last executing test programs:

5m10.19767281s ago: executing program 2 (id=1398):
mmap$auto(0x3, 0x5, 0x8, 0x4000000000eb1, 0xfffffffffffffffa, 0x7fff)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, 0x0, 0x20a02, 0x0)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
setuid$auto(0xe)
setrlimit$auto(0x8, 0x0)
mlockall$auto(0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x800)
r0 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="fb4f"], 0x1c}, 0x1, 0x0, 0x0, 0x400c804}, 0x800)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.14/usb37/ep_00/power/runtime_active_time\x00', 0x444c02, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xd0}, 0x840)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0)
setsockopt$auto(0x3, 0x0, 0x60, 0x0, 0x10001)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
dup$auto(0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="130026bd7000fddbdf250200000008000300", @ANYRES32=r4, @ANYBLOB="0c000200209b462f"], 0x28}, 0x1, 0x0, 0x0, 0x4004080}, 0x2408c810)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
ioctl$auto(r5, 0x5393, 0x5)

5m3.406865317s ago: executing program 2 (id=1423):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/suspend_stats/last_failed_dev\x00', 0x2000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000001c0)=""/229, 0xe5)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
ioctl$auto_DMA_HEAP_IOCTL_ALLOC(r1, 0x40345410, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x581000, 0x40)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
socket(0x1e, 0x4, 0x0)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x80, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
ioctl$auto_evdev_fops_evdev(r2, 0x40104593, 0x0)
io_uring_setup$auto(0x9, &(0x7f0000000380)={0x10000000, 0x8, 0x6, 0xfffffffb, 0x5, 0x7, <r3=>r1, [0xd65, 0x1, 0x5], {0x800, 0x6, 0xe1a, 0x9, 0x401, 0x4, 0x8, 0x200, 0x8db8}, {0x1, 0x1000, 0xa3a3, 0x3, 0x800000, 0xffffff01, 0x791d, 0xcbc0}})
mmap$auto(0x9, 0x20009, 0x4000000008df, 0xeb1, r0, 0x8000)
socket(0x10, 0x2, 0x0)
read$auto_ctl_device_fops_user(r3, &(0x7f0000000400)=""/40, 0x28)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0)
r4 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000600), 0xffffffffffffffff)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r4, 0x9, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x808)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r5 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0xc4)
r6 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0)
ioctl$auto_UDMABUF_CREATE(r6, 0x40187542, &(0x7f0000000080)={r5, 0x8, 0x0, 0x8000})
ioctl$auto_SNAPSHOT_PLATFORM_SUPPORT(r5, 0x330f, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x1fd, 0x7, 0x5, 0x7184, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x8, 0x4, 0x200000000001, 0xb4, 0xfffffffffffffff8, 0x2, 0x6, 0x4000080, 0x0, 0x100, 0xe, 0x22000, 0x200, 0x0, 0x84, [0x3, 0x3, 0x0, 0x2, 0x3, 0x2000, 0x0, 0xc, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x2, 0x8, 0x1000000000000000, 0x6, 0x0, 0xfffffffffffbfffd, 0x2000000000000004, 0x10000000000001, 0x10000000000, 0xffffffffffffffff, 0x4, 0xfffffffffffffe00, 0x0, 0x8, 0x1005, 0x400000000005b8, 0xffff, 0x0, 0x100, 0x0, 0x1, 0x2, 0x88e, 0x40, 0xfffffffffffffffc, 0x8, 0xa3c, 0x0, 0x3, 0x3ff, 0x2, 0x8, 0xfffffffffffffdcc, 0xc567]}, 0x1fe, 0x4000d)
poll$auto(&(0x7f0000000000)={0xffffffffffffffff, 0x6, 0x5}, 0x81, 0x4)

4m54.985497239s ago: executing program 2 (id=1455):
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x3f, 0x100000001, 0xffffffff, 0x0, 0x0, 0x0, 0x1000000006, 0x6, 0x7, 0x400, 0xc53d, 0x5, 0xffffffff80000000, 0x1, 0x61, 0x103})
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='.\x00', @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x94)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
socket(0x10, 0x2, 0x15)
open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72)
r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mtd0\x00', 0x8080, 0x0)
ioctl$auto(r1, 0xc0104d08, 0xffffffffffffffd1)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000003240), 0x20001, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x200000000004, 0x8000)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0x800, 0x9b72, 0x2, 0x8000)
eventfd$auto(0x3)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x123002, 0x0)
ioctl$auto_SNDCTL_DSP_SUBDIVIDE(r2, 0xc0045009, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x40, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
socket(0xa, 0x1, 0x88)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/net/wireless\x00', 0x400, 0x0)
pread64$auto(r3, &(0x7f0000000080)='\xd5u+~\xa7x\xe0VQ\x1a6\xcf\xce\xfa\xfbN\x19\b\xf64\r\x122i\xd6\x0e\xfa\x96\x9aV:\xe1G\x14\xb2\xd4N\x0e#jX:\xd0\xe4\xa9\xda\xaf\x98\x94G\xa8\xb4\xa7uPc\x1ang\xdb\xb4\xa7\xad\x1b\xcbonh\xd8\x99\x03\x10\xb0\xa5\xfey\xd5F,70\xecG\x8a\fz\x95\x7f\xb0Y{\xdd\xa1\xa3E\x03\xd4\xc67U\x93\xe3A{\n\xfc\xa4\x0e_\xf8\x94\xc3a\x00\xe6\xea4\xa2\x7ft\xeb\x8b$\x16\x0e\xe8j\xcaI\xe0c\x05\x12(\v\xef\xc5Z\xfb\xed\xa3\x01\x001\xa5\x18%\xae/\x1b6\xaa\xf5ysD\xa6\xee\xbf\xc0v\"\x93\x96\"\xcak.\x0e_\xb3\xf7\xac\x9e\xbd/w\xdf\xfc\xe24z\x0f\x8f\b\xbe\xda\xfb\xd0Jj\x97\xfa{\x9d\xfd\xfb\x14\x1f\xb0\xe7\b#\xb9\x01\xf7\xf5\x1c1\xfbNX\xd9\xf0\x97@\xff(\x99\x13M\xadM\b\xf5\xcd\xa3\xe1Q|\r\x18\xd5\xb4\x1c\xa5\xfd\xdf\x98\xd9\xa7\xf3u\xa8ak\xfaHS\xfa\x12\x85\x85\x14\b\x9c\x15\xc10\xb3\xd5.\x13\xc6\xb6\xbak:\xbf\x8f\xcd\x7f\a\xb8', 0x1ff, 0x5)
r4 = io_uring_setup$auto(0x8000, &(0x7f0000000140)={0x2, 0x8, 0x3, 0x0, 0x7, 0x101, <r5=>0xffffffffffffffff, [0x95, 0x9], {0xffffff80, 0x9, 0x10, 0xb831, 0x3, 0xdbb, 0x3, 0xee9, 0x2}, {0x8001, 0x6, 0x8, 0x1, 0x8, 0x0, 0x4, 0x6, 0xf}})
r6 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[], 0x14}}, 0x24000044)
mmap$auto(0x2, 0x37c8, 0xdf, 0x810, r5, 0x28000)
semctl$auto(0x7, 0x806, 0x13, 0x4)
sendmsg$auto_BATADV_CMD_TP_METER(r6, 0x0, 0x40)
close_range$auto(0x2, 0x8, 0x0)

4m50.20008158s ago: executing program 2 (id=1462):
r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
openat$auto_mon_fops_stat_usb_mon(0xffffffffffffff9c, 0x0, 0x950402, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x1f53, 0x2000000000002) (async)
fanotify_init$auto(0x1f53, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
clock_gettime$auto(0x8, 0x0) (async)
clock_gettime$auto(0x8, 0x0)
bpf$auto(0x2, 0x0, 0xf)
close_range$auto(0x2, 0x8, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x14, 0x0, 0x4)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
get_mempolicy$auto(0x0, 0x0, 0x8, 0x6, 0x3)
mmap$auto(0x0, 0x400008, 0xe3, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x8000000000000000, 0x4, 0x9)
brk$auto(0xf065)
write$auto(r0, &(0x7f0000000340)='3\x00', 0x6)

4m44.317783083s ago: executing program 2 (id=1489):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video61\x00', 0x8a240, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x0, 0xb3eaee9e9ed11725, 0x70bd29, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x41000}, 0x64810)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000000c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16], 0x2c}, 0x1, 0x0, 0x0, 0x20004994}, 0x4000884)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0)
write$auto_configfs_file_operations_configfs_internal(r1, &(0x7f0000000140)="8e", 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x4e23}, 0x67)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x2, 0xb}, 0x800009}, 0x5, 0x20000000)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
geteuid()
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0xa, 0x2, 0x0)
select$auto(0x3, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x0, 0xc, 0x8, 0x3, 0x6, 0x2, 0x9, 0x5e582970, 0x4000000000000000, 0x2, 0x4, 0x5, 0x8, 0x6]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140), 0x51)
write$auto(0x3, 0x0, 0xfdef)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
connect$auto(0x3, &(0x7f0000000140), 0x55)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
bpf$auto(0x0, 0x0, 0xfbf)
shutdown$auto(0x200000003, 0x2)
write$auto(0x3, 0x0, 0x296)
sendmsg$auto_NLBL_MGMT_C_LISTDEF(r2, 0x0, 0x20048800)

4m37.841771732s ago: executing program 2 (id=1508):
process_vm_writev$auto(0x0, &(0x7f00000011c0)={&(0x7f00000001c0)="42777dd1330b458d0b5c44ca32e94fc00cfbce962ee7d8f31c0f90c327830f55adfdceafcc0f7b5a21ea23bdf5344d47d49d60218e57bb33118d04fdd37f5fd17f96a318132a5dd282782f8535b3d80698e45e0442c802a7", 0x9}, 0x7, 0x0, 0x7, 0x5)
sendmsg$auto_TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f00000000c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=0x0, @ANYBLOB="01000200000000006bbc9d65365cbf8013"], 0x18}, 0x1, 0x0, 0x0, 0x4000094}, 0x8080)
socket(0x11, 0x3, 0x9)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/dfscache\x00', 0x8f3b7a51b84bfb01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000040)="20edd9d1027e0dc0023af10e9bfa1babfa3a3753ca9aee370a", 0x19)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/sem\x00', 0x80401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0xa, 0x2, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x4, 0x8)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0xc0)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000540), 0xffffffffffffffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/profiling\x00', 0x8d80, 0x0)
setsockopt$auto(r1, 0x800, 0xc1, &(0x7f0000000040)='\"\x81=\xff{>\xca\xd8w@\xd0\xc4\xfb&L\xeb=j\a\xf1y\xb3\x1d', 0x7)
mprotect$auto(0x1ffff000, 0x80000008, 0xd)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/zram0/algorithm_params\x00', 0xa001, 0x0)
write$auto(r2, &(0x7f0000000540)='\"\x81=\xff{>\xca\xd8w@\xd0\xc4\xfb&L\xeb=j\a\xf1y\xb3\x1d', 0x1)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
dup2$auto(r4, r4)
mq_open$auto(&(0x7f0000000280)='\\*)A ', 0x7e, 0x9, 0x0)
mq_notify$auto(0x5, &(0x7f00000000c0)={@sival_int=0x9d2, @inferred, 0x1})
mq_timedsend$auto(0x5, &(0x7f0000000000)=']#%$\x00', 0x5, 0x9, 0x0)
read$auto(r3, 0x0, 0x9)
openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kfence/stats\x00', 0x20000, 0x0)
r5 = open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x2000, 0xb5d1af1605322c72)
open_by_handle_at$auto(r5, &(0x7f0000000040)={0x8, 0x100fe, "9700000000000000"}, 0x2)
close_range$auto(0x2, 0xa, 0x0)

4m22.760695444s ago: executing program 32 (id=1508):
process_vm_writev$auto(0x0, &(0x7f00000011c0)={&(0x7f00000001c0)="42777dd1330b458d0b5c44ca32e94fc00cfbce962ee7d8f31c0f90c327830f55adfdceafcc0f7b5a21ea23bdf5344d47d49d60218e57bb33118d04fdd37f5fd17f96a318132a5dd282782f8535b3d80698e45e0442c802a7", 0x9}, 0x7, 0x0, 0x7, 0x5)
sendmsg$auto_TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f00000000c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=0x0, @ANYBLOB="01000200000000006bbc9d65365cbf8013"], 0x18}, 0x1, 0x0, 0x0, 0x4000094}, 0x8080)
socket(0x11, 0x3, 0x9)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/dfscache\x00', 0x8f3b7a51b84bfb01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000040)="20edd9d1027e0dc0023af10e9bfa1babfa3a3753ca9aee370a", 0x19)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/sem\x00', 0x80401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0xa, 0x2, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x4, 0x8)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0xc0)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000540), 0xffffffffffffffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/profiling\x00', 0x8d80, 0x0)
setsockopt$auto(r1, 0x800, 0xc1, &(0x7f0000000040)='\"\x81=\xff{>\xca\xd8w@\xd0\xc4\xfb&L\xeb=j\a\xf1y\xb3\x1d', 0x7)
mprotect$auto(0x1ffff000, 0x80000008, 0xd)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/zram0/algorithm_params\x00', 0xa001, 0x0)
write$auto(r2, &(0x7f0000000540)='\"\x81=\xff{>\xca\xd8w@\xd0\xc4\xfb&L\xeb=j\a\xf1y\xb3\x1d', 0x1)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
dup2$auto(r4, r4)
mq_open$auto(&(0x7f0000000280)='\\*)A ', 0x7e, 0x9, 0x0)
mq_notify$auto(0x5, &(0x7f00000000c0)={@sival_int=0x9d2, @inferred, 0x1})
mq_timedsend$auto(0x5, &(0x7f0000000000)=']#%$\x00', 0x5, 0x9, 0x0)
read$auto(r3, 0x0, 0x9)
openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kfence/stats\x00', 0x20000, 0x0)
r5 = open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x2000, 0xb5d1af1605322c72)
open_by_handle_at$auto(r5, &(0x7f0000000040)={0x8, 0x100fe, "9700000000000000"}, 0x2)
close_range$auto(0x2, 0xa, 0x0)

2m23.225822964s ago: executing program 0 (id=2009):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd7000fedbdf251600000283000180140002006e65746465767369ae00f903304aa0ede66d300000000000000500030004000000a19b04004000300b8b36efeba247d1abf1bfa0be219eabbbb4ac3031e041e7060fd9d730deab992dfcc7f55ebfd51f8b74b9530d3a97bae7a049d8c7ed0e07817e02dbc577bc980b703b329c445d8c93ebb643a8aa5ebac489ea5a9c"], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4040000)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
timer_create$auto(0x4, 0x0, 0x0)
socket(0x2a, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40)
setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x10000000000002d, 0x0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
gettid()
connect$auto(0xffffffffffffffff, 0x0, 0x55)
socket(0xa, 0x3, 0xa)
setsockopt$auto(0x400000000000003, 0x29, 0x16, 0x0, 0x20056b)
mmap$auto(0x0, 0x5, 0x3, 0x16, 0x3, 0x8000)
unshare$auto(0x40000080)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
madvise$auto(0x0, 0x20200, 0x15)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = open(&(0x7f0000000200)='./cgroup\x00', 0x400, 0x23)
fchdir$auto(r2)
mkdir$auto(&(0x7f0000000140)='MAC80211_HWSIM\x00', 0x1)
rmdir$auto(&(0x7f0000000340)='MAC80211_HWSIM\x00')

2m21.604722355s ago: executing program 0 (id=2006):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r0 = userfaultfd$auto(0x1) (async, rerun: 64)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (rerun: 64)
r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r1, 0x40025504, 0xea3)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async)
r2 = socket(0xa, 0x801, 0x84)
r3 = socket(0xa, 0x3, 0x73) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x1, 0x1, 0x1)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r4 = socket(0xa, 0x801, 0x84) (async, rerun: 64)
socket(0x22, 0x6, 0x0) (async)
r5 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/input/event1\x00', 0x2000, 0x0) (async, rerun: 32)
io_uring_setup$auto(0x6, 0x0) (async, rerun: 32)
r6 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000140), r0)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r0, &(0x7f0000000500)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x38, r6, 0x800, 0x70bd28, 0x25dfdbfd, {}, [@NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x5}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x4}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x3}]}, 0x38}}, 0x8080) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
socket(0xa, 0x2, 0x3a) (async)
r7 = io_uring_setup$auto(0x6, 0x0)
r8 = socket(0xa, 0x2, 0x88) (async)
r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r10=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYRESOCT=r3, @ANYRES16=r5, @ANYBLOB="2f212cbd7010ca705d845526cc0008000380", @ANYRES32=r10], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4000000) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_SET_MAC_ACL(r4, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010029bd7000fedbdf255d00000004005f0008004000a1000000a81e91991fb3cbce75671b80b1263c4bfdc597d37144d7d5b153edc050685806fe9bcb368393aea907da9009e0ed42f361933b9e7a9040b3767562647005e206cf3f565d2359a8bca9781111f25c45333e16c3ae825595f492bd855143ef853c3937c78410d2e9da7182101ceee84b71d08f88ab"], 0x20}, 0x1, 0x0, 0x0, 0xc010}, 0x24000081) (rerun: 64)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r8, @new_prog_fd=r2, 0x4, @old_prog_fd=r8}, 0xa3)
bpf$auto(0x3, &(0x7f0000000040)=@query={@target_ifindex, 0x7, 0x7, 0x9, 0x7, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0xb, 0x5}, 0x7) (async)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0xc2000, 0x0) (async)
ioctl$auto_USB_RAW_IOCTL_INIT(r7, 0x41015500, &(0x7f00000002c0)={"cd9c361b4eb79958c335e75acbe6533c700d0fedd08fc536d88edc8989e194138961c58eb8565f9479ca061fb2f2b7cdd4911c9a07e86969eb7dcd5dd66d138f5cc664b17908bb1c3b40364a3515fcb0d7bb61fc7cd0f955bf805a1311b70401738553deaedb517f1d53fd9d76694e0dec4bd8b3ec0a37f6b38110fb002df552", "a47c118b6ae03138b190f10aca776d1e7a2ed9e3e9ed742a856d9c3cb0a5f20605a098e5db505f8913d90cbd813918b2eb323b44b69120ccd4431a063abcef56c231d8ce18e681d455597181113bfe72ca5a78c7175a15a3a991cb75e1619c676639fe46986b389bce66b7e06c0975080c900f552e0a12ad2c00", 0x8})

2m19.945052382s ago: executing program 0 (id=2011):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video61\x00', 0x8a240, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x0, 0xb3eaee9e9ed11725, 0x70bd29, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x41000}, 0x64810)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000000c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16], 0x2c}, 0x1, 0x0, 0x0, 0x20004994}, 0x4000884)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0)
write$auto_configfs_file_operations_configfs_internal(r1, &(0x7f0000000140)="8e", 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x4e23}, 0x67)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x2, 0xb}, 0x800009}, 0x5, 0x20000000)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
geteuid()
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0xa, 0x2, 0x0)
select$auto(0x3, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x0, 0xc, 0x8, 0x3, 0x6, 0x2, 0x9, 0x5e582970, 0x4000000000000000, 0x2, 0x4, 0x5, 0x8, 0x6]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140), 0x51)
write$auto(0x3, 0x0, 0xfdef)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
connect$auto(0x3, &(0x7f0000000140), 0x55)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
bpf$auto(0x0, 0x0, 0xfbf)
shutdown$auto(0x200000003, 0x2)
write$auto(0x3, 0x0, 0x296)
sendmsg$auto_NLBL_MGMT_C_LISTDEF(r2, 0x0, 0x20048800)

2m18.692346716s ago: executing program 0 (id=2026):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x82802, 0x0)
readv$auto(0x3, 0x0, 0x8)
getgroups$auto(0x1, 0x0)
r0 = io_uring_setup$auto(0x85, 0x0)
syz_genetlink_get_family_id$auto_wireguard(0x0, r0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2)
mincore$auto(0x0, 0x10000, 0x0)
ioctl$auto(0x3, 0xc0405626, 0x34)

2m17.903233557s ago: executing program 0 (id=2019):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/dummy_hcd.6/usb7/interface_authorized_default\x00', 0x102, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptye4\x00', 0x140, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
tkill$auto(0x1, 0x7)
ioctl$auto_TIOCGSERIAL2(r1, 0x541e, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000180)='Z', 0x1)

2m16.800948707s ago: executing program 0 (id=2022):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video61\x00', 0x8a240, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x0, 0xb3eaee9e9ed11725, 0x70bd29, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x41000}, 0x64810)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'veth0\x00'})
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004994}, 0x4000884)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0)
write$auto_configfs_file_operations_configfs_internal(r1, &(0x7f0000000140)="8e", 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x4e23}, 0x67)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x2, 0xb}, 0x800009}, 0x5, 0x20000000)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
geteuid()
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0xa, 0x2, 0x0)
select$auto(0x3, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x0, 0xc, 0x8, 0x3, 0x6, 0x2, 0x9, 0x5e582970, 0x4000000000000000, 0x2, 0x4, 0x5, 0x8, 0x6]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140), 0x51)
write$auto(0x3, 0x0, 0xfdef)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
connect$auto(0x3, &(0x7f0000000140), 0x55)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
bpf$auto(0x0, 0x0, 0xfbf)
shutdown$auto(0x200000003, 0x2)
write$auto(0x3, 0x0, 0x296)
sendmsg$auto_NLBL_MGMT_C_LISTDEF(r2, 0x0, 0x20048800)

2m16.324816145s ago: executing program 33 (id=2022):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video61\x00', 0x8a240, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x0, 0xb3eaee9e9ed11725, 0x70bd29, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x41000}, 0x64810)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'veth0\x00'})
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004994}, 0x4000884)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0)
write$auto_configfs_file_operations_configfs_internal(r1, &(0x7f0000000140)="8e", 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x4e23}, 0x67)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x2, 0xb}, 0x800009}, 0x5, 0x20000000)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
geteuid()
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0xa, 0x2, 0x0)
select$auto(0x3, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x0, 0xc, 0x8, 0x3, 0x6, 0x2, 0x9, 0x5e582970, 0x4000000000000000, 0x2, 0x4, 0x5, 0x8, 0x6]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140), 0x51)
write$auto(0x3, 0x0, 0xfdef)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
connect$auto(0x3, &(0x7f0000000140), 0x55)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
bpf$auto(0x0, 0x0, 0xfbf)
shutdown$auto(0x200000003, 0x2)
write$auto(0x3, 0x0, 0x296)
sendmsg$auto_NLBL_MGMT_C_LISTDEF(r2, 0x0, 0x20048800)

9.923207714s ago: executing program 4 (id=2452):
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x1000006)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
recvmmsg$auto(0x4, &(0x7f0000000200)={{0x0, 0x4, &(0x7f0000000140)={0x0, 0x4da}, 0x4, 0x0, 0x8, 0x800}, 0x3}, 0x7, 0xe, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
socket(0xa, 0x2, 0x0)
setsockopt$auto(0x3, 0x100000000, 0x5, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
r0 = socket(0x1c, 0x3, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000080)="8134217873604050521e7cd6c64dd9108ff05db99b328171796ac221bd22433b8f8c314278c8b9d7a6859e0f0e7bde55720c16a3812dd19e2a8aa1a264a3d1b9bb533de821fbc464c052c0f417a0396e93a58ee8419beedcc4d6b3f2f00adb7aa0fbccf00c4cdb5f92a563", 0x12, 0x0, 0xf15f, 0x0, 0x13, 0xfe}, 0x800009}, 0x8, 0x8)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
write$auto(0x3, 0x0, 0xfffffdef)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
madvise$auto(0x1, 0x400, 0x7)
prctl$auto(0x1000000003b, 0x40000007a, 0x4, 0x6, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x200003, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
write$auto(0x3, 0x0, 0x10001)

5.852418813s ago: executing program 5 (id=2473):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/tty/ptyr5/power/control\x00', 0x51000, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r0 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$auto_ftrace_event_id_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/id\x00', 0x40000, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd12\x00', 0x8001, 0x0)
ioctl$auto_def_blk_fops_fs(r2, 0xab08, 0x0)
r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = socket(0xa, 0x2, 0x73)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x848000000015, 0x805, 0x0)
sendto$auto(r4, 0x0, 0x402, 0x0, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1b)
ioctl$auto_VHOST_SET_OWNER(r3, 0xaf01, 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto(0x3, 0x4008af20, 0x38)
r5 = fcntl$getown(r1, 0x9)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_FRAME(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000014c0)=ANY=[@ANYBLOB="5c125573114d7b62251e4417d2cc0ee8e27c96a1e2fe8f98691ca98d635eddadbdc13f28a1ae6d5be2628a9200f3a96aafbcbca17a760ff024cd58036e7d38eb1e45004e62d757c961697a410000000000000000", @ANYRES32=r5, @ANYRES16=r0], 0x2c}, 0x1, 0x0, 0x0, 0x2000c840}, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/keys\x00', 0x8340, 0x0)
readv$auto(r2, &(0x7f0000000200)={&(0x7f0000000300)="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", 0xa000000000000000}, 0x3)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff)
r7 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000001c0), r6)
sendmsg$auto_NL802154_CMD_TRIGGER_SCAN(r4, &(0x7f0000001340)={&(0x7f0000000180), 0xc, &(0x7f0000001300)={&(0x7f0000000240)={0x3c, r7, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x613}, @NL802154_ATTR_WPAN_PHY_NAME={0x5, 0x2, '\x00'}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0xff}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0x4}, @NL802154_ATTR_SCAN_DONE_REASON={0x5, 0x25, 0x2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x4000400)
ioctl$auto(0x3, 0x541b, 0x38)
write$auto_configfs_file_operations_configfs_internal(0xffffffffffffffff, &(0x7f0000000000)="8e", 0x1)

5.73466437s ago: executing program 4 (id=2474):
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB='<\x00', @ANYRES16=r1, @ANYBLOB="010029bd7000fedbdf251600000283000180140002006e65746465767369ae00f903304aa0ede66d300000000000000500030004000000a19b04004000300b8b36efeba247d1abf1bfa0be219eabbbb4ac3031e041e7060fd9d730deab992dfcc7f55ebfd51f8b74b9530d3a97bae7a049d8c7ed0e07817e02dbc577bc980b703b329c445d8c93ebb643a8aa5ebac489ea5a9c"], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4040000)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
timer_create$auto(0x4, 0x0, 0x0)
socket(0x2a, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40)
setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
gettid()
mmap$auto(0x0, 0x5, 0x3, 0x16, 0x3, 0x8400)
unshare$auto(0x40000080)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
madvise$auto(0x0, 0x20200, 0x15)
io_setup$auto(0x9, &(0x7f00000001c0)=0x4)
r2 = socket(0x1d, 0x2, 0x6)
getsockopt$auto(r2, 0x6a, 0x3, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="00032cbd7000fbdbdf250a00000008000a004000000008000a000000000006000100ff0000000600110003000000"], 0x34}, 0x1, 0x0, 0x0, 0x20004040}, 0x4000001)
r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/schedstat\x00', 0x460000, 0x0)
landlock_restrict_self$auto(r4, 0x1)
r5 = openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/current_tracer\x00', 0x119000, 0x0)
readv$auto(r5, &(0x7f00000000c0)={&(0x7f0000000040), 0x10000}, 0x4)

