917774][T11209]  do_syscall_64+0xcd/0xf80
[  444.917818][T11209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  444.917847][T11209] RIP: 0033:0x7fb5a178f7c9
[  444.917871][T11209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  444.917899][T11209] RSP: 002b:00007fb5a25e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  444.917927][T11209] RAX: ffffffffffffffda RBX: 00007fb5a19e6090 RCX: 00007fb5a178f7c9
[  444.917947][T11209] RDX: 0000000000000017 RSI: ffffffffffff0005 RDI: 0000000000000000
[  444.917967][T11209] RBP: 00007fb5a1813f91 R08: 0000000000000000 R09: 0000000000000000
[  444.917985][T11209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  444.918002][T11209] R13: 00007fb5a19e6128 R14: 00007fb5a19e6090 R15: 00007fffea5bf9e8
[  444.918043][T11209]  </TASK>
[  444.918055][T11209] memory: usage 3072kB, limit 3072kB, failcnt 203836
[  445.610358][T11209] memory+swap: usage 7260kB, limit 9007199254740988kB, failcnt 0
[  445.628989][T11209] kmem: usage 1912kB, limit 9007199254740988kB, failcnt 0
[  445.649035][T11209] Memory cgroup stats for /syz2:
[  445.649235][T11209] cache 0
[  445.695497][T11209] rss 1175552
[  445.705281][T11209] rss_huge 0
[  445.719507][T11209] shmem 0
[  445.753653][T11209] mapped_file 0
[  445.865626][T11209] dirty 0
[  445.868615][T11209] writeback 0
[  445.886616][T11209] workingset_refault_anon 14694
[  445.891510][T11209] workingset_refault_file 122095
[  445.906667][T11209] swap 4292608
[  445.910081][T11209] swapcached 8192
[  445.913721][T11209] pgpgin 408820
[  445.934624][T11209] pgpgout 408531
[  445.938217][T11209] pgfault 247340
[  445.946533][T11209] pgmajfault 9824
[  445.950200][T11209] inactive_anon 0
[  445.954077][T11209] active_anon 8192
[  446.033783][T11209] inactive_file 0
[  446.100254][T11209] active_file 1175552
[  446.115754][T11209] unevictable 0
[  446.119257][T11209] hierarchical_memory_limit 3145728
[  446.153052][T11209] hierarchical_memsw_limit 9223372036854771712
[  446.207457][T11209] total_cache 0
[  446.210967][T11209] total_rss 1175552
[  446.248751][T11209] total_rss_huge 0
[  446.253194][T11209] total_shmem 0
[  446.261975][T11209] total_mapped_file 0
[  446.274435][T11209] total_dirty 0
[  446.280318][T11209] total_writeback 0
[  446.286907][T11209] total_workingset_refault_anon 14694
[  446.442475][T11209] total_workingset_refault_file 122095
[  446.565915][T11209] total_swap 4292608
[  446.569918][T11209] total_swapcached 8192
[  446.708317][T11209] total_pgpgin 408820
[  446.780451][T11209] total_pgpgout 408531
[  446.829682][   T30] audit: type=1804 audit(4294967299.582:6): pid=11251 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  446.842191][T11209] total_pgfault 247340
[  447.141871][T11209] total_pgmajfault 9824
[  447.235128][T11209] total_inactive_anon 0
[  447.339793][T11209] total_active_anon 8192
[  447.421332][T11209] total_inactive_file 0
[  447.490352][T11209] total_active_file 1175552
[  447.585372][T11209] total_unevictable 0
[  447.679608][T11209] anon_cost 0
[  447.682941][T11209] file_cost 0
[  447.762900][T11209] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1109,pid=11206,uid=0
[  447.941209][T11209] Memory cgroup out of memory: Killed process 11206 (syz.2.1109) total-vm:139432kB, anon-rss:2292kB, file-rss:26984kB, shmem-rss:0kB, UID:0 pgtables:164kB oom_score_adj:1000
[  448.200111][T11284] netlink: 'syz.4.1123': attribute type 11 has an invalid length.
[  449.045245][ T7090] Bluetooth: hci4: unexpected event 0x36 length: 123 > 7
[  449.377088][T11303] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1125'.
