last executing test programs:

8m5.217521872s ago: executing program 1 (id=67):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000100), 0x103000, 0x0)
ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$auto_VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000bc0)={0x0, <r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$auto_batadv(0x0, r1)
fstat$auto(0x2, 0x0)
ioctl$auto(0xc8, 0x401054d5, 0x0)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000024, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
clone3$auto(&(0x7f0000000000)={0x1, 0x8, 0x8, 0x0, 0xc4a9, 0x9, 0x5, 0x8, 0x9, 0x4, 0x8}, 0x8)

8m4.039901411s ago: executing program 1 (id=69):
ioctl$auto_VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, &(0x7f00000000c0)={0xbf3, <r0=>0xffffffffffffffff})
sendmsg$auto_NL80211_CMD_SET_REKEY_OFFLOAD(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x2c, 0x0, 0x10, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0x3}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x6}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x7fff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x10)
r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
r2 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
fcntl$auto(r2, 0x0, 0xa8)
read$auto_page_owner_stack_operations_page_owner(r2, &(0x7f0000000240)=""/130, 0x82)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001140)='/sys/devices/virtual/block/zram0/comp_algorithm\x00', 0x20b42, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)="de91b83a075ce51fff544f85b0b6d328f3beb9b8634fd16bf2701cb13a2d93abd414c9a1586e4fbc7b163c42c4adfad8804de8783614b2dcf995a43c8cf63d102facaebb7019f67c4241ee77139ef43eace15fcb4ca071ad7ecd284cb135be34415cca234d6a11827f2178354be881a06111504ccdbebb0a", 0x78)
sendmsg$auto_IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010028bd7000fedbdf250c0000001d000280d2f7abf5204c1c01107d33d6d37bc50e476301cfa9375e0781"], 0x34}, 0x1, 0x0, 0x0, 0x20004014}, 0x4014)
pwrite64$auto(0xc8, &(0x7f0000000040)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/231, 0xfdf2, 0x3a)
sendfile$auto(0x1, r1, 0x0, 0xef75)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd12\x00', 0x8001, 0x0)
ioctl$auto_def_blk_fops_fs(r4, 0xab07, 0x0)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000001700)=""/4096, 0x1000)
openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000000), 0x151841, 0x0)

8m3.016243848s ago: executing program 1 (id=74):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r1, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000140)={0x14, r2, 0x1, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0xc010}, 0x20000000)
sendmsg$auto_NFSD_CMD_RPC_STATUS_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r2, 0x309, 0x70bd27, 0x25dfdbfc}, 0x14}, 0x1, 0xf0ffffffffffff, 0x0, 0x4000000}, 0x0)

8m2.619833865s ago: executing program 1 (id=75):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x2, 0x88)
mmap$auto(0x0, 0x4, 0x4000000020df, 0x40eb2, 0x402, 0x300000000000)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000480)={&(0x7f0000000380)={0x30, 0x0, 0x400, 0x70bd25, 0x25dfdbfe, {}, [@GTPA_PEER_ADDRESS={0x8, 0x4, @empty}, @GTPA_PEER_ADDR6={0x14, 0xb, @mcast2}]}, 0x30}, 0x1, 0x0, 0x0, 0x49ea3781fd6417d2}, 0x40040)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv6/conf/batadv_slave_0/ra_defrtr_metric\x00', 0x202, 0x0)
sendfile$auto(r0, r0, 0x0, 0x7fffe000)
write$auto(r0, &(0x7f0000000000)='*@-\x00', 0x2)
ioctl$auto(0xffffffffffffffff, 0x4b4a, 0x9)
connect$auto(0x3, 0x0, 0x55)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/dummy_hcd.2/driver_override\x00', 0xc0202, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
socket(0x2, 0x5, 0x0)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f00000001c0), r1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$', @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
setsockopt$auto(0x4, 0x0, 0x485, 0xfffffffffffffffe, 0x0)
preadv$auto(0xffffffff, &(0x7f00000003c0)={&(0x7f0000000380), 0x1}, 0x4, 0x6, 0x42)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x401bf, 0x7352, 0x3d, 0x200000000065f, 0x1ffde, 0x7, 0x3, 0x2, 0x9, 0x3, 0x5, 0x4, 0x3000, 0x9, 0x6, 0x10003, 0x80, 0x8, 0x0, 0x7, 0x1ffc, 0x203, 0x400, 0x84, [0x1, 0x0, 0x0, 0x100, 0x2000000000000000, 0x2000, 0xfffffffffffffffd, 0x40a, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x0, 0x3, 0x1, 0x4, 0x7, 0x7ff, 0xfffffffffffffffd, 0x200000000000, 0x0, 0xffffffffefffffff, 0x3, 0x0, 0x0, 0x2, 0xfffffffffffffffd, 0x400000000005b8, 0xc, 0x4000000000, 0x8, 0x4, 0x6, 0xffffffffffffffbf, 0x890, 0x800000000000a, 0xfffffffffffffffc, 0x1000, 0xa38, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x4000000000, 0x6, 0x0, 0x100000]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x3e, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)

8m1.56167315s ago: executing program 1 (id=77):
r0 = socket(0x10, 0x2, 0x0)
r1 = socket(0x2, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00042cbd7000fedbdf250300000006000600ff07000008000200", @ANYRES32=0x0, @ANYBLOB="0800028005257636d4a305644e1d564431979f5c0c2100"/33, @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000080003003c00000008000300df0f0000"], 0x60}, 0x1, 0x0, 0x0, 0x40080}, 0x9c0a7fc04b58d643)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='\b\x00\x00\x00', @ANYRES64=0x0], 0x3c}, 0x1, 0x0, 0x0, 0x4002080}, 0x10008001)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x4040, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0xa4300, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r1, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0)
r3 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x7, 0xfffffffffffffffa, 0x1ffde, 0x101, 0x6, 0x2, 0x9, 0x3, 0xffffffffffffffff, 0x4, 0xb4, 0x9, 0x2, 0x10000, 0x80, 0x7, 0x0, 0x401, 0x2000, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x0, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffffffffffffffd, 0x7, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x3, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x890, 0x8000000000005, 0xfffffffffffffffa, 0x3, 0xa38, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x4000000000]}, 0x1fe, 0x200d)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
recvmmsg$auto(r3, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
r4 = socket(0x10, 0x2, 0x0)
r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES16=r5], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="00536c4f207862e843225cf344be487419f70fdfa916043174d5d5f0909aa476f65abc35e4e78e7606279e22b7125694c8b2e5289c89d02e8d5ceddd592de29df5110518e3d18304bfddf1206836d08eeb5f4748694901910f06cc7cc4d477673e4bd6976809324b854b87e92b88c3a0f57b4faebff53d7c3273150b0a09c12173aa216bc45370291b045bc4a734f51c9be9a7bf9f0d", @ANYRES32=r5, @ANYRES64=r1], 0x1ac}, 0x1, 0x0, 0x0, 0x448c0}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180), 0x2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0xb, 0x4008)
r6 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000080), r2)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
pipe$auto(&(0x7f0000000000))
r7 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto_def_blk_fops_fs(r7, 0x1, &(0x7f0000000000))
sendmsg$auto_NFC_CMD_GET_DEVICE(r1, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="020027bd7000fedbdf250100000005000a0005000000050014000000000005000b00ea000000050014000000000008000e000900000005000f003000000008000300f500000005000c000b0000000800150005000000"], 0x5c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mbind$auto(0x0, 0x8fa9d, 0x2, 0x0, 0x400, 0x3)

8m0.67987339s ago: executing program 1 (id=78):
openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x101401, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
socket(0x2, 0x1, 0x0)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mtd0ro\x00', 0x2, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_clone3(&(0x7f0000001200)={0x20000000, 0x0, 0x0, 0x0, {0x14}, 0x0, 0x0, 0x0, &(0x7f00000011c0)=[0xffffffffffffffff], 0x1}, 0x58)
socket(0xa, 0x801, 0x84)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0)
socketpair$auto(0x2, 0x2, 0x8000000000000000, 0x0)
socket(0x25, 0x5, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)

7m45.528915901s ago: executing program 32 (id=78):
openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x101401, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
socket(0x2, 0x1, 0x0)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mtd0ro\x00', 0x2, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_clone3(&(0x7f0000001200)={0x20000000, 0x0, 0x0, 0x0, {0x14}, 0x0, 0x0, 0x0, &(0x7f00000011c0)=[0xffffffffffffffff], 0x1}, 0x58)
socket(0xa, 0x801, 0x84)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0)
socketpair$auto(0x2, 0x2, 0x8000000000000000, 0x0)
socket(0x25, 0x5, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)

5.55855239s ago: executing program 2 (id=3099):
keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0x0, 0x11)
keyctl$auto(0xe, 0x2, 0x76f, 0x9, 0xf13)
r0 = openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0)
socket(0x28, 0x5, 0x0)
connect$auto(0x3, &(0x7f0000000140)=@vsock={0x28, 0x0, 0x2710, @local}, 0x55)
set_mempolicy$auto(0x2002, &(0x7f0000000080)=0x7e, 0x4)
writev$auto(r0, &(0x7f0000000180)={&(0x7f0000000340)="36436e6849c801f0a0d91382ddda86fc388b97fc90fd1f4b71483d304ce48ed11c86e065299731cb4a72b3b2c892c7746dde1c99fc2781f902fa0f90300f002e21cae582d2dc729801d1081b763e5e89e68775765b2153bdbe8dd10a13ff4017f415a4d55560ea39faeff6f6472a453ca74105af3fd98103187e76848942523f5cc342585acaf1b13327252e2851e36011e5ab02aad3", 0x101}, 0x2)
get_mempolicy$auto(0x0, 0xfffffffffffffffc, 0x400, 0x0, 0x0)
ioctl$auto_BINDER_CTL_ADD(r0, 0xc1086201, &(0x7f0000000200)={"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", 0x5, 0x7})
ioctl$auto_BINDER_CTL_ADD(r0, 0xc1086201, &(0x7f0000000000)={"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", 0x7, 0x2})

5.346089068s ago: executing program 2 (id=3102):
r0 = epoll_create$auto(0x2b)
r1 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000000c0), 0x4040, 0x0)
r3 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dri/card1\x00', 0x129800, 0x0)
ioctl$auto(r3, 0x921164a3, 0xffffffffffffffff)
stat$auto(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0xe, 0x4d4, 0x6, 0x5, <r4=>0xee01, 0xee01, 0x0, 0x2, 0xfffffffffffffffe, 0xb2, 0xffffffffffffffff, 0xfffffffffffffff6, 0x129, 0x7, 0x200000000, 0x0, 0xfab})
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd12\x00', 0x8001, 0x0)
ioctl$auto_def_blk_fops_fs(r5, 0xab0a, 0x0)
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_FLUSH(r0, &(0x7f0000000780)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000740)={&(0x7f0000000200)={0x4cc, r1, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@THERMAL_GENL_ATTR_TZ_CDEV_WEIGHT={0x8, 0xc, 0xffffffff}, @THERMAL_GENL_ATTR_TZ_TRIP={0x48, 0x5, 0x0, 0x1, [@typed={0x4, 0x1a, 0x0, 0x0, @binary}, @nested={0x32, 0x26, 0x0, 0x1, [@generic="54ff736d53d1b9", @nested={0x4, 0x7e}, @generic="661eaf0105bae129ebd46dc4b356df2fe41814bfdb606532f2a7d345c14982ac76d4d0"]}, @generic="4e9b8ae7", @typed={0x8, 0x14b, 0x0, 0x0, @fd=r2}]}, @THERMAL_GENL_ATTR_CPU_CAPABILITY_PERFORMANCE={0x8, 0x17, 0x7835}, @THERMAL_GENL_ATTR_CPU_CAPABILITY={0x22c, 0x15, 0x0, 0x1, [@typed={0x8, 0x4e, 0x0, 0x0, @fd=r3}, @nested={0x24, 0x3a, 0x0, 0x1, [@typed={0x8, 0x32, 0x0, 0x0, @uid=r4}, @generic, @typed={0x4, 0xe7}, @nested={0x4, 0x134}, @generic="eb0e011f334012bb", @typed={0x8, 0x136, 0x0, 0x0, @fd=r5}]}, @typed={0x8, 0xa2, 0x0, 0x0, @ipv4=@broadcast}, @nested={0x1e3, 0xae, 0x0, 0x1, [@typed={0xe, 0x40, 0x0, 0x0, @str='/dev/vmci\x00'}, @nested={0x4, 0x5d}, @generic="9584ac94dda70f1ecc11a43f16d98e6d404d7b879b4eab0c0ea9e2e823f54eb90c6c2b29e06af54b8e8961b6f3d36d2c09d02ba3e70190fe9f18e3a3189c2b763a1839b46d25d2794a11051bd59e66fd44240f282a1d63c5e71ac6dfcb4ec57575b480436f667ffc8bf7e1637cf9d270bdbf38675737708129d501c4b8eddd46a58421e0cf065f41b1e8ef5b7f7d2b823e8f36844f40369a063e9c9c5bdd5c0210ffe0655add5933e0c7b02b83a785f05ff5ba18af4ad6170a17f38827fee3128bdea35b534ba348b00322080ba6", @nested={0x4, 0x3d}, @generic="bd0f6e02ea8e8630a6df18f1b2ef7a83e5b9e4efa719d8eab7429ac8b44823102b12bb4bcbe853172cf87a8f6a9b420d3e035e91943651f979c0697af787ca41fe1352cbcda18ab29ae8ac96610b59c6c51e3823cc0b99300006de70e6ed1defa848bf2a5f0f077f77ed8e8837909885a3fd8df10a8bb2ee76cdf68c0675c8a4c66166f4b3cf0164cdd8f129cb3df0f075db7ade3f8f4d4d714df42415584b7f3d878139895d93dd995bb0affc5182cadfdbbb7f4771c7b4d4b1b7df192d375e4199fe6508ff18a597452ad98965f0d5f01f7d4a5105ce0f47958f19d4c2132a1e5f17a2eb5d60cd08ed926999c5520eec", @nested={0x4, 0x8c}, @nested={0x4, 0xc2}]}, @typed={0xe, 0x149, 0x0, 0x0, @str='/dev/vmci\x00'}]}, @THERMAL_GENL_ATTR_TZ_TRIP_HYST={0x8, 0x9, 0x6}, @THERMAL_GENL_ATTR_TZ_GOV={0x219, 0xd, 0x0, 0x1, [@generic="4f1ae907cb074b9a7123ee528e220adca58c8c6db74f4a7a873f0022119d639e2b761a1e1d08bd028f7ee451c21bbb14b54887a31c7de1c3bcb8b18bb2cf0b945b8068847f04edf34923885404f7a197d999006b630ad0079ac43259a9cb2376b7208f9585ebc29eaab4de7e55cea7412f579db279e4ffd2ad2613e5c395864b6bb82db7669883ad770f3f53aab38a09b4017adf2a5a4fc7dff49b670b52f597802634daa62b01f01e490cfca7974289172742c3fa0b11f45044bb23b694f2ffd1493e76c6911a10b5269024f1d0d46123c5b704796fbb3f9b8a0bfcc9eeee98c70c1b210e896208e48fe783fe20fb355008", @generic="853b21901c6ea2e172fac952f0ae5e9d7a7532dbf94009b15d99ebac68c934dde211628df94aed35a0ade98001dfd71100004d9c904aa6a994ec08c379ecc8750f8e9a89813bf4bfc4064a9be5ee66", @generic="d67f71cb66b88813d51399113479686db391df60659898f5fd5c814a6f9d01d0333177b8c3106d639b4a128a7bf51bb424d64fe440ba979e94d4814c1eba8b6beba7725c356317a52a5932f5005f13b4286b0dc2656ae6b7493660607ce0cdd8eda28f4042d080816328fa4df6a0f269760ea011650c8d1f2cc30097623743edb64e38460617a0205349f74b7970b7c6467cd7b49c", @generic="4946d9359bb0278831f534b5a363e8634fad7065c2dfd8fd57030ead4e05abde8936919d1c2935fc2639fe8ea16c0ba46694c63f574c03", @typed={0x8, 0x9d, 0x0, 0x0, @u32=0x9}]}, @THERMAL_GENL_ATTR_TZ_TRIP_HYST={0x8, 0x9, 0x4}, @THERMAL_GENL_ATTR_TZ_TRIP_ID={0x8, 0x6, 0x1}]}, 0x4cc}, 0x1, 0x0, 0x0, 0x20000010}, 0x24040000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r6 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r6, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f00000051c0)=ANY=[@ANYBLOB="140000000614af"], 0x14}, 0x1, 0x0, 0x0, 0x6008042}, 0x4000004)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000)
fcntl$auto(0x8000000000000001, 0x5, 0x8)
clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
select$auto(0x0, &(0x7f0000000040)={[0x9, 0x4, 0x34, 0x9, 0x1, 0x1, 0xa, 0x6, 0x5, 0x1, 0x0, 0xcf, 0x5, 0x213, 0x5, 0xb98]}, 0x0, 0x0, 0x0)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf25020000002c00018028003c8008001b"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="04000000", @ANYRES16=0x0, @ANYBLOB="10002cbd7000fddbdf250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nbd6\x00', 0x8001, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/module/usb_storage/parameters/delay_use\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f00000000c0)=""/40, 0x28)
shutdown$auto(r7, 0x3)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mq_timedsend$auto(0x0, 0x0, 0x7, 0x81, &(0x7f0000000040)={0x60000000000, 0x8})
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)

4.369221999s ago: executing program 2 (id=3111):
openat$auto_supply_map_fops_(0xffffffffffffff9c, &(0x7f00000017c0), 0x400, 0x0) (async)
r0 = socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) (async)
shutdown$auto(0x200000003, 0x2)
sendto$auto(r0, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) (async)
r1 = memfd_secret$auto(0x0) (async)
mmap$auto(0xfffffffffffffffe, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) (async)
ftruncate$auto(0x3, 0x700) (async)
r2 = socketpair$auto(0x1e, 0x8, 0x8000000000000000, 0x0)
accept$auto(r2, &(0x7f0000000140)=@qipcrtr={0x2a, 0x2, 0x8000}, &(0x7f0000000180)=0x4)
mkdir$auto(0x0, 0x7)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_GET(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000001280)={&(0x7f0000001300)={0x14, r4, 0x9d0da3446261172d, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x20008080) (async)
sendmsg$auto_TIPC_NL_KEY_FLUSH(r1, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000000c0)={&(0x7f00000039c0)={0x110c, r4, 0x2, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x10f8, 0x5, 0x0, 0x1, [@typed={0x8, 0xcd, 0x0, 0x0, @pid}, @nested={0x10e0, 0x7a, 0x0, 0x1, [@typed={0x14, 0x6e, 0x0, 0x0, @ipv6=@loopback}, @generic="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", @generic="46c7facd91bade0819c3f2f7491d6138ea6ab834b29b4d6bd3e1619fb53ad04dcd7f3b856a47596d16a404bf68bbc639c23734efc587a66175a9a07152c9a477539b40976d03a9548dec2e7af4b526ec7c81f60ab71700043aba65eb0c72a82e54b2874ae4a6907db42a80e5f911478092413d3ed642662c43ee8c0c601dda2c1ab3a9b075d18fe987e64ef20a610e2fe7b258286e5edb96fba14313d638839b0aef4f089b8753dda4e1b38db6753661d7a88ecf", @typed={0x14, 0x9b, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @remote}}]}, @typed={0x8, 0x111, 0x0, 0x0, @u32=0x3ff}, @typed={0x4}]}]}, 0x110c}, 0x1, 0x0, 0x0, 0x801}, 0x2000004)

4.07558706s ago: executing program 0 (id=3112):
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r0 = getpid()
futex$auto(0x0, 0x7, 0x0, 0x0, 0x0, 0x80000003)
r1 = socket(0x10, 0x2, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="1a00279e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0)
r2 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x8000, 0x0)
r3 = socketpair$auto(0x1, 0x40, 0x1, &(0x7f0000000040)=0x80000001)
sendmmsg$auto(r3, &(0x7f0000000240)={{&(0x7f00000002c0)="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", 0x400, &(0x7f0000000100)={&(0x7f00000000c0)="f0a0b811531255d8233d21eb49722486e000a22e1dc981df4ca59f7eb619e45f", 0xe}, 0x73, &(0x7f0000000140)="b1cf5f4b4814b20839c1fc1d395c29026ef07575c474e287b7666ef8729dc6eac22bce165d463c7a590e2ce57cb57f62c0c90bb453ac37ffe450811d5efe25cc6b9d23e12074862ed4123d781b300d31ee5b897479d19c200f97e149feac60fa6cc7165215a8742f4a25b17c59d6a4f93dddc64b79cf1651f6198e2400ee7c049c132a3468745de123a56a0ff024974b4ba2741faa0b097933bf27835e99ffa513ecd7ef5f4996077a6e8ba84d3f83682a5a78dc1231b7c82c7473cd7f0c581974460984a8be992b76e5e75a9584cff3b0cf17c4b80990c4fc31b4ed42443327dd02bba46d2c97f42e", 0x9, 0x7}, 0x5}, 0x94, 0x4)
ioctl$auto_I2C_SMBUS(r2, 0x720, 0x14)

