last executing test programs:

8.636308596s ago: executing program 2 (id=3591):
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
open(0x0, 0x22240, 0x155)
close_range$auto(0x2, 0xa, 0x0) (async)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1) (async)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, 0x0, 0x20100, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x81, 0x3e, 0x0, 0x3)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000) (async)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
setsockopt$auto(0x3, 0x114, 0x7, 0x0, 0xa0) (async)
setsockopt$auto(0x3, 0x114, 0x7, 0x0, 0xa0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x40000)
bpf$auto(0x12, &(0x7f0000000040)=@link_detach, 0x26) (async)
bpf$auto(0x12, &(0x7f0000000040)=@link_detach, 0x26)
sendmsg$auto_NFC_CMD_GET_SE(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x4c, 0x0, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x4}, @NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x200}, @NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x142}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x8}, @NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x7}, @NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x3}, @NFC_ATTR_LLC_PARAM_RW={0x5, 0x10, 0xde}]}, 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0x4)
r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0)
openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) (async)
r2 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
socket(0x10, 0x2, 0x0) (async)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
waitid$auto_P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f00000000c0)={@siginfo_0_0={0x8d, 0x0, 0x3, @_sigpoll={0xfffffffffffffffb, r4}}}, 0x7f, &(0x7f0000000340)={{0xff, 0xd3f1000800000}, {0x5, 0x6}, 0x4, 0x4, 0x7c22, 0x6, 0x4f6, 0x3, 0x7f, 0x7, 0x1, 0x8, 0x1d, 0xffffffffffffffff, 0x8, 0x3})
recvmmsg$auto(r3, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0xd}, 0x5, 0x0, 0x2000000200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)
write$auto_proc_clear_refs_operations_internal(r2, 0x0, 0xffffff4b)
read$auto(r1, 0x0, 0x39b8)

7.597741051s ago: executing program 2 (id=3595):
pwrite64$auto(0xffffffffffffffff, &(0x7f0000000100)='B\x00\x00\x00\x00\x00\x00\x001\x00', 0xe, 0x7)
r0 = semctl$auto(0x1, 0x7, 0x2, 0xffffffffffffff7e)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'sit0\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'netdevsim0\x00', <r3=>0x0})
sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000800)={0x4c, r1, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r2}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, r0}, @OVS_DP_ATTR_IFINDEX={0x8, 0x9, r3}, @OVS_DP_ATTR_USER_FEATURES={0x8}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x1}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, r0}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x4000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r4)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x4d})
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r6 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000340), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r6, 0xc004743e, 0x0)
r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r7], 0x1ac}}, 0x40000)
ioctl$auto_PPPIOCSPASS(r6, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x30, 0xff, 0x0, @raw=0xfffff030}})
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000140)={0xffffff61, r5, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@HWSIM_ATTR_REG_CUSTOM_REG={0x0, 0xc, 0x4}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE]}, 0x70}, 0x1, 0x0, 0x0, 0x4008040}, 0x40800)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x84)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0x400053, 0x9)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r8, 0x0)
r9 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r9)
ioctl$auto_KVM_CREATE_VM(r8, 0x4040aea0, 0x0)

7.089775221s ago: executing program 2 (id=3598):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000000c0)={0x0, 0xfc6}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x400a)
r0 = socket(0x29, 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x10008, 0x4000000000df, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r0, 0x89f2, 0x24)
r2 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x480282, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
clock_adjtime$auto(0x0, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
r3 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r3, 0xffffffffffdffe00, &(0x7f0000000140))
ioctl$auto(0x3, 0x40086200, 0x38)
r4 = openat2$auto(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x3, 0x2, 0x7}, 0x7fffffffffffffff)
r5 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000240), 0xffffffffffffffff)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto_PTRACE_SECCOMP_GET_METADATA(0x420d, r6, 0x7, 0x4)
move_pages$auto(r6, 0x3, &(0x7f0000000b80)=&(0x7f0000000b40)="07e9b5eae3c69d87a098efea", &(0x7f0000000bc0)=0x8, &(0x7f0000000c00), 0x3)
sendmsg$auto_TIPC_NL_BEARER_SET(r4, &(0x7f0000000b00)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000280)={0x83c, r5, 0x10, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_PUBL={0x168, 0x3, 0x0, 0x1, [@nested={0x162, 0x13b, 0x0, 0x1, [@nested={0x4, 0x5b}, @typed={0x4, 0x5b}, @nested={0x4, 0x6a}, @typed={0x8, 0x20, 0x0, 0x0, @ipv4=@local}, @nested={0x4, 0x99}, @generic="d55df48f6d6c77d1131356f3cf1f493de3e0247329", @nested={0x4, 0x140}, @generic="59ef1686d46cc64a771d32dfc3f4c6548434725e3b6bfc235b7ce38f163cdb24c79f42e7d947f7faf3f1c8f49515ebd48a522f1478631b12ec4bca09cce428c18c4dc1dd8c53e3", @generic="a81757c27519900f3c0859bad8b229d59aee7f9dd0c3ee612ddacbaebc6b84c538f571e048a394932b0223851a48fa637afc213b8763fd6c5a5727dca0a465927aa2a7f0472aa79058c5077c9faf8254f6a2a46cd687ee5066822159d9d7ba239a0aa4d3bd18d2bf0b053a60c20587330e3f71e00c2c79bdf8a7f58757f5d34ca8aa750b1a11e85da577c5685664c0bd0b62cb254964691077c2886ecb726419528784ec174d8a8dc115838d87fe75f7958321707a8ef6497de34bec4fe84f7128bc978a28bf8fb30db81156967a4a2bb2c33ff357e0f4641bf99d1c4c52271258901c5c12b7"]}]}, @TIPC_NLA_NODE={0x185, 0x6, 0x0, 0x1, [@generic="e65667c9c8aa8038b2ce068be6f2c66408b1d7e9c32447129d381dd48fa512fd78223fd041843b06651e0f5b6269b0b51c37c9c972ebef48571eb9ab49453358216d25bf4e89500cfeee7ae8c5dd2521982d0ba9a596217479d43ac9d89ca52e44e451792a5c07c6acf4d03768b5811f6680130d636091dfd9e71220c6a02a7285c9bf0c6184b8c29066455ec777b790d4c5f7f8b42443cd6b833f3ca54ee19f760773e65b173f59fe0a98d3c8617a3fe497a77367d3445229e4a9e28323c4ab651aa81d4aebfdfe6a51448209a495b0948ade7ec78815b283bb97f25245ae9ff51858591c28efb1704291a455e3418fc2", @generic="43ef069a56420a3bc467fc6f4c208ac989891b0aee2aac480b4d6c9e155980b595f9c4d343f2ea577ee3418e6359061f43b33bcee709fe674cadd7f2c16ce9935576f69a42d01b33b7de4d3fcc5913ee91122ed6229f", @typed={0xc, 0x2b, 0x0, 0x0, @u64=0xf3}, @generic="ed7d56cd36f357fe00ccb84fe6be44bd8506596a0a39990f2066cc83613d4f709e0451d7fbc48e6caa88a47ea48b"]}, @TIPC_NLA_NODE={0x1f2, 0x6, 0x0, 0x1, [@nested={0x1c, 0x10, 0x0, 0x1, [@nested={0x4, 0x119}, @typed={0x8, 0x83, 0x0, 0x0, @u32=0x7fff}, @nested={0x4, 0xbc}, @nested={0x4, 0x39}, @nested={0x4, 0x2e}]}, @generic="8480bca70b138dc59eed58150132694279cd6776d898f56412eea45be77dc0c05367c922c50e7c9fdeb984f33837d753164a308e7bb2abbe03e3f0bf86d40eacdf76a81e3041d3a6f00cfe25ee81c5aff6c1f4df3e9f78b278609b32b5c3c988ba91f0385f1c6d5ac936dd5b286bcaf688aa66b44b61253d5d2cf47e550121a4cbd96b338becf07f9a75b0e0c56619f27d05f5361da148f4f9bcbde0c5d79bef4640fe2e30c22eed12f36ca768cdc3c3ea0de68b6333eec4d8e4fb8c092660ecf101aea861fe466b7e4c8ae1bdb9f2f11795f8702f11fc8047660c6797e079fa94b21cf931b311fdd63cbd9df65ed18ff49713ae87a38421", @generic="990f463945a8cc87697e2adac1c0cd8799196e4b2e3c52ec3fe748b8dba63d635f88e78d8181d2cc710fab6056df52d33b025be49304a691aecba891a0648a1f9e9c56", @nested={0x8, 0x13b, 0x0, 0x1, [@typed={0x4, 0x55}]}, @generic="02177d479eee9ea7313670e2f55bf30822ce8d0c06b98f54e832439ae1d5573982fde6f2f5531193989160946d72aafc424efe0b961b699e1d5e1de26bd4c128d80ae7e4a9cd2d4bedfe3585eef5ccec7e29c9592d11e5e082cf4a63790c3a51bfc6ba565fd5f1c12f85a018d229d200d332e5037101a5568610b2eed25713ad3908388af0e5491595c5287ff8bbc5"]}, @TIPC_NLA_NET={0x342, 0x7, 0x0, 0x1, [@generic="a4d283c5b4154f4d46dbc2eecd5a951d60429b53054710fbe6fdaaab72e72ef562b29dea0d8205b4747f98e674646cadd7473563cbeaf1a32a84caad267579f18634471a57017dadfb3525a930be9dcdcb1b136c4c45395e34da59765d468bb9534e80951d07f90228d6ed12a8fd1f177f39067743e83205ada50349e78917bb061e0ace6547074a97630a4b4dcc5a205876ad", @generic="c08edb2dbb34bd450c9e412113440b5271569abcc8220db8769212bc4da0f0895ce0c04ec78cac939f8e212b2b9eae376655671e33ed93e1e7a2", @generic="ecb8bd434218ade831854de78057757be7c5552f56c67f293306a83cda118911fda36e6dcdc48efe6e517c6eeb3e4bb3677073f27782e4b1ea5cf131f392d30245f4a12742baee4390b29044a203eba5cf41c920f5f67306d10b5fd830a30b149b317901513f563d52d9667b01a6477746604c3157af911cab2620092b0e7f65fb2c55d8ba6b992c847ac0b235e17aa2b7f06e0c52a1cdea9fafa3ef5740bdccab70dec7c78ac2ef5b5ed6397103bf204e301e8e70690c2dead7680aea88772db52fbb265a1ed3656530e1d101b1064255d25f9f4aae7ac911b680962154c3f411", @typed={0x8, 0x100, 0x0, 0x0, @u32=0xf}, @generic="e2d7cc0e2a9b3247bf579c0d93092a6f7836ac40f44c713b8b085c7cce8d147cc41693da27d95e7a18e8d60f5538002c98157d35ca2211daf770a7f468773096a6cf75e3181eaabad83d8038566640dff6acae0a176ed71175611d66bf00dc780280a99aef888206d2898cbea16a9c20c8285809420c042eb6b3be026e888daf8b478ec842beaf91976c70f63f1b123644c2531e96dab4aefe91441a107ca21f952e88fade10dd13777dcda8fe0169f34f4c795c87de98520adea7d92e75933c4723a864bfca8410b93822ec3821c1b8f534ba545f505a911ed09185b7ad69228f437d9623ceaf9d1dc5728e", @nested={0x4, 0xa3, 0x0, 0x1, [@generic]}, @typed={0x8, 0xe8, 0x0, 0x0, @u32=0x37c}, @nested={0x8f, 0xa8, 0x0, 0x1, [@nested={0x4, 0x7c}, @nested={0x4, 0xd2}, @nested={0x4, 0x6a}, @generic="e161c68e9ae961378bed41b424964510977dc557f0e46d5b2277b8accbe503dc2e6fbdbca7fd2a9a41ecfe11ad", @generic="d6230243f426eab22fe7d708da7b4d705213d1c0639ff15c5fb17ee716b8c8b16170dc56513d89b5e045b0aaeedd4ad4e16a3193951af5adb010c7cd478101d639bc37be5c0dd9be3b8a22b3e1ff", @nested={0x4, 0x8c}]}]}]}, 0x83c}, 0x1, 0x0, 0x0, 0x8004}, 0x2)
ioctl$auto_VHOST_GET_VRING_BASE2(r2, 0xc008af12, &(0x7f0000000040)={0x6, 0x1})
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
r7 = ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x77)
ioctl$auto_FBIOPUT_VSCREENINFO(r7, 0x4601, &(0x7f00000000c0)="f8a8dfa7b7b6456be8aa13c02af4a18c6c92c9b7864491b16720b7e2056f6b70fe888c807fa8cd4a4c4b483ebe4f1a683c18c605cce472fea26c6715d848060be70ecc6aabf7282468b15232830546a13cb226f887df1e15f0017037942f56ae58a0404c0764a87e4cc9f8e10fcdfe7e2b6dcf8cd76b47591da28a822ab300b494905f2f6319a0dfe6e15503b6dbac8d46d5dce32ff8f5f54f7b188ecb049b63bac5db5b91")

6.226445124s ago: executing program 0 (id=3600):
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
mkdir$auto(0x0, 0x8001)
mount$auto(0x0, 0x0, &(0x7f0000000080)='nfsd\x00', 0x7, 0x0)
getdents64$auto(0xffffffffffffffff, 0x0, 0x400)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, 0x0, 0x24000044)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8040)
ioctl$auto(r1, 0x2272, r0)
syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000c00), 0xffffffffffffffff)
sendmsg$auto_TCP_METRICS_CMD_DEL(0xffffffffffffffff, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x40)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, 0x0)
rt_sigqueueinfo$auto(0x0, 0xffff7b6f, 0x0)

5.874809096s ago: executing program 0 (id=3602):
r0 = waitid$auto(0x8, 0xffffffffffffffff, &(0x7f0000000100)={@siginfo_0_0={0x67600ce8, 0x8, 0x2987, @_sigfault={&(0x7f0000000340)="3d1c77772670ab26028de467d87a56789aa873d6fcbe5bff96e2aad818760c59ff021073fde3e4029f9e8563fb1fb3b6f9d498f68e8d44946e72cb1fe4e029fcc0b6327750a734ab96916162995d01f386a10a9f952806316c41cd4c155b63ea6a5e38d7a685984bc301aac0c9e6b0efcff82d9ad6b4e26d3d1ef425ad1d9ba8d3607d67c480b2a340ab0e", @_addr_lsb=0x1e82}}}, 0x3, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r1, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0)
r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
r4 = openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/free_buffer\x00', 0x20103, 0x0)
sendmmsg$auto(r3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0xfffffffffffffffd, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x7ff)
recvmmsg$auto(r2, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x2, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20008841)
msgctl$auto_IPC_SET(0x86fb, 0x1, &(0x7f0000000540)={{0x0, <r5=>0xffffffffffffffff, 0xee00, 0x1, 0x401, 0x9, 0xd}, &(0x7f00000001c0)=0x8, &(0x7f0000000280)=0x5, 0xb2e2, 0x32b13ebf, 0x7, 0x4, 0x5, 0x59d3, 0x8, 0x0, @raw=0x3, @raw=0x101})
newfstatat$auto(r1, &(0x7f0000000300)='./file0\x00', &(0x7f00000005c0)={0xa, 0xffffffffffffff80, 0xfffffffffffffffd, 0x1, 0xee00, <r6=>0x0, 0x0, 0x1ff, 0x7, 0x7a1, 0x6, 0x6, 0x8, 0x7254, 0x80000000, 0xff, 0x6}, 0xb754)
shmctl$auto_IPC_SET(0x0, 0x1, &(0x7f0000000880)={{0xfffffffa, r5, r6, 0x7ff, 0xaf, 0x1, 0x2000}, 0xb, 0x6, 0xc, 0x5, @inferred=r0, @raw=0x8000, 0x9, 0x0, &(0x7f0000000680)="d99648b1d6de698426e420cd3e81016e48588dcff574eb8a215350f81b12717fa3ee2696d655093b0e16505d31f343f00bc8ef8cc45eeaa8a566b4b4e46c1fb47e4e52ab535a9eb6570f79e00e1df327799ebf0b4f67ace4fc16f869f287ca03573a7d5a3569ec71b1a6f1327e124e3f14a5b680f1f4d3590376241055df4bed2551d243be4216be8dca2cca86772987d6513961ea8023053b473525042f707c45fb717a7d715ca12c31d9b2f706c5145247adf4d242539100b5c5c53b5880bf7936d629f0523e556287452f6330a3e14a5b", &(0x7f0000000780)="fb7441c578fe49da6d966be7d7d5070497bfc92f3338d6b4f7179589175c416ef96be1b04119d3047e7fa09607ebdd6d3d075f2c8178cd2bddb2469704206e4b6a5562b8cfbf6f59cb16eec35443f50a6c3cca7bff3ab9a34b0259271276ee5e23819ea3c49a5d0f1522465a3eeaecb76f2023df8c956b9537e5d19bc090a897b57f61a216d7391cee7d8b057693f633b32023427a71bddc1889205796284633a4f895314160ef0c9cc824c60b0918365caa4231f6279add458b4f4f5cdb76f59cf5e2061d6c67a795715b4359464b3becc608574b3f546e5c79107a1a8fc05778cafa0decfbbb8c8f"})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x2, 0x0)
r7 = syz_clone(0x4100000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x9, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r8 = waitid$auto_P_PGID(0x2, r7, &(0x7f0000000400)={@siginfo_0_0={0x10, 0x80, 0x10, @_sigchld={r7, 0xffffffffffffffff, 0x8, 0x5, 0x1}}}, 0x0, &(0x7f0000000480)={{0x388d, 0x401}, {0x800, 0x40}, 0x40000000, 0x400, 0x70, 0x7fff, 0xfffffffffffffffd, 0x8, 0x7fffffffffffffff, 0xe3f, 0xd, 0x7fff, 0x3, 0x8, 0x2, 0xe44})
socket(0x1a, 0x80000, 0x80000001)
pwrite64$auto(0xc8, &(0x7f00000011c0)='\vX\xb5n\x91\vI\x1eRN8\x99\x88\xca\xd9\xec\x1epJ\"ds\x1cJr\xde:\x00!\r>\x94\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\x15\x0e\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9\xb7\x9d\xb6r9\x02\x00\x00\x00\x00\x00\x00\xc3\xc3\xdbS\xdc\xfc\x19\xba\xab\xe4\x8b\xdeT3^\a\xb2\xf3}\t4\xa2^\xe4b?\xb2Q\x8d\x8c\x83\x8e\xfe\x8e\b\x93M\x9e3\xa5`hN\xe36\xc3\x99\xe7L\x12\xaar}\x90\x05>\xab\xc9\xb7^\xcc\r\xb9V\x10\xa5\x81\x96e\x80\'\xc6\x06', 0x10, 0x0)
prctl$auto(0x0, 0xfffffffffffffff8, r8, 0xfffffffffffffffe, 0x7fffffffffffffff)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
close_range$auto(r4, r3, 0x8)

5.131904679s ago: executing program 2 (id=3604):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty1\x00', 0xa0000, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800bffd, 0x800c000}, 0x1)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0xffff, 0x6, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_ptdump_curusr_fops_(0xffffffffffffff9c, &(0x7f00000000c0), 0x80, 0x0)
r2 = bpf$auto_BPF_LINK_CREATE(0x1c, &(0x7f0000000100)=@query={@target_fd=r1, 0x4, 0x0, 0x3, 0x4, @prog_cnt=0x8001, 0x0, 0x80, 0x8000, 0x40, 0x2}, 0x2)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_HW_TIMESTAMP(r2, &(0x7f0000000480)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000440)={0x0}, 0x1, 0x0, 0x0, 0x20048000}, 0x0)
read$auto_seq_oss_f_ops_seq_oss(r1, &(0x7f0000003dc0)=""/167, 0xa7)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
fcntl$auto_F_RDLCK(r0, 0x3, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x801, 0x100)
unshare$auto(0x40000080)

4.26653425s ago: executing program 1 (id=3609):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0)
r1 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64)
fchdir$auto(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_GET(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYRES16=r3, @ANYBLOB="e827bd7080fb00000000000002"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x20008000)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r1, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000440)={&(0x7f0000000340)={0xc8, r3, 0x8, 0x70bd26, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0xb2, 0x5, 0x0, 0x1, [@nested={0x10, 0x8f, 0x0, 0x1, [@nested={0x4, 0x54}, @nested={0x4, 0x67}, @nested={0x4, 0xb0}]}, @generic="6beb3a2dad431d5a382265d748d88ce990814e09be8acaa87d933e7d9bbb8d50e29c259436d9491ac25524e558f1f16a34dedfea2951a1451a834d35f01d577e9f9692f01fcedf080fd56e3769e40d66f046c8ed84cae29a75d7be2fcbf153b4ecf6b5b3ebdd60544de155096f3853c391328b2a73247bf91cd87410656db4790529941017b617c6f9b95480452ff62100d0688fb79691d56e976e194b59"]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x8000}, 0x4004080)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
r4 = socket(0x11, 0x3, 0x1)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
ioctl$auto(r5, 0x2, 0x9)
ioctl$auto(r5, 0x400c4d06, r5)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r4)
r6 = setfsuid$auto(0xee00)
r7 = setfsuid$auto(0xee01)
setresuid$auto(r6, r7, r6)
r8 = setfsgid$auto(0xee01)
setresgid$auto(r8, 0x0, 0x0)
fchown$auto(r0, r6, r8)
sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(r5, 0x0, 0x40000)
waitid$auto(0x1, r1, &(0x7f0000000040)={@_si_pad}, 0x1, &(0x7f00000000c0)={{0x6}, {0x3, 0x1}, 0xf8c9, 0xfffffffffffffff6, 0x2, 0x7, 0x8bb, 0x7, 0x3, 0x22b6e130, 0x0, 0xa, 0x1, 0x55, 0x4})
sendfile$auto(r0, r0, 0x0, 0x800400000000ef0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv6/neigh/team_slave_1/mcast_resolicit\x00', 0x228001, 0x0)

4.041599592s ago: executing program 1 (id=3610):
mmap$auto(0x0, 0x2020009, 0x3, 0xebd, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.4/usb5/interface_authorized_default\x00', 0x10b002, 0x0)
mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x28, 0x1, 0x0)
getsockopt$auto(r0, 0x28, 0x1, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
shutdown$auto(0x200000003, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net/net_prio.ifpriomap\x00', 0x10b142, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mbind$auto(0x1c0000, 0x800097, 0x1, 0x0, 0x3, 0x2)
open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x8, 0x10002, "0200000000000000"}, 0x6)

3.497292343s ago: executing program 1 (id=3611):
r0 = prctl$auto_PR_SYS_DISPATCH_OFF(0x327d, 0x0, 0x0, 0x6, 0x4)
r1 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/numa_maps\x00', 0x4000, 0x0)
ioctl$auto_VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000001c0)={0x4, r1})
capset$auto(&(0x7f0000000100)={0x20280525}, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video20\x00', 0x80000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/qat_adf_ctl/qat_adf_ctl/power/runtime_active_time\x00', 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
write$auto(0xffffffffffffffff, 0x0, 0x8000000000000001)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/auth.unix.ip/flush\x00', 0x40d81, 0x0)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000140), 0xcb00, 0x0)
getsockopt$auto_SO_MEMINFO(0xffffffffffffffff, 0x7, 0x37, &(0x7f0000000180)='\x00', &(0x7f00000001c0)=0x5)
unshare$auto(0x40000080)
r4 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0)
pread64$auto(r4, 0x0, 0x81, 0xd)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x20882, 0x0)
mlockall$auto(0x7)
setresuid$auto(0x8000000000000001, 0x1, 0x200)
mlockall$auto(0x7)
pselect6$auto(0x5, &(0x7f0000000400)={[0x8, 0x5, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0x3, 0xffffffff, 0x7fffffffffffffff, 0x0, 0x1000, 0x2, 0x8, 0x3ff]}, 0x0, 0x0, 0x0, 0x0)
mq_open$auto(&(0x7f0000000040)='/sys/devices/platform/dummy_hcd.4/usb5/5-0:1.0/usb5-port1/location\x00', 0x8001, 0x400, &(0x7f00000000c0)={0x200, 0x7f, 0x8, 0x4})
sendmsg$auto_TIPC_NL_NAME_TABLE_GET(r2, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="13f900df0ffc67b809f8ec8db96ca63a00", @ANYRES16=0x0, @ANYBLOB="00082bbd7000fddbdf2510000000"], 0x14}, 0x1, 0x0, 0x0, 0x4c001}, 0x0)