[  449.955686][T11267] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  449.958381][ T7090] Bluetooth: hci1: command 0x0c1a tx timeout
[  450.483548][T11265] syz.1.1120 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  450.570225][T11265] CPU: 1 UID: 0 PID: 11265 Comm: syz.1.1120 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  450.570271][T11265] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  450.570281][T11265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  450.570297][T11265] Call Trace:
[  450.570306][T11265]  <TASK>
[  450.570316][T11265]  dump_stack_lvl+0x16c/0x1f0
[  450.570361][T11265]  dump_header+0x101/0x960
[  450.570396][T11265]  oom_kill_process+0x176/0x910
[  450.570430][T11265]  out_of_memory+0x350/0x1700
[  450.570460][T11265]  ? __lock_acquire+0x436/0x2890
[  450.570492][T11265]  ? __pfx_out_of_memory+0x10/0x10
[  450.570531][T11265]  mem_cgroup_out_of_memory+0x118/0x130
[  450.570561][T11265]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  450.570602][T11265]  ? do_raw_spin_unlock+0x172/0x230
[  450.570638][T11265]  try_charge_memcg+0x695/0xd30
[  450.570684][T11265]  ? __pfx_try_charge_memcg+0x10/0x10
[  450.570732][T11265]  ? find_held_lock+0x2b/0x80
[  450.570771][T11265]  charge_memcg+0x8a/0x230
[  450.570811][T11265]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  450.570843][T11265]  __read_swap_cache_async+0x397/0x500
[  450.570878][T11265]  ? __pfx___read_swap_cache_async+0x10/0x10
[  450.570909][T11265]  ? __lock_acquire+0x436/0x2890
[  450.570940][T11265]  swap_cluster_readahead+0x432/0x770
[  450.570980][T11265]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  450.571015][T11265]  ? __lock_acquire+0x436/0x2890
[  450.571042][T11265]  ? _raw_spin_unlock+0x28/0x50
[  450.571088][T11265]  ? get_vma_policy+0x242/0x3c0
[  450.571114][T11265]  swapin_readahead+0x160/0x1220
[  450.571157][T11265]  ? __pfx_swapin_readahead+0x10/0x10
[  450.571198][T11265]  ? find_held_lock+0x2b/0x80
[  450.571229][T11265]  ? swap_cache_get_folio+0x267/0x8e0
[  450.571258][T11265]  ? swap_cache_get_folio+0x267/0x8e0
[  450.571287][T11265]  ? swap_cache_get_folio+0x267/0x8e0
[  450.571321][T11265]  ? swap_cache_get_folio+0x267/0x8e0
[  450.571351][T11265]  ? swap_cache_get_folio+0x293/0x8e0
[  450.571384][T11265]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  450.571414][T11265]  ? __pfx_get_swap_device+0x10/0x10
[  450.571452][T11265]  ? rcu_read_unlock+0x2d/0xb0
[  450.571489][T11265]  ? do_swap_page+0x962/0x64a0
[  450.571514][T11265]  do_swap_page+0x962/0x64a0
[  450.571547][T11265]  ? __lock_acquire+0x436/0x2890
[  450.571583][T11265]  ? __pfx_do_swap_page+0x10/0x10
[  450.571614][T11265]  ? __pfx_default_wake_function+0x10/0x10
[  450.571662][T11265]  ? rcu_is_watching+0x12/0xc0
[  450.571699][T11265]  ? ___pte_offset_map+0x175/0x380
[  450.571742][T11265]  __handle_mm_fault+0x19cb/0x2bb0
[  450.571778][T11265]  ? reacquire_held_locks+0xcd/0x1f0
[  450.571805][T11265]  ? __pfx___handle_mm_fault+0x10/0x10
[  450.571839][T11265]  ? lock_vma_under_rcu+0x176/0x580
[  450.571879][T11265]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  450.571927][T11265]  handle_mm_fault+0x3fe/0xad0
[  450.571963][T11265]  do_user_addr_fault+0x60c/0x1370
[  450.571999][T11265]  ? rcu_is_watching+0x12/0xc0
[  450.572039][T11265]  exc_page_fault+0x64/0xc0
[  450.572079][T11265]  asm_exc_page_fault+0x26/0x30
[  450.572105][T11265] RIP: 0033:0x7f906ee64f17
[  450.572128][T11265] Code: c1 e2 04 48 29 fa 48 c1 e2 04 48 01 f2 80 7a 20 00 0f 85 b6 0d 00 00 48 8b 74 24 10 80 3d d5 07 eb 00 00 4c 89 2d 79 10 38 00 <c7> 42 0c 00 00 00 00 48 89 72 10 48 8b 74 24 08 48 89 72 18 0f 85
[  450.572153][T11265] RSP: 002b:00007ffca0d7f810 EFLAGS: 00010202
[  450.572181][T11265] RAX: 00000000000001e0 RBX: 00007f906f1e6188 RCX: 0000000000000000
[  450.572199][T11265] RDX: 00007f906f1e6180 RSI: 0000001b2fe203a7 RDI: 0000000000000002
[  450.572217][T11265] RBP: 0000000000000002 R08: 00007f906f1e5fa0 R09: 0000000000000000
[  450.572234][T11265] R10: 0000000000000000 R11: 0000000000000000 R12: 00007f906f1e618c
[  450.572251][T11265] R13: 00007f906f1e6180 R14: 000000000000121f R15: 0000000000000004
[  450.572290][T11265]  </TASK>
[  450.572301][T11265] memory: usage 3072kB, limit 3072kB, failcnt 161785
[  450.953343][T11334] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1127'.
