last executing test programs:

18.047368301s ago: executing program 1 (id=4854):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyc3\x00', 0x40001, 0x0)
ioctl$auto(r0, 0x5424, r0) (fail_nth: 2)

17.582791507s ago: executing program 1 (id=4858):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyc3\x00', 0x40001, 0x0)
openat$auto_transactions_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
r1 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x442000, 0x0)
ioctl$auto(r0, 0x5424, r1)

17.358743262s ago: executing program 1 (id=4860):
statmount$auto(0x0, &(0x7f0000000180)={0x770, 0xfffffffe, 0x8, 0x4, 0x4005, 0x0, 0x5, 0x400, 0x3, 0x9, 0x6, 0x6, 0x4, 0x11ffffffffffb, 0xb2, 0x2, 0x6, 0x10, 0x80, 0x7ff, 0x8000, 0x1, 0x1, 0x202, 0xd, 0xbca7, 0xfffffffffffffff6, 0x0, 0x0, 0x0, 0x6b4, [0x2, 0x6, 0x0, 0x5, 0x0, 0x0, 0x20000000000, 0x0, 0x4, 0x2, 0x3169b201, 0x0, 0x3, 0xfffffffffffffc01, 0x5, 0xfffffbfffffffffb, 0x0, 0x9, 0x2000000, 0xfffffffffffffffe, 0x0, 0x8, 0x0, 0x200000000000000, 0x0, 0x8000000000000000, 0x0, 0x1, 0x0, 0x7fffffff, 0x101, 0x0, 0x20000000000000, 0x40000000000000, 0x1000000000000200, 0x0, 0x400, 0x96, 0x5, 0x4, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffd03, &(0x7f00000001c0))
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7f, 0x9)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff000}})

7.00849172s ago: executing program 0 (id=4906):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
listen$auto(0xffffffffffffffff, 0x8)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x10)
madvise$auto(0x0, 0x81, 0x19)

5.727783811s ago: executing program 0 (id=4909):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/kernel/threads-max\x00', 0x40001, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r1, 0x4, 0x7ff)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
r2 = setfsgid$auto(0xffffffffffffffff)
r3 = clone$auto(0x2d, 0x1, &(0x7f0000000080)=0xffffffc6, &(0x7f00000000c0)=0xf5, 0x8000)
shmctl$auto_IPC_INFO(0x1, 0x3, &(0x7f00000002c0)={{0x101, 0xee00, r2, 0x6, 0x10, 0x7, 0x5}, 0x2, 0x401, 0x399f, 0x2, @inferred, @inferred=r3, 0x5, 0x0, &(0x7f0000000140)="f6add7d1184d684b25ef3ec68a84a6c4077cdc6b3a95f918eeef600302480493489f078bfa6b53a191a04d9fd8b14cf9e9b702d98a1554c3733efee715e26bda8483d3f572566d5d0b59ad6a4fc99cd36e2720a6803226c361e17e7c0ddf1ddaeb2228b3d003138841c539324c8322dba6ca8c2c0b", &(0x7f00000001c0)="89c6d2fa514cd38ca4ec2cb118f6b4f458152fd752c8acca39d163d3ecb30fdec52e59e9b89afa76267f54e45d181985e5f97f547949998459cbf9d48059c7ae396e7fb002c80c196efd97fba80a39c44ea957b186757221465bf471f6fcf7edd97698361fcd5955cf765085c600ef2ddf799465f70209a18a5b8daada28548edf83097bf0833e922486d6bdaa5b493a7a570dd1e61712ddd89efdcfd27247a29f5aebb0acd10d46b2a62bf693d239eed585cca0ef96c53527a0fa6a5753404e528a003619e07300a13fadc6c2016b3dc872c4d9f394dae2ba611a2a52669bff7a078c48f337453f0d44a3926d"})
wait4$auto(r1, 0x0, 0x80000001, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
listen$auto(0xffffffffffffffff, 0x8)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x10)
madvise$auto(0x0, 0x81, 0x19)

5.045581355s ago: executing program 3 (id=4910):
statmount$auto(0x0, &(0x7f0000000180)={0x770, 0xfffffffe, 0x8, 0x4, 0x4005, 0x0, 0x5, 0x400, 0x3, 0x9, 0x6, 0x6, 0x4, 0x11ffffffffffb, 0xb2, 0x2, 0x6, 0x10, 0x80, 0x7ff, 0x8000, 0x1, 0x1, 0x202, 0xd, 0xbca7, 0xfffffffffffffff6, 0x0, 0x0, 0x0, 0x6b4, [0x2, 0x6, 0x0, 0x5, 0x0, 0x0, 0x20000000000, 0x0, 0x4, 0x2, 0x3169b201, 0x0, 0x3, 0xfffffffffffffc01, 0x5, 0xfffffbfffffffffb, 0x0, 0x9, 0x2000000, 0xfffffffffffffffe, 0x0, 0x8, 0x0, 0x200000000000000, 0x0, 0x8000000000000000, 0x0, 0x1, 0x0, 0x7fffffff, 0x101, 0x0, 0x20000000000000, 0x40000000000000, 0x1000000000000200, 0x0, 0x400, 0x96, 0x5, 0x4, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffd03, &(0x7f00000001c0))
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000040)={0x6, 0x0})

4.696253507s ago: executing program 3 (id=4912):
r0 = socket(0x11, 0x2, 0x9000300)
sendfile$auto(0x1, r0, 0x0, 0x8fb5)
r1 = fcntl$auto(0x0, 0x408, 0x100000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/memory.force_empty\x00', 0xa001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7)
setdomainname$auto(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r3)
r5 = getuid()
sendmsg$auto_NL80211_CMD_START_AP(r1, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xf4, r4, 0x300, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_MLO_LINK_ID={0x5}, @NL80211_ATTR_REG_RULES={0xd0, 0x22, 0x0, 0x1, [@nested={0xcc, 0xa4, 0x0, 0x1, [@typed={0x8, 0xfa, 0x0, 0x0, @uid=r5}, @typed={0x14, 0x39, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @multicast2}}, @nested={0x4, 0x134}, @nested={0x4, 0xef}, @generic="aac604b00558ffc9bbf28a3efe69902a860a81f39ae314a9cb1cd1667b83a398964252a425e4410068a4f204e5919b002b6193a97fce0551bf80539ff303a8bb2807d95f9e30795fe12103df092219ae2ef9b57fe6bead83fbd64c03bf395f73d2c1b0035fd66db3acb61cf1f5183b65b4c5d49efab88af06d26cde4bc24fcdbef9bfb1a53198af01badb1b963b31de2", @nested={0x4, 0xbe}, @typed={0x9, 0x34, 0x0, 0x0, @str='*-!+\x00'}, @nested={0x4, 0xbd}]}]}, @NL80211_ATTR_BANDS={0x8, 0xef, 0xe}]}, 0xf4}, 0x1, 0x0, 0x0, 0x20000090}, 0x20000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bpf$auto_BPF_LINK_DETACH(0x22, &(0x7f00000003c0)=@task_fd_query={0x0, r0, 0x7, 0x6, 0x1ff, 0x7, r2, 0x5, 0x8}, 0x7)
r6 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r6, 0x40026f34, 0x0)
r7 = socket(0xa, 0x2, 0x0)
epoll_pwait2$auto(r7, 0x0, 0xfffffc00, 0x0, 0x0, 0x8)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000080), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x38, r9, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_ACTIONS={0x1c, 0x3, 0x0, 0x1, [@nested={0x18, 0x1, 0x0, 0x1, [@nested={0x14, 0x106, 0x0, 0x1, [@nested={0x10, 0x74, 0x0, 0x1, [@typed={0x8, 0xa8, 0x0, 0x0, @u32=0xa888}, @typed={0x4, 0x3}]}]}]}]}, @OVS_PACKET_ATTR_ACTIONS={0x4}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_TIPC_NL_PUBL_GET(r3, &(0x7f0000002100)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4)
write$auto(r2, &(0x7f0000000000)='3\xc7\xff\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00'/101, 0x9)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x801, 0x106)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r10 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r10, 0x0)
r11 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto_KVM_CREATE_VM(r11, 0xae01, 0x0)

4.348687615s ago: executing program 0 (id=4913):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/sit0/ifindex\x00', 0x80000, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x202, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x2)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0xf25, 0x0)
fsopen$auto(0x0, 0x1)

3.533421026s ago: executing program 0 (id=4914):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/sit0/ifindex\x00', 0x80000, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x202, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x2)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0xf25, 0x0)
fsopen$auto(0x0, 0x1) (fail_nth: 2)

3.321616868s ago: executing program 2 (id=4915):
statmount$auto(0x0, &(0x7f0000000180)={0x770, 0xfffffffe, 0x8, 0x4, 0x4005, 0x0, 0x5, 0x400, 0x3, 0x9, 0x6, 0x6, 0x4, 0x11ffffffffffb, 0xb2, 0x2, 0x6, 0x10, 0x80, 0x7ff, 0x8000, 0x1, 0x1, 0x202, 0xd, 0xbca7, 0xfffffffffffffff6, 0x0, 0x0, 0x0, 0x6b4, [0x2, 0x6, 0x0, 0x5, 0x0, 0x0, 0x20000000000, 0x0, 0x4, 0x2, 0x3169b201, 0x0, 0x3, 0xfffffffffffffc01, 0x5, 0xfffffbfffffffffb, 0x0, 0x9, 0x2000000, 0xfffffffffffffffe, 0x0, 0x8, 0x0, 0x200000000000000, 0x0, 0x8000000000000000, 0x0, 0x1, 0x0, 0x7fffffff, 0x101, 0x0, 0x20000000000000, 0x40000000000000, 0x1000000000000200, 0x0, 0x400, 0x96, 0x5, 0x4, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffd03, &(0x7f00000001c0))
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7f, 0x9)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff000}})

3.314652076s ago: executing program 3 (id=4916):
r0 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NFC_CMD_DEV_DOWN(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x22000024}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x4c, r0, 0x8, 0x70bd29, 0x25dfdbfb, {}, [@NFC_ATTR_LLC_PARAM_MIUX={0x6, 0x11, 0xa}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0x8}, @NFC_ATTR_VENDOR_SUBCMD={0x8, 0x1e, 0xe48}, @NFC_ATTR_LLC_PARAM_MIUX={0x6, 0x11, 0x1c00}, @NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0xffffffff}, @NFC_ATTR_DEVICE_POWERED={0x5, 0xc, 0x2}, @NFC_ATTR_DEVICE_POWERED={0x5, 0xc, 0x9}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48040}, 0x20044881)
r1 = prctl$auto_PR_SET_MM_ARG_END(0x3ff, 0x9, 0xffffffffffffffff, 0x4, 0x200)
r2 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_LLSEC_LIST_DEV(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r2, 0x100, 0x70bd25, 0x25dfdbff, {}, [@IEEE802154_ATTR_LBT_ENABLED={0x5, 0x22, 0x1}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_BCN_ORD={0x5, 0x17, 0x9}, @IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0x7}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5, 0x37, 0x24}, @IEEE802154_ATTR_DURATION={0x5, 0x15, 0x2}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x8}, @IEEE802154_ATTR_CCA_ED_LEVEL={0x8, 0x24, 0x2}]}, 0x54}, 0x1, 0x0, 0x0, 0x8}, 0x40810)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000340), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'pim6reg\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'batadv0\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000400)={'veth0_to_bridge\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r1, &(0x7f00000005c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x800044}, 0xc, &(0x7f0000000580)={&(0x7f0000000440)={0x110, r3, 0x10, 0x70bd2a, 0x25dfdbfb, {}, [@ETHTOOL_A_COALESCE_HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8000}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_COALESCE_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x400}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_COALESCE_HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}]}, @ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}]}]}, 0x110}, 0x1, 0x0, 0x0, 0x810}, 0x20000845)
r7 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000600)='/dev/bus/usb/019/001\x00', 0x408000, 0x0)
ioctl$auto_USBDEVFS_DISCARDURB(r7, 0x550b, 0x0)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000680), r1)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x14, r8, 0x200, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r9 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f00000007c0), r1)
sendmsg$auto_IEEE802154_LLSEC_ADD_DEV(r1, &(0x7f0000000880)={&(0x7f0000000780), 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x24, r9, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@IEEE802154_ATTR_LLSEC_KEY_USAGE_FRAME_TYPES={0x5, 0x31, 0x2}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x4080}, 0x0)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000980)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x14, r8, 0x300, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x24044052}, 0x40)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r1, &(0x7f0000000b80)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000b40)={&(0x7f0000000a00)={0x130, r3, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x80}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x7}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x4}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0xf}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xbc1d}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7d}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0xfed}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xe2a}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}]}, 0x130}, 0x1, 0x0, 0x0, 0x10}, 0x20050800)
sendmsg$auto_IEEE802154_LLSEC_GETPARAMS(r1, &(0x7f0000000cc0)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000c80)={&(0x7f0000000c00)={0x68, r2, 0x200, 0x70bd26, 0x25dfdbff, {}, [@IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, 0x9f}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0xb}, @IEEE802154_ATTR_DEST_SHORT_ADDR={0x6, 0xe, 0x2}, @IEEE802154_ATTR_ED_LIST={0x1f, 0x16, "3b882cdebc01557051d410401be0d128fb7bbf2517a7016a948429"}, @IEEE802154_ATTR_FRAME_RETRIES={0x5, 0x28, 0x80}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x4}, @IEEE802154_ATTR_LLSEC_KEY_USAGE_FRAME_TYPES={0x5, 0x31, 0xcb}]}, 0x68}, 0x1, 0x0, 0x0, 0x20000001}, 0x800)
mount$auto(&(0x7f0000000d00)='ipvlan1\x00', &(0x7f0000000d40)='./file0\x00', &(0x7f0000000d80)='veth0_to_bridge\x00', 0x10, &(0x7f0000000dc0)="b6adc2f82bbd7148633c963281")
sendmsg$auto_NL80211_CMD_REMOVE_LINK(r7, &(0x7f0000001040)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000e40)={0x1a4, r8, 0x100, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_S1G_CAPABILITY_MASK={0xc4, 0x129, "ac8a6cfcbeb30a601a62a4cca6ce17a5ae045c5e98c5b447f95d8ef36a862a4cc2fda45d0fe2bc2bfe14d5a115be6afe78b883bb2df07777e142d70cacee4ec88d0d766441b7dfd280d9751e3e8da3ced2f1155d2d301237d820cba20572b29ef6d5494cef602d219d6e4bbc30b1717162555a7d715a4ae970cffaf47063396ba61a8f48b04bba11fda22cf002bf3765338d755f0e0ac7ddbf30c56d4466980d74fa912e14064a0d6009b7a08697d0ebcbfb791e54fb0879b005a5867a09a267"}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, 0x1}, @NL80211_ATTR_RECEIVE_MULTICAST={0x4}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0xff}, @NL80211_ATTR_ASSOC_MLD_EXT_CAPA_OPS={0x6, 0x151, 0x2}, @NL80211_ATTR_HT_CAPABILITY={0x87, 0x1f, "14f67ecbd6ed3f503d402da8b15f6a39b6ca5434e4a5dcca6f524b10ac19e0756bb4a8754aad27d47014f1f1b6af8bb261146306a4843f0542813f526a53e70d2757d7c8e13c3798954072f03dae5eb6a3ed471e66556eb807c6a50934f6829a7658150c3c5019595e9ea21ae99e87ed9f232f5926ab692280ee5208dc697390c6d74c"}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7fffffff}, @NL80211_ATTR_BSS_BASIC_RATES={0x11, 0x24, "f0d3bf2d26c37d876010d14eda"}, @NL80211_ATTR_SUPPORT_MESH_AUTH={0x4}, @NL80211_ATTR_TIMEOUT={0x8, 0x110, 0x6}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x10000000}, 0x4000)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001080)={'veth1_to_bridge\x00', <r10=>0x0})
bpf$auto_BPF_MAP_GET_NEXT_KEY(0x4, &(0x7f00000010c0)=@link_create={@prog_fd=<r11=>r7, @target_ifindex=r10, 0x4, 0xfff, @tracing={0x1, 0x1}}, 0x8)
write$auto_console_fops_tty_io(r11, &(0x7f0000001180)="0524e75696984958921d86ea62ef429974b8f11a82dcdd0b9060491eb25565c19707b66718c2fd65a073adb3930620865371307222a79f78a7b670d35cc6423bb6c1713ace0678ffcea9", 0x4a)
clone3$auto(&(0x7f0000001200)={0x10, 0x4, 0x1, 0x4, 0x99a, 0x6, 0x5, 0x3, 0xc31, 0x2, 0x9}, 0x1ff)
r12 = socket(0x5, 0x2, 0x6)
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_GET(r12, &(0x7f0000001340)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000001300)={&(0x7f00000012c0)={0x34, r3, 0x300, 0x70bd2a, 0x4, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmsg$auto_NL80211_CMD_ADD_LINK_STA(r11, &(0x7f0000001600)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000015c0)={&(0x7f00000013c0)={0x1c4, r8, 0x200, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x4e20}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x6}, @NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x4}, @NL80211_ATTR_TID_CONFIG={0x18c, 0x11d, 0x0, 0x1, [{0x64, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x3c, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HT={0x36, 0x2, "64e73344ad1ea68719aee2668bbfedffd8ab300a7d620a82e2a086ab471cca22cc2ddcc286d2ee6e7368b9eb472eca046cf0"}]}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x7}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0xf8}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xa}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xc1}]}, {0x6c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x83}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x4}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x245a93b6}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x1c, 0xd, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x16, 0x1, "67519fd18ffdb8dd7d9b718d6e692acdd7b0"}]}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x3}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x9}]}, {0x30, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0xf0}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x10}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x9}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0xc, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}]}, {0x48, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x401}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x7}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xc}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0xd3}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xffff}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x9}]}, {0x40, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0xf}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x80}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x7}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x3}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0xa5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xc374}]}]}, @NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x2}, @NL80211_ATTR_EPCS={0x4}]}, 0x1c4}, 0x1, 0x0, 0x0, 0x2c005040}, 0x4000000)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001640), r12)
ioctl$auto_XFS_IOC_OPEN_BY_HANDLE(r1, 0xc038586b, &(0x7f00000027c0)={r1, &(0x7f0000001680)="de05346c871c4a342d476e49adcd8b9d5871c6f1ca8ed7a3f2125b2c6e2395a1874caa40d478b8542378876696afb7997a73ed306b5e70da160be9fe6afed17192212bb8d7abc8170775a47995a5987006ecc64bf007017a50e97aa56d60065654e0c06cc6f5b31de251f19b72922d862ca7651965c5aeb6bfbc1fc10fc8a244e4f238a60eac9b4adc795a38b5d23fd0c9ad413bd808967efe4998a1ac3f2c5f713a02e03da6df8bcb6adbdcd1259189e4f2dbe9cc73d74b8ae8adc753ffda3ffe6dcc82a21ec07f09bf7fd33b333eaf7d4ba2388d8230ca4bb77c8fa4776fe2523c822a230c0a1de773d46b0b06548bbfe6443646ed45af0119b510a75e393ff9cc7a10219c168fdb027c19058213c898bc82d0dd148ab35ffb1f1fb823b84bb2f83bdf47f097c0d2782e3a7217e1a17c195a9a2907efc087fd650de48d719d0fd4ef421c241790e0a4c12a1a7fe26fdac33648645568e512f71165da0f32014cc854c9c0c484c84411c4c012c7329bdcf4fd616ca8f4136025eaee44c4b16f02cce61c31c914c7c83112925572b28259bab64a8d3eee649fb26e824183d5b6bdaa3dc450beb74e1f90ace8593e5a3bb17901d49b12af84342aa6b8f58b0abeaab1f2b9653e8575c3c4dec88831580d89a6a3cdeee27dd6cebe92b18c61b6ce2797577df249faa7747ef0530119a07b1a2d0d392803ddd88e573ea8d595a399f95fb2c816b7b7e0f97963b87fdef026cc826908c0c9efd185fef89ef5c8b9e27dc4a661fd8362c6f7e0e3d00b52d420b575d6c29e7d5cda5d52869349d4ad8a3dd8d689e4672d685c326ff95496f2639941d2844f558040a5a80a72afe65fc1740f30bd64af8a962d8141be3366ad8b7312b91e57986777daa03d32e4a768bae78734d1da24fd178be78c819dfc5d2be3f0fd527aa1a32ad2b2307d9026e344a385728df65555f5d9442c0427daf3dba284f52dcc5139073799361a495f95ae1b71e6c7ca4e2f92d626c5194b221136660fcb577e13f54432e385ed902a763dffc14db2798a2d595028f64883cc317f7b68d2308689c8f8f00d209c922e7811b61d0d4be0078fa94369340fce661e878cd5487e3bed0242c8a741b7b7591def9399040c278148f99105d134d23478372e1ffc34e42d4eae7d746f87477b35265d38a0facea99a434e32be92999d5f6d70810e1c772a172f81124316578ed5eb2f1351f42066e55c4221c110f4c3aff87ef6df0ed2ef63e9924ca0f9e1ebb15f84aef2010eef583aef08daaf4ac549e5d442225dd9c9e58515f0f4710f0f996c00d2331976913284cf94dd4afc7395bd08d9cdd7e35f3b67eceaa9061459db3fa3f74db6f250197e18fb5948e17cfb71a219d3526fbf618fb8c1140adefc9214034d2cfc2192dbbe754575da5f42acd0f7b50cdaf067eecc0cbeaa38cb5882ef2ab92c22ee3dd8e8899cf57adaed692a8bb7f1a85d908cc3d3e922299bd825c9397e8eadbdc063c607a66fc9e91066a7953767f3eea45717b724b65d9588039fce869def7eded5c22c6ec771a0e8f74f536a72c8fdac82289b8cda93273d3759cc234a25d42f0a10a8e5cac2f548b4a26e981c12bd10386b5a3ac0b7d8ada62cbc2458dc9134b55bca751cac4cb50c67d55b71907e6acab68d769c2384f74f86beabcc06c5073142b785e94907017232aed256836ff7d1d72dd9078c305c3509cc399732876ef568e92da9dc6cc1e54f525d15a54e5ac7f41e562e3def4a37e2f9d7eaad776dd7ec774543b1063c277605009fa79ec5bdae70a6c20501438750556a430230465dc81039c3d212be34257320e7f97428451081bfb63fd9709c859c717fbcf78c2362ea98036d4cad0f8bd904d60dc1b20496a98c94fff45f4e6568e2eae07d1bfda840ae6c3a29c7087f08a0b6237946d7c5cf4d0a5a9f19faae6c60b553cf8c55c592cf9ca9fa46c4c32e15a18512d671d3b7ea9c821c1238483c73a443930609ca702c6f92ec51e4d54cb9593c09dfe233cf3afd642881db69a075553f3918ae18e84b0836c1e364c008ccc84331dc36b354fb9b41d7ddeda24600c677e9555413f9eee9fb50df54b300ac476922ea5788b58a278bc71e2169fd445f2394a794b7fdf8067803392f0b251b34c4765df2ecdd6bb652c1a0a92748381a1638d14a8c424df0bf7996019029234227616bad49b2ba40d72cedfdd81cc1d6d9498da65d0cdb0797bbd5e23f9e6fc4ee7b591cdb24fea3e16adfc212d90501f8a09d707adb1f67f442a02f451b74bdda486ce80a66ebe63792abb6333834c3a561512e6062c5c7e548094486665e0913e35c5028aeb5f93881200ffe42bdc25f45769d787a26b3859382bacd7fa36693e8eb1dc1ee2689041beff1b25be9a9d71bdfa20fa297ab9e4c20d12fd3123e52ecbb4149a5c3de3073f93c30e352f19c723cecdf981fbe91898c805b3b6212848721c0af4eb9a6c2a9f60c11d85888d99ed74622fed2367440d386f7c46ed4de8e5e5d212e991c8a7053bfedb7f122f9cca8a0aa72c6b5bd5433d257fa9fbb8a0e0aa977664ad9211baea0cec9c055ca9557d497775c96ad98113d5036316625331182c4b43a19f7e2f2b7db16891c3c5b5246932067b0a91e9255c71378aca0be5d4be0209e246838caf084b05e77ed21a534f9432abdf8f6c7d12a531f2e37cea661b0201804a155e48fe0f8e51a009f06bf3ac1b22346e590ace90219ca84114a0c46050e26a7e4e1e822b06983e4afe6935e6f5b61b3cb236ef953120d221ef2a4715dacf24bb847ce3e9089650ede4180d419416cd97638bd6a4585d80473e40fa4c935a2daa4c1d4bccedfa6a68a91ec30dbbd4c92148dcb58cb319592b8810b155cfb365ff61c3c266c19ae0df63c77456d36cfde6ed513c8ba7f3453d6025bf4a50e078d9b41d61957c116a5df621ea266504529017062a07a102a77b5eddf89219fe75ecbba7a3a949555facdc8c97fbdbbb31c3111fedcf64b4e939a4e3f23ffd6ba7149c7ba9e002d8ee57108ea8e2e115d9efe395a1aa7f386d859cfefe7b38301e9e6f49fedeb2af978c574046d8c28b0bf7638242e4fbcd49659bce2e33864948d25a8a385ee04126b2282c5e7666c036948142703976d44cc5097f0fa495692f35f8256a62e17b86e744d53063624923a55fccd349c999c496a2f6a2f89127aedf98636002808e41d7a105d89cb7cba365c5e8f535f35738e91a852da5765c26781054027417408b0715b91adad089a837fc74c1038ab6b9ac938861c094b6643d7aa05f71aac1ba78fc2e1f414639f91191b9c117b6a459ec79f116d5c0c13ee200d823af903e9c84ffb0fdd5b5814283152b13fa96873e4592aeaf718d946236ff0ffb5ce18451a3b3af8b1e9b4940ea51c1eb43dbbb79cf01a7f51d80733794d9f0723dbfdbd1b2f2d6667434a319afb2344d61f51502d8a4738b9a8a52092b22e133bb76bf930e99f50034be90db21f7b6fb6fd9ba5d0c96d63e5858ad53b333999d8620e5b657284913425064e89bb30acaac65c4f8615d6fd731f3bc6e81fe4dcc519b79a3c4f29692be2ac58607ea56f3919f28df66886576298f1249f17458140bde31922742506c235b8188e8af0fe933a4f9726a316ccee5a9f5452cb4d05dc999eb94adc4a0ca05e7525dd7b95154b7df2b08e8c9e67ab29b73e4353edd76bf02210d030b3d0ec2ba89f277ceb664d6c8f95a24a5b116cd992b70a446e781e5858766a21d170572ee8b7b4f883b8b934036c1b1c972f9ebff141304f7b357676546096ff0fbde5a11d3135eaaf408234057572080fb787072aa8fc54755ed86b754c1df653c7f5745cc251a4b00b0a8606fe947e28c34fd9055b5779da1970e38c8116d8b3fb91f7e329d4758e5341cbe8e7b434616b45b827f0347d5b1e97d4c0d415fa1944899ccffa3d2043122b82ee4df4f8310da290763a7e08212b5e3d2b5eaf792d6ebdce9b5b6cb43f4818ae02af69ba65204f18c8ac7810e1972cabf2be0b73f61c0313ecd9a94e9882a27535e72379477996b2d8631e63b1953d5461102b9ee9283228e4ed9ba2e34136a064b1a278828d2851ed0f212dbc13a7c2754007fddb09be75731636d1917eb1c9c4f340a3a8ed79a3952b8f5ffe7ad36650aafcdefe8b44025f835b4bec8cb1e0bbf32836107d1af2b40c51436cea3a851ecec46d18ed13df1b53d94f06b50841df59a647e04bdfcfba803242a366d923cc2039cf76daad046e140073988f562b9b2972315704d3992b5c76737db22f3e890317e19bc9af8fe9c1eb58c1313de925ee5e5c33d2ec2fbc62ad6b337fca977c1e37944834588b9e285af978d728fae3fc271cdd13f448a4d78fa64d17ab27096821ee4b994556665167a9bd8c5e88fa79d3e1716a3c3edad4f98d2b5e9c591071374de3735c420b39e2c4d3ebae30e25879b2f64bc0234c8304e02323ff19b98626c77f44c3e06a7c9a112b504df75a9be31dcac9635dc9c6e184d76d184f820fd08ab0484cefc872a724744af7c616de379a45aab4fb40a2d64922577dd3f08b23db06fda8c292dc883da9ba56c91bc018207f85c7a597259848c7240d61b84a7b77b83879c8866f79b5fb5d9bdc8fe73dd1fe159a9e469e637ba80e05ab8c322882ef3da6f1cb604626b3ffe635b4fb0c279922d0da37e61661b69a9cb33542e4b224294748f10e065e773e06d096109c5f57980e5ee7f5a13412e8bbb57cfad4db186f0bd771784c1dfa8fe2940fbd9d835a91516c469bcfc2c755611e5d0f74ed25fb060c3917f53ca057e08aa70469695a8503d27d8a4103ef3128da8e91d2a620b31a5b7fb93843293bd101c923418be8cf5c8c8de38c7ca958fc40b5650fd93acddd4f3772157a0779e24d37a689170446fb2453e6d659b9b29f59d6427d20c377d299e8db44b98a59f8e1849204a6692e4f96d2b3094551517ccb0922bef4293dfa3bbccef729c779edd254f8ed236432db0ef416ce7730cec4eb878bc63c5c4317f921a1ea50085aeec09eb56839ff09305afd1da3b310ed85040378692514ac02eb2d11351c16bfdb7c0ddc8ac5fd03f802c82350aac45061d2f1d0df133a049c7d72e76939c3691457deee2c2ce0ec083634e8ebc9cf29ce6b98269f384c09203b2e31f490f3053e860dbb6ca8c0122ac36ee78328bc6aee5ca8de99b29db311a1fad783b9db182b0cd7b5aeafba15fbbe330e5f855bd463da69ea128c252d25c3ddf58c4a0807e1f6b989478143760cb724300040d8a3d3f3be6ef36c8b6089065e35aba94468e281b24ff4736c839b1f1dedbb68dd8a72b168aa5a83ea2c0fba126cc534969e48d767ec4088bd8c9bc3019d52ce96dfc870e125829d6bb122a4819b3a43c22794dac9be260be6113e579cf8ea0ca7852ddf4cc1906f36a7ccc236865b4c6d67b7a1c51c98e8aadb519911c559fc41242093c6885342fe76cc7f7141d94b085f2cf0ba2fa1de28d4a3e21cd6631248c814a18906701b6a86ddd4967b0f9fc9b65e8267a44d385b1ce357214493ab2b90b874c8f26d90d1075b1cd17545fa67c23b846d453ef04aac11f8979c0b96a296cda706ab91c71ec5ed6d367f2b5a143d687298076e6c1e769a6b5fadb8539f69263e052e776d7d4a8246cf196da097b92e7af728d74ef28e3206909f399ada6d43711384f6142787df1ad85531e4a4ae8c3cd5a936435247b99d9d9ee86e8d92dffe3c77c57a569bdcd33616175a48792c00166b3d87e366d6758b58f5f4f56181", 0x81, &(0x7f0000002680)="32e1b275669f67b2725067f99e853d9e7640ccac9dea33c0c38310c226a4160d6708ee20752ef6", 0x1, &(0x7f00000026c0)="953fb9091acc4bb47c806bfd2140cec48406266b6c3788b256f23f70259ae1dbf13a2e208d4eba62fbd1c962e45d0811695661a96a060cc65052b76a94ca0924402120094ac8942c544c5978f5e62a84e000d6ceffb6eeab9632d871b327fc21562249fa83e3a90098383fba763eb1c89d533eac59ddef33fa72d63780a80df02d5242290b8616d75991db750104302ddd145914b206791a27c234b02a2346122838db8cb90789f526e7365b70780b979229e8f1766e88998784f909f1635301", &(0x7f0000002780)=0x3})