3.799988673s ago: executing program 0 (id=3116):
socket(0x2, 0x2, 0x106)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x1, 0x0, 0x14)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x541881, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0xffff8001, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
select$auto(0x7, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x0, 0xfffffffffffffff6, 0x7, 0xfffffffffffdffff, 0xdffffffffffffff8, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x1, 0x9]}, 0x0, 0x0)
socketpair$auto(0x1e, 0x5, 0x8, 0x0)
r0 = socket(0x3, 0x801, 0x84)
r1 = getsockopt$auto(r0, 0x84, 0x75, 0x0, &(0x7f0000000000)=0x9000c)
r2 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0)
ioctl$auto_DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, 0x0)
ioctl$auto_def_blk_fops_fs(r1, 0x8000000080000000, &(0x7f0000000300)="d3cad9c767c649cfe3064a735531a926632f0df9b72b0508a1715a0d16690c8492d01fdafdb57dafc539a03c19dc2fe00ecc75afc1569be2de81ecea86656eed3b558ea5257b440e6777190da773334af35bc656ed51e5298ea5903ce8988cc68642bfccd2775222dcd8b6dab730d498b0be1b0bdd28588d977fa94c3d3fbf29b37e1463cfb59f64bd416c21a97dd388b717115a86e1902f70e43331443db5e12e1d57ade2b7d2854c1a06c03d5b199d43e1388ca4af54178578772d82e01f32da1a9c88fc74e596e02fe4b47cec400c599a12437eb730bd5dfd23837fde390fc88c8ea63e3b437908c114193a")
mmap$auto(0x0, 0x9, 0xff7, 0x8000000008012, 0x1000000004, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x3, 0xffffffffffff0001, 0x15)
clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
socket(0x10, 0x2, 0x0)

3.668237927s ago: executing program 4 (id=3118):
unshare$auto(0x40000080)
unshare$auto(0x80)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48401, 0x0)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_S_MODE(r0, 0x40046109, &(0x7f0000002c40)=0xf0)
bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x1e, 0x5}, 0x7)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x141000, 0x0)
preadv$auto(0x40000000000003, 0x0, 0x6, 0x7fffffff, 0x5)
write$auto(0x3, 0x0, 0xfffffdef)
msgctl$auto(0x0, 0x3, 0x0)
socket(0x10, 0xa, 0x5)
close_range$auto(0x2, 0x8, 0x0)

3.568053932s ago: executing program 3 (id=3119):
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
r0 = open(0x0, 0xeee00, 0x31)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
prctl$auto(0x10000000024, 0x2, 0x2008, 0x4000000c, 0x80001)
nanosleep$auto(&(0x7f0000000040)={0x1, 0x7}, &(0x7f0000000080)={0x3, 0x8})
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
mmap$auto(0x2, 0x4020009, 0x100003, 0x100000010, 0x401, 0x8000)
setns(0xffffffffffffffff, 0x0)
clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
r1 = socket(0xa, 0x2, 0x73)
write$auto_msr_fops_msr(r0, 0x0, 0x0)
getsockname$auto(r1, &(0x7f0000000240), &(0x7f0000000280)=0xaea)
fcntl$auto(0x0, 0x407, 0x100000)
mlockall$auto(0x7)
mmap$auto(0x0, 0x200004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
memfd_create$auto(&(0x7f0000000000)='A\x00\x00\x00\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\f\x00\x00\v\x00E\xdb\x81\xd9\xd8\xe640\xc6\xa4Sr\x82\xcc\"K\xe1IIT\x00\x00\x00', 0xe)
socket(0x15, 0x5, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @multicast2}, 0x55)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
finit_module$auto(0x3, 0xfffffffffffffffe, 0x400000000004)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)

3.384496973s ago: executing program 2 (id=3120):
unshare$auto(0x40000080)
unshare$auto(0x80)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48401, 0x0)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_S_MODE(r0, 0x40046109, &(0x7f0000002c40)=0xf0)
bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x1e, 0x5}, 0x7)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x141000, 0x0)
preadv$auto(0x40000000000003, 0x0, 0x6, 0x7fffffff, 0x5)
write$auto(0x3, 0x0, 0xfffffdef)
msgctl$auto(0x0, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)

3.332724197s ago: executing program 4 (id=3121):
unshare$auto(0x40000080)
unshare$auto(0x80)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48401, 0x0)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_S_MODE(r0, 0x40046109, &(0x7f0000002c40)=0xf0)
bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x1e, 0x5}, 0x7)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x141000, 0x0)
preadv$auto(0x40000000000003, 0x0, 0x6, 0x7fffffff, 0x5)
close_range$auto(0x2, 0x8, 0x0)

3.015588306s ago: executing program 2 (id=3122):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="24051c27c100dedbdf250307cc0008000200", @ANYRES32=0x0, @ANYBLOB="060007000080000006000700050000000a00050000000000000000000a00010000000000000000000a0001000000000000000000060006000d00000006000600070000000a000100aa"], 0x6c}}, 0x0)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4044040}, 0x24008890)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f00000001c0), 0x20000, 0x0)
io_uring_setup$auto(0xa, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x3, 0x5)
openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/cmdline\x00', 0x90480, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
munlock$auto(0x9, 0x29b9)
socket(0xa, 0x3, 0x3b)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x840000000002, 0x3, 0x100)
connect$auto(0x3, &(0x7f0000000040), 0x53)
getsockopt$auto(0x3, 0x0, 0xe, 0x0, 0x0)

2.993374563s ago: executing program 4 (id=3123):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x3fd, 0x8000)
r1 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r1, 0x114, 0x2710, 0xfffffffffffffffc, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6)
poll$auto(&(0x7f0000000000)={r0, 0x1ff, 0x2f4}, 0x4, 0x7)

2.664387008s ago: executing program 0 (id=3124):
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x40000002, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x0)
fanotify_init$auto(0x5, 0x2)
epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x2, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7001f9dbca250100000008000a00000000000500070000000000080009009c781e"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)

2.664060068s ago: executing program 4 (id=3125):
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_3={0x8, 0x2, 0x18c, 0x4, 0x2, 0x8, 0x4, 0x57b8, 0xfffffff8, "63acf0e05b2d33ebc15774e816ef77cf", 0x0, 0x543, 0xffffffffffffffff, 0x207, 0x0, 0x4, 0x4, 0x2, 0xe, 0xa, @attach_btf_obj_fd, 0xc, 0x7fb, 0x80000200006, 0xa, 0x48000000, 0xa7c2}, 0x102) (async)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (rerun: 64)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
semctl$auto(0x1ff, 0x2, 0x13, 0x1) (async)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f0000000040)={0x0, 0x34000}, 0x4, 0x0, 0x1}, 0xed7138c}, 0x2, 0x9) (async, rerun: 32)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) (rerun: 32)
shutdown$auto(0x200000003, 0x2)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (rerun: 64)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
landlock_create_ruleset$auto(&(0x7f0000000000)={0xff, 0x2, 0x9}, 0x9, 0x0) (async)
landlock_restrict_self$auto(r0, 0x0) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket(0x10, 0x2, 0xc) (async)
eventfd$auto(0x7) (async)
socket(0x3, 0x5, 0x86)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0) (async)
connect$auto(0x3, 0x0, 0x55)
r1 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/cmdline\x00', 0xc2, 0x0)
mprotect$auto(0x9, 0xd2e, 0x8) (async)
ioctl$auto(r1, 0x800454e1, 0x5c8d) (async)
listen$auto(r1, 0x6)

2.523639057s ago: executing program 0 (id=3126):
mmap$auto(0x0, 0x7, 0x1, 0x9b7e, 0xffffffffffffffff, 0x28000)
r0 = socket(0xa, 0x3, 0x2f)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="5e0027b4839f3015398d3b61", @ANYBLOB="1c000000", @ANYRES32, @ANYRES32=r0, @ANYBLOB="11637915dcb1fe56f10f2f4a868b29cf387873858484dc19981d9a9157f4c4e42f08bd7280e60b0e0f83bdb5d20c059442a2088c1fcd119db50d4b4ee326e21fc2d29d0dfed3c4533a"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
r1 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x102000, 0x0)
ioctl$auto(r2, 0x80044941, 0x0)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

1.991032658s ago: executing program 0 (id=3127):
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x40000002, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x0)
fanotify_init$auto(0x5, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
sysfs$auto(0x2, 0x0, 0x0)
fsopen$auto(0x0, 0x1)
epoll_create$auto(0x4)
epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0)
setsockopt$auto(0x0, 0x1, 0x7, 0x0, 0x400006)
ioctl$auto_IOCTL_VMCI_NOTIFICATIONS_RECEIVE(r0, 0x7a6, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x23, 0x80805, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002dbd7001f9dbca250100000008000a00000000000500070000000000080009009c781e010600020000000000080017"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x11, 0x0, 0x302)
poll$auto(&(0x7f0000000000)={<r4=>r1, 0x1, 0x8}, 0x5, 0x400)
listen$auto(r1, 0x3b)
setsockopt$auto(r4, 0x113, 0x3, 0x0, 0x79ad226b)
io_uring_setup$auto(0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x62, 0x0)

1.748372686s ago: executing program 3 (id=3128):
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/manager\x00', 0x40500, 0x0)
mmap$auto(0x0, 0x1, 0xe3, 0x40000000009b72, 0x2, 0xb)
unshare$auto(0x40000080)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
r0 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
write$auto(r0, 0x0, 0x2fb)
r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r1, 0xc0109207, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f0000000100)={0x0, 0x4, 0x7})
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/032/001\x00', 0x2, 0x0)
socket(0xa, 0x2, 0x0)

1.411610834s ago: executing program 4 (id=3129):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
sendmsg$auto_IEEE802154_LLSEC_LIST_KEY(0xffffffffffffffff, 0x0, 0x24000000)
socket(0x11, 0xa, 0x300)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/irq/11/hwirq\x00', 0x28000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000b40)=""/4096, 0x1000)
mmap$auto(0x3, 0x6a, 0xff, 0x1ba, r0, 0x3)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x22c02, 0x0)
ioctl$auto_VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, &(0x7f0000000000)=0x6)
close_range$auto(0x2, r1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008910}, 0x20008000)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x0)

1.411450451s ago: executing program 2 (id=3130):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000e1, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4048804}, 0x44810)
mmap$auto(0x4, 0x10002, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x5, 0x0)
setsockopt$auto(0x4, 0x0, 0x60, 0xfffffffffffffffe, 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
sync_file_range$auto(r0, 0x0, 0x1, 0x7)
read$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000000200)=""/4096, 0x1000)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
utimensat$auto(0xffffffffffffffff, 0x0, &(0x7f0000003780)={0x7fff, 0x3ffffffe}, 0x8)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x2b, 0x37, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5\x00\x00\x00\x00\x00\x00\x00\x00', 0x110)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x402000b, 0xdf, 0x10000000000eb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r1 = openat$auto_ptdump_curusr_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x2200, 0x0)
read$auto_ptdump_curusr_fops_(r1, &(0x7f0000000040)=""/24, 0x18)
ioctl$auto_BINDER_CTL_ADD(0xffffffffffffffff, 0xc1086201, 0x0)

1.410986973s ago: executing program 3 (id=3131):
unshare$auto(0x40000080)
unshare$auto(0x80)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48401, 0x0)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_S_MODE(r0, 0x40046109, &(0x7f0000002c40)=0xf0)
bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x1e, 0x5}, 0x7)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x141000, 0x0)
preadv$auto(0x40000000000003, 0x0, 0x6, 0x7fffffff, 0x5)
close_range$auto(0x2, 0x8, 0x0)

1.29569s ago: executing program 0 (id=3132):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000e1, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4048804}, 0x44810)
mmap$auto(0x4, 0x10002, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r0 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x5, 0x0)
setsockopt$auto(0x4, 0x0, 0x60, 0xfffffffffffffffe, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
sync_file_range$auto(r1, 0x0, 0x1, 0x7)
read$auto_ocfs2_control_fops_stack_user(r1, &(0x7f0000000200)=""/4096, 0x1000)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
utimensat$auto(0xffffffffffffffff, 0x0, &(0x7f0000003780)={0x7fff, 0x3ffffffe}, 0x8)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x2b, 0x37, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5\x00\x00\x00\x00\x00\x00\x00\x00', 0x110)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x402000b, 0xdf, 0x10000000000eb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r2 = openat$auto_ptdump_curusr_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x2200, 0x0)
read$auto_ptdump_curusr_fops_(r2, &(0x7f0000000040)=""/24, 0x18)
mmap$auto(0x8, 0x20009, 0xb, 0xeb1, r0, 0x8000)
ioctl$auto_BINDER_CTL_ADD(0xffffffffffffffff, 0xc1086201, 0x0)