3.303531015s ago: executing program 0 (id=3613):
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x82800, 0x0)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
socket(0xa, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, 0x0, 0x80)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, 0x0, 0x20008800)
mbind$auto(0x0, 0x2091d2, 0x1, 0x0, 0x7, 0x2)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
ioctl$auto_SNDCTL_SEQ_GETOUTCOUNT(r1, 0x80045104, 0x0)
brk$auto(0x8)
fstat$auto(0xffffffffffffffff, 0x0)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00')
socket(0x2, 0xa, 0x1)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x0, 0x0)
ioctl$auto(0x1, 0x890b, 0x8)

3.084075968s ago: executing program 0 (id=3614):
waitid$auto(0x8, 0xffffffffffffffff, &(0x7f0000000100)={@siginfo_0_0={0x5, 0x98, 0x10, @_timer={0x0, 0x40002, @sival_int=0xa, 0x2}}}, 0x3, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$auto_VHOST_SET_BACKEND_FEATURES(r2, 0x4008af25, &(0x7f0000000000)=0x7)
mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000)
rseq$auto(&(0x7f0000000580)={0x5, 0x85, 0x9416, 0x1, 0x7, 0x6, "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"}, 0x6, 0x3, 0xff)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2c, 0x80003, 0x0)
unshare$auto(0x40000080)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, 0x0, 0x100000a3d9)
r4 = socket(0x2b, 0x1, 0x0)
ioctl$auto(0x3, 0x8905, 0x38)
r5 = socket(0x1d, 0x2, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
connect$auto(0x3, 0x0, 0x55)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(r5, 0x0, 0x5c8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
io_uring_setup$auto(0x1, 0x0)
close_range$auto(r1, r4, 0x8)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/mm/mempolicy/weighted_interleave/node0\x00', 0xa001, 0x0)

2.086172364s ago: executing program 3 (id=3618):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = syz_clone(0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r0, 0x306, 0x8000040006)
ptrace$auto(0x2, r0, 0x3, 0x1000000000fff)

1.998125358s ago: executing program 2 (id=3619):
r0 = waitid$auto(0x8, 0xffffffffffffffff, &(0x7f0000000100)={@siginfo_0_0={0x67600ce8, 0x8, 0x2987, @_sigfault={&(0x7f0000000340)="3d1c77772670ab26028de467d87a56789aa873d6fcbe5bff96e2aad818760c59ff021073fde3e4029f9e8563fb1fb3b6f9d498f68e8d44946e72cb1fe4e029fcc0b6327750a734ab96916162995d01f386a10a9f952806316c41cd4c155b63ea6a5e38d7a685984bc301aac0c9e6b0efcff82d9ad6b4e26d3d1ef425ad1d9ba8d3607d67c480b2a340ab0e", @_addr_lsb=0x1e82}}}, 0x3, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r1, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0)
r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
r4 = openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/free_buffer\x00', 0x20103, 0x0)
sendmmsg$auto(r3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0xfffffffffffffffd, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x7ff)
recvmmsg$auto(r2, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x2, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20008841)
msgctl$auto_IPC_SET(0x86fb, 0x1, &(0x7f0000000540)={{0x0, <r5=>0xffffffffffffffff, 0xee00, 0x1, 0x401, 0x9, 0xd}, &(0x7f00000001c0)=0x8, &(0x7f0000000280)=0x5, 0xb2e2, 0x32b13ebf, 0x7, 0x4, 0x5, 0x59d3, 0x8, 0x0, @raw=0x3, @raw=0x101})
newfstatat$auto(r1, &(0x7f0000000300)='./file0\x00', &(0x7f00000005c0)={0xa, 0xffffffffffffff80, 0xfffffffffffffffd, 0x1, 0xee00, <r6=>0x0, 0x0, 0x1ff, 0x7, 0x7a1, 0x6, 0x6, 0x8, 0x7254, 0x80000000, 0xff, 0x6}, 0xb754)
shmctl$auto_IPC_SET(0x0, 0x1, &(0x7f0000000880)={{0xfffffffa, r5, r6, 0x7ff, 0xaf, 0x1, 0x2000}, 0xb, 0x6, 0xc, 0x5, @inferred=r0, @raw=0x8000, 0x9, 0x0, &(0x7f0000000680)="d99648b1d6de698426e420cd3e81016e48588dcff574eb8a215350f81b12717fa3ee2696d655093b0e16505d31f343f00bc8ef8cc45eeaa8a566b4b4e46c1fb47e4e52ab535a9eb6570f79e00e1df327799ebf0b4f67ace4fc16f869f287ca03573a7d5a3569ec71b1a6f1327e124e3f14a5b680f1f4d3590376241055df4bed2551d243be4216be8dca2cca86772987d6513961ea8023053b473525042f707c45fb717a7d715ca12c31d9b2f706c5145247adf4d242539100b5c5c53b5880bf7936d629f0523e556287452f6330a3e14a5b", &(0x7f0000000780)="fb7441c578fe49da6d966be7d7d5070497bfc92f3338d6b4f7179589175c416ef96be1b04119d3047e7fa09607ebdd6d3d075f2c8178cd2bddb2469704206e4b6a5562b8cfbf6f59cb16eec35443f50a6c3cca7bff3ab9a34b0259271276ee5e23819ea3c49a5d0f1522465a3eeaecb76f2023df8c956b9537e5d19bc090a897b57f61a216d7391cee7d8b057693f633b32023427a71bddc1889205796284633a4f895314160ef0c9cc824c60b0918365caa4231f6279add458b4f4f5cdb76f59cf5e2061d6c67a795715b4359464b3becc608574b3f546e5c79107a1a8fc05778cafa0decfbbb8c8f"})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x2, 0x0)
r7 = syz_clone(0x4100000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x9, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r8 = waitid$auto_P_PGID(0x2, r7, &(0x7f0000000400)={@siginfo_0_0={0x10, 0x80, 0x10, @_sigchld={r7, 0xffffffffffffffff, 0x8, 0x5, 0x1}}}, 0x0, &(0x7f0000000480)={{0x388d, 0x401}, {0x800, 0x40}, 0x40000000, 0x400, 0x70, 0x7fff, 0xfffffffffffffffd, 0x8, 0x7fffffffffffffff, 0xe3f, 0xd, 0x7fff, 0x3, 0x8, 0x2, 0xe44})
socket(0x1a, 0x80000, 0x80000001)
pwrite64$auto(0xc8, &(0x7f00000011c0)='\vX\xb5n\x91\vI\x1eRN8\x99\x88\xca\xd9\xec\x1epJ\"ds\x1cJr\xde:\x00!\r>\x94\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\x15\x0e\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9\xb7\x9d\xb6r9\x02\x00\x00\x00\x00\x00\x00\xc3\xc3\xdbS\xdc\xfc\x19\xba\xab\xe4\x8b\xdeT3^\a\xb2\xf3}\t4\xa2^\xe4b?\xb2Q\x8d\x8c\x83\x8e\xfe\x8e\b\x93M\x9e3\xa5`hN\xe36\xc3\x99\xe7L\x12\xaar}\x90\x05>\xab\xc9\xb7^\xcc\r\xb9V\x10\xa5\x81\x96e\x80\'\xc6\x06', 0x10, 0x0)
prctl$auto(0x0, 0xfffffffffffffff8, r8, 0xfffffffffffffffe, 0x7fffffffffffffff)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
close_range$auto(r4, r3, 0x8)

1.924184776s ago: executing program 1 (id=3620):
r0 = socket(0x2a, 0x2, 0x1)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
connect$auto(r0, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0xfffffffe}, 0x55) (async)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
memfd_create$auto(0x0, 0xe) (async, rerun: 32)
r1 = socket(0x2b, 0x1, 0x1) (rerun: 32)
r2 = getsockopt$auto(r1, 0x0, 0x80, 0x0, 0x0)
setsockopt$auto(0x3, 0x6, 0xc, 0x0, 0xfb3)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, 0x0, 0x24084005) (async)
syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff)
ioctl$auto_USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, 0x0) (async)
io_uring_setup$auto(0x9, 0x0)
sendfile$auto(r2, 0x3, 0x0, 0x40000000c07)
ioctl$auto_FS_IOC_UNRESVSP64(r0, 0x890b, 0xffffffffffffffff) (async)
r3 = fcntl$auto(r0, 0x2007b564, 0x0) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (rerun: 32)
io_uring_setup$auto(0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="010b0bbd7000fcdbdf2505000000"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4000084) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/loop14/queue/stable_writes\x00', 0x182b02, 0x0) (async, rerun: 32)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (rerun: 32)
fanotify_init$auto(0x5, 0x2000000000002) (async)
socket(0x8, 0x801, 0x106) (async)
timer_create$auto(0x200, 0x0, &(0x7f0000000480)=0x3) (async, rerun: 32)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001040)='/sys/devices/virtual/net/teql0/statistics/rx_compressed\x00', 0xc2700, 0x0) (async, rerun: 32)
ioctl$auto_FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r3, 0xc0406619, &(0x7f0000000000)={{0x6, 0x0, @descriptor="e7e0969e8eec5261"}, 0x3})
socket(0x26, 0x80805, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)

1.824405175s ago: executing program 3 (id=3621):
r0 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
shutdown$auto(0x200000003, 0x2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x400000eb1, 0x401, 0x8000)
listen$auto(0x3, 0x81)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0xff80, 0xb}, 0xfff}, 0x5, 0x311)

1.625996811s ago: executing program 3 (id=3622):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS2\x00', 0x800, 0x0)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r0, 0x0)
socket(0x10, 0x2, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r2, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r2)
read$auto(r2, &(0x7f0000000340)='v\xdb<\x02\x87?\xd3R\"I\xfb\x15\xd3\x81;\xf4\xeb\a]\xd5\xa2\x91\x10\xeeA\x96y\x1f\xd6<\x8a\xeb\x8a\xbc \xce\x91}\xe2\xd8tg1\xcb\x1b\x9f\xad\x89\xb6\x9b\x04\\\xeb\x0fQ\xdb\xbb\xbc\x19\x8a\x1dI\x9ea\xdd;B%=\xd7[G\x1fJU\xb4ic\xa5B\\M\xdf\v\r\xc3\xfc\xbaa\x0f\xb0\x9f\xb3e\xe5\xd6\\\xd9\x98\xc5i\x97\f\xad\xf0\xae\b\xbf\xda\x9d\x96w3J\xec\xe4\x9a\xb6\xa5\x93\xddu\xeb\xfbq\x14Y\x01\x04\x00\x00\x00\x00\x00\x00\x99j\x91\xc7\xb4(\x03%\x06\xac#\x0f$\xffo\x81a\xa0\xdc!\x14xz\xa2O\xa4<', 0x91e2)
close_range$auto(r2, 0x8, 0x20000000)
socket(0x10, 0x2, 0xc)
mmap$auto(0x0, 0x20009, 0xde, 0xeb1, 0x40000000000a5, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/fs/ocfs2/cluster_stack\x00', 0x88282, 0x0)
socketpair$auto(0x40, 0x1, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/disk\x00', 0x100, 0x0)
mmap$auto(0x0, 0x4000f, 0x7, 0x9b72, 0x7, 0x28000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/thermal/cooling_device1/cur_state\x00', 0xc2082, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/ram0/queue/dma_alignment\x00', 0x8800, 0x0)
read$auto(r4, 0x0, 0x1)
write$auto(r3, 0x0, 0x80000009)
fanotify_init$auto(0xa44f, 0x1ffe)
socket(0x22, 0xa, 0x0)
r5 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r5, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
mmap$auto(0xfffffffffffffffe, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0xffffffffffffffff, r3, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/kernel/debug/x86/tlb_single_page_flush_ceiling\x00', 0x22001, 0x0)

1.270069455s ago: executing program 3 (id=3623):
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x82800, 0x0)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
socket(0xa, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, 0x0, 0x80)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, 0x0, 0x20008800)
mbind$auto(0x0, 0x2091d2, 0x1, 0x0, 0x7, 0x2)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
ioctl$auto_SNDCTL_SEQ_GETOUTCOUNT(r1, 0x80045104, 0x0)
brk$auto(0x8)
fstat$auto(0xffffffffffffffff, 0x0)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00')
socket(0x2, 0xa, 0x1)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x0, 0x0)
ioctl$auto(0x1, 0x890b, 0x8)

1.038137731s ago: executing program 0 (id=3624):
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000080)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x29, 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xffffbff9, 0x10, 0x0)
ioctl$auto(r0, 0x89e2, 0x24)

1.037734909s ago: executing program 1 (id=3625):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sysfs$auto(0x3, 0x2, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
timerfd_create$auto(0x9, 0x0)
acct$auto(&(0x7f0000001580)='/dev/binderfs/binder1\x00')
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
ioctl$auto(0x3, 0x40085400, 0x5)
syz_clone(0x8000, &(0x7f0000000000)="55f177d69f0cd5d850d25fb117d46358231b3c0ce73204a459165893b2757bf75f30d797033a3e58b1306fe50bf63d6a30aad69cb09e60eccb2ee461794281d21e36f3aa176cf2b1a482bd23fb1c1f5912ac3279f203773e4c87a12ef362d32b04633b5d7809d0879f7897372926604927bd0bc71ae419828b147f0dafa3c01092f80c2db728f825d1f77af69e2590fc128f7acb706a3d8f955b0f0da4d9ce8f3e9a9ccc4a88ff81a22f185101", 0xad, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)="2074ca")

941.193599ms ago: executing program 3 (id=3626):
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/trigger\x00', 0x880, 0x0)
r0 = socket(0x10, 0x2, 0x0)
r1 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x9, 0xd, 0x2, 0x6, 0x7, 0x8, <r2=>0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x40, 0x8, 0x100000000}})
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mq_timedreceive$auto(r1, &(0x7f0000000380)='!\x00', 0x0, &(0x7f00000003c0)=0x3ff, &(0x7f0000000400)={0x8, 0x10000})
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4)
socket(0x2, 0x801, 0x84)
connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55)
write$auto_force_suspend_fops_hci_vhci(r2, &(0x7f0000000440)="f15e5a0aeb949cc1784a33a1e1f0163f1207b01724b2a91db2032415167577c95a4df23eb5910d0173ed791228bbb79eda8b480f52469d80d97a41f8e55e2a11f929e0c32e301e87d0c04ad49d8b579acfa078566638c12a8af6fa5d9f0b47efdaf182f8c247039e1df0c255d746b9ccc3f123008374a7c3ff28cd97cce7d70fafdba3c067f19f0bc0e70a7688741c817d580bf2ca44a37ff4419190c534b5f8ee1526be0b7ad24666f498ab3fcce7f17271ae87e2eee38c148d1892c0f165", 0xbf)
listen$auto(0x3, 0x83)
accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd)
mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000)
ftruncate$auto(0x3, 0x0)
open(0x0, 0x4040, 0x75)
socket(0x11, 0x80003, 0x300)
r3 = syz_genetlink_get_family_id$auto_vdpa(&(0x7f0000000140), r1)
sendmsg$auto_VDPA_CMD_MGMTDEV_GET(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)={0x12c, r3, 0x40c, 0x70bd28, 0x25dfdbfd, {}, [@VDPA_ATTR_DEV_FEATURES={0xc, 0x14, 0x5}, @VDPA_ATTR_DEV_NET_CFG_MACADDR={0xed, 0xa, "926cfc9a2e00a02ce4be1dfe22921e6bd9966cc081f95e289b9b71def2ee62779a54dabeb5a8f86e0aad7a9f540697e2315773dda05463541a3f300f610e331274853c8c12e7c816b110c0a6262cbccaa0f6b454b2282c79f4ba7933c9225842ab0745653ef14540aff048e6acfc97a346a0b880ba3fd4fabe8c9e744286065d3571ce6165a0356261b6a897dc5061ccb5d8700b73e3135b10efb7a1d80b20a54c135917b9a46825924b89b0c38b7b7c7ccb039cd8a3865aca7f9ac377c494f57acd2ec40eef41162564b81a04bea41c7ec3e2ba62c5cb1571d921b675f02d295093676d2749a9c27e"}, @VDPA_ATTR_DEV_NET_CFG_MTU={0x6, 0xd, 0x8001}, @VDPA_ATTR_DEV_NAME={0x14, 0x4, 'vlan1\x00'}]}, 0x12c}, 0x1, 0x0, 0x0, 0x4800}, 0x800)
socket(0xa, 0x2, 0x3a)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
mkdir$auto(0x0, 0x8001)
mount$auto(0x0, 0x0, &(0x7f0000000080)='nfsd\x00', 0x7, 0x0)
getdents64$auto(0xffffffffffffffff, 0x0, 0x400)

513.877081ms ago: executing program 3 (id=3627):
sendmsg$auto_NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f0000001140)={&(0x7f00000010c0), 0xc, &(0x7f0000001180)={&(0x7f0000001200)={0xf4, 0x0, 0x300, 0x70bd2f, 0x25dfdbfe, {}, [@NL80211_ATTR_STA_EXT_CAPABILITY={0xde, 0xac, "db3ebfc3fd984353306deabfc3dec864ddb129119ec7076e8ac8827be0e721f346fd305730a02332ad5d74f58115cf574edbc970cd33ba2e45213eee5a832b297df410df12f4153cc85abf6e5b0109a6a88143cfb8deb0dba45f7208ec5f0e7d5f56c06ed403c6c436ef232d0748c9e005edb44231ac91139d3ea3a9afe2142af0291bd4b65555462864825687669e2a90784b6cb9e40c0677179e62aad36b440ce2f038e027630a53bfb18454cc8c690f47edede3227c56e2366435e8b4cca3a427b4fe8f53efc01c8a570925521a8f5e29252a72a819048f51"}]}, 0xf4}, 0x1, 0x0, 0x0, 0x4000004}, 0x50)
mmap$auto(0x0, 0x402000c, 0xdf, 0x12, 0xffffffffffffffff, 0x8000)
r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
close_range$auto(0x2, r0, 0x2)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r1, &(0x7f0000000000)='//\xf2\x00', 0x80000000)
adjtimex$auto(0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D1\x00', 0x581402, 0x0)
r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000080), 0xc0402, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0x1000007, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x5, 0x3, 0x14, r2, 0x8000)
madvise$auto(0x0, 0x2003f2, 0x15)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, r3, [], {0x28b, 0x40000006, 0x10001, 0x29f, 0x100, 0x6, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
mmap$auto(0x0, 0x8, 0xfffffffffffffe01, 0x8011, 0x3, 0x8000)
r5 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/numa_maps\x00', 0x2900, 0x0)
read$auto_proc_sessionid_operations_base(r5, &(0x7f00000000c0)=""/4096, 0x1000)
write$auto(r4, &(0x7f00000003c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4G\x0f\xed\xc0D\xd6\xaf%\xa5\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xccT\fZq', 0x100000a3da)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x0)
open(&(0x7f0000000040)='./cgroup\x00', 0x80, 0xb5d1af1605322de0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
close_range$auto(0x2, 0x8, 0x0)

187.926786ms ago: executing program 2 (id=3628):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x80803, 0x6)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x1b)
sendmmsg$auto(0x3, 0x0, 0x9a5, 0x2)
write$auto(0x3, 0x0, 0xffd8)

9.349742ms ago: executing program 1 (id=3629):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/Fixed MDIO bus.0/mdio_bus/fixed-0/statistics/transfers_9\x00', 0x854180, 0x0)
mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x4)
socket(0x10, 0x3, 0xa)
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x48a22, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x8e051, r0, 0x0)
r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x364f9cefc8a0a83, 0x0)
ioctl$auto_tracing_buffers_fops_trace(r1, 0x5220, 0x0)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/security/tomoyo/profile\x00', 0x400000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r3, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r4)
ioctl$auto_KVM_GET_MSRS(r3, 0x4008ae89, &(0x7f0000000040)={0x26, 0x0, [{0xe1, 0xa, 0x2}]})
read$auto(r2, 0x0, 0xb4d3)
capget$auto(&(0x7f00000000c0)={0x6, <r5=>0x0}, &(0x7f0000000100)={0x7df, 0x6, 0x57})
prctl$auto_PR_SYS_DISPATCH_ON(0x4, 0x1, r5, 0x4, 0xfffffffffffffff7)
write$auto(0x3, 0x0, 0xffd8)
r6 = socket(0x2, 0x1, 0x106)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0x0)
setsockopt$auto(r6, 0x1, 0x12, &(0x7f0000000400)='\'\ak\xb6\xc8\vFx\xed\xd6\xf8\x00\x10\xa4#\x92`\xdb\xafL\x0f\xfbUV\xa6KH]Cv\xbf\xf2a\v', 0xeb66)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/dev_snmp6/netdevsim2\x00', 0x1c9802, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/pm_print_times\x00', 0xb8ef36a2dfc9d139, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)

0s ago: executing program 0 (id=3630):
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x1000000000000)
ioctl$auto(0x3, 0xae41, r1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_KVM_GET_MSRS(r0, 0x4068aea3, &(0x7f0000000080)={0xa3})

kernel console output (not intermixed with test programs):

