last executing test programs:

1m3.166350488s ago: executing program 0 (id=1030):
r0 = open(&(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x8802, 0x32)
sendfile$auto(r0, r0, 0x0, 0xd)
r1 = socket(0x10, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x1b54}, 0x1, 0x0, 0x0, 0x4000004}, 0x5)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000380), r2)
sendmsg$auto_NL802154_CMD_GET_INTERFACE(r0, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)={0x1018, r3, 0x12, 0x70bd2d, 0x25dfdbfd, {}, [@NL802154_ATTR_SUPPORTED_COMMANDS={0x1004, 0x19, 0x0, 0x1, [@generic="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"]}]}, 0x1018}, 0x1, 0x0, 0x0, 0x4}, 0x8000)
poll$auto(&(0x7f0000000040)={r1, 0x8, 0x5}, 0x9, 0x9)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
recvmmsg$auto(r2, &(0x7f0000000180)={{0x0, 0x8, 0x0, 0x1, 0x0, 0x1000002, 0x8}, 0x800}, 0x4000005, 0x8, 0x0)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
mmap$auto(0x4, 0x2000a, 0x10000000000df, 0xeb2, 0x437, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES32=r0, @ANYBLOB="000826bd7000fedbde25030000000600070008000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060006004000000006000600070000000a0010"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
r4 = socket(0x15, 0x5, 0x0)
bind$auto(r4, &(0x7f0000000440)=@in={0x2, 0x0, @rand_addr=0x64010101}, 0x68)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
r5 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
ioctl$auto_VHOST_SET_FEATURES2(r5, 0x4008af00, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

1m1.857498236s ago: executing program 0 (id=1037):
mmap$auto(0x0, 0x9, 0x800000000df, 0x9b72, 0xea8a, 0x8000)
mmap$auto(0x0, 0x200006, 0x2, 0x13, 0x602, 0xe92)
mlockall$auto(0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
r0 = socket(0x11, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8953, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
munmap$auto(0x10000000000000, 0x1)
ioperm$auto(0x6, 0x3, 0x6)
mmap$auto(0x400, 0x20009, 0xe0, 0xeb1, 0x0, 0x8000)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x4, 0x0, 0x1}, 0xed7138c}, 0x2, 0x9)
socket(0x25, 0x1, 0x3)
socket(0xa, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x6)
mmap$auto(0x2f, 0xc, 0x4f, 0xffffffffffff25d5, 0xfffffffffffffff5, 0xa)
bpf$auto(0x8, &(0x7f0000000000)=@iter_create={r1, 0xe}, 0x463)
bind$auto(0x7, &(0x7f0000000000), 0x3e)
sendmmsg$auto(0xc0, 0x0, 0x9a6, 0xfffffffe)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={<r3=>0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
bpf$auto(0x18, &(0x7f0000000040)=@task_fd_query={r3, 0xffffffffffffffff, 0x9, 0x8, 0x100000000000008, 0x7, 0xffffffffffffffff, 0x4, 0x2}, 0x92)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)

1m1.268709809s ago: executing program 0 (id=1039):
ioctl$auto_UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000080)={<r0=>0xffffffffffffffff, 0x3, 0x80000000, 0x2})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wg2\x00', <r1=>0x0})
sendmsg$auto_NCSI_CMD_PKG_INFO(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000280)={0x424, 0x0, 0x800, 0x70bd2c, 0x25dfdbfd, {}, [@NCSI_ATTR_MULTI_FLAG={0x4}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0xc0000}, @NCSI_ATTR_DATA={0x3d4, 0x5, "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"}, @NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0x5}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x7ae}, @NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0x10000}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x6f2}, @NCSI_ATTR_IFINDEX={0x8, 0x1, r1}, @NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0x1}]}, 0x424}, 0x1, 0x0, 0x0, 0x20000040}, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='<\x00\x00\"', @ANYRES16=r3, @ANYBLOB="1b0026bd7000fddbdf2503000000040008000c000380080011800400168012000100898771f1c19f1779048590828847000004000280"], 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)

1m0.958405634s ago: executing program 0 (id=1041):
munmap$auto(0x20000ffe, 0x14274823)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
read$auto_kernel_debug_fops_orangefs_debugfs(r1, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r2, 0x936355e497c8b7e3, 0x70bd25, 0x25dfdbfd, {}, [@ETHTOOL_A_TSINFO_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x40004)
r5 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x149000, 0x0)
read$auto_vcs_fops_vc_screen(r5, &(0x7f0000000200)=""/4096, 0x1000)
ioctl$auto_SNAPSHOT_S2RAM(0xffffffffffffffff, 0x330b, 0x0)

1m0.673791247s ago: executing program 0 (id=1043):
memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x4)
fallocate$auto(0x3, 0x0, 0xe, 0x8ec5)
finit_module$auto(0x3, 0xfffffffffffffffe, 0x400000000004)
ioperm$auto(0x10001, 0x6, 0x1)
tkill$auto(0x80000000000001, 0x7)
mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000)
sysfs$auto(0x2, 0x1f, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x10, 0x80002, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x80002, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
timerfd_create$auto(0x0, 0x0)
timerfd_settime$auto(r1, 0x3, 0x0, 0x0)
timerfd_settime$auto(r0, 0x3, 0x0, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x4840, 0x0)

59.50578377s ago: executing program 0 (id=1044):
r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r0, 0x400, 0x1)
execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

59.190453459s ago: executing program 32 (id=1044):
r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r0, 0x400, 0x1)
execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

40.548516238s ago: executing program 3 (id=1140):
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/exception_policy\x00', 0x40802, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x1, 0x1, 0x1)
sendmsg$auto_TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="000127d67000fb42df25210000009ba89a56eb9c7d3eb7"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x8081)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x14, 0x0, 0x221, 0x70bd2c, 0x25dfdbeb}, 0x14}, 0x1, 0x0, 0x0, 0x400c050}, 0x4000080)
r0 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000014"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
read$auto(0x3, 0x0, 0x1f40)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0x4000000000df, 0x44eb1, 0x6, 0x300000000000)
madvise$auto(0x0, 0x20000a, 0x4)
write$auto(0x3, 0x0, 0xfdef)

40.213729719s ago: executing program 3 (id=1143):
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r1, 0x400, 0x1)
execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
mmap$auto(0x0, 0x9, 0x200072, 0x8b72, 0x2, 0x7)
io_uring_setup$auto(0x48, 0x0)
r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000080), r1)
sendmsg$auto_L2TP_CMD_TUNNEL_DELETE(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, r2, 0x2, 0x70bd25, 0x25dfdbff, {}, [@L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x6}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x3}, @L2TP_ATTR_IFNAME={0x14, 0x8, 'pimreg1\x00'}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e22}]}, 0x40}, 0x1, 0x0, 0x0, 0x20048001}, 0x20040000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(r3, 0x7, 0x3)
read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000180)=""/250, 0xfa)

39.169944272s ago: executing program 3 (id=1149):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
sendmsg$auto_BATADV_CMD_GET_HARDIF(0xffffffffffffffff, &(0x7f0000000b80)={0x0, 0x49, &(0x7f0000000480)={&(0x7f00000004c0)={0x1c, 0x0, 0x10, 0x70bd2d, 0x25dfdbfc, {}, [@BATADV_ATTR_BANDWIDTH_UP={0x8, 0x1b, 0x8519}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x4008000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'veth0_vlan\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)={0x1c, r2, 0xb01, 0x70bd27, 0x25dfdbfb, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4000080)
sendmsg$auto_NL80211_CMD_SET_BEACON(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)={0x2a8, r2, 0x8, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_IE={0x284, 0x2a, "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"}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0x5}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x1}]}, 0x2a8}, 0x1, 0x0, 0x0, 0x4000}, 0x4004000)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/038/001\x00', 0x80000, 0x0)
r5 = socket(0xa, 0x3, 0x5)
socket(0x11, 0x80003, 0x300)
sendmmsg$auto(r5, &(0x7f0000000180)={{&(0x7f0000000000)=[0xa, 0x80fe], 0xb8, 0x0, 0x0, &(0x7f0000000140), 0x8, 0x80000000}, 0x5}, 0x1, 0xa)

38.860108269s ago: executing program 3 (id=1151):
mkdir$auto(&(0x7f00000000c0)='./file0\x00', 0xfffe)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x15, &(0x7f0000000100)={{0x0, 0x6, &(0x7f00000000c0)={&(0x7f00000008c0), 0x9}, 0x7f, 0x0, 0x8000, 0x2}, 0x7}, 0x3, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x3ff, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
io_uring_register$auto(0x2, 0xf, 0x0, 0x20)
mkdir$auto(&(0x7f0000000100)='./file0\x00', 0x9)
clone3$auto(&(0x7f0000000140)={0x1000, 0xffffffffffffffff, 0x6, 0x5, 0x1, 0x4, 0x8000, 0x0, 0x401, 0x5, 0x3}, 0xffffffffffff118a)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/modules\x00', 0x101000, 0x0)
rename$auto(&(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000040)='./file0/file0\x00')
ptrace$auto(0x6, 0x1, 0x3, 0x180000)
openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x48441, 0x0)

38.641077923s ago: executing program 3 (id=1153):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r0)
r2 = openat$auto_long_retry_limit_ops_(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ieee80211/phy15/long_retry_limit\x00', 0x80, 0x0)
io_cancel$auto(0x1, &(0x7f0000000100)={0x1, 0x2, 0x5, 0x401, 0x3, r0, 0x6, 0x14000000000, 0xec7c, 0x0, 0x5, r2}, &(0x7f0000000200)={0xba, 0x0, 0x1, 0xc371})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = getpid()
bpf$auto(0x5, &(0x7f0000000140)=@task_fd_query={r3, r0, 0x6, 0x6, 0x101, 0xfffffffd, r0, 0xf8, 0x5}, 0x4)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0xfffffffffffffffa, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000008c0), r4)
inotify_add_watch$auto(0xe535, 0xfffffffffffffffc, 0xd9)
r5 = open$dir(&(0x7f0000000380)='./file0\x00', 0x64200, 0x80)
shutdown$auto(r5, 0x6)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
pwrite64$auto(0xc8, &(0x7f0000001880)='S\x00', 0xe, 0x3)
madvise$auto(0x1, 0x1000, 0x1)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010029bd7000fddbdf250200000008000300", @ANYRES32, @ANYBLOB="08003f000593"], 0x24}, 0x1, 0x14, 0x0, 0x20040010}, 0x20000084)
r8 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x47, 0x4909b6fa, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x2, 0x10000, 0x80, 0x0, 0x0, 0x3, 0x0, 0x200, 0x8, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x1, 0x0, 0xf, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0xfffffffffffffffd, 0xdc2, 0x4, 0x34f27806, 0xffffffffffffffff, 0x4, 0x9, 0x0, 0x0, 0x0, 0x400000000005b8, 0x0, 0x0, 0x0, 0x4000000000, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8000000000008, 0xfffffffffffffffc, 0x3, 0xa38, 0x0, 0x0, 0xfffffffffffffffc, 0x2]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r8, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15)
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
tkill$auto(0x80000000000001, 0x7)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c0000008c3ae4fbbeaa00ea08d04a248781d563400538ad09140a4810b7bc9c4d8c26dca3b1d49a28f1a8249289ff5bd8b9b94f6a51895ecb5390e589a69737544fa845c19a095863b6735f73e77619e7fcd6f8a15550a96c43a896511e0a4fc50aae8ae11a2ac9ffed589d7bf67ea066410c", @ANYRES16=r1, @ANYBLOB="01002abd7000fbcbdf25010000000400018004000180"], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000080)

38.129537155s ago: executing program 3 (id=1156):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
symlink$auto(0x0, &(0x7f0000000040)='./file0\x00')
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, &(0x7f0000000200)=0x1)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000040)=0x4)
sendmsg$auto_TIPC_NL_MEDIA_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x0, 0x200, 0x70bd2c, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)
mmap$auto(0x0, 0x4, 0xffb, 0x8000000008012, 0x3, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000380)='ns/time\x00')
prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0)
prctl$auto(0x41, 0x1, 0x0, 0x0, 0x0)
read$auto(r0, &(0x7f0000000240)='nl80211\x00', 0x2)
userfaultfd$auto(0x1)
mmap$auto(0x0, 0x800, 0x2, 0xef1, 0x95, 0x8000)
ioctl$auto(0x3, 0xc018aa3f, 0xc)
writev$auto(0x2, 0xfffffffffffffffe, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_DEL_STATION(r3, &(0x7f0000002800)={0x0, 0x0, &(0x7f00000027c0)={&(0x7f0000002300)={0x490, r2, 0x221, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_BEACON_TAIL={0x47b, 0xf, "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"}]}, 0x490}, 0x1, 0x0, 0x0, 0x40000}, 0x40)
ioctl$auto(r1, 0xb704, 0x6)
r4 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$auto_IMADDTIMER(r4, 0x80044940, &(0x7f0000000040)=0x101)
r5 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f00000001c0), 0x200841, 0x0)
ioctl$auto_SNAPSHOT_FREE_SWAP_PAGES(r5, 0x3309, 0x0)

37.762437056s ago: executing program 33 (id=1156):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
symlink$auto(0x0, &(0x7f0000000040)='./file0\x00')
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, &(0x7f0000000200)=0x1)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000040)=0x4)
sendmsg$auto_TIPC_NL_MEDIA_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x0, 0x200, 0x70bd2c, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)
mmap$auto(0x0, 0x4, 0xffb, 0x8000000008012, 0x3, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000380)='ns/time\x00')
prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0)
prctl$auto(0x41, 0x1, 0x0, 0x0, 0x0)
read$auto(r0, &(0x7f0000000240)='nl80211\x00', 0x2)
userfaultfd$auto(0x1)
mmap$auto(0x0, 0x800, 0x2, 0xef1, 0x95, 0x8000)
ioctl$auto(0x3, 0xc018aa3f, 0xc)
writev$auto(0x2, 0xfffffffffffffffe, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_DEL_STATION(r3, &(0x7f0000002800)={0x0, 0x0, &(0x7f00000027c0)={&(0x7f0000002300)={0x490, r2, 0x221, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_BEACON_TAIL={0x47b, 0xf, "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"}]}, 0x490}, 0x1, 0x0, 0x0, 0x40000}, 0x40)
ioctl$auto(r1, 0xb704, 0x6)
r4 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$auto_IMADDTIMER(r4, 0x80044940, &(0x7f0000000040)=0x101)
r5 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f00000001c0), 0x200841, 0x0)
ioctl$auto_SNAPSHOT_FREE_SWAP_PAGES(r5, 0x3309, 0x0)

29.164113858s ago: executing program 2 (id=1183):
madvise$auto(0x0, 0xffffffffffff0005, 0x66)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_UPD_RXSA(r0, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)={0x28, r1, 0x23, 0x70bd27, 0x25dfdbfc, {}, [@MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_RXSC_CONFIG={0x4}, @MACSEC_ATTR_SA_CONFIG={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x1}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
ioctl$auto(0xc8, 0x401054d6, 0x5c8d)
mmap$auto(0x3, 0x20009, 0x4000004000df, 0x40000000000eb1, 0x7ff, 0x8000)
io_uring_setup$auto(0x6, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x40000000000, 0x4020009, 0xdc, 0xeb1, 0x402, 0x8000)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x14, 0x9, 0x63, 0x0, 0x0, 0x0, 0x0, 0x7, 0x800000000000007, 0x40000402, 0x9, 0x9, 0xffffffff80000000, 0x9, 0x7, 0x200000100103})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/011/001\x00', 0x121002, 0x0)
mmap$auto(0x0, 0x9, 0x2, 0x8000000008011, 0x4, 0x0)

28.493615703s ago: executing program 2 (id=1185):
madvise$auto(0x0, 0x2000040080000004, 0xe)
clone$auto(0x1, 0x0, 0x0, &(0x7f0000000180)=0x200, 0x7e0b)
prctl$auto(0x35, 0x0, 0x4000000008, 0x0, 0x0)
close$auto(0xffffffffffffffff)
r0 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/numa_maps\x00', 0x8800, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
mbind$auto(0x0, 0xfa9d, 0x5, &(0x7f0000000280)=0xfb, 0x400, 0x3)
read$auto_proc_pid_numa_maps_operations_internal(r0, &(0x7f0000000040)=""/4096, 0x1000)

27.357682975s ago: executing program 2 (id=1188):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
seccomp$auto(0x2, 0x0, 0x0)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)

18.010404934s ago: executing program 2 (id=1230):
sendmsg$auto_SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYRESDEC, @ANYBLOB="01"], 0x20}, 0x1, 0x0, 0x0, 0x4008014}, 0x40)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x80002, 0x73)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x3, 0x8000)
socket(0x1, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(r0, 0x104000000000010e, 0x2, 0x0, 0x400)
r1 = getpgrp(0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="3cfe441680c1aeb9eb00c174fb6edf7f09617ac038bcb92c6148f89162d4caac65f4f8c9bcd9408b1a0aa27bd33eb2d51f8a8823978f548c80c2433ad067b506e808302518bbfcb5fdc34ec3db73c51ffc4856faa780eb1e485835d370468f515f0d73fb15856de72b7349550d0b0431bd0b37aad7412dbadc9bf8d0911c361c506a5774daceed9d815b6ada15a6", @ANYRES16=r3, @ANYBLOB="010026bd7000fcdbdf250100000008000200", @ANYRES32=0x4, @ANYBLOB="080001004853520008000200", @ANYRES32=0x9, @ANYBLOB="080005000a0000000800070001000000"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r5=>0x0})
sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x54, r3, 0x300, 0x70bd26, 0x25dfdbfd, {}, [@OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x4}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x5}, @OVS_DP_ATTR_NAME={0xf, 0x1, '/dev/cec12\x00'}, @OVS_DP_ATTR_IFINDEX={0x8, 0x9, r5}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, r1}, @OVS_DP_ATTR_NAME={0xf, 0x1, '/dev/cec12\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x20084010}, 0x4001)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x34, 0x0, 0x800, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_EEE_MODES_OURS={0x18, 0x2, 0x0, 0x1, [@nested={0x14, 0x6d, 0x0, 0x1, [@nested={0x4, 0xd4}, @typed={0x8, 0x138, 0x0, 0x0, @pid=r1}, @nested={0x4, 0x3c}]}]}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x800}]}, 0x34}, 0x1, 0x0, 0x0, 0x40800}, 0x4000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
getsockopt$auto(0x100000006, 0x0, 0x34, 0xfffffffffffffffe, 0x0)
madvise$auto(0x0, 0x2003ed, 0x19)
socket(0x15, 0x5, 0x0)
connect$auto(0x3, &(0x7f0000000000), 0x55)
getsockname$auto(0x3, 0x0, 0x0)

10.738296684s ago: executing program 2 (id=1249):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x88)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x6, 0x2)
socket(0x2, 0x801, 0x100)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x5, &(0x7f0000000080)={{0x0, 0x7, 0x0, 0x14, &(0x7f00000000c0), 0xa2, 0x7fffffff}, 0x4}, 0x3, 0x20006, 0x0)
sendmmsg$auto(r0, &(0x7f0000000000)={{0x0, 0x8, 0x0, 0xe, &(0x7f0000000a40)=[0x8e, 0x100000001], 0x8e, 0x40}, 0x8}, 0x1, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
fanotify_init$auto(0x2, 0x400000400)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x0, 0x5, 0x8000000000000000, 0x0)
write$auto(0x3, 0x0, 0x296)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
socket(0x1c, 0x3, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
r1 = openat$auto_tracing_saved_cmdlines_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/saved_cmdlines_size\x00', 0x20040, 0x0)
write$auto_tracing_saved_cmdlines_size_fops_trace(r1, &(0x7f0000000040)="6e886b3d7ca407a354c646ded3378467a8f9cf4cc09b18f25f41dda42efd256c4b46b2d72c6df8df94d43047df350339e88843fd64a159a7074a58b229f006246ac5c446304d23381ecf0eeb3fa416319ae0142950a820315324707747db5898760aeb3f41a481821d2c3a8f0c5462a55735cf0f03bb7516935aaac2aac84ac6bcec2f", 0x83)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)

3.111017997s ago: executing program 5 (id=1289):
r0 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x4e300, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r3 = syz_clone(0x4008000, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid$auto(r3, 0x0)
r4 = socket(0x29, 0x5, 0x0)
sendmmsg$auto(r4, 0x0, 0x9a6, 0x3ec0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000001080), r5)
sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r5, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001100)={&(0x7f00000010c0)={0x14, r6, 0x1, 0x70bd2a, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000001}, 0x50114)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x9, 0xffc, 0x7, 0xfffffffd, <r7=>0x0, 0xee01, 0x0, 0x6, 0x1, 0x5, 0xc0f, 0x2, 0x7ff, 0x92bc, 0xffffffff, 0x6, 0x3})
r8 = getuid()
setreuid$auto(r7, r8)
msgctl$auto(0x3, 0xfffffff7, &(0x7f0000000180)={{0x2, <r9=>0xffffffffffffffff, 0xee01, 0x6, 0x9, 0x6, 0x4}, &(0x7f0000000040)=0x1, &(0x7f0000000080)=0x4, 0x2b9, 0x80, 0x5, 0x80000000, 0x2, 0x9, 0x10, 0x9, 0x3, 0x6})
sendmsg$auto_L2TP_CMD_SESSION_GET(r4, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)={0x78, r6, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@L2TP_ATTR_STATS={0x20, 0x1e, 0x0, 0x1, [@typed={0x8, 0x11d, 0x0, 0x0, @uid=r8}, @typed={0x14, 0x129, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}]}, @L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x6}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, 0xffffffff}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, 0x1ff}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0xb}, @L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0xff}, @L2TP_ATTR_STATS={0xc, 0x1e, 0x0, 0x1, [@typed={0x8, 0x5c, 0x0, 0x0, @uid=r9}]}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x40}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x2}]}, 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x84)
fstat$auto(r0, &(0x7f00000000c0)={0x8000, 0xde, 0xfffffffffffffffd, 0xffffff81, <r10=>0xee00, 0xffffffffffffffff, 0x0, 0x25b, 0xd, 0x8, 0x9, 0x40, 0x400, 0x10, 0xb5, 0x2, 0x14})
sendmsg$auto_NL80211_CMD_TDLS_OPER(r1, &(0x7f0000000580)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0xa000}, 0xc, &(0x7f0000000540)={&(0x7f0000000180)={0x3a0, r2, 0x200, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_FILS_KEK={0xb, 0xf2, "665fc8c6a1e3ad"}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x6a, 0xbe, "ea25008446061fb3c22f61139cab9696e1cd6a7ef6f1ed9bcd43af83386213a8db01b10f35310fa256bb8dab7664d726efac75cf55262eecb6444e58ef24f59e8ecde06ea8925811c15747a9a9d9558a487725d8e17b6a9d5b4460db983c16e760299f9a704f"}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x2f9, 0x84, 0x0, 0x1, [@typed={0x10, 0x8, 0x0, 0x0, @str='/dev/rfkill\x00'}, @typed={0x8, 0xf8, 0x0, 0x0, @pid=r3}, @generic="82b6ce570b28cd30fd32fbce4d7188714d9d49ab010a83f2c8fd69e846417d0df39305021defe8eb7a0cdfd929d2f3932370814b9e9e7ee8794551190ae7e4172444cfec8426d0a4bf0785fde37d9d05f776a0e6f7bfd1030f02e70785d3bb2dfdcfb19d22e6dee270c89a7d7dae304ae64001703a8fb1fe3ca1f819f90a", @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@empty}, @nested={0x8, 0xf7, 0x0, 0x1, [@nested={0x4, 0x118}]}, @nested={0xa8, 0xb9, 0x0, 0x1, [@typed={0x8, 0x2f, 0x0, 0x0, @uid=r8}, @typed={0x8, 0xf0, 0x0, 0x0, @uid=r10}, @typed={0x93, 0xb2, 0x0, 0x0, @binary="d83fef8e621140c7e5c451af7daa4cee324725f9a6968d639fc3629ddbe4b982851c01d080324f1af595b4cd4dc4f52659da200136de6ed4ee9d5c262b59949e8fdaf7182410c24555183d89537db89aee8b00aadd52af369244ec6a65fa6ad469ad8104e14468cf83ca9b4108d96c4fe163cdb9a480cf84730ff827977b28c4ac90b432499233c8c6eb7bef1716f8"}]}, @generic="a8464584", @generic="4a1eead7b3cf891a07ee37b5baa11f192b1261a19226ad9e511107e6e5fd0b8b0251a0f0399924359cf5e236a5a25f06f5810ec22cf93704d4bd4bc539f4b4f61808ad5299a95677d0b5efcb861b05f72785250272053efba4d2de937190f8226699b7942bd9be7b95533bcf17e221404b6b584651fc1b9a074faff5b0d71b209dbac8af6a6770c62b6275550d9ce0bd5aba198b809f05daaf463afbf04310608ba289c3f5120eeeb8f5ff5bfeb9124e16f887126031ec8042208433f665d654561ad725c61a57", @generic="728aee6045ca995c672bb8a018d3047228d260ab21899ae54997cbbaf8d9a5e37b4210f7e6a6018ac90a2f67c6a8fca40cbf3eb4218bf01fa62c8ad59f2de196faddc685b9b4795bb49133e38880a576f151197f56d3950edbaea7f6d8458405807340106b2b1a9a7329f17d0e2d6450d9c87746275fd813235aad568e23548aa1b5dff220382d0f9a08e64fe6b03ec682d0dc6dd5f4bb2f300fce261e2211f075c507a5eaeee84975edc7f4572cf1a6527932bbd7680ab41ef41264dff8f9f136f0cc48ef1fbf504bb1034998bede636eac629db9a103c7dbeb9441"]}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0xfff}, @NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x7f}, @NL80211_ATTR_PRIVACY={0x4}]}, 0x3a0}, 0x1, 0x0, 0x0, 0x2006c014}, 0x18000)
socket(0x2c, 0x3, 0x0)
mmap$auto(0x0, 0x4, 0x10000000000, 0x11, 0x3, 0x100000000)
ioctl$auto_RFKILL_IOC_NOINPUT(r0, 0x1, 0x6)