5.664132728s ago: executing program 1 (id=2476):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2202, 0x0)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x40a082, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
rseq$auto(&(0x7f0000000000)={0xe, 0x10401, 0x0, 0x6, 0xdfffffff, 0x2}, 0x8100, 0x0, 0x8000008)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
uname$auto(&(0x7f0000000040)={"f1d1cc68ab64ca398b2c348b91ad97c03a958843b8a7dca03c2a5597c1ab54ba5a333718f954c049c835b717d8e5c86c8a7138edfa4a317252f191222376f6fb48", "8f07fd2712008504b7f2d3a479c2a21630f63ff548711b99241dc50d3e54464b472f9af6f99607845403d835d6c2719d0148c666a3327c4b82466810b7ced01f81", "693ebc1c16512eab0d430b471f3ed241f04f65c9b590e4e79d3dd07989f6083dac7f77d9fb5cdaf09ba351202d8d0d95f62c695ac777235f3d5b744a083a3ccba3", "8dd0badb11dae3cb52159485abb2e426beb2e1a1d872cfbfd4039113e6f2d04c1dea77a9bbb98d2bb3b07ad6107b7fb3f1f7d53eb5fd1eb0a9136281930600e91c", "9c3e1d4b5c29992a9d368cf2d9f5f5064188f1de1a5c494cdfd165b9070d3af647ecc826c7ea998b8c52ccbe71475b7d5a9009d0124e62e145bed7805e4057635c", "7675799a11d76d658a0cbbe9f707b364d2c606736c14b05221a4baf65ff2f1c6a688c7e960b4d82124e04a518eed2589054580d24a1f864dbaf6e1d6df1fb71e1e"})

5.283460977s ago: executing program 1 (id=2477):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x101401, 0x0)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/asound/seq/timer\x00', 0x109000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000005c80)=""/160, 0xa0)
close_range$auto(r0, r0, 0x8)

5.128364976s ago: executing program 5 (id=2478):
mmap$auto(0x7c8c, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x7)
write$auto(0x800000000000c8, 0x0, 0x1a)
mmap$auto(0x6, 0x9, 0x6, 0x32d4, 0x10000, 0x80000001)
ioctl$auto(0xc8, 0xffffffff800454dd, 0x4000000000008)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
shutdown$auto(0x200000003, 0x2)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)
set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x7b, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0xfffffffffffffffc, 0xf, 0x1c)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x7fffffffffffffff, 0xdf, 0x15, 0x7, 0x28000)
write$auto(0x3, 0x0, 0x7fffffff)
read$auto(0x3, 0x0, 0x80)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0xb, 0x9, 0x8b74, r0, 0x7fff)
getsockopt$auto(r0, 0x84, 0x1b, 0x0, &(0x7f0000000040)=0x400)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = eventfd$auto(0x34b)
readv$auto(r1, &(0x7f00000000c0)={0x0, 0x8}, 0x5)
read$auto(r1, &(0x7f00000003c0)='\x00', 0xcc9c)
write$auto(r1, &(0x7f0000000400)='\'\x00', 0x8)
mmap$auto(0x6, 0x4, 0x4000800030df, 0x40eb2, 0x402, 0x300000000000)
capset$auto(0x0, 0x0)
r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0)
read$auto(r2, 0x0, 0x39b8)
mmap$auto(0xffffffffffffffff, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x0)
close_range$auto(0x2, 0x8, 0x0)

5.056563125s ago: executing program 1 (id=2479):
socket$nl_generic(0x10, 0x3, 0x10)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
mmap$auto(0x0, 0x2000000000400008, 0xdf, 0x2009b72, 0xffffffffffffffff, 0x3792cd2f)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x0)
madvise$auto(0x0, 0xffffffffffffffff, 0x19)
signalfd4$auto(0xffffffff, &(0x7f0000000080)={0x8000}, 0x8, 0x400)
io_uring_setup$auto(0xa, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
unshare$auto(0x40000080)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x1e, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4)
mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000)
mmap$auto(0x80000000, 0x8, 0x1000000016, 0xfd9, 0x3, 0x180000000)
ftruncate$auto(0x3, 0x2)
mknod$auto(0x0, 0xc9, 0xc8)
mmap$auto(0x9, 0x8, 0xdf, 0x9b7d, 0x2, 0x8000)
nanosleep$auto(0x0, 0x0)
add_key$auto(0x0, 0x0, 0x0, 0x6, 0x100)
r0 = socket(0x3008bcb91a0c5d7d, 0x3, 0x1)
socket(0x8, 0x5, 0x106)
syz_genetlink_get_family_id$auto_nl80211(0x0, r0)
socket(0x2, 0x1, 0x106)
unshare$auto(0x40000080)
mmap$auto(0x200000007, 0xa, 0x4, 0x13, 0x8001, 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xfffffffffffffffd, 0x40000008000)
epoll_create1$auto(0x8000000000000000)
mremap$auto(0x0, 0x2, 0x3fd4, 0x3, 0xffffffffffffffff)

3.924974217s ago: executing program 1 (id=2481):
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x3, 0xa)
openat$auto_tracing_stats_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu0/stats\x00', 0xa00, 0x0)
socketpair$auto(0x1e, 0xf, 0x8000000000000000, 0x0)
r0 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$auto(r0, 0x0, 0xe)

3.762311284s ago: executing program 1 (id=2482):
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x1000006)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
recvmmsg$auto(0x4, &(0x7f0000000200)={{0x0, 0x4, &(0x7f0000000140)={0x0, 0x4da}, 0x4, 0x0, 0x8, 0x800}, 0x3}, 0x7, 0xe, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
socket(0xa, 0x2, 0x0)
setsockopt$auto(0x3, 0x100000000, 0x5, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
r0 = socket(0x1c, 0x3, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000080)="8134217873604050521e7cd6c64dd9108ff05db99b328171796ac221bd22433b8f8c314278c8b9d7a6859e0f0e7bde55720c16a3812dd19e2a8aa1a264a3d1b9bb533de821fbc464c052c0f417a0396e93a58ee8419beedcc4d6b3f2f00adb7aa0fbccf00c4cdb5f92a563", 0x12, 0x0, 0xf15f, 0x0, 0x13, 0xfe}, 0x800009}, 0x8, 0x8)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
write$auto(0x3, 0x0, 0xfffffdef)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
madvise$auto(0x1, 0x400, 0x7)
prctl$auto(0x1000000003b, 0x40000007a, 0x4, 0x6, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x200003, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
write$auto(0x3, 0x0, 0x10001)

3.582475183s ago: executing program 5 (id=2483):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/vlan0/interval_probe_time_ms\x00', 0xa042, 0x0)
sendfile$auto(r1, r0, 0x0, 0x48)
r2 = openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001c00), 0xc0b40, 0x0) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
ioctl$auto(0x3, 0x800005411, 0x38)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket(0x2, 0x1, 0x0) (async)
io_uring_setup$auto(0x4, &(0x7f0000000080)={0x5, 0x8, 0x2, 0x400, 0x6, 0xd, r2, [0x8, 0x353, 0x8], {0x6, 0x5, 0xd8aa, 0x80000001, 0x8, 0xc6bd, 0x59, 0x200, 0x5}, {0x100, 0x10, 0x750, 0x485, 0x9, 0x337d, 0x6, 0xfffffff7, 0x1}}) (async)
socket(0xa, 0x3, 0x3a) (async)
mmap$auto(0xa38, 0x40020009, 0x2, 0xeb2, 0x401, 0x8000) (async)
ioctl$auto(0x1, 0x8903, 0x8)

3.31788607s ago: executing program 5 (id=2484):
sendmsg$auto_TCP_METRICS_CMD_DEL(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080), 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x38, 0x0, 0x2, 0x1, 0x25dfdbf8, {}, [@TCP_METRICS_ATTR_ADDR_IPV6={0x14, 0x2, @ipv4={'\x00', '\xff\xff', @loopback}}, @TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @empty}, @TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @multicast2}]}, 0x38}, 0x1, 0x0, 0x0, 0x4001}, 0x4000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
pipe2$auto(&(0x7f0000000040)=<r0=>0xffffffffffffffff, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0)
ioctl$auto(r1, 0x540a, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0)
ioctl$auto(r2, 0x540a, r0)

3.150171937s ago: executing program 5 (id=2486):
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x1000006)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
recvmmsg$auto(0x4, &(0x7f0000000200)={{0x0, 0x4, &(0x7f0000000140)={0x0, 0x4da}, 0x4, 0x0, 0x8, 0x800}, 0x3}, 0x7, 0xe, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
socket(0xa, 0x2, 0x0)
setsockopt$auto(0x3, 0x100000000, 0x5, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
r0 = socket(0x1c, 0x3, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000080)="8134217873604050521e7cd6c64dd9108ff05db99b328171796ac221bd22433b8f8c314278c8b9d7a6859e0f0e7bde55720c16a3812dd19e2a8aa1a264a3d1b9bb533de821fbc464c052c0f417a0396e93a58ee8419beedcc4d6b3f2f00adb7aa0fbccf00c4cdb5f92a563", 0x12, 0x0, 0xf15f, 0x0, 0x13, 0xfe}, 0x800009}, 0x8, 0x8)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
write$auto(0x3, 0x0, 0xfffffdef)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
madvise$auto(0x1, 0x400, 0x7)
prctl$auto(0x1000000003b, 0x40000007a, 0x4, 0x6, 0x7)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
mmap$auto(0x0, 0x200003, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
write$auto(0x3, 0x0, 0x10001)

2.850241629s ago: executing program 4 (id=2487):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/tty/ptyr5/power/control\x00', 0x51000, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r0 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$auto_ftrace_event_id_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/id\x00', 0x40000, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd12\x00', 0x8001, 0x0)
ioctl$auto_def_blk_fops_fs(r2, 0xab08, 0x0)
r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = socket(0xa, 0x2, 0x73)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x848000000015, 0x805, 0x0)
sendto$auto(r4, 0x0, 0x402, 0x0, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1b)
ioctl$auto_VHOST_SET_OWNER(r3, 0xaf01, 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto(0x3, 0x4008af20, 0x38)
r5 = fcntl$getown(r1, 0x9)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_FRAME(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000014c0)=ANY=[@ANYBLOB="5c125573114d7b62251e4417d2cc0ee8e27c96a1e2fe8f98691ca98d635eddadbdc13f28a1ae6d5be2628a9200f3a96aafbcbca17a760ff024cd58036e7d38eb1e45004e62d757c961697a410000000000000000", @ANYRES32=r5, @ANYRES16=r0], 0x2c}, 0x1, 0x0, 0x0, 0x2000c840}, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/keys\x00', 0x8340, 0x0)
readv$auto(r2, &(0x7f0000000200)={&(0x7f0000000300)="f0a86307e9dfd136bc52c92585a0e8f5474ac91affd9f38a6449198db3bdd9d6997d5ab168d2b2886cea8c52aade41aea2a913682f61b8f6bf84dafa2094de508180d8007cb006d7305a86176fbb6d89f102bad8ef51392992e87b7f34d0c2c757c61f1b914b3444b61139084ba994180c511c7d32835bd3e661ab8b7a644c9926752ac1be7ef1e6516ba7521c6c2c898326aee817e98000337bc1bcc177f10c75ae2161078bf4aaf2d54d7ff1c5d6eaae44f2cabdf22953d179b849f8a37f3458fae5842cf3193a8431c37c9599717e04c03efdd53f32ccfce8f67706d00405ed7938bcf864d644809ed5c8e46417820381aa2e4d2987bf550d310341c409001e517fcb4b6bf01daaac3f5a47e5144161def7239a9c4db174f352f2d7a8c645a1c273af0d882837e4234bb9aa30da9ccd2f09b8f8ce06c4f9be31ed84778e7d77c5b6df3d5fab579e822760246b19c00c041c1dc1fb0bd524695d1ca01b8ff47c2dfb381a26d03c89c5bd26ea03a1676b1b94e5f3033991560c844b56c60bb93751692a6591ccd3c045a7decbb6b269d5341d62a33b1492c850fa40bb3815baece1045ba5d829a8a2e2e91c9f2302840d68588ca53d7ffa04503f8f2eae8278652454e3ee8b4a2cc14fb2a3673da3ce973052afe5966e5b5a01a0c03a83570475959c10caf5145af3e52a35f28e54b15852bab67a4cad8537e623f716c3d785503a26357dba4e309a08594e1b7a8986f80298908998022a116ef1f359d069c68258449bda399c1fcda5e5ae9998200ec318b434e3fdfa69686e9a93d9d236d2bb2d9b0bee01ec1a4e842c12e2c28532eca1a2148ab320170ba62d0a63af480a68700b06fc9232c827ee8fe3bd8911d73e4648fa110eb03486a35271e3c4d93be5c6cdfdb8a58ca57be35e2e299775ae634ab9988c1e878c579b3fc872a90634eaad359913aa1344ec4e6869fb29c207bda7b9f3adde01bc901d611dec61eb5a4b2d84ead7da81360c3d598a38c2c68ec981a286664a5f318e6dda2d08b3d7ca43c1f1102dd77cc0c60153bc2c670dda2b247db3fa4af647d6b4a1ecace49aca6079b4c2416ff7a05a846514bcedad85c94205e427a70e1faa535151f29bafe280de86c584a2d2865bd4eb868dcb4e6d86c15519db0c059808c41deb7f9e9d0e88fcd5ac98ba427b083e377ff8f0553953655be93575c041277f876dd6ebc3a3846c6cee807bd1cac44a0074f077f1aae86093a5a34a43a7bb7ae0668c84cfb299b1f555823a459557d25dfca1be60a76aee7ec5cbbe6a8664add0e3a6b815ec731929f7f83775260f7efb64338b6a133807caf6951f7f38ae4a6b08858b1d3e35b9dfd41a7d1b8b814e434b218ec85775df1377ed116bd8429088af51447cfddf33ac0817331d1f76364ba6e4ba1dadfe6024954b42694411c0420ff54222fabb2f7f228b24f39829bfd1400faf69a833b8065affc06afcf19a1494c23e6513aa1e25f46f72d4d06e5df7b98f96694612d28d6c5bf2fd2d88fb95260ae4d0c30223d1200fef66f97d32f91079d350f56142b250f9463f7a612b354d42cf76a6737a9bd9a383a65b4981cea2e76072bba61cfcf58783a5e239b53e5a45593e74022dfc6ddf3f69104ca12979feac9392cb4ee6d8537da4ae04f16536cfd7901bd406fa6dc6b8d9b80a90bfb3a62beb028e162eb4ab184e81cd3c895f137c96d383430dc789c7e7a7263d2e289296635b847db3f1e3cbb1a22ed4c02710fbc9ad1d42ddcb1d7ab6e7bba1bfb246c6f2e04799cc38269fc075bab6febe50ebee075a33fa383f5f875693792a3e38b749e0a275232d018de084b58bddbea1fb09b4d5b7a2dd3481f6763a4a254c5789cc2f944ca58c3ecea4623d498bff6c6760ad0804e3bb43d7b3c32fdcb8c18e17befbe77fd6cc6b05373dae1f1ea6f4149eb06f1605f3bff1e69affc73ff13bf0543fe8785ec380b1a351af9bd3c03d9643f39a2ce181985a0901b7253bcb2593c6c5355847d779e4d771d56a8ca8189bbb1b8ea0fb7e9296f8acec3b705d272511e48130ef2fe387f9003891fd969f69cf6f6efb05ae307de313ccceb179d604267e3416e9b011cc6ea32206a3baad6149fc0d79d3362c286009748bd162e570a2349c9c08a88a88001a948c85666b5bb366f97191c46f9cc6cff4b61b3249bafe260e252a8f57bf9735a0ff82b0ca55f57e99814a3daa1d1862d3f9d7fe4d6a527e94e82f90eea0593907c3f97790d386ac624155bdc05ced1b9988ef6fba8a145e0e2d992ffdad1cc48471ebad04b0127a2b67a262f05e9d61fc80602e555ebcd169757004b42aedd835135b0230a003ff5e0e6dcd36548112aea6546256a7dd55c528993d73968792fc4c4c45aff557c8e8077856c7e0de55a4ce7a067c68901c5d40f0f5c4d2105ad72289b32d9dcb855e1c0a92b389e343820734e5f61225768b6bf08c31d65f1dc80b28f6d2147829ac3083c8ef7bddbb444b80a26640f3144bf35127b3d0d765fbd9c2a13a768b773a9609ce6063400aab54402b91565d427d28263ddcbe1e940c7d152fafdf8e826a1bedb4563e67bd73cf2814462db179fc4d732d085cbf46369321e7f9161770c171b44d0aa58715dac775403e83b3ce452e7a7c5c80d1a8d198463f5aa8916f920865d98e8504b03daeaf23644e91b4ef4e95a3efd0e252ecda3f02295e1292880b53a586aba027225a60b28bfdcf984b039bab9cdab7be5b3aa5c1cab755e659a9e4dd15275ab66eb50eda5d6ef13f47bfd3e45bff1d8c74c2746f1a1a1900326334b0e6ab6c10211713c4a382ddb4febddf8a4457db92de55c8727c3a05c0a36dec89e63bd7164203d64e8a98d9ae82f307fdadc7edb225d0f3983d225b81b44671e4bdac7cc3a06c37e9c74b5a0ca829c6ec565a64799ca9eae09561c5cc3d82d756bac0d1ea63bef6ec34d65ec29854ccff80c5e189c31689d575902abef2cf83a056696533d208f507579b4bb30cc91a3ed50ac01ba15f2de09bf2eaad3fd6f2e9182350c65fedcb90fa59cfa094bd97bc9825baa5afc05f797959cd2a36398c3fc00832b64cc4d88c6c7cdda77bb89b4246dfe4a8ea1cd2f18612a932d9a0c05b078af551474aa95f4bde156314f3d8e28b32ebdf285962128b6fe81ca6ea21c342f8601a0dd5f1cacdd7eb8275a368e8dad383a2237d194464a7813bc36b8b15dfc6698a3833b81e1a5a8fcae93cab60206dced4638f498644e160c2b5fb49cfdd8c1c9181a0d77001ce3eb9c2a53b35b6ce0653e62a1f648692d0b929b2bc7a76399de680d18ee1f2bbd751372e0e092c19dd9af68bb5c801adff0bf21c1dbb7a5e8025d543b9f01569a575b144f737702dcf610d94a92f7de313854a16977ba215156b70e28bbf37f93467d66513cfa837b85c43751c7a7089db39bc8271eefb00e22e74d7d4a6a72ad3c977aa67959b7f4f69496dabd2a383ec9e183005a6e7cdf4bf6f605c10743ae0ef60531c1ddbd932c7e98e8a0408dc4da86c79cc67678fe2298ed77dc6601c24d86b3b8d1194254b4df44cd71a28e06a748ec949ee937bfba6fc842fa541343fcc3e5e1627ef9785c5c4def482d56f40e974cd1ac0877b243c897169a6f53520a88188dfa5cefa199154f60ff28a1ace711cf75522e123de286bf9eec3e66447ce76083d00d151cb7c3c48440b1bf77b7abf24b7f4450430209dcdda3f61da5b81fefa19cb826811a6f6c8dcf61271eb59bc2329b4e4edf170cd447d707ad8f0bbaf1003eed5068fb2145ac22120fcc571e9adbcce907a221b1b3a615051cf4b748e8881f2b3dc89a544fdad4a36d1e9c699fb4abdff01b321713e75036eee37f867326fdab0a7e9961f9c41f8025ee71fc5533d35402c9f92b4b51e845dd77de2660336658c223492e9ed51f7202e475a12f77b4e19c6db9811cdd843970587e62d2a0b8fcd7823e6c3cf75b5b7eb66186dfeb91eb1e5e8cc0f6d3e3f60ebd354dd4cafa5f2735a4c96eb83f416dd51c792a34c219e2f14266646c0ddc9769d441584df2ff665c501a5843e536a689f0a39011e1dc73bdb03b0f4675e65abc265b76a85d86213d893afe6531e20c19d107c48caf6579ffa9246cd38ddc5512aadfef859df82eb41d79aeda904034b91196e6b8a792773ed0f84a33bb4dcf84dfd9ff7b7e9e76e1418a7d00262fd51da3e91ac43fc5033025ee9feedc3b3db479a0b9033bbeace62c0b51b6ef3e68173810fffad11f0c6135978ab5b78f236c6be85d923e66cf989e307d1308f0e39113965d7f231656e50a869be93f922f4f8be05798d17ce682f2406bd9f7bc783a3a01632d0f25dc23792471fdfeaf098dac76c8a1b95f8e4acd25b9a72461cae943fceaab31634d59ce82413b2e4113ab6bc0320b4e047e97c09723e60e8bd34eb2b0d5e7273aaf10bc286d42a8088a935de6950290eb44c009fe2a4763dcea6953632d12a0c53864f6104198d4953416a1e995cee98f170304f8856bfc3f894c247a4531a3a036013acd189b090694a190822ab6c5ccbf2f02a57c8af57ab58730c2257ecfced188fb2e5810f643d59d2d939aa77c66562daf927c5f400349f3504be344517a8dc3e3005338be9cbd73d229112ed83187f7927b43acc7c75b8a7af6c42a7b3608e14a41d6922815e59ada0c1e6c9a50eef1495a61609c9cb0bba91ba4f368c19818aa1637bc00d6aff7c0bd2850d819a4658562e8818e149d7b8a01aaac05cc1977661877a1fcf1e9991fa43050f4039686786d6760bd3135895c8b47e6fcea722828ed64b82f8ee451a185518ed40eccdd8ce91fb8ae26beec2a2dd236edaf39c190f0d20e4d728a1fb7283e1761d80aed2e54d880ea327a408fdc1e57d8cc8069697954833893a95d8d8cb8483109fc962b8300fdc1bf80855530940c83397a7f6a01ebf2714026dbd2b77a72f4e0fc6ac3e9839a03026db6a4f2203a1cf655ff420c660a2ba515f4c34fc1713c702e9b3d91daf388f345cf1ab8e1c8c14f7068ffdcbf0eea974c2b547a7232c8f2175a7bc7420cc20d239983f4c05e31ad9114efe9394dabda512a6c522ed0a215b7b423fbcd26ea78fde808b0b8096fd47ada0d0018a010a180f963e7a3e902c564a7b7e32b7092d092fd3f6d1353775af8911d045696f2dc70b179a4141963e37d747884b75c7497b92e5304a260b4b0223601fee71e57a7a45b62f2df9b867bfa06e74aa7f660186bde1ca1c37f8abf21d96f7f9ff6d1fdddd610b1e76c6c476440f09d5f631f0bd25c1e6363ef82d02ab8be88d5b8f65c42ee7bea3334f7c7f9747d84595fcf5bb98a4f0fca1b483d45f27b1582682f37190f903ab109c933f96ae7d7686249b4e14a6f1881751162815958462cd40a1d94d641356fa785707e730e7c67a479a02e8cfd89e931f19a8b0278c3d84840a79a513d1e9c3cb487cb30a75c488940e5cda1664f96704b2fd9aac487348bb397fcc00129ef804ae7dc1d5540ace0676c2bfbe028021f1f1bb6bef98e755396886b7d094dd9bdb4565c41fb7e74f333a38819cd1ea78ceafc0c178ab040c833149f89db8b558a7a5915a7a8fa807522e5232e6d0d9ed567aff3601f6eec94f849b17b725cf2c77321459a36c6d04d2807873a516898d456ee7f8d2e65457ee1f35d83d17ff247ee5fbdb7a1de4183dfb5487d0c4e1120e421998a755f8296d2597b70a27d273bf3431a745743a66c9a9987a8ebbe9299d649ad62e44c5aa105e3027ec72760b28f1e08bcec6943fe939aa2ea06e", 0xa000000000000000}, 0x3)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff)
r7 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000001c0), r6)
sendmsg$auto_NL802154_CMD_TRIGGER_SCAN(r4, &(0x7f0000001340)={&(0x7f0000000180), 0xc, &(0x7f0000001300)={&(0x7f0000000240)={0x3c, r7, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x613}, @NL802154_ATTR_WPAN_PHY_NAME={0x5, 0x2, '\x00'}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0xff}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0x4}, @NL802154_ATTR_SCAN_DONE_REASON={0x5, 0x25, 0x2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x4000400)
ioctl$auto(0x3, 0x541b, 0x38)
write$auto_configfs_file_operations_configfs_internal(0xffffffffffffffff, &(0x7f0000000000)="8e", 0x1)

2.10544337s ago: executing program 3 (id=2489):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)={0xf4, r1, 0x1, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_VENDOR_DATA={0xde, 0xc5, "f5e913a2014fc5b7ddc48436e2c601019b311f1eb861ac933babc2333cae77eeddf6a156c5009b32bd25fb9028460d93d778cd3fd9e78f3bbe3e3120861d242a5748db997c111eefb1f0b90e0347e4213c8fc5284a44ef203dfbb5b3b42bfa160c2397d8f9cb075501add5511691cae4e8340bb84fc0e5a216b44e3b0e1259a68c72f4b792ee4464a16c92e0b149c9b63d772a6dc078fe6740fab216788a3eeea30a404fd7d0ef9bf358f8c568d43593f5f5bbc25263301f408711d0132a27642f406ca6203b9db32c3bdd16c2dd4c3deb78184a52db60197ff0"}]}, 0xf4}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
r2 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0)
write$auto_configfs_file_operations_configfs_internal(r2, &(0x7f0000000140)="8e", 0x1)

1.881023752s ago: executing program 4 (id=2490):
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x3, 0xa)
openat$auto_tracing_stats_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu0/stats\x00', 0xa00, 0x0)
socketpair$auto(0x1e, 0xf, 0x8000000000000000, 0x0)
r0 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$auto(r0, 0x0, 0xe)

1.641630101s ago: executing program 4 (id=2491):
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000780)=""/4096, 0x1000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/firmware/memmap/5/end\x00', 0x1c1540, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000640)=""/224, 0xe0)
r2 = openat$auto_dai_list_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
sendfile$auto(0x6, 0x3, 0x0, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/stat/synproxy\x00', 0x80000, 0x0)
pread64$auto(r3, 0x0, 0x5, 0xe8f)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000040)=""/192, 0xc0)
writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x80011, 0x0)
socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0x3, 0x541b, 0x38)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
r4 = socket(0x10, 0x3, 0x6)
r5 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x14, r5, 0x20, 0x70bda8, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x2000c010}, 0x4)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xa)
lsm_list_modules$auto(0x0, &(0x7f0000000100)=0xbefc, 0x0)
ioctl$auto(0x1, 0x89a1, 0x8)
pread64$auto(r2, &(0x7f0000000040)='\x00', 0x2, 0x6)
bind$auto(r1, &(0x7f0000000040)=@ax25={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x2}, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000680)=""/227, 0xe3)

1.540944946s ago: executing program 3 (id=2492):
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x101401, 0x0)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mremap$auto(0x6, 0x56b7, 0x101, 0x6, 0x8001)
setpgid$auto(r1, 0x0)
waitid$auto(0x0, 0x2, 0x0, 0x4, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000040)="cdee3e549ca3eab179710b8335ec6dce461e3edc4ed0d1d06109dcc5d97889868708cff375b665dd85c4a188803d7212cc6f3fbf1e6713bac07401aaadfda9dfe4cbea0ab96cd5987630a499d1c39cbeb8d743f7584f546d78", 0x59)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x244281, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/asound/seq/timer\x00', 0x109000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000005c80)=""/160, 0xa0)

