last executing test programs:

4.548481679s ago: executing program 0 (id=406):
bind$auto(0x3, 0x0, 0x6a)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
getsockopt$auto(0xffffffffffffffff, 0x84, 0xc, 0x0, 0x0)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)

3.312924325s ago: executing program 1 (id=414):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x0)
sysfs$auto(0x2, 0xe, 0x7)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x44100, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r0, 0x4b52, 0x1)

3.063771599s ago: executing program 2 (id=425):
write$auto_fault_around_bytes_fops_(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto_TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, &(0x7f0000000200)=0x5)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r0 = socket(0x22, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x80184947, 0x0)
madvise$auto(0x0, 0x8000000000000000, 0x15)

2.903879462s ago: executing program 0 (id=418):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0x2, 0x2, 0x0)
r1 = socket(0x18, 0x5, 0x1)
connect$auto(r1, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)

2.842887252s ago: executing program 0 (id=419):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x2c, 0x940, 0x7ff, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x1fe, 0x7)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

2.741579393s ago: executing program 1 (id=420):
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
r0 = socket(0x29, 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x1, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r0, 0x89a1, 0x24)

2.516132961s ago: executing program 0 (id=421):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
shmctl$auto_SHM_STAT_ANY(0x7, 0xf, &(0x7f0000000300)={{0x3fe, 0xee00, 0xffffffffffffffff, 0x9, 0xc53a, 0x29, 0xe}, 0x4, 0xffffffffffffffff, 0xff, 0x81, @raw=0x1, @raw=0x3, 0x0, 0x0, 0x0, 0x0})
fchown$auto(0xffffffffffffffff, 0xee00, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
io_uring_setup$auto(0x2, &(0x7f0000000080)={0x80000003, 0x9, 0x4002, 0x6, 0x4, 0x8, 0xffffffffffffffff, [], {0x9, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x4000006, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x104, 0x8, 0x100000000}})
syz_clone(0x1002000, 0x0, 0x0, 0x0, 0x0, 0x0)

2.47513621s ago: executing program 2 (id=423):
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x23, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x4, @old_map_fd=0x3ff}, 0xa3)

2.230603501s ago: executing program 2 (id=426):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
splice$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x8, 0x2)

1.730148971s ago: executing program 1 (id=429):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154)
close_range$auto(0x2, r0, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptywf\x00', 0x40001, 0x0)
write$auto(0x3, 0x0, 0xf9ef)
ioctl$auto(0x3, 0x541a, r0)

1.622405851s ago: executing program 3 (id=430):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socket(0x10, 0x2, 0x4)
sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="ffa2"], 0x44}, 0x1, 0x0, 0x0, 0x10000000}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x8, 0x20056, 0x8020000000f, 0x4, 0x5f, 0x20000000000804, 0xfffffffffffffffe}, 0x6f0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc7}, 0x1, 0x0, 0x0, 0xa}, 0x7}, 0x3, 0x2)

1.459189324s ago: executing program 3 (id=431):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
socketcall$auto_SYS_ACCEPT4(0x12, &(0x7f0000000040)=0xa25)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0)
read$auto(r0, 0x0, 0x1)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0)
writev$auto(r1, &(0x7f00000000c0)={0x0, 0x7}, 0x3)
openat$auto_show_traces_fops_trace(0xffffffffffffff9c, &(0x7f0000001cc0)='/sys/kernel/debug/tracing/available_tracers\x00', 0x100, 0x0)

854.976777ms ago: executing program 3 (id=432):
mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0xffffffffffffffff, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
modify_ldt$auto(0x2, 0x0, 0x80)
modify_ldt$auto(0x1, 0x0, 0x10)
r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
io_uring_setup$auto(0x2008, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x403c6f2b, 0x0)

696.227288ms ago: executing program 1 (id=433):
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x4e20, @rand_addr=0xfffffffe}, 0x57)
setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8)

604.34861ms ago: executing program 2 (id=434):
r0 = socket(0xa, 0x3, 0x5)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000180)={{&(0x7f0000000040), 0xc8b, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x8000005}, 0x3b8b, 0xa)

603.747879ms ago: executing program 3 (id=435):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x1004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
clone$auto(0x4, 0x6, 0x0, 0x0, 0x7)
setreuid$auto(0x0, 0x0)
r0 = getpid()
process_vm_readv$auto(r0, &(0x7f0000000180)={0x0, 0x1002}, 0x1, &(0x7f0000000280)={0x0, 0x401}, 0x6, 0x0)

522.144803ms ago: executing program 0 (id=436):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0xa, 0x1, 0x0)
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x8a403, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
prctl$auto_PR_GET_TSC(0x19, 0xa, 0x0, 0x0, 0xd)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6)
close_range$auto(0x2, 0x8, 0x0)

400.333345ms ago: executing program 2 (id=437):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x28, 0x5, 0x0)
r0 = socket(0x2a, 0x2, 0x1)
connect$auto(r0, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0xfffffffe}, 0x55)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)

314.375358ms ago: executing program 3 (id=438):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0x10, 0x2, 0x4)
sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="ffa2"], 0x44}, 0x1, 0x0, 0x0, 0x10000000}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0x7, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x8, 0x20016, 0x8020000000f, 0x10000, 0x5f, 0x20000000000804, 0x2}, 0x6f0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0xa}, 0x7}, 0x3, 0x2)

203.469466ms ago: executing program 0 (id=439):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
r0 = pipe$auto(0x0)
r1 = epoll_create$auto(0x3e)
epoll_ctl$auto(r1, 0x1, 0x8000000000000000, 0x0)
read$auto_tracing_pipe_fops_trace(r0, &(0x7f0000000180)=""/81, 0x51)
write$auto(0x1, 0x0, 0x100)

195.681779ms ago: executing program 1 (id=440):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
setresuid$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r0, r0, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video57\x00', 0xa240, 0x0)
ioctl$auto(r1, 0xc0585611, r1)

45.208628ms ago: executing program 1 (id=441):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x103800, 0x0)
r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x80040, 0x40, 0xe}, 0x18)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000280)='/dev/radio26\x00', 0x169100, 0x0)
fremovexattr$auto(r0, &(0x7f0000000000)='system.posix_acl_access\x00')

19.821372ms ago: executing program 2 (id=442):
clock_adjtime$auto(0x0, &(0x7f0000000040)={0xfbb, 0x0, 0x7f, 0xfffffffff7fffffe, 0x600, 0x1, 0x7, 0x0, 0x7, 0x8, 0x5, {0x3ff, 0x7}, 0xfffffffffffffffa, 0xa5, 0xa, 0x13c, 0x0, 0xc3, 0x1000, 0x800000000000007, 0x5, 0x90, 0xfffffff5})
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x7)
r0 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r1=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1}, 0x6a)