2.837176661s ago: executing program 5 (id=1292):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x801, 0x84)
socketpair$auto(0xfffffffe, 0x3, 0x8, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
ioctl$auto_def_blk_fops_fs(r0, 0x5386, 0x0)

2.612428526s ago: executing program 1 (id=1294):
keyctl$auto(0xc, 0xfffffffd, 0x2, 0x0, 0x8) (async)
keyctl$auto(0xc, 0xfffffffd, 0x2, 0x0, 0x8)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x4)
sysfs$auto(0x2, 0x21, 0xfffffffffffffffc)
fsopen$auto(0x0, 0x8000002)

2.479345733s ago: executing program 5 (id=1295):
r0 = openat$auto_tracing_saved_cmdlines_fops_trace(0xffffffffffffff9c, &(0x7f0000001440)='/sys/kernel/tracing/saved_cmdlines\x00', 0x8100, 0x0)
r1 = openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x2000, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(r2, 0x100000000000010e, 0x4, 0xfffffffffffffffd, 0x100000001)
mq_open$auto(0x0, 0x3ff, 0x7, &(0x7f0000000140)={0x7, 0x2f05, 0xa509, 0x4})
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa)
execve$auto(&(0x7f0000000040)=':,\x00', 0x0, 0x0)
socket(0xa, 0x3, 0x6)
connect$auto(0x3, &(0x7f0000000140), 0x55)
connect$auto(0x3, &(0x7f0000000140), 0x55)
read$auto_tracing_cpumask_fops_trace(r1, 0x0, 0x0)
pread64$auto(r0, &(0x7f0000000000)='\x00', 0x0, 0x8)

2.212260246s ago: executing program 1 (id=1297):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x20008000)
socket(0x2, 0x2, 0x88)
bind$auto(r0, &(0x7f0000000080)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x43, 0x1, 0x3}}, 0x68)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
ioctl$NS_GET_PARENT(r2, 0x8008b705, 0x0)
setsockopt$auto(0x3, 0x0, 0x14, 0x0, 0x28)
socketpair$auto(0x8001, 0x5, 0x5, 0x0)
setsockopt$auto(0x3, 0x0, 0x17, 0x0, 0x9)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
ioctl$auto_CEC_S_MODE(r1, 0x40046109, &(0x7f0000002c40)=0xf0)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x5, 0x1ff, 0x7fa, 0x103, 0x9, 0x7, 0x7ff, 0x0, 0x4000000f}, 0x6f4)
mprotect$auto(0x3, 0x8000000000000001, 0xf)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec31\x00', 0x64900, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
prctl$auto(0x1000000003b, 0x1, 0x9, 0x5, 0x3)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
io_getevents$auto(0x4, 0xffffffffffffffff, 0x8000000000000001, 0xfffffffffffffffc, 0x0)

2.113220296s ago: executing program 4 (id=1298):
r0 = socket(0x2, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000000), 0x68)
msgctl$auto(0x3, 0xfffffff7, &(0x7f0000000180)={{0x2, <r1=>0xffffffffffffffff, 0xee01, 0x6, 0x9, 0x6, 0x4}, &(0x7f0000000040)=0x1, &(0x7f0000000080)=0x4, 0x2b9, 0x80, 0x5, 0x80000000, 0x2, 0x9, 0x10, 0x9, 0x3, 0x6})
sendmsg$auto_L2TP_CMD_SESSION_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)={0x78, 0x0, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@L2TP_ATTR_STATS={0x20, 0x1e, 0x0, 0x1, [@typed={0x8, 0x11d, 0x0, 0x0, @uid}, @typed={0x14, 0x129, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}]}, @L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x6}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, 0xffffffff}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, 0x1ff}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0xb}, @L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0xff}, @L2TP_ATTR_STATS={0xc, 0x1e, 0x0, 0x1, [@typed={0x8, 0x5c, 0x0, 0x0, @uid=r1}]}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x40}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x2}]}, 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x84)
sendmsg$auto_L2TP_CMD_SESSION_DELETE(r0, &(0x7f0000000300)={&(0x7f0000000080), 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xb8, 0x0, 0x300, 0x70bd25, 0x25dfdbfd, {}, [@L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x1}, @L2TP_ATTR_DATA_SEQ={0x5}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x5}, @L2TP_ATTR_IFNAME={0x14, 0x8, 'ipvlan1\x00'}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x7}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e20}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_STATS={0x60, 0x1e, 0x0, 0x1, [@nested={0x20, 0x54, 0x0, 0x1, [@nested={0x4, 0x144}, @typed={0x8, 0x9c, 0x0, 0x0, @uid}, @nested={0x4, 0xf4}, @typed={0x8, 0x4c, 0x0, 0x0, @fd=r0}, @nested={0x4, 0xfa}]}, @typed={0x14, 0x13c, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @multicast2}}, @nested={0x28, 0x12c, 0x0, 0x1, [@nested={0x4, 0x8b}, @nested={0x4, 0x77}, @nested={0x4, 0x7b}, @typed={0xc, 0x7, 0x0, 0x0, @u64=0x5}, @nested={0x4, 0xe8}, @typed={0x8, 0xd5, 0x0, 0x0, @u32=0x1ae46d3b}]}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x20009}, 0x4010)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
connect$auto(0x3, &(0x7f0000000000), 0x55)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x88d0}, 0x2000c041)
socket(0x3, 0x1, 0x1)
sendmsg$auto_TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x8081)
r2 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYRES16=r0], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r6=>0x0})
sendmsg$auto_BATADV_CMD_SET_MESH(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)={0x24, r3, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r6}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x140000e4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x4040)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x3, 0x73)
setsockopt$auto(0x400000000000003, 0xff, 0xc, 0x0, 0xfff)
r7 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
sendmsg$auto(r7, 0x0, 0xfffffffe)
getpgid(0x0)

2.060215402s ago: executing program 5 (id=1299):
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000040)='/dev/usbmon26\x00', 0x40000, 0x0)
r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x20)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x1e, 0x5, 0x0)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000)
execveat$auto(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000080)='/dev/usbmon26\x00', 0x40000, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x200)
ioctl$auto_MON_IOCH_MFLUSH(r1, 0x9208, 0x0)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
setns(r2, 0x0)
mknod$auto(&(0x7f00000048c0)='./file0\x00', 0xc46e, 0x9)
creat$auto(&(0x7f0000000000)='./file0\x00', 0x8000)

1.455584787s ago: executing program 4 (id=1300):
r0 = openat$auto_dai_list_fops_(0xffffffffffffff9c, &(0x7f00000000c0), 0x8300, 0x0)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
socket(0xa, 0x801, 0x106)
setsockopt$auto(0x3, 0x6, 0x4, 0x0, 0xfb3)
setns$auto(r0, 0x3)

1.336988239s ago: executing program 4 (id=1301):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000)
ioctl$auto(0xc8, 0x400454d1, 0x5c8d)

1.113040006s ago: executing program 5 (id=1302):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
gettid()
r0 = open(&(0x7f0000000000)='./file0\x00', 0xa01c2, 0x84)
mmap$auto(0x0, 0x20008, 0xdf, 0xa0a86fd, 0x3fe, 0x200000000008000)
socket(0x2b, 0x1, 0x0)
connect$auto(0x3, 0x0, 0x55)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r0)
sendmsg$auto_NL802154_CMD_GET_INTERFACE(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf25050000001400040000000000000000bdcf0000000000065187bb6c1edb71e70000bbaefa0e9e420977fdfedc52ca553d9eb81583691e250dc2df254f5a39a1b1cb15f12d80c59c068742c45ba331b4c6158d5e65a5ad15e1afecd329ceaab38f5a7e0e15de378c59d4b5025eb085c40cc0dfaf9aafcb05be21e4a33b12240a0e608e88f38a7a3348065e3c2dabb618ddb82de610ae0aa3ae05af48390c1b69fd734012fec53b55add140aa3a1eb8cc04d0d8bd08278da62b52"], 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x2, 0x9)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x2, 0x0, 0xfffffffffffffffd)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
iopl$auto(0x3)
mmap$auto(0x0, 0x400005, 0xdf, 0x9f72, 0x5, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_WG_CMD_SET_DEVICE(r2, 0x0, 0x80)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
read$auto(0x3, 0x0, 0x80)
fallocate$auto(0x3, 0x1, 0x8b, 0x8)
getgroups$auto(0xeda, 0x0)
mount_setattr$auto(0x0, 0xfffffffffffffffe, 0x100, 0x0, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
read$auto(r0, &(0x7f0000000040)='.\x00', 0x80000001)
setsockopt$auto(0x4, 0x0, 0x485, 0xfffffffffffffffe, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x20)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)

1.032814604s ago: executing program 1 (id=1303):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x40, r1, 0x1b, 0x74bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x15, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4788, 0x33}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828848"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)

1.030704724s ago: executing program 4 (id=1304):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kallsyms\x00', 0x30440, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0xa, 0x0)

862.195886ms ago: executing program 4 (id=1305):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
time$auto(0x0)
r0 = open(0x0, 0x1, 0xc1)
prctl$auto(0x5, 0x3, 0x9, 0x1, 0x1e)
madvise$auto(0x7f, 0xfff, 0x1)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r1, 0x40045010, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(r0, &(0x7f0000000000)=@in={0x2, 0x4e20, @multicast1}, 0x6)
setsockopt$auto(0x3, 0x1, 0x5, 0x0, 0x9)
madvise$auto(0x0, 0x8000000000000000, 0x15)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x9, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x200, 0x2010000000000)
r2 = open(0x0, 0x4242, 0xe1d2b27bdc14aabc)
fanotify_mark$auto(0x400000000000, 0x101, 0xdd, r2, 0x0)
getcwd$auto(0x0, 0xffffffffffffffff)
inotify_init1$auto(0x3000000000000)
open(0x0, 0x4242, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

731.200426ms ago: executing program 2 (id=1306):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="14010000", @ANYRES16=r1, @ANYBLOB="00042abd7000fddbdf2504000000f40002003a0673d3e9a63d01f27cc685c4a4c59374b75728b5daadfe13c50e5affc5f2b6bf8f56abc7e81b3b38dba73a5c9a117b662662b00a4e7a14f75321103bb742e60db71a8ba365488ab77212cb7b0bdbc536798c4e2c574b256fdc628299672300d4239fb6ebfc9a5137dd0c61e7be3b55399c409313622a82f84c17762c713af0f70c4164959845c1f8cc84b669ee532004af15715c4101ef764ce6bd6a685ed3de68f043447fc3330fe3e0887c62df8f01160f207442e61ef8735142ab3c98193eea3cecec3c1fed80d11065d99af03d178d177b3af24ccbe6e27648af59ec4f6fc4c30d9c103f2e3e931e0de91b93a6dc5c4c3bf8ba080009003009"], 0x114}, 0x1, 0x0, 0x0, 0x1}, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x2, 0xa, 0xe57a) (async)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000240), r0)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000000480)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[@ANYBLOB="47ce4759", @ANYRES16=r2, @ANYBLOB="020029bd7000fedbdf25120000000800070005000000"], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000000) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
rseq$auto(0x0, 0x8000, 0xc65, 0x7) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
sendmsg$auto_OVS_DP_CMD_GET(0xffffffffffffffff, 0x0, 0x0) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'dummy0\x00'}) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
madvise$auto(0x0, 0x2000040080000004, 0xe) (async, rerun: 32)
mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000)
rseq$auto(&(0x7f0000000300)={0x0, 0x9, 0x0, 0x4, 0xffffffff, 0xfffffffe}, 0x8000, 0x0, 0x3)
shmdt$auto(0x0)
madvise$auto(0x0, 0x3, 0x15) (async)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) (async, rerun: 64)
r4 = socket(0x10, 0x2, 0x4) (rerun: 64)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') (async)
socket(0x11, 0x80003, 0x300) (async, rerun: 32)
sendmsg$auto_NFSD_CMD_THREADS_SET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) (async, rerun: 32)
getrandom$auto(&(0x7f00000004c0)='+\x00\xc04\x00\xb3\x1b\xc1\xa6\xebt\x10\xbc\xfe&\xc7\xe4\xfe\xff\xff\xff\xff\xff\xff\xffw\xd55\x7f.\xec\x9fW\xeb\xdc\xd1x\n\xb0{\xe8\x17\x14y\x00\a,\xa6\x8b\xf3r@]\xd0\xd3\x04=[\x82\xeb\x8e|\x132\x95\xa1\xe4\xc4\x03\x00\x00\x00\x00\x00\x00\x00f\xf0\b\xe9\xf6B\xb8O\xf7FN\x82\x1e', 0x238, 0x5) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x2, 0x1) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4044000}, 0x800) (rerun: 32)
io_uring_setup$auto(0x6, 0x0)
sendmsg$auto_NL802154_CMD_ASSOCIATE(r4, &(0x7f00000018c0)={&(0x7f0000000180), 0xc, &(0x7f0000001880)={&(0x7f0000001780)={0xe8, 0x0, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_ENABLED={0x5}, @NL802154_ATTR_CCA_MODE={0x8}, @NL802154_ATTR_SUPPORTED_COMMANDS={0xc, 0x19, 0x0, 0x1, [@typed={0x8, 0x5a, 0x0, 0x0, @pid}]}, @NL802154_ATTR_PID={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x5}, @NL802154_ATTR_SEC_KEY={0x8f, 0x30, 0x0, 0x1, [@nested={0x1c, 0x71, 0x0, 0x1, [@typed={0x8, 0x91, 0x0, 0x0, @uid}, @typed={0x8, 0x4c, 0x0, 0x0, @u32=0x100}, @nested={0x4, 0xa8}, @nested={0x4, 0xad}]}, @generic="5af6dcd6625215026c232b74be3b143f22123b93485ffdd381f6092be1dd86893e7c4002958343b7fcb33823", @generic="3fc9ee9bd328e75fd8a05f26827481252717426426884be6e5ac4cd949f5bdef36bbad4785b8b88a9f361c2b8e173f065bf9294642ff9be97557e9a8ab4f3ff4b6c648"]}, @NL802154_ATTR_SUPPORTED_CHANNEL={0x8, 0x16, 0x8001}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0xe8}, 0x1, 0x0, 0x0, 0x48015}, 0x48040)

656.444182ms ago: executing program 1 (id=1307):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffd, 0x8000)
ioctl$auto_def_blk_fops_fs(0xffffffffffffffff, 0x5386, 0x0)

347.47378ms ago: executing program 4 (id=1308):
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x2a0040, 0x0)
ioperm$auto(0xc, 0x2, 0x5)
msgget$auto(0x6, 0x200)
mmap$auto(0x6, 0xd, 0x7fffffff, 0x91, 0x0, 0x18720000)
mmap$auto(0x2000000007, 0xffff, 0x3, 0x19, 0x1c0000000000, 0x6)
prctl$auto(0x1000000001c, 0x5, 0x100000000, 0x400000000009, 0x3fffffffff)
setreuid$auto(0x15, 0x5)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
r0 = open(&(0x7f00009e1000)='./file0\x00', 0xc162, 0x0)
ftruncate$auto(r0, 0x80)
socket(0x10, 0x2, 0xc)
socket(0x1d, 0x2, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
connect$auto(0x3, 0x0, 0x55)
close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x4000000000002)
io_uring_setup$auto(0x6, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
write$auto(0x3, 0x0, 0x5c8)
socket(0x2, 0x1, 0x0)
chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
socket(0x1c, 0x3, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)

264.001435ms ago: executing program 1 (id=1309):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x801, 0x84)
ioctl$auto_def_blk_fops_fs(r0, 0x5386, 0x0)

169.96649ms ago: executing program 5 (id=1310):
socket(0xa, 0x801, 0x106)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0x3, 0x0, 0x13, 0x0, 0x9)
r0 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
poll$auto(&(0x7f0000000080)={r0, 0x0, 0x2}, 0x3, 0x8007)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty34\x00', 0x505080, 0x0)

0s ago: executing program 1 (id=1311):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x40, r1, 0x1b, 0x74bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x9, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4788, 0x33}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828848"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000002f80), r2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth1_vlan\x00', <r4=>0x0})
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r2, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)={0x2c, r3, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@NETDEV_A_QUEUE_TYPE={0x8}, @NETDEV_A_QUEUE_IFINDEX={0x8, 0x2, r4}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x710}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'veth1_vlan\x00', <r5=>0x0})
sendmsg$auto_NETDEV_CMD_BIND_RX(r0, &(0x7f00000001c0)={&(0x7f0000000040), 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x88, r3, 0x800, 0x70bd26, 0x25dfdbfb, {}, [@NETDEV_A_DMABUF_QUEUES={0x4c, 0x2, 0x0, 0x1, [@NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x10001}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x120000}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x8}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x1}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x1ff}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x1}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x800}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x3}, @NETDEV_A_QUEUE_ID={0x8}]}, @NETDEV_A_DMABUF_FD={0x8, 0x3, r0}, @NETDEV_A_DMABUF_IFINDEX={0x8, 0x1, r5}, @NETDEV_A_DMABUF_FD={0x8, 0x3, r0}, @NETDEV_A_DMABUF_IFINDEX={0x8}, @NETDEV_A_DMABUF_IFINDEX={0x8}]}, 0x88}, 0x1, 0x0, 0x0, 0x4000040}, 0x0)

kernel console output (not intermixed with test programs):

