last executing test programs:

9.04543328s ago: executing program 2 (id=507):
unshare$auto(0x40000080)
socket(0x10, 0x2, 0x7fffffff)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
socket(0x28, 0x1, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="2f212abd"], 0x14}}, 0x4000000)
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f00000000c0)="58fcb282bcbc38bfaef257e019406e8ec445cd4f7f7662ac0f8834baa918d5b3cea133243c4f2b9a39e536b67f5a1a2bfdf589da2b1c980e9ce53883444996d1721d7f3ae627c6c68118e15b5a753fd37910fbc02d898cfc8254c80582fc6184113a38c8937e")
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cgroup.max.depth\x00', 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
read$auto(0x3, 0x0, 0x80)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x40146f2c, 0x0)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
close_range$auto(0x2, 0xa, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x7, 0x7, 0xd, 0x1, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x1, 0x5, 0x2]}, 0x0) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x7, 0x7, 0xd, 0x1, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x1, 0x5, 0x2]}, 0x0)
unshare$auto(0x40000080)
prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0) (async)
prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) (async)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0)
io_uring_setup$auto(0x4bf15e08, 0x0) (async)
io_uring_setup$auto(0x4bf15e08, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) (async)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r3, 0xc0305710, &(0x7f00000000c0)={0x1, 0xfa, 0x9, 0x1, 0x418, "e72171dd9872b555facc1e8f"}) (async)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r3, 0xc0305710, &(0x7f00000000c0)={0x1, 0xfa, 0x9, 0x1, 0x418, "e72171dd9872b555facc1e8f"})
bpf$auto(0x0, &(0x7f0000000480)=@link_update={0xa, @new_map_fd, 0x4007, @old_prog_fd=0x13b}, 0xa3)

7.71593746s ago: executing program 1 (id=514):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0004, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0xca, &(0x7f00000010c0)='\x04>\x00\x1d\xa4\xd2\xc3\xec&9\v\xbc\xdein\xe1G\xf68\x02\x18\x00\x00\xd3b\x01\xbd\x9b@\xb0\x00\x00\x00\x84\xa2\\\x15\xc4>\xa9\x82,\x95\xeeH\xf8}v\xb3\xcb(\xa90Abe\xc3\x8c\xcc\xe7\xb8\x00F\x89#\xb4\xf0F\xa1GH\xb5\x8f\x9dZ~\xea\xa3\x93\xc2\x04\xe1;b\x99\x97}Z\x7f\x0f\x90\xce\x85-e\xb6n\xbc\xc6=\xf8\xce\xe7\x1e]\x85|\xce\xd7L\x9b\xd3lb\xc5\xee\xdb\xcb\xbb\xd8\xd9\xd3\xf8 \xe9e\xe5\x80\x1c7B+]\\!\xcej}H\x03x\x83Z\x98\xb8\t\xde\xd4\xf5\xf32\xccR\xaa\xdd\x16\xab\xd8\x1d\"\xc7\xa5\xe1k\x1d\xd9k\xc6\xb2\xa7\x97\x9a\xf6\xfe\xef\x1a\xbd\xcb\xb8*\x8b9\x00R\xe9)?Em\xb2\xac\xd1\xf6\xff\xc1\xc7\xbdl\xa2+tI\xa3\xa8\xabVe\x87\xa9\xae9\x82\xd2.SCt\xcc\x8c7\x7f\xdc\xc3\xfb\x94\xfc\xdfc+\x04\xfb\xf5$\xecO1@\x99l;\xd3X\xd5\"\xec\x17hR\xc5\x99\x8b\x9f\xf3\xf48%\xfa\xf2\x1d\xc5\x10T\x83p0\xd7]\x83{\x81\xdei\xd2\xfc\xfd=3K\xc3\xfe\x12\x98\x8b\xbe\xd1+\xc4r\x7f\x8fQ\xcc\xa6\xd8>k\xcc\xee\xe0\x9bW\x0e\xc63\x84^\xde`\xd2\xe8\xfc\x02\xef\xa4\xdc\xd0A\xd5`?9D\x1c\x1b\x1b\xd5\xcb\xfb\x03I\xc9\x97\xac#\x0ee\xc8ltL\x88\x17m~aA%\xd3\xaf\xaa6hf\x9b\x83\x02A\xb0\xf6\x14\xb3\x18B\xfd\x9ai\xf8j \a\x1es\xa3U\x98sqq,\xd2A4?l\xa2\x9c\xc9\x9fa\xe8\x99qw\xf3\x18\x12R+(%x\xb6\xf8\xe9\xf2\x0e\xc8\x00\x00\x00\x00', 0x100)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x40, 0x8000000000000000, 0x1)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0)
madvise$auto(0x0, 0x2000000080000001, 0x3)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8})
move_mount$auto(r0, 0x0, r0, 0x0, 0x400091e4)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000)
mmap$auto(0x0, 0x200003, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
write$auto_fuse_conn_congestion_threshold_ops_control(r0, &(0x7f0000000240)="c4f0b493e2bc856eec2b87bd11c356b010fa6265ba6ce3d3faae02b5a450f4ff79f2ca53806ff291d651cb7607c5f3e328c03772ff2f2b46f6c67a6e79afe0fbc8831aa66338bdb86daf83559723e6ad210d5ef60351b8554e6083f6e44b2b717aede98a273474c10672cb9a3a24867e29d8dceb8c16a84c34de03bfb8224dc68f4b51bc212f278bac085b0e8ff3466f46aa818db43990b18dd012a8466777085f283a3de3ca3facc1bf2b8f9dc8d1ad49b6c8f27d26e15fb780e16f2ba800cdaa02921094603a84ee6972657cd195dca1f695902b2f573a42c9e43223239a7f376dd8d7e4baf2", 0xe7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x24b7}, 0x8, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x6)
socket(0x2, 0x6, 0x0)
socket(0x10, 0x2, 0x0)
write$auto(0x3, 0x0, 0x100082)