882.239889ms ago: executing program 3 (id=3133):
mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000)
r0 = syz_clone3(&(0x7f0000000000)={0x2000c00, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
write$auto_proc_mem_operations_base(r1, &(0x7f0000001680)="a7", 0x80000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_NEW(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000000140)={0x20, r3, 0x1, 0x70bd2c, 0x24dfdbfc, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x40)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), r4)
sendmsg$auto_TIPC_NL_MEDIA_GET(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)={0x14, r5, 0x701, 0x70bd29, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x10)
statx$auto(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x8, 0x4, &(0x7f0000000100)={0x7, 0xfffffff8, 0x6, 0x5, <r6=>0x0, 0xee00, 0xf46, 0x68d, 0x6, 0x8, 0x5, 0xa95a, {0x4, 0x80}, {0xb, 0x3}, {0x3, 0x29eb}, {0x6fd1b8bb, 0x6}, 0x1, 0x8, 0x6, 0x9, 0x4, 0x7, 0xb65f, 0xfffffffffffffff9, 0x7, 0x83ec, 0x8, 0x3, [0x9, 0x3, 0x7fffffff, 0xbc7, 0x8, 0xce99, 0x10, 0x7, 0x8]})
r7 = syz_clone(0x21242011, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages$auto(r7, 0x1002, 0x0, 0x0, 0x0, 0x2)
r8 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/kernel/perf_event_max_sample_rate\x00', 0x100, 0x0)
read$auto(r8, &(0x7f0000000240)='nl80211\x00', 0x7)
sendmsg$auto_TIPC_NL_MON_GET(r2, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f00000016c0)={0x281c, r5, 0x200, 0x70b928, 0x25dfdbfd, {}, [@TIPC_NLA_LINK={0x4b3, 0x4, 0x0, 0x1, [@generic, @generic="6d689de680a486b6a257ca048abbadbc06f3bd29331e186832cbf64c67911973f51d375958d6e0437369e7e017ef0fab7ae07b914ebcc9c36586e8c071a5a1ae35a28337daa02ad35a6470d3ec95ee50a0bba9d41322eb53c8ace2b0b0f0eb76a7fe4d133dd2ebc9a2649c1f9acac599a179b234695991fe3f29543301b57075abed862e380e4ec1170f4964c224d5ebab4f4766dd1bf3f1a74a31e4138cf8c94ccf707f3d5074e4ff6e967623f5f34f4e9f13b8cfa27f357c4ad8500ff6891d2616774fda4faa19c22c007bc05a1d3f708497b51a599643379f38b4202053c84a8a657c5f605263a76cfed988ca6800d5663da40be75a", @nested={0x186, 0x8b, 0x0, 0x1, [@generic="a4fe6abca91fbfb7c30b6c601e34d9052541a7b056654dd7617aa9ac75bb542081e15a3d64961d356572f76093e7150679ea250f7530918f8728096987a4a2dff7aa9900956dc242cc0ecc8e65f36b20afcf172e1d6b7c598fc908b856e0c40f44a3179a5cda56961e48bcb078cba7d35837d0d9d6ed8f26de90c04ab855d80940ba84634ba6ea5ae02283dc58881669dbfdcb63948ddef64877389d32e455413391d306f8c0f28db645237ec33a0e1bdca71294ffc4d65629a3f7", @typed={0x8, 0x59, 0x0, 0x0, @uid=r6}, @generic="db71a27ea1bbcb7c114d4beec870b5f89ce37020ef3d99a9ba15cbd09fc673d4e2719653336aaede4138014162a7c462be3bfd90f620f18cab859fdd39a62eeadc9552cc0566eda273f7796769004c3584745aae500ff3eb787256b412b85657105334c535a35bf7a6fa218ed954de14eb1732572f1fd2e5d6ba498dc87dee8b0cd878a2278528f31ea228d438ae81eec95794cc988b7b12220f26ced1a99251c8b7ab660d795b0773c89fd1668250809818c0", @typed={0xc, 0x97, 0x0, 0x0, @u64=0x1}]}, @generic="8bd9899a6fe083888c301f984e99d4b6c3dfcc13ded1600b1456ac76336acc1036ace9fc6fc0223400"/52, @generic="5ef09494f01eb91deafd0c7ab9407609718feb3a51349624e4a683bfa146a288c2c200e039f5ee82c456865402111abe3d51b9d60fc337f4ab14fe0cc53b5140b58475", @generic="d6e1edb831b1409feedc6a4b97ef832a27b08ed32179fd00100bda9efea68017d44eef801de8be4694edad1629c8255e66bfda0e073b2cc9b54f5738679d6c82f1a79801ff1468289fca4ce51543f9879f30", @typed={0x14, 0x2e, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @generic="319beea8064fb3f7d9ed4e6eedf3942a9f311f002a9c043b3ae458ba007854928d5e27a221947419d6b30a66edec86b818d5cb7ebab4ca2d8c0407f91048e805e067f2f1d0d99f0fa479c1e375536fc8947105073a86d5c1a546dcbbd7014a732e1aa4", @nested={0xef, 0xc8, 0x0, 0x1, [@generic="c799c7a6ec1fe4bc248edffe03e4046f2fd7b03c1a6429d5a98b61053eec45811a3dd2898e8da0f8e6b51ad0338c41b20b40bb3da1ed2d8f4a50d7164df37a5f7fe8ec53bb003b74fc7c9c922ff69cf47cfb8e3b3f2ad2ea19bf1fe45c922805840149937703a09fc01b70ae008e87f04de72f878ff92e7647753aa5425204341c18ea7b309bfa96aa9b00456c3421f48131046264d069a7efeab662ff", @nested={0x4, 0xbd}, @generic="d02dcb625a0426ec59be0304d7e5e69203b8d3e3c6d9f1f7b912861ac0c4bc48518434f92f44805250a351dea0cadb99ff359759c1c8f44f1259c3fa659878707527", @typed={0x8, 0xe5, 0x0, 0x0, @pid=r7}]}]}, @TIPC_NLA_BEARER={0x10, 0x1, 0x0, 0x1, [@nested={0xc, 0x13d, 0x0, 0x1, [@typed={0x8, 0xf6, 0x0, 0x0, @pid=r0}]}]}, @TIPC_NLA_LINK={0x1078, 0x4, 0x0, 0x1, [@nested={0xc, 0xe7, 0x0, 0x1, [@typed={0x8, 0x14b, 0x0, 0x0, @u32=0x3d5ff000}]}, @nested={0x1004, 0x144, 0x0, 0x1, [@generic="2dc9fc766a5075dd7b24f2ae5561d696035481a2efb00393f6b61642a6d3748f39313f0c73ee5819040eef223dc8ffb2aa6058329f528af2d659ad86efb4c41b785de80ed16c4b44b2750cf2f794ad3dd277482a862012106b7f002d2685506ea037542585937ab503649156d5740d837973bbfa103ebdf553a6b958c4c44abcd96ede419c80c893737550c410a5c93db9fde0af595f0b9401a9b3ceaf84834bf92859cda0b65f10963f3a4c7bc7cb00bdc49e64e74959229bf712d9a740b3c15fe9e1e1cafaf0574cdd5741e80c850956e5c3ea089df8e1d684e72c8184a16b019c79562e4943ff937a2856f922f6622d282cba261bfb481cd343397402972826176250e82bae9fafa3c74f80c1345620448bc8dc0d9f9a02eaf46bcbc8364d811f816673bfa7b8e669439a7787275176e58ba1d7b0f11073f7aa52afbcc4fb987a3636d76434af518c632047cdc94d5f9aa95262420533128e2732e219a1aba16156e781469e30a1a9897424a8048509f2cf139cc659dc2ba743b1be7c77de733bd4a2c43a66306364e598c9d4648d6858763a20fbc0f4f2e8f82ac5d7079a757e77fd959db856d52e2e2bceb6cbdf88e08bf5cd32c8e9424ef0c4a2486d8f91815131de29b5effdbfdedafa326530840e538d149eb0a0763ec6056c259cf7f897cf9158f8e148609bd7a2838f617f8f71a060ffa2e424d52c919e9211898b0c51c80fc334a7dcd6e642ad5211ac378b65de52a3a52604af912307ddcce9ef28303e4113149c4837e20fb16b4b7d4b54908ee1239c74a88ace2453ea488a06c98ba6341a73ece3cec1dd79573a60c792ed0f54ad56b62d22bd1a70251cd7f7165c1114a2d81f8158043c7c93b8b0a4ff2203459784da95e6b7eb2f4898383db749ff4302f4e05eeb1ac98179be2f223ecb6d73f54f2d3c8a10ead44d8eefdceb506748a66b407269fedbefbe7214d911bea8fe1ea8ad23d6d55b55b01e246b17dd06108847e7cc4dd3a4c638afcbe6024d7c62709c1f0895b618a29e45ef3f9e634ff00ddc312416c602d6ab356255f4d84628f0638de3f21369872607db5aa7e93f41175fb37a630f790d665d124750abb6af591d5743d4e8bfeaee05d20c206c47a84c94fd73e106d20b1462d540d5eb1a47de0bf572cd1e0f90350db67fe8cee7bc2b679b0722b2251e76e0abb82ff546cd5016bb09b611fa527cef6287dff53ef7805cf666d0ea0c9b315a72f73ca124ee224272226c4c700844c90631c4818977053f3dc0fe2a5263b770eaae2342ebd6f3f4045356956d783e3db9c79c750244d82afe7ec9ed3031a117db4f7795a3c98bac9f53009030bd09601db53a68a52944bdd84ecd5f4a80fdb5a42e5ee6f0a2d7e224137391846342b08e3f22d7f0409dd6cd826c7a4ee27702d35797159d6feccdd1230d0ef1c7adb3d0d8d36cd6dcc5a8ba6311213f373ef1e7633b32de0d73e048f5c954d31b55d3eda3c8a1dc95d90e0c5403b2c3ba1d5335571a74f95b46fd3573b1a80c3f31b05aced7a47d723fc054560da5c09220978c46f1892fe65f0f8b7034b451b830ff6cb80af7050901f7f292eff9bf4d632826eeedbd47e19da660a5f7f3f1ea671b499b277be33802be8aa9047bfddc53c2155ac25263ad1379e7c78f237d3cac4276b339c977054ae0d7d214340fc4b39e054cb5acc9af9b8f58203ce45d564e780ef2ac88a946a1ab2ef7583d0dc376b9051dd83eae3dae1e52bf06b88f931835f25b785d29f396b7410f2d3d12fe2272d2cd0b8f4ae590ca135792574f9b7067dfbea7fe5d44db2c3f3b22e8feaf39c28ce2967c6af58572cc91396c76f055635cfe40414367555bad96c96e1a0ccb21baf0f044044c31f817a10a1b5561ff0c92d4ba6964073878224b3ab37eb87594054ea71ecc6ed6cda3466a762ce79afbf1342f30ca4645128aef80adc1b7154246bd63c0a75f26583bc67baee4ae533634475b346594759b1942accaff054c3d5b1e8642c2c243f83057c8140c33e90a41fd29a90f8e14af81097ab441f41d57fba6a87f96c81b05e98ee40f868bb41526e442f3a3490b92f5280b487f8fb0c1704a94d177cb8813cd9a44c846528d7cebc99f61b6b37cebde50e9591c470302e3169e63341de79b0b97a59bb6503bdc3a6f420dd423108e49dc45c388f1b24cb656534bc7e8f17a7f40cc52a608105778c74a3ca6aeb25ec199f184ec73a5f992bbe431e31b49796e21274dd25dbd5960dcc7e085a123ff7a841b59fdcd64d2632ae958d850d40a9b2f5a2b7b2c6b456cd9bb7dfb92179130b467a9ad6bd8815f2c660e3e3d278e08534354c9178a03e60f5e4055806d32ad3e793e680102888e4ebb5490ac91ab0fcbeab90930b5a70b33c303b50282974e3efc89a62dca7650338658906f9ea020b6becb6d71f38a10059dad8898c00e97d887a45ceab4da0413a189d541f06c37ec1cfc32e7aaf95c98c57809798912bdd21642a49914a2d7ae1c020eca2d63b36e736796c8897ab61ddf15697efdbf6e1fcbb45f69ef4028ef1b0cbc70b268af86c0a319d76ac13f63dffc9169942072d77dd9161cc115745006f87955cc041ec752801705a998550a180e257ad28a899c5e394bf4cf90276b6c12c6156c36560ddb6bf46e3443910b28479db37c1345bd1858dbb5eff828035625738005e3226921dd9903ce357f9f6daa759398d424d1c15e61953845f3d653628c877985d3b759cfa0670d945d49b81f5bc924b3f6497f69717fc4bbf5b35190718ccf26deb8b429714129bcaa7f64519fd682288fa063808283b43a4773c6450caff1fbd513866b53b020e9225f48071d4bdc0aaee4b71b027f240618e2db883a4c71ba6a86e622758ea356a001572c912379ae6d2e22b55bb42085205f9d76dd8584e64d532f523f137f16256be3bf56c802a790bace3f32c998da0cd33456c81a7d61bbb6a0c32ba499adde13b2bcacf541ab5407206fc71a088caef36e4c2c0d16dd212e37148a87d009ff6a794035d6a4b6129bd0645ca7baeb9ae456f0308f2efc531210bf60eb0c67bf723ffcd425dfc67d13ed0e513efd60f064d151c5be0d07f54b1f93bb1eef9821bab7d904b086f309ef10579c043a70bf46a1907030d3c0e35075fa95ddc43195b0304c22881dffdb4561629449c288e8118da28ec6648a7cd3f52d970d869a49a6b31bc67ae19e394e51ee6c5538af38ddb4d9b3aff6ebd5989dc14bb8263039dce6908abde4c0f867108d504005f4892759e89b30c399642cfa90274f3e308abe0c260f9d931bbfd4f78c3df4ee832ac6f4b90147353a94adb60126ddc3f573d24b3dcf522d3a34d1f8445d4046715bfb16c186da58f419c86fb7375195beaa8e09d7ca29cc84fdede2967d7ac8f9f91b7635b1e83e533cd33ee93bc668f94e79e1e85ac4afa0d4d1ec27dc220081b8c66bb951a129fd8ed0930513fad6526b0973f6cc984896a353856b888bae16048dcc7eee70e6dc00e45a05c5d048cc7be78e3f43ed43197efca950af84d5ec35ebd6a3cd276c3f69fd23fa66627f422856bc0235279b885c3e3156c2d05279719d0940a23f00b555921ef15679e996f8f0fd10a2d863ec3555010f4010731ce38a6c581c59e3c378ac9081cf79fcb073ed78f9be1d58533ac8ac7c13dc8986a4500419d50099682f45404b3c5ede10e272cd1204dd52e31e4cc8b9804be3dcd84e5a868a410c97c11bf46ed30197e772b327a8e40088c6233c7eca6b58d6b61d4704e65d4e1019d72d4022aafc90ed64dcdacdfeb390cf0d0a1271b2d4a074cd82cfaa02d7266a56749517cb76cfdf956a8218ae924c7e04af3f5b201c878545d9559f03e2766ac4da6810f35995ae807dce02549226f978d148b6ac7fbbe2b0d1d8becf72e9972b8fbb093cbcec955f75e8aac9aceeea52570b743963c370a7f9a881c1422e91d47bd1ed75b268743329760df0293309a466eabaf691eaa8dd9a816d407698463daa4f97ec044109cd14d78fe13959bf08da0f25cb9101e5c2018f07bf23a8d5262ff6448a9976d22d576cca94b69ed2b78034ada0750d16ee964c81c2fac9287bbc0d1471a77c1db8bedfe4436f0204ffd1a844aed8f5210ecc9bc2d8a899edf21dcca61aa98861752a6e1384f06acfeecfba7d179880bab45996db1533ed257dc40c394f75c9144619c09ffc2f115a3c4fb9f25812e72adaab2b09f207876647746677adb5da31134eb120c9d0677458a771e58abb528ec9f7b37feb93e663ccb7ba847c1579095b92ba32827e12bd6917b6982b3d3da45bcb2e394bf2a97dbae65c1f6e10b62e7a1bf0741a0ad8d2e559e75a7823c86d0100a7657ed70533edfe6baf8b3e5d65906bd9c45a848f1643e6fbff1cc2f177f4a3b8a4b74d79c3bc2cd575874ad4293c7e04c52e5bab05135886b914dd12e87036980f09946cf465d5728b268a0b0507eca7ee5925e7fe7d7dcc4d25e5c35fa82417fb3d26327bb18f5277beab88690f86c55ae031fbd3b69e9adf82a3302db2794443131d599a152f1af6dcf5a9622d826c9ab967170c71467d8c853251a162a19f4ae108c7d37531bd8df4f0f959dd015410097bceaaa3c63ed1cf836cf87917350e6fdaea3fa198c91be21ba9b76ba4c4b2327b63f36edf286c581d8a468c2b3cbc0aa9e96932fe2f820efb1cd20edee4ddcc9871ae2cf9427d3bf595fb08cfbbf35690759dac4d6adab30dd249ead003fbf8a5d07e0436b5182f46210e376929a837441bbba5fff037bb085851ecdc4e8150a537cc1ac7a00fd94bbb7c23e400c6085dec8080e545fb6b7d514611e64488383c9e105b4f90681d1132e89f885ae765f26b24a8cc14b85267ee90747fb4f83597e63b55c0b41d09bf914a6b9f8d847d89062203ace22479f9765d841e44d9fab2f0111a4adcbb6ce90b98f979032e94828f92c97e5bee3401500a604185e2bae30dc6a41e766c65e911072579c42cb9a369c0c76f6c597b58e4e123e72bbaffdaaad80f5b16e0b462d55e110180d9e520a0e0b87a1977e22232d15f4cca39ec1c0326b8ebf18894f525f77e3ae8d6e554feb9229271ef331627a84abaf085c4be04cd441d32f496069c9b409e4fee8fde089c35bfba322ea8507da1f19cac27490284d35c971b74f8acb41d1a169974fa22f2b277e70f1f8f79359814581ad0e12fd1da683fbe1f34ea5247b84cc25f3e708b0fc7ff1ba77a76c354794db46bf508af0ba3cb317b44dee3342c246b45af5aa2672b363c68dee9cdc96f64bbe0298e197a8965f7018be1e6941c2e4d6d66a755e78cd5034578ee1384a0685c537c810c1095cb80d4f761f82f773dc309ec5ebe56f6953417ee53208debd3a55eb4771f5f614feffcab85975a672b3ed85974bf082952f2d55ec503e07e9b3941fc2d122635079eaa34c49472ff97ac41b4ef79577578e5788e4f03f9d24bf252b3fea17f616440729f0fa0c080c9605faefda5660e39140f40be074005508269f2d2767c5e2c1350b9efdca8deaea65511b2348303dea51790cabb9201f7e332e5a84fecf4f52204b58b82055307afaa457edc1e4442f3ccf17dd5234ab4446830bc75c2c4df2e62c889ae2d7d2284f987b1aeaefbda8639d395cabf82ae75117d7b756a083a1087235b0db1c9366c19cca90ffec084d17452d2f2ccd9a5668a0b7702a577f5f31477618e9bde88cd4ebfa129d9244e1ee8c288d577e36f735aef27b47f0b139ff4a939bebf1b6f502e64d77acc4286c8e872090ab59e"]}, @nested={0x4e, 0xc4, 0x0, 0x1, [@typed={0xc, 0x11f, 0x0, 0x0, @u64=0x9}, @generic="25d6f8e1528f4e7a9397cde1decf8a96757dbdfe0495bb73c611ecbadf9957803288eb3ac83a09870c017deeee77e59ecf08c0df36a30ad28af095d60f35"]}, @typed={0x14, 0xf3, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}]}, @TIPC_NLA_NAME_TABLE={0x105, 0x8, 0x0, 0x1, [@typed={0x8, 0x8a, 0x0, 0x0, @pid=r0}, @generic="698dbe737239432270ccf2357df70ed7b2452a9fc92a49cdfb0c840b46174f7fe687b3e5d61b226f346f2dec51175a9f0159f3210ae3064d499e84773e7fa3055ea519aa189c05a4fb9786c9a4929d6e8b3bb508e893f3c2576eaccda455c962c6a5bc029c4fb522b5928edfb5477b7ede76022e24d65079bc7e520431398754c9589e27e4ecae8d981e521cdfe72a37cbf47b5fe54000ad3edc9f8c5c01f83200f36e9d13bbea3eee0dd1892d01f9cd22aa246050635db90ddbd32861dbb78b1eeedb9ab42a1322afc98f365470c44c3ce97e4da4fa2133d11cf8bff8338143fa16fd4ec11f594fb1d28edf995a0502eb40811a426d2a9035"]}, @TIPC_NLA_LINK={0x1094, 0x4, 0x0, 0x1, [@nested={0x46, 0x3b, 0x0, 0x1, [@nested={0x4, 0x13e}, @typed={0x5, 0xa7, 0x0, 0x0, @str='\x00'}, @nested={0x4, 0x33}, @generic="b4ddb94d0818835b22e1741b0f2b835f4729ba8d4ccc25bcc8ba", @typed={0x14, 0xe9, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0xb}}, @nested={0x4, 0xf0}]}, @typed={0x8, 0x3a, 0x0, 0x0, @u32=0x6}, @nested={0x1038, 0x66, 0x0, 0x1, [@typed={0x8, 0xa0, 0x0, 0x0, @ipv4=@multicast1}, @typed={0xc, 0x14, 0x0, 0x0, @u64=0x6b6}, @generic="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", @generic="888e5d7b6913e2eef02ea87e312eb2abb479c9d3b2e5510ce5201518", @nested={0x4, 0x101}]}, @typed={0x8, 0x48, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x2a}}]}, @TIPC_NLA_MON={0x35, 0x9, 0x0, 0x1, [@typed={0x4, 0x37}, @typed={0x8, 0xad, 0x0, 0x0, @fd=r8}, @nested={0xc, 0x76, 0x0, 0x1, [@typed={0x8, 0x14d, 0x0, 0x0, @ipv4=@private=0xa010100}]}, @typed={0x8, 0x44, 0x0, 0x0, @fd=r1}, @generic="db73c07ab1add1a0ffe39903e829aa1e17"]}, @TIPC_NLA_MEDIA={0xf7, 0x5, 0x0, 0x1, [@generic="a4204bf450b12a9fc2bc02105d3fc56752d88731198763a2162fae2960d83c3fd0eb896dcc15132214641419cece6ceb15d9259ae1e4b5d659cda70eedd5dfda04e9f65ca5b6377146885dda17108ef0b24d640d09b70ff9d3ab954f530fbdcaa088e559f53baca5aa8c43bab0d831ee17500d5ce64aa2cb0ef01aaae2e3be608362f3", @generic="60c6a6510ab51dd41ff2fc511b83d77ff66bee110b20bf75970da51051d63c9eba29d7f08c03257745dc23b8fa55d513bc270ff863a40deb1be506bd0aede97c60270d097a8ca637a73f5bd532087127fe1a708c9e786370117673b2", @typed={0x14, 0x38, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}]}]}, 0x281c}, 0x1, 0x0, 0x0, 0x4008040}, 0x8084)

264.396838ms ago: executing program 3 (id=3134):
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x40000002, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x0)
fanotify_init$auto(0x5, 0x2)
epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x2, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7001f9dbca250100000008000a00000000000500070000000000080009009c781e010600020000"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)

202.76019ms ago: executing program 4 (id=3135):
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x200, 0x70bd28, 0x25dfdbfe}, 0x14}}, 0x400c000)
r0 = openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
close_range$auto(r0, r0, 0x4)
mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0x6, 0x8000)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/khugepaged/scan_sleep_millisecs\x00', 0xa0582, 0x0)
socket(0x22, 0x3, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
write$auto(0x3, 0x0, 0xfffffdef)

0s ago: executing program 3 (id=3136):
timer_create$auto(0x9, 0x0, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x8002, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x101080, 0x0)
read$auto_snd_rawmidi_f_ops_rawmidi(r0, &(0x7f0000000080)=""/45, 0x2d)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x500, 0x0)
unshare$auto(0x40000080)
read$auto(0xc8, 0x0, 0x200)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x40, r2, 0x1b, 0x74bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x6, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x33}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r3 = fsopen$auto(&(0x7f0000000000)='\x00', 0x400)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r3)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x48, r4, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@NL80211_ATTR_OPER_CLASS={0x5}, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, 0x6}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0x10}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'bond_slave_1\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x4004801}, 0x4008000)
unshare$auto(0x40000080)

kernel console output (not intermixed with test programs):

