last executing test programs:

4m40.51912693s ago: executing program 1 (id=2066):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020}, 0x2020)
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='mountinfo\x00')
read$FUSE(r1, &(0x7f0000002d80)={0x2020}, 0x2025)

4m40.172325789s ago: executing program 1 (id=2070):
syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x28000)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000340)=ANY=[@ANYBLOB="0600000004000000ff0100005c0000000046d0f046ad8c90ab39d7cf8d650cfaf0c0468a7a49ab631b5afba9a5f9c43226089663c215781bab073284b9849157d35bc6ff77d544e98ac9fae2c1f9c2881c9bbc84829c5884a7b983ef120b439fdca2beca93d059ad6fac6e3b9d506be6b394e529538aff7ca294896129a3bd33e6535f44f1f3ba6f47b026297be2da891b3b8e02b1ed1044a7547e172398dfa03080fb8a0d345c04ef438f9fc1f4a123446a3db3273b1c47a156f31504a3afbd29f85c547d52622f18d4905e70fe894f5cc1794d55e8eb453fcdecb22fc0b89f35854a1fa6c6a9df309efeefdb36c63c54f357fc7c94ef1f1cd687247bc220fea52f1b00"/273, @ANYRES32, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000feffffff00"/28], 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
syz_emit_ethernet(0x26, &(0x7f0000000180)=ANY=[@ANYBLOB="5b1a253f2511aaaaaaaaaabb080045f600180065000001889078ac14143a7f000001f7e530b5b7f31fe8bc19e59d4e16"], 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400001c000000850000001500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0857f9f582f0300000000001000", 0x0, 0x2e00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$inet_icmp(0x2, 0x2, 0x1)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000c00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03080000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021440000000c0a09030000000000000000070000000900020073797a31000000000900010073797a300000000018000380140000800800034000000002050006405200000014000000110001"], 0xc8}}, 0x0)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x60442, 0x0)
socket(0x28, 0x5, 0x0)
socket(0x28, 0x5, 0x0)

4m38.431727214s ago: executing program 1 (id=2078):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg(r4, &(0x7f0000003600)=[{{0x0, 0x0, &(0x7f0000001c40)=[{&(0x7f0000000580)="0000558f", 0x4}], 0x1}}], 0x1, 0xc004)
sendmmsg$unix(r4, &(0x7f0000000840)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}], 0x1, 0x0)

4m37.131294342s ago: executing program 1 (id=2081):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="030000000400000004000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xd, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000407000001000000000000000018120000ba6181095ddba41ef37ebca45fa5bde0ca538920abfd32c33f86d6d9d92dd2d127397d990e99a28af1c28f106a6003b66e97c0f3d6", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000003b000000b7000000000000009500000000000000"], &(0x7f0000000480)='GPL\x00', 0xb0fa, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff7}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setrlimit(0x8, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000100)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = signalfd(0xffffffffffffffff, &(0x7f0000000640), 0x8)
fgetxattr(r4, &(0x7f0000001240)=@known='system.posix_acl_default\x00', 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995f23e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b7f97fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66b4b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca205081173bd03c4754fc4674812daab482fd390a1c903b5d28a1eb247b5837d7603b92495d5c569f6433c3fca5206cb0000003fdbbd3892c52c2e7612e05de32322e980a3d69931e2c9312dd517c96f2ee90362476ed853c4c9b7d4ebf13cbaa795860e92a3d7d004f2c491db38eb769f094d5d48b262cc35c40682138cf13a49aa9f27abec00002f01ba1251aaf2385416ca719300"], &(0x7f0000000240)='GPL\x00', 0x5, 0x61, &(0x7f000000cf3d)=""/195, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x140, 0x0)
ioctl$RTC_SET_TIME(r6, 0x4024700a, &(0x7f0000000040)={0x2b, 0x13, 0x0, 0x2, 0xb, 0xa9, 0x5, 0x2, 0x1})
pipe2$9p(&(0x7f0000001900), 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r7, &(0x7f00000bd000), 0x924924924924c31, 0x3ec0)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYRES32=r3], 0x1c}}, 0x40000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r9, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0xa00, 0x0, 0x303, 0x300}})

4m35.61845075s ago: executing program 1 (id=2084):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f00000001c0)=0x10)

4m33.817048585s ago: executing program 1 (id=2085):
r0 = socket(0x200000000000011, 0x2, 0x0)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0xc815}, 0xc000)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000480), r1)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0xf8}}, 0x0)
sendmsg$IPSET_CMD_FLUSH(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c0000000406010100000000000000e784365397cd01700007000000"], 0x1c}, 0x1, 0x0, 0x0, 0x40000044}, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f00000009c0)={'batadv0\x00', <r6=>0x0})
sendmsg$BATADV_CMD_TP_METER_CANCEL(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="1d65facf69a405a65c3d0300000008000300", @ANYRES32=r6, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x20000040)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="58000000020601080000000000000000000000000c00078005001500000000000500010006000000050005000201000005000400000000000900020073797a300000000011000300686173683a6e65742c6e657400000000"], 0x58}}, 0x0)
listen(0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000004000000000000000000000850000007a00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4}, 0x94)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)=ANY=[@ANYRES64=r7, @ANYRESHEX=r8, @ANYBLOB="09c622fac886bf2952234df0a47046afab49611901bb19968352440aa63f7e26fd3ef2ed3fd61cb4902c47c7bffcf191ae3a768985e8817073d4fe7f1c22254f24547e1b92fd0000"], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r9, &(0x7f00000003c0)="a9e80fa4da354a0b4fcd226d8db866de5687ff7a", &(0x7f00000002c0)=@tcp=r0}, 0xfffffffffffffc73)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=@newtaction={0x84, 0x30, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [{0x70, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[], [@TCA_POLICE_TBF={0x3c, 0x1, {0x7f, 0xe, 0xf4a, 0xbff, 0x0, {0xb, 0x0, 0xfdff, 0xd6, 0x2, 0x5}, {0x2, 0x0, 0xcb52, 0x2, 0xf}, 0xfffffffe, 0x22a5, 0x8001}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x44090}, 0x2400c810)
sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="100000000b14010027bd6100fcdbdf25"], 0x10}, 0x1, 0x0, 0x0, 0x140000c4}, 0x4000004)
r11 = syz_open_dev$dri(&(0x7f0000000100), 0x400000000000007, 0x64700)
ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000000180)={0x0, &(0x7f0000000140)})
ioctl$DRM_IOCTL_RM_CTX(r11, 0xc0086421, &(0x7f0000000240)={0x0, 0x1})
setsockopt$inet_udp_encap(r7, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
syz_emit_ethernet(0x40, &(0x7f0000000080)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaa00320000000000119078000000000000000000004e20001e9078f3957604b4ba88c43caf5e45757fa580eca6ef874cc40000000000"], 0x0)

4m18.699968928s ago: executing program 32 (id=2085):
r0 = socket(0x200000000000011, 0x2, 0x0)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0xc815}, 0xc000)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000480), r1)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0xf8}}, 0x0)
sendmsg$IPSET_CMD_FLUSH(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c0000000406010100000000000000e784365397cd01700007000000"], 0x1c}, 0x1, 0x0, 0x0, 0x40000044}, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f00000009c0)={'batadv0\x00', <r6=>0x0})
sendmsg$BATADV_CMD_TP_METER_CANCEL(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="1d65facf69a405a65c3d0300000008000300", @ANYRES32=r6, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x20000040)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="58000000020601080000000000000000000000000c00078005001500000000000500010006000000050005000201000005000400000000000900020073797a300000000011000300686173683a6e65742c6e657400000000"], 0x58}}, 0x0)
listen(0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000004000000000000000000000850000007a00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4}, 0x94)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)=ANY=[@ANYRES64=r7, @ANYRESHEX=r8, @ANYBLOB="09c622fac886bf2952234df0a47046afab49611901bb19968352440aa63f7e26fd3ef2ed3fd61cb4902c47c7bffcf191ae3a768985e8817073d4fe7f1c22254f24547e1b92fd0000"], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r9, &(0x7f00000003c0)="a9e80fa4da354a0b4fcd226d8db866de5687ff7a", &(0x7f00000002c0)=@tcp=r0}, 0xfffffffffffffc73)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=@newtaction={0x84, 0x30, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [{0x70, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[], [@TCA_POLICE_TBF={0x3c, 0x1, {0x7f, 0xe, 0xf4a, 0xbff, 0x0, {0xb, 0x0, 0xfdff, 0xd6, 0x2, 0x5}, {0x2, 0x0, 0xcb52, 0x2, 0xf}, 0xfffffffe, 0x22a5, 0x8001}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x44090}, 0x2400c810)
sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="100000000b14010027bd6100fcdbdf25"], 0x10}, 0x1, 0x0, 0x0, 0x140000c4}, 0x4000004)
r11 = syz_open_dev$dri(&(0x7f0000000100), 0x400000000000007, 0x64700)
ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000000180)={0x0, &(0x7f0000000140)})
ioctl$DRM_IOCTL_RM_CTX(r11, 0xc0086421, &(0x7f0000000240)={0x0, 0x1})
setsockopt$inet_udp_encap(r7, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
syz_emit_ethernet(0x40, &(0x7f0000000080)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaa00320000000000119078000000000000000000004e20001e9078f3957604b4ba88c43caf5e45757fa580eca6ef874cc40000000000"], 0x0)

1m25.16527034s ago: executing program 0 (id=3268):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
r2 = inotify_init1(0x0)
inotify_add_watch(r2, &(0x7f0000000000)='./file1\x00', 0x4)
copy_file_range(r1, 0x0, r1, &(0x7f00000004c0)=0x100, 0x9, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000100), 0x1f, 0x400)
ioctl$EVIOCREVOKE(r3, 0x40044591, &(0x7f0000000180)=0x3)
open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x42, 0x0, 0x0)
r4 = getpgrp(0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r6 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r6, 0x1, 0x0)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
mount$nfs4(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x8000, &(0x7f00000023c0)={[{'acl'}]})
ioctl$VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f00000012c0)={0x2, @sdr={0x1509737e, 0x7}})

1m24.981544225s ago: executing program 0 (id=3270):
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, 0x0, 0x400d4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x17d4}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000010c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24004821}, 0x0)

1m24.223424835s ago: executing program 0 (id=3272):
ioctl$VIDIOC_STREAMON(0xffffffffffffffff, 0x40045612, &(0x7f0000000040)=0xe)
syz_usb_connect(0x3, 0x8a, &(0x7f0000000100)=ANY=[@ANYBLOB="120100004a04ce408513015f6fda000000010902780001000050000904b24104983d47ab09058504bf07060300072501000201002605e0314ba9337f892e34c04c96cd30b3c4ae528ed1979ce0720905e90240005c0900090503040004050d03072501020ec00109050610ff03022c06072501003907000725018106030000004bbbbd505cc49f000000"], 0x0)

1m23.986858294s ago: executing program 0 (id=3275):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfb, 0x20}, 0xc)
r4 = socket$netlink(0x10, 0x3, 0xc)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, r4, {0x7fffffff, 0xd27}}, './file0\x00'})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{0x1}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x13, &(0x7f00000003c0)=@raw=[@ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @printk={@lu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}, @map_fd={0x18, 0x2}], &(0x7f0000000480)='syzkaller\x00', 0x5, 0xee, &(0x7f00000004c0)=""/238, 0x40f00, 0x5, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000005c0)={0x2, 0x3, 0x3, 0x9}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000600)=[{0x5, 0x5, 0x2, 0x7}, {0x0, 0x5, 0xc, 0x9}, {0x5, 0x2, 0x0, 0xa}, {0x1, 0x4, 0x2, 0xb}], 0x10, 0xf211}, 0x94)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000780)={&(0x7f0000000740)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9, 0x80000})
r5 = socket$tipc(0x1e, 0x2, 0x0)
r6 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x2, 0x1}, 0x10)
dup3(r5, r6, 0x0)

1m23.063767961s ago: executing program 0 (id=3278):
syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x28000)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)

1m22.871069362s ago: executing program 0 (id=3282):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfb, 0x20}, 0xc)
r4 = socket$netlink(0x10, 0x3, 0xc)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000780)={&(0x7f0000000740), 0x0, 0x80000, 0x0, <r5=>0xffffffffffffffff})
r6 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000840)=@generic={&(0x7f0000000800)='./file0\x00', 0x0, 0x14}, 0x18)
r7 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r7, &(0x7f0000000840)=@nameseq={0x1e, 0x1, 0x1, {0x42, 0x0, 0x1}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r7, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x200000, 0x3}, 0x10)
r8 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r8, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x2, 0x1}, 0x10)
sendmsg$tipc(r8, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28000080}, 0x95)
r9 = dup3(r7, r8, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r9, 0x10f, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x16, 0x15, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}}]}, &(0x7f0000000300)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x3, 0x3, 0x0, 0x7}, 0x10, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000880)=[r5, 0xffffffffffffffff, r6, r3, r9], &(0x7f00000008c0)=[{0x5, 0x1, 0x9, 0xc}, {0x1, 0x1, 0xb, 0x2}, {0x2, 0x5, 0xc, 0xc}, {0x0, 0x5, 0x8, 0x3}, {0x9, 0x2, 0x4, 0x5}, {0x3, 0x2, 0x0, 0x3}, {0x0, 0x5, 0x10}, {0x3, 0x5, 0xe, 0x2}], 0x10, 0x1}, 0x94)
bind$netlink(r4, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)

31.75232202s ago: executing program 3 (id=3413):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
preadv2(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/tty/ldiscs\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000000140)=""/121, 0x79, 0x10000b5)

30.506615788s ago: executing program 3 (id=3414):
r0 = add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000140)='_', 0x1, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
r2 = add_key$user(&(0x7f0000006400), &(0x7f0000006c00)={'syz', 0x3}, &(0x7f0000000840)="3e12d23d346cfdeb1716f738274bc1c03bee4423fa20837e6e86b86592e9be8351aabbd6e24f37d5095f839fa4a3507df4f7526f2440e7988da94ccd868dd8741d1e43eba0b67b516be14a8b51a75bfd611b2d7ae6a21d056c2c5116a416a76b1a03dc55ea62d43c809e0ed6e56163fdab317afd5c34d614367e4425bb9a97e38b8beb84ef6d549eed5aaa86dbe646fc95b4b88e2afb55ae6f1229bcf13ecff7a597f452bed6b6fb4c812df9be8e35d8d15086609c033a5d2a42d5dcb0d103098fa302c5b1d48f913f", 0xc9, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r0, r1, r2}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={'sha256\x00'}})

29.100126499s ago: executing program 3 (id=3416):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfb, 0x20}, 0xc)
r4 = socket$netlink(0x10, 0x3, 0xc)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000780)={&(0x7f0000000740)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9, 0x80000, 0x0, <r5=>0xffffffffffffffff})
r6 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000840)=@generic={0x0, 0x0, 0x14}, 0x18)
r7 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r7, &(0x7f0000000840)=@nameseq={0x1e, 0x1, 0x1, {0x42, 0x0, 0x1}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r7, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x200000, 0x3}, 0x10)
r8 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r8, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x2, 0x1}, 0x10)
sendmsg$tipc(r8, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28000080}, 0x95)
r9 = dup3(r7, r8, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r9, 0x10f, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x16, 0x15, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}}]}, &(0x7f0000000300)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x3, 0x3, 0x0, 0x7}, 0x10, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000880)=[r5, 0xffffffffffffffff, r6, r3, r9], &(0x7f00000008c0)=[{0x5, 0x1, 0x9, 0xc}, {0x1, 0x1, 0xb, 0x2}, {0x2, 0x5, 0xc, 0xc}, {0x0, 0x5, 0x8, 0x3}, {0x9, 0x2, 0x4, 0x5}, {0x3, 0x2, 0x0, 0x3}, {0x0, 0x5, 0x10}, {0x3, 0x5, 0xe, 0x2}], 0x10, 0x1}, 0x94)
bind$netlink(r4, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)

27.786708441s ago: executing program 3 (id=3419):
clock_nanosleep(0x2, 0xfffffdfc, &(0x7f0000000080)={0x0, 0x989680}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
socket(0xa, 0x2, 0x0) (async)
r1 = socket(0xa, 0x2, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @mcast2, 0xfffffffc}, 0x1c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
epoll_create1(0x0) (async)
r2 = epoll_create1(0x0)
epoll_pwait(r2, &(0x7f0000000140)=[{}], 0x1, 0xfffffffffffffff7, 0x0, 0x0)
dup3(r0, r2, 0x0)

23.505256832s ago: executing program 3 (id=3432):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/tty/ldiscs\x00', 0x0, 0x0)
pread64(r3, &(0x7f0000000140)=""/121, 0x79, 0x10000b5)

20.303822403s ago: executing program 3 (id=3435):
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000000)=ANY=[@ANYBLOB="12011001020000402505a1a440000102030109025c00020108007f09358a6a80df6a4500334efcb5b504000001020d00000524060001052400ff0f0d240f010b000000010100040e06241ae4291209058103080002f4000904e5ffff010d00000904010102020d"], 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x100, 0x0)
mkdirat(r1, &(0x7f0000000080)='./file1\x00', 0x48)
ioctl$SIOCSIFHWADDR(r1, 0x8b18, &(0x7f0000000000)={'macvlan1\x00', @local})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r2}, 0x18)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f00000007c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100030010651fbe347b2c2b00000c00018008000100", @ANYRES16=r3], 0x20}}, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000ac0)=ANY=[@ANYRES32, @ANYBLOB="1c00000001000000", @ANYRES32], 0x20)
mkdirat(r0, &(0x7f0000000080)='./file0\x00', 0x100)

16.733704593s ago: executing program 2 (id=3441):
openat$vicodec0(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
ftruncate(r0, 0x6000000)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f0000000000)='./file1\x00', 0x4)
copy_file_range(r0, 0x0, r0, &(0x7f00000004c0)=0x100, 0x9, 0x0)
r2 = syz_open_dev$evdev(&(0x7f0000000100), 0x1f, 0x400)
ioctl$EVIOCREVOKE(r2, 0x40044591, &(0x7f0000000180)=0x3)
open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x42, 0x0, 0x0)
r3 = getpgrp(0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000005580)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x80)
mount$nfs4(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x8000, &(0x7f00000023c0)={[{'acl'}]})

16.292133698s ago: executing program 2 (id=3442):
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000000000)=<r0=>0xffffffffffffffff)
quotactl_fd$Q_GETFMT(r0, 0xffffffff80000400, 0xee01, &(0x7f0000000040))
r1 = inotify_init1(0x0)
ioctl$BTRFS_IOC_SET_FEATURES(r1, 0x40309439, &(0x7f0000000080)={0x1, 0x3, 0x8})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r2)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x28)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f0000000100)={0x0, 0x0, @pic={0x1d, 0x5e, 0x10, 0x4, 0x7, 0x6, 0x0, 0x7, 0x0, 0x3, 0x9, 0x7, 0x5, 0x50, 0xa, 0xdb}})
ioctl(r4, 0xffff7fff, &(0x7f0000000340)="2426bd0b4aa58a63b68b004146c21fb173109669885a6013ae1c024efbbbcfeee74bc00cc0e05b8b8ba85081882b3fff0bb97b384d74d0eda638c9729f138848d7ee0233e382d5389745917ebebacacdcfcd7733306427cb69e0c25527214bf64df3b8")
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000400)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_GET_WOWLAN(r2, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x24, r3, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x4c}, @val={0x8, 0x3, r5}, @void}}, ["", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x28000000}, 0x8)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r2)
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f0000000680)={&(0x7f0000000500), 0xc, &(0x7f0000000640)={&(0x7f0000000580)={0x9c, r6, 0x10, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x8, 0x5d}}}}, [@NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "cd96a5996d"}, @NL80211_ATTR_KEY={0x30, 0x50, 0x0, 0x1, [@NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_TYPE={0x8, 0x7, 0x1}, @NL80211_KEY_MODE={0x5, 0x9, 0x2}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}, @NL80211_KEY_IDX={0x5}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "bd2fdada60f1e398a1857edf13"}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "a1d138fa8c"}]}, 0x9c}, 0x1, 0x0, 0x0, 0x20000046}, 0x20000000)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000700), 0xffffffffffffffff)
sendmsg$IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x1c, r7, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000081}, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nbd(&(0x7f0000000840), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r8, &(0x7f0000000900)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)={0x28, r9, 0x400, 0x70bd26, 0x25dfdbff, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x11, 0xa, '802.15.4 MAC\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x804}, 0x90)
r10 = syz_open_dev$I2C(&(0x7f0000000940), 0x3, 0x450140)
ioctl$I2C_PEC(r10, 0x708, 0x7)
ioctl$I2C_SMBUS(r10, 0x720, &(0x7f00000009c0)={0x0, 0x4, 0x4, &(0x7f0000000980)={0xf, "962e4b563bb660e2172711f8dd9ff6591596adf5c3245210db00b82a06fba0e366"}})
sendmsg$NBD_CMD_RECONFIGURE(r8, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x2c, r9, 0x10, 0x70bd28, 0x25dfdbfb, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}]}, 0x2c}}, 0x1)
r11 = openat$full(0xffffffffffffff9c, &(0x7f0000000b00), 0x60800, 0x0)
setsockopt$bt_rfcomm_RFCOMM_LM(r11, 0x12, 0x3, &(0x7f0000000b40)=0x4, 0x4)
recvfrom$l2tp6(r11, &(0x7f0000000b80)=""/4, 0x4, 0x3, &(0x7f0000000bc0), 0x20)
ioctl$AUTOFS_IOC_FAIL(r1, 0x9361, 0x10001)
r12 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_SNDMTU(r12, 0x112, 0xc, &(0x7f0000000c00)=0x9, 0x2)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r11, 0x8933, &(0x7f0000000c40)={'wg1\x00', <r13=>0x0})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r11, 0x89f1, &(0x7f0000000d00)={'syztnl2\x00', &(0x7f0000000c80)={'ip6_vti0\x00', r13, 0x2f, 0x1, 0x1, 0x200, 0x10, @empty, @private1={0xfc, 0x1, '\x00', 0x1}, 0x20, 0x80, 0x3, 0xfffffffb}})