6.768918877s ago: executing program 2 (id=516):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)={0x1c, r1, 0xb81, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000084}, 0x0)

6.544799375s ago: executing program 2 (id=518):
open$dir(&(0x7f0000000000)='./file0\x00', 0x42, 0x20)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000100)={"fda25684", 0xffff, 0x6, 0x2, 0x9b4, 0x9, "ce25aafc24b9952f997e703f222ce1", '\x00', "0400e6ad", "2ff43123", ["f5404de9641f8bf1bad22a9f", "a1679d340ad98fad2453f86d", "b06f8ca10c66eebcbd6f17c8", "5fe10eedab2c4b353c392a92"]})
setfsuid$auto(0x0)
mkdir$auto(&(0x7f00000003c0)='}[,&*}\x00', 0x6)
ioctl$auto_CEC_TRANSMIT(0xffffffffffffffff, 0xc0386105, 0x0)
llistxattr$auto(&(0x7f0000000040)='}[,&*}\x00', 0x0, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
r2 = socket(0x2, 0x3, 0x100)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x7}, 0x6}, 0x5, 0x20000000)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000180), r2)
write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
write$auto(0x3, 0x0, 0xfffffdef)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0x12, 0x8000000000000000, 0x8000)

6.432055219s ago: executing program 0 (id=519):
open$dir(&(0x7f0000000000)='./file0\x00', 0x42, 0x20)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000100)={"fda25684", 0xffff, 0x6, 0x2, 0x9b4, 0x9, "ce25aafc24b9952f997e703f222ce1", '\x00', "0400e6ad", "2ff43123", ["f5404de9641f8bf1bad22a9f", "a1679d340ad98fad2453f86d", "b06f8ca10c66eebcbd6f17c8", "5fe10eedab2c4b353c392a92"]})
setfsuid$auto(0x0)
mkdir$auto(&(0x7f00000003c0)='}[,&*}\x00', 0x6)
ioctl$auto_CEC_TRANSMIT(0xffffffffffffffff, 0xc0386105, 0x0)
llistxattr$auto(&(0x7f0000000040)='}[,&*}\x00', 0x0, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
r2 = socket(0x2, 0x3, 0x100)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x7}, 0x6}, 0x5, 0x20000000)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000180), r2)
write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
write$auto(0x3, 0x0, 0xfffffdef)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0x12, 0x8000000000000000, 0x8000)