1.060739964s ago: executing program 3 (id=2493):
statmount$auto(0x0, &(0x7f0000000180)={0xb, 0x7, 0x9, 0x3, 0x7, 0x0, 0x8, 0x3, 0x2000000000010006, 0x0, 0x7, 0x9, 0x2, 0x7, 0xae, 0x5, 0x2, 0x3, 0x105, 0x7, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, [0x1b16, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8000000000000, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x73, 0x0, 0x0, 0x0, 0x4, 0x0, 0xc06f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4, 0x101, 0x0, 0x0, 0x0, 0x107, 0x7, 0x0, 0xfffffffffffffffe, 0x4, 0x0, 0x80000000000, 0x2]}, 0x1fe, 0x81)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2003ed, 0x19)
prctl$auto(0x9, 0x8, 0x0, 0x0, 0x0)
r0 = socket(0x11, 0x3, 0x6)
sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000380)={&(0x7f0000000180), 0xf}, 0x2e, &(0x7f0000000380), 0x7, 0x1083}, 0x5}, 0x2, 0x100)

937.878572ms ago: executing program 4 (id=2494):
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) (async, rerun: 64)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (rerun: 64)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x10001)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd12\x00', 0x8001, 0x0) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/netfilter/nfnetlink_log\x00', 0x40080, 0x0) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dsp1\x00', 0x20b42, 0x0) (async)
r0 = socket(0x21, 0x2, 0x2)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
open(0x0, 0x22240, 0x155)
r1 = socket(0x2b, 0x5, 0x4)
setsockopt$auto(r1, 0x11, 0x67, 0x0, 0x8) (async)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x0, @multicast1}, 0x55) (async)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, 0x0, 0x4004414)
bpf$auto(0x200000, &(0x7f00000001c0)=@raw_tracepoint={0x200, r1, 0x0, 0x6}, 0x1) (async, rerun: 64)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x3}, 0x3, 0x0) (async, rerun: 64)
unshare$auto(0x40000080) (async)
writev$auto(0x1, 0x0, 0x1) (async)
madvise$auto(0x0, 0x20200, 0x15)

725.809708ms ago: executing program 3 (id=2495):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYRESDEC], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4040000)
r2 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r0, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000002c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="0f9e03d1fe127680337ea9c049a5dffacc2eae8880537c070796f672169ce9b21db429fcaf97c832ae3f39e23e340642ad352a0b9df46662f64fcca155f29b758a8dbd2573a4a9c7feef12b8702b3a78fc1152765e5cdbf5f6a47e86eade202952839195b00c260f7541a5efe225bcfefb9823ee11d28c04656282469dd423fc4cee5a0c82053fce486f46ca4c136eb4e294b31ac6bd08e71955421bb902f318f4b3b64b2d47859c076d0c824f1199721b13de66861b052b265cb3e586e22ae63941f3b1ba77b75f83903d49e55cc56c601da66b465e8adc60cf37db6489a60cfab4f79b7a", @ANYRES16=r2, @ANYBLOB="000426bd7000fedbdf250300000008000300faffffff08000200000000004c0004007f29e78ad50ddfe0afdab032f4b3191cc2d8f2311da830ddc60337ea793a0e67c9053c228d57b5963bf8d4b8e89dfc0dcb68387fc9b32e41cd7d4e85e3d06df33824a91a4376e7420500050000000000"], 0x78}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/lockd/parameters/nlm_timeout\x00', 0x101042, 0x0)
write$auto(r3, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4)
r4 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x60080, 0x0)
ioctl$auto_I2C_TIMEOUT(r4, 0x702, 0x0)
acct$auto(&(0x7f0000000040)='[-&]!\x00')

541.276122ms ago: executing program 3 (id=2496):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'ipvlan0\x00'}) (async)
mmap$auto(0x0, 0x20009, 0x2, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x801, 0x0) (async)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) (async)
shutdown$auto(0x200000003, 0x2) (async)
r0 = socket(0x2, 0xa, 0xa)
sendmmsg$auto(r0, &(0x7f00000000c0)={{&(0x7f0000000140), 0x12, &(0x7f0000000280)={0x0, 0x10}, 0x7, 0x0, 0x7, 0x201}, 0x9}, 0x8, 0x7fff)

447.882667ms ago: executing program 5 (id=2497):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r0 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0)
write$auto_configfs_file_operations_configfs_internal(r0, &(0x7f0000000140)="8e", 0x1) (fail_nth: 7)

5.371264ms ago: executing program 3 (id=2498):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14f602, 0x0)
r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0)
ioctl$auto(r1, 0x921064a1, 0x9)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/timer_migration\x00', 0x20640, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='}\x00')
r2 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
ioctl$auto_RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000040)={0x884, 0xffffffff, 0xfffffffe, 0x7, 0xfff, 0x55a6, 0xfffffffd, 0x10000, 0x5})
read$auto_rtc_dev_fops_dev(r2, &(0x7f0000000040)=""/137, 0x89)
acct$auto(0x0)
readahead$auto(r0, 0x7ff, 0x9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14f602, 0x0) (async)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0) (async)
ioctl$auto(r1, 0x921064a1, 0x9) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/timer_migration\x00', 0x20640, 0x0) (async)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) (async)
acct$auto(&(0x7f0000000000)='}\x00') (async)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) (async)
ioctl$auto_RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000040)={0x884, 0xffffffff, 0xfffffffe, 0x7, 0xfff, 0x55a6, 0xfffffffd, 0x10000, 0x5}) (async)
read$auto_rtc_dev_fops_dev(r2, &(0x7f0000000040)=""/137, 0x89) (async)
acct$auto(0x0) (async)
readahead$auto(r0, 0x7ff, 0x9) (async)

0s ago: executing program 1 (id=2499):
capget$auto(&(0x7f0000000000)={0x6, <r0=>0x0}, &(0x7f0000000040)={0xc1a3, 0x1, 0x8})
timer_create$auto(0xa, &(0x7f0000000080)={@sival_int=0x7, @raw=0xfffffffa, 0x3, @_tid=r0}, &(0x7f00000000c0)=0x9) (async)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb1\x00', 0x10000, 0x0)
r2 = clone$auto(0x0, 0x7, &(0x7f0000000140)=0x8, &(0x7f0000000180)=0xfffffff9, 0x8) (async)
r3 = memfd_secret$auto(0x8) (async)
openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, &(0x7f00000001c0), 0x10580, 0x0)
write$auto_mousedev_fops_mousedev(r3, &(0x7f0000000200)="3dfaf25e845dbb3dad75", 0xa)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_SET_QOS_MAP(r5, &(0x7f0000000900)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000008c0)={&(0x7f0000000280)={0x618, 0x0, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@NL80211_ATTR_IE_ASSOC_RESP={0x586, 0x80, "aeafcc76e0a09417aafb97189fcd3bc983b8227cbed299828c66983125f2738c357c3232ef60a0d5b25c37ccb90e4d44d52714bca7ed41a18c666d7598fa8f23e58559d76ecf8ee41fc7b5ee0a273085b5321826756f0bbac0fd3a7693536a0181c92aac791270c3f3404fd060d105ac6bad8c53778f7f67de691b0b015a094d1f8bd0313bff838f5094d0cadda608287b595a87104b540e4396c5d270c40746c00e537801a25be316dcb29c21173cae3e22c5b55f913805883b589713939186f95e5786acc496a2adcb1518f7d2cdf2c5ae1cc37a730568669dff06600e009a4c0042475be64d117083bb017b25568805419b8c3a7f313d970b4533ad6790790c11190ea9f243e3f802321e47e8b5a8d985f70c29938216626c4144698114575fe8f0bc3c43ccc14df3f8b2b87f2f86cd113ccfc91813e2294be5d1d9d87a7b8815e694dad9a3a2e177a1b9a8ebb0379f330f2730ab06fc3a1fc514d4508f2a539bda72a411e98765602ecc4245162fc6410470e844a8b0726977b0d9681a4fcf956e1649f5e88af779fbf96ffd3afe3f4d31130125a09662d03e0e4fcea3071a29fdc61b0c75a55fa73a3a8d216bd7696a3375f513033de57760a966c7e13c8751337096c1f0fd63b3b599eddea2ea9966a062a1c84c7373bf0933282b454d2de5d913fcacc418d5d5445b90f165390f41852b80531737a9640cfff08153fb16d3dade453b76b6631754d92caf54686d0e3113e0d19fd7ca74c4933a23c6ee416af3020df29ebf1154cac6a125bec1ccdb1744f2341e3da8a14cfd52d768230c1d156e590bf3d6cf7d1f12f3a08f106e804075ae3eaf806b790f35e655ab5fe76baaf0c8c4c2b0f8d13765e20f1913e3761898443e9475eefe9253bfb6d14bacf974f4d1881a5a0ca93631be26acf077e35215038b9674f064ee94f3fe20208399249fe38f0abf5d18be49368053583a3250733526c736a2991dce8df823eca19416ad8765d6f67e3448c17a6b744ce914a5abff1629ce667ebeb6f3f72cc2766a98db6225579c07438ae6d93054c1a7886cea5f51ba07ae9ba7b5209738264863ba86cedb362d145b002e162d2f921edb883a6f7d41fff2bbaf676cbd364dc6c495ddd777744da3df8dbc6608158b9c5e2e6e76135a055d115b2ad5a1bf0ac10f23722b40468ec064a3c723a9606d65a8aa4fee8b488ae214b0cc7984199c22878ee968f121a8839e98571d9bfe85e5de77d4844adb251d3a15a1e7f66779fbd33254dc1100e169e6b14ad2ee3c9f5ce8c83d0ce46b43a6f17b100938a134055d782cefa72d77ec921e977fa435c05493c0544ae98c45df232d9399c6aaa7f314a4f5841ead2d96d0656014a428e92ea504fff230164960f6e4212995ba43e1572aeea0e8a0204861782db42ef56b10a77e990102bbba6c4652dab57c386eeaa54e88f6d4f619aee9d535d68b6fa2917cd8b09ad1191ba5740567f6f769b7e4514c1ffb607aa4b2a7549c460fa8d0b3672736a624eae70dac13b5e7ac55437176712a1a3a2b30daa16ceb1c3bdbcf4c473aa3c54278eff3cd63934976a576414086ef8b6541aca236eddc7cceec87ab539b6ebb07c9eb1c4732d37ae38a40f0d8e085c6230aed79e701b6c6a5b7335512172489fa4fa982b5e304223b1149bd71562249ffbb3ac0c5036fb099490fb546d3266b9e2899f1fbc704ed2b041c2cfe8388190d9a851616880fa3b2d98d1d0bade93318939b2b29242416e5efd4e2a299d5870c8b22f29728a248d6853127336d2d79365d918437f66c2cd44e7804344661280cc219d22a8f895a09d572a03a1883aebe0a99b2ccb7632df9781036a829601671c89750ed367fd26a4352cb89fc4c35252fe023715e489472d21e3a4b43895bfec1f22b9793ede53b6dfdcbde60d07bd441d9cb82568c825462233207ce097ffc708c4bf4fb79c07909c352ca7af66ccd643367519d5a9ab31bb34c41"}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x9}, @NL80211_ATTR_VIF_RADIO_MASK={0x8}, @NL80211_ATTR_MAC_MASK={0x6b, 0xd7, "fed512d65886b0794378854365cf880f0d257c06ad82a977f268c144ad92899e4f71927df3ca366b97432f3b188c47ab378952e49fecb1e9fba3d308d2f532b7c02cb86f050a2cd5604f6089fb33fafc82dc74f71253854cbcabe0a5baf35031136ea731dbea0a"}]}, 0x618}, 0x1, 0x0, 0x0, 0x20040000}, 0x80)
sched_setparam$auto(r0, &(0x7f0000000940)={0x8}) (async)
r6 = fcntl$auto(r1, 0x3, r2)
r7 = semctl$auto(0x80000001, 0xffff, 0x9, 0xf)
sched_getparam$auto(r7, &(0x7f0000000980)={0xfffffff9}) (async)
r8 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000a00), r5)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(r6, &(0x7f0000000ac0)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x14, r8, 0x8, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000004)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000b00)='/dev/dsp1\x00', 0x400800, 0x0) (async)
r9 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r10 = syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000b80), r4)
sendmsg$auto_HANDSHAKE_CMD_ACCEPT(r9, &(0x7f0000000c40)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x2c, r10, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x800}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x1}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0xfffffffc}]}, 0x2c}}, 0x81) (async)
openat$auto_long_retry_limit_ops_(0xffffffffffffff9c, &(0x7f0000000c80)='/sys/kernel/debug/ieee80211/phy11/long_retry_limit\x00', 0x200480, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000cc0)='/proc/asound/card1/timer_source\x00', 0x101880, 0x0) (async)
r11 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000d40), r4)
sendmsg$auto_TIPC_NL_PUBL_GET(r4, &(0x7f0000002040)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000002000)={&(0x7f0000000d80)={0x1270, r11, 0x2, 0x70bd2c, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x1142, 0x5, 0x0, 0x1, [@typed={0x8, 0xd1, 0x0, 0x0, @fd=r1}, @nested={0x10de, 0x34, 0x0, 0x1, [@generic="670437d12e5bb57cfb7611ea1f9c85c79587390581553c61bd1b5efdd4d658c242f9accb4526b32e9dbefee1c536d3", @nested={0x4, 0x102}, @generic="9b47f66a0a70d7ea7a3f86164bb4326fc41a0e22a67c7297e8c267949e23f0a5981a974f430ef702375c3751ccc00a33c1bc5444e181b2983c06c63781f96dbbd9b90c5aeaa32e6c8e19db9b8fab7f577bbc2e147d838a94d02301909103019edf5842a8792996d046a952ff7a6575982098d19dfa957035146b08fdf31d35bd2b97b0327af33e", @typed={0x8, 0x114, 0x0, 0x0, @fd=r9}, @nested={0x4, 0x146}, @generic="8b6d7dae192d7c680da7a09d65c2a3ef6d8a16f156d202081790c2573e71005176b7e9450d3b0936b76843e5fdf993ccbd9c1397e6bc0ada26f1eeae1ff5e2fd0a31264b7c0b331e277500a388eb8e86fbc06bf53563d00bd1b72555863723c35fbf3d8c10337a67f795bcf761335f0c6b5cccc95ca46f732cea9da9c6ab8c24fd626a55012b4536af129bc83d6831f968226de248692f17efdd0a6bc5850e584d4c42e1aa705cc4f8ff15b841b77888365b5df4eae113c6530702cd016afa59e9bbd199e0b176e34fc3b5ece1c1d0a69be385639871d6f4c2578e0fc4fd7b7d3dbb78ef4ad2a989e66c911f4175742ee4e0d4d5b973337a01f93f539941508b4579f8c0b3d73c00f7b13c866ff4db221e77143a502ead3e0a9df4433b4bfc0ba7339a78cd7f65cfdd4bc0260e736a171c05f42cf60465cf7f0678720e1a47408c73746bcd807be0343e14e081b05dacab433af133420d1634338f0ef4d61c1adfc3c8384775f31b9e8c533a6a3643c380d9c523b2a035a803c1018ad00463c711a32dfa2411206bea3dd5bc454c7222ac3668ecab3d8d02520d0f6f9e952b74f315eeb209fb98cdd6edbecfa198212cddac4484651ec8e6c98786b000372183f90e46d73371f85e7a8677c7e70f8da0d65b53b95c4745140740694e06791014b492e5bdc0d0c2a2b5cc8b50cb18425cffef53b4f5100a2b8353286bd84dd05fd1134d63ef940fc2258050bb10c856ce0ecf0dc8e4b568cd03f8501cdfb19d544cb5475ae3a32e27a47f3614dc0ce9f7a11868afe3d57d59ec1309ebbdbea6e50b5a8b43c32d474c41a9fb43948868a95bf45b26ad0da6ca56eeb20c7a048be91a29f2531fb0ab1bbdd5d0f4d097c68aa5f6b51e0a497d0aac61e492ac6b88b97b6a1fd25ebcd7ec1047a7ff8363d02063243a13b62feb475cd9ecf4b227497d53d382e5f7df5cb47852b0985b2d1c26355f0b2315da066984fb434506c55c81ec1b3954b8df86c07b867ee8e35f448ddfc5d7a27ba3e42549182f3d7274348a0341b154e5a27ef426a208a6b73873793621752d27efe8b27fbf3750d5da7190a941d0fe2552d5022b980c6a2350d606ba2e073845025a63ca284d52260a224089df69ee7a5a99b891b9e432ddaf583837d119e0cbba97f07f328ffa12588a26b31907b2818d5f63c57e324a6131ed8ac6df3044b7f7a8484581fd9585e513ad2253b50efee90d9d7c937522015526aa602e634282cceeb5b8b1190b40cda36dbd3f6e829e70195b566d87f2051682a4be6f9716d6c48c56f388b9b519cba45d93d7900793320f208671ba6ea50fd4f5c08dc5b52805f591e70761a46f7847fbeafd97539909f6a5f5d835ae7c4989dd5bb13eecf5ee8889817d104eed462655300cbffcb39c0ecf631ed57589e596e1c16c2d5c9272a5d1013612a63ce2ac668e24d47e29bfbcbea03e8ed9e8f7064f3cedc6351ced399e89b1490ca144d3cf1501063ba93e61d5e942ef3562b4abf89bdc99c635bf6fa0f8fb07ebabeec40ccb1d8fd9b08e5c4dbc0a835a1354b4891607cefdc38bb8e2b6eeea0b973190be9d144220d9c6bacdc9963c0d5edcb3217d301c9ac367b71196ccaf54d49ea97260a88946e5b0f49234efc6f51829c4448525ee51581bc9066f5f5844b1abfc8eff4ab35a441e10ceffefcc4d3d81740051eefe3d1439fc660e387e347230f9ee1eb2e1e465d320b266b7fc313b3502ecf1a01ca29c1613a206d96ae119040304477a849da8ccda98d1297d94b2bd678a7a6a1f762b9fe36ba84f12879cd362e9b44452253cee261d23b2ce6dd45809e1c59a48ea58302941bae383959f4578f36a76427e15a2adb424089a2d6be6d1b394eca481de8e63aaed197f62a9963eaf394d317e68b4b4954300a2bf231e68fa2e404bb6c99841dc0cf45b583484e45ecbe605f350988ee37bc3580d5c6e384beda54c8822342984f617e86318801d3c01e71e97f45d1f49ca7bfe8d042cd7e044798955007da174c5c3e9d84da24f785d8dd870dfb77e8f84a2a9ba769e36c26d2f8e6a52ec67564ffc855233512f975407fdfd2722d778f9835b7f8999da5a1d81f563b15489d9647fc23cffdea2c02b5f23ba12b6726a0f8ecb6ff89ca8c274de905a623523ce208ade975f571afb620a71b3a83bc069dd62bdb89770c8237779fa7a2a31800d2585563de51b54f4df5dede1f34fd51e19f09100df2822d4a4a862376c9d2c2f3234578774923c01bf54e9581ded5dc6c9c28e09474077001b67aac4f00d85b6cb55a7dea1d085f61f03bf74768657e21b9bcd44503bd3214c911c21e189371795c4cffa51303d4e4df4e0f6c6840913c6e64c4a17c378b9189aad545763fd1745d266aa7cc839a3fed45339e45dcb5d7f481efd2d022c667f2c8b9cfb9799357d6ead41eb065dd3d6b04f68300cba30ec8c0ae32ee672acc770a1c064df336d44a9d8301e330c3a02a6c7db14a6e7bec82a75da65c42328e61ab17bd6dcbce2c968d27d1bf42aa70c2839d479730323beedd81c18d4576cea614886eca4a1cfa25b972fe8905fe6d6585e604e4ae3e6c421b69272e8084694fbff8af807f2dcf883d2ab04e22d694e29460b044735fd58afc80944db1cb76cdfca15f801590615dc4a2bdcaa2a2b456d8ce6b3172ba9689ac37b37aab24a9167ed17a49fc711c59f306c89c82e3d978e1032c48f3e5c2030f23be123e3d13bf175bf84292ff72d4649f6e15673b2064a1816090bf94018e7918ac8e4c268e3498a1dd2253ad751daa153811161f74c8420dc34897b15f8d57b09af24524b792338729c5a91b147d4ef22644b227394e608951d8329fee84337dc5cf51450b48cfcc859b51aac82b103c37db53c80b6be8a9032546b40847322481b52b698d79b928bc1e0c9531f433f0b6d486bab73e75e70a9c41c9b52feda20c9c3ea7c67ccbc0fb4d7234866875eb67115a934a5b7b612406b71026ac4f3ca47aca4a247df83a84027165688374628615fd77ec2dd927350b86b3669d294e19ca4cea1a53fe8b6173324502ebed7a9978c9e91a77e49e1677abee102579f0f95ab9cd3e6f9c67ccff0bf719177b766cd1d24a225244993ade2eff8babc50903759568f19b00e09248ec1c596c0c5335a4ddbe26ba2bd01a32a0755721f1ef18f5532ad8869a601666ca111d9c8cfcd39ed729f3f5919fff7a66e5897941f06e6dc053b0e413a5ff91b9b6ed14fedb3a49698122507c6e025241399f5a0ae30c5a91bbbad415a8528cc8ae8ae32b50e4f78268d492603c3977b10b5df2a276ef1e0f5331c14a8c350dc3161442b2ef953d5feed232fa7d1b69b95eb72db62c37a943d8f4e57328ceefc4d3b6a3d410fbf7254b1ca81b3fd1b444ad44360545ffcb9cbc1e00b647f17f2870e9200027c72fb8ba4fa039f3601fb19e972e5514a919fd2338da70841e85957b664d403a3f1c214ebfc2d05cac405ee17205981fc42e9d49181f039419507e805d404e72c3b61859cfda697c1204f382a60593bfdde0c986c4958ba62a06b3bcdf4a28ca7babe93ca3b989b6a90a4c8c242cc03b0f01dbead91b4199e28269e9b9ee08b015c598f0b862758436af35cb35563d9b69767fe7c5baf24980660fc647496f4304126a0683fcd1e8f0fa4e183be2a3c6433a2c39fb18299a01d282c588ace4c8bba1454891924aac64679db1aa57b078bee6726b27a20f70186d048179d759edf79b615f34dd8e865e1593cd2ae8d865c61760a2b4c5c0c74dde4976a18836bc2a868643fa93e7b0d43348dda0c6d20cb405d78f271b713540d25437f70d09bc2603bd378ea44b948ad5a5bc27b579f4b5096645cca80d545f2da5b764f6782e25c1a68976f14638afa013e51d768e683d109032adbe55caef445a066e93802d3897d9e3feb933921dd5e4c3e2594b22152579179c402156a5a4f165939f932d0ce15c0e4d2da48c780181f5857ee71c25ab3e8a8bc94307cd22cb9f2741b9633047349691f18b1c8c30eb56f849288838574d329d1e5cf84fcb1b6bb4b8df77552a54102f9ca8190478c80c4edaad43268bf5062cb5484a4e2e2e7ac69922fab2187794bba40011d26996a3db84ca664889471c235a85e10316c41eb04649cd5d587035451501fa3f0ed9a769440f15da39d9b81545101cbea7596d2053b6674a03e4b9c221888c9efa311b65bd29415579eca22cf1dd0a845fa95c5ffbc675ebda4472edd7e7ef18a3cae9fd6a4c77e9b28db48a2d3937b7c810fd052dae5587f5caefd2d7b1c5eaa0e2e134c3a8294735bb02be7f3d4227b3515b0122837a3e367428ea7c9ccd970496737b3baf675baa3a642d40b1cdece681df35d3f1bad23df4fe54e535651cc0a56194baf1874409cdf92c2da7b5133ffdcaa12103a4342183f0fc16d506029c473f8874e3ee7931053d3b71268a9b6e5281fa478ab318bf7cad6892397ee973e963c0f4249c6122004d5fadfd9087d22fedfd4ad7de78a28fdb19053386eb513efff1640c9cf789826b5d6ebf13dcc1c462445e1ccac72f726b5a6fe184845c68f3b4e0cc655dcc6f1c5bc191a0e9a37baaf2cf9b20dcb6c9118fab782b20182cd44538519c8d4c8cf948beaf25bd621a7c72242666fe7006785871de1d6af0a5c1c3d73a626b5f74f1fb540cf2983ed8e9fe3e7fde2cf47d39a6fa03c827cd6f79108b173883a47c40d0f7c0fbeb3ccbfb79e359c528f233a1556389517df0dbaf55c43c2edb627092acbab014b966d713f514d83a1f1dedcca25fcfc59b0803d023fc4318d9ad4920311d7d8abaf3f1dadf2ba1e0dfd53f525ad00dae9c2d63d800e163a05e474a0866bbaa06a1b51300a57a6764d395b8924eeaca79c17339282725c31025c5e51cf965fd7341f6bce3a8d0db61b75b99b1f7f577b38ca4de133ce1913346bc25af2092aa3fa2b2c73f8ce7db7e7dd5611ab06bd3640a8057573fbd25d3aa23d2fc7c058c8b41e436dd1a8ef5bee50d81c21e5ab8ee34970983b0714a0090d8382bbd789e9cc4b45dd6157a3e74664019471383d0abecd94a4e97277fd54819969a3b84048827c129cf64d6f0f312c8276a28b8d6e99fb626b965c66b4377a6b6cdce9e9b31298efdd0dcf429b4149652437a5e70aab59c580bd79d4e2f6fda20ac3befa1e778ec6304f2b766814f5dd6239cddeb048f41776d167e830d9b0a395c931cadea952dfca9abf2ac35ee5335aeed9c10b6c74716a7bba701ab6e919ee4cfe69fddb9bf3dda493aca0731b9b6e133ce6bf01f893635588ccf5492bc88d5332e801321df26d85ab7a4a9f2c3699e416a1193b38c169833a1744ca07e12b0c8adfc6b463a7e4492079bae8639feebf1bf8c67dc70d43841271bfd487778df20cd6e85a008f94dd1cd3c01201343828baefd22e93da812b6e1df9c40d56c6518b534ca4f68743d0e32485c8c012b2635b3af24a044a56ef7c6738e4f9fb17018c7ee944bba22a8ed8c3d69c38e1f1f4facbc0621df50b1b80756951399985da7875118d99e76463a476b7b13dd13d7964fb7c9b4d855739019fffa25cb9ea72b6dd9d6414b3cf1507033ac0fcebb9eb01c7e2beb60cd426dd81177a85ef5e269adb0ca2d9e5b1bbc93d110c95c5e41448fac2ae5bd8f61c69c43a3a47ae9f80eb15916f4016405510a7daf29d20ee3a530dd1c3085b727c9ce6802e14ccbd049fb60b348c68cbc129b1647e25910619b9327cdde7f52956a6517c1747b46f851ef22ce6e89547d191c98c348e23970d", @nested={0x4, 0x59}, @typed={0x8, 0x63, 0x0, 0x0, @u32}, @nested={0x4, 0x48}, @typed={0x4, 0x5f}]}, @generic="89bc151dfcac1a6132b454de31a378cde41fba9dc87de4970ba8fa5662bf67bccd52ce0abe178234de223ed1d7dba2cb384ba774f5baac7df9ade97ca5a911d02b25d35c7600247698c7804a2b7cbb3bb52c69c8a2d4"]}, @TIPC_NLA_PUBL={0x117, 0x3, 0x0, 0x1, [@nested={0xb4, 0x86, 0x0, 0x1, [@typed={0xaf, 0x14a, 0x0, 0x0, @binary="340eae9f89a30e677250748c282193d1d92f18aae76d5f9b5d8687b6e8a83e40808a9632ea1f0532b623a3d2f532a65f4565626ebb97c5aa227fa6f6e4863144684d9713dd0483b60d18d1c59abc0346c497b3b6c8ac6cdef4257a4cebd09e8713b8fd1b76c9f54bbb2ca515676edd42d034626e403ce36d9822bfc5890e66edf00db8462c8cacd576f79b8eb61bb85e29c2c7f4aff56b83a0b51fd1f62e709eacde004a082ad3957561c1"}]}, @generic="e357b750132ae62a25c580b82cca24191f961164262a66660fb4fb616a8b4afd0acf2fadf7824404d9f80ce2f5c9273cd4e8f4e969323bf10f23ee525873971d5dc26d9518f670b8af9a19d2cbfdfa65849e791f32214d", @typed={0x6, 0x2d, 0x0, 0x0, @str='+\x00'}]}]}, 0x1270}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000) (async)
io_uring_enter$auto(r9, 0xfffffffa, 0xa3ff, 0x8, &(0x7f0000002080)="4cfc6557b2aec34250fe137c2726ff456568f1c7e203813e810c455236b3c1fe4d343bbba2fb77787ab0d9eb56cad7c70fc487189103555e71e4001f72dff3eea1248b8a86b2bfca6b159ebe5fe5be29b25dedc5e55c6d347571773779cde8986a894b67a288f7fdd33a01975752b2e2481e4384ac292b0d90602a3f9936b4a14d6e31b979ceeb858e46e925e62e58a559d09761a5b2f55a88707b2570c7f21ebe85f46003b9d1636bb2df44388103561b1d861923b39cbb37772e34e5daa705a0c0f1c61b6e02d6a01dcb05239c20adfe54", 0xd08)
r12 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f00000021c0), r4)
sendmsg$auto_TCP_METRICS_CMD_GET(r5, &(0x7f0000002280)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000002240)={&(0x7f0000002200)={0x14, r12, 0x1, 0x70bd2c, 0x25dfdbfb}, 0x14}}, 0x24040800) (async)
capget$auto(&(0x7f00000022c0)={0x80, r0}, &(0x7f0000002300)={0x5, 0x1, 0x8381}) (async)
r13 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002380), r9)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f0000002440)={&(0x7f0000002340)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002400)={&(0x7f00000023c0)={0x24, r13, 0x800, 0x70bd25, 0x25dfdbff, {}, [@ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x2}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x95}]}, 0x24}, 0x1, 0x0, 0x0, 0x44002}, 0x0)