d75fa0 R15: 00007ffd9276ed88
[  159.395984][ T7528]  </TASK>
[  159.954531][   T53] Bluetooth: hci1: command tx timeout
[  160.181467][ T7539] can: request_module (can-proto-5) failed.
[  162.034520][   T53] Bluetooth: hci1: command tx timeout
[  162.453641][   T29] audit: type=1806 audit(27197.880:7): xattr="" res=-22
[  163.338733][ T7579] FAULT_INJECTION: forcing a failure.
[  163.338733][ T7579] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.404524][ T7579] CPU: 0 UID: 0 PID: 7579 Comm: syz.1.531 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  163.415182][ T7579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  163.425268][ T7579] Call Trace:
[  163.428573][ T7579]  <TASK>
[  163.431525][ T7579]  dump_stack_lvl+0x16c/0x1f0
[  163.436242][ T7579]  should_fail_ex+0x497/0x5b0
[  163.440972][ T7579]  _copy_from_user+0x2e/0xd0
[  163.445621][ T7579]  do_sys_poll+0x1d6/0xde0
[  163.445812][ T7582] netlink: 28 bytes leftover after parsing attributes in process `syz.0.533'.
[  163.450060][ T7579]  ? __pfx_mark_lock+0x10/0x10
[  163.450107][ T7579]  ? __pfx_do_sys_poll+0x10/0x10
[  163.468733][ T7579]  ? __pfx___lock_acquire+0x10/0x10
[  163.474060][ T7579]  ? __mutex_unlock_slowpath+0x164/0x690
[  163.479751][ T7579]  ? set_user_sigmask+0x217/0x2a0
[  163.484816][ T7579]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  163.490839][ T7579]  ? __pfx_set_user_sigmask+0x10/0x10
[  163.496249][ T7579]  ? __fget_files+0x206/0x3a0
[  163.500976][ T7579]  __x64_sys_ppoll+0x25a/0x2d0
[  163.505781][ T7579]  ? __pfx___x64_sys_ppoll+0x10/0x10
[  163.511103][ T7579]  ? ksys_write+0x1ba/0x250
[  163.513211][ T7583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.533'.
[  163.515631][ T7579]  ? __pfx_ksys_write+0x10/0x10
[  163.515671][ T7579]  do_syscall_64+0xcd/0x250
[  163.515700][ T7579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.515726][ T7579] RIP: 0033:0x7f12d7785d19
[  163.515748][ T7579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.515769][ T7579] RSP: 002b:00007f12d8533038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  163.515794][ T7579] RAX: ffffffffffffffda RBX: 00007f12d7975fa0 RCX: 00007f12d7785d19
[  163.515810][ T7579] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000020000000
[  163.515825][ T7579] RBP: 00007f12d8533090 R08: 0000000000000008 R09: 0000000000000000
[  163.515839][ T7579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  163.515852][ T7579] R13: 0000000000000000 R14: 00007f12d7975fa0 R15: 00007fff41bb4ea8
[  163.515883][ T7579]  </TASK>
[  163.620776][ T7582] vcan0: entered promiscuous mode
[  163.627616][ T7586] netlink: 4 bytes leftover after parsing attributes in process `syz.2.534'.
[  163.821899][ T7594] FAULT_INJECTION: forcing a failure.
[  163.821899][ T7594] name failslab, interval 1, probability 0, space 0, times 0
[  163.862713][ T7594] CPU: 0 UID: 0 PID: 7594 Comm: syz.0.536 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  163.873372][ T7594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  163.883464][ T7594] Call Trace:
[  163.886772][ T7594]  <TASK>
[  163.889737][ T7594]  dump_stack_lvl+0x16c/0x1f0
[  163.894459][ T7594]  should_fail_ex+0x497/0x5b0
[  163.899177][ T7594]  ? fs_reclaim_acquire+0xae/0x150
[  163.904333][ T7594]  should_failslab+0xc2/0x120
[  163.909063][ T7594]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[  163.914827][ T7594]  ? __pfx___lock_acquire+0x10/0x10
[  163.920077][ T7594]  ? __d_alloc+0x35/0x8c0
[  163.924497][ T7594]  __d_alloc+0x35/0x8c0
[  163.928701][ T7594]  d_alloc+0x4a/0x1e0
[  163.932730][ T7594]  d_alloc_parallel+0xe9/0x12b0
[  163.937616][ T7594]  ? __pfx_lock_release+0x10/0x10
[  163.942680][ T7594]  ? trace_lock_acquire+0x14e/0x1f0
[  163.947931][ T7594]  ? __pfx_d_alloc_parallel+0x10/0x10
[  163.953347][ T7594]  ? lockdep_init_map_type+0x16d/0x7d0
[  163.958850][ T7594]  ? lockdep_init_map_type+0x16d/0x7d0
[  163.964366][ T7594]  proc_fill_cache+0x2eb/0x470
[  163.969171][ T7594]  ? __pfx_proc_fd_instantiate+0x10/0x10
[  163.974941][ T7594]  ? __pfx_proc_fill_cache+0x10/0x10
[  163.980264][ T7594]  ? __pfx_vsnprintf+0x10/0x10
[  163.985079][ T7594]  ? snprintf+0xc8/0x100
[  163.989364][ T7594]  ? _raw_spin_unlock+0x28/0x50
[  163.994258][ T7594]  ? fget_task_next+0x2a8/0x580
[  163.999158][ T7594]  proc_readfd_common+0x1f0/0x620
[  164.004242][ T7594]  ? __pfx_proc_fd_instantiate+0x10/0x10
[  164.009939][ T7594]  ? __pfx_proc_readfd_common+0x10/0x10
[  164.015566][ T7594]  ? down_read_killable+0xcc/0x380
[  164.020723][ T7594]  ? __pfx_down_read_killable+0x10/0x10
[  164.026315][ T7594]  ? apparmor_file_permission+0x251/0x400
[  164.032384][ T7594]  iterate_dir+0x52f/0xb40
[  164.036849][ T7594]  __x64_sys_getdents+0x148/0x2c0
[  164.041918][ T7594]  ? __pfx___x64_sys_getdents+0x10/0x10
[  164.047516][ T7594]  ? __pfx_filldir+0x10/0x10
[  164.052157][ T7594]  do_syscall_64+0xcd/0x250
[  164.056706][ T7594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.062646][ T7594] RIP: 0033:0x7f0af0b85d19
[  164.067104][ T7594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.086750][ T7594] RSP: 002b:00007f0af19dd038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  164.095210][ T7594] RAX: ffffffffffffffda RBX: 00007f0af0d75fa0 RCX: 00007f0af0b85d19
[  164.103393][ T7594] RDX: 00000000000000d2 RSI: 0000000000000000 RDI: 0000000000000005
[  164.111400][ T7594] RBP: 00007f0af19dd090 R08: 0000000000000000 R09: 0000000000000000
[  164.119407][ T7594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  164.127412][ T7594] R13: 0000000000000000 R14: 00007f0af0d75fa0 R15: 00007ffdd3361be8
[  164.135448][ T7594]  </TASK>
[  164.146891][   T53] Bluetooth: hci1: command tx timeout
[  164.341401][ T7614] ecryptfs_miscdev_write: Invalid packet size [174]
[  164.356279][ T7615] netlink: 28 bytes leftover after parsing attributes in process `syz.3.544'.
[  164.423101][ T7615] hsr_slave_0: left promiscuous mode
[  164.448873][ T7615] hsr_slave_1: left promiscuous mode
[  164.847881][   T29] audit: type=1800 audit(27200.280:8): pid=7635 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.550" name="discovery_nqn" dev="configfs" ino=14639 res=0 errno=0
[  165.770644][ T7661] netlink: 'syz.2.557': attribute type 10 has an invalid length.
[  165.788697][ T7661] netlink: 330 bytes leftover after parsing attributes in process `syz.2.557'.
[  166.113497][ T7673] netlink: 8 bytes leftover after parsing attributes in process `syz.2.561'.
[  166.156015][ T7674] netlink: 130 bytes leftover after parsing attributes in process `syz.0.560'.
[  166.194923][   T53] Bluetooth: hci1: command tx timeout
[  166.285852][ T7677] FAULT_INJECTION: forcing a failure.
[  166.285852][ T7677] name failslab, interval 1, probability 0, space 0, times 0
[  166.304308][ T7677] CPU: 0 UID: 0 PID: 7677 Comm: syz.2.562 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  166.314967][ T7677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  166.325058][ T7677] Call Trace:
[  166.328372][ T7677]  <TASK>
[  166.331333][ T7677]  dump_stack_lvl+0x16c/0x1f0
[  166.336055][ T7677]  should_fail_ex+0x497/0x5b0
[  166.340780][ T7677]  ? fs_reclaim_acquire+0xae/0x150
[  166.345935][ T7677]  should_failslab+0xc2/0x120
[  166.350663][ T7677]  __kmalloc_cache_noprof+0x68/0x420
[  166.356005][ T7677]  tracing_log_err+0x498/0x6b0
[  166.360826][ T7677]  ? __kmalloc_noprof+0x23b/0x4f0
[  166.365916][ T7677]  __trace_probe_log_err+0x239/0x2c0
[  166.371258][ T7677]  __trace_eprobe_create+0x1446/0x17e0
[  166.376763][ T7677]  ? kasan_save_track+0x14/0x30
[  166.381661][ T7677]  ? __kasan_kmalloc+0xaa/0xb0
[  166.386470][ T7677]  ? trace_probe_create+0x7e/0x110
[  166.391637][ T7677]  ? trace_parse_run_command+0x193/0x300
[  166.397331][ T7677]  ? vfs_write+0x24c/0x1150
[  166.401879][ T7677]  ? do_syscall_64+0xcd/0x250
[  166.406606][ T7677]  ? __pfx___trace_eprobe_create+0x10/0x10
[  166.412516][ T7677]  ? trace_kmalloc+0x2d/0xd0
[  166.417150][ T7677]  ? __kmalloc_noprof+0x23b/0x4f0
[  166.422235][ T7677]  ? argv_split+0x371/0x440
[  166.426815][ T7677]  ? __pfx___trace_eprobe_create+0x10/0x10
[  166.432680][ T7677]  trace_probe_create+0xee/0x110
[  166.437674][ T7677]  ? __pfx_trace_probe_create+0x10/0x10
[  166.443293][ T7677]  create_dyn_event+0xeb/0x1c0
[  166.448109][ T7677]  trace_parse_run_command+0x193/0x300
[  166.453626][ T7677]  ? __pfx_create_dyn_event+0x10/0x10
[  166.459057][ T7677]  ? __pfx_dyn_event_write+0x10/0x10
[  166.464394][ T7677]  vfs_write+0x24c/0x1150
[  166.468779][ T7677]  ? __fget_files+0x1fc/0x3a0
[  166.473505][ T7677]  ? __pfx___mutex_lock+0x10/0x10
[  166.478580][ T7677]  ? __pfx_vfs_write+0x10/0x10
[  166.483395][ T7677]  ? __fget_files+0x206/0x3a0
[  166.488131][ T7677]  ksys_write+0x12b/0x250
[  166.492503][ T7677]  ? __pfx_ksys_write+0x10/0x10
[  166.497408][ T7677]  do_syscall_64+0xcd/0x250
[  166.501959][ T7677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.507906][ T7677] RIP: 0033:0x7f9668985d19
[  166.512357][ T7677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.532011][ T7677] RSP: 002b:00007f96697ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  166.540472][ T7677] RAX: ffffffffffffffda RBX: 00007f9668b75fa0 RCX: 00007f9668985d19
[  166.548483][ T7677] RDX: 000000000000001a RSI: 0000000020000040 RDI: 0000000000000003
[  166.556491][ T7677] RBP: 00007f96697ce090 R08: 0000000000000000 R09: 0000000000000000
[  166.564497][ T7677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  166.572503][ T7677] R13: 0000000000000000 R14: 00007f9668b75fa0 R15: 00007ffccb633bf8
[  166.580534][ T7677]  </TASK>
[  166.935411][ T7687] netlink: 'syz.2.566': attribute type 1 has an invalid length.
[  167.226986][   T29] audit: type=1800 audit(27202.660:9): pid=7692 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.570" name="discovery_nqn" dev="configfs" ino=14906 res=0 errno=0
[  167.695083][ T7710] netlink: 330 bytes leftover after parsing attributes in process `syz.1.573'.
[  167.796544][ T7714] futex_wake_op: syz.1.574 tries to shift op by -1; fix this program
[  167.805826][ T7714] futex_wake_op: syz.1.574 tries to shift op by -1; fix this program
[  167.946530][ T7720] netlink: 'syz.1.575': attribute type 1 has an invalid length.
[  168.081933][ T7723] nbd: must specify a device to reconfigure
[  168.258136][ T7689] kexec: Could not allocate control_code_buffer
[  168.274540][   T53] Bluetooth: hci1: command tx timeout
[  168.947861][ T7748] IPVS: length: 1593846842 != 8
[  169.125770][ T7755] 
: entered promiscuous mode
[  169.244753][ T7762] netlink: 28 bytes leftover after parsing attributes in process `syz.1.589'.
[  169.299195][ T7762] team0: Port device team_slave_0 removed
[  169.892013][   T29] audit: type=1800 audit(27205.320:10): pid=7766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.590" name="discovery_nqn" dev="configfs" ino=15076 res=0 errno=0
[  169.958972][ T7772] netlink: 28 bytes leftover after parsing attributes in process `syz.2.592'.
[  170.356622][   T53] Bluetooth: hci1: command tx timeout
[  171.192312][ T7805] netlink: 4 bytes leftover after parsing attributes in process `syz.2.604'.
[  171.305890][   T29] audit: type=1800 audit(27206.740:11): pid=7795 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.601" name="discovery_nqn" dev="configfs" ino=15170 res=0 errno=0
[  171.458776][   T53] Bluetooth: hci2: SCO packet for unknown connection handle 16
[  172.444490][   T53] Bluetooth: hci1: command tx timeout
[  172.639013][ T7878] FAULT_INJECTION: forcing a failure.
[  172.639013][ T7878] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  172.672472][ T7878] CPU: 1 UID: 0 PID: 7878 Comm: syz.0.630 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  172.683132][ T7878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  172.693219][ T7878] Call Trace:
[  172.696529][ T7878]  <TASK>
[  172.699485][ T7878]  dump_stack_lvl+0x16c/0x1f0
[  172.704202][ T7878]  should_fail_ex+0x497/0x5b0
[  172.708923][ T7878]  _copy_from_user+0x2e/0xd0
[  172.713561][ T7878]  copy_msghdr_from_user+0x99/0x160
[  172.718805][ T7878]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  172.724680][ T7878]  ___sys_sendmsg+0xff/0x1e0
[  172.729315][ T7878]  ? __pfx____sys_sendmsg+0x10/0x10
[  172.734568][ T7878]  ? __pfx_lock_release+0x10/0x10
[  172.739636][ T7878]  ? trace_lock_acquire+0x14e/0x1f0
[  172.744888][ T7878]  ? __fget_files+0x206/0x3a0
[  172.749612][ T7878]  __sys_sendmsg+0x16e/0x220
[  172.754240][ T7878]  ? __pfx___sys_sendmsg+0x10/0x10
[  172.759428][ T7878]  do_syscall_64+0xcd/0x250
[  172.763966][ T7878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.769895][ T7878] RIP: 0033:0x7f0af0b85d19
[  172.774334][ T7878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.793973][ T7878] RSP: 002b:00007f0af19bc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  172.802438][ T7878] RAX: ffffffffffffffda RBX: 00007f0af0d76080 RCX: 00007f0af0b85d19
[  172.810446][ T7878] RDX: 0000000000001000 RSI: 00000000200007c0 RDI: 0000000000000003
[  172.818457][ T7878] RBP: 00007f0af19bc090 R08: 0000000000000000 R09: 0000000000000000
[  172.826467][ T7878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.834475][ T7878] R13: 0000000000000001 R14: 00007f0af0d76080 R15: 00007ffdd3361be8
[  172.842501][ T7878]  </TASK>
[  173.276786][ T7897] FAULT_INJECTION: forcing a failure.
[  173.276786][ T7897] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  173.348390][ T7897] CPU: 0 UID: 0 PID: 7897 Comm: syz.3.634 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  173.359069][ T7897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  173.369158][ T7897] Call Trace:
[  173.372458][ T7897]  <TASK>
[  173.375408][ T7897]  dump_stack_lvl+0x16c/0x1f0
[  173.380121][ T7897]  should_fail_ex+0x497/0x5b0
[  173.384837][ T7897]  _copy_from_user+0x2e/0xd0
[  173.389466][ T7897]  copy_msghdr_from_user+0x99/0x160
[  173.394710][ T7897]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  173.400572][ T7897]  ___sys_sendmsg+0xff/0x1e0
[  173.405211][ T7897]  ? __pfx____sys_sendmsg+0x10/0x10
[  173.410466][ T7897]  ? __pfx_lock_release+0x10/0x10
[  173.415556][ T7897]  ? trace_lock_acquire+0x14e/0x1f0
[  173.420900][ T7897]  ? __fget_files+0x206/0x3a0
[  173.425634][ T7897]  __sys_sendmsg+0x16e/0x220
[  173.430280][ T7897]  ? __pfx___sys_sendmsg+0x10/0x10
[  173.435463][ T7897]  do_syscall_64+0xcd/0x250
[  173.440013][ T7897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.445956][ T7897] RIP: 0033:0x7eff9db85d19
[  173.450399][ T7897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.470041][ T7897] RSP: 002b:00007eff9ea81038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  173.478499][ T7897] RAX: ffffffffffffffda RBX: 00007eff9dd75fa0 RCX: 00007eff9db85d19
[  173.486510][ T7897] RDX: 0000000000000000 RSI: 0000000020000c00 RDI: 0000000000000003
[  173.494519][ T7897] RBP: 00007eff9ea81090 R08: 0000000000000000 R09: 0000000000000000
[  173.502529][ T7897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.510536][ T7897] R13: 0000000000000000 R14: 00007eff9dd75fa0 R15: 00007ffd9276ed88
[  173.518553][ T7897]  </TASK>
[  173.591186][ T7908] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  174.514448][   T53] Bluetooth: hci1: command tx timeout
[  174.621716][ T7944] netlink: 'syz.0.648': attribute type 4 has an invalid length.
[  175.433468][ T7996] FAULT_INJECTION: forcing a failure.
[  175.433468][ T7996] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  175.454502][ T7998] netlink: 28 bytes leftover after parsing attributes in process `syz.3.661'.
[  175.485081][ T7996] CPU: 1 UID: 0 PID: 7996 Comm: syz.1.660 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  175.495744][ T7996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  175.505832][ T7996] Call Trace:
[  175.509141][ T7996]  <TASK>
[  175.512109][ T7996]  dump_stack_lvl+0x16c/0x1f0
[  175.516830][ T7996]  should_fail_ex+0x497/0x5b0
[  175.521547][ T7996]  core_sys_select+0x886/0xa10
[  175.526349][ T7996]  ? __pfx_core_sys_select+0x10/0x10
[  175.531674][ T7996]  ? find_held_lock+0x2d/0x110
[  175.536544][ T7996]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  175.542545][ T7996]  kern_select+0x15e/0x1e0
[  175.547062][ T7996]  ? __pfx_kern_select+0x10/0x10
[  175.552012][ T7996]  ? __pfx_ksys_write+0x10/0x10
[  175.556872][ T7996]  __x64_sys_select+0xbd/0x160
[  175.561642][ T7996]  ? do_syscall_64+0x91/0x250
[  175.566326][ T7996]  ? lockdep_hardirqs_on+0x7c/0x110
[  175.571531][ T7996]  do_syscall_64+0xcd/0x250
[  175.576052][ T7996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.581953][ T7996] RIP: 0033:0x7f12d7785d19
[  175.586370][ T7996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.605982][ T7996] RSP: 002b:00007f12d8533038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  175.614406][ T7996] RAX: ffffffffffffffda RBX: 00007f12d7975fa0 RCX: 00007f12d7785d19
[  175.622390][ T7996] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 000000000000000d
[  175.630367][ T7996] RBP: 00007f12d8533090 R08: 0000000000000000 R09: 0000000000000000
[  175.638346][ T7996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.646320][ T7996] R13: 0000000000000000 R14: 00007f12d7975fa0 R15: 00007fff41bb4ea8
[  175.654310][ T7996]  </TASK>
[  175.700575][ T7985] ima: policy update failed
[  175.731708][   T29] audit: type=1802 audit(4294967297.330:12): pid=7985 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.656" res=0 errno=0
[  176.156977][ T8015] binder: 8014:8015 ioctl c018620c 800000000000003 returned -14
[  176.185301][ T8018] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  176.594551][   T53] Bluetooth: hci1: command tx timeout
[  176.860048][ T8033] FAULT_INJECTION: forcing a failure.
[  176.860048][ T8033] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.888521][ T8031] netlink: 'syz.1.673': attribute type 1 has an invalid length.
[  176.915540][ T8033] CPU: 1 UID: 0 PID: 8033 Comm: syz.0.674 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  176.926204][ T8033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  176.936291][ T8033] Call Trace:
[  176.939595][ T8033]  <TASK>
[  176.942548][ T8033]  dump_stack_lvl+0x16c/0x1f0
[  176.947265][ T8033]  should_fail_ex+0x497/0x5b0
[  176.951983][ T8033]  _copy_from_user+0x2e/0xd0
[  176.956622][ T8033]  __sys_bpf+0x215/0x57a0
[  176.960986][ T8033]  ? __pfx_lock_release+0x10/0x10
[  176.966063][ T8033]  ? __pfx___sys_bpf+0x10/0x10
[  176.970859][ T8033]  ? vfs_write+0x306/0x1150
[  176.975409][ T8033]  ? __mutex_unlock_slowpath+0x164/0x690
[  176.981101][ T8033]  ? fput+0x67/0x440
[  176.985049][ T8033]  ? ksys_write+0x1ba/0x250
[  176.989587][ T8033]  ? __pfx_ksys_write+0x10/0x10
[  176.994486][ T8033]  __x64_sys_bpf+0x78/0xc0
[  176.998940][ T8033]  ? lockdep_hardirqs_on+0x7c/0x110
[  177.004173][ T8033]  do_syscall_64+0xcd/0x250
[  177.008696][ T8033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.014599][ T8033] RIP: 0033:0x7f0af0b85d19
[  177.019020][ T8033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.038643][ T8033] RSP: 002b:00007f0af19dd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  177.047070][ T8033] RAX: ffffffffffffffda RBX: 00007f0af0d75fa0 RCX: 00007f0af0b85d19
[  177.055076][ T8033] RDX: 0000000000000092 RSI: 0000000020000040 RDI: 0000000000000018
[  177.063060][ T8033] RBP: 00007f0af19dd090 R08: 0000000000000000 R09: 0000000000000000
[  177.071038][ T8033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  177.079013][ T8033] R13: 0000000000000000 R14: 00007f0af0d75fa0 R15: 00007ffdd3361be8
[  177.087006][ T8033]  </TASK>
[  177.571131][ T8050] netlink: 'syz.0.681': attribute type 1 has an invalid length.
[  177.607214][ T8050] netlink: 4 bytes leftover after parsing attributes in process `syz.0.681'.
[  178.118182][ T8062] netlink: 'syz.1.683': attribute type 4 has an invalid length.
[  178.204262][ T8074] netlink: 448 bytes leftover after parsing attributes in process `syz.0.685'.
[  178.455288][ T8080] FAULT_INJECTION: forcing a failure.
[  178.455288][ T8080] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  178.516428][ T8080] CPU: 1 UID: 0 PID: 8080 Comm: syz.0.687 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  178.527097][ T8080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  178.537189][ T8080] Call Trace:
[  178.540503][ T8080]  <TASK>
[  178.543462][ T8080]  dump_stack_lvl+0x16c/0x1f0
[  178.548182][ T8080]  should_fail_ex+0x497/0x5b0
[  178.552906][ T8080]  _copy_to_user+0x32/0xd0
[  178.557368][ T8080]  simple_read_from_buffer+0xd0/0x160
[  178.562791][ T8080]  proc_fail_nth_read+0x198/0x270
[  178.567865][ T8080]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  178.573465][ T8080]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  178.579411][ T8080]  vfs_read+0x1df/0xbe0
[  178.583609][ T8080]  ? __fget_files+0x1fc/0x3a0
[  178.588341][ T8080]  ? __pfx___mutex_lock+0x10/0x10
[  178.593409][ T8080]  ? __pfx_vfs_read+0x10/0x10
[  178.598147][ T8080]  ? __fget_files+0x206/0x3a0
[  178.602884][ T8080]  ksys_read+0x12b/0x250
[  178.607193][ T8080]  ? __pfx_ksys_read+0x10/0x10
[  178.612009][ T8080]  do_syscall_64+0xcd/0x250
[  178.616559][ T8080]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.622509][ T8080] RIP: 0033:0x7f0af0b8472c
[  178.626954][ T8080] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  178.646600][ T8080] RSP: 002b:00007f0af19dd030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  178.655062][ T8080] RAX: ffffffffffffffda RBX: 00007f0af0d75fa0 RCX: 00007f0af0b8472c
[  178.663068][ T8080] RDX: 000000000000000f RSI: 00007f0af19dd0a0 RDI: 0000000000000004
[  178.671078][ T8080] RBP: 00007f0af19dd090 R08: 0000000000000000 R09: 0000000000000000
[  178.674510][   T53] Bluetooth: hci1: command tx timeout
