last executing test programs:

17m44.637443595s ago: executing program 3 (id=984):
r0 = fanotify_init$auto(0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
setuid$auto(0x1f) (async)
fanotify_mark$auto(r0, 0x205, 0xa, 0x4, 0x0)
openat$auto_mon_fops_stat_usb_mon(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/16s\x00', 0x40000, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
setitimer$auto(0x100, 0x0, &(0x7f0000000040)={{0x8, 0x5}, {0x9, 0xb}})

17m44.34226619s ago: executing program 3 (id=986):
sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20008000}, 0x1)
mmap$auto(0x0, 0x9, 0x72, 0x6090, 0x2, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000005c0), 0x2000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_STOP(r0, 0x54a1, 0x0)
socket(0x1d, 0x1, 0x10001)
socket(0x2, 0x5, 0x0)
capget$auto(0x0, 0xfffffffffffffffe)
adjtimex$auto(0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
mmap$auto(0x0, 0x2000e, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x7ff)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop6\x00', 0x0, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r1, 0x4c04, 0x0)
sysfs$auto(0x2, 0x4, 0x0)
open(&(0x7f0000000100)='./file0\x00', 0x141000, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x8)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x0, @rand_addr=0x2}, 0x52)
socket(0xa, 0x2, 0x88)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x5}, 0x4, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x6, 0x4, 0x400000)

17m44.171680395s ago: executing program 3 (id=987):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0xb, 0x2020009, 0xc5, 0x16, 0xfffffffffffffffa, 0x8003)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
settimeofday$auto(0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
epoll_create$auto(0x4)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0x3, 0xffffffff40088a01, 0x1)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x1e, 0x805, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
sysfs$auto(0x2, 0x4f, 0x0)
r1 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r0, 0x4, &(0x7f0000000000)='4\x93f\x06\x04\x00\x00', &(0x7f0000000040), 0x7f)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
r2 = io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f00000000c0)="5307109a56b87c7e289540c0cb6ee4f98c55874c9af21c2fc460eb3ba1617b6bb12d3e1a608f7ceda62fcdde70a84e5af32d72ea8730e39c49f08a575f0de3392156a9aee48bce5eb527f90c7f93a5d82af345c346c8efcaf20389c8226c133e84e4382d39bec6ac8d1757c659a829874938eae6aeab1569aaa24db205df97c4a380534e01dbe505f6eddfb184", 0x3)
socket(0xa, 0x801, 0x84)
mmap$auto(0xfb6, 0x7, 0x4000000000df, 0xeb1, 0x401, 0x7fff)
pipe2$auto(0x0, 0x80)
setsockopt$auto(0x3, 0x1, 0xd, 0x0, 0x8)
close_range$auto(0x2, 0x8000, 0x0)
mmap$auto(0x0, 0xffffffffffffffff, 0x4000000000df, 0x44eb2, 0x3, 0x300000000000)
syz_genetlink_get_family_id$auto_smc_pnetid(0x0, 0xffffffffffffffff)
sendmsg$auto_SMC_PNETID_GET(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto_UI_SET_RELBIT(r2, 0x40045566, &(0x7f0000000180)=0x909d)
r3 = openat$auto_dfs_dom_ops_debugfs(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
close_range$auto(r1, r3, 0xc)
clone$auto(0x7, 0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x1)

17m43.229744752s ago: executing program 3 (id=990):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy0/aql_txq_limit\x00', 0x121c01, 0x0)
write$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r1, &(0x7f0000000000)='\n', 0x1)
bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@tipc=@nameseq={0x1e, 0x1, 0x2, {0x40, 0x0, 0x2}}, 0x66)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x2, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x2, 0x0, 0x400}, 0x4}, 0xfff, 0xb07e)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x4, 0x0)
clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
r2 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r2, 0x84, 0xa, 0x0, 0x0)

17m42.045369995s ago: executing program 3 (id=995):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
move_pages$auto(0x1, 0x2000000000003, 0xffffffffffffffff, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
r0 = socket(0x11, 0x3, 0x9)
socket(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x22, 0x2, 0xa)
r2 = socket(0x29, 0x5, 0x0)
sendfile$auto(r2, 0xffffffffffffffff, 0x0, 0x3)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
pipe$auto(0x0)
setsockopt$auto(0x3, 0x10000000084, 0x72, 0x0, 0xc)
r4 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000740)=ANY=[@ANYBLOB='<\b\x00\x00', @ANYRES16=r4, @ANYBLOB="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", @ANYRES32, @ANYBLOB="1e000c002f70726f632f7468726561642d73656c662f706167656d6170000000440044800400cc80ebffff5018f616d9252f7b5306235f9186fdf8f3c5da5d58e0723989145c64758c31f3a27e23aa077cc061111604009a16db2ae00800240010000000d3060180f400bd8063e8d95d12e87e0c13fb48e6ad66331b16679fcb02d8f82a3ea14ecf67e20624ad6443bfd64da7870400c6800400ad8004000480ba00e200db14d43fab00d729de74c8181358c3d708e66f92903cf1d59472b9600d83c5804f9d4cc832c9e0db7d159274d04142556af687cb5e7e450c", @ANYRES32, @ANYRES32, @ANYBLOB, @ANYRES32], 0x83c}, 0x1, 0x0, 0x0, 0x20008800}, 0x810)
sendmsg$auto_NBD_CMD_CONNECT(r1, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20040081}, 0x20040000)
sendmmsg$auto(0x6, &(0x7f00000000c0)={{0x0, 0x3, &(0x7f0000000080)={0x0, 0x8}, 0x1, &(0x7f0000000300), 0x20, 0x8000000}, 0xed7138c}, 0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r6 = getpgid(0x0)
timer_create$auto(0x3, &(0x7f0000000000)={@sival_ptr=&(0x7f0000000940)="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", @inferred=r5, 0x2, @_tid=r6}, &(0x7f0000000040)=0x1)
futex_wait$auto(0x0, 0x0, 0x9, 0x7ffd, 0x0, 0xb60)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f00000003c0)="4a67d23edb3100000004", 0x49}, 0x5, &(0x7f0000000180), 0x5}, 0x1}, 0x2, 0x101)

17m40.390004358s ago: executing program 3 (id=1000):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x801, 0x106)
setsockopt$auto(0x3, 0x6, 0x21, 0x0, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
ioctl$auto_UDMABUF_CREATE_LIST(0xffffffffffffffff, 0x40087543, &(0x7f0000000080)={0x5, 0x2, [{0xffffffffffffffff, 0x0, 0x3, 0x9}, {0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffff7}, {<r0=>0xffffffffffffffff, 0x0, 0x7, 0x5}]})
r1 = socket(0x10, 0x2, 0x4)
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000200), 0xffffffffffffffff)
r5 = socket(0x15, 0x5, 0x0)
ioctl$auto(0x3, 0x40049409, 0xfffffffffffff4e0)
r6 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000240), r3)
sendmsg$auto_THERMAL_GENL_CMD_CDEV_GET(r1, &(0x7f00000005c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="70020000", @ANYRES16=r6, @ANYBLOB="200029bd7000fef5df250600000008000b000800000008001700ee000000fb000582bb000f8006000d002b2d0000080017000008000084000f80"], 0x270}, 0x1, 0x0, 0x0, 0x20015}, 0x0)
sendmsg$auto_NBD_CMD_STATUS(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, r4, 0x1, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x40)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket(0x1d, 0x2, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket(0x1, 0x1, 0x0)
bind$auto(0x3, 0x0, 0x6b)
listen$auto(0x3, 0x81)
poll$auto(&(0x7f00000000c0)={r8, 0x4, 0x7ff}, 0x2, 0x3)
sendmsg$auto_NL80211_CMD_CHANNEL_SWITCH(r3, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="0000d5fe", @ANYRES16=r7, @ANYBLOB="00032cbd7000fbdbdf25660000001000b000148eda277c876b4c986c9eed080001000200000034005b00c2522768524f7e1268f35e4fdaa9cf1650dc422cd0a33f94b164494e4e24821f87ef1df0a1c175569be894b87bd969bc0400cf00"], 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x4000000)
sendmsg$auto_NETDEV_CMD_DEV_GET(r1, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={&(0x7f00000017c0)={0x14, r2, 0x1, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40010}, 0x28044004)
mmap$auto(0x3, 0x100000000, 0x4000000000df, 0x1000040eb2, r0, 0x300000000000)
ioctl$auto_VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000380)={0xffff, r5})

17m25.244648736s ago: executing program 32 (id=1000):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x801, 0x106)
setsockopt$auto(0x3, 0x6, 0x21, 0x0, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
ioctl$auto_UDMABUF_CREATE_LIST(0xffffffffffffffff, 0x40087543, &(0x7f0000000080)={0x5, 0x2, [{0xffffffffffffffff, 0x0, 0x3, 0x9}, {0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffff7}, {<r0=>0xffffffffffffffff, 0x0, 0x7, 0x5}]})
r1 = socket(0x10, 0x2, 0x4)
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000200), 0xffffffffffffffff)
r5 = socket(0x15, 0x5, 0x0)
ioctl$auto(0x3, 0x40049409, 0xfffffffffffff4e0)
r6 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000240), r3)
sendmsg$auto_THERMAL_GENL_CMD_CDEV_GET(r1, &(0x7f00000005c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="70020000", @ANYRES16=r6, @ANYBLOB="200029bd7000fef5df250600000008000b000800000008001700ee000000fb000582bb000f8006000d002b2d0000080017000008000084000f80"], 0x270}, 0x1, 0x0, 0x0, 0x20015}, 0x0)
sendmsg$auto_NBD_CMD_STATUS(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, r4, 0x1, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x40)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket(0x1d, 0x2, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket(0x1, 0x1, 0x0)
bind$auto(0x3, 0x0, 0x6b)
listen$auto(0x3, 0x81)
poll$auto(&(0x7f00000000c0)={r8, 0x4, 0x7ff}, 0x2, 0x3)
sendmsg$auto_NL80211_CMD_CHANNEL_SWITCH(r3, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="0000d5fe", @ANYRES16=r7, @ANYBLOB="00032cbd7000fbdbdf25660000001000b000148eda277c876b4c986c9eed080001000200000034005b00c2522768524f7e1268f35e4fdaa9cf1650dc422cd0a33f94b164494e4e24821f87ef1df0a1c175569be894b87bd969bc0400cf00"], 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x4000000)
sendmsg$auto_NETDEV_CMD_DEV_GET(r1, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={&(0x7f00000017c0)={0x14, r2, 0x1, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40010}, 0x28044004)
mmap$auto(0x3, 0x100000000, 0x4000000000df, 0x1000040eb2, r0, 0x300000000000)
ioctl$auto_VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000380)={0xffff, r5})

16m32.640333125s ago: executing program 0 (id=1268):
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000002740)={0x0, 0x0, &(0x7f0000002700)={&(0x7f0000002540)={0x1c, r0, 0x1, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x24000000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)

16m31.357375045s ago: executing program 0 (id=1274):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/btrfs/features/supported_sectorsizes\x00', 0x100, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/btrfs/features/supported_sectorsizes\x00', 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
read$auto_objects_fops_(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x81, 0x202000c, 0x20000000000001, 0xeb1, 0xfffffffffffffffa, 0x8000)
mknodat$auto(0xffffffffffffff9c, 0x0, 0xff, 0x240000)
r0 = socket(0x10, 0x2, 0x0)
r1 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0xc8200, 0x0)
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x902, 0x0) (async)
r2 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x902, 0x0)
ioctl$auto(r2, 0x80000000, r1) (async)
ioctl$auto(r2, 0x80000000, r1)
r3 = openat$auto_udf_dir_operations_udfdecl(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/bluetooth/hci7/power\x00', 0x80400, 0x0)
close_range$auto(r3, r0, 0x8)
msgctl$auto(0x8, 0x2, &(0x7f0000000080)={{0x4, 0x0, 0x0, 0x101, 0x7, 0x6, 0xe}, 0x0, 0x0, 0xffff, 0x2, 0x7fffffffffffffff, 0x8, 0x8003, 0x11, 0x6, 0x8})
socket(0x2, 0x1, 0x0) (async)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84) (async)
socket(0xa, 0x1, 0x84)
socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@nl=@unspec, 0x6a)
socket(0xa, 0x5, 0x0)
io_uring_setup$auto(0x1, 0x0)
r4 = openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f0000000180), 0x111441, 0x0)
read$auto_hpet_fops_hpet(r4, &(0x7f0000000240)=""/76, 0x4c)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r5, 0x0, 0x0) (async)
write$auto_kernfs_file_fops_kernfs_internal(r5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x48, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\x87\x02\x1c\xfd\xac\xc7\xaa\n\xf9\x19\xc4#<^\x91\x1d\xda\xc4m\xef\xff(i\xc6@\x91_\vBj\x0eQ\xceV\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5', 0x10000110)
mmap$auto(0x0, 0xec, 0x7fffffff, 0x2000eb1, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0x0, 0xec, 0x7fffffff, 0x2000eb1, 0xffffffffffffffff, 0x8000)
syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000000), 0xffffffffffffffff)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)

16m30.971587392s ago: executing program 0 (id=1275):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_psample(&(0x7f0000001340), r0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_psample(&(0x7f0000001340), r0) (async)

16m30.590304231s ago: executing program 0 (id=1279):
r0 = fcntl$auto_F_GETOWN(0xffffffffffffffff, 0x9, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, r0, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
socket(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x10, 0x2, 0x4)
r3 = socket(0x10, 0x3, 0x6)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r4, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100005800c00c50003000000000000000c02368008027a8087010c800800e800", @ANYRES32=r2, @ANYBLOB="0800fb00", @ANYRES32=r3], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r2)
sendmsg$auto_NL80211_CMD_SET_STATION(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x48, r5, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_TIMED_OUT={0x4}, @NL80211_ATTR_CNTDWN_OFFS_PRESP={0x2f, 0xbb, "ab79863e01e8b2b6e40284d388b53ad6cc46eb132e741d3af91911767aa8257a300d76f0637f2673c2f41d"}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x1)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r6 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0)
ioctl$auto(r6, 0xc0045401, 0x3)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

16m30.154488341s ago: executing program 0 (id=1281):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
mbind$auto(0x7, 0x2091d2, 0x80, 0x0, 0x6, 0x6)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, r0, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_hsr(&(0x7f0000000080), r2)
sendmsg$auto_HSR_C_GET_NODE_LIST(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010027bd7000ffdbdf250500000008000200995eaa76bd37e811b3929919eb8eca737f28ac4ab9f19aeeb358f56a37c325af659ff16b9d29937c82aff050ce8c6b2d44bb390d04a2aa9561ee54d367e5fd3eead6c01195bafc2aadce94537cd22553f50f2c70984bb26a565a202110b0cc477790d0f4d22680e1", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4000850}, 0x0)
madvise$auto(0x55c, 0x4, 0x3)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
sendmsg$auto_ETHTOOL_MSG_PHC_VCLOCKS_GET(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x3c, 0x0, 0x300, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_PHC_VCLOCKS_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7ff}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48010}, 0x50)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents$auto(0x0, 0x0, 0x18)
socket(0x2, 0x80002, 0x73)
fcntl$auto(0x8000000000000001, 0x26, 0x8)
prctl$auto(0x41555856, 0x6, 0x2008, 0x0, 0x0)
fcntl$auto(0x8000000000000001, 0x25, 0x8)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
mprotect$auto(0x7, 0x3, 0x3)
madvise$auto(0x5, 0x5, 0x0)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
r4 = syz_genetlink_get_family_id$auto_batadv(&(0x7f00000000c0), r1)
sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x64, r4, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_TT_TTVN={0x5, 0x11, 0x1}, @BATADV_ATTR_TPMETER_COOKIE={0x8, 0xd, 0x5}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_NEIGH_ADDRESS={0xa, 0x18, @local}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x9}, @BATADV_ATTR_HARD_IFNAME={0x14, 0x7, 'syz_tun\x00'}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x2}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x9}]}, 0x64}, 0x1, 0x0, 0x0, 0x8045}, 0x10)

16m28.617333567s ago: executing program 0 (id=1287):
r0 = socket(0xa, 0x6, 0x0)
listen$auto(r0, 0x26da)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
mmap$auto(0x0, 0x4000b, 0x7, 0x9b72, 0x7, 0x4000000028000)
r1 = syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x4206, r1, 0x0, 0x5)
r2 = wait4$auto(r1, 0x0, 0x3, 0x0)
move_pages$auto(r2, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/zoneinfo\x00', 0x141000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
io_uring_enter$auto(0x3, 0x5, 0xffffffff, 0x3, 0x0, 0x2)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000010c0), r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/cmdline\x00', 0x200000, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x2, 0x1, 0x0)
r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
read$auto_tomoyo_operations_securityfs_if(r5, &(0x7f0000000080)=""/4096, 0x1000)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'wlan1\x00'})
memfd_secret$auto(0x0)

16m13.348504792s ago: executing program 33 (id=1287):
r0 = socket(0xa, 0x6, 0x0)
listen$auto(r0, 0x26da)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
mmap$auto(0x0, 0x4000b, 0x7, 0x9b72, 0x7, 0x4000000028000)
r1 = syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x4206, r1, 0x0, 0x5)
r2 = wait4$auto(r1, 0x0, 0x3, 0x0)
move_pages$auto(r2, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/zoneinfo\x00', 0x141000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
io_uring_enter$auto(0x3, 0x5, 0xffffffff, 0x3, 0x0, 0x2)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000010c0), r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/cmdline\x00', 0x200000, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x2, 0x1, 0x0)
r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
read$auto_tomoyo_operations_securityfs_if(r5, &(0x7f0000000080)=""/4096, 0x1000)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'wlan1\x00'})
memfd_secret$auto(0x0)

12m39.190430738s ago: executing program 1 (id=2191):
openat$auto_userio_fops_userio(0xffffffffffffff9c, 0x0, 0x1e1800, 0x0) (async)
prctl$auto(0x59616d61, 0xdaffffffffffffff, 0x2, 0xffffffffffffffff, 0x8) (async, rerun: 64)
socket(0x9, 0x3, 0x6) (async, rerun: 64)
ptrace$auto(0x10, 0x10000000000001, 0xffffffffffffff56, 0x868f)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x3, 0x0, 0xfffffffffffffffc, 0x696b}, 0xed7138c}, 0x2, 0x9) (async)
socket(0x1e, 0x1, 0x0) (async)
getpeername$auto(0x3, 0x0, 0x0)
r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
ioctl$auto_21537(r0, 0x5421, &(0x7f0000000080)="82e6f9ec064aeb83ddcac0ec8f3443101e99b0a46f763d1d27b07058e3b0f0c77786a6091a6955e8ccbde955965ca01ba120fa312534c35b0ab5bb26e09403465ac1e472cd67724435f791516e7faa9e58f9c6ba6708c569c866d8730bd7b67c2dcd0518354d886bf281c4d815e669037a7c136b4b70c8aa924f17edb21e250b54f608") (async)
r1 = socket(0xa, 0x5, 0x84)
sendto$auto(r1, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80fffe00"}, 0x1c) (async, rerun: 32)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x20180, 0x0) (async, rerun: 32)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/sctp/assocs\x00', 0x0, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) (async)
futex_wait$auto(0x0, 0x0, 0x7f, 0x2, 0x0, 0x1) (async, rerun: 32)
futex_wake$auto(0x0, 0x8, 0x7, 0x2) (rerun: 32)

12m38.211673293s ago: executing program 1 (id=2193):
fcntl$auto_F_CREATED_QUERY(0xffffffffffffffff, 0x404, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f00000000c0), 0x108881, 0x0)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cec2\x00', 0x286981, 0x0)
ioctl$auto_CEC_S_MODE(r0, 0x40046109, &(0x7f0000000000)=0x22)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0)
socket(0x28, 0x3, 0x10001)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[], 0x14}}, 0x4000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r1 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
r2 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91)
read$auto(r2, 0x0, 0x1)
write$auto_proc_clear_refs_operations_internal(r1, 0x0, 0xffffff4b)
write$auto(0x3, 0x0, 0xfffffdef)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x2, 0x2, 0x1, 0x3, 0x300000000000000, 0x7ffffffe, 0x5, 0x6d3c, 0x5, 0x2]}, 0x0)
unshare$auto(0x40000080)
open$auto(&(0x7f0000000200)='./file0\x00', 0x49193, 0xff90)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r4, &(0x7f0000000c80)="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", 0x300)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)

12m37.154504665s ago: executing program 1 (id=2197):
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000003c00), 0x1a9901, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x114, 0x8, 0x0, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x3, 0x3c)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x2, 0x88)
readv$auto(0xffffffffffffffff, 0x0, 0x3)
ioctl$auto(0x3, 0x800005411, 0x38)
socket(0xa, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="fa6b8c00000000000000002f76a61900000000", @ANYRES16=0x0, @ANYBLOB="010028bd70007edbdf250f00000005002e00010000000a000900aaaaaaaaaaaa0000"], 0x28}, 0x1, 0x0, 0x0, 0x20044054}, 0x140080e4)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
mmap$auto(0x0, 0x20009, 0x3, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x1e, 0x0, 0x1)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x30, 0xff, 0x0, @raw=0xfffff00c}})

12m36.249144175s ago: executing program 1 (id=2202):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
statx$auto(0x564, 0xfffffffffffffffc, 0x1000, 0x3, 0x0)
landlock_create_ruleset$auto(0x0, 0x9, 0x0)
socket(0x1, 0x1, 0x1)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="6000e15b06dcaf0f321c7f4f", @ANYRES16, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000300000400000a00050000000000000000000a00010000000000000000000a000500000000000000000008000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB], 0x60}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004c18}, 0x8894)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01f2080007000000000000"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x848000000015, 0x805, 0x0)
setfsuid$auto(0x2)
setresuid$auto(0x0, 0x0, 0x4)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
open(0x0, 0x22240, 0x155)
mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd)
bpf$auto(0x7, &(0x7f0000000080)=@bpf_attr_4={0x10, 0xffffffffffffffff, 0x8}, 0x9)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB='h'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/machinecheck/machinecheck1/bank5\x00', 0x20502, 0x0)
mprotect$auto(0x1ffff000, 0x8000000001000001, 0xd)
acct$auto(&(0x7f0000000140)='/sys/\x01\x00\x00\x00;{G\xba\xd4\xf0laR\x12n\xf1ces/platfoR\xf8/i8042/ser\xa6\xd6\xf2\xcb\xd8]\r\xcc\rJ\x13\xe1\f\xde\xde\xd2\"\x11\x8d)io1/resync_time\x00\x81\xf2\xdd\xe9\xfd\xd8R\xa7\xce\xac\x12\xb7w\xc9\xc4\xf1/\xb4\xb8\x8dz~y\xa2\xac\xa6d\xbe\x9fA\xdd\xfb\xe8,FB;O\xb3\xb0\x8a\xc4\xe4 \x1a\xba\x81kM\xde\x91\x95\xb7\x8e\x9b0\x9e\xfet-\xee\x9e}\x7fK+\r\xd8oHU\x05!\xb0\xd4\xd6\x01\x99\x851y\xca\xb5\x98h\x04/\xf2\x90\x00'/183)
acct$auto(0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'ip6tnl0\x00'})
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x12, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
read$auto(0x3, 0x0, 0x80)

12m35.259015899s ago: executing program 1 (id=2207):
mkdir$auto(&(0x7f0000000080)='./file0\x00', 0xfffe)
mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9)
rename$auto(&(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000040)='./file0/file0\x00')
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0xf, 0x9, 0x63, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x400000000010, 0x8, 0x40000402, 0x7ffffffb, 0x9, 0xffffffff80000000, 0x9, 0x7, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
ioperm$auto(0x7, 0x71, 0x863)
iopl$auto(0x3)
ioperm$auto(0x5, 0x3432, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x1a9382, 0x0)
write$auto(r1, 0x0, 0x5)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/vivid/parameters/vid_cap_nr\x00', 0x48040, 0x0)
msgrcv$auto(0x0, 0x0, 0x1000, 0x8000000000000000, 0xb5)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2c, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
getsockopt$auto(0x6, 0x11b, 0x8, 0xfffffffffffffffd, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x12, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x8)
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
tkill$auto(0x80000000000001, 0x7)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

12m34.504044532s ago: executing program 1 (id=2209):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42000, 0x0)
read$auto_proc_pid_smaps_operations_internal(r0, &(0x7f0000000000)=""/182, 0xb6)
madvise$auto(0x0, 0x2003f0, 0x17)

12m33.985587921s ago: executing program 34 (id=2209):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42000, 0x0)
read$auto_proc_pid_smaps_operations_internal(r0, &(0x7f0000000000)=""/182, 0xb6)
madvise$auto(0x0, 0x2003f0, 0x17)

10m12.617392903s ago: executing program 4 (id=2993):
mmap$auto(0xfffffffffffffffe, 0x20009, 0x2, 0xeb1, 0x401, 0x108000)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000000)='./file0\x00', 0xaf44529eb48ad963, 0x17c)
socket(0x1d, 0x2, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x15, 0x5, 0x0)
r1 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYRES8=r0, @ANYRES32], 0x18}}, 0x80)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10048884)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x8002, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x101080, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/transparent_hugepage/khugepaged/max_ptes_swap\x00', 0x100042, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0)
read$auto(r3, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000004d40), 0xffffffffffffffff)
read$auto_snd_rawmidi_f_ops_rawmidi(r2, &(0x7f0000000080)=""/45, 0x2d)
arch_prctl$auto(0x5002, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'vlan1\x00'})
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)

10m12.261445151s ago: executing program 4 (id=2994):
r0 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r0, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x200039)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) (async)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
utimensat$auto(0x2, &(0x7f0000000100)='\x00', 0x0, 0x1000)
sendmsg$auto_TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x24004044}, 0x10000000)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8000, 0x0) (async)
close_range$auto(0x2, 0x8000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
ioctl$sock_SIOCGIFINDEX(r1, 0x40086602, &(0x7f0000000000)={'macvtap0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x40086602, &(0x7f0000000000)={'macvtap0\x00'})
io_uring_register$auto(0x2, 0x22, &(0x7f0000000100), 0x1) (async)
io_uring_register$auto(0x2, 0x22, &(0x7f0000000100), 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/scsi/scsi\x00', 0x400, 0x0)
readv$auto(0x3, &(0x7f0000003080)={0x0, 0x4}, 0x9)
read$auto(0x3, 0x0, 0x83) (async)
read$auto(0x3, 0x0, 0x83)

10m11.9624606s ago: executing program 4 (id=2997):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x848000000015, 0x805, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@nfc={0x27, 0x0, 0x0, 0x6}, 0x3)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'tunl0\x00'})
sendmsg$auto_NCSI_CMD_PKG_INFO(r0, &(0x7f0000000880)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000840)={0x0}, 0x1, 0x0, 0x0, 0x41}, 0x44088)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r1 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r1, 0x43403d05, 0x0)
madvise$auto(0x0, 0x53, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x1fc000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)

10m10.865446577s ago: executing program 4 (id=3010):
r0 = socket(0xa, 0x2, 0x0)
sendto$auto(r0, 0x0, 0x402, 0xacf8, &(0x7f0000000040)=@ax25={0x3, @default, 0x8}, 0x1c)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r0, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f0000000000)=ANY=[@ANYRES8=r0], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x22048814)
r1 = getsockopt$auto_SO_SNDTIMEO_OLD(r0, 0x400, 0x15, &(0x7f00000001c0)='^-{T.*}#/\xc1\x00', &(0x7f0000000280)=0x7)
mprotect$auto(0x768, 0x6ca6, 0x1000)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x0)
mmap$auto(0x0, 0x8, 0x72, 0x8b72, 0x8f1, 0x8000)
r2 = socket(0xa, 0x5, 0x0)
poll$auto(&(0x7f0000000000)={r2, 0x4, 0x1000}, 0x7, 0x7)
io_uring_setup$auto(0x6, 0x0)
ioperm$auto(0xc5, 0x4, 0x2)
futex_waitv$auto(0x0, 0x200bf50, 0x0, 0x0, 0x62c0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0)
unshare$auto(0x40000080)
r3 = socket(0x2, 0x3, 0xa)
getsockopt$auto(r3, 0x0, 0x26, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x3d, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x0, 0xfffff004, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x3, 0x6)
mq_open$auto(0x0, 0x566, 0x29, 0x0)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x40000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000e80)=""/215, 0xd7)
close_range$auto(0x2, 0x8, 0x0)

10m10.642704337s ago: executing program 4 (id=3012):
mkdir$auto(&(0x7f0000000080)='./file0\x00', 0xfffe)
mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9)
rename$auto(&(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000040)='./file0/file0\x00')
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0xf, 0x9, 0x63, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x400000000010, 0x8, 0x40000402, 0x7ffffffb, 0x9, 0xffffffff80000000, 0x9, 0x7, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
ioperm$auto(0x7, 0x71, 0x863)
iopl$auto(0x3)
ioperm$auto(0x5, 0x3432, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x21e100, 0x0)
write$auto(r1, 0x0, 0x5)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/vivid/parameters/vid_cap_nr\x00', 0x48040, 0x0)
msgrcv$auto(0x0, 0x0, 0x1000, 0x8000000000000000, 0xb5)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x12, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x8)
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
tkill$auto(0x80000000000001, 0x7)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

10m9.257445039s ago: executing program 4 (id=3018):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
capset$auto(&(0x7f0000000000)={0x2, <r0=>0x0}, &(0x7f0000000040)={0x6, 0x401, 0x1})
r1 = fcntl$auto_F_CREATED_QUERY(0xffffffffffffffff, 0x404, r0)
r2 = io_uring_setup$auto(0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(r2, 0x9, 0x5, &(0x7f0000000080)='!\'$*-\'\\!+g\x00', 0x8)
write$auto(r2, &(0x7f00000000c0)='!\'$*-\'\\!+g\x00', 0x2b26)
socket(0x10, 0x2, 0x0)
socket(0x29, 0x2, 0x0)
memfd_secret$auto(0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
socket(0x10, 0x2, 0x0)
open(&(0x7f00000001c0)='./cgroup\x00', 0x0, 0x6f)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket(0x1, 0x1, 0x0)
bind$auto(0x3, 0x0, 0x6b)
r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000140), r2)
sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(r1, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, r4, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_IFNAME={0x14, 0x4, 'pim6reg1\x00'}, @NL802154_ATTR_SCAN_CHANNELS={0x8, 0x21, 0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x20044000}, 0x8d0)
listen$auto(0x3, 0x81)
listen$auto(0x3, 0x81)
ioctl$auto(0xc8, 0x400454d0, r3)

10m8.983525434s ago: executing program 35 (id=3018):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
capset$auto(&(0x7f0000000000)={0x2, <r0=>0x0}, &(0x7f0000000040)={0x6, 0x401, 0x1})
r1 = fcntl$auto_F_CREATED_QUERY(0xffffffffffffffff, 0x404, r0)
r2 = io_uring_setup$auto(0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(r2, 0x9, 0x5, &(0x7f0000000080)='!\'$*-\'\\!+g\x00', 0x8)
write$auto(r2, &(0x7f00000000c0)='!\'$*-\'\\!+g\x00', 0x2b26)
socket(0x10, 0x2, 0x0)
socket(0x29, 0x2, 0x0)
memfd_secret$auto(0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
socket(0x10, 0x2, 0x0)
open(&(0x7f00000001c0)='./cgroup\x00', 0x0, 0x6f)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket(0x1, 0x1, 0x0)
bind$auto(0x3, 0x0, 0x6b)
r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000140), r2)
sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(r1, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, r4, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_IFNAME={0x14, 0x4, 'pim6reg1\x00'}, @NL802154_ATTR_SCAN_CHANNELS={0x8, 0x21, 0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x20044000}, 0x8d0)
listen$auto(0x3, 0x81)
listen$auto(0x3, 0x81)
ioctl$auto(0xc8, 0x400454d0, r3)

4m30.190349133s ago: executing program 7 (id=5093):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='\xdb\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x8)