912.202206][ T5828] total_swap 630784
[  912.206117][ T5828] total_swapcached 372736
[  912.210434][ T5828] total_pgpgin 635784
[  912.289650][ T5828] total_pgpgout 636204
[  912.301301][ T5828] total_pgfault 623171
[  912.305376][ T5828] total_pgmajfault 11774
[  912.309648][ T5828] total_inactive_anon 4096
[  912.405016][ T5828] total_active_anon 368640
[  912.409473][ T5828] total_inactive_file 0
[  912.440786][T19489] FAULT_INJECTION: forcing a failure.
[  912.440786][T19489] name failslab, interval 1, probability 393216, space 0, times 0
[  912.460404][ T5828] total_active_file 0
[  912.490738][ T5828] total_unevictable 0
[  912.494853][ T5828] anon_cost 431
[  912.498290][ T5828] file_cost 0
[  912.529999][T19489] CPU: 0 UID: 0 PID: 19489 Comm: syz.0.2962 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  912.530029][T19489] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  912.530035][T19489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  912.530046][T19489] Call Trace:
[  912.530052][T19489]  <TASK>
[  912.530059][T19489]  dump_stack_lvl+0x100/0x190
[  912.530082][T19489]  should_fail_ex.cold+0x5/0xa
[  912.530109][T19489]  should_failslab+0xc2/0x120
[  912.530131][T19489]  kmem_cache_alloc_lru_noprof+0x8e/0x7d0
[  912.530151][T19489]  ? stack_trace_save+0x8e/0xc0
[  912.530168][T19489]  ? __d_alloc+0x34/0xa80
[  912.530189][T19489]  ? __d_alloc+0x34/0xa80
[  912.530206][T19489]  __d_alloc+0x34/0xa80
[  912.530227][T19489]  d_alloc_parallel+0x111/0x14e0
[  912.530246][T19489]  ? find_held_lock+0x2b/0x80
[  912.530262][T19489]  ? __d_lookup+0x25c/0x4a0
[  912.530275][T19489]  ? __pfx_d_alloc_parallel+0x10/0x10
[  912.530300][T19489]  ? __d_lookup+0x266/0x4a0
[  912.530318][T19489]  lookup_open.isra.0+0x633/0x1890
[  912.530338][T19489]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  912.530364][T19489]  ? lookup_fast+0x2da/0x600
[  912.530380][T19489]  path_openat+0xa9b/0x3120
[  912.530404][T19489]  ? __pfx_path_openat+0x10/0x10
[  912.530428][T19489]  do_filp_open+0x1f7/0x420
[  912.530447][T19489]  ? __pfx_do_filp_open+0x10/0x10
[  912.530478][T19489]  ? _raw_spin_unlock+0x28/0x50
[  912.530493][T19489]  ? alloc_fd+0x476/0x790
[  912.530515][T19489]  do_sys_openat2+0x12e/0x220
[  912.530539][T19489]  ? __pfx_do_sys_openat2+0x10/0x10
[  912.530568][T19489]  __x64_sys_openat+0x12d/0x210
[  912.530592][T19489]  ? __pfx___x64_sys_openat+0x10/0x10
[  912.530613][T19489]  ? xfd_validate_state+0x129/0x190
[  912.530642][T19489]  do_syscall_64+0xc9/0xf80
[  912.530662][T19489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  912.530678][T19489] RIP: 0033:0x7f882d79aeb9
[  912.530691][T19489] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  912.530706][T19489] RSP: 002b:00007f882e62e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  912.530721][T19489] RAX: ffffffffffffffda RBX: 00007f882da15fa0 RCX: 00007f882d79aeb9
[  912.530732][T19489] RDX: 0000000000109500 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  912.530741][T19489] RBP: 00007f882d808c1f R08: 0000000000000000 R09: 0000000000000000
[  912.530750][T19489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  912.530759][T19489] R13: 00007f882da16038 R14: 00007f882da15fa0 R15: 00007fff73092628
[  912.530779][T19489]  </TASK>
[  912.795256][ T5828] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.2952,pid=19448,uid=0
[  912.810579][ T5828] Memory cgroup out of memory: OOM victim 19448 (syz.2.2952) is already exiting. Skip killing the task
[  913.091989][T19496] scsi_dev_info_list_add_str: bad dev info string '�' '' ''
[  913.230891][T19499] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input143
[  913.695656][T19507] vivid-007: =================  START STATUS  =================
[  913.734469][T19507] vivid-007: Generate PTS: true
[  913.764568][T19507] vivid-007: Generate SCR: true
[  913.769452][T19507] tpg source WxH: 320x240 (Y'CbCr)
[  913.838746][T19507] tpg field: 1
[  913.842134][T19507] tpg crop: (0,0)/320x240
[  913.883187][T19507] tpg compose: (0,0)/320x240
[  913.918742][T19507] tpg colorspace: 8
[  913.936763][T19507] tpg transfer function: 0/0
[  913.941376][T19507] tpg Y'CbCr encoding: 0/0
[  914.025351][T19507] tpg quantization: 0/0
[  914.040116][T19515] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[  914.050539][T19507] tpg RGB range: 0/2
[  914.072886][T19507] vivid-007: ==================  END STATUS  ==================
[  915.264805][T19543] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input145
[  916.242091][T19511] Process accounting resumed
[  916.618112][T19553] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  918.201668][T19560] vivid-007: =================  START STATUS  =================
[  918.231523][T19560] vivid-007: Generate PTS: true
[  918.250984][T19560] vivid-007: Generate SCR: true
[  918.255894][T19560] tpg source WxH: 320x240 (Y'CbCr)
[  918.276742][T19560] tpg field: 1
[  918.301680][T19560] tpg crop: (0,0)/320x240
[  918.318395][T19560] tpg compose: (0,0)/320x240
[  918.338338][T19560] tpg colorspace: 8
[  918.346368][T19560] tpg transfer function: 0/0
[  918.405533][T19560] tpg Y'CbCr encoding: 0/0
[  918.426337][T19560] tpg quantization: 0/0
[  918.442751][T19560] tpg RGB range: 0/2
[  918.487801][T19560] vivid-007: ==================  END STATUS  ==================
[  918.638468][T19571] FAULT_INJECTION: forcing a failure.
[  918.638468][T19571] name failslab, interval 1, probability 393216, space 0, times 0
[  918.694120][T19571] CPU: 0 UID: 0 PID: 19571 Comm: syz.0.2982 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  918.694163][T19571] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  918.694169][T19571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  918.694179][T19571] Call Trace:
[  918.694184][T19571]  <TASK>
[  918.694190][T19571]  dump_stack_lvl+0x100/0x190
[  918.694214][T19571]  should_fail_ex.cold+0x5/0xa
[  918.694239][T19571]  should_failslab+0xc2/0x120
[  918.694261][T19571]  __kmalloc_cache_noprof+0x80/0x810
[  918.694277][T19571]  ? find_held_lock+0x2b/0x80
[  918.694292][T19571]  ? alloc_pipe_info+0x10e/0x590
[  918.694309][T19571]  ? aa_file_perm+0x268/0x1540
[  918.694327][T19571]  ? alloc_pipe_info+0x10e/0x590
[  918.694345][T19571]  alloc_pipe_info+0x10e/0x590
[  918.694365][T19571]  splice_direct_to_actor+0x78f/0xa30
[  918.694384][T19571]  ? __pfx_direct_splice_actor+0x10/0x10
[  918.694401][T19571]  ? __pfx_aa_file_perm+0x10/0x10
[  918.694418][T19571]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  918.694440][T19571]  do_splice_direct+0x174/0x240
[  918.694457][T19571]  ? __pfx_do_splice_direct+0x10/0x10
[  918.694473][T19571]  ? common_file_perm+0x1ab/0x4f0
[  918.694495][T19571]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  918.694515][T19571]  ? rw_verify_area+0xce/0x6d0
[  918.694531][T19571]  do_sendfile+0xadc/0xe20
[  918.694551][T19571]  ? __pfx_do_sendfile+0x10/0x10
[  918.694567][T19571]  ? __fget_files+0x21f/0x3d0
[  918.694588][T19571]  __x64_sys_sendfile64+0x1d8/0x220
[  918.694607][T19571]  ? ksys_write+0x1ac/0x250
[  918.694624][T19571]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  918.694649][T19571]  do_syscall_64+0xc9/0xf80
[  918.694669][T19571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  918.694685][T19571] RIP: 0033:0x7f882d79aeb9
[  918.694698][T19571] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  918.694712][T19571] RSP: 002b:00007f882e62e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  918.694728][T19571] RAX: ffffffffffffffda RBX: 00007f882da15fa0 RCX: 00007f882d79aeb9
[  918.694737][T19571] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  918.694746][T19571] RBP: 00007f882e62e090 R08: 0000000000000000 R09: 0000000000000000
[  918.694755][T19571] R10: 0000000002400000 R11: 0000000000000246 R12: 0000000000000001
[  918.694763][T19571] R13: 00007f882da16038 R14: 00007f882da15fa0 R15: 00007fff73092628
[  918.694782][T19571]  </TASK>
[  920.535648][T19592] FAULT_INJECTION: forcing a failure.
[  920.535648][T19592] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  920.604375][T19592] CPU: 0 UID: 0 PID: 19592 Comm: syz.3.2989 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  920.604403][T19592] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  920.604408][T19592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  920.604418][T19592] Call Trace:
[  920.604424][T19592]  <TASK>
[  920.604430][T19592]  dump_stack_lvl+0x100/0x190
[  920.604453][T19592]  should_fail_ex.cold+0x5/0xa
[  920.604478][T19592]  _copy_from_user+0x2e/0xd0
[  920.604502][T19592]  gsmld_ioctl+0xc61/0x15c0
[  920.604522][T19592]  ? lockdep_hardirqs_on+0x78/0x100
[  920.604542][T19592]  ? __pfx_gsmld_ioctl+0x10/0x10
[  920.604560][T19592]  ? tomoyo_path_number_perm+0x28f/0x580
[  920.604592][T19592]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  920.604609][T19592]  ? __pfx_pty_unix98_ioctl+0x10/0x10
[  920.604630][T19592]  ? __pfx_gsmld_ioctl+0x10/0x10
[  920.604645][T19592]  tty_ioctl+0x1204/0x1690
[  920.604668][T19592]  ? __pfx_tty_ioctl+0x10/0x10
[  920.604695][T19592]  ? find_held_lock+0x2b/0x80
[  920.604710][T19592]  ? hook_file_ioctl_common+0x146/0x410
[  920.604736][T19592]  ? __fget_files+0x21f/0x3d0
[  920.604756][T19592]  ? __pfx_tty_ioctl+0x10/0x10
[  920.604778][T19592]  __x64_sys_ioctl+0x18e/0x210
[  920.604804][T19592]  do_syscall_64+0xc9/0xf80
[  920.604824][T19592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  920.604839][T19592] RIP: 0033:0x7fedbdb9aeb9
[  920.604852][T19592] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  920.604866][T19592] RSP: 002b:00007fedbea85028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  920.604882][T19592] RAX: ffffffffffffffda RBX: 00007fedbde15fa0 RCX: 00007fedbdb9aeb9
[  920.604892][T19592] RDX: 0000000000000000 RSI: 00000000c0384707 RDI: 0000000000000015
[  920.604901][T19592] RBP: 00007fedbea85090 R08: 0000000000000000 R09: 0000000000000000
[  920.604910][T19592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  920.604919][T19592] R13: 00007fedbde16038 R14: 00007fedbde15fa0 R15: 00007ffd343925f8
[  920.604939][T19592]  </TASK>
[  920.926126][T19578] syz.2.2985 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  920.937646][T19578] CPU: 0 UID: 0 PID: 19578 Comm: syz.2.2985 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  920.937672][T19578] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  920.937678][T19578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  920.937687][T19578] Call Trace:
[  920.937693][T19578]  <TASK>
[  920.937699][T19578]  dump_stack_lvl+0x100/0x190
[  920.937723][T19578]  dump_header+0xfb/0x606
[  920.937739][T19578]  oom_kill_process.cold+0xd/0x321
[  920.937756][T19578]  out_of_memory+0x340/0x14f0
[  920.937780][T19578]  ? __pfx_out_of_memory+0x10/0x10
[  920.937804][T19578]  mem_cgroup_out_of_memory+0xc6/0x130
[  920.937820][T19578]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  920.937835][T19578]  ? find_held_lock+0x2b/0x80
[  920.937854][T19578]  ? do_raw_spin_unlock+0x145/0x1e0
[  920.937877][T19578]  ? _raw_spin_unlock+0x28/0x50
[  920.937895][T19578]  try_charge_memcg+0x652/0xc90
[  920.937926][T19578]  ? __pfx_try_charge_memcg+0x10/0x10
[  920.937951][T19578]  ? find_held_lock+0x2b/0x80
[  920.937965][T19578]  ? rcu_read_unlock+0x17/0x60
[  920.937986][T19578]  ? rcu_read_unlock+0x17/0x60
[  920.938010][T19578]  charge_memcg+0xa6/0x280
[  920.938029][T19578]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  920.938055][T19578]  __read_swap_cache_async+0x449/0x610
[  920.938075][T19578]  ? __pfx___read_swap_cache_async+0x10/0x10
[  920.938095][T19578]  ? __lock_acquire+0x4a5/0x2630
[  920.938115][T19578]  ? __xa_erase+0xec/0x150
[  920.938134][T19578]  ? __pfx___xa_erase+0x10/0x10
[  920.938155][T19578]  swap_cluster_readahead+0x414/0x770
[  920.938176][T19578]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  920.938194][T19578]  ? __lock_acquire+0x4a5/0x2630
[  920.938214][T19578]  ? _raw_spin_unlock+0x28/0x50
[  920.938228][T19578]  ? move_cluster+0x1f7/0x570
[  920.938252][T19578]  ? get_vma_policy+0x23f/0x3b0
[  920.938277][T19578]  swapin_readahead+0x14b/0x12e0
[  920.938299][T19578]  ? __pfx_swapin_readahead+0x10/0x10
[  920.938316][T19578]  ? find_held_lock+0x2b/0x80
[  920.938331][T19578]  ? swap_cache_get_folio+0x272/0x920
[  920.938349][T19578]  ? swap_cache_get_folio+0x272/0x920
[  920.938364][T19578]  ? swap_cache_get_folio+0x1f/0x920
[  920.938377][T19578]  ? swap_cache_get_folio+0x2a2/0x920
[  920.938394][T19578]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  920.938409][T19578]  ? __pfx_get_swap_device+0x10/0x10
[  920.938433][T19578]  ? do_swap_page+0x9ba/0x6810
[  920.938447][T19578]  do_swap_page+0x9ba/0x6810
[  920.938465][T19578]  ? __lock_acquire+0x4a5/0x2630
[  920.938489][T19578]  ? __pfx_do_swap_page+0x10/0x10
[  920.938507][T19578]  ? __pfx_default_wake_function+0x10/0x10
[  920.938525][T19578]  ? rcu_is_watching+0x12/0xc0
[  920.938540][T19578]  ? __free_object+0x2a8/0x400
[  920.938559][T19578]  ? rcu_is_watching+0x12/0xc0
[  920.938574][T19578]  ? ___pte_offset_map+0x179/0x310
[  920.938597][T19578]  __handle_mm_fault+0x18b9/0x2b50
[  920.938617][T19578]  ? reacquire_held_locks+0xce/0x1e0
[  920.938637][T19578]  ? __pfx___handle_mm_fault+0x10/0x10
[  920.938657][T19578]  ? lock_vma_under_rcu+0x17c/0x5a0
[  920.938684][T19578]  handle_mm_fault+0x36d/0xa20
[  920.938704][T19578]  do_user_addr_fault+0x5a3/0x12f0
[  920.938726][T19578]  exc_page_fault+0x6f/0xd0
[  920.938744][T19578]  asm_exc_page_fault+0x26/0x30
[  920.938758][T19578] RIP: 0033:0x7f9760268910
[  920.938772][T19578] Code: c4 4c 0f 42 e0 83 3d ba f4 3a 00 00 0f 8e d9 fd ff ff e8 b3 88 fe ff 49 39 c4 0f 82 82 00 00 00 66 2e 0f 1f 84 00 00 00 00 00 <69> 3d 7e cd ed 00 e8 03 00 00 48 8d 1d 7f d6 3a 00 e8 ca 30 13 00
[  920.938786][T19578] RSP: 002b:00007ffd4c948450 EFLAGS: 00010216
[  920.938799][T19578] RAX: 00000000000e1dbe RBX: 00007f9760617da0 RCX: 00000000000e1d48
[  920.938808][T19578] RDX: 0000000000000076 RSI: 00007ffd4c948430 RDI: 0000000000000001
[  920.938818][T19578] RBP: 00007f9760617da0 R08: 00007f9761217010 R09: 0000000000000000
[  920.938827][T19578] R10: 00007f9761217000 R11: 000000000002b014 R12: 00000000000e1dec
[  920.938836][T19578] R13: 00007f976061618c R14: 00000000000e1dba R15: 00007f9760616180
[  920.938856][T19578]  </TASK>
[  920.938862][T19578] memory: usage 3072kB, limit 3072kB, failcnt 255324
[  921.880428][T19611] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  922.309744][T19618] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2993'.
[  922.323907][T19578] memory+swap: usage 3668kB, limit 9007199254740988kB, failcnt 0
[  922.346792][T19578] kmem: usage 2692kB, limit 9007199254740988kB, failcnt 0
[  922.378821][T19578] Memory cgroup stats for /syz2:
[  922.378927][T19578] cache 0
[  922.412580][T19578] rss 0
[  922.424843][T19578] rss_huge 0
[  922.448667][T19578] shmem 0
[  922.455629][T19578] mapped_file 0
[  922.477867][T19578] dirty 0
[  922.491103][T19578] writeback 0
[  922.494405][T19578] workingset_refault_anon 28717
[  922.510754][T19578] workingset_refault_file 49155
[  922.515638][T19578] swap 610304
[  922.535007][T19578] swapcached 389120
[  922.549249][T19578] pgpgin 638382
[  922.572940][T19578] pgpgout 638798
[  922.606481][T19578] pgfault 626659
[  922.618885][T19578] pgmajfault 11847
[  922.645758][T19578] inactive_anon 147456
[  922.678778][T19578] active_anon 241664
[  922.682687][T19578] inactive_file 0
[  922.686301][T19578] active_file 0
[  922.719407][T19578] unevictable 0
[  922.722884][T19578] hierarchical_memory_limit 3145728
[  922.751165][T19578] hierarchical_memsw_limit 9223372036854771712
[  922.796272][T19578] total_cache 0
[  922.802576][T19578] total_rss 0
[  922.805867][T19578] total_rss_huge 0
[  922.828573][T19578] total_shmem 0
[  922.832052][T19578] total_mapped_file 0
[  922.866756][T19578] total_dirty 0
[  922.890526][T19578] total_writeback 0
[  922.909671][T19578] total_workingset_refault_anon 28717
[  922.933632][T19578] total_workingset_refault_file 49155
[  922.949504][T19578] total_swap 610304
[  922.953327][T19578] total_swapcached 389120
[  922.996051][T19578] total_pgpgin 638382
[  923.000050][T19578] total_pgpgout 638798
[  923.004110][T19578] total_pgfault 626659
[  923.061556][T19578] total_pgmajfault 11847
[  923.085546][T19578] total_inactive_anon 147456
[  923.110412][T19578] total_active_anon 241664
[  923.126788][T19578] total_inactive_file 0
[  923.130959][T19578] total_active_file 0
[  923.192874][T19578] total_unevictable 0
[  923.214674][T19578] anon_cost 420
[  923.218158][T19578] file_cost 0
[  923.221423][T19578] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.2985,pid=19578,uid=0
[  923.313631][T19578] Memory cgroup out of memory: Killed process 19578 (syz.2.2985) total-vm:135360kB, anon-rss:1336kB, file-rss:22760kB, shmem-rss:0kB, UID:0 pgtables:156kB oom_score_adj:1000
[  924.988329][ T5837] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  925.025399][ T5837] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  925.036661][ T5837] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  925.044359][ T5837] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  925.052090][ T5837] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  925.191149][T19665] zswap: compressor  not available
[  926.231153][T19690] FAULT_INJECTION: forcing a failure.
[  926.231153][T19690] name failslab, interval 1, probability 393216, space 0, times 0
[  926.266650][T19690] CPU: 0 UID: 0 PID: 19690 Comm: syz.3.3010 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  926.266677][T19690] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  926.266684][T19690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  926.266693][T19690] Call Trace:
[  926.266698][T19690]  <TASK>
[  926.266705][T19690]  dump_stack_lvl+0x100/0x190
[  926.266728][T19690]  should_fail_ex.cold+0x5/0xa
[  926.266753][T19690]  should_failslab+0xc2/0x120
[  926.266778][T19690]  ? tomoyo_encode2+0xfb/0x3c0
[  926.266792][T19690]  __kmalloc_noprof+0xf6/0x9c0
[  926.266813][T19690]  ? tomoyo_encode2+0xfb/0x3c0
[  926.266826][T19690]  tomoyo_encode2+0xfb/0x3c0
[  926.266843][T19690]  tomoyo_encode+0x29/0x50
[  926.266856][T19690]  tomoyo_realpath_from_path+0x18c/0x690
[  926.266876][T19690]  tomoyo_path_number_perm+0x23c/0x580
[  926.266897][T19690]  ? tomoyo_path_number_perm+0x22e/0x580
[  926.266920][T19690]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  926.266960][T19690]  ? find_held_lock+0x2b/0x80
[  926.266975][T19690]  ? hook_file_ioctl_common+0x146/0x410
[  926.266996][T19690]  ? __fget_files+0x215/0x3d0
[  926.267016][T19690]  ? __fget_files+0x21f/0x3d0
[  926.267035][T19690]  security_file_ioctl+0xd3/0x230
[  926.267059][T19690]  __x64_sys_ioctl+0xb7/0x210
[  926.267084][T19690]  do_syscall_64+0xc9/0xf80
[  926.267104][T19690]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  926.267120][T19690] RIP: 0033:0x7fedbdb9aeb9
[  926.267133][T19690] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  926.267147][T19690] RSP: 002b:00007fedbea85028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  926.267162][T19690] RAX: ffffffffffffffda RBX: 00007fedbde15fa0 RCX: 00007fedbdb9aeb9
[  926.267172][T19690] RDX: 0000000000000000 RSI: 0000000000002284 RDI: 0000000000000005
[  926.267182][T19690] RBP: 00007fedbea85090 R08: 0000000000000000 R09: 0000000000000000
[  926.267191][T19690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  926.267199][T19690] R13: 00007fedbde16038 R14: 00007fedbde15fa0 R15: 00007ffd343925f8
[  926.267219][T19690]  </TASK>
[  926.494605][T19690] ERROR: Out of memory at tomoyo_realpath_from_path.
[  926.501520][T19690] sd 0:0:1:0: device reset
[  927.016811][ T7589] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  927.031283][T19702] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(1)
[  927.051158][T19708] FAULT_INJECTION: forcing a failure.
[  927.051158][T19708] name failslab, interval 1, probability 393216, space 0, times 0
[  927.074088][T19666] chnl_net:caif_netlink_parms(): no params data found
[  927.084864][T19708] CPU: 0 UID: 0 PID: 19708 Comm: syz.1.3014 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  927.084894][T19708] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  927.084900][T19708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  927.084911][T19708] Call Trace:
[  927.084916][T19708]  <TASK>
[  927.084922][T19708]  dump_stack_lvl+0x100/0x190
[  927.084947][T19708]  should_fail_ex.cold+0x5/0xa
[  927.084974][T19708]  should_failslab+0xc2/0x120
[  927.085001][T19708]  kmem_cache_alloc_noprof+0x83/0x780
[  927.085023][T19708]  ? __pmd_alloc+0xbf/0x9c0
[  927.085050][T19708]  ? __pmd_alloc+0xbf/0x9c0
[  927.085072][T19708]  __pmd_alloc+0xbf/0x9c0
[  927.085097][T19708]  __handle_mm_fault+0xa99/0x2b50
[  927.085116][T19708]  ? mt_find+0x45e/0x8e0
[  927.085136][T19708]  ? __pfx___handle_mm_fault+0x10/0x10
[  927.085151][T19708]  ? __pfx_mt_find+0x10/0x10
[  927.085184][T19708]  handle_mm_fault+0x36d/0xa20
[  927.085204][T19708]  __get_user_pages+0xf9c/0x34d0
[  927.085233][T19708]  ? __pfx___get_user_pages+0x10/0x10
[  927.085261][T19708]  populate_vma_page_range+0x267/0x3f0
[  927.085286][T19708]  ? __pfx_populate_vma_page_range+0x10/0x10
[  927.085314][T19708]  ? __pfx_find_vma_intersection+0x10/0x10
[  927.085338][T19708]  ? do_mmap+0x93f/0x12f0