[  178.679065][ T8080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.679098][ T8080] R13: 0000000000000000 R14: 00007f0af0d75fa0 R15: 00007ffdd3361be8
[  178.679126][ T8080]  </TASK>
[  179.136551][ T8090] ima: policy update failed
[  179.141233][   T29] audit: type=1802 audit(4294967300.740:13): pid=8090 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.689" res=0 errno=0
[  179.184327][ T8103] tipc: Started in network mode
[  179.189572][ T8103] tipc: Node identity dd0000ee, cluster identity 11
[  179.207830][ T8103] tipc: Node number set to 3707764974
[  179.223752][ T8106] netlink: 'syz.2.695': attribute type 4 has an invalid length.
[  179.499327][ T8111] bridge0: port 3(ipvlan1) entered blocking state
[  179.514169][ T8111] bridge0: port 3(ipvlan1) entered disabled state
[  179.824130][ T8113] netlink: 'syz.2.699': attribute type 3 has an invalid length.
[  179.853793][ T8113] netlink: 332 bytes leftover after parsing attributes in process `syz.2.699'.
[  180.754524][   T53] Bluetooth: hci1: command tx timeout
[  180.942159][ T8148] netlink: 36 bytes leftover after parsing attributes in process `syz.3.710'.
[  182.160817][ T8164] netlink: 4 bytes leftover after parsing attributes in process `syz.3.714'.
[  182.539702][ T8179] netlink: 'syz.0.718': attribute type 19 has an invalid length.
[  182.548301][ T8179] netlink: 310 bytes leftover after parsing attributes in process `syz.0.718'.
[  182.627618][ T8181] netlink: 28 bytes leftover after parsing attributes in process `syz.2.720'.
[  182.648038][ T8181] team_slave_0: entered allmulticast mode
[  182.834537][   T53] Bluetooth: hci1: command tx timeout
[  182.993147][ T8196] IPVS: length: 11322 != 8
[  183.088173][ T8200] netlink: 'syz.0.727': attribute type 1 has an invalid length.
[  183.265418][ T8202] netlink: 354 bytes leftover after parsing attributes in process `syz.1.728'.
[  183.265667][ T8197] delete_channel: no stack
[  183.403588][ T8207] FAULT_INJECTION: forcing a failure.
[  183.403588][ T8207] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  183.437999][ T8207] CPU: 1 UID: 0 PID: 8207 Comm: syz.0.730 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  183.448656][ T8207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  183.458753][ T8207] Call Trace:
[  183.462069][ T8207]  <TASK>
[  183.465018][ T8207]  dump_stack_lvl+0x16c/0x1f0
[  183.469739][ T8207]  should_fail_ex+0x497/0x5b0
[  183.474456][ T8207]  ? fs_reclaim_acquire+0xae/0x150
[  183.479603][ T8207]  should_fail_alloc_page+0xe7/0x130
[  183.484931][ T8207]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  183.491127][ T8207]  __alloc_pages_noprof+0x190/0x25b0
[  183.496460][ T8207]  ? hlock_class+0x4e/0x130
[  183.500998][ T8207]  ? mark_lock+0xb5/0xc60
[  183.505374][ T8207]  ? __pfx_mark_lock+0x10/0x10
[  183.510188][ T8207]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  183.516469][ T8207]  ? hlock_class+0x4e/0x130
[  183.521027][ T8207]  ? mark_lock+0xb5/0xc60
[  183.525407][ T8207]  ? hlock_class+0x4e/0x130
[  183.529957][ T8207]  ? mark_lock+0xb5/0xc60
[  183.534333][ T8207]  ? __pfx_mark_lock+0x10/0x10
[  183.539141][ T8207]  ? __pfx_mark_lock+0x10/0x10
[  183.543943][ T8207]  ? hlock_class+0x4e/0x130
[  183.548487][ T8207]  ? __lock_acquire+0xcc5/0x3c40
[  183.553462][ T8207]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  183.559403][ T8207]  ? policy_nodemask+0xea/0x4e0
[  183.564293][ T8207]  alloc_pages_mpol_noprof+0x2c9/0x610
[  183.569799][ T8207]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  183.575826][ T8207]  ? __lock_acquire+0xcc5/0x3c40
[  183.580825][ T8207]  folio_alloc_mpol_noprof+0x36/0xd0
[  183.586162][ T8207]  vma_alloc_folio_noprof+0xee/0x1b0
[  183.591489][ T8207]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  183.597428][ T8207]  ? find_held_lock+0x2d/0x110
[  183.602240][ T8207]  do_pte_missing+0x2017/0x3e00
[  183.607145][ T8207]  __handle_mm_fault+0x103c/0x2a40
[  183.612310][ T8207]  ? __pfx___handle_mm_fault+0x10/0x10
[  183.617917][ T8207]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  183.623599][ T8207]  ? find_vma+0xc0/0x140
[  183.627872][ T8207]  ? __pfx_find_vma+0x10/0x10
[  183.632585][ T8207]  handle_mm_fault+0x3fa/0xaa0
[  183.637402][ T8207]  do_user_addr_fault+0x7a3/0x13f0
[  183.642560][ T8207]  exc_page_fault+0x5c/0xc0
[  183.647102][ T8207]  asm_exc_page_fault+0x26/0x30
[  183.651986][ T8207] RIP: 0010:__put_user_8+0x11/0x20
[  183.657127][ T8207] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <48> 89 01 31 c9 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[  183.676774][ T8207] RSP: 0018:ffffc90003037c98 EFLAGS: 00050202
[  183.682885][ T8207] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000020001a80
[  183.690893][ T8207] RDX: ffff88806ec60000 RSI: ffffffff8237e391 RDI: ffffffff8bb156e0
[  183.698925][ T8207] RBP: 0000000000001000 R08: 0000000000000000 R09: fffffbfff2039862
[  183.706939][ T8207] R10: ffffffff901cc317 R11: 0000000000000001 R12: 0000000020001a80
[  183.714945][ T8207] R13: 0000000000000000 R14: dffffc0000000000 R15: 0000000000000000
[  183.723053][ T8207]  ? kpagecount_read+0x211/0x570
[  183.728050][ T8207]  kpagecount_read+0x21c/0x570
[  183.732862][ T8207]  ? __pfx_kpagecount_read+0x10/0x10
[  183.738202][ T8207]  proc_reg_read+0x11d/0x330
[  183.742831][ T8207]  ? rw_verify_area+0xd0/0x700
[  183.747639][ T8207]  ? __pfx_proc_reg_read+0x10/0x10
[  183.752832][ T8207]  vfs_read+0x1df/0xbe0
[  183.757030][ T8207]  ? __fget_files+0x1fc/0x3a0
[  183.761744][ T8207]  ? __pfx___mutex_lock+0x10/0x10
[  183.766812][ T8207]  ? __pfx_vfs_read+0x10/0x10
[  183.771535][ T8207]  ? __fget_files+0x206/0x3a0
[  183.776261][ T8207]  ksys_read+0x12b/0x250
[  183.780539][ T8207]  ? __pfx_ksys_read+0x10/0x10
[  183.785350][ T8207]  do_syscall_64+0xcd/0x250
[  183.789892][ T8207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.795824][ T8207] RIP: 0033:0x7f0af0b85d19
[  183.800267][ T8207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.819916][ T8207] RSP: 002b:00007f0af19dd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  183.828374][ T8207] RAX: ffffffffffffffda RBX: 00007f0af0d75fa0 RCX: 00007f0af0b85d19
[  183.836383][ T8207] RDX: 0000000000001000 RSI: 0000000020001a80 RDI: 0000000000000003
[  183.844387][ T8207] RBP: 00007f0af19dd090 R08: 0000000000000000 R09: 0000000000000000
[  183.852394][ T8207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  183.860402][ T8207] R13: 0000000000000000 R14: 00007f0af0d75fa0 R15: 00007ffdd3361be8
[  183.868424][ T8207]  </TASK>
[  184.924636][   T53] Bluetooth: hci1: command tx timeout
[  186.375453][ T8254] netlink: 36 bytes leftover after parsing attributes in process `syz.1.744'.
[  186.397496][ T8258] netlink: 28 bytes leftover after parsing attributes in process `syz.3.745'.
[  186.862305][ T8269] netlink: 4 bytes leftover after parsing attributes in process `syz.0.748'.
[  187.094485][   T53] Bluetooth: hci1: command tx timeout
[  187.334959][ T8284] netlink: 28 bytes leftover after parsing attributes in process `syz.0.754'.
[  187.835033][ T8299] FAULT_INJECTION: forcing a failure.
[  187.835033][ T8299] name failslab, interval 1, probability 0, space 0, times 0
[  187.904436][ T8299] CPU: 0 UID: 0 PID: 8299 Comm: syz.1.758 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  187.915098][ T8299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  187.925192][ T8299] Call Trace:
[  187.928503][ T8299]  <TASK>
[  187.931472][ T8299]  dump_stack_lvl+0x16c/0x1f0
[  187.936192][ T8299]  should_fail_ex+0x497/0x5b0
[  187.940921][ T8299]  ? fs_reclaim_acquire+0xae/0x150
[  187.946072][ T8299]  should_failslab+0xc2/0x120
[  187.950796][ T8299]  __kmalloc_cache_noprof+0x68/0x420
[  187.956129][ T8299]  madvise_collapse+0x1ce/0xac0
[  187.961024][ T8299]  ? mtree_range_walk+0x715/0xbe0
[  187.966085][ T8299]  ? __pfx_madvise_collapse+0x10/0x10
[  187.971506][ T8299]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  187.977442][ T8299]  madvise_vma_behavior+0xbb0/0x1da0
[  187.982773][ T8299]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  187.988532][ T8299]  ? find_vma_prev+0xdb/0x160
[  187.993417][ T8299]  ? __pfx_find_vma_prev+0x10/0x10
[  187.998567][ T8299]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  188.004152][ T8299]  ? do_madvise+0x25b/0x770
[  188.008703][ T8299]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  188.014460][ T8299]  madvise_walk_vmas+0x1cf/0x2c0
[  188.019442][ T8299]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  188.024952][ T8299]  do_madvise+0x30e/0x770
[  188.029323][ T8299]  ? __pfx_do_madvise+0x10/0x10
[  188.034220][ T8299]  ? ksys_write+0x1ba/0x250
[  188.038758][ T8299]  ? __pfx_ksys_write+0x10/0x10
[  188.043652][ T8299]  __x64_sys_madvise+0xa9/0x110
[  188.048552][ T8299]  ? lockdep_hardirqs_on+0x7c/0x110
[  188.053786][ T8299]  do_syscall_64+0xcd/0x250
[  188.058336][ T8299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.064275][ T8299] RIP: 0033:0x7f12d7785d19
[  188.068720][ T8299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.088365][ T8299] RSP: 002b:00007f12d8512038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  188.096821][ T8299] RAX: ffffffffffffffda RBX: 00007f12d7976080 RCX: 00007f12d7785d19
[  188.104840][ T8299] RDX: 0000000000000019 RSI: ffffffffffff0005 RDI: 0000000000000000
[  188.112847][ T8299] RBP: 00007f12d8512090 R08: 0000000000000000 R09: 0000000000000000
[  188.120857][ T8299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  188.128860][ T8299] R13: 0000000000000001 R14: 00007f12d7976080 R15: 00007fff41bb4ea8
[  188.136883][ T8299]  </TASK>
[  189.154513][   T53] Bluetooth: hci1: command tx timeout
[  189.750144][ T8338] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  190.546001][ T8343] ima: policy update failed
[  190.552654][   T29] audit: type=1802 audit(4294967312.150:14): pid=8343 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.768" res=0 errno=0
[  190.590629][ T8360] QAT: Device 5 not found
[  191.236207][ T5840] Bluetooth: hci1: command tx timeout
[  191.316413][ T8378] FAULT_INJECTION: forcing a failure.
[  191.316413][ T8378] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  191.374563][ T8378] CPU: 1 UID: 0 PID: 8378 Comm: syz.2.778 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  191.385230][ T8378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  191.395320][ T8378] Call Trace:
[  191.398625][ T8378]  <TASK>
[  191.401588][ T8378]  dump_stack_lvl+0x16c/0x1f0
[  191.406303][ T8378]  should_fail_ex+0x497/0x5b0
[  191.411023][ T8378]  _copy_to_user+0x32/0xd0
[  191.415484][ T8378]  simple_read_from_buffer+0xd0/0x160
[  191.420904][ T8378]  proc_fail_nth_read+0x198/0x270
[  191.425977][ T8378]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  191.431571][ T8378]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  191.437166][ T8378]  vfs_read+0x1df/0xbe0
[  191.441354][ T8378]  ? __fget_files+0x1fc/0x3a0
[  191.446065][ T8378]  ? __pfx___mutex_lock+0x10/0x10
[  191.451121][ T8378]  ? __pfx_vfs_read+0x10/0x10
[  191.455846][ T8378]  ? __fget_files+0x206/0x3a0
[  191.460566][ T8378]  ksys_read+0x12b/0x250
[  191.464858][ T8378]  ? __pfx_ksys_read+0x10/0x10
[  191.469676][ T8378]  do_syscall_64+0xcd/0x250
[  191.474233][ T8378]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.480173][ T8378] RIP: 0033:0x7f966898472c
[  191.484620][ T8378] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  191.504267][ T8378] RSP: 002b:00007f96697ce030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  191.512720][ T8378] RAX: ffffffffffffffda RBX: 00007f9668b75fa0 RCX: 00007f966898472c
[  191.520724][ T8378] RDX: 000000000000000f RSI: 00007f96697ce0a0 RDI: 0000000000000004
[  191.528730][ T8378] RBP: 00007f96697ce090 R08: 0000000000000000 R09: 0000000000000000
[  191.536735][ T8378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  191.544737][ T8378] R13: 0000000000000000 R14: 00007f9668b75fa0 R15: 00007ffccb633bf8
[  191.552761][ T8378]  </TASK>
[  191.596961][ T5840] Bluetooth: hci2: command 0x0406 tx timeout
[  191.603027][ T5840] Bluetooth: hci0: command 0x0406 tx timeout
[  191.609149][ T5840] Bluetooth: hci3: command 0x0406 tx timeout
[  192.525728][ T8391] GUP no longer grows the stack in syz.3.782 (8391): 1000-8000 (0)
[  192.594476][ T8391] CPU: 1 UID: 0 PID: 8391 Comm: syz.3.782 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  192.605133][ T8391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  192.615193][ T8391] Call Trace:
[  192.618474][ T8391]  <TASK>
[  192.621408][ T8391]  dump_stack_lvl+0x16c/0x1f0
[  192.626102][ T8391]  gup_vma_lookup+0x1d2/0x220
[  192.630789][ T8391]  fixup_user_fault+0x26f/0x540
[  192.635654][ T8391]  fault_in_user_writeable+0x70/0xe0
[  192.640963][ T8391]  futex_wake_op+0x976/0xdc0
[  192.645564][ T8391]  ? __pfx_futex_wake_op+0x10/0x10
[  192.650678][ T8391]  ? futex_wake+0x18e/0x4e0
[  192.655187][ T8391]  ? __pfx_futex_wake+0x10/0x10
[  192.660053][ T8391]  do_futex+0x2eb/0x350
[  192.664219][ T8391]  ? __pfx_do_futex+0x10/0x10
[  192.668908][ T8391]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  192.674033][ T8391]  __x64_sys_futex+0x1e1/0x4c0
[  192.678813][ T8391]  ? __pfx___x64_sys_futex+0x10/0x10
[  192.684141][ T8391]  ? rcu_is_watching+0x12/0xc0
[  192.688920][ T8391]  do_syscall_64+0xcd/0x250
[  192.693435][ T8391]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.699340][ T8391] RIP: 0033:0x7eff9db85d19
[  192.703759][ T8391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.723372][ T8391] RSP: 002b:00007eff9ea81038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  192.731792][ T8391] RAX: ffffffffffffffda RBX: 00007eff9dd75fa0 RCX: 00007eff9db85d19
[  192.739767][ T8391] RDX: 0000000000000002 RSI: 0000000000000085 RDI: 0000000000000000
[  192.747740][ T8391] RBP: 00007eff9dc01a20 R08: 0000000000000000 R09: 0000000000000001
[  192.755712][ T8391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  192.763680][ T8391] R13: 0000000000000000 R14: 00007eff9dd75fa0 R15: 00007ffd9276ed88
[  192.771669][ T8391]  </TASK>
[  192.906812][ T8400] FAULT_INJECTION: forcing a failure.
[  192.906812][ T8400] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  192.934525][ T8400] CPU: 1 UID: 0 PID: 8400 Comm: syz.1.787 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  192.945167][ T8400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  192.955224][ T8400] Call Trace:
[  192.958503][ T8400]  <TASK>
[  192.961438][ T8400]  dump_stack_lvl+0x16c/0x1f0
[  192.966132][ T8400]  should_fail_ex+0x497/0x5b0
[  192.970822][ T8400]  _copy_to_user+0x32/0xd0
[  192.975254][ T8400]  simple_read_from_buffer+0xd0/0x160
[  192.980641][ T8400]  proc_fail_nth_read+0x198/0x270
[  192.985676][ T8400]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  192.991267][ T8400]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  192.996829][ T8400]  vfs_read+0x1df/0xbe0
[  193.000992][ T8400]  ? __fget_files+0x1fc/0x3a0
[  193.005680][ T8400]  ? __pfx___mutex_lock+0x10/0x10
[  193.010709][ T8400]  ? __pfx_vfs_read+0x10/0x10
[  193.015403][ T8400]  ? __fget_files+0x206/0x3a0
[  193.020095][ T8400]  ksys_read+0x12b/0x250
[  193.024341][ T8400]  ? __pfx_ksys_read+0x10/0x10
[  193.029123][ T8400]  do_syscall_64+0xcd/0x250
[  193.033659][ T8400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.039560][ T8400] RIP: 0033:0x7f12d778472c
[  193.044067][ T8400] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  193.063701][ T8400] RSP: 002b:00007f12d8533030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  193.072127][ T8400] RAX: ffffffffffffffda RBX: 00007f12d7975fa0 RCX: 00007f12d778472c
[  193.080103][ T8400] RDX: 000000000000000f RSI: 00007f12d85330a0 RDI: 0000000000000006
[  193.088076][ T8400] RBP: 00007f12d8533090 R08: 0000000000000000 R09: 0000000000000000
[  193.096048][ T8400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.104018][ T8400] R13: 0000000000000000 R14: 00007f12d7975fa0 R15: 00007fff41bb4ea8
[  193.112005][ T8400]  </TASK>
[  193.314853][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  193.654505][ T8427] netlink: 8 bytes leftover after parsing attributes in process `syz.1.792'.
[  194.062954][ T8435] binder: binder_mmap: 8434 0-1000 bad vm_flags failed -1
[  194.209729][ T8439] FAULT_INJECTION: forcing a failure.
[  194.209729][ T8439] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.284514][ T8439] CPU: 1 UID: 0 PID: 8439 Comm: syz.0.795 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  194.295181][ T8439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  194.305270][ T8439] Call Trace:
[  194.308573][ T8439]  <TASK>
[  194.311528][ T8439]  dump_stack_lvl+0x16c/0x1f0
[  194.316245][ T8439]  should_fail_ex+0x497/0x5b0
[  194.320970][ T8439]  _copy_to_user+0x32/0xd0
[  194.325438][ T8439]  simple_read_from_buffer+0xd0/0x160
[  194.330865][ T8439]  proc_fail_nth_read+0x198/0x270
[  194.335940][ T8439]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  194.341541][ T8439]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  194.347153][ T8439]  vfs_read+0x1df/0xbe0
[  194.351358][ T8439]  ? __fget_files+0x1fc/0x3a0
[  194.356082][ T8439]  ? __pfx___mutex_lock+0x10/0x10
[  194.361122][ T8439]  ? __pfx_vfs_read+0x10/0x10
[  194.365812][ T8439]  ? __fget_files+0x206/0x3a0
[  194.370501][ T8439]  ksys_read+0x12b/0x250
[  194.374748][ T8439]  ? __pfx_ksys_read+0x10/0x10
[  194.379529][ T8439]  do_syscall_64+0xcd/0x250
[  194.384042][ T8439]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.389952][ T8439] RIP: 0033:0x7f0af0b8472c
[  194.394373][ T8439] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  194.414080][ T8439] RSP: 002b:00007f0af19dd030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  194.422500][ T8439] RAX: ffffffffffffffda RBX: 00007f0af0d75fa0 RCX: 00007f0af0b8472c
[  194.430477][ T8439] RDX: 000000000000000f RSI: 00007f0af19dd0a0 RDI: 0000000000000004
[  194.438449][ T8439] RBP: 00007f0af19dd090 R08: 0000000000000000 R09: 0000000000000000
[  194.446420][ T8439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.454398][ T8439] R13: 0000000000000000 R14: 00007f0af0d75fa0 R15: 00007ffdd3361be8
[  194.462386][ T8439]  </TASK>
[  194.598578][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  194.605015][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  194.626333][ T8441] netlink: 28 bytes leftover after parsing attributes in process `syz.2.798'.
[  195.128167][ T8454] netlink: 8 bytes leftover after parsing attributes in process `syz.3.803'.
[  195.202808][ T8454] netlink: 28 bytes leftover after parsing attributes in process `syz.3.803'.
[  195.328748][ T8460] netlink: 8 bytes leftover after parsing attributes in process `syz.0.805'.
[  195.366832][ T8454] veth0_macvtap: left promiscuous mode
[  195.404551][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  195.480157][ T8462] FAULT_INJECTION: forcing a failure.
[  195.480157][ T8462] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  195.543169][ T8462] CPU: 0 UID: 0 PID: 8462 Comm: syz.0.805 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  195.553834][ T8462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  195.563922][ T8462] Call Trace:
[  195.567229][ T8462]  <TASK>
[  195.570182][ T8462]  dump_stack_lvl+0x16c/0x1f0
[  195.574906][ T8462]  should_fail_ex+0x497/0x5b0
[  195.579631][ T8462]  _copy_from_user+0x2e/0xd0
[  195.584268][ T8462]  copy_msghdr_from_user+0x99/0x160
[  195.589508][ T8462]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  195.595440][ T8462]  ? __lock_acquire+0xcc5/0x3c40
[  195.600436][ T8462]  ___sys_sendmsg+0xff/0x1e0
[  195.605068][ T8462]  ? __pfx____sys_sendmsg+0x10/0x10
[  195.610322][ T8462]  ? trace_lock_acquire+0x14e/0x1f0
[  195.615584][ T8462]  __sys_sendmmsg+0x201/0x420
[  195.620303][ T8462]  ? __pfx___sys_sendmmsg+0x10/0x10
[  195.625558][ T8462]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  195.631593][ T8462]  ? fput+0x67/0x440
[  195.635621][ T8462]  ? ksys_write+0x1ba/0x250
[  195.640160][ T8462]  ? __pfx_ksys_write+0x10/0x10
[  195.645057][ T8462]  __x64_sys_sendmmsg+0x9c/0x100
[  195.650037][ T8462]  ? lockdep_hardirqs_on+0x7c/0x110
[  195.655270][ T8462]  do_syscall_64+0xcd/0x250
[  195.659813][ T8462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.665744][ T8462] RIP: 0033:0x7f0af0b85d19
[  195.670187][ T8462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.689852][ T8462] RSP: 002b:00007f0af19bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  195.698310][ T8462] RAX: ffffffffffffffda RBX: 00007f0af0d76080 RCX: 00007f0af0b85d19
[  195.706323][ T8462] RDX: 0000000000000007 RSI: 0000000020000200 RDI: 0000000000000007
[  195.714333][ T8462] RBP: 00007f0af19bc090 R08: 0000000000000000 R09: 0000000000000000
[  195.722424][ T8462] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001
[  195.730514][ T8462] R13: 0000000000000000 R14: 00007f0af0d76080 R15: 00007ffdd3361be8
[  195.738542][ T8462]  </TASK>
[  196.764033][ T8493] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  197.482717][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  197.562335][ T8514] netlink: 8 bytes leftover after parsing attributes in process `syz.1.822'.
[  197.624235][ T8514] netlink: 28 bytes leftover after parsing attributes in process `syz.1.822'.
[  197.700237][ T8514] veth0_macvtap: left promiscuous mode
[  197.795615][ T8519] netlink: 342 bytes leftover after parsing attributes in process `syz.3.821'.
[  198.840475][ T8530] netlink: 28 bytes leftover after parsing attributes in process `syz.2.826'.
[  199.205870][ T8545] =======================================================
[  199.205870][ T8545] WARNING: The mand mount option has been deprecated and
[  199.205870][ T8545]          and is ignored by this kernel. Remove the mand
[  199.205870][ T8545]          option from the mount to silence this warning.