15.965802953s ago: executing program 2 (id=3443):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfb, 0x20}, 0xc)
r4 = socket$netlink(0x10, 0x3, 0xc)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, r4, {0x7fffffff, 0xd27}}, './file0\x00'})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{0x1}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x13, &(0x7f00000003c0)=@raw=[@ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @printk={@lu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}, @map_fd={0x18, 0x2}], &(0x7f0000000480)='syzkaller\x00', 0x5, 0xee, &(0x7f00000004c0)=""/238, 0x40f00, 0x5, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000005c0)={0x2, 0x3, 0x3, 0x9}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000600)=[{0x5, 0x5, 0x2, 0x7}, {0x0, 0x5, 0xc, 0x9}, {0x0, 0x4, 0x7, 0x6}, {0x5, 0x2, 0x0, 0xa}, {0x1, 0x4, 0x2, 0xb}], 0x10, 0xf211}, 0x94)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000780)={0x0, 0x0, 0x80000})
r5 = socket$tipc(0x1e, 0x2, 0x0)
r6 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x2, 0x1}, 0x10)
dup3(r5, r6, 0x0)

15.964977262s ago: executing program 2 (id=3444):
ioctl$VIDIOC_STREAMON(0xffffffffffffffff, 0x40045612, 0x0)
syz_usb_connect(0x3, 0x8a, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x0)

15.754472878s ago: executing program 2 (id=3445):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/tty/ldiscs\x00', 0x0, 0x0)
pread64(r3, &(0x7f0000000140)=""/121, 0x79, 0x10000b5)

15.610884011s ago: executing program 2 (id=3446):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
r1 = socket(0x10, 0x80002, 0x0)
sendmsg(r1, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000040)="24000000180003041dfffd946f610500020100000005fe060c10880008000f00fff3c00e140000001a00ffffba16a0aa1c091dbfa1090000", 0x38}], 0x1}, 0x0)
recvmmsg(r1, &(0x7f0000005680)=[{{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000780)=""/199, 0xc7}, {&(0x7f0000000880)=""/153, 0x99}, {&(0x7f00000011c0)=""/4096, 0x1000}], 0x3}, 0x4c0c6e26}], 0x2, 0x40002022, 0x0)
getsockopt$inet6_tcp_int(r1, 0x6, 0x5, &(0x7f0000000040), &(0x7f0000000080)=0x4)
move_pages(0x0, 0x2, &(0x7f0000000440)=[&(0x7f0000002000/0x2000)=nil, &(0x7f0000000000/0x2000)=nil], &(0x7f0000000140)=[0x1], 0x0, 0x2)
socket$xdp(0x2c, 0x3, 0x0) (async)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20) (async)
socket(0x10, 0x80002, 0x0) (async)
sendmsg(r1, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000040)="24000000180003041dfffd946f610500020100000005fe060c10880008000f00fff3c00e140000001a00ffffba16a0aa1c091dbfa1090000", 0x38}], 0x1}, 0x0) (async)
recvmmsg(r1, &(0x7f0000005680)=[{{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000780)=""/199, 0xc7}, {&(0x7f0000000880)=""/153, 0x99}, {&(0x7f00000011c0)=""/4096, 0x1000}], 0x3}, 0x4c0c6e26}], 0x2, 0x40002022, 0x0) (async)
getsockopt$inet6_tcp_int(r1, 0x6, 0x5, &(0x7f0000000040), &(0x7f0000000080)=0x4) (async)
move_pages(0x0, 0x2, &(0x7f0000000440)=[&(0x7f0000002000/0x2000)=nil, &(0x7f0000000000/0x2000)=nil], &(0x7f0000000140)=[0x1], 0x0, 0x2) (async)

13.850006683s ago: executing program 5 (id=3450):
r0 = openat$vicodec0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
ftruncate(r1, 0x6000000)
r2 = inotify_init1(0x0)
inotify_add_watch(r2, &(0x7f0000000000)='./file1\x00', 0x4)
copy_file_range(r1, 0x0, r1, &(0x7f00000004c0)=0x100, 0x9, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000100), 0x1f, 0x400)
ioctl$EVIOCREVOKE(r3, 0x40044591, &(0x7f0000000180)=0x3)
open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x42, 0x0, 0x0)
r4 = getpgrp(0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r6 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r6, 0x1, 0x0)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
mount$nfs4(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x8000, &(0x7f00000023c0)={[{'acl'}]})
ioctl$VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f00000012c0)={0x2, @sdr={0x1509737e, 0x7}})

11.512999804s ago: executing program 5 (id=3451):
openat$vicodec0(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
ftruncate(r0, 0x6000000)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f0000000000)='./file1\x00', 0x4)
copy_file_range(r0, 0x0, r0, &(0x7f00000004c0)=0x100, 0x9, 0x0)
r2 = syz_open_dev$evdev(&(0x7f0000000100), 0x1f, 0x400)
ioctl$EVIOCREVOKE(r2, 0x40044591, &(0x7f0000000180)=0x3)
open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x42, 0x0, 0x0)
r3 = getpgrp(0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000005580)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x80)
mount$nfs4(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x8000, &(0x7f00000023c0)={[{'acl'}]})

8.783866949s ago: executing program 4 (id=3454):
syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x28000)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000340)=ANY=[@ANYBLOB="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"/273, @ANYRES32, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000feffffff00"/28], 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
syz_emit_ethernet(0x26, &(0x7f0000000180)=ANY=[@ANYBLOB="5b1a253f2511aaaaaaaaaabb080045f600180065000001889078ac14143a7f000001f7e530b5b7f31fe8bc19e59d4e16"], 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400001c000000850000001500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0857f9f582f0300000000001000", 0x0, 0x2e00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$inet_icmp(0x2, 0x2, 0x1)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000c00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03080000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021440000000c0a09030000000000000000070000000900020073797a31000000000900010073797a300000000018000380140000800800034000000002050006405200000014000000110001"], 0xc8}}, 0x0)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x60442, 0x0)
socket(0x28, 0x5, 0x0)

7.463122629s ago: executing program 4 (id=3455):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/tty/ldiscs\x00', 0x0, 0x0)
pread64(r3, &(0x7f0000000140)=""/121, 0x79, 0x10000b5)

7.315132831s ago: executing program 5 (id=3456):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/tty/ldiscs\x00', 0x0, 0x0)
pread64(r3, &(0x7f0000000140)=""/121, 0x79, 0x10000b5)

6.401359191s ago: executing program 4 (id=3457):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
preadv2(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/tty/ldiscs\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000000140)=""/121, 0x79, 0x10000b5)

5.941362588s ago: executing program 5 (id=3458):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfb, 0x20}, 0xc)
r4 = socket$netlink(0x10, 0x3, 0xc)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000780)={&(0x7f0000000740)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9, 0x80000, 0x0, <r5=>0xffffffffffffffff})
r6 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000840)=@generic={&(0x7f0000000800)='./file0\x00', 0x0, 0x14}, 0x18)
r7 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r7, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(r7, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x200000, 0x3}, 0x10)
r8 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r8, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x2, 0x1}, 0x10)
sendmsg$tipc(r8, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28000080}, 0x95)
r9 = dup3(r7, r8, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r9, 0x10f, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x16, 0x15, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}}]}, &(0x7f0000000300)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x3, 0x3, 0x0, 0x7}, 0x10, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000880)=[r5, 0xffffffffffffffff, r6, r3, r9], &(0x7f00000008c0)=[{0x5, 0x1, 0x9, 0xc}, {0x1, 0x1, 0xb, 0x2}, {0x2, 0x5, 0xc, 0xc}, {0x0, 0x5, 0x8, 0x3}, {0x9, 0x2, 0x4, 0x5}, {0x3, 0x2, 0x0, 0x3}, {0x0, 0x5, 0x10}, {0x3, 0x5, 0xe, 0x2}], 0x10, 0x1}, 0x94)
bind$netlink(r4, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)

5.136238895s ago: executing program 33 (id=3435):
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000000)=ANY=[@ANYBLOB="12011001020000402505a1a440000102030109025c00020108007f09358a6a80df6a4500334efcb5b504000001020d00000524060001052400ff0f0d240f010b000000010100040e06241ae4291209058103080002f4000904e5ffff010d00000904010102020d"], 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x100, 0x0)
mkdirat(r1, &(0x7f0000000080)='./file1\x00', 0x48)
ioctl$SIOCSIFHWADDR(r1, 0x8b18, &(0x7f0000000000)={'macvlan1\x00', @local})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r2}, 0x18)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f00000007c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100030010651fbe347b2c2b00000c00018008000100", @ANYRES16=r3], 0x20}}, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000ac0)=ANY=[@ANYRES32, @ANYBLOB="1c00000001000000", @ANYRES32], 0x20)
mkdirat(r0, &(0x7f0000000080)='./file0\x00', 0x100)

4.720799719s ago: executing program 4 (id=3460):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfb, 0x20}, 0xc)
r4 = socket$netlink(0x10, 0x3, 0xc)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, r4, {0x7fffffff, 0xd27}}, './file0\x00'})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{0x1}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x13, &(0x7f00000003c0)=@raw=[@ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @printk={@lu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}, @map_fd={0x18, 0x2}], &(0x7f0000000480)='syzkaller\x00', 0x5, 0xee, &(0x7f00000004c0)=""/238, 0x40f00, 0x5, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000005c0)={0x2, 0x3, 0x3, 0x9}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000600)=[{0x5, 0x5, 0x2, 0x7}, {0x0, 0x5, 0xc, 0x9}, {0x0, 0x4, 0x7, 0x6}, {0x5, 0x2, 0x0, 0xa}, {0x1, 0x4, 0x2, 0xb}], 0x10, 0xf211}, 0x94)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000780)={&(0x7f0000000740), 0x0, 0x80000})
r5 = socket$tipc(0x1e, 0x2, 0x0)
r6 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x2, 0x1}, 0x10)
dup3(r5, r6, 0x0)

4.233289696s ago: executing program 5 (id=3461):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/drivers\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
munlock(&(0x7f0000003000/0x1000)=nil, 0x1000)
mincore(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200)
r0 = syz_io_uring_setup(0x3bd4, &(0x7f0000000180)={0x0, 0xcc19, 0x130c8, 0x6, 0x30e}, &(0x7f0000000100), &(0x7f0000000200))
io_uring_register$IORING_REGISTER_RESTRICTIONS(r0, 0xb, &(0x7f0000000000)=[@ioring_restriction_sqe_op={0x1, 0x12}, @ioring_restriction_register_op={0x0, 0x1f}, @ioring_restriction_sqe_flags_allowed={0x2, 0x22}, @ioring_restriction_sqe_op={0x1, 0xb}, @ioring_restriction_sqe_op={0x1, 0xa}, @ioring_restriction_sqe_flags_required={0x3, 0x14}, @ioring_restriction_sqe_flags_allowed={0x2, 0x3}, @ioring_restriction_sqe_flags_allowed={0x2, 0x18}], 0x8)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r0, 0xc, 0x0, 0x0)
io_uring_enter(r0, 0x2e6f, 0x8555, 0x2, 0x0, 0x0)
syz_clone3(&(0x7f0000001380)={0x480020200, &(0x7f0000000080)=<r1=>0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140), {0x25}, &(0x7f0000000240)=""/213, 0xd5, &(0x7f0000000340)=""/4096, &(0x7f0000001340)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x3}, 0x58)
process_madvise(r1, &(0x7f0000001580)=[{&(0x7f0000001400)="b4", 0x1}, {&(0x7f0000001440)="17be9d7564610a79cf4d8a9d7914568e328ba7f93a4cdd52bd90bc899905ff90fdd9101611783488836e44", 0x2b}, {&(0x7f0000001480)="398456dd56524d58346560f899e68f625308851135775c103e0c1a12463130f0e2d8e4d45f72eaf2a92c07a138da060993941460a4a2a33a4d43deae7e4ee3a4512608bba2e13544065befca5cec1d890fb30b65e3606fd800", 0x59}, {&(0x7f0000001500)="a653b90070b2008220f6a29cb981c895eda509664f8d3d5a9c7fb5de511581908282e07db614a045b2c80caec75cbe88af0d983f262e7eb40bd9f2f93241e274fdbfb089ac875f", 0x47}], 0x4, 0x13, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000015c0)={0xa, 0x4e23, 0x80000000, @empty, 0x8}, 0x1c)

3.406219466s ago: executing program 5 (id=3462):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f00000001c0)={<r2=>0x0, 0x6}, &(0x7f0000000200)=0x8)
setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000300)={r2, 0x7}, 0x8)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x2})
ioctl$USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x4000, 0x3, 0x0, 0x0, 0x2)
request_key(&(0x7f0000000340)='id_legacy\x00', &(0x7f0000000380)={'syz', 0x0}, &(0x7f00000003c0)='/dev/vsock\x00', 0xfffffffffffffffe)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
poll(&(0x7f0000000080)=[{r4, 0x5006}], 0x1, 0x5)
syz_usb_connect(0x2, 0x2d, &(0x7f0000000200)=ANY=[@ANYBLOB="12015002efa38a08cd061b01714f0102030109021b00010403400309046e0b01ac57980509050a031000ff0007"], &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0})
recvmsg$kcm(0xffffffffffffffff, 0x0, 0x100)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r6, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
sendmsg$NFT_BATCH(r7, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a88000000060a010400000000000000000a0000010900010073797a31000000005c000480580001800b0001007461726765740000480002802c0003009ac420002e00000000000000009dfb78c7699c74e891a0c70000000000000000000000000000000008000240000000000e00010049444c4554494d45520000000900020073797a32"], 0xb0}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040)

3.356956977s ago: executing program 4 (id=3463):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x6, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000010000000000000000018200000", @ANYRES32=r0, @ANYBLOB="0000000000000000c30000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x8, 0xdf, &(0x7f0000001400)=""/223, 0x40f00}, 0x94)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl1\x00', &(0x7f00000000c0)={'ip6gre0\x00', <r3=>0x0, 0x29, 0x3, 0xb, 0x4, 0x10, @rand_addr=' \x01\x00', @empty, 0x10, 0x7, 0x7ff, 0x6}})
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB='t\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000229bd7000fedbdf250300000005000500020000000500024a2e3c380853e1e6000f00000005000500170000000500050003000000050005000300000038000180080003000100000008000100", @ANYRES32=r3, @ANYBLOB="080003000200000008000300010000001400020069705f76746930000000000000000000"], 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x20004000)

2.631261269s ago: executing program 4 (id=3464):
syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x28000)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000340)=ANY=[@ANYBLOB="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"/273, @ANYRES32, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000feffffff00"/28], 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
syz_emit_ethernet(0x26, &(0x7f0000000180)=ANY=[@ANYBLOB="5b1a253f2511aaaaaaaaaabb080045f600180065000001889078ac14143a7f000001f7e530b5b7f31fe8bc19e59d4e16"], 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400001c000000850000001500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0857f9f582f0300000000001000", 0x0, 0x2e00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$inet_icmp(0x2, 0x2, 0x1)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000c00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03080000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021440000000c0a09030000000000000000070000000900020073797a31000000000900010073797a300000000018000380140000800800034000000002050006405200000014000000110001"], 0xc8}}, 0x0)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x60442, 0x0)
socket(0x28, 0x5, 0x0)

0s ago: executing program 34 (id=3446):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
r1 = socket(0x10, 0x80002, 0x0)
sendmsg(r1, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000040)="24000000180003041dfffd946f610500020100000005fe060c10880008000f00fff3c00e140000001a00ffffba16a0aa1c091dbfa1090000", 0x38}], 0x1}, 0x0)
recvmmsg(r1, &(0x7f0000005680)=[{{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000780)=""/199, 0xc7}, {&(0x7f0000000880)=""/153, 0x99}, {&(0x7f00000011c0)=""/4096, 0x1000}], 0x3}, 0x4c0c6e26}], 0x2, 0x40002022, 0x0)
getsockopt$inet6_tcp_int(r1, 0x6, 0x5, &(0x7f0000000040), &(0x7f0000000080)=0x4)
move_pages(0x0, 0x2, &(0x7f0000000440)=[&(0x7f0000002000/0x2000)=nil, &(0x7f0000000000/0x2000)=nil], &(0x7f0000000140)=[0x1], 0x0, 0x2)
socket$xdp(0x2c, 0x3, 0x0) (async)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20) (async)
socket(0x10, 0x80002, 0x0) (async)
sendmsg(r1, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000040)="24000000180003041dfffd946f610500020100000005fe060c10880008000f00fff3c00e140000001a00ffffba16a0aa1c091dbfa1090000", 0x38}], 0x1}, 0x0) (async)
recvmmsg(r1, &(0x7f0000005680)=[{{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000780)=""/199, 0xc7}, {&(0x7f0000000880)=""/153, 0x99}, {&(0x7f00000011c0)=""/4096, 0x1000}], 0x3}, 0x4c0c6e26}], 0x2, 0x40002022, 0x0) (async)
getsockopt$inet6_tcp_int(r1, 0x6, 0x5, &(0x7f0000000040), &(0x7f0000000080)=0x4) (async)
move_pages(0x0, 0x2, &(0x7f0000000440)=[&(0x7f0000002000/0x2000)=nil, &(0x7f0000000000/0x2000)=nil], &(0x7f0000000140)=[0x1], 0x0, 0x2) (async)

kernel console output (not intermixed with test programs):