  T29] audit: type=1804 audit(6030358957.825:21): pid=11825 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1742" name="#)-\&[}" dev="mqueue" ino=36468 res=1 errno=0
[  354.981585][    C0] vkms_vblank_simulate: vblank timer overrun
[  354.993960][   T29] audit: type=1804 audit(6030358957.825:22): pid=11825 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1742" name="#)-\&[}" dev="mqueue" ino=36468 res=1 errno=0
[  355.519018][T11848] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1749'.
[  355.633399][T11851] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1750'.
[  357.176188][T11872] can: request_module (can-proto-0) failed.
[  357.187133][T11880] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1755'.
[  357.300092][T11866] kernel read not supported for file /#)-\&[} (pid: 11866 comm: syz.2.1754)
[  357.309189][   T29] audit: type=1804 audit(6030358960.255:23): pid=11866 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1754" name="#)-\&[}" dev="mqueue" ino=36648 res=1 errno=0
[  357.364368][   T29] audit: type=1800 audit(6030358960.295:24): pid=11866 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1754" name="#)-\&[}" dev="mqueue" ino=36648 res=0 errno=0
[  358.157674][T11889] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1758'.
[  362.607665][T11955] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1777'.
[  362.984111][T11961] capability: warning: `syz.2.1779' uses 32-bit capabilities (legacy support in use)
[  363.114073][T11966] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1781'.
[  363.599489][T11981] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1785'.
[  364.632060][T11994] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1789'.
[  364.673166][T11994] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  364.707516][T11994] batman_adv: batadv0: Removing interface: batadv_slave_0
[  364.750817][T11999] FAULT_INJECTION: forcing a failure.
[  364.750817][T11999] name failslab, interval 1, probability 0, space 0, times 0
[  364.782315][T11999] CPU: 1 UID: 0 PID: 11999 Comm: syz.4.1791 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  364.793151][T11999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  364.803243][T11999] Call Trace:
[  364.806541][T11999]  <TASK>
[  364.809499][T11999]  dump_stack_lvl+0x16c/0x1f0
[  364.814210][T11999]  should_fail_ex+0x497/0x5b0
[  364.818899][T11999]  ? fs_reclaim_acquire+0xae/0x150
[  364.824019][T11999]  should_failslab+0xc2/0x120
[  364.828711][T11999]  __kmalloc_noprof+0xce/0x4f0
[  364.833481][T11999]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  364.839139][T11999]  ? tomoyo_realpath_from_path+0xbf/0x710
[  364.844893][T11999]  tomoyo_realpath_from_path+0xbf/0x710
[  364.850475][T11999]  ? tomoyo_path_number_perm+0x235/0x5b0
[  364.856145][T11999]  tomoyo_path_number_perm+0x248/0x5b0
[  364.861628][T11999]  ? tomoyo_path_number_perm+0x235/0x5b0
[  364.867297][T11999]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  364.873312][T11999]  ? __pfx_lock_release+0x10/0x10
[  364.878349][T11999]  ? trace_lock_acquire+0x14e/0x1f0
[  364.883561][T11999]  ? lock_acquire+0x2f/0xb0
[  364.888065][T11999]  ? __fget_files+0x40/0x3a0
[  364.892665][T11999]  ? __fget_files+0x206/0x3a0
[  364.897350][T11999]  security_file_ioctl+0x9b/0x240
[  364.902398][T11999]  __x64_sys_ioctl+0xb7/0x200
[  364.907079][T11999]  do_syscall_64+0xcd/0x250
[  364.911594][T11999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.917494][T11999] RIP: 0033:0x7f1e35585d29
[  364.921911][T11999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.941526][T11999] RSP: 002b:00007f1e3637b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  364.949953][T11999] RAX: ffffffffffffffda RBX: 00007f1e35775fa0 RCX: 00007f1e35585d29
[  364.957936][T11999] RDX: 0000000000000000 RSI: 0000000000000705 RDI: 0000000000000003
[  364.965934][T11999] RBP: 00007f1e3637b090 R08: 0000000000000000 R09: 0000000000000000
[  364.973910][T11999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  364.981908][T11999] R13: 0000000000000000 R14: 00007f1e35775fa0 R15: 00007ffece898b18
[  364.989893][T11999]  </TASK>
[  365.037991][T11999] ERROR: Out of memory at tomoyo_realpath_from_path.
[  366.175588][T12023] FAULT_INJECTION: forcing a failure.
[  366.175588][T12023] name failslab, interval 1, probability 0, space 0, times 0
[  366.229512][T12023] CPU: 1 UID: 0 PID: 12023 Comm: syz.0.1797 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  366.240342][T12023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  366.250432][T12023] Call Trace:
[  366.253739][T12023]  <TASK>
[  366.256702][T12023]  dump_stack_lvl+0x16c/0x1f0
[  366.261425][T12023]  should_fail_ex+0x497/0x5b0
[  366.266144][T12023]  ? fs_reclaim_acquire+0xae/0x150
[  366.271313][T12023]  should_failslab+0xc2/0x120
[  366.276040][T12023]  __kmalloc_cache_noprof+0x68/0x420
[  366.281379][T12023]  allocate_file_region_entries+0x1a3/0x620
[  366.287415][T12023]  ? __pfx_allocate_file_region_entries+0x10/0x10
[  366.293886][T12023]  region_chg+0x85/0x140
[  366.298181][T12023]  __vma_reservation_common+0x43d/0x740
[  366.303823][T12023]  ? __pfx___vma_reservation_common+0x10/0x10
[  366.310295][T12023]  ? huge_pte_alloc+0x22e/0x3a0
[  366.315195][T12023]  hugetlb_fault+0x15fb/0x2fb0
[  366.320027][T12023]  ? __pfx_hugetlb_fault+0x10/0x10
[  366.325187][T12023]  ? find_vma+0xc0/0x140
[  366.329471][T12023]  ? __pfx_find_vma+0x10/0x10
[  366.334189][T12023]  handle_mm_fault+0x930/0xaa0
[  366.339005][T12023]  do_user_addr_fault+0x7a3/0x13f0
[  366.344155][T12023]  exc_page_fault+0x5c/0xc0
[  366.348704][T12023]  asm_exc_page_fault+0x26/0x30
[  366.353604][T12023] RIP: 0010:__put_user_nocheck_4+0x7/0x20
[  366.359380][T12023] Code: d9 0f 01 cb 89 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00
[  366.379033][T12023] RSP: 0018:ffffc9000496f9f8 EFLAGS: 00050293
[  366.385142][T12023] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000030
[  366.393143][T12023] RDX: ffff88801c79da00 RSI: ffffffff88f36c34 RDI: 0000000000000005
[  366.401144][T12023] RBP: ffffc9000496fd98 R08: 0000000000000005 R09: 0000000000000000
[  366.409147][T12023] R10: 0000000000000008 R11: 0000000000000000 R12: 0000000000000000
[  366.417152][T12023] R13: 0000000000000000 R14: ffffc9000496fddc R15: 0000000000000008
[  366.425173][T12023]  ? ____sys_recvmsg+0x2e4/0x6b0
[  366.430167][T12023]  ____sys_recvmsg+0x2ef/0x6b0
[  366.434989][T12023]  ? __pfx_____sys_recvmsg+0x10/0x10
[  366.441132][T12023]  ___sys_recvmsg+0x115/0x1a0
[  366.445858][T12023]  ? __pfx____sys_recvmsg+0x10/0x10
[  366.451113][T12023]  ? __pfx_lock_release+0x10/0x10
[  366.456171][T12023]  ? trace_lock_acquire+0x14e/0x1f0
[  366.461450][T12023]  do_recvmmsg+0x2f8/0x740
[  366.465926][T12023]  ? __pfx_do_recvmmsg+0x10/0x10
[  366.470996][T12023]  ? vfs_write+0x306/0x1150
[  366.475544][T12023]  ? __mutex_unlock_slowpath+0x164/0x690
[  366.481318][T12023]  ? __fget_files+0x206/0x3a0
[  366.486050][T12023]  __x64_sys_recvmmsg+0x239/0x290
[  366.491128][T12023]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  366.496776][T12023]  do_syscall_64+0xcd/0x250
[  366.501506][T12023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.507441][T12023] RIP: 0033:0x7f0056b85d29
[  366.511895][T12023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.531709][T12023] RSP: 002b:00007f0057937038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  366.540177][T12023] RAX: ffffffffffffffda RBX: 00007f0056d75fa0 RCX: 00007f0056b85d29
[  366.548206][T12023] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003
[  366.556235][T12023] RBP: 00007f0057937090 R08: 0000000000000000 R09: 0000000000000000
[  366.564241][T12023] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  366.572251][T12023] R13: 0000000000000000 R14: 00007f0056d75fa0 R15: 00007ffd71c39b28
[  366.580279][T12023]  </TASK>
[  366.644178][T12032] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1798'.
[  366.714460][T12034] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1799'.
[  367.008219][T12040] FAULT_INJECTION: forcing a failure.
[  367.008219][T12040] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  367.047786][T12040] CPU: 1 UID: 0 PID: 12040 Comm: syz.2.1801 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  367.058707][T12040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  367.068882][T12040] Call Trace:
[  367.072257][T12040]  <TASK>
[  367.075302][T12040]  dump_stack_lvl+0x16c/0x1f0
[  367.080117][T12040]  should_fail_ex+0x497/0x5b0
[  367.085007][T12040]  _copy_from_user+0x2e/0xd0
[  367.089715][T12040]  move_addr_to_kernel+0x68/0x160
[  367.094788][T12040]  __sys_bind+0x11c/0x260
[  367.099683][T12040]  ? __pfx___sys_bind+0x10/0x10
[  367.104564][T12040]  ? __fget_files+0x206/0x3a0
[  367.109291][T12040]  ? __pfx_ksys_write+0x10/0x10
[  367.114287][T12040]  __x64_sys_bind+0x72/0xb0
[  367.118830][T12040]  ? lockdep_hardirqs_on+0x7c/0x110
[  367.124158][T12040]  do_syscall_64+0xcd/0x250
[  367.128796][T12040]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.134818][T12040] RIP: 0033:0x7f1c45985d29
[  367.139443][T12040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.159609][T12040] RSP: 002b:00007f1c437f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  367.168063][T12040] RAX: ffffffffffffffda RBX: 00007f1c45b75fa0 RCX: 00007f1c45985d29
[  367.176058][T12040] RDX: 000000000000003e RSI: 0000000020000180 RDI: 0000000000000003
[  367.184148][T12040] RBP: 00007f1c437f6090 R08: 0000000000000000 R09: 0000000000000000
[  367.192229][T12040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  367.200306][T12040] R13: 0000000000000000 R14: 00007f1c45b75fa0 R15: 00007ffc4b679288
[  367.208742][T12040]  </TASK>
[  368.563810][T12063] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1808'.
[  368.755806][T12065] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1809'.
[  369.307127][T12071] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1810'.
[  369.873422][T12077] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1812'.
[  371.556151][T12096] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1817'.
[  373.426411][T12117] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1824'.
[  373.715905][T12126] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1826'.
[  373.750229][T12129] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1827'.
[  374.069776][T12136] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1829'.
[  376.415782][T12168] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1838'.
[  376.670448][T12174] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1840'.
[  377.594884][T12192] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1845'.
[  377.739816][T12195] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1846'.
[  378.041949][T12202] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1848'.
[  378.391530][T12207] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1849'.
[  378.409122][T12207] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  378.579437][T12216] sysfs_service_op_store: Client not running :-5:
[  378.718989][T12218] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1854'.
[  379.420205][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  379.428440][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  379.785672][T12231] FAULT_INJECTION: forcing a failure.
[  379.785672][T12231] name failslab, interval 1, probability 0, space 0, times 0
[  379.815136][T12231] CPU: 1 UID: 0 PID: 12231 Comm: syz.3.1857 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  379.825965][T12231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  379.836051][T12231] Call Trace:
[  379.839350][T12231]  <TASK>
[  379.842300][T12231]  dump_stack_lvl+0x16c/0x1f0
[  379.847110][T12231]  should_fail_ex+0x497/0x5b0
[  379.851821][T12231]  ? fs_reclaim_acquire+0xae/0x150
[  379.856963][T12231]  should_failslab+0xc2/0x120
[  379.861682][T12231]  __kmalloc_noprof+0xce/0x4f0
[  379.866497][T12231]  ? d_absolute_path+0x137/0x1b0
[  379.871488][T12231]  ? tomoyo_encode2+0x100/0x3e0
[  379.876381][T12231]  tomoyo_encode2+0x100/0x3e0
[  379.881093][T12231]  tomoyo_realpath_from_path+0x1a7/0x710
[  379.886774][T12231]  tomoyo_path_number_perm+0x248/0x5b0
[  379.892276][T12231]  ? tomoyo_path_number_perm+0x235/0x5b0
[  379.897955][T12231]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  379.904011][T12231]  ? __pfx_lock_release+0x10/0x10
[  379.909067][T12231]  ? trace_lock_acquire+0x14e/0x1f0
[  379.914305][T12231]  ? lock_acquire+0x2f/0xb0
[  379.918835][T12231]  ? __fget_files+0x40/0x3a0
[  379.923488][T12231]  ? __fget_files+0x206/0x3a0
[  379.928172][T12231]  security_file_ioctl+0x9b/0x240
[  379.933203][T12231]  __x64_sys_ioctl+0xb7/0x200
[  379.937889][T12231]  do_syscall_64+0xcd/0x250
[  379.942417][T12231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.948532][T12231] RIP: 0033:0x7f6ffd585d29
[  379.952960][T12231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  379.972585][T12231] RSP: 002b:00007f6ffe2f9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  379.981094][T12231] RAX: ffffffffffffffda RBX: 00007f6ffd775fa0 RCX: 00007f6ffd585d29
[  379.989065][T12231] RDX: 0000000020000000 RSI: 000000004024700a RDI: 0000000000000003
[  379.997034][T12231] RBP: 00007f6ffe2f9090 R08: 0000000000000000 R09: 0000000000000000
[  380.005013][T12231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  380.012988][T12231] R13: 0000000000000000 R14: 00007f6ffd775fa0 R15: 00007ffe5231d158
[  380.020978][T12231]  </TASK>
[  380.024045][    C1] vkms_vblank_simulate: vblank timer overrun
[  380.071166][T12231] ERROR: Out of memory at tomoyo_realpath_from_path.
[  380.530593][T12243] futex_wake_op: syz.4.1861 tries to shift op by 64; fix this program
[  381.903900][T12273] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1871'.
[  383.346335][T12303] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1877'.
[  383.386522][T12303] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  384.037974][T12328] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1885'.
[  384.403483][T12338] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1889'.
[  384.453976][T12340] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1890'.
[  386.829709][T12381] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1902'.
[  387.056995][T12389] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1905'.
[  388.102643][   T54] block nbd0: Receive control failed (result -107)
[  389.445135][T12424] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1915'.
[  390.480501][   T54] block nbd1: Receive control failed (result -107)
[  390.848057][T12454] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  390.858127][T12454] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  391.648635][T12474] cifs: Unknown parameter 'no+ 1§• Ö`ÑørêsFn)ÈøaõH†šÄ�¿¡h`àØÝë9k¤A}€žŠ1\D@‹Ç.ÁäZÔCg^‚'
[  392.630746][T12484] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1931'.
[  393.496700][T12493] FAULT_INJECTION: forcing a failure.
[  393.496700][T12493] name failslab, interval 1, probability 0, space 0, times 0
[  393.529070][T12493] CPU: 0 UID: 0 PID: 12493 Comm: syz.2.1935 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  393.539899][T12493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  393.550135][T12493] Call Trace:
[  393.553417][T12493]  <TASK>
[  393.556351][T12493]  dump_stack_lvl+0x16c/0x1f0
[  393.561041][T12493]  should_fail_ex+0x497/0x5b0
[  393.565725][T12493]  ? fs_reclaim_acquire+0xae/0x150
[  393.570843][T12493]  should_failslab+0xc2/0x120
[  393.575533][T12493]  __kmalloc_node_noprof+0xd1/0x520
[  393.580741][T12493]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  393.586214][T12493]  __kvmalloc_node_noprof+0xad/0x1a0
[  393.591514][T12493]  seq_read_iter+0x82a/0x12b0
[  393.596198][T12493]  ? __mutex_trylock_common+0xea/0x250
[  393.601671][T12493]  proc_reg_read_iter+0x21d/0x310
[  393.606720][T12493]  vfs_read+0x87f/0xbe0
[  393.610895][T12493]  ? __pfx_vfs_read+0x10/0x10
[  393.615598][T12493]  ksys_read+0x12b/0x250
[  393.619852][T12493]  ? __pfx_ksys_read+0x10/0x10
[  393.624641][T12493]  do_syscall_64+0xcd/0x250
[  393.629211][T12493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  393.635124][T12493] RIP: 0033:0x7f1c45985d29
[  393.639545][T12493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  393.659260][T12493] RSP: 002b:00007f1c437f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  393.667684][T12493] RAX: ffffffffffffffda RBX: 00007f1c45b75fa0 RCX: 00007f1c45985d29
[  393.675682][T12493] RDX: 0000000000001000 RSI: 0000000020001700 RDI: 0000000000000003
[  393.683851][T12493] RBP: 00007f1c437f6090 R08: 0000000000000000 R09: 0000000000000000
[  393.692006][T12493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  393.700000][T12493] R13: 0000000000000000 R14: 00007f1c45b75fa0 R15: 00007ffc4b679288
[  393.707997][T12493]  </TASK>
[  393.761734][T12498] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1937'.
[  393.879291][   T54] block nbd2: Receive control failed (result -107)
[  394.610053][T12523] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1945'.
[  395.224294][T12533] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1949'.
[  395.888172][T12557] nbd: socks must be embedded in a SOCK_ITEM attr
[  395.901925][T12557] block nbd3: shutting down sockets
[  396.420041][T12573] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1959'.
[  396.586653][T12577] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1961'.
[  396.885928][T12584] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  396.895653][T12584] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  397.110299][T12596] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1966'.
[  397.560534][T12607] FAULT_INJECTION: forcing a failure.
[  397.560534][T12607] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  397.576675][T12607] CPU: 0 UID: 0 PID: 12607 Comm: syz.4.1969 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  397.587579][T12607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  397.597758][T12607] Call Trace:
[  397.600907][T12609] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1970'.
[  397.601040][T12607]  <TASK>
[  397.601054][T12607]  dump_stack_lvl+0x16c/0x1f0
[  397.617622][T12607]  should_fail_ex+0x497/0x5b0
[  397.622343][T12607]  _copy_from_user+0x2e/0xd0
[  397.626971][T12607]  copy_msghdr_from_user+0x99/0x160
[  397.632212][T12607]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  397.638087][T12607]  ___sys_sendmsg+0xff/0x1e0
[  397.642721][T12607]  ? __pfx____sys_sendmsg+0x10/0x10
[  397.647982][T12607]  ? __pfx_lock_release+0x10/0x10
[  397.653034][T12607]  ? trace_lock_acquire+0x14e/0x1f0
[  397.658325][T12607]  ? __fget_files+0x206/0x3a0
[  397.663066][T12607]  __sys_sendmsg+0x16e/0x220
[  397.667790][T12607]  ? __pfx___sys_sendmsg+0x10/0x10
[  397.673050][T12607]  do_syscall_64+0xcd/0x250
[  397.677601][T12607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  397.683524][T12607] RIP: 0033:0x7f1e35585d29
[  397.687962][T12607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.707689][T12607] RSP: 002b:00007f1e3635a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  397.716139][T12607] RAX: ffffffffffffffda RBX: 00007f1e35776080 RCX: 00007f1e35585d29
[  397.724146][T12607] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000008
[  397.732147][T12607] RBP: 00007f1e3635a090 R08: 0000000000000000 R09: 0000000000000000
[  397.740148][T12607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  397.748149][T12607] R13: 0000000000000000 R14: 00007f1e35776080 R15: 00007ffece898b18
[  397.756163][T12607]  </TASK>
[  398.186655][T12624] FAULT_INJECTION: forcing a failure.
[  398.186655][T12624] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  398.203604][T12624] CPU: 0 UID: 0 PID: 12624 Comm: syz.3.1973 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  398.214421][T12624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  398.224504][T12624] Call Trace:
[  398.227802][T12624]  <TASK>
[  398.230764][T12624]  dump_stack_lvl+0x16c/0x1f0
[  398.235477][T12624]  should_fail_ex+0x497/0x5b0
[  398.240200][T12624]  _copy_from_user+0x2e/0xd0
[  398.244834][T12624]  __sys_bpf+0x4266/0x57a0
[  398.249290][T12624]  ? __pfx___sys_bpf+0x10/0x10
[  398.254092][T12624]  ? vfs_write+0x306/0x1150
[  398.258633][T12624]  ? __mutex_unlock_slowpath+0x164/0x690
[  398.264323][T12624]  ? fput+0x67/0x440
[  398.268262][T12624]  ? ksys_write+0x1ba/0x250
[  398.272796][T12624]  ? __pfx_ksys_write+0x10/0x10
[  398.277684][T12624]  __x64_sys_bpf+0x78/0xc0
[  398.282131][T12624]  ? lockdep_hardirqs_on+0x7c/0x110
[  398.287362][T12624]  do_syscall_64+0xcd/0x250
[  398.291902][T12624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.297833][T12624] RIP: 0033:0x7f6ffd585d29
[  398.302274][T12624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  398.321918][T12624] RSP: 002b:00007f6ffe2f9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  398.330369][T12624] RAX: ffffffffffffffda RBX: 00007f6ffd775fa0 RCX: 00007f6ffd585d29
[  398.338371][T12624] RDX: 000000000000000c RSI: 00000000200001c0 RDI: 0000000000000003
[  398.346373][T12624] RBP: 00007f6ffe2f9090 R08: 0000000000000000 R09: 0000000000000000
[  398.354376][T12624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  398.362384][T12624] R13: 0000000000000000 R14: 00007f6ffd775fa0 R15: 00007ffe5231d158
[  398.370402][T12624]  </TASK>
[  398.494026][T12628] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1976'.
[  398.541876][T12629] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1975'.
[  399.685471][T12652] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1983'.
[  399.899510][T12657] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1985'.
[  399.979993][T12659] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1986'.
[  400.524445][T12673] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1991'.
[  400.608018][T12675] nbd: socks must be embedded in a SOCK_ITEM attr
[  400.616445][T12675] block nbd3: shutting down sockets
[  400.716007][T12681] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1993'.
[  400.801681][T12688] lo: entered allmulticast mode
[  400.807991][T12688] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1996'.
[  400.986724][T12687] lo: left allmulticast mode
[  401.855061][T12719] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2006'.
[  401.878656][T12721] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2004'.
[  402.767262][T12738] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2010'.
[  402.884451][T12738] bond0: (slave bond_slave_0): Releasing backup interface
[  402.981872][T12750] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2014'.
[  402.992063][T12753] lo: entered allmulticast mode
[  403.184754][T12752] lo: left allmulticast mode
[  405.221274][T12814] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  405.269467][T12814] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  406.080132][T12831] __nla_validate_parse: 6 callbacks suppressed
[  406.080156][T12831] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2038'.
[  406.238250][T12833] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2039'.
[  406.253029][T12833] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  406.267945][T12833] batman_adv: batadv0: Removing interface: batadv_slave_1
[  406.463808][T12839] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  406.505782][T12839] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  407.708354][T12876] sp0: Synchronizing with TNC
[  407.796292][T12865] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2045'.
[  407.925890][T12865] bond0: (slave bond_slave_0): Releasing backup interface
[  407.995151][T12882] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2051'.
[  408.564247][T12893] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  408.626713][T12893] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  408.660016][T12905] FAULT_INJECTION: forcing a failure.
[  408.660016][T12905] name failslab, interval 1, probability 0, space 0, times 0
[  408.707517][T12905] CPU: 0 UID: 0 PID: 12905 Comm: syz.4.2058 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  408.718336][T12905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  408.728402][T12905] Call Trace:
[  408.731677][T12905]  <TASK>
[  408.734609][T12905]  dump_stack_lvl+0x16c/0x1f0
[  408.739298][T12905]  should_fail_ex+0x497/0x5b0
[  408.743981][T12905]  ? fs_reclaim_acquire+0xae/0x150
[  408.749102][T12905]  should_failslab+0xc2/0x120
[  408.753828][T12905]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  408.759208][T12905]  ? ptlock_alloc+0x1f/0x70
[  408.763725][T12905]  ptlock_alloc+0x1f/0x70
[  408.768064][T12905]  pte_alloc_one+0x74/0x390
[  408.772577][T12905]  do_pte_missing+0x1ae7/0x3e00
[  408.777450][T12905]  __handle_mm_fault+0x103c/0x2a40
[  408.782586][T12905]  ? __pfx___handle_mm_fault+0x10/0x10
[  408.788054][T12905]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  408.793706][T12905]  ? find_vma+0xc0/0x140
[  408.797953][T12905]  ? __pfx_find_vma+0x10/0x10
[  408.802637][T12905]  handle_mm_fault+0x3fa/0xaa0
[  408.807415][T12905]  do_user_addr_fault+0x7a3/0x13f0
[  408.812545][T12905]  exc_page_fault+0x5c/0xc0
[  408.817057][T12905]  asm_exc_page_fault+0x26/0x30
[  408.821918][T12905] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  408.827827][T12905] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  408.847447][T12905] RSP: 0018:ffffc9000497f960 EFLAGS: 00050246
[  408.853523][T12905] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000040
[  408.861493][T12905] RDX: fffff5200092ff62 RSI: 0000000000000000 RDI: ffffc9000497fad0
[  408.869479][T12905] RBP: ffffc9000497fd38 R08: 0000000000000001 R09: fffff5200092ff61
[  408.877465][T12905] R10: ffffc9000497fb0f R11: 0000000000000000 R12: 0000000000000040
[  408.885448][T12905] R13: 00007ffffffff000 R14: ffffc9000497fad0 R15: 0000000000000040
[  408.893438][T12905]  _copy_from_iter+0x384/0x1400
[  408.898311][T12905]  ? __pfx__copy_from_iter+0x10/0x10
[  408.903607][T12905]  ? __pfx_lock_release+0x10/0x10
[  408.908631][T12905]  ? trace_lock_acquire+0x14e/0x1f0
[  408.913847][T12905]  write_pool_user+0xe9/0x2f0
[  408.918538][T12905]  ? __pfx_write_pool_user+0x10/0x10
[  408.923862][T12905]  do_iter_readv_writev+0x532/0x7f0
[  408.929068][T12905]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  408.934821][T12905]  ? bpf_lsm_file_permission+0x9/0x10
[  408.940242][T12905]  ? security_file_permission+0x71/0x210
[  408.945985][T12905]  vfs_writev+0x363/0xdd0
[  408.950328][T12905]  ? __pfx_lock_release+0x10/0x10
[  408.955356][T12905]  ? proc_fail_nth_write+0xa0/0x250
[  408.960582][T12905]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  408.966230][T12905]  ? __pfx_vfs_writev+0x10/0x10
[  408.971086][T12905]  ? vfs_write+0x306/0x1150
[  408.975615][T12905]  ? do_writev+0x133/0x340
[  408.980029][T12905]  do_writev+0x133/0x340
[  408.984277][T12905]  ? __pfx_do_writev+0x10/0x10
[  408.989051][T12905]  do_syscall_64+0xcd/0x250
[  408.993562][T12905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.999476][T12905] RIP: 0033:0x7f1e35585d29
[  409.003902][T12905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  409.023689][T12905] RSP: 002b:00007f1e3637b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  409.032116][T12905] RAX: ffffffffffffffda RBX: 00007f1e35775fa0 RCX: 00007f1e35585d29
[  409.040107][T12905] RDX: 0000000000000001 RSI: 0000000020000100 RDI: 0000000000000001
[  409.048077][T12905] RBP: 00007f1e3637b090 R08: 0000000000000000 R09: 0000000000000000
[  409.056053][T12905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  409.064049][T12905] R13: 0000000000000000 R14: 00007f1e35775fa0 R15: 00007ffece898b18
[  409.072070][T12905]  </TASK>
[  409.747045][T12918] FAULT_INJECTION: forcing a failure.
[  409.747045][T12918] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  409.807950][T12918] CPU: 1 UID: 0 PID: 12918 Comm: syz.3.2061 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  409.818795][T12918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  409.828956][T12918] Call Trace:
[  409.832460][T12918]  <TASK>
[  409.835395][T12918]  dump_stack_lvl+0x16c/0x1f0
[  409.840096][T12918]  should_fail_ex+0x497/0x5b0
[  409.844785][T12918]  _copy_to_user+0x32/0xd0
[  409.849212][T12918]  simple_read_from_buffer+0xd0/0x160
[  409.854705][T12918]  proc_fail_nth_read+0x198/0x270
[  409.859743][T12918]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  409.865302][T12918]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  409.870863][T12918]  vfs_read+0x1df/0xbe0
[  409.875032][T12918]  ? __fget_files+0x1fc/0x3a0
[  409.879817][T12918]  ? __pfx___mutex_lock+0x10/0x10
[  409.884846][T12918]  ? __pfx_vfs_read+0x10/0x10
[  409.889540][T12918]  ? __fget_files+0x206/0x3a0
[  409.894228][T12918]  ksys_read+0x12b/0x250
[  409.898479][T12918]  ? __pfx_ksys_read+0x10/0x10
[  409.903257][T12918]  do_syscall_64+0xcd/0x250
[  409.907780][T12918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.913702][T12918] RIP: 0033:0x7f6ffd58473c
[  409.918212][T12918] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  409.937824][T12918] RSP: 002b:00007f6ffe2f9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  409.946242][T12918] RAX: ffffffffffffffda RBX: 00007f6ffd775fa0 RCX: 00007f6ffd58473c
[  409.954222][T12918] RDX: 000000000000000f RSI: 00007f6ffe2f90a0 RDI: 0000000000000009
[  409.962191][T12918] RBP: 00007f6ffe2f9090 R08: 0000000000000000 R09: 0000000000000000
[  409.970176][T12918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  409.978147][T12918] R13: 0000000000000000 R14: 00007f6ffd775fa0 R15: 00007ffe5231d158
[  409.986133][T12918]  </TASK>
[  409.989168][    C1] vkms_vblank_simulate: vblank timer overrun
[  410.619480][T12926] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2062'.
[  410.721561][T12936] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2066'.
[  410.793106][T12940] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2069'.
[  410.815344][T12926] bond0: (slave bond_slave_0): Releasing backup interface
[  410.868846][T12941] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2068'.
[  412.250211][T12973] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2078'.
[  412.270652][T12973] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2078'.
[  412.551172][T12979] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  412.570168][T12979] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  412.814693][T12995] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2084'.
[  413.336933][T13002] vivid-013: =================  START STATUS  =================
[  413.363611][T13002] vivid-013: Generate PTS: true
[  413.369336][T13002] vivid-013: Generate SCR: true
[  413.377919][T13002] tpg source WxH: 640x360 (Y'CbCr)
[  413.385132][T13002] tpg field: 1
[  413.393348][T13002] tpg crop: 640x360@0x0
[  413.400525][T13002] tpg compose: 640x360@0x0
[  413.410236][T13002] tpg colorspace: 8
[  413.418209][T13002] tpg transfer function: 0/0
[  413.427866][T13002] tpg Y'CbCr encoding: 0/0
[  413.432322][T13002] tpg quantization: 0/0
[  413.447174][T13002] tpg RGB range: 0/2
[  413.452240][T13002] vivid-013: ==================  END STATUS  ==================
[  413.467665][T13005] vivid-013: =================  START STATUS  =================
[  413.485709][T13005] vivid-013: Generate PTS: true
[  413.511535][T13005] vivid-013: Generate SCR: true
[  413.526754][T13005] tpg source WxH: 640x360 (Y'CbCr)
[  413.536545][T13005] tpg field: 1
[  413.546671][T13005] tpg crop: 640x360@0x0
[  413.553646][T13005] tpg compose: 640x360@0x0
[  413.571994][T13005] tpg colorspace: 8
[  413.582368][T13005] tpg transfer function: 0/0
[  413.605153][T13005] tpg Y'CbCr encoding: 0/0
[  413.615115][T13005] tpg quantization: 0/0
[  413.637776][T13005] tpg RGB range: 0/2
[  413.641897][T13005] vivid-013: ==================  END STATUS  ==================
[  414.002357][T13019] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  414.035478][T13019] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  414.786939][T13033] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2093'.
[  415.088280][T13040] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  415.107585][T13040] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  415.731073][T13054] vivid-013: =================  START STATUS  =================
[  415.741040][T13054] vivid-013: Generate PTS: true
[  415.746010][T13054] vivid-013: Generate SCR: true
[  415.753206][T13054] tpg source WxH: 640x360 (Y'CbCr)
[  415.759449][T13054] tpg field: 1
[  415.762935][T13054] tpg crop: 640x360@0x0
[  415.767244][T13054] tpg compose: 640x360@0x0
[  415.777540][T13054] tpg colorspace: 8
[  415.783453][T13054] tpg transfer function: 0/0
[  415.789428][T13054] tpg Y'CbCr encoding: 0/0
[  415.794066][T13054] tpg quantization: 0/0
[  415.832642][T13054] tpg RGB range: 0/2
[  415.841262][T13054] vivid-013: ==================  END STATUS  ==================
[  415.859161][T13056] vivid-013: =================  START STATUS  =================
[  415.867531][T13056] vivid-013: Generate PTS: true
[  415.872452][T13056] vivid-013: Generate SCR: true
[  415.888010][T13056] tpg source WxH: 640x360 (Y'CbCr)
[  415.893448][T13056] tpg field: 1
[  415.897305][T13056] tpg crop: 640x360@0x0
[  415.903235][T13056] tpg compose: 640x360@0x0
[  415.908519][T13056] tpg colorspace: 8
[  415.912490][T13056] tpg transfer function: 0/0
[  415.920686][T13056] tpg Y'CbCr encoding: 0/0
[  415.927844][T13056] tpg quantization: 0/0
[  415.932903][T13056] tpg RGB range: 0/2
[  415.937007][T13056] vivid-013: ==================  END STATUS  ==================
[  415.952371][T13060] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2100'.
[  415.968055][T13060] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2100'.
[  415.987381][T13060] vivid-013: =================  START STATUS  =================
[  415.995352][T13060] vivid-013: Generate PTS: true
[  416.009516][T13060] vivid-013: Generate SCR: true
[  416.014630][T13060] tpg source WxH: 640x360 (Y'CbCr)
[  416.029963][T13060] tpg field: 1
[  416.054872][T13060] tpg crop: 640x360@0x0
[  416.062850][T13060] tpg compose: 640x360@0x0
[  416.079853][T13060] tpg colorspace: 8
[  416.096576][T13060] tpg transfer function: 0/0
[  416.101996][T13060] tpg Y'CbCr encoding: 0/0
[  416.106460][T13060] tpg quantization: 0/0
[  416.122265][T13060] tpg RGB range: 0/2
[  416.129840][T13060] vivid-013: ==================  END STATUS  ==================
[  416.254768][T13070] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2102'.
[  417.061591][T13088] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  417.087970][T13088] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  417.163777][T13091] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2117'.
[  418.140222][T13118] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2118'.
[  418.979275][T13138] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  419.015331][T13138] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  419.248586][T13155] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2129'.
[  419.787169][T13165] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(2)
[  420.274507][T13179] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2135'.
[  421.080417][T13189] capability: warning: `syz.3.2139' uses deprecated v2 capabilities in a way that may be insecure
[  421.265231][T13197] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2150'.
[  421.404476][T13199] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  421.415244][T13199] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  421.668650][T13207] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2144'.
[  421.762199][T13209] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2145'.
[  422.249529][T13217] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2149'.
[  422.527470][T13224] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2159'.
[  422.673707][T13233] FAULT_INJECTION: forcing a failure.
[  422.673707][T13233] name failslab, interval 1, probability 0, space 0, times 0
[  422.697181][T13233] CPU: 0 UID: 0 PID: 13233 Comm: syz.4.2153 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  422.708000][T13233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  422.718085][T13233] Call Trace:
[  422.721375][T13233]  <TASK>
[  422.724307][T13233]  dump_stack_lvl+0x16c/0x1f0
[  422.728994][T13233]  should_fail_ex+0x497/0x5b0
[  422.733677][T13233]  ? fs_reclaim_acquire+0xae/0x150
[  422.738802][T13233]  should_failslab+0xc2/0x120
[  422.743499][T13233]  __kmalloc_noprof+0xce/0x4f0
[  422.748270][T13233]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  422.753909][T13233]  ? tomoyo_realpath_from_path+0xbf/0x710
[  422.759637][T13233]  tomoyo_realpath_from_path+0xbf/0x710
[  422.765188][T13233]  ? tomoyo_path_number_perm+0x235/0x5b0
[  422.770837][T13233]  tomoyo_path_number_perm+0x248/0x5b0
[  422.776306][T13233]  ? tomoyo_path_number_perm+0x235/0x5b0
[  422.782046][T13233]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  422.788061][T13233]  ? __pfx_lock_release+0x10/0x10
[  422.793095][T13233]  ? trace_lock_acquire+0x14e/0x1f0
[  422.798339][T13233]  ? lock_acquire+0x2f/0xb0
[  422.802859][T13233]  ? __fget_files+0x40/0x3a0
[  422.807464][T13233]  ? __fget_files+0x206/0x3a0
[  422.812162][T13233]  security_file_ioctl+0x9b/0x240
[  422.817283][T13233]  __x64_sys_ioctl+0xb7/0x200
[  422.821971][T13233]  do_syscall_64+0xcd/0x250
[  422.826484][T13233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  422.832412][T13233] RIP: 0033:0x7f1e35585d29
[  422.836833][T13233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  422.856459][T13233] RSP: 002b:00007f1e3637b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  422.864965][T13233] RAX: ffffffffffffffda RBX: 00007f1e35775fa0 RCX: 00007f1e35585d29
[  422.873808][T13233] RDX: 0000000020000140 RSI: 00000000000089b0 RDI: 0000000000000003
[  422.881898][T13233] RBP: 00007f1e3637b090 R08: 0000000000000000 R09: 0000000000000000
[  422.889983][T13233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  422.898053][T13233] R13: 0000000000000000 R14: 00007f1e35775fa0 R15: 00007ffece898b18
[  422.906255][T13233]  </TASK>
[  422.938222][T13233] ERROR: Out of memory at tomoyo_realpath_from_path.
[  423.710317][T13266] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2162'.
[  423.961679][T13275] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2163'.
[  424.145922][T13276] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  424.169317][T13276] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  425.128157][T13300] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2175'.
[  425.232923][T13298] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2172'.
[  425.788611][T13313] Invalid ELF header magic: != ELF
[  427.221665][T13355] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2188'.
[  427.692128][T13366] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2192'.
[  427.831814][T13370] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2193'.
[  427.851060][T13370] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2193'.
[  428.086735][T13374] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2196'.
[  428.181329][T13377] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  428.239009][T13377] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  429.980526][T13433] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2207'.
[  431.830202][T13490] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2223'.
[  432.631493][T13503] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2228'.
[  432.681924][T13503] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2228'.
[  432.749057][T13513] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2231'.
[  433.141810][T13522] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2240'.
[  433.395221][T13502] kexec: Could not allocate control_code_buffer
[  433.522758][T13526] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  433.643254][T13526] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  434.167914][T13547] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2239'.
[  435.087388][T13563] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2244'.
[  435.211486][T13563] bridge0: left promiscuous mode
[  435.352310][T13566] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2245'.
[  435.844183][T13574] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2247'.
[  435.894051][T13577] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2248'.
[  436.445463][T13583] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  436.468242][T13583] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  436.859258][T13589] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2252'.
[  437.165973][T13594] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  437.185977][T13594] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  438.145680][T13624] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2260'.
[  438.170385][T13624] bridge0: left promiscuous mode
[  438.285801][T13625] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  438.303206][T13625] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  439.058520][T13639] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2262'.
[  439.614300][T13654] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2266'.
[  440.158110][T13668] netlink: 'syz.3.2271': attribute type 16 has an invalid length.
[  440.166252][T13668] netlink: 322 bytes leftover after parsing attributes in process `syz.3.2271'.
[  440.285647][T13670] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  440.296938][T13670] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  440.549074][T13680] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2274'.
[  440.731946][T13687] netlink: 326 bytes leftover after parsing attributes in process `syz.4.2275'.
[  440.859613][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  440.866326][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  441.167792][T13694] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2277'.
[  441.302801][T13700] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2287'.
[  442.201205][T13723] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2283'.
[  442.665188][T13731] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  442.675239][T13731] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  443.434774][T13748] netlink: 326 bytes leftover after parsing attributes in process `syz.4.2292'.
[  443.535909][T13754] Invalid ELF header magic: != ELF
[  444.219767][T13765] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  444.247547][T13765] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  444.394709][T13769] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2296'.
[  444.514780][T13772] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2297'.
[  445.267771][T13787] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  445.300153][T13787] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  446.178097][T13816] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  446.207630][T13816] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  446.255589][T13822] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2312'.
[  446.915815][T13828] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2313'.
[  447.151100][T13833] netlink: 4755 bytes leftover after parsing attributes in process `syz.2.2315'.
[  447.378160][T13840] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2326'.
[  447.681938][T13844] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  447.697618][T13844] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  448.598253][T13871] netlink: 326 bytes leftover after parsing attributes in process `syz.4.2327'.
[  448.769701][T13872] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  448.813518][T13877] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2328'.
[  448.820891][T13872] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  449.420992][T13889] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2331'.
[  449.942089][T13897] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  449.954319][T13897] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  450.605596][T13907] netlink: 4755 bytes leftover after parsing attributes in process `syz.3.2337'.
[  451.309243][T13925] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2342'.
[  451.729546][T13931] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2344'.
[  452.490548][T13949] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  452.507581][T13949] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  453.382354][T13968] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2355'.
[  454.828571][T13996] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  454.907578][T13996] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  455.596871][T14015] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2369'.
[  456.179126][T14033] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2372'.
[  458.343871][T14074] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2386'.
[  458.515681][T14076] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  458.637621][T14076] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  458.685358][T14081] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2388'.
[  459.873991][T14103] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  459.949713][T14103] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  461.168324][ T5144] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  461.178921][ T5144] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  461.187011][ T5144] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  461.196929][ T5144] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  461.204871][ T5144] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  461.228085][ T5144] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  461.343743][T14138] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2405'.
[  461.623107][T14131] chnl_net:caif_netlink_parms(): no params data found
[  461.687702][T14147] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2407'.
[  461.849328][T14131] bridge0: port 1(bridge_slave_0) entered blocking state
[  461.856651][T14131] bridge0: port 1(bridge_slave_0) entered disabled state
[  461.864080][T14131] bridge_slave_0: entered allmulticast mode
[  461.871369][T14131] bridge_slave_0: entered promiscuous mode
[  461.888832][T14131] bridge0: port 2(bridge_slave_1) entered blocking state
[  461.896154][T14131] bridge0: port 2(bridge_slave_1) entered disabled state
[  461.903774][T14131] bridge_slave_1: entered allmulticast mode
[  461.919254][T14131] bridge_slave_1: entered promiscuous mode
[  461.989854][T14131] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  462.011626][T14131] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  462.091301][T14131] team0: Port device team_slave_0 added
[  462.112031][T14131] team0: Port device team_slave_1 added
[  462.177688][T14131] batman_adv: batadv0: Adding interface: batadv_slave_0
[  462.195605][T14131] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  462.271968][T14131] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  462.301262][T14131] batman_adv: batadv0: Adding interface: batadv_slave_1
[  462.324561][T14131] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  462.350559][    C1] vkms_vblank_simulate: vblank timer overrun
[  462.379833][T14131] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  462.517316][T14131] hsr_slave_0: entered promiscuous mode
[  462.547927][T14153] Process accounting resumed
[  462.573785][T14131] hsr_slave_1: entered promiscuous mode
[  463.225027][T14131] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.257764][   T54] Bluetooth: hci3: command tx timeout
[  463.408428][T14131] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.444387][T14174] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2412'.
[  463.523968][T14131] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.680008][T14131] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.987398][T14131] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  464.085922][T14131] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  464.107790][T14178] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  464.118819][T14131] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  464.128948][T14131] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  464.177581][T14178] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  464.463587][T14131] 8021q: adding VLAN 0 to HW filter on device bond0