[  199.205870][ T8545] =======================================================
[  199.547461][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  200.082749][ T8564] FAULT_INJECTION: forcing a failure.
[  200.082749][ T8564] name failslab, interval 1, probability 0, space 0, times 0
[  200.100713][ T8564] CPU: 0 UID: 0 PID: 8564 Comm: syz.1.835 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  200.111370][ T8564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  200.121463][ T8564] Call Trace:
[  200.124762][ T8564]  <TASK>
[  200.127711][ T8564]  dump_stack_lvl+0x16c/0x1f0
[  200.132426][ T8564]  should_fail_ex+0x497/0x5b0
[  200.137144][ T8564]  ? fs_reclaim_acquire+0xae/0x150
[  200.142297][ T8564]  should_failslab+0xc2/0x120
[  200.147022][ T8564]  __kmalloc_noprof+0xce/0x4f0
[  200.151833][ T8564]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  200.157509][ T8564]  ? tomoyo_realpath_from_path+0xbf/0x710
[  200.163283][ T8564]  tomoyo_realpath_from_path+0xbf/0x710
[  200.168883][ T8564]  ? tomoyo_path_number_perm+0x235/0x5b0
[  200.174580][ T8564]  tomoyo_path_number_perm+0x248/0x5b0
[  200.180094][ T8564]  ? tomoyo_path_number_perm+0x235/0x5b0
[  200.185789][ T8564]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  200.192203][ T8564]  ? __pfx_lock_release+0x10/0x10
[  200.197281][ T8564]  ? trace_lock_acquire+0x14e/0x1f0
[  200.202533][ T8564]  ? lock_acquire+0x2f/0xb0
[  200.207076][ T8564]  ? __fget_files+0x40/0x3a0
[  200.211719][ T8564]  ? __fget_files+0x206/0x3a0
[  200.216458][ T8564]  security_file_ioctl+0x9b/0x240
[  200.221536][ T8564]  __x64_sys_ioctl+0xb7/0x200
[  200.226268][ T8564]  do_syscall_64+0xcd/0x250
[  200.230820][ T8564]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.236765][ T8564] RIP: 0033:0x7f12d7785d19
[  200.241305][ T8564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.261045][ T8564] RSP: 002b:00007f12d8533038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  200.269499][ T8564] RAX: ffffffffffffffda RBX: 00007f12d7975fa0 RCX: 00007f12d7785d19
[  200.277504][ T8564] RDX: 0000000000000000 RSI: 0000000040084503 RDI: 0000000000000005
[  200.285515][ T8564] RBP: 00007f12d8533090 R08: 0000000000000000 R09: 0000000000000000
[  200.293522][ T8564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  200.301529][ T8564] R13: 0000000000000000 R14: 00007f12d7975fa0 R15: 00007fff41bb4ea8
[  200.309557][ T8564]  </TASK>
[  200.408047][ T8564] ERROR: Out of memory at tomoyo_realpath_from_path.
[  201.612723][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  202.214836][ T8613] FAULT_INJECTION: forcing a failure.
[  202.214836][ T8613] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.259394][ T8613] CPU: 1 UID: 0 PID: 8613 Comm: syz.3.848 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  202.270060][ T8613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  202.280146][ T8613] Call Trace:
[  202.283453][ T8613]  <TASK>
[  202.286404][ T8613]  dump_stack_lvl+0x16c/0x1f0
[  202.291559][ T8613]  should_fail_ex+0x497/0x5b0
[  202.296284][ T8613]  _copy_from_user+0x2e/0xd0
[  202.300924][ T8613]  write_ldt+0xfa/0xc30
[  202.305122][ T8613]  ? __fget_files+0x206/0x3a0
[  202.309835][ T8613]  ? __pfx_write_ldt+0x10/0x10
[  202.314613][ T8613]  ? fput+0x67/0x440
[  202.318523][ T8613]  ? ksys_write+0x1ba/0x250
[  202.323031][ T8613]  ? __pfx_ksys_write+0x10/0x10
[  202.327959][ T8613]  __x64_sys_modify_ldt+0xb1/0x170
[  202.333112][ T8613]  do_syscall_64+0xcd/0x250
[  202.337635][ T8613]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.343538][ T8613] RIP: 0033:0x7eff9db85d19
[  202.347959][ T8613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.367573][ T8613] RSP: 002b:00007eff9ea81038 EFLAGS: 00000246 ORIG_RAX: 000000000000009a
[  202.375994][ T8613] RAX: ffffffffffffffda RBX: 00007eff9dd75fa0 RCX: 00007eff9db85d19
[  202.383990][ T8613] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000001
[  202.391975][ T8613] RBP: 00007eff9ea81090 R08: 0000000000000000 R09: 0000000000000000
[  202.399954][ T8613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  202.407937][ T8613] R13: 0000000000000000 R14: 00007eff9dd75fa0 R15: 00007ffd9276ed88
[  202.415927][ T8613]  </TASK>
[  202.678922][ T8618] FAULT_INJECTION: forcing a failure.
[  202.678922][ T8618] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.704515][ T8618] CPU: 1 UID: 0 PID: 8618 Comm: syz.3.850 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  202.715181][ T8618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  202.725279][ T8618] Call Trace:
[  202.728593][ T8618]  <TASK>
[  202.731551][ T8618]  dump_stack_lvl+0x16c/0x1f0
[  202.736273][ T8618]  should_fail_ex+0x497/0x5b0
[  202.740997][ T8618]  _copy_from_user+0x2e/0xd0
[  202.745645][ T8618]  move_addr_to_kernel+0x68/0x160
[  202.750717][ T8618]  __sys_sendto+0x1ba/0x4f0
[  202.755269][ T8618]  ? __pfx___sys_sendto+0x10/0x10
[  202.760359][ T8618]  ? ksys_write+0x1ba/0x250
[  202.764902][ T8618]  ? __pfx_ksys_write+0x10/0x10
[  202.769798][ T8618]  __x64_sys_sendto+0xe0/0x1c0
[  202.774613][ T8618]  ? do_syscall_64+0x91/0x250
[  202.779336][ T8618]  ? lockdep_hardirqs_on+0x7c/0x110
[  202.784585][ T8618]  do_syscall_64+0xcd/0x250
[  202.789157][ T8618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.795102][ T8618] RIP: 0033:0x7eff9db85d19
[  202.799553][ T8618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.819226][ T8618] RSP: 002b:00007eff9ea81038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  202.827686][ T8618] RAX: ffffffffffffffda RBX: 00007eff9dd75fa0 RCX: 00007eff9db85d19
[  202.835699][ T8618] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000003
[  202.843710][ T8618] RBP: 00007eff9ea81090 R08: 00000000200004c0 R09: 0000000000000019
[  202.851723][ T8618] R10: 000000000000800e R11: 0000000000000246 R12: 0000000000000001
[  202.859736][ T8618] R13: 0000000000000000 R14: 00007eff9dd75fa0 R15: 00007ffd9276ed88
[  202.867758][ T8618]  </TASK>
[  203.421917][ T8627] netlink: 'syz.0.854': attribute type 8 has an invalid length.
[  203.463391][ T8627] netlink: 'syz.0.854': attribute type 9 has an invalid length.
[  203.519705][ T8627] netlink: 162 bytes leftover after parsing attributes in process `syz.0.854'.
[  203.691881][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  204.084497][ T8658] can: request_module (can-proto-0) failed.
[  204.377120][ T8659] ima: policy update failed
[  204.395474][   T29] audit: type=1802 audit(67590.704:15): pid=8659 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.858" res=0 errno=0
[  205.751204][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  205.988899][ T8716] netlink: 8 bytes leftover after parsing attributes in process `syz.3.874'.
[  206.770547][ T8744] ima: policy update failed
[  206.775260][   T29] audit: type=1802 audit(67593.087:16): pid=8744 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.882" res=0 errno=0
[  206.791966][ T8756] FAULT_INJECTION: forcing a failure.
[  206.791966][ T8756] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  206.837133][ T8756] CPU: 1 UID: 0 PID: 8756 Comm: syz.3.884 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  206.847800][ T8756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  206.857890][ T8756] Call Trace:
[  206.861200][ T8756]  <TASK>
[  206.864150][ T8756]  dump_stack_lvl+0x16c/0x1f0
[  206.868871][ T8756]  should_fail_ex+0x497/0x5b0
[  206.873592][ T8756]  _copy_from_user+0x2e/0xd0
[  206.878225][ T8756]  ip6_mroute_setsockopt+0x13d5/0x25b0
[  206.883723][ T8756]  ? hlock_class+0x4e/0x130
[  206.888259][ T8756]  ? __pfx_ip6_mroute_setsockopt+0x10/0x10
[  206.894101][ T8756]  ? hlock_class+0x4e/0x130
[  206.898647][ T8756]  ? mark_lock+0xb5/0xc60
[  206.903022][ T8756]  ? __pfx_mark_lock+0x10/0x10
[  206.907839][ T8756]  ? __pfx_mark_lock+0x10/0x10
[  206.912644][ T8756]  ? find_held_lock+0x2d/0x110
[  206.917441][ T8756]  ? is_bpf_text_address+0x8a/0x1a0
[  206.922657][ T8756]  ? __pfx_lock_release+0x10/0x10
[  206.927700][ T8756]  ? trace_lock_acquire+0x14e/0x1f0
[  206.932920][ T8756]  ? __pfx_mark_lock+0x10/0x10
[  206.937696][ T8756]  ? __lock_acquire+0x15a9/0x3c40
[  206.942742][ T8756]  ? do_ipv6_setsockopt+0x8f7/0x4660
[  206.948041][ T8756]  do_ipv6_setsockopt+0x8f7/0x4660
[  206.953291][ T8756]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[  206.958843][ T8756]  ? __lock_acquire+0xcc5/0x3c40
[  206.963798][ T8756]  ? hlock_class+0x4e/0x130
[  206.968311][ T8756]  ? mark_lock+0xb5/0xc60
[  206.972659][ T8756]  ? aa_label_sk_perm+0x19d/0x5a0
[  206.977699][ T8756]  ? __pfx_mark_lock+0x10/0x10
[  206.982476][ T8756]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  206.987871][ T8756]  ? find_held_lock+0x2d/0x110
[  206.992660][ T8756]  ? ipv6_setsockopt+0xcb/0x170
[  206.997524][ T8756]  ipv6_setsockopt+0xcb/0x170
[  207.002214][ T8756]  rawv6_setsockopt+0xdc/0x700
[  207.006984][ T8756]  ? __pfx_rawv6_setsockopt+0x10/0x10
[  207.012362][ T8756]  ? sock_common_setsockopt+0x2e/0xf0
[  207.017792][ T8756]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  207.023708][ T8756]  do_sock_setsockopt+0x222/0x480
[  207.028749][ T8756]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  207.034309][ T8756]  ? lock_acquire+0x2f/0xb0
[  207.038850][ T8756]  __sys_setsockopt+0x1a0/0x230
[  207.043755][ T8756]  __x64_sys_setsockopt+0xbd/0x160
[  207.048891][ T8756]  ? do_syscall_64+0x91/0x250
[  207.053577][ T8756]  ? lockdep_hardirqs_on+0x7c/0x110
[  207.058781][ T8756]  do_syscall_64+0xcd/0x250
[  207.063293][ T8756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.069194][ T8756] RIP: 0033:0x7eff9db85d19
[  207.073614][ T8756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.093228][ T8756] RSP: 002b:00007eff9ea81038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  207.101647][ T8756] RAX: ffffffffffffffda RBX: 00007eff9dd75fa0 RCX: 00007eff9db85d19
[  207.109627][ T8756] RDX: 00000000000000cb RSI: 0000000000000029 RDI: 0400000000000003
[  207.117601][ T8756] RBP: 00007eff9ea81090 R08: 0000000000000004 R09: 0000000000000000
[  207.125576][ T8756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.133550][ T8756] R13: 0000000000000000 R14: 00007eff9dd75fa0 R15: 00007ffd9276ed88
[  207.141537][ T8756]  </TASK>
[  207.747819][ T8771] netlink: 28 bytes leftover after parsing attributes in process `syz.3.890'.
[  207.830424][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  208.203349][ T8786] FAULT_INJECTION: forcing a failure.
[  208.203349][ T8786] name failslab, interval 1, probability 0, space 0, times 0
[  208.230647][ T8786] CPU: 1 UID: 0 PID: 8786 Comm: syz.2.893 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  208.241314][ T8786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  208.251407][ T8786] Call Trace:
[  208.254707][ T8786]  <TASK>
[  208.257654][ T8786]  dump_stack_lvl+0x16c/0x1f0
[  208.262392][ T8786]  should_fail_ex+0x497/0x5b0
[  208.267111][ T8786]  ? fs_reclaim_acquire+0xae/0x150
[  208.272263][ T8786]  should_failslab+0xc2/0x120
[  208.276988][ T8786]  __kmalloc_cache_noprof+0x68/0x420
[  208.282303][ T8786]  ? trace_lock_acquire+0x14e/0x1f0
[  208.287542][ T8786]  alloc_pipe_info+0x10e/0x590
[  208.292350][ T8786]  splice_direct_to_actor+0x793/0xa40
[  208.297754][ T8786]  ? __pfx_direct_splice_actor+0x10/0x10
[  208.303932][ T8786]  ? __pfx_aa_file_perm+0x10/0x10
[  208.309000][ T8786]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  208.314926][ T8786]  ? __fget_files+0x1fc/0x3a0
[  208.319638][ T8786]  do_splice_direct+0x178/0x250
[  208.324516][ T8786]  ? __pfx_do_splice_direct+0x10/0x10
[  208.329912][ T8786]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  208.335859][ T8786]  do_sendfile+0xaed/0xe30
[  208.340310][ T8786]  ? __pfx_do_sendfile+0x10/0x10
[  208.345305][ T8786]  ? __fget_files+0x206/0x3a0
[  208.350022][ T8786]  __x64_sys_sendfile64+0x1da/0x220
[  208.355258][ T8786]  ? ksys_write+0x1ba/0x250
[  208.359807][ T8786]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  208.365582][ T8786]  do_syscall_64+0xcd/0x250
[  208.370120][ T8786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.376042][ T8786] RIP: 0033:0x7f9668985d19
[  208.380490][ T8786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.400124][ T8786] RSP: 002b:00007f96697ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  208.408579][ T8786] RAX: ffffffffffffffda RBX: 00007f9668b75fa0 RCX: 00007f9668985d19
[  208.416570][ T8786] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  208.424559][ T8786] RBP: 00007f96697ce090 R08: 0000000000000000 R09: 0000000000000000
[  208.432553][ T8786] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  208.440543][ T8786] R13: 0000000000000000 R14: 00007f9668b75fa0 R15: 00007ffccb633bf8
[  208.448605][ T8786]  </TASK>
[  208.657642][ T8792] FAULT_INJECTION: forcing a failure.
[  208.657642][ T8792] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  208.671037][ T8792] CPU: 0 UID: 0 PID: 8792 Comm: syz.3.895 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  208.681669][ T8792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  208.691756][ T8792] Call Trace:
[  208.695054][ T8792]  <TASK>
[  208.698012][ T8792]  dump_stack_lvl+0x16c/0x1f0
[  208.702729][ T8792]  should_fail_ex+0x497/0x5b0
[  208.707446][ T8792]  _copy_from_user+0x2e/0xd0
[  208.712084][ T8792]  __sys_bpf+0x215/0x57a0
[  208.716448][ T8792]  ? __pfx_lock_release+0x10/0x10
[  208.721528][ T8792]  ? __pfx___sys_bpf+0x10/0x10
[  208.726327][ T8792]  ? vfs_write+0x306/0x1150
[  208.730875][ T8792]  ? __mutex_unlock_slowpath+0x164/0x690
[  208.736565][ T8792]  ? fput+0x67/0x440
[  208.740505][ T8792]  ? ksys_write+0x1ba/0x250
[  208.745049][ T8792]  ? __pfx_ksys_write+0x10/0x10
[  208.747898][ T8776] ima: policy update failed
[  208.749921][ T8792]  __x64_sys_bpf+0x78/0xc0
[  208.758861][ T8792]  ? lockdep_hardirqs_on+0x7c/0x110
[  208.764094][ T8792]  do_syscall_64+0xcd/0x250
[  208.768643][ T8792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.774586][ T8792] RIP: 0033:0x7eff9db85d19
[  208.775704][   T29] audit: type=1802 audit(67595.057:17): pid=8776 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.889" res=0 errno=0
[  208.779007][ T8792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.814861][ T8792] RSP: 002b:00007eff9ea81038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  208.823320][ T8792] RAX: ffffffffffffffda RBX: 00007eff9dd75fa0 RCX: 00007eff9db85d19
[  208.831331][ T8792] RDX: 000000000000000c RSI: 00000000200001c0 RDI: 0000000000000002
[  208.839347][ T8792] RBP: 00007eff9ea81090 R08: 0000000000000000 R09: 0000000000000000
[  208.847349][ T8792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  208.855355][ T8792] R13: 0000000000000000 R14: 00007eff9dd75fa0 R15: 00007ffd9276ed88
[  208.863373][ T8792]  </TASK>
[  208.987277][ T8802] netlink: 350 bytes leftover after parsing attributes in process `syz.3.898'.
[  209.015576][ T8802] netlink: 350 bytes leftover after parsing attributes in process `syz.3.898'.
[  209.067983][ T8802] netlink: 8 bytes leftover after parsing attributes in process `syz.3.898'.
[  209.909746][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  210.417824][ T8834] FAULT_INJECTION: forcing a failure.
[  210.417824][ T8834] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  210.431304][ T8834] CPU: 0 UID: 0 PID: 8834 Comm: syz.0.914 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  210.441920][ T8834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  210.451980][ T8834] Call Trace:
[  210.455261][ T8834]  <TASK>
[  210.458194][ T8834]  dump_stack_lvl+0x16c/0x1f0
[  210.462883][ T8834]  should_fail_ex+0x497/0x5b0
[  210.467583][ T8834]  _copy_from_user+0x2e/0xd0
[  210.472189][ T8834]  __sys_bpf+0x215/0x57a0
[  210.476536][ T8834]  ? __pfx_lock_release+0x10/0x10
[  210.481579][ T8834]  ? __pfx___sys_bpf+0x10/0x10
[  210.486346][ T8834]  ? vfs_write+0x306/0x1150
[  210.490952][ T8834]  ? __mutex_unlock_slowpath+0x164/0x690
[  210.496610][ T8834]  ? fput+0x67/0x440
[  210.500522][ T8834]  ? ksys_write+0x1ba/0x250
[  210.505030][ T8834]  ? __pfx_ksys_write+0x10/0x10
[  210.509890][ T8834]  __x64_sys_bpf+0x78/0xc0
[  210.514310][ T8834]  ? lockdep_hardirqs_on+0x7c/0x110
[  210.519520][ T8834]  do_syscall_64+0xcd/0x250
[  210.524034][ T8834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.529932][ T8834] RIP: 0033:0x7f0af0b85d19
[  210.534350][ T8834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.553966][ T8834] RSP: 002b:00007f0af19dd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  210.562386][ T8834] RAX: ffffffffffffffda RBX: 00007f0af0d75fa0 RCX: 00007f0af0b85d19
[  210.570364][ T8834] RDX: 000000000000000c RSI: 00000000200001c0 RDI: 0000000000000001
[  210.578338][ T8834] RBP: 00007f0af19dd090 R08: 0000000000000000 R09: 0000000000000000
[  210.586657][ T8834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  210.594633][ T8834] R13: 0000000000000000 R14: 00007f0af0d75fa0 R15: 00007ffdd3361be8
[  210.602622][ T8834]  </TASK>
[  210.798147][ T8842] UHID_CREATE from different security context by process 682 (syz.0.909), this is not allowed.
[  210.875500][ T8794] kexec: Could not allocate control_code_buffer
[  211.073248][ T8857] netlink: 28 bytes leftover after parsing attributes in process `syz.2.913'.
[  211.107746][ T8859] netlink: 28 bytes leftover after parsing attributes in process `syz.2.913'.
[  211.362462][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  211.369326][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  211.572868][ T8884] ima: policy update failed
[  211.712959][   T29] audit: type=1802 audit(4294967297.517:18): pid=8884 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.917" res=0 errno=0
[  211.961786][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  212.284290][ T8901] program syz.1.924 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  212.578761][ T8886] kexec: Could not allocate control_code_buffer
[  213.475418][ T8915] ima: policy update failed
[  213.521971][   T29] audit: type=1802 audit(4294967299.377:19): pid=8915 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.928" res=0 errno=0
[  213.962602][ T8941] ecryptfs_parse_packet_length: Five-byte packet length not supported
[  213.996352][ T8941] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[  214.029980][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  214.296965][ T8946] netlink: 168 bytes leftover after parsing attributes in process `syz.0.944'.
[  214.861855][ T8957] netlink: 4 bytes leftover after parsing attributes in process `syz.1.946'.
[  215.220423][ T8962] netlink: 4 bytes leftover after parsing attributes in process `syz.1.938'.
[  215.550140][ T8976] ima: policy update failed
[  215.555005][   T29] audit: type=1802 audit(4294967301.428:20): pid=8976 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.942" res=0 errno=0
[  215.737644][ T8945] kexec: Could not allocate control_code_buffer
[  215.745223][ T8967] netlink: 8 bytes leftover after parsing attributes in process `syz.2.939'.
[  215.956256][ T8991] netlink: 4 bytes leftover after parsing attributes in process `syz.3.949'.
[  216.097479][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  216.135535][ T8994] ima: policy update failed
[  216.167766][   T29] audit: type=1802 audit(4294967302.041:21): pid=8994 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.947" res=0 errno=0
[  216.527377][ T9004] FAULT_INJECTION: forcing a failure.
[  216.527377][ T9004] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  216.541787][ T9004] CPU: 0 UID: 0 PID: 9004 Comm: syz.1.952 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  216.552516][ T9004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  216.562605][ T9004] Call Trace:
[  216.565908][ T9004]  <TASK>
[  216.568873][ T9004]  dump_stack_lvl+0x16c/0x1f0
[  216.573585][ T9004]  should_fail_ex+0x497/0x5b0
[  216.578306][ T9004]  _copy_to_user+0x32/0xd0
[  216.582765][ T9004]  simple_read_from_buffer+0xd0/0x160
[  216.588192][ T9004]  proc_fail_nth_read+0x198/0x270
[  216.593518][ T9004]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  216.599111][ T9004]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  216.604695][ T9004]  vfs_read+0x1df/0xbe0
[  216.608887][ T9004]  ? __fget_files+0x1fc/0x3a0
[  216.613604][ T9004]  ? __pfx___mutex_lock+0x10/0x10
[  216.618666][ T9004]  ? __pfx_vfs_read+0x10/0x10
[  216.623384][ T9004]  ? __fget_files+0x206/0x3a0
[  216.628107][ T9004]  ksys_read+0x12b/0x250
[  216.632379][ T9004]  ? __pfx_ksys_read+0x10/0x10
[  216.637182][ T9004]  do_syscall_64+0xcd/0x250
[  216.641719][ T9004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.647650][ T9004] RIP: 0033:0x7f12d778472c
[  216.652084][ T9004] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  216.671725][ T9004] RSP: 002b:00007f12d8533030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  216.680179][ T9004] RAX: ffffffffffffffda RBX: 00007f12d7975fa0 RCX: 00007f12d778472c
[  216.688186][ T9004] RDX: 000000000000000f RSI: 00007f12d85330a0 RDI: 0000000000000014
[  216.696188][ T9004] RBP: 00007f12d8533090 R08: 0000000000000000 R09: 0000000000000000
[  216.704182][ T9004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  216.712183][ T9004] R13: 0000000000000000 R14: 00007f12d7975fa0 R15: 00007fff41bb4ea8
[  216.720204][ T9004]  </TASK>
[  216.723269][    C0] vkms_vblank_simulate: vblank timer overrun
[  217.408914][ T9023] netlink: 4 bytes leftover after parsing attributes in process `syz.2.958'.
[  218.168049][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  219.246890][ T9052] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  219.256178][ T9052] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  219.298078][ T9052] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  219.298829][ T9069] ima: policy update failed