3.181279401s ago: executing program 2 (id=4917):
socket(0x2, 0x80802, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_smc_gen_netlink(0x0, 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x103281, 0x0)
mmap$auto(0x0, 0x20009, 0x100000000000f17, 0x14, r0, 0x8000)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.7/usb8/authorized_default\x00', 0x20582, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.2MB.rsvd.limit_in_bytes\x00', 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd10\x00', 0x14fa02, 0x0)
r3 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$auto_I2C_TENBIT(r3, 0x704, 0xfffffffffffffffd)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0)
mmap$auto(0x2000000000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
clone$auto(0x7, 0x99f, 0x0, 0x0, 0x40000008000000a)
open(0x0, 0x261c2, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x37120567, 0x4, 0x5, 0x0)
openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x7091c3, 0x0)
write$auto(r2, 0x0, 0x5)
mmap$auto(0x0, 0x400008, 0x5, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(r1, 0x0, 0x1, 0x3000040)
r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/tty/drivers\x00', 0x2000, 0x0)
pread64$auto(r4, 0x0, 0x6, 0x100000001)
prctl$auto(0x3c, 0x1, 0x4, 0x5, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)

3.063144223s ago: executing program 3 (id=4918):
mmap$auto(0x0, 0xe, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x1d, 0x2, 0x6)
r0 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r1=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1, 0xfd}, 0x6a)
write$auto(0x3, 0x0, 0x81) (fail_nth: 2)

2.049379743s ago: executing program 0 (id=4919):
unshare$auto(0x40000080)
unshare$auto(0x800)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xed\xf8\xe1\xbc\x1d\x91D\xe7R\x12\xc4\xcd\xc6\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY2@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(', 0x100000a3dd)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x20a00, 0x0)
r1 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x40900, 0x0)
ioctl$auto_UBI_IOCATT(r1, 0x40186f40, 0x0)
ioctl$auto_UBI_IOCDET(r1, 0x40046f41, 0x0)
ioctl$auto_UBI_IOCDET(r1, 0x40046f41, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioprio_set$auto(0x3, 0x0, 0x4b34)
sendmsg$auto_TIPC_NL_MEDIA_GET(0xffffffffffffffff, 0x0, 0x48010)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x281, 0x0)
socket(0x23, 0x6, 0x7ff)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setitimer$auto(0x2, &(0x7f0000000040)={{0x432, 0x5}, {0x0, 0xf5fc8d9}}, 0x0)
bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@generic={0xa, "2c551d000000fe8000"}, 0x66)
ioctl$auto_TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, &(0x7f0000000080)={0x1, &(0x7f0000000000)={0x0, 0xf5, 0x95}})
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x8a801, 0x0)
write$auto(r2, &(0x7f0000000200)='1\x00\\\xa0\x04\x06\x00\x00\x00*\x8d\x14\xfa 3\x00\xad1\xcc\xeb&{q\xe0$\xcd\x81Zm\xeb\xe39LC{\xf8\xa09\xe9\x05\xfc\xddUw4e\xc6\t}k\x14\xcah\xba\x16\xdc\x00\x88\x11\x008\xb3z\xe4\xb9\x97\x90z\xb41&YH\xd6\xaa\x06\xbc \b\xd7\xee\x8a:\xd9\x88\x8f\x06)l\xe4\x83\xbc\xd1wOa\xb6\x93\xe7\xb7\xbb\xdc\x98\xba\\\x15\xc2\xdc1D\x8b@\x9btfi\xaf\xdf\xee\v\x8e\xa2P\x93\x19\xea\x84T]<]+\x04N5=\xc0\x9d-\xaf\xfd\xc7\x87\x00\x00\x00\x00\xa4q\xec\x82\x95\x01\xfc7\x86\xd0\xd2\x93\xa7?\xc5\xf3\xaf\xe5\x17\x96\xc6\xbd=\x9a=\xe8\xf22\xab\x83\x9f\xc2\xc2\x8f\x1fQ|\x91&\x15\x0f\x18\xbc\xd3\xd6\xd7P\bTb\xfaY\xfcio\xa3\xe1d#-R\x91}\xe4\x88\xf6\xcc\xd5e\xb1Va\xa4Z\'w\xee\x94`>\x99\x00\xef\xe5\x9csXS<\x96\xafgM\xadY\xae\xf5\xe4\xb3\x9d\x18\x0f\xcc\xbb\tGb\xf5\x8c\xf4\xbc\xaf\x7f\x87\'\x9f\x8ff\x03m\xaf+D\xee\xcd\xd9\xfe\xe2)\x830}\xcc\xadC\xdd\xea\xb1\x8d\x06xj^U\xc0<\xfe\xc3U\xf8\x1ff\xe1\xd8\x14\t\xa8l]\xeb\xb6\xef\x04\x8f\xff\xfc\x97\x91\xdbN\x81\xfd\xf2\x9e\x18\x85G\xc7\xef\x86;\xd5\xd9\xd8\x18wq.%\xa9l\xc8\xdaC\x93\xc6\xc6\xd5p8\xa5\xb1\xd7:<\x8aCP\xd08\xcf', 0x4)
socket(0x2b, 0x1, 0x401)
ptrace$auto(0x10, 0x0, 0x4, 0x7ff)
socket(0x2b, 0x1, 0x1)

2.049202378s ago: executing program 3 (id=4920):
statmount$auto(0x0, &(0x7f0000000180)={0x770, 0xfffffffe, 0x8, 0x4, 0x4005, 0x0, 0x5, 0x400, 0x3, 0x9, 0x6, 0x6, 0x4, 0x11ffffffffffb, 0xb2, 0x2, 0x6, 0x10, 0x80, 0x7ff, 0x8000, 0x1, 0x1, 0x202, 0xd, 0xbca7, 0xfffffffffffffff6, 0x0, 0x0, 0x0, 0x6b4, [0x2, 0x6, 0x0, 0x5, 0x0, 0x0, 0x20000000000, 0x0, 0x4, 0x2, 0x3169b201, 0x0, 0x3, 0xfffffffffffffc01, 0x5, 0xfffffbfffffffffb, 0x0, 0x9, 0x2000000, 0xfffffffffffffffe, 0x0, 0x8, 0x0, 0x200000000000000, 0x0, 0x8000000000000000, 0x0, 0x1, 0x0, 0x7fffffff, 0x101, 0x0, 0x20000000000000, 0x40000000000000, 0x1000000000000200, 0x0, 0x400, 0x96, 0x5, 0x4, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7f, 0x9)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0})

1.597078333s ago: executing program 2 (id=4921):
r0 = socket(0x2, 0x1, 0x0)
setresuid$auto(0x0, 0x7, 0x8080)
setsockopt$auto(r0, 0x0, 0x10, 0x0, 0x17)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x3, 0x1)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/ptyqe\x00', 0x201, 0x0)
socket(0x2, 0x1, 0x0)
write$auto_tty_fops_tty_io(r2, &(0x7f0000000240)="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", 0x15b)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f00000001c0)={[0x1ff, 0x7, 0x3, 0x9, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1004, 0xb, 0x9, 0x2, 0xd8]}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000000), r4)
close_range$auto(0x2, r3, 0x0)

1.585846621s ago: executing program 3 (id=4922):
mmap$auto(0x0, 0xe, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x1d, 0x2, 0x6)
r0 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r1=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1, 0xfd}, 0x6a)
write$auto(0x3, 0x0, 0x81)

1.422187542s ago: executing program 1 (id=4862):
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
r0 = bpf$auto_BPF_OBJ_GET(0x7, &(0x7f0000000000)=@prog_bind_map={0xffffffffffffffff, 0xffffffffffffffff, 0xf4ce}, 0xfffffff9)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/lru_gen\x00', 0x1, 0x0)
writev$auto(r0, &(0x7f0000000100)={0x0, 0x7}, 0x8)
gettid()
close_range$auto(0x2, 0x8, 0x0)

1.30998909s ago: executing program 1 (id=4923):
mmap$auto(0x0, 0xe, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x1d, 0x2, 0x6)
r0 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r1=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1, 0xfd}, 0x6a)
write$auto(0x3, 0x0, 0x81)

1.204085978s ago: executing program 2 (id=4924):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000001600)='/sys/kernel/debug/ieee80211/phy7/hw_conf\x00', 0x0, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(r0, 0x0, 0x0) (async)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/mac80211_hwsim/hwsim0/net/wlan0/flags\x00', 0x189082, 0x0)
sendfile$auto(r1, r1, 0x0, 0x1) (async)
mq_unlink$auto(&(0x7f0000000040)='/dev/rtc0\x00') (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
close_range$auto(r0, r2, 0x3) (async)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x5)
madvise$auto(0x0, 0x200007, 0x19)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000) (async)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) (async)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x2a1, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0xfffffffd, 0x1, 0x40, 0x76c5, 0x100008, 0x100000000}})

465.222985ms ago: executing program 2 (id=4925):
statmount$auto(0x0, &(0x7f0000000180)={0x770, 0xfffffffe, 0x8, 0x4, 0x4005, 0x0, 0x5, 0x400, 0x3, 0x9, 0x6, 0x6, 0x4, 0x11ffffffffffb, 0xb2, 0x2, 0x6, 0x10, 0x80, 0x7ff, 0x8000, 0x1, 0x1, 0x202, 0xd, 0xbca7, 0xfffffffffffffff6, 0x0, 0x0, 0x0, 0x6b4, [0x2, 0x6, 0x0, 0x5, 0x0, 0x0, 0x20000000000, 0x0, 0x4, 0x2, 0x3169b201, 0x0, 0x3, 0xfffffffffffffc01, 0x5, 0xfffffbfffffffffb, 0x0, 0x9, 0x2000000, 0xfffffffffffffffe, 0x0, 0x8, 0x0, 0x200000000000000, 0x0, 0x8000000000000000, 0x0, 0x1, 0x0, 0x7fffffff, 0x101, 0x0, 0x20000000000000, 0x40000000000000, 0x1000000000000200, 0x0, 0x400, 0x96, 0x5, 0x4, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffd03, &(0x7f00000001c0))
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7f, 0x9)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff000}})

242.66809ms ago: executing program 2 (id=4927):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
timerfd_create$auto_CLOCK_REALTIME(0x0, 0x83)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
bind$auto(0xffffffffffffffff, 0x0, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/zram-control/hot_remove\x00', 0x8001, 0x0)
pwrite64$auto(r1, 0x0, 0x8, 0x3)
write$auto(0x3, 0x0, 0x1)
lseek$auto(r0, 0x5, 0x1)
sendfile$auto(0x3, 0xffffffffffffffff, 0x0, 0x400000000006)
mmap$auto(0x0, 0x8000400008, 0xdf, 0x9b72, 0x2, 0x4f)
sysfs$auto(0x2, 0xd, 0x0)
r2 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0)
read$auto_usbfs_devices_fops_usb(r2, 0x0, 0x2d)
read$auto_regulator_summary_fops_(r2, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
connect$auto(0x3, 0x0, 0x58)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x200000)

151.820115ms ago: executing program 1 (id=4928):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0x5d, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x2000000000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r0, 0x84, 0x4, 0x0, 0x0)
setresuid$auto(0x0, 0x8, 0x8000)
ioprio_set$auto(0x3, 0x0, 0x4b34) (async)
ioprio_set$auto(0x3, 0x0, 0x4b34)
setresuid$auto(0x8000000000000001, 0x1, 0x200) (async)
setresuid$auto(0x8000000000000001, 0x1, 0x200)
mlockall$auto(0x7)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000080), 0x401, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x800a6f2f, 0x0) (async)
ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x800a6f2f, 0x0)
madvise$auto(0x8000, 0x87fff, 0xc)
clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
r2 = ioctl$auto_SIOCSIFHWADDR2(0xffffffffffffffff, 0x8924, &(0x7f0000000040)="d1325f9d351927cad155b44e129ea6145007494e138ad265e324350af517888d4f50609fd3d5dd26816b19c9503cef84467ffd57656577a3d1a4103b179bc977")
ioctl$auto_SIOCSIFHWADDR2(r2, 0x8924, &(0x7f00000000c0)="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") (async)
ioctl$auto_SIOCSIFHWADDR2(r2, 0x8924, &(0x7f00000000c0)="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")
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000000), r2)

0s ago: executing program 0 (id=4929):
mmap$auto(0x0, 0xe, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0)
r0 = fanotify_init$auto(0x5, 0x2000000000002)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x1d, 0x2, 0x6)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r0)
sendmsg$auto_NL80211_CMD_GET_POWER_SAVE(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x70, r2, 0x100, 0x70bd29, 0x25dfdbff, {}, [@NL80211_ATTR_TDLS_INITIATOR={0x4}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0xc}, @NL80211_ATTR_PREV_BSSID={0x4e, 0x4f, "4a57ba53b429b797d1f027e5e2a4ea784b6959cc47e6d47e1aa23c94bc5395479b3cedb753ef18eef8ed364207813a6cbeb83b668d4826f884d62f9c4fa158629c07edeb70b02ffab2c4"}]}, 0x70}, 0x1, 0x0, 0x0, 0x20004010}, 0x8080)
ioctl$auto_PPPIOCSMRU(r0, 0x40047452, &(0x7f0000000240)=0xfffffff3)
r3 = socket(0x2, 0x2, 0x1)
ioctl$auto_PPPIOCGIDLE32(r0, 0x8008743f, &(0x7f0000000080)={0x0, 0xb})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r4=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r4, 0xfd}, 0x6a)
syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff)
socket(0xa, 0x2, 0x73)
setsockopt$auto(r0, 0x29, 0x1, 0x0, 0x8)
write$auto(0x3, 0x0, 0x81)

kernel console output (not intermixed with test programs):