6.262233298s ago: executing program 1 (id=520):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x80000000)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
r0 = socket(0x2b, 0x1, 0x1)
r1 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000001)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000001400c7d2a2e1917949643de4"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r4=>0x0})
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x30, r3, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES={0x8, 0x3, 0x9}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_RX={0x5, 0x19, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x44805}, 0x20004000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'veth1_to_bond\x00', <r5=>0x0})
sendmsg$auto_NETDEV_CMD_DEV_GET(r0, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x24, 0x0, 0x402, 0x70bd28, 0x25dfdbfc, {}, [@NETDEV_A_DEV_IFINDEX={0x8, 0x1, r4}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r5}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000804}, 0x0)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000240), 0x45cc41, 0x0)
r6 = socket(0x2b, 0x1, 0x1)
recvmmsg$auto(r1, &(0x7f0000000580)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x5, 0x80000001}, 0x1}, 0x3, 0x6, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r6)
sendmsg$auto_NFSD_CMD_THREADS_SET(r7, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, r8, 0x20, 0x70bd27, 0x25dfdbfb, {}, [@NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x1}, @NFSD_A_SERVER_GRACETIME={0x8, 0x2, 0x1}, @NFSD_A_SERVER_SCOPE={0x10, 0x4, '/dev/nullb0\x00'}, @NFSD_A_SERVER_SCOPE={0x9, 0x4, '.\\.+\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x804}, 0x800)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x109402, 0x0)
close_range$auto(0x2, 0xa, 0x0)

5.977337396s ago: executing program 2 (id=522):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x3)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x2, 0x8000)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
r0 = socket(0x1d, 0x3, 0x1)
setsockopt$auto(r0, 0x65, 0x1, 0x0, 0x800)
close_range$auto(0x2, 0x8, 0x0)
vmsplice$auto(0x1, 0x0, 0xa, 0x6)
r1 = prctl$auto(0x1, 0x1, 0x4, 0x2, 0x10000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0008, 0x19)
clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x3ff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
flock$auto(r3, 0x6)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0xe1d2b27bdc14aab4)
flock$auto(r4, 0x1)
close_range$auto(0x2, 0x8, 0x0)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1)
r6 = setfsuid$auto(0xee00)
setreuid$auto(r6, 0x0)
sendmsg$auto_NL80211_CMD_CRIT_PROTOCOL_STOP(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="58020000", @ANYRES16=r5, @ANYBLOB="000429bd70ecfabc0b8a1010290008003f00010100009201a68008001600", @ANYRES32=r6, @ANYBLOB="f53743489782d5b9d95cf8359ec430d6375588d26212c02c5bf8c9dacbe7397e691343101bb2183ffe733059aeb4ee5342071c9e020203abbb593ec9fedbbf467d987299c1e031f5f5faf54b59d5d7e63082946d70da34e01e23e59c78550702c53f7ce7407ef54b854ff22c1eb94259462f16edaf99a9618e587e33191597603cf926c9999a6fc51e8f906df1204d3707369fc02d18a34a239e24d0c307e5fd7a14dffeb7f1033d2fc3197ddceb706694a42838626a768c63bc7a06b54be81efabfdbb70c77ab478cda9ed55db3505b3398f4f82ccd75da1c5017c0be5e18a7205829663e68df7fcd104aeab0c4b157d5cb5e212f0ae7ff89b0185b86b2e0d7111871bb0cfe55e1d6386401480ee5c0c84e45173c4a65e0cd499037829a39200b421afda0cbf79b31dd5f2f140b9b0b33e80c759629e0ffdebaefb4e5355a83c5e138cd3891381b903ae62098cd4c7f6ff93e7494b289beba5a5eb76482fd7d83bc76b2a50c96beb803e0a2ca6a5ef3d0ae0d147efe8febedff21ed8be801cf849d7906cc51000095002801cea2a62a1c09ab9d9872571130015ca6e50c809ee3d3fb7fdbc1f117bb7c90afa4fe8625a81dbefe4cd1db50a22f8038cfaa910ef1d01c79baf0de309bd8f11f44b8ee9fd51954fe91ed771b60da9614ed60d1751a8d7943b68134124604beae96ba7c10cd128d3f0dcf2e3a7de574210bd24cd72ad7e49425d4f1c268908796bfeb2df928373d92d106a4c610203cffab00000006009800060000000600480001000000"], 0x258}, 0x1, 0x0, 0x0, 0x804}, 0x20000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
socket(0xa, 0x2, 0x73)