[  219.304299][ T9052] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  219.332639][ T9052] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  219.339306][ T9052] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  219.357622][ T9052] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  219.370663][ T9052] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  219.382759][   T29] audit: type=1802 audit(4294967305.277:22): pid=9069 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.971" res=0 errno=0
[  219.659191][ T9077] FAULT_INJECTION: forcing a failure.
[  219.659191][ T9077] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  219.706825][ T9077] CPU: 1 UID: 0 PID: 9077 Comm: syz.3.975 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  219.717481][ T9077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  219.727570][ T9077] Call Trace:
[  219.730881][ T9077]  <TASK>
[  219.733849][ T9077]  dump_stack_lvl+0x16c/0x1f0
[  219.738617][ T9077]  should_fail_ex+0x497/0x5b0
[  219.743519][ T9077]  _copy_to_iter+0x29b/0x1400
[  219.748250][ T9077]  ? trace_lock_acquire+0x14e/0x1f0
[  219.753496][ T9077]  ? __pfx__copy_to_iter+0x10/0x10
[  219.758651][ T9077]  ? __virt_addr_valid+0x1a4/0x590
[  219.763814][ T9077]  ? __virt_addr_valid+0x5e/0x590
[  219.768880][ T9077]  ? __phys_addr_symbol+0x30/0x80
[  219.773948][ T9077]  ? __check_object_size+0x488/0x710
[  219.779271][ T9077]  simple_copy_to_iter+0x4f/0x80
[  219.784242][ T9077]  __skb_datagram_iter+0x122/0x8c0
[  219.789382][ T9077]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  219.795056][ T9077]  ? unix_stream_read_generic+0x1e4a/0x28b0
[  219.801520][ T9077]  ? rcu_is_watching+0x12/0xc0
[  219.806327][ T9077]  skb_copy_datagram_iter+0x40/0x50
[  219.811578][ T9077]  unix_stream_read_actor+0x7b/0xc0
[  219.816799][ T9077]  unix_stream_read_generic+0x1e7b/0x28b0
[  219.822580][ T9077]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  219.827967][ T9077]  ? hlock_class+0x4e/0x130
[  219.832489][ T9077]  ? __pfx_unix_stream_read_generic+0x10/0x10
[  219.838579][ T9077]  ? __pfx___might_resched+0x10/0x10
[  219.844311][ T9077]  ? find_held_lock+0x2d/0x110
[  219.849092][ T9077]  unix_stream_recvmsg+0x192/0x1c0
[  219.854216][ T9077]  ? __pfx_unix_stream_recvmsg+0x10/0x10
[  219.859872][ T9077]  ? __pfx_aa_sk_perm+0x10/0x10
[  219.864741][ T9077]  ? __pfx_unix_stream_read_actor+0x10/0x10
[  219.870655][ T9077]  sock_recvmsg+0x1f6/0x250
[  219.875165][ T9077]  __sys_recvfrom+0x204/0x310
[  219.879867][ T9077]  ? __pfx___sys_recvfrom+0x10/0x10
[  219.885103][ T9077]  ? ksys_write+0x1ba/0x250
[  219.889614][ T9077]  ? __pfx_ksys_write+0x10/0x10
[  219.894478][ T9077]  __x64_sys_recvfrom+0xe0/0x1c0
[  219.899423][ T9077]  ? do_syscall_64+0x91/0x250
[  219.904109][ T9077]  ? lockdep_hardirqs_on+0x7c/0x110
[  219.909346][ T9077]  do_syscall_64+0xcd/0x250
[  219.913861][ T9077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.919769][ T9077] RIP: 0033:0x7eff9db85d19
[  219.924187][ T9077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.943811][ T9077] RSP: 002b:00007eff9ea60038 EFLAGS: 00000246 ORIG_RAX: 000000000000002d
[  219.952230][ T9077] RAX: ffffffffffffffda RBX: 00007eff9dd76080 RCX: 00007eff9db85d19
[  219.960204][ T9077] RDX: 00000000000101d0 RSI: 0000000000000000 RDI: 0000000000000004
[  219.968185][ T9077] RBP: 00007eff9ea60090 R08: 0000000000000000 R09: 0000000000000000
[  219.976162][ T9077] R10: 00000000003ffffd R11: 0000000000000246 R12: 0000000000000001
[  219.984134][ T9077] R13: 0000000000000001 R14: 00007eff9dd76080 R15: 00007ffd9276ed88
[  219.992140][ T9077]  </TASK>
[  220.554703][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  221.362583][ T5830] Bluetooth: hci2: command 0x0406 tx timeout
[  221.368821][ T5830] Bluetooth: hci0: command 0x0406 tx timeout
[  221.374998][ T5833] Bluetooth: hci3: command 0x0406 tx timeout
[  221.590929][ T9114] ovs_: entered promiscuous mode
[  221.610462][   T29] audit: type=1800 audit(4294967307.519:23): pid=9114 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.987" name="discovery_nqn" dev="configfs" ino=19738 res=0 errno=0
[  221.859480][   T29] audit: type=1800 audit(4294967307.770:24): pid=9120 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.990" name="dbroot" dev="configfs" ino=19746 res=0 errno=0
[  221.881663][ T9120] db_root: cannot open: ŽyêÖR[»
[  222.207750][ T9132] netlink: 130 bytes leftover after parsing attributes in process `syz.1.995'.
[  222.280423][ T9133] netlink: 342 bytes leftover after parsing attributes in process `syz.1.995'.
[  222.623449][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  222.936003][ T9145] ima: policy update failed
[  222.940716][   T29] audit: type=1802 audit(4294967308.846:25): pid=9145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.996" res=0 errno=0
[  223.379585][ T9147] netlink: 8 bytes leftover after parsing attributes in process `syz.1.998'.
[  223.419407][ T5830] Bluetooth: hci0: command 0x0406 tx timeout
[  223.425537][ T5836] Bluetooth: hci3: command 0x0406 tx timeout
[  223.432621][ T5833] Bluetooth: hci2: command 0x0406 tx timeout
[  224.692856][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  225.734004][ T9168] netlink: 'syz.0.1003': attribute type 1 has an invalid length.
[  226.762047][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  227.839727][ T9193] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec"[9193]
[  228.560519][ T9208] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1014'.
[  228.851021][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  229.989686][ T9243] delete_channel: no stack
[  230.115519][ T9246] FAULT_INJECTION: forcing a failure.
[  230.115519][ T9246] name failslab, interval 1, probability 0, space 0, times 0
[  230.152282][ T9246] CPU: 1 UID: 0 PID: 9246 Comm: syz.1.1022 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  230.163196][ T9246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  230.173299][ T9246] Call Trace:
[  230.176612][ T9246]  <TASK>
[  230.179575][ T9246]  dump_stack_lvl+0x16c/0x1f0
[  230.184301][ T9246]  should_fail_ex+0x497/0x5b0
[  230.189028][ T9246]  ? __pfx___lock_acquire+0x10/0x10
[  230.194275][ T9246]  should_failslab+0xc2/0x120
[  230.198996][ T9246]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  230.204860][ T9246]  ? __alloc_skb+0x2b3/0x380
[  230.209505][ T9246]  __alloc_skb+0x2b3/0x380
[  230.213972][ T9246]  ? __pfx___alloc_skb+0x10/0x10
[  230.218961][ T9246]  ? aoecmd_cfg+0xec/0x7d0
[  230.223434][ T9246]  new_skb+0x21/0x230
[  230.227470][ T9246]  aoecmd_cfg+0x20e/0x7d0
[  230.231859][ T9246]  ? __pfx_aoecmd_cfg+0x10/0x10
[  230.236794][ T9246]  ? apparmor_file_permission+0x251/0x400
[  230.242576][ T9246]  ? __pfx_aoechr_write+0x10/0x10
[  230.247739][ T9246]  ? aoechr_write+0x120/0x160
[  230.252446][ T9246]  aoechr_write+0x120/0x160
[  230.256972][ T9246]  vfs_write+0x24c/0x1150
[  230.261315][ T9246]  ? __fget_files+0x1fc/0x3a0
[  230.266004][ T9246]  ? __pfx_lock_release+0x10/0x10
[  230.271045][ T9246]  ? __pfx_vfs_write+0x10/0x10
[  230.275820][ T9246]  ? lock_acquire+0x2f/0xb0
[  230.280326][ T9246]  ? __fget_files+0x40/0x3a0
[  230.284933][ T9246]  ? __fget_files+0x206/0x3a0
[  230.289626][ T9246]  ksys_write+0x12b/0x250
[  230.293968][ T9246]  ? __pfx_ksys_write+0x10/0x10
[  230.298834][ T9246]  do_syscall_64+0xcd/0x250
[  230.303353][ T9246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.309262][ T9246] RIP: 0033:0x7f12d7785d19
[  230.313696][ T9246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.333319][ T9246] RSP: 002b:00007f12d8533038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  230.341747][ T9246] RAX: ffffffffffffffda RBX: 00007f12d7975fa0 RCX: 00007f12d7785d19
[  230.349733][ T9246] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  230.357713][ T9246] RBP: 00007f12d8533090 R08: 0000000000000000 R09: 0000000000000000
[  230.365699][ T9246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  230.373682][ T9246] R13: 0000000000000000 R14: 00007f12d7975fa0 R15: 00007fff41bb4ea8
[  230.381680][ T9246]  </TASK>
[  230.572104][ T9246] aoe: skb alloc failure
[  230.600488][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  230.608862][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  230.900723][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  231.246100][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  231.252691][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  231.586389][ T9271] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1029'.
[  231.891490][ T9278] program syz.2.1033 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  231.895495][ T9273] RDS: rds_bind could not find a transport for ::ffff:100.1.1.1, load rds_tcp or rds_rdma?
[  231.906530][ T9278] mmap: syz.2.1033 (9278) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  232.164773][ T9288] FAULT_INJECTION: forcing a failure.
[  232.164773][ T9288] name failslab, interval 1, probability 0, space 0, times 0
[  232.219509][ T9288] CPU: 1 UID: 0 PID: 9288 Comm: syz.2.1035 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  232.230258][ T9288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  232.240350][ T9288] Call Trace:
[  232.243658][ T9288]  <TASK>
[  232.246612][ T9288]  dump_stack_lvl+0x16c/0x1f0
[  232.251327][ T9288]  should_fail_ex+0x497/0x5b0
[  232.256053][ T9288]  should_failslab+0xc2/0x120
[  232.260781][ T9288]  __kmalloc_cache_noprof+0x68/0x420
[  232.266104][ T9288]  ? __pfx_sctp_get_port_local+0x10/0x10
[  232.271774][ T9288]  ? lock_acquire+0x2f/0xb0
[  232.276316][ T9288]  ? sctp_bind_addr_match+0x43/0x300
[  232.281651][ T9288]  sctp_add_bind_addr+0x9d/0x3e0
[  232.286638][ T9288]  sctp_do_bind+0x2d6/0x700
[  232.291180][ T9288]  sctp_connect_new_asoc+0x5ff/0x790
[  232.296511][ T9288]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  232.302356][ T9288]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  232.308290][ T9288]  ? sctp_get_af_specific+0x62/0x70
[  232.313531][ T9288]  __sctp_connect+0x3f5/0xc60
[  232.318255][ T9288]  ? sctp_inet_connect+0xac/0x200
[  232.323315][ T9288]  ? __pfx___sctp_connect+0x10/0x10
[  232.328551][ T9288]  ? __pfx_sctp_inet_connect+0x10/0x10
[  232.334057][ T9288]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  232.340001][ T9288]  ? __pfx_sctp_inet_connect+0x10/0x10
[  232.345510][ T9288]  sctp_inet_connect+0x15f/0x200
[  232.350498][ T9288]  __sys_connect_file+0x13e/0x1a0
[  232.355616][ T9288]  __sys_connect+0x14f/0x170
[  232.360240][ T9288]  ? __pfx___sys_connect+0x10/0x10
[  232.365403][ T9288]  ? __pfx_ksys_write+0x10/0x10
[  232.370296][ T9288]  __x64_sys_connect+0x72/0xb0
[  232.375094][ T9288]  ? lockdep_hardirqs_on+0x7c/0x110
[  232.380343][ T9288]  do_syscall_64+0xcd/0x250
[  232.384887][ T9288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.390818][ T9288] RIP: 0033:0x7f9668985d19
[  232.395263][ T9288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.414910][ T9288] RSP: 002b:00007f96697ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  232.423367][ T9288] RAX: ffffffffffffffda RBX: 00007f9668b75fa0 RCX: 00007f9668985d19
[  232.431373][ T9288] RDX: 0000000000000055 RSI: 0000000000000000 RDI: 0000000000000003
[  232.439388][ T9288] RBP: 00007f96697ce090 R08: 0000000000000000 R09: 0000000000000000
[  232.447403][ T9288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  232.455413][ T9288] R13: 0000000000000000 R14: 00007f9668b75fa0 R15: 00007ffccb633bf8
[  232.463437][ T9288]  </TASK>
[  232.868575][ T9283] ima: policy update failed
[  232.900047][   T29] audit: type=1802 audit(4294967318.868:26): pid=9283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1032" res=0 errno=0
[  232.979675][ T5830] Bluetooth: hci1: command 0x0409 tx timeout
[  233.003846][ T9294] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1036'.
[  233.201170][ T9297] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1037'.
[  235.887365][ T5836] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  235.896546][ T5836] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  235.904877][ T5836] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  235.912756][ T5836] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  235.920636][ T5836] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  235.934725][ T5836] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  236.122087][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  236.128605][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  236.393062][ T9339] chnl_net:caif_netlink_parms(): no params data found
[  236.409486][ T9354] FAULT_INJECTION: forcing a failure.
[  236.409486][ T9354] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  236.471529][ T9354] CPU: 1 UID: 0 PID: 9354 Comm: syz.3.1049 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  236.482276][ T9354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  236.492362][ T9354] Call Trace:
[  236.495670][ T9354]  <TASK>
[  236.498625][ T9354]  dump_stack_lvl+0x16c/0x1f0
[  236.503348][ T9354]  should_fail_ex+0x497/0x5b0
[  236.508075][ T9354]  _copy_from_user+0x2e/0xd0
[  236.512711][ T9354]  copy_msghdr_from_user+0x99/0x160
[  236.517955][ T9354]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  236.523819][ T9354]  ? __pfx___lock_acquire+0x10/0x10
[  236.529071][ T9354]  ? __schedule+0xe60/0x5ad0
[  236.533704][ T9354]  ___sys_recvmsg+0xdc/0x1a0
[  236.538341][ T9354]  ? __pfx____sys_recvmsg+0x10/0x10
[  236.543577][ T9354]  ? __pfx_lock_release+0x10/0x10
[  236.548634][ T9354]  ? trace_lock_acquire+0x14e/0x1f0
[  236.553862][ T9354]  do_recvmmsg+0x2f8/0x740
[  236.558294][ T9354]  ? __pfx_do_recvmmsg+0x10/0x10
[  236.563243][ T9354]  ? vfs_write+0x306/0x1150
[  236.567758][ T9354]  ? __mutex_unlock_slowpath+0x164/0x690
[  236.573413][ T9354]  ? __fget_files+0x206/0x3a0
[  236.578107][ T9354]  __x64_sys_recvmmsg+0x239/0x290
[  236.583141][ T9354]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  236.588704][ T9354]  do_syscall_64+0xcd/0x250
[  236.593215][ T9354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.599117][ T9354] RIP: 0033:0x7eff9db85d19
[  236.603533][ T9354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.623323][ T9354] RSP: 002b:00007eff9ea81038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  236.631746][ T9354] RAX: ffffffffffffffda RBX: 00007eff9dd75fa0 RCX: 00007eff9db85d19
[  236.639724][ T9354] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000004
[  236.647697][ T9354] RBP: 00007eff9ea81090 R08: 0000000000000000 R09: 0000000000000000
[  236.655676][ T9354] R10: 000000000000000e R11: 0000000000000246 R12: 0000000000000001
[  236.663656][ T9354] R13: 0000000000000000 R14: 00007eff9dd75fa0 R15: 00007ffd9276ed88
[  236.671647][ T9354]  </TASK>
[  237.676768][ T9339] bridge0: port 1(bridge_slave_0) entered blocking state
[  237.683913][ T9339] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.696478][ T9339] bridge_slave_0: entered allmulticast mode
[  237.716301][ T9339] bridge_slave_0: entered promiscuous mode
[  237.737359][ T9339] bridge0: port 2(bridge_slave_1) entered blocking state
[  237.758567][ T9339] bridge0: port 2(bridge_slave_1) entered disabled state
[  237.775973][ T9339] bridge_slave_1: entered allmulticast mode
[  237.784956][ T9339] bridge_slave_1: entered promiscuous mode
[  237.883372][ T9339] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  237.916609][ T9339] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  237.984029][ T5830] Bluetooth: hci1: command tx timeout
[  238.033126][ T9339] team0: Port device team_slave_0 added
[  238.042772][ T9339] team0: Port device team_slave_1 added
[  238.085728][ T9370] netlink: 'syz.3.1052': attribute type 2 has an invalid length.
[  238.113086][ T9370] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1052'.
[  238.175035][ T9339] batman_adv: batadv0: Adding interface: batadv_slave_0
[  238.182169][ T9339] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  238.262899][ T9339] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  238.306694][ T9339] batman_adv: batadv0: Adding interface: batadv_slave_1
[  238.313943][ T9339] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  238.341622][ T9339] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  238.581928][ T9366] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1050'.
[  238.703202][ T9339] hsr_slave_0: entered promiscuous mode
[  238.731862][ T9339] hsr_slave_1: entered promiscuous mode
[  238.740489][ T9339] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  238.748282][ T9339] Cannot create hsr debugfs directory
[  238.788914][ T9357] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1050'.
[  239.114998][ T9339] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  239.122769][ T9376] syz.1.1053 (9376) used greatest stack depth: 20176 bytes left
[  239.159743][ T9339] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  239.200214][ T9339] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  239.238553][ T9339] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  239.437213][ T9339] 8021q: adding VLAN 0 to HW filter on device bond0
[  239.474017][ T9339] 8021q: adding VLAN 0 to HW filter on device team0
[  239.497964][ T6433] bridge0: port 1(bridge_slave_0) entered blocking state
[  239.505198][ T6433] bridge0: port 1(bridge_slave_0) entered forwarding state
[  239.546934][ T6431] bridge0: port 2(bridge_slave_1) entered blocking state
[  239.554092][ T6431] bridge0: port 2(bridge_slave_1) entered forwarding state
[  239.619523][ T9339] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  239.657376][ T9339] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  240.053226][ T5830] Bluetooth: hci1: command tx timeout
[  240.331434][ T9339] 8021q: adding VLAN 0 to HW filter on device batadv0
[  240.761331][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  240.767808][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  240.792721][ T9339] veth0_vlan: entered promiscuous mode
[  240.815235][ T9339] veth1_vlan: entered promiscuous mode
[  240.870699][ T9339] veth0_macvtap: entered promiscuous mode
[  240.889431][ T9339] veth1_macvtap: entered promiscuous mode
[  240.930756][ T9339] batman_adv: batadv0: Interface activated: batadv_slave_0
[  240.960816][ T9339] batman_adv: batadv0: Interface activated: batadv_slave_1
[  241.000598][ T9339] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  241.017814][ T9339] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  241.047601][ T9339] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  241.066966][ T9339] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  241.359378][ T6433] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  241.360463][  T747] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  241.367662][ T6433] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  241.415713][  T747] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  241.767383][ T9410] ima: policy update failed
[  241.775297][   T29] audit: type=1802 audit(4294967299.311:27): pid=9410 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1059" res=0 errno=0
[  242.122553][ T5830] Bluetooth: hci1: command tx timeout
[  242.769822][ T9422] RDS: rds_bind could not find a transport for ::ffff:100.1.1.1, load rds_tcp or rds_rdma?
[  244.191258][ T5830] Bluetooth: hci1: command tx timeout
[  244.640316][ T9456] ima: policy update failed
[  244.661922][   T29] audit: type=1802 audit(4294967302.227:28): pid=9456 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1068" res=0 errno=0
[  248.120934][ T9509] netlink: 'syz.4.1085': attribute type 4 has an invalid length.
[  248.200606][ T9507] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  248.440914][ T9521] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1087'.
[  249.117516][ T9532] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1094'.
[  249.475659][ T9537] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1096'.
[  249.937087][ T9158] syz.1.998 (9158) used greatest stack depth: 18816 bytes left
[  250.109444][ T9550] rtc_cmos 00:00: Alarms can be up to one day in the future
[  250.951449][ T9577] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1106'.
[  251.736399][ T9604] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1114'.
[  251.770345][ T9604] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1114'.
[  251.805291][ T9604] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1114'.
[  253.069967][ T9631] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1123'.
[  253.094631][ T9631] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1123'.
[  253.578312][ T9636] Process accounting resumed
[  254.214645][ T9675] misc userio: Invalid payload size
[  255.257773][ T9688] ima: policy update failed
[  255.285173][   T29] audit: type=1802 audit(4294967312.902:29): pid=9688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1146" res=0 errno=0
[  255.770303][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  255.776697][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  255.991486][ T9696] delete_channel: no stack
[  256.258965][ T9701] ima: policy update failed
[  256.269196][   T29] audit: type=1802 audit(4294967313.897:30): pid=9701 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1147" res=0 errno=0
[  256.727885][ T9348] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.881633][ T9348] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.039238][ T9348] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.395265][ T9348] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.413041][ T5836] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  257.423281][ T5836] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  257.434564][ T5836] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  257.473836][ T5836] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  257.483691][ T5836] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  257.491493][ T5836] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  257.893454][ T9348] bridge_slave_1: left allmulticast mode