.303390][T29982]  ? security_mmap_addr+0x71/0x1e0
[ 1803.303421][T29982]  ? __get_unmapped_area+0x255/0x3e0
[ 1803.303455][T29982]  do_mmap+0xc63/0x12f0
[ 1803.303493][T29982]  ? __pfx_do_mmap+0x10/0x10
[ 1803.303522][T29982]  ? __pfx_down_write_killable+0x10/0x10
[ 1803.303550][T29982]  vm_mmap_pgoff+0x29e/0x470
[ 1803.303572][T29982]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1803.303590][T29982]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[ 1803.303612][T29982]  ? __fget_files+0x215/0x3d0
[ 1803.303631][T29982]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1803.303653][T29982]  ksys_mmap_pgoff+0xe4/0x610
[ 1803.303673][T29982]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 1803.303688][T29982]  ? fput+0x79/0x100
[ 1803.303717][T29982]  ? ksys_write+0x1ac/0x250
[ 1803.303742][T29982]  ? __pfx_ksys_write+0x10/0x10
[ 1803.303773][T29982]  __x64_sys_mmap+0x125/0x190
[ 1803.303802][T29982]  do_syscall_64+0x10b/0xf80
[ 1803.303833][T29982]  ? clear_bhb_loop+0x40/0x90
[ 1803.303879][T29982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1803.303905][T29982] RIP: 0033:0x7fb41b59cdd9
[ 1803.303927][T29982] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1803.303951][T29982] RSP: 002b:00007fb41c4f7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1803.303976][T29982] RAX: ffffffffffffffda RBX: 00007fb41b815fa0 RCX: 00007fb41b59cdd9
[ 1803.303994][T29982] RDX: 0000000000000203 RSI: 0000000002020009 RDI: 0000000000000000
[ 1803.304009][T29982] RBP: 00007fb41c4f7090 R08: fffffffffffffffa R09: 0000000000008000
[ 1803.304027][T29982] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001
[ 1803.304041][T29982] R13: 00007fb41b816038 R14: 00007fb41b815fa0 R15: 00007ffe397ccad8
[ 1803.304078][T29982]  </TASK>
[ 1824.989162][T30227] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input6
[ 1830.500231][T30290] FAULT_INJECTION: forcing a failure.
[ 1830.500231][T30290] name failslab, interval 1, probability 0, space 0, times 0
[ 1830.525579][T30290] CPU: 1 UID: 0 PID: 30290 Comm: syz.3.4678 Not tainted syzkaller #0 PREEMPT(full) 
[ 1830.525616][T30290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1830.525631][T30290] Call Trace:
[ 1830.525642][T30290]  <TASK>
[ 1830.525654][T30290]  dump_stack_lvl+0x100/0x190
[ 1830.525688][T30290]  should_fail_ex.cold+0x5/0xa
[ 1830.525724][T30290]  should_failslab+0xc2/0x120
[ 1830.525755][T30290]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1830.525793][T30290]  ? ext4_init_io_end+0x24/0x170
[ 1830.525828][T30290]  ? tomoyo_check_open_permission+0x1db/0x3c0
[ 1830.525864][T30290]  ext4_init_io_end+0x24/0x170
[ 1830.525898][T30290]  ext4_do_writepages+0x9d4/0x3f20
[ 1830.525926][T30290]  ? __lock_acquire+0x4a5/0x2630
[ 1830.525978][T30290]  ? __pfx_ext4_do_writepages+0x10/0x10
[ 1830.526026][T30290]  ? ext4_writepages+0x347/0x790
[ 1830.526052][T30290]  ext4_writepages+0x347/0x790
[ 1830.526092][T30290]  ? __pfx_ext4_writepages+0x10/0x10
[ 1830.526133][T30290]  ? do_writepages+0x4b5/0x600
[ 1830.526164][T30290]  ? do_writepages+0x4b5/0x600
[ 1830.526198][T30290]  ? __pfx_ext4_writepages+0x10/0x10
[ 1830.526229][T30290]  do_writepages+0x278/0x600
[ 1830.526269][T30290]  ? __pfx_do_writepages+0x10/0x10
[ 1830.526300][T30290]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1830.526330][T30290]  ? _raw_spin_unlock+0x28/0x50
[ 1830.526363][T30290]  filemap_writeback+0x22d/0x2e0
[ 1830.526398][T30290]  ? __pfx_filemap_writeback+0x10/0x10
[ 1830.526473][T30290]  ? mt_find+0x45e/0x8e0
[ 1830.526510][T30290]  ? __pfx_mt_find+0x10/0x10
[ 1830.526548][T30290]  file_write_and_wait_range+0xcd/0x140
[ 1830.526589][T30290]  ext4_sync_file+0x358/0xb90
[ 1830.526619][T30290]  ? __pfx_ext4_sync_file+0x10/0x10
[ 1830.526644][T30290]  ? __up_read+0x230/0x6e0
[ 1830.526674][T30290]  ? __pfx___up_read+0x10/0x10
[ 1830.526701][T30290]  ? __do_sys_msync+0x39b/0x590
[ 1830.526728][T30290]  ? __pfx_ext4_sync_file+0x10/0x10
[ 1830.526753][T30290]  vfs_fsync_range+0x9b/0x190
[ 1830.526792][T30290]  __do_sys_msync+0x3ca/0x590
[ 1830.526825][T30290]  do_syscall_64+0x10b/0xf80
[ 1830.526857][T30290]  ? clear_bhb_loop+0x40/0x90
[ 1830.526890][T30290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1830.526917][T30290] RIP: 0033:0x7f9d2ed9cdd9
[ 1830.526944][T30290] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1830.526968][T30290] RSP: 002b:00007f9d2fcb9028 EFLAGS: 00000246 ORIG_RAX: 000000000000001a
[ 1830.526994][T30290] RAX: ffffffffffffffda RBX: 00007f9d2f015fa0 RCX: 00007f9d2ed9cdd9
[ 1830.527012][T30290] RDX: 0000000400000004 RSI: 0180000000000000 RDI: 000000001ffff000
[ 1830.527029][T30290] RBP: 00007f9d2fcb9090 R08: 0000000000000000 R09: 0000000000000000
[ 1830.527045][T30290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1830.527061][T30290] R13: 00007f9d2f016038 R14: 00007f9d2f015fa0 R15: 00007ffd81b527d8
[ 1830.527105][T30290]  </TASK>
[ 1831.006617][T30294] cougar: G6 mapped to space
[ 1835.234959][T30337] cougar: G6 mapped to space
[ 1840.998080][T30421] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1843.222695][T30460] FAULT_INJECTION: forcing a failure.
[ 1843.222695][T30460] name failslab, interval 1, probability 0, space 0, times 0
[ 1843.244446][T30460] CPU: 0 UID: 0 PID: 30460 Comm: syz.3.4712 Not tainted syzkaller #0 PREEMPT(full) 
[ 1843.244482][T30460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1843.244498][T30460] Call Trace:
[ 1843.244508][T30460]  <TASK>
[ 1843.244519][T30460]  dump_stack_lvl+0x100/0x190
[ 1843.244553][T30460]  should_fail_ex.cold+0x5/0xa
[ 1843.244588][T30460]  should_failslab+0xc2/0x120
[ 1843.244619][T30460]  __kvmalloc_node_noprof+0xfa/0xa00
[ 1843.244645][T30460]  ? file_tty_write.isra.0+0x64e/0x890
[ 1843.244692][T30460]  file_tty_write.isra.0+0x64e/0x890
[ 1843.244743][T30460]  redirected_tty_write+0xd4/0x120
[ 1843.244779][T30460]  do_iter_readv_writev+0x6ee/0x920
[ 1843.244816][T30460]  ? __pfx_do_iter_readv_writev+0x10/0x10
[ 1843.244849][T30460]  ? bpf_lsm_file_permission+0x9/0x10
[ 1843.244872][T30460]  ? security_file_permission+0x76/0x210
[ 1843.244902][T30460]  ? rw_verify_area+0xce/0x6d0
[ 1843.244931][T30460]  vfs_writev+0x360/0xe10
[ 1843.244970][T30460]  ? __pfx_vfs_writev+0x10/0x10
[ 1843.244999][T30460]  ? find_held_lock+0x2b/0x80
[ 1843.245031][T30460]  ? ksys_write+0x190/0x250
[ 1843.245082][T30460]  ? __fget_files+0x21f/0x3d0
[ 1843.245125][T30460]  ? do_writev+0x13e/0x340
[ 1843.245185][T30460]  do_writev+0x13e/0x340
[ 1843.245214][T30460]  ? __pfx_do_writev+0x10/0x10
[ 1843.245245][T30460]  ? rcu_is_watching+0x12/0xc0
[ 1843.245281][T30460]  do_syscall_64+0x10b/0xf80
[ 1843.245317][T30460]  ? clear_bhb_loop+0x40/0x90
[ 1843.245349][T30460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1843.245381][T30460] RIP: 0033:0x7f9d2ed9cdd9
[ 1843.245403][T30460] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1843.245428][T30460] RSP: 002b:00007f9d2fcb9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1843.245452][T30460] RAX: ffffffffffffffda RBX: 00007f9d2f015fa0 RCX: 00007f9d2ed9cdd9
[ 1843.245470][T30460] RDX: 0000000000000003 RSI: 00002000000003c0 RDI: 0000000000000003
[ 1843.245486][T30460] RBP: 00007f9d2fcb9090 R08: 0000000000000000 R09: 0000000000000000
[ 1843.245502][T30460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1843.245517][T30460] R13: 00007f9d2f016038 R14: 00007f9d2f015fa0 R15: 00007ffd81b527d8
[ 1843.245554][T30460]  </TASK>
[ 1843.488256][T30463] sg_write: data in/out 262108/45 bytes for SCSI command 0x61-- guessing data in;
[ 1843.488256][T30463]    program syz.0.4710 not setting count and/or reply_len properly
[ 1843.508407][T30463] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4710'.
[ 1843.938337][T30463] i: entered promiscuous mode
[ 1844.030156][T30466] HfR: entered promiscuous mode
[ 1844.038323][T30474] FAULT_INJECTION: forcing a failure.
[ 1844.038323][T30474] name failslab, interval 1, probability 0, space 0, times 0
[ 1844.107634][T30474] CPU: 0 UID: 0 PID: 30474 Comm: syz.1.4715 Not tainted syzkaller #0 PREEMPT(full) 
[ 1844.107670][T30474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1844.107685][T30474] Call Trace:
[ 1844.107695][T30474]  <TASK>
[ 1844.107705][T30474]  dump_stack_lvl+0x100/0x190
[ 1844.107739][T30474]  should_fail_ex.cold+0x5/0xa
[ 1844.107773][T30474]  ? kernfs_fop_write_iter+0x26a/0x5f0
[ 1844.107817][T30474]  should_failslab+0xc2/0x120
[ 1844.107848][T30474]  __kmalloc_noprof+0xe0/0x850
[ 1844.107894][T30474]  kernfs_fop_write_iter+0x26a/0x5f0
[ 1844.107934][T30474]  vfs_write+0x6ac/0x1070
[ 1844.107965][T30474]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1844.108005][T30474]  ? __pfx_vfs_write+0x10/0x10
[ 1844.108056][T30474]  ksys_write+0x12a/0x250
[ 1844.108086][T30474]  ? __pfx_ksys_write+0x10/0x10
[ 1844.108118][T30474]  ? rcu_is_watching+0x12/0xc0
[ 1844.108155][T30474]  do_syscall_64+0x10b/0xf80
[ 1844.108187][T30474]  ? clear_bhb_loop+0x40/0x90
[ 1844.108221][T30474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1844.108249][T30474] RIP: 0033:0x7fb41b59cdd9
[ 1844.108271][T30474] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1844.108297][T30474] RSP: 002b:00007fb41c4f7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1844.108321][T30474] RAX: ffffffffffffffda RBX: 00007fb41b815fa0 RCX: 00007fb41b59cdd9
[ 1844.108339][T30474] RDX: 0000000000000081 RSI: 0000200000000040 RDI: 0000000000000003
[ 1844.108354][T30474] RBP: 00007fb41c4f7090 R08: 0000000000000000 R09: 0000000000000000
[ 1844.108370][T30474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1844.108386][T30474] R13: 00007fb41b816038 R14: 00007fb41b815fa0 R15: 00007ffe397ccad8
[ 1844.108423][T30474]  </TASK>
[ 1844.870052][T30494] : Can't lookup blockdev
[ 1845.336364][T30505] FAULT_INJECTION: forcing a failure.
[ 1845.336364][T30505] name failslab, interval 1, probability 0, space 0, times 0
[ 1845.371832][T30505] CPU: 1 UID: 0 PID: 30505 Comm: syz.0.4725 Not tainted syzkaller #0 PREEMPT(full) 
[ 1845.371867][T30505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1845.371883][T30505] Call Trace:
[ 1845.371892][T30505]  <TASK>
[ 1845.371902][T30505]  dump_stack_lvl+0x100/0x190
[ 1845.371934][T30505]  should_fail_ex.cold+0x5/0xa
[ 1845.371973][T30505]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1845.372005][T30505]  should_failslab+0xc2/0x120
[ 1845.372035][T30505]  __kmalloc_noprof+0xe0/0x850
[ 1845.372080][T30505]  ? kfree+0x1dd/0x6c0
[ 1845.372120][T30505]  tomoyo_realpath_from_path+0xb6/0x690
[ 1845.372160][T30505]  tomoyo_path_number_perm+0x23c/0x580
[ 1845.372195][T30505]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1845.372234][T30505]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1845.372279][T30505]  ? rcu_read_lock_any_held+0x6a/0xa0
[ 1845.372336][T30505]  ? hook_file_ioctl_common+0x149/0x410
[ 1845.372382][T30505]  security_file_ioctl+0xd3/0x230
[ 1845.372411][T30505]  __x64_sys_ioctl+0xb7/0x210
[ 1845.372440][T30505]  do_syscall_64+0x10b/0xf80
[ 1845.372473][T30505]  ? clear_bhb_loop+0x40/0x90
[ 1845.372506][T30505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1845.372532][T30505] RIP: 0033:0x7fd86af9cdd9
[ 1845.372554][T30505] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1845.372579][T30505] RSP: 002b:00007fd8691f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1845.372605][T30505] RAX: ffffffffffffffda RBX: 00007fd86b215fa0 RCX: 00007fd86af9cdd9
[ 1845.372623][T30505] RDX: 0000000000000000 RSI: 00000000c0045627 RDI: 0000000000000001
[ 1845.372639][T30505] RBP: 00007fd8691f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1845.372655][T30505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1845.372671][T30505] R13: 00007fd86b216038 R14: 00007fd86b215fa0 R15: 00007ffeee20a918
[ 1845.372708][T30505]  </TASK>
[ 1845.372719][T30505] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1846.469393][ T5637] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1846.484381][ T5637] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1846.495557][ T5637] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1846.506551][ T5637] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1846.518404][ T5637] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1846.886553][T30529] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4728'.
[ 1847.372002][T30540] FAULT_INJECTION: forcing a failure.
[ 1847.372002][T30540] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1847.502199][T30540] CPU: 1 UID: 0 PID: 30540 Comm: syz.3.4729 Not tainted syzkaller #0 PREEMPT(full) 
[ 1847.502236][T30540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1847.502251][T30540] Call Trace:
[ 1847.502260][T30540]  <TASK>
[ 1847.502271][T30540]  dump_stack_lvl+0x100/0x190
[ 1847.502307][T30540]  should_fail_ex.cold+0x5/0xa
[ 1847.502340][T30540]  _copy_from_user+0x2e/0xd0
[ 1847.502381][T30540]  copy_msghdr_from_user+0x9f/0x4f0
[ 1847.502419][T30540]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1847.502461][T30540]  ? __pfx__kstrtoull+0x10/0x10
[ 1847.502498][T30540]  ___sys_sendmsg+0x106/0x1e0
[ 1847.502535][T30540]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1847.502586][T30540]  ? find_held_lock+0x2b/0x80
[ 1847.502641][T30540]  __sys_sendmmsg+0x205/0x430
[ 1847.502674][T30540]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1847.502714][T30540]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1847.502770][T30540]  ? fput+0x79/0x100
[ 1847.502804][T30540]  ? ksys_write+0x1ac/0x250
[ 1847.502832][T30540]  ? __pfx_ksys_write+0x10/0x10
[ 1847.502867][T30540]  __x64_sys_sendmmsg+0x9c/0x100
[ 1847.502895][T30540]  ? lockdep_hardirqs_on+0x78/0x100
[ 1847.502927][T30540]  do_syscall_64+0x10b/0xf80
[ 1847.502958][T30540]  ? clear_bhb_loop+0x40/0x90
[ 1847.502990][T30540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1847.503017][T30540] RIP: 0033:0x7f9d2ed9cdd9
[ 1847.503039][T30540] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1847.503063][T30540] RSP: 002b:00007f9d2fc56028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1847.503088][T30540] RAX: ffffffffffffffda RBX: 00007f9d2f016270 RCX: 00007f9d2ed9cdd9
[ 1847.503105][T30540] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[ 1847.503120][T30540] RBP: 00007f9d2fc56090 R08: 0000000000000000 R09: 0000000000000000
[ 1847.503136][T30540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1847.503151][T30540] R13: 00007f9d2f016308 R14: 00007f9d2f016270 R15: 00007ffd81b527d8
[ 1847.503186][T30540]  </TASK>
[ 1848.570674][ T5637] Bluetooth: hci2: command tx timeout
[ 1848.831214][T30551] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4731'.
[ 1848.852134][  T139] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1849.321839][  T139] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1849.679328][  T139] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1850.648641][ T5637] Bluetooth: hci2: command tx timeout
[ 1851.357190][  T139] bridge_slave_1: left allmulticast mode
[ 1851.369886][  T139] bridge_slave_1: left promiscuous mode
[ 1851.389199][  T139] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1851.501239][  T139] bridge_slave_0: left allmulticast mode
[ 1851.519637][  T139] bridge_slave_0: left promiscuous mode
[ 1851.537371][  T139] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1852.146435][T30593] FAULT_INJECTION: forcing a failure.
[ 1852.146435][T30593] name failslab, interval 1, probability 0, space 0, times 0
[ 1852.220072][T30593] CPU: 1 UID: 0 PID: 30593 Comm: syz.3.4737 Not tainted syzkaller #0 PREEMPT(full) 
[ 1852.220107][T30593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1852.220122][T30593] Call Trace:
[ 1852.220129][T30593]  <TASK>
[ 1852.220139][T30593]  dump_stack_lvl+0x100/0x190
[ 1852.220172][T30593]  should_fail_ex.cold+0x5/0xa
[ 1852.220202][T30593]  should_failslab+0xc2/0x120
[ 1852.220231][T30593]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1852.220265][T30593]  ? do_getname+0x35/0x390
[ 1852.220302][T30593]  ? find_held_lock+0x2b/0x80
[ 1852.220331][T30593]  ? ksys_write+0x190/0x250
[ 1852.220364][T30593]  do_getname+0x35/0x390
[ 1852.220400][T30593]  do_sys_openat2+0xc5/0x1e0
[ 1852.220437][T30593]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1852.220469][T30593]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1852.220508][T30593]  ? __fget_files+0x21f/0x3d0
[ 1852.220544][T30593]  __x64_sys_openat+0x12d/0x210
[ 1852.220582][T30593]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1852.220617][T30593]  ? ksys_write+0x1ac/0x250
[ 1852.220652][T30593]  ? rcu_is_watching+0x12/0xc0
[ 1852.220688][T30593]  do_syscall_64+0x10b/0xf80
[ 1852.220720][T30593]  ? clear_bhb_loop+0x40/0x90
[ 1852.220753][T30593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1852.220780][T30593] RIP: 0033:0x7f9d2ed9cdd9
[ 1852.220802][T30593] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1852.220833][T30593] RSP: 002b:00007f9d2fcb9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1852.220858][T30593] RAX: ffffffffffffffda RBX: 00007f9d2f015fa0 RCX: 00007f9d2ed9cdd9
[ 1852.220877][T30593] RDX: 0000000000042400 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1852.220894][T30593] RBP: 00007f9d2fcb9090 R08: 0000000000000000 R09: 0000000000000000
[ 1852.220924][T30593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1852.220940][T30593] R13: 00007f9d2f016038 R14: 00007f9d2f015fa0 R15: 00007ffd81b527d8
[ 1852.220975][T30593]  </TASK>
[ 1852.653358][  T139] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1852.691075][  T139] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1852.710659][  T139] bond0 (unregistering): Released all slaves
[ 1852.728876][ T5637] Bluetooth: hci2: command tx timeout
[ 1852.873092][ T5287] 8021q: adding VLAN 0 to HW filter on device eth1
[ 1852.945013][  T139] i: left promiscuous mode
[ 1853.094500][  T139] HfR: left promiscuous mode
[ 1853.301037][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[ 1853.307449][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[ 1853.476107][T30595] futex_wake_op: syz.2.4734 tries to shift op by -2048; fix this program
[ 1854.808833][ T5637] Bluetooth: hci2: command tx timeout
[ 1854.833602][T30524] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1854.853497][T30524] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1854.874077][T30524] bridge_slave_0: entered allmulticast mode
[ 1854.887732][T30524] bridge_slave_0: entered promiscuous mode
[ 1855.001295][ T5287] 8021q: adding VLAN 0 to HW filter on device eth2
[ 1855.072280][T30524] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1855.072421][T30524] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1855.072564][T30524] bridge_slave_1: entered allmulticast mode
[ 1855.073622][T30524] bridge_slave_1: entered promiscuous mode
[ 1855.521115][T30524] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1855.562527][T30524] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1855.723755][T30524] team0: Port device team_slave_0 added
[ 1855.740587][ T5287] 8021q: adding VLAN 0 to HW filter on device eth3
[ 1855.758918][T30524] team0: Port device team_slave_1 added
[ 1855.928502][T30524] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1855.949090][T30524] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1856.020405][T30524] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1856.087159][T30524] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1856.122222][T30524] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1856.153071][T30524] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1856.462477][T30524] hsr_slave_0: entered promiscuous mode
[ 1856.488011][T30524] hsr_slave_1: entered promiscuous mode
[ 1856.509478][T30524] debugfs: 'hsr0' already exists in 'hsr'
[ 1856.531005][T30524] Cannot create hsr debugfs directory
[ 1856.909824][T30679] FAULT_INJECTION: forcing a failure.
[ 1856.909824][T30679] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1857.011340][T30679] CPU: 1 UID: 0 PID: 30679 Comm: syz.2.4747 Not tainted syzkaller #0 PREEMPT(full) 
[ 1857.011383][T30679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1857.011399][T30679] Call Trace:
[ 1857.011408][T30679]  <TASK>
[ 1857.011419][T30679]  dump_stack_lvl+0x100/0x190
[ 1857.011467][T30679]  should_fail_ex.cold+0x5/0xa
[ 1857.011501][T30679]  _copy_to_user+0x32/0xd0
[ 1857.011530][T30679]  simple_read_from_buffer+0xcb/0x170
[ 1857.011568][T30679]  proc_fail_nth_read+0x1af/0x230
[ 1857.011610][T30679]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1857.011656][T30679]  ? rw_verify_area+0xce/0x6d0
[ 1857.011686][T30679]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1857.011734][T30679]  vfs_read+0x1e4/0xb30
[ 1857.011769][T30679]  ? __pfx_vfs_read+0x10/0x10
[ 1857.011803][T30679]  ? __fget_files+0x215/0x3d0
[ 1857.011842][T30679]  ? __fget_files+0x21f/0x3d0
[ 1857.011880][T30679]  ksys_read+0x12a/0x250
[ 1857.011908][T30679]  ? __pfx_ksys_read+0x10/0x10
[ 1857.011939][T30679]  ? rcu_is_watching+0x12/0xc0
[ 1857.011975][T30679]  do_syscall_64+0x10b/0xf80
[ 1857.012008][T30679]  ? clear_bhb_loop+0x40/0x90
[ 1857.012041][T30679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1857.012069][T30679] RIP: 0033:0x7fe3de95d60e