[  451.001195][T11265] memory+swap: usage 73700kB, limit 9007199254740988kB, failcnt 0
[  451.009040][T11265] kmem: usage 2084kB, limit 9007199254740988kB, failcnt 0
[  451.030386][T11265] Memory cgroup stats for /syz1:
[  451.030565][T11265] cache 0
[  451.045100][T11265] rss 0
[  451.047874][T11265] rss_huge 0
[  451.060545][T11265] shmem 0
[  451.063555][T11265] mapped_file 0
[  451.067010][T11265] dirty 0
[  451.069971][T11265] writeback 0
[  451.083765][T11265] workingset_refault_anon 18671
[  451.088628][T11265] workingset_refault_file 32380
[  451.103690][T11265] swap 72323072
[  451.107163][T11265] swapcached 1007616
[  451.120001][T11265] pgpgin 323549
[  451.127199][T11265] pgpgout 323302
[  451.134201][T11265] pgfault 320246
[  451.137750][T11265] pgmajfault 9525
[  451.149377][T11265] inactive_anon 1007616
[  451.157784][T11265] active_anon 0
[  451.165536][T11265] inactive_file 0
[  451.169175][T11265] active_file 0
[  451.179164][T11265] unevictable 0
[  451.186647][T11265] hierarchical_memory_limit 3145728
[  451.197061][T11265] hierarchical_memsw_limit 9223372036854771712
[  451.210114][T11265] total_cache 0
[  451.213586][T11265] total_rss 0
[  451.223641][T11265] total_rss_huge 0
[  451.232886][T11265] total_shmem 0
[  451.236357][T11265] total_mapped_file 0
[  451.247571][T11265] total_dirty 0
[  451.254886][T11265] total_writeback 0
[  451.258707][T11265] total_workingset_refault_anon 18671
[  451.273882][T11265] total_workingset_refault_file 32380
[  451.285567][T11265] total_swap 72323072
[  451.291541][T11265] total_swapcached 1007616
[  451.295961][T11265] total_pgpgin 323549
[  451.300062][T11265] total_pgpgout 323302
[  451.304129][T11265] total_pgfault 320246
[  451.308213][T11265] total_pgmajfault 9525
[  451.312502][T11265] total_inactive_anon 1007616
[  451.317186][T11265] total_active_anon 0
[  451.321210][T11265] total_inactive_file 0
[  451.325419][T11265] total_active_file 0
[  451.329442][T11265] total_unevictable 0
[  451.334607][T11265] anon_cost 0
[  451.337961][T11265] file_cost 0
[  451.341272][T11265] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1039,pid=10802,uid=0
[  451.356263][T11265] Memory cgroup out of memory: Killed process 10802 (syz.1.1039) total-vm:104212kB, anon-rss:1268kB, file-rss:57364kB, shmem-rss:0kB, UID:0 pgtables:212kB oom_score_adj:1000
[  452.035945][ T7090] Bluetooth: hci3: command 0x0c1a tx timeout
[  452.049166][T11267] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  452.071929][T11267] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  452.108679][T11267] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  452.334686][T11347] random: crng reseeded on system resumption
[  453.004451][T11357] futex_wake_op: syz.5.1133 tries to shift op by -2048; fix this program
[  453.051131][T11357] futex_wake_op: syz.5.1133 tries to shift op by -2048; fix this program
[  453.101994][T11357] 0x000000000001-0x000000020000 : ""
[  453.135204][T11357] ftl_cs: FTL header corrupt!