c_no_stats+0x4a/0x4d0
[  870.598077][T13906]  ? __get_vm_area_node+0x240/0x350
[  870.598108][T13906]  __vmalloc_node_range_noprof+0x396/0x16a0
[  870.598151][T13906]  ? is_bpf_text_address+0x26/0x2b0
[  870.598179][T13906]  ? kernel_text_address+0xa5/0xe0
[  870.598211][T13906]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  870.598250][T13906]  ? __lock_acquire+0x6b6/0x2cf0
[  870.598283][T13906]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  870.598304][T13906]  __vmalloc_noprof+0xd2/0x120
[  870.598330][T13906]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  870.598354][T13906]  bpf_prog_alloc_no_stats+0x4a/0x4d0
[  870.598380][T13906]  bpf_prog_alloc+0x3c/0x1a0
[  870.598404][T13906]  bpf_prog_load+0x735/0x1a10
[  870.598432][T13906]  ? get_pid_task+0x20/0x1f0
[  870.598459][T13906]  ? __pfx_bpf_prog_load+0x10/0x10
[  870.598481][T13906]  ? __might_fault+0xb0/0x130
[  870.598524][T13906]  ? bpf_lsm_bpf+0x9/0x20
[  870.598539][T13906]  ? security_bpf+0x7e/0x300
[  870.598568][T13906]  __sys_bpf+0x507/0x860
[  870.598590][T13906]  ? __pfx___sys_bpf+0x10/0x10
[  870.598608][T13906]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  870.598646][T13906]  ? ksys_write+0x230/0x260
[  870.598674][T13906]  ? __pfx_ksys_write+0x10/0x10
[  870.598706][T13906]  __x64_sys_bpf+0x7c/0x90
[  870.598724][T13906]  do_syscall_64+0xec/0xf80
[  870.598741][T13906]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  870.598759][T13906]  ? trace_irq_disable+0x37/0x100
[  870.598777][T13906]  ? clear_bhb_loop+0x60/0xb0
[  870.598799][T13906]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  870.598816][T13906] RIP: 0033:0x7f8aa6e1f749
[  870.598831][T13906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  870.598846][T13906] RSP: 002b:00007f8aa5086038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  870.598863][T13906] RAX: ffffffffffffffda RBX: 00007f8aa7075fa0 RCX: 00007f8aa6e1f749
[  870.598877][T13906] RDX: 0000000000000094 RSI: 0000200000000840 RDI: 0000000000000005
[  870.598889][T13906] RBP: 00007f8aa5086090 R08: 0000000000000000 R09: 0000000000000000
[  870.598900][T13906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  870.598910][T13906] R13: 00007f8aa7076038 R14: 00007f8aa7075fa0 R15: 00007ffee4fe4fd8
[  870.598938][T13906]  </TASK>
[  870.598953][T13906] Mem-Info:
[  870.598963][T13906] active_anon:270 inactive_anon:5621 isolated_anon:0
[  870.598963][T13906]  active_file:30031 inactive_file:36063 isolated_file:0
[  870.598963][T13906]  unevictable:768 dirty:137 writeback:0
[  870.598963][T13906]  slab_reclaimable:9523 slab_unreclaimable:100061
[  870.598963][T13906]  mapped:31708 shmem:1367 pagetables:1187
[  870.598963][T13906]  sec_pagetables:0 bounce:0
[  870.598963][T13906]  kernel_misc_reclaimable:0
[  870.598963][T13906]  free:1315487 free_pcp:2927 free_cma:0
[  870.599019][T13906] Node 0 active_anon:1080kB inactive_anon:22484kB active_file:119924kB inactive_file:144252kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:126832kB dirty:548kB writeback:0kB shmem:3932kB kernel_stack:13308kB pagetables:4588kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  870.599070][T13906] Node 1 active_anon:0kB inactive_anon:0kB active_file:200kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB kernel_stack:64kB pagetables:160kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  870.599115][T13906] Node 0 DMA free:15344kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  870.599178][T13906] lowmem_reserve[]: 0 2514 2515 2515 2515
[  870.599218][T13906] Node 0 DMA32 free:1351172kB boost:0kB min:3944kB low:6492kB high:9040kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1080kB inactive_anon:22484kB active_file:119924kB inactive_file:144252kB unevictable:1536kB writepending:548kB zspages:0kB present:3129332kB managed:2574688kB mlocked:0kB bounce:0kB free_pcp:11704kB local_pcp:2932kB free_cma:0kB
[  870.599291][T13906] lowmem_reserve[]: 0 0 1 1 1
[  870.599328][T13906] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  870.599403][T13906] lowmem_reserve[]: 0 0 0 0 0
[  870.599438][T13906] Node 1 Normal free:3895432kB boost:0kB min:6360kB low:10468kB high:14576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:200kB inactive_file:0kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  870.599501][T13906] lowmem_reserve[]: 0 0 0 0 0
[  870.599538][T13906] Node 0 DMA: 0*4kB 0*8kB 1*16kB (U) 1*32kB (U) 1*64kB (U) 1*128kB (U) 1*256kB (U) 1*512kB (U) 0*1024kB 1*2048kB (M) 3*4096kB (M) = 15344kB
[  870.616151][T13906] Node 0 DMA32: 1877*4kB (UME) 1627*8kB (UME) 1520*16kB (UME) 889*32kB (UME) 609*64kB (UME) 339*128kB (UME) 248*256kB (UME) 147*512kB (UME) 80*1024kB (UM) 28*2048kB (UME) 224*4096kB (M) = 1351180kB
[  870.616659][T13906] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  870.617001][T13906] Node 1 Normal: 184*4kB (UE) 43*8kB (UME) 33*16kB (UME) 192*32kB (UME) 85*64kB (UME) 24*128kB (UME) 11*256kB (UM) 7*512kB (UME) 4*1024kB (UME) 3*2048kB (ME) 943*4096kB (UM) = 3895432kB
[  870.617507][T13906] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  870.617561][T13906] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  870.617615][T13906] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  870.617669][T13906] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  870.617732][T13906] 67457 total pagecache pages
[  870.617755][T13906] 0 pages in swap cache
[  870.617785][T13906] Free swap  = 124996kB
[  870.617808][T13906] Total swap = 124996kB
[  870.617832][T13906] 2097051 pages RAM
[  870.617847][T13906] 0 pages HighMem/MovableOnly
[  870.617876][T13906] 421353 pages reserved
[  870.617898][T13906] 0 pages cma reserved
[  871.993559][T13928] FAULT_INJECTION: forcing a failure.
[  871.993559][T13928] name failslab, interval 1, probability 0, space 0, times 0
[  871.993601][T13928] CPU: 1 UID: 0 PID: 13928 Comm: syz.0.2866 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  871.993631][T13928] Tainted: [L]=SOFTLOCKUP
[  871.993639][T13928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  871.993653][T13928] Call Trace:
[  871.993662][T13928]  <TASK>
[  871.993671][T13928]  dump_stack_lvl+0xe8/0x150
[  871.993707][T13928]  should_fail_ex+0x46c/0x600
[  871.993743][T13928]  should_failslab+0xa8/0x100
[  871.993767][T13928]  __kmalloc_noprof+0xe0/0x7e0
[  871.993800][T13928]  ? sock_kmalloc+0xd6/0x160
[  871.993837][T13928]  sock_kmalloc+0xd6/0x160
[  871.993870][T13928]  ____sys_sendmsg+0x1b5/0x810
[  871.993907][T13928]  ? __pfx_____sys_sendmsg+0x10/0x10
[  871.993945][T13928]  ? import_iovec+0x74/0xa0
[  871.993971][T13928]  ___sys_sendmsg+0x21f/0x2a0
[  871.994003][T13928]  ? __pfx____sys_sendmsg+0x10/0x10
[  871.994119][T13928]  ? __fget_files+0x2a/0x420
[  871.994143][T13928]  ? __fget_files+0x3a6/0x420
[  871.994177][T13928]  __x64_sys_sendmsg+0x1a1/0x260
[  871.994209][T13928]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  871.994249][T13928]  ? __pfx_ksys_write+0x10/0x10
[  871.994292][T13928]  do_syscall_64+0xec/0xf80
[  871.994315][T13928]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  871.994335][T13928]  ? trace_irq_disable+0x37/0x100
[  871.994360][T13928]  ? clear_bhb_loop+0x60/0xb0
[  871.994387][T13928]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  871.994409][T13928] RIP: 0033:0x7f8aa6e1f749
[  871.994428][T13928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  871.994449][T13928] RSP: 002b:00007f8aa5086038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  871.994473][T13928] RAX: ffffffffffffffda RBX: 00007f8aa7075fa0 RCX: 00007f8aa6e1f749
[  871.994490][T13928] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  871.994504][T13928] RBP: 00007f8aa5086090 R08: 0000000000000000 R09: 0000000000000000
[  871.994519][T13928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  871.994532][T13928] R13: 00007f8aa7076038 R14: 00007f8aa7075fa0 R15: 00007ffee4fe4fd8
[  871.994567][T13928]  </TASK>
[  873.013657][T13925] FAULT_INJECTION: forcing a failure.
[  873.013657][T13925] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  873.013698][T13925] CPU: 0 UID: 0 PID: 13925 Comm: syz.3.2862 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  873.013729][T13925] Tainted: [L]=SOFTLOCKUP
[  873.013738][T13925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  873.013753][T13925] Call Trace:
[  873.013762][T13925]  <TASK>
[  873.013772][T13925]  dump_stack_lvl+0xe8/0x150
[  873.013810][T13925]  should_fail_ex+0x46c/0x600
[  873.013847][T13925]  _copy_from_iter+0x1cd/0x1630
[  873.013883][T13925]  ? kmalloc_reserve+0xbd/0x290
[  873.013908][T13925]  ? rcu_is_watching+0x15/0xb0
[  873.013936][T13925]  ? __pfx__copy_from_iter+0x10/0x10
[  873.013971][T13925]  ? __build_skb_around+0x22d/0x3c0
[  873.013999][T13925]  ? __alloc_skb+0x198/0x3a0
[  873.014025][T13925]  ? netlink_sendmsg+0x642/0xb30
[  873.014055][T13925]  ? skb_put+0x11b/0x210
[  873.014085][T13925]  netlink_sendmsg+0x6b2/0xb30
[  873.014125][T13925]  ? __pfx_netlink_sendmsg+0x10/0x10
[  873.014166][T13925]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  873.014196][T13925]  ? __pfx_netlink_sendmsg+0x10/0x10
[  873.014228][T13925]  __sock_sendmsg+0x21c/0x270
[  873.014276][T13925]  ____sys_sendmsg+0x508/0x810
[  873.014322][T13925]  ? __pfx_____sys_sendmsg+0x10/0x10
[  873.014357][T13925]  ? import_iovec+0x74/0xa0
[  873.014382][T13925]  ___sys_sendmsg+0x21f/0x2a0
[  873.014412][T13925]  ? __pfx____sys_sendmsg+0x10/0x10
[  873.014475][T13925]  ? __fget_files+0x2a/0x420
[  873.014498][T13925]  ? __fget_files+0x3a6/0x420
[  873.014529][T13925]  __x64_sys_sendmsg+0x1a1/0x260
[  873.014559][T13925]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  873.014597][T13925]  ? __pfx_ksys_write+0x10/0x10
[  873.014640][T13925]  do_syscall_64+0xec/0xf80
[  873.014662][T13925]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  873.014683][T13925]  ? trace_irq_disable+0x37/0x100
[  873.014707][T13925]  ? clear_bhb_loop+0x60/0xb0
[  873.014734][T13925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  873.014756][T13925] RIP: 0033:0x7fd67ba5f749
[  873.014775][T13925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  873.014794][T13925] RSP: 002b:00007fd679cbe038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  873.014818][T13925] RAX: ffffffffffffffda RBX: 00007fd67bcb5fa0 RCX: 00007fd67ba5f749
[  873.014834][T13925] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  873.014847][T13925] RBP: 00007fd679cbe090 R08: 0000000000000000 R09: 0000000000000000
[  873.014861][T13925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  873.014874][T13925] R13: 00007fd67bcb6038 R14: 00007fd67bcb5fa0 R15: 00007ffc4e21def8
[  873.014908][T13925]  </TASK>
[  873.454820][T12887] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  873.625494][T12887] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  873.710869][T12887] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  873.920579][T12917] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  874.192805][T12917] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  874.307028][T13983] FAULT_INJECTION: forcing a failure.
[  874.307028][T13983] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  874.307096][T13983] CPU: 0 UID: 0 PID: 13983 Comm: syz.0.2878 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  874.307135][T13983] Tainted: [L]=SOFTLOCKUP
[  874.307144][T13983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  874.307157][T13983] Call Trace:
[  874.307167][T13983]  <TASK>
[  874.307177][T13983]  dump_stack_lvl+0xe8/0x150
[  874.307216][T13983]  should_fail_ex+0x46c/0x600
[  874.307254][T13983]  _copy_from_user+0x2d/0xb0
[  874.307277][T13983]  ___sys_recvmsg+0x12e/0x510
[  874.307315][T13983]  ? __pfx____sys_recvmsg+0x10/0x10
[  874.307369][T13983]  ? __rcu_read_unlock+0x84/0xe0
[  874.307402][T13983]  ? __fget_files+0x3a6/0x420
[  874.307440][T13983]  __x64_sys_recvmsg+0x19e/0x260
[  874.307473][T13983]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  874.307516][T13983]  ? __pfx_ksys_write+0x10/0x10
[  874.307561][T13983]  do_syscall_64+0xec/0xf80
[  874.307583][T13983]  ? rcu_is_watching+0x15/0xb0
[  874.307603][T13983]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  874.307627][T13983]  ? clear_bhb_loop+0x60/0xb0
[  874.307655][T13983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  874.307678][T13983] RIP: 0033:0x7f8aa6e1f749
[  874.307698][T13983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  874.307718][T13983] RSP: 002b:00007f8aa5040038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  874.307742][T13983] RAX: ffffffffffffffda RBX: 00007f8aa7076180 RCX: 00007f8aa6e1f749
[  874.307760][T13983] RDX: 0000000000000040 RSI: 000020000000b680 RDI: 000000000000000a
[  874.307774][T13983] RBP: 00007f8aa5040090 R08: 0000000000000000 R09: 0000000000000000
[  874.307790][T13983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  874.307804][T13983] R13: 00007f8aa7076218 R14: 00007f8aa7076180 R15: 00007ffee4fe4fd8
[  874.307841][T13983]  </TASK>
[  875.066600][T12917] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  875.280714][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  875.280825][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  875.308275][T12917] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  875.378692][T13047] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  875.382672][T13047] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  875.383947][T13047] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  875.385117][T13047] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  875.434047][T13047] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  876.177087][T11196] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  876.187124][T11196] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  876.188795][T11196] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  876.190765][T11196] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  876.207381][T11196] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  877.515591][T11196] Bluetooth: hci5: command tx timeout
[  878.285661][ T5604] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  878.319578][T11196] Bluetooth: hci4: command tx timeout
[  878.441042][ T5604] usb 4-1: New USB device found, idVendor=2304, idProduct=023e, bcdDevice=d7.69
[  878.441077][ T5604] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  878.441100][ T5604] usb 4-1: Product: syz
[  878.441116][ T5604] usb 4-1: Manufacturer: syz
[  878.441133][ T5604] usb 4-1: SerialNumber: syz
[  878.462651][ T5604] usb 4-1: config 0 descriptor??
[  878.515201][ T5604] hub 4-1:0.0: bad descriptor, ignoring hub
[  878.515230][ T5604] hub 4-1:0.0: probe with driver hub failed with error -5
[  878.746382][ T5604] dvb-usb: found a 'Pinnacle PCTV Hybrid Stick Solo' in warm state.
[  878.817840][ T5604] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  878.818495][ T5604] dvbdev: DVB: registering new adapter (Pinnacle PCTV Hybrid Stick Solo)
[  878.818543][ T5604] usb 4-1: media controller created
[  878.908531][ T5604] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  879.240289][T14072] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2903'.
[  879.264125][T14072] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  879.273759][T14072] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  880.123843][T11196] Bluetooth: hci5: command tx timeout
[  880.406876][T11196] Bluetooth: hci4: command tx timeout
[  880.421381][ T5604] DVB: Unable to find symbol dib7000p_attach()
[  880.421397][ T5604] dvb-usb: no frontend was attached by 'Pinnacle PCTV Hybrid Stick Solo'
[  880.633851][T13986] chnl_net:caif_netlink_parms(): no params data found
[  880.706075][ T5604] rc_core: IR keymap rc-dib0700-rc5 not found
[  880.706093][ T5604] Registered IR keymap rc-empty
[  880.706661][ T5604] dvb-usb: could not initialize remote control.
[  880.706670][ T5604] dvb-usb: Pinnacle PCTV Hybrid Stick Solo successfully initialized and connected.
[  882.127194][ T5604] usb 4-1: USB disconnect, device number 42
[  882.157774][T11196] Bluetooth: hci5: command tx timeout
[  882.313432][ T5604] dvb-usb: Pinnacle PCTV Hybrid Stick Solo successfully deinitialized and disconnected.
[  882.482021][T11196] Bluetooth: hci4: command tx timeout
[  882.508909][T14119] FAULT_INJECTION: forcing a failure.
[  882.508909][T14119] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  882.508938][T14119] CPU: 1 UID: 0 PID: 14119 Comm: syz.3.2929 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  882.508961][T14119] Tainted: [L]=SOFTLOCKUP
[  882.508967][T14119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  882.508977][T14119] Call Trace:
[  882.508984][T14119]  <TASK>
[  882.508991][T14119]  dump_stack_lvl+0xe8/0x150
[  882.509018][T14119]  should_fail_ex+0x46c/0x600
[  882.509044][T14119]  _copy_from_user+0x2d/0xb0
[  882.509062][T14119]  wext_handle_ioctl+0xba/0x1c0
[  882.509090][T14119]  ? __pfx_wext_handle_ioctl+0x10/0x10
[  882.509118][T14119]  ? __asan_memset+0x22/0x50
[  882.509139][T14119]  ? smack_file_ioctl+0x24d/0x340
[  882.509165][T14119]  sock_ioctl+0x162/0x790
[  882.509191][T14119]  ? __pfx_sock_ioctl+0x10/0x10
[  882.509215][T14119]  ? __fget_files+0x2a/0x420
[  882.509232][T14119]  ? __fget_files+0x3a6/0x420
[  882.509248][T14119]  ? __fget_files+0x2a/0x420
[  882.509267][T14119]  ? bpf_lsm_file_ioctl+0x9/0x20
[  882.509292][T14119]  ? __pfx_sock_ioctl+0x10/0x10
[  882.509315][T14119]  __se_sys_ioctl+0xff/0x170
[  882.509339][T14119]  do_syscall_64+0xec/0xf80
[  882.509356][T14119]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  882.509380][T14119]  ? trace_irq_disable+0x37/0x100
[  882.509411][T14119]  ? clear_bhb_loop+0x60/0xb0
[  882.509431][T14119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  882.509447][T14119] RIP: 0033:0x7fd67ba5f749
[  882.509462][T14119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  882.509477][T14119] RSP: 002b:00007fd679cbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  882.509495][T14119] RAX: ffffffffffffffda RBX: 00007fd67bcb5fa0 RCX: 00007fd67ba5f749
[  882.509507][T14119] RDX: 0000200000000080 RSI: 0000000000008b05 RDI: 0000000000000003
[  882.509518][T14119] RBP: 00007fd679cbe090 R08: 0000000000000000 R09: 0000000000000000
[  882.509528][T14119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  882.509538][T14119] R13: 00007fd67bcb6038 R14: 00007fd67bcb5fa0 R15: 00007ffc4e21def8
[  882.509563][T14119]  </TASK>
[  883.127196][T13986] bridge0: port 1(bridge_slave_0) entered blocking state
[  883.127446][T13986] bridge0: port 1(bridge_slave_0) entered disabled state
[  883.130371][T13986] bridge_slave_0: entered allmulticast mode
[  883.141480][T13986] bridge_slave_0: entered promiscuous mode
[  883.244843][T13986] bridge0: port 2(bridge_slave_1) entered blocking state
[  883.245298][T13986] bridge0: port 2(bridge_slave_1) entered disabled state
[  883.267954][T13986] bridge_slave_1: entered allmulticast mode
[  883.271697][T13986] bridge_slave_1: entered promiscuous mode
[  884.235745][T11196] Bluetooth: hci5: command tx timeout
[  884.327111][T13986] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  884.471550][T13986] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  884.555783][T11196] Bluetooth: hci4: command tx timeout
[  884.677117][ T6909] bridge_slave_1: left allmulticast mode
[  884.677148][ T6909] bridge_slave_1: left promiscuous mode
[  884.682243][ T6909] bridge0: port 2(bridge_slave_1) entered disabled state
[  884.807035][ T6909] bridge_slave_0: left allmulticast mode
[  884.807072][ T6909] bridge_slave_0: left promiscuous mode
[  884.807352][ T6909] bridge0: port 1(bridge_slave_0) entered disabled state
[  884.913790][T14167] FAULT_INJECTION: forcing a failure.
[  884.913790][T14167] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  884.913830][T14167] CPU: 1 UID: 0 PID: 14167 Comm: syz.3.2948 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  884.913861][T14167] Tainted: [L]=SOFTLOCKUP
[  884.913870][T14167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  884.913883][T14167] Call Trace:
[  884.913892][T14167]  <TASK>
[  884.913902][T14167]  dump_stack_lvl+0xe8/0x150
[  884.913947][T14167]  should_fail_ex+0x46c/0x600
[  884.913984][T14167]  _copy_from_user+0x2d/0xb0
[  884.914007][T14167]  binder_ioctl_write_read+0x127/0x9ef0
[  884.914052][T14167]  ? try_to_take_rt_mutex+0x840/0xb00
[  884.914086][T14167]  ? kernel_text_address+0xa5/0xe0
[  884.914135][T14167]  ? __lock_acquire+0x6b6/0x2cf0
[  884.914177][T14167]  ? __pfx_binder_ioctl_write_read+0x10/0x10
[  884.914208][T14167]  ? stack_depot_save_flags+0x33/0x810
[  884.914254][T14167]  ? do_raw_spin_lock+0x121/0x290
[  884.914293][T14167]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  884.914322][T14167]  ? lockdep_hardirqs_on+0x7b/0x110
[  884.914344][T14167]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  884.914366][T14167]  ? rt_mutex_slowunlock+0x493/0x8a0
[  884.914397][T14167]  ? reacquire_held_locks+0x104/0x190
[  884.914435][T14167]  ? rt_spin_lock+0x1c1/0x3e0