0s ago: executing program 3 (id=443):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0x4020aea5, 0x38)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.134' (ED25519) to the list of known hosts.
syzkaller login: [   99.081973][ T5816] cgroup: Unknown subsys name 'net'
[   99.234948][ T5816] cgroup: Unknown subsys name 'cpuset'
[   99.244824][ T5816] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  101.100059][ T5816] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  102.362990][  T982] cfg80211: failed to load regulatory.db
[  103.388755][ T5833] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  103.411176][ T5833] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  103.420007][ T5833] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  103.431677][ T5833] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  103.441099][ T5833] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  103.546206][ T5833] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  103.554991][ T5833] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  103.562838][ T5833] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  103.571712][ T5833] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  103.592895][ T5839] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  103.601945][ T5839] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  103.609766][ T5839] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  103.618315][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  103.626652][ T5839] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  103.634585][ T5839] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  103.642976][ T5839] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  103.662269][ T5839] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  103.681514][ T5839] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  103.724579][ T5843] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  103.741004][ T5843] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  103.885904][ T5832] chnl_net:caif_netlink_parms(): no params data found
[  104.143671][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.151109][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.158782][ T5832] bridge_slave_0: entered allmulticast mode
[  104.167202][ T5832] bridge_slave_0: entered promiscuous mode
[  104.180374][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.188213][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.195453][ T5832] bridge_slave_1: entered allmulticast mode
[  104.203268][ T5832] bridge_slave_1: entered promiscuous mode
[  104.296758][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  104.358627][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  104.506098][ T5832] team0: Port device team_slave_0 added
[  104.512777][ T5838] chnl_net:caif_netlink_parms(): no params data found
[  104.533736][ T5832] team0: Port device team_slave_1 added
[  104.622996][ T5837] chnl_net:caif_netlink_parms(): no params data found
[  104.635976][ T5835] chnl_net:caif_netlink_parms(): no params data found
[  104.654758][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.662398][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.688356][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.708056][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.715187][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.741168][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.879261][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.886661][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.894467][ T5838] bridge_slave_0: entered allmulticast mode
[  104.901970][ T5838] bridge_slave_0: entered promiscuous mode
[  104.937829][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.945205][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.952606][ T5838] bridge_slave_1: entered allmulticast mode
[  104.959978][ T5838] bridge_slave_1: entered promiscuous mode
[  104.984670][ T5832] hsr_slave_0: entered promiscuous mode
[  104.991338][ T5832] hsr_slave_1: entered promiscuous mode
[  105.092561][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.099735][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.107463][ T5837] bridge_slave_0: entered allmulticast mode
[  105.115157][ T5837] bridge_slave_0: entered promiscuous mode
[  105.125804][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.148269][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.155640][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.163250][ T5835] bridge_slave_0: entered allmulticast mode
[  105.171317][ T5835] bridge_slave_0: entered promiscuous mode
[  105.178941][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.186292][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.193963][ T5837] bridge_slave_1: entered allmulticast mode
[  105.201613][ T5837] bridge_slave_1: entered promiscuous mode
[  105.211110][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.227713][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.235084][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.242652][ T5835] bridge_slave_1: entered allmulticast mode
[  105.250017][ T5835] bridge_slave_1: entered promiscuous mode
[  105.360127][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.372860][ T5838] team0: Port device team_slave_0 added
[  105.382059][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.400277][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.412201][ T5838] team0: Port device team_slave_1 added
[  105.454246][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.481404][ T5833] Bluetooth: hci0: command tx timeout
[  105.494358][ T5837] team0: Port device team_slave_0 added
[  105.550148][ T5837] team0: Port device team_slave_1 added
[  105.572255][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.579250][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.605451][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.640987][ T5835] team0: Port device team_slave_0 added
[  105.647855][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.654940][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.681611][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.716474][ T5835] team0: Port device team_slave_1 added
[  105.737233][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.744378][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.770941][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.800674][ T5833] Bluetooth: hci2: command tx timeout
[  105.801129][   T52] Bluetooth: hci3: command tx timeout
[  105.812800][ T5843] Bluetooth: hci1: command tx timeout
[  105.826756][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.837693][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.863816][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.876361][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.883885][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.910035][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.922985][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.929966][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.956740][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  106.082107][ T5838] hsr_slave_0: entered promiscuous mode
[  106.088544][ T5838] hsr_slave_1: entered promiscuous mode
[  106.095340][ T5838] debugfs: 'hsr0' already exists in 'hsr'
[  106.101259][ T5838] Cannot create hsr debugfs directory
[  106.135971][ T5837] hsr_slave_0: entered promiscuous mode
[  106.142520][ T5837] hsr_slave_1: entered promiscuous mode
[  106.148731][ T5837] debugfs: 'hsr0' already exists in 'hsr'
[  106.154559][ T5837] Cannot create hsr debugfs directory
[  106.183330][ T5835] hsr_slave_0: entered promiscuous mode
[  106.190791][ T5835] hsr_slave_1: entered promiscuous mode
[  106.196968][ T5835] debugfs: 'hsr0' already exists in 'hsr'
[  106.203167][ T5835] Cannot create hsr debugfs directory
[  106.306115][ T5832] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  106.343448][ T5832] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  106.373083][ T5832] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  106.402008][ T5832] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  106.652866][ T5837] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  106.665750][ T5837] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  106.691117][ T5837] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  106.716872][ T5837] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  106.795441][ T5838] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  106.806281][ T5838] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  106.835031][ T5838] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  106.847851][ T5838] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  106.899188][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.957927][ T5835] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  106.969151][ T5835] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  106.983133][ T5835] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  106.993906][ T5835] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  107.034880][ T5832] 8021q: adding VLAN 0 to HW filter on device team0
[  107.065913][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.073221][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.137204][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0
[  107.165883][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.173110][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.219802][ T5837] 8021q: adding VLAN 0 to HW filter on device team0
[  107.255674][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.262965][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.290338][   T61] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.297565][   T61] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.317924][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0
[  107.338877][ T5832] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  107.416675][ T5838] 8021q: adding VLAN 0 to HW filter on device team0
[  107.466850][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.474091][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.489871][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0
[  107.526579][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.533834][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.558741][ T5835] 8021q: adding VLAN 0 to HW filter on device team0
[  107.572766][ T5843] Bluetooth: hci0: command tx timeout
[  107.635238][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.642479][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.682435][ T5838] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  107.745808][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.753134][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.881516][   T52] Bluetooth: hci3: command tx timeout
[  107.884055][ T5833] Bluetooth: hci2: command tx timeout
[  107.887164][ T5843] Bluetooth: hci1: command tx timeout
[  107.927374][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.003808][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.059713][ T5832] veth0_vlan: entered promiscuous mode