4m30.050238581s ago: executing program 7 (id=5095):
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000002340), 0xffffffffffffffff) (rerun: 64)
statx$auto(0xffffffffffffffff, &(0x7f0000001400)='./file0\x00', 0x63d, 0x8001, &(0x7f0000001440)={0xe76, 0x6d940f12, 0x5, 0x5, 0xffffffffffffffff, 0x0, 0x7, 0x7, 0x1, 0x8000000000007bd8, 0xffffffff, 0x1ff, {0x6, 0x80}, {0x4, 0x2}, {0x0, 0x80}, {0x2, 0xef0c}, 0x3, 0x3, 0x9, 0x6, 0x5, 0x9, 0x6, 0x3, 0x5c19, 0xb78, 0x1, 0x6, [0x5, 0x7, 0x3, 0x2, 0x5b, 0x7c383912, 0x8f8, 0x3, 0x100000000]})
semctl$auto_GETALL(0x4, 0x3, 0xd, 0x3) (async)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
r0 = socket(0xa, 0x1, 0x84) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptywa\x00', 0x400, 0x0) (async)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/sctp/remaddr\x00', 0x101d00, 0x0) (async)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
socket(0x23, 0x80805, 0x0) (async)
setsockopt$auto(0x3, 0x0, 0x13, 0x0, 0x9) (async, rerun: 32)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) (async, rerun: 32)
ioctl$auto_TCFLSH2(r1, 0x8924, 0x0) (async)
close_range$auto(r0, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x3, 0x1) (async)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r3}, 0x6a) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x7000000020000000}, 0x5, 0x0, 0x0, 0x9}, 0x7}, 0x0, 0x0) (async)
fsopen$auto(0x0, 0x1)
statx$auto(0xffffffffffffffff, 0x0, 0x8, 0xc302, 0x0)
stat$auto(0x0, &(0x7f0000000140)={0x1d, 0x79, 0x100000001, 0x566f, 0x0, 0x0, 0x0, 0x100000001, 0x8, 0x5, 0x1, 0x4c, 0x3c2, 0x104, 0x1, 0x2, 0x1}) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (rerun: 32)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x40181, 0x0)

4m29.370287072s ago: executing program 7 (id=5097):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket(0x10, 0x2, 0x0)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf25020000002c"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x42, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x200, 0x1)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45)
fanotify_mark$auto(0x0, 0x55, 0x9, r1, 0x0)
fanotify_mark$auto(0x0, 0x1, 0xa, r0, 0x0)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x22, 0x0, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
sendto$auto(0xffffffffffffffff, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x2b, 0x1, 0x1)
setsockopt$auto(0x3, 0x8000000000000006, 0x17, 0x0, 0x7ffffc)
socket(0x2, 0x80002, 0x73)
bind$auto(0x3, &(0x7f0000000100)=@vsock={0x28, 0x0, 0x2711}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0xa, 0x84)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80)

4m28.831633872s ago: executing program 7 (id=5099):
ioctl$auto(0x3, 0x40045613, 0x38)
r0 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap$auto(0x0, 0x20008, 0xdf, 0x9b72, 0x2, 0x8000)
futex_waitv$auto(&(0x7f0000000000)={0xfffffffffffffffd, 0x7e4, 0x2}, 0x1, 0x0, 0x0, 0x623d)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, 0x0, 0xc0b02, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2000000000000021, 0x2, 0x10000000000002)
statmount$auto(0x0, &(0x7f0000001240)={0xa, 0x1, 0x401bf, 0x7352, 0x40, 0x65f, 0x1ffde, 0x7, 0x3, 0x2, 0x9, 0x3, 0x5, 0x4, 0x3000, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x1ffc, 0x203, 0x400, 0x84, [0x0, 0x400, 0x0, 0x100, 0x0, 0x2000, 0xfffffffffffffffd, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x0, 0x3, 0x1, 0x4, 0x9, 0xfffffffffffffffd, 0x1, 0x200000000000, 0x100000000, 0xffffffffefffffff, 0x1000000003, 0x0, 0x0, 0x2, 0xfffffffffffffffd, 0x400000000005b8, 0xc, 0x4000000000, 0x8, 0x4, 0x1ff, 0xffffffffffffffff, 0x8000000002896, 0x800000000000a, 0xfffffffffffffffc, 0x1000, 0xa38, 0x0, 0x0, 0xfffffffffffffffc, 0x1, 0x4000000000, 0x6, 0x0, 0x100000]}, 0x1fe, 0x10)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="18000000", @ANYBLOB='p'], 0x1ac}}, 0x40000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)
socket(0x2a, 0x2, 0x0)
r3 = socket(0x2a, 0x2, 0x1)
pwritev2$auto(r0, &(0x7f0000000040)={&(0x7f0000000240)="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", 0x8}, 0x9, 0x1ff, 0x595f, 0x9)
connect$auto(r3, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x2, 0x4000}, 0x55)
bind$auto(0x3, &(0x7f0000000080)=@qipcrtr={0x2a, 0x1, 0x8000}, 0x6b)
socket(0xa, 0x801, 0x84)
futex_wait$auto(0x0, 0x0, 0x6, 0x2, &(0x7f0000000080)={0x4, 0x6}, 0x9)
r4 = syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
chdir$auto(&(0x7f0000000200)='./file0\x00')
ptrace$auto(0x4206, r4, 0x0, 0x5)
openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f00000001c0), 0x98100, 0x0)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x2100, 0x0)
read$auto(0x3, 0x0, 0x80)
ptrace$auto(0x4f73, r4, 0x8000000000000000, 0x3)
sendmsg$auto_TASKSTATS_CMD_GET(r1, 0x0, 0x20000000)

4m28.697865203s ago: executing program 7 (id=5101):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/rcu_expedited\x00', 0xa000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)=""/4096, 0x1000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mbind$auto(0x0, 0x2, 0x2, 0x0, 0x2, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, &(0x7f0000000000)='//\xf2\x00', 0x80000000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x9, 0x3, 0x1}, 0x5, 0x0)
bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x0, r1, 0xd, 0x89, 0x2, 0x4, r1, 0x81, 0x9}, 0x6f4)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x2841, 0x0)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
readv$auto(r1, &(0x7f0000000a80)={0x0, 0x10002}, 0x401)
close_range$auto(0x2, 0xa, 0x0)
r2 = socket(0x18, 0xa, 0x1)
connect$auto(0x3, 0x0, 0x55)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x125900, 0x0)
r3 = accept$auto(0xffffffffffffffff, &(0x7f0000000040)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, &(0x7f0000000080)=0x9)
r4 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_FTM_RESPONDER_STATS(r3, &(0x7f0000000300)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x82808800}, 0xc, &(0x7f00000002c0)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="dc140000", @ANYRES16=0x0, @ANYBLOB="010026bd7000fddbdf2582000000bb001180adf84e80c806512640c9f90eb1b1df38ce6acaf1c5e38729414a978f0813d52669fafd1669f3cff8a4683b05e2840febe6199f73302216a3ce79391b2dc4d640bc0e00f0ad6f957dad8467f4c55ba05da5807ada4d6c3bb08b420d829b872508748ee0cb29c6cab6e0e2efd1fcdef04a725f598d78985d5442619db36c7d05b52e0cfc5bfd0a2fea3ea9a769990e85afd7b8ad375815796dfd17c1c736f53665d95b74abfea95b5d789aae7e78a5b92d73ba49815880030087132c806b63e8e4873281665c4d657936c53be07a45c8620f0eec3ff3f38689907eabae8fb3b753b9f91166a36c745a99d43547f712b7471eb28a8127923101607d8f2f801097b105d2b05a08989ab47255f6fdd34a32a118de792c085b27561aae3c7969e8ce317a11dbe8ff1e40d465c3141b2941617668c19202cd51aeaca9ef250219d5d4cf1460d6d5412b7e5b55d535f5c6215f1835a5abd775fcd06370a80cee6c180c26e01be23439e65e46103d2e5e96690a007c002f282d2e7d0000000800d800ac1414bbc8002e80c00076008dddeffa3e481dc8725e9600afad0d867280aa9f13f22165b33dfbc7c708a1635bd981aed6db8b666b357fe969f02d91c3cc8f21f2f443c69cb443d8112f5d920b3cfba8c90f779d64318a27c01f160d3286a1d10b9c836f013584496b08b40512389222dbfe2edb618bce40228a0c6a8051157617bf2cac2a8479c95886ce88ec6d156de3d87f4775baa0d3989b5d1289f8986f23f429733af94da34357e624df6842ebb5a1ccfbffd86798eda3bf70e0e03bf7d1173ff5de1422870400448066100c80c1d26b8c91e1be65c8b963268c7d89b0f532243bb53fb8a213bf578ffae3da741c46d00f0338e71a2e0f6c8076f95d48924087b6a3bab11e2a0d9a6e3c874a210d6714ea1808f35554bf181fbb017df6159ebe59e4b199148433cf0444049940a9dbc91ce2088fef0b048dd3aa7a3deb8ad13d09e6570541a9251cddd7435534d95f8e8b06a5a1da5d177cbac336b4cff0998d45baf87e2964a71126c6afba67526f798e3d546a0a46b53ca83027580b3d2141e67e7b11504cd9e149f0e8caab52a4313c821997b5262ad3b8887c2454ef982ab1189cf34d3c806d54ce656c37d56088be5a67002c3f950f8d509cf02e8b085d0fc7aca22ab658e3b0633f3c962807cf46f1fac847f7a8cf31d33277947b91e6cb636622eae4230f385c8143ab100e67cae68cb5b472772f009ce84ff2804226ebf23872ce78751fa9aed58fc6b68744b3b3494d9c5bf5b8e842fe2f7d1969d6de04af57749c4d86bf69b0e8af2aa4e56994d940f0784fd2128012a065366b72c65371f590d9f0f461277e7e9ca818af2d0324a0230a1b84b2dd87f162ba4bdf392a1997c33f115578828b3f56324c730ef390d30a8fcfdd901030a0e8f8163b09af3049aed1e36a80804256b59d485e3d8e488b88edb00b6b70b107e1b8852bd20e8eb51a2528605801f485d85901d1bcd4f39b21289e0b3c95f0f078a155b29d3571272cd869198956a922bfb67875727cab8421712b138483fcda99a8b2ff67b615eff1ba32a11dd4168a5eb95bf929b61808eee5e3fc76d04925031bf1eea2c1b8a4f4aa518b5188e1a526d47e2fea8efdaef64c65c343bb039c202c3be73daea89248c39ca2e84601a6f05084f667bfc315202d0074133cf360dee14ee09aa84c7c54b0d0dfcdf55b87bdac067b75fe3a8b23a045706b5b84c710dc2fce53e7b543cb30a48ac13928a9ffcace36f7421e6feb8258311079ff8155f5f1a557bf8ca5583d5fd32195aa7049c3c2321e123e2054b35fb614fabd2de187db524595948934ae098de2afc6e5e14046103177af681332a1e3238fb6c37672e6468cb4521dffc83ac4d2eb4f5842e81be4eff2a07c6de1151249b0afb460e0f75ef4ed8efbd0fb5275036c4ea72d3ed9ef82804dcb151c8eea2a9af86a7af7e30c11c5aa65446e5338cbdc3c81fa64a4b0480ac2e4e48ab9dfdced780f312f318df6963027644f30162782f79ac528fb81d83877f08af092cd751bbe962281364f59cde2adf9443c38d095809e71ec4919c7275e01efcbe0d17bb5454d0700d3f26dad70080498bfee1e40eb4a7e9821e3829c34529ec0e88dcdc068a6c268a0ad3ba79a920c3809189ac062aeabf9da5a3931007d1ea70f7254343610a7b43588858f07cff945a7c1dd93795ad5f93609566a35b7935033bc6b6aa1289f2d207f3a4b0e73a824881a65afce0cf6c2e5f43a1d885dadcea6cbd5028b385159242593203b4e4d514c95928b076552a93f35ed3c7816e98106bee6b4742f5fb269acfd103668f03e7ce6ec1f1fd1c37cc8a0e00561cb8ee27a90cdbbccb522501642e6b931eebd4da44236851037c6a9a5a30aa11b51999062b499235d904378286237ed2768abbc92b0a28ca51d4f7d7b5f0672d6d093dd40b3091aba83ba62dbebdb7fcb53ab405732595c5b6b21852fbd806b5c67556a5c03a922dd0c77b97f5f922b2e7c163b63d0d4cf6659f6475e076dfebcbabf0cac1d548d214190fad9750386ad552def86dc68afbbf4bcad30ab87c01b2b6f3eb5121c625a893705c789f00bad00e738dbf4f59413a0f36d6318c159bbfaf50055989465312302e7683db4c6c2e09a0ca2c7617f73d5fb138c4237d2409001ad07609050b9e8ec2efb84ca82c6adc4f30fe96eac9a5570a6c29a23ac794a9a9221a076a2e29643a9c3555533226194c8a74c7c1d130f9d3e34053486369fd0d260eef3e53a7018be089991989deb4cec056621e8ca8bce1d67aae384b93d8439a6bc4a9af62014338a8c25b0d81a3fe6150b90469bb4e75e1223f69d63afdd65203320d26c8c9b53132554b093c1b685808385a1bca235723a5897091bb96da908d8eb936588db2d97b8d54fabb5fefc457db2d52c932ed914a09c61889c200ec00292adfdc3f48fa09e59f7c91fc42f2dd45308add82158e94a26255e4bc1d0c5a8b55e3bd608931b9ebf5cebc733ff19f059f613dd1ddc42a16fb543e188aa7ff7fb97901a8a319b11d23fa239d5a96ee5f409ab8fe1233751efff3a5afef8af7a530fd539829026fde63220216e22ac864f44afd959299efd72dd90cf303b937d4f08556468c263c82570d583f01c67f37afa4a8c1958f3f5d60aaf866c53aaec1b96172a3d37c964bb19eca97b012092db6a6bba9cddd36b91877c66fdba76e3c75dfcbe05fea0f8dd288c21fd82a856b93009333640f71dc66f022c51193a1aa7e332ff1b5dd57246bf71c675ff59ab6491b0b405568d9d2aac203f923fb04f976c58e6f609c5ef1f67b434dd7840195fee191f49234d2009b55e1e8a2132d7f630142491a1b87b7555a1748624a199781bb7311d679b889d7b16abd4e01c6d7e7b38a4d7f65246281c0a71d00f86e7a7b78b4cc7badd22d2ed6b12788bbc8b484e92e295a9ad275d9c002192d9eca50f67afc8a7e6a8e857a12c1522c4bb40eb8068b2c1c16653c335be2bdcd302f4fdc2dd5178f4049b9b6600d730f87df74333e337ba14ddbe789db8747a7b3c1898b5eb88d000d2ec113464873b9da19735be01af635f32289fb4e8112fa507f300db6c9afc3a04d57f13c85df35d709b3bf3a122f13eda88b6635b4f1857805b02726e001c8208b8f6fffcf6001cbba4455bb2c5e790e3b34e02c75f25a84a419633214045092dbb8d8317929afdac61ebcc7bb4725c48a2d19c7615a30aa5b878b3d34997ccf94f84900e0f1d8ffd8c2cdda4925fb41f71d7493115a81a5dce42aa0e667dec97eea7b1b92b7f90111994a47a7fdb6858361a9b0d3041a65f0f93f527b43b7ef3d34cbbe8c1f25782a2034a3db85cc2846844426960153bb51537ff5d868e0363d509071646d55bcafe8c8ddd67831306d7db3da0d6809fdd7100eec3c55af266ccbdb2f7b66c29f690286def6e19f6feb91f3156d2aae824f1dce4975ad8025ca4063084184cc32256fb5640d55c600229455497b97a5b50ea968680ba7be534b09365eac8a2c3439cf21a9cac38e5e7c3d2e3a878f721ae970fb1154ea3bbfb743acb69c41a9c8b129e92f1263ee5020ae41aa5141442536591f5ffb1f4697a0f11d4c9c82fdd254c9baab2eea76c3e3f0ef657830f773a611edd92aae9ed524a1df788c4545869f53b9b91057043dcb7555ce596a3c0aa7008adc3c3a3298861eb79ba9751737d563fa81ab855f3f96928ee306ee693f1fabdba7c5b20f74a21e45aed3d4032a933916fa4357de1498bf21478e6555c4272b618d9a4216136d9c5465019613d2a25c093d0586e0819c369bed4899059ce06f7d8369654c1de555b4b477897662810714496591b3f5620dac45b61eb4fb82019d8a8b8ca61fc9e90462cc8b1f752941e7abd3bcf58a3ac4d4bda6444dfdcdc52dda36cad0bd2f8f8366ae41599b8e455106179aed5e49a2923dd986a218f8ced0b2dee6142ba811eac77987285de8f593318f1f0cef230736d23e21faf3928be0aabcf70af24353e0bec579fcb1b80bdd0a27a3acca0a14de457ad6c9e9a00285cdbd60e9dff693b6def7f944f21963c83613620ebcb5afe628f5ea2f62cf60913f2b1854e427ef936fe4efee3201dd8614ddc104069216a156f95589e00ecdea0d6212214cff13cab3ff8776775d7173198b50d7a975175d27791bfc14cbd1be7470cd762db667f5180c6e013fbd25135909258d92a2398c4ac5cb44c7b600fcfcb255c7e155f27f00a30bcb64e44adf6402bccd138d7dc301dac678f695383e23f182d3625615f4502468e3b6f044a414cbc63abc5f12a4f0914cd3a8a94c9ed6a3a7b0a7aeacaad3c2a5c8d788be22de0894e636c00d6b665f1f3c3707515d9ee93d6257f86965d36c6a5634c2b425ab7e4b55773f618e784e4784e622a31d21f45353541db6db6a9714af7b038921a831abc10a8e384e08204c2e7b5b38b3c3556a09afbdd2fc72abe3cc743c8a1bc01991dc38d517450ba0dc539453efa6a0b37c9638a8718f3dac3eec2933c876fa54665fecc254e2242e3b822d87e85daf53bde96dc83ca2f6ac8053d178c6535a09cffd1cb0455b0c06659d10eb88cce91b18aa3fb0e7d8502ec8f5e7f0dd0b4054806a60a0773a0d7608cff28045d879b628c03aafd1e2c497ee991b42ae6543bae2047f98e2033ce92a05d4167dc80d7a07e4201203d72c7a07af64afcd95f468679d22a54ae250e287914ad91648ae6abeb4b02fc47027e17e946588eefd315bdec7ad2cdd170c27aa582409e09e6c764f087506c2d83cc9a7d3032b73b934bcd1b1acf6aff4a4f1392da839e43bf08e55c7691c690fb79f589a0760ee6a32d262493cb6e4a53aa4a6e75ef01d24d8c714941f9cc5d61a85ad8e0b9020f9de445036a04d76b70a0466288c2bc996346b3e3646808923da2d632d9b81401e7111527a9f0dae5598e0cbf3133219f58e625eb424fc53a53febe4979efe61adaaaa1f1f3c46624ed1b5a8a8f4a5eada6d5275dd69847b3b3984fc802d73f35f53ca8dc245420d095bd0840364fcf122d601211fcae79dfa0faafa59b2f939d6d13307aa86599e4e9cf7cecf6565acba485a3058f325245b956cbdfc7585a87a4b6b27d2422de2d64afe6a65399db712eeb42f411dc3112d3b750b515868adf56a22b10b5797bbb369899d408c5fba5a5cdc7d896049a173b74aba00a6566cb24495749c977687cf5ed6db8f9158ce8d437044ba31962cc80194fadbaa1325c8a3141c9bc3812b3e14620a83a0bebd42fe31a7b4445728e15e1eb3e13c054d61d7e02c38b47ece9144164bee88d4350373db1b023861fa21018cad303f9d4dda0f103e97893c416f561c3f88eb8ea51261174047c7add59feb1091c1eccd2ce52ec3a2629fbe66af6965071a0805c1a2a311b3eb8a81f4f3a5ec34557c3b505b2ca5fe4dd0003299f065481b454bc612e1e9dd375b7e31fe6d65eda6c03260ed1ec8c491097a5f21c1ae2ca07ccb6e1230643b52822410a76e399785b7e802facdd0c8aeda0fc65e06657aef77d630bb7f7206e11d5b6ed83d613901e049e5beb2c469902eab3bf2664eebf4e9cc9f1b2d034a24bc5be6afb0cd6b31088055ffe92237e1d71ead38ffbbfd1ee58ab1824ee22c91a286595807cc451dbf2467e1ffcfe344aaf44bcdd2873c6c1b10414df02db795552d7e86209cb0535f773e77d5d62447b91d1734c5a8640c305cc226a123a45e245f126be4f39a4b190c888356b15de0954e64dfa441491deda65361406d09f8e328d240ccdc92a29b582432c4059c42f938e78dd461ef57978620debd8b5a133a23a57275e50ce709a6f960cd0109198dcdcd13a4160ee25cab1cde4f84962e2574b598a6be3e5a24701ab1ecbe2670948f2d7c87f23cfc72a90ae90bfee0838677f9c5f8f0cf3dd8b1ad01ee771c9d4abb9a0bcffc309e778d042e18e31d6cb55306d15f143b618a8236ea7644d59c529f32219e2b32a4decf9334a4186355a4f83be8adfb1d558783702ba50fed74295e39b2d1a50cc16d797ec4ce7d49439e5c7803189c97e2b287d285e374ba4f0bdcfcdd5cfc2c41bc1e0481f82a806528c9c0840e2f5615653abdcf77df5f8d26cdff874af9d65f76b50e65a237be2fb2fe583275233b182b416c95ce67a1ba266718bb1b76d05b980def07c4b4f369e90a81a21ef4e5603ffeec12e35f8b930b9eb57de865bec95a880d48c0c0400c2800000e400d5800400548004000c8004009e800c00b700070000000000000008006e00", @ANYRES32=r2, @ANYBLOB="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"], 0x14dc}, 0x1, 0x0, 0x0, 0x20048010}, 0x8001)
sendmsg$auto_OVS_METER_CMD_SET(r3, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="02002abd7000ffdbdf2502000000040002001c00048005bc48242d10b34cfb6a801306b44fd2162bb3596680cddf08000700001000000800010002000000"], 0x44}, 0x1, 0x0, 0x0, 0x4004004}, 0x8000)
bpf$auto(0x18, 0x0, 0x92)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
io_uring_setup$auto(0xa, 0x0)
close_range$auto(0x2, 0xa, 0x0)
open(0x0, 0x101000, 0x15e)
msync$auto(0x0, 0x2000000005, 0x6)

4m27.899331269s ago: executing program 7 (id=5110):
socket(0xa, 0x3, 0x32)
setsockopt$auto(0x400000000000003, 0x29, 0xcb, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getpid()
madvise$auto(0x6e, 0x6, 0x0)
socket(0x10, 0x2, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\b\x06e\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9', 0xe, 0xffef)
socket(0x1c, 0x3, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000007440), 0x0, 0x0)
pread64$auto(r1, 0x0, 0xb, 0x4)
r2 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_SMC_PNETID_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x2c, r2, 0xd3bed26fbb0d8463, 0x70bd29, 0x25dfdbfe, {0x2, 0x0, 0x300}, [@SMC_PNETID_ETHNAME={0xc, 0x2, 'syz_tun\x00'}, @SMC_PNETID_NAME={0xc, 0x1, 'ethtool\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x1c054)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x200000, 0x200006, 0x5, 0x40eb1, 0x602, 0xb00000000000)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002740), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r4, 0x305, 0x70bd27, 0x25dfdbff}, 0x14}}, 0x84)

4m27.512915332s ago: executing program 36 (id=5110):
socket(0xa, 0x3, 0x32)
setsockopt$auto(0x400000000000003, 0x29, 0xcb, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getpid()
madvise$auto(0x6e, 0x6, 0x0)
socket(0x10, 0x2, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\b\x06e\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9', 0xe, 0xffef)
socket(0x1c, 0x3, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000007440), 0x0, 0x0)
pread64$auto(r1, 0x0, 0xb, 0x4)
r2 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_SMC_PNETID_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x2c, r2, 0xd3bed26fbb0d8463, 0x70bd29, 0x25dfdbfe, {0x2, 0x0, 0x300}, [@SMC_PNETID_ETHNAME={0xc, 0x2, 'syz_tun\x00'}, @SMC_PNETID_NAME={0xc, 0x1, 'ethtool\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x1c054)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x200000, 0x200006, 0x5, 0x40eb1, 0x602, 0xb00000000000)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002740), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r4, 0x305, 0x70bd27, 0x25dfdbff}, 0x14}}, 0x84)

1m35.98226774s ago: executing program 6 (id=6211):
mmap$auto(0xfffffffffffffffc, 0x200000000000074e, 0x5, 0xffe, 0xffffffffffffffff, 0xc2)
r0 = signalfd4$auto(0xffffffff, &(0x7f0000000080)={0x8000}, 0x745, 0x0)
readv$auto(r0, 0x0, 0x1)
unshare$auto(0x40000080)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = socket(0x2, 0x1, 0x0)
mmap$auto(0xfffffffffffffffe, 0x2020009, 0x10000, 0xeb1, 0xffffffffffffffff, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x40000000005, 0x7)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00')
io_uring_register$auto(r0, 0x1f, &(0x7f0000000180)="1c63a2aa644bca9442e08feac7d73a99f818a759805247e92ea3876af64c04c6f266ac12aa10b2e503cf24c3b5eae8a309ad0e867340ddca5a3310f8fc7c11997b931903ced46b0420a35d2bdea7511a2c35921a61e5700a6b0deaea3b7358a31921da817ff4ec07c6d7835f4f9fbd588c611f34dd05dd2cdf53127762fccdeb231d32b09f51ca0522ba2a47d28d8cafa61060ea91e6b03daf2389c1c933f65c63f13dcab69ddb8bb200"/182, 0x1)
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa)
munmap$auto(0x1ffff000, 0x2000000c)
r2 = openat$auto_ftrace_event_id_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/id\x00', 0x2, 0x0)
close_range$auto(0x0, r2, 0x4000000000002)
r3 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SMC_NETLINK_FLUSH_UEID(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="cf660000", @ANYRES16=r3, @ANYRESDEC=r1], 0x1014}, 0x1, 0x0, 0x0, 0x5}, 0x804)
mmap$auto(0x0, 0x202000d, 0x100, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x23, 0x2, 0x0)
io_uring_register$auto(0x2, 0x17, 0x0, 0x1)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0x8, 0x9b72, r1, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x1)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000)
madvise$auto(0x0, 0xfdffffffffff0001, 0x15)
msgget$auto(0xa, 0x77d9)
msgctl$auto(0x0, 0x0, 0x0)
epoll_create$auto(0x4)
epoll_pwait$auto(0x3, 0x0, 0x3, 0x0, 0x0, 0x1)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec4\x00', 0x101901, 0x0)

1m32.365391033s ago: executing program 6 (id=6223):
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00{', @ANYRES16=0x0, @ANYRESDEC], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x24044886) (async)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00{', @ANYRES16=0x0, @ANYRESDEC], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x24044886)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/fs/orangefs/slot_timeout_secs\x00', 0x102, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000003c0)=""/192, 0xc0)
socket(0x10, 0x2, 0x0) (async)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
r1 = openat$auto_tracing_saved_cmdlines_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/saved_cmdlines_size\x00', 0x40, 0x0)
alarm$auto(0xffffffff) (async)
alarm$auto(0xffffffff)
r2 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000002180)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x8, 0x3, 0x200) (async)
r3 = socket(0x8, 0x3, 0x200)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x4) (async)
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r4, &(0x7f0000000140)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x801}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r3, 0x89f2, 0x24)
ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR64(r2, 0xc0884123, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_CHANNEL_INFO(r2, 0x80184132, &(0x7f0000000280)={0x5, 0x8000000000000002, 0x0, 0x60})
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
timer_create$auto(0x8, 0x0, 0x0) (async)
timer_create$auto(0x8, 0x0, 0x0)
timer_settime$auto(0x0, 0x9, &(0x7f00000000c0)={{0x7fff, 0x30d}, {0x7, 0x4}}, 0x0)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38) (async)
ioctl$auto(0x3, 0x80000541b, 0x38)
rt_sigaction$auto(0xe, &(0x7f0000000580)={&(0x7f00000004c0)=0x0, 0x100000001, 0x0, {0x7}}, 0x0, 0x8)
readv$auto(r1, &(0x7f0000000480)={&(0x7f0000000180)="64d26db143399e3769de8bcb76448e02697bea7c974f83085af8bb96b6c0ad4b5586cefee9e62ef7d93028e1297b404dbe8064264317aa4d8b6a97498ff95eecc2c2e4d333cfe0cd00d11926797482956988f581e7f2f8dc52c2d3b51be4645fd6ba52d149b51b972357", 0x8001}, 0x8)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40a02, 0x0)
mmap$auto(0x0, 0x20009, 0x6, 0xeb1, 0x7f, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)

1m30.278416658s ago: executing program 6 (id=6227):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
prctl$auto_PR_TASK_PERF_EVENTS_DISABLE(0x1f, 0x7, 0xffffffffffffffff, 0x401, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000006000), 0xffffffffffffffff)
sendmsg$auto_OVS_VPORT_CMD_SET(r2, &(0x7f0000006100)={0x0, 0x0, &(0x7f00000060c0)={&(0x7f0000006040)={0x20, r3, 0x901, 0x70bd2b, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_OPTIONS={0x4}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0xfffe}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x80c4)
getpgrp(0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x806, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)

1m30.033106773s ago: executing program 6 (id=6228):
r0 = openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
read$auto(r0, 0x0, 0x8)
ioctl$auto(r0, 0xff, r0)

1m29.746633922s ago: executing program 6 (id=6230):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x2, 0x1000000000000007)
r1 = socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
setsockopt$auto(r1, 0x10000000084, 0x21, 0x0, 0x13) (async)
write$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r0, &(0x7f0000000000)="d1e3856163ff2c5ae6de40f33b413684d6a3eafc3ed0a57519b3fc5c5e6b1283da2d70095b81e9", 0x27)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x30, r3, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000881}, 0x8000)
tkill$auto(0x80000000000001, 0x7)

1m28.089538513s ago: executing program 6 (id=6236):
mmap$auto(0x0, 0x8, 0x4, 0x9b72, 0x2, 0x8000)
kcmp$auto(0x1, 0x1, 0x7, 0x4, 0xe)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zram0\x00', 0x44002, 0x0)
ioctl$auto_BLKTRACETEARDOWN(r0, 0x1276, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001ac0), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001b00)={'geneve0\x00'})
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NETDEV_CMD_DEV_GET(r3, &(0x7f0000001bc0)={0x0, 0x0, &(0x7f0000001b80)={&(0x7f0000001b40)={0x14, r2, 0x1, 0x70bd28, 0x65dedbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x2004c054)
openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)

1m27.945208427s ago: executing program 37 (id=6236):
mmap$auto(0x0, 0x8, 0x4, 0x9b72, 0x2, 0x8000)
kcmp$auto(0x1, 0x1, 0x7, 0x4, 0xe)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zram0\x00', 0x44002, 0x0)
ioctl$auto_BLKTRACETEARDOWN(r0, 0x1276, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001ac0), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001b00)={'geneve0\x00'})
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NETDEV_CMD_DEV_GET(r3, &(0x7f0000001bc0)={0x0, 0x0, &(0x7f0000001b80)={&(0x7f0000001b40)={0x14, r2, 0x1, 0x70bd28, 0x65dedbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x2004c054)
openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)

1m2.569023141s ago: executing program 2 (id=6355):
openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000000), 0x8202, 0x0) (async, rerun: 64)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)="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") (async, rerun: 64)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0) (async)
bpf$auto(0x5, 0x0, 0x7) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r1=>0x0}) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
fanotify_init$auto(0x5, 0x2000000000002)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) (async, rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
socket(0x26, 0x80805, 0x0) (async)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async, rerun: 64)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r1, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) (async, rerun: 64)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) (async)
bpf$auto(0x4, &(0x7f00000001c0)=@bpf_attr_11={0x5, 0x8000000000000001, 0x9, 0x161f, 0xf870e9f, 0xa4ea, 0x8}, 0x9) (async, rerun: 64)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8) (async, rerun: 64)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) (async, rerun: 64)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async, rerun: 64)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
madvise$auto(0x3, 0xfdffffffffff0001, 0x14) (async)
futex$auto(0x0, 0x8c, 0xcd4b, 0x0, &(0x7f0000000180)=0x8e, 0x0)
map_shadow_stack$auto(0x0, 0x7, 0x9)

1m1.585169845s ago: executing program 2 (id=6358):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/dirty_background_ratio\x00', 0x141241, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x0, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc001)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYRESOCT=r0], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='C'], 0x1ac}}, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000001}, 0x40000)
write$auto(r0, 0x0, 0x10000)