[  884.914466][T14167]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  884.914500][T14167]  ? rt_spin_unlock+0x150/0x200
[  884.914540][T14167]  ? binder_get_thread+0x178/0x6d0
[  884.914570][T14167]  binder_ioctl+0x3c8/0x19d0
[  884.914595][T14167]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  884.914634][T14167]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  884.914670][T14167]  ? do_vfs_ioctl+0xbeb/0x1440
[  884.914700][T14167]  ? __pfx_binder_ioctl+0x10/0x10
[  884.914725][T14167]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  884.914754][T14167]  ? __pfx_smack_log+0x10/0x10
[  884.914778][T14167]  ? smk_access+0x14c/0x4e0
[  884.914809][T14167]  ? smk_tskacc+0x2fc/0x370
[  884.914839][T14167]  ? smack_file_ioctl+0x2ac/0x340
[  884.914870][T14167]  ? __pfx_smack_file_ioctl+0x10/0x10
[  884.914910][T14167]  ? __fget_files+0x2a/0x420
[  884.914933][T14167]  ? __fget_files+0x3a6/0x420
[  884.914956][T14167]  ? __fget_files+0x2a/0x420
[  884.914982][T14167]  ? bpf_lsm_file_ioctl+0x9/0x20
[  884.915016][T14167]  ? __pfx_binder_ioctl+0x10/0x10
[  884.915041][T14167]  __se_sys_ioctl+0xff/0x170
[  884.915075][T14167]  do_syscall_64+0xec/0xf80
[  884.915097][T14167]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  884.915118][T14167]  ? trace_irq_disable+0x37/0x100
[  884.915142][T14167]  ? clear_bhb_loop+0x60/0xb0
[  884.915178][T14167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  884.915201][T14167] RIP: 0033:0x7fd67ba5f749
[  884.915220][T14167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  884.915240][T14167] RSP: 002b:00007fd679cbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  884.915264][T14167] RAX: ffffffffffffffda RBX: 00007fd67bcb5fa0 RCX: 00007fd67ba5f749
[  884.915280][T14167] RDX: 0000200000001640 RSI: 00000000c0306201 RDI: 0000000000000005
[  884.915295][T14167] RBP: 00007fd679cbe090 R08: 0000000000000000 R09: 0000000000000000
[  884.915310][T14167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  884.915324][T14167] R13: 00007fd67bcb6038 R14: 00007fd67bcb5fa0 R15: 00007ffc4e21def8
[  884.915359][T14167]  </TASK>
[  884.924557][T14167] binder: 14166:14167 ioctl c0306201 200000001640 returned -14
[  885.317557][T14171] FAULT_INJECTION: forcing a failure.
[  885.317557][T14171] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  885.317597][T14171] CPU: 1 UID: 0 PID: 14171 Comm: syz.2.2951 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  885.317627][T14171] Tainted: [L]=SOFTLOCKUP
[  885.317636][T14171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  885.317650][T14171] Call Trace:
[  885.317659][T14171]  <TASK>
[  885.317669][T14171]  dump_stack_lvl+0xe8/0x150
[  885.317709][T14171]  should_fail_ex+0x46c/0x600
[  885.317747][T14171]  _copy_to_user+0x31/0xb0
[  885.317773][T14171]  simple_read_from_buffer+0xe1/0x170
[  885.317803][T14171]  proc_fail_nth_read+0x1b6/0x220
[  885.317841][T14171]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  885.317880][T14171]  ? rw_verify_area+0x2ac/0x4e0
[  885.317911][T14171]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  885.317959][T14171]  vfs_read+0x206/0xa30
[  885.317999][T14171]  ? __pfx_vfs_read+0x10/0x10
[  885.318034][T14171]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  885.318058][T14171]  ? lockdep_hardirqs_on+0x7b/0x110
[  885.318080][T14171]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  885.318103][T14171]  ? mutex_lock_nested+0x154/0x1d0
[  885.318132][T14171]  ? fdget_pos+0x253/0x320
[  885.318166][T14171]  ksys_read+0x14b/0x260
[  885.318201][T14171]  ? __pfx_ksys_read+0x10/0x10
[  885.318245][T14171]  do_syscall_64+0xec/0xf80
[  885.318268][T14171]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  885.318292][T14171]  ? trace_irq_disable+0x37/0x100
[  885.318316][T14171]  ? clear_bhb_loop+0x60/0xb0
[  885.318344][T14171]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  885.318367][T14171] RIP: 0033:0x7fb342b8e15c
[  885.318387][T14171] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  885.318408][T14171] RSP: 002b:00007fb340dee030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  885.318432][T14171] RAX: ffffffffffffffda RBX: 00007fb342de5fa0 RCX: 00007fb342b8e15c
[  885.318449][T14171] RDX: 000000000000000f RSI: 00007fb340dee0a0 RDI: 0000000000000006
[  885.318464][T14171] RBP: 00007fb340dee090 R08: 0000000000000000 R09: 0000000000000000
[  885.318479][T14171] R10: 0000000020040894 R11: 0000000000000246 R12: 0000000000000001
[  885.318493][T14171] R13: 00007fb342de6038 R14: 00007fb342de5fa0 R15: 00007ffd9c03bb28
[  885.318532][T14171]  </TASK>
[  886.214614][T14188] kAFS: unable to lookup cell 'syz1'
[  886.393955][ T6909] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  886.476585][ T6909] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  886.552251][ T6909] bond0 (unregistering): Released all slaves
[  886.815837][T13986] team0: Port device team_slave_0 added
[  886.834615][T14008] chnl_net:caif_netlink_parms(): no params data found
[  886.845546][ T5882] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[  886.882164][T13986] team0: Port device team_slave_1 added
[  886.995563][ T5882] usb 4-1: device descriptor read/64, error -71
[  887.145672][ T6909] hsr_slave_0: left promiscuous mode
[  887.185700][ T6909] hsr_slave_1: left promiscuous mode
[  887.186893][ T6909] batman_adv: batadv0: Removing interface: batadv_slave_0
[  887.235558][ T5882] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[  887.244736][ T6909] batman_adv: batadv0: Removing interface: batadv_slave_1
[  887.365514][ T5882] usb 4-1: device descriptor read/64, error -71
[  887.475936][ T5882] usb usb4-port1: attempt power cycle
[  887.821885][T14250] FAULT_INJECTION: forcing a failure.
[  887.821885][T14250] name failslab, interval 1, probability 0, space 0, times 0
[  887.821926][T14250] CPU: 1 UID: 0 PID: 14250 Comm: syz.0.2987 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  887.821966][T14250] Tainted: [L]=SOFTLOCKUP
[  887.821975][T14250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  887.821989][T14250] Call Trace:
[  887.821998][T14250]  <TASK>
[  887.822008][T14250]  dump_stack_lvl+0xe8/0x150
[  887.822047][T14250]  should_fail_ex+0x46c/0x600
[  887.822082][T14250]  ? getname_flags+0xb8/0x540
[  887.822105][T14250]  should_failslab+0xa8/0x100
[  887.822127][T14250]  ? getname_flags+0xb8/0x540
[  887.822148][T14250]  kmem_cache_alloc_noprof+0x84/0x6c0
[  887.822183][T14250]  ? strncpy_from_user+0x150/0x2c0
[  887.822215][T14250]  getname_flags+0xb8/0x540
[  887.822243][T14250]  __x64_sys_renameat2+0xba/0xe0
[  887.822269][T14250]  do_syscall_64+0xec/0xf80
[  887.822291][T14250]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  887.822314][T14250]  ? trace_irq_disable+0x37/0x100
[  887.822339][T14250]  ? clear_bhb_loop+0x60/0xb0
[  887.822367][T14250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  887.822389][T14250] RIP: 0033:0x7f8aa6e1f749
[  887.822409][T14250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  887.822430][T14250] RSP: 002b:00007f8aa5086038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[  887.822454][T14250] RAX: ffffffffffffffda RBX: 00007f8aa7075fa0 RCX: 00007f8aa6e1f749
[  887.822471][T14250] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000003
[  887.822486][T14250] RBP: 00007f8aa5086090 R08: 0000000000000002 R09: 0000000000000000
[  887.822500][T14250] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  887.822515][T14250] R13: 00007f8aa7076038 R14: 00007f8aa7075fa0 R15: 00007ffee4fe4fd8
[  887.822549][T14250]  </TASK>
[  887.825058][ T5882] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[  887.846478][ T5882] usb 4-1: device descriptor read/8, error -71
[  888.085601][ T5882] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[  888.106250][ T5882] usb 4-1: device descriptor read/8, error -71
[  888.226150][ T5882] usb usb4-port1: unable to enumerate USB device
[  888.578353][ T6909] team0 (unregistering): Port device team_slave_1 removed
[  888.705536][ T5882] usb 3-1: new full-speed USB device number 22 using dummy_hcd
[  888.736284][ T6909] team0 (unregistering): Port device team_slave_0 removed
[  888.752902][ T8404] usb 1-1: new high-speed USB device number 47 using dummy_hcd
[  888.871919][ T5882] usb 3-1: config 0 interface 0 altsetting 251 has an endpoint descriptor with address 0x43, changing to 0x3
[  888.871955][ T5882] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x3 has invalid maxpacket 65, setting to 64
[  888.871986][ T5882] usb 3-1: config 0 interface 0 has no altsetting 0
[  888.915970][ T5882] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  888.916003][ T5882] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  888.916025][ T5882] usb 3-1: Product: syz
[  888.916042][ T5882] usb 3-1: Manufacturer: syz
[  888.916058][ T5882] usb 3-1: SerialNumber: syz
[  888.921051][ T5882] usb 3-1: config 0 descriptor??
[  888.922454][T14270] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  888.956476][ T8404] usb 1-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7
[  888.956510][ T8404] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  888.956531][ T8404] usb 1-1: Product: syz
[  888.956547][ T8404] usb 1-1: Manufacturer: syz
[  888.956563][ T8404] usb 1-1: SerialNumber: syz
[  888.961908][ T5882] usb 3-1: selecting invalid altsetting 0
[  889.038124][ T8404] usb 1-1: config 0 descriptor??
[  889.126308][T14270] FAULT_INJECTION: forcing a failure.
[  889.126308][T14270] name failslab, interval 1, probability 0, space 0, times 0
[  889.126348][T14270] CPU: 0 UID: 0 PID: 14270 Comm: syz.2.2997 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  889.126379][T14270] Tainted: [L]=SOFTLOCKUP
[  889.126389][T14270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  889.126406][T14270] Call Trace:
[  889.126415][T14270]  <TASK>
[  889.126425][T14270]  dump_stack_lvl+0xe8/0x150
[  889.126462][T14270]  should_fail_ex+0x46c/0x600
[  889.126497][T14270]  ? alloc_empty_file+0x55/0x1d0
[  889.126521][T14270]  should_failslab+0xa8/0x100
[  889.126542][T14270]  ? alloc_empty_file+0x55/0x1d0
[  889.126565][T14270]  kmem_cache_alloc_noprof+0x84/0x6c0
[  889.126605][T14270]  alloc_empty_file+0x55/0x1d0
[  889.126630][T14270]  path_openat+0x10e/0x3df0
[  889.126672][T14270]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  889.126697][T14270]  ? lockdep_hardirqs_on+0x7b/0x110
[  889.126722][T14270]  ? __set_cpus_allowed_ptr_locked+0x931/0x1860
[  889.126758][T14270]  ? __lock_acquire+0x6b6/0x2cf0
[  889.126806][T14270]  ? __pfx_path_openat+0x10/0x10
[  889.126843][T14270]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  889.126874][T14270]  ? do_raw_spin_lock+0x121/0x290
[  889.126914][T14270]  do_filp_open+0x1fa/0x410
[  889.126948][T14270]  ? __pfx_do_filp_open+0x10/0x10
[  889.126976][T14270]  ? rt_mutex_slowunlock+0x493/0x8a0
[  889.127033][T14270]  ? alloc_fd+0x64f/0x6c0
[  889.127073][T14270]  do_sys_openat2+0x121/0x200
[  889.127104][T14270]  ? __pfx_do_sys_openat2+0x10/0x10
[  889.127130][T14270]  ? ksys_write+0x230/0x260
[  889.127166][T14270]  ? __pfx_ksys_write+0x10/0x10
[  889.127204][T14270]  __x64_sys_openat+0x138/0x170
[  889.127236][T14270]  do_syscall_64+0xec/0xf80
[  889.127258][T14270]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  889.127282][T14270]  ? trace_irq_disable+0x37/0x100
[  889.127306][T14270]  ? clear_bhb_loop+0x60/0xb0
[  889.127335][T14270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  889.127358][T14270] RIP: 0033:0x7fb342b8df90
[  889.127379][T14270] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44
[  889.127400][T14270] RSP: 002b:00007fb340dedb70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  889.127424][T14270] RAX: ffffffffffffffda RBX: 0000000000044401 RCX: 00007fb342b8df90
[  889.127441][T14270] RDX: 0000000000044401 RSI: 00007fb340dedc10 RDI: 00000000ffffff9c
[  889.127457][T14270] RBP: 00007fb340dedc10 R08: 0000000000000000 R09: 00236f696475612f
[  889.127474][T14270] R10: 0000000000000000 R11: 0000000000000293 R12: cccccccccccccccd
[  889.127489][T14270] R13: 00007fb342de6038 R14: 00007fb342de5fa0 R15: 00007ffd9c03bb28
[  889.127525][T14270]  </TASK>
[  889.336866][ T5882] usb 3-1: USB disconnect, device number 22
[  889.445130][T13469] udevd[13469]: setting owner of /dev/dsp3 to uid=0, gid=29 failed: No such file or directory
[  889.489527][ T8404] usb 1-1: f81604_write: reg: 105 data: 0 failed: -EPROTO
[  889.489561][ T8404] f81604 1-1:0.0: Setting termination of CH#0 failed: -EPROTO
[  889.489600][ T8404] f81604 1-1:0.0: probe with driver f81604 failed with error -71
[  889.492951][T13731] udevd[13731]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  889.541157][ T8404] usb 1-1: USB disconnect, device number 47
[  889.869777][T14280] FAULT_INJECTION: forcing a failure.
[  889.869777][T14280] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  889.869816][T14280] CPU: 0 UID: 0 PID: 14280 Comm: syz.0.2999 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  889.869843][T14280] Tainted: [L]=SOFTLOCKUP
[  889.869850][T14280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  889.869862][T14280] Call Trace:
[  889.869870][T14280]  <TASK>
[  889.869878][T14280]  dump_stack_lvl+0xe8/0x150
[  889.869911][T14280]  should_fail_ex+0x46c/0x600
[  889.869943][T14280]  _copy_from_iter+0x1cd/0x1630
[  889.869974][T14280]  ? kmalloc_reserve+0xbd/0x290
[  889.869996][T14280]  ? rcu_is_watching+0x15/0xb0
[  889.870019][T14280]  ? __pfx__copy_from_iter+0x10/0x10
[  889.870048][T14280]  ? __build_skb_around+0x22d/0x3c0
[  889.870071][T14280]  ? __alloc_skb+0x198/0x3a0
[  889.870091][T14280]  ? netlink_sendmsg+0x642/0xb30
[  889.870117][T14280]  ? skb_put+0x11b/0x210
[  889.870142][T14280]  netlink_sendmsg+0x6b2/0xb30
[  889.870176][T14280]  ? __pfx_netlink_sendmsg+0x10/0x10
[  889.870210][T14280]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  889.870235][T14280]  ? __pfx_netlink_sendmsg+0x10/0x10
[  889.870263][T14280]  __sock_sendmsg+0x21c/0x270
[  889.870296][T14280]  ____sys_sendmsg+0x508/0x810
[  889.870327][T14280]  ? __pfx_____sys_sendmsg+0x10/0x10
[  889.870365][T14280]  ? import_iovec+0x74/0xa0
[  889.870388][T14280]  ___sys_sendmsg+0x21f/0x2a0
[  889.870414][T14280]  ? __pfx____sys_sendmsg+0x10/0x10
[  889.870472][T14280]  ? __fget_files+0x2a/0x420
[  889.870492][T14280]  ? __fget_files+0x3a6/0x420
[  889.870532][T14280]  __x64_sys_sendmsg+0x1a1/0x260
[  889.870560][T14280]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  889.870593][T14280]  ? __pfx_ksys_write+0x10/0x10
[  889.870631][T14280]  do_syscall_64+0xec/0xf80
[  889.870650][T14280]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  889.870669][T14280]  ? trace_irq_disable+0x37/0x100
[  889.870689][T14280]  ? clear_bhb_loop+0x60/0xb0
[  889.870713][T14280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  889.870731][T14280] RIP: 0033:0x7f8aa6e1f749
[  889.870749][T14280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  889.870767][T14280] RSP: 002b:00007f8aa5086038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  889.870788][T14280] RAX: ffffffffffffffda RBX: 00007f8aa7075fa0 RCX: 00007f8aa6e1f749
[  889.870802][T14280] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  889.870814][T14280] RBP: 00007f8aa5086090 R08: 0000000000000000 R09: 0000000000000000
[  889.870826][T14280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  889.870837][T14280] R13: 00007f8aa7076038 R14: 00007f8aa7075fa0 R15: 00007ffee4fe4fd8
[  889.870867][T14280]  </TASK>
[  890.242308][T14283] FAULT_INJECTION: forcing a failure.
[  890.242308][T14283] name failslab, interval 1, probability 0, space 0, times 0
[  890.242342][T14283] CPU: 1 UID: 0 PID: 14283 Comm: syz.3.3001 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  890.242368][T14283] Tainted: [L]=SOFTLOCKUP
[  890.242375][T14283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  890.242387][T14283] Call Trace:
[  890.242394][T14283]  <TASK>
[  890.242402][T14283]  dump_stack_lvl+0xe8/0x150
[  890.242433][T14283]  should_fail_ex+0x46c/0x600
[  890.242473][T14283]  should_failslab+0xa8/0x100
[  890.242492][T14283]  __kmalloc_noprof+0xe0/0x7e0
[  890.242519][T14283]  ? fuse_do_ioctl+0x221/0x1f00
[  890.242550][T14283]  fuse_do_ioctl+0x221/0x1f00
[  890.242583][T14283]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  890.242613][T14283]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  890.242638][T14283]  ? __pfx_fuse_do_ioctl+0x10/0x10
[  890.242663][T14283]  ? do_vfs_ioctl+0xb36/0x1440
[  890.242689][T14283]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  890.242715][T14283]  ? __pfx_smack_log+0x10/0x10
[  890.242735][T14283]  ? smk_access+0x14c/0x4e0
[  890.242759][T14283]  ? smk_tskacc+0x2fc/0x370
[  890.242781][T14283]  ? smack_file_ioctl+0x24d/0x340
[  890.242818][T14283]  ? __fget_files+0x3a6/0x420
[  890.242835][T14283]  ? fuse_allow_current_process+0x1f1/0x3c0
[  890.242861][T14283]  ? fuse_file_ioctl+0xe9/0x140
[  890.242890][T14283]  ? __pfx_fuse_file_ioctl+0x10/0x10
[  890.242918][T14283]  __se_sys_ioctl+0xff/0x170
[  890.242946][T14283]  do_syscall_64+0xec/0xf80
[  890.242966][T14283]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  890.242984][T14283]  ? trace_irq_disable+0x37/0x100
[  890.243003][T14283]  ? clear_bhb_loop+0x60/0xb0
[  890.243024][T14283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  890.243040][T14283] RIP: 0033:0x7fd67ba5f749
[  890.243057][T14283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  890.243073][T14283] RSP: 002b:00007fd679cbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  890.243093][T14283] RAX: ffffffffffffffda RBX: 00007fd67bcb5fa0 RCX: 00007fd67ba5f749
[  890.243107][T14283] RDX: 00002000000002c0 RSI: 0000000040806685 RDI: 0000000000000005
[  890.243119][T14283] RBP: 00007fd679cbe090 R08: 0000000000000000 R09: 0000000000000000
[  890.243130][T14283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  890.243141][T14283] R13: 00007fd67bcb6038 R14: 00007fd67bcb5fa0 R15: 00007ffc4e21def8
[  890.243168][T14283]  </TASK>
[  891.118675][T13986] batman_adv: batadv0: Adding interface: batadv_slave_0
[  891.118695][T13986] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  891.118725][T13986] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  891.229105][T13986] batman_adv: batadv0: Adding interface: batadv_slave_1
[  891.229125][T13986] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  891.229157][T13986] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  891.995186][T13986] hsr_slave_0: entered promiscuous mode
[  892.000341][T13986] hsr_slave_1: entered promiscuous mode
[  892.007010][T13986] debugfs: 'hsr0' already exists in 'hsr'
[  892.007038][T13986] Cannot create hsr debugfs directory
[  892.007689][T14008] bridge0: port 1(bridge_slave_0) entered blocking state
[  892.007905][T14008] bridge0: port 1(bridge_slave_0) entered disabled state
[  892.008104][T14008] bridge_slave_0: entered allmulticast mode
[  892.010976][T14008] bridge_slave_0: entered promiscuous mode
[  892.076174][T14008] bridge0: port 2(bridge_slave_1) entered blocking state
[  892.077314][T14008] bridge0: port 2(bridge_slave_1) entered disabled state
[  892.077553][T14008] bridge_slave_1: entered allmulticast mode
[  892.107288][T14008] bridge_slave_1: entered promiscuous mode
[  892.370844][T14347] FAULT_INJECTION: forcing a failure.
[  892.370844][T14347] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  892.370876][T14347] CPU: 0 UID: 0 PID: 14347 Comm: syz.0.3029 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  892.370908][T14347] Tainted: [L]=SOFTLOCKUP
[  892.370917][T14347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  892.370931][T14347] Call Trace:
[  892.370941][T14347]  <TASK>
[  892.370951][T14347]  dump_stack_lvl+0xe8/0x150
[  892.370987][T14347]  should_fail_ex+0x46c/0x600
[  892.371015][T14347]  _copy_from_user+0x2d/0xb0
[  892.371033][T14347]  get_sg_io_hdr+0xe2/0x820
[  892.371058][T14347]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  892.371107][T14347]  ? __pfx_get_sg_io_hdr+0x10/0x10
[  892.371125][T14347]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  892.371146][T14347]  ? rt_write_unlock+0x191/0x230
[  892.371170][T14347]  ? sg_add_request+0x526/0x580
[  892.371190][T14347]  sg_new_write+0x139/0x800
[  892.371211][T14347]  ? __pfx_sg_new_write+0x10/0x10
[  892.371255][T14347]  sg_ioctl+0x11a4/0x21f0
[  892.371276][T14347]  ? __pfx_sg_ioctl+0x10/0x10
[  892.371298][T14347]  ? __fget_files+0x2a/0x420
[  892.371314][T14347]  ? __fget_files+0x3a6/0x420
[  892.371330][T14347]  ? __fget_files+0x2a/0x420
[  892.371349][T14347]  ? bpf_lsm_file_ioctl+0x9/0x20
[  892.371374][T14347]  ? __pfx_sg_ioctl+0x10/0x10
[  892.371390][T14347]  __se_sys_ioctl+0xff/0x170
[  892.371419][T14347]  do_syscall_64+0xec/0xf80
[  892.371435][T14347]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  892.371451][T14347]  ? trace_irq_disable+0x37/0x100
[  892.371468][T14347]  ? clear_bhb_loop+0x60/0xb0
[  892.371487][T14347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  892.371509][T14347] RIP: 0033:0x7f8aa6e1f749