[ 1857.012091][T30679] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1857.012125][T30679] RSP: 002b:00007fe3df87afe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1857.012151][T30679] RAX: ffffffffffffffda RBX: 00007fe3df87b6c0 RCX: 00007fe3de95d60e
[ 1857.012170][T30679] RDX: 000000000000000f RSI: 00007fe3df87b0a0 RDI: 0000000000000004
[ 1857.012186][T30679] RBP: 00007fe3df87b090 R08: 0000000000000000 R09: 0000000000000000
[ 1857.012203][T30679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1857.012219][T30679] R13: 00007fe3dec16038 R14: 00007fe3dec15fa0 R15: 00007ffcbc464768
[ 1857.012263][T30679]  </TASK>
[ 1857.612141][T30687] FAULT_INJECTION: forcing a failure.
[ 1857.612141][T30687] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1857.653872][T30687] CPU: 1 UID: 0 PID: 30687 Comm: syz.3.4750 Not tainted syzkaller #0 PREEMPT(full) 
[ 1857.653908][T30687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1857.653924][T30687] Call Trace:
[ 1857.653933][T30687]  <TASK>
[ 1857.653943][T30687]  dump_stack_lvl+0x100/0x190
[ 1857.653985][T30687]  should_fail_ex.cold+0x5/0xa
[ 1857.654018][T30687]  _copy_to_user+0x32/0xd0
[ 1857.654043][T30687]  simple_read_from_buffer+0xcb/0x170
[ 1857.654072][T30687]  proc_fail_nth_read+0x1af/0x230
[ 1857.654107][T30687]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1857.654146][T30687]  ? rw_verify_area+0xce/0x6d0
[ 1857.654170][T30687]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1857.654206][T30687]  vfs_read+0x1e4/0xb30
[ 1857.654235][T30687]  ? __pfx_vfs_read+0x10/0x10
[ 1857.654266][T30687]  ? __fget_files+0x215/0x3d0
[ 1857.654304][T30687]  ? __fget_files+0x21f/0x3d0
[ 1857.654344][T30687]  ksys_read+0x12a/0x250
[ 1857.654373][T30687]  ? __pfx_ksys_read+0x10/0x10
[ 1857.654404][T30687]  ? rcu_is_watching+0x12/0xc0
[ 1857.654439][T30687]  do_syscall_64+0x10b/0xf80
[ 1857.654470][T30687]  ? clear_bhb_loop+0x40/0x90
[ 1857.654501][T30687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1857.654527][T30687] RIP: 0033:0x7f9d2ed5d60e
[ 1857.654548][T30687] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1857.654571][T30687] RSP: 002b:00007f9d2fcb8fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1857.654595][T30687] RAX: ffffffffffffffda RBX: 00007f9d2fcb96c0 RCX: 00007f9d2ed5d60e
[ 1857.654613][T30687] RDX: 000000000000000f RSI: 00007f9d2fcb90a0 RDI: 0000000000000004
[ 1857.654629][T30687] RBP: 00007f9d2fcb9090 R08: 0000000000000000 R09: 0000000000000000
[ 1857.654644][T30687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1857.654659][T30687] R13: 00007f9d2f016038 R14: 00007f9d2f015fa0 R15: 00007ffd81b527d8
[ 1857.654694][T30687]  </TASK>
[ 1857.904984][ T5287] 8021q: adding VLAN 0 to HW filter on device eth4
[ 1858.355753][T30697] FAULT_INJECTION: forcing a failure.
[ 1858.355753][T30697] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1858.378162][T30697] CPU: 1 UID: 0 PID: 30697 Comm: syz.1.4754 Not tainted syzkaller #0 PREEMPT(full) 
[ 1858.378201][T30697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1858.378214][T30697] Call Trace:
[ 1858.378223][T30697]  <TASK>
[ 1858.378233][T30697]  dump_stack_lvl+0x100/0x190
[ 1858.378264][T30697]  should_fail_ex.cold+0x5/0xa
[ 1858.378297][T30697]  _copy_to_user+0x32/0xd0
[ 1858.378325][T30697]  simple_read_from_buffer+0xcb/0x170
[ 1858.378356][T30697]  proc_fail_nth_read+0x1af/0x230
[ 1858.378393][T30697]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1858.378441][T30697]  ? rw_verify_area+0xce/0x6d0
[ 1858.378465][T30697]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1858.378495][T30697]  vfs_read+0x1e4/0xb30
[ 1858.378524][T30697]  ? __pfx_vfs_read+0x10/0x10
[ 1858.378544][T30697]  ? __fget_files+0x215/0x3d0
[ 1858.378576][T30697]  ? __fget_files+0x21f/0x3d0
[ 1858.378610][T30697]  ksys_read+0x12a/0x250
[ 1858.378631][T30697]  ? __pfx_ksys_read+0x10/0x10
[ 1858.378655][T30697]  ? rcu_is_watching+0x12/0xc0
[ 1858.378687][T30697]  do_syscall_64+0x10b/0xf80
[ 1858.378715][T30697]  ? clear_bhb_loop+0x40/0x90
[ 1858.378744][T30697]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1858.378767][T30697] RIP: 0033:0x7fb41b55d60e
[ 1858.378786][T30697] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1858.378806][T30697] RSP: 002b:00007fb41c4f6fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1858.378828][T30697] RAX: ffffffffffffffda RBX: 00007fb41c4f76c0 RCX: 00007fb41b55d60e
[ 1858.378842][T30697] RDX: 000000000000000f RSI: 00007fb41c4f70a0 RDI: 0000000000000004
[ 1858.378854][T30697] RBP: 00007fb41c4f7090 R08: 0000000000000000 R09: 0000000000000000
[ 1858.378867][T30697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1858.378880][T30697] R13: 00007fb41b816038 R14: 00007fb41b815fa0 R15: 00007ffe397ccad8
[ 1858.378912][T30697]  </TASK>
[ 1860.235587][  T139] hsr_slave_0: left promiscuous mode
[ 1860.278688][  T139] hsr_slave_1: left promiscuous mode
[ 1860.317415][  T139] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1860.339704][  T139] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1860.355736][  T139] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1860.364762][  T139] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1860.385306][T30739] FAULT_INJECTION: forcing a failure.
[ 1860.385306][T30739] name failslab, interval 1, probability 0, space 0, times 0
[ 1860.413421][  T139] veth1_macvtap: left promiscuous mode
[ 1860.426025][  T139] veth0_macvtap: left promiscuous mode
[ 1860.443986][  T139] veth1_vlan: left promiscuous mode
[ 1860.460729][  T139] veth0_vlan: left promiscuous mode
[ 1860.470418][T30739] CPU: 0 UID: 0 PID: 30739 Comm: syz.2.4760 Not tainted syzkaller #0 PREEMPT(full) 
[ 1860.470449][T30739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1860.470458][T30739] Call Trace:
[ 1860.470464][T30739]  <TASK>
[ 1860.470470][T30739]  dump_stack_lvl+0x100/0x190
[ 1860.470493][T30739]  should_fail_ex.cold+0x5/0xa
[ 1860.470514][T30739]  should_failslab+0xc2/0x120
[ 1860.470536][T30739]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1860.470561][T30739]  ? snd_pcm_oss_change_params_locked+0x81c/0x39f0
[ 1860.470584][T30739]  ? _snd_pcm_hw_param_min+0x1ea/0x670
[ 1860.470607][T30739]  snd_pcm_oss_change_params_locked+0x81c/0x39f0
[ 1860.470634][T30739]  ? snd_pcm_oss_make_ready+0xcb/0x1b0
[ 1860.470657][T30739]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1860.470679][T30739]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1860.470701][T30739]  ? __pfx___mutex_lock+0x10/0x10
[ 1860.470720][T30739]  ? task_work_add+0x201/0x3b0
[ 1860.470736][T30739]  ? __pfx_task_work_add+0x10/0x10
[ 1860.470762][T30739]  snd_pcm_oss_make_ready+0xeb/0x1b0
[ 1860.470785][T30739]  snd_pcm_oss_sync+0x1de/0x840
[ 1860.470809][T30739]  snd_pcm_oss_release+0x238/0x300
[ 1860.470830][T30739]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[ 1860.470852][T30739]  __fput+0x3ff/0xb50
[ 1860.470876][T30739]  task_work_run+0x150/0x240
[ 1860.470892][T30739]  ? __pfx_task_work_run+0x10/0x10
[ 1860.470909][T30739]  ? rcu_is_watching+0x12/0xc0
[ 1860.470930][T30739]  exit_to_user_mode_loop+0x100/0x4a0
[ 1860.470945][T30739]  ? do_syscall_64+0x519/0xf80
[ 1860.470965][T30739]  do_syscall_64+0x6f2/0xf80
[ 1860.470983][T30739]  ? clear_bhb_loop+0x40/0x90
[ 1860.471001][T30739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1860.471016][T30739] RIP: 0033:0x7fe3de99cdd9
[ 1860.471030][T30739] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1860.471046][T30739] RSP: 002b:00007fe3df87b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1860.471061][T30739] RAX: 0000000000000000 RBX: 00007fe3dec15fa0 RCX: 00007fe3de99cdd9
[ 1860.471072][T30739] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[ 1860.471081][T30739] RBP: 00007fe3dea32d69 R08: 0000000000000000 R09: 0000000000000000
[ 1860.471091][T30739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1860.471101][T30739] R13: 00007fe3dec16038 R14: 00007fe3dec15fa0 R15: 00007ffcbc464768
[ 1860.471121][T30739]  </TASK>
[ 1861.491290][  T139] team0 (unregistering): Port device team_slave_1 removed
[ 1861.523660][T30749] random: crng reseeded on system resumption
[ 1861.539409][  T139] team0 (unregistering): Port device team_slave_0 removed
[ 1861.701488][T30751] FAULT_INJECTION: forcing a failure.
[ 1861.701488][T30751] name failslab, interval 1, probability 0, space 0, times 0
[ 1861.734079][T30751] CPU: 1 UID: 0 PID: 30751 Comm: syz.2.4762 Not tainted syzkaller #0 PREEMPT(full) 
[ 1861.734112][T30751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1861.734124][T30751] Call Trace:
[ 1861.734130][T30751]  <TASK>
[ 1861.734137][T30751]  dump_stack_lvl+0x100/0x190
[ 1861.734158][T30751]  should_fail_ex.cold+0x5/0xa
[ 1861.734177][T30751]  should_failslab+0xc2/0x120
[ 1861.734213][T30751]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[ 1861.734228][T30751]  ? kvasprintf_const+0x66/0x1a0
[ 1861.734243][T30751]  ? do_raw_spin_lock+0x128/0x260
[ 1861.734262][T30751]  kvasprintf+0xbc/0x150
[ 1861.734276][T30751]  ? __pfx_kvasprintf+0x10/0x10
[ 1861.734292][T30751]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1861.734310][T30751]  ? __debug_object_init+0x2de/0x3d0
[ 1861.734340][T30751]  kvasprintf_const+0x66/0x1a0
[ 1861.734356][T30751]  kobject_set_name_vargs+0x5a/0x140
[ 1861.734380][T30751]  dev_set_name+0xc7/0x100
[ 1861.734401][T30751]  ? __pfx_dev_set_name+0x10/0x10
[ 1861.734420][T30751]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1861.734449][T30751]  ? lockdep_init_map_type+0x5c/0x250
[ 1861.734464][T30751]  ? __init_waitqueue_head+0xca/0x150
[ 1861.734485][T30751]  wakeup_source_device_create+0x204/0x2e0
[ 1861.734506][T30751]  wakeup_source_sysfs_add+0x1c/0x90
[ 1861.734524][T30751]  wakeup_source_register+0x154/0x3e0
[ 1861.734540][T30751]  ep_create_wakeup_source+0x1df/0x2e0
[ 1861.734560][T30751]  ? __pfx_ep_create_wakeup_source+0x10/0x10
[ 1861.734581][T30751]  ? do_epoll_ctl+0x1012/0x36a0
[ 1861.734599][T30751]  ? do_epoll_ctl+0x1012/0x36a0
[ 1861.734621][T30751]  do_epoll_ctl+0x1eee/0x36a0
[ 1861.734648][T30751]  ? __pfx_do_epoll_ctl+0x10/0x10
[ 1861.734665][T30751]  ? find_held_lock+0x2b/0x80
[ 1861.734683][T30751]  ? __might_fault+0xc5/0x140
[ 1861.734708][T30751]  ? __might_fault+0xc5/0x140
[ 1861.734736][T30751]  ? __x64_sys_epoll_ctl+0x15c/0x1e0
[ 1861.734754][T30751]  __x64_sys_epoll_ctl+0x15c/0x1e0
[ 1861.734773][T30751]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[ 1861.734795][T30751]  ? rcu_is_watching+0x12/0xc0
[ 1861.734814][T30751]  do_syscall_64+0x10b/0xf80
[ 1861.734832][T30751]  ? clear_bhb_loop+0x40/0x90
[ 1861.734850][T30751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1861.734865][T30751] RIP: 0033:0x7fe3de99cdd9
[ 1861.734878][T30751] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1861.734891][T30751] RSP: 002b:00007fe3df839028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[ 1861.734905][T30751] RAX: ffffffffffffffda RBX: 00007fe3dec16180 RCX: 00007fe3de99cdd9
[ 1861.734915][T30751] RDX: 0000000000000007 RSI: 0000000000000001 RDI: 0000000000000008
[ 1861.734923][T30751] RBP: 00007fe3dea32d69 R08: 0000000000000000 R09: 0000000000000000
[ 1861.734931][T30751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1861.734939][T30751] R13: 00007fe3dec16218 R14: 00007fe3dec16180 R15: 00007ffcbc464768
[ 1861.734958][T30751]  </TASK>
[ 1862.059830][T30749] Restarting kernel threads ...
[ 1862.061430][T30524] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1862.066060][T30749] Done restarting kernel threads.
[ 1862.096131][T30524] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1862.104438][T30524] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1862.123078][T30524] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1862.152784][T30524] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1862.193277][T30524] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1862.202091][T30524] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1862.217628][T30524] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1863.273958][T30524] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1863.302261][T30524] 8021q: adding VLAN 0 to HW filter on device team0
[ 1863.335838][  T139] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1863.342998][  T139] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1863.612531][  T139] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1863.619801][  T139] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1864.183946][T30815] FAULT_INJECTION: forcing a failure.
[ 1864.183946][T30815] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1864.222043][T30815] CPU: 1 UID: 0 PID: 30815 Comm: syz.3.4772 Not tainted syzkaller #0 PREEMPT(full) 
[ 1864.222077][T30815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1864.222090][T30815] Call Trace:
[ 1864.222099][T30815]  <TASK>
[ 1864.222108][T30815]  dump_stack_lvl+0x100/0x190
[ 1864.222142][T30815]  should_fail_ex.cold+0x5/0xa
[ 1864.222175][T30815]  _copy_to_user+0x32/0xd0
[ 1864.222204][T30815]  simple_read_from_buffer+0xcb/0x170
[ 1864.222237][T30815]  proc_fail_nth_read+0x1af/0x230
[ 1864.222277][T30815]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1864.222318][T30815]  ? rw_verify_area+0xce/0x6d0
[ 1864.222343][T30815]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1864.222380][T30815]  vfs_read+0x1e4/0xb30
[ 1864.222414][T30815]  ? __pfx_vfs_read+0x10/0x10
[ 1864.222442][T30815]  ? __fget_files+0x215/0x3d0
[ 1864.222481][T30815]  ? __fget_files+0x21f/0x3d0
[ 1864.222522][T30815]  ksys_read+0x12a/0x250
[ 1864.222551][T30815]  ? __pfx_ksys_read+0x10/0x10
[ 1864.222583][T30815]  ? rcu_is_watching+0x12/0xc0
[ 1864.222619][T30815]  do_syscall_64+0x10b/0xf80
[ 1864.222651][T30815]  ? clear_bhb_loop+0x40/0x90
[ 1864.222682][T30815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1864.222709][T30815] RIP: 0033:0x7f9d2ed5d60e
[ 1864.222730][T30815] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1864.222755][T30815] RSP: 002b:00007f9d2fcb8fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1864.222779][T30815] RAX: ffffffffffffffda RBX: 00007f9d2fcb96c0 RCX: 00007f9d2ed5d60e
[ 1864.222797][T30815] RDX: 000000000000000f RSI: 00007f9d2fcb90a0 RDI: 0000000000000004
[ 1864.222812][T30815] RBP: 00007f9d2fcb9090 R08: 0000000000000000 R09: 0000000000000000
[ 1864.222827][T30815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1864.222843][T30815] R13: 00007f9d2f016038 R14: 00007f9d2f015fa0 R15: 00007ffd81b527d8
[ 1864.222880][T30815]  </TASK>
[ 1865.430550][T30524] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1865.904802][T30524] veth0_vlan: entered promiscuous mode
[ 1866.025658][T30524] veth1_vlan: entered promiscuous mode
[ 1866.170032][T30524] veth0_macvtap: entered promiscuous mode
[ 1866.363016][T30877] FAULT_INJECTION: forcing a failure.
[ 1866.363016][T30877] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1866.395421][T30524] veth1_macvtap: entered promiscuous mode
[ 1866.468612][T30877] CPU: 0 UID: 0 PID: 30877 Comm: syz.3.4782 Not tainted syzkaller #0 PREEMPT(full) 
[ 1866.468646][T30877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1866.468659][T30877] Call Trace:
[ 1866.468677][T30877]  <TASK>
[ 1866.468686][T30877]  dump_stack_lvl+0x100/0x190
[ 1866.468720][T30877]  should_fail_ex.cold+0x5/0xa
[ 1866.468752][T30877]  strncpy_from_user+0x3b/0x2d0
[ 1866.468787][T30877]  do_getname+0x78/0x390
[ 1866.468828][T30877]  do_sys_openat2+0xc5/0x1e0
[ 1866.468866][T30877]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1866.468901][T30877]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1866.468940][T30877]  ? __fget_files+0x21f/0x3d0
[ 1866.468976][T30877]  __x64_sys_openat+0x12d/0x210
[ 1866.469014][T30877]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1866.469051][T30877]  ? ksys_write+0x1ac/0x250
[ 1866.469084][T30877]  ? rcu_is_watching+0x12/0xc0
[ 1866.469119][T30877]  do_syscall_64+0x10b/0xf80
[ 1866.469149][T30877]  ? clear_bhb_loop+0x40/0x90
[ 1866.469181][T30877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1866.469207][T30877] RIP: 0033:0x7f9d2ed9cdd9
[ 1866.469229][T30877] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1866.469252][T30877] RSP: 002b:00007f9d2fcb9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1866.469277][T30877] RAX: ffffffffffffffda RBX: 00007f9d2f015fa0 RCX: 00007f9d2ed9cdd9
[ 1866.469295][T30877] RDX: 00000000001cb842 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1866.469312][T30877] RBP: 00007f9d2fcb9090 R08: 0000000000000000 R09: 0000000000000000
[ 1866.469329][T30877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1866.469345][T30877] R13: 00007f9d2f016038 R14: 00007f9d2f015fa0 R15: 00007ffd81b527d8
[ 1866.469381][T30877]  </TASK>
[ 1866.829131][T30524] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1866.873427][T30524] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1866.936676][T23249] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1866.955770][T23249] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1867.125991][T23249] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1867.143834][T30893] FAULT_INJECTION: forcing a failure.
[ 1867.143834][T30893] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1867.151889][T23249] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1867.206228][T30893] CPU: 1 UID: 0 PID: 30893 Comm: syz.2.4786 Not tainted syzkaller #0 PREEMPT(full) 
[ 1867.206265][T30893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1867.206282][T30893] Call Trace:
[ 1867.206291][T30893]  <TASK>
[ 1867.206301][T30893]  dump_stack_lvl+0x100/0x190
[ 1867.206337][T30893]  should_fail_ex.cold+0x5/0xa
[ 1867.206372][T30893]  _copy_to_user+0x32/0xd0
[ 1867.206402][T30893]  simple_read_from_buffer+0xcb/0x170
[ 1867.206435][T30893]  proc_fail_nth_read+0x1af/0x230
[ 1867.206475][T30893]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1867.206516][T30893]  ? rw_verify_area+0xce/0x6d0
[ 1867.206551][T30893]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1867.206588][T30893]  vfs_read+0x1e4/0xb30
[ 1867.206621][T30893]  ? __pfx_vfs_read+0x10/0x10
[ 1867.206651][T30893]  ? __fget_files+0x215/0x3d0
[ 1867.206689][T30893]  ? __fget_files+0x21f/0x3d0
[ 1867.206730][T30893]  ksys_read+0x12a/0x250
[ 1867.206757][T30893]  ? __pfx_ksys_read+0x10/0x10
[ 1867.206787][T30893]  ? rcu_is_watching+0x12/0xc0
[ 1867.206822][T30893]  do_syscall_64+0x10b/0xf80
[ 1867.206851][T30893]  ? clear_bhb_loop+0x40/0x90
[ 1867.206882][T30893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1867.206916][T30893] RIP: 0033:0x7fe3de95d60e
[ 1867.206938][T30893] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1867.206962][T30893] RSP: 002b:00007fe3df87afe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1867.206986][T30893] RAX: ffffffffffffffda RBX: 00007fe3df87b6c0 RCX: 00007fe3de95d60e
[ 1867.207004][T30893] RDX: 000000000000000f RSI: 00007fe3df87b0a0 RDI: 0000000000000004
[ 1867.207020][T30893] RBP: 00007fe3df87b090 R08: 0000000000000000 R09: 0000000000000000
[ 1867.207036][T30893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1867.207052][T30893] R13: 00007fe3dec16038 R14: 00007fe3dec15fa0 R15: 00007ffcbc464768
[ 1867.207089][T30893]  </TASK>
[ 1867.787940][T23249] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1867.836172][T23249] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1868.039295][ T1156] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1868.086959][ T1156] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1868.432338][T30922] random: crng reseeded on system resumption
[ 1868.643933][   T29] audit: type=1800 audit(4294967330.770:4): pid=30926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4727" name="dummy_udc" dev="gadgetfs" ino=6629 res=0 errno=0
[ 1869.297963][T16563] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1869.309130][T16563] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1869.323327][T16563] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1869.335611][T16563] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1869.343596][T16563] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1870.687378][   T35] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1870.858208][T30967] FAULT_INJECTION: forcing a failure.
[ 1870.858208][T30967] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1870.872851][T30967] CPU: 0 UID: 0 PID: 30967 Comm: syz.0.4800 Not tainted syzkaller #0 PREEMPT(full) 
[ 1870.872886][T30967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1870.872902][T30967] Call Trace:
[ 1870.872911][T30967]  <TASK>
[ 1870.872921][T30967]  dump_stack_lvl+0x100/0x190
[ 1870.872956][T30967]  should_fail_ex.cold+0x5/0xa
[ 1870.872990][T30967]  _copy_to_iter+0x1f3/0x1720
[ 1870.873033][T30967]  ? avoid_reset_quirk_show+0x53/0x80
[ 1870.873072][T30967]  ? __pfx__copy_to_iter+0x10/0x10
[ 1870.873110][T30967]  ? kernfs_seq_stop+0xcd/0x120
[ 1870.873153][T30967]  ? kernfs_put_active+0x93/0xe0
[ 1870.873190][T30967]  seq_read_iter+0xdab/0x1270
[ 1870.873236][T30967]  kernfs_fop_read_iter+0x46c/0x610
[ 1870.873274][T30967]  ? rw_verify_area+0xce/0x6d0
[ 1870.873300][T30967]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[ 1870.873347][T30967]  vfs_read+0x825/0xb30