[  927.085362][T19708]  __mm_populate+0x107/0x3a0
[  927.085386][T19708]  ? __pfx___mm_populate+0x10/0x10
[  927.085411][T19708]  ? up_write+0x290/0x4f0
[  927.085435][T19708]  vm_mmap_pgoff+0x37f/0x470
[  927.085460][T19708]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  927.085486][T19708]  ? __x64_sys_futex+0x34f/0x4d0
[  927.085506][T19708]  ? __x64_sys_futex+0x358/0x4d0
[  927.085532][T19708]  ksys_mmap_pgoff+0x7d/0x5b0
[  927.085556][T19708]  __x64_sys_mmap+0x125/0x190
[  927.085574][T19708]  do_syscall_64+0xc9/0xf80
[  927.085595][T19708]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  927.085612][T19708] RIP: 0033:0x7f305999aeb9
[  927.085626][T19708] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  927.085641][T19708] RSP: 002b:00007f305a836028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  927.085656][T19708] RAX: ffffffffffffffda RBX: 00007f3059c15fa0 RCX: 00007f305999aeb9
[  927.085667][T19708] RDX: 00000000000000df RSI: 0000000000400005 RDI: 0000000000000000
[  927.085677][T19708] RBP: 00007f3059a08c1f R08: 0000000000000002 R09: 0000000000008000
[  927.085686][T19708] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  927.085695][T19708] R13: 00007f3059c16038 R14: 00007f3059c15fa0 R15: 00007fff7bb7d2f8
[  927.085716][T19708]  </TASK>
[  927.346689][T19708] random: crng reseeded on system resumption
[  927.354918][T19708] FAULT_INJECTION: forcing a failure.
[  927.354918][T19708] name failslab, interval 1, probability 393216, space 0, times 0
[  927.368402][T19708] CPU: 0 UID: 0 PID: 19708 Comm: syz.1.3014 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  927.368431][T19708] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  927.368437][T19708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  927.368447][T19708] Call Trace:
[  927.368453][T19708]  <TASK>
[  927.368460][T19708]  dump_stack_lvl+0x100/0x190
[  927.368484][T19708]  should_fail_ex.cold+0x5/0xa
[  927.368510][T19708]  should_failslab+0xc2/0x120
[  927.368531][T19708]  __kmalloc_cache_noprof+0x80/0x810
[  927.368548][T19708]  ? create_basic_memory_bitmaps+0x9d/0x350
[  927.368565][T19708]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[  927.368590][T19708]  ? create_basic_memory_bitmaps+0x9d/0x350
[  927.368605][T19708]  create_basic_memory_bitmaps+0x9d/0x350
[  927.368625][T19708]  snapshot_open+0x230/0x2a0
[  927.368643][T19708]  ? __pfx_snapshot_open+0x10/0x10
[  927.368661][T19708]  misc_open+0x26d/0x450
[  927.368680][T19708]  ? __pfx_misc_open+0x10/0x10
[  927.368697][T19708]  chrdev_open+0x234/0x6a0
[  927.368716][T19708]  ? __pfx_apparmor_file_open+0x10/0x10
[  927.368736][T19708]  ? __pfx_chrdev_open+0x10/0x10
[  927.368755][T19708]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  927.368777][T19708]  do_dentry_open+0x73e/0x1570
[  927.368795][T19708]  ? __pfx_chrdev_open+0x10/0x10
[  927.368814][T19708]  ? security_inode_permission+0xbf/0x250
[  927.368840][T19708]  vfs_open+0x82/0x3f0
[  927.368863][T19708]  path_openat+0x21dc/0x3120
[  927.368888][T19708]  ? __pfx_path_openat+0x10/0x10
[  927.368912][T19708]  do_filp_open+0x1f7/0x420
[  927.368932][T19708]  ? __pfx_do_filp_open+0x10/0x10
[  927.368963][T19708]  ? _raw_spin_unlock+0x28/0x50
[  927.368978][T19708]  ? alloc_fd+0x476/0x790
[  927.369000][T19708]  do_sys_openat2+0x12e/0x220
[  927.369023][T19708]  ? __pfx_do_sys_openat2+0x10/0x10
[  927.369047][T19708]  ? __fget_files+0x21f/0x3d0
[  927.369068][T19708]  __x64_sys_openat+0x12d/0x210
[  927.369092][T19708]  ? __pfx___x64_sys_openat+0x10/0x10
[  927.369113][T19708]  ? xfd_validate_state+0x129/0x190
[  927.369144][T19708]  do_syscall_64+0xc9/0xf80
[  927.369170][T19708]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  927.369188][T19708] RIP: 0033:0x7f305999aeb9
[  927.369202][T19708] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  927.369218][T19708] RSP: 002b:00007f305a836028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  927.369234][T19708] RAX: ffffffffffffffda RBX: 00007f3059c15fa0 RCX: 00007f305999aeb9
[  927.369244][T19708] RDX: 0000000000101001 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  927.369254][T19708] RBP: 00007f3059a08c1f R08: 0000000000000000 R09: 0000000000000000
[  927.369264][T19708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  927.369273][T19708] R13: 00007f3059c16038 R14: 00007f3059c15fa0 R15: 00007fff7bb7d2f8
[  927.369304][T19708]  </TASK>
[  927.733969][ T5837] Bluetooth: hci6: command tx timeout
[  927.784518][T19711] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  927.856350][ T5837] Bluetooth: hci3: unexpected subevent 0x18 length: 123 > 19
[  927.863933][ T5837] Bluetooth: hci3: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00
[  927.904915][ T7589] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  928.122191][ T7589] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  928.163582][T19666] bridge0: port 1(bridge_slave_0) entered blocking state
[  928.177492][T19666] bridge0: port 1(bridge_slave_0) entered disabled state
[  928.205173][T19666] bridge_slave_0: entered allmulticast mode
[  928.227358][T19666] bridge_slave_0: entered promiscuous mode
[  928.244760][T19720] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[  928.300965][ T7589] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  928.345017][T19666] bridge0: port 2(bridge_slave_1) entered blocking state
[  928.366301][T19666] bridge0: port 2(bridge_slave_1) entered disabled state
[  928.384459][T19666] bridge_slave_1: entered allmulticast mode
[  928.400830][T19666] bridge_slave_1: entered promiscuous mode
[  928.411287][T19722] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3018'.
[  928.592481][T19666] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  928.635238][T19666] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  928.745397][T19666] team0: Port device team_slave_0 added
[  928.816570][T19666] team0: Port device team_slave_1 added
[  929.008357][T19729] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  929.042576][T19666] batman_adv: batadv0: Adding interface: batadv_slave_0
[  929.084664][T19666] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  929.230593][T19666] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  929.301252][ T7589] bridge_slave_1: left allmulticast mode
[  929.331003][ T7589] bridge_slave_1: left promiscuous mode
[  929.402295][ T7589] bridge0: port 2(bridge_slave_1) entered disabled state
[  929.538227][ T7589] bridge_slave_0: left allmulticast mode
[  929.552658][T19753] vivid-007: =================  START STATUS  =================
[  929.575045][ T7589] bridge_slave_0: left promiscuous mode
[  929.603100][T19753] vivid-007: Generate PTS: true
[  929.607981][T19753] vivid-007: Generate SCR: true
[  929.618593][ T7589] bridge0: port 1(bridge_slave_0) entered disabled state
[  929.673482][T19753] tpg source WxH: 320x240 (Y'CbCr)
[  929.709444][T19753] tpg field: 1
[  929.741512][T19738] Bluetooth: hci6: command tx timeout
[  929.749487][T19753] tpg crop: (0,0)/320x240
[  929.775013][T19753] tpg compose: (0,0)/320x240
[  929.830133][T19753] tpg colorspace: 8
[  929.849445][T19753] tpg transfer function: 0/0
[  929.889752][T19753] tpg Y'CbCr encoding: 0/0
[  929.959421][T19753] tpg quantization: 0/0
[  929.974941][T19753] tpg RGB range: 0/2
[  929.995658][T19753] vivid-007: ==================  END STATUS  ==================
[  930.037595][T19770] sd 0:0:1:0: device reset
[  930.893487][T19791] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(1)
[  931.115488][ T7589] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  931.135356][ T7589] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  931.150235][ T7589] bond0 (unregistering): Released all slaves
[  931.160191][T19666] batman_adv: batadv0: Adding interface: batadv_slave_1
[  931.167939][T19666] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  931.198028][T19666] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  931.492576][T19666] hsr_slave_0: entered promiscuous mode
[  931.515509][T19666] hsr_slave_1: entered promiscuous mode
[  931.530885][T19666] debugfs: 'hsr0' already exists in 'hsr'
[  931.545327][T19666] Cannot create hsr debugfs directory
[  931.810178][T19738] Bluetooth: hci6: command tx timeout
[  932.032772][T19813] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  932.088927][T19813] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3034'.
[  932.370734][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  932.377541][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  932.428553][ T7589] hsr_slave_0: left promiscuous mode
[  932.466168][ T7589] hsr_slave_1: left promiscuous mode
[  932.482210][ T7589] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  932.520119][ T7589] batman_adv: batadv0: Removing interface: batadv_slave_0
[  932.568883][ T7589] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  932.588493][ T7589] batman_adv: batadv0: Removing interface: batadv_slave_1
[  932.634600][ T7589] veth1_macvtap: left promiscuous mode
[  932.660847][ T7589] veth0_macvtap: left promiscuous mode
[  933.697732][ T7589] team0 (unregistering): Port device team_slave_1 removed
[  933.806253][ T7589] team0 (unregistering): Port device team_slave_0 removed
[  933.878821][T19738] Bluetooth: hci6: command tx timeout
[  935.852992][T19860] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  936.020302][T19666] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  936.123575][T19666] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  936.240576][T19666] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  936.290043][T19873] vivid-007: =================  START STATUS  =================
[  936.307639][T19666] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  936.333295][T19873] vivid-007: Generate PTS: true
[  936.359139][T19873] vivid-007: Generate SCR: true
[  936.406801][T19873] tpg source WxH: 320x240 (Y'CbCr)
[  936.406819][T19873] tpg field: 1
[  936.406826][T19873] tpg crop: (0,0)/320x240
[  936.406836][T19873] tpg compose: (0,0)/320x240
[  936.406847][T19873] tpg colorspace: 8
[  936.406853][T19873] tpg transfer function: 0/0
[  936.406861][T19873] tpg Y'CbCr encoding: 0/0
[  936.406869][T19873] tpg quantization: 0/0
[  936.406877][T19873] tpg RGB range: 0/2
[  936.406884][T19873] vivid-007: ==================  END STATUS  ==================
[  936.626274][T19666] 8021q: adding VLAN 0 to HW filter on device bond0
[  936.642797][T19666] 8021q: adding VLAN 0 to HW filter on device team0
[  936.658963][T19749] bridge0: port 1(bridge_slave_0) entered blocking state
[  936.659056][T19749] bridge0: port 1(bridge_slave_0) entered forwarding state
[  936.685378][T19743] bridge0: port 2(bridge_slave_1) entered blocking state
[  936.685446][T19743] bridge0: port 2(bridge_slave_1) entered forwarding state
[  937.200106][T19666] 8021q: adding VLAN 0 to HW filter on device batadv0
[  937.393311][T19666] veth0_vlan: entered promiscuous mode
[  937.443086][T19666] veth1_vlan: entered promiscuous mode
[  937.594289][T19666] veth0_macvtap: entered promiscuous mode
[  937.651804][T19666] veth1_macvtap: entered promiscuous mode
[  937.741934][T19666] batman_adv: batadv0: Interface activated: batadv_slave_0
[  937.822134][T19666] batman_adv: batadv0: Interface activated: batadv_slave_1
[  937.878213][T19749] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  937.887046][T19749] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  937.987664][T19749] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  937.996385][T19749] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  938.099972][T19925] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  938.264442][T19925] FAULT_INJECTION: forcing a failure.
[  938.264442][T19925] name failslab, interval 1, probability 393216, space 0, times 0
[  938.323221][T19745] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  938.359100][T19925] CPU: 0 UID: 0 PID: 19925 Comm: syz.0.3052 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  938.359137][T19925] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  938.359144][T19925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  938.359154][T19925] Call Trace:
[  938.359159][T19925]  <TASK>
[  938.359166][T19925]  dump_stack_lvl+0x100/0x190
[  938.359191][T19925]  should_fail_ex.cold+0x5/0xa
[  938.359217][T19925]  should_failslab+0xc2/0x120
[  938.359238][T19925]  ? tomoyo_realpath_from_path+0xb6/0x690
[  938.359254][T19925]  __kmalloc_noprof+0xf6/0x9c0
[  938.359268][T19925]  ? kfree+0x2a9/0x690
[  938.359287][T19925]  ? tomoyo_realpath_from_path+0xb6/0x690
[  938.359303][T19925]  tomoyo_realpath_from_path+0xb6/0x690
[  938.359324][T19925]  tomoyo_check_open_permission+0x2af/0x3c0
[  938.359346][T19925]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  938.359387][T19925]  ? do_raw_spin_lock+0x128/0x260
[  938.359411][T19925]  ? path_get+0x61/0x80
[  938.359433][T19925]  tomoyo_file_open+0x6b/0x90
[  938.359451][T19925]  security_file_open+0xb5/0x1e0
[  938.359466][T19925]  do_dentry_open+0x58c/0x1570
[  938.359485][T19925]  ? security_inode_permission+0xbf/0x250
[  938.359510][T19925]  vfs_open+0x82/0x3f0
[  938.359533][T19925]  path_openat+0x21dc/0x3120
[  938.359558][T19925]  ? __pfx_path_openat+0x10/0x10
[  938.359582][T19925]  do_filp_open+0x1f7/0x420
[  938.359601][T19925]  ? __pfx_do_filp_open+0x10/0x10
[  938.359625][T19925]  ? __pfx_kfree_link+0x10/0x10
[  938.359653][T19925]  ? _raw_spin_unlock+0x28/0x50
[  938.359668][T19925]  ? alloc_fd+0x476/0x790
[  938.359690][T19925]  do_sys_openat2+0x12e/0x220
[  938.359712][T19925]  ? __pfx_do_sys_openat2+0x10/0x10
[  938.359742][T19925]  __x64_sys_openat+0x12d/0x210
[  938.359766][T19925]  ? __pfx___x64_sys_openat+0x10/0x10
[  938.359789][T19925]  ? xfd_validate_state+0x129/0x190
[  938.359819][T19925]  do_syscall_64+0xc9/0xf80
[  938.359839][T19925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  938.359854][T19925] RIP: 0033:0x7f882d79aeb9
[  938.359868][T19925] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  938.359883][T19925] RSP: 002b:00007f882e62e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  938.359898][T19925] RAX: ffffffffffffffda RBX: 00007f882da15fa0 RCX: 00007f882d79aeb9
[  938.359908][T19925] RDX: 0000000000008800 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  938.359918][T19925] RBP: 00007f882d808c1f R08: 0000000000000000 R09: 0000000000000000
[  938.359928][T19925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  938.359937][T19925] R13: 00007f882da16038 R14: 00007f882da15fa0 R15: 00007fff73092628
[  938.359958][T19925]  </TASK>
[  938.359965][T19925] ERROR: Out of memory at tomoyo_realpath_from_path.
[  938.654260][T19745] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  938.938515][T19749] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  938.959253][T19749] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  941.743040][T20001] vivid-007: =================  START STATUS  =================
[  941.807461][T20001] vivid-007: Generate PTS: true
[  941.834765][T20001] vivid-007: Generate SCR: true
[  941.891096][T20001] tpg source WxH: 320x240 (Y'CbCr)
[  941.933645][T20001] tpg field: 1
[  941.974273][T20001] tpg crop: (0,0)/320x240
[  942.000604][T20001] tpg compose: (0,0)/320x240
[  942.058651][T20001] tpg colorspace: 8
[  942.062489][T20001] tpg transfer function: 0/0
[  942.135578][T20001] tpg Y'CbCr encoding: 0/0
[  942.152628][T20001] tpg quantization: 0/0
[  942.196244][T20001] tpg RGB range: 0/2
[  942.220348][T20001] vivid-007: ==================  END STATUS  ==================
[  943.928044][T20043] FAULT_INJECTION: forcing a failure.
[  943.928044][T20043] name failslab, interval 1, probability 393216, space 0, times 0
[  943.973895][T20043] CPU: 0 UID: 0 PID: 20043 Comm: syz.3.3072 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  943.973926][T20043] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  943.973933][T20043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  943.973942][T20043] Call Trace:
[  943.973948][T20043]  <TASK>
[  943.973955][T20043]  dump_stack_lvl+0x100/0x190
[  943.973980][T20043]  should_fail_ex.cold+0x5/0xa
[  943.974007][T20043]  should_failslab+0xc2/0x120
[  943.974028][T20043]  __kmalloc_cache_noprof+0x80/0x810
[  943.974045][T20043]  ? single_open+0x4d/0x1d0
[  943.974067][T20043]  ? find_held_lock+0x2b/0x80
[  943.974084][T20043]  ? __pfx_proc_setgroups_show+0x10/0x10
[  943.974101][T20043]  ? single_open+0x4d/0x1d0
[  943.974126][T20043]  single_open+0x4d/0x1d0
[  943.974150][T20043]  proc_setgroups_open+0x35a/0x7e0
[  943.974172][T20043]  do_dentry_open+0x73e/0x1570
[  943.974190][T20043]  ? __pfx_proc_setgroups_open+0x10/0x10
[  943.974209][T20043]  ? security_inode_permission+0xbf/0x250
[  943.974234][T20043]  vfs_open+0x82/0x3f0
[  943.974257][T20043]  path_openat+0x21dc/0x3120
[  943.974283][T20043]  ? __pfx_path_openat+0x10/0x10
[  943.974308][T20043]  do_filp_open+0x1f7/0x420
[  943.974327][T20043]  ? __pfx_do_filp_open+0x10/0x10
[  943.974351][T20043]  ? __pfx_kfree_link+0x10/0x10
[  943.974378][T20043]  ? _raw_spin_unlock+0x28/0x50
[  943.974394][T20043]  ? alloc_fd+0x476/0x790
[  943.974416][T20043]  do_sys_openat2+0x12e/0x220
[  943.974438][T20043]  ? __pfx_do_sys_openat2+0x10/0x10
[  943.974461][T20043]  ? ksys_semctl.constprop.0+0x14e/0x2e0
[  943.974486][T20043]  __x64_sys_openat+0x12d/0x210
[  943.974511][T20043]  ? __pfx___x64_sys_openat+0x10/0x10
[  943.974533][T20043]  ? xfd_validate_state+0x129/0x190
[  943.974562][T20043]  do_syscall_64+0xc9/0xf80
[  943.974582][T20043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  943.974598][T20043] RIP: 0033:0x7fedbdb9aeb9
[  943.974613][T20043] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  943.974636][T20043] RSP: 002b:00007fedbea85028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  943.974652][T20043] RAX: ffffffffffffffda RBX: 00007fedbde15fa0 RCX: 00007fedbdb9aeb9
[  943.974663][T20043] RDX: 0000000000183200 RSI: 00002000000003c0 RDI: ffffffffffffff9c
[  943.974673][T20043] RBP: 00007fedbdc08c1f R08: 0000000000000000 R09: 0000000000000000
[  943.974683][T20043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  943.974692][T20043] R13: 00007fedbde16038 R14: 00007fedbde15fa0 R15: 00007ffd343925f8
[  943.974714][T20043]  </TASK>
[  945.553201][T20080] FAULT_INJECTION: forcing a failure.
[  945.553201][T20080] name failslab, interval 1, probability 393216, space 0, times 0
[  945.665121][T20083] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[  945.684014][T20080] CPU: 0 UID: 0 PID: 20080 Comm: syz.3.3082 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  945.684045][T20080] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  945.684052][T20080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  945.684061][T20080] Call Trace:
[  945.684067][T20080]  <TASK>
[  945.684074][T20080]  dump_stack_lvl+0x100/0x190
[  945.684099][T20080]  should_fail_ex.cold+0x5/0xa
[  945.684124][T20080]  should_failslab+0xc2/0x120
[  945.684147][T20080]  kmem_cache_alloc_noprof+0x83/0x780
[  945.684166][T20080]  ? d_instantiate+0x90/0xb0
[  945.684185][T20080]  ? alloc_empty_file+0x55/0x1c0
[  945.684210][T20080]  ? alloc_empty_file+0x55/0x1c0
[  945.684230][T20080]  alloc_empty_file+0x55/0x1c0
[  945.684252][T20080]  alloc_file_pseudo+0x13a/0x230
[  945.684274][T20080]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  945.684301][T20080]  __shmem_file_setup+0x1a3/0x330
[  945.684319][T20080]  shmem_zero_setup+0x93/0x1b0
[  945.684340][T20080]  __mmap_region+0x2101/0x2820
[  945.684359][T20080]  ? set_next_entity+0x11a/0x9b0
[  945.684381][T20080]  ? __pfx___mmap_region+0x10/0x10
[  945.684402][T20080]  ? find_held_lock+0x2b/0x80
[  945.684416][T20080]  ? trace_ignore_this_task+0xbc/0x100
[  945.684433][T20080]  ? trace_ignore_this_task+0xbc/0x100
[  945.684464][T20080]  ? finish_task_switch.isra.0+0x1ff/0xb70
[  945.684482][T20080]  ? finish_task_switch.isra.0+0x1ff/0xb70
[  945.684510][T20080]  ? __schedule+0xff6/0x5e10
[  945.684525][T20080]  ? trace_ignore_this_task+0xbc/0x100
[  945.684541][T20080]  ? trace_ignore_this_task+0xbc/0x100
[  945.684580][T20080]  ? mm_get_unmapped_area_vmflags+0xd7/0x130
[  945.684603][T20080]  ? rcu_is_watching+0x12/0xc0
[  945.684623][T20080]  mmap_region+0x180/0x3e0
[  945.684644][T20080]  do_mmap+0xc63/0x12f0
[  945.684669][T20080]  ? __pfx_do_mmap+0x10/0x10
[  945.684690][T20080]  ? __pfx_down_write_killable+0x10/0x10
[  945.684714][T20080]  vm_mmap_pgoff+0x29e/0x470
[  945.684739][T20080]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  945.684765][T20080]  ? __x64_sys_futex+0x34f/0x4d0
[  945.684785][T20080]  ? __x64_sys_futex+0x358/0x4d0
[  945.684807][T20080]  ksys_mmap_pgoff+0x7d/0x5b0
[  945.684831][T20080]  __x64_sys_mmap+0x125/0x190
[  945.684848][T20080]  do_syscall_64+0xc9/0xf80
[  945.684868][T20080]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  945.684884][T20080] RIP: 0033:0x7fedbdb9aeb9
[  945.684898][T20080] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  945.684912][T20080] RSP: 002b:00007fedbea85028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  945.684927][T20080] RAX: ffffffffffffffda RBX: 00007fedbde15fa0 RCX: 00007fedbdb9aeb9
[  945.684937][T20080] RDX: 0100001000000004 RSI: 0000000000000861 RDI: 0000000000000000
[  945.684947][T20080] RBP: 00007fedbdc08c1f R08: 0000000000000400 R09: 0000000000008000
[  945.684957][T20080] R10: 000000000000fa31 R11: 0000000000000246 R12: 0000000000000000