56.759990423s ago: executing program 2 (id=6372):
r0 = socket(0x2, 0x1, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000000)='./file0\x00', 0x5be66d464d17e01f, 0x0)
r1 = socket(0x2, 0x801, 0x106)
bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x2, @multicast2}, 0x6a)
fanotify_mark$auto(0xffffffffffffffff, 0x569, 0x5, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000340), r2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_DISCONNECT(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010029bd7000fcdbdf253000000008000300", @ANYRES32=r5], 0x24}, 0x1, 0x0, 0x0, 0x90}, 0x4040800)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x4e21, @rand_addr=0xfffffffe}, 0x55)

55.122012965s ago: executing program 2 (id=6381):
statmount$auto(0x0, &(0x7f0000000380)={0x8, 0x1, 0xb, 0x3, 0xd, 0x940, 0x1ffde, 0x3, 0x200000000000000a, 0x8, 0x4, 0x5, 0x2, 0x5, 0xe6, 0x5, 0x2, 0xffff7fcc, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x10101, 0x0, [0x0, 0xfffffffffffffffd, 0x8, 0x0, 0x8000000000000, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x3, 0x7, 0x6]}, 0x200, 0x81)
r0 = openat$auto_bsg_fops_bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg/1:0:0:0\x00', 0x400000, 0x0)
setsockopt$auto_SO_TIMESTAMPING_NEW(r0, 0xffff0001, 0x41, &(0x7f0000000040)='+))[\x00', 0x80200)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000540), 0xa0100, 0x0) (async)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000540), 0xa0100, 0x0)
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8)

53.730326807s ago: executing program 2 (id=6388):
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
socket(0x25, 0x1, 0x3)
socket(0x1d, 0x2, 0x2)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty5\x00', 0x1, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, &(0x7f0000000040)="59e4bfb5948fa30d25d333706dc5c728bb5c1c30e3fd48da4c6d44bbf9c8a034cbd244b76001326d095acb36ca9bbfa2f6abec4cd8acd1c5b013c59d94a617e6cd6f926af42b1587c8261d4606ad49b0ec59ebea0184b0ba957f")
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xe, 0x5, @_sigchld={0x0, 0x0, 0x401, 0x5, 0x3}}})
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x0, 0x0)
ioctl$auto_FBIOBLANK(r1, 0x4611, &(0x7f0000000040))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(r2, 0x104000000000010e, 0x8, 0x0, 0x2000400)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0)
socket(0x28, 0x1, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="2f212abd7800fddbdf2521000000"], 0x14}}, 0x4000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x800000002, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
dup2$auto(0x5, 0x4)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
madvise$auto(0x108000, 0x800034, 0xa)
unshare$auto(0x40000080)
r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x14, r5, 0x1, 0x70bd2d, 0x25dfdbf9}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
open$auto(&(0x7f0000000200)='./file0\x00', 0x49193, 0xff90)

44.826295474s ago: executing program 2 (id=6422):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x1d, 0x2, 0x7)
r1 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, <r3=>r2}, 0x6a)
sendto$auto(r0, 0x0, 0x2, 0xfffffff8, &(0x7f0000000440)=@can={0x1d, r3}, 0x36)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x9, 0x5, 0x0)
getsockopt$auto(0x6, 0x40000000029, 0x11, 0xfffffffffffffffe, 0x0)

29.593183005s ago: executing program 38 (id=6422):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x1d, 0x2, 0x7)
r1 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, <r3=>r2}, 0x6a)
sendto$auto(r0, 0x0, 0x2, 0xfffffff8, &(0x7f0000000440)=@can={0x1d, r3}, 0x36)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x9, 0x5, 0x0)
getsockopt$auto(0x6, 0x40000000029, 0x11, 0xfffffffffffffffe, 0x0)

20.488494887s ago: executing program 5 (id=6504):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x40181, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x400008, 0xe0, 0x9b72, 0xffffffffffffffff, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mbind$auto(0xffffffffffffffff, 0x2, 0x2, 0x0, 0x7, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, &(0x7f0000000000)='//\xf2\x00', 0x80000000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r2 = landlock_create_ruleset$auto(0x0, 0x4dc, 0x0)
r3 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000100), 0x83, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'wg1\x00', <r4=>0x0})
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/device_info\x00', 0x48041, 0x0)
bpf$auto(0x0, &(0x7f00000003c0)=@bpf_attr_0={0x58801277, 0x2, 0x0, 0x2, 0x7, r3, 0xe69, "ab48f186ca8c10ab54054befb90e0287", r4, r5, 0x10000, 0x0, 0x9, 0xccb6, r2, r2}, 0x6f7)
mq_open$auto(&(0x7f0000000200)='\x01', 0xde8, 0xb, &(0x7f0000000240)={0x2, 0x4, 0xffffffffffffffff, 0xb})
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x2841, 0x0)
ioctl$auto(r5, 0x9, r5)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x400008, 0xe1, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
readv$auto(r1, &(0x7f0000000a80)={0x0, 0x10002}, 0x401)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
connect$auto(0x3, 0x0, 0x55)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x125900, 0x0)
bpf$auto(0x2, 0x0, 0x403)
mmap$auto(0x3, 0x2000a, 0x4d, 0x15, 0x401, 0x4)
io_uring_setup$auto(0xa, 0x0)

20.233726973s ago: executing program 8 (id=6507):
membarrier$auto(0x4, 0x8000000000000000, 0xffffffff)

19.785815758s ago: executing program 8 (id=6510):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r2 = prctl$auto_PR_TASK_PERF_EVENTS_DISABLE(0x1f, 0x7, 0xffffffffffffffff, 0x401, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000006000), 0xffffffffffffffff)
sendmsg$auto_OVS_VPORT_CMD_SET(r3, &(0x7f0000006100)={0x0, 0x0, &(0x7f00000060c0)={&(0x7f0000006040)={0x20, r4, 0x901, 0x70bd2b, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_OPTIONS={0x4}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0xfffe}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x80c4)
getpgrp(0x0)
ioctl$auto_SNDRV_PCM_IOCTL_READI_FRAMES2(r2, 0x80184151, &(0x7f0000000040)={0x101, &(0x7f00000000c0)="fc08b3637ef9c405f975b3729192a837aa83ac8627944a2f8d74c39209128fce0a13ebc428009f71f324cb6feec81fbcfe9ecea51982f07ae5f9ada61610f55d0ee3e0aec8d067b3f30e720b7246e48c637ba9ddd505301ad3587596cd47b1238250a3e890a8f0d1ca780da6e3f6a681b7cb9ee04d5d842590cd6a0ec71e005e3725dde9", 0x200000000000000})
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x806, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)

19.493660684s ago: executing program 5 (id=6511):
r0 = socketcall$auto_SYS_ACCEPT4(0x12, &(0x7f0000000340)=0x101)
mmap$auto(0xff, 0x1, 0xb, 0x14, r0, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = socket(0x2, 0x5, 0x0)
semctl$auto(0x7, 0x2, 0x13, 0x1)
r2 = socket(0xa, 0x801, 0x84)
r3 = getsockopt$auto(r2, 0x84, 0x10, 0x0, 0x0)
getsockopt$auto(r1, 0x84, 0x85, 0x0, &(0x7f00000000c0)=0x1000c)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
execve$auto(0x0, 0x0, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
write$auto_nsim_nexthop_bucket_activity_fops_fib(r3, &(0x7f0000000140)="0c4eee4db2c014e07880e1ef012ce4a5ca453aca7a93a90eea7b72a471ce95f1ca6adf74114697839ad9a49c8ae2db5d172b5d265ecfec607b83920f2331f1dea3be55e8e1c308b8a73b2c293cdb973bbc24a33999461dab6b4dffad809381bc7796170ecf75f0c2320338126757e4822be47e8b88654bcf91600e540b704b3cc1d0521bd726b67675ec7bfe008ede57ea58bc4518632c601e9423eec77402cd753ab7c7338072d2ad23ef51cd66143a63e92480a4c442d045b9b0d4", 0xbc)
open(&(0x7f00000000c0)='.\x00', 0x470181, 0x8f)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
write$auto(0x3, 0x0, 0x100082)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000300), r3)
readv$auto(r3, &(0x7f00000002c0)={&(0x7f0000000200)="f9be3639902078957b905ed91755182744c9141619ebe7c027b731f40b7d82b418174569e74424ebfd79a30a85cac40b7a45f9865f274c26fbafab520f711a76fa6bd8996e5a98f4a7cdb800b3d405860cb08474b7a439aa0324f557799ed3ca612cde1ab3ded848ebf7695bf68f7fed10c411bbb44f9fb8cdf74a0313c58df45117b0a6a33b619adba7254a07eb0e80c3f6cc78aa7f11b196057ae4cd36c187f14085e4bb907f25ae", 0xc89}, 0x5)

19.377276886s ago: executing program 8 (id=6512):
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x50)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x181100, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
prctl$auto(0x4, 0x200, 0x0, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1, 0x80805, 0x0)
io_uring_setup$auto(0x6, 0x0)
r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000000)=0x200000000)
read$auto(r0, 0x0, 0x3ff)
close_range$auto(0x2, 0x8000, 0x0)
mmap$auto(0x0, 0x400, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7ffd)

19.264104907s ago: executing program 5 (id=6513):
socket(0x28, 0x6, 0x6)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000140)=@can={0x1d, 0x0, 0xfd}, 0x6a)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
msgrcv$auto(0xfffffffb, 0x0, 0xfffffffffffffffe, 0x5, 0x1)
prctl$auto(0x8, 0x8, 0x0, 0x7, 0x3)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0xb, 0x1, 0x8000000000000000, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x8440, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(0xffffffffffffffff, 0xc0305710, 0x0)
poll$auto(&(0x7f0000000080)={0x3, 0x1, 0xa}, 0x5, 0x106)
r1 = openat$auto_memtype_fops_memtype(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
pread64$auto(r1, &(0x7f0000001440)=',:i-\x00', 0x400, 0x4)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
socket(0x2, 0x1, 0x106)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000040))
ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f0000000140))

18.818152517s ago: executing program 8 (id=6515):
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r1=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
socket(0xa, 0x3, 0x6)
clone$auto(0x20003b46, 0xfc00000000000000, 0x0, 0x0, 0x4)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r1, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x6)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
ioctl$auto_TUNGETIFF(r2, 0x800454d2, 0x0)
r3 = open(0x0, 0x261c2, 0x84)
bpf$auto(0x2, &(0x7f00000001c0)=@token_create={0x4, r3}, 0xc)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x400, 0x0)
mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
io_uring_setup$auto(0x6, 0x0)
r4 = socket(0x2, 0x3, 0xa)
connect$auto(r4, &(0x7f00000000c0), 0x55)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0x81)
ioctl$auto(0x3, 0x541b, 0x7f)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
io_uring_register$auto(0x2, 0x1b, &(0x7f0000000100), 0xffffffff)

18.357314363s ago: executing program 5 (id=6517):
membarrier$auto(0x4, 0x8000000000000000, 0xffffffff)

18.132597082s ago: executing program 5 (id=6518):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000100)='/proc/kpageflags\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0x40a0ae49, 0x38)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), r0)
clone3$auto(&(0x7f0000000080)={0x80000001, 0x9, 0x4000000000000002, 0x3, 0x5, 0x2, 0x7, 0x6, 0x80, 0x6, 0x75a}, 0x1)
r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/oom_adj\x00', 0x2040, 0x0)
r3 = setfsuid$auto(0xee01)
fchown$auto(r2, r3, 0x0)
r4 = geteuid()
setreuid$auto(r4, 0x0)
setuid$auto(r3)
fstat$auto(r1, &(0x7f0000000400)={0xffff, 0x8, 0xffffffffffff8030, 0xfffffffc, 0xee00, 0xee01, 0x0, 0xfffffffffffff5cb, 0x7, 0x81, 0x9, 0x7ff, 0x1, 0x1, 0x0, 0x40, 0x7})
r5 = getuid()
keyctl$auto(0xa, 0x0, r5, 0x5, 0x2)
stat$auto(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x9e0, 0x5, 0x9, 0x9, 0x0, 0x0, 0x0, 0x1, 0x28, 0x80000000, 0xffffffff, 0x8001, 0x9e, 0x704, 0x9, 0x3, 0x8})
r6 = getpid()
process_vm_readv$auto(r6, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(r0, r1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mincore$auto(0x1000, 0x8001, 0x0)
io_uring_setup$auto(0x877, 0x0)
r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r8 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r7, 0x5608, r8)
fstat$auto(r1, &(0x7f0000000300)={0xb, 0x9, 0x9, 0x9, 0x0, 0x0, 0x0, 0x6, 0x7, 0x0, 0x3, 0x7d9b, 0x2, 0x6c, 0xffffffffffff0000, 0x8001, 0x9})

18.130274766s ago: executing program 9 (id=6519):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0)
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/input/event2\x00', 0x2a482, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'veth1_to_batadv\x00'})
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/tracing_on\x00', 0x40001, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
lseek$auto(r4, 0xc, 0x4)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r5 = socket(0x2, 0x1, 0x0)
bind$auto(r0, &(0x7f0000000240)=@l2tp={0x2, 0x0, @multicast2, 0x10000003}, 0x6)
sendmmsg$auto(r5, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x6, 0x0, 0x2, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NLBL_MGMT_C_LISTDEF(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x5b}, 0x1, 0x0, 0x0, 0x4004000}, 0x4c890)

17.625991064s ago: executing program 8 (id=6520):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r2 = prctl$auto_PR_TASK_PERF_EVENTS_DISABLE(0x1f, 0x7, 0xffffffffffffffff, 0x401, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000006000), 0xffffffffffffffff)
sendmsg$auto_OVS_VPORT_CMD_SET(r3, &(0x7f0000006100)={0x0, 0x0, &(0x7f00000060c0)={&(0x7f0000006040)={0x20, r4, 0x901, 0x70bd2b, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_OPTIONS={0x4}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0xfffe}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x80c4)
getpgrp(0x0)
ioctl$auto_SNDRV_PCM_IOCTL_READI_FRAMES2(r2, 0x80184151, &(0x7f0000000040)={0x101, &(0x7f00000000c0)="fc08b3637ef9c405f975b3729192a837aa83ac8627944a2f8d74c39209128fce0a13ebc428009f71f324cb6feec81fbcfe9ecea51982f07ae5f9ada61610f55d0ee3e0aec8d067b3f30e720b7246e48c637ba9ddd505301ad3587596cd47b1238250a3e890a8f0d1ca780da6e3f6a681b7cb9ee04d5d842590cd6a0ec71e005e3725dde9", 0x200000000000000})
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x806, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)

17.548328114s ago: executing program 9 (id=6521):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
statmount$auto(&(0x7f00000000c0)={0x0, @inferred, 0x7, 0x3, 0x34a}, 0x0, 0x100000000, 0x3)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x9}, 0x7}, 0x1000003, 0x0)
recvmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x1, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
ioperm$auto(0xfb, 0x5, 0xe)
r1 = socket(0x2, 0x3, 0x6)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd7000ffdbdf25050000000c00010007000000000000002c00010004000000000000000c00010040000000000000000a"], 0x50}, 0x1, 0x0, 0x0, 0x4048000}, 0x0)
r3 = socket(0x10, 0x2, 0xffffffff)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000040), 0x7, 0xa505}, 0x800}, 0x5, 0x400a)
r4 = socket(0x2, 0x3, 0x6)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
open(0x0, 0x22240, 0x154)
ioctl$sock_SIOCGIFINDEX(r4, 0x401c5820, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x401c5820, 0x0)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x20)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/bluetooth/hci3/hci3:200/power/runtime_active_time\x00', 0x58d302, 0x0)
read$auto(0x3, 0x0, 0x400000)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x60200, 0x0)

16.919787104s ago: executing program 5 (id=6522):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x0, 0xcb, 0xfffffffffffffffc, 0xfd72)
open(&(0x7f0000000000)='./file0\x00', 0x7ffd, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r0 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents$auto(r0, 0x0, 0x400018)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x21, 0x2, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x84, 0x0, 0x90)
fallocate$auto(0x3, 0x1, 0x8b, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x2, 0x2, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/reboot/mode\x00', 0x10b900, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000000c0)=""/34, 0x22)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @empty}, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x5, 0x6)
madvise$auto(0x0, 0x200007, 0x19)
recvmmsg$auto(0x3, 0x0, 0x4, 0x2, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x121342, 0x67)

16.919327948s ago: executing program 9 (id=6523):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, 0x0)
read$auto(0x3, 0x0, 0xfffffdef)

16.918823217s ago: executing program 8 (id=6524):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
prctl$auto_PR_TASK_PERF_EVENTS_DISABLE(0x1f, 0x7, 0xffffffffffffffff, 0x401, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000006000), 0xffffffffffffffff)
sendmsg$auto_OVS_VPORT_CMD_SET(r2, &(0x7f0000006100)={0x0, 0x0, &(0x7f00000060c0)={&(0x7f0000006040)={0x20, r3, 0x901, 0x70bd2b, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_OPTIONS={0x4}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0xfffe}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x80c4)
getpgrp(0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x806, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, '\x00\x00\a\x00'}, 0x55)

16.848929742s ago: executing program 9 (id=6525):
socket(0x28, 0x6, 0x6)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000140)=@can={0x1d, 0x0, 0xfd}, 0x6a)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
msgrcv$auto(0xfffffffb, 0x0, 0xfffffffffffffffe, 0x5, 0x1)
prctl$auto(0x8, 0x8, 0x0, 0x7, 0x3)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0xb, 0x1, 0x8000000000000000, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x8440, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(0xffffffffffffffff, 0xc0305710, 0x0)
poll$auto(&(0x7f0000000080)={0x3, 0x1, 0xa}, 0x5, 0x106)
r1 = openat$auto_memtype_fops_memtype(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
pread64$auto(r1, &(0x7f0000001440)=',:i-\x00', 0x400, 0x4)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
socket(0x2, 0x1, 0x106)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000040))
ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f0000000140))

16.19384859s ago: executing program 9 (id=6526):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x4, 0x8000)
sendmsg$auto_NFSD_CMD_LISTENER_SET(0xffffffffffffffff, &(0x7f00000020c0)={0x0, 0x0, &(0x7f0000002080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14"], 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x4000)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000040))
close_range$auto(0x2, 0xa, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, 0x0, 0x4)
socket(0x29, 0x6, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x8100, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x200, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim5/max_vfs\x00', 0x4000, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/zram-control/hot_add\x00', 0x20800, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000ec0)=""/4096, 0x1000)
shutdown$auto(0x200000003, 0x2)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
membarrier$auto(0x4, 0x8000000000000000, 0xffffffff)

15.985220791s ago: executing program 9 (id=6527):
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r1=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
socket(0xa, 0x3, 0x6)
clone$auto(0x20003b46, 0xfc00000000000000, 0x0, 0x0, 0x4)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r1, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x6)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
ioctl$auto_TUNGETIFF(r2, 0x800454d2, 0x0)
r3 = open(0x0, 0x261c2, 0x84)
bpf$auto(0x2, &(0x7f00000001c0)=@token_create={0x4, r3}, 0xc)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x400, 0x0)
mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
io_uring_setup$auto(0x6, 0x0)
r4 = socket(0x2, 0x3, 0xa)
connect$auto(r4, &(0x7f00000000c0), 0x55)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0x81)
ioctl$auto(0x3, 0x541b, 0x7f)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
io_uring_register$auto(0x2, 0x1b, &(0x7f0000000100), 0xffffffff)

1.065711751s ago: executing program 39 (id=6522):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x0, 0xcb, 0xfffffffffffffffc, 0xfd72)
open(&(0x7f0000000000)='./file0\x00', 0x7ffd, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r0 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents$auto(r0, 0x0, 0x400018)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x21, 0x2, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x84, 0x0, 0x90)
fallocate$auto(0x3, 0x1, 0x8b, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x2, 0x2, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/reboot/mode\x00', 0x10b900, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000000c0)=""/34, 0x22)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @empty}, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x5, 0x6)
madvise$auto(0x0, 0x200007, 0x19)
recvmmsg$auto(0x3, 0x0, 0x4, 0x2, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x121342, 0x67)

1.024081056s ago: executing program 40 (id=6524):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
prctl$auto_PR_TASK_PERF_EVENTS_DISABLE(0x1f, 0x7, 0xffffffffffffffff, 0x401, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000006000), 0xffffffffffffffff)
sendmsg$auto_OVS_VPORT_CMD_SET(r2, &(0x7f0000006100)={0x0, 0x0, &(0x7f00000060c0)={&(0x7f0000006040)={0x20, r3, 0x901, 0x70bd2b, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_OPTIONS={0x4}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0xfffe}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x80c4)
getpgrp(0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x806, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, '\x00\x00\a\x00'}, 0x55)

0s ago: executing program 41 (id=6527):
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r1=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
socket(0xa, 0x3, 0x6)
clone$auto(0x20003b46, 0xfc00000000000000, 0x0, 0x0, 0x4)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r1, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x6)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
ioctl$auto_TUNGETIFF(r2, 0x800454d2, 0x0)
r3 = open(0x0, 0x261c2, 0x84)
bpf$auto(0x2, &(0x7f00000001c0)=@token_create={0x4, r3}, 0xc)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x400, 0x0)
mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
io_uring_setup$auto(0x6, 0x0)
r4 = socket(0x2, 0x3, 0xa)
connect$auto(r4, &(0x7f00000000c0), 0x55)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0x81)
ioctl$auto(0x3, 0x541b, 0x7f)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
io_uring_register$auto(0x2, 0x1b, &(0x7f0000000100), 0xffffffff)

kernel console output (not intermixed with test programs):