[  892.371523][T14347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  892.371538][T14347] RSP: 002b:00007f8aa5044038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  892.371555][T14347] RAX: ffffffffffffffda RBX: 00007f8aa7076180 RCX: 00007f8aa6e1f749
[  892.371567][T14347] RDX: 0000200000000580 RSI: 0000000000002285 RDI: 000000000000000b
[  892.371579][T14347] RBP: 00007f8aa5044090 R08: 0000000000000000 R09: 0000000000000000
[  892.371589][T14347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  892.371599][T14347] R13: 00007f8aa7076218 R14: 00007f8aa7076180 R15: 00007ffee4fe4fd8
[  892.371624][T14347]  </TASK>
[  893.734030][T14362] loop9: detected capacity change from 0 to 7
[  893.753979][T14362] Dev loop9: unable to read RDB block 7
[  893.754024][T14362]  loop9: AHDI p3 p4
[  893.754055][T14362] loop9: partition table partially beyond EOD, truncated
[  893.754350][T14362] loop9: p3 size 4227858431 extends beyond EOD, truncated
[  893.822761][T14008] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  893.947254][T14368] FAULT_INJECTION: forcing a failure.
[  893.947254][T14368] name failslab, interval 1, probability 0, space 0, times 0
[  893.947353][T14368] CPU: 0 UID: 0 PID: 14368 Comm: syz.0.3034 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  893.947386][T14368] Tainted: [L]=SOFTLOCKUP
[  893.947395][T14368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  893.947410][T14368] Call Trace:
[  893.947421][T14368]  <TASK>
[  893.947432][T14368]  dump_stack_lvl+0xe8/0x150
[  893.947471][T14368]  should_fail_ex+0x46c/0x600
[  893.947509][T14368]  ? inet_bind2_bucket_create+0x34/0x510
[  893.947540][T14368]  should_failslab+0xa8/0x100
[  893.947564][T14368]  ? inet_bind2_bucket_create+0x34/0x510
[  893.947593][T14368]  kmem_cache_alloc_noprof+0x84/0x6c0
[  893.947625][T14368]  ? inet_bind2_bucket_create+0x27/0x510
[  893.947665][T14368]  inet_bind2_bucket_create+0x34/0x510
[  893.947704][T14368]  inet_csk_get_port+0xf70/0x1720
[  893.947742][T14368]  ? lockdep_hardirqs_on+0x7b/0x110
[  893.947764][T14368]  ? inet_csk_get_port+0xc01/0x1720
[  893.947799][T14368]  ? irqentry_exit+0x5e8/0x670
[  893.947853][T14368]  __inet_bind+0x5d4/0xa90
[  893.947893][T14368]  kernel_bind+0x114/0x180
[  893.947925][T14368]  ? irqentry_exit+0x5e8/0x670
[  893.947950][T14368]  ? __pfx_kernel_bind+0x10/0x10
[  893.948003][T14368]  ? __local_bh_enable_ip+0x1c3/0x2c0
[  893.948039][T14368]  smc_bind+0x26e/0x370
[  893.948075][T14368]  __sys_bind+0x2cc/0x3e0
[  893.948103][T14368]  ? __pfx___sys_bind+0x10/0x10
[  893.948159][T14368]  __x64_sys_bind+0x7a/0x90
[  893.948184][T14368]  do_syscall_64+0xec/0xf80
[  893.948206][T14368]  ? rcu_is_watching+0x15/0xb0
[  893.948227][T14368]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  893.948252][T14368]  ? clear_bhb_loop+0x60/0xb0
[  893.948281][T14368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  893.948311][T14368] RIP: 0033:0x7f8aa6e1f749
[  893.948333][T14368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  893.948355][T14368] RSP: 002b:00007f8aa5044038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  893.948380][T14368] RAX: ffffffffffffffda RBX: 00007f8aa7076180 RCX: 00007f8aa6e1f749
[  893.948397][T14368] RDX: 0000000000000010 RSI: 0000200000e15000 RDI: 0000000000000005
[  893.948412][T14368] RBP: 00007f8aa5044090 R08: 0000000000000000 R09: 0000000000000000
[  893.948428][T14368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  893.948442][T14368] R13: 00007f8aa7076218 R14: 00007f8aa7076180 R15: 00007ffee4fe4fd8
[  893.948496][T14368]  </TASK>
[  895.012497][T14008] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  895.175935][T14367] udevd[14367]: inotify_add_watch(7, /dev/loop9p3, 10) failed: No such file or directory
[  897.429734][T14008] team0: Port device team_slave_0 added
[  897.570351][T14008] team0: Port device team_slave_1 added
[  897.715616][ T5977] usb 1-1: new high-speed USB device number 48 using dummy_hcd
[  897.873357][ T5977] usb 1-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  897.873393][ T5977] usb 1-1: config 0 interface 0 has no altsetting 0
[  897.882233][ T5977] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  897.882348][ T5977] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  897.882410][ T5977] usb 1-1: Product: syz
[  897.882453][ T5977] usb 1-1: Manufacturer: syz
[  897.882496][ T5977] usb 1-1: SerialNumber: syz
[  897.920446][ T5977] usb 1-1: config 0 descriptor??
[  897.987770][ T5977] usb 1-1: selecting invalid altsetting 0
[  898.248666][T14385] FAULT_INJECTION: forcing a failure.
[  898.248666][T14385] name failslab, interval 1, probability 0, space 0, times 0
[  898.248720][T14385] CPU: 1 UID: 0 PID: 14385 Comm: syz.0.3042 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  898.248754][T14385] Tainted: [L]=SOFTLOCKUP
[  898.248763][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  898.248777][T14385] Call Trace:
[  898.248788][T14385]  <TASK>
[  898.248799][T14385]  dump_stack_lvl+0xe8/0x150
[  898.248840][T14385]  should_fail_ex+0x46c/0x600
[  898.248877][T14385]  ? alloc_empty_file+0x55/0x1d0
[  898.248904][T14385]  should_failslab+0xa8/0x100
[  898.248929][T14385]  ? alloc_empty_file+0x55/0x1d0
[  898.248954][T14385]  kmem_cache_alloc_noprof+0x84/0x6c0
[  898.249009][T14385]  alloc_empty_file+0x55/0x1d0
[  898.249036][T14385]  path_openat+0x10e/0x3df0
[  898.249092][T14385]  ? __lock_acquire+0x6b6/0x2cf0
[  898.249130][T14385]  ? __lock_acquire+0x6b6/0x2cf0
[  898.249162][T14385]  ? __pfx_path_openat+0x10/0x10
[  898.249193][T14385]  ? kasan_save_track+0x4f/0x80
[  898.249223][T14385]  ? kasan_save_track+0x3e/0x80
[  898.249253][T14385]  ? __kasan_slab_alloc+0x6c/0x80
[  898.249285][T14385]  ? kmem_cache_alloc_noprof+0x18d/0x6c0
[  898.249315][T14385]  ? getname_flags+0xb8/0x540
[  898.249336][T14385]  ? do_sys_openat2+0xbc/0x200
[  898.249371][T14385]  ? do_raw_spin_lock+0x121/0x290
[  898.249412][T14385]  do_filp_open+0x1fa/0x410
[  898.249447][T14385]  ? __pfx_do_filp_open+0x10/0x10
[  898.249476][T14385]  ? rt_mutex_slowunlock+0x493/0x8a0
[  898.249535][T14385]  ? alloc_fd+0x64f/0x6c0
[  898.249571][T14385]  do_sys_openat2+0x121/0x200
[  898.249601][T14385]  ? __pfx_do_sys_openat2+0x10/0x10
[  898.249629][T14385]  ? ksys_write+0x230/0x260
[  898.249664][T14385]  ? native_tss_update_io_bitmap+0x354/0x540
[  898.249704][T14385]  __x64_sys_openat+0x138/0x170
[  898.249737][T14385]  do_syscall_64+0xec/0xf80
[  898.249761][T14385]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  898.249783][T14385]  ? trace_irq_disable+0x37/0x100
[  898.249808][T14385]  ? clear_bhb_loop+0x60/0xb0
[  898.249855][T14385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  898.249880][T14385] RIP: 0033:0x7f8aa6e1f749
[  898.249901][T14385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  898.249922][T14385] RSP: 002b:00007f8aa5086038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  898.249948][T14385] RAX: ffffffffffffffda RBX: 00007f8aa7075fa0 RCX: 00007f8aa6e1f749
[  898.249966][T14385] RDX: 0000000000000802 RSI: 0000200000000340 RDI: ffffffffffffff9c
[  898.249983][T14385] RBP: 00007f8aa5086090 R08: 0000000000000000 R09: 0000000000000000
[  898.249998][T14385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  898.250013][T14385] R13: 00007f8aa7076038 R14: 00007f8aa7075fa0 R15: 00007ffee4fe4fd8
[  898.250056][T14385]  </TASK>
[  898.253340][ T5977] usb 1-1: USB disconnect, device number 48
[  899.143976][T14008] batman_adv: batadv0: Adding interface: batadv_slave_0
[  899.143996][T14008] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  899.144026][T14008] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  899.500744][T14008] batman_adv: batadv0: Adding interface: batadv_slave_1
[  899.500767][T14008] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  899.500799][T14008] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  900.270278][T14445] A link change request failed with some changes committed already. Interface veth1_to_bond may have been left with an inconsistent configuration, please check.
[  900.300689][T14450] FAULT_INJECTION: forcing a failure.
[  900.300689][T14450] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  900.300732][T14450] CPU: 1 UID: 0 PID: 14450 Comm: syz.0.3063 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  900.300763][T14450] Tainted: [L]=SOFTLOCKUP
[  900.300773][T14450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  900.300787][T14450] Call Trace:
[  900.300796][T14450]  <TASK>
[  900.300805][T14450]  dump_stack_lvl+0xe8/0x150
[  900.300843][T14450]  should_fail_ex+0x46c/0x600
[  900.300880][T14450]  _copy_from_user+0x2d/0xb0
[  900.300905][T14450]  get_timespec64+0x8e/0x1a0
[  900.300940][T14450]  ? __pfx_get_timespec64+0x10/0x10
[  900.300972][T14450]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  900.301004][T14450]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  900.301043][T14450]  __se_sys_pselect6+0x129/0x300
[  900.301085][T14450]  ? __pfx___se_sys_pselect6+0x10/0x10
[  900.301121][T14450]  ? __pfx_ksys_write+0x10/0x10
[  900.301158][T14450]  ? __x64_sys_pselect6+0x21/0xf0
[  900.301202][T14450]  do_syscall_64+0xec/0xf80
[  900.301224][T14450]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  900.301245][T14450]  ? trace_irq_disable+0x37/0x100
[  900.301270][T14450]  ? clear_bhb_loop+0x60/0xb0
[  900.301297][T14450]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  900.301320][T14450] RIP: 0033:0x7f8aa6e1f749
[  900.301339][T14450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  900.301360][T14450] RSP: 002b:00007f8aa5086038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  900.301384][T14450] RAX: ffffffffffffffda RBX: 00007f8aa7075fa0 RCX: 00007f8aa6e1f749
[  900.301401][T14450] RDX: 0000000000000000 RSI: 0000200000003800 RDI: 0000000000000040
[  900.301416][T14450] RBP: 00007f8aa5086090 R08: 00002000000038c0 R09: 0000000000000000
[  900.301432][T14450] R10: 0000200000003880 R11: 0000000000000246 R12: 0000000000000001
[  900.301447][T14450] R13: 00007f8aa7076038 R14: 00007f8aa7075fa0 R15: 00007ffee4fe4fd8
[  900.301493][T14450]  </TASK>
[  900.875846][ T5980] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[  901.025528][ T5980] usb 4-1: Using ep0 maxpacket: 8
[  901.057091][ T5980] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  901.057132][ T5980] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  901.057155][ T5980] usb 4-1: Product: syz
[  901.057170][ T5980] usb 4-1: Manufacturer: syz
[  901.057185][ T5980] usb 4-1: SerialNumber: syz
[  901.063933][ T5980] usb 4-1: config 0 descriptor??
[  901.293924][T14008] hsr_slave_0: entered promiscuous mode
[  901.303962][T14008] hsr_slave_1: entered promiscuous mode
[  901.311913][ T5980] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  901.312156][T14008] debugfs: 'hsr0' already exists in 'hsr'
[  901.312184][T14008] Cannot create hsr debugfs directory
[  901.962029][T14492] FAULT_INJECTION: forcing a failure.
[  901.962029][T14492] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  901.962099][T14492] CPU: 0 UID: 0 PID: 14492 Comm: syz.0.3080 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  901.962132][T14492] Tainted: [L]=SOFTLOCKUP
[  901.962141][T14492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  901.962156][T14492] Call Trace:
[  901.962166][T14492]  <TASK>
[  901.962176][T14492]  dump_stack_lvl+0xe8/0x150
[  901.962214][T14492]  should_fail_ex+0x46c/0x600
[  901.962252][T14492]  _copy_from_user+0x2d/0xb0
[  901.962276][T14492]  udmabuf_ioctl+0xde/0x2d0
[  901.962312][T14492]  ? lockdep_hardirqs_on+0x7b/0x110
[  901.962336][T14492]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  901.962378][T14492]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  901.962413][T14492]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  901.962448][T14492]  ? __se_sys_ioctl+0xed/0x170
[  901.962483][T14492]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  901.962519][T14492]  __se_sys_ioctl+0xff/0x170
[  901.962554][T14492]  do_syscall_64+0xec/0xf80
[  901.962575][T14492]  ? rcu_is_watching+0x15/0xb0
[  901.962603][T14492]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  901.962627][T14492]  ? clear_bhb_loop+0x60/0xb0
[  901.962656][T14492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  901.962679][T14492] RIP: 0033:0x7f8aa6e1f749
[  901.962699][T14492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  901.962724][T14492] RSP: 002b:00007f8aa5044038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  901.962749][T14492] RAX: ffffffffffffffda RBX: 00007f8aa7076180 RCX: 00007f8aa6e1f749
[  901.962766][T14492] RDX: 0000200000000000 RSI: 0000000040187542 RDI: 0000000000000007
[  901.962781][T14492] RBP: 00007f8aa5044090 R08: 0000000000000000 R09: 0000000000000000
[  901.962797][T14492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  901.962811][T14492] R13: 00007f8aa7076218 R14: 00007f8aa7076180 R15: 00007ffee4fe4fd8
[  901.962848][T14492]  </TASK>
[  903.541426][T14519] FAULT_INJECTION: forcing a failure.
[  903.541426][T14519] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  903.541462][T14519] CPU: 0 UID: 0 PID: 14519 Comm: syz.2.3091 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  903.541487][T14519] Tainted: [L]=SOFTLOCKUP
[  903.541494][T14519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  903.541507][T14519] Call Trace:
[  903.541617][T14519]  <TASK>
[  903.541630][T14519]  dump_stack_lvl+0xe8/0x150
[  903.541664][T14519]  should_fail_ex+0x46c/0x600
[  903.541693][T14519]  _copy_from_user+0x2d/0xb0
[  903.541713][T14519]  snd_seq_write+0x30b/0x820
[  903.541756][T14519]  ? __pfx_snd_seq_write+0x10/0x10
[  903.541791][T14519]  ? rw_verify_area+0x25b/0x4e0
[  903.541818][T14519]  ? __pfx_snd_seq_write+0x10/0x10
[  903.541856][T14519]  vfs_write+0x287/0xb40
[  903.541888][T14519]  ? __pfx_vfs_write+0x10/0x10
[  903.541914][T14519]  ? __fget_files+0x2a/0x420
[  903.541936][T14519]  ? __fget_files+0x2a/0x420
[  903.541953][T14519]  ? __fget_files+0x3a6/0x420
[  903.541970][T14519]  ? __fget_files+0x2a/0x420
[  903.542002][T14519]  ksys_write+0x14b/0x260
[  903.542028][T14519]  ? __pfx_ksys_write+0x10/0x10
[  903.542062][T14519]  do_syscall_64+0xec/0xf80
[  903.542080][T14519]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  903.542098][T14519]  ? trace_irq_disable+0x37/0x100
[  903.542118][T14519]  ? clear_bhb_loop+0x60/0xb0
[  903.542140][T14519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  903.542158][T14519] RIP: 0033:0x7fb342b8f749
[  903.542177][T14519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  903.542194][T14519] RSP: 002b:00007fb340dee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  903.542215][T14519] RAX: ffffffffffffffda RBX: 00007fb342de5fa0 RCX: 00007fb342b8f749
[  903.542230][T14519] RDX: 000000000000ffc8 RSI: 0000200000000000 RDI: 0000000000000003
[  903.542243][T14519] RBP: 00007fb340dee090 R08: 0000000000000000 R09: 0000000000000000
[  903.542254][T14519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  903.542275][T14519] R13: 00007fb342de6038 R14: 00007fb342de5fa0 R15: 00007ffd9c03bb28
[  903.542303][T14519]  </TASK>
[  904.036363][ T5980] dvb_usb_rtl28xxu 4-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  904.057444][ T5980] usb 4-1: USB disconnect, device number 47
[  905.074648][T14533] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  905.074679][T14533] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  905.080510][T14533] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  905.080539][T14533] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  905.230901][T14533] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  905.230928][T14533] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  905.320274][T14533] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  905.320304][T14533] Bluetooth: hci5: Error when powering off device on rfkill (-4)
[  905.457487][T14533] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  905.457515][T14533] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  905.930414][ T6909] bridge_slave_1: left allmulticast mode
[  905.930448][ T6909] bridge_slave_1: left promiscuous mode
[  905.952742][ T6909] bridge0: port 2(bridge_slave_1) entered disabled state
[  906.057166][ T6909] bridge_slave_0: left allmulticast mode
[  906.057200][ T6909] bridge_slave_0: left promiscuous mode
[  906.057478][ T6909] bridge0: port 1(bridge_slave_0) entered disabled state
[  908.669316][T14580] FAULT_INJECTION: forcing a failure.
[  908.669316][T14580] name failslab, interval 1, probability 0, space 0, times 0
[  908.669403][T14580] CPU: 0 UID: 0 PID: 14580 Comm: syz.2.3111 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  908.669436][T14580] Tainted: [L]=SOFTLOCKUP
[  908.669450][T14580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  908.669460][T14580] Call Trace:
[  908.669468][T14580]  <TASK>
[  908.669476][T14580]  dump_stack_lvl+0xe8/0x150
[  908.669503][T14580]  should_fail_ex+0x46c/0x600
[  908.669530][T14580]  should_failslab+0xa8/0x100
[  908.669547][T14580]  __kmalloc_cache_noprof+0x84/0x6d0
[  908.669573][T14580]  ? rdma_resolve_ip+0x6b/0x670
[  908.669619][T14580]  rdma_resolve_ip+0x6b/0x670
[  908.669645][T14580]  ? __pfx_addr_handler+0x10/0x10
[  908.669674][T14580]  rdma_resolve_addr+0x795/0x2020
[  908.669707][T14580]  ? __pfx_rdma_resolve_addr+0x10/0x10
[  908.669733][T14580]  ? __pfx___schedule+0x10/0x10
[  908.669757][T14580]  ? irqentry_exit+0x5e8/0x670
[  908.669774][T14580]  ? irqentry_exit+0x5e8/0x670
[  908.669788][T14580]  ? rcu_is_watching+0x15/0xb0
[  908.669808][T14580]  ? preempt_schedule_thunk+0x16/0x30
[  908.669841][T14580]  ? _raw_spin_unlock_irqrestore+0x74/0x80
[  908.669858][T14580]  ? mutex_lock_nested+0x154/0x1d0
[  908.669878][T14580]  ? ucma_resolve_ip+0x1a5/0x280
[  908.669901][T14580]  ucma_resolve_ip+0x1db/0x280
[  908.669924][T14580]  ? __pfx_ucma_resolve_ip+0x10/0x10
[  908.669951][T14580]  ? rep_movs_alternative+0x33/0x90
[  908.669976][T14580]  ucma_write+0x252/0x2f0
[  908.669997][T14580]  ? __pfx_ucma_write+0x10/0x10
[  908.670015][T14580]  ? __pfx_ucma_write+0x10/0x10
[  908.670034][T14580]  ? vfs_write+0x26a/0xb40
[  908.670058][T14580]  ? __pfx_ucma_write+0x10/0x10
[  908.670079][T14580]  vfs_write+0x287/0xb40
[  908.670108][T14580]  ? __pfx_vfs_write+0x10/0x10
[  908.670133][T14580]  ? __fget_files+0x2a/0x420
[  908.670152][T14580]  ? __fget_files+0x2a/0x420
[  908.670168][T14580]  ? __fget_files+0x3a6/0x420
[  908.670184][T14580]  ? __fget_files+0x2a/0x420
[  908.670208][T14580]  ksys_write+0x14b/0x260
[  908.670233][T14580]  ? __pfx_ksys_write+0x10/0x10
[  908.670265][T14580]  do_syscall_64+0xec/0xf80
[  908.670281][T14580]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  908.670297][T14580]  ? clear_bhb_loop+0x60/0xb0
[  908.670317][T14580]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  908.670333][T14580] RIP: 0033:0x7fb342b8f749
[  908.670348][T14580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  908.670363][T14580] RSP: 002b:00007fb340dcd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  908.670380][T14580] RAX: ffffffffffffffda RBX: 00007fb342de6090 RCX: 00007fb342b8f749
[  908.670393][T14580] RDX: 0000000000000048 RSI: 0000200000000100 RDI: 0000000000000005
[  908.670403][T14580] RBP: 00007fb340dcd090 R08: 0000000000000000 R09: 0000000000000000
[  908.670413][T14580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  908.670423][T14580] R13: 00007fb342de6128 R14: 00007fb342de6090 R15: 00007ffd9c03bb28
[  908.670448][T14580]  </TASK>
[  910.157806][ T6909] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  910.507039][ T6909] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  910.631394][ T6909] bond0 (unregistering): Released all slaves
[  911.098889][T14586] bridge0: port 1(bridge_slave_0) entered forwarding state
[  911.252743][T14591] FAULT_INJECTION: forcing a failure.
[  911.252743][T14591] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  911.252774][T14591] CPU: 0 UID: 0 PID: 14591 Comm: syz.2.3112 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  911.252796][T14591] Tainted: [L]=SOFTLOCKUP
[  911.252803][T14591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  911.252813][T14591] Call Trace:
[  911.252819][T14591]  <TASK>
[  911.252826][T14591]  dump_stack_lvl+0xe8/0x150
[  911.252853][T14591]  should_fail_ex+0x46c/0x600
[  911.252880][T14591]  _copy_from_iter+0x1cd/0x1630
[  911.252914][T14591]  ? __pfx__copy_from_iter+0x10/0x10
[  911.252940][T14591]  ? rcu_is_watching+0x15/0xb0
[  911.252956][T14591]  ? rcu_is_watching+0x15/0xb0
[  911.252972][T14591]  ? kfree+0x4d/0x900
[  911.252992][T14591]  ? _mutex_trylock_nest_lock+0x129/0x180
[  911.253019][T14591]  file_tty_write+0x4ca/0xa30
[  911.253047][T14591]  vfs_write+0x5d5/0xb40
[  911.253074][T14591]  ? __pfx_tty_write+0x10/0x10
[  911.253094][T14591]  ? __pfx_vfs_write+0x10/0x10
[  911.253125][T14591]  ? __fget_files+0x2a/0x420
[  911.253149][T14591]  ksys_write+0x14b/0x260
[  911.253174][T14591]  ? __pfx_ksys_write+0x10/0x10
[  911.253205][T14591]  do_syscall_64+0xec/0xf80