[  108.135656][ T5832] veth1_vlan: entered promiscuous mode
[  108.185990][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.197148][ T5837] veth0_vlan: entered promiscuous mode
[  108.269767][ T5837] veth1_vlan: entered promiscuous mode
[  108.305612][ T5832] veth0_macvtap: entered promiscuous mode
[  108.316650][ T5832] veth1_macvtap: entered promiscuous mode
[  108.333597][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.375933][ T5837] veth0_macvtap: entered promiscuous mode
[  108.393311][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.408100][ T5837] veth1_macvtap: entered promiscuous mode
[  108.425475][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.446820][ T5838] veth0_vlan: entered promiscuous mode
[  108.467751][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.476354][ T1166] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.486121][ T1166] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.510014][ T5838] veth1_vlan: entered promiscuous mode
[  108.517071][ T1166] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.527305][ T1166] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.547370][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.569000][   T61] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.588834][   T61] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.598413][   T61] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.627154][   T61] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.648994][ T5835] veth0_vlan: entered promiscuous mode
[  108.675208][ T5835] veth1_vlan: entered promiscuous mode
[  108.738452][ T5838] veth0_macvtap: entered promiscuous mode
[  108.767590][ T5838] veth1_macvtap: entered promiscuous mode
[  108.796009][ T1166] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.804942][ T1166] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.865638][ T5835] veth0_macvtap: entered promiscuous mode
[  108.880931][ T1113] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.888809][ T1113] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.903619][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.914314][ T5835] veth1_macvtap: entered promiscuous mode
[  108.943485][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.965440][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.974272][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.985001][ T1113] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.999938][ T1113] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.041986][   T50] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.058149][   T50] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.093983][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.104104][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.107512][ T5832] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  109.135230][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.155204][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.254128][   T50] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.271990][   T50] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.299161][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.321360][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.332523][   T50] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.371295][   T50] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.474220][ T5918] netlink: 'syz.3.4': attribute type 1 has an invalid length.
[  109.480324][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.490791][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.642067][ T5843] Bluetooth: hci0: command tx timeout
[  109.698830][ T5924] netlink: 'syz.3.6': attribute type 28 has an invalid length.
[  109.707171][ T1166] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.715787][ T1166] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.726207][ T5924] netlink: 334 bytes leftover after parsing attributes in process `syz.3.6'.
[  109.738744][ T5924] Zero length message leads to an empty skb
[  109.904202][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.922145][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.963566][ T5843] Bluetooth: hci2: command tx timeout
[  109.969143][ T5843] Bluetooth: hci1: command tx timeout
[  109.975856][ T5833] Bluetooth: hci3: command tx timeout
[  110.456598][   T30] audit: type=1804 audit(1760970524.671:2): pid=5942 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.9" name="/newroot/3/file0" dev="tmpfs" ino=35 res=1 errno=0
[  110.565656][   T30] audit: type=1804 audit(1760970524.781:3): pid=5938 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.9" name="/newroot/3/file0" dev="tmpfs" ino=35 res=1 errno=0
[  110.574760][ T5941] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  111.721021][ T5843] Bluetooth: hci0: command tx timeout
[  112.042330][ T5843] Bluetooth: hci1: command tx timeout
[  112.042337][ T5833] Bluetooth: hci2: command tx timeout
[  112.051994][ T5833] Bluetooth: hci3: command tx timeout
[  113.407304][ T6008] FAULT_INJECTION: forcing a failure.
[  113.407304][ T6008] name failslab, interval 1, probability 0, space 0, times 1
[  113.450796][ T6008] CPU: 0 UID: 0 PID: 6008 Comm: syz.2.36 Not tainted syzkaller #0 PREEMPT(full) 
[  113.450838][ T6008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  113.450861][ T6008] Call Trace:
[  113.450871][ T6008]  <TASK>
[  113.450883][ T6008]  dump_stack_lvl+0x16c/0x1f0
[  113.450930][ T6008]  should_fail_ex+0x512/0x640
[  113.450971][ T6008]  ? __kmalloc_noprof+0xca/0x880
[  113.451012][ T6008]  should_failslab+0xc2/0x120
[  113.451042][ T6008]  __kmalloc_noprof+0xdd/0x880
[  113.451077][ T6008]  ? __lock_acquire+0x622/0x1c90
[  113.451108][ T6008]  ? sk_prot_alloc+0x1a8/0x2a0
[  113.451153][ T6008]  ? sk_prot_alloc+0x1a8/0x2a0
[  113.451189][ T6008]  sk_prot_alloc+0x1a8/0x2a0
[  113.451230][ T6008]  sk_alloc+0x36/0xc20
[  113.451262][ T6008]  pppol2tp_create+0x32/0x250
[  113.451308][ T6008]  pppox_create+0x15c/0x2c0
[  113.451350][ T6008]  __sock_create+0x338/0x8d0
[  113.451398][ T6008]  __sys_socket+0x14d/0x260
[  113.451442][ T6008]  ? __pfx___sys_socket+0x10/0x10
[  113.451502][ T6008]  ? __pfx_do_pwritev+0x10/0x10
[  113.451554][ T6008]  __x64_sys_socket+0x72/0xb0
[  113.451598][ T6008]  ? lockdep_hardirqs_on+0x7c/0x110
[  113.451647][ T6008]  do_syscall_64+0xcd/0xfa0
[  113.451684][ T6008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.451713][ T6008] RIP: 0033:0x7f1e7118efc9
[  113.451742][ T6008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.451797][ T6008] RSP: 002b:00007f1e72033038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  113.451826][ T6008] RAX: ffffffffffffffda RBX: 00007f1e713e5fa0 RCX: 00007f1e7118efc9
[  113.451846][ T6008] RDX: 0000000000000001 RSI: 0000000000000005 RDI: 0000000000000018
[  113.451864][ T6008] RBP: 00007f1e71211f91 R08: 0000000000000000 R09: 0000000000000000
[  113.451884][ T6008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  113.451902][ T6008] R13: 00007f1e713e6038 R14: 00007f1e713e5fa0 R15: 00007ffd3af9c758
[  113.451945][ T6008]  </TASK>
[  113.927183][ T6010] Format for adding new port is "id [perm_addr]" (uint MAC).
[  114.426036][ T6024] FAULT_INJECTION: forcing a failure.
[  114.426036][ T6024] name failslab, interval 1, probability 0, space 0, times 0
[  114.464035][ T6024] CPU: 1 UID: 0 PID: 6024 Comm: syz.2.43 Not tainted syzkaller #0 PREEMPT(full) 
[  114.464083][ T6024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  114.464101][ T6024] Call Trace:
[  114.464111][ T6024]  <TASK>
[  114.464123][ T6024]  dump_stack_lvl+0x16c/0x1f0
[  114.464167][ T6024]  should_fail_ex+0x512/0x640
[  114.464196][ T6024]  ? __kmalloc_cache_noprof+0x5f/0x780
[  114.464242][ T6024]  should_failslab+0xc2/0x120
[  114.464275][ T6024]  __kmalloc_cache_noprof+0x72/0x780
[  114.464318][ T6024]  ? open_substream+0xec/0x990
[  114.464352][ T6024]  ? open_substream+0xec/0x990
[  114.464381][ T6024]  open_substream+0xec/0x990
[  114.464418][ T6024]  rawmidi_open_priv+0x543/0x6e0
[  114.464456][ T6024]  snd_rawmidi_open+0x4cb/0xbf0
[  114.464497][ T6024]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  114.464532][ T6024]  ? __pfx_default_wake_function+0x10/0x10
[  114.464581][ T6024]  ? do_raw_spin_lock+0x12c/0x2b0
[  114.464626][ T6024]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  114.464658][ T6024]  snd_open+0x22d/0x4c0
[  114.464698][ T6024]  ? __pfx_snd_open+0x10/0x10
[  114.464739][ T6024]  chrdev_open+0x234/0x6a0
[  114.464791][ T6024]  ? __pfx_chrdev_open+0x10/0x10
[  114.464844][ T6024]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  114.464900][ T6024]  do_dentry_open+0x982/0x1530
[  114.464969][ T6024]  ? __pfx_chrdev_open+0x10/0x10
[  114.465028][ T6024]  vfs_open+0x82/0x3f0
[  114.465066][ T6024]  path_openat+0x1de4/0x2cb0
[  114.465124][ T6024]  ? __pfx_path_openat+0x10/0x10
[  114.465170][ T6024]  ? __lock_acquire+0xb8a/0x1c90
[  114.465206][ T6024]  do_filp_open+0x20b/0x470
[  114.465250][ T6024]  ? __pfx_do_filp_open+0x10/0x10
[  114.465322][ T6024]  ? alloc_fd+0x471/0x7d0
[  114.465374][ T6024]  do_sys_openat2+0x11b/0x1d0
[  114.465407][ T6024]  ? __pfx_do_sys_openat2+0x10/0x10
[  114.465458][ T6024]  __x64_sys_openat+0x174/0x210
[  114.465494][ T6024]  ? __pfx___x64_sys_openat+0x10/0x10
[  114.465545][ T6024]  do_syscall_64+0xcd/0xfa0
[  114.465586][ T6024]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.465616][ T6024] RIP: 0033:0x7f1e7118efc9
[  114.465640][ T6024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.465668][ T6024] RSP: 002b:00007f1e72033038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  114.465722][ T6024] RAX: ffffffffffffffda RBX: 00007f1e713e5fa0 RCX: 00007f1e7118efc9
[  114.465743][ T6024] RDX: 0000000000080002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  114.465762][ T6024] RBP: 00007f1e71211f91 R08: 0000000000000000 R09: 0000000000000000
[  114.465780][ T6024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  114.465799][ T6024] R13: 00007f1e713e6038 R14: 00007f1e713e5fa0 R15: 00007ffd3af9c758
[  114.465839][ T6024]  </TASK>
[  115.340804][ T6035] HfR: entered promiscuous mode
[  115.399181][ T6035] netlink: 12 bytes leftover after parsing attributes in process `syz.1.48'.
[  115.449207][ T6035] HfR: left promiscuous mode
[  116.837342][ T6067] netlink: 330 bytes leftover after parsing attributes in process `syz.2.60'.
[  118.344850][ T5833] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  118.994759][ T6103] mmap: syz.1.73 (6103) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  119.157101][ T6112] FAULT_INJECTION: forcing a failure.
[  119.157101][ T6112] name failslab, interval 1, probability 0, space 0, times 0
[  119.174581][ T6112] CPU: 1 UID: 0 PID: 6112 Comm: syz.3.76 Not tainted syzkaller #0 PREEMPT(full) 
[  119.174619][ T6112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  119.174634][ T6112] Call Trace:
[  119.174643][ T6112]  <TASK>
[  119.174653][ T6112]  dump_stack_lvl+0x16c/0x1f0
[  119.174691][ T6112]  should_fail_ex+0x512/0x640