unique to avoid problems!
[ 1251.391088][T31316] FAULT_INJECTION: forcing a failure.
[ 1251.391088][T31316] name failslab, interval 1, probability 0, space 0, times 0
[ 1251.418903][T31203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1251.439603][T31316] CPU: 1 UID: 0 PID: 31316 Comm: syz.8.6118 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1251.439650][T31316] Tainted: [U]=USER
[ 1251.439660][T31316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1251.439678][T31316] Call Trace:
[ 1251.439687][T31316]  <TASK>
[ 1251.439698][T31316]  dump_stack_lvl+0x16c/0x1f0
[ 1251.439734][T31316]  should_fail_ex+0x497/0x5b0
[ 1251.439781][T31316]  ? fs_reclaim_acquire+0xae/0x150
[ 1251.439822][T31316]  should_failslab+0xc2/0x120
[ 1251.439851][T31316]  kmem_cache_alloc_noprof+0x6e/0x3b0
[ 1251.439900][T31316]  ? ptlock_alloc+0x1f/0x70
[ 1251.439949][T31316]  ptlock_alloc+0x1f/0x70
[ 1251.439995][T31316]  pte_alloc_one+0x74/0x390
[ 1251.440031][T31316]  do_pte_missing+0x1ae7/0x3e00
[ 1251.440079][T31316]  ? __pfx_lock_release+0x10/0x10
[ 1251.440114][T31316]  __handle_mm_fault+0x1166/0x2c60
[ 1251.440166][T31316]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1251.440224][T31316]  ? find_vma+0xc0/0x140
[ 1251.440261][T31316]  ? __pfx_find_vma+0x10/0x10
[ 1251.440311][T31316]  handle_mm_fault+0x3fa/0xaa0
[ 1251.440362][T31316]  do_user_addr_fault+0x7a3/0x13f0
[ 1251.440397][T31316]  exc_page_fault+0x5c/0xc0
[ 1251.440448][T31316]  asm_exc_page_fault+0x26/0x30
[ 1251.440495][T31316] RIP: 0010:rep_movs_alternative+0x13/0x70
[ 1251.440537][T31316] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f
[ 1251.440566][T31316] RSP: 0018:ffffc9000c3cf9e0 EFLAGS: 00050202
[ 1251.440590][T31316] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000002
[ 1251.440607][T31316] RDX: fffff52001879f4c RSI: 0000000000000000 RDI: ffffc9000c3cfa58
[ 1251.440629][T31316] RBP: 0000000000000002 R08: 0000000000000001 R09: fffff52001879f4b
[ 1251.440647][T31316] R10: ffffc9000c3cfa59 R11: 0000000000000000 R12: 0000000000000000
[ 1251.440665][T31316] R13: ffffc9000c3cfa58 R14: 1ffff92001879f45 R15: ffffc9000c3cfd80
[ 1251.440694][T31316]  _copy_from_user+0x98/0xd0
[ 1251.440724][T31316]  ____sys_sendmsg+0x56e/0xb40
[ 1251.440764][T31316]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1251.440788][T31203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1251.440807][T31316]  ? _kstrtoull+0x146/0x200
[ 1251.440838][T31316]  ? __pfx__kstrtoull+0x10/0x10
[ 1251.440873][T31316]  ? lock_release+0x4e2/0x6f0
[ 1251.440905][T31316]  ___sys_sendmsg+0x135/0x1e0
[ 1251.440940][T31316]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1251.440974][T31316]  ? __pfx_kstrtouint+0x10/0x10
[ 1251.441035][T31316]  ? trace_lock_acquire+0x14e/0x1f0
[ 1251.441091][T31316]  __sys_sendmmsg+0x201/0x420
[ 1251.441129][T31316]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1251.441171][T31316]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1251.441212][T31316]  ? fput+0x67/0x440
[ 1251.441240][T31316]  ? ksys_write+0x1ba/0x250
[ 1251.441287][T31316]  ? __pfx_ksys_write+0x10/0x10
[ 1251.441331][T31316]  __x64_sys_sendmmsg+0x9c/0x100
[ 1251.441367][T31316]  do_syscall_64+0xcd/0x250
[ 1251.441401][T31316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1251.441440][T31316] RIP: 0033:0x7fdb6c78cd29
[ 1251.441463][T31316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1251.441493][T31316] RSP: 002b:00007fdb6d52a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1251.441521][T31316] RAX: ffffffffffffffda RBX: 00007fdb6c9a5fa0 RCX: 00007fdb6c78cd29
[ 1251.441543][T31316] RDX: 0000000000000005 RSI: 0000000020000140 RDI: 0000000000000003
[ 1251.441563][T31316] RBP: 00007fdb6d52a090 R08: 0000000000000000 R09: 0000000000000000
[ 1251.441583][T31316] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001
[ 1251.441603][T31316] R13: 0000000000000000 R14: 00007fdb6c9a5fa0 R15: 00007fff85c16a98
[ 1251.441631][T31316]  </TASK>
[ 1251.853503][T31203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1251.868372][T31203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1251.882961][T31203] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1251.897513][T31203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1251.919278][T31203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1251.963914][T31203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1251.986647][T31203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1252.010185][T31323] FAULT_INJECTION: forcing a failure.
[ 1252.010185][T31323] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1252.016605][T31203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1252.031862][T31323] CPU: 1 UID: 0 PID: 31323 Comm: syz.8.6120 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1252.031919][T31323] Tainted: [U]=USER
[ 1252.031931][T31323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1252.031952][T31323] Call Trace:
[ 1252.031962][T31323]  <TASK>
[ 1252.031974][T31323]  dump_stack_lvl+0x16c/0x1f0
[ 1252.032014][T31323]  should_fail_ex+0x497/0x5b0
[ 1252.032066][T31323]  ? fs_reclaim_acquire+0xae/0x150
[ 1252.032113][T31323]  should_fail_alloc_page+0xe7/0x130
[ 1252.032147][T31323]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1252.032198][T31323]  __alloc_pages_noprof+0x18e/0x2470
[ 1252.032265][T31323]  ? rcu_is_watching+0x12/0xc0
[ 1252.032311][T31323]  ? trace_kmem_cache_alloc+0x2d/0xd0
[ 1252.032353][T31323]  ? kmem_cache_alloc_lru_noprof+0x21a/0x3b0
[ 1252.032407][T31323]  ? __pfx_eth_type_trans+0x10/0x10
[ 1252.032460][T31323]  ? xas_alloc+0x34f/0x460
[ 1252.032496][T31323]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1252.032551][T31323]  ? lock_release+0x4e2/0x6f0
[ 1252.032584][T31323]  ? __dquot_alloc_space+0x933/0xde0
[ 1252.032631][T31323]  ? __pfx_lock_release+0x10/0x10
[ 1252.032669][T31323]  ? do_raw_spin_unlock+0x172/0x230
[ 1252.032711][T31323]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1252.032750][T31323]  ? policy_nodemask+0xea/0x4e0
[ 1252.032784][T31323]  alloc_pages_mpol_noprof+0x2c8/0x620
[ 1252.032826][T31323]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1252.032865][T31323]  ? __pfx_lock_release+0x10/0x10
[ 1252.032898][T31323]  ? trace_lock_acquire+0x14e/0x1f0
[ 1252.032946][T31323]  ? __folio_batch_add_and_move+0x689/0xc60
[ 1252.032998][T31323]  ? rcu_is_watching+0x12/0xc0
[ 1252.033044][T31323]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1252.033084][T31323]  shmem_alloc_folio+0x135/0x160
[ 1252.033118][T31323]  shmem_alloc_and_add_folio+0x48b/0xc00
[ 1252.033162][T31323]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1252.033204][T31323]  ? shmem_allowable_huge_orders+0xd0/0x410
[ 1252.033257][T31323]  shmem_get_folio_gfp+0x689/0x1530
[ 1252.033302][T31323]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1252.033347][T31323]  ? filemap_map_pages+0xf92/0x16b0
[ 1252.033393][T31323]  shmem_fault+0x200/0xae0
[ 1252.033435][T31323]  ? __pfx_shmem_fault+0x10/0x10
[ 1252.033476][T31323]  ? rcu_is_watching+0x12/0xc0
[ 1252.033521][T31323]  ? lock_release+0x4e2/0x6f0
[ 1252.033551][T31323]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1252.033595][T31323]  ? do_pte_missing+0xdd7/0x3e00
[ 1252.033648][T31323]  ? __pfx_lock_release+0x10/0x10
[ 1252.033684][T31323]  __do_fault+0x10a/0x490
[ 1252.033722][T31323]  do_pte_missing+0xebd/0x3e00
[ 1252.033790][T31323]  ? ___pte_offset_map+0x1b9/0x540
[ 1252.033831][T31323]  ? __pfx_lock_release+0x10/0x10
[ 1252.033869][T31323]  __handle_mm_fault+0x1166/0x2c60
[ 1252.033928][T31323]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1252.033991][T31323]  ? find_vma+0xc0/0x140
[ 1252.034032][T31323]  ? __pfx_find_vma+0x10/0x10
[ 1252.034076][T31323]  handle_mm_fault+0x3fa/0xaa0
[ 1252.034133][T31323]  do_user_addr_fault+0x7a3/0x13f0
[ 1252.034173][T31323]  exc_page_fault+0x5c/0xc0
[ 1252.034239][T31323]  asm_exc_page_fault+0x26/0x30
[ 1252.034281][T31323] RIP: 0010:rep_movs_alternative+0x4a/0x70
[ 1252.034332][T31323] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[ 1252.034368][T31323] RSP: 0018:ffffc9000e3d7458 EFLAGS: 00050202
[ 1252.034395][T31323] RAX: 0000000000000001 RBX: 000000000000ff04 RCX: 000000000000ded0
[ 1252.034417][T31323] RDX: ffffed10083a9ffc RSI: 0000000000012000 RDI: ffff888041d4210c
[ 1252.034440][T31323] RBP: ffff888024a02400 R08: 0000000000000001 R09: ffffed10083a9ffb
[ 1252.034462][T31323] R10: ffff888041d4ffdb R11: 0000000000000000 R12: 000000000000ffcc
[ 1252.034485][T31323] R13: ffff888041d40010 R14: 000000000000ff04 R15: 000000000000ffcc
[ 1252.034516][T31323]  _copy_from_iter+0x52f/0x1400
[ 1252.034556][T31323]  ? __pfx__copy_from_iter+0x10/0x10
[ 1252.034590][T31323]  ? __virt_addr_valid+0x1a4/0x590
[ 1252.034640][T31323]  ? __virt_addr_valid+0x5e/0x590
[ 1252.034685][T31323]  ? __phys_addr+0xc6/0x150
[ 1252.034728][T31323]  ? __phys_addr_symbol+0x30/0x80
[ 1252.034774][T31323]  ? __check_object_size+0x488/0x710
[ 1252.034831][T31323]  sctp_user_addto_chunk+0x87/0x230
[ 1252.034875][T31323]  sctp_datamsg_from_user+0x5b3/0x1320
[ 1252.034940][T31323]  sctp_sendmsg_to_asoc+0xafd/0x1ad0
[ 1252.034997][T31323]  ? sctp_assoc_add_peer+0x254/0x14b0
[ 1252.035048][T31323]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[ 1252.035093][T31323]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[ 1252.035142][T31323]  ? sctp_endpoint_lookup_assoc+0xac/0x2a0
[ 1252.035187][T31323]  ? lock_acquire+0x2f/0xb0
[ 1252.035217][T31323]  ? sctp_endpoint_lookup_assoc+0xac/0x2a0
[ 1252.035273][T31323]  sctp_sendmsg+0x129c/0x1f10
[ 1252.035327][T31323]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1252.035378][T31323]  ? __pfx___might_resched+0x10/0x10
[ 1252.035420][T31323]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1252.035460][T31323]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1252.035509][T31323]  inet_sendmsg+0x119/0x140
[ 1252.035561][T31323]  ____sys_sendmsg+0x907/0xb40
[ 1252.035611][T31323]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1252.035663][T31323]  ? rcu_is_watching+0x12/0xc0
[ 1252.035707][T31323]  ? lock_release+0x4e2/0x6f0
[ 1252.035740][T31323]  ___sys_sendmsg+0x135/0x1e0
[ 1252.035777][T31323]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1252.035814][T31323]  ? select_task_rq_fair+0x36e/0x44f0
[ 1252.035865][T31323]  ? trace_lock_acquire+0x14e/0x1f0
[ 1252.035911][T31323]  ? plist_check_head+0xa3/0x150
[ 1252.035968][T31323]  __sys_sendmmsg+0x201/0x420
[ 1252.036008][T31323]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1252.036044][T31323]  ? __pfx_inet_bind_sk+0x10/0x10
[ 1252.036100][T31323]  ? __pfx_do_futex+0x10/0x10
[ 1252.036156][T31323]  ? xfd_validate_state+0x5d/0x180
[ 1252.036191][T31323]  ? rcu_is_watching+0x12/0xc0
[ 1252.036243][T31323]  __x64_sys_sendmmsg+0x9c/0x100
[ 1252.036282][T31323]  do_syscall_64+0xcd/0x250
[ 1252.036317][T31323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1252.036358][T31323] RIP: 0033:0x7fdb6c78cd29
[ 1252.036382][T31323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1252.036415][T31323] RSP: 002b:00007fdb6d52a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1252.036445][T31323] RAX: ffffffffffffffda RBX: 00007fdb6c9a5fa0 RCX: 00007fdb6c78cd29
[ 1252.036468][T31323] RDX: 0000000000000005 RSI: 0000000020000140 RDI: 0000000000000003
[ 1252.036485][T31323] RBP: 00007fdb6c80e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1252.036503][T31323] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000000
[ 1252.036521][T31323] R13: 0000000000000000 R14: 00007fdb6c9a5fa0 R15: 00007fff85c16a98
[ 1252.036547][T31323]  </TASK>
[ 1252.778386][T31203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1252.804285][T31203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1252.822891][T31203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1252.854315][T31203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1252.869356][T31203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1252.880351][T31203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1252.904321][T31203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1252.924268][T31203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1252.937393][T31203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1252.948416][T31203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1252.960093][T31203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1252.984048][T31203] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1253.029109][T31203] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1253.048630][T31203] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1253.062336][T31203] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1253.077357][T31203] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1253.175565][   T53] Bluetooth: hci3: command tx timeout
[ 1253.246005][T31203] ieee80211 phy101: Selected rate control algorithm 'minstrel_ht'
[ 1253.329172][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1253.344174][T31203] ieee80211 phy102: Selected rate control algorithm 'minstrel_ht'
[ 1253.356076][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1253.425202][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1253.434051][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1253.525504][T31367] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6130'.
[ 1253.768960][T31374] caif:caif_disconnect_client(): nothing to disconnect
[ 1254.269600][T31387] MTRR 2 not used
[ 1254.832086][T31424] caif:caif_disconnect_client(): nothing to disconnect
[ 1254.951871][T31426] caif:caif_disconnect_client(): nothing to disconnect
[ 1255.153083][T31434] sd 0:0:1:0: PR command failed: 1026
[ 1255.181786][T31434] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[ 1255.193867][T31436] netlink: 'syz.8.6149': attribute type 1 has an invalid length.
[ 1255.208621][T31434] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 1255.259721][   T53] Bluetooth: hci3: command tx timeout
[ 1255.359285][T31440] openvswitch: netlink: IPv4 tunnel dst address is zero
[ 1255.371222][T31440] netlink: zone id is out of range
[ 1255.402212][T31440] netlink: zone id is out of range
[ 1255.604559][T31451] ptrace attach of "./syz-executor exec"[27403] was attempted by "./syz-executor exec"[31451]
[ 1255.707608][T31454] caif:caif_disconnect_client(): nothing to disconnect
[ 1255.722400][T31456] caif:caif_disconnect_client(): nothing to disconnect
[ 1255.887514][T31458] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6157'.
[ 1257.788580][T31518] caif:caif_disconnect_client(): nothing to disconnect
[ 1258.338801][T31527] svc: failed to register nfsdv3 RPC service (errno 111).
[ 1258.346107][T31532] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6168'.
[ 1258.367510][T31527] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 1258.434607][T31532] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[ 1258.826182][T31544] netlink: del zone limit has 8 unknown bytes
[ 1258.934308][T31544] FAULT_INJECTION: forcing a failure.
[ 1258.934308][T31544] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1259.089423][T31544] CPU: 1 UID: 0 PID: 31544 Comm: syz.5.6171 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1259.089478][T31544] Tainted: [U]=USER
[ 1259.089490][T31544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1259.089511][T31544] Call Trace:
[ 1259.089520][T31544]  <TASK>
[ 1259.089532][T31544]  dump_stack_lvl+0x16c/0x1f0
[ 1259.089568][T31544]  should_fail_ex+0x497/0x5b0
[ 1259.089625][T31544]  ? fs_reclaim_acquire+0xae/0x150
[ 1259.089668][T31544]  should_fail_alloc_page+0xe7/0x130
[ 1259.089702][T31544]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1259.089749][T31544]  __alloc_pages_noprof+0x18e/0x2470
[ 1259.089802][T31544]  ? stack_trace_save+0x95/0xd0
[ 1259.089846][T31544]  ? __pfx_stack_trace_save+0x10/0x10
[ 1259.089890][T31544]  ? stack_depot_save_flags+0x28/0x9e0
[ 1259.089940][T31544]  ? rcu_is_watching+0x12/0xc0
[ 1259.089983][T31544]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1259.090034][T31544]  ? kasan_save_stack+0x42/0x60
[ 1259.090081][T31544]  ? kasan_save_track+0x14/0x30
[ 1259.090127][T31544]  ? __kmalloc_noprof+0x21a/0x4f0
[ 1259.090174][T31544]  ? copy_splice_read+0x1a8/0xb90
[ 1259.090209][T31544]  ? sock_splice_read+0xe9/0x110
[ 1259.090245][T31544]  ? do_splice_read+0x282/0x370
[ 1259.090281][T31544]  ? splice_file_to_pipe+0x109/0x120
[ 1259.090321][T31544]  ? do_sendfile+0x3fd/0xe40
[ 1259.090358][T31544]  ? __x64_sys_sendfile64+0x1da/0x220
[ 1259.090422][T31544]  alloc_pages_bulk_noprof+0x72b/0x10b0
[ 1259.090479][T31544]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[ 1259.090536][T31544]  ? __kmalloc_noprof+0x23b/0x4f0
[ 1259.090582][T31544]  ? trace_lock_acquire+0x14e/0x1f0
[ 1259.090636][T31544]  ? copy_splice_read+0x1a8/0xb90
[ 1259.090676][T31544]  copy_splice_read+0x1e3/0xb90
[ 1259.090717][T31544]  ? __pfx_copy_splice_read+0x10/0x10
[ 1259.090758][T31544]  ? __pfx_aa_file_perm+0x10/0x10
[ 1259.090802][T31544]  ? pipe_lock+0x64/0x80
[ 1259.090848][T31544]  ? __fget_files+0x1fc/0x3a0
[ 1259.090892][T31544]  ? trace_lock_acquire+0x14e/0x1f0
[ 1259.090940][T31544]  sock_splice_read+0xe9/0x110
[ 1259.090984][T31544]  ? __pfx_sock_splice_read+0x10/0x10
[ 1259.091025][T31544]  do_splice_read+0x282/0x370
[ 1259.091065][T31544]  splice_file_to_pipe+0x109/0x120
[ 1259.091109][T31544]  do_sendfile+0x3fd/0xe40
[ 1259.091151][T31544]  ? __pfx_do_sendfile+0x10/0x10
[ 1259.091193][T31544]  ? __x64_sys_futex+0x1e1/0x4c0
[ 1259.091240][T31544]  ? __x64_sys_futex+0x1ea/0x4c0
[ 1259.091289][T31544]  __x64_sys_sendfile64+0x1da/0x220
[ 1259.091342][T31544]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1259.091393][T31544]  ? rcu_is_watching+0x12/0xc0
[ 1259.091435][T31544]  ? rcu_is_watching+0x12/0xc0
[ 1259.091478][T31544]  do_syscall_64+0xcd/0x250
[ 1259.091514][T31544]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1259.091554][T31544] RIP: 0033:0x7f395418cd29
[ 1259.091578][T31544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1259.091617][T31544] RSP: 002b:00007f3955030038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1259.091648][T31544] RAX: ffffffffffffffda RBX: 00007f39543a5fa0 RCX: 00007f395418cd29
[ 1259.091670][T31544] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001
[ 1259.091689][T31544] RBP: 00007f395420e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1259.091709][T31544] R10: 0000000000000c01 R11: 0000000000000246 R12: 0000000000000000
[ 1259.091729][T31544] R13: 0000000000000000 R14: 00007f39543a5fa0 R15: 00007ffd3f4a1018
[ 1259.091758][T31544]  </TASK>
[ 1259.463340][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1259.497838][T31556] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6173'.
[ 1259.958994][T31561] caif:caif_disconnect_client(): nothing to disconnect
[ 1260.181164][T31569] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6178'.
[ 1260.226077][T31569] caif:caif_disconnect_client(): nothing to disconnect
[ 1260.669363][T31580] ieee80211 phy103: Selected rate control algorithm 'minstrel_ht'
[ 1261.199694][T31590] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6184'.
[ 1261.824043][T31602] caif:caif_disconnect_client(): nothing to disconnect
[ 1262.454554][T31609] caif:caif_disconnect_client(): nothing to disconnect
[ 1263.236541][T31619] synth uevent: /module/qat_c62x: unknown uevent action string
[ 1263.924214][T31636] caif:caif_disconnect_client(): nothing to disconnect
[ 1264.866587][T31657] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6201'.
[ 1265.626568][T31674] caif:caif_disconnect_client(): nothing to disconnect
[ 1265.649588][   T29] audit: type=1800 audit(8277292035.120:52): pid=31677 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.6204" name="dbroot" dev="configfs" ino=134738 res=0 errno=0
[ 1265.970505][T31684] caif:caif_disconnect_client(): nothing to disconnect
[ 1266.640327][T31693] caif:caif_disconnect_client(): nothing to disconnect
[ 1267.618740][T31707] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[ 1269.755120][T31738] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1048706].
[ 1270.030326][T31744] queue_state_write: unsupported operation ''
[ 1270.059558][T31744] queue_state_write: use 'run', 'start' or 'kick'
[ 1272.914142][T31777] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6231'.
[ 1272.979917][T31780] Malformed UNC in devname
[ 1272.979917][T31780] 
[ 1272.999892][T31780] CIFS: VFS: Malformed UNC in devname
[ 1273.267943][ T6221] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1273.352251][T31796] FAULT_INJECTION: forcing a failure.
[ 1273.352251][T31796] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1273.372154][ T6221] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1273.400450][T31796] CPU: 0 UID: 0 PID: 31796 Comm: syz.2.6233 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1273.400504][T31796] Tainted: [U]=USER
[ 1273.400516][T31796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1273.400536][T31796] Call Trace:
[ 1273.400546][T31796]  <TASK>
[ 1273.400558][T31796]  dump_stack_lvl+0x16c/0x1f0
[ 1273.400596][T31796]  should_fail_ex+0x497/0x5b0
[ 1273.400644][T31796]  ? fs_reclaim_acquire+0xae/0x150
[ 1273.400688][T31796]  should_fail_alloc_page+0xe7/0x130
[ 1273.400721][T31796]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1273.400766][T31796]  __alloc_pages_noprof+0x18e/0x2470
[ 1273.400817][T31796]  ? rcu_is_watching+0x12/0xc0
[ 1273.400863][T31796]  ? trace_kmem_cache_alloc+0x2d/0xd0
[ 1273.400903][T31796]  ? kmem_cache_alloc_lru_noprof+0x21a/0x3b0
[ 1273.400954][T31796]  ? xas_alloc+0x34f/0x460
[ 1273.400988][T31796]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1273.401042][T31796]  ? lock_release+0x4e2/0x6f0
[ 1273.401071][T31796]  ? __dquot_alloc_space+0x933/0xde0
[ 1273.401116][T31796]  ? __pfx_lock_release+0x10/0x10
[ 1273.401160][T31796]  ? do_raw_spin_unlock+0x172/0x230
[ 1273.401200][T31796]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1273.401236][T31796]  ? policy_nodemask+0xea/0x4e0
[ 1273.401267][T31796]  alloc_pages_mpol_noprof+0x2c8/0x620
[ 1273.401304][T31796]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1273.401340][T31796]  ? __pfx_lock_release+0x10/0x10
[ 1273.401369][T31796]  ? trace_lock_acquire+0x14e/0x1f0
[ 1273.401414][T31796]  ? __folio_batch_add_and_move+0x689/0xc60
[ 1273.401461][T31796]  ? rcu_is_watching+0x12/0xc0
[ 1273.401501][T31796]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1273.401537][T31796]  shmem_alloc_folio+0x135/0x160
[ 1273.401566][T31796]  shmem_alloc_and_add_folio+0x48b/0xc00
[ 1273.401605][T31796]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1273.401643][T31796]  ? shmem_allowable_huge_orders+0xd0/0x410
[ 1273.401685][T31796]  shmem_get_folio_gfp+0x689/0x1530
[ 1273.401724][T31796]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1273.401764][T31796]  ? filemap_map_pages+0xf92/0x16b0
[ 1273.401809][T31796]  shmem_fault+0x200/0xae0
[ 1273.401847][T31796]  ? __pfx_shmem_fault+0x10/0x10
[ 1273.401886][T31796]  ? rcu_is_watching+0x12/0xc0
[ 1273.401927][T31796]  ? lock_release+0x4e2/0x6f0
[ 1273.401956][T31796]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1273.401998][T31796]  ? do_pte_missing+0xdd7/0x3e00
[ 1273.402046][T31796]  ? __pfx_lock_release+0x10/0x10
[ 1273.402079][T31796]  __do_fault+0x10a/0x490
[ 1273.402115][T31796]  do_pte_missing+0xebd/0x3e00
[ 1273.402172][T31796]  ? ___pte_offset_map+0x1b9/0x540
[ 1273.402209][T31796]  ? __pfx_lock_release+0x10/0x10
[ 1273.402242][T31796]  __handle_mm_fault+0x1166/0x2c60
[ 1273.402297][T31796]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1273.402356][T31796]  ? find_vma+0xc0/0x140
[ 1273.402396][T31796]  ? __pfx_find_vma+0x10/0x10
[ 1273.402438][T31796]  handle_mm_fault+0x3fa/0xaa0
[ 1273.402490][T31796]  do_user_addr_fault+0x7a3/0x13f0
[ 1273.402529][T31796]  exc_page_fault+0x5c/0xc0
[ 1273.402580][T31796]  asm_exc_page_fault+0x26/0x30
[ 1273.402618][T31796] RIP: 0010:rep_movs_alternative+0x4a/0x70
[ 1273.402665][T31796] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[ 1273.402697][T31796] RSP: 0018:ffffc9000b897458 EFLAGS: 00050202
[ 1273.402722][T31796] RAX: 0000000000000001 RBX: 000000000000ff04 RCX: 000000000000eed0
[ 1273.402741][T31796] RDX: ffffed10079c5ffc RSI: 0000000000011000 RDI: ffff88803ce2110c
[ 1273.402762][T31796] RBP: ffffc9000b897b60 R08: 0000000000000001 R09: ffffed10079c5ffb
[ 1273.402783][T31796] R10: ffff88803ce2ffdb R11: 0000000000000000 R12: 000000000000ffcc
[ 1273.402803][T31796] R13: ffff88803ce20010 R14: 000000000000ff04 R15: 000000000000ffcc
[ 1273.402834][T31796]  _copy_from_iter+0x52f/0x1400
[ 1273.402876][T31796]  ? __pfx__copy_from_iter+0x10/0x10
[ 1273.402909][T31796]  ? __virt_addr_valid+0x1a4/0x590
[ 1273.402974][T31796]  ? __virt_addr_valid+0x5e/0x590
[ 1273.403020][T31796]  ? __phys_addr+0xc6/0x150
[ 1273.403063][T31796]  ? __phys_addr_symbol+0x30/0x80
[ 1273.403108][T31796]  ? __check_object_size+0x488/0x710
[ 1273.403172][T31796]  sctp_user_addto_chunk+0x87/0x230
[ 1273.403215][T31796]  sctp_datamsg_from_user+0x5b3/0x1320
[ 1273.403278][T31796]  sctp_sendmsg_to_asoc+0xafd/0x1ad0
[ 1273.403322][T31796]  ? sctp_assoc_add_peer+0x254/0x14b0
[ 1273.403373][T31796]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[ 1273.403418][T31796]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[ 1273.403477][T31796]  ? sctp_endpoint_lookup_assoc+0xac/0x2a0
[ 1273.403523][T31796]  ? lock_acquire+0x2f/0xb0
[ 1273.403553][T31796]  ? sctp_endpoint_lookup_assoc+0xac/0x2a0
[ 1273.403602][T31796]  sctp_sendmsg+0x129c/0x1f10
[ 1273.403652][T31796]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1273.403697][T31796]  ? __pfx___might_resched+0x10/0x10
[ 1273.403738][T31796]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1273.403775][T31796]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1273.403824][T31796]  inet_sendmsg+0x119/0x140
[ 1273.403872][T31796]  ____sys_sendmsg+0x907/0xb40
[ 1273.403920][T31796]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1273.403966][T31796]  ? __pfx_lock_release+0x10/0x10
[ 1273.404000][T31796]  ? lock_acquire+0x2f/0xb0
[ 1273.404029][T31796]  ? schedule+0x1fd/0x350
[ 1273.404091][T31796]  ___sys_sendmsg+0x135/0x1e0
[ 1273.404125][T31796]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1273.404167][T31796]  ? __futex_wait+0x324/0x3c0
[ 1273.404206][T31796]  ? trace_lock_acquire+0x14e/0x1f0
[ 1273.404261][T31796]  __sys_sendmmsg+0x201/0x420
[ 1273.404308][T31796]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1273.404340][T31796]  ? __pfx_inet_bind_sk+0x10/0x10
[ 1273.404390][T31796]  ? __pfx_do_futex+0x10/0x10
[ 1273.404439][T31796]  ? xfd_validate_state+0x5d/0x180
[ 1273.404469][T31796]  ? rcu_is_watching+0x12/0xc0
[ 1273.404510][T31796]  __x64_sys_sendmmsg+0x9c/0x100
[ 1273.404543][T31796]  do_syscall_64+0xcd/0x250
[ 1273.404576][T31796]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1273.404612][T31796] RIP: 0033:0x7f451738cd29
[ 1273.404633][T31796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1273.404679][T31796] RSP: 002b:00007f4518243038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1273.404707][T31796] RAX: ffffffffffffffda RBX: 00007f45175a5fa0 RCX: 00007f451738cd29
[ 1273.404728][T31796] RDX: 0000000000000005 RSI: 0000000020000140 RDI: 0000000000000003
[ 1273.404747][T31796] RBP: 00007f451740e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1273.404767][T31796] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000000
[ 1273.404786][T31796] R13: 0000000000000000 R14: 00007f45175a5fa0 R15: 00007ffdd62233e8
[ 1273.404815][T31796]  </TASK>
[ 1274.223532][ T6221] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.382306][ T6221] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.519409][ T6221] team0: left allmulticast mode
[ 1274.526173][ T6221] team_slave_1: left allmulticast mode
[ 1274.532304][ T6221] team0: left promiscuous mode
[ 1274.537857][ T6221] team_slave_0: left promiscuous mode
[ 1274.544470][ T6221] team_slave_1: left promiscuous mode
[ 1274.550867][ T6221] bridge0: port 3(team0) entered disabled state
[ 1274.575042][ T6221] bridge_slave_1: left allmulticast mode
[ 1274.581452][ T6221] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1274.641276][ T6221] bridge_slave_0: left allmulticast mode
[ 1274.647988][ T6221] bridge_slave_0: left promiscuous mode
[ 1274.654606][ T6221] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1274.723815][T28395] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1274.734962][T28395] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1274.742901][T28395] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1274.753830][T28395] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1274.762134][T28395] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1274.770856][T28395] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1275.078032][ T6221] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1275.132079][ T6221] bond0 (unregistering): Released all slaves
[ 1275.656737][T31811] chnl_net:caif_netlink_parms(): no params data found
[ 1275.981985][ T6221] hsr_slave_0: left promiscuous mode
[ 1276.010429][ T6221] hsr_slave_1: left promiscuous mode
[ 1276.024852][ T6221] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1276.065399][ T6221] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1276.099682][ T6221] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1276.119246][ T6221] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1276.162093][ T6221] veth1_macvtap: left promiscuous mode
[ 1276.174629][ T6221] veth1_vlan: left promiscuous mode
[ 1276.194400][ T6221] veth0_vlan: left promiscuous mode
[ 1276.379786][T31811] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1276.394510][T31861] caif:caif_disconnect_client(): nothing to disconnect
[ 1276.397781][T31811] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1276.455580][T31811] bridge_slave_0: entered allmulticast mode
[ 1276.482668][T31811] bridge_slave_0: entered promiscuous mode
[ 1276.510547][T31811] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1276.534728][T31811] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1276.542725][T31811] bridge_slave_1: entered allmulticast mode
[ 1276.589172][T31811] bridge_slave_1: entered promiscuous mode
[ 1276.854454][T28395] Bluetooth: hci1: command tx timeout
[ 1276.906446][ T6221] team0 (unregistering): Port device team_slave_1 removed
[ 1276.975651][ T6221] team0 (unregistering): Port device team_slave_0 removed
[ 1277.168977][T31877] netlink: 334 bytes leftover after parsing attributes in process `syz.5.6250'.
[ 1277.298684][T31811] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1277.321649][T31811] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1277.419092][T31811] team0: Port device team_slave_0 added
[ 1277.441125][T31811] team0: Port device team_slave_1 added
[ 1277.535113][T31811] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1277.549494][T31811] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1277.579223][T31811] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1277.592935][T31811] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1277.601245][T31811] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1277.630339][T31811] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1277.847139][T31811] hsr_slave_0: entered promiscuous mode
[ 1277.873109][T31811] hsr_slave_1: entered promiscuous mode