[ 1870.873382][T30967]  ? __pfx_vfs_read+0x10/0x10
[ 1870.873435][T30967]  ksys_read+0x12a/0x250
[ 1870.873464][T30967]  ? __pfx_ksys_read+0x10/0x10
[ 1870.873492][T30967]  ? rcu_is_watching+0x12/0xc0
[ 1870.873529][T30967]  do_syscall_64+0x10b/0xf80
[ 1870.873560][T30967]  ? clear_bhb_loop+0x40/0x90
[ 1870.873591][T30967]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1870.873618][T30967] RIP: 0033:0x7f74b8f9cdd9
[ 1870.873640][T30967] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1870.873666][T30967] RSP: 002b:00007f74b9e18028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1870.873691][T30967] RAX: ffffffffffffffda RBX: 00007f74b9215fa0 RCX: 00007f74b8f9cdd9
[ 1870.873709][T30967] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000003
[ 1870.873725][T30967] RBP: 00007f74b9e18090 R08: 0000000000000000 R09: 0000000000000000
[ 1870.873741][T30967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1870.873757][T30967] R13: 00007f74b9216038 R14: 00007f74b9215fa0 R15: 00007ffeb739f078
[ 1870.873795][T30967]  </TASK>
[ 1871.366947][   T35] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1871.458699][ T5637] Bluetooth: hci4: command tx timeout
[ 1871.598321][   T35] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1871.780072][   T35] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1872.548181][   T35] bridge_slave_1: left allmulticast mode
[ 1872.553983][   T35] bridge_slave_1: left promiscuous mode
[ 1872.560771][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1872.587591][   T35] bridge_slave_0: left allmulticast mode
[ 1872.593455][   T35] bridge_slave_0: left promiscuous mode
[ 1872.599778][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1873.147934][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1873.174417][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1873.193220][   T35] bond0 (unregistering): Released all slaves
[ 1873.287083][ T5287] 8021q: adding VLAN 0 to HW filter on device eth1
[ 1873.333770][T30936] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1873.356905][T30936] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1873.390371][T30936] bridge_slave_0: entered allmulticast mode
[ 1873.412194][T30936] bridge_slave_0: entered promiscuous mode
[ 1873.427902][T30936] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1873.445653][T30936] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1873.462078][T30936] bridge_slave_1: entered allmulticast mode
[ 1873.481945][T30936] bridge_slave_1: entered promiscuous mode
[ 1873.542606][ T5637] Bluetooth: hci4: command tx timeout
[ 1873.675843][T30936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1873.753036][T30936] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1873.954842][T30936] team0: Port device team_slave_0 added
[ 1873.969096][T31035] FAULT_INJECTION: forcing a failure.
[ 1873.969096][T31035] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1873.990362][T30936] team0: Port device team_slave_1 added
[ 1874.009235][T31035] CPU: 0 UID: 0 PID: 31035 Comm: syz.3.4813 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1874.009281][T31035] Tainted: [L]=SOFTLOCKUP
[ 1874.009290][T31035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1874.009303][T31035] Call Trace:
[ 1874.009312][T31035]  <TASK>
[ 1874.009323][T31035]  dump_stack_lvl+0x100/0x190
[ 1874.009357][T31035]  should_fail_ex.cold+0x5/0xa
[ 1874.009392][T31035]  _copy_to_user+0x32/0xd0
[ 1874.009421][T31035]  simple_read_from_buffer+0xcb/0x170
[ 1874.009453][T31035]  proc_fail_nth_read+0x1af/0x230
[ 1874.009494][T31035]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1874.009536][T31035]  ? rw_verify_area+0xce/0x6d0
[ 1874.009563][T31035]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1874.009602][T31035]  vfs_read+0x1e4/0xb30
[ 1874.009637][T31035]  ? __pfx_vfs_read+0x10/0x10
[ 1874.009663][T31035]  ? __fget_files+0x215/0x3d0
[ 1874.009700][T31035]  ? __fget_files+0x21f/0x3d0
[ 1874.009736][T31035]  ksys_read+0x12a/0x250
[ 1874.009764][T31035]  ? __pfx_ksys_read+0x10/0x10
[ 1874.009796][T31035]  ? rcu_is_watching+0x12/0xc0
[ 1874.009832][T31035]  do_syscall_64+0x10b/0xf80
[ 1874.009864][T31035]  ? clear_bhb_loop+0x40/0x90
[ 1874.009897][T31035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1874.009924][T31035] RIP: 0033:0x7f9d2ed5d60e
[ 1874.009947][T31035] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1874.009970][T31035] RSP: 002b:00007f9d2fcb8fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1874.009995][T31035] RAX: ffffffffffffffda RBX: 00007f9d2fcb96c0 RCX: 00007f9d2ed5d60e
[ 1874.010012][T31035] RDX: 000000000000000f RSI: 00007f9d2fcb90a0 RDI: 0000000000000004
[ 1874.010026][T31035] RBP: 00007f9d2fcb9090 R08: 0000000000000000 R09: 0000000000000000
[ 1874.010041][T31035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1874.010056][T31035] R13: 00007f9d2f016038 R14: 00007f9d2f015fa0 R15: 00007ffd81b527d8
[ 1874.010090][T31035]  </TASK>
[ 1874.522240][T30936] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1874.580838][T30936] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1874.607192][T30936] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1874.708101][T31052] FAULT_INJECTION: forcing a failure.
[ 1874.708101][T31052] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1874.708145][T31052] CPU: 0 UID: 0 PID: 31052 Comm: syz.0.4815 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1874.708185][T31052] Tainted: [L]=SOFTLOCKUP
[ 1874.708195][T31052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1874.708210][T31052] Call Trace:
[ 1874.708219][T31052]  <TASK>
[ 1874.708254][T31052]  dump_stack_lvl+0x100/0x190
[ 1874.708343][T31052]  should_fail_ex.cold+0x5/0xa
[ 1874.708389][T31052]  strncpy_from_user+0x3b/0x2d0
[ 1874.708422][T31052]  do_getname+0x78/0x390
[ 1874.708462][T31052]  do_sys_openat2+0xc5/0x1e0
[ 1874.708500][T31052]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1874.708531][T31052]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1874.708567][T31052]  ? __fget_files+0x21f/0x3d0
[ 1874.708604][T31052]  __x64_sys_openat+0x12d/0x210
[ 1874.708642][T31052]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1874.708678][T31052]  ? ksys_write+0x1ac/0x250
[ 1874.708748][T31052]  ? rcu_is_watching+0x12/0xc0
[ 1874.708784][T31052]  do_syscall_64+0x10b/0xf80
[ 1874.708816][T31052]  ? clear_bhb_loop+0x40/0x90
[ 1874.708849][T31052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1874.708887][T31052] RIP: 0033:0x7f74b8f9cdd9
[ 1874.708909][T31052] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1874.708934][T31052] RSP: 002b:00007f74b9e18028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1874.708959][T31052] RAX: ffffffffffffffda RBX: 00007f74b9215fa0 RCX: 00007f74b8f9cdd9
[ 1874.708975][T31052] RDX: 0000000000000202 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1874.708990][T31052] RBP: 00007f74b9e18090 R08: 0000000000000000 R09: 0000000000000000
[ 1874.709004][T31052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1874.709017][T31052] R13: 00007f74b9216038 R14: 00007f74b9215fa0 R15: 00007ffeb739f078
[ 1874.709047][T31052]  </TASK>
[ 1874.825405][T30936] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1874.825426][T30936] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1874.825453][T30936] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1875.453394][ T5287] 8021q: adding VLAN 0 to HW filter on device eth2
[ 1875.571485][T30936] hsr_slave_0: entered promiscuous mode
[ 1875.574330][T30936] hsr_slave_1: entered promiscuous mode
[ 1875.574830][T30936] debugfs: 'hsr0' already exists in 'hsr'
[ 1875.574853][T30936] Cannot create hsr debugfs directory
[ 1875.608617][ T5637] Bluetooth: hci4: command tx timeout
[ 1876.583139][T31076] Process accounting resumed
[ 1876.720967][T31084] zram: Cannot change disksize for initialized device
[ 1877.080305][T31095] FAULT_INJECTION: forcing a failure.
[ 1877.080305][T31095] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1877.144676][T31095] CPU: 0 UID: 0 PID: 31095 Comm: syz.1.4825 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1877.144725][T31095] Tainted: [L]=SOFTLOCKUP
[ 1877.144734][T31095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1877.144754][T31095] Call Trace:
[ 1877.144763][T31095]  <TASK>
[ 1877.144774][T31095]  dump_stack_lvl+0x100/0x190
[ 1877.144809][T31095]  should_fail_ex.cold+0x5/0xa
[ 1877.144843][T31095]  _copy_from_iter+0x1f4/0x1690
[ 1877.144878][T31095]  ? __pfx__copy_from_iter+0x10/0x10
[ 1877.144903][T31095]  ? rcu_is_watching+0x12/0xc0
[ 1877.144935][T31095]  ? trace_kmalloc+0xe3/0x110
[ 1877.144964][T31095]  ? __kasan_kmalloc+0xaa/0xb0
[ 1877.144991][T31095]  ? __kmalloc_noprof+0x320/0x850
[ 1877.145035][T31095]  kernfs_fop_write_iter+0x186/0x5f0
[ 1877.145076][T31095]  vfs_write+0x6ac/0x1070
[ 1877.145110][T31095]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1877.145149][T31095]  ? __pfx_vfs_write+0x10/0x10
[ 1877.145201][T31095]  ksys_write+0x12a/0x250
[ 1877.145229][T31095]  ? __pfx_ksys_write+0x10/0x10
[ 1877.145260][T31095]  ? rcu_is_watching+0x12/0xc0
[ 1877.145294][T31095]  do_syscall_64+0x10b/0xf80
[ 1877.145326][T31095]  ? clear_bhb_loop+0x40/0x90
[ 1877.145359][T31095]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1877.145385][T31095] RIP: 0033:0x7fb41b59cdd9
[ 1877.145407][T31095] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1877.145436][T31095] RSP: 002b:00007fb41c4f7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1877.145460][T31095] RAX: ffffffffffffffda RBX: 00007fb41b815fa0 RCX: 00007fb41b59cdd9
[ 1877.145478][T31095] RDX: 0000000000003dec RSI: 00002000000001c0 RDI: 0000000000000003
[ 1877.145495][T31095] RBP: 00007fb41c4f7090 R08: 0000000000000000 R09: 0000000000000000
[ 1877.145510][T31095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1877.145525][T31095] R13: 00007fb41b816038 R14: 00007fb41b815fa0 R15: 00007ffe397ccad8
[ 1877.145562][T31095]  </TASK>
[ 1877.474388][T31097] process 'syz.1.4826' launched '/dev/fd/4' with NULL argv: empty string added
[ 1877.566051][   T35] hsr_slave_0: left promiscuous mode
[ 1877.595610][   T35] hsr_slave_1: left promiscuous mode
[ 1877.613962][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1877.631849][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1877.661758][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1877.678728][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1877.681611][T31103] zram: Cannot change disksize for initialized device
[ 1877.688642][ T5637] Bluetooth: hci4: command tx timeout
[ 1877.710576][   T35] veth1_macvtap: left promiscuous mode
[ 1877.724808][   T35] veth0_macvtap: left promiscuous mode
[ 1877.738725][   T35] veth1_vlan: left promiscuous mode
[ 1877.759474][   T35] veth0_vlan: left promiscuous mode
[ 1878.421240][   T35] team0 (unregistering): Port device team_slave_1 removed
[ 1878.457391][   T35] team0 (unregistering): Port device team_slave_0 removed
[ 1879.439366][T30936] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1879.484160][T30936] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1879.506160][T30936] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1879.537317][T30936] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1879.712652][T30936] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1879.741878][T30936] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1879.771888][T30936] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1879.852213][T30936] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1879.927275][T31144] FAULT_INJECTION: forcing a failure.
[ 1879.927275][T31144] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1879.960059][T31144] CPU: 1 UID: 0 PID: 31144 Comm: syz.0.4831 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1879.960102][T31144] Tainted: [L]=SOFTLOCKUP
[ 1879.960111][T31144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1879.960127][T31144] Call Trace:
[ 1879.960136][T31144]  <TASK>
[ 1879.960146][T31144]  dump_stack_lvl+0x100/0x190
[ 1879.960181][T31144]  should_fail_ex.cold+0x5/0xa
[ 1879.960215][T31144]  strncpy_from_user+0x3b/0x2d0
[ 1879.960247][T31144]  do_getname+0x78/0x390
[ 1879.960288][T31144]  do_sys_openat2+0xc5/0x1e0
[ 1879.960327][T31144]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1879.960362][T31144]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1879.960402][T31144]  ? __fget_files+0x21f/0x3d0
[ 1879.960437][T31144]  __x64_sys_openat+0x12d/0x210
[ 1879.960479][T31144]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1879.960516][T31144]  ? ksys_write+0x1ac/0x250
[ 1879.960550][T31144]  ? rcu_is_watching+0x12/0xc0
[ 1879.960585][T31144]  do_syscall_64+0x10b/0xf80
[ 1879.960617][T31144]  ? clear_bhb_loop+0x40/0x90
[ 1879.960649][T31144]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1879.960684][T31144] RIP: 0033:0x7f74b8f9cdd9
[ 1879.960706][T31144] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1879.960730][T31144] RSP: 002b:00007f74b9e18028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1879.960756][T31144] RAX: ffffffffffffffda RBX: 00007f74b9215fa0 RCX: 00007f74b8f9cdd9
[ 1879.960778][T31144] RDX: 0000000000109401 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1879.960794][T31144] RBP: 00007f74b9e18090 R08: 0000000000000000 R09: 0000000000000000
[ 1879.960810][T31144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1879.960824][T31144] R13: 00007f74b9216038 R14: 00007f74b9215fa0 R15: 00007ffeb739f078
[ 1879.960861][T31144]  </TASK>
[ 1880.219726][T30936] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1880.239684][T30936] 8021q: adding VLAN 0 to HW filter on device team0
[ 1880.304028][T30348] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1880.311283][T30348] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1880.400117][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1880.407334][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1880.827681][T31173] FAULT_INJECTION: forcing a failure.
[ 1880.827681][T31173] name failslab, interval 1, probability 0, space 0, times 0
[ 1880.861309][T31173] CPU: 1 UID: 0 PID: 31173 Comm: syz.1.4840 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1880.861346][T31173] Tainted: [L]=SOFTLOCKUP
[ 1880.861354][T31173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1880.861376][T31173] Call Trace:
[ 1880.861384][T31173]  <TASK>
[ 1880.861394][T31173]  dump_stack_lvl+0x100/0x190
[ 1880.861427][T31173]  should_fail_ex.cold+0x5/0xa
[ 1880.861462][T31173]  ? tomoyo_encode2+0xfb/0x3c0
[ 1880.861489][T31173]  should_failslab+0xc2/0x120
[ 1880.861523][T31173]  __kmalloc_noprof+0xe0/0x850
[ 1880.861559][T31173]  ? d_absolute_path+0x136/0x1b0
[ 1880.861590][T31173]  tomoyo_encode2+0xfb/0x3c0
[ 1880.861629][T31173]  tomoyo_encode+0x29/0x50
[ 1880.861656][T31173]  tomoyo_realpath_from_path+0x18c/0x690
[ 1880.861696][T31173]  tomoyo_path_number_perm+0x23c/0x580
[ 1880.861718][T31173]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1880.861744][T31173]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1880.861799][T31173]  ? find_held_lock+0x2b/0x80
[ 1880.861830][T31173]  ? __fget_files+0x215/0x3d0
[ 1880.861858][T31173]  ? hook_file_ioctl_common+0x149/0x410
[ 1880.861883][T31173]  ? __fget_files+0x215/0x3d0
[ 1880.861914][T31173]  ? __fget_files+0x21f/0x3d0
[ 1880.861948][T31173]  security_file_ioctl+0xd3/0x230
[ 1880.861972][T31173]  __x64_sys_ioctl+0xb7/0x210
[ 1880.862001][T31173]  do_syscall_64+0x10b/0xf80
[ 1880.862031][T31173]  ? clear_bhb_loop+0x40/0x90
[ 1880.862061][T31173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1880.862088][T31173] RIP: 0033:0x7fb41b59cdd9
[ 1880.862110][T31173] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1880.862134][T31173] RSP: 002b:00007fb41c4f7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1880.862159][T31173] RAX: ffffffffffffffda RBX: 00007fb41b815fa0 RCX: 00007fb41b59cdd9
[ 1880.862177][T31173] RDX: 0000200000000700 RSI: 000000000000541a RDI: 0000000000000003
[ 1880.862193][T31173] RBP: 00007fb41c4f7090 R08: 0000000000000000 R09: 0000000000000000
[ 1880.862208][T31173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1880.862223][T31173] R13: 00007fb41b816038 R14: 00007fb41b815fa0 R15: 00007ffe397ccad8
[ 1880.862259][T31173]  </TASK>
[ 1880.863850][T31173] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1881.840039][T30936] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1882.184212][T31220] FAULT_INJECTION: forcing a failure.
[ 1882.184212][T31220] name failslab, interval 1, probability 0, space 0, times 0
[ 1882.226125][T31220] CPU: 0 UID: 0 PID: 31220 Comm: syz.3.4850 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1882.226151][T31220] Tainted: [L]=SOFTLOCKUP
[ 1882.226156][T31220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1882.226165][T31220] Call Trace:
[ 1882.226170][T31220]  <TASK>
[ 1882.226175][T31220]  dump_stack_lvl+0x100/0x190
[ 1882.226202][T31220]  should_fail_ex.cold+0x5/0xa
[ 1882.226221][T31220]  ? tomoyo_encode2+0xfb/0x3c0
[ 1882.226238][T31220]  should_failslab+0xc2/0x120
[ 1882.226255][T31220]  __kmalloc_noprof+0xe0/0x850
[ 1882.226276][T31220]  ? d_absolute_path+0x136/0x1b0
[ 1882.226294][T31220]  tomoyo_encode2+0xfb/0x3c0
[ 1882.226315][T31220]  tomoyo_encode+0x29/0x50
[ 1882.226339][T31220]  tomoyo_realpath_from_path+0x18c/0x690
[ 1882.226374][T31220]  tomoyo_path_number_perm+0x23c/0x580
[ 1882.226398][T31220]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1882.226421][T31220]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1882.226477][T31220]  ? find_held_lock+0x2b/0x80
[ 1882.226497][T31220]  ? __fget_files+0x215/0x3d0
[ 1882.226513][T31220]  ? hook_file_ioctl_common+0x149/0x410
[ 1882.226528][T31220]  ? __fget_files+0x215/0x3d0
[ 1882.226547][T31220]  ? __fget_files+0x21f/0x3d0
[ 1882.226566][T31220]  security_file_ioctl+0xd3/0x230
[ 1882.226582][T31220]  __x64_sys_ioctl+0xb7/0x210
[ 1882.226602][T31220]  do_syscall_64+0x10b/0xf80
[ 1882.226621][T31220]  ? clear_bhb_loop+0x40/0x90
[ 1882.226639][T31220]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1882.226654][T31220] RIP: 0033:0x7f9d2ed9cdd9
[ 1882.226667][T31220] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1882.226680][T31220] RSP: 002b:00007f9d2fcb9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1882.226694][T31220] RAX: ffffffffffffffda RBX: 00007f9d2f015fa0 RCX: 00007f9d2ed9cdd9
[ 1882.226704][T31220] RDX: 0000200000000180 RSI: 0000000040081271 RDI: 0000000000000003
[ 1882.226713][T31220] RBP: 00007f9d2fcb9090 R08: 0000000000000000 R09: 0000000000000000
[ 1882.226721][T31220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1882.226729][T31220] R13: 00007f9d2f016038 R14: 00007f9d2f015fa0 R15: 00007ffd81b527d8
[ 1882.226749][T31220]  </TASK>
[ 1882.226793][T31220] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1882.642762][T30936] veth0_vlan: entered promiscuous mode
[ 1882.743858][T30936] veth1_vlan: entered promiscuous mode
[ 1882.776620][T31230] FAULT_INJECTION: forcing a failure.
[ 1882.776620][T31230] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1882.807251][T31230] CPU: 1 UID: 0 PID: 31230 Comm: syz.3.4851 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1882.807290][T31230] Tainted: [L]=SOFTLOCKUP
[ 1882.807300][T31230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1882.807314][T31230] Call Trace:
[ 1882.807323][T31230]  <TASK>
[ 1882.807333][T31230]  dump_stack_lvl+0x100/0x190
[ 1882.807366][T31230]  should_fail_ex.cold+0x5/0xa
[ 1882.807393][T31230]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1882.807426][T31230]  should_fail_alloc_page+0xeb/0x140
[ 1882.807466][T31230]  prepare_alloc_pages+0x1f0/0x5f0
[ 1882.807504][T31230]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[ 1882.807550][T31230]  ? stack_trace_save+0x8e/0xc0
[ 1882.807583][T31230]  ? __pfx_stack_trace_save+0x10/0x10
[ 1882.807613][T31230]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[ 1882.807650][T31230]  ? stack_depot_save_flags+0x27/0x9d0
[ 1882.807679][T31230]  ? __pfx___up_read+0x10/0x10
[ 1882.807706][T31230]  ? validate_mm+0x261/0x4e0
[ 1882.807744][T31230]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1882.807781][T31230]  ? kasan_save_track+0x14/0x30
[ 1882.807806][T31230]  ? __kasan_slab_alloc+0x89/0x90
[ 1882.807831][T31230]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1882.807870][T31230]  ? move_page_tables+0x3224/0x4500
[ 1882.807906][T31230]  ? move_vma+0x574/0x1920
[ 1882.807940][T31230]  ? mremap_to+0x234/0x4c0
[ 1882.807972][T31230]  ? __do_sys_mremap+0xa7a/0x1850
[ 1882.808007][T31230]  ? do_syscall_64+0x10b/0xf80
[ 1882.808037][T31230]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1882.808082][T31230]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1882.808137][T31230]  ? policy_nodemask+0xed/0x4f0
[ 1882.808170][T31230]  alloc_pages_mpol+0x1fb/0x540
[ 1882.808200][T31230]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1882.808239][T31230]  alloc_pages_noprof+0x1a/0x160
[ 1882.808272][T31230]  pte_alloc_one+0x1c/0x3d0
[ 1882.808306][T31230]  __pte_alloc+0x6d/0x3e0
[ 1882.808335][T31230]  ? __pfx___pte_alloc+0x10/0x10
[ 1882.808363][T31230]  ? _raw_spin_unlock+0x28/0x50
[ 1882.808390][T31230]  ? __pmd_alloc+0x3fb/0x950