[  119.174715][ T6112]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  119.174763][ T6112]  should_failslab+0xc2/0x120
[  119.174795][ T6112]  kmem_cache_alloc_noprof+0x75/0x6e0
[  119.174838][ T6112]  ? security_file_alloc+0x34/0x2b0
[  119.174887][ T6112]  ? security_file_alloc+0x34/0x2b0
[  119.174926][ T6112]  security_file_alloc+0x34/0x2b0
[  119.174966][ T6112]  init_file+0x93/0x4c0
[  119.174998][ T6112]  alloc_empty_file+0x73/0x1e0
[  119.175034][ T6112]  alloc_file_pseudo+0x13a/0x230
[  119.175070][ T6112]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  119.175105][ T6112]  ? tipc_sk_finish_conn+0x580/0x790
[  119.175161][ T6112]  sock_alloc_file+0x50/0x210
[  119.175217][ T6112]  __sys_socketpair+0x31c/0x5a0
[  119.175267][ T6112]  ? __pfx___sys_socketpair+0x10/0x10
[  119.175319][ T6112]  ? xfd_validate_state+0x61/0x180
[  119.175352][ T6112]  ? __pfx_do_writev+0x10/0x10
[  119.175403][ T6112]  __x64_sys_socketpair+0x96/0x100
[  119.175450][ T6112]  ? lockdep_hardirqs_on+0x7c/0x110
[  119.175489][ T6112]  do_syscall_64+0xcd/0xfa0
[  119.175531][ T6112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.175570][ T6112] RIP: 0033:0x7f27f6d8efc9
[  119.175596][ T6112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.175627][ T6112] RSP: 002b:00007f27f7b9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  119.175657][ T6112] RAX: ffffffffffffffda RBX: 00007f27f6fe5fa0 RCX: 00007f27f6d8efc9
[  119.175677][ T6112] RDX: 8000000000000000 RSI: 0000000000000004 RDI: 000000000000001e
[  119.175696][ T6112] RBP: 00007f27f6e11f91 R08: 0000000000000000 R09: 0000000000000000
[  119.175715][ T6112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  119.175733][ T6112] R13: 00007f27f6fe6038 R14: 00007f27f6fe5fa0 R15: 00007fff3dd7f728
[  119.175776][ T6112]  </TASK>
[  119.751635][ T6121] FAULT_INJECTION: forcing a failure.
[  119.751635][ T6121] name failslab, interval 1, probability 0, space 0, times 0
[  119.806264][ T6121] CPU: 1 UID: 0 PID: 6121 Comm: syz.3.79 Not tainted syzkaller #0 PREEMPT(full) 
[  119.806303][ T6121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  119.806321][ T6121] Call Trace:
[  119.806331][ T6121]  <TASK>
[  119.806342][ T6121]  dump_stack_lvl+0x16c/0x1f0
[  119.806386][ T6121]  should_fail_ex+0x512/0x640
[  119.806417][ T6121]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[  119.806473][ T6121]  should_failslab+0xc2/0x120
[  119.806516][ T6121]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[  119.806570][ T6121]  ? kstrdup_const+0x63/0x80
[  119.806623][ T6121]  ? kstrdup+0x53/0x100
[  119.806663][ T6121]  kstrdup+0x53/0x100
[  119.806711][ T6121]  kstrdup_const+0x63/0x80
[  119.806757][ T6121]  alloc_vfsmnt+0xea/0x6b0
[  119.806785][ T6121]  ? __pfx___might_resched+0x10/0x10
[  119.806835][ T6121]  clone_mnt+0x4b/0x930
[  119.806875][ T6121]  copy_tree+0xee/0xbd0
[  119.806917][ T6121]  ? __pfx_down_write+0x10/0x10
[  119.806971][ T6121]  copy_mnt_ns+0x1a9/0xac0
[  119.807015][ T6121]  ? rcu_is_watching+0x12/0xc0
[  119.807070][ T6121]  create_new_namespaces+0xd3/0xa90
[  119.807117][ T6121]  ? bpf_lsm_capable+0x9/0x10
[  119.807147][ T6121]  ? security_capable+0x7e/0x260
[  119.807185][ T6121]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  119.807238][ T6121]  ksys_unshare+0x45b/0xa40
[  119.807272][ T6121]  ? __pfx_ksys_unshare+0x10/0x10
[  119.807309][ T6121]  ? xfd_validate_state+0x61/0x180
[  119.807357][ T6121]  __x64_sys_unshare+0x31/0x40
[  119.807388][ T6121]  do_syscall_64+0xcd/0xfa0
[  119.807431][ T6121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.807464][ T6121] RIP: 0033:0x7f27f6d8efc9
[  119.807502][ T6121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.807533][ T6121] RSP: 002b:00007f27f7b79038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  119.807563][ T6121] RAX: ffffffffffffffda RBX: 00007f27f6fe6090 RCX: 00007f27f6d8efc9
[  119.807584][ T6121] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000020000
[  119.807602][ T6121] RBP: 00007f27f6e11f91 R08: 0000000000000000 R09: 0000000000000000
[  119.807621][ T6121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  119.807640][ T6121] R13: 00007f27f6fe6128 R14: 00007f27f6fe6090 R15: 00007fff3dd7f728
[  119.807684][ T6121]  </TASK>
[  120.416935][ T6129] netlink: 330 bytes leftover after parsing attributes in process `syz.3.83'.
[  120.569597][ T5833] Bluetooth: hci2: unexpected event 0x01 length: 5 > 1
[  120.809083][ T6136] 
[  120.986292][ T6142] vivid-003: =================  START STATUS  =================
[  121.003902][ T6142] vivid-003: Radio HW Seek Mode: Bounded
[  121.013989][ T6142] vivid-003: Radio Programmable HW Seek: false
[  121.025139][ T6142] vivid-003: RDS Rx I/O Mode: Block I/O
[  121.034562][ T6142] vivid-003: Generate RBDS Instead of RDS: false
[  121.054079][ T6142] vivid-003: RDS Reception: true
[  121.070780][ T6142] vivid-003: RDS Program Type: 0 inactive
[  121.077099][ T6142] vivid-003: RDS PS Name:  inactive
[  121.108703][ T6142] vivid-003: RDS Radio Text:  inactive
[  121.118821][ T6142] vivid-003: RDS Traffic Announcement: false inactive
[  121.141715][ T6142] vivid-003: RDS Traffic Program: false inactive
[  121.153824][ T6142] vivid-003: RDS Music: false inactive
[  121.181172][ T6142] vivid-003: ==================  END STATUS  ==================
[  122.102141][ T6172] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  122.444068][ T6177] capability: warning: `syz.0.109' uses 32-bit capabilities (legacy support in use)
[  123.386315][ T6204] netlink: 342 bytes leftover after parsing attributes in process `syz.3.108'.
[  123.817397][ T6211] netlink: 28 bytes leftover after parsing attributes in process `syz.1.111'.
[  124.041462][ T6214] FAULT_INJECTION: forcing a failure.
[  124.041462][ T6214] name failslab, interval 1, probability 0, space 0, times 0
[  124.056297][ T6214] CPU: 1 UID: 0 PID: 6214 Comm: syz.1.113 Not tainted syzkaller #0 PREEMPT(full) 
[  124.056337][ T6214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  124.056354][ T6214] Call Trace:
[  124.056364][ T6214]  <TASK>
[  124.056375][ T6214]  dump_stack_lvl+0x16c/0x1f0
[  124.056419][ T6214]  should_fail_ex+0x512/0x640
[  124.056449][ T6214]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  124.056494][ T6214]  should_failslab+0xc2/0x120
[  124.056524][ T6214]  kmem_cache_alloc_noprof+0x75/0x6e0
[  124.056563][ T6214]  ? alloc_empty_file+0x55/0x1e0
[  124.056601][ T6214]  ? alloc_empty_file+0x55/0x1e0
[  124.056630][ T6214]  ? _raw_spin_unlock+0x28/0x50
[  124.056659][ T6214]  alloc_empty_file+0x55/0x1e0
[  124.056692][ T6214]  alloc_file_pseudo+0x13a/0x230
[  124.056728][ T6214]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  124.056758][ T6214]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  124.056810][ T6214]  create_pipe_files+0x364/0x9a0
[  124.056861][ T6214]  do_pipe2+0xaf/0x1c0
[  124.056913][ T6214]  ? __pfx_do_pipe2+0x10/0x10
[  124.056959][ T6214]  ? xfd_validate_state+0x61/0x180
[  124.056990][ T6214]  ? __pfx_do_writev+0x10/0x10
[  124.057040][ T6214]  __x64_sys_pipe+0x33/0x50
[  124.057066][ T6214]  do_syscall_64+0xcd/0xfa0
[  124.057110][ T6214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.057140][ T6214] RIP: 0033:0x7fac7538efc9
[  124.057164][ T6214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.057193][ T6214] RSP: 002b:00007fac761ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  124.057221][ T6214] RAX: ffffffffffffffda RBX: 00007fac755e5fa0 RCX: 00007fac7538efc9
[  124.057240][ T6214] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  124.057257][ T6214] RBP: 00007fac75411f91 R08: 0000000000000000 R09: 0000000000000000
[  124.057275][ T6214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  124.057291][ T6214] R13: 00007fac755e6038 R14: 00007fac755e5fa0 R15: 00007ffd4d5620e8
[  124.057331][ T6214]  </TASK>
[  124.699355][ T6220] svc: failed to register nfsdv3 RPC service (errno 111).
[  124.714708][ T6220] svc: failed to register nfsaclv3 RPC service (errno 111).
[  125.130713][ T6226] netlink: 20 bytes leftover after parsing attributes in process `syz.1.124'.
[  125.332791][ T6230] netlink: 334 bytes leftover after parsing attributes in process `syz.2.118'.
[  126.112016][ T6252] FAULT_INJECTION: forcing a failure.
[  126.112016][ T6252] name failslab, interval 1, probability 0, space 0, times 0
[  126.163152][ T6252] CPU: 1 UID: 0 PID: 6252 Comm: syz.3.128 Not tainted syzkaller #0 PREEMPT(full) 
[  126.163192][ T6252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  126.163210][ T6252] Call Trace:
[  126.163219][ T6252]  <TASK>
[  126.163230][ T6252]  dump_stack_lvl+0x16c/0x1f0
[  126.163273][ T6252]  should_fail_ex+0x512/0x640
[  126.163301][ T6252]  ? __kmalloc_cache_noprof+0x5f/0x780
[  126.163347][ T6252]  should_failslab+0xc2/0x120
[  126.163377][ T6252]  __kmalloc_cache_noprof+0x72/0x780
[  126.163417][ T6252]  ? binder_open+0x148/0xde0
[  126.163454][ T6252]  ? binder_open+0x148/0xde0
[  126.163483][ T6252]  binder_open+0x148/0xde0
[  126.163513][ T6252]  ? __pfx_apparmor_file_open+0x10/0x10
[  126.163547][ T6252]  ? __pfx_binder_open+0x10/0x10
[  126.163579][ T6252]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  126.163630][ T6252]  do_dentry_open+0x982/0x1530
[  126.163676][ T6252]  ? __pfx_binder_open+0x10/0x10
[  126.163772][ T6252]  vfs_open+0x82/0x3f0
[  126.163811][ T6252]  path_openat+0x1de4/0x2cb0
[  126.163869][ T6252]  ? __pfx_path_openat+0x10/0x10
[  126.163916][ T6252]  ? __lock_acquire+0xb8a/0x1c90
[  126.163951][ T6252]  do_filp_open+0x20b/0x470
[  126.163995][ T6252]  ? __pfx_do_filp_open+0x10/0x10
[  126.164064][ T6252]  ? alloc_fd+0x471/0x7d0
[  126.164115][ T6252]  do_sys_openat2+0x11b/0x1d0
[  126.164148][ T6252]  ? __pfx_do_sys_openat2+0x10/0x10
[  126.164197][ T6252]  __x64_sys_openat+0x174/0x210
[  126.164232][ T6252]  ? __pfx___x64_sys_openat+0x10/0x10
[  126.164282][ T6252]  do_syscall_64+0xcd/0xfa0
[  126.164323][ T6252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.164352][ T6252] RIP: 0033:0x7f27f6d8efc9
[  126.164377][ T6252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.164404][ T6252] RSP: 002b:00007f27f7b9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  126.164431][ T6252] RAX: ffffffffffffffda RBX: 00007f27f6fe5fa0 RCX: 00007f27f6d8efc9
[  126.164449][ T6252] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  126.164468][ T6252] RBP: 00007f27f6e11f91 R08: 0000000000000000 R09: 0000000000000000
[  126.164486][ T6252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  126.164502][ T6252] R13: 00007f27f6fe6038 R14: 00007f27f6fe5fa0 R15: 00007fff3dd7f728
[  126.164541][ T6252]  </TASK>
[  126.663989][ T6260] FAULT_INJECTION: forcing a failure.
[  126.663989][ T6260] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  126.721552][ T6260] CPU: 0 UID: 0 PID: 6260 Comm: syz.1.137 Not tainted syzkaller #0 PREEMPT(full) 
[  126.721594][ T6260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  126.721611][ T6260] Call Trace:
[  126.721622][ T6260]  <TASK>
[  126.721633][ T6260]  dump_stack_lvl+0x16c/0x1f0
[  126.721679][ T6260]  should_fail_ex+0x512/0x640
[  126.721716][ T6260]  should_fail_alloc_page+0xe7/0x130