[  945.684970][T20080] R13: 00007fedbde16038 R14: 00007fedbde15fa0 R15: 00007ffd343925f8
[  945.684990][T20080]  </TASK>
[  946.125908][T20087] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  946.703123][T20098] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  946.894408][T20102] vivid-007: =================  START STATUS  =================
[  946.954218][T20102] vivid-007: Generate PTS: true
[  947.042333][T20102] vivid-007: Generate SCR: true
[  947.060513][T20102] tpg source WxH: 320x240 (Y'CbCr)
[  947.094068][T20102] tpg field: 1
[  947.119280][T20102] tpg crop: (0,0)/320x240
[  947.184677][T20102] tpg compose: (0,0)/320x240
[  947.221888][T20102] tpg colorspace: 8
[  947.246988][T20102] tpg transfer function: 0/0
[  947.278211][T20102] tpg Y'CbCr encoding: 0/0
[  947.306721][T20102] tpg quantization: 0/0
[  947.339245][T20102] tpg RGB range: 0/2
[  947.365055][T20102] vivid-007: ==================  END STATUS  ==================
[  948.424497][T20133] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[  950.429800][T20167] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[  952.729964][T20214] vivid-007: =================  START STATUS  =================
[  952.808854][T20214] vivid-007: Generate PTS: true
[  952.840283][T20214] vivid-007: Generate SCR: true
[  952.845172][T20214] tpg source WxH: 320x240 (Y'CbCr)
[  952.902940][T20214] tpg field: 1
[  952.918075][T20214] tpg crop: (0,0)/320x240
[  952.951947][T20214] tpg compose: (0,0)/320x240
[  952.956775][T20214] tpg colorspace: 8
[  952.990251][T20214] tpg transfer function: 0/0
[  953.039567][T20214] tpg Y'CbCr encoding: 0/0
[  953.096142][T20214] tpg quantization: 0/0
[  953.100685][T20214] tpg RGB range: 0/2
[  953.130409][T20214] vivid-007: ==================  END STATUS  ==================
[  953.369092][T20223] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[  955.066104][T20254] netlink: 25 bytes leftover after parsing attributes in process `syz.2.3122'.
[  956.665815][T20295] FAULT_INJECTION: forcing a failure.
[  956.665815][T20295] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  956.738480][T20295] CPU: 0 UID: 0 PID: 20295 Comm: syz.1.3134 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  956.738508][T20295] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  956.738514][T20295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  956.738523][T20295] Call Trace:
[  956.738528][T20295]  <TASK>
[  956.738535][T20295]  dump_stack_lvl+0x100/0x190
[  956.738559][T20295]  should_fail_ex.cold+0x5/0xa
[  956.738584][T20295]  _copy_from_user+0x2e/0xd0
[  956.738608][T20295]  copy_msghdr_from_user+0x9f/0x4f0
[  956.738627][T20295]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  956.738647][T20295]  ? _kstrtoull+0x13c/0x1f0
[  956.738663][T20295]  ? __pfx__kstrtoull+0x10/0x10
[  956.738682][T20295]  ___sys_sendmsg+0x106/0x1e0
[  956.738701][T20295]  ? __pfx____sys_sendmsg+0x10/0x10
[  956.738734][T20295]  ? __pfx___might_resched+0x10/0x10
[  956.738761][T20295]  __sys_sendmmsg+0x205/0x430
[  956.738785][T20295]  ? __pfx___sys_sendmmsg+0x10/0x10
[  956.738812][T20295]  ? __fget_files+0x215/0x3d0
[  956.738828][T20295]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  956.738856][T20295]  ? fput+0x79/0x100
[  956.738876][T20295]  ? ksys_write+0x1ac/0x250
[  956.738892][T20295]  ? __pfx_ksys_write+0x10/0x10
[  956.738912][T20295]  __x64_sys_sendmmsg+0x9c/0x100
[  956.738934][T20295]  ? lockdep_hardirqs_on+0x78/0x100
[  956.738951][T20295]  do_syscall_64+0xc9/0xf80
[  956.738971][T20295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  956.738986][T20295] RIP: 0033:0x7f305999aeb9
[  956.738999][T20295] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  956.739013][T20295] RSP: 002b:00007f305a836028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  956.739028][T20295] RAX: ffffffffffffffda RBX: 00007f3059c15fa0 RCX: 00007f305999aeb9
[  956.739038][T20295] RDX: 000000000000001f RSI: 0000000000000000 RDI: 0000000000000003
[  956.739047][T20295] RBP: 00007f305a836090 R08: 0000000000000000 R09: 0000000000000000
[  956.739056][T20295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  956.739065][T20295] R13: 00007f3059c16038 R14: 00007f3059c15fa0 R15: 00007fff7bb7d2f8
[  956.739084][T20295]  </TASK>
[  960.908723][T20370] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[  962.644299][T20412] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[  963.531818][T20429] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  964.820631][T20473] FAULT_INJECTION: forcing a failure.
[  964.820631][T20473] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  964.914999][T20473] CPU: 0 UID: 0 PID: 20473 Comm: syz.1.3175 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  964.915027][T20473] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  964.915033][T20473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  964.915043][T20473] Call Trace:
[  964.915049][T20473]  <TASK>
[  964.915055][T20473]  dump_stack_lvl+0x100/0x190
[  964.915078][T20473]  should_fail_ex.cold+0x5/0xa
[  964.915104][T20473]  _copy_from_iter+0x1f4/0x1690
[  964.915131][T20473]  ? __pfx__copy_from_iter+0x10/0x10
[  964.915158][T20473]  ? __pfx___might_resched+0x10/0x10
[  964.915185][T20473]  file_tty_write.isra.0+0x45b/0x890
[  964.915214][T20473]  redirected_tty_write+0xd4/0x120
[  964.915237][T20473]  vfs_write+0x6ac/0x1070
[  964.915255][T20473]  ? __pfx_redirected_tty_write+0x10/0x10
[  964.915280][T20473]  ? __pfx_vfs_write+0x10/0x10
[  964.915295][T20473]  ? find_held_lock+0x2b/0x80
[  964.915322][T20473]  ksys_write+0x12a/0x250
[  964.915338][T20473]  ? __pfx_ksys_write+0x10/0x10
[  964.915360][T20473]  do_syscall_64+0xc9/0xf80
[  964.915399][T20473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  964.915414][T20473] RIP: 0033:0x7f305999aeb9
[  964.915427][T20473] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  964.915442][T20473] RSP: 002b:00007f305a836028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  964.915457][T20473] RAX: ffffffffffffffda RBX: 00007f3059c15fa0 RCX: 00007f305999aeb9
[  964.915472][T20473] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003
[  964.915481][T20473] RBP: 00007f305a836090 R08: 0000000000000000 R09: 0000000000000000
[  964.915490][T20473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  964.915499][T20473] R13: 00007f3059c16038 R14: 00007f3059c15fa0 R15: 00007fff7bb7d2f8
[  964.915519][T20473]  </TASK>
[  965.313062][T20478] FAULT_INJECTION: forcing a failure.
[  965.313062][T20478] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  965.415956][T20478] CPU: 0 UID: 0 PID: 20478 Comm: syz.1.3176 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  965.415983][T20478] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  965.415989][T20478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  965.415998][T20478] Call Trace:
[  965.416003][T20478]  <TASK>
[  965.416009][T20478]  dump_stack_lvl+0x100/0x190
[  965.416032][T20478]  should_fail_ex.cold+0x5/0xa
[  965.416057][T20478]  _copy_from_user+0x2e/0xd0
[  965.416081][T20478]  get_timespec64+0x8b/0x1b0
[  965.416100][T20478]  ? __pfx_get_timespec64+0x10/0x10
[  965.416118][T20478]  ? ktime_get+0x200/0x300
[  965.416139][T20478]  __x64_sys_futex+0x21a/0x4d0
[  965.416162][T20478]  ? __pfx___x64_sys_futex+0x10/0x10
[  965.416182][T20478]  ? xfd_validate_state+0x129/0x190
[  965.416212][T20478]  do_syscall_64+0xc9/0xf80
[  965.416232][T20478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  965.416248][T20478] RIP: 0033:0x7f305999aeb9
[  965.416261][T20478] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  965.416276][T20478] RSP: 002b:00007fff7bb7d458 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  965.416291][T20478] RAX: ffffffffffffffda RBX: 00000000000ecc27 RCX: 00007f305999aeb9
[  965.416301][T20478] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3059c1609c
[  965.416311][T20478] RBP: 0000000000000032 R08: 0000000000000000 R09: 0000000000000000
[  965.416320][T20478] R10: 00007fff7bb7d560 R11: 0000000000000246 R12: 00007fff7bb7d580
[  965.416329][T20478] R13: 00007f3059c1609c R14: 00000000000ecc59 R15: 00007fff7bb7d560
[  965.416348][T20478]  </TASK>
[  966.583388][T20524] FAULT_INJECTION: forcing a failure.
[  966.583388][T20524] name failslab, interval 1, probability 393216, space 0, times 0
[  966.719669][T20524] CPU: 0 UID: 0 PID: 20524 Comm: syz.2.3186 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  966.719699][T20524] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  966.719706][T20524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  966.719716][T20524] Call Trace:
[  966.719722][T20524]  <TASK>
[  966.719728][T20524]  dump_stack_lvl+0x100/0x190
[  966.719753][T20524]  should_fail_ex.cold+0x5/0xa
[  966.719780][T20524]  should_failslab+0xc2/0x120
[  966.719802][T20524]  kmem_cache_alloc_noprof+0x83/0x780
[  966.719822][T20524]  ? alloc_empty_file+0x55/0x1c0
[  966.719847][T20524]  ? alloc_empty_file+0x55/0x1c0
[  966.719866][T20524]  alloc_empty_file+0x55/0x1c0
[  966.719888][T20524]  path_openat+0xe8/0x3120
[  966.719904][T20524]  ? getname_flags+0x93/0xf0
[  966.719918][T20524]  ? do_sys_openat2+0xc5/0x220
[  966.719938][T20524]  ? __x64_sys_openat+0x12d/0x210
[  966.719959][T20524]  ? do_syscall_64+0xc9/0xf80
[  966.719976][T20524]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  966.719996][T20524]  ? __pfx_path_openat+0x10/0x10
[  966.720020][T20524]  do_filp_open+0x1f7/0x420
[  966.720039][T20524]  ? __pfx_do_filp_open+0x10/0x10
[  966.720069][T20524]  ? _raw_spin_unlock+0x28/0x50
[  966.720084][T20524]  ? alloc_fd+0x476/0x790
[  966.720106][T20524]  do_sys_openat2+0x12e/0x220
[  966.720128][T20524]  ? __pfx_do_sys_openat2+0x10/0x10
[  966.720157][T20524]  __x64_sys_openat+0x12d/0x210
[  966.720180][T20524]  ? __pfx___x64_sys_openat+0x10/0x10
[  966.720202][T20524]  ? xfd_validate_state+0x129/0x190
[  966.720231][T20524]  do_syscall_64+0xc9/0xf80
[  966.720250][T20524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  966.720266][T20524] RIP: 0033:0x7fc8ba19aeb9
[  966.720288][T20524] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  966.720303][T20524] RSP: 002b:00007fc8bb046028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  966.720318][T20524] RAX: ffffffffffffffda RBX: 00007fc8ba415fa0 RCX: 00007fc8ba19aeb9
[  966.720328][T20524] RDX: 00000000000c2481 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  966.720338][T20524] RBP: 00007fc8ba208c1f R08: 0000000000000000 R09: 0000000000000000
[  966.720348][T20524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  966.720357][T20524] R13: 00007fc8ba416038 R14: 00007fc8ba415fa0 R15: 00007ffc44ec0688
[  966.720377][T20524]  </TASK>
[  967.178468][T20534] vivid-007: =================  START STATUS  =================
[  967.186206][T20534] vivid-007: Generate PTS: true
[  967.191077][T20534] vivid-007: Generate SCR: true
[  967.195975][T20534] tpg source WxH: 320x240 (Y'CbCr)
[  967.201065][T20534] tpg field: 1
[  967.204436][T20534] tpg crop: (0,0)/320x240
[  967.296338][T20534] tpg compose: (0,0)/320x240
[  967.300947][T20534] tpg colorspace: 8
[  967.319826][T20534] tpg transfer function: 0/0
[  967.333264][T20534] tpg Y'CbCr encoding: 0/0
[  967.375726][T20534] tpg quantization: 0/0
[  967.387221][T20534] tpg RGB range: 0/2
[  967.402568][T20534] vivid-007: ==================  END STATUS  ==================
[  967.536668][T20543] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input157
[  967.586590][T20543] FAULT_INJECTION: forcing a failure.
[  967.586590][T20543] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  967.649302][T20543] CPU: 0 UID: 0 PID: 20543 Comm: syz.0.3189 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  967.649330][T20543] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  967.649336][T20543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  967.649345][T20543] Call Trace:
[  967.649350][T20543]  <TASK>
[  967.649357][T20543]  dump_stack_lvl+0x100/0x190
[  967.649380][T20543]  should_fail_ex.cold+0x5/0xa
[  967.649405][T20543]  _copy_from_user+0x2e/0xd0
[  967.649429][T20543]  input_event_from_user+0xb9/0x290
[  967.649451][T20543]  ? __pfx_input_event_from_user+0x10/0x10
[  967.649472][T20543]  ? __pfx___might_resched+0x10/0x10
[  967.649495][T20543]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  967.649513][T20543]  ? input_event+0xbb/0xd0
[  967.649532][T20543]  uinput_write+0xb9f/0xf60
[  967.649558][T20543]  ? common_file_perm+0x1ab/0x4f0
[  967.649580][T20543]  ? __pfx_uinput_write+0x10/0x10
[  967.649605][T20543]  ? bpf_lsm_file_permission+0x9/0x10
[  967.649625][T20543]  ? security_file_permission+0x76/0x210
[  967.649650][T20543]  ? rw_verify_area+0xce/0x6d0
[  967.649666][T20543]  ? __pfx_uinput_write+0x10/0x10
[  967.649687][T20543]  vfs_writev+0x5ea/0xe10
[  967.649702][T20543]  ? get_pid_task+0x106/0x250
[  967.649727][T20543]  ? __pfx_vfs_writev+0x10/0x10
[  967.649743][T20543]  ? find_held_lock+0x2b/0x80
[  967.649769][T20543]  ? __fget_files+0x21f/0x3d0
[  967.649794][T20543]  ? do_writev+0x28a/0x340
[  967.649808][T20543]  do_writev+0x28a/0x340
[  967.649823][T20543]  ? __pfx_do_writev+0x10/0x10
[  967.649844][T20543]  do_syscall_64+0xc9/0xf80
[  967.649864][T20543]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  967.649879][T20543] RIP: 0033:0x7f882d79aeb9
[  967.649892][T20543] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  967.649906][T20543] RSP: 002b:00007f882e62e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  967.649921][T20543] RAX: ffffffffffffffda RBX: 00007f882da15fa0 RCX: 00007f882d79aeb9
[  967.649931][T20543] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000002
[  967.649941][T20543] RBP: 00007f882e62e090 R08: 0000000000000000 R09: 0000000000000000
[  967.649950][T20543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  967.649958][T20543] R13: 00007f882da16038 R14: 00007f882da15fa0 R15: 00007fff73092628
[  967.649978][T20543]  </TASK>
[  969.703044][T20600] vivid-007: =================  START STATUS  =================
[  969.756344][T20600] vivid-007: Generate PTS: true
[  969.790121][T20600] vivid-007: Generate SCR: true
[  969.827498][T20600] tpg source WxH: 320x240 (Y'CbCr)
[  969.861726][T20600] tpg field: 1
[  969.895235][T20600] tpg crop: (0,0)/320x240
[  969.922851][T20600] tpg compose: (0,0)/320x240
[  969.955091][T20600] tpg colorspace: 8
[  969.972798][T20600] tpg transfer function: 0/0
[  970.000093][T20600] tpg Y'CbCr encoding: 0/0
[  970.027017][T20600] tpg quantization: 0/0
[  970.051263][T20600] tpg RGB range: 0/2
[  970.090382][T20600] vivid-007: ==================  END STATUS  ==================
[  970.358729][T20612] futex_wake_op: syz.3.3202 tries to shift op by -2048; fix this program
[  970.459447][T20612] futex_wake_op: syz.3.3202 tries to shift op by -2048; fix this program
[  970.890276][T20618] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3205'.
[  971.378465][T20623] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input158
[  971.994117][T20632] FAULT_INJECTION: forcing a failure.
[  971.994117][T20632] name failslab, interval 1, probability 393216, space 0, times 0
[  972.063814][T20632] CPU: 0 UID: 0 PID: 20632 Comm: syz.1.3208 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  972.063842][T20632] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  972.063849][T20632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  972.063858][T20632] Call Trace:
[  972.063863][T20632]  <TASK>
[  972.063869][T20632]  dump_stack_lvl+0x100/0x190
[  972.063892][T20632]  should_fail_ex.cold+0x5/0xa
[  972.063917][T20632]  should_failslab+0xc2/0x120
[  972.063939][T20632]  kmem_cache_alloc_noprof+0x83/0x780
[  972.063960][T20632]  ? alloc_empty_file+0x55/0x1c0
[  972.063984][T20632]  ? alloc_empty_file+0x55/0x1c0
[  972.064004][T20632]  alloc_empty_file+0x55/0x1c0
[  972.064026][T20632]  path_openat+0xe8/0x3120
[  972.064043][T20632]  ? getname_flags+0x93/0xf0
[  972.064057][T20632]  ? do_sys_openat2+0xc5/0x220
[  972.064078][T20632]  ? __x64_sys_openat+0x12d/0x210
[  972.064099][T20632]  ? do_syscall_64+0xc9/0xf80
[  972.064116][T20632]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  972.064136][T20632]  ? __pfx_path_openat+0x10/0x10
[  972.064160][T20632]  do_filp_open+0x1f7/0x420
[  972.064178][T20632]  ? __pfx_do_filp_open+0x10/0x10
[  972.064209][T20632]  ? _raw_spin_unlock+0x28/0x50
[  972.064223][T20632]  ? alloc_fd+0x476/0x790
[  972.064245][T20632]  do_sys_openat2+0x12e/0x220
[  972.064267][T20632]  ? __pfx_do_sys_openat2+0x10/0x10
[  972.064288][T20632]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  972.064309][T20632]  ? __fget_files+0x21f/0x3d0
[  972.064328][T20632]  __x64_sys_openat+0x12d/0x210
[  972.064351][T20632]  ? __pfx___x64_sys_openat+0x10/0x10
[  972.064373][T20632]  ? ksys_write+0x1ac/0x250
[  972.064395][T20632]  do_syscall_64+0xc9/0xf80
[  972.064414][T20632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  972.064430][T20632] RIP: 0033:0x7f305999aeb9
[  972.064443][T20632] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  972.064457][T20632] RSP: 002b:00007f305a815028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  972.064473][T20632] RAX: ffffffffffffffda RBX: 00007f3059c16090 RCX: 00007f305999aeb9
[  972.064483][T20632] RDX: 000000000000cb00 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  972.064492][T20632] RBP: 00007f305a815090 R08: 0000000000000000 R09: 0000000000000000
[  972.064501][T20632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  972.064510][T20632] R13: 00007f3059c16128 R14: 00007f3059c16090 R15: 00007fff7bb7d2f8
[  972.064528][T20632]  </TASK>
[  972.985891][T20639] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[  973.293549][T20648] vivid-007: =================  START STATUS  =================
[  973.323495][T20648] vivid-007: Generate PTS: true
[  973.334781][T20654] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3214'.
[  973.364184][T20648] vivid-007: Generate SCR: true
[  973.381288][T20648] tpg source WxH: 320x240 (Y'CbCr)
[  973.390929][T20656] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3214'.
[  973.441159][T20648] tpg field: 1
[  973.457872][T20648] tpg crop: (0,0)/320x240
[  973.493020][T20648] tpg compose: (0,0)/320x240
[  973.511142][T20648] tpg colorspace: 8
[  973.541874][T20648] tpg transfer function: 0/0
[  973.552355][T20648] tpg Y'CbCr encoding: 0/0
[  973.573952][T20648] tpg quantization: 0/0
[  973.601610][T20648] tpg RGB range: 0/2
[  973.636471][T20648] vivid-007: ==================  END STATUS  ==================
[  974.249960][T19738] Bluetooth: hci4: unexpected subevent 0x03 length: 253 > 9
[  975.446214][T20704] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3224'.
[  975.934231][T20715] vivid-007: =================  START STATUS  =================
[  975.976003][T20715] vivid-007: Generate PTS: true
[  975.995950][T20715] vivid-007: Generate SCR: true
[  976.043563][T20715] tpg source WxH: 320x240 (Y'CbCr)
[  976.081727][T20715] tpg field: 1
[  976.088060][T20715] tpg crop: (0,0)/320x240
[  976.117734][T20715] tpg compose: (0,0)/320x240
[  976.137875][T20715] tpg colorspace: 8
[  976.154767][T20715] tpg transfer function: 0/0
[  976.174933][T20715] tpg Y'CbCr encoding: 0/0
[  976.195076][T20715] tpg quantization: 0/0
[  976.213349][T20715] tpg RGB range: 0/2
[  976.231678][T20715] vivid-007: ==================  END STATUS  ==================
[  976.595583][T20704] kexec: Could not allocate control_code_buffer
[  977.721666][T20746] FAULT_INJECTION: forcing a failure.
[  977.721666][T20746] name failslab, interval 1, probability 393216, space 0, times 0
[  977.774973][T20746] CPU: 0 UID: 0 PID: 20746 Comm: syz.3.3234 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  977.775001][T20746] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  977.775006][T20746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  977.775015][T20746] Call Trace:
[  977.775021][T20746]  <TASK>
[  977.775027][T20746]  dump_stack_lvl+0x100/0x190
[  977.775051][T20746]  should_fail_ex.cold+0x5/0xa
[  977.775076][T20746]  should_failslab+0xc2/0x120
[  977.775098][T20746]  ? scsi_ioctl_reset+0x133/0x820
[  977.775116][T20746]  __kmalloc_noprof+0xf6/0x9c0
[  977.775136][T20746]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  977.775154][T20746]  ? lockdep_hardirqs_on+0x78/0x100
[  977.775175][T20746]  ? scsi_ioctl_reset+0x133/0x820
[  977.775192][T20746]  scsi_ioctl_reset+0x133/0x820
[  977.775211][T20746]  scsi_ioctl+0x121d/0x17b0
[  977.775226][T20746]  ? __pfx___might_resched+0x10/0x10
[  977.775250][T20746]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  977.775268][T20746]  ? __pfx_scsi_ioctl+0x10/0x10
[  977.775285][T20746]  ? __pfx_scsi_block_when_processing_errors+0x10/0x10
[  977.775304][T20746]  ? do_vfs_ioctl+0x226/0x13e0
[  977.775327][T20746]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  977.775357][T20746]  sd_ioctl+0x1ac/0x2b0
[  977.775371][T20746]  ? __pfx_sd_ioctl+0x10/0x10
[  977.775394][T20746]  blkdev_ioctl+0x5ad/0x6f0
[  977.775412][T20746]  ? __pfx_blkdev_ioctl+0x10/0x10
[  977.775431][T20746]  ? __pfx_blkdev_ioctl+0x10/0x10
[  977.775449][T20746]  __x64_sys_ioctl+0x18e/0x210
[  977.775474][T20746]  do_syscall_64+0xc9/0xf80
[  977.775494][T20746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  977.775509][T20746] RIP: 0033:0x7fedbdb9aeb9