[ 1882.808423][T31230]  move_page_tables+0x257e/0x4500
[ 1882.808469][T31230]  ? __pfx_copy_vma+0x10/0x10
[ 1882.808519][T31230]  ? __pfx_move_page_tables+0x10/0x10
[ 1882.808581][T31230]  copy_vma_and_data+0x25c/0x7c0
[ 1882.808623][T31230]  ? __pfx_copy_vma_and_data+0x10/0x10
[ 1882.808683][T31230]  ? __vma_start_write+0x17f/0x280
[ 1882.808718][T31230]  ? __pfx___vma_start_write+0x10/0x10
[ 1882.808763][T31230]  move_vma+0x574/0x1920
[ 1882.808808][T31230]  ? __pfx_move_vma+0x10/0x10
[ 1882.808850][T31230]  ? mm_get_unmapped_area_vmflags+0xd7/0x130
[ 1882.808883][T31230]  ? cap_mmap_addr+0x4b/0x120
[ 1882.808917][T31230]  ? bpf_lsm_mmap_addr+0x9/0x30
[ 1882.808942][T31230]  ? security_mmap_addr+0x71/0x1e0
[ 1882.808975][T31230]  ? __get_unmapped_area+0x255/0x3e0
[ 1882.809010][T31230]  ? vrm_set_new_addr+0x204/0x290
[ 1882.809051][T31230]  mremap_to+0x234/0x4c0
[ 1882.809087][T31230]  ? mas_walk+0x6ef/0x9b0
[ 1882.809116][T31230]  ? __pfx_mremap_to+0x10/0x10
[ 1882.809155][T31230]  ? check_prep_vma+0x878/0xdf0
[ 1882.809200][T31230]  __do_sys_mremap+0xa7a/0x1850
[ 1882.809255][T31230]  ? __pfx___do_sys_mremap+0x10/0x10
[ 1882.809293][T31230]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1882.809337][T31230]  ? do_futex+0x192/0x350
[ 1882.809366][T31230]  ? __pfx_do_futex+0x10/0x10
[ 1882.809407][T31230]  ? __x64_sys_futex+0x34f/0x4d0
[ 1882.809455][T31230]  ? rcu_is_watching+0x12/0xc0
[ 1882.809491][T31230]  do_syscall_64+0x10b/0xf80
[ 1882.809522][T31230]  ? clear_bhb_loop+0x40/0x90
[ 1882.809565][T31230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1882.809591][T31230] RIP: 0033:0x7f9d2ed9cdd9
[ 1882.809614][T31230] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1882.809639][T31230] RSP: 002b:00007f9d2fcb9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[ 1882.809663][T31230] RAX: ffffffffffffffda RBX: 00007f9d2f015fa0 RCX: 00007f9d2ed9cdd9
[ 1882.809681][T31230] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000
[ 1882.809697][T31230] RBP: 00007f9d2ee32d69 R08: 0000000100000000 R09: 0000000000000000
[ 1882.809713][T31230] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[ 1882.809729][T31230] R13: 00007f9d2f016038 R14: 00007f9d2f015fa0 R15: 00007ffd81b527d8
[ 1882.809766][T31230]  </TASK>
[ 1883.240677][T30936] veth0_macvtap: entered promiscuous mode
[ 1883.249688][T30936] veth1_macvtap: entered promiscuous mode
[ 1883.263722][T30936] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1883.275377][T30936] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1883.433985][T31241] FAULT_INJECTION: forcing a failure.
[ 1883.433985][T31241] name failslab, interval 1, probability 0, space 0, times 0
[ 1883.456909][T23249] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1883.490961][ T1017] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1883.538627][T31241] CPU: 0 UID: 0 PID: 31241 Comm: syz.1.4854 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1883.538668][T31241] Tainted: [L]=SOFTLOCKUP
[ 1883.538676][T31241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1883.538689][T31241] Call Trace:
[ 1883.538698][T31241]  <TASK>
[ 1883.538708][T31241]  dump_stack_lvl+0x100/0x190
[ 1883.538743][T31241]  should_fail_ex.cold+0x5/0xa
[ 1883.538777][T31241]  ? tomoyo_encode2+0xfb/0x3c0
[ 1883.538806][T31241]  should_failslab+0xc2/0x120
[ 1883.538836][T31241]  __kmalloc_noprof+0xe0/0x850
[ 1883.538878][T31241]  ? d_absolute_path+0x136/0x1b0
[ 1883.538911][T31241]  tomoyo_encode2+0xfb/0x3c0
[ 1883.538947][T31241]  tomoyo_encode+0x29/0x50
[ 1883.538976][T31241]  tomoyo_realpath_from_path+0x18c/0x690
[ 1883.539017][T31241]  tomoyo_path_number_perm+0x23c/0x580
[ 1883.539043][T31241]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1883.539072][T31241]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1883.539132][T31241]  ? find_held_lock+0x2b/0x80
[ 1883.539162][T31241]  ? __fget_files+0x215/0x3d0
[ 1883.539188][T31241]  ? hook_file_ioctl_common+0x149/0x410
[ 1883.539212][T31241]  ? __fget_files+0x215/0x3d0
[ 1883.539245][T31241]  ? __fget_files+0x21f/0x3d0
[ 1883.539277][T31241]  security_file_ioctl+0xd3/0x230
[ 1883.539302][T31241]  __x64_sys_ioctl+0xb7/0x210
[ 1883.539328][T31241]  do_syscall_64+0x10b/0xf80
[ 1883.539356][T31241]  ? clear_bhb_loop+0x40/0x90
[ 1883.539387][T31241]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1883.539412][T31241] RIP: 0033:0x7fb41b59cdd9
[ 1883.539433][T31241] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1883.539456][T31241] RSP: 002b:00007fb41c4f7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1883.539480][T31241] RAX: ffffffffffffffda RBX: 00007fb41b815fa0 RCX: 00007fb41b59cdd9
[ 1883.539496][T31241] RDX: 0000000000000003 RSI: 0000000000005424 RDI: 0000000000000003
[ 1883.539511][T31241] RBP: 00007fb41c4f7090 R08: 0000000000000000 R09: 0000000000000000
[ 1883.539527][T31241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1883.539544][T31241] R13: 00007fb41b816038 R14: 00007fb41b815fa0 R15: 00007ffe397ccad8
[ 1883.539568][T31241]  </TASK>
[ 1883.539609][T31241] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1883.839456][ T1017] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1883.848384][ T1017] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1883.955133][ T1017] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1883.981176][ T1017] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1884.208129][  T139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1884.208157][  T139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1884.940685][T16563] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1884.949814][T16563] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1884.960348][T16563] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1884.968475][T16563] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1884.997674][T16563] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1885.012048][T31288] FAULT_INJECTION: forcing a failure.
[ 1885.012048][T31288] name failslab, interval 1, probability 0, space 0, times 0
[ 1885.075838][T31288] CPU: 1 UID: 0 PID: 31288 Comm: syz.2.4865 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1885.075864][T31288] Tainted: [L]=SOFTLOCKUP
[ 1885.075869][T31288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1885.075877][T31288] Call Trace:
[ 1885.075883][T31288]  <TASK>
[ 1885.075888][T31288]  dump_stack_lvl+0x100/0x190
[ 1885.075910][T31288]  should_fail_ex.cold+0x5/0xa
[ 1885.075928][T31288]  ? tomoyo_encode2+0xfb/0x3c0
[ 1885.075945][T31288]  should_failslab+0xc2/0x120
[ 1885.075962][T31288]  __kmalloc_noprof+0xe0/0x850
[ 1885.075988][T31288]  tomoyo_encode2+0xfb/0x3c0
[ 1885.076064][T31288]  tomoyo_encode+0x29/0x50
[ 1885.076081][T31288]  tomoyo_realpath_from_path+0x18c/0x690
[ 1885.076115][T31288]  tomoyo_path_number_perm+0x23c/0x580
[ 1885.076140][T31288]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1885.076169][T31288]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1885.076206][T31288]  ? find_held_lock+0x2b/0x80
[ 1885.076225][T31288]  ? __fget_files+0x215/0x3d0
[ 1885.076241][T31288]  ? hook_file_ioctl_common+0x149/0x410
[ 1885.076258][T31288]  ? __fget_files+0x215/0x3d0
[ 1885.076277][T31288]  ? __fget_files+0x21f/0x3d0
[ 1885.076296][T31288]  security_file_ioctl+0xd3/0x230
[ 1885.076312][T31288]  __x64_sys_ioctl+0xb7/0x210
[ 1885.076328][T31288]  do_syscall_64+0x10b/0xf80
[ 1885.076347][T31288]  ? clear_bhb_loop+0x40/0x90
[ 1885.076370][T31288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1885.076385][T31288] RIP: 0033:0x7fcfbcb9cdd9
[ 1885.076398][T31288] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1885.076411][T31288] RSP: 002b:00007fcfbdb29028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1885.076425][T31288] RAX: ffffffffffffffda RBX: 00007fcfbce15fa0 RCX: 00007fcfbcb9cdd9
[ 1885.076435][T31288] RDX: 0010000000000402 RSI: 000000000000ae60 RDI: 0000000000000003
[ 1885.076444][T31288] RBP: 00007fcfbdb29090 R08: 0000000000000000 R09: 0000000000000000
[ 1885.076452][T31288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1885.076460][T31288] R13: 00007fcfbce16038 R14: 00007fcfbce15fa0 R15: 00007fffcf647b98
[ 1885.076479][T31288]  </TASK>
[ 1885.076494][T31288] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1885.917610][T31315] FAULT_INJECTION: forcing a failure.
[ 1885.917610][T31315] name failslab, interval 1, probability 0, space 0, times 0
[ 1885.946197][T31315] CPU: 1 UID: 0 PID: 31315 Comm: syz.2.4871 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1885.946239][T31315] Tainted: [L]=SOFTLOCKUP
[ 1885.946247][T31315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1885.946261][T31315] Call Trace:
[ 1885.946269][T31315]  <TASK>
[ 1885.946279][T31315]  dump_stack_lvl+0x100/0x190
[ 1885.946312][T31315]  should_fail_ex.cold+0x5/0xa
[ 1885.946344][T31315]  ? tomoyo_encode2+0xfb/0x3c0
[ 1885.946368][T31315]  should_failslab+0xc2/0x120
[ 1885.946396][T31315]  __kmalloc_noprof+0xe0/0x850
[ 1885.946440][T31315]  tomoyo_encode2+0xfb/0x3c0
[ 1885.946471][T31315]  tomoyo_encode+0x29/0x50
[ 1885.946500][T31315]  tomoyo_realpath_from_path+0x18c/0x690
[ 1885.946540][T31315]  tomoyo_path_number_perm+0x23c/0x580
[ 1885.946570][T31315]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1885.946597][T31315]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1885.946663][T31315]  ? find_held_lock+0x2b/0x80
[ 1885.946694][T31315]  ? __fget_files+0x215/0x3d0
[ 1885.946721][T31315]  ? hook_file_ioctl_common+0x149/0x410
[ 1885.946747][T31315]  ? __fget_files+0x215/0x3d0
[ 1885.946782][T31315]  ? __fget_files+0x21f/0x3d0
[ 1885.946817][T31315]  security_file_ioctl+0xd3/0x230
[ 1885.946855][T31315]  __x64_sys_ioctl+0xb7/0x210
[ 1885.946884][T31315]  do_syscall_64+0x10b/0xf80
[ 1885.946916][T31315]  ? clear_bhb_loop+0x40/0x90
[ 1885.946946][T31315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1885.946971][T31315] RIP: 0033:0x7fcfbcb9cdd9
[ 1885.946992][T31315] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1885.947015][T31315] RSP: 002b:00007fcfbdb29028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1885.947038][T31315] RAX: ffffffffffffffda RBX: 00007fcfbce15fa0 RCX: 00007fcfbcb9cdd9
[ 1885.947052][T31315] RDX: 0000000000000003 RSI: 000000004008ae6a RDI: 0000000000000003
[ 1885.947068][T31315] RBP: 00007fcfbdb29090 R08: 0000000000000000 R09: 0000000000000000
[ 1885.947084][T31315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1885.947098][T31315] R13: 00007fcfbce16038 R14: 00007fcfbce15fa0 R15: 00007fffcf647b98
[ 1885.947133][T31315]  </TASK>
[ 1885.947184][T31315] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1886.407808][ T1017] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1886.476497][T31332] ecryptfs_miscdev_write: Error while inspecting packet size
[ 1886.701295][ T1017] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1886.874435][ T1017] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1887.040343][ T1017] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1887.138966][ T5637] Bluetooth: hci1: command tx timeout
[ 1887.717661][T31362] netlink: 72 bytes leftover after parsing attributes in process `syz.0.4883'.
[ 1887.732666][ T1017] bridge_slave_1: left allmulticast mode
[ 1887.760550][ T1017] bridge_slave_1: left promiscuous mode
[ 1887.766629][ T1017] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1887.819981][ T1017] bridge_slave_0: left allmulticast mode
[ 1887.842073][T31345] FAULT_INJECTION: forcing a failure.
[ 1887.842073][T31345] name failslab, interval 1, probability 0, space 0, times 0
[ 1887.861329][ T1017] bridge_slave_0: left promiscuous mode
[ 1887.878948][T31345] CPU: 0 UID: 0 PID: 31345 Comm: syz.2.4879 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1887.878994][T31345] Tainted: [L]=SOFTLOCKUP
[ 1887.879011][T31345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1887.879030][T31345] Call Trace:
[ 1887.879040][T31345]  <TASK>
[ 1887.879051][T31345]  dump_stack_lvl+0x100/0x190
[ 1887.879090][T31345]  should_fail_ex.cold+0x5/0xa
[ 1887.879125][T31345]  ? vb2_core_allocated_buffers_storage+0xc4/0x220
[ 1887.879159][T31345]  should_failslab+0xc2/0x120
[ 1887.879193][T31345]  __kmalloc_noprof+0xe0/0x850
[ 1887.879243][T31345]  vb2_core_allocated_buffers_storage+0xc4/0x220
[ 1887.879285][T31345]  vb2_core_reqbufs+0x382/0xf30
[ 1887.879327][T31345]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[ 1887.879386][T31345]  __vb2_init_fileio+0x32d/0x1000
[ 1887.879418][T31345]  ? aa_file_perm+0x7f3/0x14d0
[ 1887.879462][T31345]  __vb2_perform_fileio+0x91e/0x1380
[ 1887.879506][T31345]  ? __pfx___vb2_perform_fileio+0x10/0x10
[ 1887.879535][T31345]  ? __pfx___might_resched+0x10/0x10
[ 1887.879572][T31345]  ? futex_hash+0x141/0x370
[ 1887.879606][T31345]  vb2_fop_read+0x211/0x520
[ 1887.879645][T31345]  v4l2_read+0x229/0x2c0
[ 1887.879673][T31345]  ? __pfx_v4l2_read+0x10/0x10
[ 1887.879701][T31345]  vfs_read+0x1e4/0xb30
[ 1887.879739][T31345]  ? __pfx_vfs_read+0x10/0x10
[ 1887.879767][T31345]  ? find_held_lock+0x2b/0x80
[ 1887.879802][T31345]  ? __fget_files+0x215/0x3d0
[ 1887.879835][T31345]  ? __fget_files+0x215/0x3d0
[ 1887.879876][T31345]  ? __fget_files+0x21f/0x3d0
[ 1887.879921][T31345]  ksys_read+0x12a/0x250
[ 1887.879952][T31345]  ? __pfx_ksys_read+0x10/0x10
[ 1887.879988][T31345]  ? rcu_is_watching+0x12/0xc0
[ 1887.880036][T31345]  do_syscall_64+0x10b/0xf80
[ 1887.880074][T31345]  ? clear_bhb_loop+0x40/0x90
[ 1887.880110][T31345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1887.880140][T31345] RIP: 0033:0x7fcfbcb9cdd9
[ 1887.880166][T31345] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1887.880194][T31345] RSP: 002b:00007fcfbdb29028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1887.880223][T31345] RAX: ffffffffffffffda RBX: 00007fcfbce15fa0 RCX: 00007fcfbcb9cdd9
[ 1887.880243][T31345] RDX: 0000000000000028 RSI: 0000200000000280 RDI: 0000000000000006
[ 1887.880260][T31345] RBP: 00007fcfbcc32d69 R08: 0000000000000000 R09: 0000000000000000
[ 1887.880277][T31345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1887.880292][T31345] R13: 00007fcfbce16038 R14: 00007fcfbce15fa0 R15: 00007fffcf647b98
[ 1887.880331][T31345]  </TASK>
[ 1887.885913][ T1017] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1888.305681][T31383] netlink: 226 bytes leftover after parsing attributes in process `syz.3.4886'.
[ 1888.559937][ T1017] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1888.571565][ T1017] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1888.583423][ T1017] bond0 (unregistering): Released all slaves
[ 1888.603737][T31383] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4886'.
[ 1888.623973][T31383] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check.
[ 1888.645352][ T5287] 8021q: adding VLAN 0 to HW filter on device eth1
[ 1888.788845][ T5720] usb usb40-port5: attempt power cycle
[ 1888.804156][T31287] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1888.811962][T31287] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1888.819378][T31287] bridge_slave_0: entered allmulticast mode
[ 1888.828119][T31287] bridge_slave_0: entered promiscuous mode
[ 1888.873251][T31287] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1888.881430][T31287] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1888.892064][T31287] bridge_slave_1: entered allmulticast mode
[ 1888.901471][T31287] bridge_slave_1: entered promiscuous mode
[ 1889.032869][T31287] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1889.045196][T31287] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1889.131704][T31287] team0: Port device team_slave_0 added
[ 1889.192240][T31287] team0: Port device team_slave_1 added
[ 1889.209897][ T5637] Bluetooth: hci1: command tx timeout
[ 1889.363419][T31287] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1889.363435][T31287] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1889.363454][T31287] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1889.365151][T31287] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1889.365170][T31287] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1889.365203][T31287] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1889.370328][ T5720] usb usb40-port5: unable to enumerate USB device
[ 1890.032800][T31287] hsr_slave_0: entered promiscuous mode
[ 1890.062884][T31287] hsr_slave_1: entered promiscuous mode
[ 1890.079590][T31287] debugfs: 'hsr0' already exists in 'hsr'
[ 1890.093365][T31287] Cannot create hsr debugfs directory
[ 1890.193165][T31429] FAULT_INJECTION: forcing a failure.
[ 1890.193165][T31429] name failslab, interval 1, probability 0, space 0, times 0
[ 1890.221176][T31429] CPU: 1 UID: 0 PID: 31429 Comm: syz.0.4893 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1890.221211][T31429] Tainted: [L]=SOFTLOCKUP
[ 1890.221219][T31429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1890.221233][T31429] Call Trace:
[ 1890.221242][T31429]  <TASK>
[ 1890.221253][T31429]  dump_stack_lvl+0x100/0x190
[ 1890.221288][T31429]  should_fail_ex.cold+0x5/0xa
[ 1890.221321][T31429]  ? tomoyo_encode2+0xfb/0x3c0
[ 1890.221349][T31429]  should_failslab+0xc2/0x120
[ 1890.221381][T31429]  __kmalloc_noprof+0xe0/0x850
[ 1890.221417][T31429]  ? d_absolute_path+0x136/0x1b0
[ 1890.221449][T31429]  tomoyo_encode2+0xfb/0x3c0
[ 1890.221484][T31429]  tomoyo_encode+0x29/0x50
[ 1890.221511][T31429]  tomoyo_realpath_from_path+0x18c/0x690
[ 1890.221549][T31429]  tomoyo_path_number_perm+0x23c/0x580
[ 1890.221577][T31429]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1890.221607][T31429]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1890.221670][T31429]  ? find_held_lock+0x2b/0x80
[ 1890.221699][T31429]  ? __fget_files+0x215/0x3d0
[ 1890.221723][T31429]  ? hook_file_ioctl_common+0x149/0x410
[ 1890.221747][T31429]  ? __fget_files+0x215/0x3d0
[ 1890.221787][T31429]  ? __fget_files+0x21f/0x3d0
[ 1890.221819][T31429]  security_file_ioctl+0xd3/0x230
[ 1890.221844][T31429]  __x64_sys_ioctl+0xb7/0x210
[ 1890.221871][T31429]  do_syscall_64+0x10b/0xf80
[ 1890.221900][T31429]  ? clear_bhb_loop+0x40/0x90
[ 1890.221931][T31429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1890.221956][T31429] RIP: 0033:0x7f74b8f9cdd9
[ 1890.221977][T31429] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1890.222000][T31429] RSP: 002b:00007f74b9e18028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1890.222023][T31429] RAX: ffffffffffffffda RBX: 00007f74b9215fa0 RCX: 00007f74b8f9cdd9
[ 1890.222041][T31429] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000005
[ 1890.222055][T31429] RBP: 00007f74b9e18090 R08: 0000000000000000 R09: 0000000000000000
[ 1890.222070][T31429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1890.222084][T31429] R13: 00007f74b9216038 R14: 00007f74b9215fa0 R15: 00007ffeb739f078
[ 1890.222117][T31429]  </TASK>
[ 1890.222197][T31429] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1890.348852][ T5287] 8021q: adding VLAN 0 to HW filter on device eth2
[ 1891.037144][T31441] FAULT_INJECTION: forcing a failure.
[ 1891.037144][T31441] name failslab, interval 1, probability 0, space 0, times 0
[ 1891.054475][T31441] CPU: 1 UID: 0 PID: 31441 Comm: syz.0.4896 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1891.054512][T31441] Tainted: [L]=SOFTLOCKUP
[ 1891.054520][T31441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1891.054532][T31441] Call Trace:
[ 1891.054540][T31441]  <TASK>
[ 1891.054550][T31441]  dump_stack_lvl+0x100/0x190
[ 1891.054584][T31441]  should_fail_ex.cold+0x5/0xa
[ 1891.054613][T31441]  ? tomoyo_encode2+0xfb/0x3c0
[ 1891.054637][T31441]  should_failslab+0xc2/0x120
[ 1891.054666][T31441]  __kmalloc_noprof+0xe0/0x850
[ 1891.054698][T31441]  ? d_absolute_path+0x136/0x1b0
[ 1891.054725][T31441]  tomoyo_encode2+0xfb/0x3c0
[ 1891.054753][T31441]  tomoyo_encode+0x29/0x50
[ 1891.054775][T31441]  tomoyo_realpath_from_path+0x18c/0x690
[ 1891.054808][T31441]  tomoyo_path_number_perm+0x23c/0x580
[ 1891.054831][T31441]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1891.054853][T31441]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1891.054909][T31441]  ? find_held_lock+0x2b/0x80
[ 1891.054937][T31441]  ? __fget_files+0x215/0x3d0
[ 1891.054958][T31441]  ? hook_file_ioctl_common+0x149/0x410
[ 1891.054987][T31441]  ? __fget_files+0x215/0x3d0
[ 1891.055018][T31441]  ? __fget_files+0x21f/0x3d0
[ 1891.055049][T31441]  security_file_ioctl+0xd3/0x230
[ 1891.055075][T31441]  __x64_sys_ioctl+0xb7/0x210
[ 1891.055103][T31441]  do_syscall_64+0x10b/0xf80
[ 1891.055133][T31441]  ? clear_bhb_loop+0x40/0x90
[ 1891.055163][T31441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1891.055184][T31441] RIP: 0033:0x7f74b8f9cdd9
[ 1891.055204][T31441] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1891.055226][T31441] RSP: 002b:00007f74b9e18028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1891.055248][T31441] RAX: ffffffffffffffda RBX: 00007f74b9215fa0 RCX: 00007f74b8f9cdd9
[ 1891.055264][T31441] RDX: 0000000000000000 RSI: 0000000040107447 RDI: 0000000000000005
[ 1891.055282][T31441] RBP: 00007f74b9e18090 R08: 0000000000000000 R09: 0000000000000000