[  126.721750][ T6260]  prepare_alloc_pages+0x3c2/0x610
[  126.721781][ T6260]  ? arch_stack_walk+0xa6/0x100
[  126.721824][ T6260]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  126.721877][ T6260]  ? stack_trace_save+0x8e/0xc0
[  126.721931][ T6260]  ? __pfx_stack_trace_save+0x10/0x10
[  126.721976][ T6260]  ? stack_depot_save_flags+0x29/0x9c0
[  126.722010][ T6260]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  126.722056][ T6260]  ? kasan_save_stack+0x42/0x60
[  126.722099][ T6260]  ? kasan_save_stack+0x33/0x60
[  126.722139][ T6260]  ? kasan_save_track+0x14/0x30
[  126.722182][ T6260]  ? __kasan_slab_alloc+0x89/0x90
[  126.722206][ T6260]  ? kmem_cache_alloc_noprof+0x250/0x6e0
[  126.722246][ T6260]  ? security_inode_alloc+0x3b/0x2b0
[  126.722279][ T6260]  ? inode_init_always_gfp+0xce4/0x1030
[  126.722322][ T6260]  ? do_syscall_64+0xcd/0xfa0
[  126.722356][ T6260]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.722394][ T6260]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  126.722437][ T6260]  ? policy_nodemask+0xea/0x4e0
[  126.722471][ T6260]  alloc_pages_mpol+0x1fb/0x550
[  126.722504][ T6260]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  126.722545][ T6260]  ___kmalloc_large_node+0xed/0x160
[  126.722575][ T6260]  ? __lock_acquire+0x622/0x1c90
[  126.722609][ T6260]  __kmalloc_large_node_noprof+0x1c/0x70
[  126.722644][ T6260]  __kmalloc_noprof.cold+0xc/0x62
[  126.722689][ T6260]  ? sk_prot_alloc+0x1a8/0x2a0
[  126.722733][ T6260]  ? sk_prot_alloc+0x1a8/0x2a0
[  126.722771][ T6260]  sk_prot_alloc+0x1a8/0x2a0
[  126.722813][ T6260]  sk_alloc+0x36/0xc20
[  126.722844][ T6260]  can_create+0x1e5/0x630
[  126.722886][ T6260]  __sock_create+0x338/0x8d0
[  126.722944][ T6260]  __sys_socket+0x14d/0x260
[  126.722989][ T6260]  ? __pfx___sys_socket+0x10/0x10
[  126.723032][ T6260]  ? xfd_validate_state+0x61/0x180
[  126.723062][ T6260]  ? __pfx_ksys_write+0x10/0x10
[  126.723113][ T6260]  __x64_sys_socket+0x72/0xb0
[  126.723153][ T6260]  ? lockdep_hardirqs_on+0x7c/0x110
[  126.723189][ T6260]  do_syscall_64+0xcd/0xfa0
[  126.723228][ T6260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.723258][ T6260] RIP: 0033:0x7fac7538efc9
[  126.723281][ T6260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.723310][ T6260] RSP: 002b:00007fac761ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  126.723338][ T6260] RAX: ffffffffffffffda RBX: 00007fac755e5fa0 RCX: 00007fac7538efc9
[  126.723357][ T6260] RDX: 0000000000000006 RSI: 0000000000000002 RDI: 000000000000001d
[  126.723375][ T6260] RBP: 00007fac75411f91 R08: 0000000000000000 R09: 0000000000000000
[  126.723392][ T6260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  126.723410][ T6260] R13: 00007fac755e6038 R14: 00007fac755e5fa0 R15: 00007ffd4d5620e8
[  126.723450][ T6260]  </TASK>
[  127.472413][ T6279] ima: policy update failed
[  127.496486][   T30] audit: type=1802 audit(1760970541.691:4): pid=6279 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.132" res=0 errno=0
[  128.030831][ T6291] netlink: 334 bytes leftover after parsing attributes in process `syz.1.138'.
[  128.673022][ T6319] FAULT_INJECTION: forcing a failure.
[  128.673022][ T6319] name failslab, interval 1, probability 0, space 0, times 0
[  128.699882][ T6319] CPU: 0 UID: 0 PID: 6319 Comm: syz.2.143 Not tainted syzkaller #0 PREEMPT(full) 
[  128.699927][ T6319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  128.699947][ T6319] Call Trace:
[  128.699958][ T6319]  <TASK>
[  128.699971][ T6319]  dump_stack_lvl+0x16c/0x1f0
[  128.700015][ T6319]  should_fail_ex+0x512/0x640
[  128.700044][ T6319]  ? fs_reclaim_acquire+0xae/0x150
[  128.700082][ T6319]  should_failslab+0xc2/0x120
[  128.700117][ T6319]  __kmalloc_noprof+0xdd/0x880
[  128.700161][ T6319]  ? security_inode_init_security+0x13f/0x390
[  128.700202][ T6319]  ? security_inode_init_security+0x13f/0x390
[  128.700233][ T6319]  security_inode_init_security+0x13f/0x390
[  128.700268][ T6319]  ? __pfx_shmem_initxattrs+0x10/0x10
[  128.700303][ T6319]  ? __pfx_security_inode_init_security+0x10/0x10
[  128.700351][ T6319]  shmem_mknod+0x22e/0x450
[  128.700398][ T6319]  shmem_mkdir+0x31/0x80
[  128.700434][ T6319]  vfs_mkdir+0x593/0x8c0
[  128.700490][ T6319]  do_mkdirat+0x304/0x3e0
[  128.700545][ T6319]  ? __pfx_do_mkdirat+0x10/0x10
[  128.700598][ T6319]  ? getname_flags.part.0+0x1c5/0x550
[  128.700641][ T6319]  __x64_sys_mkdir+0xef/0x140
[  128.700692][ T6319]  do_syscall_64+0xcd/0xfa0
[  128.700736][ T6319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.700769][ T6319] RIP: 0033:0x7f1e7118efc9
[  128.700796][ T6319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.700829][ T6319] RSP: 002b:00007f1e72033038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  128.700861][ T6319] RAX: ffffffffffffffda RBX: 00007f1e713e5fa0 RCX: 00007f1e7118efc9
[  128.700882][ T6319] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  128.700901][ T6319] RBP: 00007f1e71211f91 R08: 0000000000000000 R09: 0000000000000000
[  128.700921][ T6319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  128.700941][ T6319] R13: 00007f1e713e6038 R14: 00007f1e713e5fa0 R15: 00007ffd3af9c758
[  128.700987][ T6319]  </TASK>
[  129.484758][ T6327] FAULT_INJECTION: forcing a failure.
[  129.484758][ T6327] name failslab, interval 1, probability 0, space 0, times 0
[  129.540542][ T6327] CPU: 0 UID: 0 PID: 6327 Comm: syz.1.145 Not tainted syzkaller #0 PREEMPT(full) 
[  129.540586][ T6327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  129.540605][ T6327] Call Trace:
[  129.540615][ T6327]  <TASK>
[  129.540627][ T6327]  dump_stack_lvl+0x16c/0x1f0
[  129.540694][ T6327]  should_fail_ex+0x512/0x640
[  129.540724][ T6327]  ? fs_reclaim_acquire+0xae/0x150
[  129.540754][ T6327]  should_failslab+0xc2/0x120
[  129.540780][ T6327]  __kmalloc_noprof+0xdd/0x880
[  129.540815][ T6327]  ? tomoyo_encode2+0x100/0x3e0
[  129.540859][ T6327]  ? tomoyo_encode2+0x100/0x3e0
[  129.540894][ T6327]  tomoyo_encode2+0x100/0x3e0
[  129.540936][ T6327]  tomoyo_encode+0x29/0x50
[  129.540972][ T6327]  tomoyo_realpath_from_path+0x18f/0x6e0
[  129.541018][ T6327]  tomoyo_check_open_permission+0x2ab/0x3c0
[  129.541051][ T6327]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  129.541123][ T6327]  ? lock_acquire+0x179/0x350
[  129.541156][ T6327]  ? find_held_lock+0x2b/0x80
[  129.541196][ T6327]  ? mnt_get_write_access+0x52/0x2f0
[  129.541227][ T6327]  tomoyo_file_open+0x6b/0x90
[  129.541254][ T6327]  security_file_open+0x84/0x1e0
[  129.541295][ T6327]  do_dentry_open+0x596/0x1530
[  129.541365][ T6327]  vfs_open+0x82/0x3f0
[  129.541402][ T6327]  dentry_open+0x71/0xd0
[  129.541435][ T6327]  ima_calc_file_hash+0x2b6/0x490
[  129.541475][ T6327]  ima_collect_measurement+0x8a6/0xa50
[  129.541522][ T6327]  ? __pfx_ima_collect_measurement+0x10/0x10
[  129.541582][ T6327]  ? __mutex_lock+0x1c5/0x1060
[  129.541628][ T6327]  ? is_bad_inode+0xd/0x40
[  129.541687][ T6327]  ? xattr_resolve_name+0x27b/0x3f0
[  129.541736][ T6327]  ? vfs_getxattr_alloc+0xec/0x350
[  129.541787][ T6327]  ? ima_get_hash_algo+0x27c/0x400
[  129.541818][ T6327]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  129.541857][ T6327]  ? process_measurement+0x11fa/0x23e0
[  129.541889][ T6327]  process_measurement+0x11fa/0x23e0
[  129.541937][ T6327]  ? __pfx_process_measurement+0x10/0x10
[  129.541975][ T6327]  ? trace_contention_end+0xdd/0x130
[  129.542008][ T6327]  ? find_held_lock+0x2b/0x80
[  129.542064][ T6327]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  129.542142][ T6327]  ? tracing_open+0x1d6/0xdf0
[  129.542173][ T6327]  ? inode_to_bdi+0x9e/0x160
[  129.542228][ T6327]  ima_file_check+0xc5/0x110
[  129.542263][ T6327]  ? __pfx_ima_file_check+0x10/0x10
[  129.542306][ T6327]  security_file_post_open+0x8e/0x210
[  129.542350][ T6327]  path_openat+0x1404/0x2cb0
[  129.542409][ T6327]  ? __pfx_path_openat+0x10/0x10
[  129.542457][ T6327]  ? __lock_acquire+0xb8a/0x1c90
[  129.542494][ T6327]  do_filp_open+0x20b/0x470
[  129.542540][ T6327]  ? __pfx_do_filp_open+0x10/0x10
[  129.542616][ T6327]  ? alloc_fd+0x471/0x7d0
[  129.542680][ T6327]  do_sys_openat2+0x11b/0x1d0
[  129.542718][ T6327]  ? __pfx_do_sys_openat2+0x10/0x10
[  129.542770][ T6327]  __x64_sys_openat+0x174/0x210
[  129.542807][ T6327]  ? __pfx___x64_sys_openat+0x10/0x10
[  129.542861][ T6327]  do_syscall_64+0xcd/0xfa0
[  129.542902][ T6327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.542934][ T6327] RIP: 0033:0x7fac7538efc9
[  129.542959][ T6327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.542985][ T6327] RSP: 002b:00007fac761ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  129.543011][ T6327] RAX: ffffffffffffffda RBX: 00007fac755e5fa0 RCX: 00007fac7538efc9
[  129.543030][ T6327] RDX: 000000003882873f RSI: 0000200000000000 RDI: ffffffffffffff9c
[  129.543047][ T6327] RBP: 00007fac75411f91 R08: 0000000000000000 R09: 0000000000000000
[  129.543064][ T6327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  129.543080][ T6327] R13: 00007fac755e6038 R14: 00007fac755e5fa0 R15: 00007ffd4d5620e8
[  129.543119][ T6327]  </TASK>
[  129.543219][ T6327] ERROR: Out of memory at tomoyo_realpath_from_path.
[  130.499166][ T6353] netlink: 28 bytes leftover after parsing attributes in process `syz.3.155'.
[  131.078711][ T6363] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  131.509854][ T6355] svc: failed to register nfsdv3 RPC service (errno 512).
[  131.517691][ T6355] svc: failed to register nfsaclv3 RPC service (errno 512).
[  132.243961][ T6399] openvswitch: netlink: IP tunnel dst address not specified
[  132.293648][ T6399] openvswitch: netlink: IP tunnel dst address not specified
[  132.645720][ T6409] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  132.658734][ T6411] netlink: 342 bytes leftover after parsing attributes in process `syz.2.176'.
[  133.180273][ T6430] netlink: 28 bytes leftover after parsing attributes in process `syz.0.185'.
[  133.238295][ T6430] openvswitch: netlink: IP tunnel dst address not specified
[  134.843390][ T6467] netlink: 186 bytes leftover after parsing attributes in process `syz.3.196'.
[  134.877815][ T6467] netlink: 186 bytes leftover after parsing attributes in process `syz.3.196'.
[  135.983727][ T6506] netlink: 302 bytes leftover after parsing attributes in process `syz.2.211'.
[  136.903000][ T6523] =======================================================
[  136.903000][ T6523] WARNING: The mand mount option has been deprecated and
[  136.903000][ T6523]          and is ignored by this kernel. Remove the mand
[  136.903000][ T6523]          option from the mount to silence this warning.
[  136.903000][ T6523] =======================================================
[  137.492838][ T6539] syz.0.224 uses obsolete (PF_INET,SOCK_PACKET)
[  137.750110][ T6548] netlink: 342 bytes leftover after parsing attributes in process `syz.2.228'.
[  139.550355][ T6584] netlink: 'syz.3.241': attribute type 27 has an invalid length.
[  139.558472][ T6584] netlink: 334 bytes leftover after parsing attributes in process `syz.3.241'.
[  140.150280][ T6604] netlink: 334 bytes leftover after parsing attributes in process `syz.2.251'.