[  977.775522][T20746] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  977.775537][T20746] RSP: 002b:00007fedbea85028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  977.775552][T20746] RAX: ffffffffffffffda RBX: 00007fedbde15fa0 RCX: 00007fedbdb9aeb9
[  977.775562][T20746] RDX: 0000000000000000 RSI: 0000000000002284 RDI: 0000000000000005
[  977.775572][T20746] RBP: 00007fedbea85090 R08: 0000000000000000 R09: 0000000000000000
[  977.775581][T20746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  977.775589][T20746] R13: 00007fedbde16038 R14: 00007fedbde15fa0 R15: 00007ffd343925f8
[  977.775608][T20746]  </TASK>
[  979.778429][T20779] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  979.875796][T20781] sd 0:0:1:0: device reset
[  982.089155][T20828] netlink: 'syz.3.3254': attribute type 12 has an invalid length.
[  982.582893][T20845] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[  984.931120][   T30] audit: type=1804 audit(4294967350.531:18): pid=20883 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3273" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=40 res=1 errno=0
[  984.977495][T20883] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3273'.
[  986.821864][T20929] FAULT_INJECTION: forcing a failure.
[  986.821864][T20929] name failslab, interval 1, probability 393216, space 0, times 0
[  986.868183][T20929] CPU: 0 UID: 0 PID: 20929 Comm: syz.1.3284 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  986.868230][T20929] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  986.868236][T20929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  986.868245][T20929] Call Trace:
[  986.868251][T20929]  <TASK>
[  986.868257][T20929]  dump_stack_lvl+0x100/0x190
[  986.868281][T20929]  should_fail_ex.cold+0x5/0xa
[  986.868306][T20929]  should_failslab+0xc2/0x120
[  986.868328][T20929]  kmem_cache_alloc_noprof+0x83/0x780
[  986.868346][T20929]  ? d_instantiate+0x90/0xb0
[  986.868365][T20929]  ? alloc_empty_file+0x55/0x1c0
[  986.868389][T20929]  ? alloc_empty_file+0x55/0x1c0
[  986.868409][T20929]  alloc_empty_file+0x55/0x1c0
[  986.868431][T20929]  alloc_file_pseudo+0x13a/0x230
[  986.868453][T20929]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  986.868475][T20929]  ? alloc_fd+0x476/0x790
[  986.868495][T20929]  sock_alloc_file+0x50/0x210
[  986.868519][T20929]  __sys_socket+0x1c0/0x260
[  986.868536][T20929]  ? fput+0x79/0x100
[  986.868555][T20929]  ? __pfx___sys_socket+0x10/0x10
[  986.868573][T20929]  ? xfd_validate_state+0x129/0x190
[  986.868601][T20929]  __x64_sys_socket+0x72/0xb0
[  986.868617][T20929]  ? lockdep_hardirqs_on+0x78/0x100
[  986.868635][T20929]  do_syscall_64+0xc9/0xf80
[  986.868654][T20929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  986.868670][T20929] RIP: 0033:0x7f305999aeb9
[  986.868683][T20929] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  986.868698][T20929] RSP: 002b:00007f305a836028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  986.868713][T20929] RAX: ffffffffffffffda RBX: 00007f3059c15fa0 RCX: 00007f305999aeb9
[  986.868724][T20929] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  986.868733][T20929] RBP: 00007f3059a08c1f R08: 0000000000000000 R09: 0000000000000000
[  986.868742][T20929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  986.868751][T20929] R13: 00007f3059c16038 R14: 00007f3059c15fa0 R15: 00007fff7bb7d2f8
[  986.868771][T20929]  </TASK>
[  987.113531][T20927] random: crng reseeded on system resumption
[  987.535673][T20935] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  987.799280][T20941] FAULT_INJECTION: forcing a failure.
[  987.799280][T20941] name failslab, interval 1, probability 393216, space 0, times 0
[  987.888105][T20941] CPU: 0 UID: 0 PID: 20941 Comm: syz.0.3288 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  987.888140][T20941] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  987.888146][T20941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  987.888156][T20941] Call Trace:
[  987.888162][T20941]  <TASK>
[  987.888169][T20941]  dump_stack_lvl+0x100/0x190
[  987.888194][T20941]  should_fail_ex.cold+0x5/0xa
[  987.888220][T20941]  should_failslab+0xc2/0x120
[  987.888242][T20941]  __kmalloc_cache_noprof+0x80/0x810
[  987.888259][T20941]  ? __vb2_init_fileio+0x18f/0xff0
[  987.888285][T20941]  ? __vb2_init_fileio+0x18f/0xff0
[  987.888306][T20941]  __vb2_init_fileio+0x18f/0xff0
[  987.888327][T20941]  ? lockdep_hardirqs_on+0x78/0x100
[  987.888346][T20941]  ? __pollwait+0x276/0x470
[  987.888366][T20941]  vb2_core_poll+0x611/0x740
[  987.888390][T20941]  vb2_poll+0x4b/0xe0
[  987.888409][T20941]  vb2_fop_poll+0x10e/0x350
[  987.888430][T20941]  ? __pfx_vb2_fop_poll+0x10/0x10
[  987.888449][T20941]  v4l2_poll+0x15f/0x220
[  987.888468][T20941]  ? __pfx_v4l2_poll+0x10/0x10
[  987.888485][T20941]  do_sys_poll+0x6e5/0xeb0
[  987.888507][T20941]  ? __pfx_do_sys_poll+0x10/0x10
[  987.888538][T20941]  ? __futex_wait+0x256/0x300
[  987.888554][T20941]  ? __pfx___pollwait+0x10/0x10
[  987.888572][T20941]  ? __pfx_pollwake+0x10/0x10
[  987.888614][T20941]  ? ktime_get_ts64+0x2d2/0x3f0
[  987.888632][T20941]  ? read_tsc+0x9/0x20
[  987.888651][T20941]  ? ktime_get_ts64+0x256/0x3f0
[  987.888671][T20941]  ? poll_select_set_timeout+0xcc/0x160
[  987.888690][T20941]  __x64_sys_poll+0x1a6/0x440
[  987.888706][T20941]  ? __pfx___x64_sys_poll+0x10/0x10
[  987.888728][T20941]  do_syscall_64+0xc9/0xf80
[  987.888747][T20941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  987.888763][T20941] RIP: 0033:0x7f882d79aeb9
[  987.888776][T20941] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  987.888791][T20941] RSP: 002b:00007f882e62e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000007
[  987.888806][T20941] RAX: ffffffffffffffda RBX: 00007f882da15fa0 RCX: 00007f882d79aeb9
[  987.888816][T20941] RDX: 0000000000000007 RSI: 0000000000000003 RDI: 0000200000000480
[  987.888825][T20941] RBP: 00007f882d808c1f R08: 0000000000000000 R09: 0000000000000000
[  987.888834][T20941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  987.888843][T20941] R13: 00007f882da16038 R14: 00007f882da15fa0 R15: 00007fff73092628
[  987.888862][T20941]  </TASK>
[  988.630971][T20943] zswap: compressor  not available
[  993.497100][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  993.503915][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  993.729249][T21053] vhci_hcd vhci_hcd.2: invalid port number 16
[  993.791970][T21053] vhci_hcd vhci_hcd.2: invalid port number 16
[  993.931280][T21054] zswap: compressor � not available
[  994.542148][T21072] random: crng reseeded on system resumption
[  996.517426][T21113] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[  997.160358][T21125] random: crng reseeded on system resumption
[  997.564274][T21135] FAULT_INJECTION: forcing a failure.
[  997.564274][T21135] name failslab, interval 1, probability 393216, space 0, times 0
[  997.612905][T21135] CPU: 0 UID: 0 PID: 21135 Comm: syz.2.3325 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  997.612934][T21135] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  997.612940][T21135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  997.612950][T21135] Call Trace:
[  997.612956][T21135]  <TASK>
[  997.612962][T21135]  dump_stack_lvl+0x100/0x190
[  997.612986][T21135]  should_fail_ex.cold+0x5/0xa
[  997.613011][T21135]  should_failslab+0xc2/0x120
[  997.613033][T21135]  kmem_cache_alloc_noprof+0x83/0x780
[  997.613053][T21135]  ? alloc_empty_file+0x55/0x1c0
[  997.613085][T21135]  ? alloc_empty_file+0x55/0x1c0
[  997.613105][T21135]  alloc_empty_file+0x55/0x1c0
[  997.613128][T21135]  path_openat+0xe8/0x3120
[  997.613145][T21135]  ? getname_flags+0x93/0xf0
[  997.613159][T21135]  ? do_sys_openat2+0xc5/0x220
[  997.613180][T21135]  ? __x64_sys_openat+0x12d/0x210
[  997.613200][T21135]  ? do_syscall_64+0xc9/0xf80
[  997.613217][T21135]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  997.613237][T21135]  ? __pfx_path_openat+0x10/0x10
[  997.613261][T21135]  do_filp_open+0x1f7/0x420
[  997.613280][T21135]  ? __pfx_do_filp_open+0x10/0x10
[  997.613311][T21135]  ? _raw_spin_unlock+0x28/0x50
[  997.613326][T21135]  ? alloc_fd+0x476/0x790
[  997.613348][T21135]  do_sys_openat2+0x12e/0x220
[  997.613370][T21135]  ? __pfx_do_sys_openat2+0x10/0x10
[  997.613393][T21135]  ? __fget_files+0x21f/0x3d0
[  997.613413][T21135]  __x64_sys_openat+0x12d/0x210
[  997.613436][T21135]  ? __pfx___x64_sys_openat+0x10/0x10
[  997.613457][T21135]  ? xfd_validate_state+0x129/0x190
[  997.613486][T21135]  do_syscall_64+0xc9/0xf80
[  997.613506][T21135]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  997.613521][T21135] RIP: 0033:0x7fc8ba19aeb9
[  997.613534][T21135] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  997.613548][T21135] RSP: 002b:00007fc8bb046028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  997.613564][T21135] RAX: ffffffffffffffda RBX: 00007fc8ba415fa0 RCX: 00007fc8ba19aeb9
[  997.613574][T21135] RDX: 0000000000002000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  997.613584][T21135] RBP: 00007fc8ba208c1f R08: 0000000000000000 R09: 0000000000000000
[  997.613593][T21135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  997.613602][T21135] R13: 00007fc8ba416038 R14: 00007fc8ba415fa0 R15: 00007ffc44ec0688
[  997.613622][T21135]  </TASK>
[  998.443545][T21145] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[ 1000.076982][T21169] delete_channel: no stack
[ 1000.097442][T21160] loop6: detected capacity change from 0 to 8192
[ 1000.653232][T21185] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[ 1001.628017][T21207] FAULT_INJECTION: forcing a failure.
[ 1001.628017][T21207] name failslab, interval 1, probability 393216, space 0, times 0
[ 1001.696963][T21207] CPU: 0 UID: 0 PID: 21207 Comm: syz.0.3341 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1001.696993][T21207] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1001.697000][T21207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1001.697009][T21207] Call Trace:
[ 1001.697015][T21207]  <TASK>
[ 1001.697021][T21207]  dump_stack_lvl+0x100/0x190
[ 1001.697045][T21207]  should_fail_ex.cold+0x5/0xa
[ 1001.697071][T21207]  should_failslab+0xc2/0x120
[ 1001.697093][T21207]  kmem_cache_alloc_lru_noprof+0x8e/0x7d0
[ 1001.697112][T21207]  ? lockdep_init_map_type+0x5c/0x250
[ 1001.697134][T21207]  ? __d_alloc+0x34/0xa80
[ 1001.697155][T21207]  ? __d_alloc+0x34/0xa80
[ 1001.697171][T21207]  __d_alloc+0x34/0xa80
[ 1001.697191][T21207]  d_alloc_pseudo+0x1c/0xc0
[ 1001.697214][T21207]  alloc_file_pseudo+0xcf/0x230
[ 1001.697237][T21207]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1001.697259][T21207]  ? alloc_fd+0x476/0x790
[ 1001.697278][T21207]  sock_alloc_file+0x50/0x210
[ 1001.697303][T21207]  __sys_socket+0x1c0/0x260
[ 1001.697319][T21207]  ? fput+0x79/0x100
[ 1001.697338][T21207]  ? __pfx___sys_socket+0x10/0x10
[ 1001.697356][T21207]  ? xfd_validate_state+0x129/0x190
[ 1001.697384][T21207]  __x64_sys_socket+0x72/0xb0
[ 1001.697400][T21207]  ? lockdep_hardirqs_on+0x78/0x100
[ 1001.697419][T21207]  do_syscall_64+0xc9/0xf80
[ 1001.697438][T21207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1001.697453][T21207] RIP: 0033:0x7f882d79aeb9
[ 1001.697467][T21207] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1001.697482][T21207] RSP: 002b:00007f882e60d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1001.697497][T21207] RAX: ffffffffffffffda RBX: 00007f882da16090 RCX: 00007f882d79aeb9
[ 1001.697506][T21207] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[ 1001.697515][T21207] RBP: 00007f882d808c1f R08: 0000000000000000 R09: 0000000000000000
[ 1001.697525][T21207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1001.697534][T21207] R13: 00007f882da16128 R14: 00007f882da16090 R15: 00007fff73092628
[ 1001.697554][T21207]  </TASK>
[ 1005.967360][T21260] FAULT_INJECTION: forcing a failure.
[ 1005.967360][T21260] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1006.050492][T21260] CPU: 0 UID: 0 PID: 21260 Comm: syz.0.3348 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1006.050519][T21260] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1006.050525][T21260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1006.050534][T21260] Call Trace:
[ 1006.050540][T21260]  <TASK>
[ 1006.050546][T21260]  dump_stack_lvl+0x100/0x190
[ 1006.050570][T21260]  should_fail_ex.cold+0x5/0xa
[ 1006.050595][T21260]  _copy_to_user+0x32/0xd0
[ 1006.050620][T21260]  simple_read_from_buffer+0xcb/0x170
[ 1006.050637][T21260]  proc_fail_nth_read+0x1af/0x230
[ 1006.050656][T21260]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1006.050675][T21260]  ? rw_verify_area+0xce/0x6d0
[ 1006.050690][T21260]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1006.050707][T21260]  vfs_read+0x1e4/0xb30
[ 1006.050726][T21260]  ? __pfx_vfs_read+0x10/0x10
[ 1006.050741][T21260]  ? find_held_lock+0x2b/0x80
[ 1006.050757][T21260]  ? __fget_files+0x215/0x3d0
[ 1006.050776][T21260]  ? __fget_files+0x21f/0x3d0
[ 1006.050797][T21260]  ksys_read+0x12a/0x250
[ 1006.050814][T21260]  ? __pfx_ksys_read+0x10/0x10
[ 1006.050835][T21260]  do_syscall_64+0xc9/0xf80
[ 1006.050856][T21260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1006.050871][T21260] RIP: 0033:0x7f882d75b78e
[ 1006.050885][T21260] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1006.050899][T21260] RSP: 002b:00007f882e62dfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1006.050914][T21260] RAX: ffffffffffffffda RBX: 00007f882e62e6c0 RCX: 00007f882d75b78e
[ 1006.050925][T21260] RDX: 000000000000000f RSI: 00007f882e62e0a0 RDI: 0000000000000003
[ 1006.050934][T21260] RBP: 00007f882e62e090 R08: 0000000000000000 R09: 0000000000000000
[ 1006.050943][T21260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1006.050952][T21260] R13: 00007f882da16038 R14: 00007f882da15fa0 R15: 00007fff73092628
[ 1006.050971][T21260]  </TASK>
[ 1006.854074][T19738] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[ 1006.862261][T19738] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff
[ 1007.414717][T21294] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3358'.
[ 1009.759247][T21329] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[ 1010.954212][T21359] : Can't lookup blockdev
[ 1011.219113][T21362] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input167
[ 1011.258650][T21362] FAULT_INJECTION: forcing a failure.
[ 1011.258650][T21362] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1011.333653][T21362] CPU: 0 UID: 0 PID: 21362 Comm: syz.0.3372 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1011.333680][T21362] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1011.333686][T21362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1011.333696][T21362] Call Trace:
[ 1011.333701][T21362]  <TASK>
[ 1011.333832][T21362]  dump_stack_lvl+0x100/0x190
[ 1011.333859][T21362]  should_fail_ex.cold+0x5/0xa
[ 1011.333885][T21362]  _copy_from_user+0x2e/0xd0
[ 1011.333910][T21362]  input_event_from_user+0xb9/0x290
[ 1011.333932][T21362]  ? __pfx_input_event_from_user+0x10/0x10
[ 1011.333953][T21362]  ? __pfx___might_resched+0x10/0x10
[ 1011.333976][T21362]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1011.333993][T21362]  ? input_event+0xbb/0xd0
[ 1011.334013][T21362]  uinput_write+0xb9f/0xf60
[ 1011.334039][T21362]  ? common_file_perm+0x1ab/0x4f0
[ 1011.334061][T21362]  ? __pfx_uinput_write+0x10/0x10
[ 1011.334086][T21362]  ? bpf_lsm_file_permission+0x9/0x10
[ 1011.334107][T21362]  ? security_file_permission+0x76/0x210
[ 1011.334131][T21362]  ? rw_verify_area+0xce/0x6d0
[ 1011.334148][T21362]  ? __pfx_uinput_write+0x10/0x10
[ 1011.334169][T21362]  vfs_writev+0x5ea/0xe10
[ 1011.334184][T21362]  ? get_pid_task+0x106/0x250
[ 1011.334209][T21362]  ? __pfx_vfs_writev+0x10/0x10
[ 1011.334225][T21362]  ? find_held_lock+0x2b/0x80
[ 1011.334251][T21362]  ? __fget_files+0x21f/0x3d0
[ 1011.334272][T21362]  ? do_writev+0x28a/0x340
[ 1011.334286][T21362]  do_writev+0x28a/0x340
[ 1011.334302][T21362]  ? __pfx_do_writev+0x10/0x10
[ 1011.334323][T21362]  do_syscall_64+0xc9/0xf80
[ 1011.334343][T21362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1011.334359][T21362] RIP: 0033:0x7f882d79aeb9
[ 1011.334373][T21362] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1011.334388][T21362] RSP: 002b:00007f882e62e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1011.334402][T21362] RAX: ffffffffffffffda RBX: 00007f882da15fa0 RCX: 00007f882d79aeb9
[ 1011.334412][T21362] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000002
[ 1011.334421][T21362] RBP: 00007f882e62e090 R08: 0000000000000000 R09: 0000000000000000
[ 1011.334430][T21362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1011.334439][T21362] R13: 00007f882da16038 R14: 00007f882da15fa0 R15: 00007fff73092628
[ 1011.334458][T21362]  </TASK>
[ 1012.049524][T21381] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[ 1013.712081][T21419] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3384'.
[ 1013.885954][T21422] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[ 1014.316414][T21435] netlink: 330 bytes leftover after parsing attributes in process `syz.0.3390'.
[ 1014.341525][T21431] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1014.800192][T21448] FAULT_INJECTION: forcing a failure.
[ 1014.800192][T21448] name failslab, interval 1, probability 393216, space 0, times 0
[ 1014.860806][T21448] CPU: 0 UID: 0 PID: 21448 Comm: syz.0.3392 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1014.860834][T21448] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1014.860840][T21448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1014.860849][T21448] Call Trace:
[ 1014.860855][T21448]  <TASK>
[ 1014.860861][T21448]  dump_stack_lvl+0x100/0x190
[ 1014.860884][T21448]  should_fail_ex.cold+0x5/0xa
[ 1014.860909][T21448]  should_failslab+0xc2/0x120
[ 1014.860931][T21448]  kmem_cache_alloc_node_noprof+0x8c/0x880
[ 1014.860953][T21448]  ? __alloc_skb+0x156/0x410
[ 1014.860972][T21448]  ? __alloc_skb+0x35d/0x410
[ 1014.860993][T21448]  ? __alloc_skb+0x156/0x410
[ 1014.861012][T21448]  __alloc_skb+0x156/0x410
[ 1014.861030][T21448]  ? __alloc_skb+0x35d/0x410
[ 1014.861049][T21448]  ? __pfx___alloc_skb+0x10/0x10
[ 1014.861069][T21448]  ? netlink_autobind.isra.0+0x70/0x370
[ 1014.861098][T21448]  netlink_alloc_large_skb+0x69/0x150
[ 1014.861122][T21448]  netlink_sendmsg+0x680/0xda0
[ 1014.861149][T21448]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1014.861171][T21448]  ? __import_iovec+0x1d2/0x640
[ 1014.861198][T21448]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1014.861220][T21448]  ____sys_sendmsg+0xa54/0xc30
[ 1014.861239][T21448]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1014.861263][T21448]  ___sys_sendmsg+0x190/0x1e0
[ 1014.861281][T21448]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1014.861307][T21448]  ? find_held_lock+0x2b/0x80
[ 1014.861333][T21448]  __sys_sendmsg+0x170/0x220
[ 1014.861356][T21448]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1014.861395][T21448]  do_syscall_64+0xc9/0xf80
[ 1014.861415][T21448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1014.861430][T21448] RIP: 0033:0x7f882d79aeb9
[ 1014.861443][T21448] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1014.861457][T21448] RSP: 002b:00007f882e62e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1014.861472][T21448] RAX: ffffffffffffffda RBX: 00007f882da15fa0 RCX: 00007f882d79aeb9
[ 1014.861482][T21448] RDX: 0000000064004890 RSI: 0000200000000640 RDI: 0000000000000003
[ 1014.861492][T21448] RBP: 00007f882e62e090 R08: 0000000000000000 R09: 0000000000000000
[ 1014.861501][T21448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1014.861510][T21448] R13: 00007f882da16038 R14: 00007f882da15fa0 R15: 00007fff73092628
[ 1014.861529][T21448]  </TASK>
[ 1015.574946][T21463] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1015.636912][T21460] ima: policy update failed
[ 1015.644505][   T30] audit: type=1802 audit(4294967381.401:19): pid=21460 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.3395" res=0 errno=0
[ 1015.985667][T21476] FAULT_INJECTION: forcing a failure.
[ 1015.985667][T21476] name failslab, interval 1, probability 393216, space 0, times 0
[ 1016.035188][T21476] CPU: 0 UID: 0 PID: 21476 Comm: syz.3.3400 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1016.035218][T21476] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1016.035224][T21476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1016.035233][T21476] Call Trace:
[ 1016.035239][T21476]  <TASK>
[ 1016.035245][T21476]  dump_stack_lvl+0x100/0x190
[ 1016.035269][T21476]  should_fail_ex.cold+0x5/0xa
[ 1016.035294][T21476]  should_failslab+0xc2/0x120
[ 1016.035316][T21476]  __kmalloc_node_noprof+0xfb/0x9e0
[ 1016.035337][T21476]  ? __kfifo_alloc_node+0x142/0x280
[ 1016.035357][T21476]  ? __kfifo_alloc_node+0x142/0x280
[ 1016.035372][T21476]  __kfifo_alloc_node+0x142/0x280
[ 1016.035389][T21476]  gsm_dlci_alloc+0xb2/0x730
[ 1016.035414][T21476]  gsmld_ioctl+0x11c5/0x15c0
[ 1016.035433][T21476]  ? lockdep_hardirqs_on+0x78/0x100
[ 1016.035462][T21476]  ? __pfx_gsmld_ioctl+0x10/0x10
[ 1016.035480][T21476]  ? tomoyo_path_number_perm+0x28f/0x580
[ 1016.035512][T21476]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1016.035529][T21476]  ? __pfx_pty_unix98_ioctl+0x10/0x10
[ 1016.035550][T21476]  ? __pfx_gsmld_ioctl+0x10/0x10
[ 1016.035564][T21476]  tty_ioctl+0x1204/0x1690