[ 1277.888965][T31811] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1277.913005][T31811] Cannot create hsr debugfs directory
[ 1278.496991][T31811] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1278.560392][T31811] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1278.606926][T31811] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1278.728300][T31811] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1278.936326][T28395] Bluetooth: hci1: command tx timeout
[ 1279.212501][T31811] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1279.280022][T31811] 8021q: adding VLAN 0 to HW filter on device team0
[ 1279.328398][ T1148] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1279.336286][ T1148] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1279.357411][T31912] caif:caif_disconnect_client(): nothing to disconnect
[ 1279.424086][ T1148] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1279.431969][ T1148] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1279.499681][T31811] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1279.547915][T31811] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1279.889299][T31941] netlink: 28 bytes leftover after parsing attributes in process `syz.8.6258'.
[ 1280.002502][T31941] hsr_slave_1 (unregistering): left promiscuous mode
[ 1280.055517][T31811] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1280.531504][T31811] veth0_vlan: entered promiscuous mode
[ 1280.565057][T31811] veth1_vlan: entered promiscuous mode
[ 1280.603605][T31972] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6261'.
[ 1280.613228][T31811] veth0_macvtap: entered promiscuous mode
[ 1280.650471][T31811] veth1_macvtap: entered promiscuous mode
[ 1280.728981][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1280.764335][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1280.806389][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1280.818732][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1280.834072][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1280.859258][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1280.875755][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1280.912225][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1280.947653][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1280.985435][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1281.014444][T28395] Bluetooth: hci1: command tx timeout
[ 1281.018138][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1281.056390][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1281.089453][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1281.126500][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1281.149770][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1281.183750][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1281.204329][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1281.238480][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1281.255198][T31811] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1281.346145][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1281.474430][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1281.493740][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1281.546734][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1281.594416][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1281.614329][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1281.634521][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1281.664471][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1281.694436][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1281.710694][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1281.725840][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1281.741924][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1281.754769][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1281.772898][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1281.787287][T31811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1281.803247][T31811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1281.820397][T31811] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1281.869653][T31811] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1281.884471][T31811] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1281.899666][T31811] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1281.922117][T31811] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1282.026180][T32011] netlink: 350 bytes leftover after parsing attributes in process `syz.8.6268'.
[ 1282.073977][T31811] ieee80211 phy104: Selected rate control algorithm 'minstrel_ht'
[ 1282.199740][ T8758] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1282.204895][T31811] ieee80211 phy105: Selected rate control algorithm 'minstrel_ht'
[ 1282.244388][ T8758] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1282.410095][T10935] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1282.462899][T10935] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1282.689609][T32042] FAULT_INJECTION: forcing a failure.
[ 1282.689609][T32042] name fail_futex, interval 1, probability 0, space 1, times 0
[ 1282.743614][T32042] CPU: 1 UID: 0 PID: 32042 Comm: syz.9.6237 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1282.743682][T32042] Tainted: [U]=USER
[ 1282.743694][T32042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1282.743716][T32042] Call Trace:
[ 1282.743726][T32042]  <TASK>
[ 1282.743739][T32042]  dump_stack_lvl+0x16c/0x1f0
[ 1282.743780][T32042]  should_fail_ex+0x497/0x5b0
[ 1282.743834][T32042]  ? __pfx_lock_release+0x10/0x10
[ 1282.743871][T32042]  get_futex_key+0x4a3/0x1000
[ 1282.743921][T32042]  ? rcu_is_watching+0x12/0xc0
[ 1282.743967][T32042]  ? __pfx_get_futex_key+0x10/0x10
[ 1282.744014][T32042]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1282.744068][T32042]  ? debug_object_assert_init+0x1c7/0x2f0
[ 1282.744128][T32042]  futex_wait_setup+0x78/0x290
[ 1282.744164][T32042]  ? rcu_is_watching+0x12/0xc0
[ 1282.744213][T32042]  __futex_wait+0x267/0x3c0
[ 1282.744246][T32042]  ? __pfx___futex_wait+0x10/0x10
[ 1282.744278][T32042]  ? trace_lock_acquire+0x14e/0x1f0
[ 1282.744327][T32042]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1282.744363][T32042]  ? rcu_is_watching+0x12/0xc0
[ 1282.744407][T32042]  ? do_raw_spin_lock+0x12d/0x2c0
[ 1282.744448][T32042]  futex_wait+0xe9/0x380
[ 1282.744479][T32042]  ? __pfx_futex_wait+0x10/0x10
[ 1282.744515][T32042]  ? rcu_is_watching+0x12/0xc0
[ 1282.744557][T32042]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1282.744595][T32042]  do_futex+0x22b/0x350
[ 1282.744651][T32042]  ? __pfx_do_futex+0x10/0x10
[ 1282.744700][T32042]  ? __sys_connect+0xf2/0x170
[ 1282.744732][T32042]  __x64_sys_futex+0x1e1/0x4c0
[ 1282.744783][T32042]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1282.744833][T32042]  ? rcu_is_watching+0x12/0xc0
[ 1282.744876][T32042]  ? rcu_is_watching+0x12/0xc0
[ 1282.744918][T32042]  ? rcu_is_watching+0x12/0xc0
[ 1282.744963][T32042]  do_syscall_64+0xcd/0x250
[ 1282.744999][T32042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1282.745039][T32042] RIP: 0033:0x7f0cd798cd29
[ 1282.745063][T32042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1282.745096][T32042] RSP: 002b:00007f0cd88af0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1282.745127][T32042] RAX: ffffffffffffffda RBX: 00007f0cd7ba5fa8 RCX: 00007f0cd798cd29
[ 1282.745149][T32042] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0cd7ba5fa8
[ 1282.745170][T32042] RBP: 00007f0cd7ba5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1282.745192][T32042] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0cd7ba5fac
[ 1282.745212][T32042] R13: 0000000000000000 R14: 00007fff2e2a82a0 R15: 00007fff2e2a8388
[ 1282.745242][T32042]  </TASK>
[ 1283.228251][T28395] Bluetooth: hci1: command tx timeout
[ 1283.616711][T32056] caif:caif_disconnect_client(): nothing to disconnect
[ 1284.048874][T32080] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[ 1285.716413][T32137] netlink: 'syz.9.6287': attribute type 19 has an invalid length.
[ 1285.744370][T32137] netlink: 334 bytes leftover after parsing attributes in process `syz.9.6287'.
[ 1288.893423][T32208] Invalid ELF header magic: != ELF
[ 1289.956781][T32244] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6309'.
[ 1290.073592][T32250] caif:caif_disconnect_client(): nothing to disconnect
[ 1290.569811][T32253] netlink: 'syz.5.6312': attribute type 7 has an invalid length.
[ 1291.615753][T32246] caif:caif_disconnect_client(): nothing to disconnect
[ 1291.845004][T32292] FAULT_INJECTION: forcing a failure.
[ 1291.845004][T32292] name fail_futex, interval 1, probability 0, space 1, times 0
[ 1291.886395][T32292] CPU: 1 UID: 0 PID: 32292 Comm: syz.8.6316 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1291.886461][T32292] Tainted: [U]=USER
[ 1291.886473][T32292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1291.886491][T32292] Call Trace:
[ 1291.886501][T32292]  <TASK>
[ 1291.886512][T32292]  dump_stack_lvl+0x16c/0x1f0
[ 1291.886548][T32292]  should_fail_ex+0x497/0x5b0
[ 1291.886594][T32292]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1291.886631][T32292]  get_futex_key+0x1c3/0x1000
[ 1291.886675][T32292]  ? __pfx_get_futex_key+0x10/0x10
[ 1291.886717][T32292]  ? __mutex_trylock_common+0xea/0x250
[ 1291.886750][T32292]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1291.886792][T32292]  futex_wake+0xe8/0x4e0
[ 1291.886822][T32292]  ? __pfx_futex_wake+0x10/0x10
[ 1291.886851][T32292]  ? __might_fault+0x13b/0x190
[ 1291.886885][T32292]  ? rcu_is_watching+0x12/0xc0
[ 1291.886925][T32292]  ? lock_release+0x4e2/0x6f0
[ 1291.886955][T32292]  do_futex+0x1e5/0x350
[ 1291.886998][T32292]  ? __pfx_do_futex+0x10/0x10
[ 1291.887041][T32292]  ? __might_fault+0xe3/0x190
[ 1291.887073][T32292]  ? __might_fault+0xe3/0x190
[ 1291.887106][T32292]  mm_release+0x24e/0x300
[ 1291.887154][T32292]  do_exit+0x886/0x2d70
[ 1291.887195][T32292]  ? rcu_is_watching+0x12/0xc0
[ 1291.887235][T32292]  ? lock_release+0x4e2/0x6f0
[ 1291.887263][T32292]  ? get_signal+0x8f7/0x2610
[ 1291.887297][T32292]  ? __pfx_do_exit+0x10/0x10
[ 1291.887338][T32292]  ? do_raw_spin_lock+0x12d/0x2c0
[ 1291.887375][T32292]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1291.887415][T32292]  do_group_exit+0xd3/0x2a0
[ 1291.887461][T32292]  get_signal+0x2576/0x2610
[ 1291.887499][T32292]  ? rcu_is_watching+0x12/0xc0
[ 1291.887541][T32292]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1291.887577][T32292]  ? __pfx_get_signal+0x10/0x10
[ 1291.887613][T32292]  ? __pfx_do_futex+0x10/0x10
[ 1291.887672][T32292]  arch_do_signal_or_restart+0x90/0x7e0
[ 1291.887720][T32292]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1291.887776][T32292]  ? rcu_is_watching+0x12/0xc0
[ 1291.887815][T32292]  ? rcu_is_watching+0x12/0xc0
[ 1291.887856][T32292]  syscall_exit_to_user_mode+0x150/0x2a0
[ 1291.887888][T32292]  do_syscall_64+0xda/0x250
[ 1291.887921][T32292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1291.887959][T32292] RIP: 0033:0x7fdb6c78cd29
[ 1291.887981][T32292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1291.888011][T32292] RSP: 002b:00007fdb6d52a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1291.888039][T32292] RAX: 0000000000000001 RBX: 00007fdb6c9a5fa8 RCX: 00007fdb6c78cd29
[ 1291.888059][T32292] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fdb6c9a5fac
[ 1291.888079][T32292] RBP: 00007fdb6c9a5fa0 R08: 00007fdb6d52b000 R09: 0000000000000000
[ 1291.888098][T32292] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fdb6c9a5fac
[ 1291.888118][T32292] R13: 0000000000000000 R14: 00007fff85c169b0 R15: 00007fff85c16a98
[ 1291.888146][T32292]  </TASK>
[ 1292.988674][T32311] FAULT_INJECTION: forcing a failure.
[ 1292.988674][T32311] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1293.057483][T32311] CPU: 0 UID: 0 PID: 32311 Comm: syz.2.6321 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1293.057534][T32311] Tainted: [U]=USER
[ 1293.057544][T32311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1293.057562][T32311] Call Trace:
[ 1293.057572][T32311]  <TASK>
[ 1293.057584][T32311]  dump_stack_lvl+0x16c/0x1f0
[ 1293.057622][T32311]  should_fail_ex+0x497/0x5b0
[ 1293.057680][T32311]  ? fs_reclaim_acquire+0xae/0x150
[ 1293.057722][T32311]  should_fail_alloc_page+0xe7/0x130
[ 1293.057755][T32311]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1293.057801][T32311]  __alloc_pages_noprof+0x18e/0x2470
[ 1293.057852][T32311]  ? stack_depot_save_flags+0x28/0x9e0
[ 1293.057928][T32311]  ? kasan_save_stack+0x42/0x60
[ 1293.057977][T32311]  ? kasan_save_stack+0x33/0x60
[ 1293.058021][T32311]  ? kasan_save_track+0x14/0x30
[ 1293.058064][T32311]  ? __kasan_slab_alloc+0x89/0x90
[ 1293.058111][T32311]  ? cgroup_rstat_updated+0x2a/0xb20
[ 1293.058154][T32311]  ? kasan_save_stack+0x33/0x60
[ 1293.058200][T32311]  ? kasan_save_track+0x14/0x30
[ 1293.058245][T32311]  ? kmem_cache_alloc_noprof+0x1c8/0x3b0
[ 1293.058296][T32311]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1293.058367][T32311]  ? __mod_memcg_lruvec_state+0x53c/0x750
[ 1293.058410][T32311]  ? __mod_zone_page_state+0xcc/0x1a0
[ 1293.058451][T32311]  ? rcu_is_watching+0x12/0xc0
[ 1293.058491][T32311]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1293.058526][T32311]  ? policy_nodemask+0xea/0x4e0
[ 1293.058556][T32311]  alloc_pages_mpol_noprof+0x2c8/0x620
[ 1293.058593][T32311]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1293.058631][T32311]  ? page_ext_put+0x48/0xd0
[ 1293.058685][T32311]  ? page_table_check_set.part.0+0x3b8/0x550
[ 1293.058740][T32311]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1293.058779][T32311]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1293.058817][T32311]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1293.058855][T32311]  ? trace_lock_acquire+0x14e/0x1f0
[ 1293.058901][T32311]  ? rcu_is_watching+0x12/0xc0
[ 1293.058949][T32311]  do_pte_missing+0x2017/0x3e00
[ 1293.059022][T32311]  __handle_mm_fault+0x1166/0x2c60
[ 1293.059074][T32311]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1293.059120][T32311]  ? lock_release+0x4e2/0x6f0
[ 1293.059148][T32311]  ? follow_page_pte+0x3c3/0x1b20
[ 1293.059191][T32311]  ? __pfx_lock_release+0x10/0x10
[ 1293.059220][T32311]  ? __pfx___pte_offset_map_lock+0x10/0x10
[ 1293.059256][T32311]  ? lock_release+0x4e2/0x6f0
[ 1293.059286][T32311]  ? follow_page_pte+0x3f7/0x1b20
[ 1293.059330][T32311]  handle_mm_fault+0x3fa/0xaa0
[ 1293.059377][T32311]  __get_user_pages+0x8d9/0x3b50
[ 1293.059442][T32311]  ? __pfx_mt_find+0x10/0x10
[ 1293.059478][T32311]  ? validate_mm+0x3da/0x530
[ 1293.059525][T32311]  ? __pfx___get_user_pages+0x10/0x10
[ 1293.059573][T32311]  ? __mm_populate+0x21d/0x380
[ 1293.059621][T32311]  ? lock_acquire+0x2f/0xb0
[ 1293.059653][T32311]  populate_vma_page_range+0x27f/0x3a0
[ 1293.059713][T32311]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1293.059763][T32311]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1293.059806][T32311]  ? vm_mmap_pgoff+0x29b/0x3a0
[ 1293.059855][T32311]  __mm_populate+0x1d6/0x380
[ 1293.059904][T32311]  ? __pfx___mm_populate+0x10/0x10
[ 1293.059955][T32311]  ? up_write+0x1b2/0x520
[ 1293.059991][T32311]  vm_mmap_pgoff+0x2d3/0x3a0
[ 1293.060039][T32311]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1293.060089][T32311]  ? __x64_sys_futex+0x1e1/0x4c0
[ 1293.060135][T32311]  ? __x64_sys_futex+0x1ea/0x4c0
[ 1293.060185][T32311]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1293.060226][T32311]  ? rcu_is_watching+0x12/0xc0
[ 1293.060270][T32311]  __x64_sys_mmap+0x125/0x190
[ 1293.060307][T32311]  do_syscall_64+0xcd/0x250
[ 1293.060341][T32311]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1293.060380][T32311] RIP: 0033:0x7f451738cd29
[ 1293.060403][T32311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1293.060438][T32311] RSP: 002b:00007f4518243038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1293.060472][T32311] RAX: ffffffffffffffda RBX: 00007f45175a5fa0 RCX: 00007f451738cd29
[ 1293.060496][T32311] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1293.060517][T32311] RBP: 00007f451740e2a0 R08: 0000000000000002 R09: 0000000000008000
[ 1293.060539][T32311] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1293.060557][T32311] R13: 0000000000000000 R14: 00007f45175a5fa0 R15: 00007ffdd62233e8
[ 1293.060585][T32311]  </TASK>
[ 1293.649132][T32315] caif:caif_disconnect_client(): nothing to disconnect
[ 1294.831108][T32360] netlink: 342 bytes leftover after parsing attributes in process `syz.9.6331'.
[ 1294.843171][T32358] [U] 
[ 1294.846238][T32358] [U] 
[ 1294.849242][T32358] [U] 
[ 1294.852269][T32358] [U] 
[ 1294.898636][T32358] [U] 
[ 1294.901681][T32358] [U] 
[ 1294.904702][T32358] [U] 
[ 1294.907709][T32358] [U] 
[ 1294.924773][T32358] [U] 
[ 1294.927804][T32358] [U] 
[ 1294.930806][T32358] [U] 
[ 1294.933812][T32358] [U] 
[ 1294.974911][T32358] [U] 
[ 1294.977954][T32358] [U] 
[ 1294.980971][T32358] [U] 
[ 1294.983988][T32358] [U] 
[ 1294.988066][T32370] Process accounting resumed
[ 1295.000399][T32372] Process accounting resumed
[ 1295.038995][T32358] [U] 
[ 1295.042057][T32358] [U] 
[ 1295.045058][T32358] [U] 
[ 1295.048075][T32358] [U] 
[ 1295.096471][T32358] [U] 
[ 1295.099632][T32358] [U] 
[ 1295.102637][T32358] [U] 
[ 1295.105636][T32358] [U] 
[ 1295.175186][T32358] [U] 
[ 1295.178331][T32358] [U] 
[ 1295.181336][T32358] [U] 
[ 1295.184336][T32358] [U] 
[ 1295.314788][T32358] [U] 
[ 1295.317834][T32358] [U] 
[ 1295.320836][T32358] [U] 
[ 1295.323846][T32358] [U] 
[ 1295.344723][T32358] [U] 
[ 1295.347771][T32358] [U] 
[ 1295.350779][T32358] [U] 
[ 1295.353800][T32358] [U] 
[ 1295.359826][T32358] [U] 
[ 1295.362872][T32358] [U] 
[ 1295.365877][T32358] [U] 
[ 1295.368876][T32358] [U] 
[ 1295.415363][T32358] [U] 
[ 1295.418410][T32358] [U] 
[ 1295.421414][T32358] [U] 
[ 1295.424428][T32358] [U] 
[ 1295.471936][T32358] [U] 
[ 1295.474980][T32358] [U] 
[ 1295.477979][T32358] [U] 
[ 1295.480978][T32358] [U] 
[ 1295.504007][T32358] [U] 
[ 1295.507109][T32358] [U] 
[ 1295.510132][T32358] [U] 
[ 1295.513142][T32358] [U] 
[ 1295.551786][T32358] [U] 
[ 1295.554820][T32358] [U] 
[ 1295.557822][T32358] [U] 
[ 1295.560828][T32358] [U] 
[ 1295.596444][T32358] [U] 
[ 1295.599493][T32358] [U] 
[ 1295.602492][T32358] [U] 
[ 1295.605491][T32358] [U] 
[ 1295.683887][T32358] [U] 
[ 1295.780428][T32398] perf: Dynamic interrupt throttling disabled, can hang your system!
[ 1295.794673][T32398] FAULT_INJECTION: forcing a failure.
[ 1295.794673][T32398] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1295.809850][T32398] CPU: 1 UID: 0 PID: 32398 Comm: syz.9.6338 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1295.809900][T32398] Tainted: [U]=USER
[ 1295.809911][T32398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1295.809931][T32398] Call Trace:
[ 1295.809942][T32398]  <TASK>
[ 1295.809953][T32398]  dump_stack_lvl+0x16c/0x1f0
[ 1295.809990][T32398]  should_fail_ex+0x497/0x5b0
[ 1295.810056][T32398]  ? fs_reclaim_acquire+0xae/0x150
[ 1295.810119][T32398]  should_fail_alloc_page+0xe7/0x130
[ 1295.810154][T32398]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1295.810204][T32398]  __alloc_pages_noprof+0x18e/0x2470
[ 1295.810259][T32398]  ? lock_release+0x4e2/0x6f0
[ 1295.810290][T32398]  ? sched_clock_cpu+0x6d/0x4d0
[ 1295.810320][T32398]  ? psi_task_switch+0x203/0x8e0
[ 1295.810368][T32398]  ? __pfx_lock_release+0x10/0x10
[ 1295.810401][T32398]  ? __pfx_sched_clock_cpu+0x10/0x10
[ 1295.810441][T32398]  ? psi_task_switch+0x203/0x8e0
[ 1295.810491][T32398]  ? rcu_is_watching+0x12/0xc0
[ 1295.810534][T32398]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1295.810589][T32398]  ? lock_release+0x4e2/0x6f0
[ 1295.810621][T32398]  ? __dquot_alloc_space+0x933/0xde0
[ 1295.810667][T32398]  ? __pfx_lock_release+0x10/0x10
[ 1295.810705][T32398]  ? do_raw_spin_unlock+0x172/0x230
[ 1295.810745][T32398]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1295.810783][T32398]  ? policy_nodemask+0xea/0x4e0
[ 1295.810816][T32398]  alloc_pages_mpol_noprof+0x2c8/0x620
[ 1295.810869][T32398]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1295.810905][T32398]  ? __pfx_lock_release+0x10/0x10
[ 1295.810936][T32398]  ? trace_lock_acquire+0x14e/0x1f0
[ 1295.810981][T32398]  ? __folio_batch_add_and_move+0x689/0xc60
[ 1295.811029][T32398]  ? rcu_is_watching+0x12/0xc0
[ 1295.811072][T32398]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1295.811110][T32398]  shmem_alloc_folio+0x135/0x160
[ 1295.811142][T32398]  shmem_alloc_and_add_folio+0x48b/0xc00
[ 1295.811183][T32398]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1295.811224][T32398]  ? shmem_allowable_huge_orders+0xd0/0x410
[ 1295.811268][T32398]  shmem_get_folio_gfp+0x689/0x1530
[ 1295.811310][T32398]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1295.811351][T32398]  ? filemap_map_pages+0xf92/0x16b0
[ 1295.811395][T32398]  shmem_fault+0x200/0xae0
[ 1295.811442][T32398]  ? __pfx_shmem_fault+0x10/0x10
[ 1295.811483][T32398]  ? rcu_is_watching+0x12/0xc0
[ 1295.811524][T32398]  ? lock_release+0x4e2/0x6f0
[ 1295.811554][T32398]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1295.811597][T32398]  ? do_pte_missing+0xdd7/0x3e00
[ 1295.811646][T32398]  ? __pfx_lock_release+0x10/0x10
[ 1295.811681][T32398]  __do_fault+0x10a/0x490
[ 1295.811718][T32398]  do_pte_missing+0xebd/0x3e00
[ 1295.811769][T32398]  ? ___pte_offset_map+0x1b9/0x540
[ 1295.811806][T32398]  ? __pfx_lock_release+0x10/0x10
[ 1295.811841][T32398]  __handle_mm_fault+0x1166/0x2c60
[ 1295.811897][T32398]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1295.811958][T32398]  ? find_vma+0xc0/0x140
[ 1295.811996][T32398]  ? __pfx_find_vma+0x10/0x10
[ 1295.812039][T32398]  handle_mm_fault+0x3fa/0xaa0
[ 1295.812092][T32398]  do_user_addr_fault+0x7a3/0x13f0
[ 1295.812131][T32398]  exc_page_fault+0x5c/0xc0
[ 1295.812182][T32398]  asm_exc_page_fault+0x26/0x30
[ 1295.812221][T32398] RIP: 0010:rep_movs_alternative+0x4a/0x70
[ 1295.812269][T32398] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[ 1295.812302][T32398] RSP: 0018:ffffc900045e7458 EFLAGS: 00050202
[ 1295.812328][T32398] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000002f04
[ 1295.812347][T32398] RDX: ffffed100772dfe3 RSI: 000000000000d000 RDI: ffff88803b96d010
[ 1295.812367][T32398] RBP: ffffc900045e7b60 R08: 0000000000000001 R09: ffffed100772dfe2
[ 1295.812388][T32398] R10: ffff88803b96ff13 R11: 0000000000000000 R12: 000000000000ff04
[ 1295.812408][T32398] R13: ffff88803b960010 R14: 0000000000000000 R15: 000000000000ff04
[ 1295.812444][T32398]  _copy_from_iter+0x52f/0x1400
[ 1295.812482][T32398]  ? __pfx__copy_from_iter+0x10/0x10
[ 1295.812515][T32398]  ? __virt_addr_valid+0x1a4/0x590
[ 1295.812561][T32398]  ? __virt_addr_valid+0x5e/0x590
[ 1295.812605][T32398]  ? __phys_addr+0xc6/0x150
[ 1295.812665][T32398]  ? __phys_addr_symbol+0x30/0x80
[ 1295.812711][T32398]  ? __check_object_size+0x488/0x710
[ 1295.812767][T32398]  sctp_user_addto_chunk+0x87/0x230
[ 1295.812810][T32398]  sctp_datamsg_from_user+0x5b3/0x1320
[ 1295.812876][T32398]  sctp_sendmsg_to_asoc+0xafd/0x1ad0
[ 1295.812922][T32398]  ? sctp_assoc_add_peer+0x254/0x14b0
[ 1295.812974][T32398]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[ 1295.813020][T32398]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[ 1295.813069][T32398]  ? sctp_endpoint_lookup_assoc+0xac/0x2a0
[ 1295.813114][T32398]  ? lock_acquire+0x2f/0xb0
[ 1295.813144][T32398]  ? sctp_endpoint_lookup_assoc+0xac/0x2a0
[ 1295.813194][T32398]  sctp_sendmsg+0x129c/0x1f10
[ 1295.813247][T32398]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1295.813298][T32398]  ? __pfx___might_resched+0x10/0x10
[ 1295.813342][T32398]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1295.813382][T32398]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1295.813441][T32398]  inet_sendmsg+0x119/0x140
[ 1295.813495][T32398]  ____sys_sendmsg+0x907/0xb40
[ 1295.813545][T32398]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1295.813600][T32398]  ? rcu_is_watching+0x12/0xc0
[ 1295.813643][T32398]  ? lock_release+0x4e2/0x6f0
[ 1295.813677][T32398]  ___sys_sendmsg+0x135/0x1e0
[ 1295.813715][T32398]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1295.813752][T32398]  ? select_task_rq_fair+0x36e/0x44f0
[ 1295.813804][T32398]  ? trace_lock_acquire+0x14e/0x1f0
[ 1295.813851][T32398]  ? plist_check_head+0xa3/0x150
[ 1295.813910][T32398]  __sys_sendmmsg+0x201/0x420
[ 1295.813950][T32398]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1295.813988][T32398]  ? __pfx_inet_bind_sk+0x10/0x10
[ 1295.814058][T32398]  ? __pfx_do_futex+0x10/0x10
[ 1295.814113][T32398]  ? xfd_validate_state+0x5d/0x180
[ 1295.814146][T32398]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x230
[ 1295.814181][T32398]  ? syscall_user_dispatch+0x77/0x140
[ 1295.814224][T32398]  __x64_sys_sendmmsg+0x9c/0x100
[ 1295.814260][T32398]  do_syscall_64+0xcd/0x250
[ 1295.814293][T32398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1295.814331][T32398] RIP: 0033:0x7f0cd798cd29
[ 1295.814353][T32398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1295.814383][T32398] RSP: 002b:00007f0cd88af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1295.814410][T32398] RAX: ffffffffffffffda RBX: 00007f0cd7ba5fa0 RCX: 00007f0cd798cd29
[ 1295.814437][T32398] RDX: 0000000000000005 RSI: 0000000020000140 RDI: 0000000000000003
[ 1295.814455][T32398] RBP: 00007f0cd7a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1295.814474][T32398] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000000
[ 1295.814492][T32398] R13: 0000000000000000 R14: 00007f0cd7ba5fa0 R15: 00007fff2e2a8388
[ 1295.814517][T32398]  </TASK>
[ 1296.729140][T32405] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6341'.
[ 1296.764158][T32412] netlink: 342 bytes leftover after parsing attributes in process `syz.8.6340'.
[ 1298.263163][T32468] FAULT_INJECTION: forcing a failure.
[ 1298.263163][T32468] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1298.282474][T32468] CPU: 1 UID: 0 PID: 32468 Comm: syz.2.6350 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1298.282527][T32468] Tainted: [U]=USER
[ 1298.282540][T32468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1298.282559][T32468] Call Trace:
[ 1298.282569][T32468]  <TASK>
[ 1298.282581][T32468]  dump_stack_lvl+0x16c/0x1f0
[ 1298.282619][T32468]  should_fail_ex+0x497/0x5b0
[ 1298.282669][T32468]  ? fs_reclaim_acquire+0xae/0x150
[ 1298.282712][T32468]  should_fail_alloc_page+0xe7/0x130
[ 1298.282744][T32468]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1298.282792][T32468]  __alloc_pages_noprof+0x18e/0x2470
[ 1298.282844][T32468]  ? arch_stack_walk+0xa7/0x100
[ 1298.282897][T32468]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1298.282966][T32468]  ? stack_trace_save+0x95/0xd0
[ 1298.283012][T32468]  ? mas_next_node+0x7c1/0xf40
[ 1298.283043][T32468]  ? stack_depot_save_flags+0x28/0x9e0
[ 1298.283100][T32468]  ? rcu_is_watching+0x12/0xc0
[ 1298.283143][T32468]  ? lock_release+0x4e2/0x6f0
[ 1298.283174][T32468]  ? filemap_get_entry+0x1a8/0x3c0
[ 1298.283223][T32468]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1298.283268][T32468]  ? policy_nodemask+0xea/0x4e0
[ 1298.283299][T32468]  alloc_pages_mpol_noprof+0x2c8/0x620
[ 1298.283340][T32468]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1298.283380][T32468]  ? rcu_is_watching+0x12/0xc0
[ 1298.283424][T32468]  ? rcu_is_watching+0x12/0xc0
[ 1298.283467][T32468]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1298.283506][T32468]  shmem_alloc_folio+0x135/0x160
[ 1298.283539][T32468]  shmem_alloc_and_add_folio+0x48b/0xc00
[ 1298.283580][T32468]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1298.283619][T32468]  ? shmem_allowable_huge_orders+0xd0/0x410
[ 1298.283683][T32468]  shmem_get_folio_gfp+0x689/0x1530
[ 1298.283726][T32468]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1298.283766][T32468]  ? is_bpf_text_address+0x8a/0x1a0
[ 1298.283816][T32468]  ? __pfx_lock_release+0x10/0x10
[ 1298.283850][T32468]  shmem_fault+0x200/0xae0
[ 1298.283886][T32468]  ? bpf_ksym_find+0x124/0x1c0
[ 1298.283924][T32468]  ? __pfx_shmem_fault+0x10/0x10
[ 1298.283962][T32468]  ? is_bpf_text_address+0x94/0x1a0
[ 1298.284012][T32468]  ? kernel_text_address+0x8d/0x100
[ 1298.284043][T32468]  ? __kernel_text_address+0xd/0x40
[ 1298.284074][T32468]  ? unwind_get_return_address+0x59/0xa0
[ 1298.284115][T32468]  ? arch_stack_walk+0xa7/0x100
[ 1298.284155][T32468]  ? rcu_is_watching+0x12/0xc0
[ 1298.284202][T32468]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1298.284251][T32468]  __do_fault+0x10a/0x490
[ 1298.284297][T32468]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1298.284340][T32468]  do_pte_missing+0x1a8/0x3e00
[ 1298.284391][T32468]  ? ___pte_offset_map+0x1b9/0x540
[ 1298.284427][T32468]  ? __pfx_lock_release+0x10/0x10
[ 1298.284463][T32468]  __handle_mm_fault+0x1166/0x2c60
[ 1298.284518][T32468]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1298.284579][T32468]  ? find_vma+0xc0/0x140
[ 1298.284618][T32468]  ? __pfx_find_vma+0x10/0x10
[ 1298.284659][T32468]  handle_mm_fault+0x3fa/0xaa0
[ 1298.284714][T32468]  do_user_addr_fault+0x7a3/0x13f0
[ 1298.284751][T32468]  exc_page_fault+0x5c/0xc0
[ 1298.284804][T32468]  asm_exc_page_fault+0x26/0x30
[ 1298.284843][T32468] RIP: 0010:rep_movs_alternative+0x33/0x70
[ 1298.284890][T32468] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
[ 1298.284923][T32468] RSP: 0018:ffffc90004b5fe20 EFLAGS: 00050246
[ 1298.284950][T32468] RAX: 0000000c0000000b RBX: 0000000000000008 RCX: 0000000000000008
[ 1298.284971][T32468] RDX: fffff5200096bfd1 RSI: ffffc90004b5fe80 RDI: 0000000000000000
[ 1298.284993][T32468] RBP: 0000000000000000 R08: 0000000000000000 R09: fffff5200096bfd0
[ 1298.285013][T32468] R10: ffffc90004b5fe87 R11: 00000000000a4001 R12: ffffc90004b5fe80
[ 1298.285035][T32468] R13: 0000000000000008 R14: 00007ffffffff000 R15: 0000000000000000
[ 1298.285065][T32468]  _copy_to_user+0xbb/0xd0
[ 1298.285100][T32468]  do_pipe2+0x144/0x1d0
[ 1298.285148][T32468]  ? __pfx_do_pipe2+0x10/0x10
[ 1298.285196][T32468]  ? xfd_validate_state+0x5d/0x180
[ 1298.285231][T32468]  ? rcu_is_watching+0x12/0xc0
[ 1298.285283][T32468]  __x64_sys_pipe2+0x54/0x80
[ 1298.285333][T32468]  do_syscall_64+0xcd/0x250
[ 1298.285380][T32468]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1298.285417][T32468] RIP: 0033:0x7f451738cd29
[ 1298.285439][T32468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1298.285469][T32468] RSP: 002b:00007f4518243038 EFLAGS: 00000246 ORIG_RAX: 0000000000000125
[ 1298.285498][T32468] RAX: ffffffffffffffda RBX: 00007f45175a5fa0 RCX: 00007f451738cd29
[ 1298.285519][T32468] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000000000000
[ 1298.285538][T32468] RBP: 00007f451740e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1298.285557][T32468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1298.285576][T32468] R13: 0000000000000000 R14: 00007f45175a5fa0 R15: 00007ffdd62233e8
[ 1298.285605][T32468]  </TASK>
[ 1299.004135][T32475] smc: net device syz_tun applied user defined pnetid ETHTOOL
[ 1299.576221][T32493] caif:caif_disconnect_client(): nothing to disconnect
[ 1299.853188][T32526] FAULT_INJECTION: forcing a failure.
[ 1299.853188][T32526] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1299.902755][T32526] CPU: 0 UID: 0 PID: 32526 Comm: syz.9.6356 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1299.902808][T32526] Tainted: [U]=USER