0s ago: executing program 5 (id=2500):
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x3, 0xa)
openat$auto_tracing_stats_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu0/stats\x00', 0xa00, 0x0)
socketpair$auto(0x1e, 0xf, 0x8000000000000000, 0x0)
r0 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0)
write$auto(r0, 0x0, 0xe) (fail_nth: 1)

kernel console output (not intermixed with test programs):

netlink: 330 bytes leftover after parsing attributes in process `syz.0.1011'.
[  342.330545][T10068] openvswitch: HSR: Dropping previously announced user features
[  343.433474][T10093] hugetlbfs: syz.1.1017 (10093): Using mlock ulimits for SHM_HUGETLB is obsolete
[  343.676245][T10098] vivid-013: =================  START STATUS  =================
[  343.684284][T10098] vivid-013: Generate PTS: true
[  343.689326][T10098] vivid-013: Generate SCR: true
[  343.713127][T10098] tpg source WxH: 640x360 (Y'CbCr)
[  343.725782][T10098] tpg field: 1
[  343.729242][T10098] tpg crop: 640x360@0x0
[  343.733443][T10098] tpg compose: 640x360@0x0
[  343.739295][T10098] tpg colorspace: 8
[  343.743165][T10098] tpg transfer function: 0/0
[  343.747883][T10098] tpg Y'CbCr encoding: 0/0
[  343.752460][T10098] tpg quantization: 0/0
[  343.756749][T10098] tpg RGB range: 0/2
[  343.760699][T10098] vivid-013: ==================  END STATUS  ==================
[  344.566395][T10118] openvswitch: HSR: Dropping previously announced user features
[  344.866457][T10113] Invalid ELF header magic: != ELF
[  345.197932][T10134] vivid-013: =================  START STATUS  =================
[  345.217281][T10134] vivid-013: Generate PTS: true
[  345.231605][T10134] vivid-013: Generate SCR: true
[  345.248718][T10134] tpg source WxH: 640x360 (Y'CbCr)
[  345.264071][T10134] tpg field: 1
[  345.275080][T10134] tpg crop: 640x360@0x0
[  345.287567][T10134] tpg compose: 640x360@0x0
[  345.297880][T10134] tpg colorspace: 8
[  345.310401][T10134] tpg transfer function: 0/0
[  345.325568][T10134] tpg Y'CbCr encoding: 0/0
[  345.344292][T10134] tpg quantization: 0/0
[  345.365281][T10134] tpg RGB range: 0/2
[  345.369264][T10134] vivid-013: ==================  END STATUS  ==================
[  345.668156][T10147] vivid-002: =================  START STATUS  =================
[  345.694217][T10147] vivid-002: Generate PTS: true
[  345.699187][T10147] vivid-002: Generate SCR: true
[  345.714000][T10147] tpg source WxH: 640x360 (Y'CbCr)
[  345.719194][T10147] tpg field: 1
[  345.722614][T10147] tpg crop: 640x360@0x0
[  345.743826][T10147] tpg compose: 640x360@0x0
[  345.752957][T10147] tpg colorspace: 8
[  345.763610][T10147] tpg transfer function: 0/0
[  345.774139][T10147] tpg Y'CbCr encoding: 0/0
[  345.778633][T10147] tpg quantization: 0/0
[  345.782831][T10147] tpg RGB range: 0/2
[  345.799445][T10147] vivid-002: ==================  END STATUS  ==================
[  347.556127][T10183] openvswitch: HSR: Dropping previously announced user features
[  347.916144][T10188] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1040'.
[  348.565286][T10206] Process accounting resumed
[  348.959995][T10213] warning: `syz.1.1047' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  350.277812][T10234] vivid-013: =================  START STATUS  =================
[  350.295853][T10234] vivid-013: Generate PTS: true
[  350.311097][T10234] vivid-013: Generate SCR: true
[  350.328070][T10234] tpg source WxH: 640x360 (Y'CbCr)
[  350.349395][T10234] tpg field: 1
[  350.352941][T10234] tpg crop: 640x360@0x0
[  350.373842][T10234] tpg compose: 640x360@0x0
[  350.388713][T10234] tpg colorspace: 8
[  350.392604][T10234] tpg transfer function: 0/0
[  350.433807][T10234] tpg Y'CbCr encoding: 0/0
[  350.466562][T10234] tpg quantization: 0/0
[  350.543880][T10234] tpg RGB range: 0/2
[  350.573930][T10234] vivid-013: ==================  END STATUS  ==================
[  350.820546][T10239] openvswitch: HSR: Dropping previously announced user features
[  353.474283][T10292] ERROR: Out of memory at tomoyo_memory_ok.
[  353.759264][T10298] openvswitch: HSR: Dropping previously announced user features
[  353.847853][T10306] vivid-013: =================  START STATUS  =================
[  353.907587][T10306] vivid-013: Generate PTS: true
[  353.912565][T10306] vivid-013: Generate SCR: true
[  353.978037][T10306] tpg source WxH: 640x360 (Y'CbCr)
[  354.023092][T10306] tpg field: 1
[  354.055060][T10306] tpg crop: 640x360@0x0
[  354.104818][T10306] tpg compose: 640x360@0x0
[  354.163901][T10306] tpg colorspace: 8
[  354.185441][T10306] tpg transfer function: 0/0
[  354.207383][T10306] tpg Y'CbCr encoding: 0/0
[  354.242690][T10306] tpg quantization: 0/0
[  354.300237][T10306] tpg RGB range: 0/2
[  354.338649][T10306] vivid-013: ==================  END STATUS  ==================
[  357.345303][T10380] openvswitch: HSR: Dropping previously announced user features
[  357.718620][T10395] vivid-013: =================  START STATUS  =================
[  357.733316][T10395] vivid-013: Generate PTS: true
[  357.745678][T10395] vivid-013: Generate SCR: true
[  357.750720][T10395] tpg source WxH: 640x360 (Y'CbCr)
[  357.761568][T10395] tpg field: 1
[  357.765947][T10395] tpg crop: 640x360@0x0
[  357.772162][T10395] tpg compose: 640x360@0x0
[  357.782176][T10395] tpg colorspace: 8
[  357.786294][T10395] tpg transfer function: 0/0
[  357.791928][T10395] tpg Y'CbCr encoding: 0/0
[  357.796691][T10395] tpg quantization: 0/0
[  357.800905][T10395] tpg RGB range: 0/2
[  357.805046][T10395] vivid-013: ==================  END STATUS  ==================
[  358.431678][T10401] netlink: zone id is out of range
[  358.437138][T10401] netlink: zone id is out of range
[  358.448044][T10401] netlink: zone id is out of range
[  358.467621][T10401] netlink: zone id is out of range
[  358.477794][T10401] netlink: zone id is out of range
[  358.482991][T10401] netlink: zone id is out of range
[  358.529430][T10401] netlink: zone id is out of range
[  358.566788][T10401] netlink: zone id is out of range
[  358.683881][T10401] netlink: zone id is out of range
[  358.689132][T10401] netlink: zone id is out of range
[  363.614309][T10435] openvswitch: HSR: Dropping previously announced user features
[  366.788814][T10463] vivid-013: =================  START STATUS  =================
[  366.796761][T10463] vivid-013: Generate PTS: true
[  366.801710][T10463] vivid-013: Generate SCR: true
[  366.806936][T10463] tpg source WxH: 640x360 (Y'CbCr)
[  366.812107][T10463] tpg field: 1
[  366.815652][T10463] tpg crop: 640x360@0x0
[  366.819964][T10463] tpg compose: 640x360@0x0
[  366.824713][T10463] tpg colorspace: 8
[  366.828563][T10463] tpg transfer function: 0/0
[  366.833337][T10463] tpg Y'CbCr encoding: 0/0
[  366.837932][T10463] tpg quantization: 0/0
[  366.842127][T10463] tpg RGB range: 0/2
[  366.846213][T10463] vivid-013: ==================  END STATUS  ==================
[  367.941708][T10461] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  368.192782][T10491] Process accounting resumed
[  368.220057][T10491] synth uevent: /bus/usb/drivers/gud: unknown uevent action string
[  368.334643][T10493] openvswitch: HSR: Dropping previously announced user features
[  369.652114][T10524] vivid-013: =================  START STATUS  =================
[  369.695959][T10524] vivid-013: Generate PTS: true
[  369.700940][T10524] vivid-013: Generate SCR: true
[  369.799592][T10524] tpg source WxH: 640x360 (Y'CbCr)
[  369.832228][T10524] tpg field: 1
[  369.843516][T10524] tpg crop: 640x360@0x0
[  369.871347][T10524] tpg compose: 640x360@0x0
[  369.905333][T10524] tpg colorspace: 8
[  369.909641][T10524] tpg transfer function: 0/0
[  369.917207][T10524] tpg Y'CbCr encoding: 0/0
[  369.921801][T10524] tpg quantization: 0/0
[  369.927427][T10524] tpg RGB range: 0/2
[  369.931399][T10524] vivid-013: ==================  END STATUS  ==================
[  371.080764][T10550] vivid-013: =================  START STATUS  =================
[  371.097944][T10550] vivid-013: Generate PTS: true
[  371.107005][T10550] vivid-013: Generate SCR: true
[  371.111969][T10550] tpg source WxH: 640x360 (Y'CbCr)
[  371.123767][T10550] tpg field: 1
[  371.127230][T10550] tpg crop: 640x360@0x0
[  371.142688][T10550] tpg compose: 640x360@0x0
[  371.148027][T10550] tpg colorspace: 8
[  371.151999][T10550] tpg transfer function: 0/0
[  371.162298][T10550] tpg Y'CbCr encoding: 0/0
[  371.168200][T10550] tpg quantization: 0/0
[  371.183770][T10550] tpg RGB range: 0/2
[  371.187770][T10550] vivid-013: ==================  END STATUS  ==================
[  371.265622][T10549] openvswitch: HSR: Dropping previously announced user features
[  372.224740][T10576] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  372.284378][T10576] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  372.291589][T10576] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  372.326032][T10576] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  372.336229][T10578] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1130'.
[  372.346729][T10578] mac80211_hwsim hwsim5 wlan0: entered promiscuous mode
[  372.616652][T10585] vivid-013: =================  START STATUS  =================
[  372.637390][T10585] vivid-013: Generate PTS: true
[  372.642494][T10585] vivid-013: Generate SCR: true
[  372.653810][T10578] mac80211_hwsim hwsim5 wlan0: entered allmulticast mode
[  372.663815][T10585] tpg source WxH: 640x360 (Y'CbCr)
[  372.678104][T10585] tpg field: 1
[  372.705847][T10585] tpg crop: 640x360@0x0
[  372.710091][T10585] tpg compose: 640x360@0x0
[  372.741237][T10585] tpg colorspace: 8
[  372.794075][T10585] tpg transfer function: 0/0
[  372.798750][T10585] tpg Y'CbCr encoding: 0/0
[  372.803213][T10585] tpg quantization: 0/0
[  372.886107][T10585] tpg RGB range: 0/2
[  372.890100][T10585] vivid-013: ==================  END STATUS  ==================
[  373.428596][T10609] openvswitch: HSR: Dropping previously announced user features
[  374.263905][   T55] Bluetooth: hci0: command 0x0406 tx timeout
[  374.344868][   T55] Bluetooth: hci3: command 0x0406 tx timeout
[  374.350982][   T55] Bluetooth: hci2: command 0x0406 tx timeout
[  374.357105][ T5144] Bluetooth: hci1: command 0x0406 tx timeout
[  375.331769][T10658] vivid-006: =================  START STATUS  =================
[  375.350560][T10658] vivid-006: FM Deviation: 75000
[  375.363904][T10658] vivid-006: ==================  END STATUS  ==================
[  376.607558][T10691] vivid-013: =================  START STATUS  =================
[  376.643864][T10691] vivid-013: Generate PTS: true
[  376.669320][T10691] vivid-013: Generate SCR: true
[  376.686866][T10691] tpg source WxH: 640x360 (Y'CbCr)
[  376.705292][T10691] tpg field: 1
[  376.708746][T10691] tpg crop: 640x360@0x0
[  376.730377][T10691] tpg compose: 640x360@0x0
[  376.743802][T10691] tpg colorspace: 8
[  376.765427][T10691] tpg transfer function: 0/0
[  376.780407][T10691] tpg Y'CbCr encoding: 0/0
[  376.794634][T10691] tpg quantization: 0/0
[  376.809183][T10691] tpg RGB range: 0/2
[  376.828960][T10691] vivid-013: ==================  END STATUS  ==================
[  378.988684][T10736] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1155'.
[  379.910163][T10749] vivid-013: =================  START STATUS  =================
[  379.918116][T10749] vivid-013: Generate PTS: true
[  379.923160][T10749] vivid-013: Generate SCR: true
[  379.928239][T10749] tpg source WxH: 640x360 (Y'CbCr)
[  379.933529][T10749] tpg field: 1
[  379.937049][T10749] tpg crop: 640x360@0x0
[  379.942830][T10749] tpg compose: 640x360@0x0
[  379.949921][T10749] tpg colorspace: 8
[  379.953943][T10749] tpg transfer function: 0/0
[  379.958750][T10749] tpg Y'CbCr encoding: 0/0
[  379.963240][T10749] tpg quantization: 0/0
[  379.967572][T10749] tpg RGB range: 0/2
[  379.971611][T10749] vivid-013: ==================  END STATUS  ==================
[  381.917341][T10782] 0}
^: entered promiscuous mode
[  382.363554][T10797] can: request_module (can-proto-4) failed.
[  383.946530][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  383.953131][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  385.455747][T10875] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1190'.
[  386.959040][T10911] vivid-013: =================  START STATUS  =================
[  386.978213][T10911] vivid-013: Generate PTS: true
[  386.990855][T10911] vivid-013: Generate SCR: true
[  387.002463][T10911] tpg source WxH: 640x360 (Y'CbCr)
[  387.016103][T10911] tpg field: 1
[  387.023599][T10911] tpg crop: 640x360@0x0
[  387.038186][T10911] tpg compose: 640x360@0x0
[  387.042698][T10911] tpg colorspace: 8
[  387.063861][T10911] tpg transfer function: 0/0
[  387.070927][T10911] tpg Y'CbCr encoding: 0/0
[  387.100183][T10911] tpg quantization: 0/0
[  387.124120][T10911] tpg RGB range: 0/2
[  387.128107][T10911] vivid-013: ==================  END STATUS  ==================
[  389.684448][T10964] openvswitch: HSR: Dropping previously announced user features
[  389.805206][T10965] net_ratelimit: 18 callbacks suppressed
[  389.805229][T10965] netlink: zone id is out of range
[  389.885399][T10965] netlink: set zone limit has 8 unknown bytes
[  392.593852][T11023] sd 0:0:1:0: PR command failed: 1026
[  392.599609][T11023] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  392.606619][T11023] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  393.434741][T11031] ERROR: Out of memory at tomoyo_memory_ok.
[  393.666609][T11037] openvswitch: HSR: Dropping previously announced user features
[  394.234022][T11032] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1222'.
[  397.776932][T11082] openvswitch: HSR: Dropping previously announced user features
[  401.933707][T11131] vivid-013: =================  START STATUS  =================
[  401.989237][T11131] vivid-013: Generate PTS: true
[  402.027324][T11131] vivid-013: Generate SCR: true
[  402.074191][T11131] tpg source WxH: 640x360 (Y'CbCr)
[  402.096398][T11131] tpg field: 1
[  402.112215][T11131] tpg crop: 640x360@0x0
[  402.153902][T11131] tpg compose: 640x360@0x0
[  402.158421][T11131] tpg colorspace: 8
[  402.195712][T11131] tpg transfer function: 0/0
[  402.219025][T11136] openvswitch: HSR: Dropping previously announced user features
[  402.246843][T11131] tpg Y'CbCr encoding: 0/0
[  402.296937][T11131] tpg quantization: 0/0
[  402.312793][T11131] tpg RGB range: 0/2
[  402.335806][T11131] vivid-013: ==================  END STATUS  ==================
[  402.372461][T11140] Process accounting resumed
[  402.975537][T11155] ERROR: Out of memory at tomoyo_memory_ok.
[  403.579927][T11170] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1255'.
[  404.595631][T11163] kexec: Could not allocate control_code_buffer
[  405.335346][T11198] ERROR: Out of memory at tomoyo_memory_ok.
[  405.674350][T11201] openvswitch: HSR: Dropping previously announced user features
[  408.499100][T11266] openvswitch: HSR: Dropping previously announced user features
[  411.188212][T11297] netlink: 'syz.2.1283': attribute type 1 has an invalid length.
[  411.715617][T11323] openvswitch: HSR: Dropping previously announced user features
[  411.753952][T11325] can: request_module (can-proto-3) failed.
[  414.456172][T11378] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1301'.
[  414.829596][T11393] openvswitch: HSR: Dropping previously announced user features
[  415.440105][T11402] cgroup: fork rejected by pids controller in /syz2
[  417.508815][T11507] openvswitch: HSR: Dropping previously announced user features
[  420.637607][T11577] openvswitch: HSR: Dropping previously announced user features
[  421.666726][T11594] Invalid ELF header magic: != ELF
[  421.685363][T11593] Invalid ELF header magic: != ELF
[  422.034641][T11593] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  424.345759][T11691] openvswitch: HSR: Dropping previously announced user features
[  424.495190][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  425.607719][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  427.217438][T11786] openvswitch: HSR: Dropping previously announced user features
[  428.701098][T11803] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1357'.
[  430.080146][T11832] openvswitch: HSR: Dropping previously announced user features
[  433.246495][T11867] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[11867]
[  434.786205][T11885] openvswitch: HSR: Dropping previously announced user features
[  435.704722][T11897] random: crng reseeded on system resumption
[  438.236583][T11931] openvswitch: HSR: Dropping previously announced user features
[  440.452175][T11949] ERROR: Out of memory at tomoyo_memory_ok.
[  441.425665][T11969] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1393'.
[  441.901364][T11975] openvswitch: HSR: Dropping previously announced user features
[  442.896537][T11987] delete_channel: no stack
[  443.863533][T11986] Invalid ELF header magic: != ELF
[  444.300921][T12018] openvswitch: HSR: Dropping previously announced user features
[  445.379625][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  445.385994][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  447.338938][T12061] openvswitch: HSR: Dropping previously announced user features
[  448.272454][T11988] syz.3.1399 (11988) used greatest stack depth: 20240 bytes left
[  450.367073][T12111] openvswitch: HSR: Dropping previously announced user features
[  452.699039][T12152] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  452.963801][T12159] openvswitch: HSR: Dropping previously announced user features
[  456.369994][T12215] openvswitch: HSR: Dropping previously announced user features
[  456.828113][T12222] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1450'.
[  457.368885][T12228] ERROR: Out of memory at tomoyo_memory_ok.
[  457.926725][T12244] netlink: 206 bytes leftover after parsing attributes in process `syz.2.1455'.
[  457.987621][T12244] random: crng reseeded on system resumption
[  461.830264][T12265] openvswitch: HSR: Dropping previously announced user features
[  462.644413][T12269] netlink: 130 bytes leftover after parsing attributes in process `syz.1.1460'.
[  464.751337][T12307] openvswitch: HSR: Dropping previously announced user features
[  464.783665][T12315] netlink: 'syz.3.1473': attribute type 4 has an invalid length.
[  464.800175][T12315] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1473'.
[  465.151469][T12319] QAT: Device 255 not found
[  467.827720][T12354] openvswitch: HSR: Dropping previously announced user features
[  470.006345][T12384] nbd: must specify at least one socket
[  471.340524][T12413] openvswitch: HSR: Dropping previously announced user features
[  473.995709][T12439] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1502'.
[  474.289845][T12445] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1504'.
[  474.803410][T12451] openvswitch: HSR: Dropping previously announced user features
[  478.342381][T12499] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1520'.
[  478.585650][T12501] openvswitch: HSR: Dropping previously announced user features
[  479.956197][T12520] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1527'.
[  479.978915][T12520] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  480.215392][T12520] batman_adv: batadv0: Removing interface: batadv_slave_1
[  480.443814][T12525] can: request_module (can-proto-0) failed.
[  481.004773][T12534] HfR: entered promiscuous mode
[  481.031371][T12534] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1530'.
[  481.073831][T12534] HfR: left promiscuous mode
[  484.015060][T12550] Invalid ELF header magic: != ELF
[  486.095885][   T29] audit: type=1800 audit(4294967353.066:11): pid=12570 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1538" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  486.832502][T12586] openvswitch: HSR: Dropping previously announced user features
[  489.848155][T12603] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1546'.
[  489.884136][T12603] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1546'.
[  490.275949][   T27] ERROR: Out of memory at tomoyo_memory_ok.
[  490.593839][ T5839] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  490.606472][ T5839] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  490.622939][ T5839] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  490.640858][ T5839] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  490.650268][ T5839] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  490.659160][ T5839] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  491.161309][T12609] chnl_net:caif_netlink_parms(): no params data found
[  491.751792][T12609] bridge0: port 1(bridge_slave_0) entered blocking state
[  491.772457][T12609] bridge0: port 1(bridge_slave_0) entered disabled state
[  491.786370][T12609] bridge_slave_0: entered allmulticast mode
[  491.798479][T12609] bridge_slave_0: entered promiscuous mode
[  491.824886][T12609] bridge0: port 2(bridge_slave_1) entered blocking state
[  491.833079][T12609] bridge0: port 2(bridge_slave_1) entered disabled state
[  491.847454][T12609] bridge_slave_1: entered allmulticast mode
[  491.854848][T12609] bridge_slave_1: entered promiscuous mode
[  492.127438][T11420] syz.2.1307 (11420) used greatest stack depth: 19328 bytes left
[  492.359934][T12609] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  492.374259][T12609] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  492.577798][T11423] syz.2.1307 (11423) used greatest stack depth: 18584 bytes left
[  492.658958][T11426] syz.2.1307 (11426) used greatest stack depth: 18528 bytes left
[  492.738716][   T55] Bluetooth: hci4: command tx timeout
[  492.779324][T12609] team0: Port device team_slave_0 added
[  492.960555][T12609] team0: Port device team_slave_1 added
[  493.170475][T12634] openvswitch: HSR: Dropping previously announced user features
[  493.187773][T12609] batman_adv: batadv0: Adding interface: batadv_slave_0
[  493.205972][T12609] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  493.254012][T12609] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  493.286046][T12609] batman_adv: batadv0: Adding interface: batadv_slave_1
[  493.295429][T12609] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  493.324903][T12609] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  493.465911][T12609] hsr_slave_0: entered promiscuous mode
[  493.513597][T12609] hsr_slave_1: entered promiscuous mode
[  493.594498][T12609] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  493.626868][T12609] Cannot create hsr debugfs directory
[  494.269791][T12609] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  494.433794][T12609] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  494.460895][T12609] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  494.515190][T12609] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  494.721890][T12609] 8021q: adding VLAN 0 to HW filter on device bond0
[  494.764201][T12609] 8021q: adding VLAN 0 to HW filter on device team0
[  494.799418][   T55] Bluetooth: hci4: command tx timeout
[  494.817825][ T9821] bridge0: port 1(bridge_slave_0) entered blocking state
[  494.824993][ T9821] bridge0: port 1(bridge_slave_0) entered forwarding state
[  494.868061][ T9821] bridge0: port 2(bridge_slave_1) entered blocking state
[  494.875275][ T9821] bridge0: port 2(bridge_slave_1) entered forwarding state
[  495.016192][T12609] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  495.259864][T12656] ERROR: Out of memory at tomoyo_memory_ok.
[  495.483173][T12609] 8021q: adding VLAN 0 to HW filter on device batadv0
[  496.508931][T12609] veth0_vlan: entered promiscuous mode
[  496.562712][T12609] veth1_vlan: entered promiscuous mode
[  496.691942][T12609] veth0_macvtap: entered promiscuous mode
[  496.706397][T12609] veth1_macvtap: entered promiscuous mode
[  496.735502][T12609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  496.777966][T12609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  496.827155][T12609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  496.867186][T12609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  496.877522][   T55] Bluetooth: hci4: command tx timeout
[  496.893694][T12609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  496.920285][T12609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  496.939208][T12609] batman_adv: batadv0: Interface activated: batadv_slave_0
[  496.959449][T12609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  496.970093][T12609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  496.980055][T12609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  496.990562][T12609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  497.001717][T12609] batman_adv: batadv0: Interface activated: batadv_slave_1
[  497.013999][T12609] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  497.022919][T12609] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  497.031909][T12609] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  497.040895][T12609] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  497.334550][T12688] FAULT_INJECTION: forcing a failure.
[  497.334550][T12688] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  497.377181][T12688] CPU: 1 UID: 0 PID: 12688 Comm: syz.1.1563 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  497.388033][T12688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  497.398149][T12688] Call Trace:
[  497.401470][T12688]  <TASK>
[  497.404440][T12688]  dump_stack_lvl+0x16c/0x1f0
[  497.409199][T12688]  should_fail_ex+0x497/0x5b0
[  497.413947][T12688]  ? fs_reclaim_acquire+0xae/0x150
[  497.419137][T12688]  should_fail_alloc_page+0xe7/0x130
[  497.425034][T12688]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  497.431346][T12688]  ? hlock_class+0x4e/0x130
[  497.436000][T12688]  __alloc_pages_noprof+0x190/0x25b0
[  497.441399][T12688]  ? find_held_lock+0x2d/0x110
[  497.446239][T12688]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  497.452011][T12688]  ? __pfx_lock_release+0x10/0x10
[  497.457071][T12688]  ? trace_lock_acquire+0x14e/0x1f0