[ 1016.035587][T21476]  ? __pfx_tty_ioctl+0x10/0x10
[ 1016.035614][T21476]  ? find_held_lock+0x2b/0x80
[ 1016.035629][T21476]  ? hook_file_ioctl_common+0x146/0x410
[ 1016.035655][T21476]  ? __fget_files+0x21f/0x3d0
[ 1016.035675][T21476]  ? __pfx_tty_ioctl+0x10/0x10
[ 1016.035698][T21476]  __x64_sys_ioctl+0x18e/0x210
[ 1016.035723][T21476]  do_syscall_64+0xc9/0xf80
[ 1016.035743][T21476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1016.035759][T21476] RIP: 0033:0x7fedbdb9aeb9
[ 1016.035772][T21476] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1016.035787][T21476] RSP: 002b:00007fedbea85028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1016.035802][T21476] RAX: ffffffffffffffda RBX: 00007fedbde15fa0 RCX: 00007fedbdb9aeb9
[ 1016.035812][T21476] RDX: 0000000000000000 RSI: 00000000c0384707 RDI: 0000000000000015
[ 1016.035821][T21476] RBP: 00007fedbea85090 R08: 0000000000000000 R09: 0000000000000000
[ 1016.035830][T21476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1016.035839][T21476] R13: 00007fedbde16038 R14: 00007fedbde15fa0 R15: 00007ffd343925f8
[ 1016.035859][T21476]  </TASK>
[ 1016.820689][T21498] FAULT_INJECTION: forcing a failure.
[ 1016.820689][T21498] name failslab, interval 1, probability 393216, space 0, times 0
[ 1016.911000][T21498] CPU: 0 UID: 0 PID: 21498 Comm: syz.2.3404 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1016.911028][T21498] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1016.911035][T21498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1016.911051][T21498] Call Trace:
[ 1016.911056][T21498]  <TASK>
[ 1016.911069][T21498]  dump_stack_lvl+0x100/0x190
[ 1016.911093][T21498]  should_fail_ex.cold+0x5/0xa
[ 1016.911119][T21498]  should_failslab+0xc2/0x120
[ 1016.911140][T21498]  ? copy_splice_read+0x1a3/0xb90
[ 1016.911156][T21498]  __kmalloc_noprof+0xf6/0x9c0
[ 1016.911176][T21498]  ? copy_splice_read+0x1a3/0xb90
[ 1016.911191][T21498]  copy_splice_read+0x1a3/0xb90
[ 1016.911211][T21498]  ? __pfx_copy_splice_read+0x10/0x10
[ 1016.911236][T21498]  ? look_up_lock_class+0x55/0x120
[ 1016.911258][T21498]  ? lockdep_init_map_type+0x5c/0x250
[ 1016.911280][T21498]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[ 1016.911299][T21498]  ? __pfx_copy_splice_read+0x10/0x10
[ 1016.911315][T21498]  do_splice_read+0x285/0x370
[ 1016.911333][T21498]  splice_direct_to_actor+0x2a1/0xa30
[ 1016.911351][T21498]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1016.911372][T21498]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1016.911394][T21498]  do_splice_direct+0x174/0x240
[ 1016.911411][T21498]  ? __pfx_do_splice_direct+0x10/0x10
[ 1016.911427][T21498]  ? common_file_perm+0x1ab/0x4f0
[ 1016.911450][T21498]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1016.911469][T21498]  ? rw_verify_area+0xce/0x6d0
[ 1016.911486][T21498]  do_sendfile+0xadc/0xe20
[ 1016.911505][T21498]  ? __pfx_do_sendfile+0x10/0x10
[ 1016.911521][T21498]  ? __fget_files+0x21f/0x3d0
[ 1016.911543][T21498]  __x64_sys_sendfile64+0x1d8/0x220
[ 1016.911563][T21498]  ? ksys_write+0x1ac/0x250
[ 1016.911579][T21498]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1016.911604][T21498]  do_syscall_64+0xc9/0xf80
[ 1016.911624][T21498]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1016.911640][T21498] RIP: 0033:0x7fc8ba19aeb9
[ 1016.911653][T21498] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1016.911668][T21498] RSP: 002b:00007fc8bb046028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1016.911683][T21498] RAX: ffffffffffffffda RBX: 00007fc8ba415fa0 RCX: 00007fc8ba19aeb9
[ 1016.911693][T21498] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 1016.911702][T21498] RBP: 00007fc8bb046090 R08: 0000000000000000 R09: 0000000000000000
[ 1016.911711][T21498] R10: 0000000002400000 R11: 0000000000000246 R12: 0000000000000001
[ 1016.911721][T21498] R13: 00007fc8ba416038 R14: 00007fc8ba415fa0 R15: 00007ffc44ec0688
[ 1016.911740][T21498]  </TASK>
[ 1017.512027][T21494] NFSD: Failed to start, no listeners configured.
[ 1018.251970][T21514] FAULT_INJECTION: forcing a failure.
[ 1018.251970][T21514] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1018.321219][T21514] CPU: 0 UID: 0 PID: 21514 Comm: syz.2.3407 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1018.321247][T21514] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1018.321254][T21514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1018.321264][T21514] Call Trace:
[ 1018.321269][T21514]  <TASK>
[ 1018.321275][T21514]  dump_stack_lvl+0x100/0x190
[ 1018.321298][T21514]  should_fail_ex.cold+0x5/0xa
[ 1018.321321][T21514]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1018.321346][T21514]  should_fail_alloc_page+0xeb/0x140
[ 1018.321369][T21514]  prepare_alloc_pages+0x1f0/0x5f0
[ 1018.321391][T21514]  ? rcu_is_watching+0x12/0xc0
[ 1018.321408][T21514]  __alloc_frozen_pages_noprof+0x193/0x2410
[ 1018.321426][T21514]  ? __alloc_frozen_pages_noprof+0x2a0/0x2410
[ 1018.321444][T21514]  ? __pfx_css_rstat_updated+0x10/0x10
[ 1018.321469][T21514]  ? find_held_lock+0x2b/0x80
[ 1018.321484][T21514]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1018.321502][T21514]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1018.321527][T21514]  ? __alloc_frozen_pages_noprof+0x2a0/0x2410
[ 1018.321547][T21514]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1018.321565][T21514]  ? policy_nodemask+0xed/0x4f0
[ 1018.321588][T21514]  alloc_pages_mpol+0x1fb/0x550
[ 1018.321609][T21514]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1018.321630][T21514]  ? do_raw_spin_lock+0x128/0x260
[ 1018.321652][T21514]  ? find_held_lock+0x2b/0x80
[ 1018.321666][T21514]  ? __pud_alloc+0x575/0x760
[ 1018.321690][T21514]  alloc_pages_noprof+0x131/0x390
[ 1018.321712][T21514]  __pmd_alloc+0x3b/0x9c0
[ 1018.321733][T21514]  ? __pud_alloc+0x57a/0x760
[ 1018.321756][T21514]  walk_to_pmd+0x3a3/0x4c0
[ 1018.321781][T21514]  __get_locked_pte+0x25/0xc0
[ 1018.321804][T21514]  map_ldt_struct+0x3b1/0xa50
[ 1018.321826][T21514]  ? __pfx_map_ldt_struct+0x10/0x10
[ 1018.321842][T21514]  ? alloc_pages_noprof+0x233/0x390
[ 1018.321867][T21514]  write_ldt+0x6d3/0xd40
[ 1018.321887][T21514]  ? __pfx_write_ldt+0x10/0x10
[ 1018.321905][T21514]  ? xfd_validate_state+0x129/0x190
[ 1018.321943][T21514]  __x64_sys_modify_ldt+0xb1/0x170
[ 1018.321962][T21514]  do_syscall_64+0xc9/0xf80
[ 1018.321983][T21514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1018.322009][T21514] RIP: 0033:0x7fc8ba19aeb9
[ 1018.322023][T21514] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1018.322038][T21514] RSP: 002b:00007fc8bb046028 EFLAGS: 00000246 ORIG_RAX: 000000000000009a
[ 1018.322054][T21514] RAX: ffffffffffffffda RBX: 00007fc8ba415fa0 RCX: 00007fc8ba19aeb9
[ 1018.322065][T21514] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000001
[ 1018.322075][T21514] RBP: 00007fc8ba208c1f R08: 0000000000000000 R09: 0000000000000000
[ 1018.322084][T21514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1018.322093][T21514] R13: 00007fc8ba416038 R14: 00007fc8ba415fa0 R15: 00007ffc44ec0688
[ 1018.322114][T21514]  </TASK>
[ 1018.961068][T19762] Bluetooth: hci6: unexpected subevent 0x18 length: 123 > 19
[ 1018.969090][T19762] Bluetooth: hci6: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00
[ 1019.253583][T21544] FAULT_INJECTION: forcing a failure.
[ 1019.253583][T21544] name failslab, interval 1, probability 393216, space 0, times 0
[ 1019.318840][T21544] CPU: 0 UID: 0 PID: 21544 Comm: syz.1.3419 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1019.318867][T21544] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1019.318873][T21544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1019.318882][T21544] Call Trace:
[ 1019.318888][T21544]  <TASK>
[ 1019.318894][T21544]  dump_stack_lvl+0x100/0x190
[ 1019.318930][T21544]  should_fail_ex.cold+0x5/0xa
[ 1019.318956][T21544]  should_failslab+0xc2/0x120
[ 1019.318977][T21544]  __kmalloc_cache_noprof+0x80/0x810
[ 1019.318994][T21544]  ? sdev_prefix_printk+0xe3/0x210
[ 1019.319016][T21544]  ? sdev_prefix_printk+0xe3/0x210
[ 1019.319032][T21544]  sdev_prefix_printk+0xe3/0x210
[ 1019.319050][T21544]  ? __pfx_sdev_prefix_printk+0x10/0x10
[ 1019.319070][T21544]  ? do_raw_spin_lock+0x128/0x260
[ 1019.319093][T21544]  ? find_held_lock+0x2b/0x80
[ 1019.319107][T21544]  ? scsi_ioctl_reset+0x2c1/0x820
[ 1019.319127][T21544]  virtscsi_device_reset+0x71/0x320
[ 1019.319144][T21544]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1019.319161][T21544]  scsi_ioctl_reset+0x51a/0x820
[ 1019.319178][T21544]  ? __pfx_virtscsi_device_reset+0x10/0x10
[ 1019.319196][T21544]  scsi_ioctl+0x121d/0x17b0
[ 1019.319210][T21544]  ? __pfx___might_resched+0x10/0x10
[ 1019.319233][T21544]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[ 1019.319252][T21544]  ? __pfx_scsi_ioctl+0x10/0x10
[ 1019.319268][T21544]  ? __pfx_scsi_block_when_processing_errors+0x10/0x10
[ 1019.319287][T21544]  ? do_vfs_ioctl+0x226/0x13e0
[ 1019.319310][T21544]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1019.319339][T21544]  sd_ioctl+0x1ac/0x2b0
[ 1019.319352][T21544]  ? __pfx_sd_ioctl+0x10/0x10
[ 1019.319376][T21544]  blkdev_ioctl+0x5ad/0x6f0
[ 1019.319393][T21544]  ? __pfx_blkdev_ioctl+0x10/0x10
[ 1019.319412][T21544]  ? __pfx_blkdev_ioctl+0x10/0x10
[ 1019.319430][T21544]  __x64_sys_ioctl+0x18e/0x210
[ 1019.319454][T21544]  do_syscall_64+0xc9/0xf80
[ 1019.319475][T21544]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1019.319490][T21544] RIP: 0033:0x7f305999aeb9
[ 1019.319503][T21544] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1019.319517][T21544] RSP: 002b:00007f305a836028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1019.319532][T21544] RAX: ffffffffffffffda RBX: 00007f3059c15fa0 RCX: 00007f305999aeb9
[ 1019.319542][T21544] RDX: 0000000000000000 RSI: 0000000000002284 RDI: 0000000000000005
[ 1019.319550][T21544] RBP: 00007f305a836090 R08: 0000000000000000 R09: 0000000000000000
[ 1019.319560][T21544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1019.319569][T21544] R13: 00007f3059c16038 R14: 00007f3059c15fa0 R15: 00007fff7bb7d2f8
[ 1019.319588][T21544]  </TASK>
[ 1020.018472][T21555] block2mtd: error: cannot open device �inX�����±��jFB�B>U�;߸�Ilk�
[ 1020.430058][T21572] FAULT_INJECTION: forcing a failure.
[ 1020.430058][T21572] name failslab, interval 1, probability 393216, space 0, times 0
[ 1020.445136][T21567] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(1)
[ 1020.488596][T21572] CPU: 0 UID: 0 PID: 21572 Comm: syz.1.3425 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1020.488625][T21572] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1020.488632][T21572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1020.488642][T21572] Call Trace:
[ 1020.488648][T21572]  <TASK>
[ 1020.488655][T21572]  dump_stack_lvl+0x100/0x190
[ 1020.488680][T21572]  should_fail_ex.cold+0x5/0xa
[ 1020.488711][T21572]  should_failslab+0xc2/0x120
[ 1020.488733][T21572]  __kmalloc_cache_noprof+0x80/0x810
[ 1020.488756][T21572]  ? __pfx_snd_pcm_open_substream+0x10/0x10
[ 1020.488779][T21572]  ? snd_pcm_open+0x2f0/0x710
[ 1020.488800][T21572]  ? rcu_is_watching+0x12/0xc0
[ 1020.488818][T21572]  ? snd_pcm_open+0x2f0/0x710
[ 1020.488839][T21572]  snd_pcm_open+0x2f0/0x710
[ 1020.488863][T21572]  ? __pfx_snd_pcm_open+0x10/0x10
[ 1020.488891][T21572]  ? __pfx_default_wake_function+0x10/0x10
[ 1020.488913][T21572]  ? __pfx_snd_pcm_capture_open+0x10/0x10
[ 1020.488935][T21572]  snd_pcm_capture_open+0x89/0xe0
[ 1020.488956][T21572]  snd_open+0x22d/0x4c0
[ 1020.488974][T21572]  ? __pfx_snd_open+0x10/0x10
[ 1020.488990][T21572]  chrdev_open+0x234/0x6a0
[ 1020.489008][T21572]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1020.489028][T21572]  ? __pfx_chrdev_open+0x10/0x10
[ 1020.489046][T21572]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1020.489069][T21572]  do_dentry_open+0x73e/0x1570
[ 1020.489086][T21572]  ? __pfx_chrdev_open+0x10/0x10
[ 1020.489104][T21572]  ? security_inode_permission+0xbf/0x250
[ 1020.489129][T21572]  vfs_open+0x82/0x3f0
[ 1020.489153][T21572]  path_openat+0x21dc/0x3120
[ 1020.489177][T21572]  ? __pfx_path_openat+0x10/0x10
[ 1020.489201][T21572]  do_filp_open+0x1f7/0x420
[ 1020.489220][T21572]  ? __pfx_do_filp_open+0x10/0x10
[ 1020.489251][T21572]  ? _raw_spin_unlock+0x28/0x50
[ 1020.489266][T21572]  ? alloc_fd+0x476/0x790
[ 1020.489288][T21572]  do_sys_openat2+0x12e/0x220
[ 1020.489310][T21572]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1020.489335][T21572]  ? __fget_files+0x21f/0x3d0
[ 1020.489355][T21572]  __x64_sys_openat+0x12d/0x210
[ 1020.489378][T21572]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1020.489399][T21572]  ? xfd_validate_state+0x129/0x190
[ 1020.489429][T21572]  do_syscall_64+0xc9/0xf80
[ 1020.489449][T21572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1020.489465][T21572] RIP: 0033:0x7f305999aeb9
[ 1020.489478][T21572] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1020.489492][T21572] RSP: 002b:00007f305a836028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1020.489508][T21572] RAX: ffffffffffffffda RBX: 00007f3059c15fa0 RCX: 00007f305999aeb9
[ 1020.489519][T21572] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1020.489528][T21572] RBP: 00007f3059a08c1f R08: 0000000000000000 R09: 0000000000000000
[ 1020.489538][T21572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1020.489547][T21572] R13: 00007f3059c16038 R14: 00007f3059c15fa0 R15: 00007fff7bb7d2f8
[ 1020.489568][T21572]  </TASK>
[ 1021.088840][T21580] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1022.431050][T21612] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1023.201953][T21630] sd 0:0:1:0: device reset
[ 1023.213963][T21628] FAULT_INJECTION: forcing a failure.
[ 1023.213963][T21628] name failslab, interval 1, probability 393216, space 0, times 0
[ 1023.227423][T21628] CPU: 0 UID: 0 PID: 21628 Comm: syz.1.3440 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1023.227449][T21628] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1023.227454][T21628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1023.227464][T21628] Call Trace:
[ 1023.227475][T21628]  <TASK>
[ 1023.227482][T21628]  dump_stack_lvl+0x100/0x190
[ 1023.227505][T21628]  should_fail_ex.cold+0x5/0xa
[ 1023.227530][T21628]  should_failslab+0xc2/0x120
[ 1023.227552][T21628]  __kmalloc_cache_noprof+0x80/0x810
[ 1023.227567][T21628]  ? net_generic+0xea/0x2a0
[ 1023.227583][T21628]  ? tipc_topsrv_queue_evt+0x125/0x3f0
[ 1023.227605][T21628]  ? tipc_topsrv_queue_evt+0x125/0x3f0
[ 1023.227623][T21628]  tipc_topsrv_queue_evt+0x125/0x3f0
[ 1023.227644][T21628]  tipc_sub_report_overlap+0x54c/0x9b0
[ 1023.227667][T21628]  tipc_nametbl_insert_publ+0xcfc/0x1580
[ 1023.227697][T21628]  tipc_nametbl_publish+0x137/0x260
[ 1023.227721][T21628]  tipc_sk_publish+0x1d8/0x430
[ 1023.227744][T21628]  ? __pfx_tipc_sk_publish+0x10/0x10
[ 1023.227771][T21628]  tipc_setsockopt+0x7af/0xe30
[ 1023.227795][T21628]  ? __pfx_tipc_setsockopt+0x10/0x10
[ 1023.227825][T21628]  ? __pfx_tipc_setsockopt+0x10/0x10
[ 1023.227848][T21628]  do_sock_setsockopt+0xf3/0x1d0
[ 1023.227867][T21628]  __sys_setsockopt+0x119/0x190
[ 1023.227892][T21628]  __x64_sys_setsockopt+0xbd/0x160
[ 1023.227913][T21628]  ? do_syscall_64+0x94/0xf80
[ 1023.227930][T21628]  ? lockdep_hardirqs_on+0x78/0x100
[ 1023.227948][T21628]  do_syscall_64+0xc9/0xf80
[ 1023.227967][T21628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1023.227983][T21628] RIP: 0033:0x7f305999aeb9
[ 1023.227997][T21628] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1023.228011][T21628] RSP: 002b:00007f305a815028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1023.228027][T21628] RAX: ffffffffffffffda RBX: 00007f3059c16090 RCX: 00007f305999aeb9
[ 1023.228038][T21628] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000003
[ 1023.228047][T21628] RBP: 00007f305a815090 R08: 0000000000000014 R09: 0000000000000000
[ 1023.228056][T21628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1023.228065][T21628] R13: 00007f3059c16128 R14: 00007f3059c16090 R15: 00007fff7bb7d2f8
[ 1023.228084][T21628]  </TASK>
[ 1024.166829][T21650] No such timeout policy ""
[ 1024.184674][T21650] netlink: Failed to associated timeout policy ''
[ 1024.841879][T21669] FAULT_INJECTION: forcing a failure.
[ 1024.841879][T21669] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1024.991131][T21669] CPU: 0 UID: 0 PID: 21669 Comm: syz.1.3450 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1024.991159][T21669] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1024.991164][T21669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1024.991174][T21669] Call Trace:
[ 1024.991179][T21669]  <TASK>
[ 1024.991186][T21669]  dump_stack_lvl+0x100/0x190
[ 1024.991209][T21669]  should_fail_ex.cold+0x5/0xa
[ 1024.991234][T21669]  _copy_to_user+0x32/0xd0
[ 1024.991258][T21669]  simple_read_from_buffer+0xcb/0x170
[ 1024.991282][T21669]  proc_fail_nth_read+0x1af/0x230
[ 1024.991300][T21669]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1024.991319][T21669]  ? rw_verify_area+0xce/0x6d0
[ 1024.991334][T21669]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1024.991351][T21669]  vfs_read+0x1e4/0xb30
[ 1024.991370][T21669]  ? __pfx_vfs_read+0x10/0x10
[ 1024.991385][T21669]  ? find_held_lock+0x2b/0x80
[ 1024.991401][T21669]  ? __fget_files+0x215/0x3d0
[ 1024.991420][T21669]  ? __fget_files+0x21f/0x3d0
[ 1024.991441][T21669]  ksys_read+0x12a/0x250
[ 1024.991457][T21669]  ? __pfx_ksys_read+0x10/0x10
[ 1024.991479][T21669]  do_syscall_64+0xc9/0xf80
[ 1024.991499][T21669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1024.991515][T21669] RIP: 0033:0x7f305995b78e
[ 1024.991528][T21669] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1024.991542][T21669] RSP: 002b:00007f305a835fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1024.991556][T21669] RAX: ffffffffffffffda RBX: 00007f305a8366c0 RCX: 00007f305995b78e
[ 1024.991566][T21669] RDX: 000000000000000f RSI: 00007f305a8360a0 RDI: 0000000000000004
[ 1024.991575][T21669] RBP: 00007f305a836090 R08: 0000000000000000 R09: 0000000000000000
[ 1024.991584][T21669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1024.991592][T21669] R13: 00007f3059c16038 R14: 00007f3059c15fa0 R15: 00007fff7bb7d2f8
[ 1024.991612][T21669]  </TASK>
[ 1025.931719][T21695] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1026.203568][T21699] No such timeout policy ""
[ 1026.231118][T21699] netlink: Failed to associated timeout policy ''
[ 1028.886658][T21748] NFSD: Failed to start, no listeners configured.
[ 1029.763704][T21766] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[ 1031.159936][T21789] zswap: compressor  not available
[ 1031.242616][T21799] FAULT_INJECTION: forcing a failure.
[ 1031.242616][T21799] name failslab, interval 1, probability 393216, space 0, times 0
[ 1031.332261][T21799] CPU: 0 UID: 0 PID: 21799 Comm: syz.2.3482 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1031.332291][T21799] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1031.332298][T21799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1031.332308][T21799] Call Trace:
[ 1031.332314][T21799]  <TASK>
[ 1031.332320][T21799]  dump_stack_lvl+0x100/0x190
[ 1031.332344][T21799]  should_fail_ex.cold+0x5/0xa
[ 1031.332369][T21799]  should_failslab+0xc2/0x120
[ 1031.332391][T21799]  __kmalloc_cache_noprof+0x80/0x810
[ 1031.332407][T21799]  ? __vb2_init_fileio+0x18f/0xff0
[ 1031.332433][T21799]  ? __vb2_init_fileio+0x18f/0xff0
[ 1031.332454][T21799]  __vb2_init_fileio+0x18f/0xff0
[ 1031.332475][T21799]  ? lockdep_hardirqs_on+0x78/0x100
[ 1031.332494][T21799]  ? __pollwait+0x276/0x470
[ 1031.332512][T21799]  vb2_core_poll+0x611/0x740
[ 1031.332535][T21799]  vb2_poll+0x4b/0xe0
[ 1031.332555][T21799]  vb2_fop_poll+0x10e/0x350
[ 1031.332576][T21799]  ? __pfx_vb2_fop_poll+0x10/0x10
[ 1031.332595][T21799]  v4l2_poll+0x15f/0x220
[ 1031.332614][T21799]  ? __pfx_v4l2_poll+0x10/0x10
[ 1031.332631][T21799]  do_sys_poll+0x6e5/0xeb0
[ 1031.332653][T21799]  ? __pfx_do_sys_poll+0x10/0x10
[ 1031.332691][T21799]  ? __futex_wait+0x256/0x300
[ 1031.332708][T21799]  ? __pfx___pollwait+0x10/0x10
[ 1031.332725][T21799]  ? __pfx_pollwake+0x10/0x10
[ 1031.332767][T21799]  ? ktime_get_ts64+0x2d2/0x3f0
[ 1031.332786][T21799]  ? read_tsc+0x9/0x20
[ 1031.332804][T21799]  ? ktime_get_ts64+0x256/0x3f0
[ 1031.332824][T21799]  ? poll_select_set_timeout+0xcc/0x160
[ 1031.332843][T21799]  __x64_sys_poll+0x1a6/0x440
[ 1031.332859][T21799]  ? __pfx___x64_sys_poll+0x10/0x10
[ 1031.332889][T21799]  do_syscall_64+0xc9/0xf80
[ 1031.332909][T21799]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1031.332926][T21799] RIP: 0033:0x7fc8ba19aeb9
[ 1031.332940][T21799] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1031.332955][T21799] RSP: 002b:00007fc8bb025028 EFLAGS: 00000246 ORIG_RAX: 0000000000000007
[ 1031.332970][T21799] RAX: ffffffffffffffda RBX: 00007fc8ba416090 RCX: 00007fc8ba19aeb9
[ 1031.332980][T21799] RDX: 0000000000000007 RSI: 0000000000000003 RDI: 0000200000000480
[ 1031.332989][T21799] RBP: 00007fc8ba208c1f R08: 0000000000000000 R09: 0000000000000000
[ 1031.332998][T21799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1031.333007][T21799] R13: 00007fc8ba416128 R14: 00007fc8ba416090 R15: 00007ffc44ec0688
[ 1031.333027][T21799]  </TASK>
[ 1032.478542][T21820] bond0: option all_slaves_active: invalid value ()
[ 1033.706511][T21839] bond0: no command found in slaves file - use +ifname or -ifname