[  454.096112][ T7090] Bluetooth: hci4: command 0x0c1a tx timeout
[  454.189889][ T7090] Bluetooth: hci5: command 0x0c1a tx timeout
[  455.411332][ T7090] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[  455.666928][T11394] netlink: 'syz.1.1141': attribute type 11 has an invalid length.
[  456.141032][T11396] Â: entered promiscuous mode
[  456.166159][T11405] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1144'.
[  456.268214][T11389] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  456.321837][T11389] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  456.336322][T11389] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  456.350833][T11389] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  456.370356][T11389] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  456.544910][T11412] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1147'.
[  456.587167][ T7409] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  456.619646][ T7409] EXT4-fs (sda1): This should not happen!! Data will be lost
[  456.619646][ T7409] 
[  456.688969][ T7409] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 974 with max blocks 1 with error 117
[  456.706061][ T7409] EXT4-fs (sda1): This should not happen!! Data will be lost
[  456.706061][ T7409] 
[  456.741992][ T7400] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 990 with max blocks 34 with error 117
[  456.770963][ T7400] EXT4-fs (sda1): This should not happen!! Data will be lost
[  456.770963][ T7400] 
[  456.920194][T11423] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  456.935931][ T6239] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  456.968863][ T6239] EXT4-fs (sda1): This should not happen!! Data will be lost
[  456.968863][ T6239] 
[  456.996134][ T6239] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117
[  457.051586][ T6239] EXT4-fs (sda1): This should not happen!! Data will be lost
[  457.051586][ T6239] 
[  457.526463][ T7090] Bluetooth: hci1: command 0x0c1a tx timeout
[  458.316518][ T7090] Bluetooth: hci3: command 0x0c1a tx timeout
[  458.395922][ T6274] Bluetooth: hci4: command 0x0c1a tx timeout
[  458.402139][ T7090] Bluetooth: hci5: command 0x0c1a tx timeout
[  458.759992][T11460] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1156'.
[  458.916386][T11462] netlink: 322 bytes leftover after parsing attributes in process `syz.5.1157'.
[  459.725178][T11479] zswap: compressor  not available
[  459.767182][T11483] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  460.473659][ T7090] Bluetooth: hci4: command 0x0c1a tx timeout
[  460.572656][T11491] zswap: compressor  not available
[  460.812791][T11499] block nbd8: Unsupported socket: should be TCP or UNIX.
[  460.853377][T11484] kexec: Could not allocate control_code_buffer
[  461.082199][T11506] netlink: 322 bytes leftover after parsing attributes in process `syz.5.1166'.
[  461.197427][T11510] ==================================================================
[  461.197448][T11510] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x1a6f/0x1e60
[  461.197501][T11510] Write of size 8 at addr ffffc90003aa9000 by task syz.5.1168/11510
[  461.197527][T11510] 
[  461.197545][T11510] CPU: 0 UID: 0 PID: 11510 Comm: syz.5.1168 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  461.197589][T11510] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  461.197602][T11510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  461.197619][T11510] Call Trace:
[  461.197629][T11510]  <TASK>
[  461.197641][T11510]  dump_stack_lvl+0x116/0x1f0
[  461.197684][T11510]  print_report+0xcd/0x630
[  461.197726][T11510]  ? __virt_addr_valid+0x81/0x610
[  461.197772][T11510]  ? sys_imageblit+0x1a6f/0x1e60
[  461.197810][T11510]  kasan_report+0xe0/0x110
[  461.197851][T11510]  ? sys_imageblit+0x1a6f/0x1e60
[  461.197895][T11510]  sys_imageblit+0x1a6f/0x1e60
[  461.197940][T11510]  ? __pfx_sys_imageblit+0x10/0x10
[  461.197979][T11510]  ? __pfx__prb_read_valid+0x10/0x10