[  140.567141][ T6616] netlink: 334 bytes leftover after parsing attributes in process `syz.0.255'.
[  140.586997][ T6616] netlink: 334 bytes leftover after parsing attributes in process `syz.0.255'.
[  142.885424][ T6672] FAULT_INJECTION: forcing a failure.
[  142.885424][ T6672] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  142.900151][ T6672] CPU: 0 UID: 0 PID: 6672 Comm: syz.0.273 Not tainted syzkaller #0 PREEMPT(full) 
[  142.900193][ T6672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  142.900211][ T6672] Call Trace:
[  142.900222][ T6672]  <TASK>
[  142.900234][ T6672]  dump_stack_lvl+0x16c/0x1f0
[  142.900286][ T6672]  should_fail_ex+0x512/0x640
[  142.900324][ T6672]  _copy_to_iter+0x29f/0x1710
[  142.900363][ T6672]  ? chacha_block_generic+0x211/0x330
[  142.900404][ T6672]  ? __pfx__copy_to_iter+0x10/0x10
[  142.900442][ T6672]  ? lockdep_hardirqs_on+0x7c/0x110
[  142.900480][ T6672]  ? crng_make_state+0x48e/0x6d0
[  142.900533][ T6672]  get_random_bytes_user+0x17f/0x3c0
[  142.900586][ T6672]  ? __pfx_get_random_bytes_user+0x10/0x10
[  142.900633][ T6672]  ? do_writev+0x218/0x340
[  142.900693][ T6672]  ? do_futex+0x122/0x350
[  142.900731][ T6672]  ? import_ubuf+0x1b6/0x220
[  142.900758][ T6672]  ? _end+0x645d801f/0x0
[  142.900784][ T6672]  __x64_sys_getrandom+0x183/0x290
[  142.900828][ T6672]  ? __pfx___x64_sys_getrandom+0x10/0x10
[  142.900889][ T6672]  do_syscall_64+0xcd/0xfa0
[  142.900926][ T6672]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.900953][ T6672] RIP: 0033:0x7f621138efc9
[  142.900974][ T6672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.901000][ T6672] RSP: 002b:00007f62121a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e
[  142.901027][ T6672] RAX: ffffffffffffffda RBX: 00007f62115e5fa0 RCX: 00007f621138efc9
[  142.901044][ T6672] RDX: 0000000000000003 RSI: ffffffffff60001f RDI: 0000000000000000
[  142.901061][ T6672] RBP: 00007f6211411f91 R08: 0000000000000000 R09: 0000000000000000
[  142.901077][ T6672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  142.901093][ T6672] R13: 00007f62115e6038 R14: 00007f62115e5fa0 R15: 00007ffd52d911e8
[  142.901123][ T6672]  ? _end+0x645d801f/0x0
[  142.901154][ T6672]  </TASK>
[  143.341452][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  143.348067][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  143.393221][ T6682] netlink: 342 bytes leftover after parsing attributes in process `syz.3.278'.
[  143.786983][ T6696] FAULT_INJECTION: forcing a failure.
[  143.786983][ T6696] name failslab, interval 1, probability 0, space 0, times 0
[  143.818908][ T6696] CPU: 1 UID: 0 PID: 6696 Comm: syz.2.286 Not tainted syzkaller #0 PREEMPT(full) 
[  143.818943][ T6696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  143.818957][ T6696] Call Trace:
[  143.818965][ T6696]  <TASK>
[  143.818974][ T6696]  dump_stack_lvl+0x16c/0x1f0
[  143.819008][ T6696]  should_fail_ex+0x512/0x640
[  143.819031][ T6696]  ? __kmalloc_cache_noprof+0x5f/0x780
[  143.819065][ T6696]  should_failslab+0xc2/0x120
[  143.819089][ T6696]  __kmalloc_cache_noprof+0x72/0x780
[  143.819120][ T6696]  ? do_raw_spin_unlock+0x172/0x230
[  143.819151][ T6696]  ? snd_mixer_oss_open+0x11d/0x300
[  143.819185][ T6696]  ? snd_mixer_oss_open+0x11d/0x300
[  143.819215][ T6696]  snd_mixer_oss_open+0x11d/0x300
[  143.819244][ T6696]  ? __pfx_snd_mixer_oss_open+0x10/0x10
[  143.819276][ T6696]  soundcore_open+0x40c/0x580
[  143.819311][ T6696]  ? __pfx_soundcore_open+0x10/0x10
[  143.819340][ T6696]  chrdev_open+0x234/0x6a0
[  143.819378][ T6696]  ? __pfx_chrdev_open+0x10/0x10
[  143.819417][ T6696]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  143.819482][ T6696]  do_dentry_open+0x982/0x1530
[  143.819526][ T6696]  ? __pfx_chrdev_open+0x10/0x10
[  143.819576][ T6696]  vfs_open+0x82/0x3f0
[  143.819609][ T6696]  path_openat+0x1de4/0x2cb0
[  143.819661][ T6696]  ? __pfx_path_openat+0x10/0x10
[  143.819703][ T6696]  ? __lock_acquire+0xb8a/0x1c90
[  143.819735][ T6696]  do_filp_open+0x20b/0x470
[  143.819776][ T6696]  ? __pfx_do_filp_open+0x10/0x10
[  143.819839][ T6696]  ? alloc_fd+0x471/0x7d0
[  143.819885][ T6696]  do_sys_openat2+0x11b/0x1d0
[  143.819916][ T6696]  ? __pfx_do_sys_openat2+0x10/0x10
[  143.819960][ T6696]  __x64_sys_openat+0x174/0x210
[  143.819993][ T6696]  ? __pfx___x64_sys_openat+0x10/0x10
[  143.820039][ T6696]  do_syscall_64+0xcd/0xfa0
[  143.820075][ T6696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.820103][ T6696] RIP: 0033:0x7f1e7118efc9
[  143.820124][ T6696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.820151][ T6696] RSP: 002b:00007f1e72033038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  143.820177][ T6696] RAX: ffffffffffffffda RBX: 00007f1e713e5fa0 RCX: 00007f1e7118efc9
[  143.820195][ T6696] RDX: 0000000000000902 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  143.820213][ T6696] RBP: 00007f1e71211f91 R08: 0000000000000000 R09: 0000000000000000
[  143.820230][ T6696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  143.820245][ T6696] R13: 00007f1e713e6038 R14: 00007f1e713e5fa0 R15: 00007ffd3af9c758
[  143.820280][ T6696]  </TASK>
[  146.704981][ T6764] pim6reg: entered allmulticast mode
[  147.204056][ T6772] GUP no longer grows the stack in syz.1.314 (6772): 200000-401000 (1ff000)
[  147.241106][ T6772] CPU: 0 UID: 0 PID: 6772 Comm: syz.1.314 Not tainted syzkaller #0 PREEMPT(full) 
[  147.241145][ T6772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  147.241163][ T6772] Call Trace:
[  147.241173][ T6772]  <TASK>
[  147.241184][ T6772]  dump_stack_lvl+0x16c/0x1f0
[  147.241227][ T6772]  gup_vma_lookup+0x1d2/0x220
[  147.241277][ T6772]  __get_user_pages+0x241/0x3530
[  147.241321][ T6772]  ? down_read_killable+0x220/0x4b0
[  147.241364][ T6772]  ? __lock_acquire+0x622/0x1c90
[  147.241394][ T6772]  ? __pfx___get_user_pages+0x10/0x10
[  147.241430][ T6772]  ? __lock_acquire+0x622/0x1c90
[  147.241464][ T6772]  __gup_longterm_locked+0x2dd/0x17e0
[  147.241507][ T6772]  ? __pfx___gup_longterm_locked+0x10/0x10
[  147.241543][ T6772]  ? try_get_folio+0x255/0x730
[  147.241570][ T6772]  ? find_held_lock+0x2b/0x80
[  147.241611][ T6772]  ? sanity_check_pinned_pages+0x58a/0x11d0
[  147.241649][ T6772]  gup_fast_fallback+0xee2/0x22a0
[  147.241711][ T6772]  ? __pfx_gup_fast_fallback+0x10/0x10
[  147.241743][ T6772]  ? ___kmalloc_large_node+0x114/0x160
[  147.241775][ T6772]  ? lockdep_hardirqs_on+0x7c/0x110
[  147.241814][ T6772]  ? rcu_is_watching+0x12/0xc0
[  147.241865][ T6772]  pin_user_pages_fast+0xa7/0xf0
[  147.241903][ T6772]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  147.241934][ T6772]  ? io_pin_pages+0xc3/0x1e0
[  147.241975][ T6772]  io_pin_pages+0xe6/0x1e0
[  147.242008][ T6772]  io_sqe_buffer_register+0x16f/0x2010
[  147.242066][ T6772]  ? __pfx_io_sqe_buffer_register+0x10/0x10
[  147.242097][ T6772]  ? rcu_is_watching+0x12/0xc0
[  147.242139][ T6772]  ? __kvmalloc_node_noprof+0x3c0/0x9c0
[  147.242192][ T6772]  ? iovec_from_user+0xbb/0x140
[  147.242228][ T6772]  io_sqe_buffers_register+0x1f2/0x860
[  147.242272][ T6772]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  147.242308][ T6772]  ? rcu_is_watching+0x12/0xc0
[  147.242351][ T6772]  ? trace_contention_end+0xdd/0x130
[  147.242396][ T6772]  __io_uring_register+0x1fc0/0x20e0
[  147.242430][ T6772]  ? __pfx___io_uring_register+0x10/0x10
[  147.242464][ T6772]  ? __fget_files+0x20e/0x3c0
[  147.242517][ T6772]  __x64_sys_io_uring_register+0x169/0x280
[  147.242554][ T6772]  do_syscall_64+0xcd/0xfa0
[  147.242594][ T6772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.242624][ T6772] RIP: 0033:0x7fac7538efc9
[  147.242648][ T6772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.242677][ T6772] RSP: 002b:00007fac761ab038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  147.242709][ T6772] RAX: ffffffffffffffda RBX: 00007fac755e5fa0 RCX: 00007fac7538efc9
[  147.242729][ T6772] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  147.242747][ T6772] RBP: 00007fac75411f91 R08: 0000000000000000 R09: 0000000000000000
[  147.242766][ T6772] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  147.242783][ T6772] R13: 00007fac755e6038 R14: 00007fac755e5fa0 R15: 00007ffd4d5620e8
[  147.242825][ T6772]  </TASK>
[  147.539438][ T6784] usb usb23: usbfs: interface 0 claimed by hub while 'syz.3.321' sets config #0
[  147.596138][ T6787] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input5
[  147.654000][ T6783] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000
[  147.700040][ T6783] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  147.708412][ T6783] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000
[  147.719091][ T6783] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  147.728855][ T6783] page dumped because: unmovable page
[  147.734603][ T6783] page_owner info is not present (never set?)
[  147.830767][ T6789] netlink: 28 bytes leftover after parsing attributes in process `syz.0.322'.
[  148.186103][ T6801] FAULT_INJECTION: forcing a failure.
[  148.186103][ T6801] name failslab, interval 1, probability 0, space 0, times 0
[  148.200821][ T6801] CPU: 0 UID: 0 PID: 6801 Comm: syz.0.330 Not tainted syzkaller #0 PREEMPT(full) 
[  148.200857][ T6801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  148.200874][ T6801] Call Trace:
[  148.200883][ T6801]  <TASK>
[  148.200894][ T6801]  dump_stack_lvl+0x16c/0x1f0
[  148.200936][ T6801]  should_fail_ex+0x512/0x640
[  148.200963][ T6801]  ? fs_reclaim_acquire+0xae/0x150
[  148.200995][ T6801]  should_failslab+0xc2/0x120
[  148.201025][ T6801]  kmem_cache_alloc_noprof+0x75/0x6e0
[  148.201064][ T6801]  ? __pfx_map_id_range_down+0x10/0x10
[  148.201109][ T6801]  ? security_inode_alloc+0x3b/0x2b0
[  148.201151][ T6801]  ? security_inode_alloc+0x3b/0x2b0
[  148.201183][ T6801]  security_inode_alloc+0x3b/0x2b0
[  148.201220][ T6801]  inode_init_always_gfp+0xce4/0x1030
[  148.201267][ T6801]  alloc_inode+0x86/0x240
[  148.201297][ T6801]  new_inode+0x22/0x1c0
[  148.201331][ T6801]  shmem_get_inode+0x19a/0xfb0
[  148.201372][ T6801]  shmem_mknod+0x1a8/0x450
[  148.201409][ T6801]  ? __pfx_shmem_create+0x10/0x10
[  148.201438][ T6801]  lookup_open.isra.0+0x11d3/0x1580
[  148.201485][ T6801]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  148.201528][ T6801]  ? find_held_lock+0x2b/0x80
[  148.201573][ T6801]  ? __pfx_down_write+0x10/0x10
[  148.201621][ T6801]  path_openat+0x893/0x2cb0
[  148.201672][ T6801]  ? __pfx_path_openat+0x10/0x10
[  148.201725][ T6801]  do_filp_open+0x20b/0x470
[  148.201770][ T6801]  ? __pfx_do_filp_open+0x10/0x10
[  148.201837][ T6801]  ? _raw_spin_unlock+0x28/0x50
[  148.201868][ T6801]  ? alloc_fd+0x471/0x7d0
[  148.201919][ T6801]  do_sys_openat2+0x11b/0x1d0
[  148.201953][ T6801]  ? __pfx_do_sys_openat2+0x10/0x10
[  148.202002][ T6801]  __x64_sys_open+0x153/0x1e0
[  148.202036][ T6801]  ? __pfx___x64_sys_open+0x10/0x10
[  148.202108][ T6801]  ? rcu_is_watching+0x12/0xc0
[  148.202169][ T6801]  do_syscall_64+0xcd/0xfa0
[  148.202209][ T6801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.202239][ T6801] RIP: 0033:0x7f621138efc9