[ 1033.991737][T21849] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1035.139702][T21873] netlink: 146 bytes leftover after parsing attributes in process `syz.1.3499'.
[ 1036.295428][T21888] FAULT_INJECTION: forcing a failure.
[ 1036.295428][T21888] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1036.466401][T21888] CPU: 0 UID: 0 PID: 21888 Comm: syz.2.3503 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1036.466429][T21888] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1036.466435][T21888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1036.466445][T21888] Call Trace:
[ 1036.466451][T21888]  <TASK>
[ 1036.466457][T21888]  dump_stack_lvl+0x100/0x190
[ 1036.466480][T21888]  should_fail_ex.cold+0x5/0xa
[ 1036.466505][T21888]  _copy_from_iter+0x1f4/0x1690
[ 1036.466533][T21888]  ? __pfx__copy_from_iter+0x10/0x10
[ 1036.466555][T21888]  ? rcu_is_watching+0x12/0xc0
[ 1036.466569][T21888]  ? kernfs_fop_write_iter+0x26a/0x5f0
[ 1036.466584][T21888]  ? trace_kmalloc+0x83/0xb0
[ 1036.466604][T21888]  ? __kmalloc_noprof+0x365/0x9c0
[ 1036.466625][T21888]  kernfs_fop_write_iter+0x186/0x5f0
[ 1036.466643][T21888]  vfs_write+0x6ac/0x1070
[ 1036.466661][T21888]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1036.466679][T21888]  ? __pfx_vfs_write+0x10/0x10
[ 1036.466694][T21888]  ? find_held_lock+0x2b/0x80
[ 1036.466721][T21888]  ksys_write+0x12a/0x250
[ 1036.466738][T21888]  ? __pfx_ksys_write+0x10/0x10
[ 1036.466760][T21888]  do_syscall_64+0xc9/0xf80
[ 1036.466780][T21888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1036.466796][T21888] RIP: 0033:0x7fc8ba19aeb9
[ 1036.466809][T21888] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1036.466824][T21888] RSP: 002b:00007fc8bb004028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1036.466839][T21888] RAX: ffffffffffffffda RBX: 00007fc8ba416180 RCX: 00007fc8ba19aeb9
[ 1036.466849][T21888] RDX: 0000000000000081 RSI: 0000000000000000 RDI: 0000000000000003
[ 1036.466858][T21888] RBP: 00007fc8bb004090 R08: 0000000000000000 R09: 0000000000000000
[ 1036.466867][T21888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1036.466876][T21888] R13: 00007fc8ba416218 R14: 00007fc8ba416180 R15: 00007ffc44ec0688
[ 1036.466895][T21888]  </TASK>
[ 1036.727184][T21895] random: crng reseeded on system resumption
[ 1037.207347][T21899] FAULT_INJECTION: forcing a failure.
[ 1037.207347][T21899] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1037.301044][T21899] CPU: 0 UID: 0 PID: 21899 Comm: syz.2.3507 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1037.301081][T21899] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1037.301087][T21899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1037.301097][T21899] Call Trace:
[ 1037.301103][T21899]  <TASK>
[ 1037.301110][T21899]  dump_stack_lvl+0x100/0x190
[ 1037.301137][T21899]  should_fail_ex.cold+0x5/0xa
[ 1037.301160][T21899]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1037.301185][T21899]  should_fail_alloc_page+0xeb/0x140
[ 1037.301208][T21899]  prepare_alloc_pages+0x1f0/0x5f0
[ 1037.301234][T21899]  __alloc_frozen_pages_noprof+0x193/0x2410
[ 1037.301254][T21899]  ? __lock_acquire+0x4a5/0x2630
[ 1037.301276][T21899]  ? rcu_is_watching+0x12/0xc0
[ 1037.301291][T21899]  ? trace_mm_page_alloc+0x10e/0x160
[ 1037.301315][T21899]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1037.301335][T21899]  ? find_held_lock+0x2b/0x80
[ 1037.301349][T21899]  ? page_table_check_set+0x49a/0xa10
[ 1037.301367][T21899]  ? page_table_check_set+0x49a/0xa10
[ 1037.301388][T21899]  ? page_table_check_set+0x4a9/0xa10
[ 1037.301408][T21899]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1037.301425][T21899]  ? policy_nodemask+0xed/0x4f0
[ 1037.301447][T21899]  alloc_pages_mpol+0x1fb/0x550
[ 1037.301469][T21899]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1037.301488][T21899]  ? find_held_lock+0x2b/0x80
[ 1037.301502][T21899]  ? filemap_map_pages+0x965/0x2110
[ 1037.301525][T21899]  folio_alloc_mpol_noprof+0x36/0x340
[ 1037.301550][T21899]  vma_alloc_folio_noprof+0xed/0x1d0
[ 1037.301573][T21899]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1037.301596][T21899]  ? rcu_read_unlock+0x2d/0xb0
[ 1037.301612][T21899]  ? rcu_read_unlock+0x2d/0xb0
[ 1037.301628][T21899]  ? __lock_acquire+0x4a5/0x2630
[ 1037.301650][T21899]  do_wp_page+0x1eb4/0x4c10
[ 1037.301678][T21899]  ? __pfx_do_wp_page+0x10/0x10
[ 1037.301702][T21899]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1037.301729][T21899]  __handle_mm_fault+0x1ac0/0x2b50
[ 1037.301749][T21899]  ? reacquire_held_locks+0xce/0x1e0
[ 1037.301769][T21899]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1037.301788][T21899]  ? lock_vma_under_rcu+0x17c/0x5a0
[ 1037.301815][T21899]  handle_mm_fault+0x36d/0xa20
[ 1037.301835][T21899]  do_user_addr_fault+0x5a3/0x12f0
[ 1037.301857][T21899]  exc_page_fault+0x6f/0xd0
[ 1037.301876][T21899]  asm_exc_page_fault+0x26/0x30
[ 1037.301890][T21899] RIP: 0033:0x7fc8ba15ad45
[ 1037.301905][T21899] Code: 00 00 00 66 90 8b 57 18 64 8b 04 25 d0 02 00 00 39 c2 0f 84 1d 01 00 00 41 54 55 53 83 7f 30 02 48 89 fb 74 28 b8 08 00 00 00 <f0> 0f c1 03 83 c0 08 85 c0 0f 88 0c 01 00 00 a8 01 0f 85 84 00 00
[ 1037.301919][T21899] RSP: 002b:00007fc8bb044de0 EFLAGS: 00010293
[ 1037.301932][T21899] RAX: 0000000000000008 RBX: 00007fc8baf47e20 RCX: 0000000000000000
[ 1037.301942][T21899] RDX: 0000000000000000 RSI: 00007fc8ba24a09c RDI: 00007fc8baf47e20
[ 1037.301951][T21899] RBP: ffffffffffffffff R08: 0000000000000000 R09: 0000000000000005
[ 1037.301961][T21899] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc8ba249db0
[ 1037.301970][T21899] R13: ffffffffffffffe8 R14: 0000000000000016 R15: 00007fc8ba24a09c
[ 1037.301992][T21899]  </TASK>
[ 1037.302028][T21899] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 1040.413300][T21922] FAULT_INJECTION: forcing a failure.
[ 1040.413300][T21922] name failslab, interval 1, probability 393216, space 0, times 0
[ 1040.413346][T21922] CPU: 0 UID: 0 PID: 21922 Comm: syz.1.3513 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1040.413368][T21922] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1040.413374][T21922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1040.413384][T21922] Call Trace:
[ 1040.413389][T21922]  <TASK>
[ 1040.413395][T21922]  dump_stack_lvl+0x100/0x190
[ 1040.413418][T21922]  should_fail_ex.cold+0x5/0xa
[ 1040.413443][T21922]  should_failslab+0xc2/0x120
[ 1040.413464][T21922]  ? tomoyo_encode2+0xfb/0x3c0
[ 1040.413478][T21922]  __kmalloc_noprof+0xf6/0x9c0
[ 1040.413499][T21922]  ? tomoyo_encode2+0xfb/0x3c0
[ 1040.413512][T21922]  tomoyo_encode2+0xfb/0x3c0
[ 1040.413528][T21922]  tomoyo_encode+0x29/0x50
[ 1040.413542][T21922]  tomoyo_realpath_from_path+0x18c/0x690
[ 1040.413561][T21922]  tomoyo_path_number_perm+0x23c/0x580
[ 1040.413582][T21922]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1040.413604][T21922]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1040.413625][T21922]  ? futex_wait+0x125/0x380
[ 1040.413657][T21922]  ? find_held_lock+0x2b/0x80
[ 1040.413672][T21922]  ? hook_file_ioctl_common+0x146/0x410
[ 1040.413693][T21922]  ? __fget_files+0x215/0x3d0
[ 1040.413718][T21922]  ? __fget_files+0x21f/0x3d0
[ 1040.413737][T21922]  security_file_ioctl+0xd3/0x230
[ 1040.413760][T21922]  __x64_sys_ioctl+0xb7/0x210
[ 1040.413785][T21922]  do_syscall_64+0xc9/0xf80
[ 1040.413806][T21922]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1040.413821][T21922] RIP: 0033:0x7f305999aeb9
[ 1040.413834][T21922] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1040.413848][T21922] RSP: 002b:00007f305a836028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1040.413863][T21922] RAX: ffffffffffffffda RBX: 00007f3059c15fa0 RCX: 00007f305999aeb9
[ 1040.413873][T21922] RDX: 0000000000000000 RSI: 000000000000541c RDI: 0000000000000005
[ 1040.413882][T21922] RBP: 00007f3059a08c1f R08: 0000000000000000 R09: 0000000000000000
[ 1040.413891][T21922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1040.413900][T21922] R13: 00007f3059c16038 R14: 00007f3059c15fa0 R15: 00007fff7bb7d2f8
[ 1040.413919][T21922]  </TASK>
[ 1040.413933][T21922] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1040.904838][T21939] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[ 1041.962435][T21961] random: crng reseeded on system resumption
[ 1043.840692][T21966] bond0: no command found in slaves file - use +ifname or -ifname
[ 1047.115367][T22040] netlink: 'syz.1.3535': attribute type 1 has an invalid length.
[ 1047.172593][T22040] nbd: error processing sock list
[ 1047.653268][T22055] netlink: 354 bytes leftover after parsing attributes in process `syz.3.3539'.
[ 1048.739198][T22078] netlink: 186 bytes leftover after parsing attributes in process `syz.1.3546'.
[ 1050.679676][T22128] FAULT_INJECTION: forcing a failure.
[ 1050.679676][T22128] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1050.747244][T22128] CPU: 0 UID: 0 PID: 22128 Comm: syz.2.3558 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1050.747273][T22128] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1050.747279][T22128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1050.747288][T22128] Call Trace:
[ 1050.747293][T22128]  <TASK>
[ 1050.747300][T22128]  dump_stack_lvl+0x100/0x190
[ 1050.747323][T22128]  should_fail_ex.cold+0x5/0xa
[ 1050.747349][T22128]  _copy_from_user+0x2e/0xd0
[ 1050.747372][T22128]  move_addr_to_kernel+0x65/0x170
[ 1050.747392][T22128]  __sys_connect+0xb5/0x170
[ 1050.747411][T22128]  ? __pfx___sys_connect+0x10/0x10
[ 1050.747437][T22128]  ? __pfx_ksys_write+0x10/0x10
[ 1050.747458][T22128]  __x64_sys_connect+0x72/0xb0
[ 1050.747476][T22128]  ? lockdep_hardirqs_on+0x78/0x100
[ 1050.747494][T22128]  do_syscall_64+0xc9/0xf80
[ 1050.747514][T22128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1050.747529][T22128] RIP: 0033:0x7fc8ba19aeb9
[ 1050.747542][T22128] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1050.747556][T22128] RSP: 002b:00007fc8bb046028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1050.747571][T22128] RAX: ffffffffffffffda RBX: 00007fc8ba415fa0 RCX: 00007fc8ba19aeb9
[ 1050.747581][T22128] RDX: 0000000000000055 RSI: 00002000000018c0 RDI: 0000000000000003
[ 1050.747590][T22128] RBP: 00007fc8bb046090 R08: 0000000000000000 R09: 0000000000000000
[ 1050.747599][T22128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1050.747608][T22128] R13: 00007fc8ba416038 R14: 00007fc8ba415fa0 R15: 00007ffc44ec0688
[ 1050.747627][T22128]  </TASK>
[ 1051.590194][T22104] Bluetooth: hci6: command 0x0406 tx timeout
[ 1052.093628][T22147] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[ 1052.658064][T22157] Invalid ELF header magic: != ELF
[ 1053.693365][T22175] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input175
[ 1054.107888][T22169] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input176
[ 1054.622833][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.629135][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1054.914379][T22198] FAULT_INJECTION: forcing a failure.
[ 1054.914379][T22198] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1054.981632][T22198] CPU: 0 UID: 0 PID: 22198 Comm: syz.1.3573 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1054.981661][T22198] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1054.981667][T22198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1054.981677][T22198] Call Trace:
[ 1054.981683][T22198]  <TASK>
[ 1054.981689][T22198]  dump_stack_lvl+0x100/0x190
[ 1054.981713][T22198]  should_fail_ex.cold+0x5/0xa
[ 1054.981740][T22198]  _copy_to_user+0x32/0xd0
[ 1054.981764][T22198]  poll_select_finish+0x32f/0x670
[ 1054.981782][T22198]  ? __pfx_poll_select_finish+0x10/0x10
[ 1054.981801][T22198]  ? ktime_get_ts64+0x2d2/0x3f0
[ 1054.981820][T22198]  ? read_tsc+0x9/0x20
[ 1054.981837][T22198]  ? ktime_get_ts64+0x256/0x3f0
[ 1054.981857][T22198]  kern_select+0x21b/0x270
[ 1054.981875][T22198]  ? __pfx_kern_select+0x10/0x10
[ 1054.981897][T22198]  __x64_sys_select+0xbd/0x160
[ 1054.981913][T22198]  ? do_syscall_64+0x94/0xf80
[ 1054.981930][T22198]  ? lockdep_hardirqs_on+0x78/0x100
[ 1054.981947][T22198]  do_syscall_64+0xc9/0xf80
[ 1054.981966][T22198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1054.981981][T22198] RIP: 0033:0x7f305999aeb9
[ 1054.981994][T22198] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1054.982009][T22198] RSP: 002b:00007f305a836028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[ 1054.982025][T22198] RAX: ffffffffffffffda RBX: 00007f3059c15fa0 RCX: 00007f305999aeb9
[ 1054.982035][T22198] RDX: 0000200000000180 RSI: 0000000000000000 RDI: 0000000000000003
[ 1054.982044][T22198] RBP: 00007f3059a08c1f R08: 00002000000000c0 R09: 0000000000000000
[ 1054.982053][T22198] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000000
[ 1054.982062][T22198] R13: 00007f3059c16038 R14: 00007f3059c15fa0 R15: 00007fff7bb7d2f8
[ 1054.982081][T22198]  </TASK>
[ 1055.202091][T22199] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1055.208213][T22199] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1055.952420][T22199] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1055.978872][T22199] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1056.202557][T22199] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1056.230093][T22199] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1056.274127][T22199] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1056.330138][T22199] Bluetooth: hci6: Opcode 0x0406 failed: -4
[ 1056.839397][T19738] Bluetooth: hci4: command 0x2016 tx timeout
[ 1056.881600][   T30] audit: type=1800 audit(4294967422.855:20): pid=22235 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3580" name="dbroot" dev="configfs" ino=99992 res=0 errno=0
[ 1057.062716][T22226] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input177
[ 1057.176300][T22226] db_root: cannot open:  
[ 1057.383341][T22242] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[ 1057.636981][T22246] netlink: 146 bytes leftover after parsing attributes in process `syz.1.3588'.
[ 1057.953722][T19738] Bluetooth: hci3: command 0x0406 tx timeout
[ 1058.193950][T19738] Bluetooth: hci2: command 0x2016 tx timeout
[ 1058.271936][T19738] Bluetooth: hci6: command 0x0406 tx timeout
[ 1058.908924][T19738] Bluetooth: hci4: command 0x2016 tx timeout
[ 1059.355897][T22278] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input178
[ 1060.023437][T19738] Bluetooth: hci3: command 0x0406 tx timeout
[ 1060.144064][T22291] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[ 1060.261771][T19738] Bluetooth: hci2: command 0x2016 tx timeout
[ 1060.342352][T19738] Bluetooth: hci6: command 0x0406 tx timeout
[ 1060.577795][T22299] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3601'.
[ 1060.650901][T22299] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3601'.
[ 1062.202102][T19738] Bluetooth: hci4: unexpected subevent 0x03 length: 253 > 9
[ 1062.438052][T22334] mtrr: base(0x4000000000) is not aligned on a size(0x0000) boundary
[ 1063.273763][T22343] Invalid ELF header magic: != ELF
[ 1063.814051][T22360] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3616'.
[ 1065.193850][T22386] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3622'.
[ 1066.727649][T22417] ------------[ cut here ]------------
[ 1066.733489][T22417] !reader
[ 1066.733509][T22417] WARNING: kernel/trace/ring_buffer.c:7363 at ring_buffer_map_get_reader+0x659/0x880, CPU#0: syz.1.3629/22417
[ 1066.748045][T22417] Modules linked in:
[ 1066.752200][T22417] CPU: 0 UID: 0 PID: 22417 Comm: syz.1.3629 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1066.763132][T22417] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1066.768310][T22417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1066.778351][T22417] RIP: 0010:ring_buffer_map_get_reader+0x659/0x880
[ 1066.784934][T22417] Code: ff e8 4b e1 fb ff 48 8d 3d b4 da b0 0e 4c 89 fe 67 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 28 e1 fb ff 90 <0f> 0b 90 e8 1f e1 fb ff 48 89 df 31 db e8 85 13 fe ff 48 8b 74 24
[ 1066.804557][T22417] RSP: 0018:ffffc9000b2f7d98 EFLAGS: 00010083
[ 1066.810611][T22417] RAX: 00000000000007a2 RBX: ffff88813fe28800 RCX: ffffc90010384000
[ 1066.818567][T22417] RDX: 0000000000080000 RSI: ffffffff820a6958 RDI: ffff888031f1db80
[ 1066.826526][T22417] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000
[ 1066.834483][T22417] R10: 0000000000000000 R11: ffff88813fe288b0 R12: ffff88813fe288b0
[ 1066.842449][T22417] R13: dffffc0000000000 R14: ffff88813fe28990 R15: ffff88813fe28818
[ 1066.850410][T22417] FS:  00007f305a8366c0(0000) GS:ffff8881245e3000(0000) knlGS:0000000000000000
[ 1066.859333][T22417] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1066.865913][T22417] CR2: 0000001b2da15ff8 CR3: 000000005fbfe000 CR4: 00000000003526f0
[ 1066.873991][T22417] Call Trace:
[ 1066.877731][T22417]  <TASK>
[ 1066.880672][T22417]  ? __pfx_ring_buffer_map_get_reader+0x10/0x10
[ 1066.886926][T22417]  ? __fget_files+0x21f/0x3d0
[ 1066.891609][T22417]  tracing_buffers_ioctl+0x30d/0x400
[ 1066.896894][T22417]  ? __pfx_tracing_buffers_ioctl+0x10/0x10
[ 1066.902700][T22417]  __x64_sys_ioctl+0x18e/0x210
[ 1066.907468][T22417]  do_syscall_64+0xc9/0xf80
[ 1066.911982][T22417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1066.917891][T22417] RIP: 0033:0x7f305999aeb9
[ 1066.922353][T22417] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1066.942167][T22417] RSP: 002b:00007f305a836028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1066.950580][T22417] RAX: ffffffffffffffda RBX: 00007f3059c15fa0 RCX: 00007f305999aeb9
[ 1066.958556][T22417] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000006
[ 1066.966639][T22417] RBP: 00007f3059a08c1f R08: 0000000000000000 R09: 0000000000000000
[ 1066.974598][T22417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1066.982553][T22417] R13: 00007f3059c16038 R14: 00007f3059c15fa0 R15: 00007fff7bb7d2f8
[ 1066.990520][T22417]  </TASK>
[ 1066.993527][T22417] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1067.000797][T22417] CPU: 0 UID: 0 PID: 22417 Comm: syz.1.3629 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1067.011728][T22417] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1067.016907][T22417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1067.026951][T22417] Call Trace:
[ 1067.030224][T22417]  <TASK>
[ 1067.033138][T22417]  dump_stack_lvl+0x100/0x190
[ 1067.037810][T22417]  vpanic+0x20d/0x630
[ 1067.041779][T22417]  panic+0xd1/0xd1
[ 1067.045489][T22417]  ? __pfx_panic+0x10/0x10
[ 1067.049909][T22417]  check_panic_on_warn.cold+0x19/0x34
[ 1067.055278][T22417]  ? ring_buffer_map_get_reader+0x659/0x880
[ 1067.061267][T22417]  __warn.cold+0x191/0x2f8
[ 1067.065817][T22417]  __report_bug+0x296/0x3d0
[ 1067.070355][T22417]  ? ring_buffer_map_get_reader+0x659/0x880
[ 1067.076263][T22417]  ? __pfx___report_bug+0x10/0x10
[ 1067.081330][T22417]  ? rcu_is_watching+0x12/0xc0
[ 1067.086099][T22417]  ? trace_contention_end+0xd6/0x110
[ 1067.091401][T22417]  ? rb_set_head_page+0x1e6/0x2f0
[ 1067.096426][T22417]  ? ring_buffer_map_get_reader+0x659/0x880
[ 1067.102320][T22417]  report_bug+0xb2/0x220
[ 1067.106577][T22417]  ? ring_buffer_map_get_reader+0x659/0x880
[ 1067.112478][T22417]  handle_bug+0x166/0x2a0
[ 1067.116805][T22417]  exc_invalid_op+0x17/0x50
[ 1067.121302][T22417]  asm_exc_invalid_op+0x1a/0x20
[ 1067.126140][T22417] RIP: 0010:ring_buffer_map_get_reader+0x659/0x880
[ 1067.132641][T22417] Code: ff e8 4b e1 fb ff 48 8d 3d b4 da b0 0e 4c 89 fe 67 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 28 e1 fb ff 90 <0f> 0b 90 e8 1f e1 fb ff 48 89 df 31 db e8 85 13 fe ff 48 8b 74 24
[ 1067.152242][T22417] RSP: 0018:ffffc9000b2f7d98 EFLAGS: 00010083
[ 1067.158305][T22417] RAX: 00000000000007a2 RBX: ffff88813fe28800 RCX: ffffc90010384000
[ 1067.166263][T22417] RDX: 0000000000080000 RSI: ffffffff820a6958 RDI: ffff888031f1db80
[ 1067.174221][T22417] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000
[ 1067.182192][T22417] R10: 0000000000000000 R11: ffff88813fe288b0 R12: ffff88813fe288b0
[ 1067.190324][T22417] R13: dffffc0000000000 R14: ffff88813fe28990 R15: ffff88813fe28818
[ 1067.198296][T22417]  ? ring_buffer_map_get_reader+0x658/0x880
[ 1067.204185][T22417]  ? ring_buffer_map_get_reader+0x658/0x880
[ 1067.210089][T22417]  ? __pfx_ring_buffer_map_get_reader+0x10/0x10
[ 1067.216320][T22417]  ? __fget_files+0x21f/0x3d0
[ 1067.221000][T22417]  tracing_buffers_ioctl+0x30d/0x400
[ 1067.226289][T22417]  ? __pfx_tracing_buffers_ioctl+0x10/0x10
[ 1067.232165][T22417]  __x64_sys_ioctl+0x18e/0x210
[ 1067.236960][T22417]  do_syscall_64+0xc9/0xf80
[ 1067.241546][T22417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1067.247431][T22417] RIP: 0033:0x7f305999aeb9
[ 1067.251836][T22417] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1067.271448][T22417] RSP: 002b:00007f305a836028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1067.279853][T22417] RAX: ffffffffffffffda RBX: 00007f3059c15fa0 RCX: 00007f305999aeb9
[ 1067.287808][T22417] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000006
[ 1067.295778][T22417] RBP: 00007f3059a08c1f R08: 0000000000000000 R09: 0000000000000000
[ 1067.303828][T22417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1067.311821][T22417] R13: 00007f3059c16038 R14: 00007f3059c15fa0 R15: 00007fff7bb7d2f8
[ 1067.319791][T22417]  </TASK>
[ 1067.322864][T22417] Kernel Offset: disabled
[ 1067.327178][T22417] Rebooting in 86400 seconds..