[  497.462327][T12688]  ? hlock_class+0x4e/0x130
[  497.466886][T12688]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  497.472817][T12688]  ? policy_nodemask+0xea/0x4e0
[  497.477722][T12688]  alloc_pages_mpol_noprof+0x2c9/0x610
[  497.483231][T12688]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  497.489263][T12688]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  497.494935][T12688]  get_free_pages_noprof+0xc/0x40
[  497.499994][T12688]  mem_rw+0x95/0x660
[  497.503937][T12688]  ? __pfx_mem_write+0x10/0x10
[  497.508740][T12688]  vfs_write+0x24c/0x1150
[  497.513109][T12688]  ? __fget_files+0x1fc/0x3a0
[  497.517821][T12688]  ? __pfx___mutex_lock+0x10/0x10
[  497.522912][T12688]  ? __pfx_vfs_write+0x10/0x10
[  497.527721][T12688]  ? __fget_files+0x206/0x3a0
[  497.532452][T12688]  ksys_write+0x12b/0x250
[  497.536856][T12688]  ? __pfx_ksys_write+0x10/0x10
[  497.541774][T12688]  do_syscall_64+0xcd/0x250
[  497.546346][T12688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  497.552295][T12688] RIP: 0033:0x7f2540b85d29
[  497.556750][T12688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  497.576409][T12688] RSP: 002b:00007f253e9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  497.584880][T12688] RAX: ffffffffffffffda RBX: 00007f2540d76240 RCX: 00007f2540b85d29
[  497.592889][T12688] RDX: 0000000000010001 RSI: 0000000000000000 RDI: 0000000000000003
[  497.600913][T12688] RBP: 00007f253e9f6090 R08: 0000000000000000 R09: 0000000000000000
[  497.608912][T12688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  497.616946][T12688] R13: 0000000000000000 R14: 00007f2540d76240 R15: 00007fff75f2d7f8
[  497.624988][T12688]  </TASK>
[  498.316313][T12700] QAT: Stopping all acceleration devices.
[  498.643840][ T9821] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  498.667378][ T9821] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  498.957265][   T55] Bluetooth: hci4: command tx timeout
[  499.037260][T10717] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  499.075697][T10717] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  501.089257][T12742] FAULT_INJECTION: forcing a failure.
[  501.089257][T12742] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  501.187222][T12742] CPU: 0 UID: 0 PID: 12742 Comm: syz.3.1576 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  501.198082][T12742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  501.208187][T12742] Call Trace:
[  501.211510][T12742]  <TASK>
[  501.214482][T12742]  dump_stack_lvl+0x16c/0x1f0
[  501.219226][T12742]  should_fail_ex+0x497/0x5b0
[  501.223979][T12742]  _copy_from_user+0x2e/0xd0
[  501.228664][T12742]  mem_rw+0x1e4/0x660
[  501.232719][T12742]  ? __pfx_mem_write+0x10/0x10
[  501.237548][T12742]  vfs_write+0x24c/0x1150
[  501.241970][T12742]  ? __fget_files+0x1fc/0x3a0
[  501.246720][T12742]  ? __pfx___mutex_lock+0x10/0x10
[  501.251813][T12742]  ? __pfx_vfs_write+0x10/0x10
[  501.256661][T12742]  ? __fget_files+0x206/0x3a0
[  501.261414][T12742]  ksys_write+0x12b/0x250
[  501.265808][T12742]  ? __pfx_ksys_write+0x10/0x10
[  501.270734][T12742]  do_syscall_64+0xcd/0x250
[  501.275308][T12742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  501.281273][T12742] RIP: 0033:0x7f162e385d29
[  501.285735][T12742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  501.305395][T12742] RSP: 002b:00007f162f22e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  501.313848][T12742] RAX: ffffffffffffffda RBX: 00007f162e576240 RCX: 00007f162e385d29
[  501.321939][T12742] RDX: 0000000000010001 RSI: 0000000000000000 RDI: 0000000000000003
[  501.329937][T12742] RBP: 00007f162f22e090 R08: 0000000000000000 R09: 0000000000000000
[  501.337937][T12742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  501.346022][T12742] R13: 0000000000000000 R14: 00007f162e576240 R15: 00007fff890abda8
[  501.354211][T12742]  </TASK>
[  502.038523][T12745] ERROR: Out of memory at tomoyo_memory_ok.
[  502.579958][T12769] ptrace attach of "./syz-executor exec"[5840] was attempted by "./syz-executor exec"[12769]
[  503.225349][T12781] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1586'.
[  503.841958][   T29] audit: type=1800 audit(4294967370.816:12): pid=12789 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1588" name="trace_pipe" dev="tracefs" ino=1105 res=0 errno=0
[  504.001653][T12789] Invalid ELF header magic: != ELF
[  504.519896][   T82] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  504.771370][   T82] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  504.894723][   T82] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  505.171266][   T82] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  505.637712][   T82] bridge_slave_1: left allmulticast mode
[  505.677235][   T82] bridge_slave_1: left promiscuous mode
[  505.685741][   T82] bridge0: port 2(bridge_slave_1) entered disabled state
[  505.886328][T12820] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1593'.
[  505.922880][   T82] bridge_slave_0: left allmulticast mode
[  505.929727][   T82] bridge_slave_0: left promiscuous mode
[  505.935605][   T82] bridge0: port 1(bridge_slave_0) entered disabled state
[  506.256578][T12790] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1588'.
[  506.618560][T12833] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[  506.800193][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  506.808817][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  507.978046][   T82] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  508.055761][   T82] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  508.115819][   T82] bond0 (unregistering): Released all slaves
[  508.181828][T12820] hsr_slave_0: entered allmulticast mode
[  508.200679][T12790] geneve1: entered allmulticast mode
[  508.524535][   T82] HSR: left promiscuous mode
[  509.551401][T12878] netlink: 322 bytes leftover after parsing attributes in process `syz.0.1601'.
[  510.820865][   T82] hsr_slave_0: left promiscuous mode
[  510.953585][   T82] hsr_slave_1: left promiscuous mode
[  510.991827][   T82] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  511.027593][   T82] batman_adv: batadv0: Removing interface: batadv_slave_0
[  511.053486][   T82] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  511.074801][T12921] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1607'.
[  511.077291][   T82] batman_adv: batadv0: Removing interface: batadv_slave_1
[  511.186045][   T82] veth1_macvtap: left promiscuous mode
[  511.194220][   T82] veth1_vlan: left promiscuous mode
[  511.218324][   T82] veth0_vlan: left promiscuous mode
[  511.560134][   T27] ERROR: Out of memory at tomoyo_memory_ok.
[  512.630400][   T82] team0 (unregistering): Port device team_slave_1 removed
[  512.813365][   T82] team0 (unregistering): Port device team_slave_0 removed
[  513.576324][T12951] tipc: Started in network mode
[  513.591298][T12951] tipc: Node identity ee00, cluster identity 4711
[  513.600759][T12951] tipc: Node number set to 60928
[  513.877588][T12966] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1618'.
[  515.998048][T13030] Process accounting resumed
[  516.010354][T13030] Process accounting resumed
[  516.591901][T13036] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1631'.
[  516.726284][T13017] Invalid ELF header magic: != ELF
[  516.803540][T13047] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1632'.
[  517.249573][T13055] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  517.333621][T13056] ERROR: Out of memory at tomoyo_memory_ok.
[  517.351657][T13063] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  517.356080][T13015] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  517.457371][T13015] File: /dev/ram7 PID: 13015 Comm: syz.3.1628
[  517.508579][   T29] audit: type=1800 audit(4294967384.486:13): pid=13067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1636" name="discovery_nqn" dev="configfs" ino=32252 res=0 errno=0
[  518.127635][   T29] audit: type=1800 audit(4294967385.066:14): pid=13096 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1641" name="dbroot" dev="configfs" ino=32264 res=0 errno=0
[  518.147844][    C0] vkms_vblank_simulate: vblank timer overrun
[  521.072452][T13175] vivid-004: =================  START STATUS  =================
[  521.100466][T13175] vivid-004: Test Pattern: 75% Colorbar
[  521.120053][T13175] vivid-004: Fill Percentage of Frame: 100
[  521.133225][T13175] vivid-004: Horizontal Movement: No Movement
[  521.157299][T13175] vivid-004: Vertical Movement: No Movement
[  521.178036][T13175] vivid-004: OSD Text Mode: All
[  521.195555][T13175] vivid-004: Show Border: false
[  521.206000][T13175] vivid-004: Show Square: false
[  521.216412][T13175] vivid-004: Sensor Flipped Horizontally: false
[  521.233133][T13175] vivid-004: Sensor Flipped Vertically: false
[  521.249986][T13175] vivid-004: Insert SAV Code in Image: false
[  521.268269][T13175] vivid-004: Insert EAV Code in Image: false
[  521.298131][T13175] vivid-004: Insert Video Guard Band: false
[  521.308287][T13175] vivid-004: Reduced Framerate: false
[  521.337287][T13175] vivid-004: HDMI 004-0 Is Connected To: Test Pattern Generator
[  521.355844][T13175] vivid-004: S-Video 004-0 Is Connected To: Test Pattern Generator
[  521.377407][T13175] vivid-004: Enable Capture Cropping: true
[  521.397514][T13175] vivid-004: Enable Capture Composing: true
[  521.417296][T13175] vivid-004: Enable Capture Scaler: true
[  521.434997][T13175] vivid-004: Timestamp Source: End of Frame
[  521.461008][T13175] vivid-004: Colorspace: sRGB
[  521.477396][T13175] vivid-004: Transfer Function: Default
[  521.498844][T13175] vivid-004: Y'CbCr Encoding: Default
[  521.514954][T13175] vivid-004: HSV Encoding: Hue 0-179
[  521.533206][T13175] vivid-004: Quantization: Default
[  521.549593][T13175] vivid-004: Apply Alpha To Red Only: false
[  521.566025][T13175] vivid-004: Standard Aspect Ratio: 4x3
[  521.596512][T13175] vivid-004: DV Timings Signal Mode: Current DV Timings inactive
[  521.628837][T13175] vivid-004: DV Timings: 640x480p59 inactive
[  521.655480][T13175] vivid-004: DV Timings Aspect Ratio: Source Width x Height
[  521.686359][T13175] vivid-004: Maximum EDID Blocks: 2
[  521.707576][T13175] vivid-004: Limited RGB Range (16-235): false
[  521.725997][T13175] vivid-004: Rx RGB Quantization Range: Automatic
[  521.757251][T13175] vivid-004: Power Present: 0x00000001
[  521.783904][T13175] tpg source WxH: 640x360 (Y'CbCr)
[  521.794353][T13175] tpg field: 1
[  521.812201][T13175] tpg crop: 640x360@0x0
[  521.832840][T13175] tpg compose: 640x360@0x0
[  521.843021][T13175] tpg colorspace: 8
[  521.863521][T13175] tpg transfer function: 0/0
[  521.883803][T13175] tpg Y'CbCr encoding: 0/0
[  521.928524][T13175] tpg quantization: 0/0
[  521.942382][T13175] tpg RGB range: 0/2
[  521.946435][T13175] vivid-004: ==================  END STATUS  ==================
[  523.815456][T13220] netlink: 242 bytes leftover after parsing attributes in process `syz.1.1660'.
[  523.906613][T13220] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1660'.
[  524.076471][T13208] netlink: 'syz.3.1659': attribute type 9 has an invalid length.
[  526.347747][T13270] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1670'.
[  527.075087][T13301] Process accounting resumed
[  527.336594][T13305] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1677'.
[  527.383160][T13305] vivid-004: =================  START STATUS  =================
[  527.416705][T13305] vivid-004: Test Pattern: 75% Colorbar
[  527.441980][T13305] vivid-004: Fill Percentage of Frame: 100
[  527.472290][T13305] vivid-004: Horizontal Movement: No Movement
[  527.507168][T13305] vivid-004: Vertical Movement: No Movement
[  527.533259][T13305] vivid-004: OSD Text Mode: All
[  527.548621][T13305] vivid-004: Show Border: false
[  527.568906][T13305] vivid-004: Show Square: false
[  527.590448][T13305] vivid-004: Sensor Flipped Horizontally: false
[  527.622815][T13305] vivid-004: Sensor Flipped Vertically: false
[  527.652825][T13305] vivid-004: Insert SAV Code in Image: false
[  527.677140][T13305] vivid-004: Insert EAV Code in Image: false
[  527.683235][T13305] vivid-004: Insert Video Guard Band: false
[  527.733308][T13305] vivid-004: Reduced Framerate: false
[  527.751768][T13305] vivid-004: HDMI 004-0 Is Connected To: Test Pattern Generator
[  527.769852][T13305] vivid-004: S-Video 004-0 Is Connected To: Test Pattern Generator
[  527.800322][T13305] vivid-004: Enable Capture Cropping: true
[  527.806252][T13305] vivid-004: Enable Capture Composing: true
[  527.863536][T13305] vivid-004: Enable Capture Scaler: true
[  527.897554][T13305] vivid-004: Timestamp Source: End of Frame
[  527.903573][T13305] vivid-004: Colorspace: sRGB
[  527.961850][T13305] vivid-004: Transfer Function: Default
[  527.997575][T13305] vivid-004: Y'CbCr Encoding: Default
[  528.023563][T13305] vivid-004: HSV Encoding: Hue 0-179
[  528.046560][T13305] vivid-004: Quantization: Default
[  528.064175][T13305] vivid-004: Apply Alpha To Red Only: false
[  528.086671][T13305] vivid-004: Standard Aspect Ratio: 4x3
[  528.104384][T13305] vivid-004: DV Timings Signal Mode: Current DV Timings inactive
[  528.136968][T13305] vivid-004: DV Timings: 640x480p59 inactive
[  528.157520][T13305] vivid-004: DV Timings Aspect Ratio: Source Width x Height
[  528.186123][T13305] vivid-004: Maximum EDID Blocks: 2
[  528.197048][T13305] vivid-004: Limited RGB Range (16-235): false
[  528.217295][T13305] vivid-004: Rx RGB Quantization Range: Automatic
[  528.223828][T13305] vivid-004: Power Present: 0x00000001
[  528.247192][T13305] tpg source WxH: 640x360 (Y'CbCr)
[  528.262723][T13305] tpg field: 1
[  528.266179][T13305] tpg crop: 640x360@0x0
[  528.282996][T13305] tpg compose: 640x360@0x0
[  528.293169][T13305] tpg colorspace: 8
[  528.297050][T13305] tpg transfer function: 0/0
[  528.313479][T13305] tpg Y'CbCr encoding: 0/0
[  528.323690][T13305] tpg quantization: 0/0
[  528.333807][T13305] tpg RGB range: 0/2
[  528.343944][T13305] vivid-004: ==================  END STATUS  ==================
[  530.182383][T13364] vivid-004: =================  START STATUS  =================
[  530.190400][T13364] vivid-004: Test Pattern: 75% Colorbar
[  530.196354][T13364] vivid-004: Fill Percentage of Frame: 100
[  530.202367][T13364] vivid-004: Horizontal Movement: No Movement
[  530.208786][T13364] vivid-004: Vertical Movement: No Movement
[  530.214779][T13364] vivid-004: OSD Text Mode: All
[  530.219917][T13364] vivid-004: Show Border: false
[  530.224853][T13364] vivid-004: Show Square: false
[  530.230039][T13364] vivid-004: Sensor Flipped Horizontally: false
[  530.236366][T13364] vivid-004: Sensor Flipped Vertically: false
[  530.242858][T13364] vivid-004: Insert SAV Code in Image: false
[  530.249185][T13364] vivid-004: Insert EAV Code in Image: false
[  530.255444][T13364] vivid-004: Insert Video Guard Band: false
[  530.261620][T13364] vivid-004: Reduced Framerate: false
[  530.267322][T13364] vivid-004: HDMI 004-0 Is Connected To: Test Pattern Generator
[  530.275205][T13364] vivid-004: S-Video 004-0 Is Connected To: Test Pattern Generator
[  530.283419][T13364] vivid-004: Enable Capture Cropping: true
[  530.289521][T13364] vivid-004: Enable Capture Composing: true
[  530.295804][T13364] vivid-004: Enable Capture Scaler: true
[  530.301843][T13364] vivid-004: Timestamp Source: End of Frame
[  530.308050][T13364] vivid-004: Colorspace: sRGB
[  530.313013][T13364] vivid-004: Transfer Function: Default
[  530.319006][T13364] vivid-004: Y'CbCr Encoding: Default
[  530.324590][T13364] vivid-004: HSV Encoding: Hue 0-179
[  530.330239][T13364] vivid-004: Quantization: Default
[  530.335638][T13364] vivid-004: Apply Alpha To Red Only: false
[  530.341968][T13364] vivid-004: Standard Aspect Ratio: 4x3
[  530.347783][T13364] vivid-004: DV Timings Signal Mode: Current DV Timings inactive
[  530.355782][T13364] vivid-004: DV Timings: 640x480p59 inactive
[  530.362045][T13364] vivid-004: DV Timings Aspect Ratio: Source Width x Height
[  530.369642][T13364] vivid-004: Maximum EDID Blocks: 2
[  530.375061][T13364] vivid-004: Limited RGB Range (16-235): false
[  530.381532][T13364] vivid-004: Rx RGB Quantization Range: Automatic
[  530.388190][T13364] vivid-004: Power Present: 0x00000001
[  530.393909][T13364] tpg source WxH: 640x360 (Y'CbCr)
[  530.399445][T13364] tpg field: 1
[  530.403167][T13364] tpg crop: 640x360@0x0
[  530.407632][T13364] tpg compose: 640x360@0x0
[  530.412312][T13364] tpg colorspace: 8
[  530.416266][T13364] tpg transfer function: 0/0
[  530.421122][T13364] tpg Y'CbCr encoding: 0/0
[  530.425694][T13364] tpg quantization: 0/0
[  530.430067][T13364] tpg RGB range: 0/2
[  530.434167][T13364] vivid-004: ==================  END STATUS  ==================
[  532.741316][T13421] vivid-004: =================  START STATUS  =================
[  532.765447][T13421] vivid-004: Test Pattern: 75% Colorbar
[  532.783416][T13421] vivid-004: Fill Percentage of Frame: 100
[  532.805254][T13421] vivid-004: Horizontal Movement: No Movement
[  532.820739][T13421] vivid-004: Vertical Movement: No Movement
[  532.840914][T13421] vivid-004: OSD Text Mode: All
[  532.848322][T13421] vivid-004: Show Border: false
[  532.861331][T13421] vivid-004: Show Square: false
[  532.875852][T13421] vivid-004: Sensor Flipped Horizontally: false
[  532.894917][T13421] vivid-004: Sensor Flipped Vertically: false
[  532.912804][T13421] vivid-004: Insert SAV Code in Image: false
[  532.931879][T13421] vivid-004: Insert EAV Code in Image: false
[  532.962293][T13421] vivid-004: Insert Video Guard Band: false
[  532.975206][T13421] vivid-004: Reduced Framerate: false
[  532.988727][T13421] vivid-004: HDMI 004-0 Is Connected To: Test Pattern Generator
[  533.004428][T13421] vivid-004: S-Video 004-0 Is Connected To: Test Pattern Generator
[  533.021096][T13421] vivid-004: Enable Capture Cropping: true
[  533.035739][T13421] vivid-004: Enable Capture Composing: true
[  533.045402][T13421] vivid-004: Enable Capture Scaler: true
[  533.063235][T13421] vivid-004: Timestamp Source: End of Frame
[  533.079166][T13421] vivid-004: Colorspace: sRGB
[  533.093782][T13421] vivid-004: Transfer Function: Default
[  533.101489][T13406] ima: policy update failed
[  533.114850][   T29] audit: type=1802 audit(4294967400.086:15): pid=13406 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.1696" res=0 errno=0
[  533.182828][T13421] vivid-004: Y'CbCr Encoding: Default
[  533.188810][T13421] vivid-004: HSV Encoding: Hue 0-179
[  533.256221][T13421] vivid-004: Quantization: Default
[  533.261567][T13421] vivid-004: Apply Alpha To Red Only: false
[  533.324502][T13421] vivid-004: Standard Aspect Ratio: 4x3
[  533.349030][T13421] vivid-004: DV Timings Signal Mode: Current DV Timings inactive
[  533.385477][T13421] vivid-004: DV Timings: 640x480p59 inactive
[  533.412159][T13421] vivid-004: DV Timings Aspect Ratio: Source Width x Height
[  533.440181][T13421] vivid-004: Maximum EDID Blocks: 2
[  533.454924][T13421] vivid-004: Limited RGB Range (16-235): false
[  533.488131][T13421] vivid-004: Rx RGB Quantization Range: Automatic
[  533.524443][T13421] vivid-004: Power Present: 0x00000001
[  533.530282][T13421] tpg source WxH: 640x360 (Y'CbCr)
[  533.535498][T13421] tpg field: 1
[  533.539373][T13421] tpg crop: 640x360@0x0
[  533.543589][T13421] tpg compose: 640x360@0x0
[  533.548295][T13421] tpg colorspace: 8
[  533.552147][T13421] tpg transfer function: 0/0
[  533.556776][T13421] tpg Y'CbCr encoding: 0/0
[  533.561728][T13421] tpg quantization: 0/0
[  533.565932][T13421] tpg RGB range: 0/2
[  533.570273][T13421] vivid-004: ==================  END STATUS  ==================
[  537.415030][T13527] openvswitch: HSR: Dropping previously announced user features
[  537.793192][T13538] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1713'.
[  539.874246][T13579] netlink: 146 bytes leftover after parsing attributes in process `syz.4.1720'.
[  540.867660][T13619] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1725'.
[  540.968668][T13619] bridge0: port 2(bridge_slave_1) entered disabled state
[  541.116962][T13619] bridge_slave_1 (unregistering): left allmulticast mode
[  541.126029][T13619] bridge_slave_1 (unregistering): left promiscuous mode
[  541.133541][T13619] bridge0: port 2(bridge_slave_1) entered disabled state
[  543.257947][T13676] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1739'.
[  543.277204][T13676] IPv6: NLM_F_CREATE should be specified when creating new route
[  543.285087][T13676] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  543.292958][T13676] IPv6: NLM_F_CREATE should be set when creating new route
[  543.300344][T13676] IPv6: NLM_F_CREATE should be set when creating new route
[  545.738510][T13712] Invalid ELF header magic: != ELF
[  546.468032][T13726] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1751'.
[  548.174210][T13772] ERROR: Out of memory at tomoyo_memory_ok.
[  548.713226][T13792] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1766'.
[  551.598357][T13824] netlink: 322 bytes leftover after parsing attributes in process `syz.4.1776'.
[  553.038813][T13839] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1778'.
[  554.450197][   T29] audit: type=1800 audit(4294967421.416:16): pid=13857 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1783" name="features" dev="configfs" ino=35179 res=0 errno=0
[  554.482750][T13857] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1783'.
[  555.736146][T13883] vivid-004: =================  START STATUS  =================
[  555.760042][T13883] vivid-004: Test Pattern: 75% Colorbar
[  555.776103][T13883] vivid-004: Fill Percentage of Frame: 100
[  555.800988][T13883] vivid-004: Horizontal Movement: No Movement
[  555.815808][T13883] vivid-004: Vertical Movement: No Movement
[  555.830954][T13883] vivid-004: OSD Text Mode: All
[  555.856146][T13883] vivid-004: Show Border: false
[  555.887353][T13883] vivid-004: Show Square: false
[  555.907188][T13883] vivid-004: Sensor Flipped Horizontally: false
[  555.929577][T13883] vivid-004: Sensor Flipped Vertically: false
[  555.951252][T13883] vivid-004: Insert SAV Code in Image: false
[  555.968831][T13883] vivid-004: Insert EAV Code in Image: false
[  555.991590][T13883] vivid-004: Insert Video Guard Band: false
[  556.007543][T13883] vivid-004: Reduced Framerate: false
[  556.029097][T13883] vivid-004: HDMI 004-0 Is Connected To: Test Pattern Generator
[  556.052388][T13883] vivid-004: S-Video 004-0 Is Connected To: Test Pattern Generator
[  556.067248][T13883] vivid-004: Enable Capture Cropping: true
[  556.077334][T13883] vivid-004: Enable Capture Composing: true
[  556.083958][T13883] vivid-004: Enable Capture Scaler: true
[  556.093710][T13883] vivid-004: Timestamp Source: End of Frame
[  556.107357][T13883] vivid-004: Colorspace: sRGB
[  556.125736][T13883] vivid-004: Transfer Function: Default
[  556.142116][T13883] vivid-004: Y'CbCr Encoding: Default
[  556.161755][T13883] vivid-004: HSV Encoding: Hue 0-179
[  556.177579][T13883] vivid-004: Quantization: Default
[  556.192052][T13883] vivid-004: Apply Alpha To Red Only: false
[  556.207249][T13883] vivid-004: Standard Aspect Ratio: 4x3
[  556.213241][T13883] vivid-004: DV Timings Signal Mode: Current DV Timings inactive
[  556.232580][T13883] vivid-004: DV Timings: 640x480p59 inactive
[  556.247355][T13883] vivid-004: DV Timings Aspect Ratio: Source Width x Height
[  556.292058][T13883] vivid-004: Maximum EDID Blocks: 2
[  556.312979][T13883] vivid-004: Limited RGB Range (16-235): false
[  556.331284][T13883] vivid-004: Rx RGB Quantization Range: Automatic
[  556.357204][T13883] vivid-004: Power Present: 0x00000001
[  556.383228][T13883] tpg source WxH: 640x360 (Y'CbCr)
[  556.427231][T13883] tpg field: 1
[  556.430691][T13883] tpg crop: 640x360@0x0
[  556.457805][T13883] tpg compose: 640x360@0x0
[  556.468882][T13883] tpg colorspace: 8
[  556.472759][T13883] tpg transfer function: 0/0
[  556.517672][T13883] tpg Y'CbCr encoding: 0/0
[  556.529329][T13883] tpg quantization: 0/0
[  556.533605][T13883] tpg RGB range: 0/2
[  556.549234][T13883] vivid-004: ==================  END STATUS  ==================
[  558.229931][T13930] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1798'.
[  559.778265][T13966] ubi0: attaching mtd0
[  559.785889][T13966] ubi0: scanning is finished
[  559.790680][T13966] ubi0: empty MTD device detected
[  559.795942][T13966] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[  559.989231][T13966] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  561.110851][T13991] ERROR: Out of memory at tomoyo_memory_ok.
[  567.203467][T14105] binder: 14104:14105 unknown command 0
[  567.224304][T14105] binder: 14104:14105 ioctl c0306201 9 returned -22
[  568.239671][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  568.246091][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  569.438135][T14128] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1847'.
[  570.486856][T14169] lo: entered allmulticast mode
[  570.508402][T14169] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1851'.
[  570.571323][T14173] lo: left allmulticast mode
[  571.666260][T14189] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1853'.
[  571.697343][T14189] ip_vti0: entered promiscuous mode
[  573.004290][T14213] program syz.1.1860 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  573.372116][T14220] ERROR: Out of memory at tomoyo_memory_ok.
[  573.697587][T14225] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1864'.
[  574.967528][   T29] audit: type=1800 audit(4294967441.876:17): pid=14232 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1863" name="features" dev="configfs" ino=36032 res=0 errno=0
[  576.458470][T14248] ubi0: attaching mtd0
[  576.480785][T14248] ubi0: scanning is finished
[  576.556839][T14248] ubi0: empty MTD device detected
[  576.628669][T14248] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[  576.928069][T14256] ERROR: Out of memory at tomoyo_memory_ok.