[  461.198012][T11510]  ? __asan_memcpy+0x3c/0x60
[  461.198044][T11510]  ? desc_read+0x2ae/0x370
[  461.198076][T11510]  ? __lock_acquire+0x436/0x2890
[  461.198099][T11510]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  461.198141][T11510]  soft_cursor+0x524/0xa10
[  461.198171][T11510]  ? fb_get_color_depth+0x120/0x250
[  461.198200][T11510]  bit_cursor+0xe8c/0x17e0
[  461.198231][T11510]  ? __pfx_bit_cursor+0x10/0x10
[  461.198266][T11510]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  461.198317][T11510]  ? get_color+0x1da/0x450
[  461.198345][T11510]  ? __pfx_bit_cursor+0x10/0x10
[  461.198377][T11510]  fbcon_cursor+0x437/0x5d0
[  461.198406][T11510]  ? gcd+0x122/0x270
[  461.198444][T11510]  fbcon_scroll+0x222/0x640
[  461.198473][T11510]  con_scroll+0x45f/0x690
[  461.198506][T11510]  lf+0x26e/0x2c0
[  461.198536][T11510]  ? __pfx_lf+0x10/0x10
[  461.198569][T11510]  do_con_write+0xdb3/0x8280
[  461.198614][T11510]  ? __pfx_do_con_write+0x10/0x10
[  461.198664][T11510]  con_write+0x23/0xb0
[  461.198701][T11510]  n_tty_write+0x434/0x1280
[  461.198735][T11510]  ? __pfx_n_tty_write+0x10/0x10
[  461.198764][T11510]  ? __pfx_woken_wake_function+0x10/0x10
[  461.198799][T11510]  ? __pfx___might_resched+0x10/0x10
[  461.198839][T11510]  ? __pfx_n_tty_write+0x10/0x10
[  461.198869][T11510]  file_tty_write.constprop.0+0x503/0x9b0
[  461.198914][T11510]  redirected_tty_write+0xd4/0x120
[  461.198953][T11510]  do_iter_readv_writev+0x662/0x9e0
[  461.198992][T11510]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  461.199028][T11510]  ? common_file_perm+0x1b1/0x500
[  461.199062][T11510]  ? bpf_lsm_file_permission+0x9/0x10
[  461.199096][T11510]  ? security_file_permission+0x71/0x210
[  461.199132][T11510]  ? rw_verify_area+0xcf/0x6c0
[  461.199168][T11510]  vfs_writev+0x35f/0xde0
[  461.199206][T11510]  ? __lock_acquire+0x436/0x2890
[  461.199234][T11510]  ? __pfx_vfs_writev+0x10/0x10
[  461.199271][T11510]  ? putname+0xf5/0x1a0
[  461.199314][T11510]  ? __fget_files+0x20e/0x3c0
[  461.199358][T11510]  ? do_writev+0x132/0x340
[  461.199393][T11510]  do_writev+0x132/0x340
[  461.199426][T11510]  ? __pfx_do_writev+0x10/0x10
[  461.199465][T11510]  do_syscall_64+0xcd/0xf80
[  461.199503][T11510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  461.199531][T11510] RIP: 0033:0x7feb3758f7c9
[  461.199553][T11510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  461.199582][T11510] RSP: 002b:00007feb38360038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  461.199611][T11510] RAX: ffffffffffffffda RBX: 00007feb377e5fa0 RCX: 00007feb3758f7c9
[  461.199632][T11510] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000004
[  461.199651][T11510] RBP: 00007feb37613f91 R08: 0000000000000000 R09: 0000000000000000
[  461.199670][T11510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  461.199687][T11510] R13: 00007feb377e6038 R14: 00007feb377e5fa0 R15: 00007ffc64edb148
[  461.199716][T11510]  </TASK>
[  461.199727][T11510] 
[  461.199735][T11510] The buggy address belongs to a vmalloc virtual mapping
[  461.199756][T11510] Memory state around the buggy address:
[  461.199771][T11510]  ffffc90003aa8f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  461.199791][T11510]  ffffc90003aa8f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  461.199812][T11510] >ffffc90003aa9000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  461.199827][T11510]                    ^
[  461.199843][T11510]  ffffc90003aa9080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  461.199863][T11510]  ffffc90003aa9100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  461.199879][T11510] ==================================================================
[  461.228244][T11510] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  461.228271][T11510] CPU: 0 UID: 0 PID: 11510 Comm: syz.5.1168 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  461.228325][T11510] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  461.228337][T11510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  461.228356][T11510] Call Trace:
[  461.228367][T11510]  <TASK>
[  461.228379][T11510]  dump_stack_lvl+0x3d/0x1f0
[  461.228424][T11510]  vpanic+0x640/0x6f0
[  461.228452][T11510]  panic+0xca/0xd0
[  461.228479][T11510]  ? __pfx_panic+0x10/0x10
[  461.228507][T11510]  ? sys_imageblit+0x1a6f/0x1e60
[  461.228548][T11510]  ? preempt_schedule_common+0x44/0xc0
[  461.228587][T11510]  ? preempt_schedule_thunk+0x16/0x30
[  461.228617][T11510]  check_panic_on_warn+0xab/0xb0
[  461.228647][T11510]  end_report+0x107/0x160
[  461.228688][T11510]  kasan_report+0xee/0x110
[  461.228729][T11510]  ? sys_imageblit+0x1a6f/0x1e60
[  461.228772][T11510]  sys_imageblit+0x1a6f/0x1e60
[  461.228817][T11510]  ? __pfx_sys_imageblit+0x10/0x10
[  461.228857][T11510]  ? __pfx__prb_read_valid+0x10/0x10
[  461.228890][T11510]  ? __asan_memcpy+0x3c/0x60
[  461.228922][T11510]  ? desc_read+0x2ae/0x370
[  461.228954][T11510]  ? __lock_acquire+0x436/0x2890
[  461.228982][T11510]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  461.229027][T11510]  soft_cursor+0x524/0xa10
[  461.229062][T11510]  ? fb_get_color_depth+0x120/0x250
[  461.229095][T11510]  bit_cursor+0xe8c/0x17e0
[  461.229130][T11510]  ? __pfx_bit_cursor+0x10/0x10
[  461.229167][T11510]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  461.229207][T11510]  ? get_color+0x1da/0x450
[  461.229235][T11510]  ? __pfx_bit_cursor+0x10/0x10
[  461.229267][T11510]  fbcon_cursor+0x437/0x5d0
[  461.229304][T11510]  ? gcd+0x122/0x270
[  461.229346][T11510]  fbcon_scroll+0x222/0x640
[  461.229378][T11510]  con_scroll+0x45f/0x690
[  461.229417][T11510]  lf+0x26e/0x2c0
[  461.229449][T11510]  ? __pfx_lf+0x10/0x10
[  461.229489][T11510]  do_con_write+0xdb3/0x8280
[  461.229540][T11510]  ? __pfx_do_con_write+0x10/0x10
[  461.229588][T11510]  con_write+0x23/0xb0
[  461.229627][T11510]  n_tty_write+0x434/0x1280
[  461.229665][T11510]  ? __pfx_n_tty_write+0x10/0x10
[  461.229692][T11510]  ? __pfx_woken_wake_function+0x10/0x10
[  461.229726][T11510]  ? __pfx___might_resched+0x10/0x10
[  461.229762][T11510]  ? __pfx_n_tty_write+0x10/0x10
[  461.229811][T11510]  file_tty_write.constprop.0+0x503/0x9b0
[  461.229855][T11510]  redirected_tty_write+0xd4/0x120
[  461.229893][T11510]  do_iter_readv_writev+0x662/0x9e0
[  461.229931][T11510]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  461.229967][T11510]  ? common_file_perm+0x1b1/0x500
[  461.230000][T11510]  ? bpf_lsm_file_permission+0x9/0x10
[  461.230032][T11510]  ? security_file_permission+0x71/0x210
[  461.230067][T11510]  ? rw_verify_area+0xcf/0x6c0
[  461.230101][T11510]  vfs_writev+0x35f/0xde0
[  461.230138][T11510]  ? __lock_acquire+0x436/0x2890
[  461.230165][T11510]  ? __pfx_vfs_writev+0x10/0x10
[  461.230201][T11510]  ? putname+0xf5/0x1a0
[  461.230234][T11510]  ? __fget_files+0x20e/0x3c0
[  461.230274][T11510]  ? do_writev+0x132/0x340
[  461.230312][T11510]  do_writev+0x132/0x340
[  461.230345][T11510]  ? __pfx_do_writev+0x10/0x10
[  461.230382][T11510]  do_syscall_64+0xcd/0xf80
[  461.230421][T11510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  461.230449][T11510] RIP: 0033:0x7feb3758f7c9
[  461.230470][T11510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  461.230498][T11510] RSP: 002b:00007feb38360038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  461.230526][T11510] RAX: ffffffffffffffda RBX: 00007feb377e5fa0 RCX: 00007feb3758f7c9
[  461.230547][T11510] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000004
[  461.230565][T11510] RBP: 00007feb37613f91 R08: 0000000000000000 R09: 0000000000000000
[  461.230584][T11510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  461.230600][T11510] R13: 00007feb377e6038 R14: 00007feb377e5fa0 R15: 00007ffc64edb148
[  461.230628][T11510]  </TASK>
[  461.231012][T11510] Kernel Offset: disabled