[ 1891.055296][T31441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1891.055311][T31441] R13: 00007f74b9216038 R14: 00007f74b9215fa0 R15: 00007ffeb739f078
[ 1891.055344][T31441]  </TASK>
[ 1891.282297][T31441] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1891.295203][ T5637] Bluetooth: hci1: command tx timeout
[ 1892.472187][T31478] FAULT_INJECTION: forcing a failure.
[ 1892.472187][T31478] name failslab, interval 1, probability 0, space 0, times 0
[ 1892.511345][T31478] CPU: 0 UID: 0 PID: 31478 Comm: syz.2.4902 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1892.511387][T31478] Tainted: [L]=SOFTLOCKUP
[ 1892.511396][T31478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1892.511412][T31478] Call Trace:
[ 1892.511421][T31478]  <TASK>
[ 1892.511437][T31478]  dump_stack_lvl+0x100/0x190
[ 1892.511471][T31478]  should_fail_ex.cold+0x5/0xa
[ 1892.511502][T31478]  should_failslab+0xc2/0x120
[ 1892.511537][T31478]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1892.511569][T31478]  ? resv_map_alloc+0x7e/0x400
[ 1892.511606][T31478]  resv_map_alloc+0x7e/0x400
[ 1892.511632][T31478]  hugetlbfs_get_inode+0x385/0x700
[ 1892.511667][T31478]  ? __fget_files+0x215/0x3d0
[ 1892.511701][T31478]  hugetlb_file_setup+0x15b/0x5b0
[ 1892.511741][T31478]  ksys_mmap_pgoff+0x242/0x610
[ 1892.511778][T31478]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 1892.511814][T31478]  ? fput+0x79/0x100
[ 1892.511847][T31478]  ? ksys_write+0x1ac/0x250
[ 1892.511875][T31478]  ? __pfx_ksys_write+0x10/0x10
[ 1892.511908][T31478]  __x64_sys_mmap+0x125/0x190
[ 1892.511937][T31478]  do_syscall_64+0x10b/0xf80
[ 1892.511968][T31478]  ? clear_bhb_loop+0x40/0x90
[ 1892.512000][T31478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1892.512026][T31478] RIP: 0033:0x7fcfbcb9cdd9
[ 1892.512048][T31478] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1892.512072][T31478] RSP: 002b:00007fcfbdb08028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1892.512097][T31478] RAX: ffffffffffffffda RBX: 00007fcfbce16090 RCX: 00007fcfbcb9cdd9
[ 1892.512114][T31478] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000000
[ 1892.512129][T31478] RBP: 00007fcfbdb08090 R08: 0000000000000401 R09: 0000300000000000
[ 1892.512146][T31478] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000001
[ 1892.512161][T31478] R13: 00007fcfbce16128 R14: 00007fcfbce16090 R15: 00007fffcf647b98
[ 1892.512198][T31478]  </TASK>
[ 1892.754792][T31478] FAULT_INJECTION: forcing a failure.
[ 1892.754792][T31478] name failslab, interval 1, probability 0, space 0, times 0
[ 1892.767750][T31478] CPU: 0 UID: 0 PID: 31478 Comm: syz.2.4902 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1892.767796][T31478] Tainted: [L]=SOFTLOCKUP
[ 1892.767807][T31478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1892.767821][T31478] Call Trace:
[ 1892.767830][T31478]  <TASK>
[ 1892.767840][T31478]  dump_stack_lvl+0x100/0x190
[ 1892.767876][T31478]  should_fail_ex.cold+0x5/0xa
[ 1892.767911][T31478]  should_failslab+0xc2/0x120
[ 1892.767942][T31478]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1892.767977][T31478]  ? madvise_collapse+0x1a6/0x760
[ 1892.768010][T31478]  ? finish_task_switch.isra.0+0x2c6/0x1010
[ 1892.768051][T31478]  madvise_collapse+0x1a6/0x760
[ 1892.768083][T31478]  ? lockdep_hardirqs_on+0x78/0x100
[ 1892.768119][T31478]  ? __pfx_madvise_collapse+0x10/0x10
[ 1892.768159][T31478]  ? mtree_range_walk+0x72b/0xb70
[ 1892.768193][T31478]  madvise_vma_behavior+0x10f4/0x2200
[ 1892.768232][T31478]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 1892.768277][T31478]  ? find_vma_prev+0xd8/0x150
[ 1892.768315][T31478]  ? futex_unqueue+0x133/0x2c0
[ 1892.768341][T31478]  ? __pfx_find_vma_prev+0x10/0x10
[ 1892.768383][T31478]  ? __futex_wait+0x256/0x300
[ 1892.768423][T31478]  madvise_walk_vmas+0x2fe/0xa90
[ 1892.768463][T31478]  ? __pfx_madvise_walk_vmas+0x10/0x10
[ 1892.768509][T31478]  madvise_do_behavior+0x1ea/0x510
[ 1892.768541][T31478]  ? __pfx_madvise_do_behavior+0x10/0x10
[ 1892.768571][T31478]  ? down_read+0x13b/0x450
[ 1892.768619][T31478]  do_madvise+0x195/0x240
[ 1892.768652][T31478]  ? __pfx_do_madvise+0x10/0x10
[ 1892.768680][T31478]  ? do_futex+0x192/0x350
[ 1892.768712][T31478]  ? __sys_sendmsg+0x18f/0x220
[ 1892.768764][T31478]  __x64_sys_madvise+0xa9/0x110
[ 1892.768797][T31478]  ? lockdep_hardirqs_on+0x78/0x100
[ 1892.768833][T31478]  do_syscall_64+0x10b/0xf80
[ 1892.768864][T31478]  ? clear_bhb_loop+0x40/0x90
[ 1892.768897][T31478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1892.768923][T31478] RIP: 0033:0x7fcfbcb9cdd9
[ 1892.768946][T31478] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1892.768970][T31478] RSP: 002b:00007fcfbdb08028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[ 1892.768995][T31478] RAX: ffffffffffffffda RBX: 00007fcfbce16090 RCX: 00007fcfbcb9cdd9
[ 1892.769012][T31478] RDX: 0000000000000019 RSI: 0000000000000081 RDI: 0000000000000000
[ 1892.769028][T31478] RBP: 00007fcfbcc32d69 R08: 0000000000000000 R09: 0000000000000000
[ 1892.769043][T31478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1892.769059][T31478] R13: 00007fcfbce16128 R14: 00007fcfbce16090 R15: 00007fffcf647b98
[ 1892.769096][T31478]  </TASK>
[ 1893.385011][ T5637] Bluetooth: hci1: command tx timeout
[ 1894.504618][ T1017] hsr_slave_0: left promiscuous mode
[ 1894.518227][ T1017] hsr_slave_1: left promiscuous mode
[ 1894.532439][ T1017] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1894.541134][ T1017] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1894.562878][ T1017] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1894.578713][ T1017] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1894.608148][T31514] FAULT_INJECTION: forcing a failure.
[ 1894.608148][T31514] name failslab, interval 1, probability 0, space 0, times 0
[ 1894.643503][ T1017] veth1_macvtap: left promiscuous mode
[ 1894.658871][T31514] CPU: 0 UID: 0 PID: 31514 Comm: syz.3.4905 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1894.658921][T31514] Tainted: [L]=SOFTLOCKUP
[ 1894.658932][T31514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1894.658949][T31514] Call Trace:
[ 1894.658959][T31514]  <TASK>
[ 1894.658970][T31514]  dump_stack_lvl+0x100/0x190
[ 1894.659010][T31514]  should_fail_ex.cold+0x5/0xa
[ 1894.659050][T31514]  should_failslab+0xc2/0x120
[ 1894.659084][T31514]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1894.659125][T31514]  ? madvise_collapse+0x1a6/0x760
[ 1894.659162][T31514]  ? finish_task_switch.isra.0+0x2c6/0x1010
[ 1894.659209][T31514]  madvise_collapse+0x1a6/0x760
[ 1894.659247][T31514]  ? lockdep_hardirqs_on+0x78/0x100
[ 1894.659288][T31514]  ? __pfx_madvise_collapse+0x10/0x10
[ 1894.659376][T31514]  ? mtree_range_walk+0x72b/0xb70
[ 1894.659417][T31514]  madvise_vma_behavior+0x10f4/0x2200
[ 1894.659461][T31514]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 1894.659512][T31514]  ? find_vma_prev+0xd8/0x150
[ 1894.659545][T31514]  ? futex_unqueue+0x133/0x2c0
[ 1894.659572][T31514]  ? __pfx_find_vma_prev+0x10/0x10
[ 1894.659613][T31514]  ? __futex_wait+0x256/0x300
[ 1894.659657][T31514]  madvise_walk_vmas+0x2fe/0xa90
[ 1894.659702][T31514]  ? __pfx_madvise_walk_vmas+0x10/0x10
[ 1894.659751][T31514]  madvise_do_behavior+0x1ea/0x510
[ 1894.659793][T31514]  ? __pfx_madvise_do_behavior+0x10/0x10
[ 1894.659832][T31514]  ? down_read+0x13b/0x450
[ 1894.659891][T31514]  do_madvise+0x195/0x240
[ 1894.659928][T31514]  ? __pfx_do_madvise+0x10/0x10
[ 1894.659965][T31514]  ? do_futex+0x192/0x350
[ 1894.660000][T31514]  ? __sys_sendmsg+0x18f/0x220
[ 1894.660064][T31514]  __x64_sys_madvise+0xa9/0x110
[ 1894.660110][T31514]  ? lockdep_hardirqs_on+0x78/0x100
[ 1894.660151][T31514]  do_syscall_64+0x10b/0xf80
[ 1894.660188][T31514]  ? clear_bhb_loop+0x40/0x90
[ 1894.660227][T31514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1894.660257][T31514] RIP: 0033:0x7f9d2ed9cdd9
[ 1894.660282][T31514] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1894.660312][T31514] RSP: 002b:00007f9d2fc98028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[ 1894.660350][T31514] RAX: ffffffffffffffda RBX: 00007f9d2f016090 RCX: 00007f9d2ed9cdd9
[ 1894.660371][T31514] RDX: 0000000000000019 RSI: 0000000000000081 RDI: 0000000000000000
[ 1894.660390][T31514] RBP: 00007f9d2ee32d69 R08: 0000000000000000 R09: 0000000000000000
[ 1894.660408][T31514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1894.660424][T31514] R13: 00007f9d2f016128 R14: 00007f9d2f016090 R15: 00007ffd81b527d8
[ 1894.660464][T31514]  </TASK>
[ 1894.680618][ T1017] veth0_macvtap: left promiscuous mode
[ 1894.976471][ T1017] veth1_vlan: left promiscuous mode
[ 1894.981920][ T1017] veth0_vlan: left promiscuous mode
[ 1895.125847][T31530] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4908'.
[ 1895.197264][T31519] FAULT_INJECTION: forcing a failure.
[ 1895.197264][T31519] name failslab, interval 1, probability 0, space 0, times 0
[ 1895.248901][T31519] CPU: 1 UID: 0 PID: 31519 Comm: syz.0.4906 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1895.248943][T31519] Tainted: [L]=SOFTLOCKUP
[ 1895.248953][T31519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1895.248967][T31519] Call Trace:
[ 1895.248975][T31519]  <TASK>
[ 1895.248985][T31519]  dump_stack_lvl+0x100/0x190
[ 1895.249021][T31519]  should_fail_ex.cold+0x5/0xa
[ 1895.249063][T31519]  should_failslab+0xc2/0x120
[ 1895.249092][T31519]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1895.249128][T31519]  ? taskstats_exit+0x67b/0xc10
[ 1895.249160][T31519]  ? rcu_is_watching+0x12/0xc0
[ 1895.249194][T31519]  taskstats_exit+0x67b/0xc10
[ 1895.249227][T31519]  ? __pfx_acct_update_integrals+0x10/0x10
[ 1895.249262][T31519]  ? __pfx_taskstats_exit+0x10/0x10
[ 1895.249299][T31519]  ? rcu_read_lock_any_held+0x6a/0xa0
[ 1895.249330][T31519]  ? exit_signals+0x395/0xaf0
[ 1895.249365][T31519]  do_exit+0x65c/0x2a60
[ 1895.249413][T31519]  ? __pfx_do_exit+0x10/0x10
[ 1895.249449][T31519]  ? do_raw_spin_lock+0x128/0x260
[ 1895.249478][T31519]  ? find_held_lock+0x2b/0x80
[ 1895.249509][T31519]  ? get_signal+0x7e0/0x21e0
[ 1895.249543][T31519]  do_group_exit+0xd5/0x2a0
[ 1895.249585][T31519]  get_signal+0x1ec7/0x21e0
[ 1895.249623][T31519]  ? madvise_unlock+0xa9/0x220
[ 1895.249655][T31519]  ? __pfx_get_signal+0x10/0x10
[ 1895.249693][T31519]  ? do_futex+0x192/0x350
[ 1895.249726][T31519]  arch_do_signal_or_restart+0x91/0x770
[ 1895.249766][T31519]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1895.249812][T31519]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1895.249841][T31519]  ? rcu_is_watching+0x12/0xc0
[ 1895.249873][T31519]  exit_to_user_mode_loop+0x86/0x4a0
[ 1895.249897][T31519]  ? do_syscall_64+0x519/0xf80
[ 1895.249931][T31519]  do_syscall_64+0x6f2/0xf80
[ 1895.249962][T31519]  ? clear_bhb_loop+0x40/0x90
[ 1895.249994][T31519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1895.250020][T31519] RIP: 0033:0x7f74b8f9cdd9
[ 1895.250042][T31519] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1895.250075][T31519] RSP: 002b:00007f74b9df70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1895.250103][T31519] RAX: fffffffffffffe00 RBX: 00007f74b9216098 RCX: 00007f74b8f9cdd9
[ 1895.250119][T31519] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f74b9216098
[ 1895.250139][T31519] RBP: 00007f74b9216090 R08: 0000000000000000 R09: 0000000000000000
[ 1895.250155][T31519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1895.250171][T31519] R13: 00007f74b9216128 R14: 00007ffeb739ef90 R15: 00007ffeb739f078
[ 1895.250208][T31519]  </TASK>
[ 1895.884491][ T1017] team0 (unregistering): Port device team_slave_1 removed
[ 1895.919357][ T1017] team0 (unregistering): Port device team_slave_0 removed
[ 1896.187425][T31287] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1896.207952][T31287] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1896.236435][T31287] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1896.289599][T31287] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1896.334913][T31287] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1896.363297][T31287] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1896.386848][T31287] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1896.444327][T31287] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1896.787029][T31287] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1896.843994][T31287] 8021q: adding VLAN 0 to HW filter on device team0
[ 1896.883727][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1896.891003][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1896.935985][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1896.943246][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1897.062308][T31566] zswap: compressor  not available
[ 1897.357696][T31566] FAULT_INJECTION: forcing a failure.
[ 1897.357696][T31566] name failslab, interval 1, probability 0, space 0, times 0
[ 1897.445267][T31566] CPU: 0 UID: 0 PID: 31566 Comm: syz.2.4911 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1897.445317][T31566] Tainted: [L]=SOFTLOCKUP
[ 1897.445328][T31566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1897.445346][T31566] Call Trace:
[ 1897.445357][T31566]  <TASK>
[ 1897.445368][T31566]  dump_stack_lvl+0x100/0x190
[ 1897.445407][T31566]  should_fail_ex.cold+0x5/0xa
[ 1897.445441][T31566]  ? sk_prot_alloc+0x10b/0x2a0
[ 1897.445475][T31566]  should_failslab+0xc2/0x120
[ 1897.445507][T31566]  __kmalloc_noprof+0xe0/0x850
[ 1897.445555][T31566]  sk_prot_alloc+0x10b/0x2a0
[ 1897.445593][T31566]  sk_alloc+0x36/0xe80
[ 1897.445620][T31566]  __netlink_create+0x5e/0x2c0
[ 1897.445646][T31566]  ? __wake_up+0x3f/0x60
[ 1897.445691][T31566]  netlink_create+0x29b/0x610
[ 1897.445725][T31566]  ? __pfx_genl_bind+0x10/0x10
[ 1897.445762][T31566]  ? __pfx_genl_unbind+0x10/0x10
[ 1897.445794][T31566]  ? __pfx_genl_release+0x10/0x10
[ 1897.445833][T31566]  __sock_create+0x339/0x860
[ 1897.445887][T31566]  __sys_socket+0x14d/0x260
[ 1897.445929][T31566]  ? __pfx___sys_socket+0x10/0x10
[ 1897.445979][T31566]  __x64_sys_socket+0x72/0xb0
[ 1897.446016][T31566]  ? lockdep_hardirqs_on+0x78/0x100
[ 1897.446051][T31566]  do_syscall_64+0x10b/0xf80
[ 1897.446087][T31566]  ? clear_bhb_loop+0x40/0x90
[ 1897.446122][T31566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1897.446153][T31566] RIP: 0033:0x7fcfbcb9cdd9
[ 1897.446178][T31566] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1897.446206][T31566] RSP: 002b:00007fcfbdb29028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1897.446235][T31566] RAX: ffffffffffffffda RBX: 00007fcfbce15fa0 RCX: 00007fcfbcb9cdd9
[ 1897.446253][T31566] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[ 1897.446270][T31566] RBP: 00007fcfbcc32d69 R08: 0000000000000000 R09: 0000000000000000
[ 1897.446285][T31566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1897.446300][T31566] R13: 00007fcfbce16038 R14: 00007fcfbce15fa0 R15: 00007fffcf647b98
[ 1897.446336][T31566]  </TASK>
[ 1897.680529][T31580] FAULT_INJECTION: forcing a failure.
[ 1897.680529][T31580] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1897.693868][T31580] CPU: 0 UID: 0 PID: 31580 Comm: syz.0.4913 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1897.693914][T31580] Tainted: [L]=SOFTLOCKUP
[ 1897.693925][T31580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1897.693940][T31580] Call Trace:
[ 1897.693949][T31580]  <TASK>
[ 1897.693959][T31580]  dump_stack_lvl+0x100/0x190
[ 1897.693996][T31580]  should_fail_ex.cold+0x5/0xa
[ 1897.694031][T31580]  _copy_from_user+0x2e/0xd0
[ 1897.694075][T31580]  memdup_user+0x6b/0xe0
[ 1897.694107][T31580]  strndup_user+0x78/0xe0
[ 1897.694136][T31580]  __x64_sys_fsopen+0x9e/0x220
[ 1897.694178][T31580]  do_syscall_64+0x10b/0xf80
[ 1897.694213][T31580]  ? clear_bhb_loop+0x40/0x90
[ 1897.694254][T31580]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1897.694284][T31580] RIP: 0033:0x7f74b8f9cdd9
[ 1897.694307][T31580] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1897.694335][T31580] RSP: 002b:00007f74b9e18028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[ 1897.694364][T31580] RAX: ffffffffffffffda RBX: 00007f74b9215fa0 RCX: 00007f74b8f9cdd9
[ 1897.694383][T31580] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1897.694405][T31580] RBP: 00007f74b9032d69 R08: 0000000000000000 R09: 0000000000000000
[ 1897.694423][T31580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1897.694437][T31580] R13: 00007f74b9216038 R14: 00007f74b9215fa0 R15: 00007ffeb739f078
[ 1897.694472][T31580]  </TASK>
[ 1898.245682][T31287] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1898.362200][T31287] veth0_vlan: entered promiscuous mode
[ 1898.386578][T31287] veth1_vlan: entered promiscuous mode
[ 1898.428386][T31591] FAULT_INJECTION: forcing a failure.
[ 1898.428386][T31591] name failslab, interval 1, probability 0, space 0, times 0
[ 1898.445427][T31287] veth0_macvtap: entered promiscuous mode
[ 1898.472712][T31287] veth1_macvtap: entered promiscuous mode
[ 1898.485425][T31603] FAULT_INJECTION: forcing a failure.
[ 1898.485425][T31603] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1898.506846][T31591] CPU: 0 UID: 0 PID: 31591 Comm: syz.0.4914 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1898.506887][T31591] Tainted: [L]=SOFTLOCKUP
[ 1898.506896][T31591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1898.506909][T31591] Call Trace:
[ 1898.506918][T31591]  <TASK>
[ 1898.506928][T31591]  dump_stack_lvl+0x100/0x190
[ 1898.506964][T31591]  should_fail_ex.cold+0x5/0xa
[ 1898.507006][T31591]  should_failslab+0xc2/0x120
[ 1898.507032][T31591]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1898.507067][T31591]  ? security_file_alloc+0x34/0x2c0
[ 1898.507092][T31591]  ? trace_kmem_cache_alloc+0xd5/0x100
[ 1898.507125][T31591]  security_file_alloc+0x34/0x2c0
[ 1898.507153][T31591]  init_file+0x95/0x480
[ 1898.507185][T31591]  alloc_empty_file+0x79/0x1c0
[ 1898.507222][T31591]  path_openat+0xe8/0x31a0
[ 1898.507251][T31591]  ? kasan_save_stack+0x3f/0x50
[ 1898.507275][T31591]  ? kasan_save_stack+0x30/0x50
[ 1898.507298][T31591]  ? kasan_save_track+0x14/0x30
[ 1898.507321][T31591]  ? __kasan_slab_alloc+0x89/0x90
[ 1898.507347][T31591]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1898.507382][T31591]  ? do_getname+0x35/0x390
[ 1898.507415][T31591]  ? do_sys_openat2+0xc5/0x1e0
[ 1898.507451][T31591]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1898.507483][T31591]  ? __pfx_path_openat+0x10/0x10
[ 1898.507527][T31591]  do_file_open+0x20e/0x430
[ 1898.507561][T31591]  ? __pfx_do_file_open+0x10/0x10
[ 1898.507616][T31591]  ? alloc_fd+0x476/0x790
[ 1898.507651][T31591]  ? do_getname+0x191/0x390
[ 1898.507690][T31591]  do_sys_openat2+0x10d/0x1e0
[ 1898.507727][T31591]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1898.507775][T31591]  __x64_sys_openat+0x12d/0x210
[ 1898.507814][T31591]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1898.507857][T31591]  ? rcu_is_watching+0x12/0xc0
[ 1898.507892][T31591]  do_syscall_64+0x10b/0xf80
[ 1898.507923][T31591]  ? clear_bhb_loop+0x40/0x90
[ 1898.507954][T31591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1898.507980][T31591] RIP: 0033:0x7f74b8f5d60e
[ 1898.508008][T31591] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1898.508033][T31591] RSP: 002b:00007f74b9e17f98 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1898.508058][T31591] RAX: ffffffffffffffda RBX: 00007f74b9e186c0 RCX: 00007f74b8f5d60e
[ 1898.508076][T31591] RDX: 0000000000000002 RSI: 00007f74b9032670 RDI: ffffffffffffff9c
[ 1898.508093][T31591] RBP: 00007f74b9032d69 R08: 0000000000000000 R09: 0000000000000000
[ 1898.508109][T31591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1898.508125][T31591] R13: 00007f74b9216038 R14: 00007f74b9215fa0 R15: 00007ffeb739f078
[ 1898.508160][T31591]  </TASK>
[ 1898.777086][T31287] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1898.795464][T31287] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1898.803415][T31603] CPU: 0 UID: 0 PID: 31603 Comm: syz.3.4918 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1898.803453][T31603] Tainted: [L]=SOFTLOCKUP
[ 1898.803463][T31603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1898.803478][T31603] Call Trace:
[ 1898.803485][T31603]  <TASK>
[ 1898.803495][T31603]  dump_stack_lvl+0x100/0x190
[ 1898.803527][T31603]  should_fail_ex.cold+0x5/0xa
[ 1898.803553][T31603]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1898.803586][T31603]  should_fail_alloc_page+0xeb/0x140
[ 1898.803617][T31603]  prepare_alloc_pages+0x1f0/0x5f0
[ 1898.803654][T31603]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[ 1898.803698][T31603]  ? find_held_lock+0x2b/0x80
[ 1898.803773][T31603]  ? is_bpf_text_address+0x8a/0x1a0
[ 1898.803804][T31603]  ? is_bpf_text_address+0x8a/0x1a0
[ 1898.803837][T31603]  ? bpf_ksym_find+0x124/0x1c0
[ 1898.803864][T31603]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1898.803897][T31603]  ? is_bpf_text_address+0x94/0x1a0
[ 1898.803936][T31603]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1898.803973][T31603]  ? __kernel_text_address+0xd/0x30
[ 1898.803999][T31603]  ? unwind_get_return_address+0x59/0xa0
[ 1898.804038][T31603]  ? __lock_acquire+0x4a5/0x2630