[  148.202263][ T6801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.202290][ T6801] RSP: 002b:00007f62121a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  148.202319][ T6801] RAX: ffffffffffffffda RBX: 00007f62115e5fa0 RCX: 00007f621138efc9
[  148.202339][ T6801] RDX: 0000000000000006 RSI: 0000000000004140 RDI: 0000000000000000
[  148.202356][ T6801] RBP: 00007f6211411f91 R08: 0000000000000000 R09: 0000000000000000
[  148.202374][ T6801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  148.202391][ T6801] R13: 00007f62115e6038 R14: 00007f62115e5fa0 R15: 00007ffd52d911e8
[  148.202431][ T6801]  </TASK>
[  148.339774][ T6810] FAULT_INJECTION: forcing a failure.
[  148.339774][ T6810] name failslab, interval 1, probability 0, space 0, times 0
[  148.339823][ T6810] CPU: 0 UID: 0 PID: 6810 Comm: syz.0.331 Not tainted syzkaller #0 PREEMPT(full) 
[  148.339860][ T6810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  148.339878][ T6810] Call Trace:
[  148.339889][ T6810]  <TASK>
[  148.339901][ T6810]  dump_stack_lvl+0x16c/0x1f0
[  148.339949][ T6810]  should_fail_ex+0x512/0x640
[  148.339981][ T6810]  ? __kmalloc_cache_noprof+0x5f/0x780
[  148.340029][ T6810]  should_failslab+0xc2/0x120
[  148.340069][ T6810]  __kmalloc_cache_noprof+0x72/0x780
[  148.340112][ T6810]  ? do_raw_spin_unlock+0x172/0x230
[  148.340155][ T6810]  ? snd_mixer_oss_open+0x11d/0x300
[  148.340203][ T6810]  ? snd_mixer_oss_open+0x11d/0x300
[  148.340244][ T6810]  snd_mixer_oss_open+0x11d/0x300
[  148.340284][ T6810]  ? __pfx_snd_mixer_oss_open+0x10/0x10
[  148.340340][ T6810]  soundcore_open+0x40c/0x580
[  148.340383][ T6810]  ? __pfx_soundcore_open+0x10/0x10
[  148.340426][ T6810]  chrdev_open+0x234/0x6a0
[  148.340475][ T6810]  ? __pfx_apparmor_file_open+0x10/0x10
[  148.340513][ T6810]  ? __pfx_chrdev_open+0x10/0x10
[  148.340565][ T6810]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  148.340620][ T6810]  do_dentry_open+0x982/0x1530
[  148.340677][ T6810]  ? __pfx_chrdev_open+0x10/0x10
[  148.340731][ T6810]  vfs_open+0x82/0x3f0
[  148.340768][ T6810]  path_openat+0x1de4/0x2cb0
[  148.340822][ T6810]  ? __pfx_path_openat+0x10/0x10
[  148.340867][ T6810]  ? __lock_acquire+0xb8a/0x1c90
[  148.340903][ T6810]  do_filp_open+0x20b/0x470
[  148.340947][ T6810]  ? __pfx_do_filp_open+0x10/0x10
[  148.341016][ T6810]  ? alloc_fd+0x471/0x7d0
[  148.341072][ T6810]  do_sys_openat2+0x11b/0x1d0
[  148.341107][ T6810]  ? __pfx_do_sys_openat2+0x10/0x10
[  148.341157][ T6810]  __x64_sys_openat+0x174/0x210
[  148.341193][ T6810]  ? __pfx___x64_sys_openat+0x10/0x10
[  148.341243][ T6810]  do_syscall_64+0xcd/0xfa0
[  148.341283][ T6810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.341314][ T6810] RIP: 0033:0x7f621138efc9
[  148.341336][ T6810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.341364][ T6810] RSP: 002b:00007f62121a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  148.341393][ T6810] RAX: ffffffffffffffda RBX: 00007f62115e5fa0 RCX: 00007f621138efc9
[  148.341411][ T6810] RDX: 0000000000000902 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  148.341429][ T6810] RBP: 00007f6211411f91 R08: 0000000000000000 R09: 0000000000000000
[  148.341446][ T6810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  148.341464][ T6810] R13: 00007f62115e6038 R14: 00007f62115e5fa0 R15: 00007ffd52d911e8
[  148.341504][ T6810]  </TASK>
[  149.118311][ T6825] netlink: 130 bytes leftover after parsing attributes in process `syz.0.338'.
[  149.488275][ T6839] netlink: 'syz.0.343': attribute type 27 has an invalid length.
[  149.504158][ T6839] netlink: 334 bytes leftover after parsing attributes in process `syz.0.343'.
[  149.676347][ T6841] FAULT_INJECTION: forcing a failure.
[  149.676347][ T6841] name failslab, interval 1, probability 0, space 0, times 0
[  149.698543][ T6841] CPU: 0 UID: 0 PID: 6841 Comm: syz.2.344 Not tainted syzkaller #0 PREEMPT(full) 
[  149.698586][ T6841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  149.698604][ T6841] Call Trace:
[  149.698616][ T6841]  <TASK>
[  149.698628][ T6841]  dump_stack_lvl+0x16c/0x1f0
[  149.698675][ T6841]  should_fail_ex+0x512/0x640
[  149.698706][ T6841]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  149.698755][ T6841]  should_failslab+0xc2/0x120
[  149.698788][ T6841]  kmem_cache_alloc_noprof+0x75/0x6e0
[  149.698833][ T6841]  ? sk_prot_alloc+0x60/0x2a0
[  149.698883][ T6841]  ? sk_prot_alloc+0x60/0x2a0
[  149.698922][ T6841]  sk_prot_alloc+0x60/0x2a0
[  149.698976][ T6841]  sk_alloc+0x36/0xc20
[  149.699008][ T6841]  rxrpc_create+0x116/0x8d0
[  149.699048][ T6841]  __sock_create+0x338/0x8d0
[  149.699102][ T6841]  __sys_socket+0x14d/0x260
[  149.699151][ T6841]  ? __pfx___sys_socket+0x10/0x10
[  149.699199][ T6841]  ? xfd_validate_state+0x61/0x180
[  149.699233][ T6841]  ? __pfx_ksys_write+0x10/0x10
[  149.699296][ T6841]  __x64_sys_socket+0x72/0xb0
[  149.699340][ T6841]  ? lockdep_hardirqs_on+0x7c/0x110
[  149.699378][ T6841]  do_syscall_64+0xcd/0xfa0
[  149.699420][ T6841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.699470][ T6841] RIP: 0033:0x7f1e7118efc9
[  149.699497][ T6841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.699528][ T6841] RSP: 002b:00007f1e72033038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  149.699559][ T6841] RAX: ffffffffffffffda RBX: 00007f1e713e5fa0 RCX: 00007f1e7118efc9
[  149.699580][ T6841] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[  149.699601][ T6841] RBP: 00007f1e71211f91 R08: 0000000000000000 R09: 0000000000000000
[  149.699621][ T6841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  149.699640][ T6841] R13: 00007f1e713e6038 R14: 00007f1e713e5fa0 R15: 00007ffd3af9c758
[  149.699684][ T6841]  </TASK>
[  149.876764][ T6849] netlink: 8 bytes leftover after parsing attributes in process `syz.3.347'.
[  149.968715][ T6849] netlink: 8 bytes leftover after parsing attributes in process `syz.3.347'.
[  150.109140][ T6854] netlink: 16 bytes leftover after parsing attributes in process `syz.1.349'.
[  150.974392][ T6880] zswap: compressor 000 not available
[  151.108399][ T6892] futex_wake_op: syz.2.363 tries to shift op by -2048; fix this program
[  151.118493][ T6892] 0x000000000001-0x000000020000 : ""
[  151.138157][ T6892] ftl_cs: FTL header corrupt!
[  152.396744][ T6928] netlink: 28 bytes leftover after parsing attributes in process `syz.1.375'.
[  152.409235][ T6927] netlink: 342 bytes leftover after parsing attributes in process `syz.0.374'.
[  152.691034][ T6933] FAULT_INJECTION: forcing a failure.
[  152.691034][ T6933] name failslab, interval 1, probability 0, space 0, times 0
[  152.724083][ T6933] CPU: 1 UID: 0 PID: 6933 Comm: syz.1.377 Not tainted syzkaller #0 PREEMPT(full) 
[  152.724124][ T6933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  152.724143][ T6933] Call Trace:
[  152.724153][ T6933]  <TASK>
[  152.724164][ T6933]  dump_stack_lvl+0x16c/0x1f0
[  152.724210][ T6933]  should_fail_ex+0x512/0x640
[  152.724239][ T6933]  ? __kvmalloc_node_noprof+0x12e/0x9c0
[  152.724290][ T6933]  should_failslab+0xc2/0x120
[  152.724320][ T6933]  __kvmalloc_node_noprof+0x141/0x9c0
[  152.724370][ T6933]  ? v4l2_ctrl_handler_init_class+0x201/0x350
[  152.724422][ T6933]  ? v4l2_ctrl_handler_init_class+0x201/0x350
[  152.724462][ T6933]  ? v4l2_ctrl_handler_init_class+0x113/0x350
[  152.724503][ T6933]  v4l2_ctrl_handler_init_class+0x201/0x350
[  152.724550][ T6933]  vicodec_open+0x18b/0xf70
[  152.724581][ T6933]  ? kobject_get_unless_zero+0x156/0x1e0
[  152.724630][ T6933]  v4l2_open+0x1d2/0x5e0
[  152.724668][ T6933]  ? __pfx_v4l2_open+0x10/0x10
[  152.724704][ T6933]  chrdev_open+0x234/0x6a0
[  152.724758][ T6933]  ? __pfx_apparmor_file_open+0x10/0x10
[  152.724793][ T6933]  ? __pfx_chrdev_open+0x10/0x10
[  152.724843][ T6933]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  152.724896][ T6933]  do_dentry_open+0x982/0x1530
[  152.724943][ T6933]  ? __pfx_chrdev_open+0x10/0x10
[  152.724997][ T6933]  vfs_open+0x82/0x3f0
[  152.725035][ T6933]  path_openat+0x1de4/0x2cb0
[  152.725092][ T6933]  ? __pfx_path_openat+0x10/0x10
[  152.725137][ T6933]  ? __lock_acquire+0xb8a/0x1c90
[  152.725173][ T6933]  do_filp_open+0x20b/0x470
[  152.725217][ T6933]  ? __pfx_do_filp_open+0x10/0x10
[  152.725290][ T6933]  ? alloc_fd+0x471/0x7d0
[  152.725342][ T6933]  do_sys_openat2+0x11b/0x1d0
[  152.725375][ T6933]  ? __pfx_do_sys_openat2+0x10/0x10
[  152.725425][ T6933]  __x64_sys_openat+0x174/0x210
[  152.725461][ T6933]  ? __pfx___x64_sys_openat+0x10/0x10
[  152.725514][ T6933]  do_syscall_64+0xcd/0xfa0
[  152.725555][ T6933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.725586][ T6933] RIP: 0033:0x7fac7538efc9
[  152.725610][ T6933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.725638][ T6933] RSP: 002b:00007fac761ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  152.725667][ T6933] RAX: ffffffffffffffda RBX: 00007fac755e5fa0 RCX: 00007fac7538efc9
[  152.725687][ T6933] RDX: 0000000000080000 RSI: 0000200000000340 RDI: ffffffffffffff9c
[  152.725707][ T6933] RBP: 00007fac75411f91 R08: 0000000000000000 R09: 0000000000000000
[  152.725725][ T6933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  152.725748][ T6933] R13: 00007fac755e6038 R14: 00007fac755e5fa0 R15: 00007ffd4d5620e8
[  152.725790][ T6933]  </TASK>
[  153.248103][ T6947] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  153.498886][ T6951] FAULT_INJECTION: forcing a failure.
[  153.498886][ T6951] name failslab, interval 1, probability 0, space 0, times 0
[  153.540463][ T6951] CPU: 0 UID: 0 PID: 6951 Comm: syz.3.386 Not tainted syzkaller #0 PREEMPT(full) 
[  153.540507][ T6951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  153.540525][ T6951] Call Trace:
[  153.540535][ T6951]  <TASK>
[  153.540547][ T6951]  dump_stack_lvl+0x16c/0x1f0
[  153.540611][ T6951]  should_fail_ex+0x512/0x640
[  153.540641][ T6951]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  153.540704][ T6951]  should_failslab+0xc2/0x120
[  153.540733][ T6951]  kmem_cache_alloc_noprof+0x75/0x6e0
[  153.540772][ T6951]  ? __kernfs_new_node+0xd2/0x8e0
[  153.540806][ T6951]  ? __kernfs_new_node+0xd2/0x8e0
[  153.540830][ T6951]  __kernfs_new_node+0xd2/0x8e0
[  153.540862][ T6951]  ? __pfx___kernfs_new_node+0x10/0x10
[  153.540898][ T6951]  ? find_held_lock+0x2b/0x80
[  153.540940][ T6951]  ? kernfs_root+0xee/0x2a0
[  153.540974][ T6951]  kernfs_new_node+0x13c/0x1e0
[  153.541013][ T6951]  __kernfs_create_file+0x53/0x350
[  153.541056][ T6951]  sysfs_add_file_mode_ns+0x207/0x3c0
[  153.541109][ T6951]  internal_create_group+0x578/0xf30
[  153.541148][ T6951]  ? __pfx_internal_create_group+0x10/0x10
[  153.541183][ T6951]  ? kernfs_create_link+0x1bd/0x240
[  153.541226][ T6951]  internal_create_groups+0x9d/0x150
[  153.541259][ T6951]  device_add+0xf30/0x1aa0
[  153.541291][ T6951]  ? __pfx_device_add+0x10/0x10
[  153.541319][ T6951]  ? lockdep_init_map_type+0x5c/0x280
[  153.541350][ T6951]  ? __init_waitqueue_head+0xca/0x150
[  153.541427][ T6951]  netdev_register_kobject+0x1a9/0x3d0
[  153.541472][ T6951]  register_netdevice+0x13dc/0x2270
[  153.541514][ T6951]  ? __pfx_register_netdevice+0x10/0x10