[  464.488878][T14131] 8021q: adding VLAN 0 to HW filter on device team0
[  464.545453][ T3001] bridge0: port 1(bridge_slave_0) entered blocking state
[  464.552667][ T3001] bridge0: port 1(bridge_slave_0) entered forwarding state
[  464.580600][ T3001] bridge0: port 2(bridge_slave_1) entered blocking state
[  464.587760][ T3001] bridge0: port 2(bridge_slave_1) entered forwarding state
[  464.861858][T14194] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2416'.
[  465.154130][T14131] 8021q: adding VLAN 0 to HW filter on device batadv0
[  465.338868][   T54] Bluetooth: hci3: command tx timeout
[  465.414481][T14131] veth0_vlan: entered promiscuous mode
[  465.431669][T14131] veth1_vlan: entered promiscuous mode
[  465.530208][T14131] veth0_macvtap: entered promiscuous mode
[  465.552931][T14131] veth1_macvtap: entered promiscuous mode
[  465.590691][T14131] batman_adv: batadv0: Interface activated: batadv_slave_0
[  465.619367][T14131] batman_adv: batadv0: Interface activated: batadv_slave_1
[  465.646093][T14131] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  465.667851][T14131] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  465.697033][T14131] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  465.712376][T14131] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  465.933706][T14211] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  465.967644][T14211] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  466.504943][  T241] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  466.543404][  T241] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  466.639072][ T3001] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  466.677621][ T3001] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  466.888723][T14216] Process accounting resumed
[  467.058784][T14229] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2399'.
[  467.418242][   T54] Bluetooth: hci3: command tx timeout
[  468.066195][ T5144] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  468.079831][ T5144] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  468.104732][ T5144] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  468.141301][ T5144] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  468.154680][ T5144] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  468.162189][ T5144] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  468.626769][T14244] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  468.747106][T14244] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  469.502166][ T5144] Bluetooth: hci3: command tx timeout
[  469.595731][T14269] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2433'.
[  469.655817][T14246] chnl_net:caif_netlink_parms(): no params data found
[  470.037398][T14246] bridge0: port 1(bridge_slave_0) entered blocking state
[  470.054701][T14246] bridge0: port 1(bridge_slave_0) entered disabled state
[  470.075668][T14246] bridge_slave_0: entered allmulticast mode
[  470.086728][T14246] bridge_slave_0: entered promiscuous mode
[  470.106945][T14246] bridge0: port 2(bridge_slave_1) entered blocking state
[  470.117716][T14246] bridge0: port 2(bridge_slave_1) entered disabled state
[  470.124993][T14246] bridge_slave_1: entered allmulticast mode
[  470.158650][T14246] bridge_slave_1: entered promiscuous mode
[  470.209536][T14246] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  470.227543][ T5144] Bluetooth: hci2: command tx timeout
[  470.263334][T14246] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  470.390685][T14246] team0: Port device team_slave_0 added
[  470.425777][T14246] team0: Port device team_slave_1 added
[  470.582037][T14246] batman_adv: batadv0: Adding interface: batadv_slave_0
[  470.595073][T14246] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  470.657587][T14246] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  470.678196][T14246] batman_adv: batadv0: Adding interface: batadv_slave_1
[  470.685263][T14246] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  470.711195][    C1] vkms_vblank_simulate: vblank timer overrun
[  470.747627][T14246] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  470.825448][T14279] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  470.858859][T14279] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  470.876176][T14246] hsr_slave_0: entered promiscuous mode
[  470.898963][T14246] hsr_slave_1: entered promiscuous mode
[  470.917544][T14246] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  470.935910][T14246] Cannot create hsr debugfs directory
[  471.362515][T14246] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.553742][T14246] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.676633][T14246] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.784609][T14246] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.930034][T14300] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2440'.
[  472.096982][T14246] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  472.112264][T14246] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  472.124102][T14246] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  472.141732][T14246] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  472.309484][ T5144] Bluetooth: hci2: command tx timeout
[  472.435200][T14246] 8021q: adding VLAN 0 to HW filter on device bond0
[  472.460676][T14246] 8021q: adding VLAN 0 to HW filter on device team0
[  472.482348][ T3526] bridge0: port 1(bridge_slave_0) entered blocking state
[  472.489552][ T3526] bridge0: port 1(bridge_slave_0) entered forwarding state
[  472.533731][ T3526] bridge0: port 2(bridge_slave_1) entered blocking state
[  472.541049][ T3526] bridge0: port 2(bridge_slave_1) entered forwarding state
[  472.851439][T14246] 8021q: adding VLAN 0 to HW filter on device batadv0
[  472.864621][T14319] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2445'.
[  472.895944][T14317] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2444'.
[  473.144762][T14319] team0 (unregistering): Port device team_slave_0 removed
[  473.159561][T14319] team0 (unregistering): Port device team_slave_1 removed
[  473.212956][T14246] veth0_vlan: entered promiscuous mode
[  473.226907][T14246] veth1_vlan: entered promiscuous mode
[  473.306926][T14246] veth0_macvtap: entered promiscuous mode
[  473.317343][T14246] veth1_macvtap: entered promiscuous mode
[  473.332546][T14246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  473.343276][T14246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  473.355905][T14246] batman_adv: batadv0: Interface activated: batadv_slave_0
[  473.366208][T14246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  473.376986][T14246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  473.388268][T14246] batman_adv: batadv0: Interface activated: batadv_slave_1
[  473.412059][T14246] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  473.421210][T14246] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  473.430259][T14246] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  473.443527][T14246] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  473.541716][T14322] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2446'.
[  473.551436][ T3001] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  473.567991][ T3001] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  473.590005][T14322] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2446'.
[  473.611666][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  473.622030][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  473.705874][T14330] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2428'.
[  474.132362][T14330] team0 (unregistering): Port device team_slave_0 removed
[  474.164058][T14330] team0 (unregistering): Port device team_slave_1 removed
[  474.254553][T14336] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  474.277953][T14336] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  474.377718][ T5144] Bluetooth: hci2: command tx timeout
[  474.386780][ T5144] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  474.399791][ T5144] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  474.412173][ T5144] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  474.441760][ T5144] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  474.464562][ T5144] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  474.487885][ T5144] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  474.912019][T14340] chnl_net:caif_netlink_parms(): no params data found
[  475.306039][T14340] bridge0: port 1(bridge_slave_0) entered blocking state
[  475.313342][T14340] bridge0: port 1(bridge_slave_0) entered disabled state
[  475.325566][T14340] bridge_slave_0: entered allmulticast mode
[  475.353542][T14340] bridge_slave_0: entered promiscuous mode
[  475.397780][T14352] mkiss: ax0: crc mode is auto.
[  475.418516][T14340] bridge0: port 2(bridge_slave_1) entered blocking state
[  475.427914][T14340] bridge0: port 2(bridge_slave_1) entered disabled state
[  475.435170][T14340] bridge_slave_1: entered allmulticast mode
[  475.453391][T14340] bridge_slave_1: entered promiscuous mode
[  475.560684][T14340] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  475.599141][T14340] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  475.692719][T14340] team0: Port device team_slave_0 added
[  475.713900][T14340] team0: Port device team_slave_1 added
[  475.806117][T14340] batman_adv: batadv0: Adding interface: batadv_slave_0
[  475.825312][T14340] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  475.851425][    C1] vkms_vblank_simulate: vblank timer overrun
[  475.859518][T14340] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  475.874602][T14340] batman_adv: batadv0: Adding interface: batadv_slave_1
[  475.882171][T14340] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  475.916291][T14340] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  475.975539][T14340] hsr_slave_0: entered promiscuous mode
[  475.988732][T14340] hsr_slave_1: entered promiscuous mode
[  476.004589][T14340] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  476.012715][T14340] Cannot create hsr debugfs directory
[  476.250590][T14340] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.369595][T14340] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.460586][ T5144] Bluetooth: hci2: command tx timeout
[  476.502862][T14340] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.537875][ T5144] Bluetooth: hci0: command tx timeout
[  476.693180][T14340] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.894793][T14340] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  476.906140][T14340] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  476.920019][T14340] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  476.935647][T14340] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  477.084359][T14340] 8021q: adding VLAN 0 to HW filter on device bond0
[  477.118310][T14340] 8021q: adding VLAN 0 to HW filter on device team0
[  477.125673][T14390] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2460'.
[  477.132301][  T241] bridge0: port 1(bridge_slave_0) entered blocking state
[  477.141854][  T241] bridge0: port 1(bridge_slave_0) entered forwarding state
[  477.178912][T14340] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  477.190586][T14340] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  477.210449][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  477.217674][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  477.406897][T14399] tipc: Started in network mode
[  477.424366][T14399] tipc: Node identity ee00, cluster identity 4711
[  477.455446][T14399] tipc: Node number set to 60928
[  477.480809][T14392] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  477.517762][T14392] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  477.546582][T14340] 8021q: adding VLAN 0 to HW filter on device batadv0
[  477.604839][T14340] veth0_vlan: entered promiscuous mode
[  477.629499][T14340] veth1_vlan: entered promiscuous mode
[  477.713733][T14340] veth0_macvtap: entered promiscuous mode
[  477.738870][T14340] veth1_macvtap: entered promiscuous mode
[  477.756576][T14340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  477.779055][T14340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.794127][T14340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  477.807326][T14340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.818589][T14340] batman_adv: batadv0: Interface activated: batadv_slave_0
[  477.896723][T14340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  477.909068][T14340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.919372][T14340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  477.929929][T14340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.941927][T14340] batman_adv: batadv0: Interface activated: batadv_slave_1
[  477.952513][T14340] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  477.961735][T14340] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  477.970910][T14340] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  477.992794][T14340] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  478.033519][T14413] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  478.077952][T14413] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  478.164366][T14417] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2467'.
[  478.429235][  T241] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  478.439032][  T241] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  478.452364][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  478.460424][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  478.635782][ T5144] Bluetooth: hci0: command tx timeout
[  479.036831][   T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  479.047349][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  479.052598][T14429] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2471'.
[  479.063801][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  479.089373][   T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  479.102296][   T54] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  479.109862][   T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  479.435246][T14432] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2472'.
[  480.352911][T14426] chnl_net:caif_netlink_parms(): no params data found
[  480.624807][T14426] bridge0: port 1(bridge_slave_0) entered blocking state
[  480.653657][T14450] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2476'.
[  480.666191][T14426] bridge0: port 1(bridge_slave_0) entered disabled state
[  480.685242][T14426] bridge_slave_0: entered allmulticast mode
[  480.699228][   T54] Bluetooth: hci0: command tx timeout
[  480.703729][T14426] bridge_slave_0: entered promiscuous mode
[  480.714652][T14426] bridge0: port 2(bridge_slave_1) entered blocking state
[  480.722383][T14426] bridge0: port 2(bridge_slave_1) entered disabled state
[  480.732504][T14426] bridge_slave_1: entered allmulticast mode
[  480.740011][T14426] bridge_slave_1: entered promiscuous mode
[  480.849798][T14426] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  480.861911][T14426] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  480.893746][T14426] team0: Port device team_slave_0 added
[  480.903335][T14426] team0: Port device team_slave_1 added
[  480.949112][T14426] batman_adv: batadv0: Adding interface: batadv_slave_0
[  480.957805][T14426] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  480.989596][T14426] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  481.011788][T14426] batman_adv: batadv0: Adding interface: batadv_slave_1
[  481.019361][T14426] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  481.045512][    C1] vkms_vblank_simulate: vblank timer overrun
[  481.052761][T14426] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  481.067911][T14456] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  481.079850][T14456] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  481.153635][T14426] hsr_slave_0: entered promiscuous mode
[  481.160963][T14426] hsr_slave_1: entered promiscuous mode
[  481.167131][T14426] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  481.177405][T14426] Cannot create hsr debugfs directory
[  481.178503][   T54] Bluetooth: hci1: command tx timeout
[  481.359098][T14426] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.440237][T14426] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.521752][T14426] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.598882][T14426] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.744333][T14464] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  481.800768][T14464] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  481.988634][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  481.988653][   T29] audit: type=1326 audit(6030359084.935:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14468 comm="syz.3.2481" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9c27185d29 code=0x0
[  482.015302][T14426] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  482.058969][T14426] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  482.123244][T14426] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  482.195962][T14426] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  482.563678][T14489] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2482'.
[  482.798199][T14426] 8021q: adding VLAN 0 to HW filter on device bond0
[  482.816143][T14426] 8021q: adding VLAN 0 to HW filter on device team0
[  482.817656][   T54] Bluetooth: hci0: command tx timeout
[  482.850028][   T67] bridge0: port 1(bridge_slave_0) entered blocking state
[  482.857400][   T67] bridge0: port 1(bridge_slave_0) entered forwarding state
[  482.889903][   T67] bridge0: port 2(bridge_slave_1) entered blocking state
[  482.897101][   T67] bridge0: port 2(bridge_slave_1) entered forwarding state
[  483.259752][   T54] Bluetooth: hci1: command tx timeout
[  483.324107][T14507] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2485'.
[  483.393987][T14426] 8021q: adding VLAN 0 to HW filter on device batadv0
[  483.424850][T14508] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2484'.
[  483.556373][T14514] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2486'.
[  483.826563][T14426] veth0_vlan: entered promiscuous mode
[  483.840867][T14426] veth1_vlan: entered promiscuous mode
[  483.885494][T14426] veth0_macvtap: entered promiscuous mode
[  483.906091][T14426] veth1_macvtap: entered promiscuous mode
[  483.933809][T14426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  483.945475][T14426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.956055][T14426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  483.966837][T14426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.982931][T14426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  483.993595][T14426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.005473][T14426] batman_adv: batadv0: Interface activated: batadv_slave_0
[  484.030923][T14426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  484.044085][T14426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.055978][T14426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  484.067909][T14426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.078970][T14426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  484.092147][T14426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.105712][T14426] batman_adv: batadv0: Interface activated: batadv_slave_1
[  484.121818][T14426] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  484.152676][T14426] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  484.161857][T14426] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  484.170856][T14426] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  484.277322][   T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  484.285724][   T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  484.324994][ T3567] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  484.348119][ T3567] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  484.583555][T14532] mkiss: ax0: crc mode is auto.
[  484.903658][T14545] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2493'.
[  485.337921][   T54] Bluetooth: hci1: command tx timeout
[  485.480628][T14554] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  485.518032][T14554] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  486.364314][T14584] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2507'.
[  486.562301][T14585] mkiss: ax0: crc mode is auto.
[  487.236717][T14608] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  487.312768][T14608] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  487.418729][   T54] Bluetooth: hci1: command tx timeout
[  488.329195][T14640] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2522'.
[  488.425500][T14642] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2524'.
[  489.089061][T14658] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  489.108802][T14658] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  489.816629][T14683] can: request_module (can-proto-0) failed.
[  489.843942][T14686] kernel read not supported for file /#)-\&[} (pid: 14686 comm: syz.0.2538)
[  489.844138][   T29] audit: type=1804 audit(6030359092.795:28): pid=14686 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2538" name="#)-\&[}" dev="mqueue" ino=55922 res=1 errno=0
[  489.910807][   T29] audit: type=1800 audit(6030359092.805:29): pid=14686 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2538" name="#)-\&[}" dev="mqueue" ino=55922 res=0 errno=0
[  489.931712][   T29] audit: type=1804 audit(6030359092.835:30): pid=14683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2538" name="#)-\&[}" dev="mqueue" ino=55922 res=1 errno=0
[  489.955253][   T29] audit: type=1804 audit(6030359092.835:31): pid=14683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2538" name="#)-\&[}" dev="mqueue" ino=55922 res=1 errno=0
[  490.637357][T14705] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2544'.
[  491.315130][T14720] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  491.331774][T14720] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  492.735454][T14761] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2560'.
[  493.792943][T14781] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  493.811477][T14781] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  494.498040][T14802] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2571'.
[  494.742227][T14807] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2573'.
[  495.090789][T14811] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2574'.
[  496.296754][T14842] can: request_module (can-proto-0) failed.
[  496.379565][T14840] kernel read not supported for file /#)-\&[} (pid: 14840 comm: syz.2.2583)
[  496.380484][   T29] audit: type=1804 audit(6030359099.335:32): pid=14840 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2583" name="#)-\&[}" dev="mqueue" ino=57275 res=1 errno=0
[  496.422286][   T29] audit: type=1800 audit(6030359099.345:33): pid=14840 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2583" name="#)-\&[}" dev="mqueue" ino=57275 res=0 errno=0
[  496.443512][   T29] audit: type=1804 audit(6030359099.345:34): pid=14840 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2583" name="#)-\&[}" dev="mqueue" ino=57275 res=1 errno=0
[  496.464579][   T29] audit: type=1804 audit(6030359099.345:35): pid=14840 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2583" name="#)-\&[}" dev="mqueue" ino=57275 res=1 errno=0
[  497.229211][T14865] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2591'.
[  497.690549][T14881] FAULT_INJECTION: forcing a failure.
[  497.690549][T14881] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  497.718865][T14881] CPU: 1 UID: 0 PID: 14881 Comm: syz.4.2595 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  497.729709][T14881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  497.739797][T14881] Call Trace:
[  497.743100][T14881]  <TASK>
[  497.746054][T14881]  dump_stack_lvl+0x16c/0x1f0
[  497.750772][T14881]  should_fail_ex+0x497/0x5b0
[  497.755504][T14881]  _copy_from_user+0x2e/0xd0
[  497.760141][T14881]  copy_msghdr_from_user+0x99/0x160
[  497.765361][T14881]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  497.771202][T14881]  ? __lock_acquire+0xcc5/0x3c40
[  497.776183][T14881]  ___sys_sendmsg+0xff/0x1e0
[  497.780809][T14881]  ? __pfx____sys_sendmsg+0x10/0x10
[  497.786217][T14881]  ? trace_lock_acquire+0x14e/0x1f0
[  497.791637][T14881]  __sys_sendmmsg+0x201/0x420
[  497.796351][T14881]  ? __pfx___sys_sendmmsg+0x10/0x10
[  497.801587][T14881]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  497.807597][T14881]  ? fput+0x67/0x440
[  497.811504][T14881]  ? ksys_write+0x1ba/0x250
[  497.816040][T14881]  ? __pfx_ksys_write+0x10/0x10
[  497.821000][T14881]  __x64_sys_sendmmsg+0x9c/0x100
[  497.825957][T14881]  ? lockdep_hardirqs_on+0x7c/0x110
[  497.831348][T14881]  do_syscall_64+0xcd/0x250
[  497.835865][T14881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  497.841767][T14881] RIP: 0033:0x7f4a51785d29
[  497.846201][T14881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  497.866096][T14881] RSP: 002b:00007f4a4f5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  497.874633][T14881] RAX: ffffffffffffffda RBX: 00007f4a51975fa0 RCX: 00007f4a51785d29
[  497.882729][T14881] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003
[  497.890766][T14881] RBP: 00007f4a4f5f6090 R08: 0000000000000000 R09: 0000000000000000
[  497.899375][T14881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  497.907493][T14881] R13: 0000000000000000 R14: 00007f4a51975fa0 R15: 00007ffc232c2e18
[  497.915578][T14881]  </TASK>
[  497.918771][    C1] vkms_vblank_simulate: vblank timer overrun
[  498.441083][T14894] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  498.478709][T14894] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  499.244845][T14914] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2604'.
[  499.422272][T14923] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2607'.
[  500.409789][T14941] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  500.432204][T14941] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  500.693905][T14939] netlink: 'syz.3.2613': attribute type 1 has an invalid length.
[  501.075587][T14968] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2622'.
[  501.236765][T14960] netlink: 322 bytes leftover after parsing attributes in process `syz.3.2619'.
[  502.026038][T14996] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  502.048801][T14996] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  502.300437][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  502.314674][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  502.401877][T15006] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2640'.
[  503.244609][T15026] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2636'.
[  503.277172][T15026] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  503.304140][T15026] batman_adv: batadv0: Removing interface: batadv_slave_0
[  503.339500][T15026] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  503.364615][T15026] batman_adv: batadv0: Removing interface: batadv_slave_1
[  503.886783][T15024] netlink: 322 bytes leftover after parsing attributes in process `syz.2.2635'.
[  504.928753][T15065] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  504.981509][T15065] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  504.981936][T15072] FAULT_INJECTION: forcing a failure.
[  504.981936][T15072] name failslab, interval 1, probability 0, space 0, times 0
[  505.015072][T15072] CPU: 1 UID: 0 PID: 15072 Comm: syz.3.2649 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  505.025940][T15072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  505.036038][T15072] Call Trace:
[  505.039348][T15072]  <TASK>
[  505.042308][T15072]  dump_stack_lvl+0x16c/0x1f0
[  505.047029][T15072]  should_fail_ex+0x497/0x5b0
[  505.051781][T15072]  ? fs_reclaim_acquire+0xae/0x150
[  505.057030][T15072]  should_failslab+0xc2/0x120
[  505.061751][T15072]  __kmalloc_noprof+0xce/0x4f0
[  505.066548][T15072]  ? d_absolute_path+0x137/0x1b0
[  505.071519][T15072]  ? tomoyo_encode2+0x100/0x3e0
[  505.076495][T15072]  tomoyo_encode2+0x100/0x3e0
[  505.081214][T15072]  tomoyo_realpath_from_path+0x1a7/0x710
[  505.086889][T15072]  tomoyo_path_number_perm+0x248/0x5b0
[  505.092395][T15072]  ? tomoyo_path_number_perm+0x235/0x5b0
[  505.098080][T15072]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  505.104140][T15072]  ? __pfx_lock_release+0x10/0x10
[  505.109209][T15072]  ? trace_lock_acquire+0x14e/0x1f0
[  505.114471][T15072]  ? lock_acquire+0x2f/0xb0
[  505.119007][T15072]  ? __fget_files+0x40/0x3a0
[  505.123624][T15072]  ? __fget_files+0x206/0x3a0
[  505.128324][T15072]  security_file_ioctl+0x9b/0x240
[  505.133362][T15072]  __x64_sys_ioctl+0xb7/0x200
[  505.138069][T15072]  do_syscall_64+0xcd/0x250
[  505.142600][T15072]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.148506][T15072] RIP: 0033:0x7f9c27185d29
[  505.153003][T15072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  505.172633][T15072] RSP: 002b:00007f9c28057038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  505.181066][T15072] RAX: ffffffffffffffda RBX: 00007f9c27375fa0 RCX: 00007f9c27185d29
[  505.189058][T15072] RDX: 0000000000000000 RSI: 0000000000000705 RDI: 0000000000000003
[  505.197032][T15072] RBP: 00007f9c28057090 R08: 0000000000000000 R09: 0000000000000000
[  505.205008][T15072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  505.212985][T15072] R13: 0000000000000000 R14: 00007f9c27375fa0 R15: 00007ffc26d4cff8
[  505.220981][T15072]  </TASK>
[  505.224102][    C1] vkms_vblank_simulate: vblank timer overrun
[  505.240905][T15072] ERROR: Out of memory at tomoyo_realpath_from_path.
[  505.409002][T15082] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2653'.
[  505.732974][T15092] FAULT_INJECTION: forcing a failure.
[  505.732974][T15092] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  505.753795][T15092] CPU: 0 UID: 0 PID: 15092 Comm: syz.4.2655 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  505.764604][T15092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  505.774707][T15092] Call Trace:
[  505.778008][T15092]  <TASK>
[  505.780965][T15092]  dump_stack_lvl+0x16c/0x1f0
[  505.785676][T15092]  should_fail_ex+0x497/0x5b0
[  505.790413][T15092]  _copy_to_user+0x32/0xd0
[  505.794858][T15092]  simple_read_from_buffer+0xd0/0x160
[  505.800234][T15092]  proc_fail_nth_read+0x198/0x270
[  505.805281][T15092]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  505.810833][T15092]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  505.816384][T15092]  vfs_read+0x1df/0xbe0
[  505.820543][T15092]  ? __fget_files+0x1fc/0x3a0
[  505.825216][T15092]  ? __pfx___mutex_lock+0x10/0x10
[  505.830325][T15092]  ? __pfx_vfs_read+0x10/0x10
[  505.835003][T15092]  ? __fget_files+0x206/0x3a0
[  505.839682][T15092]  ksys_read+0x12b/0x250
[  505.843936][T15092]  ? __pfx_ksys_read+0x10/0x10
[  505.848743][T15092]  do_syscall_64+0xcd/0x250
[  505.853268][T15092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.859192][T15092] RIP: 0033:0x7f4a5178473c
[  505.863600][T15092] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  505.883219][T15092] RSP: 002b:00007f4a4f5f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  505.891724][T15092] RAX: ffffffffffffffda RBX: 00007f4a51975fa0 RCX: 00007f4a5178473c
[  505.899697][T15092] RDX: 000000000000000f RSI: 00007f4a4f5f60a0 RDI: 0000000000000004
[  505.907691][T15092] RBP: 00007f4a4f5f6090 R08: 0000000000000000 R09: 0000000000000000
[  505.915675][T15092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  505.923731][T15092] R13: 0000000000000000 R14: 00007f4a51975fa0 R15: 00007ffc232c2e18
[  505.931808][T15092]  </TASK>
[  506.674613][T15111] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  506.697956][T15111] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  507.062239][T15123] FAULT_INJECTION: forcing a failure.
[  507.062239][T15123] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  507.076147][T15123] CPU: 1 UID: 0 PID: 15123 Comm: syz.0.2664 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  507.086971][T15123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  507.097227][T15123] Call Trace:
[  507.100540][T15123]  <TASK>
[  507.103488][T15123]  dump_stack_lvl+0x16c/0x1f0
[  507.108183][T15123]  should_fail_ex+0x497/0x5b0
[  507.112884][T15123]  _copy_to_user+0x32/0xd0
[  507.117321][T15123]  simple_read_from_buffer+0xd0/0x160
[  507.122702][T15123]  proc_fail_nth_read+0x198/0x270
[  507.127826][T15123]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  507.133391][T15123]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  507.138948][T15123]  vfs_read+0x1df/0xbe0
[  507.143112][T15123]  ? __fget_files+0x1fc/0x3a0
[  507.147794][T15123]  ? __pfx___mutex_lock+0x10/0x10
[  507.152827][T15123]  ? __pfx_vfs_read+0x10/0x10
[  507.157524][T15123]  ? __fget_files+0x206/0x3a0
[  507.162227][T15123]  ksys_read+0x12b/0x250
[  507.166477][T15123]  ? __pfx_ksys_read+0x10/0x10
[  507.171252][T15123]  do_syscall_64+0xcd/0x250
[  507.175767][T15123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.181665][T15123] RIP: 0033:0x7f1a0eb8473c
[  507.186083][T15123] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  507.205716][T15123] RSP: 002b:00007f1a0fa3a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  507.214138][T15123] RAX: ffffffffffffffda RBX: 00007f1a0ed75fa0 RCX: 00007f1a0eb8473c
[  507.222116][T15123] RDX: 000000000000000f RSI: 00007f1a0fa3a0a0 RDI: 0000000000000004
[  507.230084][T15123] RBP: 00007f1a0fa3a090 R08: 0000000000000000 R09: 0000000000000000
[  507.238052][T15123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  507.246020][T15123] R13: 0000000000000000 R14: 00007f1a0ed75fa0 R15: 00007ffee4aff598
[  507.254002][T15123]  </TASK>
[  507.257116][    C1] vkms_vblank_simulate: vblank timer overrun
[  507.761651][T15135] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2668'.
[  508.127629][T15144] nbd: socks must be embedded in a SOCK_ITEM attr
[  508.138690][T15144] block nbd3: shutting down sockets
[  508.565268][T15160] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2674'.
[  508.574514][T15160] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  508.582059][T15160] batman_adv: batadv0: Removing interface: batadv_slave_0
[  508.595585][T15160] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  508.603469][T15160] batman_adv: batadv0: Removing interface: batadv_slave_1
[  508.880108][T15153] futex_wake_op: syz.3.2672 tries to shift op by -1; fix this program
[  508.909851][T15174] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  508.953834][T15174] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  511.304872][T15225] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  511.344295][T15225] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  511.775501][T15236] sysfs_service_op_store: Client not running :-5:
[  512.953223][T15263] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2704'.
[  513.085773][T15266] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  513.095644][T15266] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  514.832511][T15299] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2715'.
[  515.146214][T15308] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2717'.
[  517.391342][T15345] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  517.447512][T15345] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  520.023830][T15383] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2741'.
[  520.461445][T15392] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2743'.
[  520.473543][T15394] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2744'.
[  520.752908][T15398] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  520.762636][T15398] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  522.012986][T15428] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  522.059307][T15428] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  523.042642][T15451] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2759'.
[  523.060517][T15449] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2768'.
[  523.650399][T15461] futex_wake_op: syz.4.2764 tries to shift op by -1; fix this program
[  524.611644][T15496] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  524.653480][T15496] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  524.935621][T15495] futex_wake_op: syz.2.2776 tries to shift op by -1; fix this program
[  525.429922][T15514] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2779'.
[  525.571670][T15517] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2780'.
[  526.000850][T15526] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2783'.
[  526.079782][T15530] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2785'.
[  526.581116][T15537] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  526.593273][T15537] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  527.468844][T15559] lo: entered allmulticast mode
[  527.537650][T15562] lo: left allmulticast mode
[  527.592206][T15551] futex_wake_op: syz.3.2790 tries to shift op by -1; fix this program
[  527.795096][T15573] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2796'.
[  527.834502][T15566] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  527.907576][T15566] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  529.256162][T15602] futex_wake_op: syz.3.2805 tries to shift op by -1; fix this program
[  529.483928][T15616] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2808'.
[  529.985204][T15627] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2812'.
[  530.008430][T15626] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2813'.
[  530.297167][T15636] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2816'.
[  531.210832][T15643] futex_wake_op: syz.3.2819 tries to shift op by -1; fix this program
[  531.950464][T15674] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2826'.
[  532.903617][T15701] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  532.913308][T15701] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  533.452369][T15725] FAULT_INJECTION: forcing a failure.
[  533.452369][T15725] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  533.469209][T15725] CPU: 0 UID: 0 PID: 15725 Comm: syz.3.2840 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  533.480144][T15725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  533.490237][T15725] Call Trace:
[  533.493550][T15725]  <TASK>
[  533.496515][T15725]  dump_stack_lvl+0x16c/0x1f0
[  533.501233][T15725]  should_fail_ex+0x497/0x5b0
[  533.505959][T15725]  _copy_to_iter+0x4a5/0x1400
[  533.510691][T15725]  ? __pfx__copy_to_iter+0x10/0x10
[  533.515844][T15725]  ? __virt_addr_valid+0x1a4/0x590
[  533.521094][T15725]  ? __virt_addr_valid+0x5e/0x590
[  533.526163][T15725]  ? __phys_addr_symbol+0x30/0x80
[  533.531236][T15725]  ? __check_object_size+0x488/0x710
[  533.536562][T15725]  seq_read_iter+0x725/0x12b0
[  533.541284][T15725]  do_iter_readv_writev+0x614/0x7f0
[  533.546528][T15725]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  533.552301][T15725]  vfs_readv+0x4cf/0x890
[  533.556579][T15725]  ? __pfx___lock_acquire+0x10/0x10
[  533.561810][T15725]  ? find_held_lock+0x2d/0x110
[  533.566791][T15725]  ? __pfx_vfs_readv+0x10/0x10
[  533.571594][T15725]  ? __fget_files+0x1fc/0x3a0
[  533.576318][T15725]  ? __pfx_lock_release+0x10/0x10
[  533.581408][T15725]  ? __fget_files+0x206/0x3a0
[  533.586128][T15725]  ? do_preadv+0x1b1/0x270
[  533.590573][T15725]  do_preadv+0x1b1/0x270
[  533.594844][T15725]  ? __pfx_do_preadv+0x10/0x10
[  533.599652][T15725]  do_syscall_64+0xcd/0x250
[  533.604303][T15725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  533.610235][T15725] RIP: 0033:0x7f9c27185d29
[  533.614675][T15725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  533.634492][T15725] RSP: 002b:00007f9c28057038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  533.642940][T15725] RAX: ffffffffffffffda RBX: 00007f9c27375fa0 RCX: 00007f9c27185d29
[  533.650970][T15725] RDX: 0000000000000006 RSI: 0000000020000080 RDI: 0040000000000003
[  533.658976][T15725] RBP: 00007f9c28057090 R08: 0000000000000005 R09: 0000000000000000
[  533.666977][T15725] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  533.675073][T15725] R13: 0000000000000000 R14: 00007f9c27375fa0 R15: 00007ffc26d4cff8
[  533.683091][T15725]  </TASK>
[  534.238154][T15741] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2845'.
[  535.332222][T15752] futex_wake_op: syz.0.2848 tries to shift op by -1; fix this program
[  535.540998][T15771] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2853'.
[  535.543922][T15762] futex_wake_op: syz.2.2850 tries to shift op by -1; fix this program
[  535.726589][T15774] FAULT_INJECTION: forcing a failure.
[  535.726589][T15774] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  535.762906][T15774] CPU: 0 UID: 0 PID: 15774 Comm: syz.2.2854 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  535.773741][T15774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  535.784366][T15774] Call Trace:
[  535.787676][T15774]  <TASK>
[  535.790634][T15774]  dump_stack_lvl+0x16c/0x1f0
[  535.795450][T15774]  should_fail_ex+0x497/0x5b0
[  535.800260][T15774]  _copy_to_user+0x32/0xd0
[  535.804720][T15774]  simple_read_from_buffer+0xd0/0x160
[  535.810212][T15774]  proc_fail_nth_read+0x198/0x270
[  535.815281][T15774]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  535.820890][T15774]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  535.826554][T15774]  vfs_read+0x1df/0xbe0
[  535.830757][T15774]  ? __fget_files+0x1fc/0x3a0
[  535.835476][T15774]  ? __pfx___mutex_lock+0x10/0x10
[  535.840631][T15774]  ? __pfx_vfs_read+0x10/0x10
[  535.845362][T15774]  ? __fget_files+0x206/0x3a0
[  535.850099][T15774]  ksys_read+0x12b/0x250
[  535.854382][T15774]  ? __pfx_ksys_read+0x10/0x10
[  535.859193][T15774]  do_syscall_64+0xcd/0x250
[  535.863738][T15774]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  535.869674][T15774] RIP: 0033:0x7ff77198473c
[  535.874115][T15774] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  535.893763][T15774] RSP: 002b:00007ff77283f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  535.902211][T15774] RAX: ffffffffffffffda RBX: 00007ff771b75fa0 RCX: 00007ff77198473c
[  535.910212][T15774] RDX: 000000000000000f RSI: 00007ff77283f0a0 RDI: 0000000000000004
[  535.918212][T15774] RBP: 00007ff77283f090 R08: 0000000000000000 R09: 0000000000000000
[  535.926207][T15774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  535.934206][T15774] R13: 0000000000000000 R14: 00007ff771b75fa0 R15: 00007ffd74443ef8
[  535.942223][T15774]  </TASK>
[  536.226074][T15784] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2858'.
[  536.983591][T15802] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  537.027892][T15802] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  538.039837][T15830] netlink: zone id is out of range
[  538.085516][T15830] netlink: set zone limit has 8 unknown bytes
[  538.257291][T15838] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2873'.
[  539.150098][T15847] futex_wake_op: syz.2.2874 tries to shift op by -1; fix this program
[  539.180865][T15870] FAULT_INJECTION: forcing a failure.
[  539.180865][T15870] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  539.196086][T15870] CPU: 0 UID: 0 PID: 15870 Comm: syz.0.2879 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  539.206902][T15870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  539.216981][T15870] Call Trace:
[  539.220280][T15870]  <TASK>
[  539.223231][T15870]  dump_stack_lvl+0x16c/0x1f0
[  539.227946][T15870]  should_fail_ex+0x497/0x5b0
[  539.232666][T15870]  _copy_from_user+0x2e/0xd0
[  539.237297][T15870]  snd_ctl_tlv_ioctl+0xe5/0x760
[  539.242174][T15870]  ? snd_ctl_ioctl+0x8d1/0x1080
[  539.247052][T15870]  ? __pfx_snd_ctl_tlv_ioctl+0x10/0x10
[  539.252605][T15870]  snd_ctl_ioctl+0x8df/0x1080
[  539.257296][T15870]  ? __pfx_snd_ctl_ioctl+0x10/0x10
[  539.262503][T15870]  ? __pfx_lock_release+0x10/0x10
[  539.267527][T15870]  ? trace_lock_acquire+0x14e/0x1f0
[  539.272743][T15870]  ? __fget_files+0x206/0x3a0
[  539.277430][T15870]  ? __pfx_snd_ctl_ioctl+0x10/0x10
[  539.282563][T15870]  __x64_sys_ioctl+0x190/0x200
[  539.287338][T15870]  do_syscall_64+0xcd/0x250
[  539.291851][T15870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  539.297839][T15870] RIP: 0033:0x7f1a0eb85d29
[  539.302254][T15870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  539.321864][T15870] RSP: 002b:00007f1a0fa3a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  539.330279][T15870] RAX: ffffffffffffffda RBX: 00007f1a0ed75fa0 RCX: 00007f1a0eb85d29
[  539.338253][T15870] RDX: 0000000020000040 RSI: 00000000c008551a RDI: 0000000000000003
[  539.346223][T15870] RBP: 00007f1a0fa3a090 R08: 0000000000000000 R09: 0000000000000000
[  539.354200][T15870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  539.362173][T15870] R13: 0000000000000000 R14: 00007f1a0ed75fa0 R15: 00007ffee4aff598
[  539.370156][T15870]  </TASK>
[  539.452414][T15868] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  539.472302][T15868] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  540.652847][T15899] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2886'.
[  540.885626][T15902] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2887'.
[  541.864835][T15919] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  541.917509][T15919] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  542.756247][T15938] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2899'.
[  543.466568][T15956] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2905'.
[  543.915680][T15967] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  543.937712][T15967] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  545.287086][T16009] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2920'.
[  545.635844][T16026] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  545.656205][T16026] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  546.329293][T16042] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2929'.
[  546.912936][T16054] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2933'.
[  546.923291][T16054] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  547.045345][T16054] batman_adv: batadv0: Removing interface: batadv_slave_0
[  547.060593][T16061] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2934'.
[  547.079042][T16063] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2936'.
[  547.160523][T16065] FAULT_INJECTION: forcing a failure.
[  547.160523][T16065] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  547.175181][T16065] CPU: 0 UID: 0 PID: 16065 Comm: syz.0.2937 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  547.186026][T16065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  547.199303][T16065] Call Trace:
[  547.203647][T16065]  <TASK>
[  547.206676][T16065]  dump_stack_lvl+0x16c/0x1f0
[  547.211406][T16065]  should_fail_ex+0x497/0x5b0
[  547.216210][T16065]  _copy_from_iter+0x29b/0x1400
[  547.221102][T16065]  ? trace_lock_acquire+0x14e/0x1f0
[  547.226367][T16065]  ? __alloc_skb+0x200/0x380
[  547.231187][T16065]  ? __pfx__copy_from_iter+0x10/0x10
[  547.237060][T16065]  ? __virt_addr_valid+0x1a4/0x590
[  547.243013][T16065]  ? __virt_addr_valid+0x5e/0x590
[  547.248725][T16065]  ? __phys_addr_symbol+0x30/0x80
[  547.253805][T16065]  ? __check_object_size+0x488/0x710
[  547.260107][T16065]  netlink_sendmsg+0x813/0xd70
[  547.265621][T16065]  ? __pfx_netlink_sendmsg+0x10/0x10
[  547.271059][T16065]  ____sys_sendmsg+0x9ae/0xb40
[  547.275876][T16065]  ? copy_msghdr_from_user+0x10b/0x160
[  547.282222][T16065]  ? __pfx_____sys_sendmsg+0x10/0x10
[  547.288094][T16065]  ? __lock_acquire+0xcc5/0x3c40
[  547.293331][T16065]  ___sys_sendmsg+0x135/0x1e0
[  547.298676][T16065]  ? __pfx____sys_sendmsg+0x10/0x10
[  547.304535][T16065]  ? trace_lock_acquire+0x14e/0x1f0