[  577.159145][T14248] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  578.466609][T14279] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1876'.
[  578.783476][T14283] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1879'.
[  579.478229][T14283] team0: Port device team_slave_0 removed
[  581.890192][T14325] HSR: entered promiscuous mode
[  583.261460][T14352] ubi0: attaching mtd0
[  583.266974][T14352] ubi0: scanning is finished
[  583.295876][T14352] ubi0: empty MTD device detected
[  583.301471][T14352] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[  583.510928][T14352] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  584.381577][T14364] ERROR: Out of memory at tomoyo_memory_ok.
[  585.668395][T14382] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1902'.
[  588.005177][T14423] ERROR: Out of memory at tomoyo_memory_ok.
[  588.914332][T14442] vivid-004: =================  START STATUS  =================
[  588.957321][T14442] vivid-004: Test Pattern: 75% Colorbar
[  588.963374][T14442] vivid-004: Fill Percentage of Frame: 100
[  588.978496][T14442] vivid-004: Horizontal Movement: No Movement
[  588.985916][T14442] vivid-004: Vertical Movement: No Movement
[  589.032309][T14442] vivid-004: OSD Text Mode: All
[  589.037494][T14442] vivid-004: Show Border: false
[  589.042690][T14442] vivid-004: Show Square: false
[  589.053168][T14442] vivid-004: Sensor Flipped Horizontally: false
[  589.060162][T14442] vivid-004: Sensor Flipped Vertically: false
[  589.066511][T14442] vivid-004: Insert SAV Code in Image: false
[  589.077942][T14442] vivid-004: Insert EAV Code in Image: false
[  589.084433][T14442] vivid-004: Insert Video Guard Band: false
[  589.101974][T14442] vivid-004: Reduced Framerate: false
[  589.108187][T14442] vivid-004: HDMI 004-0 Is Connected To: Test Pattern Generator
[  589.126733][T14442] vivid-004: S-Video 004-0 Is Connected To: Test Pattern Generator
[  589.135587][T14442] vivid-004: Enable Capture Cropping: true
[  589.142094][T14442] vivid-004: Enable Capture Composing: true
[  589.149567][T14442] vivid-004: Enable Capture Scaler: true
[  589.158887][T14442] vivid-004: Timestamp Source: End of Frame
[  589.168409][T14442] vivid-004: Colorspace: sRGB
[  589.176276][T14442] vivid-004: Transfer Function: Default
[  589.185936][T14442] vivid-004: Y'CbCr Encoding: Default
[  589.196149][T14442] vivid-004: HSV Encoding: Hue 0-179
[  589.205373][T14442] vivid-004: Quantization: Default
[  589.218758][T14442] vivid-004: Apply Alpha To Red Only: false
[  589.241266][T14442] vivid-004: Standard Aspect Ratio: 4x3
[  589.251664][T14442] vivid-004: DV Timings Signal Mode: Current DV Timings inactive
[  589.266470][T14446] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1916'.
[  589.276248][T14442] vivid-004: DV Timings: 640x480p59 inactive
[  589.283183][T14442] vivid-004: DV Timings Aspect Ratio: Source Width x Height
[  589.307156][T14442] vivid-004: Maximum EDID Blocks: 2
[  589.316437][T14442] vivid-004: Limited RGB Range (16-235): false
[  589.337313][T14442] vivid-004: Rx RGB Quantization Range: Automatic
[  589.343975][T14442] vivid-004: Power Present: 0x00000001
[  589.357335][T14442] tpg source WxH: 640x360 (Y'CbCr)
[  589.367615][T14442] tpg field: 1
[  589.373172][T14442] tpg crop: 640x360@0x0
[  589.383357][T14442] tpg compose: 640x360@0x0
[  589.390380][T14442] tpg colorspace: 8
[  589.395134][T14442] tpg transfer function: 0/0
[  589.400357][T14442] tpg Y'CbCr encoding: 0/0
[  589.404921][T14442] tpg quantization: 0/0
[  589.409913][T14442] tpg RGB range: 0/2
[  589.413969][T14442] vivid-004: ==================  END STATUS  ==================
[  590.941750][T14496] ERROR: Out of memory at tomoyo_memory_ok.
[  591.740013][T14505] openvswitch: HSR: Dropping previously announced user features
[  591.937494][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  592.316631][T14525] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1931'.
[  592.437534][T14513] openvswitch: HSR: Dropping previously announced user features
[  592.634959][T14528] nfsd: Unknown parameter 'nfsd'
[  592.679008][T14528] openvswitch: netlink: Key 5 has unexpected len 4 expected 2
[  593.077689][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  593.109605][T14542] vivid-004: =================  START STATUS  =================
[  593.160135][T14542] vivid-004: Test Pattern: 75% Colorbar
[  593.165917][T14542] vivid-004: Fill Percentage of Frame: 100
[  593.213242][T14542] vivid-004: Horizontal Movement: No Movement
[  593.219686][T14542] vivid-004: Vertical Movement: No Movement
[  593.225836][T14542] vivid-004: OSD Text Mode: All
[  593.230977][T14542] vivid-004: Show Border: false
[  593.236087][T14542] vivid-004: Show Square: false
[  593.241258][T14542] vivid-004: Sensor Flipped Horizontally: false
[  593.247903][T14542] vivid-004: Sensor Flipped Vertically: false
[  593.254185][T14542] vivid-004: Insert SAV Code in Image: false
[  593.261471][T14542] vivid-004: Insert EAV Code in Image: false
[  593.267933][T14542] vivid-004: Insert Video Guard Band: false
[  593.274083][T14542] vivid-004: Reduced Framerate: false
[  593.279803][T14542] vivid-004: HDMI 004-0 Is Connected To: Test Pattern Generator
[  593.287916][T14542] vivid-004: S-Video 004-0 Is Connected To: Test Pattern Generator
[  593.296009][T14542] vivid-004: Enable Capture Cropping: true
[  593.302142][T14542] vivid-004: Enable Capture Composing: true
[  593.308295][T14542] vivid-004: Enable Capture Scaler: true
[  593.314179][T14542] vivid-004: Timestamp Source: End of Frame
[  593.320304][T14542] vivid-004: Colorspace: sRGB
[  593.325221][T14542] vivid-004: Transfer Function: Default
[  593.331044][T14542] vivid-004: Y'CbCr Encoding: Default
[  593.336671][T14542] vivid-004: HSV Encoding: Hue 0-179
[  593.342173][T14542] vivid-004: Quantization: Default
[  593.347592][T14542] vivid-004: Apply Alpha To Red Only: false
[  593.353678][T14542] vivid-004: Standard Aspect Ratio: 4x3
[  593.359563][T14542] vivid-004: DV Timings Signal Mode: Current DV Timings inactive
[  593.367655][T14542] vivid-004: DV Timings: 640x480p59 inactive
[  593.373919][T14542] vivid-004: DV Timings Aspect Ratio: Source Width x Height
[  593.381474][T14542] vivid-004: Maximum EDID Blocks: 2
[  593.387024][T14542] vivid-004: Limited RGB Range (16-235): false
[  593.393438][T14542] vivid-004: Rx RGB Quantization Range: Automatic
[  593.404762][T14542] vivid-004: Power Present: 0x00000001
[  593.410603][T14542] tpg source WxH: 640x360 (Y'CbCr)
[  593.416028][T14542] tpg field: 1
[  593.419643][T14542] tpg crop: 640x360@0x0
[  593.423972][T14542] tpg compose: 640x360@0x0
[  593.428687][T14542] tpg colorspace: 8
[  593.432599][T14542] tpg transfer function: 0/0
[  593.437538][T14542] tpg Y'CbCr encoding: 0/0
[  593.442102][T14542] tpg quantization: 0/0
[  593.446356][T14542] tpg RGB range: 0/2
[  593.450402][T14542] vivid-004: ==================  END STATUS  ==================
[  594.017571][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  594.057501][T14553] openvswitch: HSR: Dropping previously announced user features
[  594.687480][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  595.782510][T14573] openvswitch: HSR: Dropping previously announced user features
[  596.716016][T14592] openvswitch: HSR: Dropping previously announced user features
[  597.029244][T14586] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1948'.
[  597.154701][T14586] netdevsim netdevsim3 netdevsim2: entered allmulticast mode
[  599.184233][T14632] openvswitch: HSR: Dropping previously announced user features
[  599.333889][T14633] openvswitch: HSR: Dropping previously announced user features
[  601.468028][T14671] openvswitch: HSR: Dropping previously announced user features
[  603.447468][T14685] openvswitch: HSR: Dropping previously announced user features
[  603.688423][T14692] openvswitch: HSR: Dropping previously announced user features
[  604.695464][T14714] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1980'.
[  605.779728][T14738] openvswitch: HSR: Dropping previously announced user features
[  607.961449][T14774] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1995'.
[  608.009090][T14753] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1991'.
[  608.019869][T14753] netdevsim netdevsim0 netdevsim2: entered allmulticast mode
[  608.425207][T14782] netlink: 'syz.0.1996': attribute type 11 has an invalid length.
[  608.462782][T14782] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1996'.
[  608.489920][T14782] bond0: left allmulticast mode
[  608.495018][T14782] bond_slave_1: left allmulticast mode
[  608.516206][T14782] bond0: left promiscuous mode
[  608.533374][T14782] bond_slave_1: left promiscuous mode
[  608.541111][T14782] bridge0: port 3(bond0) entered disabled state
[  608.601020][T14782] bridge_slave_0: left allmulticast mode
[  608.606759][T14782] bridge_slave_0: left promiscuous mode
[  608.645404][T14782] bridge0: port 1(bridge_slave_0) entered disabled state
[  609.019134][T14791] openvswitch: HSR: Dropping previously announced user features
[  609.617378][T14802] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2009'.
[  610.598580][T14820] ecryptfs_miscdev_write: Invalid packet size [79]
[  610.781280][T14818] openvswitch: HSR: Dropping previously announced user features
[  611.645068][T14844] Process accounting resumed
[  612.909029][T14831] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2005'.
[  613.017536][T14831] netdevsim netdevsim1 netdevsim2: entered allmulticast mode
[  614.118361][T14880] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2018'.
[  616.403831][ T5144] Bluetooth: hci4: command 0x0406 tx timeout
[  616.445889][T14904] netlink: 'syz.4.2023': attribute type 11 has an invalid length.
[  616.461372][T14904] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2023'.
[  616.497174][T14904] bridge_slave_1: left allmulticast mode
[  616.545557][T14904] bridge_slave_1: left promiscuous mode
[  616.605084][T14904] bridge0: port 2(bridge_slave_1) entered disabled state
[  616.638558][T14904] bridge_slave_0: left allmulticast mode
[  616.650305][T14904] bridge_slave_0: left promiscuous mode
[  616.666394][T14904] bridge0: port 1(bridge_slave_0) entered disabled state
[  616.907375][ T5144] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  616.918926][ T5144] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  616.928542][ T5144] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  616.939854][ T5144] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  616.948949][ T5144] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  616.956393][ T5144] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  617.663484][T14914] chnl_net:caif_netlink_parms(): no params data found
[  617.834673][T14914] bridge0: port 1(bridge_slave_0) entered blocking state
[  617.852634][T14914] bridge0: port 1(bridge_slave_0) entered disabled state
[  617.877815][T14914] bridge_slave_0: entered allmulticast mode
[  617.900957][T14914] bridge_slave_0: entered promiscuous mode
[  617.923939][T14914] bridge0: port 2(bridge_slave_1) entered blocking state
[  617.942141][T14914] bridge0: port 2(bridge_slave_1) entered disabled state
[  617.960434][T14914] bridge_slave_1: entered allmulticast mode
[  617.994238][T14914] bridge_slave_1: entered promiscuous mode
[  618.071174][T14914] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  618.110440][T14914] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  618.233019][T14914] team0: Port device team_slave_0 added
[  618.259786][T14914] team0: Port device team_slave_1 added
[  618.269338][T14940] nbd: must specify a device to reconfigure
[  618.352871][T14914] batman_adv: batadv0: Adding interface: batadv_slave_0
[  618.370995][T14914] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  618.408738][T14914] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  618.429368][T14944] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2030'.
[  618.446413][T14944] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  618.454969][T14944] batman_adv: batadv0: Removing interface: batadv_slave_0
[  618.501064][T14944] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  618.515476][T14944] batman_adv: batadv0: Removing interface: batadv_slave_1
[  618.657872][T14914] batman_adv: batadv0: Adding interface: batadv_slave_1
[  618.665012][T14914] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  618.701720][T14914] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  618.803638][T14914] hsr_slave_0: entered promiscuous mode
[  618.839264][T14914] hsr_slave_1: entered promiscuous mode
[  619.038224][ T5144] Bluetooth: hci1: command tx timeout
[  619.258556][T14914] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  619.275083][T14914] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  619.292917][T14914] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  619.335543][T14914] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  619.553042][T14914] 8021q: adding VLAN 0 to HW filter on device bond0
[  619.570625][T14914] 8021q: adding VLAN 0 to HW filter on device team0
[  619.593070][ T9822] bridge0: port 1(bridge_slave_0) entered blocking state
[  619.600315][ T9822] bridge0: port 1(bridge_slave_0) entered forwarding state
[  619.655141][ T9822] bridge0: port 2(bridge_slave_1) entered blocking state
[  619.662370][ T9822] bridge0: port 2(bridge_slave_1) entered forwarding state
[  619.923284][T14966] random: crng reseeded on system resumption
[  620.184687][T14914] 8021q: adding VLAN 0 to HW filter on device batadv0
[  620.700981][T14978] openvswitch: HSR: Dropping previously announced user features
[  620.909561][T14914] veth0_vlan: entered promiscuous mode
[  620.939024][T14914] veth1_vlan: entered promiscuous mode
[  621.014211][T14914] veth0_macvtap: entered promiscuous mode
[  621.040287][T14914] veth1_macvtap: entered promiscuous mode
[  621.093269][T14914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  621.109830][T14914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  621.120481][ T5144] Bluetooth: hci1: command tx timeout
[  621.138345][T14914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  621.153612][T14914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  621.176356][T14914] batman_adv: batadv0: Interface activated: batadv_slave_0
[  621.240251][T14914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  621.269961][T14914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  621.283676][T14914] batman_adv: batadv0: Interface activated: batadv_slave_1
[  621.316269][T14914] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  621.325425][T14914] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  621.335544][T14914] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  621.357829][T14914] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  621.639982][T10720] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  621.667710][T10720] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  621.710742][T14856] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  621.731388][T14856] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  622.367684][T14992] netlink: 'syz.3.2036': attribute type 11 has an invalid length.
[  622.403986][T14992] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2036'.
[  622.437351][T14992] bridge_slave_1: left allmulticast mode
[  622.443085][T14992] bridge_slave_1: left promiscuous mode
[  622.467385][T14992] bridge0: port 2(bridge_slave_1) entered disabled state
[  622.496427][T14992] bridge_slave_0: left allmulticast mode
[  622.514916][T14992] bridge_slave_0: left promiscuous mode
[  622.527504][T14992] bridge0: port 1(bridge_slave_0) entered disabled state
[  623.207207][ T5144] Bluetooth: hci1: command tx timeout
[  623.532838][T15008] openvswitch: HSR: Dropping previously announced user features
[  623.598267][T15015] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2041'.
[  624.411287][T15029] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2045'.
[  624.427329][T15029] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  624.438129][T15029] batman_adv: batadv0: Removing interface: batadv_slave_0
[  625.063197][T15041] random: crng reseeded on system resumption
[  625.251510][T15043] openvswitch: HSR: Dropping previously announced user features
[  625.278701][ T5144] Bluetooth: hci1: command tx timeout
[  625.407866][T15053] FAULT_INJECTION: forcing a failure.
[  625.407866][T15053] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  625.507694][T15053] CPU: 0 UID: 0 PID: 15053 Comm: syz.1.2048 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  625.518551][T15053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  625.528666][T15053] Call Trace:
[  625.531993][T15053]  <TASK>
[  625.534976][T15053]  dump_stack_lvl+0x16c/0x1f0
[  625.539721][T15053]  should_fail_ex+0x497/0x5b0
[  625.544478][T15053]  _copy_to_iter+0x4a5/0x1400
[  625.549236][T15053]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  625.555290][T15053]  ? __pfx__copy_to_iter+0x10/0x10
[  625.560491][T15053]  ? __virt_addr_valid+0x1a4/0x590
[  625.565687][T15053]  ? __virt_addr_valid+0x5e/0x590
[  625.570778][T15053]  ? __phys_addr_symbol+0x30/0x80
[  625.575845][T15053]  ? __check_object_size+0x488/0x710
[  625.581177][T15053]  seq_read_iter+0xd00/0x12b0
[  625.585898][T15053]  seq_read+0x39f/0x4e0
[  625.590112][T15053]  ? __pfx_seq_read+0x10/0x10
[  625.594858][T15053]  ? __pfx_seq_read+0x10/0x10
[  625.599567][T15053]  proc_reg_read+0x23d/0x330
[  625.604197][T15053]  ? __pfx_proc_reg_read+0x10/0x10
[  625.609349][T15053]  vfs_read+0x1df/0xbe0
[  625.613548][T15053]  ? __fget_files+0x1fc/0x3a0
[  625.618265][T15053]  ? __pfx___mutex_lock+0x10/0x10
[  625.623336][T15053]  ? __pfx_vfs_read+0x10/0x10
[  625.628062][T15053]  ? __fget_files+0x206/0x3a0
[  625.632794][T15053]  ksys_read+0x12b/0x250
[  625.637073][T15053]  ? __pfx_ksys_read+0x10/0x10
[  625.641884][T15053]  do_syscall_64+0xcd/0x250
[  625.646458][T15053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  625.652417][T15053] RIP: 0033:0x7f2540b85d29
[  625.656857][T15053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  625.676509][T15053] RSP: 002b:00007f2541903038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  625.684963][T15053] RAX: ffffffffffffffda RBX: 00007f2540d76080 RCX: 00007f2540b85d29
[  625.692967][T15053] RDX: 0000000000000001 RSI: 0000000020000180 RDI: 0000000000000003
[  625.700959][T15053] RBP: 00007f2541903090 R08: 0000000000000000 R09: 0000000000000000
[  625.708961][T15053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  625.716958][T15053] R13: 0000000000000000 R14: 00007f2540d76080 R15: 00007fff75f2d7f8
[  625.724971][T15053]  </TASK>
[  628.933853][T15095] openvswitch: HSR: Dropping previously announced user features
[  629.052835][T15099] FAULT_INJECTION: forcing a failure.
[  629.052835][T15099] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  629.089392][T15099] CPU: 0 UID: 0 PID: 15099 Comm: syz.4.2059 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  629.100253][T15099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  629.110364][T15099] Call Trace:
[  629.113689][T15099]  <TASK>
[  629.116663][T15099]  dump_stack_lvl+0x16c/0x1f0
[  629.121408][T15099]  should_fail_ex+0x497/0x5b0
[  629.126159][T15099]  _copy_to_user+0x32/0xd0
[  629.130646][T15099]  simple_read_from_buffer+0xd0/0x160
[  629.136170][T15099]  proc_fail_nth_read+0x198/0x270
[  629.141276][T15099]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  629.146915][T15099]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  629.152539][T15099]  vfs_read+0x1df/0xbe0
[  629.156759][T15099]  ? __fget_files+0x1fc/0x3a0
[  629.161504][T15099]  ? __pfx___mutex_lock+0x10/0x10
[  629.166594][T15099]  ? __pfx_vfs_read+0x10/0x10
[  629.171348][T15099]  ? __fget_files+0x206/0x3a0
[  629.176100][T15099]  ksys_read+0x12b/0x250
[  629.180410][T15099]  ? __pfx_ksys_read+0x10/0x10
[  629.185252][T15099]  do_syscall_64+0xcd/0x250
[  629.189828][T15099]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  629.195803][T15099] RIP: 0033:0x7f61d0b8473c
[  629.200281][T15099] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  629.219956][T15099] RSP: 002b:00007f61d1a68030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  629.228450][T15099] RAX: ffffffffffffffda RBX: 00007f61d0d76080 RCX: 00007f61d0b8473c
[  629.236488][T15099] RDX: 000000000000000f RSI: 00007f61d1a680a0 RDI: 0000000000000009
[  629.244520][T15099] RBP: 00007f61d1a68090 R08: 0000000000000000 R09: 0000000000000000
[  629.252553][T15099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  629.260584][T15099] R13: 0000000000000000 R14: 00007f61d0d76080 R15: 00007ffdb2a58108
[  629.268635][T15099]  </TASK>
[  629.444146][T15110] random: crng reseeded on system resumption
[  629.730879][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  629.737523][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  629.854549][T15114] openvswitch: HSR: Dropping previously announced user features
[  630.831451][T15138] netlink: 330 bytes leftover after parsing attributes in process `syz.5.2067'.
[  632.570775][T15154] HSR: entered promiscuous mode
[  633.277690][T15161] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2081'.
[  634.008133][T15172] openvswitch: HSR: Dropping previously announced user features
[  634.837822][T15184] random: crng reseeded on system resumption
[  635.758010][T15200] openvswitch: HSR: Dropping previously announced user features
[  636.553583][T15214] bdi 31:0: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead.
[  637.377810][T15242] FAULT_INJECTION: forcing a failure.
[  637.377810][T15242] name failslab, interval 1, probability 0, space 0, times 0
[  637.457088][T15242] CPU: 1 UID: 0 PID: 15242 Comm: syz.3.2091 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  637.467951][T15242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  637.478073][T15242] Call Trace:
[  637.481397][T15242]  <TASK>
[  637.484379][T15242]  dump_stack_lvl+0x16c/0x1f0
[  637.489126][T15242]  should_fail_ex+0x497/0x5b0
[  637.493872][T15242]  ? fs_reclaim_acquire+0xae/0x150
[  637.499054][T15242]  should_failslab+0xc2/0x120
[  637.503835][T15242]  __kmalloc_noprof+0xce/0x4f0
[  637.508674][T15242]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  637.514372][T15242]  ? tomoyo_realpath_from_path+0xbf/0x710
[  637.520172][T15242]  tomoyo_realpath_from_path+0xbf/0x710
[  637.525795][T15242]  ? tomoyo_path_number_perm+0x235/0x5b0
[  637.531519][T15242]  tomoyo_path_number_perm+0x248/0x5b0
[  637.537083][T15242]  ? tomoyo_path_number_perm+0x235/0x5b0
[  637.542794][T15242]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  637.548858][T15242]  ? __pfx_lock_release+0x10/0x10
[  637.553919][T15242]  ? trace_lock_acquire+0x14e/0x1f0
[  637.559164][T15242]  ? lock_acquire+0x2f/0xb0
[  637.563717][T15242]  ? __fget_files+0x40/0x3a0
[  637.568347][T15242]  ? __fget_files+0x206/0x3a0
[  637.573063][T15242]  security_file_ioctl+0x9b/0x240
[  637.578122][T15242]  __x64_sys_ioctl+0xb7/0x200
[  637.582849][T15242]  do_syscall_64+0xcd/0x250
[  637.587392][T15242]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  637.593342][T15242] RIP: 0033:0x7f162e385d29
[  637.597805][T15242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  637.617460][T15242] RSP: 002b:00007f162f24f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  637.625919][T15242] RAX: ffffffffffffffda RBX: 00007f162e576160 RCX: 00007f162e385d29
[  637.633951][T15242] RDX: 0000000000000038 RSI: 0000000000004bfa RDI: 0000000000000003
[  637.641951][T15242] RBP: 00007f162f24f090 R08: 0000000000000000 R09: 0000000000000000
[  637.649948][T15242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  637.657943][T15242] R13: 0000000000000001 R14: 00007f162e576160 R15: 00007fff890abda8
[  637.665956][T15242]  </TASK>
[  637.669010][    C1] vkms_vblank_simulate: vblank timer overrun
[  637.689223][T15242] ERROR: Out of memory at tomoyo_realpath_from_path.
[  640.331752][T15294] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2103'.
[  640.571459][T15300] vivid-013: =================  START STATUS  =================
[  640.602504][T15300] vivid-013: Generate PTS: true
[  640.632558][T15300] vivid-013: Generate SCR: true
[  640.656520][T15300] tpg source WxH: 640x360 (Y'CbCr)
[  640.675046][T15300] tpg field: 1
[  640.689915][T15300] tpg crop: 640x360@0x0
[  640.694228][T15300] tpg compose: 640x360@0x0
[  640.709769][T15300] tpg colorspace: 8
[  640.719287][T15300] tpg transfer function: 0/0
[  640.747117][T15300] tpg Y'CbCr encoding: 0/0
[  640.751658][T15300] tpg quantization: 0/0
[  640.755865][T15300] tpg RGB range: 0/2
[  640.781704][T15300] vivid-013: ==================  END STATUS  ==================
[  641.752383][T15307] ERROR: Out of memory at tomoyo_memory_ok.
[  645.771184][T15386] Invalid ELF header magic: != ELF
[  646.547153][T15367] kexec: Could not allocate control_code_buffer
[  646.986842][T15396] HfR: entered promiscuous mode
[  647.122575][T15396] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2125'.
[  647.154090][T15396] HfR: left promiscuous mode
[  647.767896][T15399] ERROR: Out of memory at tomoyo_memory_ok.
[  648.599598][T15422] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2131'.
[  648.621558][T15422] macsec0: entered allmulticast mode
[  648.631688][T15422] veth1_macvtap: entered allmulticast mode
[  648.892658][T15426] vivid-013: =================  START STATUS  =================
[  648.925925][T15426] vivid-013: Generate PTS: true
[  648.945925][T15426] vivid-013: Generate SCR: true
[  648.967576][T15426] tpg source WxH: 640x360 (Y'CbCr)
[  649.006216][T15426] tpg field: 1
[  649.013886][T15426] tpg crop: 640x360@0x0
[  649.027220][T15426] tpg compose: 640x360@0x0
[  649.037786][T15426] tpg colorspace: 8
[  649.041674][T15426] tpg transfer function: 0/0
[  649.056553][T15426] tpg Y'CbCr encoding: 0/0
[  649.067142][T15426] tpg quantization: 0/0
[  649.071494][T15426] tpg RGB range: 0/2