[ 1299.902820][T32526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1299.902841][T32526] Call Trace:
[ 1299.902851][T32526]  <TASK>
[ 1299.902862][T32526]  dump_stack_lvl+0x16c/0x1f0
[ 1299.902912][T32526]  should_fail_ex+0x497/0x5b0
[ 1299.902981][T32526]  ? fs_reclaim_acquire+0xae/0x150
[ 1299.903026][T32526]  should_fail_alloc_page+0xe7/0x130
[ 1299.903059][T32526]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1299.903108][T32526]  __alloc_pages_noprof+0x18e/0x2470
[ 1299.903162][T32526]  ? stack_depot_save_flags+0x28/0x9e0
[ 1299.903214][T32526]  ? kasan_save_stack+0x42/0x60
[ 1299.903262][T32526]  ? kasan_save_stack+0x33/0x60
[ 1299.903307][T32526]  ? kasan_save_track+0x14/0x30
[ 1299.903355][T32526]  ? __kasan_slab_alloc+0x89/0x90
[ 1299.903407][T32526]  ? cgroup_rstat_updated+0x2a/0xb20
[ 1299.903451][T32526]  ? kasan_save_stack+0x33/0x60
[ 1299.903498][T32526]  ? kasan_save_track+0x14/0x30
[ 1299.903547][T32526]  ? kmem_cache_alloc_noprof+0x1c8/0x3b0
[ 1299.903599][T32526]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1299.903653][T32526]  ? __mod_memcg_lruvec_state+0x53c/0x750
[ 1299.903696][T32526]  ? __mod_zone_page_state+0xcc/0x1a0
[ 1299.903738][T32526]  ? rcu_is_watching+0x12/0xc0
[ 1299.903781][T32526]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1299.903819][T32526]  ? policy_nodemask+0xea/0x4e0
[ 1299.903851][T32526]  alloc_pages_mpol_noprof+0x2c8/0x620
[ 1299.903900][T32526]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1299.903939][T32526]  ? page_ext_put+0x48/0xd0
[ 1299.903988][T32526]  ? page_table_check_set.part.0+0x3b8/0x550
[ 1299.904046][T32526]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1299.904084][T32526]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1299.904134][T32526]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1299.904172][T32526]  ? trace_lock_acquire+0x14e/0x1f0
[ 1299.904220][T32526]  ? rcu_is_watching+0x12/0xc0
[ 1299.904263][T32526]  do_pte_missing+0x2017/0x3e00
[ 1299.904316][T32526]  __handle_mm_fault+0x1166/0x2c60
[ 1299.904369][T32526]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1299.904415][T32526]  ? lock_release+0x4e2/0x6f0
[ 1299.904443][T32526]  ? follow_page_pte+0x3c3/0x1b20
[ 1299.904486][T32526]  ? __pfx_lock_release+0x10/0x10
[ 1299.904516][T32526]  ? __pfx___pte_offset_map_lock+0x10/0x10
[ 1299.904551][T32526]  ? lock_release+0x4e2/0x6f0
[ 1299.904584][T32526]  ? follow_page_pte+0x3f7/0x1b20
[ 1299.904634][T32526]  handle_mm_fault+0x3fa/0xaa0
[ 1299.904685][T32526]  __get_user_pages+0x8d9/0x3b50
[ 1299.904735][T32526]  ? __pfx_mt_find+0x10/0x10
[ 1299.904771][T32526]  ? validate_mm+0x3da/0x530
[ 1299.904817][T32526]  ? __pfx___get_user_pages+0x10/0x10
[ 1299.904863][T32526]  ? __mm_populate+0x21d/0x380
[ 1299.904920][T32526]  ? lock_acquire+0x2f/0xb0
[ 1299.904951][T32526]  populate_vma_page_range+0x27f/0x3a0
[ 1299.905000][T32526]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1299.905049][T32526]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1299.905092][T32526]  ? vm_mmap_pgoff+0x29b/0x3a0
[ 1299.905138][T32526]  __mm_populate+0x1d6/0x380
[ 1299.905186][T32526]  ? __pfx___mm_populate+0x10/0x10
[ 1299.905236][T32526]  ? up_write+0x1b2/0x520
[ 1299.905272][T32526]  vm_mmap_pgoff+0x2d3/0x3a0
[ 1299.905320][T32526]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1299.905368][T32526]  ? __x64_sys_futex+0x1e1/0x4c0
[ 1299.905414][T32526]  ? __x64_sys_futex+0x1ea/0x4c0
[ 1299.905463][T32526]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1299.905502][T32526]  ? rcu_is_watching+0x12/0xc0
[ 1299.905545][T32526]  __x64_sys_mmap+0x125/0x190
[ 1299.905583][T32526]  do_syscall_64+0xcd/0x250
[ 1299.905617][T32526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1299.905655][T32526] RIP: 0033:0x7f0cd798cd29
[ 1299.905678][T32526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1299.905708][T32526] RSP: 002b:00007f0cd88af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1299.905737][T32526] RAX: ffffffffffffffda RBX: 00007f0cd7ba5fa0 RCX: 00007f0cd798cd29
[ 1299.905758][T32526] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1299.905776][T32526] RBP: 00007f0cd7a0e2a0 R08: 0000000000000002 R09: 0000000000008000
[ 1299.905794][T32526] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1299.905812][T32526] R13: 0000000000000000 R14: 00007f0cd7ba5fa0 R15: 00007fff2e2a8388
[ 1299.905841][T32526]  </TASK>
[ 1301.335412][T32578] futex_wake_op: syz.9.6361 tries to shift op by 64; fix this program
[ 1301.579506][T32585] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6363'.
[ 1301.727757][T32585] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1301.818883][T32585] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1302.059370][T32599] netlink: 12 bytes leftover after parsing attributes in process `syz.8.6365'.
[ 1302.289763][T32585] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1302.354974][T32585] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1303.608652][T32627] FAULT_INJECTION: forcing a failure.
[ 1303.608652][T32627] name failslab, interval 1, probability 0, space 0, times 0
[ 1303.653295][T32627] CPU: 1 UID: 0 PID: 32627 Comm: syz.8.6368 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1303.653346][T32627] Tainted: [U]=USER
[ 1303.653356][T32627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1303.653376][T32627] Call Trace:
[ 1303.653385][T32627]  <TASK>
[ 1303.653397][T32627]  dump_stack_lvl+0x16c/0x1f0
[ 1303.653436][T32627]  should_fail_ex+0x497/0x5b0
[ 1303.653494][T32627]  should_failslab+0xc2/0x120
[ 1303.653526][T32627]  kmem_cache_alloc_noprof+0x6e/0x3b0
[ 1303.653591][T32627]  ? sock_def_readable+0xa6/0x610
[ 1303.653623][T32627]  ? inet_twsk_alloc+0x120/0x970
[ 1303.653662][T32627]  inet_twsk_alloc+0x120/0x970
[ 1303.653699][T32627]  dccp_time_wait+0x35/0x2f0
[ 1303.653750][T32627]  dccp_rcv_state_process+0xc1c/0x1580
[ 1303.653801][T32627]  dccp_v6_do_rcv+0x2e3/0xeb0
[ 1303.653831][T32627]  ? rcu_watching_snap_stopped_since+0x52/0x110
[ 1303.653878][T32627]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1303.653915][T32627]  ? __pfx_dccp_v6_do_rcv+0x10/0x10
[ 1303.653946][T32627]  __release_sock+0x35f/0x400
[ 1303.653981][T32627]  ? release_sock+0x21/0x220
[ 1303.654017][T32627]  ? __pfx_inet_stream_connect+0x10/0x10
[ 1303.654066][T32627]  release_sock+0x5a/0x220
[ 1303.654102][T32627]  inet_stream_connect+0x79/0xa0
[ 1303.654152][T32627]  __sys_connect_file+0x13e/0x1a0
[ 1303.654189][T32627]  __sys_connect+0x14f/0x170
[ 1303.654217][T32627]  ? __pfx___sys_connect+0x10/0x10
[ 1303.654253][T32627]  ? rcu_is_watching+0x12/0xc0
[ 1303.654293][T32627]  ? rcu_is_watching+0x12/0xc0
[ 1303.654336][T32627]  __x64_sys_connect+0x72/0xb0
[ 1303.654367][T32627]  do_syscall_64+0xcd/0x250
[ 1303.654402][T32627]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1303.654441][T32627] RIP: 0033:0x7fdb6c78cd29
[ 1303.654465][T32627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1303.654497][T32627] RSP: 002b:00007fdb6d52a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1303.654528][T32627] RAX: ffffffffffffffda RBX: 00007fdb6c9a5fa0 RCX: 00007fdb6c78cd29
[ 1303.654549][T32627] RDX: 0000000000000055 RSI: 00000000200018c0 RDI: 0000000000000003
[ 1303.654577][T32627] RBP: 00007fdb6c80e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1303.654597][T32627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1303.654616][T32627] R13: 0000000000000000 R14: 00007fdb6c9a5fa0 R15: 00007fff85c16a98
[ 1303.654644][T32627]  </TASK>
[ 1304.001803][T32627] dccp_time_wait: time wait bucket table overflow
[ 1304.144531][T32606] netlink: 'syz.2.6358': attribute type 8 has an invalid length.
[ 1305.820516][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1305.834335][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1306.220586][T32690] batman_adv: Routing algorithm '' is not supported
[ 1306.372467][T32694] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6372'.
[ 1307.492576][T32717] netlink: 28 bytes leftover after parsing attributes in process `syz.8.6383'.
[ 1307.514542][T32717] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1307.522793][T32717] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1307.554718][T32717] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1307.578310][T32717] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1309.134124][T32750] caif:caif_disconnect_client(): nothing to disconnect
[ 1309.429085][T32755] FAULT_INJECTION: forcing a failure.
[ 1309.429085][T32755] name failslab, interval 1, probability 0, space 0, times 0
[ 1309.486697][T32755] CPU: 0 UID: 0 PID: 32755 Comm: syz.5.6393 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1309.486752][T32755] Tainted: [U]=USER
[ 1309.486764][T32755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1309.486784][T32755] Call Trace:
[ 1309.486795][T32755]  <TASK>
[ 1309.486806][T32755]  dump_stack_lvl+0x16c/0x1f0
[ 1309.486844][T32755]  should_fail_ex+0x497/0x5b0
[ 1309.486892][T32755]  ? fs_reclaim_acquire+0xae/0x150
[ 1309.486933][T32755]  should_failslab+0xc2/0x120
[ 1309.486962][T32755]  kmem_cache_alloc_noprof+0x6e/0x3b0
[ 1309.487011][T32755]  ? getname_flags.part.0+0x4c/0x550
[ 1309.487044][T32755]  getname_flags.part.0+0x4c/0x550
[ 1309.487079][T32755]  getname+0x8d/0xe0
[ 1309.487117][T32755]  do_sys_openat2+0x104/0x1e0
[ 1309.487148][T32755]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1309.487185][T32755]  __x64_sys_openat+0x175/0x210
[ 1309.487217][T32755]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1309.487251][T32755]  ? rcu_is_watching+0x12/0xc0
[ 1309.487299][T32755]  ? rcu_is_watching+0x12/0xc0
[ 1309.487342][T32755]  do_syscall_64+0xcd/0x250
[ 1309.487374][T32755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1309.487412][T32755] RIP: 0033:0x7f395418cd29
[ 1309.487436][T32755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1309.487467][T32755] RSP: 002b:00007f3955030038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1309.487496][T32755] RAX: ffffffffffffffda RBX: 00007f39543a5fa0 RCX: 00007f395418cd29
[ 1309.487517][T32755] RDX: 000000000014f602 RSI: 0000000020000000 RDI: ffffffffffffff9c
[ 1309.487537][T32755] RBP: 00007f395420e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1309.487556][T32755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1309.487575][T32755] R13: 0000000000000000 R14: 00007f39543a5fa0 R15: 00007ffd3f4a1018
[ 1309.487605][T32755]  </TASK>
[ 1309.542861][T32755] can0: slcan on ptm0.
[ 1309.545443][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1309.710125][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1309.716745][    C0] hrtimer: interrupt took 222553196 ns
[ 1309.816806][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1309.969159][T32754] can0 (unregistered): slcan off ptm0.
[ 1311.401768][  T327] FAULT_INJECTION: forcing a failure.
[ 1311.401768][  T327] name failslab, interval 1, probability 0, space 0, times 0
[ 1311.417390][  T329] netlink: 28 bytes leftover after parsing attributes in process `syz.9.6395'.
[ 1311.433208][  T329] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1311.452139][  T329] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1311.470881][  T327] CPU: 0 UID: 0 PID: 327 Comm: syz.5.6403 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1311.470935][  T327] Tainted: [U]=USER
[ 1311.470947][  T327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1311.470967][  T327] Call Trace:
[ 1311.470978][  T327]  <TASK>
[ 1311.470989][  T327]  dump_stack_lvl+0x16c/0x1f0
[ 1311.471030][  T327]  should_fail_ex+0x497/0x5b0
[ 1311.471091][  T327]  ? fs_reclaim_acquire+0xae/0x150
[ 1311.471153][  T327]  should_failslab+0xc2/0x120
[ 1311.471196][  T327]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[ 1311.471248][  T327]  ? ktime_get_with_offset+0x20b/0x3b0
[ 1311.471299][  T327]  ? __alloc_skb+0x2b3/0x380
[ 1311.471335][  T327]  __alloc_skb+0x2b3/0x380
[ 1311.471367][  T327]  ? __pfx___alloc_skb+0x10/0x10
[ 1311.471399][  T327]  ? dccp_feat_finalise_settings+0x21b/0x340
[ 1311.471447][  T327]  ? dccp_feat_register_sp+0x170/0x1a0
[ 1311.471492][  T327]  ? ip6_mtu+0xa0/0x4a0
[ 1311.471526][  T327]  dccp_connect+0x220/0x6c0
[ 1311.471575][  T327]  dccp_v6_connect+0xaab/0x1550
[ 1311.471609][  T327]  ? __pfx_dccp_v6_connect+0x10/0x10
[ 1311.471640][  T327]  ? __pfx___futex_wait+0x10/0x10
[ 1311.471695][  T327]  __inet_stream_connect+0x3c7/0x1020
[ 1311.471745][  T327]  ? rcu_is_watching+0x12/0xc0
[ 1311.471786][  T327]  ? lock_release+0x4e2/0x6f0
[ 1311.471815][  T327]  ? __pfx___inet_stream_connect+0x10/0x10
[ 1311.471863][  T327]  ? __pfx_lock_release+0x10/0x10
[ 1311.471892][  T327]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1311.471930][  T327]  ? lock_acquire+0x2f/0xb0
[ 1311.471959][  T327]  ? lock_sock_nested+0x5f/0xf0
[ 1311.471993][  T327]  ? rcu_is_watching+0x12/0xc0
[ 1311.472034][  T327]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1311.472070][  T327]  ? __pfx_inet_stream_connect+0x10/0x10
[ 1311.472117][  T327]  inet_stream_connect+0x57/0xa0
[ 1311.472166][  T327]  __sys_connect_file+0x13e/0x1a0
[ 1311.472207][  T327]  __sys_connect+0x14f/0x170
[ 1311.472235][  T327]  ? __pfx___sys_connect+0x10/0x10
[ 1311.472271][  T327]  ? rcu_is_watching+0x12/0xc0
[ 1311.472312][  T327]  ? rcu_is_watching+0x12/0xc0
[ 1311.472353][  T327]  __x64_sys_connect+0x72/0xb0
[ 1311.472383][  T327]  do_syscall_64+0xcd/0x250
[ 1311.472417][  T327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1311.472455][  T327] RIP: 0033:0x7f395418cd29
[ 1311.472478][  T327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1311.472509][  T327] RSP: 002b:00007f3955030038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1311.472540][  T327] RAX: ffffffffffffffda RBX: 00007f39543a5fa0 RCX: 00007f395418cd29
[ 1311.472561][  T327] RDX: 0000000000000055 RSI: 00000000200018c0 RDI: 0000000000000003
[ 1311.472580][  T327] RBP: 00007f395420e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1311.472598][  T327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1311.472615][  T327] R13: 0000000000000000 R14: 00007f39543a5fa0 R15: 00007ffd3f4a1018
[ 1311.472643][  T327]  </TASK>
[ 1311.790480][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1312.038685][  T329] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1312.072967][  T329] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1312.633503][  T348] netlink: 28 bytes leftover after parsing attributes in process `syz.9.6399'.
[ 1315.371954][  T386] FAULT_INJECTION: forcing a failure.
[ 1315.371954][  T386] name failslab, interval 1, probability 0, space 0, times 0
[ 1315.385940][  T386] CPU: 0 UID: 0 PID: 386 Comm: syz.9.6409 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1315.385991][  T386] Tainted: [U]=USER
[ 1315.386002][  T386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1315.386022][  T386] Call Trace:
[ 1315.386032][  T386]  <TASK>
[ 1315.386044][  T386]  dump_stack_lvl+0x16c/0x1f0
[ 1315.386081][  T386]  should_fail_ex+0x497/0x5b0
[ 1315.386134][  T386]  should_failslab+0xc2/0x120
[ 1315.386166][  T386]  kmem_cache_alloc_noprof+0x6e/0x3b0
[ 1315.386218][  T386]  ? do_raw_spin_lock+0x12d/0x2c0
[ 1315.386257][  T386]  ? inet_bind2_bucket_create+0x36/0x590
[ 1315.386292][  T386]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1315.386334][  T386]  inet_bind2_bucket_create+0x36/0x590
[ 1315.386371][  T386]  __inet_hash_connect+0xfa4/0x1900
[ 1315.386414][  T386]  ? __pfx___inet6_check_established+0x10/0x10
[ 1315.386469][  T386]  ? __pfx___inet_hash_connect+0x10/0x10
[ 1315.386507][  T386]  ? rcu_is_watching+0x12/0xc0
[ 1315.386564][  T386]  dccp_v6_connect+0x9ef/0x1550
[ 1315.386600][  T386]  ? __pfx_dccp_v6_connect+0x10/0x10
[ 1315.386631][  T386]  ? __pfx___futex_wait+0x10/0x10
[ 1315.386676][  T386]  __inet_stream_connect+0x3c7/0x1020
[ 1315.386729][  T386]  ? rcu_is_watching+0x12/0xc0
[ 1315.386771][  T386]  ? lock_release+0x4e2/0x6f0
[ 1315.386803][  T386]  ? __pfx___inet_stream_connect+0x10/0x10
[ 1315.386855][  T386]  ? __pfx_lock_release+0x10/0x10
[ 1315.386885][  T386]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1315.386925][  T386]  ? lock_acquire+0x2f/0xb0
[ 1315.386955][  T386]  ? lock_sock_nested+0x5f/0xf0
[ 1315.387001][  T386]  ? rcu_is_watching+0x12/0xc0
[ 1315.387042][  T386]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1315.387079][  T386]  ? __pfx_inet_stream_connect+0x10/0x10
[ 1315.387147][  T386]  inet_stream_connect+0x57/0xa0
[ 1315.387197][  T386]  __sys_connect_file+0x13e/0x1a0
[ 1315.387230][  T386]  __sys_connect+0x14f/0x170
[ 1315.387260][  T386]  ? __pfx___sys_connect+0x10/0x10
[ 1315.387296][  T386]  ? rcu_is_watching+0x12/0xc0
[ 1315.387339][  T386]  ? rcu_is_watching+0x12/0xc0
[ 1315.387383][  T386]  __x64_sys_connect+0x72/0xb0
[ 1315.387425][  T386]  do_syscall_64+0xcd/0x250
[ 1315.387460][  T386]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1315.387500][  T386] RIP: 0033:0x7f0cd798cd29
[ 1315.387531][  T386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1315.387564][  T386] RSP: 002b:00007f0cd88af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1315.387594][  T386] RAX: ffffffffffffffda RBX: 00007f0cd7ba5fa0 RCX: 00007f0cd798cd29
[ 1315.387616][  T386] RDX: 0000000000000055 RSI: 00000000200018c0 RDI: 0000000000000003
[ 1315.387636][  T386] RBP: 00007f0cd7a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1315.387656][  T386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1315.387675][  T386] R13: 0000000000000000 R14: 00007f0cd7ba5fa0 R15: 00007fff2e2a8388
[ 1315.387706][  T386]  </TASK>
[ 1315.833121][  T388] FAULT_INJECTION: forcing a failure.
[ 1315.833121][  T388] name failslab, interval 1, probability 0, space 0, times 0
[ 1315.881933][  T388] CPU: 1 UID: 0 PID: 388 Comm: syz.8.6410 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1315.881988][  T388] Tainted: [U]=USER
[ 1315.882001][  T388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1315.882021][  T388] Call Trace:
[ 1315.882030][  T388]  <TASK>
[ 1315.882043][  T388]  dump_stack_lvl+0x16c/0x1f0
[ 1315.882082][  T388]  should_fail_ex+0x497/0x5b0
[ 1315.882130][  T388]  ? fs_reclaim_acquire+0xae/0x150
[ 1315.882192][  T388]  should_failslab+0xc2/0x120
[ 1315.882223][  T388]  kmem_cache_alloc_noprof+0x6e/0x3b0
[ 1315.882273][  T388]  ? vma_merge_new_range+0x3f0/0xb70
[ 1315.882325][  T388]  ? vm_area_alloc+0xe0/0x1c0
[ 1315.882364][  T388]  vm_area_alloc+0xe0/0x1c0
[ 1315.882410][  T388]  __mmap_region+0x1091/0x2760
[ 1315.882443][  T388]  ? __pfx___mmap_region+0x10/0x10
[ 1315.882479][  T388]  ? __pfx___schedule+0x10/0x10
[ 1315.882542][  T388]  ? lock_acquire+0x2f/0xb0
[ 1315.882571][  T388]  ? schedule+0x1fd/0x350
[ 1315.882639][  T388]  ? cap_capable+0xb3/0x250
[ 1315.882674][  T388]  mmap_region+0x127/0x320
[ 1315.882719][  T388]  do_mmap+0xa09/0x1050
[ 1315.882764][  T388]  vm_mmap_pgoff+0x203/0x3a0
[ 1315.882813][  T388]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1315.882860][  T388]  ? __x64_sys_futex+0x1e1/0x4c0
[ 1315.882905][  T388]  ? __x64_sys_futex+0x1ea/0x4c0
[ 1315.882972][  T388]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1315.883014][  T388]  ? rcu_is_watching+0x12/0xc0
[ 1315.883057][  T388]  __x64_sys_mmap+0x125/0x190
[ 1315.883096][  T388]  do_syscall_64+0xcd/0x250
[ 1315.883130][  T388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1315.883170][  T388] RIP: 0033:0x7fdb6c78cd29
[ 1315.883194][  T388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1315.883227][  T388] RSP: 002b:00007fdb6d52a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1315.883258][  T388] RAX: ffffffffffffffda RBX: 00007fdb6c9a5fa0 RCX: 00007fdb6c78cd29
[ 1315.883280][  T388] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1315.883300][  T388] RBP: 00007fdb6c80e2a0 R08: 0000000000000002 R09: 0000080000008000
[ 1315.883321][  T388] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1315.883340][  T388] R13: 0000000000000000 R14: 00007fdb6c9a5fa0 R15: 00007fff85c16a98
[ 1315.883368][  T388]  </TASK>
[ 1319.756983][  T454] can: request_module (can-proto-5) failed.
[ 1320.704557][  T470] FAULT_INJECTION: forcing a failure.
[ 1320.704557][  T470] name failslab, interval 1, probability 0, space 0, times 0
[ 1320.718608][  T470] CPU: 0 UID: 0 PID: 470 Comm: syz.8.6438 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1320.718656][  T470] Tainted: [U]=USER
[ 1320.718668][  T470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1320.718688][  T470] Call Trace:
[ 1320.718698][  T470]  <TASK>
[ 1320.718709][  T470]  dump_stack_lvl+0x16c/0x1f0
[ 1320.718746][  T470]  should_fail_ex+0x497/0x5b0
[ 1320.718798][  T470]  should_failslab+0xc2/0x120
[ 1320.718828][  T470]  kmem_cache_alloc_noprof+0x6e/0x3b0
[ 1320.718878][  T470]  ? do_raw_spin_lock+0x12d/0x2c0
[ 1320.718916][  T470]  ? inet_bind2_bucket_create+0x36/0x590
[ 1320.718952][  T470]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1320.718992][  T470]  inet_bind2_bucket_create+0x36/0x590
[ 1320.719029][  T470]  __inet_hash_connect+0xfa4/0x1900
[ 1320.719078][  T470]  ? __pfx___inet6_check_established+0x10/0x10
[ 1320.719136][  T470]  ? __pfx___inet_hash_connect+0x10/0x10
[ 1320.719174][  T470]  ? rcu_is_watching+0x12/0xc0
[ 1320.719220][  T470]  dccp_v6_connect+0x9ef/0x1550
[ 1320.719253][  T470]  ? __pfx_dccp_v6_connect+0x10/0x10
[ 1320.719284][  T470]  ? __pfx___futex_wait+0x10/0x10
[ 1320.719326][  T470]  __inet_stream_connect+0x3c7/0x1020
[ 1320.719376][  T470]  ? rcu_is_watching+0x12/0xc0
[ 1320.719418][  T470]  ? lock_release+0x4e2/0x6f0
[ 1320.719447][  T470]  ? __pfx___inet_stream_connect+0x10/0x10
[ 1320.719493][  T470]  ? __pfx_lock_release+0x10/0x10
[ 1320.719521][  T470]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1320.719559][  T470]  ? lock_acquire+0x2f/0xb0
[ 1320.719587][  T470]  ? lock_sock_nested+0x5f/0xf0
[ 1320.719623][  T470]  ? rcu_is_watching+0x12/0xc0
[ 1320.719664][  T470]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1320.719701][  T470]  ? __pfx_inet_stream_connect+0x10/0x10
[ 1320.719750][  T470]  inet_stream_connect+0x57/0xa0
[ 1320.719799][  T470]  __sys_connect_file+0x13e/0x1a0
[ 1320.719830][  T470]  __sys_connect+0x14f/0x170
[ 1320.719857][  T470]  ? __pfx___sys_connect+0x10/0x10
[ 1320.719893][  T470]  ? rcu_is_watching+0x12/0xc0
[ 1320.719933][  T470]  ? rcu_is_watching+0x12/0xc0
[ 1320.719976][  T470]  __x64_sys_connect+0x72/0xb0
[ 1320.720006][  T470]  do_syscall_64+0xcd/0x250
[ 1320.720040][  T470]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1320.720090][  T470] RIP: 0033:0x7fdb6c78cd29
[ 1320.720115][  T470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1320.720149][  T470] RSP: 002b:00007fdb6d52a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1320.720179][  T470] RAX: ffffffffffffffda RBX: 00007fdb6c9a5fa0 RCX: 00007fdb6c78cd29
[ 1320.720201][  T470] RDX: 0000000000000055 RSI: 00000000200018c0 RDI: 0000000000000003
[ 1320.720221][  T470] RBP: 00007fdb6c80e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1320.720241][  T470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1320.720261][  T470] R13: 0000000000000000 R14: 00007fdb6c9a5fa0 R15: 00007fff85c16a98
[ 1320.720291][  T470]  </TASK>
[ 1321.038402][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1325.424561][T28395] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1326.518262][  T527] FAULT_INJECTION: forcing a failure.
[ 1326.518262][  T527] name fail_futex, interval 1, probability 0, space 1, times 0
[ 1326.564151][  T527] CPU: 1 UID: 0 PID: 527 Comm: syz.8.6450 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1326.564215][  T527] Tainted: [U]=USER
[ 1326.564225][  T527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1326.564243][  T527] Call Trace:
[ 1326.564252][  T527]  <TASK>
[ 1326.564263][  T527]  dump_stack_lvl+0x16c/0x1f0
[ 1326.564297][  T527]  should_fail_ex+0x497/0x5b0
[ 1326.564343][  T527]  get_futex_key+0xac1/0x1000
[ 1326.564384][  T527]  ? __pfx_get_futex_key+0x10/0x10
[ 1326.564427][  T527]  futex_wake+0xe8/0x4e0
[ 1326.564453][  T527]  ? __pfx_futex_wake+0x10/0x10
[ 1326.564479][  T527]  ? __might_fault+0x13b/0x190
[ 1326.564511][  T527]  ? rcu_is_watching+0x12/0xc0
[ 1326.564546][  T527]  ? lock_release+0x4e2/0x6f0
[ 1326.564582][  T527]  do_futex+0x1e5/0x350
[ 1326.564622][  T527]  ? __pfx_do_futex+0x10/0x10
[ 1326.564662][  T527]  ? __might_fault+0xe3/0x190
[ 1326.564691][  T527]  ? __might_fault+0xe3/0x190
[ 1326.564721][  T527]  mm_release+0x24e/0x300
[ 1326.564750][  T527]  do_exit+0x886/0x2d70
[ 1326.564788][  T527]  ? rcu_is_watching+0x12/0xc0
[ 1326.564825][  T527]  ? lock_release+0x4e2/0x6f0
[ 1326.564851][  T527]  ? get_signal+0x8f7/0x2610
[ 1326.564882][  T527]  ? __pfx_do_exit+0x10/0x10
[ 1326.564919][  T527]  ? do_raw_spin_lock+0x12d/0x2c0
[ 1326.564951][  T527]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1326.564984][  T527]  do_group_exit+0xd3/0x2a0
[ 1326.565021][  T527]  get_signal+0x2576/0x2610
[ 1326.565053][  T527]  ? rcu_is_watching+0x12/0xc0
[ 1326.565089][  T527]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1326.565122][  T527]  ? __pfx_get_signal+0x10/0x10
[ 1326.565156][  T527]  ? __pfx_do_futex+0x10/0x10
[ 1326.565203][  T527]  arch_do_signal_or_restart+0x90/0x7e0
[ 1326.565248][  T527]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1326.565299][  T527]  ? rcu_is_watching+0x12/0xc0
[ 1326.565337][  T527]  ? rcu_is_watching+0x12/0xc0
[ 1326.565376][  T527]  syscall_exit_to_user_mode+0x150/0x2a0
[ 1326.565406][  T527]  do_syscall_64+0xda/0x250
[ 1326.565437][  T527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1326.565473][  T527] RIP: 0033:0x7fdb6c78cd29
[ 1326.565495][  T527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1326.565525][  T527] RSP: 002b:00007fdb6d52a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1326.565553][  T527] RAX: fffffffffffffe00 RBX: 00007fdb6c9a5fa8 RCX: 00007fdb6c78cd29
[ 1326.565583][  T527] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fdb6c9a5fa8
[ 1326.565601][  T527] RBP: 00007fdb6c9a5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1326.565621][  T527] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fdb6c9a5fac
[ 1326.565639][  T527] R13: 0000000000000000 R14: 00007fff85c169b0 R15: 00007fff85c16a98
[ 1326.565667][  T527]  </TASK>
[ 1326.864500][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1328.031766][  T546] netlink: 330 bytes leftover after parsing attributes in process `syz.9.6454'.
[ 1328.059243][  T546] ›: renamed from hsr0 (while UP)
[ 1328.090769][  T537] zram: Added device: zram2
[ 1329.078146][  T560] FAULT_INJECTION: forcing a failure.
[ 1329.078146][  T560] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1329.236010][  T563] ieee80211 phy106: Selected rate control algorithm 'minstrel_ht'
[ 1329.335226][  T560] CPU: 0 UID: 0 PID: 560 Comm: syz.8.6458 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1329.335282][  T560] Tainted: [U]=USER
[ 1329.335294][  T560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1329.335313][  T560] Call Trace:
[ 1329.335323][  T560]  <TASK>
[ 1329.335344][  T560]  dump_stack_lvl+0x16c/0x1f0
[ 1329.335382][  T560]  should_fail_ex+0x497/0x5b0
[ 1329.335434][  T560]  _copy_to_user+0x32/0xd0
[ 1329.335467][  T560]  put_user_ifreq+0xf4/0x140
[ 1329.335511][  T560]  sock_do_ioctl+0x232/0x280
[ 1329.335556][  T560]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 1329.335610][  T560]  sock_ioctl+0x228/0x6c0
[ 1329.335656][  T560]  ? __pfx_sock_ioctl+0x10/0x10
[ 1329.335706][  T560]  ? xfd_validate_state+0x5d/0x180
[ 1329.335741][  T560]  ? __pfx_sock_ioctl+0x10/0x10
[ 1329.335787][  T560]  __x64_sys_ioctl+0x190/0x200
[ 1329.335824][  T560]  do_syscall_64+0xcd/0x250
[ 1329.335857][  T560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1329.335896][  T560] RIP: 0033:0x7fdb6c78cd29
[ 1329.335919][  T560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1329.335951][  T560] RSP: 002b:00007fdb6d52a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1329.335982][  T560] RAX: ffffffffffffffda RBX: 00007fdb6c9a5fa0 RCX: 00007fdb6c78cd29
[ 1329.336003][  T560] RDX: 0000000020000180 RSI: 0000000000008933 RDI: 0000000000000004
[ 1329.336023][  T560] RBP: 00007fdb6c80e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1329.336043][  T560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1329.336062][  T560] R13: 0000000000000000 R14: 00007fdb6c9a5fa0 R15: 00007fff85c16a98
[ 1329.336098][  T560]  </TASK>
[ 1330.257032][  T572] netlink: 1204 bytes leftover after parsing attributes in process `syz.8.6462'.
[ 1330.271855][  T572] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6462'.
[ 1330.365695][  T578] netlink: 28 bytes leftover after parsing attributes in process `syz.9.6461'.
[ 1330.394799][  T578] bond0: entered promiscuous mode
[ 1330.400517][  T578] bond_slave_0: entered promiscuous mode
[ 1330.462176][  T578] bond_slave_1: entered promiscuous mode
[ 1330.494657][  T578] bond0: entered allmulticast mode
[ 1330.521512][  T578] bond_slave_0: entered allmulticast mode
[ 1330.564266][  T578] bond_slave_1: entered allmulticast mode
[ 1330.948024][  T583] FAULT_INJECTION: forcing a failure.
[ 1330.948024][  T583] name failslab, interval 1, probability 0, space 0, times 0
[ 1330.966332][  T583] CPU: 1 UID: 0 PID: 583 Comm: syz.9.6463 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1330.966385][  T583] Tainted: [U]=USER
[ 1330.966397][  T583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1330.966416][  T583] Call Trace:
[ 1330.966426][  T583]  <TASK>
[ 1330.966438][  T583]  dump_stack_lvl+0x16c/0x1f0
[ 1330.966475][  T583]  should_fail_ex+0x497/0x5b0
[ 1330.966523][  T583]  ? fs_reclaim_acquire+0xae/0x150
[ 1330.966566][  T583]  should_failslab+0xc2/0x120
[ 1330.966596][  T583]  kmem_cache_alloc_noprof+0x6e/0x3b0
[ 1330.966645][  T583]  ? ptlock_alloc+0x1f/0x70
[ 1330.966693][  T583]  ptlock_alloc+0x1f/0x70
[ 1330.966740][  T583]  pte_alloc_one+0x74/0x390
[ 1330.966778][  T583]  __pte_alloc+0x6e/0x3b0
[ 1330.966816][  T583]  ? __pfx___pte_alloc+0x10/0x10
[ 1330.966855][  T583]  ? __pfx___might_resched+0x10/0x10
[ 1330.966893][  T583]  copy_page_range+0x363e/0x5560
[ 1330.966956][  T583]  ? __pfx_copy_page_range+0x10/0x10
[ 1330.967002][  T583]  ? rcu_is_watching+0x12/0xc0
[ 1330.967044][  T583]  ? lock_release+0x4e2/0x6f0
[ 1330.967092][  T583]  ? __pfx_lock_release+0x10/0x10
[ 1330.967123][  T583]  ? lock_acquire+0x2f/0xb0
[ 1330.967153][  T583]  ? copy_mm+0x125d/0x2690
[ 1330.967192][  T583]  ? down_write+0x14e/0x200
[ 1330.967238][  T583]  ? up_write+0x1b2/0x520
[ 1330.967271][  T583]  ? anon_vma_name+0x75/0x100
[ 1330.967307][  T583]  copy_mm+0x1305/0x2690
[ 1330.967352][  T583]  ? __pfx_copy_mm+0x10/0x10
[ 1330.967388][  T583]  ? rcu_is_watching+0x12/0xc0
[ 1330.967430][  T583]  ? copy_process+0x3ca7/0x6f20
[ 1330.967473][  T583]  ? __raw_spin_lock_init+0x3a/0x110
[ 1330.967514][  T583]  copy_process+0x3e6d/0x6f20
[ 1330.967561][  T583]  ? __pfx_copy_process+0x10/0x10
[ 1330.967602][  T583]  ? futex_wait+0x121/0x380
[ 1330.967636][  T583]  kernel_clone+0xfd/0x960
[ 1330.967676][  T583]  ? __pfx_kernel_clone+0x10/0x10
[ 1330.967720][  T583]  ? do_futex+0x123/0x350
[ 1330.967765][  T583]  ? __pfx_do_futex+0x10/0x10
[ 1330.967810][  T583]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1330.967847][  T583]  __do_sys_clone+0xba/0x100