[  547.310150][T16065]  __sys_sendmmsg+0x201/0x420
[  547.315062][T16065]  ? __pfx___sys_sendmmsg+0x10/0x10
[  547.320299][T16065]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  547.326483][T16065]  ? fput+0x67/0x440
[  547.330402][T16065]  ? ksys_write+0x1ba/0x250
[  547.335008][T16065]  ? __pfx_ksys_write+0x10/0x10
[  547.339868][T16065]  __x64_sys_sendmmsg+0x9c/0x100
[  547.344819][T16065]  ? lockdep_hardirqs_on+0x7c/0x110
[  547.350023][T16065]  do_syscall_64+0xcd/0x250
[  547.354542][T16065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  547.360877][T16065] RIP: 0033:0x7f1a0eb85d29
[  547.365304][T16065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  547.384928][T16065] RSP: 002b:00007f1a0fa3a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  547.393351][T16065] RAX: ffffffffffffffda RBX: 00007f1a0ed75fa0 RCX: 00007f1a0eb85d29
[  547.401494][T16065] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003
[  547.409467][T16065] RBP: 00007f1a0fa3a090 R08: 0000000000000000 R09: 0000000000000000
[  547.417442][T16065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  547.425419][T16065] R13: 0000000000000000 R14: 00007f1a0ed75fa0 R15: 00007ffee4aff598
[  547.433410][T16065]  </TASK>
[  547.536288][T16074] FAULT_INJECTION: forcing a failure.
[  547.536288][T16074] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  547.562894][T16074] CPU: 0 UID: 0 PID: 16074 Comm: syz.3.2939 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  547.573813][T16074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  547.583899][T16074] Call Trace:
[  547.587200][T16074]  <TASK>
[  547.590157][T16074]  dump_stack_lvl+0x16c/0x1f0
[  547.594877][T16074]  should_fail_ex+0x497/0x5b0
[  547.599596][T16074]  _copy_to_iter+0x29b/0x1400
[  547.604317][T16074]  ? trace_lock_acquire+0x14e/0x1f0
[  547.609556][T16074]  ? __pfx__copy_to_iter+0x10/0x10
[  547.614702][T16074]  ? __virt_addr_valid+0x1a4/0x590
[  547.619856][T16074]  ? __virt_addr_valid+0x5e/0x590
[  547.624927][T16074]  ? __phys_addr_symbol+0x30/0x80
[  547.629995][T16074]  ? __check_object_size+0x488/0x710
[  547.635324][T16074]  seq_read_iter+0xd00/0x12b0
[  547.640049][T16074]  proc_reg_read_iter+0x21d/0x310
[  547.645109][T16074]  vfs_read+0x87f/0xbe0
[  547.649306][T16074]  ? __pfx_vfs_read+0x10/0x10
[  547.654040][T16074]  ksys_read+0x12b/0x250
[  547.658314][T16074]  ? __pfx_ksys_read+0x10/0x10
[  547.663125][T16074]  do_syscall_64+0xcd/0x250
[  547.667661][T16074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  547.673587][T16074] RIP: 0033:0x7f9c27185d29
[  547.678031][T16074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  547.697682][T16074] RSP: 002b:00007f9c28057038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  547.706138][T16074] RAX: ffffffffffffffda RBX: 00007f9c27375fa0 RCX: 00007f9c27185d29
[  547.714140][T16074] RDX: 0000000000001000 RSI: 0000000020001700 RDI: 0000000000000003
[  547.722149][T16074] RBP: 00007f9c28057090 R08: 0000000000000000 R09: 0000000000000000
[  547.730152][T16074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  547.738159][T16074] R13: 0000000000000000 R14: 00007f9c27375fa0 R15: 00007ffc26d4cff8
[  547.746180][T16074]  </TASK>
[  549.671250][T16104] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2948'.
[  549.919699][T16115] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2952'.
[  550.056142][T16117] syz.0.2949 (16117): attempted to duplicate a private mapping with mremap.  This is not supported.
[  551.004546][T16140] program syz.4.2956 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  551.087249][T16142] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  551.130097][T16142] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  551.838581][T16166] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2963'.
[  552.527995][T16176] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 8000000006
[  553.439121][T16202] program syz.0.2974 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  553.617677][T16207] netlink: 252 bytes leftover after parsing attributes in process `syz.0.2976'.
[  553.668541][T16209] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2977'.
[  553.801679][T16213] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2979'.
[  554.941804][T16225] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2982'.
[  554.975254][T16238] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  555.028389][T16238] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  555.935569][T16261] FAULT_INJECTION: forcing a failure.
[  555.935569][T16261] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  555.982277][T16261] CPU: 1 UID: 0 PID: 16261 Comm: syz.2.2992 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  555.993206][T16261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  556.003293][T16261] Call Trace:
[  556.006593][T16261]  <TASK>
[  556.009542][T16261]  dump_stack_lvl+0x16c/0x1f0
[  556.014256][T16261]  should_fail_ex+0x497/0x5b0
[  556.018989][T16261]  _copy_to_user+0x32/0xd0
[  556.023449][T16261]  simple_read_from_buffer+0xd0/0x160
[  556.028857][T16261]  proc_fail_nth_read+0x198/0x270
[  556.033926][T16261]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  556.039510][T16261]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  556.045099][T16261]  vfs_read+0x1df/0xbe0
[  556.049294][T16261]  ? __fget_files+0x1fc/0x3a0
[  556.054008][T16261]  ? __pfx___mutex_lock+0x10/0x10
[  556.059070][T16261]  ? __pfx_vfs_read+0x10/0x10
[  556.063804][T16261]  ? __fget_files+0x206/0x3a0
[  556.068531][T16261]  ksys_read+0x12b/0x250
[  556.072807][T16261]  ? __pfx_ksys_read+0x10/0x10
[  556.077619][T16261]  do_syscall_64+0xcd/0x250
[  556.082159][T16261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.088106][T16261] RIP: 0033:0x7ff77198473c
[  556.092552][T16261] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  556.112285][T16261] RSP: 002b:00007ff77283f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  556.120742][T16261] RAX: ffffffffffffffda RBX: 00007ff771b75fa0 RCX: 00007ff77198473c
[  556.128754][T16261] RDX: 000000000000000f RSI: 00007ff77283f0a0 RDI: 0000000000000006
[  556.136763][T16261] RBP: 00007ff77283f090 R08: 0000000000000000 R09: 0000000000000000
[  556.144766][T16261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  556.152852][T16261] R13: 0000000000000000 R14: 00007ff771b75fa0 R15: 00007ffd74443ef8
[  556.160960][T16261]  </TASK>
[  556.164178][    C1] vkms_vblank_simulate: vblank timer overrun
[  556.212055][T16259] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2989'.
[  556.770460][T16274] FAULT_INJECTION: forcing a failure.
[  556.770460][T16274] name failslab, interval 1, probability 0, space 0, times 0
[  556.941189][T16274] CPU: 1 UID: 0 PID: 16274 Comm: syz.4.2997 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  556.952107][T16274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  556.962195][T16274] Call Trace:
[  556.965494][T16274]  <TASK>
[  556.968446][T16274]  dump_stack_lvl+0x16c/0x1f0
[  556.973166][T16274]  should_fail_ex+0x497/0x5b0
[  556.977887][T16274]  ? fs_reclaim_acquire+0xae/0x150
[  556.983051][T16274]  should_failslab+0xc2/0x120
[  556.987765][T16274]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  556.993610][T16274]  ? __alloc_skb+0x2b3/0x380
[  556.998254][T16274]  __alloc_skb+0x2b3/0x380
[  557.002710][T16274]  ? __pfx___alloc_skb+0x10/0x10
[  557.007691][T16274]  ? lock_acquire+0x2f/0xb0
[  557.012258][T16274]  netlink_alloc_large_skb+0x69/0x130
[  557.017663][T16274]  netlink_sendmsg+0x689/0xd70
[  557.022465][T16274]  ? __pfx_netlink_sendmsg+0x10/0x10
[  557.027889][T16274]  ____sys_sendmsg+0x9ae/0xb40
[  557.032686][T16274]  ? copy_msghdr_from_user+0x10b/0x160
[  557.038186][T16274]  ? __pfx_____sys_sendmsg+0x10/0x10
[  557.043525][T16274]  ___sys_sendmsg+0x135/0x1e0
[  557.048246][T16274]  ? __pfx____sys_sendmsg+0x10/0x10
[  557.053502][T16274]  ? __pfx_lock_release+0x10/0x10
[  557.058554][T16274]  ? trace_lock_acquire+0x14e/0x1f0
[  557.063800][T16274]  ? __fget_files+0x206/0x3a0
[  557.068522][T16274]  __sys_sendmsg+0x16e/0x220
[  557.073151][T16274]  ? __pfx___sys_sendmsg+0x10/0x10
[  557.078433][T16274]  do_syscall_64+0xcd/0x250
[  557.082975][T16274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  557.088904][T16274] RIP: 0033:0x7f4a51785d29
[  557.093349][T16274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  557.112993][T16274] RSP: 002b:00007f4a4f5f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  557.121442][T16274] RAX: ffffffffffffffda RBX: 00007f4a51975fa0 RCX: 00007f4a51785d29
[  557.129446][T16274] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000008
[  557.137445][T16274] RBP: 00007f4a4f5f6090 R08: 0000000000000000 R09: 0000000000000000
[  557.145527][T16274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  557.153521][T16274] R13: 0000000000000000 R14: 00007f4a51975fa0 R15: 00007ffc232c2e18
[  557.161536][T16274]  </TASK>
[  557.164741][    C1] vkms_vblank_simulate: vblank timer overrun
[  557.791278][T16296] can: request_module (can-proto-4) failed.
[  558.344896][T16311] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3007'.
[  559.570974][T16334] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  559.635707][T16334] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  560.117578][T16351] nbd: socks must be embedded in a SOCK_ITEM attr
[  560.145845][T16351] block nbd3: shutting down sockets
[  561.100020][T16367] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3019'.
[  562.178087][T16378] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3022'.
[  562.637634][T16383] ima: policy update failed
[  562.653642][   T29] audit: type=1802 audit(6030359165.605:36): pid=16383 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.3023" res=0 errno=0
[  563.277060][T16395] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  563.289680][T16395] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  563.664901][T16404] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3029'.
[  563.739367][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  563.745945][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  564.155756][T16414] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3031'.
[  564.684714][T16425] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3034'.
[  565.285318][T16431] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  565.314844][T16431] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  566.343937][T16444] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3038'.
[  566.755280][T16448] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  566.822705][T16448] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  567.530582][T16453] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  567.542048][T16453] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  567.679545][T16461] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3042'.
[  568.370941][T16468] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3044'.
[  569.212482][T16489] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  569.297586][T16489] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  569.430130][T16497] netlink: 334 bytes leftover after parsing attributes in process `syz.0.3054'.
[  569.640140][T16503] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3055'.
[  570.232470][T16512] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  570.273760][T16512] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  571.105438][T16536] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3062'.
[  571.541516][T16550] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3068'.
[  572.624734][T16563] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  572.670696][T16563] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  573.042637][T16578] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3076'.
[  574.146679][T16611] ima: policy update failed
[  574.167647][   T29] audit: type=1802 audit(6030359177.105:37): pid=16611 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.3091" res=0 errno=0
[  574.296131][T16618] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3085'.
[  575.016089][T16638] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  575.057725][T16638] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  575.551150][T16656] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3095'.
[  575.573081][T16657] ima: policy update failed
[  575.582407][   T29] audit: type=1802 audit(6030359178.535:38): pid=16657 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3094" res=0 errno=0
[  576.366276][T16677] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3102'.
[  576.683755][T16686] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3104'.
[  576.866914][T16694] ima: policy update failed
[  576.882157][   T29] audit: type=1802 audit(6030359179.825:39): pid=16694 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3106" res=0 errno=0
[  577.139626][T16707] vivid-013: =================  START STATUS  =================
[  577.234290][T16707] vivid-013: Generate PTS: true
[  577.249244][T16707] vivid-013: Generate SCR: true
[  577.254560][T16709] ima: policy update failed
[  577.254739][   T29] audit: type=1802 audit(6030359180.205:40): pid=16709 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3117" res=0 errno=0
[  577.259661][T16707] tpg source WxH: 640x360 (Y'CbCr)
[  577.286666][T16707] tpg field: 1
[  577.292944][T16707] tpg crop: 640x360@0x0
[  577.297619][T16707] tpg compose: 640x360@0x0
[  577.302369][T16707] tpg colorspace: 8
[  577.306331][T16707] tpg transfer function: 0/0
[  577.353737][T16707] tpg Y'CbCr encoding: 0/0
[  577.359261][T16707] tpg quantization: 0/0
[  577.368196][T16707] tpg RGB range: 0/2
[  577.372398][T16707] vivid-013: ==================  END STATUS  ==================
[  577.380934][T16710] vivid-013: =================  START STATUS  =================
[  577.394811][T16710] vivid-013: Generate PTS: true
[  577.400273][T16710] vivid-013: Generate SCR: true
[  577.406158][T16710] tpg source WxH: 640x360 (Y'CbCr)
[  577.411758][T16710] tpg field: 1
[  577.415956][T16710] tpg crop: 640x360@0x0
[  577.424113][T16710] tpg compose: 640x360@0x0
[  577.437685][T16710] tpg colorspace: 8
[  577.444034][T16710] tpg transfer function: 0/0
[  577.449326][T16710] tpg Y'CbCr encoding: 0/0
[  577.458053][T16710] tpg quantization: 0/0
[  577.469848][T16710] tpg RGB range: 0/2
[  577.485918][T16710] vivid-013: ==================  END STATUS  ==================
[  577.666265][T16724] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3114'.
[  578.093574][T16742] ima: policy update failed
[  578.120583][   T29] audit: type=1802 audit(6030359181.075:41): pid=16742 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.3118" res=0 errno=0
[  578.418852][T16750] ima: policy update failed
[  578.423998][   T29] audit: type=1802 audit(6030359181.375:42): pid=16750 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.3120" res=0 errno=0
[  578.992098][T16766] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3124'.
[  580.360590][T16794] ima: policy update failed
[  580.365282][   T29] audit: type=1802 audit(6030359183.315:43): pid=16794 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.3131" res=0 errno=0
[  581.575789][T16808] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3134'.
[  581.680258][T16811] ------------[ cut here ]------------
[  581.686107][T16811] WARNING: CPU: 1 PID: 16811 at mm/page_alloc.c:4729 __alloc_pages_noprof+0xeff/0x25b0
[  581.695897][T16811] Modules linked in:
[  581.699918][T16811] CPU: 1 UID: 0 PID: 16811 Comm: syz.4.3135 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  581.710830][T16811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  581.720991][T16811] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0
[  581.727119][T16811] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 04 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9
[  581.746800][    C1] vkms_vblank_simulate: vblank timer overrun
[  581.753626][T16811] RSP: 0018:ffffc90002fe78e8 EFLAGS: 00010246
[  581.760409][T16811] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  581.768638][T16811] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0
[  581.776637][T16811] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000100
[  581.784710][T16811] R10: 0000000000000100 R11: ffffffff81fb8d74 R12: 0000000000000013
[  581.792759][T16811] R13: 0000000000040cc0 R14: 1ffff920005fcf31 R15: 00000000ffffffff
[  581.800902][T16811] FS:  00007f4a4f5d56c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  581.809905][T16811] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  581.816549][T16811] CR2: 000000110c3400bb CR3: 0000000080af2000 CR4: 00000000003526f0
[  581.824628][T16811] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  581.832727][T16811] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  581.841342][T16811] Call Trace:
[  581.844648][T16811]  <TASK>
[  581.848270][T16811]  ? __warn+0xea/0x3c0
[  581.852418][T16811]  ? __alloc_pages_noprof+0xeff/0x25b0
[  581.858006][T16811]  ? report_bug+0x3c0/0x580
[  581.862571][T16811]  ? handle_bug+0x54/0xa0
[  581.866979][T16811]  ? exc_invalid_op+0x17/0x50
[  581.871761][T16811]  ? asm_exc_invalid_op+0x1a/0x20
[  581.876836][T16811]  ? kasan_save_track+0x14/0x30
[  581.881841][T16811]  ? __alloc_pages_noprof+0xeff/0x25b0
[  581.887348][T16811]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  581.893257][T16811]  ? lockdep_hardirqs_on+0x7c/0x110
[  581.898614][T16811]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  581.904460][T16811]  ? stack_depot_save_flags+0x36d/0x9e0
[  581.910142][T16811]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  581.915952][T16811]  ? kasan_save_stack+0x33/0x60
[  581.920906][T16811]  ? __kasan_kmalloc+0xaa/0xb0
[  581.925709][T16811]  ? safesetid_uid_file_write+0x84/0xc0
[  581.931390][T16811]  ? vfs_write+0x24c/0x1150
[  581.936357][T16811]  ? ksys_write+0x12b/0x250
[  581.941560][T16811]  ? do_syscall_64+0xcd/0x250
[  581.946287][T16811]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  581.952875][T16811]  ___kmalloc_large_node+0x84/0x1b0
[  581.958193][T16811]  __kmalloc_large_node_noprof+0x1c/0x70
[  581.963901][T16811]  __kmalloc_node_track_caller_noprof.cold+0x5/0x5f
[  581.970643][T16811]  ? handle_policy_update+0x188/0x11e0
[  581.976145][T16811]  memdup_user_nul+0x2b/0x110
[  581.981426][T16811]  handle_policy_update+0x188/0x11e0
[  581.986764][T16811]  ? __pfx_handle_policy_update+0x10/0x10
[  581.992636][T16811]  ? apparmor_capable+0x114/0x1d0
[  581.997796][T16811]  ? bpf_lsm_capable+0x9/0x10
[  582.002520][T16811]  ? security_capable+0x7e/0x260
[  582.007567][T16811]  safesetid_uid_file_write+0x84/0xc0
[  582.012978][T16811]  ? __pfx_safesetid_uid_file_write+0x10/0x10
[  582.019166][T16811]  vfs_write+0x24c/0x1150
[  582.023537][T16811]  ? __fget_files+0x1fc/0x3a0
[  582.028313][T16811]  ? __pfx___mutex_lock+0x10/0x10
[  582.033420][T16811]  ? __pfx_vfs_write+0x10/0x10
[  582.038766][T16811]  ? __fget_files+0x206/0x3a0
[  582.043503][T16811]  ksys_write+0x12b/0x250
[  582.048526][T16811]  ? __pfx_ksys_write+0x10/0x10
[  582.053440][T16811]  do_syscall_64+0xcd/0x250
[  582.058235][T16811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.064211][T16811] RIP: 0033:0x7f4a51785d29
[  582.068782][T16811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  582.088546][T16811] RSP: 002b:00007f4a4f5d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  582.097070][T16811] RAX: ffffffffffffffda RBX: 00007f4a51976080 RCX: 00007f4a51785d29
[  582.105196][T16811] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  582.113283][T16811] RBP: 00007f4a51801b08 R08: 0000000000000000 R09: 0000000000000000
[  582.121415][T16811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  582.129476][T16811] R13: 0000000000000000 R14: 00007f4a51976080 R15: 00007ffc232c2e18
[  582.137681][T16811]  </TASK>
[  582.141282][T16811] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  582.148580][T16811] CPU: 1 UID: 0 PID: 16811 Comm: syz.4.3135 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[  582.159347][T16811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  582.169402][T16811] Call Trace:
[  582.172677][T16811]  <TASK>
[  582.175609][T16811]  dump_stack_lvl+0x3d/0x1f0
[  582.180215][T16811]  panic+0x71d/0x800
[  582.184136][T16811]  ? __pfx_panic+0x10/0x10
[  582.188649][T16811]  ? show_trace_log_lvl+0x29d/0x3d0
[  582.193862][T16811]  ? __alloc_pages_noprof+0xeff/0x25b0
[  582.199331][T16811]  check_panic_on_warn+0xab/0xb0
[  582.204280][T16811]  __warn+0xf6/0x3c0
[  582.208186][T16811]  ? __alloc_pages_noprof+0xeff/0x25b0
[  582.213661][T16811]  report_bug+0x3c0/0x580
[  582.218002][T16811]  handle_bug+0x54/0xa0
[  582.222164][T16811]  exc_invalid_op+0x17/0x50
[  582.226678][T16811]  asm_exc_invalid_op+0x1a/0x20
[  582.231539][T16811] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0
[  582.237616][T16811] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 04 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9
[  582.257236][T16811] RSP: 0018:ffffc90002fe78e8 EFLAGS: 00010246
[  582.263318][T16811] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  582.271290][T16811] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0
[  582.279277][T16811] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000100
[  582.287246][T16811] R10: 0000000000000100 R11: ffffffff81fb8d74 R12: 0000000000000013
[  582.295219][T16811] R13: 0000000000040cc0 R14: 1ffff920005fcf31 R15: 00000000ffffffff
[  582.303195][T16811]  ? kasan_save_track+0x14/0x30
[  582.308070][T16811]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  582.313887][T16811]  ? lockdep_hardirqs_on+0x7c/0x110
[  582.319088][T16811]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  582.324896][T16811]  ? stack_depot_save_flags+0x36d/0x9e0
[  582.330456][T16811]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  582.336183][T16811]  ? kasan_save_stack+0x33/0x60
[  582.341043][T16811]  ? __kasan_kmalloc+0xaa/0xb0
[  582.345838][T16811]  ? safesetid_uid_file_write+0x84/0xc0
[  582.351400][T16811]  ? vfs_write+0x24c/0x1150
[  582.355911][T16811]  ? ksys_write+0x12b/0x250
[  582.360421][T16811]  ? do_syscall_64+0xcd/0x250
[  582.365110][T16811]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.371208][T16811]  ___kmalloc_large_node+0x84/0x1b0
[  582.376418][T16811]  __kmalloc_large_node_noprof+0x1c/0x70
[  582.382055][T16811]  __kmalloc_node_track_caller_noprof.cold+0x5/0x5f
[  582.388660][T16811]  ? handle_policy_update+0x188/0x11e0
[  582.394129][T16811]  memdup_user_nul+0x2b/0x110
[  582.398814][T16811]  handle_policy_update+0x188/0x11e0
[  582.404126][T16811]  ? __pfx_handle_policy_update+0x10/0x10
[  582.409847][T16811]  ? apparmor_capable+0x114/0x1d0
[  582.414882][T16811]  ? bpf_lsm_capable+0x9/0x10
[  582.419565][T16811]  ? security_capable+0x7e/0x260
[  582.424518][T16811]  safesetid_uid_file_write+0x84/0xc0
[  582.429905][T16811]  ? __pfx_safesetid_uid_file_write+0x10/0x10
[  582.435976][T16811]  vfs_write+0x24c/0x1150
[  582.440311][T16811]  ? __fget_files+0x1fc/0x3a0
[  582.444992][T16811]  ? __pfx___mutex_lock+0x10/0x10
[  582.450026][T16811]  ? __pfx_vfs_write+0x10/0x10
[  582.454802][T16811]  ? __fget_files+0x206/0x3a0
[  582.459497][T16811]  ksys_write+0x12b/0x250
[  582.463841][T16811]  ? __pfx_ksys_write+0x10/0x10
[  582.468704][T16811]  do_syscall_64+0xcd/0x250
[  582.473219][T16811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.479118][T16811] RIP: 0033:0x7f4a51785d29
[  582.483537][T16811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  582.503234][T16811] RSP: 002b:00007f4a4f5d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  582.511649][T16811] RAX: ffffffffffffffda RBX: 00007f4a51976080 RCX: 00007f4a51785d29
[  582.519622][T16811] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  582.527594][T16811] RBP: 00007f4a51801b08 R08: 0000000000000000 R09: 0000000000000000
[  582.535566][T16811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  582.543538][T16811] R13: 0000000000000000 R14: 00007f4a51976080 R15: 00007ffc232c2e18
[  582.551524][T16811]  </TASK>
[  582.554832][T16811] Kernel Offset: disabled
[  582.559210][T16811] Rebooting in 86400 seconds..