[  649.075488][T15426] vivid-013: ==================  END STATUS  ==================
[  649.279820][T15431] vivid-013: =================  START STATUS  =================
[  649.296711][T15431] vivid-013: Generate PTS: true
[  649.305101][T15431] vivid-013: Generate SCR: true
[  649.330582][T15431] tpg source WxH: 640x360 (Y'CbCr)
[  649.335782][T15431] tpg field: 1
[  649.347191][T15431] tpg crop: 640x360@0x0
[  649.351438][T15431] tpg compose: 640x360@0x0
[  649.370904][T15431] tpg colorspace: 8
[  649.374824][T15431] tpg transfer function: 0/0
[  649.400400][T15431] tpg Y'CbCr encoding: 0/0
[  649.404903][T15431] tpg quantization: 0/0
[  649.421384][T15431] tpg RGB range: 0/2
[  649.425375][T15431] vivid-013: ==================  END STATUS  ==================
[  650.790145][T15453] openvswitch: HSR: Dropping previously announced user features
[  650.927691][T15451] ERROR: Out of memory at tomoyo_memory_ok.
[  652.407807][T15475] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2152'.
[  652.497893][T15475] hsr_slave_0: entered allmulticast mode
[  652.593604][   T29] audit: type=1800 audit(4294967531.560:18): pid=15475 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2152" name="dbroot" dev="configfs" ino=41283 res=0 errno=0
[  653.711178][T15504] vivid-013: =================  START STATUS  =================
[  653.746515][T15504] vivid-013: Generate PTS: true
[  653.817315][T15504] vivid-013: Generate SCR: true
[  653.822284][T15504] tpg source WxH: 640x360 (Y'CbCr)
[  653.859347][T15504] tpg field: 1
[  653.870343][T15504] tpg crop: 640x360@0x0
[  653.912695][T15504] tpg compose: 640x360@0x0
[  653.920214][T15504] tpg colorspace: 8
[  653.940943][T15504] tpg transfer function: 0/0
[  653.982028][T15504] tpg Y'CbCr encoding: 0/0
[  653.986666][T15504] tpg quantization: 0/0
[  654.013051][T15504] tpg RGB range: 0/2
[  654.039761][T15504] vivid-013: ==================  END STATUS  ==================
[  654.495628][T15521] vivid-013: =================  START STATUS  =================
[  654.529743][T15521] vivid-013: Generate PTS: true
[  654.550009][T15521] vivid-013: Generate SCR: true
[  654.554984][T15521] tpg source WxH: 640x360 (Y'CbCr)
[  654.604042][T15521] tpg field: 1
[  654.612553][T15521] tpg crop: 640x360@0x0
[  654.621376][T15521] tpg compose: 640x360@0x0
[  654.626399][T15521] tpg colorspace: 8
[  654.643313][T15521] tpg transfer function: 0/0
[  654.653553][T15521] tpg Y'CbCr encoding: 0/0
[  654.722471][T15521] tpg quantization: 0/0
[  654.747232][T15521] tpg RGB range: 0/2
[  654.751201][T15521] vivid-013: ==================  END STATUS  ==================
[  657.285372][T15555] netlink: 'syz.1.2157': attribute type 1 has an invalid length.
[  657.439240][T15555] netlink: 'syz.1.2157': attribute type 1 has an invalid length.
[  664.928166][T15644] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2183'.
[  666.141834][T15672] openvswitch: HSR: Dropping previously announced user features
[  666.466309][T15674] Process accounting resumed
[  666.935668][T15684] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2185'.
[  672.207388][T15765] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2203'.
[  672.549143][T15776] FAULT_INJECTION: forcing a failure.
[  672.549143][T15776] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  672.593117][T15776] CPU: 1 UID: 0 PID: 15776 Comm: syz.3.2205 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  672.603992][T15776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  672.614102][T15776] Call Trace:
[  672.617512][T15776]  <TASK>
[  672.620493][T15776]  dump_stack_lvl+0x16c/0x1f0
[  672.625239][T15776]  should_fail_ex+0x497/0x5b0
[  672.629983][T15776]  _copy_to_user+0x32/0xd0
[  672.634483][T15776]  vt_do_diacrit+0x7a6/0x9d0
[  672.639161][T15776]  ? security_capable+0x7e/0x260
[  672.644186][T15776]  vt_ioctl+0x53f/0x2fd0
[  672.648507][T15776]  ? __pfx_vt_ioctl+0x10/0x10
[  672.653263][T15776]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  672.658990][T15776]  ? tomoyo_path_number_perm+0x190/0x5b0
[  672.664703][T15776]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  672.670764][T15776]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  672.676724][T15776]  ? do_vfs_ioctl+0x513/0x1950
[  672.681548][T15776]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  672.687504][T15776]  ? tty_jobctrl_ioctl+0x152/0xe00
[  672.692770][T15776]  ? __pfx_vt_ioctl+0x10/0x10
[  672.697577][T15776]  tty_ioctl+0x651/0x1640
[  672.701984][T15776]  ? __pfx_tty_ioctl+0x10/0x10
[  672.706835][T15776]  ? __pfx_lock_release+0x10/0x10
[  672.711924][T15776]  ? trace_lock_acquire+0x14e/0x1f0
[  672.717265][T15776]  ? __fget_files+0x206/0x3a0
[  672.722020][T15776]  ? __pfx_tty_ioctl+0x10/0x10
[  672.726994][T15776]  __x64_sys_ioctl+0x190/0x200
[  672.731829][T15776]  do_syscall_64+0xcd/0x250
[  672.736414][T15776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  672.742385][T15776] RIP: 0033:0x7f162e385d29
[  672.746860][T15776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  672.766764][T15776] RSP: 002b:00007f162f24f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  672.775260][T15776] RAX: ffffffffffffffda RBX: 00007f162e576160 RCX: 00007f162e385d29
[  672.784981][T15776] RDX: 0000000000000038 RSI: 0000000000004bfa RDI: 0000000000000003
[  672.793114][T15776] RBP: 00007f162f24f090 R08: 0000000000000000 R09: 0000000000000000
[  672.801233][T15776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  672.809356][T15776] R13: 0000000000000001 R14: 00007f162e576160 R15: 00007fff890abda8
[  672.817406][T15776]  </TASK>
[  674.396545][   T29] audit: type=1800 audit(4294967553.360:19): pid=15815 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2212" name="discovery_nqn" dev="configfs" ino=41753 res=0 errno=0
[  675.882672][T15833] FAULT_INJECTION: forcing a failure.
[  675.882672][T15833] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  675.912227][T15833] CPU: 1 UID: 0 PID: 15833 Comm: syz.5.2216 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  675.923098][T15833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  675.933212][T15833] Call Trace:
[  675.936532][T15833]  <TASK>
[  675.939509][T15833]  dump_stack_lvl+0x16c/0x1f0
[  675.944262][T15833]  should_fail_ex+0x497/0x5b0
[  675.949106][T15833]  _copy_to_user+0x32/0xd0
[  675.953598][T15833]  simple_read_from_buffer+0xd0/0x160
[  675.959031][T15833]  proc_fail_nth_read+0x198/0x270
[  675.964146][T15833]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  675.969816][T15833]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  675.975445][T15833]  vfs_read+0x1df/0xbe0
[  675.979665][T15833]  ? __fget_files+0x1fc/0x3a0
[  675.984393][T15833]  ? __pfx___mutex_lock+0x10/0x10
[  675.989463][T15833]  ? __pfx_vfs_read+0x10/0x10
[  675.994186][T15833]  ? __fget_files+0x206/0x3a0
[  675.998998][T15833]  ksys_read+0x12b/0x250
[  676.003277][T15833]  ? __pfx_ksys_read+0x10/0x10
[  676.008093][T15833]  do_syscall_64+0xcd/0x250
[  676.012651][T15833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  676.018589][T15833] RIP: 0033:0x7f377978473c
[  676.023036][T15833] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  676.042723][T15833] RSP: 002b:00007f377a4d1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  676.051175][T15833] RAX: ffffffffffffffda RBX: 00007f3779976160 RCX: 00007f377978473c
[  676.059174][T15833] RDX: 000000000000000f RSI: 00007f377a4d10a0 RDI: 0000000000000004
[  676.067172][T15833] RBP: 00007f377a4d1090 R08: 0000000000000000 R09: 0000000000000000
[  676.075171][T15833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  676.083186][T15833] R13: 0000000000000001 R14: 00007f3779976160 R15: 00007ffe120b9a48
[  676.091200][T15833]  </TASK>
[  678.540692][T15856] Process accounting resumed
[  679.065903][T15866] Invalid ELF header magic: != ELF
[  680.367803][T15868] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2226'.
[  680.611755][T15868] geneve1: entered allmulticast mode
[  680.700479][T15875] netlink: 'syz.5.2227': attribute type 9 has an invalid length.
[  680.914862][T15890] netlink: 100 bytes leftover after parsing attributes in process `syz.1.2232'.
[  681.421201][T15900] Process accounting resumed
[  681.993588][T15907] netlink: zone id is out of range
[  682.228335][T15907] netlink: zone id is out of range
[  682.255845][T15907] netlink: set zone limit has 8 unknown bytes
[  683.152413][T15932] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2243'.
[  683.175291][T15932] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  683.981197][T15928] netlink: 'syz.1.2242': attribute type 9 has an invalid length.
[  684.695384][T15947] Process accounting resumed
[  684.985030][T15953] svc: failed to register nfsdv3 RPC service (errno 111).
[  685.013592][T15953] svc: failed to register nfsaclv3 RPC service (errno 111).
[  686.269889][T15970] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2253'.
[  686.320138][T15970] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  687.833389][T15995] Invalid ELF header magic: != ELF
[  687.972561][T16000] svc: failed to register nfsdv3 RPC service (errno 111).
[  687.991128][T16000] svc: failed to register nfsaclv3 RPC service (errno 111).
[  688.726873][T15998] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2266'.
[  691.099173][T16053] Invalid ELF header magic: != ELF
[  691.129191][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  691.135595][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  691.760241][T16073] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2274'.
[  691.867305][T16073] geneve1: entered allmulticast mode
[  692.720575][T16080] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2282'.
[  693.906783][T16115] i2c i2c-0: delete_device: Can't parse I2C address
[  694.099278][T16120] i2c i2c-0: delete_device: Can't parse I2C address
[  694.297196][T16098] NFSD: Unable to initialize client recovery tracking! (-110)
[  694.304788][T16098] NFSD: Is nfsdcld running? If not, enable CONFIG_NFSD_LEGACY_CLIENT_TRACKING.
[  694.351698][T16098] NFSD: starting 90-second grace period (net f00004d1)
[  694.919418][T16146] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2295'.
[  695.411455][T16157] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2297'.
[  698.886257][T16227] openvswitch: HSR: Dropping previously announced user features
[  700.600608][T16251] FAULT_INJECTION: forcing a failure.
[  700.600608][T16251] name failslab, interval 1, probability 0, space 0, times 0
[  700.655319][T16251] CPU: 1 UID: 0 PID: 16251 Comm: syz.1.2322 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  700.666182][T16251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  700.676299][T16251] Call Trace:
[  700.679717][T16251]  <TASK>
[  700.682698][T16251]  dump_stack_lvl+0x16c/0x1f0
[  700.687457][T16251]  should_fail_ex+0x497/0x5b0
[  700.692204][T16251]  ? fs_reclaim_acquire+0xae/0x150
[  700.697396][T16251]  should_failslab+0xc2/0x120
[  700.702155][T16251]  __kmalloc_node_noprof+0xd1/0x520
[  700.707439][T16251]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  700.712972][T16251]  ? __pfx_lock_release+0x10/0x10
[  700.718149][T16251]  __kvmalloc_node_noprof+0xad/0x1a0
[  700.723511][T16251]  seq_read_iter+0x82a/0x12b0
[  700.728358][T16251]  seq_read+0x39f/0x4e0
[  700.732579][T16251]  ? __pfx_seq_read+0x10/0x10
[  700.737338][T16251]  ? __pfx_seq_read+0x10/0x10
[  700.742080][T16251]  proc_reg_read+0x23d/0x330
[  700.746735][T16251]  ? __pfx_proc_reg_read+0x10/0x10
[  700.751995][T16251]  vfs_read+0x1df/0xbe0
[  700.756192][T16251]  ? __fget_files+0x1fc/0x3a0
[  700.760908][T16251]  ? __pfx___mutex_lock+0x10/0x10
[  700.765972][T16251]  ? __pfx_vfs_read+0x10/0x10
[  700.770696][T16251]  ? __fget_files+0x206/0x3a0
[  700.775427][T16251]  ksys_read+0x12b/0x250
[  700.779710][T16251]  ? __pfx_ksys_read+0x10/0x10
[  700.784522][T16251]  do_syscall_64+0xcd/0x250
[  700.789072][T16251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  700.795161][T16251] RIP: 0033:0x7f2540b85d29
[  700.799673][T16251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  700.819330][T16251] RSP: 002b:00007f2541924038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  700.827781][T16251] RAX: ffffffffffffffda RBX: 00007f2540d75fa0 RCX: 00007f2540b85d29
[  700.835781][T16251] RDX: 00000000000000a0 RSI: 0000000020005c80 RDI: 0000000000000004
[  700.843965][T16251] RBP: 00007f2541924090 R08: 0000000000000000 R09: 0000000000000000
[  700.851987][T16251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  700.860247][T16251] R13: 0000000000000000 R14: 00007f2540d75fa0 R15: 00007fff75f2d7f8
[  700.868260][T16251]  </TASK>
[  705.333250][T16309] FAULT_INJECTION: forcing a failure.
[  705.333250][T16309] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  705.407271][T16309] CPU: 1 UID: 0 PID: 16309 Comm: syz.4.2338 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  705.418309][T16309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  705.428424][T16309] Call Trace:
[  705.431748][T16309]  <TASK>
[  705.434734][T16309]  dump_stack_lvl+0x16c/0x1f0
[  705.439481][T16309]  should_fail_ex+0x497/0x5b0
[  705.444233][T16309]  _copy_to_iter+0x4a5/0x1400
[  705.449001][T16309]  ? __pfx__copy_to_iter+0x10/0x10
[  705.454185][T16309]  ? __virt_addr_valid+0x1a4/0x590
[  705.459374][T16309]  ? __virt_addr_valid+0x5e/0x590
[  705.464473][T16309]  ? __phys_addr_symbol+0x30/0x80
[  705.469662][T16309]  ? __check_object_size+0x488/0x710
[  705.475040][T16309]  seq_read_iter+0xd00/0x12b0
[  705.479812][T16309]  seq_read+0x39f/0x4e0
[  705.484044][T16309]  ? __pfx_seq_read+0x10/0x10
[  705.488815][T16309]  ? __pfx_seq_read+0x10/0x10
[  705.493549][T16309]  proc_reg_read+0x23d/0x330
[  705.498209][T16309]  ? __pfx_proc_reg_read+0x10/0x10
[  705.503395][T16309]  vfs_read+0x1df/0xbe0
[  705.507620][T16309]  ? __fget_files+0x1fc/0x3a0
[  705.512369][T16309]  ? __pfx___mutex_lock+0x10/0x10
[  705.517465][T16309]  ? __pfx_vfs_read+0x10/0x10
[  705.522225][T16309]  ? __fget_files+0x206/0x3a0
[  705.526983][T16309]  ksys_read+0x12b/0x250
[  705.531334][T16309]  ? __pfx_ksys_read+0x10/0x10
[  705.536178][T16309]  do_syscall_64+0xcd/0x250
[  705.540763][T16309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  705.547082][T16309] RIP: 0033:0x7f61d0b85d29
[  705.551554][T16309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  705.571223][T16309] RSP: 002b:00007f61d1a89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  705.579713][T16309] RAX: ffffffffffffffda RBX: 00007f61d0d75fa0 RCX: 00007f61d0b85d29
[  705.587754][T16309] RDX: 00000000000000a0 RSI: 0000000020005c80 RDI: 0000000000000004
[  705.595805][T16309] RBP: 00007f61d1a89090 R08: 0000000000000000 R09: 0000000000000000
[  705.603837][T16309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  705.611868][T16309] R13: 0000000000000000 R14: 00007f61d0d75fa0 R15: 00007ffdb2a58108
[  705.619925][T16309]  </TASK>
[  706.232692][T16306] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2337'.
[  706.616681][   T55] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  706.629260][   T55] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  706.657244][   T55] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  706.710719][   T55] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  706.718964][   T55] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  706.728521][   T55] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  707.424192][T14501] smc: removing net device syz_tun with user defined pnetid ETHTOOL
[  707.521574][T16324] chnl_net:caif_netlink_parms(): no params data found
[  707.931557][T10717] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  708.145787][T10717] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  708.286935][T16324] bridge0: port 1(bridge_slave_0) entered blocking state
[  708.295417][T16324] bridge0: port 1(bridge_slave_0) entered disabled state
[  708.319502][T16324] bridge_slave_0: entered allmulticast mode
[  708.338198][T16324] bridge_slave_0: entered promiscuous mode
[  708.357964][T16324] bridge0: port 2(bridge_slave_1) entered blocking state
[  708.376563][T16324] bridge0: port 2(bridge_slave_1) entered disabled state
[  708.391758][T16324] bridge_slave_1: entered allmulticast mode
[  708.408838][T16324] bridge_slave_1: entered promiscuous mode
[  708.493047][T10717] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  708.550125][T16324] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  708.569952][T16324] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  708.629022][T10717] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  708.730143][T16324] team0: Port device team_slave_0 added
[  708.751028][T16324] team0: Port device team_slave_1 added
[  708.843670][T16324] batman_adv: batadv0: Adding interface: batadv_slave_0
[  708.865809][T16324] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  708.892609][T16324] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  708.906068][T16324] batman_adv: batadv0: Adding interface: batadv_slave_1
[  708.913354][T16324] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  708.940068][T16324] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  709.037354][   T55] Bluetooth: hci2: command tx timeout
[  710.256397][T10717] bond0 (unregistering): Released all slaves
[  710.306855][T16324] hsr_slave_0: entered promiscuous mode
[  710.326671][T16324] hsr_slave_1: entered promiscuous mode
[  710.335597][T16324] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  710.344017][T16324] Cannot create hsr debugfs directory
[  710.420919][T10717] HSR: left promiscuous mode
[  710.524395][T10717] 0}
^: left promiscuous mode
[  711.117722][   T55] Bluetooth: hci2: command tx timeout
[  711.620886][T10717] hsr_slave_1: left promiscuous mode
[  711.649756][T16384] Dead loop on virtual device ip6_vti0, fix it urgently!
[  711.675286][T10717] veth1_vlan: left promiscuous mode
[  711.687554][T16384] Dead loop on virtual device ip6_vti0, fix it urgently!
[  711.694999][T10717] veth0_vlan: left promiscuous mode
[  711.718775][T16384] Dead loop on virtual device ip6_vti0, fix it urgently!
[  711.727748][T16384] Dead loop on virtual device ip6_vti0, fix it urgently!
[  711.735214][T16384] Dead loop on virtual device ip6_vti0, fix it urgently!
[  711.744565][T16384] Dead loop on virtual device ip6_vti0, fix it urgently!
[  712.072163][T16393] Process accounting resumed
[  712.556399][T10717] team0 (unregistering): Port device team_slave_1 removed
[  713.197454][   T55] Bluetooth: hci2: command tx timeout
[  714.738491][T16324] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  714.820393][T16324] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  714.840340][T16324] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  714.876826][T16324] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  715.112333][T16324] 8021q: adding VLAN 0 to HW filter on device bond0
[  715.192288][T16324] 8021q: adding VLAN 0 to HW filter on device team0
[  715.240284][ T6722] bridge0: port 1(bridge_slave_0) entered blocking state
[  715.247489][ T6722] bridge0: port 1(bridge_slave_0) entered forwarding state
[  715.284230][   T55] Bluetooth: hci2: command tx timeout
[  715.293942][ T6722] bridge0: port 2(bridge_slave_1) entered blocking state
[  715.301151][ T6722] bridge0: port 2(bridge_slave_1) entered forwarding state
[  715.456888][T16324] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  715.491011][T16324] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  715.991671][T16324] 8021q: adding VLAN 0 to HW filter on device batadv0
[  716.071494][T16462] FAULT_INJECTION: forcing a failure.
[  716.071494][T16462] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  716.115959][T16324] veth0_vlan: entered promiscuous mode
[  716.122259][T16462] CPU: 1 UID: 0 PID: 16462 Comm: syz.5.2362 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  716.133103][T16462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  716.143251][T16462] Call Trace:
[  716.146572][T16462]  <TASK>
[  716.149630][T16462]  dump_stack_lvl+0x16c/0x1f0
[  716.154353][T16462]  should_fail_ex+0x497/0x5b0
[  716.159083][T16462]  _copy_to_user+0x32/0xd0
[  716.163550][T16462]  simple_read_from_buffer+0xd0/0x160
[  716.168970][T16462]  proc_fail_nth_read+0x198/0x270
[  716.174047][T16462]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  716.179662][T16462]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  716.185296][T16462]  vfs_read+0x1df/0xbe0
[  716.189494][T16462]  ? __fget_files+0x1fc/0x3a0
[  716.194208][T16462]  ? __pfx___mutex_lock+0x10/0x10
[  716.199278][T16462]  ? __pfx_vfs_read+0x10/0x10
[  716.204004][T16462]  ? __fget_files+0x206/0x3a0
[  716.208735][T16462]  ksys_read+0x12b/0x250
[  716.213014][T16462]  ? __pfx_ksys_read+0x10/0x10
[  716.217845][T16462]  do_syscall_64+0xcd/0x250
[  716.222396][T16462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  716.228331][T16462] RIP: 0033:0x7f377978473c
[  716.232775][T16462] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  716.252419][T16462] RSP: 002b:00007f377a513030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  716.260868][T16462] RAX: ffffffffffffffda RBX: 00007f3779975fa0 RCX: 00007f377978473c
[  716.268886][T16462] RDX: 000000000000000f RSI: 00007f377a5130a0 RDI: 0000000000000005
[  716.276977][T16462] RBP: 00007f377a513090 R08: 0000000000000000 R09: 0000000000000000
[  716.285005][T16462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  716.293113][T16462] R13: 0000000000000000 R14: 00007f3779975fa0 R15: 00007ffe120b9a48
[  716.301139][T16462]  </TASK>
[  716.323167][T16324] veth1_vlan: entered promiscuous mode
[  716.389184][T16324] veth0_macvtap: entered promiscuous mode
[  716.423948][T16324] veth1_macvtap: entered promiscuous mode
[  716.466244][T16324] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  716.527343][T16324] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  716.566450][T16324] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  716.604312][T16324] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  716.651565][T16324] batman_adv: batadv0: Interface activated: batadv_slave_0
[  716.722806][T16324] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  716.741270][T16324] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  716.762487][T16324] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  716.832347][T16324] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  716.858187][T16324] batman_adv: batadv0: Interface activated: batadv_slave_1
[  716.875880][T16324] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  716.890880][T16324] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  716.899748][T16324] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  716.908688][T16324] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  717.078811][ T9822] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  717.079369][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  717.086820][ T9822] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  717.102632][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  717.292789][T16473] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2364'.
[  717.430890][T16473] netdevsim netdevsim5 netdevsim2: entered allmulticast mode
[  718.755508][T16520] Dead loop on virtual device ip6_vti0, fix it urgently!
[  718.766655][T16520] Dead loop on virtual device ip6_vti0, fix it urgently!
[  718.795375][T16520] Dead loop on virtual device ip6_vti0, fix it urgently!
[  718.808089][T16520] Dead loop on virtual device ip6_vti0, fix it urgently!
[  718.835289][T16520] Dead loop on virtual device ip6_vti0, fix it urgently!
[  718.849109][T16520] Dead loop on virtual device ip6_vti0, fix it urgently!
[  720.132482][T16537] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2372'.
[  720.167796][T16537] openvswitch: HSR: Dropping previously announced user features
[  721.888426][T16566] Dead loop on virtual device ip6_vti0, fix it urgently!
[  721.918883][T16566] Dead loop on virtual device ip6_vti0, fix it urgently!
[  721.928369][T16566] Dead loop on virtual device ip6_vti0, fix it urgently!
[  721.959560][T16566] Dead loop on virtual device ip6_vti0, fix it urgently!
[  724.053047][T16600] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2386'.
[  724.062750][T16600] openvswitch: HSR: Dropping previously announced user features
[  726.753850][T15590] smc: removing net device syz_tun with user defined pnetid ETHTOOL
[  726.849400][ T5144] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  726.868324][ T5144] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  726.889408][ T5144] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  726.900012][ T5144] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  726.924316][ T5144] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  726.933026][ T5144] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  727.403432][T16651] chnl_net:caif_netlink_parms(): no params data found
[  727.620272][T16651] bridge0: port 1(bridge_slave_0) entered blocking state
[  727.627723][T16651] bridge0: port 1(bridge_slave_0) entered disabled state
[  727.635283][T16651] bridge_slave_0: entered allmulticast mode
[  727.645087][T16651] bridge_slave_0: entered promiscuous mode
[  727.654117][T16651] bridge0: port 2(bridge_slave_1) entered blocking state
[  727.661815][T16651] bridge0: port 2(bridge_slave_1) entered disabled state
[  727.669744][T16651] bridge_slave_1: entered allmulticast mode
[  727.678786][T16651] bridge_slave_1: entered promiscuous mode
[  727.862371][T16651] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  727.889393][T16651] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  727.996478][T16651] team0: Port device team_slave_0 added
[  728.017848][T16651] team0: Port device team_slave_1 added
[  728.078515][T16651] batman_adv: batadv0: Adding interface: batadv_slave_0
[  728.085732][T16651] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  728.137052][T16651] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  728.167393][T16651] batman_adv: batadv0: Adding interface: batadv_slave_1