[ 1330.967887][  T583]  ? __pfx___do_sys_clone+0x10/0x10
[ 1330.967934][  T583]  ? rcu_is_watching+0x12/0xc0
[ 1330.967976][  T583]  ? rcu_is_watching+0x12/0xc0
[ 1330.968019][  T583]  do_syscall_64+0xcd/0x250
[ 1330.968053][  T583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1330.968092][  T583] RIP: 0033:0x7f0cd798cd29
[ 1330.968117][  T583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1330.968150][  T583] RSP: 002b:00007f0cd88af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1330.968180][  T583] RAX: ffffffffffffffda RBX: 00007f0cd7ba5fa0 RCX: 00007f0cd798cd29
[ 1330.968210][  T583] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000003
[ 1330.968230][  T583] RBP: 00007f0cd7a0e2a0 R08: 0000000000000003 R09: 0000000000000000
[ 1330.968250][  T583] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000000
[ 1330.968270][  T583] R13: 0000000000000000 R14: 00007f0cd7ba5fa0 R15: 00007fff2e2a8388
[ 1330.968300][  T583]  </TASK>
[ 1331.886760][  T593] netlink: 330 bytes leftover after parsing attributes in process `syz.8.6464'.
[ 1333.220383][   T53] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1333.230124][   T53] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1333.244472][   T53] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1333.256920][   T53] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1333.263094][  T620] FAULT_INJECTION: forcing a failure.
[ 1333.263094][  T620] name failslab, interval 1, probability 0, space 0, times 0
[ 1333.284461][   T53] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1333.292592][   T53] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1333.394606][  T620] CPU: 0 UID: 0 PID: 620 Comm: syz.8.6474 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1333.394662][  T620] Tainted: [U]=USER
[ 1333.394674][  T620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1333.394693][  T620] Call Trace:
[ 1333.394703][  T620]  <TASK>
[ 1333.394715][  T620]  dump_stack_lvl+0x16c/0x1f0
[ 1333.394753][  T620]  should_fail_ex+0x497/0x5b0
[ 1333.394802][  T620]  ? fs_reclaim_acquire+0xae/0x150
[ 1333.394845][  T620]  should_failslab+0xc2/0x120
[ 1333.394874][  T620]  kmem_cache_alloc_noprof+0x6e/0x3b0
[ 1333.394923][  T620]  ? dccp_feat_finalise_settings+0x21b/0x340
[ 1333.394970][  T620]  ? skb_clone+0x190/0x3f0
[ 1333.395005][  T620]  ? ip6_mtu+0xa0/0x4a0
[ 1333.395044][  T620]  skb_clone+0x190/0x3f0
[ 1333.395079][  T620]  dccp_connect+0x30c/0x6c0
[ 1333.395128][  T620]  dccp_v6_connect+0xaab/0x1550
[ 1333.395161][  T620]  ? __pfx_dccp_v6_connect+0x10/0x10
[ 1333.395193][  T620]  ? __pfx___futex_wait+0x10/0x10
[ 1333.395235][  T620]  __inet_stream_connect+0x3c7/0x1020
[ 1333.395287][  T620]  ? rcu_is_watching+0x12/0xc0
[ 1333.395328][  T620]  ? lock_release+0x4e2/0x6f0
[ 1333.395358][  T620]  ? __pfx___inet_stream_connect+0x10/0x10
[ 1333.395407][  T620]  ? __pfx_lock_release+0x10/0x10
[ 1333.395436][  T620]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1333.395474][  T620]  ? lock_acquire+0x2f/0xb0
[ 1333.395503][  T620]  ? lock_sock_nested+0x5f/0xf0
[ 1333.395549][  T620]  ? rcu_is_watching+0x12/0xc0
[ 1333.395587][  T620]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1333.395621][  T620]  ? __pfx_inet_stream_connect+0x10/0x10
[ 1333.395670][  T620]  inet_stream_connect+0x57/0xa0
[ 1333.395715][  T620]  __sys_connect_file+0x13e/0x1a0
[ 1333.395744][  T620]  __sys_connect+0x14f/0x170
[ 1333.395771][  T620]  ? __pfx___sys_connect+0x10/0x10
[ 1333.395821][  T620]  ? rcu_is_watching+0x12/0xc0
[ 1333.395861][  T620]  ? rcu_is_watching+0x12/0xc0
[ 1333.395904][  T620]  __x64_sys_connect+0x72/0xb0
[ 1333.395933][  T620]  do_syscall_64+0xcd/0x250
[ 1333.395967][  T620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1333.396007][  T620] RIP: 0033:0x7fdb6c78cd29
[ 1333.396042][  T620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1333.396075][  T620] RSP: 002b:00007fdb6d509038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1333.396106][  T620] RAX: ffffffffffffffda RBX: 00007fdb6c9a6080 RCX: 00007fdb6c78cd29
[ 1333.396127][  T620] RDX: 0000000000000055 RSI: 00000000200018c0 RDI: 0000000000000003
[ 1333.396148][  T620] RBP: 00007fdb6c80e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1333.396168][  T620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1333.396188][  T620] R13: 0000000000000000 R14: 00007fdb6c9a6080 R15: 00007fff85c16a98
[ 1333.396217][  T620]  </TASK>
[ 1334.354908][  T619] chnl_net:caif_netlink_parms(): no params data found
[ 1335.334370][T28395] Bluetooth: hci4: command tx timeout
[ 1335.478563][  T619] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1335.486750][  T619] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1335.518874][  T619] bridge_slave_0: entered allmulticast mode
[ 1335.545580][  T619] bridge_slave_0: entered promiscuous mode
[ 1335.591231][  T619] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1335.602895][  T619] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1335.633497][  T619] bridge_slave_1: entered allmulticast mode
[ 1335.652880][  T619] bridge_slave_1: entered promiscuous mode
[ 1336.311121][  T619] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1336.357818][  T619] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1337.414385][   T53] Bluetooth: hci4: command tx timeout
[ 1337.471505][  T619] team0: Port device team_slave_0 added
[ 1337.481510][  T619] team0: Port device team_slave_1 added
[ 1337.569395][  T619] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1337.578121][  T619] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1337.658940][  T619] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1337.685779][  T619] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1337.707247][  T619] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1337.746668][T28395] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1337.784403][  T619] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1338.159389][  T671] block2mtd: error: cannot open device /proc/sys/d
[ 1338.239743][  T619] hsr_slave_0: entered promiscuous mode
[ 1338.265131][  T619] hsr_slave_1: entered promiscuous mode
[ 1338.272397][  T670] caif:caif_disconnect_client(): nothing to disconnect
[ 1338.287761][  T619] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1338.331558][  T619] Cannot create hsr debugfs directory
[ 1339.240128][  T619] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1339.276795][  T688] FAULT_INJECTION: forcing a failure.
[ 1339.276795][  T688] name fail_futex, interval 1, probability 0, space 1, times 0
[ 1339.361480][  T688] CPU: 1 UID: 0 PID: 688 Comm: syz.9.6489 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1339.361535][  T688] Tainted: [U]=USER
[ 1339.361547][  T688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1339.361568][  T688] Call Trace:
[ 1339.361577][  T688]  <TASK>
[ 1339.361588][  T688]  dump_stack_lvl+0x16c/0x1f0
[ 1339.361627][  T688]  should_fail_ex+0x497/0x5b0
[ 1339.361677][  T688]  ? trace_lock_acquire+0x14e/0x1f0
[ 1339.361724][  T688]  get_futex_key+0x4a3/0x1000
[ 1339.361777][  T688]  ? sock_def_wakeup+0x30/0x2c0
[ 1339.361809][  T688]  ? __pfx_get_futex_key+0x10/0x10
[ 1339.361855][  T688]  ? rcu_is_watching+0x12/0xc0
[ 1339.361898][  T688]  ? do_raw_spin_lock+0x12d/0x2c0
[ 1339.361938][  T688]  futex_wake+0xe8/0x4e0
[ 1339.361967][  T688]  ? rcu_is_watching+0x12/0xc0
[ 1339.362010][  T688]  ? __pfx_futex_wake+0x10/0x10
[ 1339.362039][  T688]  ? __pfx_lock_release+0x10/0x10
[ 1339.362072][  T688]  ? rcu_is_watching+0x12/0xc0
[ 1339.362113][  T688]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1339.362151][  T688]  do_futex+0x1e5/0x350
[ 1339.362197][  T688]  ? __pfx_do_futex+0x10/0x10
[ 1339.362244][  T688]  ? __sys_connect+0xf2/0x170
[ 1339.362274][  T688]  __x64_sys_futex+0x1e1/0x4c0
[ 1339.362323][  T688]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1339.362370][  T688]  ? rcu_is_watching+0x12/0xc0
[ 1339.362420][  T688]  ? rcu_is_watching+0x12/0xc0
[ 1339.362476][  T688]  ? rcu_is_watching+0x12/0xc0
[ 1339.362519][  T688]  do_syscall_64+0xcd/0x250
[ 1339.362552][  T688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1339.362591][  T688] RIP: 0033:0x7f0cd798cd29
[ 1339.362614][  T688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1339.362647][  T688] RSP: 002b:00007f0cd88af0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1339.362678][  T688] RAX: ffffffffffffffda RBX: 00007f0cd7ba5fa8 RCX: 00007f0cd798cd29
[ 1339.362699][  T688] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0cd7ba5fac
[ 1339.362720][  T688] RBP: 00007f0cd7ba5fa0 R08: 00007f0cd88b0000 R09: 0000000000000000
[ 1339.362740][  T688] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f0cd7ba5fac
[ 1339.362768][  T688] R13: 0000000000000000 R14: 00007fff2e2a82a0 R15: 00007fff2e2a8388
[ 1339.362798][  T688]  </TASK>
[ 1339.528488][T28395] Bluetooth: hci4: command tx timeout
[ 1339.860397][  T619] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1340.023859][  T619] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1340.310547][  T619] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1340.673890][  T619] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1340.707689][  T619] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1340.755539][  T712] caif:caif_disconnect_client(): nothing to disconnect
[ 1340.789628][ T8414] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1340.817794][  T619] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1340.886864][  T619] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1341.146046][ T8414] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1341.340409][ T8414] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1341.389553][  T733] ieee80211 phy107: Selected rate control algorithm 'minstrel_ht'
[ 1341.435927][  T739] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6502'.
[ 1341.465065][  T740] netlink: 330 bytes leftover after parsing attributes in process `syz.8.6503'.
[ 1341.584903][  T619] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1341.600308][  T739] veth1_macvtap: left promiscuous mode
[ 1341.654543][T28395] Bluetooth: hci4: command tx timeout
[ 1341.706535][  T619] 8021q: adding VLAN 0 to HW filter on device team0
[ 1341.734837][ T8414] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1341.787431][ T7853] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1341.795302][ T7853] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1341.822266][ T8759] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1341.830168][ T8759] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1342.188448][ T8414] bridge_slave_1: left allmulticast mode
[ 1342.214659][ T8414] bridge_slave_1: left promiscuous mode
[ 1342.235048][ T8414] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1342.301241][ T8414] bridge_slave_0: left allmulticast mode
[ 1342.319170][ T8414] bridge_slave_0: left promiscuous mode
[ 1342.339795][ T8414] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1342.830610][ T8414] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1342.870836][ T8414] bond0 (unregistering): Released all slaves
[ 1342.947069][  T619] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1343.055104][  T619] veth0_vlan: entered promiscuous mode
[ 1343.079647][  T619] veth1_vlan: entered promiscuous mode
[ 1343.171858][  T619] veth0_macvtap: entered promiscuous mode
[ 1343.206252][  T619] veth1_macvtap: entered promiscuous mode
[ 1343.233873][  T619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1343.258729][  T619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.296419][  T619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1343.337202][  T619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.357585][  T619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1343.371207][  T619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.407034][  T619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1343.439839][  T619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.472597][  T619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1343.505111][  T619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.507872][  T796] [U] ^H
[ 1343.556348][  T619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1343.581881][  T619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.597484][  T619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1343.611289][  T619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.633677][  T619] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1343.660735][  T619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1343.689860][  T619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.729491][  T619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1343.747540][  T619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.844644][  T619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1343.867427][  T619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.884443][  T619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1343.911562][  T619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.935779][  T619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1343.950570][  T619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1343.974665][  T619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1343.988020][  T619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1344.008045][  T619] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1344.036792][  T619] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1344.059282][  T619] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1344.070534][  T619] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1344.090436][  T619] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1344.158637][  T823] FAULT_INJECTION: forcing a failure.
[ 1344.158637][  T823] name failslab, interval 1, probability 0, space 0, times 0
[ 1344.187672][  T823] CPU: 0 UID: 0 PID: 823 Comm: syz.9.6519 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1344.187720][  T823] Tainted: [U]=USER
[ 1344.187731][  T823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1344.187749][  T823] Call Trace:
[ 1344.187758][  T823]  <TASK>
[ 1344.187769][  T823]  dump_stack_lvl+0x16c/0x1f0
[ 1344.187804][  T823]  should_fail_ex+0x497/0x5b0
[ 1344.187849][  T823]  ? fs_reclaim_acquire+0xae/0x150
[ 1344.187889][  T823]  should_failslab+0xc2/0x120
[ 1344.187915][  T823]  __kmalloc_cache_noprof+0x68/0x420
[ 1344.187952][  T823]  ? lockdep_init_map_type+0x16d/0x7d0
[ 1344.187981][  T823]  ? __raw_spin_lock_init+0x3a/0x110
[ 1344.188015][  T823]  snd_seq_prioq_new+0x3f/0x110
[ 1344.188049][  T823]  snd_seq_queue_alloc+0x12b/0x550
[ 1344.188078][  T823]  snd_seq_ioctl_create_queue+0xa9/0x310
[ 1344.188116][  T823]  snd_seq_kernel_client_ctl+0x107/0x1c0
[ 1344.188158][  T823]  alloc_seq_queue+0xc2/0x160
[ 1344.188199][  T823]  ? __pfx_alloc_seq_queue+0x10/0x10
[ 1344.188249][  T823]  ? lock_acquire+0x2f/0xb0
[ 1344.188274][  T823]  ? snd_seq_oss_midi_setup+0x1a/0x70
[ 1344.188304][  T823]  ? rcu_is_watching+0x12/0xc0
[ 1344.188342][  T823]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1344.188376][  T823]  snd_seq_oss_open+0x38c/0xa20
[ 1344.188456][  T823]  odev_open+0x6f/0x90
[ 1344.188496][  T823]  ? __pfx_odev_open+0x10/0x10
[ 1344.188539][  T823]  soundcore_open+0x409/0x580
[ 1344.188584][  T823]  ? __pfx_soundcore_open+0x10/0x10
[ 1344.188628][  T823]  chrdev_open+0x237/0x6a0
[ 1344.188673][  T823]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1344.188714][  T823]  ? __pfx_chrdev_open+0x10/0x10
[ 1344.188762][  T823]  ? file_set_fsnotify_mode+0x163/0x5d0
[ 1344.188799][  T823]  do_dentry_open+0x735/0x1c40
[ 1344.188841][  T823]  ? __pfx_chrdev_open+0x10/0x10
[ 1344.188905][  T823]  ? inode_permission+0xdd/0x5f0
[ 1344.188938][  T823]  vfs_open+0x82/0x3f0
[ 1344.188965][  T823]  ? may_open+0x1f2/0x400
[ 1344.188997][  T823]  path_openat+0x1e88/0x2d80
[ 1344.189047][  T823]  ? __pfx_path_openat+0x10/0x10
[ 1344.189097][  T823]  do_filp_open+0x20c/0x470
[ 1344.189142][  T823]  ? __pfx_do_filp_open+0x10/0x10
[ 1344.189198][  T823]  ? alloc_fd+0x41f/0x760
[ 1344.189243][  T823]  do_sys_openat2+0x17a/0x1e0
[ 1344.189274][  T823]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1344.189306][  T823]  ? __pfx___might_resched+0x10/0x10
[ 1344.189343][  T823]  __x64_sys_openat+0x175/0x210
[ 1344.189385][  T823]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1344.189423][  T823]  ? rcu_is_watching+0x12/0xc0
[ 1344.189469][  T823]  ? rcu_is_watching+0x12/0xc0
[ 1344.189513][  T823]  do_syscall_64+0xcd/0x250
[ 1344.189549][  T823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1344.189590][  T823] RIP: 0033:0x7f0cd798cd29
[ 1344.189615][  T823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1344.189648][  T823] RSP: 002b:00007f0cd88af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1344.189681][  T823] RAX: ffffffffffffffda RBX: 00007f0cd7ba5fa0 RCX: 00007f0cd798cd29
[ 1344.189703][  T823] RDX: 0000000000000002 RSI: 0000000020000080 RDI: ffffffffffffff9c
[ 1344.189725][  T823] RBP: 00007f0cd7a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1344.189746][  T823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1344.189767][  T823] R13: 0000000000000000 R14: 00007f0cd7ba5fa0 R15: 00007fff2e2a8388
[ 1344.189797][  T823]  </TASK>
[ 1344.982674][  T619] ieee80211 phy108: Selected rate control algorithm 'minstrel_ht'
[ 1345.759700][  T861] [U] ^H
[ 1346.179371][  T865] zram: Added device: zram3
[ 1361.366591][T28395] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1361.374633][T28395] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1361.384890][T28395] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1361.393367][T28395] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1361.404933][T28395] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1361.412987][T28395] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1361.429934][T13121] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1361.442303][T13121] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1361.450901][T13121] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1361.459551][T13121] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1361.467945][T13121] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1361.475980][T13121] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1362.363980][T13121] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1362.372155][T13121] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1362.380483][T13121] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1362.388978][T13121] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1362.397528][T13121] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1362.405894][T13121] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1363.494355][T13121] Bluetooth: hci5: command tx timeout
[ 1363.494396][   T53] Bluetooth: hci2: command tx timeout
[ 1364.454344][   T53] Bluetooth: hci1: command tx timeout
[ 1365.574423][   T53] Bluetooth: hci5: command tx timeout
[ 1365.577733][T13121] Bluetooth: hci2: command tx timeout
[ 1366.534365][T13121] Bluetooth: hci1: command tx timeout
[ 1367.267304][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1367.274402][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1367.654383][T19849] Bluetooth: hci5: command tx timeout
[ 1367.657591][T13121] Bluetooth: hci2: command tx timeout
[ 1368.614312][T13121] Bluetooth: hci1: command tx timeout
[ 1369.334312][T13121] Bluetooth: hci3: command 0x0406 tx timeout
[ 1369.734359][T13121] Bluetooth: hci5: command tx timeout
[ 1369.734907][   T53] Bluetooth: hci2: command tx timeout
[ 1370.694401][   T53] Bluetooth: hci1: command tx timeout
[ 1392.807170][T13121] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1392.817565][T13121] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1392.826001][T13121] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1392.835697][T13121] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1392.844242][T13121] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 1392.852282][T13121] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1394.934325][T13121] Bluetooth: hci6: command tx timeout
[ 1397.014351][T13121] Bluetooth: hci6: command tx timeout
[ 1399.094463][T13121] Bluetooth: hci6: command tx timeout
[ 1401.174826][   T53] Bluetooth: hci6: command tx timeout
[ 1421.332608][T13121] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1421.344635][T13121] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1421.352849][T13121] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1421.361421][T13121] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1421.370394][T13121] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 1421.379534][T13121] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1422.357833][T13121] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1422.366694][T13121] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1422.376795][T13121] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1422.385302][T13121] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1422.393560][T13121] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[ 1422.401749][T13121] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1423.337700][T13121] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 1423.347823][T13121] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 1423.356115][T13121] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 1423.364795][T13121] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 1423.373099][T13121] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 1423.381230][T13121] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 1423.414413][T13121] Bluetooth: hci7: command tx timeout
[ 1424.454356][T13121] Bluetooth: hci8: command tx timeout
[ 1425.414359][T13121] Bluetooth: hci9: command tx timeout
[ 1425.494342][T13121] Bluetooth: hci7: command tx timeout
[ 1426.534373][T13121] Bluetooth: hci8: command tx timeout
[ 1427.494305][T13121] Bluetooth: hci9: command tx timeout
[ 1427.584362][T13121] Bluetooth: hci7: command tx timeout
[ 1428.614356][T13121] Bluetooth: hci8: command tx timeout
[ 1428.697962][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1428.705023][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1429.574314][T13121] Bluetooth: hci9: command tx timeout
[ 1429.654599][T13121] Bluetooth: hci7: command tx timeout
[ 1430.704414][T13121] Bluetooth: hci8: command tx timeout
[ 1431.654458][T13121] Bluetooth: hci9: command tx timeout
[ 1452.872300][   T53] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 1452.882020][   T53] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 1452.890728][   T53] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 1452.899374][   T53] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 1452.908501][   T53] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[ 1452.917249][   T53] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 1454.934475][T13121] Bluetooth: hci10: command tx timeout
[ 1456.375475][T13121] Bluetooth: hci4: command 0x0406 tx timeout
[ 1457.014522][   T53] Bluetooth: hci10: command tx timeout
[ 1459.094288][   T53] Bluetooth: hci10: command tx timeout
[ 1461.174260][   T53] Bluetooth: hci10: command tx timeout
[ 1481.907427][T13121] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 1481.917889][T13121] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 1481.926204][T13121] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 1481.935496][T13121] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 1481.943853][T13121] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[ 1481.952202][T13121] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 1482.930419][   T53] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 1482.940393][   T53] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 1482.949356][   T53] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 1482.958209][   T53] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 1482.966599][   T53] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[ 1482.975586][   T53] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 1483.907710][T13121] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 1483.916351][T13121] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 1483.924870][T13121] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 1483.933776][T13121] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 1483.942224][T13121] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[ 1483.950439][T13121] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 1483.974387][T13121] Bluetooth: hci11: command tx timeout
[ 1485.016686][T19849] Bluetooth: hci12: command tx timeout
[ 1485.974485][T28395] Bluetooth: hci13: command tx timeout
[ 1486.054303][T28395] Bluetooth: hci11: command tx timeout
[ 1487.094265][T28395] Bluetooth: hci5: command 0x0406 tx timeout
[ 1487.101095][T28395] Bluetooth: hci12: command tx timeout
[ 1487.107237][T28395] Bluetooth: hci1: command 0x0406 tx timeout
[ 1487.112156][  T930] Bluetooth: hci2: command 0x0406 tx timeout
[ 1488.054545][  T930] Bluetooth: hci13: command tx timeout
[ 1488.134418][  T930] Bluetooth: hci11: command tx timeout
[ 1489.174275][  T930] Bluetooth: hci12: command tx timeout
[ 1490.136541][  T930] Bluetooth: hci13: command tx timeout
[ 1490.139006][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1490.154198][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1490.224368][  T930] Bluetooth: hci11: command tx timeout
[ 1491.254405][  T930] Bluetooth: hci12: command tx timeout
[ 1492.054463][   T30] INFO: task dhcpcd:5502 blocked for more than 143 seconds.
[ 1492.062851][   T30]       Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1492.072995][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1492.082651][   T30] task:dhcpcd          state:D stack:21760 pid:5502  tgid:5502  ppid:5501   flags:0x00000002
[ 1492.094241][   T30] Call Trace:
[ 1492.097987][   T30]  <TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1492.101237][   T30]  __schedule+0x1142/0x5b60
[ 1492.107761][   T30]  ? lock_release+0x4e2/0x6f0
[ 1492.113373][   T30]  ? is_bpf_text_address+0x8a/0x1a0
[ 1492.119221][   T30]  ? trace_lock_acquire+0x14e/0x1f0
[ 1492.125053][   T30]  ? is_bpf_text_address+0x30/0x1a0
[ 1492.131074][   T30]  ? bpf_ksym_find+0x124/0x1c0
[ 1492.136440][   T30]  ? __pfx___schedule+0x10/0x10
[ 1492.141834][   T30]  ? lock_release+0x4e2/0x6f0
[ 1492.147061][   T30]  ? schedule+0x298/0x350
[ 1492.151974][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1492.157913][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1492.165065][   T30]  ? schedule+0x1fd/0x350
[ 1492.169901][   T30]  ? lock_acquire+0x2f/0xb0
[ 1492.174984][   T30]  ? schedule+0x1fd/0x350
[ 1492.179802][   T30]  schedule+0xe7/0x350
[ 1492.184580][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1492.190766][   T30]  __mutex_lock+0x6bd/0xb10
[ 1492.198559][   T30]  ? stack_depot_save_flags+0x28/0x9e0
[ 1492.204727][   T30]  ? devinet_ioctl+0x1c1/0x1f40
[ 1492.210532][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1492.216367][  T930] Bluetooth: hci13: command tx timeout
[ 1492.228914][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1492.234525][   T30]  ? apparmor_capable+0x114/0x1d0
[ 1492.240104][   T30]  ? bpf_lsm_capable+0x9/0x10
[ 1492.245482][   T30]  ? security_capable+0x7e/0x260
[ 1492.250960][   T30]  ? devinet_ioctl+0x1c1/0x1f40
[ 1492.256478][   T30]  devinet_ioctl+0x1c1/0x1f40
[ 1492.261674][   T30]  ? lock_acquire+0x2f/0xb0
[ 1492.267126][   T30]  ? __might_fault+0xe3/0x190
[ 1492.272338][   T30]  ? __pfx_devinet_ioctl+0x10/0x10
[ 1492.281484][   T30]  ? _copy_from_user+0x59/0xd0
[ 1492.286995][   T30]  inet_ioctl+0x3aa/0x3f0
[ 1492.291933][   T30]  ? __pfx_inet_ioctl+0x10/0x10
[ 1492.303109][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1492.308978][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1492.318319][   T30]  ? tomoyo_path_number_perm+0x190/0x5b0
[ 1492.325649][   T30]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1492.332296][   T30]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1492.340864][   T30]  sock_do_ioctl+0x116/0x280
[ 1492.346276][   T30]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 1492.351969][   T30]  ? debug_mutex_init+0x20/0x70
[ 1492.357820][   T30]  ? percpu_counter_add_batch+0xb5/0x1e0
[ 1492.364094][   T30]  sock_ioctl+0x228/0x6c0
[ 1492.369558][   T30]  ? __pfx_sock_ioctl+0x10/0x10
[ 1492.375432][   T30]  ? __sys_socket+0xad/0x260
[ 1492.380548][   T30]  ? __pfx___sys_socket+0x10/0x10
[ 1492.386512][   T30]  ? __pfx_sock_ioctl+0x10/0x10
[ 1492.391918][   T30]  __x64_sys_ioctl+0x190/0x200
[ 1492.397667][   T30]  do_syscall_64+0xcd/0x250
[ 1492.402776][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1492.409601][   T30] RIP: 0033:0x7faba59e3d49
[ 1492.415245][   T30] RSP: 002b:00007fffe17da718 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1492.425059][   T30] RAX: ffffffffffffffda RBX: 00007faba59156c0 RCX: 00007faba59e3d49
[ 1492.433881][   T30] RDX: 00007fffe17ea908 RSI: 0000000000008914 RDI: 0000000000000014
[ 1492.444063][   T30] RBP: 00007fffe17faac8 R08: 00007fffe17ea8c8 R09: 00007fffe17ea878
[ 1492.457644][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1492.467283][   T30] R13: 00007fffe17ea908 R14: 0000000000000028 R15: 0000000000008914
[ 1492.479490][   T30]  </TASK>
[ 1492.482891][   T30] INFO: task kworker/u8:25:8414 blocked for more than 143 seconds.
[ 1492.493079][   T30]       Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1492.541737][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1492.551626][   T30] task:kworker/u8:25   state:D stack:23840 pid:8414  tgid:8414  ppid:2      flags:0x00004000
[ 1492.563238][   T30] Workqueue: netns cleanup_net
[ 1492.568618][   T30] Call Trace:
[ 1492.572427][   T30]  <TASK>
[ 1492.575747][   T30]  __schedule+0x1142/0x5b60
[ 1492.580744][   T30]  ? finish_task_switch.isra.0+0x217/0xcc0
[ 1492.587218][   T30]  ? __switch_to+0x749/0x1190
[ 1492.592411][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1492.597881][   T30]  ? synchronize_rcu_expedited+0x426/0x450
[ 1492.604363][   T30]  ? __pfx___schedule+0x10/0x10
[ 1492.609758][   T30]  ? lock_release+0x4e2/0x6f0
[ 1492.616563][   T30]  ? schedule+0x298/0x350
[ 1492.621557][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1492.627186][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1492.633218][   T30]  ? schedule+0x1fd/0x350
[ 1492.638079][   T30]  ? lock_acquire+0x2f/0xb0
[ 1492.643366][   T30]  ? schedule+0x1fd/0x350
[ 1492.648349][   T30]  schedule+0xe7/0x350
[ 1492.652849][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1492.659346][   T30]  __mutex_lock+0x6bd/0xb10
[ 1492.664684][   T30]  ? unregister_netdevice_many_notify+0x1bab/0x21a0
[ 1492.671967][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1492.677783][   T30]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[ 1492.684657][   T30]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[ 1492.690506][   T30]  ? __pfx___might_resched+0x10/0x10
[ 1492.696757][   T30]  ? unregister_netdevice_many_notify+0x1bab/0x21a0
[ 1492.704219][   T30]  ? rtnl_lock+0x9/0x20
[ 1492.708883][   T30]  unregister_netdevice_many_notify+0x1bab/0x21a0
[ 1492.716056][   T30]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1492.723915][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1492.729265][   T30]  ? lock_release+0x4e2/0x6f0