[  153.541559][ T6951]  __ip_tunnel_create+0x540/0x6e0
[  153.541599][ T6951]  ? __pfx___ip_tunnel_create+0x10/0x10
[  153.541647][ T6951]  ip_tunnel_init_net+0x22f/0x7d0
[  153.541691][ T6951]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  153.541739][ T6951]  ? ops_init+0x77/0x5f0
[  153.541773][ T6951]  ? __pfx_ipgre_init_net+0x10/0x10
[  153.541804][ T6951]  ops_init+0x1e2/0x5f0
[  153.541840][ T6951]  setup_net+0x100/0x390
[  153.541872][ T6951]  ? __pfx_setup_net+0x10/0x10
[  153.541926][ T6951]  ? debug_mutex_init+0x37/0x70
[  153.541972][ T6951]  copy_net_ns+0x2f8/0x690
[  153.542014][ T6951]  create_new_namespaces+0x3ea/0xa90
[  153.542070][ T6951]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  153.542120][ T6951]  ksys_unshare+0x45b/0xa40
[  153.542151][ T6951]  ? __pfx_ksys_unshare+0x10/0x10
[  153.542182][ T6951]  ? xfd_validate_state+0x61/0x180
[  153.542225][ T6951]  __x64_sys_unshare+0x31/0x40
[  153.542254][ T6951]  do_syscall_64+0xcd/0xfa0
[  153.542294][ T6951]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.542325][ T6951] RIP: 0033:0x7f27f6d8efc9
[  153.542349][ T6951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.542403][ T6951] RSP: 002b:00007f27f7b9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  153.542431][ T6951] RAX: ffffffffffffffda RBX: 00007f27f6fe5fa0 RCX: 00007f27f6d8efc9
[  153.542451][ T6951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  153.542468][ T6951] RBP: 00007f27f6e11f91 R08: 0000000000000000 R09: 0000000000000000
[  153.542486][ T6951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  153.542504][ T6951] R13: 00007f27f6fe6038 R14: 00007f27f6fe5fa0 R15: 00007fff3dd7f728
[  153.542546][ T6951]  </TASK>
[  153.872733][    C0] vkms_vblank_simulate: vblank timer overrun
[  154.542418][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  154.552032][ T6971] netlink: 21 bytes leftover after parsing attributes in process `syz.1.399'.
[  154.664973][ T6968] netlink: 28 bytes leftover after parsing attributes in process `syz.3.392'.
[  155.311315][ T6980] netlink: 'syz.3.395': attribute type 27 has an invalid length.
[  155.351303][ T6980] netlink: 334 bytes leftover after parsing attributes in process `syz.3.395'.
[  155.403296][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  155.820906][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  155.842441][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  157.081032][ T7022] vhci_hcd: not connected 4
[  157.641058][ T7030] netlink: 330 bytes leftover after parsing attributes in process `syz.3.413'.
[  158.181744][ T7047] netlink: 28 bytes leftover after parsing attributes in process `syz.0.419'.
[  158.732604][ T7060] netlink: 'syz.3.424': attribute type 4 has an invalid length.
[  158.770526][ T7060] netlink: 314 bytes leftover after parsing attributes in process `syz.3.424'.
[  159.196805][ T7070] netlink: 342 bytes leftover after parsing attributes in process `syz.3.428'.
[  159.614946][ T7077] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  159.635883][ T7077] FAULT_INJECTION: forcing a failure.
[  159.635883][ T7077] name failslab, interval 1, probability 0, space 0, times 0
[  159.664816][ T7077] CPU: 1 UID: 0 PID: 7077 Comm: syz.3.431 Not tainted syzkaller #0 PREEMPT(full) 
[  159.664856][ T7077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  159.664873][ T7077] Call Trace:
[  159.664883][ T7077]  <TASK>
[  159.664894][ T7077]  dump_stack_lvl+0x16c/0x1f0
[  159.664938][ T7077]  should_fail_ex+0x512/0x640
[  159.664967][ T7077]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[  159.665055][ T7077]  should_failslab+0xc2/0x120
[  159.665087][ T7077]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[  159.665137][ T7077]  ? vprintk_emit+0x1e6/0x680
[  159.665186][ T7077]  ? vfs_parse_fs_qstr+0x112/0x1c0
[  159.665240][ T7077]  ? kmemdup_nul+0x49/0xf0
[  159.665280][ T7077]  kmemdup_nul+0x49/0xf0
[  159.665324][ T7077]  vfs_parse_fs_qstr+0x112/0x1c0
[  159.665367][ T7077]  ? _printk+0xc7/0x100
[  159.665398][ T7077]  ? __pfx_vfs_parse_fs_qstr+0x10/0x10
[  159.665442][ T7077]  ? __kasan_kmalloc+0xaa/0xb0
[  159.665490][ T7077]  ? alloc_fs_context+0x59b/0x9c0
[  159.665539][ T7077]  ? trace_automount+0x75/0x110
[  159.665571][ T7077]  trace_automount+0xaa/0x110
[  159.665601][ T7077]  __traverse_mounts+0x1b9/0x830
[  159.665640][ T7077]  step_into+0x5aa/0x21a0
[  159.665688][ T7077]  ? __pfx_step_into+0x10/0x10
[  159.665724][ T7077]  ? __d_lookup+0x266/0x4a0
[  159.665762][ T7077]  ? lookup_fast+0x156/0x610
[  159.665811][ T7077]  walk_component+0xfc/0x5b0
[  159.665853][ T7077]  link_path_walk+0x627/0xe20
[  159.665905][ T7077]  path_openat+0x1b0/0x2cb0
[  159.665983][ T7077]  ? __pfx_path_openat+0x10/0x10
[  159.666034][ T7077]  ? __lock_acquire+0xb8a/0x1c90
[  159.666072][ T7077]  do_filp_open+0x20b/0x470
[  159.666121][ T7077]  ? __pfx_do_filp_open+0x10/0x10
[  159.666214][ T7077]  ? alloc_fd+0x471/0x7d0
[  159.666267][ T7077]  do_sys_openat2+0x11b/0x1d0
[  159.666304][ T7077]  ? __pfx_do_sys_openat2+0x10/0x10
[  159.666353][ T7077]  __x64_sys_openat+0x174/0x210
[  159.666389][ T7077]  ? __pfx___x64_sys_openat+0x10/0x10
[  159.666440][ T7077]  do_syscall_64+0xcd/0xfa0
[  159.666481][ T7077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.666510][ T7077] RIP: 0033:0x7f27f6d8efc9
[  159.666534][ T7077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.666561][ T7077] RSP: 002b:00007f27f7b9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  159.666590][ T7077] RAX: ffffffffffffffda RBX: 00007f27f6fe5fa0 RCX: 00007f27f6d8efc9
[  159.666609][ T7077] RDX: 0000000000000100 RSI: 0000200000001cc0 RDI: ffffffffffffff9c
[  159.666628][ T7077] RBP: 00007f27f6e11f91 R08: 0000000000000000 R09: 0000000000000000
[  159.666645][ T7077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  159.666662][ T7077] R13: 00007f27f6fe6038 R14: 00007f27f6fe5fa0 R15: 00007fff3dd7f728
[  159.666702][ T7077]  </TASK>
[  160.306307][ T7080] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  160.315083][ T7080] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  161.100580][  T982] ==================================================================
[  161.100601][  T982] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x1a6f/0x1e60
[  161.100660][  T982] Write of size 8 at addr ffffc900038b9280 by task kworker/1:2/982
[  161.100684][  T982] 
[  161.100697][  T982] CPU: 1 UID: 0 PID: 982 Comm: kworker/1:2 Not tainted syzkaller #0 PREEMPT(full) 
[  161.100730][  T982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  161.100749][  T982] Workqueue: events_power_efficient fb_flashcursor
[  161.100795][  T982] Call Trace:
[  161.100804][  T982]  <TASK>
[  161.100815][  T982]  dump_stack_lvl+0x116/0x1f0
[  161.100854][  T982]  print_report+0xcd/0x630
[  161.100883][  T982]  ? __virt_addr_valid+0x81/0x610
[  161.100915][  T982]  ? sys_imageblit+0x1a6f/0x1e60
[  161.100952][  T982]  kasan_report+0xe0/0x110
[  161.100993][  T982]  ? sys_imageblit+0x1a6f/0x1e60
[  161.101029][  T982]  sys_imageblit+0x1a6f/0x1e60
[  161.101066][  T982]  ? __pfx_sys_imageblit+0x10/0x10
[  161.101111][  T982]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  161.101145][  T982]  soft_cursor+0x524/0xa10
[  161.101175][  T982]  bit_cursor+0xe8c/0x17e0
[  161.101204][  T982]  ? __pfx_bit_cursor+0x10/0x10
[  161.101234][  T982]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  161.101270][  T982]  ? get_color+0x1da/0x450
[  161.101305][  T982]  ? __pfx_bit_cursor+0x10/0x10
[  161.101329][  T982]  fb_flashcursor+0x310/0x400
[  161.101368][  T982]  process_one_work+0x9cf/0x1b70
[  161.101406][  T982]  ? __pfx_process_one_work+0x10/0x10
[  161.101443][  T982]  ? assign_work+0x1a0/0x250
[  161.101473][  T982]  worker_thread+0x6c8/0xf10
[  161.101508][  T982]  ? __kthread_parkme+0x19e/0x250
[  161.101549][  T982]  ? __pfx_worker_thread+0x10/0x10
[  161.101580][  T982]  kthread+0x3c5/0x780
[  161.101608][  T982]  ? __pfx_kthread+0x10/0x10
[  161.101637][  T982]  ? rcu_is_watching+0x12/0xc0
[  161.101672][  T982]  ? __pfx_kthread+0x10/0x10
[  161.101701][  T982]  ret_from_fork+0x675/0x7d0
[  161.101751][  T982]  ? __pfx_kthread+0x10/0x10
[  161.101781][  T982]  ret_from_fork_asm+0x1a/0x30
[  161.101825][  T982]  </TASK>
[  161.101836][  T982] 
[  161.101843][  T982] The buggy address belongs to a vmalloc virtual mapping
[  161.101864][  T982] Memory state around the buggy address:
[  161.101880][  T982]  ffffc900038b9180: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  161.101902][  T982]  ffffc900038b9200: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  161.101924][  T982] >ffffc900038b9280: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  161.101940][  T982]                    ^
[  161.101955][  T982]  ffffc900038b9300: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  161.101983][  T982]  ffffc900038b9380: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  161.101997][  T982] ==================================================================
[  161.102011][  T982] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  161.102026][  T982] CPU: 1 UID: 0 PID: 982 Comm: kworker/1:2 Not tainted syzkaller #0 PREEMPT(full) 
[  161.102056][  T982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  161.102072][  T982] Workqueue: events_power_efficient fb_flashcursor
[  161.102110][  T982] Call Trace:
[  161.102118][  T982]  <TASK>
[  161.102127][  T982]  dump_stack_lvl+0x3d/0x1f0
[  161.102160][  T982]  vpanic+0x640/0x6f0
[  161.102189][  T982]  panic+0xca/0xd0
[  161.102216][  T982]  ? __pfx_panic+0x10/0x10
[  161.102248][  T982]  ? check_panic_on_warn+0x1f/0xb0
[  161.102278][  T982]  check_panic_on_warn+0xab/0xb0
[  161.102309][  T982]  end_report+0x107/0x170
[  161.102332][  T982]  kasan_report+0xee/0x110
[  161.102358][  T982]  ? sys_imageblit+0x1a6f/0x1e60
[  161.102394][  T982]  sys_imageblit+0x1a6f/0x1e60
[  161.102431][  T982]  ? __pfx_sys_imageblit+0x10/0x10
[  161.102478][  T982]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  161.102534][  T982]  soft_cursor+0x524/0xa10
[  161.102572][  T982]  bit_cursor+0xe8c/0x17e0
[  161.102608][  T982]  ? __pfx_bit_cursor+0x10/0x10
[  161.102656][  T982]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  161.102695][  T982]  ? get_color+0x1da/0x450
[  161.102736][  T982]  ? __pfx_bit_cursor+0x10/0x10
[  161.102765][  T982]  fb_flashcursor+0x310/0x400
[  161.102811][  T982]  process_one_work+0x9cf/0x1b70
[  161.102857][  T982]  ? __pfx_process_one_work+0x10/0x10
[  161.102900][  T982]  ? assign_work+0x1a0/0x250
[  161.102935][  T982]  worker_thread+0x6c8/0xf10
[  161.102983][  T982]  ? __kthread_parkme+0x19e/0x250
[  161.103025][  T982]  ? __pfx_worker_thread+0x10/0x10
[  161.103056][  T982]  kthread+0x3c5/0x780
[  161.103084][  T982]  ? __pfx_kthread+0x10/0x10
[  161.103113][  T982]  ? rcu_is_watching+0x12/0xc0
[  161.103147][  T982]  ? __pfx_kthread+0x10/0x10
[  161.103174][  T982]  ret_from_fork+0x675/0x7d0
[  161.103202][  T982]  ? __pfx_kthread+0x10/0x10
[  161.103229][  T982]  ret_from_fork_asm+0x1a/0x30
[  161.103263][  T982]  </TASK>
[  161.103599][  T982] Kernel Offset: disabled