[  911.253221][T14591]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  911.253237][T14591]  ? trace_irq_disable+0x37/0x100
[  911.253254][T14591]  ? clear_bhb_loop+0x60/0xb0
[  911.253273][T14591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  911.253290][T14591] RIP: 0033:0x7fb342b8f749
[  911.253304][T14591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  911.253319][T14591] RSP: 002b:00007fb340dee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  911.253336][T14591] RAX: ffffffffffffffda RBX: 00007fb342de5fa0 RCX: 00007fb342b8f749
[  911.253349][T14591] RDX: 0000000000000058 RSI: 0000200000000000 RDI: 0000000000000003
[  911.253360][T14591] RBP: 00007fb340dee090 R08: 0000000000000000 R09: 0000000000000000
[  911.253370][T14591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  911.253380][T14591] R13: 00007fb342de6038 R14: 00007fb342de5fa0 R15: 00007ffd9c03bb28
[  911.253405][T14591]  </TASK>
[  911.525648][ T6909] hsr_slave_0: left promiscuous mode
[  911.545784][ T6909] hsr_slave_1: left promiscuous mode
[  911.546885][ T6909] batman_adv: batadv0: Removing interface: batadv_slave_0
[  911.615668][ T6909] batman_adv: batadv0: Removing interface: batadv_slave_1
[  911.990401][T14620] FAULT_INJECTION: forcing a failure.
[  911.990401][T14620] name failslab, interval 1, probability 0, space 0, times 0
[  911.990442][T14620] CPU: 1 UID: 0 PID: 14620 Comm: syz.0.3126 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  911.990483][T14620] Tainted: [L]=SOFTLOCKUP
[  911.990491][T14620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  911.990506][T14620] Call Trace:
[  911.990515][T14620]  <TASK>
[  911.990525][T14620]  dump_stack_lvl+0xe8/0x150
[  911.990564][T14620]  should_fail_ex+0x46c/0x600
[  911.990603][T14620]  should_failslab+0xa8/0x100
[  911.990628][T14620]  __kvmalloc_node_noprof+0x181/0x940
[  911.990665][T14620]  ? vmemdup_user+0x2b/0xd0
[  911.990699][T14620]  vmemdup_user+0x2b/0xd0
[  911.990727][T14620]  path_setxattrat+0x244/0x3a0
[  911.990774][T14620]  ? __pfx_path_setxattrat+0x10/0x10
[  911.990835][T14620]  ? ksys_write+0x230/0x260
[  911.990871][T14620]  ? __pfx_ksys_write+0x10/0x10
[  911.990910][T14620]  __x64_sys_lsetxattr+0xbf/0xe0
[  911.990942][T14620]  do_syscall_64+0xec/0xf80
[  911.990964][T14620]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  911.990988][T14620]  ? trace_irq_disable+0x37/0x100
[  911.991013][T14620]  ? clear_bhb_loop+0x60/0xb0
[  911.991042][T14620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  911.991066][T14620] RIP: 0033:0x7f8aa6e1f749
[  911.991086][T14620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  911.991107][T14620] RSP: 002b:00007f8aa5086038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  911.991132][T14620] RAX: ffffffffffffffda RBX: 00007f8aa7075fa0 RCX: 00007f8aa6e1f749
[  911.991150][T14620] RDX: 0000200000000400 RSI: 0000200000000380 RDI: 0000200000000100
[  911.991167][T14620] RBP: 00007f8aa5086090 R08: 0000000000000001 R09: 0000000000000000
[  911.991182][T14620] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[  911.991196][T14620] R13: 00007f8aa7076038 R14: 00007f8aa7075fa0 R15: 00007ffee4fe4fd8
[  911.991234][T14620]  </TASK>
[  912.556889][T14629] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3131'.
[  913.036375][ T6909] team0 (unregistering): Port device team_slave_1 removed
[  913.216509][ T6909] team0 (unregistering): Port device team_slave_0 removed
[  913.444300][T14663] FAULT_INJECTION: forcing a failure.
[  913.444300][T14663] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  913.444341][T14663] CPU: 1 UID: 0 PID: 14663 Comm: syz.2.3144 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  913.444365][T14663] Tainted: [L]=SOFTLOCKUP
[  913.444371][T14663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  913.444381][T14663] Call Trace:
[  913.444388][T14663]  <TASK>
[  913.444395][T14663]  dump_stack_lvl+0xe8/0x150
[  913.444422][T14663]  should_fail_ex+0x46c/0x600
[  913.444449][T14663]  _copy_from_user+0x2d/0xb0
[  913.444465][T14663]  video_usercopy+0x349/0x13f0
[  913.444488][T14663]  ? smk_tskacc+0x2fc/0x370
[  913.444507][T14663]  ? __pfx___video_do_ioctl+0x10/0x10
[  913.444525][T14663]  ? __pfx_video_usercopy+0x10/0x10
[  913.444541][T14663]  ? smack_file_ioctl+0x2ac/0x340
[  913.444575][T14663]  ? __fget_files+0x2a/0x420
[  913.444592][T14663]  ? __fget_files+0x3a6/0x420
[  913.444612][T14663]  v4l2_ioctl+0x190/0x1e0
[  913.444629][T14663]  ? __pfx_v4l2_ioctl+0x10/0x10
[  913.444645][T14663]  __se_sys_ioctl+0xff/0x170
[  913.444668][T14663]  do_syscall_64+0xec/0xf80
[  913.444684][T14663]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  913.444700][T14663]  ? trace_irq_disable+0x37/0x100
[  913.444717][T14663]  ? clear_bhb_loop+0x60/0xb0
[  913.444737][T14663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  913.444753][T14663] RIP: 0033:0x7fb342b8f749
[  913.444767][T14663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  913.444782][T14663] RSP: 002b:00007fb340dee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  913.444800][T14663] RAX: ffffffffffffffda RBX: 00007fb342de5fa0 RCX: 00007fb342b8f749
[  913.444812][T14663] RDX: 0000200000000200 RSI: 00000000c0405610 RDI: 0000000000000003
[  913.444823][T14663] RBP: 00007fb340dee090 R08: 0000000000000000 R09: 0000000000000000
[  913.444833][T14663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  913.444843][T14663] R13: 00007fb342de6038 R14: 00007fb342de5fa0 R15: 00007ffd9c03bb28
[  913.444898][T14663]  </TASK>
[  914.291637][T14684] FAULT_INJECTION: forcing a failure.
[  914.291637][T14684] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  914.291678][T14684] CPU: 1 UID: 0 PID: 14684 Comm: syz.3.3154 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  914.291709][T14684] Tainted: [L]=SOFTLOCKUP
[  914.291718][T14684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  914.291733][T14684] Call Trace:
[  914.291743][T14684]  <TASK>
[  914.291752][T14684]  dump_stack_lvl+0xe8/0x150
[  914.291790][T14684]  should_fail_ex+0x46c/0x600
[  914.291828][T14684]  _copy_from_user+0x2d/0xb0
[  914.291852][T14684]  proc_control_compat+0xa3/0x170
[  914.291880][T14684]  ? __pfx_proc_control_compat+0x10/0x10
[  914.291905][T14684]  ? lockdep_hardirqs_on+0x7b/0x110
[  914.291928][T14684]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  914.291951][T14684]  ? mutex_lock_nested+0x154/0x1d0
[  914.291980][T14684]  ? usbdev_ioctl+0x14b/0x2060
[  914.292005][T14684]  usbdev_ioctl+0x1384/0x2060
[  914.292033][T14684]  ? __pfx_usbdev_ioctl+0x10/0x10
[  914.292068][T14684]  ? __fget_files+0x2a/0x420
[  914.292091][T14684]  ? __fget_files+0x3a6/0x420
[  914.292114][T14684]  ? __fget_files+0x2a/0x420
[  914.292142][T14684]  ? bpf_lsm_file_ioctl+0x9/0x20
[  914.292176][T14684]  ? __pfx_usbdev_ioctl+0x10/0x10
[  914.292197][T14684]  __se_sys_ioctl+0xff/0x170
[  914.292231][T14684]  do_syscall_64+0xec/0xf80
[  914.292253][T14684]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  914.292275][T14684]  ? trace_irq_disable+0x37/0x100
[  914.292309][T14684]  ? clear_bhb_loop+0x60/0xb0
[  914.292337][T14684]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  914.292358][T14684] RIP: 0033:0x7fd67ba5f749
[  914.292377][T14684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  914.292395][T14684] RSP: 002b:00007fd679cbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  914.292418][T14684] RAX: ffffffffffffffda RBX: 00007fd67bcb5fa0 RCX: 00007fd67ba5f749
[  914.292448][T14684] RDX: 0000200000000000 RSI: 00000000c0105500 RDI: 0000000000000003
[  914.292463][T14684] RBP: 00007fd679cbe090 R08: 0000000000000000 R09: 0000000000000000
[  914.292477][T14684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  914.292491][T14684] R13: 00007fd67bcb6038 R14: 00007fd67bcb5fa0 R15: 00007ffc4e21def8
[  914.292526][T14684]  </TASK>
[  914.852700][T14700] FAULT_INJECTION: forcing a failure.
[  914.852700][T14700] name failslab, interval 1, probability 0, space 0, times 0
[  914.852741][T14700] CPU: 0 UID: 0 PID: 14700 Comm: syz.0.3162 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  914.852772][T14700] Tainted: [L]=SOFTLOCKUP
[  914.852781][T14700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  914.852796][T14700] Call Trace:
[  914.852805][T14700]  <TASK>
[  914.852815][T14700]  dump_stack_lvl+0xe8/0x150
[  914.852852][T14700]  should_fail_ex+0x46c/0x600
[  914.852889][T14700]  should_failslab+0xa8/0x100
[  914.852913][T14700]  __kmalloc_cache_node_noprof+0x8b/0x700
[  914.852957][T14700]  ? __get_vm_area_node+0x172/0x350
[  914.852999][T14700]  __get_vm_area_node+0x172/0x350
[  914.853038][T14700]  __vmalloc_node_range_noprof+0x371/0x16a0
[  914.853073][T14700]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  914.853123][T14700]  ? is_bpf_text_address+0x26/0x2b0
[  914.853156][T14700]  ? kernel_text_address+0xa5/0xe0
[  914.853195][T14700]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  914.853231][T14700]  ? __lock_acquire+0x6b6/0x2cf0
[  914.853272][T14700]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  914.853299][T14700]  __vmalloc_noprof+0xd2/0x120
[  914.853331][T14700]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  914.853361][T14700]  bpf_prog_alloc_no_stats+0x4a/0x4d0
[  914.853394][T14700]  bpf_prog_alloc+0x3c/0x1a0
[  914.853423][T14700]  bpf_prog_load+0x735/0x1a10
[  914.853458][T14700]  ? get_pid_task+0x20/0x1f0
[  914.853493][T14700]  ? __pfx_bpf_prog_load+0x10/0x10
[  914.853527][T14700]  ? __might_fault+0xb0/0x130
[  914.853581][T14700]  ? bpf_lsm_bpf+0x9/0x20
[  914.853601][T14700]  ? security_bpf+0x7e/0x300
[  914.853639][T14700]  __sys_bpf+0x507/0x860
[  914.853668][T14700]  ? __pfx___sys_bpf+0x10/0x10
[  914.853691][T14700]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  914.853742][T14700]  ? ksys_write+0x230/0x260
[  914.853777][T14700]  ? __pfx_ksys_write+0x10/0x10
[  914.853818][T14700]  __x64_sys_bpf+0x7c/0x90
[  914.853843][T14700]  do_syscall_64+0xec/0xf80
[  914.853864][T14700]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  914.853886][T14700]  ? trace_irq_disable+0x37/0x100
[  914.853911][T14700]  ? clear_bhb_loop+0x60/0xb0
[  914.853939][T14700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  914.853961][T14700] RIP: 0033:0x7f8aa6e1f749
[  914.853981][T14700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  914.854002][T14700] RSP: 002b:00007f8aa5086038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  914.854027][T14700] RAX: ffffffffffffffda RBX: 00007f8aa7075fa0 RCX: 00007f8aa6e1f749
[  914.854044][T14700] RDX: 0000000000000094 RSI: 0000200000000880 RDI: 0000000000000005
[  914.854060][T14700] RBP: 00007f8aa5086090 R08: 0000000000000000 R09: 0000000000000000
[  914.854075][T14700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  914.854089][T14700] R13: 00007f8aa7076038 R14: 00007f8aa7075fa0 R15: 00007ffee4fe4fd8
[  914.854133][T14700]  </TASK>
[  914.854144][T14700] syz.0.3162: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  914.854215][T14700] CPU: 0 UID: 0 PID: 14700 Comm: syz.0.3162 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  914.854244][T14700] Tainted: [L]=SOFTLOCKUP
[  914.854253][T14700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  914.854272][T14700] Call Trace:
[  914.854281][T14700]  <TASK>
[  914.854291][T14700]  dump_stack_lvl+0xe8/0x150
[  914.854325][T14700]  warn_alloc+0x22e/0x3b0
[  914.854360][T14700]  ? should_fail_ex+0x344/0x600
[  914.854396][T14700]  ? __pfx_warn_alloc+0x10/0x10
[  914.854431][T14700]  ? __kmalloc_cache_node_noprof+0x2aa/0x700
[  914.854466][T14700]  ? __get_vm_area_node+0x172/0x350
[  914.854503][T14700]  ? __get_vm_area_node+0x2e2/0x350
[  914.854551][T14700]  __vmalloc_node_range_noprof+0x396/0x16a0
[  914.854608][T14700]  ? is_bpf_text_address+0x26/0x2b0
[  914.854641][T14700]  ? kernel_text_address+0xa5/0xe0
[  914.854681][T14700]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  914.854718][T14700]  ? __lock_acquire+0x6b6/0x2cf0
[  914.854758][T14700]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  914.854785][T14700]  __vmalloc_noprof+0xd2/0x120
[  914.854817][T14700]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  914.854848][T14700]  bpf_prog_alloc_no_stats+0x4a/0x4d0
[  914.854881][T14700]  bpf_prog_alloc+0x3c/0x1a0
[  914.854911][T14700]  bpf_prog_load+0x735/0x1a10
[  914.854945][T14700]  ? get_pid_task+0x20/0x1f0
[  914.854978][T14700]  ? __pfx_bpf_prog_load+0x10/0x10
[  914.855004][T14700]  ? __might_fault+0xb0/0x130
[  914.855060][T14700]  ? bpf_lsm_bpf+0x9/0x20
[  914.855079][T14700]  ? security_bpf+0x7e/0x300
[  914.855116][T14700]  __sys_bpf+0x507/0x860
[  914.855146][T14700]  ? __pfx___sys_bpf+0x10/0x10
[  914.855168][T14700]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  914.855217][T14700]  ? ksys_write+0x230/0x260
[  914.855251][T14700]  ? __pfx_ksys_write+0x10/0x10
[  914.855293][T14700]  __x64_sys_bpf+0x7c/0x90
[  914.855327][T14700]  do_syscall_64+0xec/0xf80
[  914.855361][T14700]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  914.855382][T14700]  ? trace_irq_disable+0x37/0x100
[  914.855409][T14700]  ? clear_bhb_loop+0x60/0xb0
[  914.855438][T14700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  914.855460][T14700] RIP: 0033:0x7f8aa6e1f749
[  914.855479][T14700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  914.855500][T14700] RSP: 002b:00007f8aa5086038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  914.855529][T14700] RAX: ffffffffffffffda RBX: 00007f8aa7075fa0 RCX: 00007f8aa6e1f749
[  914.855545][T14700] RDX: 0000000000000094 RSI: 0000200000000880 RDI: 0000000000000005
[  914.855560][T14700] RBP: 00007f8aa5086090 R08: 0000000000000000 R09: 0000000000000000
[  914.855574][T14700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  914.855588][T14700] R13: 00007f8aa7076038 R14: 00007f8aa7075fa0 R15: 00007ffee4fe4fd8
[  914.855624][T14700]  </TASK>
[  915.127373][T14700] Mem-Info:
[  915.127449][T14700] active_anon:270 inactive_anon:8282 isolated_anon:0
[  915.127449][T14700]  active_file:30097 inactive_file:36015 isolated_file:0
[  915.127449][T14700]  unevictable:768 dirty:174 writeback:0
[  915.127449][T14700]  slab_reclaimable:9371 slab_unreclaimable:99468
[  915.127449][T14700]  mapped:33712 shmem:4232 pagetables:1195
[  915.127449][T14700]  sec_pagetables:0 bounce:0
[  915.127449][T14700]  kernel_misc_reclaimable:0
[  915.127449][T14700]  free:1307051 free_pcp:11377 free_cma:0
[  915.127714][T14700] Node 0 active_anon:1080kB inactive_anon:33128kB active_file:120188kB inactive_file:144060kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:134848kB dirty:696kB writeback:0kB shmem:15392kB kernel_stack:12956kB pagetables:4620kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  915.509592][T14700] Node 1 active_anon:0kB inactive_anon:0kB active_file:200kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB kernel_stack:64kB pagetables:160kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  915.509651][T14700] Node 0 DMA free:15344kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  915.509717][T14700] lowmem_reserve[]: 0 2514 2515 2515 2515
[  915.509759][T14700] Node 0 DMA32 free:1317428kB boost:0kB min:3944kB low:6492kB high:9040kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1080kB inactive_anon:33128kB active_file:120188kB inactive_file:144060kB unevictable:1536kB writepending:696kB zspages:0kB present:3129332kB managed:2574688kB mlocked:0kB bounce:0kB free_pcp:45464kB local_pcp:6044kB free_cma:0kB
[  915.509827][T14700] lowmem_reserve[]: 0 0 1 1 1
[  915.509866][T14700] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  915.509929][T14700] lowmem_reserve[]: 0 0 0 0 0
[  915.509968][T14700] Node 1 Normal free:3895432kB boost:0kB min:6360kB low:10468kB high:14576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:200kB inactive_file:0kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  915.510032][T14700] lowmem_reserve[]: 0 0 0 0 0
[  915.510071][T14700] Node 0 DMA: 0*4kB 0*8kB 1*16kB (U) 1*32kB (U) 1*64kB (U) 1*128kB (U) 1*256kB (U) 1*512kB (U) 0*1024kB 1*2048kB (M) 3*4096kB (M) = 15344kB
[  915.510225][T14700] Node 0 DMA32: 4130*4kB (UME) 2447*8kB (UME) 1924*16kB (UME) 897*32kB (UME) 436*64kB (UME) 283*128kB (UME) 252*256kB (UME) 149*512kB (UME) 109*1024kB (UM) 32*2048kB (UME) 205*4096kB (UM) = 1317344kB
[  915.510416][T14700] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  915.510530][T14700] Node 1 Normal: 184*4kB (UE) 43*8kB (UME) 33*16kB (UME) 192*32kB (UME) 85*64kB (UME) 24*128kB (UME) 11*256kB (UM) 7*512kB (UME) 4*1024kB (UME) 3*2048kB (ME) 943*4096kB (UM) = 3895432kB
[  915.510807][T14700] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  915.510827][T14700] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  915.510845][T14700] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  915.510864][T14700] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  915.510883][T14700] 70340 total pagecache pages
[  915.510893][T14700] 0 pages in swap cache
[  915.510902][T14700] Free swap  = 124996kB
[  915.510911][T14700] Total swap = 124996kB
[  915.510921][T14700] 2097051 pages RAM
[  915.510930][T14700] 0 pages HighMem/MovableOnly
[  915.510939][T14700] 421353 pages reserved
[  915.510947][T14700] 0 pages cma reserved
[  916.395806][T14709] FAULT_INJECTION: forcing a failure.
[  916.395806][T14709] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  916.395849][T14709] CPU: 1 UID: 0 PID: 14709 Comm: syz.0.3163 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  916.395880][T14709] Tainted: [L]=SOFTLOCKUP
[  916.395889][T14709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  916.395903][T14709] Call Trace:
[  916.395912][T14709]  <TASK>
[  916.395923][T14709]  dump_stack_lvl+0xe8/0x150
[  916.395960][T14709]  should_fail_ex+0x46c/0x600
[  916.395997][T14709]  prepare_alloc_pages+0x22b/0x6c0
[  916.396029][T14709]  __alloc_frozen_pages_noprof+0x123/0x370
[  916.396057][T14709]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  916.396091][T14709]  ? policy_nodemask+0x27c/0x720
[  916.396134][T14709]  alloc_pages_mpol+0xd1/0x380
[  916.396161][T14709]  alloc_pages_noprof+0xcf/0x1e0
[  916.396187][T14709]  __pmd_alloc+0x3a/0x5c0
[  916.396231][T14709]  handle_mm_fault+0xe4c/0x1330
[  916.396274][T14709]  ? handle_mm_fault+0xd1/0x1330
[  916.396323][T14709]  ? __pfx_handle_mm_fault+0x10/0x10
[  916.396378][T14709]  ? lock_mm_and_find_vma+0x9c/0x300
[  916.396417][T14709]  do_user_addr_fault+0x764/0x1380
[  916.396463][T14709]  exc_page_fault+0x71/0xd0
[  916.396487][T14709]  asm_exc_page_fault+0x26/0x30
[  916.396509][T14709] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  916.396540][T14709] Code: 1f 05 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  916.396560][T14709] RSP: 0018:ffffc90004d1fbc8 EFLAGS: 00050202
[  916.396582][T14709] RAX: ffffffff847d9e01 RBX: 0000000000000186 RCX: 0000000000000186
[  916.396598][T14709] RDX: 0000000000000000 RSI: ffffc90004d1fcb0 RDI: 0000200000000040
[  916.396614][T14709] RBP: ffffc90004d1fee0 R08: 0000000000000005 R09: 0000000000000006
[  916.396629][T14709] R10: dffffc0000000000 R11: fffff520009a3fc6 R12: 00002000000001c6
[  916.396646][T14709] R13: 00007ffffffff000 R14: ffffc90004d1fcb0 R15: 0000200000000040
[  916.396673][T14709]  ? _copy_to_user+0x31/0xb0
[  916.396704][T14709]  _copy_to_user+0x8a/0xb0
[  916.396728][T14709]  __se_sys_newuname+0x128/0x380
[  916.396764][T14709]  ? __pfx___se_sys_newuname+0x10/0x10
[  916.396800][T14709]  ? do_raw_spin_lock+0x121/0x290
[  916.396876][T14709]  ? __pfx_ksys_write+0x10/0x10
[  916.396922][T14709]  do_syscall_64+0xec/0xf80
[  916.396944][T14709]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  916.396966][T14709]  ? trace_irq_disable+0x37/0x100
[  916.396991][T14709]  ? clear_bhb_loop+0x60/0xb0
[  916.397020][T14709]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  916.397041][T14709] RIP: 0033:0x7f8aa6e1f749
[  916.397060][T14709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  916.397080][T14709] RSP: 002b:00007f8aa5086038 EFLAGS: 00000246 ORIG_RAX: 000000000000003f
[  916.397102][T14709] RAX: ffffffffffffffda RBX: 00007f8aa7075fa0 RCX: 00007f8aa6e1f749
[  916.397119][T14709] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000040
[  916.397134][T14709] RBP: 00007f8aa5086090 R08: 0000000000000000 R09: 0000000000000000
[  916.397148][T14709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  916.397161][T14709] R13: 00007f8aa7076038 R14: 00007f8aa7075fa0 R15: 00007ffee4fe4fd8
[  916.397194][T14709]  </TASK>
[  917.547551][T14740] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  917.548108][T14740] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  917.893384][T14758] FAULT_INJECTION: forcing a failure.
[  917.893384][T14758] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  917.893423][T14758] CPU: 1 UID: 0 PID: 14758 Comm: syz.0.3180 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  917.893452][T14758] Tainted: [L]=SOFTLOCKUP
[  917.893460][T14758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  917.893472][T14758] Call Trace:
[  917.893481][T14758]  <TASK>