[  257.899485][ T9348] bridge_slave_1: left promiscuous mode
[  257.963497][ T9348] bridge0: port 2(bridge_slave_1) entered disabled state
[  258.016515][ T9348] bridge_slave_0: left allmulticast mode
[  258.058424][ T9348] bridge_slave_0: left promiscuous mode
[  258.081896][ T9348] bridge0: port 1(bridge_slave_0) entered disabled state
[  258.710064][ T9758] nvme_fabrics: missing parameter 'transport=%s'
[  258.744004][ T9758] nvme_fabrics: missing parameter 'nqn=%s'
[  260.198823][ T9348] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  260.212123][ T9348] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  260.281308][ T9348] bond0 (unregistering): Released all slaves
[  260.341331][ T5836] Bluetooth: hci2: command tx timeout
[  260.836221][ T9725] chnl_net:caif_netlink_parms(): no params data found
[  261.189190][ T9725] bridge0: port 1(bridge_slave_0) entered blocking state
[  261.228682][ T9725] bridge0: port 1(bridge_slave_0) entered disabled state
[  261.262784][ T9725] bridge_slave_0: entered allmulticast mode
[  261.269874][ T9725] bridge_slave_0: entered promiscuous mode
[  261.289464][ T9725] bridge0: port 2(bridge_slave_1) entered blocking state
[  261.303833][ T9725] bridge0: port 2(bridge_slave_1) entered disabled state
[  261.321281][ T9725] bridge_slave_1: entered allmulticast mode
[  261.339136][ T9725] bridge_slave_1: entered promiscuous mode
[  261.456309][ T9774] delete_channel: no stack
[  261.752532][ T9725] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  261.786504][ T9725] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  261.920722][ T9725] team0: Port device team_slave_0 added
[  261.952026][ T9725] team0: Port device team_slave_1 added
[  262.173883][ T9348] veth1_macvtap: left promiscuous mode
[  262.198528][ T9348] veth0_vlan: left promiscuous mode
[  262.435628][ T5836] Bluetooth: hci2: command tx timeout
[  262.801511][ T9825] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1180'.
[  263.456993][ T9348] team0 (unregistering): Port device team_slave_1 removed
[  263.614966][ T9348] team0 (unregistering): Port device team_slave_0 removed
[  264.486328][ T5836] Bluetooth: hci2: command tx timeout
[  265.091538][ T9725] batman_adv: batadv0: Adding interface: batadv_slave_0
[  265.101330][ T9725] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  265.149477][ T9725] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  265.218407][ T9725] batman_adv: batadv0: Adding interface: batadv_slave_1
[  265.235863][ T9725] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  265.290500][ T9725] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  265.725658][ T9725] hsr_slave_0: entered promiscuous mode
[  265.761867][ T9725] hsr_slave_1: entered promiscuous mode
[  265.797326][ T9725] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  265.805671][ T9725] Cannot create hsr debugfs directory
[  266.556184][ T5836] Bluetooth: hci2: command tx timeout
[  267.202405][ T9725] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  267.327271][ T9725] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  267.499087][ T9725] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  267.555576][ T9725] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  267.809988][ T9725] 8021q: adding VLAN 0 to HW filter on device bond0
[  267.856000][ T9725] 8021q: adding VLAN 0 to HW filter on device team0
[  267.895429][ T9342] bridge0: port 1(bridge_slave_0) entered blocking state
[  267.902607][ T9342] bridge0: port 1(bridge_slave_0) entered forwarding state
[  267.971680][ T9348] bridge0: port 2(bridge_slave_1) entered blocking state
[  267.978889][ T9348] bridge0: port 2(bridge_slave_1) entered forwarding state
[  268.106541][ T9725] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  268.166696][ T9725] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  268.529950][ T9725] 8021q: adding VLAN 0 to HW filter on device batadv0
[  268.964653][ T9725] veth0_vlan: entered promiscuous mode
[  268.986877][ T9725] veth1_vlan: entered promiscuous mode
[  269.046034][ T9725] veth0_macvtap: entered promiscuous mode
[  269.066702][ T9725] veth1_macvtap: entered promiscuous mode
[  269.095659][ T9725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  269.125382][ T9725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  269.162642][ T9725] batman_adv: batadv0: Interface activated: batadv_slave_0
[  269.194496][ T9725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  269.211214][ T9725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  269.252035][ T9725] batman_adv: batadv0: Interface activated: batadv_slave_1
[  269.274200][ T9725] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  269.293206][ T9725] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  269.312595][ T9725] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  269.340936][ T9725] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  269.589630][ T9342] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  269.603644][ T9342] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  269.684083][ T9346] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  269.723667][ T9346] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  270.330320][ T9938] ima: policy update failed
[  270.338747][   T29] audit: type=1802 audit(4294967328.020:31): pid=9938 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.1157" res=0 errno=0
[  272.300110][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  272.457319][T10000] bridge0: port 3(batadv0) entered blocking state
[  272.489535][T10000] bridge0: port 3(batadv0) entered disabled state
[  272.537081][T10000] batadv0: entered allmulticast mode
[  272.580719][T10000] batadv0: entered promiscuous mode
[  272.612808][T10000] bridge0: port 3(batadv0) entered blocking state
[  272.619747][T10000] bridge0: port 3(batadv0) entered forwarding state
[  272.646174][ T9346] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  272.655893][ T9346] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  273.550857][T10013] ima: policy update failed
[  273.555603][   T29] audit: type=1802 audit(4294967331.267:32): pid=10013 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1206" res=0 errno=0
[  274.924779][T10089] [U] 4
[  274.927649][T10089] [U] 
[  274.930381][T10089] [U] 
[  274.933112][T10089] [U] 
[  274.961447][T10089] [U] 
[  274.964219][T10089] [U] 
[  274.966957][T10089] [U] 
[  274.969687][T10089] [U] 
[  275.066779][T10094] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1220'.
[  275.091766][T10094] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1220'.
[  275.126469][T10094] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1220'.
[  275.162366][T10099] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1220'.
[  275.183159][T10094] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1220'.
[  275.215329][T10094] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1220'.
[  275.322272][T10096] [U] 
[  275.994984][T10118] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1225'.
[  276.727091][T10137] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1228'.
[  276.743355][T10136] ima: policy update failed
[  276.748398][   T29] audit: type=1802 audit(4294967334.473:33): pid=10136 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.1229" res=0 errno=0
[  277.134464][T10137] hsr_slave_1 (unregistering): left promiscuous mode
[  278.274910][T10167] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1235'.
[  278.777633][T10167] bond0: (slave bond_slave_1): Releasing backup interface
[  279.256082][T10185] ima: policy update failed
[  279.292894][   T29] audit: type=1802 audit(4294967337.037:34): pid=10185 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.1241" res=0 errno=0
[  279.540971][T10194] ima: policy update failed
[  279.559366][   T29] audit: type=1802 audit(4294967337.308:35): pid=10194 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.1243" res=0 errno=0
[  279.673869][T10202] netlink: 11 bytes leftover after parsing attributes in process `syz.5.1246'.
[  279.743172][T10204] ima: policy update failed
[  279.749599][   T29] audit: type=1802 audit(4294967337.499:36): pid=10204 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1245" res=0 errno=0
[  283.894522][T10181] Process accounting paused
[  284.128617][T10218] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1250'.
[  284.209444][ T9827] syz.2.1178 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  284.270806][ T9827] CPU: 0 UID: 0 PID: 9827 Comm: syz.2.1178 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  284.281554][ T9827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  284.291621][ T9827] Call Trace:
[  284.294904][ T9827]  <TASK>
[  284.297838][ T9827]  dump_stack_lvl+0x16c/0x1f0
[  284.302532][ T9827]  dump_header+0x101/0x900
[  284.306967][ T9827]  oom_kill_process+0x270/0xa60
[  284.311828][ T9827]  ? mem_cgroup_out_of_memory+0x8d/0x270
[  284.317474][ T9827]  out_of_memory+0x351/0x1700
[  284.322168][ T9827]  ? __pfx_out_of_memory+0x10/0x10
[  284.327333][ T9827]  ? rcu_read_unlock+0x17/0x60
[  284.332114][ T9827]  ? find_held_lock+0x2d/0x110
[  284.336896][ T9827]  mem_cgroup_out_of_memory+0x207/0x270
[  284.342799][ T9827]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  284.348891][ T9827]  ? do_raw_spin_unlock+0x172/0x230
[  284.354109][ T9827]  try_charge_memcg+0x54c/0xaf0
[  284.358979][ T9827]  ? __pfx_try_charge_memcg+0x10/0x10
[  284.364461][ T9827]  ? get_mem_cgroup_from_mm+0x87/0x5f0
[  284.369930][ T9827]  ? get_mem_cgroup_from_mm+0x87/0x5f0
[  284.375407][ T9827]  ? get_mem_cgroup_from_mm+0x131/0x5f0
[  284.380963][ T9827]  __mem_cgroup_charge+0x9b/0x280
[  284.386004][ T9827]  shmem_alloc_and_add_folio+0x507/0xc00
[  284.391653][ T9827]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  284.397557][ T9827]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  284.403717][ T9827]  ? shmem_huge_global_enabled+0x176/0x250
[  284.409542][ T9827]  ? shmem_allowable_huge_orders+0xcd/0x3e0
[  284.415538][ T9827]  shmem_get_folio_gfp+0x689/0x1530
[  284.420839][ T9827]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  284.426488][ T9827]  ? find_held_lock+0x2d/0x110
[  284.431304][ T9827]  shmem_write_begin+0x161/0x300
[  284.436258][ T9827]  ? __pfx_shmem_write_begin+0x10/0x10
[  284.441724][ T9827]  ? timestamp_truncate+0x21f/0x2e0
[  284.446965][ T9827]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1270
[  284.453840][ T9827]  generic_perform_write+0x2ba/0x920
[  284.459148][ T9827]  ? __pfx_generic_perform_write+0x10/0x10
[  284.464967][ T9827]  ? inode_needs_update_time.part.0+0x191/0x270
[  284.471232][ T9827]  shmem_file_write_iter+0x10e/0x140
[  284.476533][ T9827]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  284.482352][ T9827]  __kernel_write_iter+0x318/0xa80
[  284.487480][ T9827]  ? __pfx___kernel_write_iter+0x10/0x10
[  284.493135][ T9827]  ? get_dump_page+0x15b/0x230
[  284.497920][ T9827]  ? __pfx___might_resched+0x10/0x10
[  284.503220][ T9827]  dump_user_range+0x389/0x8c0
[  284.508008][ T9827]  ? __pfx_dump_user_range+0x10/0x10
[  284.513312][ T9827]  ? elf_coredump_extra_notes_write+0xbe/0x430
[  284.519483][ T9827]  ? __pfx_writenote+0x10/0x10
[  284.524272][ T9827]  elf_core_dump+0x2787/0x3880
[  284.529068][ T9827]  ? __pfx_elf_core_dump+0x10/0x10
[  284.534188][ T9827]  ? kasan_save_stack+0x42/0x60
[  284.539050][ T9827]  ? kasan_save_stack+0x33/0x60
[  284.543910][ T9827]  ? kasan_save_track+0x14/0x30
[  284.548768][ T9827]  ? __kasan_kmalloc+0xaa/0xb0
[  284.553543][ T9827]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  284.559104][ T9827]  ? do_coredump+0x1665/0x43e0
[  284.563887][ T9827]  ? get_signal+0x23f3/0x2610
[  284.568614][ T9827]  ? rcu_is_watching+0x12/0xc0
[  284.573394][ T9827]  ? trace_lock_acquire+0x14e/0x1f0
[  284.578609][ T9827]  ? __pfx_sort+0x10/0x10
[  284.582951][ T9827]  ? get_signal+0x23f3/0x2610
[  284.587645][ T9827]  ? do_coredump+0x2dd5/0x43e0
[  284.592428][ T9827]  do_coredump+0x2dd5/0x43e0
[  284.597044][ T9827]  ? __pfx_do_coredump+0x10/0x10
[  284.601994][ T9827]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  284.607980][ T9827]  get_signal+0x23f3/0x2610
[  284.612513][ T9827]  ? __pfx_get_signal+0x10/0x10
[  284.617408][ T9827]  ? __pfx_force_sig+0x10/0x10
[  284.622189][ T9827]  arch_do_signal_or_restart+0x90/0x7e0
[  284.627750][ T9827]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  284.633925][ T9827]  ? trace_irq_disable.constprop.0+0xea/0x140
[  284.640010][ T9827]  irqentry_exit_to_user_mode+0x13f/0x280
[  284.645741][ T9827]  asm_exc_stack_segment+0x26/0x30
[  284.650867][ T9827] RIP: 0033:0x7f9668985d21
[  284.655307][ T9827] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  284.674924][ T9827] RSP: 002b:7ffffffffffffffe EFLAGS: 00010217
[  284.681002][ T9827] RAX: 0000000000000000 RBX: 00007f9668b76240 RCX: 00007f9668985d19
[  284.688981][ T9827] RDX: ffffffffffffffff RSI: 7ffffffffffffffe RDI: 0000000000000007
[  284.696957][ T9827] RBP: 00007f9668a01a20 R08: 0000000000000001 R09: 0000000000000000
[  284.704941][ T9827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  284.712917][ T9827] R13: 0000000000000000 R14: 00007f9668b76240 R15: 00007ffccb633bf8
[  284.720916][ T9827]  </TASK>
[  284.732778][ T9827] memory: usage 307200kB, limit 307200kB, failcnt 13411
[  284.739903][ T9827] memory+swap: usage 409060kB, limit 9007199254740988kB, failcnt 0
[  284.750504][ T9827] kmem: usage 4376kB, limit 9007199254740988kB, failcnt 0
[  284.807722][ T9827] Memory cgroup stats for /syz2:
[  284.808240][ T9827] cache 309547008
[  284.821195][T10218] bond0: (slave bond_slave_1): Releasing backup interface
[  284.822322][ T9827] rss 69632
[  284.849816][ T9827] rss_huge 0
[  284.853173][ T9827] shmem 309547008
[  284.856820][ T9827] mapped_file 24555520
[  284.872897][ T9827] dirty 0
[  284.896251][ T9827] writeback 0
[  284.906380][ T9827] workingset_refault_anon 1954
[  284.933776][ T9827] workingset_refault_file 165
[  284.938546][ T9827] swap 104304640
[  284.969339][ T9827] swapcached 376832
[  284.974558][ T9827] pgpgin 536362
[  284.978156][ T9827] pgpgout 466812
[  285.009505][ T9827] pgfault 236229
[  285.013118][ T9827] pgmajfault 407
[  285.038839][ T9827] inactive_anon 180273152
[  285.043230][ T9827] active_anon 129720320
[  285.047402][ T9827] inactive_file 0
[  285.092733][ T9827] active_file 0
[  285.096311][ T9827] unevictable 0
[  285.100382][ T9827] hierarchical_memory_limit 314572800
[  285.105807][ T9827] hierarchical_memsw_limit 9223372036854771712
[  285.132863][ T9827] total_cache 309547008
[  285.137083][ T9827] total_rss 69632
[  285.164706][ T9827] total_rss_huge 0
[  285.169470][ T9827] total_shmem 309547008
[  285.174011][ T9827] total_mapped_file 24555520
[  285.201458][T10244] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1255'.
[  285.209700][T10247] netlink: 11 bytes leftover after parsing attributes in process `syz.1.1256'.
[  285.210489][ T9827] total_dirty 0
[  285.221324][T10240] nbd: must specify at least one socket
[  285.244339][ T9827] total_writeback 0
[  285.254440][ T9827] total_workingset_refault_anon 1954
[  285.277657][ T9827] total_workingset_refault_file 165
[  285.284202][ T9827] total_swap 104304640
[  285.302350][ T9827] total_swapcached 376832
[  285.312872][ T9827] total_pgpgin 536362
[  285.337619][ T9827] total_pgpgout 466812
[  285.341767][ T9827] total_pgfault 236229
[  285.345899][ T9827] total_pgmajfault 407
[  285.387754][ T9827] total_inactive_anon 180273152
[  285.392668][ T9827] total_active_anon 129720320
[  285.408223][ T9827] total_inactive_file 0
[  285.412443][ T9827] total_active_file 0
[  285.416445][ T9827] total_unevictable 0
[  285.447173][ T9827] anon_cost 0
[  285.450515][ T9827] file_cost 0
[  285.466560][ T9827] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1178,pid=9828,uid=0
[  285.486998][T10256] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1258'.
[  285.506939][ T9827] Memory cgroup out of memory: Killed process 9828 (syz.2.1178) total-vm:131564kB, anon-rss:936kB, file-rss:23388kB, shmem-rss:23868kB, UID:0 pgtables:168kB oom_score_adj:1000
[  286.282235][ T9826] syz.2.1178 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  286.292370][ T9826] CPU: 0 UID: 0 PID: 9826 Comm: syz.2.1178 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  286.303085][ T9826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  286.313182][ T9826] Call Trace:
[  286.316498][ T9826]  <TASK>
[  286.319457][ T9826]  dump_stack_lvl+0x16c/0x1f0
[  286.324178][ T9826]  dump_header+0x101/0x900
[  286.328651][ T9826]  oom_kill_process+0x270/0xa60
[  286.333543][ T9826]  ? mem_cgroup_out_of_memory+0x8d/0x270
[  286.339234][ T9826]  out_of_memory+0x351/0x1700
[  286.343959][ T9826]  ? __pfx_out_of_memory+0x10/0x10
[  286.349091][ T9826]  ? rcu_read_unlock+0x17/0x60
[  286.353869][ T9826]  ? find_held_lock+0x2d/0x110
[  286.358668][ T9826]  mem_cgroup_out_of_memory+0x207/0x270
[  286.364245][ T9826]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  286.370349][ T9826]  ? do_raw_spin_unlock+0x172/0x230
[  286.375564][ T9826]  try_charge_memcg+0x54c/0xaf0
[  286.380429][ T9826]  ? __pfx_try_charge_memcg+0x10/0x10
[  286.385815][ T9826]  ? get_mem_cgroup_from_mm+0x87/0x5f0
[  286.391287][ T9826]  ? get_mem_cgroup_from_mm+0x87/0x5f0
[  286.396758][ T9826]  ? get_mem_cgroup_from_mm+0x131/0x5f0
[  286.402315][ T9826]  __mem_cgroup_charge+0x9b/0x280
[  286.407370][ T9826]  shmem_alloc_and_add_folio+0x507/0xc00
[  286.413018][ T9826]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  286.418918][ T9826]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  286.425074][ T9826]  ? shmem_huge_global_enabled+0x176/0x250
[  286.430896][ T9826]  ? shmem_allowable_huge_orders+0xcd/0x3e0
[  286.436803][ T9826]  shmem_get_folio_gfp+0x689/0x1530
[  286.442018][ T9826]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  286.447657][ T9826]  ? find_held_lock+0x2d/0x110
[  286.452441][ T9826]  shmem_write_begin+0x161/0x300
[  286.457396][ T9826]  ? __pfx_shmem_write_begin+0x10/0x10
[  286.462859][ T9826]  ? timestamp_truncate+0x21f/0x2e0
[  286.468069][ T9826]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1270
[  286.474936][ T9826]  generic_perform_write+0x2ba/0x920
[  286.480240][ T9826]  ? __pfx_generic_perform_write+0x10/0x10
[  286.486056][ T9826]  ? inode_needs_update_time.part.0+0x191/0x270
[  286.492315][ T9826]  shmem_file_write_iter+0x10e/0x140
[  286.497614][ T9826]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  286.503428][ T9826]  __kernel_write_iter+0x318/0xa80
[  286.508556][ T9826]  ? __pfx___kernel_write_iter+0x10/0x10
[  286.514198][ T9826]  ? get_dump_page+0x15b/0x230
[  286.518976][ T9826]  ? __pfx___might_resched+0x10/0x10
[  286.524263][ T9826]  ? __sanitizer_cov_trace_pc+0x3b/0x70
[  286.529818][ T9826]  dump_user_range+0x389/0x8c0
[  286.534603][ T9826]  ? __pfx_dump_user_range+0x10/0x10
[  286.539902][ T9826]  ? elf_coredump_extra_notes_write+0xbe/0x430
[  286.546092][ T9826]  ? __pfx_writenote+0x10/0x10
[  286.550883][ T9826]  elf_core_dump+0x2787/0x3880
[  286.555672][ T9826]  ? __pfx_elf_core_dump+0x10/0x10
[  286.560789][ T9826]  ? kasan_save_stack+0x42/0x60
[  286.565649][ T9826]  ? kasan_save_stack+0x33/0x60
[  286.570503][ T9826]  ? kasan_save_track+0x14/0x30
[  286.575360][ T9826]  ? __kasan_kmalloc+0xaa/0xb0
[  286.580129][ T9826]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  286.585599][ T9826]  ? do_coredump+0x1665/0x43e0
[  286.590373][ T9826]  ? get_signal+0x23f3/0x2610
[  286.595098][ T9826]  ? rcu_is_watching+0x12/0xc0
[  286.599898][ T9826]  ? trace_lock_acquire+0x14e/0x1f0
[  286.605108][ T9826]  ? __pfx_sort+0x10/0x10
[  286.609460][ T9826]  ? get_signal+0x23f3/0x2610
[  286.614150][ T9826]  ? do_coredump+0x2dd5/0x43e0
[  286.618951][ T9826]  do_coredump+0x2dd5/0x43e0
[  286.623568][ T9826]  ? __pfx_do_coredump+0x10/0x10
[  286.628516][ T9826]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  286.634483][ T9826]  get_signal+0x23f3/0x2610
[  286.639004][ T9826]  ? __pfx_get_signal+0x10/0x10
[  286.643866][ T9826]  ? __pfx_force_sig+0x10/0x10
[  286.648641][ T9826]  arch_do_signal_or_restart+0x90/0x7e0
[  286.654206][ T9826]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  286.660379][ T9826]  ? trace_irq_disable.constprop.0+0xea/0x140
[  286.666470][ T9826]  irqentry_exit_to_user_mode+0x13f/0x280
[  286.672201][ T9826]  asm_exc_stack_segment+0x26/0x30
[  286.677327][ T9826] RIP: 0033:0x7f9668985d21
[  286.681745][ T9826] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  286.701365][ T9826] RSP: 002b:7ffffffffffffffe EFLAGS: 00010217
[  286.707444][ T9826] RAX: 0000000000000000 RBX: 00007f9668b76240 RCX: 00007f9668985d19
[  286.715418][ T9826] RDX: ffffffffffffffff RSI: 7ffffffffffffffe RDI: 0000000000000007
[  286.723401][ T9826] RBP: 00007f9668a01a20 R08: 0000000000000001 R09: 0000000000000000
[  286.731388][ T9826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  286.739369][ T9826] R13: 0000000000000000 R14: 00007f9668b76240 R15: 00007ffccb633bf8
[  286.747454][ T9826]  </TASK>
[  286.766601][T10274] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  286.773268][ T9826] memory: usage 306588kB, limit 307200kB, failcnt 13809
[  286.785097][ T9826] memory+swap: usage 408948kB, limit 9007199254740988kB, failcnt 0