[ 1898.804067][T31603]  ? tomoyo_check_open_permission+0x1a2/0x3c0
[ 1898.804096][T31603]  ? vma_is_special_huge+0x23f/0x2d0
[ 1898.804124][T31603]  ? __pfx_vma_is_special_huge+0x10/0x10
[ 1898.804149][T31603]  ? look_up_lock_class+0x55/0x120
[ 1898.804180][T31603]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1898.804218][T31603]  ? policy_nodemask+0xed/0x4f0
[ 1898.804250][T31603]  alloc_pages_mpol+0x1fb/0x540
[ 1898.804281][T31603]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1898.804313][T31603]  ? __pfx___thp_vma_allowable_orders+0x10/0x10
[ 1898.804351][T31603]  alloc_pages_noprof+0x1a/0x160
[ 1898.804385][T31603]  __pmd_alloc+0x3b/0x950
[ 1898.804420][T31603]  __handle_mm_fault+0xa9c/0x2a00
[ 1898.804460][T31603]  ? mt_find+0x45e/0x8e0
[ 1898.804494][T31603]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1898.804525][T31603]  ? __pfx_mt_find+0x10/0x10
[ 1898.804576][T31603]  ? find_vma+0xbf/0x140
[ 1898.804604][T31603]  ? __pfx_find_vma+0x10/0x10
[ 1898.804636][T31603]  handle_mm_fault+0x36d/0xa20
[ 1898.804678][T31603]  do_user_addr_fault+0x74c/0x12f0
[ 1898.804713][T31603]  ? trace_page_fault_kernel+0x7a/0x200
[ 1898.804755][T31603]  exc_page_fault+0x6f/0xd0
[ 1898.804787][T31603]  asm_exc_page_fault+0x26/0x30
[ 1898.804812][T31603] RIP: 0010:rep_movs_alternative+0x4a/0x90
[ 1898.804850][T31603] Code: 9b 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[ 1898.804874][T31603] RSP: 0018:ffffc900043b7968 EFLAGS: 00050206
[ 1898.804897][T31603] RAX: 0000000000000001 RBX: ffff888057652753 RCX: 0000000000000081
[ 1898.804913][T31603] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffff888057652753
[ 1898.804929][T31603] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100aeca4fa
[ 1898.804944][T31603] R10: ffff8880576527d3 R11: 0000000000000000 R12: ffffc900043b7c40
[ 1898.804960][T31603] R13: 0000000000000000 R14: 0000000000000081 R15: 0000000000000000
[ 1898.804996][T31603]  _copy_from_iter+0x355/0x1690
[ 1898.805032][T31603]  ? __pfx__copy_from_iter+0x10/0x10
[ 1898.805071][T31603]  isotp_sendmsg+0x813/0x2000
[ 1898.805107][T31603]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1898.805134][T31603]  ? __pfx_isotp_sendmsg+0x10/0x10
[ 1898.805171][T31603]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1898.805213][T31603]  sock_write_iter+0x524/0x5a0
[ 1898.805246][T31603]  ? __pfx_isotp_sendmsg+0x10/0x10
[ 1898.805271][T31603]  ? __pfx_sock_write_iter+0x10/0x10
[ 1898.805314][T31603]  ? bpf_lsm_file_permission+0x9/0x10
[ 1898.805337][T31603]  ? security_file_permission+0x76/0x210
[ 1898.805367][T31603]  ? rw_verify_area+0xce/0x6d0
[ 1898.805396][T31603]  vfs_write+0x6ac/0x1070
[ 1898.805425][T31603]  ? __pfx_sock_write_iter+0x10/0x10
[ 1898.805461][T31603]  ? __pfx_vfs_write+0x10/0x10
[ 1898.805487][T31603]  ? find_held_lock+0x2b/0x80
[ 1898.805540][T31603]  ksys_write+0x1f8/0x250
[ 1898.805568][T31603]  ? __pfx_ksys_write+0x10/0x10
[ 1898.805605][T31603]  ? rcu_is_watching+0x12/0xc0
[ 1898.805640][T31603]  do_syscall_64+0x10b/0xf80
[ 1898.805671][T31603]  ? clear_bhb_loop+0x40/0x90
[ 1898.805702][T31603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1898.805738][T31603] RIP: 0033:0x7f9d2ed9cdd9
[ 1898.805758][T31603] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1898.805780][T31603] RSP: 002b:00007f9d2fcb9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1898.805806][T31603] RAX: ffffffffffffffda RBX: 00007f9d2f015fa0 RCX: 00007f9d2ed9cdd9
[ 1898.805824][T31603] RDX: 0000000000000081 RSI: 0000000000000000 RDI: 0000000000000003
[ 1898.805838][T31603] RBP: 00007f9d2fcb9090 R08: 0000000000000000 R09: 0000000000000000
[ 1898.805853][T31603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1898.805868][T31603] R13: 00007f9d2f016038 R14: 00007f9d2f015fa0 R15: 00007ffd81b527d8
[ 1898.805904][T31603]  </TASK>
[ 1899.328476][T30348] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1899.433942][T30348] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1899.463513][T30348] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1899.501159][T30348] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1899.789499][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1899.830093][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1899.918103][T30348] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1899.935846][T30348] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1901.554666][T16563] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1901.580595][T16563] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1901.593121][T16563] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1901.604342][T16563] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1901.615571][T16563] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1902.582601][T31245] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1902.908214][T31245] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1903.207764][T31245] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1903.621850][T31245] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1903.690287][T16563] Bluetooth: hci3: command tx timeout
[ 1903.896172][T31687] futex_wake_op: syz.2.4933 tries to shift op by -2048; fix this program
[ 1903.950483][T31687] 0x000000000001-0x000000020000 : ""
[ 1904.185792][T31687] ftl_cs: FTL header corrupt!
[ 1904.613067][T31245] bridge_slave_1: left allmulticast mode
[ 1904.633267][T31245] bridge_slave_1: left promiscuous mode
[ 1904.648968][T31245] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1904.666041][T31245] bridge_slave_0: left allmulticast mode
[ 1904.678571][T31245] bridge_slave_0: left promiscuous mode
[ 1904.690015][T31245] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1905.047523][T31245] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1905.062688][T31245] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1905.073595][T31245] bond0 (unregistering): Released all slaves
[ 1905.476487][T31651] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1905.495607][T31651] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1905.514414][T31651] bridge_slave_0: entered allmulticast mode
[ 1905.542628][T31651] bridge_slave_0: entered promiscuous mode
[ 1905.576858][T31651] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1905.588901][T31651] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1905.614758][T31651] bridge_slave_1: entered allmulticast mode
[ 1905.626076][T31651] bridge_slave_1: entered promiscuous mode
[ 1905.740277][T31651] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1905.769081][T16563] Bluetooth: hci3: command tx timeout
[ 1905.786995][T31651] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1905.928340][T31651] team0: Port device team_slave_0 added
[ 1905.950912][T31651] team0: Port device team_slave_1 added
[ 1906.061377][ T5287] 8021q: adding VLAN 0 to HW filter on device eth1
[ 1906.071670][T31651] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1906.078778][T31651] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1906.106999][T31651] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1906.134750][T31651] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1906.141876][T31651] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1906.176726][T31651] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1906.287292][T31651] hsr_slave_0: entered promiscuous mode
[ 1906.294369][T31651] hsr_slave_1: entered promiscuous mode
[ 1906.301321][T31651] debugfs: 'hsr0' already exists in 'hsr'
[ 1906.307205][T31651] Cannot create hsr debugfs directory
[ 1906.854789][T31245] hsr_slave_0: left promiscuous mode
[ 1906.874347][T31245] hsr_slave_1: left promiscuous mode
[ 1906.883462][T31245] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1906.891088][T31245] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1906.899745][T31245] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1906.907209][T31245] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1906.929210][T31245] veth1_macvtap: left promiscuous mode
[ 1906.934803][T31245] veth0_macvtap: left promiscuous mode
[ 1906.940879][T31245] veth1_vlan: left promiscuous mode
[ 1906.946244][T31245] veth0_vlan: left promiscuous mode
[ 1907.138326][T31245] team0 (unregistering): Port device team_slave_1 removed
[ 1907.152976][T31245] team0 (unregistering): Port device team_slave_0 removed
[ 1907.797526][T31651] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1907.821017][T31651] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1907.829551][T31651] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1907.857995][T31651] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1907.860259][T16563] Bluetooth: hci3: command tx timeout
[ 1907.887287][T31651] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1907.902126][T31651] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1907.915802][T31651] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1907.928700][T31651] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1908.053730][T31651] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1908.088155][T31651] 8021q: adding VLAN 0 to HW filter on device team0
[ 1908.107283][T24041] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1908.114587][T24041] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1908.141471][T24041] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1908.148751][T24041] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1908.624130][T31651] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1908.676528][T31651] veth0_vlan: entered promiscuous mode
[ 1908.687584][T31651] veth1_vlan: entered promiscuous mode
[ 1908.719531][T31651] veth0_macvtap: entered promiscuous mode
[ 1908.729063][T31651] veth1_macvtap: entered promiscuous mode
[ 1908.747160][T31651] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1908.761778][T31651] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1908.781330][  T139] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1908.790554][  T139] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1908.801316][  T139] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1908.810685][  T139] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1908.901622][  T139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1908.909884][  T139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1908.937602][T31245] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1908.947016][T31245] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1909.001521][T31800] FAULT_INJECTION: forcing a failure.
[ 1909.001521][T31800] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1909.015763][T31800] CPU: 0 UID: 0 PID: 31800 Comm: syz.3.4926 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1909.015809][T31800] Tainted: [L]=SOFTLOCKUP
[ 1909.015817][T31800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1909.015832][T31800] Call Trace:
[ 1909.015841][T31800]  <TASK>
[ 1909.015850][T31800]  dump_stack_lvl+0x100/0x190
[ 1909.015882][T31800]  should_fail_ex.cold+0x5/0xa
[ 1909.015916][T31800]  _copy_from_iter+0x1f4/0x1690
[ 1909.015949][T31800]  ? __pfx__copy_from_iter+0x10/0x10
[ 1909.015965][T31800]  ? rcu_is_watching+0x12/0xc0
[ 1909.015983][T31800]  ? trace_kmalloc+0xe3/0x110
[ 1909.016000][T31800]  ? __kasan_kmalloc+0xaa/0xb0
[ 1909.016014][T31800]  ? __kmalloc_noprof+0x320/0x850
[ 1909.016043][T31800]  kernfs_fop_write_iter+0x186/0x5f0
[ 1909.016067][T31800]  vfs_write+0x6ac/0x1070
[ 1909.016084][T31800]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1909.016106][T31800]  ? __pfx_vfs_write+0x10/0x10
[ 1909.016126][T31800]  ? find_held_lock+0x2b/0x80
[ 1909.016173][T31800]  __x64_sys_pwrite64+0x1eb/0x250
[ 1909.016194][T31800]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[ 1909.016216][T31800]  ? rcu_is_watching+0x12/0xc0
[ 1909.016236][T31800]  do_syscall_64+0x10b/0xf80
[ 1909.016255][T31800]  ? clear_bhb_loop+0x40/0x90
[ 1909.016273][T31800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1909.016287][T31800] RIP: 0033:0x7fd31439cdd9
[ 1909.016301][T31800] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1909.016314][T31800] RSP: 002b:00007fd315317028 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[ 1909.016329][T31800] RAX: ffffffffffffffda RBX: 00007fd314615fa0 RCX: 00007fd31439cdd9
[ 1909.016338][T31800] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000004
[ 1909.016346][T31800] RBP: 00007fd315317090 R08: 0000000000000000 R09: 0000000000000000
[ 1909.016355][T31800] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[ 1909.016363][T31800] R13: 00007fd314616038 R14: 00007fd314615fa0 R15: 00007ffc97e01598
[ 1909.016381][T31800]  </TASK>
[ 1909.928966][T16563] Bluetooth: hci3: command tx timeout
[ 1914.730556][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[ 1914.736905][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[ 1973.141718][T16563] Bluetooth: hci2: command 0x0406 tx timeout
[ 1976.170375][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[ 1976.176945][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[ 1993.611068][T16563] Bluetooth: hci4: command 0x0406 tx timeout
[ 1996.673970][ T5720] ------------[ cut here ]------------
[ 1996.680613][ T5720] ODEBUG: free active (active state 0) object: ffff88804ebd5438 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0
[ 1996.693979][ T5720] WARNING: lib/debugobjects.c:629 at debug_print_object+0x18e/0x2a0, CPU#1: kworker/1:5/5720
[ 1996.704970][ T5720] Modules linked in:
[ 1996.709558][ T5720] CPU: 1 UID: 0 PID: 5720 Comm: kworker/1:5 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1996.720808][ T5720] Tainted: [L]=SOFTLOCKUP
[ 1996.725160][ T5720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1996.736836][ T5720] Workqueue: events devcd_del
[ 1996.741767][ T5720] RIP: 0010:debug_print_object+0x19b/0x2a0
[ 1996.747616][ T5720] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d d2 bc e2 0b 41 56 48 8b 14 dd c0 36 1c 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 ac 47 d8 0b 01 48 83 c4 18 5b 5d 41 5c 41
[ 1996.767855][ T5720] RSP: 0018:ffffc90004257858 EFLAGS: 00010246
[ 1996.774075][ T5720] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000
[ 1996.783138][ T5720] RDX: ffffffff8c1c3600 RSI: ffffffff8c1c3220 RDI: ffffffff90e271e0
[ 1996.791864][ T5720] RBP: 0000000000000001 R08: ffff88804ebd5438 R09: ffffffff8bb2b700
[ 1996.800049][ T5720] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1c3220
[ 1996.808077][ T5720] R13: ffffffff8bb2b740 R14: ffffffff8a9238f0 R15: ffffc90004257958
[ 1996.816127][ T5720] FS:  0000000000000000(0000) GS:ffff88812447d000(0000) knlGS:0000000000000000
[ 1996.825238][ T5720] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1996.831971][ T5720] CR2: 000055cde1704030 CR3: 000000000e596000 CR4: 00000000003526f0
[ 1996.840071][ T5720] Call Trace:
[ 1996.843562][ T5720]  <TASK>
[ 1996.846514][ T5720]  ? __pfx_hci_devcd_timeout+0x10/0x10
[ 1996.852440][ T5720]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1996.858299][ T5720]  debug_check_no_obj_freed+0x4da/0x630
[ 1996.863977][ T5720]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[ 1996.870127][ T5720]  ? __page_table_check_zero+0x333/0x410
[ 1996.875803][ T5720]  ? __page_table_check_zero+0x338/0x410
[ 1996.882322][ T5720]  __free_frozen_pages+0x3f5/0x1040
[ 1996.887583][ T5720]  hci_release_dev+0x4ef/0x630
[ 1996.893085][ T5720]  ? __pfx_hci_release_dev+0x10/0x10
[ 1996.899947][ T5720]  ? device_release+0x97/0x270
[ 1996.904772][ T5720]  ? rcu_is_watching+0x12/0xc0
[ 1996.909651][ T5720]  ? device_release+0x97/0x270
[ 1996.914554][ T5720]  bt_host_release+0x6a/0xb0
[ 1996.919275][ T5720]  ? __pfx_bt_host_release+0x10/0x10
[ 1996.924624][ T5720]  device_release+0xd2/0x270
[ 1996.929306][ T5720]  kobject_put+0x1f7/0x640
[ 1996.933776][ T5720]  put_device+0x1f/0x30
[ 1996.937975][ T5720]  devcd_dev_release+0x122/0x170
[ 1996.943045][ T5720]  ? __pfx_devcd_dev_release+0x10/0x10
[ 1996.948614][ T5720]  device_release+0xd2/0x270
[ 1996.953250][ T5720]  kobject_put+0x1f7/0x640
[ 1996.957720][ T5720]  put_device+0x1f/0x30
[ 1996.962003][ T5720]  devcd_del+0xaf/0xd0
[ 1996.966106][ T5720]  process_one_work+0xa0e/0x1980
[ 1996.971240][ T5720]  ? __pfx_process_one_work+0x10/0x10
[ 1996.976672][ T5720]  ? __pfx_devcd_del+0x10/0x10
[ 1996.981537][ T5720]  worker_thread+0x5ef/0xe50
[ 1996.987028][ T5720]  ? kthread+0x13a/0x450
[ 1996.991935][ T5720]  ? __pfx_worker_thread+0x10/0x10
[ 1996.997092][ T5720]  kthread+0x370/0x450
[ 1997.001265][ T5720]  ? __pfx_kthread+0x10/0x10
[ 1997.005966][ T5720]  ret_from_fork+0x72b/0xd50
[ 1997.010712][ T5720]  ? __pfx_ret_from_fork+0x10/0x10
[ 1997.015862][ T5720]  ? __switch_to+0x800/0x1100
[ 1997.020648][ T5720]  ? __switch_to_asm+0x39/0x70
[ 1997.025535][ T5720]  ? __pfx_kthread+0x10/0x10
[ 1997.030202][ T5720]  ret_from_fork_asm+0x1a/0x30
[ 1997.035027][ T5720]  </TASK>
[ 1997.038082][ T5720] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1997.045395][ T5720] CPU: 1 UID: 0 PID: 5720 Comm: kworker/1:5 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1997.056380][ T5720] Tainted: [L]=SOFTLOCKUP
[ 1997.060720][ T5720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1997.070834][ T5720] Workqueue: events devcd_del
[ 1997.075553][ T5720] Call Trace:
[ 1997.078863][ T5720]  <TASK>
[ 1997.081805][ T5720]  dump_stack_lvl+0x100/0x190
[ 1997.086525][ T5720]  vpanic+0x552/0x970
[ 1997.090544][ T5720]  ? __pfx_vpanic+0x10/0x10
[ 1997.095084][ T5720]  panic+0xd1/0xe0
[ 1997.098838][ T5720]  ? __pfx_panic+0x10/0x10
[ 1997.103299][ T5720]  ? check_panic_on_warn+0x1f/0x90
[ 1997.108440][ T5720]  check_panic_on_warn.cold+0x19/0x34
[ 1997.113927][ T5720]  ? debug_print_object+0x18e/0x2a0
[ 1997.119155][ T5720]  __warn.cold+0x191/0x328
[ 1997.123606][ T5720]  __report_bug+0x296/0x3d0
[ 1997.128135][ T5720]  ? debug_print_object+0x18e/0x2a0
[ 1997.133376][ T5720]  ? __pfx___report_bug+0x10/0x10
[ 1997.138445][ T5720]  ? __lock_acquire+0x4a5/0x2630
[ 1997.143407][ T5720]  ? unwind_next_frame+0x3c8/0x2090
[ 1997.148639][ T5720]  report_bug_entry+0xe1/0x290
[ 1997.153416][ T5720]  ? debug_print_object+0x19b/0x2a0
[ 1997.158628][ T5720]  handle_bug+0x1cd/0x2a0
[ 1997.162978][ T5720]  exc_invalid_op+0x17/0x50
[ 1997.167500][ T5720]  asm_exc_invalid_op+0x1a/0x20
[ 1997.172370][ T5720] RIP: 0010:debug_print_object+0x19b/0x2a0
[ 1997.178193][ T5720] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d d2 bc e2 0b 41 56 48 8b 14 dd c0 36 1c 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 ac 47 d8 0b 01 48 83 c4 18 5b 5d 41 5c 41
[ 1997.197878][ T5720] RSP: 0018:ffffc90004257858 EFLAGS: 00010246
[ 1997.203962][ T5720] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000
[ 1997.211940][ T5720] RDX: ffffffff8c1c3600 RSI: ffffffff8c1c3220 RDI: ffffffff90e271e0
[ 1997.220003][ T5720] RBP: 0000000000000001 R08: ffff88804ebd5438 R09: ffffffff8bb2b700
[ 1997.227982][ T5720] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1c3220
[ 1997.235957][ T5720] R13: ffffffff8bb2b740 R14: ffffffff8a9238f0 R15: ffffc90004257958
[ 1997.243938][ T5720]  ? __pfx_hci_devcd_timeout+0x10/0x10
[ 1997.249429][ T5720]  ? __pfx_hci_devcd_timeout+0x10/0x10
[ 1997.254899][ T5720]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1997.260722][ T5720]  debug_check_no_obj_freed+0x4da/0x630
[ 1997.266299][ T5720]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[ 1997.272382][ T5720]  ? __page_table_check_zero+0x333/0x410
[ 1997.278030][ T5720]  ? __page_table_check_zero+0x338/0x410
[ 1997.283730][ T5720]  __free_frozen_pages+0x3f5/0x1040
[ 1997.288953][ T5720]  hci_release_dev+0x4ef/0x630
[ 1997.293821][ T5720]  ? __pfx_hci_release_dev+0x10/0x10
[ 1997.299123][ T5720]  ? device_release+0x97/0x270
[ 1997.303911][ T5720]  ? rcu_is_watching+0x12/0xc0
[ 1997.308681][ T5720]  ? device_release+0x97/0x270
[ 1997.313460][ T5720]  bt_host_release+0x6a/0xb0
[ 1997.318079][ T5720]  ? __pfx_bt_host_release+0x10/0x10
[ 1997.323380][ T5720]  device_release+0xd2/0x270
[ 1997.327984][ T5720]  kobject_put+0x1f7/0x640
[ 1997.332425][ T5720]  put_device+0x1f/0x30
[ 1997.336669][ T5720]  devcd_dev_release+0x122/0x170
[ 1997.341618][ T5720]  ? __pfx_devcd_dev_release+0x10/0x10
[ 1997.347101][ T5720]  device_release+0xd2/0x270
[ 1997.351728][ T5720]  kobject_put+0x1f7/0x640
[ 1997.356171][ T5720]  put_device+0x1f/0x30
[ 1997.360346][ T5720]  devcd_del+0xaf/0xd0
[ 1997.364432][ T5720]  process_one_work+0xa0e/0x1980
[ 1997.369394][ T5720]  ? __pfx_process_one_work+0x10/0x10
[ 1997.374791][ T5720]  ? __pfx_devcd_del+0x10/0x10
[ 1997.379570][ T5720]  worker_thread+0x5ef/0xe50
[ 1997.384179][ T5720]  ? kthread+0x13a/0x450
[ 1997.388429][ T5720]  ? __pfx_worker_thread+0x10/0x10
[ 1997.393557][ T5720]  kthread+0x370/0x450
[ 1997.397640][ T5720]  ? __pfx_kthread+0x10/0x10
[ 1997.402243][ T5720]  ret_from_fork+0x72b/0xd50
[ 1997.406846][ T5720]  ? __pfx_ret_from_fork+0x10/0x10
[ 1997.411986][ T5720]  ? __switch_to+0x800/0x1100
[ 1997.416680][ T5720]  ? __switch_to_asm+0x39/0x70
[ 1997.421459][ T5720]  ? __pfx_kthread+0x10/0x10
[ 1997.426063][ T5720]  ret_from_fork_asm+0x1a/0x30
[ 1997.430857][ T5720]  </TASK>
[ 1997.434631][ T5720] Kernel Offset: disabled
[ 1997.438982][ T5720] Rebooting in 86400 seconds..