[  917.893491][T14758]  dump_stack_lvl+0xe8/0x150
[  917.893526][T14758]  should_fail_ex+0x46c/0x600
[  917.893562][T14758]  _copy_to_user+0x31/0xb0
[  917.893586][T14758]  simple_read_from_buffer+0xe1/0x170
[  917.893614][T14758]  proc_fail_nth_read+0x1b6/0x220
[  917.893651][T14758]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  917.893689][T14758]  ? rw_verify_area+0x2ac/0x4e0
[  917.893724][T14758]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  917.893759][T14758]  vfs_read+0x206/0xa30
[  917.893800][T14758]  ? __pfx_vfs_read+0x10/0x10
[  917.893835][T14758]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  917.893860][T14758]  ? lockdep_hardirqs_on+0x7b/0x110
[  917.893880][T14758]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  917.893902][T14758]  ? mutex_lock_nested+0x154/0x1d0
[  917.893931][T14758]  ? fdget_pos+0x253/0x320
[  917.893965][T14758]  ksys_read+0x14b/0x260
[  917.894005][T14758]  ? __pfx_ksys_read+0x10/0x10
[  917.894051][T14758]  do_syscall_64+0xec/0xf80
[  917.894073][T14758]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  917.894101][T14758]  ? trace_irq_disable+0x37/0x100
[  917.894125][T14758]  ? clear_bhb_loop+0x60/0xb0
[  917.894162][T14758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  917.894185][T14758] RIP: 0033:0x7f8aa6e1e15c
[  917.894205][T14758] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  917.894224][T14758] RSP: 002b:00007f8aa5086030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  917.894247][T14758] RAX: ffffffffffffffda RBX: 00007f8aa7075fa0 RCX: 00007f8aa6e1e15c
[  917.894265][T14758] RDX: 000000000000000f RSI: 00007f8aa50860a0 RDI: 0000000000000004
[  917.894279][T14758] RBP: 00007f8aa5086090 R08: 0000000000000000 R09: 0000000000000000
[  917.894293][T14758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  917.894307][T14758] R13: 00007f8aa7076038 R14: 00007f8aa7075fa0 R15: 00007ffee4fe4fd8
[  917.894343][T14758]  </TASK>
[  918.751537][T13986] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  918.829628][T13986] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  918.872419][T13986] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  919.005546][T13986] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  920.704699][T14008] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  920.967942][T14008] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  922.185169][T14008] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  922.319353][T14008] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  922.643046][T13986] 8021q: adding VLAN 0 to HW filter on device bond0
[  922.722454][T14842] FAULT_INJECTION: forcing a failure.
[  922.722454][T14842] name failslab, interval 1, probability 0, space 0, times 0
[  922.722494][T14842] CPU: 0 UID: 0 PID: 14842 Comm: syz.0.3208 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  922.722525][T14842] Tainted: [L]=SOFTLOCKUP
[  922.722534][T14842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  922.722548][T14842] Call Trace:
[  922.722556][T14842]  <TASK>
[  922.722566][T14842]  dump_stack_lvl+0xe8/0x150
[  922.722604][T14842]  should_fail_ex+0x46c/0x600
[  922.722643][T14842]  should_failslab+0xa8/0x100
[  922.722668][T14842]  __kmalloc_noprof+0xe0/0x7e0
[  922.722702][T14842]  ? tomoyo_encode+0x28b/0x550
[  922.722731][T14842]  tomoyo_encode+0x28b/0x550
[  922.722759][T14842]  tomoyo_realpath_from_path+0x58d/0x5d0
[  922.722808][T14842]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  922.722841][T14842]  tomoyo_path_number_perm+0x1e8/0x5a0
[  922.722877][T14842]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  922.722909][T14842]  ? __lock_acquire+0x6b6/0x2cf0
[  922.722945][T14842]  ? do_raw_spin_lock+0x121/0x290
[  922.723009][T14842]  ? __fget_files+0x2a/0x420
[  922.723038][T14842]  ? __fget_files+0x2a/0x420
[  922.723061][T14842]  ? __fget_files+0x3a6/0x420
[  922.723083][T14842]  ? __fget_files+0x2a/0x420
[  922.723112][T14842]  security_file_ioctl+0xcb/0x2d0
[  922.723148][T14842]  __se_sys_ioctl+0x47/0x170
[  922.723182][T14842]  do_syscall_64+0xec/0xf80
[  922.723205][T14842]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  922.723227][T14842]  ? trace_irq_disable+0x37/0x100
[  922.723251][T14842]  ? clear_bhb_loop+0x60/0xb0
[  922.723279][T14842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  922.723302][T14842] RIP: 0033:0x7f8aa6e1f749
[  922.723322][T14842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  922.723342][T14842] RSP: 002b:00007f8aa5086038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  922.723366][T14842] RAX: ffffffffffffffda RBX: 00007f8aa7075fa0 RCX: 00007f8aa6e1f749
[  922.723383][T14842] RDX: 0000000000000000 RSI: 00000000000054e3 RDI: 0000000000000003
[  922.723397][T14842] RBP: 00007f8aa5086090 R08: 0000000000000000 R09: 0000000000000000
[  922.723411][T14842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  922.723425][T14842] R13: 00007f8aa7076038 R14: 00007f8aa7075fa0 R15: 00007ffee4fe4fd8
[  922.723462][T14842]  </TASK>
[  922.723483][T14842] ERROR: Out of memory at tomoyo_realpath_from_path.
[  922.879584][T14842] tap0: tun_chr_ioctl cmd 21731
[  923.238704][T13986] 8021q: adding VLAN 0 to HW filter on device team0
[  923.335690][ T4956] bridge0: port 1(bridge_slave_0) entered blocking state
[  923.335906][ T4956] bridge0: port 1(bridge_slave_0) entered forwarding state
[  923.417244][ T4956] bridge0: port 2(bridge_slave_1) entered blocking state
[  923.417409][ T4956] bridge0: port 2(bridge_slave_1) entered forwarding state
[  923.622790][T14008] 8021q: adding VLAN 0 to HW filter on device bond0
[  923.801520][T14008] 8021q: adding VLAN 0 to HW filter on device team0
[  923.939324][ T2124] bridge0: port 1(bridge_slave_0) entered blocking state
[  923.939505][ T2124] bridge0: port 1(bridge_slave_0) entered forwarding state
[  923.972636][ T6367] bridge0: port 2(bridge_slave_1) entered blocking state
[  924.009276][ T6367] bridge0: port 2(bridge_slave_1) entered forwarding state
[  924.220264][T14878] FAULT_INJECTION: forcing a failure.
[  924.220264][T14878] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  924.220304][T14878] CPU: 0 UID: 0 PID: 14878 Comm: syz.2.3220 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  924.220334][T14878] Tainted: [L]=SOFTLOCKUP
[  924.220343][T14878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  924.220356][T14878] Call Trace:
[  924.220365][T14878]  <TASK>
[  924.220375][T14878]  dump_stack_lvl+0xe8/0x150
[  924.220424][T14878]  should_fail_ex+0x46c/0x600
[  924.220459][T14878]  _copy_from_user+0x2d/0xb0
[  924.220482][T14878]  do_ip_vs_get_ctl+0x29a/0xd10
[  924.220507][T14878]  ? __pfx_do_ip_vs_get_ctl+0x10/0x10
[  924.220549][T14878]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  924.220599][T14878]  ? lockdep_hardirqs_on+0x7b/0x110
[  924.220620][T14878]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  924.220642][T14878]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  924.220671][T14878]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  924.220707][T14878]  ? nf_getsockopt+0x224/0x290
[  924.220735][T14878]  nf_getsockopt+0x26e/0x290
[  924.220764][T14878]  ip_getsockopt+0x1c4/0x220
[  924.220797][T14878]  ? __pfx_ip_getsockopt+0x10/0x10
[  924.220829][T14878]  ? sock_common_getsockopt+0x2d/0xb0
[  924.220848][T14878]  ? raw_getsockopt+0xce/0x200
[  924.220869][T14878]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  924.220891][T14878]  do_sock_getsockopt+0x2b4/0x3d0
[  924.220919][T14878]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  924.220946][T14878]  ? __fget_files+0x3a6/0x420
[  924.220969][T14878]  ? __fget_files+0x2a/0x420
[  924.220999][T14878]  __x64_sys_getsockopt+0x1ab/0x250
[  924.221037][T14878]  do_syscall_64+0xec/0xf80
[  924.221058][T14878]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  924.221079][T14878]  ? trace_irq_disable+0x37/0x100
[  924.221102][T14878]  ? clear_bhb_loop+0x60/0xb0
[  924.221129][T14878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  924.221151][T14878] RIP: 0033:0x7fb342b8f749
[  924.221170][T14878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  924.221188][T14878] RSP: 002b:00007fb340dee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  924.221212][T14878] RAX: ffffffffffffffda RBX: 00007fb342de5fa0 RCX: 00007fb342b8f749
[  924.221228][T14878] RDX: 0000000000000483 RSI: 0000000000000000 RDI: 0000000000000003
[  924.221242][T14878] RBP: 00007fb340dee090 R08: 0000200000000180 R09: 0000000000000000
[  924.221257][T14878] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  924.221271][T14878] R13: 00007fb342de6038 R14: 00007fb342de5fa0 R15: 00007ffd9c03bb28
[  924.221306][T14878]  </TASK>
[  924.221496][ T5967] IPVS: starting estimator thread 0...
[  924.325201][T14879] IPVS: using max 3 ests per chain, 7200 per kthread
[  925.184905][T13986] 8021q: adding VLAN 0 to HW filter on device batadv0
[  925.537131][T14008] 8021q: adding VLAN 0 to HW filter on device batadv0
[  926.228021][T13986] veth0_vlan: entered promiscuous mode
[  926.291087][T13986] veth1_vlan: entered promiscuous mode
[  926.513249][T13986] veth0_macvtap: entered promiscuous mode
[  926.588172][T13986] veth1_macvtap: entered promiscuous mode
[  926.640759][T14008] veth0_vlan: entered promiscuous mode
[  926.760483][T13986] batman_adv: batadv0: Interface activated: batadv_slave_0
[  926.761220][T14008] veth1_vlan: entered promiscuous mode
[  926.861532][T13986] batman_adv: batadv0: Interface activated: batadv_slave_1
[  926.913053][ T4956] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  926.936112][ T4956] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  926.939498][ T4956] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  926.942452][ T4956] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  927.149253][T14008] veth0_macvtap: entered promiscuous mode
[  927.241923][T14008] veth1_macvtap: entered promiscuous mode
[  927.559263][T14008] batman_adv: batadv0: Interface activated: batadv_slave_0
[  927.640233][T14008] batman_adv: batadv0: Interface activated: batadv_slave_1
[  927.677115][   T69] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  927.677142][   T69] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  927.784390][ T2124] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  927.816681][ T2124] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  927.851139][ T2124] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  927.882041][ T2124] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  927.882255][ T6300] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  927.882274][ T6300] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  929.519505][ T2124] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  929.519531][ T2124] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  929.702598][T15022] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280
[  929.744845][ T6909] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  929.744886][ T6909] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  930.324764][ T5889] IPVS: starting estimator thread 0...
[  930.487371][T15028] IPVS: using max 7 ests per chain, 16800 per kthread
[  931.930940][T15062] FAULT_INJECTION: forcing a failure.
[  931.930940][T15062] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  931.930978][T15062] CPU: 1 UID: 0 PID: 15062 Comm: syz.2.3288 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  931.931006][T15062] Tainted: [L]=SOFTLOCKUP
[  931.931014][T15062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  931.931027][T15062] Call Trace:
[  931.931035][T15062]  <TASK>
[  931.931044][T15062]  dump_stack_lvl+0xe8/0x150
[  931.931078][T15062]  should_fail_ex+0x46c/0x600
[  931.931112][T15062]  _copy_from_user+0x2d/0xb0
[  931.931134][T15062]  drm_ioctl+0x590/0xb20
[  931.931159][T15062]  ? smk_tskacc+0x2fc/0x370
[  931.931185][T15062]  ? __pfx_drm_mode_create_dumb_ioctl+0x10/0x10
[  931.931225][T15062]  ? __pfx_drm_ioctl+0x10/0x10
[  931.931264][T15062]  ? __fget_files+0x2a/0x420
[  931.931290][T15062]  ? bpf_lsm_file_ioctl+0x9/0x20
[  931.931322][T15062]  ? __pfx_drm_ioctl+0x10/0x10
[  931.931367][T15062]  __se_sys_ioctl+0xff/0x170
[  931.931399][T15062]  do_syscall_64+0xec/0xf80
[  931.931422][T15062]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  931.931442][T15062]  ? trace_irq_disable+0x37/0x100
[  931.931464][T15062]  ? clear_bhb_loop+0x60/0xb0
[  931.931489][T15062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  931.931510][T15062] RIP: 0033:0x7fb342b8f749
[  931.931528][T15062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  931.931546][T15062] RSP: 002b:00007fb340dee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  931.931569][T15062] RAX: ffffffffffffffda RBX: 00007fb342de5fa0 RCX: 00007fb342b8f749
[  931.931584][T15062] RDX: 0000200000000340 RSI: 00000000c02064b2 RDI: 0000000000000003
[  931.931598][T15062] RBP: 00007fb340dee090 R08: 0000000000000000 R09: 0000000000000000
[  931.931611][T15062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  931.931624][T15062] R13: 00007fb342de6038 R14: 00007fb342de5fa0 R15: 00007ffd9c03bb28
[  931.931663][T15062]  </TASK>
[  932.938790][T13047] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  932.959701][T13047] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  932.961127][T13047] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  932.962384][T13047] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  932.963196][T13047] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  936.245527][T11196] Bluetooth: hci1: command tx timeout
[  937.533250][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  937.533326][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  938.316724][T11196] Bluetooth: hci1: command tx timeout
[  941.838876][T11196] Bluetooth: hci1: command tx timeout
[  943.456449][T15145] kAFS: unable to lookup cell 'syz1'
[  944.065643][T11196] Bluetooth: hci1: command tx timeout
[  944.295666][   T37] audit: type=1326 audit(6059225488.210:1773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15158 comm="syz.3.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd67ba5f749 code=0x7ffc0000
[  944.295732][   T37] audit: type=1326 audit(6059225488.210:1774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15158 comm="syz.3.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd67ba5f749 code=0x7ffc0000
[  944.295785][   T37] audit: type=1326 audit(6059225488.210:1775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15158 comm="syz.3.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fd67ba5f749 code=0x7ffc0000
[  944.295837][   T37] audit: type=1326 audit(6059225488.210:1776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15158 comm="syz.3.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd67ba5f749 code=0x7ffc0000
[  944.295886][   T37] audit: type=1326 audit(6059225488.210:1777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15158 comm="syz.3.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd67ba5f749 code=0x7ffc0000
[  944.295937][   T37] audit: type=1326 audit(6059225488.220:1778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15158 comm="syz.3.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fd67ba5f749 code=0x7ffc0000
[  944.295987][   T37] audit: type=1326 audit(6059225488.220:1779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15158 comm="syz.3.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd67ba5f749 code=0x7ffc0000
[  944.296037][   T37] audit: type=1326 audit(6059225488.220:1780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15158 comm="syz.3.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd67ba5f749 code=0x7ffc0000
[  944.296090][   T37] audit: type=1326 audit(6059225488.220:1781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15158 comm="syz.3.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd67ba5f749 code=0x7ffc0000
[  944.296140][   T37] audit: type=1326 audit(6059225488.220:1782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15158 comm="syz.3.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd67ba5f749 code=0x7ffc0000
[  948.356956][ T2124] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  948.951016][T15199] kAFS: unable to lookup cell 'syz1'
[  954.439730][ T2124] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  957.192321][ T2124] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  957.554959][T15065] chnl_net:caif_netlink_parms(): no params data found
[  960.014758][   T37] kauditd_printk_skb: 9 callbacks suppressed
[  960.014781][   T37] audit: type=1326 audit(6059225759.938:1792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15276 comm="syz.4.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eb801f749 code=0x7ffc0000
[  960.014841][   T37] audit: type=1326 audit(6059225759.938:1793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15276 comm="syz.4.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eb801f749 code=0x7ffc0000
[  960.120167][   T37] audit: type=1326 audit(6059225759.938:1794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15276 comm="syz.4.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f4eb801f749 code=0x7ffc0000
[  960.120228][   T37] audit: type=1326 audit(6059225760.048:1795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15276 comm="syz.4.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eb801f749 code=0x7ffc0000
[  960.120280][   T37] audit: type=1326 audit(6059225760.048:1796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15276 comm="syz.4.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eb801f749 code=0x7ffc0000
[  960.185192][   T37] audit: type=1326 audit(6059225760.108:1797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15276 comm="syz.4.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f4eb801f749 code=0x7ffc0000
[  960.209153][   T37] audit: type=1326 audit(6059225760.138:1798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15276 comm="syz.4.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eb801f749 code=0x7ffc0000
[  960.246901][   T37] audit: type=1326 audit(6059225760.178:1799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15276 comm="syz.4.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f4eb801f749 code=0x7ffc0000
[  960.246961][   T37] audit: type=1326 audit(6059225760.178:1800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15276 comm="syz.4.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eb801f749 code=0x7ffc0000
[  960.303514][   T37] audit: type=1326 audit(6059225760.188:1801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15276 comm="syz.4.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f4eb801f749 code=0x7ffc0000
[  960.419202][ T2124] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  960.678963][T15292] FAULT_INJECTION: forcing a failure.
[  960.678963][T15292] name failslab, interval 1, probability 0, space 0, times 0
[  960.679007][T15292] CPU: 0 UID: 0 PID: 15292 Comm: syz.2.3348 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  960.679039][T15292] Tainted: [L]=SOFTLOCKUP
[  960.679048][T15292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  960.679064][T15292] Call Trace:
[  960.679073][T15292]  <TASK>
[  960.679083][T15292]  dump_stack_lvl+0xe8/0x150
[  960.679122][T15292]  should_fail_ex+0x46c/0x600
[  960.679159][T15292]  ? alloc_empty_file+0x55/0x1d0
[  960.679186][T15292]  should_failslab+0xa8/0x100
[  960.679209][T15292]  ? alloc_empty_file+0x55/0x1d0
[  960.679232][T15292]  kmem_cache_alloc_noprof+0x84/0x6c0
[  960.679275][T15292]  alloc_empty_file+0x55/0x1d0
[  960.679303][T15292]  dentry_open+0x44/0xa0
[  960.679337][T15292]  __se_sys_fsmount+0x776/0xae0
[  960.679375][T15292]  ? __pfx___se_sys_fsmount+0x10/0x10
[  960.679402][T15292]  ? __pfx_ksys_write+0x10/0x10
[  960.679450][T15292]  do_syscall_64+0xec/0xf80
[  960.679473][T15292]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  960.679496][T15292]  ? trace_irq_disable+0x37/0x100
[  960.679521][T15292]  ? clear_bhb_loop+0x60/0xb0
[  960.679551][T15292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  960.679573][T15292] RIP: 0033:0x7fb342b8f749
[  960.679594][T15292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  960.679616][T15292] RSP: 002b:00007fb340dee038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b0
[  960.679642][T15292] RAX: ffffffffffffffda RBX: 00007fb342de5fa0 RCX: 00007fb342b8f749
[  960.679660][T15292] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000005
[  960.679673][T15292] RBP: 00007fb340dee090 R08: 0000000000000000 R09: 0000000000000000
[  960.679689][T15292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  960.679704][T15292] R13: 00007fb342de6038 R14: 00007fb342de5fa0 R15: 00007ffd9c03bb28
[  960.679742][T15292]  </TASK>
[  961.301865][T15295] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3347'.
[  962.519877][T15281] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3344'.
[  966.986600][T15317] FAULT_INJECTION: forcing a failure.
[  966.986600][T15317] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  966.986639][T15317] CPU: 0 UID: 0 PID: 15317 Comm: syz.2.3352 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  966.986668][T15317] Tainted: [L]=SOFTLOCKUP