5.717986063s ago: executing program 0 (id=523):
unshare$auto(0x40000080)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000100), 0x105240, 0x0)
prctl$auto(0x23, 0x3, 0x2009, 0x0, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
socket(0xa, 0x6, 0x0)
mmap$auto(0x0, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r1 = open(&(0x7f0000000800)='./file0\x00', 0x22040, 0x154)
fcntl$auto(r1, 0x8000, 0x1)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000080)='./file0\x00', 0x202, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r2, &(0x7f0000000180)=""/250, 0xfa)
connect$auto(0x3, 0x0, 0x55)
r4 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x568003, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
truncate$auto(&(0x7f00000000c0)='./cgroup\x00', 0x100000000000001)
unshare$auto(0x40000080)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(r0, 0x8, 0x1f81e)
epoll_create$auto(0x4)
fcntl$auto(r4, 0x9, 0x100000)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0)
mlock$auto(0x4, 0x0)
mlock$auto(0x7c89, 0x47fff)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sysvipc/shm\x00', 0x2323c0, 0x0)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, 0x0, 0x80, 0x0)
ioctl$auto(r3, 0x50434903, 0x1)
setrlimit$auto(0x1000000007, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000)
move_pages$auto(0x0, 0x2, 0x0, 0x0, 0x0, 0x1)

4.644564402s ago: executing program 1 (id=526):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f0000000080)="f5c94556d7b994ee4c7d6b964e0800ce41d8b86d8574badcc9a0191d85605665e0fa950b248f4667f57ca338d45bd2f88e5dd3dfe6600774e6503521259e0c7c3ddd5099d8b948915c1d3f49efad80b766f2a9")
mmap$auto(0x0, 0x2, 0xdf, 0x9b72, r0, 0x8000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$auto_TIOCSTI2(0xffffffffffffffff, 0x5412, &(0x7f0000000240)="e25a43a65c6cca6c9411c2746b41e9359a2d8bb15d8a3e5581af2300c35dd52dab848a5e99dd3fb47ef1848ca5105bfd0c8db60ef1fef0e9bebc947cd9f6f1ca5ee8ebf42e3312f6cb3e874aa0eb47f59245386744ef1087c9dd1ca2d1f17e3c844c1199b1dbacdfc09f1638f2f27352ee732b3daa6560b50e0a797394f17d0530dd316d54000000000000000000")
r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0)
ioctl$auto_SG_SET_RESERVED_SIZE2(r1, 0x2275, &(0x7f0000000240)="6880ffcf")
write$auto(0x3, 0x0, 0xfdef)
openat$auto_proc_auxv_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/auxv\x00', 0xe01, 0x0)
mmap$auto(0x0, 0x5, 0x20ffb, 0x40800008800801d, r0, 0xfffffffffffffffd)
madvise$auto(0x0, 0x2003f0, 0x15)
getresgid$auto(0x0, &(0x7f0000000a40)=0x2, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/smbd_max_fragmented_recv_size\x00', 0xe0002, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(r2, 0x1, 0x10, &(0x7f0000000040)='\x00\x15\x8d\xca`\xbcgY\xd2w\xf6\xaedN\xfb\xc2_\xf54\xb4z\n*\xaaL\'\xab>q\x9e\xdd`\x84_\r\xc2\x17\xb1\xaf\xd2\f\xfd[Iy\xbb*$\xec\xca\x8b\xde\xdcV@\x04+\x00'/82, 0xba)
mmap$auto(0x0, 0x6, 0x4000000000df, 0x40eb1, 0x401, 0x9)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x0, 0x0)
r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
geteuid()
read$auto(r3, 0x0, 0x7)
write$auto(0x3, 0x0, 0x2)
write$auto(0x3, 0x0, 0xffd8)
syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000001a40), r0)
getresgid$auto(&(0x7f0000000300)=0xfe, &(0x7f0000000180)=0x107dd1, &(0x7f0000000100)=0x40)
sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(r0, &(0x7f0000001b00)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000001a80)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x40850}, 0x90)