[  728.194802][T16651] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  728.247139][T16651] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  728.361345][T16651] hsr_slave_0: entered promiscuous mode
[  728.381820][T16651] hsr_slave_1: entered promiscuous mode
[  728.392413][T16651] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  728.411490][T16651] Cannot create hsr debugfs directory
[  728.779044][T16651] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  728.905502][T16651] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  729.037612][ T5144] Bluetooth: hci3: command tx timeout
[  729.179259][T16651] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  729.395059][T16651] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  729.750001][T16651] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  729.780954][T16651] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  729.799162][T16651] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  729.815248][T16651] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  730.073716][T16651] 8021q: adding VLAN 0 to HW filter on device bond0
[  730.113108][T16651] 8021q: adding VLAN 0 to HW filter on device team0
[  730.148221][T10717] bridge0: port 1(bridge_slave_0) entered blocking state
[  730.155408][T10717] bridge0: port 1(bridge_slave_0) entered forwarding state
[  730.208946][ T3491] bridge0: port 2(bridge_slave_1) entered blocking state
[  730.216124][ T3491] bridge0: port 2(bridge_slave_1) entered forwarding state
[  730.328722][T16651] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  730.347109][T16651] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  730.795800][T16651] 8021q: adding VLAN 0 to HW filter on device batadv0
[  730.923975][T16651] veth0_vlan: entered promiscuous mode
[  730.980029][T16651] veth1_vlan: entered promiscuous mode
[  731.049205][T16651] veth0_macvtap: entered promiscuous mode
[  731.079911][T16651] veth1_macvtap: entered promiscuous mode
[  731.124670][ T5144] Bluetooth: hci3: command tx timeout
[  731.127804][T16651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  731.176764][T16651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  731.226671][T16651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  731.252289][T16651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  731.299108][T16651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  731.317815][T16651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  731.348692][T16651] batman_adv: batadv0: Interface activated: batadv_slave_0
[  731.385909][T16651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  731.402460][T16651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  731.414339][T16651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  731.447646][T16651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  731.477253][T16651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  731.503946][T16651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  731.526423][T16651] batman_adv: batadv0: Interface activated: batadv_slave_1
[  731.541757][T16651] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  731.559157][T16651] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  731.583187][T16651] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  731.594292][T16651] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  731.613225][T16705] openvswitch: HSR: Dropping previously announced user features
[  731.703725][T16702] bridge0: port 3(team0) entered blocking state
[  731.720633][T16702] bridge0: port 3(team0) entered disabled state
[  731.742426][T16702] team0: entered allmulticast mode
[  731.782858][T16702] team_slave_0: entered allmulticast mode
[  731.834943][T16702] team_slave_1: entered allmulticast mode
[  731.873771][T16702] team0: entered promiscuous mode
[  731.887258][T16702] team_slave_0: entered promiscuous mode
[  731.901140][T16702] team_slave_1: entered promiscuous mode
[  731.920563][T16702] bridge0: port 3(team0) entered blocking state
[  731.926965][T16702] bridge0: port 3(team0) entered forwarding state
[  732.053444][ T9822] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  732.070687][ T9822] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  732.169236][T10717] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  732.182838][T10717] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  732.451956][T16715] program syz.1.2394 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  732.478470][T16715] futex_wake_op: syz.1.2394 tries to shift op by 64; fix this program
[  733.198350][ T5144] Bluetooth: hci3: command tx timeout
[  733.613793][T16730] ERROR: Out of memory at tomoyo_memory_ok.
[  734.092410][T16740] can: request_module (can-proto-0) failed.
[  735.159604][T16757] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2418'.
[  735.277598][ T5144] Bluetooth: hci3: command tx timeout
[  735.405711][T16761] HSR: entered promiscuous mode
[  738.274991][T16810] Process accounting resumed
[  739.302946][ T5144] Bluetooth: hci1: command 0x0406 tx timeout
[  743.029250][T16895] FAULT_INJECTION: forcing a failure.
[  743.029250][T16895] name failslab, interval 1, probability 0, space 0, times 0
[  743.063822][T16895] CPU: 0 UID: 0 PID: 16895 Comm: syz.1.2454 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  743.074688][T16895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  743.084982][T16895] Call Trace:
[  743.088303][T16895]  <TASK>
[  743.091288][T16895]  dump_stack_lvl+0x16c/0x1f0
[  743.096036][T16895]  should_fail_ex+0x497/0x5b0
[  743.100779][T16895]  ? fs_reclaim_acquire+0xae/0x150
[  743.105956][T16895]  should_failslab+0xc2/0x120
[  743.110724][T16895]  __kmalloc_cache_noprof+0x68/0x420
[  743.116087][T16895]  alloc_workqueue_attrs+0x40/0x100
[  743.121360][T16895]  padata_set_cpumask+0x380/0x520
[  743.126487][T16895]  store_cpumask+0x121/0x1a0
[  743.131131][T16895]  ? __pfx_store_cpumask+0x10/0x10
[  743.136280][T16895]  ? rcu_is_watching+0x12/0xc0
[  743.141096][T16895]  padata_sysfs_store+0x73/0xb0
[  743.145994][T16895]  ? __pfx_padata_sysfs_store+0x10/0x10
[  743.151583][T16895]  sysfs_kf_write+0x117/0x170
[  743.156312][T16895]  kernfs_fop_write_iter+0x33d/0x500
[  743.161657][T16895]  ? __pfx_sysfs_kf_write+0x10/0x10
[  743.166917][T16895]  vfs_write+0x5ae/0x1150
[  743.171330][T16895]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  743.177188][T16895]  ? __pfx___mutex_lock+0x10/0x10
[  743.182258][T16895]  ? __pfx_vfs_write+0x10/0x10
[  743.187178][T16895]  ksys_write+0x12b/0x250
[  743.191546][T16895]  ? __pfx_ksys_write+0x10/0x10
[  743.196444][T16895]  do_syscall_64+0xcd/0x250
[  743.200992][T16895]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  743.207031][T16895] RIP: 0033:0x7f5475985d29
[  743.211472][T16895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  743.231127][T16895] RSP: 002b:00007f5476736038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  743.239583][T16895] RAX: ffffffffffffffda RBX: 00007f5475b75fa0 RCX: 00007f5475985d29
[  743.247586][T16895] RDX: 0000000000000001 RSI: 0000000020000140 RDI: 0000000000000004
[  743.255590][T16895] RBP: 00007f5476736090 R08: 0000000000000000 R09: 0000000000000000
[  743.263592][T16895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  743.271595][T16895] R13: 0000000000000000 R14: 00007f5475b75fa0 R15: 00007fff0394a158
[  743.279619][T16895]  </TASK>
[  743.312467][T16897] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2453'.
[  743.330512][T16897] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2453'.
[  743.795352][T16906] Invalid ELF header magic: != ELF
[  743.868008][T16909] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2457'.
[  744.367558][T16915] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2458'.
[  745.159688][T16931] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2461'.
[  745.214123][T16931] hsr_slave_0: left promiscuous mode
[  745.330325][T16931] hsr_slave_1: left promiscuous mode
[  745.411684][T16939] FAULT_INJECTION: forcing a failure.
[  745.411684][T16939] name failslab, interval 1, probability 0, space 0, times 0
[  745.477131][T16939] CPU: 0 UID: 0 PID: 16939 Comm: syz.3.2463 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  745.488003][T16939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  745.498209][T16939] Call Trace:
[  745.501802][T16939]  <TASK>
[  745.504783][T16939]  dump_stack_lvl+0x16c/0x1f0
[  745.509541][T16939]  should_fail_ex+0x497/0x5b0
[  745.514305][T16939]  ? fs_reclaim_acquire+0xae/0x150
[  745.519506][T16939]  should_failslab+0xc2/0x120
[  745.524263][T16939]  __kmalloc_noprof+0xce/0x4f0
[  745.529113][T16939]  ? apply_wqattrs_prepare+0xf8/0xbd0
[  745.534571][T16939]  apply_wqattrs_prepare+0xf8/0xbd0
[  745.539874][T16939]  apply_workqueue_attrs_locked+0x64/0xe0
[  745.545675][T16939]  apply_workqueue_attrs+0x2a/0x50
[  745.550872][T16939]  padata_set_cpumask+0x240/0x520
[  745.555976][T16939]  store_cpumask+0x121/0x1a0
[  745.560629][T16939]  ? __pfx_store_cpumask+0x10/0x10
[  745.565803][T16939]  ? rcu_is_watching+0x12/0xc0
[  745.570653][T16939]  padata_sysfs_store+0x73/0xb0
[  745.575587][T16939]  ? __pfx_padata_sysfs_store+0x10/0x10
[  745.581221][T16939]  sysfs_kf_write+0x117/0x170
[  745.585986][T16939]  kernfs_fop_write_iter+0x33d/0x500
[  745.591355][T16939]  ? __pfx_sysfs_kf_write+0x10/0x10
[  745.596619][T16939]  vfs_write+0x5ae/0x1150
[  745.600992][T16939]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  745.606847][T16939]  ? __pfx___mutex_lock+0x10/0x10
[  745.611926][T16939]  ? __pfx_vfs_write+0x10/0x10
[  745.616755][T16939]  ksys_write+0x12b/0x250
[  745.621127][T16939]  ? __pfx_ksys_write+0x10/0x10
[  745.626033][T16939]  do_syscall_64+0xcd/0x250
[  745.630590][T16939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  745.636528][T16939] RIP: 0033:0x7f2ef5f85d29
[  745.640977][T16939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  745.660648][T16939] RSP: 002b:00007f2ef6d9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  745.669105][T16939] RAX: ffffffffffffffda RBX: 00007f2ef6175fa0 RCX: 00007f2ef5f85d29
[  745.677133][T16939] RDX: 0000000000000001 RSI: 0000000020000140 RDI: 0000000000000004
[  745.685133][T16939] RBP: 00007f2ef6d9a090 R08: 0000000000000000 R09: 0000000000000000
[  745.693146][T16939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  745.701580][T16939] R13: 0000000000000000 R14: 00007f2ef6175fa0 R15: 00007ffcb42cafb8
[  745.709606][T16939]  </TASK>
[  747.443965][T16974] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2475'.
[  747.491540][T16974] hsr_slave_0: left promiscuous mode
[  747.543298][T16974] hsr_slave_1: left promiscuous mode
[  749.272950][T17002] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2480'.
[  749.314594][T17002] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  749.852362][T17020] netlink: 1 bytes leftover after parsing attributes in process `syz.3.2485'.
[  750.288202][T17032] FAULT_INJECTION: forcing a failure.
[  750.288202][T17032] name failslab, interval 1, probability 0, space 0, times 0
[  750.301468][T17032] CPU: 0 UID: 0 PID: 17032 Comm: syz.3.2488 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  750.312392][T17032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  750.322505][T17032] Call Trace:
[  750.325826][T17032]  <TASK>
[  750.328808][T17032]  dump_stack_lvl+0x16c/0x1f0
[  750.333565][T17032]  should_fail_ex+0x497/0x5b0
[  750.338317][T17032]  ? fs_reclaim_acquire+0xae/0x150
[  750.343502][T17032]  should_failslab+0xc2/0x120
[  750.348436][T17032]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  750.354317][T17032]  ? alloc_unbound_pwq+0x3ff/0xe10
[  750.359500][T17032]  alloc_unbound_pwq+0x3ff/0xe10
[  750.364593][T17032]  apply_wqattrs_prepare+0x3af/0xbd0
[  750.369933][T17032]  apply_workqueue_attrs_locked+0x64/0xe0
[  750.375693][T17032]  apply_workqueue_attrs+0x2a/0x50
[  750.380936][T17032]  padata_set_cpumask+0x240/0x520
[  750.386002][T17032]  store_cpumask+0x121/0x1a0
[  750.390625][T17032]  ? __pfx_store_cpumask+0x10/0x10
[  750.395769][T17032]  ? rcu_is_watching+0x12/0xc0
[  750.400606][T17032]  padata_sysfs_store+0x73/0xb0
[  750.405530][T17032]  ? __pfx_padata_sysfs_store+0x10/0x10
[  750.411130][T17032]  sysfs_kf_write+0x117/0x170
[  750.415866][T17032]  kernfs_fop_write_iter+0x33d/0x500
[  750.421198][T17032]  ? __pfx_sysfs_kf_write+0x10/0x10
[  750.426450][T17032]  vfs_write+0x5ae/0x1150
[  750.430822][T17032]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  750.436680][T17032]  ? __pfx___mutex_lock+0x10/0x10
[  750.441751][T17032]  ? __pfx_vfs_write+0x10/0x10
[  750.446583][T17032]  ksys_write+0x12b/0x250
[  750.450952][T17032]  ? __pfx_ksys_write+0x10/0x10
[  750.455865][T17032]  do_syscall_64+0xcd/0x250
[  750.460428][T17032]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  750.466382][T17032] RIP: 0033:0x7f2ef5f85d29
[  750.470850][T17032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  750.490633][T17032] RSP: 002b:00007f2ef6d9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  750.499087][T17032] RAX: ffffffffffffffda RBX: 00007f2ef6175fa0 RCX: 00007f2ef5f85d29
[  750.507202][T17032] RDX: 0000000000000001 RSI: 0000000020000140 RDI: 0000000000000004
[  750.515208][T17032] RBP: 00007f2ef6d9a090 R08: 0000000000000000 R09: 0000000000000000
[  750.523228][T17032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  750.531261][T17032] R13: 0000000000000000 R14: 00007f2ef6175fa0 R15: 00007ffcb42cafb8
[  750.539290][T17032]  </TASK>
[  752.342062][T17067] FAULT_INJECTION: forcing a failure.
[  752.342062][T17067] name failslab, interval 1, probability 0, space 0, times 0
[  752.361674][T17067] CPU: 1 UID: 0 PID: 17067 Comm: syz.5.2497 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  752.372544][T17067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  752.382753][T17067] Call Trace:
[  752.386117][T17067]  <TASK>
[  752.389075][T17067]  dump_stack_lvl+0x16c/0x1f0
[  752.393881][T17067]  should_fail_ex+0x497/0x5b0
[  752.398623][T17067]  ? fs_reclaim_acquire+0xae/0x150
[  752.403774][T17067]  should_failslab+0xc2/0x120
[  752.408503][T17067]  __kmalloc_cache_noprof+0x68/0x420
[  752.413840][T17067]  ? apply_wqattrs_prepare+0xf8/0xbd0
[  752.419268][T17067]  apply_wqattrs_prepare+0x130/0xbd0
[  752.424620][T17067]  apply_workqueue_attrs_locked+0x64/0xe0
[  752.430389][T17067]  apply_workqueue_attrs+0x2a/0x50
[  752.435541][T17067]  padata_set_cpumask+0x240/0x520
[  752.440698][T17067]  store_cpumask+0x121/0x1a0
[  752.445319][T17067]  ? __pfx_store_cpumask+0x10/0x10
[  752.450460][T17067]  ? rcu_is_watching+0x12/0xc0
[  752.455277][T17067]  padata_sysfs_store+0x73/0xb0
[  752.460216][T17067]  ? __pfx_padata_sysfs_store+0x10/0x10
[  752.465807][T17067]  sysfs_kf_write+0x117/0x170
[  752.470531][T17067]  kernfs_fop_write_iter+0x33d/0x500
[  752.475855][T17067]  ? __pfx_sysfs_kf_write+0x10/0x10
[  752.481117][T17067]  vfs_write+0x5ae/0x1150
[  752.485499][T17067]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  752.491440][T17067]  ? __pfx___mutex_lock+0x10/0x10
[  752.496506][T17067]  ? __pfx_vfs_write+0x10/0x10
[  752.501333][T17067]  ksys_write+0x12b/0x250
[  752.505719][T17067]  ? __pfx_ksys_write+0x10/0x10
[  752.510637][T17067]  do_syscall_64+0xcd/0x250
[  752.515202][T17067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  752.521143][T17067] RIP: 0033:0x7f3779785d29
[  752.525593][T17067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  752.545249][T17067] RSP: 002b:00007f377a513038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  752.553723][T17067] RAX: ffffffffffffffda RBX: 00007f3779975fa0 RCX: 00007f3779785d29
[  752.561741][T17067] RDX: 0000000000000001 RSI: 0000000020000140 RDI: 0000000000000004
[  752.569747][T17067] RBP: 00007f377a513090 R08: 0000000000000000 R09: 0000000000000000
[  752.577752][T17067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  752.585764][T17067] R13: 0000000000000000 R14: 00007f3779975fa0 R15: 00007ffe120b9a48
[  752.593796][T17067]  </TASK>
[  752.627410][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  752.633852][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  752.724034][T17071] Process accounting resumed
[  752.826033][T17076] ==================================================================
[  752.834166][T17076] BUG: KASAN: slab-use-after-free in force_devcd_write+0x31f/0x350
[  752.842112][T17076] Read of size 8 at addr ffff88802854c800 by task syz.5.2500/17076
[  752.850046][T17076] 
[  752.852406][T17076] CPU: 1 UID: 0 PID: 17076 Comm: syz.5.2500 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  752.863211][T17076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  752.865969][T17074] Process accounting resumed
[  752.873316][T17076] Call Trace:
[  752.873329][T17076]  <TASK>
[  752.873343][T17076]  dump_stack_lvl+0x116/0x1f0
[  752.873387][T17076]  print_report+0xc3/0x620
[  752.873431][T17076]  ? __virt_addr_valid+0x5e/0x590
[  752.873473][T17076]  ? __phys_addr+0xc6/0x150
[  752.873515][T17076]  kasan_report+0xd9/0x110
[  752.907450][T17076]  ? force_devcd_write+0x31f/0x350
[  752.912596][T17076]  ? force_devcd_write+0x31f/0x350
[  752.917741][T17076]  force_devcd_write+0x31f/0x350
[  752.922705][T17076]  ? __pfx_force_devcd_write+0x10/0x10
[  752.928189][T17076]  ? debugfs_file_get+0x21c/0x5c0
[  752.933243][T17076]  ? __pfx_debugfs_file_get+0x10/0x10
[  752.938647][T17076]  ? rcu_is_watching+0x12/0xc0
[  752.943443][T17076]  ? trace_lock_acquire+0x14e/0x1f0
[  752.948677][T17076]  full_proxy_write+0xfb/0x1b0
[  752.953472][T17076]  ? __pfx_full_proxy_write+0x10/0x10
[  752.958876][T17076]  vfs_write+0x24c/0x1150
[  752.963239][T17076]  ? __fget_files+0x1fc/0x3a0
[  752.967949][T17076]  ? __pfx___mutex_lock+0x10/0x10
[  752.973015][T17076]  ? __pfx_vfs_write+0x10/0x10
[  752.977810][T17076]  ? __fget_files+0x206/0x3a0
[  752.982522][T17076]  ksys_write+0x12b/0x250
[  752.986882][T17076]  ? __pfx_ksys_write+0x10/0x10
[  752.991792][T17076]  do_syscall_64+0xcd/0x250
[  752.996332][T17076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  753.002262][T17076] RIP: 0033:0x7f3779785d29
[  753.006703][T17076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  753.026352][T17076] RSP: 002b:00007f377a513038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  753.034794][T17076] RAX: ffffffffffffffda RBX: 00007f3779975fa0 RCX: 00007f3779785d29
[  753.042789][T17076] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000002
[  753.050778][T17076] RBP: 00007f377a513090 R08: 0000000000000000 R09: 0000000000000000
[  753.058767][T17076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  753.066754][T17076] R13: 0000000000000000 R14: 00007f3779975fa0 R15: 00007ffe120b9a48
[  753.074755][T17076]  </TASK>
[  753.077789][T17076] 
[  753.080123][T17076] Allocated by task 62:
[  753.084284][T17076]  kasan_save_stack+0x33/0x60
[  753.088996][T17076]  kasan_save_track+0x14/0x30
[  753.093698][T17076]  __kasan_kmalloc+0xaa/0xb0
[  753.098318][T17076]  __kmalloc_noprof+0x21a/0x4f0
[  753.103224][T17076]  ieee802_11_parse_elems_full+0xe6/0x1630
[  753.109065][T17076]  ieee80211_ibss_rx_queued_mgmt+0xc54/0x3040
[  753.115191][T17076]  ieee80211_iface_work+0xc0b/0xf00
[  753.120424][T17076]  cfg80211_wiphy_work+0x3de/0x560
[  753.125567][T17076]  process_one_work+0x958/0x1b30
[  753.130531][T17076]  worker_thread+0x6c8/0xf00
[  753.135145][T17076]  kthread+0x2c1/0x3a0
[  753.139240][T17076]  ret_from_fork+0x45/0x80
[  753.143677][T17076]  ret_from_fork_asm+0x1a/0x30
[  753.148472][T17076] 
[  753.150808][T17076] Freed by task 62:
[  753.154644][T17076]  kasan_save_stack+0x33/0x60
[  753.159351][T17076]  kasan_save_track+0x14/0x30
[  753.164061][T17076]  kasan_save_free_info+0x3b/0x60
[  753.169108][T17076]  __kasan_slab_free+0x51/0x70
[  753.173905][T17076]  kfree+0x14f/0x4b0
[  753.177934][T17076]  ieee80211_ibss_rx_queued_mgmt+0x1ae3/0x3040
[  753.184117][T17076]  ieee80211_iface_work+0xc0b/0xf00
[  753.189349][T17076]  cfg80211_wiphy_work+0x3de/0x560
[  753.194491][T17076]  process_one_work+0x958/0x1b30
[  753.199451][T17076]  worker_thread+0x6c8/0xf00
[  753.204064][T17076]  kthread+0x2c1/0x3a0
[  753.208164][T17076]  ret_from_fork+0x45/0x80
[  753.212600][T17076]  ret_from_fork_asm+0x1a/0x30
[  753.217401][T17076] 
[  753.219743][T17076] The buggy address belongs to the object at ffff88802854c800
[  753.219743][T17076]  which belongs to the cache kmalloc-1k of size 1024
[  753.233830][T17076] The buggy address is located 0 bytes inside of
[  753.233830][T17076]  freed 1024-byte region [ffff88802854c800, ffff88802854cc00)
[  753.247661][T17076] 
[  753.249998][T17076] The buggy address belongs to the physical page:
[  753.256425][T17076] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x28548
[  753.265203][T17076] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  753.273722][T17076] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  753.281286][T17076] page_type: f5(slab)
[  753.285290][T17076] raw: 00fff00000000040 ffff88801ac41dc0 dead000000000100 dead000000000122
[  753.293900][T17076] raw: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000
[  753.302514][T17076] head: 00fff00000000040 ffff88801ac41dc0 dead000000000100 dead000000000122
[  753.311213][T17076] head: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000
[  753.319908][T17076] head: 00fff00000000003 ffffea0000a15201 ffffffffffffffff 0000000000000000
[  753.328618][T17076] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  753.337305][T17076] page dumped because: kasan: bad access detected
[  753.343740][T17076] page_owner tracks the page as allocated
[  753.349485][T17076] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 11, tgid 11 (kworker/u8:0), ts 16695553195, free_ts 0
[  753.367840][T17076]  post_alloc_hook+0x2d1/0x350
[  753.372648][T17076]  get_page_from_freelist+0xfce/0x2f80
[  753.378136][T17076]  __alloc_pages_noprof+0x223/0x25b0
[  753.383451][T17076]  new_slab+0xca/0x410
[  753.387545][T17076]  ___slab_alloc+0xce2/0x1650
[  753.392246][T17076]  __slab_alloc.constprop.0+0x56/0xb0
[  753.397789][T17076]  __kmalloc_node_noprof+0x2f0/0x520
[  753.403116][T17076]  blk_alloc_flush_queue+0x111/0x2c0
[  753.408434][T17076]  blk_mq_alloc_and_init_hctx+0xc6c/0x11b0
[  753.414271][T17076]  blk_mq_realloc_hw_ctxs+0x8e0/0xbe0
[  753.419672][T17076]  blk_mq_init_allocated_queue+0x39e/0x11f0
[  753.425593][T17076]  blk_mq_alloc_queue+0x1ef/0x2e0
[  753.430643][T17076]  scsi_alloc_sdev+0x890/0xd80
[  753.435427][T17076]  scsi_probe_and_add_lun+0x789/0xda0
[  753.440823][T17076]  __scsi_scan_target+0x1ea/0x580
[  753.445878][T17076]  scsi_scan_channel+0x149/0x1e0
[  753.450837][T17076] page_owner free stack trace missing
[  753.456217][T17076] 
[  753.458553][T17076] Memory state around the buggy address:
[  753.464196][T17076]  ffff88802854c700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  753.472273][T17076]  ffff88802854c780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  753.480347][T17076] >ffff88802854c800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  753.488420][T17076]                    ^
[  753.492514][T17076]  ffff88802854c880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  753.500593][T17076]  ffff88802854c900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  753.508675][T17076] ==================================================================
[  753.527242][T17076] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  753.534491][T17076] CPU: 0 UID: 0 PID: 17076 Comm: syz.5.2500 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  753.545301][T17076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  753.555401][T17076] Call Trace:
[  753.558716][T17076]  <TASK>
[  753.561676][T17076]  dump_stack_lvl+0x3d/0x1f0
[  753.566306][T17076]  panic+0x71d/0x800
[  753.570242][T17076]  ? __pfx_panic+0x10/0x10
[  753.574698][T17076]  ? preempt_schedule_thunk+0x1a/0x30
[  753.580094][T17076]  ? preempt_schedule_common+0x44/0xc0
[  753.585583][T17076]  ? check_panic_on_warn+0x1f/0xb0
[  753.590739][T17076]  check_panic_on_warn+0xab/0xb0
[  753.595743][T17076]  end_report+0x117/0x180
[  753.600108][T17076]  kasan_report+0xe9/0x110
[  753.604566][T17076]  ? force_devcd_write+0x31f/0x350
[  753.609703][T17076]  ? force_devcd_write+0x31f/0x350
[  753.614848][T17076]  force_devcd_write+0x31f/0x350
[  753.619815][T17076]  ? __pfx_force_devcd_write+0x10/0x10
[  753.625393][T17076]  ? debugfs_file_get+0x21c/0x5c0
[  753.630446][T17076]  ? __pfx_debugfs_file_get+0x10/0x10
[  753.635849][T17076]  ? rcu_is_watching+0x12/0xc0
[  753.640651][T17076]  ? trace_lock_acquire+0x14e/0x1f0
[  753.645892][T17076]  full_proxy_write+0xfb/0x1b0
[  753.650694][T17076]  ? __pfx_full_proxy_write+0x10/0x10
[  753.656109][T17076]  vfs_write+0x24c/0x1150
[  753.660478][T17076]  ? __fget_files+0x1fc/0x3a0
[  753.665198][T17076]  ? __pfx___mutex_lock+0x10/0x10
[  753.670271][T17076]  ? __pfx_vfs_write+0x10/0x10
[  753.675101][T17076]  ? __fget_files+0x206/0x3a0
[  753.679820][T17076]  ksys_write+0x12b/0x250
[  753.684184][T17076]  ? __pfx_ksys_write+0x10/0x10
[  753.689071][T17076]  do_syscall_64+0xcd/0x250
[  753.693615][T17076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  753.699541][T17076] RIP: 0033:0x7f3779785d29
[  753.703974][T17076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  753.723620][T17076] RSP: 002b:00007f377a513038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  753.732060][T17076] RAX: ffffffffffffffda RBX: 00007f3779975fa0 RCX: 00007f3779785d29
[  753.740055][T17076] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000002
[  753.748049][T17076] RBP: 00007f377a513090 R08: 0000000000000000 R09: 0000000000000000
[  753.756049][T17076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  753.764041][T17076] R13: 0000000000000000 R14: 00007f3779975fa0 R15: 00007ffe120b9a48
[  753.772040][T17076]  </TASK>
[  753.775407][T17076] Kernel Offset: disabled
[  753.779746][T17076] Rebooting in 86400 seconds..