[  966.986682][T15317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  966.986697][T15317] Call Trace:
[  966.986706][T15317]  <TASK>
[  966.986717][T15317]  dump_stack_lvl+0xe8/0x150
[  966.986762][T15317]  should_fail_ex+0x46c/0x600
[  966.986801][T15317]  _copy_from_user+0x2d/0xb0
[  966.986827][T15317]  kvm_vm_ioctl+0x725/0xc60
[  966.986857][T15317]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  966.986917][T15317]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  966.986952][T15317]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  966.986987][T15317]  ? do_vfs_ioctl+0xbeb/0x1440
[  966.987022][T15317]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  966.987073][T15317]  ? __asan_memset+0x22/0x50
[  966.987108][T15317]  ? smack_file_ioctl+0x305/0x340
[  966.987140][T15317]  ? __pfx_smack_file_ioctl+0x10/0x10
[  966.987179][T15317]  ? __fget_files+0x2a/0x420
[  966.987202][T15317]  ? __fget_files+0x3a6/0x420
[  966.987223][T15317]  ? __fget_files+0x2a/0x420
[  966.987250][T15317]  ? bpf_lsm_file_ioctl+0x9/0x20
[  966.987284][T15317]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  966.987311][T15317]  __se_sys_ioctl+0xff/0x170
[  966.987344][T15317]  do_syscall_64+0xec/0xf80
[  966.987366][T15317]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  966.987387][T15317]  ? trace_irq_disable+0x37/0x100
[  966.987410][T15317]  ? clear_bhb_loop+0x60/0xb0
[  966.987438][T15317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  966.987460][T15317] RIP: 0033:0x7fb342b8f749
[  966.987480][T15317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  966.987497][T15317] RSP: 002b:00007fb340dee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  966.987522][T15317] RAX: ffffffffffffffda RBX: 00007fb342de5fa0 RCX: 00007fb342b8f749
[  966.987538][T15317] RDX: 0000200000000400 RSI: 000000004020ae46 RDI: 0000000000000004
[  966.987553][T15317] RBP: 00007fb340dee090 R08: 0000000000000000 R09: 0000000000000000
[  966.987567][T15317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  966.987581][T15317] R13: 00007fb342de6038 R14: 00007fb342de5fa0 R15: 00007ffd9c03bb28
[  966.987617][T15317]  </TASK>
[  967.303396][T15065] bridge0: port 1(bridge_slave_0) entered blocking state
[  967.303706][T15065] bridge0: port 1(bridge_slave_0) entered disabled state
[  967.303973][T15065] bridge_slave_0: entered allmulticast mode
[  967.333567][T15065] bridge_slave_0: entered promiscuous mode
[  967.446465][T15065] bridge0: port 2(bridge_slave_1) entered blocking state
[  967.446614][T15065] bridge0: port 2(bridge_slave_1) entered disabled state
[  967.446873][T15065] bridge_slave_1: entered allmulticast mode
[  967.449855][T15065] bridge_slave_1: entered promiscuous mode
[  968.037777][T15065] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  968.064523][T15065] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  968.550123][ T2124] bridge_slave_1: left allmulticast mode
[  968.550157][ T2124] bridge_slave_1: left promiscuous mode
[  968.550440][ T2124] bridge0: port 2(bridge_slave_1) entered disabled state
[  968.648572][ T2124] bridge_slave_0: left allmulticast mode
[  968.648608][ T2124] bridge_slave_0: left promiscuous mode
[  968.648895][ T2124] bridge0: port 1(bridge_slave_0) entered disabled state
[  976.187217][ T2124] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  976.254631][ T2124] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  976.309597][ T2124] bond0 (unregistering): Released all slaves
[  976.418059][T15065] team0: Port device team_slave_0 added
[  976.453737][T15376] sch_fq: defrate 5 ignored.
[  976.576273][T15425] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  976.628365][T15065] team0: Port device team_slave_1 added
[  981.362889][T15065] batman_adv: batadv0: Adding interface: batadv_slave_0
[  981.362910][T15065] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  981.362939][T15065] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  981.428071][T15065] batman_adv: batadv0: Adding interface: batadv_slave_1
[  981.428088][T15065] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  981.428109][T15065] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  981.996171][ T8404] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  982.800610][ T8404] usb 3-1: device descriptor read/64, error -71
[  983.035795][ T8404] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  983.165467][ T8404] usb 3-1: device descriptor read/64, error -71
[  983.276112][ T8404] usb usb3-port1: attempt power cycle
[  983.507641][T15498] binder: 15497:15498 ioctl 400c620e 200000000140 returned -22
[  983.635570][ T8404] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  983.656494][ T8404] usb 3-1: device descriptor read/8, error -71
[  983.920385][ T8404] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  984.299632][ T8404] usb 3-1: device descriptor read/8, error -71
[  984.406127][ T8404] usb usb3-port1: unable to enumerate USB device
[  984.544897][T15065] hsr_slave_0: entered promiscuous mode
[  984.558768][T15065] hsr_slave_1: entered promiscuous mode
[  984.563695][T15065] debugfs: 'hsr0' already exists in 'hsr'
[  984.563719][T15065] Cannot create hsr debugfs directory
[  984.838048][T15484] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  984.838568][T15484] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  986.454388][T15529] loop0: Can't mount, would change RO state
[  986.974209][T15541] FAULT_INJECTION: forcing a failure.
[  986.974209][T15541] name failslab, interval 1, probability 0, space 0, times 0
[  986.974251][T15541] CPU: 1 UID: 0 PID: 15541 Comm: syz.2.3424 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  986.974282][T15541] Tainted: [L]=SOFTLOCKUP
[  986.974291][T15541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  986.974305][T15541] Call Trace:
[  986.974314][T15541]  <TASK>
[  986.974324][T15541]  dump_stack_lvl+0xe8/0x150
[  986.974366][T15541]  should_fail_ex+0x46c/0x600
[  986.974404][T15541]  should_failslab+0xa8/0x100
[  986.974429][T15541]  __kmalloc_cache_noprof+0x84/0x6d0
[  986.974466][T15541]  ? snd_fasync_helper+0x75/0x220
[  986.974505][T15541]  ? __pfx_snd_pcm_fasync+0x10/0x10
[  986.974538][T15541]  snd_fasync_helper+0x75/0x220
[  986.974576][T15541]  ? __pfx_snd_pcm_fasync+0x10/0x10
[  986.974610][T15541]  do_vfs_ioctl+0x1079/0x1440
[  986.974646][T15541]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  986.974706][T15541]  ? __asan_memset+0x22/0x50
[  986.974736][T15541]  ? smack_file_ioctl+0x24d/0x340
[  986.974770][T15541]  ? __pfx_smack_file_ioctl+0x10/0x10
[  986.974811][T15541]  ? __fget_files+0x2a/0x420
[  986.974835][T15541]  ? __fget_files+0x3a6/0x420
[  986.974859][T15541]  ? __fget_files+0x2a/0x420
[  986.974887][T15541]  ? bpf_lsm_file_ioctl+0x9/0x20
[  986.974923][T15541]  __se_sys_ioctl+0x82/0x170
[  986.974958][T15541]  do_syscall_64+0xec/0xf80
[  986.974980][T15541]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  986.975003][T15541]  ? trace_irq_disable+0x37/0x100
[  986.975028][T15541]  ? clear_bhb_loop+0x60/0xb0
[  986.975056][T15541]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  986.975079][T15541] RIP: 0033:0x7fb342b8f749
[  986.975099][T15541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  986.975120][T15541] RSP: 002b:00007fb340dee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  986.975145][T15541] RAX: ffffffffffffffda RBX: 00007fb342de5fa0 RCX: 00007fb342b8f749
[  986.975163][T15541] RDX: 0000200000000040 RSI: 0000000000005452 RDI: 0000000000000003
[  986.975179][T15541] RBP: 00007fb340dee090 R08: 0000000000000000 R09: 0000000000000000
[  986.975193][T15541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  986.975207][T15541] R13: 00007fb342de6038 R14: 00007fb342de5fa0 R15: 00007ffd9c03bb28
[  986.975243][T15541]  </TASK>
[  987.356803][ T2124] hsr_slave_0: left promiscuous mode
[  988.109272][ T2124] hsr_slave_1: left promiscuous mode
[  988.110419][ T2124] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  988.110450][ T2124] batman_adv: batadv0: Removing interface: batadv_slave_0
[  988.199618][ T2124] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  988.199650][ T2124] batman_adv: batadv0: Removing interface: batadv_slave_1
[  989.797068][ T2124] veth1_macvtap: left promiscuous mode
[  989.797190][ T2124] veth0_macvtap: left promiscuous mode
[  989.799744][ T2124] veth1_vlan: left promiscuous mode
[  989.799944][ T2124] veth0_vlan: left promiscuous mode
[  992.165935][ T8404] usb 5-1: new full-speed USB device number 12 using dummy_hcd
[  992.596089][ T8404] usb 5-1: unable to get BOS descriptor or descriptor too short
[  992.600167][ T8404] usb 5-1: not running at top speed; connect to a high speed hub
[  992.630584][ T8404] usb 5-1: config 4 has an invalid interface number: 110 but max is 0
[  992.630618][ T8404] usb 5-1: config 4 has no interface number 0
[  992.630670][ T8404] usb 5-1: config 4 interface 110 has no altsetting 0
[  992.709417][ T8404] usb 5-1: New USB device found, idVendor=06cd, idProduct=011b, bcdDevice=4f.71
[  992.709518][ T8404] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  992.709580][ T8404] usb 5-1: Product: syz
[  992.709599][ T8404] usb 5-1: Manufacturer: syz
[  992.709670][ T8404] usb 5-1: SerialNumber: syz
[  993.752761][ T8404] keyspan 5-1:4.110: Keyspan - (without firmware) converter detected
[  993.828525][ T5882] usb 4-1: new high-speed USB device number 49 using dummy_hcd
[  993.884098][ T8404] usb 5-1: USB disconnect, device number 12
[  993.903716][ T8404] keyspan 5-1:4.110: device disconnected
[  993.989329][ T5882] usb 4-1: config 1 has an invalid interface number: 229 but max is 1
[  993.989362][ T5882] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  993.989384][ T5882] usb 4-1: config 1 has no interface number 0
[  993.989431][ T5882] usb 4-1: too many endpoints for config 1 interface 229 altsetting 255: 255, using maximum allowed: 30
[  993.989514][ T5882] usb 4-1: config 1 interface 229 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  993.989559][ T5882] usb 4-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  993.989585][ T5882] usb 4-1: config 1 interface 229 has no altsetting 0
[  993.989604][ T5882] usb 4-1: config 1 interface 1 has no altsetting 0
[  994.092780][ T5882] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  994.092806][ T5882] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  994.092822][ T5882] usb 4-1: Product: syz
[  994.092834][ T5882] usb 4-1: Manufacturer: syz
[  994.092845][ T5882] usb 4-1: SerialNumber: syz
[  995.638686][T13047] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  995.677097][T13047] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  995.679939][T13047] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  995.702145][T13047] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  995.727700][T13047] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  997.472300][ T6023] usb 5-1: new full-speed USB device number 13 using dummy_hcd
[  997.681922][ T6023] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  997.681959][ T6023] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  997.685895][ T6023] usb 5-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  997.685963][ T6023] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  997.686021][ T6023] usb 5-1: Product: syz
[  997.686038][ T6023] usb 5-1: Manufacturer: syz
[  997.686055][ T6023] usb 5-1: SerialNumber: syz
[  997.721824][ T6023] usb 5-1: config 0 descriptor??
[  997.763055][ T6023] hub 5-1:0.0: bad descriptor, ignoring hub
[  997.763100][ T6023] hub 5-1:0.0: probe with driver hub failed with error -5
[  997.834209][ T6023] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input10
[  997.915617][T13047] Bluetooth: hci0: command tx timeout
[  998.380369][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  998.380505][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  999.475285][T15612] loop2: detected capacity change from 0 to 7
[  999.476528][T15612] Dev loop2: unable to read RDB block 7
[  999.476593][T15612]  loop2: unable to read partition table
[  999.476851][T15612] loop2: partition table beyond EOD, truncated
[  999.476872][T15612] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[ 1002.075548][T13047] Bluetooth: hci0: command tx timeout
[ 1004.294514][T13047] Bluetooth: hci0: command tx timeout
[ 1006.474777][T13047] Bluetooth: hci0: command tx timeout
[ 1010.298722][T11196] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1010.304635][T11196] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1010.373291][T11196] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1010.375044][T11196] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1010.400468][T11196] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1011.389244][ T8404] usb 5-1: USB disconnect, device number 13
[ 1012.643253][T11196] Bluetooth: hci6: command tx timeout
[ 1013.341493][T15674] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3464'.
[ 1013.639431][ T5806] ------------[ cut here ]------------
[ 1013.639463][ T5806] WARNING: kernel/kcov.c:477 at kcov_task_exit+0xf5/0x160, CPU#1: syz-executor/5806
[ 1013.639508][ T5806] Modules linked in:
[ 1013.639538][ T5806] CPU: 1 UID: 0 PID: 5806 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1013.639580][ T5806] Tainted: [L]=SOFTLOCKUP
[ 1013.639589][ T5806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1013.639604][ T5806] RIP: 0010:kcov_task_exit+0xf5/0x160
[ 1013.639627][ T5806] Code: 10 00 00 48 8b bb 90 00 00 00 e8 16 23 51 00 48 89 df 5b 41 5e 41 5f e9 29 c7 56 00 7c 1c 5b 41 5e 41 5f c3 cc cc cc cc cc 90 <0f> 0b 90 4c 89 f7 5b 41 5e 41 5f e9 1b 45 14 09 48 89 df be 03 00
[ 1013.639646][ T5806] RSP: 0018:ffffc90004eafae0 EFLAGS: 00010206
[ 1013.639667][ T5806] RAX: ed5fc5a539188300 RBX: ffff888020b92e00 RCX: 0000000000000000
[ 1013.639682][ T5806] RDX: 000000000cf5329a RSI: ffffffff8b3f5740 RDI: 00000000ffffffff
[ 1013.639699][ T5806] RBP: ffffc90004eafc28 R08: ffffffff8ad3f021 R09: ffffffff8d5ae940
[ 1013.639716][ T5806] R10: dffffc0000000000 R11: fffffbfff1db66af R12: 1ffff11004df2e2d
[ 1013.639734][ T5806] R13: 0000000000000009 R14: ffff888020b92e08 R15: ffff88802ab2bc80
[ 1013.639751][ T5806] FS:  0000555594eda500(0000) GS:ffff888126def000(0000) knlGS:0000000000000000
[ 1013.639771][ T5806] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1013.639787][ T5806] CR2: 0000000000000000 CR3: 00000000523ce000 CR4: 00000000003526f0
[ 1013.639808][ T5806] Call Trace:
[ 1013.639817][ T5806]  <TASK>
[ 1013.639830][ T5806]  do_exit+0xd1/0x22f0
[ 1013.639868][ T5806]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1013.639894][ T5806]  ? lockdep_hardirqs_on+0x7b/0x110
[ 1013.639918][ T5806]  ? __pfx_do_exit+0x10/0x10
[ 1013.639950][ T5806]  ? rt_mutex_slowunlock+0x493/0x8a0
[ 1013.639982][ T5806]  ? reacquire_held_locks+0x104/0x190
[ 1013.640018][ T5806]  ? rt_spin_lock+0x1c1/0x3e0
[ 1013.640053][ T5806]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1013.640109][ T5806]  do_group_exit+0x21c/0x2d0
[ 1013.640146][ T5806]  ? rt_spin_unlock+0x161/0x200
[ 1013.640181][ T5806]  get_signal+0x125d/0x1310
[ 1013.640233][ T5806]  arch_do_signal_or_restart+0x9a/0x7a0
[ 1013.640272][ T5806]  ? __pfx___x64_sys_wait4+0x10/0x10
[ 1013.640295][ T5806]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1013.640345][ T5806]  ? __pfx_fput_close_sync+0x10/0x10
[ 1013.640383][ T5806]  exit_to_user_mode_loop+0x87/0x4e0
[ 1013.640417][ T5806]  ? rcu_is_watching+0x15/0xb0
[ 1013.640443][ T5806]  do_syscall_64+0x2c1/0xf80
[ 1013.640474][ T5806]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1013.640497][ T5806]  ? trace_irq_disable+0x37/0x100
[ 1013.640522][ T5806]  ? clear_bhb_loop+0x60/0xb0
[ 1013.640552][ T5806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1013.640574][ T5806] RIP: 0033:0x7fb342b85897
[ 1013.640595][ T5806] Code: 89 7c 24 10 48 89 4c 24 18 e8 65 1c 03 00 4c 8b 54 24 18 8b 54 24 14 41 89 c0 48 8b 74 24 08 8b 7c 24 10 b8 3d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 89 44 24 10 e8 b5 1c 03 00 8b 44
[ 1013.640616][ T5806] RSP: 002b:00007ffd9c03be80 EFLAGS: 00000293 ORIG_RAX: 000000000000003d
[ 1013.640638][ T5806] RAX: fffffffffffffe00 RBX: 0000000000000be0 RCX: 00007fb342b85897
[ 1013.640654][ T5806] RDX: 0000000040000000 RSI: 00007ffd9c03beec RDI: 00000000ffffffff
[ 1013.640669][ T5806] RBP: 00007ffd9c03beec R08: 0000000000000000 R09: 0000000000000000
[ 1013.640683][ T5806] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000054b
[ 1013.640698][ T5806] R13: 0000555594eed590 R14: 00000000000f404c R15: 00007ffd9c03bf40
[ 1013.640735][ T5806]  </TASK>
[ 1013.640757][ T5806] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1013.640779][ T5806] CPU: 1 UID: 0 PID: 5806 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1013.640811][ T5806] Tainted: [L]=SOFTLOCKUP
[ 1013.640820][ T5806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1013.640835][ T5806] Call Trace:
[ 1013.640845][ T5806]  <TASK>
[ 1013.640855][ T5806]  vpanic+0x1e0/0x670
[ 1013.640895][ T5806]  panic+0xb9/0xc0
[ 1013.640928][ T5806]  ? __pfx_panic+0x10/0x10
[ 1013.640982][ T5806]  __warn+0x317/0x4b0
[ 1013.641015][ T5806]  ? kcov_task_exit+0xf5/0x160
[ 1013.641045][ T5806]  ? kcov_task_exit+0xf5/0x160
[ 1013.641070][ T5806]  __report_bug+0x288/0x500
[ 1013.641112][ T5806]  ? kcov_task_exit+0xf5/0x160
[ 1013.641144][ T5806]  ? __pfx___report_bug+0x10/0x10
[ 1013.641181][ T5806]  ? try_to_take_rt_mutex+0x840/0xb00
[ 1013.641220][ T5806]  ? __pfx_rtlock_slowlock_locked+0x10/0x10
[ 1013.641260][ T5806]  ? rt_spin_lock+0x1c1/0x3e0
[ 1013.641298][ T5806]  ? rt_spin_lock+0x1c1/0x3e0
[ 1013.641337][ T5806]  ? kcov_task_exit+0xf5/0x160
[ 1013.641363][ T5806]  report_bug+0x16a/0x220
[ 1013.641404][ T5806]  ? kcov_task_exit+0xf5/0x160
[ 1013.641429][ T5806]  ? kcov_task_exit+0xf7/0x160
[ 1013.641462][ T5806]  handle_bug+0x98/0x200
[ 1013.641494][ T5806]  exc_invalid_op+0x1a/0x50
[ 1013.641525][ T5806]  asm_exc_invalid_op+0x1a/0x20
[ 1013.641550][ T5806] RIP: 0010:kcov_task_exit+0xf5/0x160
[ 1013.641577][ T5806] Code: 10 00 00 48 8b bb 90 00 00 00 e8 16 23 51 00 48 89 df 5b 41 5e 41 5f e9 29 c7 56 00 7c 1c 5b 41 5e 41 5f c3 cc cc cc cc cc 90 <0f> 0b 90 4c 89 f7 5b 41 5e 41 5f e9 1b 45 14 09 48 89 df be 03 00
[ 1013.641600][ T5806] RSP: 0018:ffffc90004eafae0 EFLAGS: 00010206
[ 1013.641622][ T5806] RAX: ed5fc5a539188300 RBX: ffff888020b92e00 RCX: 0000000000000000
[ 1013.641641][ T5806] RDX: 000000000cf5329a RSI: ffffffff8b3f5740 RDI: 00000000ffffffff
[ 1013.641660][ T5806] RBP: ffffc90004eafc28 R08: ffffffff8ad3f021 R09: ffffffff8d5ae940
[ 1013.641680][ T5806] R10: dffffc0000000000 R11: fffffbfff1db66af R12: 1ffff11004df2e2d
[ 1013.641700][ T5806] R13: 0000000000000009 R14: ffff888020b92e08 R15: ffff88802ab2bc80
[ 1013.641729][ T5806]  ? rt_spin_lock+0x1c1/0x3e0
[ 1013.641776][ T5806]  do_exit+0xd1/0x22f0
[ 1013.641817][ T5806]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1013.641844][ T5806]  ? lockdep_hardirqs_on+0x7b/0x110
[ 1013.641871][ T5806]  ? __pfx_do_exit+0x10/0x10
[ 1013.641907][ T5806]  ? rt_mutex_slowunlock+0x493/0x8a0
[ 1013.641942][ T5806]  ? reacquire_held_locks+0x104/0x190
[ 1013.641983][ T5806]  ? rt_spin_lock+0x1c1/0x3e0
[ 1013.642021][ T5806]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1013.642064][ T5806]  do_group_exit+0x21c/0x2d0
[ 1013.642104][ T5806]  ? rt_spin_unlock+0x161/0x200
[ 1013.642142][ T5806]  get_signal+0x125d/0x1310
[ 1013.642198][ T5806]  arch_do_signal_or_restart+0x9a/0x7a0
[ 1013.642240][ T5806]  ? __pfx___x64_sys_wait4+0x10/0x10
[ 1013.642265][ T5806]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1013.642318][ T5806]  ? __pfx_fput_close_sync+0x10/0x10
[ 1013.642358][ T5806]  exit_to_user_mode_loop+0x87/0x4e0
[ 1013.642394][ T5806]  ? rcu_is_watching+0x15/0xb0
[ 1013.642422][ T5806]  do_syscall_64+0x2c1/0xf80
[ 1013.642447][ T5806]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1013.642478][ T5806]  ? trace_irq_disable+0x37/0x100
[ 1013.642505][ T5806]  ? clear_bhb_loop+0x60/0xb0
[ 1013.642537][ T5806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1013.642563][ T5806] RIP: 0033:0x7fb342b85897
[ 1013.642584][ T5806] Code: 89 7c 24 10 48 89 4c 24 18 e8 65 1c 03 00 4c 8b 54 24 18 8b 54 24 14 41 89 c0 48 8b 74 24 08 8b 7c 24 10 b8 3d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 89 44 24 10 e8 b5 1c 03 00 8b 44
[ 1013.642606][ T5806] RSP: 002b:00007ffd9c03be80 EFLAGS: 00000293 ORIG_RAX: 000000000000003d
[ 1013.642630][ T5806] RAX: fffffffffffffe00 RBX: 0000000000000be0 RCX: 00007fb342b85897
[ 1013.642649][ T5806] RDX: 0000000040000000 RSI: 00007ffd9c03beec RDI: 00000000ffffffff
[ 1013.642667][ T5806] RBP: 00007ffd9c03beec R08: 0000000000000000 R09: 0000000000000000
[ 1013.642683][ T5806] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000054b
[ 1013.642699][ T5806] R13: 0000555594eed590 R14: 00000000000f404c R15: 00007ffd9c03bf40
[ 1013.642741][ T5806]  </TASK>
[ 1013.643368][ T5806] Kernel Offset: disabled