[  286.795623][T10274] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  286.814417][T10274] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  286.829773][T10274] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  286.836290][ T9826] kmem: usage 4276kB, limit 9007199254740988kB, failcnt 0
[  286.843621][ T9826] Memory cgroup stats for /syz2:
[  286.843814][ T9826] cache 302706688
[  286.853558][ T9826] rss 69632
[  286.856818][ T9826] rss_huge 0
[  286.860518][ T9826] shmem 302706688
[  286.864191][ T9826] mapped_file 24895488
[  286.890452][ T9826] dirty 0
[  286.893540][ T9826] writeback 0
[  286.897046][ T9826] workingset_refault_anon 1954
[  286.923550][ T9826] workingset_refault_file 165
[  286.932746][ T9826] swap 104214528
[  286.936339][ T9826] swapcached 380928
[  286.955114][T10274] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  286.987021][ T9826] pgpgin 536565
[  287.002235][T10274] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  287.019029][T10274] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  287.032511][ T9826] pgpgout 468653
[  287.036124][ T9826] pgfault 236322
[  287.045167][T10274] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  287.095255][ T9826] pgmajfault 407
[  287.156241][ T9826] inactive_anon 180011008
[  287.197795][ T9826] active_anon 123092992
[  287.202127][ T9826] inactive_file 0
[  287.205779][ T9826] active_file 0
[  287.362212][ T9826] unevictable 0
[  287.365743][ T9826] hierarchical_memory_limit 314572800
[  287.464302][T10308] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1264'.
[  287.541229][ T9826] hierarchical_memsw_limit 9223372036854771712
[  287.609048][T10306] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1272'.
[  287.641018][ T9826] total_cache 302706688
[  287.715206][ T9826] total_rss 69632
[  287.718906][ T9826] total_rss_huge 0
[  287.722650][ T9826] total_shmem 302706688
[  287.777080][ T9826] total_mapped_file 24895488
[  287.815819][ T9826] total_dirty 0
[  287.891103][ T9826] total_writeback 0
[  287.924063][T10325] FAULT_INJECTION: forcing a failure.
[  287.924063][T10325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  287.936373][T10308] bond0: (slave bond_slave_1): Releasing backup interface
[  287.963246][ T9826] total_workingset_refault_anon 1954
[  287.980252][T10325] CPU: 0 UID: 0 PID: 10325 Comm: syz.5.1266 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  287.991081][T10325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  288.001163][T10325] Call Trace:
[  288.004461][T10325]  <TASK>
[  288.007410][T10325]  dump_stack_lvl+0x16c/0x1f0
[  288.012121][T10325]  should_fail_ex+0x497/0x5b0
[  288.016837][T10325]  _copy_from_user+0x2e/0xd0
[  288.021462][T10325]  copy_msghdr_from_user+0x99/0x160
[  288.026700][T10325]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  288.032653][T10325]  ___sys_sendmsg+0xff/0x1e0
[  288.037279][T10325]  ? __pfx____sys_sendmsg+0x10/0x10
[  288.042521][T10325]  ? __pfx_lock_release+0x10/0x10
[  288.047586][T10325]  ? trace_lock_acquire+0x14e/0x1f0
[  288.052829][T10325]  ? __fget_files+0x206/0x3a0
[  288.057537][T10325]  __sys_sendmsg+0x16e/0x220
[  288.062148][T10325]  ? __pfx___sys_sendmsg+0x10/0x10
[  288.067295][T10325]  do_syscall_64+0xcd/0x250
[  288.071807][T10325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.077728][T10325] RIP: 0033:0x7f31ba185d19
[  288.082172][T10325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.101797][T10325] RSP: 002b:00007f31baf99038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  288.110227][T10325] RAX: ffffffffffffffda RBX: 00007f31ba375fa0 RCX: 00007f31ba185d19
[  288.118204][T10325] RDX: 0000000000000080 RSI: 0000000020000080 RDI: 0000000000000004
[  288.126181][T10325] RBP: 00007f31baf99090 R08: 0000000000000000 R09: 0000000000000000
[  288.134159][T10325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  288.142136][T10325] R13: 0000000000000000 R14: 00007f31ba375fa0 R15: 00007fff42321aa8
[  288.150124][T10325]  </TASK>
[  288.153276][    C0] vkms_vblank_simulate: vblank timer overrun
[  288.247714][ T9826] total_workingset_refault_file 165
[  288.258693][ T9826] total_swap 104214528
[  288.288913][ T5830] Bluetooth: hci3: command 0x0406 tx timeout
[  288.290467][ T9826] total_swapcached 380928
[  288.351861][ T9826] total_pgpgin 536565
[  288.355903][ T9826] total_pgpgout 468653
[  288.359992][ T9826] total_pgfault 236322
[  288.364681][ T9826] total_pgmajfault 407
[  288.368818][ T9826] total_inactive_anon 180011008
[  288.373982][ T9826] total_active_anon 123092992
[  288.385483][ T9826] total_inactive_file 0
[  288.389694][ T9826] total_active_file 0
[  288.531255][T10338] misc userio: Invalid payload size
[  288.543076][ T9826] total_unevictable 0
[  288.547389][T10339] netlink: 11 bytes leftover after parsing attributes in process `syz.4.1268'.
[  288.560657][ T9826] anon_cost 0
[  288.564007][ T9826] file_cost 0
[  288.585159][ T9826] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1178,pid=9829,uid=0
[  288.665381][T10343] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1270'.
[  288.696144][ T9826] Memory cgroup out of memory: Killed process 9829 (syz.2.1178) total-vm:131564kB, anon-rss:884kB, file-rss:23260kB, shmem-rss:28024kB, UID:0 pgtables:176kB oom_score_adj:1000
[  288.839560][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout
[  288.839846][ T5836] Bluetooth: hci0: command 0x0406 tx timeout
[  289.031643][T10358] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1275'.
[  289.078236][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  289.303778][T10365] FAULT_INJECTION: forcing a failure.
[  289.303778][T10365] name failslab, interval 1, probability 0, space 0, times 0
[  289.341196][T10365] CPU: 0 UID: 0 PID: 10365 Comm: syz.4.1276 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  289.352036][T10365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  289.362128][T10365] Call Trace:
[  289.365445][T10365]  <TASK>
[  289.368411][T10365]  dump_stack_lvl+0x16c/0x1f0
[  289.373135][T10365]  should_fail_ex+0x497/0x5b0
[  289.377868][T10365]  ? fs_reclaim_acquire+0xae/0x150
[  289.383045][T10365]  should_failslab+0xc2/0x120
[  289.387776][T10365]  __kmalloc_node_noprof+0xd1/0x520
[  289.393025][T10365]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  289.398539][T10365]  ? __pfx_lock_release+0x10/0x10
[  289.403626][T10365]  __kvmalloc_node_noprof+0xad/0x1a0
[  289.408978][T10365]  seq_read_iter+0x82a/0x12b0
[  289.413719][T10365]  seq_read+0x39f/0x4e0
[  289.417929][T10365]  ? __pfx_seq_read+0x10/0x10
[  289.422770][T10365]  ? __pfx_seq_read+0x10/0x10
[  289.427490][T10365]  proc_reg_read+0x23d/0x330
[  289.432127][T10365]  ? __pfx_proc_reg_read+0x10/0x10
[  289.437296][T10365]  vfs_read+0x1df/0xbe0
[  289.441501][T10365]  ? __fget_files+0x1fc/0x3a0
[  289.446233][T10365]  ? __pfx___mutex_lock+0x10/0x10
[  289.451487][T10365]  ? __pfx_vfs_read+0x10/0x10
[  289.456205][T10365]  ? __fget_files+0x206/0x3a0
[  289.460905][T10365]  ksys_read+0x12b/0x250
[  289.465248][T10365]  ? __pfx_ksys_read+0x10/0x10
[  289.470032][T10365]  do_syscall_64+0xcd/0x250
[  289.474548][T10365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.480454][T10365] RIP: 0033:0x7fdf63185d19
[  289.484878][T10365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  289.504505][T10365] RSP: 002b:00007fdf64039038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  289.512939][T10365] RAX: ffffffffffffffda RBX: 00007fdf63375fa0 RCX: 00007fdf63185d19
[  289.520923][T10365] RDX: 000000000000000a RSI: 00000000200000c0 RDI: 0000000000000003
[  289.528916][T10365] RBP: 00007fdf64039090 R08: 0000000000000000 R09: 0000000000000000
[  289.536900][T10365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  289.544878][T10365] R13: 0000000000000000 R14: 00007fdf63375fa0 R15: 00007ffdd35b33d8
[  289.552875][T10365]  </TASK>
[  289.555917][    C0] vkms_vblank_simulate: vblank timer overrun
[  289.726705][T10360] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  289.744115][T10360] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  289.832928][T10376] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1277'.
[  289.977040][T10360] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  289.999783][T10360] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  290.756458][T10396] FAULT_INJECTION: forcing a failure.
[  290.756458][T10396] name failslab, interval 1, probability 0, space 0, times 0
[  290.788898][T10396] CPU: 0 UID: 0 PID: 10396 Comm: syz.1.1284 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  290.799728][T10396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  290.809823][T10396] Call Trace:
[  290.813128][T10396]  <TASK>
[  290.816090][T10396]  dump_stack_lvl+0x16c/0x1f0
[  290.820807][T10396]  should_fail_ex+0x497/0x5b0
[  290.825521][T10396]  ? fs_reclaim_acquire+0xae/0x150
[  290.830671][T10396]  should_failslab+0xc2/0x120
[  290.835395][T10396]  __kmalloc_noprof+0xce/0x4f0
[  290.840202][T10396]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  290.845873][T10396]  ? tomoyo_realpath_from_path+0xbf/0x710
[  290.851638][T10396]  tomoyo_realpath_from_path+0xbf/0x710
[  290.857236][T10396]  ? tomoyo_path_number_perm+0x235/0x5b0
[  290.862922][T10396]  tomoyo_path_number_perm+0x248/0x5b0
[  290.868427][T10396]  ? tomoyo_path_number_perm+0x235/0x5b0
[  290.874109][T10396]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  290.880175][T10396]  ? __pfx_lock_release+0x10/0x10
[  290.885251][T10396]  ? trace_lock_acquire+0x14e/0x1f0
[  290.890499][T10396]  ? lock_acquire+0x2f/0xb0
[  290.895033][T10396]  ? __fget_files+0x40/0x3a0
[  290.899640][T10396]  ? __fget_files+0x206/0x3a0
[  290.904352][T10396]  security_file_ioctl+0x9b/0x240
[  290.909385][T10396]  __x64_sys_ioctl+0xb7/0x200
[  290.914078][T10396]  do_syscall_64+0xcd/0x250
[  290.918592][T10396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.924495][T10396] RIP: 0033:0x7f12d7785d19
[  290.928916][T10396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.948538][T10396] RSP: 002b:00007f12d8533038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  290.956962][T10396] RAX: ffffffffffffffda RBX: 00007f12d7975fa0 RCX: 00007f12d7785d19
[  290.964939][T10396] RDX: 0000000000000000 RSI: 0000000080045430 RDI: 0000000000000003
[  290.972913][T10396] RBP: 00007f12d8533090 R08: 0000000000000000 R09: 0000000000000000
[  290.980888][T10396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  290.988861][T10396] R13: 0000000000000000 R14: 00007f12d7975fa0 R15: 00007fff41bb4ea8
[  290.996851][T10396]  </TASK>
[  290.999959][    C0] vkms_vblank_simulate: vblank timer overrun
[  291.038033][T10396] ERROR: Out of memory at tomoyo_realpath_from_path.
[  291.226745][ T5836] Bluetooth: hci3: command 0x0406 tx timeout
[  291.783881][ T5836] Bluetooth: hci0: command 0x0406 tx timeout
[  292.102160][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  292.102168][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout
[  293.858757][T10501] netlink: 'syz.1.1303': attribute type 1 has an invalid length.
[  294.180091][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout
[  294.181262][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  294.897316][T10524] ------------[ cut here ]------------
[  294.903478][T10524] skb_assert_len
[  294.938529][T10524] WARNING: CPU: 1 PID: 10524 at ./include/linux/skbuff.h:2680 __dev_queue_xmit+0x234a/0x43e0
[  294.949099][T10524] Modules linked in:
[  294.953035][T10524] CPU: 1 UID: 0 PID: 10524 Comm: syz.1.1311 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  294.963932][T10524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  294.974141][T10524] RIP: 0010:__dev_queue_xmit+0x234a/0x43e0
[  294.980240][T10524] Code: 3c d9 99 f8 45 84 e4 75 25 e8 52 d7 99 f8 c6 05 76 10 06 07 01 90 48 c7 c6 60 6b 7b 8c 48 c7 c7 80 3a 7b 8c e8 77 ae 5a f8 90 <0f> 0b 90 90 e8 2d d7 99 f8 44 0f b6 25 4f 10 06 07 31 ff 44 89 e6
[  295.000136][T10524] RSP: 0018:ffffc900047cf178 EFLAGS: 00010282
[  295.006783][T10524] RAX: 0000000000000000 RBX: ffff88802f6f1c80 RCX: ffffc9000be19000
[  295.015228][T10524] RDX: 0000000000080000 RSI: ffffffff815a16d6 RDI: 0000000000000001
[  295.023315][T10524] RBP: ffff88802f6f1c90 R08: 0000000000000001 R09: 0000000000000000
[  295.031388][T10524] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000
[  295.039467][T10524] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8880313d0000
[  295.047762][T10524] FS:  00007f12d85336c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  295.057080][T10524] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  295.063718][T10524] CR2: 00007ffccb634010 CR3: 0000000084e1e000 CR4: 00000000003526f0
[  295.071884][T10524] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  295.079972][T10524] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  295.088083][T10524] Call Trace:
[  295.091401][T10524]  <TASK>
[  295.094364][T10524]  ? __warn+0xea/0x3c0
[  295.098595][T10524]  ? preempt_schedule_notrace+0x62/0xe0
[  295.104363][T10524]  ? __dev_queue_xmit+0x234a/0x43e0
[  295.109844][T10524]  ? report_bug+0x3c0/0x580
[  295.114413][T10524]  ? handle_bug+0x54/0xa0
[  295.118876][T10524]  ? exc_invalid_op+0x17/0x50
[  295.123614][T10524]  ? asm_exc_invalid_op+0x1a/0x20
[  295.128746][T10524]  ? __warn_printk+0x1a6/0x350
[  295.133579][T10524]  ? __dev_queue_xmit+0x234a/0x43e0
[  295.138921][T10524]  ? __dev_queue_xmit+0x2349/0x43e0
[  295.144174][T10524]  ? ___sys_sendmsg+0x135/0x1e0
[  295.149341][T10524]  ? __pfx___dev_queue_xmit+0x10/0x10
[  295.154800][T10524]  ? rcu_is_watching+0x12/0xc0
[  295.159725][T10524]  ? trace_kmem_cache_alloc+0x2d/0xd0
[  295.165152][T10524]  ? kmem_cache_alloc_noprof+0x21b/0x3b0
[  295.170896][T10524]  ? __copy_skb_header+0x2e8/0x5b0
[  295.176144][T10524]  ? __skb_clone+0x570/0x760
[  295.180800][T10524]  netlink_deliver_tap+0xa61/0xca0
[  295.186029][T10524]  netlink_unicast+0x6b4/0x7f0
[  295.190861][T10524]  ? __pfx_netlink_unicast+0x10/0x10
[  295.196283][T10524]  ? __nla_parse+0x40/0x60
[  295.200773][T10524]  netdev_nl_queue_get_doit+0x37f/0x6a0
[  295.206769][T10524]  genl_family_rcv_msg_doit+0x202/0x2f0
[  295.212424][T10524]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  295.218839][T10524]  ? __dev_queue_xmit+0x89b/0x43e0
[  295.224006][T10524]  ? genl_get_cmd+0x195/0x580
[  295.228828][T10524]  ? __radix_tree_lookup+0x21f/0x2c0
[  295.234173][T10524]  genl_rcv_msg+0x565/0x800
[  295.238807][T10524]  ? __pfx_genl_rcv_msg+0x10/0x10
[  295.243890][T10524]  ? __pfx_netdev_nl_queue_get_doit+0x10/0x10
[  295.250346][T10524]  netlink_rcv_skb+0x165/0x410
[  295.255174][T10524]  ? __pfx_genl_rcv_msg+0x10/0x10
[  295.260522][T10524]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  295.265908][T10524]  ? down_read+0xc9/0x330
[  295.270294][T10524]  ? __pfx_down_read+0x10/0x10
[  295.275114][T10524]  ? netlink_deliver_tap+0x1ae/0xca0
[  295.280569][T10524]  genl_rcv+0x28/0x40
[  295.284616][T10524]  netlink_unicast+0x53c/0x7f0
[  295.289526][T10524]  ? __pfx_netlink_unicast+0x10/0x10
[  295.294865][T10524]  ? __phys_addr_symbol+0x30/0x80
[  295.300011][T10524]  ? __check_object_size+0x488/0x710
[  295.305410][T10524]  netlink_sendmsg+0x8b8/0xd70
[  295.310486][T10524]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.316098][T10524]  ____sys_sendmsg+0x9ae/0xb40
[  295.320924][T10524]  ? copy_msghdr_from_user+0x10b/0x160
[  295.326511][T10524]  ? __pfx_____sys_sendmsg+0x10/0x10
[  295.332390][T10524]  ___sys_sendmsg+0x135/0x1e0
[  295.337264][T10524]  ? __pfx____sys_sendmsg+0x10/0x10
[  295.342539][T10524]  ? __pfx_lock_release+0x10/0x10
[  295.347676][T10524]  ? trace_lock_acquire+0x14e/0x1f0
[  295.353151][T10524]  ? __fget_files+0x206/0x3a0
[  295.357974][T10524]  __sys_sendmsg+0x16e/0x220
[  295.362634][T10524]  ? __pfx___sys_sendmsg+0x10/0x10
[  295.367903][T10524]  ? __x64_sys_futex+0x1e1/0x4c0
[  295.372908][T10524]  do_syscall_64+0xcd/0x250
[  295.377526][T10524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.383512][T10524] RIP: 0033:0x7f12d7785d19
[  295.388036][T10524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  295.408001][T10524] RSP: 002b:00007f12d8533038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  295.416687][T10524] RAX: ffffffffffffffda RBX: 00007f12d7975fa0 RCX: 00007f12d7785d19
[  295.424716][T10524] RDX: 0000000020008810 RSI: 0000000020003040 RDI: 0000000000000004
[  295.432803][T10524] RBP: 00007f12d7801a20 R08: 0000000000000000 R09: 0000000000000000
[  295.440902][T10524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  295.449012][T10524] R13: 0000000000000000 R14: 00007f12d7975fa0 R15: 00007fff41bb4ea8
[  295.457320][T10524]  </TASK>
[  295.460392][T10524] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  295.467721][T10524] CPU: 1 UID: 0 PID: 10524 Comm: syz.1.1311 Not tainted 6.13.0-rc2-syzkaller-00031-gf92f4749861b #0
[  295.478615][T10524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  295.488713][T10524] Call Trace:
[  295.492073][T10524]  <TASK>
[  295.495035][T10524]  dump_stack_lvl+0x3d/0x1f0
[  295.499679][T10524]  panic+0x71d/0x800
[  295.503631][T10524]  ? __pfx_panic+0x10/0x10
[  295.508100][T10524]  ? show_trace_log_lvl+0x29d/0x3d0
[  295.513365][T10524]  ? __dev_queue_xmit+0x234a/0x43e0
[  295.518619][T10524]  check_panic_on_warn+0xab/0xb0
[  295.523624][T10524]  __warn+0xf6/0x3c0
[  295.527571][T10524]  ? preempt_schedule_notrace+0x62/0xe0
[  295.533168][T10524]  ? __dev_queue_xmit+0x234a/0x43e0
[  295.538414][T10524]  report_bug+0x3c0/0x580
[  295.542794][T10524]  handle_bug+0x54/0xa0
[  295.546994][T10524]  exc_invalid_op+0x17/0x50
[  295.551546][T10524]  asm_exc_invalid_op+0x1a/0x20
[  295.556447][T10524] RIP: 0010:__dev_queue_xmit+0x234a/0x43e0
[  295.562298][T10524] Code: 3c d9 99 f8 45 84 e4 75 25 e8 52 d7 99 f8 c6 05 76 10 06 07 01 90 48 c7 c6 60 6b 7b 8c 48 c7 c7 80 3a 7b 8c e8 77 ae 5a f8 90 <0f> 0b 90 90 e8 2d d7 99 f8 44 0f b6 25 4f 10 06 07 31 ff 44 89 e6
[  295.581942][T10524] RSP: 0018:ffffc900047cf178 EFLAGS: 00010282
[  295.588053][T10524] RAX: 0000000000000000 RBX: ffff88802f6f1c80 RCX: ffffc9000be19000
[  295.596062][T10524] RDX: 0000000000080000 RSI: ffffffff815a16d6 RDI: 0000000000000001
[  295.604073][T10524] RBP: ffff88802f6f1c90 R08: 0000000000000001 R09: 0000000000000000
[  295.612082][T10524] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000
[  295.620093][T10524] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8880313d0000
[  295.628113][T10524]  ? __warn_printk+0x1a6/0x350
[  295.632943][T10524]  ? __dev_queue_xmit+0x2349/0x43e0
[  295.638188][T10524]  ? ___sys_sendmsg+0x135/0x1e0
[  295.643099][T10524]  ? __pfx___dev_queue_xmit+0x10/0x10
[  295.648545][T10524]  ? rcu_is_watching+0x12/0xc0
[  295.653361][T10524]  ? trace_kmem_cache_alloc+0x2d/0xd0
[  295.658786][T10524]  ? kmem_cache_alloc_noprof+0x21b/0x3b0
[  295.664463][T10524]  ? __copy_skb_header+0x2e8/0x5b0
[  295.669624][T10524]  ? __skb_clone+0x570/0x760
[  295.674267][T10524]  netlink_deliver_tap+0xa61/0xca0
[  295.679445][T10524]  netlink_unicast+0x6b4/0x7f0
[  295.684256][T10524]  ? __pfx_netlink_unicast+0x10/0x10
[  295.689588][T10524]  ? __nla_parse+0x40/0x60
[  295.694065][T10524]  netdev_nl_queue_get_doit+0x37f/0x6a0
[  295.699660][T10524]  genl_family_rcv_msg_doit+0x202/0x2f0
[  295.705258][T10524]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  295.711357][T10524]  ? __dev_queue_xmit+0x89b/0x43e0
[  295.716500][T10524]  ? genl_get_cmd+0x195/0x580
[  295.721236][T10524]  ? __radix_tree_lookup+0x21f/0x2c0
[  295.726577][T10524]  genl_rcv_msg+0x565/0x800
[  295.731125][T10524]  ? __pfx_genl_rcv_msg+0x10/0x10
[  295.736190][T10524]  ? __pfx_netdev_nl_queue_get_doit+0x10/0x10
[  295.742309][T10524]  netlink_rcv_skb+0x165/0x410
[  295.747111][T10524]  ? __pfx_genl_rcv_msg+0x10/0x10
[  295.752176][T10524]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  295.757519][T10524]  ? down_read+0xc9/0x330
[  295.761912][T10524]  ? __pfx_down_read+0x10/0x10
[  295.766734][T10524]  ? netlink_deliver_tap+0x1ae/0xca0
[  295.772085][T10524]  genl_rcv+0x28/0x40
[  295.776120][T10524]  netlink_unicast+0x53c/0x7f0
[  295.780931][T10524]  ? __pfx_netlink_unicast+0x10/0x10
[  295.786259][T10524]  ? __phys_addr_symbol+0x30/0x80
[  295.791335][T10524]  ? __check_object_size+0x488/0x710
[  295.796679][T10524]  netlink_sendmsg+0x8b8/0xd70
[  295.801493][T10524]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.806840][T10524]  ____sys_sendmsg+0x9ae/0xb40
[  295.811647][T10524]  ? copy_msghdr_from_user+0x10b/0x160
[  295.817165][T10524]  ? __pfx_____sys_sendmsg+0x10/0x10
[  295.822506][T10524]  ___sys_sendmsg+0x135/0x1e0
[  295.827239][T10524]  ? __pfx____sys_sendmsg+0x10/0x10
[  295.832501][T10524]  ? __pfx_lock_release+0x10/0x10
[  295.837595][T10524]  ? trace_lock_acquire+0x14e/0x1f0
[  295.842850][T10524]  ? __fget_files+0x206/0x3a0
[  295.847582][T10524]  __sys_sendmsg+0x16e/0x220
[  295.852220][T10524]  ? __pfx___sys_sendmsg+0x10/0x10
[  295.857395][T10524]  ? __x64_sys_futex+0x1e1/0x4c0
[  295.862408][T10524]  do_syscall_64+0xcd/0x250
[  295.866956][T10524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.872901][T10524] RIP: 0033:0x7f12d7785d19
[  295.877351][T10524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  295.897000][T10524] RSP: 002b:00007f12d8533038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  295.905462][T10524] RAX: ffffffffffffffda RBX: 00007f12d7975fa0 RCX: 00007f12d7785d19
[  295.913474][T10524] RDX: 0000000020008810 RSI: 0000000020003040 RDI: 0000000000000004
[  295.921485][T10524] RBP: 00007f12d7801a20 R08: 0000000000000000 R09: 0000000000000000
[  295.929493][T10524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  295.937508][T10524] R13: 0000000000000000 R14: 00007f12d7975fa0 R15: 00007fff41bb4ea8
[  295.945551][T10524]  </TASK>
[  295.948846][T10524] Kernel Offset: disabled
[  295.953218][T10524] Rebooting in 86400 seconds..