[ 1492.734554][   T30]  ? kernfs_remove_by_name_ns+0xc4/0x130
[ 1492.740797][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1492.746625][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1492.753242][   T30]  unregister_netdevice_queue+0x307/0x3f0
[ 1492.759640][   T30]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1492.767012][   T30]  _cfg80211_unregister_wdev+0x64b/0x830
[ 1492.773266][   T30]  ieee80211_remove_interfaces+0x34f/0x720
[ 1492.780050][   T30]  ? __pfx_ieee80211_remove_interfaces+0x10/0x10
[ 1492.787150][   T30]  ieee80211_unregister_hw+0x55/0x3a0
[ 1492.793101][   T30]  mac80211_hwsim_del_radio+0x268/0x370
[ 1492.799286][   T30]  ? __pfx_mac80211_hwsim_del_radio+0x10/0x10
[ 1492.806095][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1492.811363][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1492.818015][   T30]  hwsim_exit_net+0x33f/0x6d0
[ 1492.823377][   T30]  ? __pfx_hwsim_exit_net+0x10/0x10
[ 1492.829363][   T30]  ? ip_vs_sync_net_cleanup+0x72/0xb0
[ 1492.835389][   T30]  ? __ip_vs_dev_cleanup_batch+0xb1/0x290
[ 1492.841720][   T30]  ? __pfx_hwsim_exit_net+0x10/0x10
[ 1492.847726][   T30]  ops_exit_list+0xb0/0x180
[ 1492.852719][   T30]  cleanup_net+0x5c6/0xbf0
[ 1492.857683][   T30]  ? __pfx_cleanup_net+0x10/0x10
[ 1492.863147][   T30]  ? lock_acquire+0x2f/0xb0
[ 1492.868251][   T30]  ? process_one_work+0x8bb/0x1b30
[ 1492.873947][   T30]  process_one_work+0x958/0x1b30
[ 1492.879907][   T30]  ? __pfx_cleanup_net+0x10/0x10
[ 1492.885463][   T30]  ? __pfx_process_one_work+0x10/0x10
[ 1492.891424][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1492.896797][   T30]  ? assign_work+0x1a0/0x250
[ 1492.901945][   T30]  worker_thread+0x6c8/0xf00
[ 1492.907185][   T30]  ? __pfx_worker_thread+0x10/0x10
[ 1492.912838][   T30]  kthread+0x3af/0x750
[ 1492.917410][   T30]  ? __pfx_kthread+0x10/0x10
[ 1492.922517][   T30]  ? lock_acquire+0x2f/0xb0
[ 1492.927801][   T30]  ? __pfx_kthread+0x10/0x10
[ 1492.933054][   T30]  ret_from_fork+0x45/0x80
[ 1492.938044][   T30]  ? __pfx_kthread+0x10/0x10
[ 1492.943145][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1492.948740][   T30]  </TASK>
[ 1492.952150][   T30] INFO: task kworker/u8:64:26506 blocked for more than 144 seconds.
[ 1492.961017][   T30]       Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1492.970799][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1492.980404][   T30] task:kworker/u8:64   state:D stack:26816 pid:26506 tgid:26506 ppid:2      flags:0x00004000
[ 1492.992089][   T30] Workqueue: ipv6_addrconf addrconf_dad_work
[ 1492.998791][   T30] Call Trace:
[ 1493.002416][   T30]  <TASK>
[ 1493.005718][   T30]  __schedule+0x1142/0x5b60
[ 1493.010893][   T30]  ? debug_object_activate+0x149/0x4a0
[ 1493.017817][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1493.023125][   T30]  ? __pfx___schedule+0x10/0x10
[ 1493.030212][   T30]  ? lock_release+0x4e2/0x6f0
[ 1493.035826][   T30]  ? schedule+0x298/0x350
[ 1493.040768][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1493.046392][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1493.052425][   T30]  ? schedule+0x1fd/0x350
[ 1493.057273][   T30]  ? lock_acquire+0x2f/0xb0
[ 1493.062464][   T30]  ? schedule+0x1fd/0x350
[ 1493.067387][   T30]  schedule+0xe7/0x350
[ 1493.071942][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1493.078116][   T30]  __mutex_lock+0x6bd/0xb10
[ 1493.083106][   T30]  ? addrconf_dad_work+0x121/0x14e0
[ 1493.088919][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1493.094551][   T30]  ? lock_release+0x4e2/0x6f0
[ 1493.099863][   T30]  ? try_to_wake_up+0x14c/0x1490
[ 1493.105450][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1493.111012][   T30]  ? lock_acquire+0x2f/0xb0
[ 1493.116078][   T30]  ? try_to_wake_up+0xb6/0x1490
[ 1493.121782][   T30]  ? addrconf_dad_work+0x121/0x14e0
[ 1493.127823][   T30]  ? rtnl_lock+0x9/0x20
[ 1493.132489][   T30]  addrconf_dad_work+0x121/0x14e0
[ 1493.138348][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1493.143659][   T30]  ? process_one_work+0x7b5/0x1b30
[ 1493.149427][   T30]  ? __pfx_addrconf_dad_work+0x10/0x10
[ 1493.155516][   T30]  ? process_one_work+0x8bb/0x1b30
[ 1493.161161][   T30]  ? lock_acquire+0x2f/0xb0
[ 1493.166458][   T30]  ? process_one_work+0x8bb/0x1b30
[ 1493.172142][   T30]  process_one_work+0x958/0x1b30
[ 1493.177768][   T30]  ? __pfx_batadv_nc_worker+0x10/0x10
[ 1493.183733][   T30]  ? __pfx_process_one_work+0x10/0x10
[ 1493.189774][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1493.195077][   T30]  ? assign_work+0x1a0/0x250
[ 1493.200144][   T30]  worker_thread+0x6c8/0xf00
[ 1493.205279][   T30]  ? __pfx_worker_thread+0x10/0x10
[ 1493.210946][   T30]  kthread+0x3af/0x750
[ 1493.215501][   T30]  ? __pfx_kthread+0x10/0x10
[ 1493.220589][   T30]  ? lock_acquire+0x2f/0xb0
[ 1493.226022][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1493.231458][   T30]  ? __pfx_kthread+0x10/0x10
[ 1493.236779][   T30]  ret_from_fork+0x45/0x80
[ 1493.241669][   T30]  ? __pfx_kthread+0x10/0x10
[ 1493.246904][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1493.252200][   T30]  </TASK>
[ 1493.255908][   T30] INFO: task syz-executor:619 blocked for more than 144 seconds.
[ 1493.265428][   T30]       Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1493.275347][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1493.286422][   T30] task:syz-executor    state:D stack:24464 pid:619   tgid:619   ppid:1      flags:0x00004006
[ 1493.297971][   T30] Call Trace:
[ 1493.301603][   T30]  <TASK>
[ 1493.304902][   T30]  __schedule+0x1142/0x5b60
[ 1493.309902][   T30]  ? __schedule+0x114a/0x5b60
[ 1493.315354][   T30]  ? lock_release+0x4e2/0x6f0
[ 1493.320532][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1493.326257][   T30]  ? __pfx___schedule+0x10/0x10
[ 1493.331743][   T30]  ? lock_release+0x4e2/0x6f0
[ 1493.337444][   T30]  ? schedule+0x298/0x350
[ 1493.342447][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1493.348073][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1493.354212][   T30]  ? schedule+0x1fd/0x350
[ 1493.359230][   T30]  ? lock_acquire+0x2f/0xb0
[ 1493.364287][   T30]  ? schedule+0x1fd/0x350
[ 1493.369110][   T30]  schedule+0xe7/0x350
[ 1493.373627][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1493.379813][   T30]  __mutex_lock+0x6bd/0xb10
[ 1493.384916][   T30]  ? reg_process_self_managed_hints+0x95/0x1f0
[ 1493.392083][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1493.397709][   T30]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1493.404375][   T30]  ? reg_process_self_managed_hints+0x95/0x1f0
[ 1493.411225][   T30]  reg_process_self_managed_hints+0x95/0x1f0
[ 1493.418002][   T30]  wiphy_register+0x1e17/0x2860
[ 1493.423381][   T30]  ? netdev_run_todo+0x8fc/0x13d0
[ 1493.429016][   T30]  ? __pfx__dev_printk+0x10/0x10
[ 1493.434904][   T30]  ? __pfx_wiphy_register+0x10/0x10
[ 1493.440935][   T30]  ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0
[ 1493.447718][   T30]  ieee80211_register_hw+0x23ff/0x3ff0
[ 1493.453766][   T30]  ? __pfx_ieee80211_register_hw+0x10/0x10
[ 1493.460452][   T30]  ? net_generic+0xea/0x2a0
[ 1493.465499][   T30]  ? lockdep_init_map_type+0x16d/0x7d0
[ 1493.471584][   T30]  ? net_generic+0x30/0x2a0
[ 1493.476627][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1493.481994][   T30]  ? trace_hrtimer_init+0x1a6/0x230
[ 1493.487782][   T30]  ? __hrtimer_init+0x106/0x2c0
[ 1493.493167][   T30]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[ 1493.499860][   T30]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1493.506749][   T30]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1493.513479][   T30]  hwsim_new_radio_nl+0xb42/0x12b0
[ 1493.519209][   T30]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1493.525455][   T30]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1493.533585][   T30]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1493.542235][   T30]  genl_family_rcv_msg_doit+0x202/0x2f0
[ 1493.548816][   T30]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1493.555599][   T30]  ? trace_cap_capable+0x1a2/0x210
[ 1493.561264][   T30]  ? bpf_lsm_capable+0x9/0x10
[ 1493.566510][   T30]  ? security_capable+0x7e/0x260
[ 1493.571992][   T30]  ? ns_capable+0xd7/0x110
[ 1493.577180][   T30]  genl_rcv_msg+0x565/0x800
[ 1493.582193][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1493.587906][   T30]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1493.594053][   T30]  netlink_rcv_skb+0x165/0x410
[ 1493.599368][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1493.605027][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1493.610897][   T30]  ? down_read+0xc9/0x330
[ 1493.615753][   T30]  ? __pfx_down_read+0x10/0x10
[ 1493.621040][   T30]  ? netlink_deliver_tap+0x1ae/0xca0
[ 1493.626999][   T30]  genl_rcv+0x28/0x40
[ 1493.631419][   T30]  netlink_unicast+0x53c/0x7f0
[ 1493.637215][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[ 1493.643198][   T30]  ? __phys_addr_symbol+0x30/0x80
[ 1493.649014][   T30]  ? __check_object_size+0x488/0x710
[ 1493.655308][   T30]  netlink_sendmsg+0x8b8/0xd70
[ 1493.660752][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1493.666685][   T30]  __sys_sendto+0x488/0x4f0
[ 1493.671671][   T30]  ? __pfx___sys_sendto+0x10/0x10
[ 1493.677472][   T30]  ? lock_release+0x4e2/0x6f0
[ 1493.682655][   T30]  ? lock_acquire+0x2f/0xb0
[ 1493.687786][   T30]  ? fd_install+0xba/0x750
[ 1493.692689][   T30]  ? __pfx___sys_socket+0x10/0x10
[ 1493.698289][   T30]  __x64_sys_sendto+0xe0/0x1c0
[ 1493.703687][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1493.710401][   T30]  do_syscall_64+0xcd/0x250
[ 1493.715433][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1493.721928][   T30] RIP: 0033:0x7f7386b8ebbc
[ 1493.726886][   T30] RSP: 002b:00007ffce15b8ca0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 1493.736678][   T30] RAX: ffffffffffffffda RBX: 00007f73878d4620 RCX: 00007f7386b8ebbc
[ 1493.745770][   T30] RDX: 0000000000000024 RSI: 00007f73878d4670 RDI: 0000000000000003
[ 1493.754819][   T30] RBP: 0000000000000000 R08: 00007ffce15b8cf4 R09: 000000000000000c
[ 1493.763622][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 1493.772479][   T30] R13: 0000000000000000 R14: 00007f73878d4670 R15: 0000000000000000
[ 1493.781495][   T30]  </TASK>
[ 1493.784951][   T30] INFO: task syz.5.6522:854 blocked for more than 145 seconds.
[ 1493.793344][   T30]       Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1493.803144][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1493.812789][   T30] task:syz.5.6522      state:D stack:29272 pid:854   tgid:853   ppid:31203  flags:0x00000004
[ 1493.824321][   T30] Call Trace:
[ 1493.827973][   T30]  <TASK>
[ 1493.831244][   T30]  __schedule+0x1142/0x5b60
[ 1493.836929][   T30]  ? do_raw_spin_lock+0x12d/0x2c0
[ 1493.842523][   T30]  ? dl_scaled_delta_exec+0xdd/0x2e0
[ 1493.848701][   T30]  ? update_entity_lag+0x238/0x360
[ 1493.854631][   T30]  ? __pfx___schedule+0x10/0x10
[ 1493.859991][   T30]  ? lock_release+0x4e2/0x6f0
[ 1493.865209][   T30]  ? schedule+0x298/0x350
[ 1493.870015][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1493.875600][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1493.881838][   T30]  ? schedule+0x1fd/0x350
[ 1493.886720][   T30]  ? lock_acquire+0x2f/0xb0
[ 1493.891757][   T30]  ? schedule+0x1fd/0x350
[ 1493.896841][   T30]  schedule+0xe7/0x350
[ 1493.901368][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1493.907463][   T30]  __mutex_lock+0x6bd/0xb10
[ 1493.912448][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1493.917758][   T30]  ? ip_mroute_setsockopt+0x121/0x15c0
[ 1493.923797][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1493.929408][   T30]  ? __schedule+0x114a/0x5b60
[ 1493.934652][   T30]  ? ip_mroute_setsockopt+0x121/0x15c0
[ 1493.941032][   T30]  ? rtnl_lock+0x9/0x20
[ 1493.945722][   T30]  ip_mroute_setsockopt+0x121/0x15c0
[ 1493.951743][   T30]  ? __pfx___schedule+0x10/0x10
[ 1493.957434][   T30]  ? __pfx_ip_mroute_setsockopt+0x10/0x10
[ 1493.963765][   T30]  ? schedule+0x1fd/0x350
[ 1493.968627][   T30]  ? 0xffffffffff600000
[ 1493.973237][   T30]  ? lock_acquire+0x2f/0xb0
[ 1493.980759][   T30]  ? aa_label_sk_perm+0x19d/0x5a0
[ 1493.986791][   T30]  ? __pfx_aa_label_sk_perm+0x10/0x10
[ 1493.992836][   T30]  ? futex_unqueue+0xba/0x140
[ 1493.998219][   T30]  do_ip_setsockopt+0x2e7/0x38c0
[ 1494.003750][   T30]  ? __pfx___futex_wait+0x10/0x10
[ 1494.009670][   T30]  ? try_to_wake_up+0x158/0x1490
[ 1494.015513][   T30]  ? __pfx_do_ip_setsockopt+0x10/0x10
[ 1494.021484][   T30]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1494.027391][   T30]  ? 0xffffffffff600000
[ 1494.031982][   T30]  ? 0xffffffffff600000
[ 1494.036611][   T30]  ip_setsockopt+0x59/0xf0
[ 1494.041858][   T30]  raw_setsockopt+0xb8/0x290
[ 1494.046996][   T30]  ? __pfx_raw_setsockopt+0x10/0x10
[ 1494.052906][   T30]  ? 0xffffffffff600000
[ 1494.057740][   T30]  ? sock_common_setsockopt+0x2e/0xf0
[ 1494.063694][   T30]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1494.070286][   T30]  do_sock_setsockopt+0x222/0x480
[ 1494.075952][   T30]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1494.082568][   T30]  ? __fget_files+0x40/0x3a0
[ 1494.088074][   T30]  ? lock_acquire+0x2f/0xb0
[ 1494.093072][   T30]  ? 0xffffffffff600000
[ 1494.099306][   T30]  ? 0xffffffffff600000
[ 1494.103912][   T30]  __sys_setsockopt+0x1a0/0x230
[ 1494.109583][   T30]  __x64_sys_setsockopt+0xbd/0x160
[ 1494.115304][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1494.121923][   T30]  do_syscall_64+0xcd/0x250
[ 1494.127040][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1494.133574][   T30] RIP: 0033:0x7f395418cd29
[ 1494.138814][   T30] RSP: 002b:00007f3955030038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1494.149041][   T30] RAX: ffffffffffffffda RBX: 00007f39543a5fa0 RCX: 00007f395418cd29
[ 1494.158236][   T30] RDX: 00000000000000cb RSI: 0000000000000000 RDI: 0000000000000003
[ 1494.167149][   T30] RBP: 00007f395420e2a0 R08: 000000000000fd72 R09: 0000000000000000
[ 1494.176010][   T30] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000000
[ 1494.184868][   T30] R13: 0000000000000000 R14: 00007f39543a5fa0 R15: 00007ffd3f4a1018
[ 1494.193863][   T30]  ? 0xffffffffff600000
[ 1494.198606][   T30]  </TASK>
[ 1494.202064][   T30] INFO: task syz.8.6524:856 blocked for more than 145 seconds.
[ 1494.210483][   T30]       Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1494.220280][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1494.229951][   T30] task:syz.8.6524      state:D stack:27320 pid:856   tgid:855   ppid:27403  flags:0x00000004
[ 1494.241327][   T30] Call Trace:
[ 1494.245024][   T30]  <TASK>
[ 1494.248597][   T30]  __schedule+0x1142/0x5b60
[ 1494.253613][   T30]  ? __pfx___schedule+0x10/0x10
[ 1494.259227][   T30]  ? lock_release+0x4e2/0x6f0
[ 1494.264657][   T30]  ? schedule+0x298/0x350
[ 1494.269465][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1494.275075][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1494.281110][   T30]  ? schedule+0x1fd/0x350
[ 1494.285953][   T30]  ? lock_acquire+0x2f/0xb0
[ 1494.291127][   T30]  ? schedule+0x1fd/0x350
[ 1494.296350][   T30]  schedule+0xe7/0x350
[ 1494.300880][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1494.307033][   T30]  __mutex_lock+0x6bd/0xb10
[ 1494.312013][   T30]  ? genl_rcv_msg+0x580/0x800
[ 1494.317245][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1494.322816][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1494.328407][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1494.335075][   T30]  ? __dev_queue_xmit+0x89b/0x43e0
[ 1494.340759][   T30]  ? __radix_tree_lookup+0x21f/0x2c0
[ 1494.346668][   T30]  ? genl_rcv_msg+0x580/0x800
[ 1494.352162][   T30]  genl_rcv_msg+0x580/0x800
[ 1494.357396][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1494.363087][   T30]  ? __pfx___dev_queue_xmit+0x10/0x10
[ 1494.369094][   T30]  netlink_rcv_skb+0x165/0x410
[ 1494.374617][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1494.380188][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1494.386115][   T30]  ? down_read+0xc9/0x330
[ 1494.390913][   T30]  ? __pfx_down_read+0x10/0x10
[ 1494.396457][   T30]  ? netlink_deliver_tap+0x1ae/0xca0
[ 1494.402322][   T30]  genl_rcv+0x28/0x40
[ 1494.406838][   T30]  netlink_unicast+0x53c/0x7f0
[ 1494.412167][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[ 1494.418061][   T30]  ? __phys_addr_symbol+0x30/0x80
[ 1494.423649][   T30]  ? __check_object_size+0x488/0x710
[ 1494.429594][   T30]  netlink_sendmsg+0x8b8/0xd70
[ 1494.434936][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1494.440818][   T30]  __sys_sendto+0x488/0x4f0
[ 1494.445838][   T30]  ? __pfx___sys_sendto+0x10/0x10
[ 1494.451714][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1494.457110][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1494.462627][   T30]  __x64_sys_sendto+0xe0/0x1c0
[ 1494.468124][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[ 1494.474798][   T30]  do_syscall_64+0xcd/0x250
[ 1494.479785][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1494.486347][   T30] RIP: 0033:0x7fdb6c78ebbc
[ 1494.491232][   T30] RSP: 002b:00007fdb6d528ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 1494.500771][   T30] RAX: ffffffffffffffda RBX: 00007fdb6d528fc0 RCX: 00007fdb6c78ebbc
[ 1494.509672][   T30] RDX: 0000000000000024 RSI: 00007fdb6d529010 RDI: 0000000000000006
[ 1494.518624][   T30] RBP: 0000000000000000 R08: 00007fdb6d528f14 R09: 000000000000000c
[ 1494.527458][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006
[ 1494.536301][   T30] R13: 00007fdb6d528f68 R14: 00007fdb6d529010 R15: 0000000000000000
[ 1494.545170][   T30]  </TASK>
[ 1494.548512][   T30] INFO: task syz.9.6527:867 blocked for more than 145 seconds.
[ 1494.557446][   T30]       Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1494.567545][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1494.577159][   T30] task:syz.9.6527      state:D stack:27416 pid:867   tgid:866   ppid:31811  flags:0x00000004
[ 1494.588492][   T30] Call Trace:
[ 1494.592122][   T30]  <TASK>
[ 1494.595401][   T30]  __schedule+0x1142/0x5b60
[ 1494.600608][   T30]  ? __pfx___schedule+0x10/0x10
[ 1494.606091][   T30]  ? lock_release+0x4e2/0x6f0
[ 1494.611323][   T30]  ? schedule+0x298/0x350
[ 1494.616193][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1494.621869][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1494.627943][   T30]  ? schedule+0x1fd/0x350
[ 1494.632750][   T30]  ? lock_acquire+0x2f/0xb0
[ 1494.637786][   T30]  ? schedule+0x1fd/0x350
[ 1494.642590][   T30]  schedule+0xe7/0x350
[ 1494.647178][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1494.653234][   T30]  __mutex_lock+0x6bd/0xb10
[ 1494.658647][   T30]  ? tap_open+0x7a/0x1150
[ 1494.663635][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1494.669427][   T30]  ? lock_release+0x4e2/0x6f0
[ 1494.674661][   T30]  ? chrdev_open+0x10e/0x6a0
[ 1494.679756][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1494.685355][   T30]  ? __pfx_tap_open+0x10/0x10
[ 1494.690571][   T30]  ? tap_open+0x7a/0x1150
[ 1494.695678][   T30]  ? rtnl_lock+0x9/0x20
[ 1494.700805][   T30]  tap_open+0x7a/0x1150
[ 1494.705478][   T30]  ? __pfx_tap_open+0x10/0x10
[ 1494.710743][   T30]  chrdev_open+0x237/0x6a0
[ 1494.715677][   T30]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1494.721831][   T30]  ? __pfx_chrdev_open+0x10/0x10
[ 1494.727358][   T30]  ? file_set_fsnotify_mode+0x163/0x5d0
[ 1494.733500][   T30]  do_dentry_open+0x735/0x1c40
[ 1494.738831][   T30]  ? __pfx_chrdev_open+0x10/0x10
[ 1494.744358][   T30]  ? inode_permission+0xdd/0x5f0
[ 1494.749917][   T30]  vfs_open+0x82/0x3f0
[ 1494.754460][   T30]  ? may_open+0x1f2/0x400
[ 1494.759573][   T30]  path_openat+0x1e88/0x2d80
[ 1494.764790][   T30]  ? __pfx_path_openat+0x10/0x10
[ 1494.770430][   T30]  do_filp_open+0x20c/0x470
[ 1494.775808][   T30]  ? __pfx_do_filp_open+0x10/0x10
[ 1494.781576][   T30]  ? alloc_fd+0x41f/0x760
[ 1494.786518][   T30]  do_sys_openat2+0x17a/0x1e0
[ 1494.791691][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1494.797456][   T30]  __x64_sys_openat+0x175/0x210
[ 1494.802999][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1494.809023][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1494.814427][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1494.819716][   T30]  do_syscall_64+0xcd/0x250
[ 1494.824762][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1494.831305][   T30] RIP: 0033:0x7f0cd798cd29
[ 1494.836222][   T30] RSP: 002b:00007f0cd88af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1494.845577][   T30] RAX: ffffffffffffffda RBX: 00007f0cd7ba5fa0 RCX: 00007f0cd798cd29
[ 1494.854425][   T30] RDX: 0000000000002000 RSI: 0000000020000040 RDI: ffffffffffffff9c
[ 1494.863563][   T30] RBP: 00007f0cd7a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1494.872606][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1494.881631][   T30] R13: 0000000000000000 R14: 00007f0cd7ba5fa0 R15: 00007fff2e2a8388
[ 1494.890498][   T30]  </TASK>
[ 1494.893878][   T30] INFO: lockdep is turned off.
[ 1494.899203][   T30] NMI backtrace for cpu 0
[ 1494.899222][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1494.899260][   T30] Tainted: [U]=USER
[ 1494.899270][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1494.899288][   T30] Call Trace:
[ 1494.899297][   T30]  <TASK>
[ 1494.899315][   T30]  dump_stack_lvl+0x116/0x1f0
[ 1494.899349][   T30]  nmi_cpu_backtrace+0x27b/0x390
[ 1494.899391][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1494.899422][   T30]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[ 1494.899469][   T30]  watchdog+0xf14/0x1240
[ 1494.899504][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1494.899534][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1494.899563][   T30]  ? __kthread_parkme+0x148/0x220
[ 1494.899601][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1494.899632][   T30]  kthread+0x3af/0x750
[ 1494.899674][   T30]  ? __pfx_kthread+0x10/0x10
[ 1494.899719][   T30]  ? __pfx_kthread+0x10/0x10
[ 1494.899763][   T30]  ret_from_fork+0x45/0x80
[ 1494.899792][   T30]  ? __pfx_kthread+0x10/0x10
[ 1494.899837][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1494.899894][   T30]  </TASK>
[ 1494.899906][   T30] Sending NMI from CPU 0 to CPUs 1:
[ 1495.029975][    C1] NMI backtrace for cpu 1
[ 1495.029995][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1495.030031][    C1] Tainted: [U]=USER
[ 1495.030039][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1495.030055][    C1] RIP: 0010:should_failslab+0xa2/0x120
[ 1495.030085][    C1] Code: 03 7e 6c f6 43 09 40 74 45 48 8d 7b 1c c1 ee 0d 48 b8 00 00 00 00 00 fc ff df 48 89 f9 89 f2 48 c1 e9 03 83 e2 01 0f b6 0c 01 <48> 89 f8 83 e0 07 83 c0 03 38 c8 7c 04 84 c9 75 5c 8b 73 1c 48 c7
[ 1495.030111][    C1] RSP: 0018:ffffc90000a184c8 EFLAGS: 00000246
[ 1495.030131][    C1] RAX: dffffc0000000000 RBX: ffff88801b041280 RCX: 0000000000000000
[ 1495.030148][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88801b04129c
[ 1495.030164][    C1] RBP: ffffc90000a18540 R08: 0000000000000003 R09: 0000000000000000
[ 1495.030180][    C1] R10: 0000000000000000 R11: 0000000000003b1c R12: ffff88801b041280
[ 1495.030197][    C1] R13: 0000000000000920 R14: 0000000000000048 R15: 0000000000000003
[ 1495.030212][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[ 1495.030236][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1495.030253][    C1] CR2: 0000560367f74708 CR3: 000000000df80000 CR4: 00000000003526f0
[ 1495.030269][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1495.030284][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1495.030301][    C1] Call Trace:
[ 1495.030309][    C1]  <NMI>
[ 1495.030319][    C1]  ? nmi_cpu_backtrace+0x1d8/0x390
[ 1495.030357][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 1495.030382][    C1]  ? nmi_handle+0x1ac/0x5d0
[ 1495.030411][    C1]  ? should_failslab+0xa2/0x120
[ 1495.030433][    C1]  ? default_do_nmi+0x6a/0x160
[ 1495.030467][    C1]  ? exc_nmi+0x170/0x1e0
[ 1495.030499][    C1]  ? end_repeat_nmi+0xf/0x53
[ 1495.030535][    C1]  ? should_failslab+0xa2/0x120
[ 1495.030566][    C1]  ? should_failslab+0xa2/0x120
[ 1495.030589][    C1]  ? should_failslab+0xa2/0x120
[ 1495.030613][    C1]  </NMI>
[ 1495.030620][    C1]  <IRQ>
[ 1495.030629][    C1]  __kmalloc_noprof+0xce/0x4f0
[ 1495.030667][    C1]  ? get_stack_info+0x30/0xb0
[ 1495.030690][    C1]  ? cfg80211_inform_single_bss_data+0x5b0/0x1e40
[ 1495.030725][    C1]  cfg80211_inform_single_bss_data+0x5b0/0x1e40
[ 1495.030757][    C1]  ? unwind_next_frame+0x38a/0x20c0
[ 1495.030792][    C1]  ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10
[ 1495.030834][    C1]  ? get_stack_info+0x30/0xb0
[ 1495.030858][    C1]  ? stack_access_ok+0xd9/0x200
[ 1495.030889][    C1]  ? cfg80211_inform_bss_data+0x254/0x3e50
[ 1495.030919][    C1]  cfg80211_inform_bss_data+0x254/0x3e50
[ 1495.030953][    C1]  ? common_startup_64+0x13e/0x148
[ 1495.030986][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1495.031024][    C1]  ? __pfx_cfg80211_inform_bss_data+0x10/0x10
[ 1495.031057][    C1]  ? common_startup_64+0x13e/0x148
[ 1495.031091][    C1]  ? stack_trace_save+0x95/0xd0
[ 1495.031124][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[ 1495.031158][    C1]  ? kasan_save_stack+0x42/0x60
[ 1495.031193][    C1]  ? stack_depot_save_flags+0x28/0x9e0
[ 1495.031232][    C1]  ? __kasan_slab_free+0x51/0x70
[ 1495.031269][    C1]  ? kmem_cache_free+0x152/0x4c0
[ 1495.031305][    C1]  ? skb_free_head+0x18a/0x1d0
[ 1495.031333][    C1]  ? kmem_cache_free+0x152/0x4c0
[ 1495.031368][    C1]  ? kfree_skbmem+0x1a4/0x1f0
[ 1495.031404][    C1]  ? consume_skb+0xcc/0x100
[ 1495.031432][    C1]  ? mac80211_hwsim_tx_frame+0x1f3/0x2a0
[ 1495.031462][    C1]  ? mac80211_hwsim_beacon_tx+0x592/0xa10
[ 1495.031491][    C1]  ? __iterate_interfaces+0x2e5/0x640
[ 1495.031518][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0
[ 1495.031557][    C1]  ? mac80211_hwsim_beacon+0x105/0x200
[ 1495.031596][    C1]  ? __hrtimer_run_queues+0x20a/0xae0
[ 1495.031626][    C1]  ? hrtimer_run_softirq+0x17d/0x350
[ 1495.031655][    C1]  ? handle_softirqs+0x213/0x8f0
[ 1495.031682][    C1]  ? __irq_exit_rcu+0x109/0x170
[ 1495.031708][    C1]  ? irq_exit_rcu+0x9/0x30
[ 1495.031734][    C1]  ? sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1495.031774][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1495.031807][    C1]  ? acpi_safe_halt+0x1a/0x20
[ 1495.031837][    C1]  ? acpi_idle_enter+0xc5/0x160
[ 1495.031867][    C1]  ? rcu_is_watching+0x12/0xc0
[ 1495.031902][    C1]  cfg80211_inform_bss_frame_data+0x252/0x8a0
[ 1495.031936][    C1]  ? ieee80211_bss_info_update+0x1cf/0xab0
[ 1495.031978][    C1]  ieee80211_bss_info_update+0x311/0xab0
[ 1495.032018][    C1]  ? __pfx_ieee80211_bss_info_update+0x10/0x10
[ 1495.032058][    C1]  ? lock_release+0x4e2/0x6f0
[ 1495.032083][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1495.032113][    C1]  ? lock_acquire+0x2f/0xb0
[ 1495.032135][    C1]  ? ieee80211_get_channel_khz+0x14d/0x1e0
[ 1495.032180][    C1]  ieee80211_scan_rx+0x474/0xac0
[ 1495.032219][    C1]  ieee80211_rx_list+0x1bac/0x2990
[ 1495.032263][    C1]  ? debug_object_activate+0x2e6/0x4a0
[ 1495.032294][    C1]  ? __pfx_ieee80211_rx_list+0x10/0x10
[ 1495.032336][    C1]  ? __pfx_debug_object_activate+0x10/0x10
[ 1495.032366][    C1]  ? mac80211_hwsim_beacon+0x1a2/0x200
[ 1495.032408][    C1]  ? ieee80211_rx_napi+0xa6/0x400
[ 1495.032448][    C1]  ? lock_acquire+0x2f/0xb0
[ 1495.032471][    C1]  ? ieee80211_rx_napi+0xa6/0x400
[ 1495.032511][    C1]  ieee80211_rx_napi+0xdd/0x400
[ 1495.032557][    C1]  ? __pfx_ieee80211_rx_napi+0x10/0x10
[ 1495.032598][    C1]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1495.032640][    C1]  ieee80211_handle_queued_frames+0xd5/0x130
[ 1495.032679][    C1]  tasklet_action_common+0x251/0x3f0
[ 1495.032711][    C1]  handle_softirqs+0x213/0x8f0
[ 1495.032741][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[ 1495.032771][    C1]  __irq_exit_rcu+0x109/0x170
[ 1495.032797][    C1]  irq_exit_rcu+0x9/0x30
[ 1495.032823][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1495.032862][    C1]  </IRQ>
[ 1495.032870][    C1]  <TASK>
[ 1495.032879][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1495.032911][    C1] RIP: 0010:acpi_safe_halt+0x1a/0x20
[ 1495.032947][    C1] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 65 48 8b 05 b8 ca dd 74 48 8b 00 a8 08 75 0c 66 90 0f 00 2d 28 ee b7 00 fb f4 <fa> c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1495.032972][    C1] RSP: 0018:ffffc900001a7d58 EFLAGS: 00000246
[ 1495.032991][    C1] RAX: 0000000000004000 RBX: 0000000000000001 RCX: ffffffff8b25f279
[ 1495.033007][    C1] RDX: 0000000000000001 RSI: ffff888143e93000 RDI: ffff888143e93064
[ 1495.033023][    C1] RBP: ffff888143e93064 R08: 0000000000000000 R09: ffffed10170e6f7d
[ 1495.033040][    C1] R10: ffff8880b8737beb R11: 0000000000000000 R12: ffff88801ef83000
[ 1495.033056][    C1] R13: ffffffff8ee27660 R14: 0000000000000001 R15: 0000000000000000
[ 1495.033075][    C1]  ? ct_kernel_exit+0x139/0x190
[ 1495.033115][    C1]  acpi_idle_enter+0xc5/0x160
[ 1495.033146][    C1]  cpuidle_enter_state+0xaa/0x4f0
[ 1495.033174][    C1]  ? __pfx_tsc_verify_tsc_adjust+0x10/0x10
[ 1495.033202][    C1]  cpuidle_enter+0x4e/0xa0
[ 1495.033234][    C1]  do_idle+0x310/0x3f0
[ 1495.033274][    C1]  ? __pfx_do_idle+0x10/0x10
[ 1495.033317][    C1]  cpu_startup_entry+0x4f/0x60
[ 1495.033340][    C1]  start_secondary+0x222/0x2b0
[ 1495.033362][    C1]  ? __pfx_start_secondary+0x10/0x10
[ 1495.033388][    C1]  common_startup_64+0x13e/0x148
[ 1495.033427][    C1]  </TASK>
[ 1495.033975][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[ 1495.798110][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Tainted: G     U             6.13.0-syzkaller-05154-g8883957b3c9d #0
[ 1495.810922][   T30] Tainted: [U]=USER
[ 1495.815108][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1495.826175][   T30] Call Trace:
[ 1495.829785][   T30]  <TASK>
[ 1495.833027][   T30]  dump_stack_lvl+0x3d/0x1f0
[ 1495.838093][   T30]  panic+0x71d/0x800
[ 1495.842405][   T30]  ? __pfx_panic+0x10/0x10
[ 1495.847288][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[ 1495.853246][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1495.859842][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[ 1495.865766][   T30]  ? watchdog+0xd7e/0x1240
[ 1495.870641][   T30]  ? watchdog+0xd71/0x1240
[ 1495.875517][   T30]  watchdog+0xd8f/0x1240
[ 1495.880201][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1495.885363][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1495.891094][   T30]  ? __kthread_parkme+0x148/0x220
[ 1495.896644][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1495.901812][   T30]  kthread+0x3af/0x750
[ 1495.906314][   T30]  ? __pfx_kthread+0x10/0x10
[ 1495.911393][   T30]  ? __pfx_kthread+0x10/0x10
[ 1495.916466][   T30]  ret_from_fork+0x45/0x80
[ 1495.921339][   T30]  ? __pfx_kthread+0x10/0x10
[ 1495.926414][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1495.931700][   T30]  </TASK>
[ 1495.935352][   T30] Kernel Offset: disabled
[ 1495.940132][   T30] Rebooting in 86400 seconds..