4.402367174s ago: executing program 0 (id=528):
unshare$auto(0x40000080)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x800, &(0x7f0000000100)={0x0, 0x24b7}, 0x8, 0x0, 0x4000000000007, 0xa505}, 0x803}, 0x4, 0x6)
r0 = socket(0x2, 0x6, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r0, 0x8914, 0x24)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
connect$auto(0x3, 0x0, 0x55)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/netfilter/nf_conntrack_buckets\x00', 0x101000, 0x0)
write$auto(0x3, 0x0, 0xfdef)
setns(r2, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
truncate$auto(&(0x7f00000000c0)='./cgroup\x00', 0x100000000000001)
unshare$auto(0x40000080)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d63882a712, 0x0)
r3 = openat$auto_ocfs2_control_fops_stack_user(0xffffffffffffff9c, &(0x7f0000000140), 0xca400, 0x0)
pread64$auto(r3, 0x0, 0x7, 0xe502)
sysfs$auto(0x2, 0x10000000000048, 0x0)
fsopen$auto(0x0, 0x1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_ioam6(&(0x7f00000001c0), r2)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000011500), 0x40002, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000001080)='/dev/tty7\x00', 0x0, 0x0)

4.068920057s ago: executing program 3 (id=529):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
ioctl$auto_TUNGETIFF(r0, 0x800454d2, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x9}, 0x3)
r2 = socket(0x11, 0x3, 0x9)
sendmmsg$auto(r2, &(0x7f0000000400)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000440)="661b0c", 0x49}, 0x1, &(0x7f0000000200), 0x5, 0x3}, 0x5}, 0x2, 0x100)
move_pages$auto(r1, 0x1002, 0x0, 0x0, 0x0, 0x2)

4.040963815s ago: executing program 1 (id=530):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
fanotify_init$auto(0x5, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r0, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x0, 0x40004020009, 0x8000000df, 0xeb1, 0x401, 0x2)
sysfs$auto(0x2, 0x24, 0x0)

3.908670631s ago: executing program 2 (id=531):
open$dir(&(0x7f0000000000)='./file0\x00', 0x42, 0x20)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000100)={"fda25684", 0xffff, 0x6, 0x2, 0x9b4, 0x9, "ce25aafc24b9952f997e703f222ce1", '\x00', "0400e6ad", "2ff43123", ["f5404de9641f8bf1bad22a9f", "a1679d340ad98fad2453f86d", "b06f8ca10c66eebcbd6f17c8", "5fe10eedab2c4b353c392a92"]})
setfsuid$auto(0x0)
mkdir$auto(&(0x7f00000003c0)='}[,&*}\x00', 0x6)
ioctl$auto_CEC_TRANSMIT(0xffffffffffffffff, 0xc0386105, &(0x7f0000000080)={0x92e, 0x8, 0x3, 0x4, 0x7, 0x5, "69c7f0bf0149b3edd86ce858871e740c", 0x3, 0x6, 0x4, 0x3, 0x7, 0x9, 0x5})
llistxattr$auto(0x0, 0x0, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
r2 = socket(0x2, 0x3, 0x100)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x7}, 0x6}, 0x5, 0x20000000)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000180), r2)
write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
write$auto(0x3, 0x0, 0xfffffdef)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0x12, 0x8000000000000000, 0x8000)

3.606683871s ago: executing program 3 (id=532):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0)
mmap$auto(0x0, 0xb, 0x6, 0xeb1, r0, 0x8000)
write$auto(0x3, 0x0, 0x3f02)
mmap$auto(0xe6, 0x400008, 0xba2, 0x9b72, 0xffffffff, 0x8000)
pwrite64$auto(r0, &(0x7f0000000200)='\x00', 0x2, 0x6)
madvise$auto(0x0, 0x3, 0x66)
semctl$auto_IPC_INFO(0x7ff, 0x100, 0x3, 0x90d)
madvise$auto(0x0, 0x4, 0x3)
uname$auto(&(0x7f0000000040)={"653f4aee74198340356a9b0cc8dc163e78731b2fd75a76bad391d85529f310803cdbd7f4d17e2d347e4747243534751d3e3ca4a13a865d1ae88c301f3e456aae0e", "49d64fa1d6b6537b0d79e6dda0568326c600d623c703195b19d7451eaea7aa8d3e8ce4fb4de80b41fe3782d16b1197d083ffb9840bf9bec6368bf9b6b6ae2b831d", "cbac75254f9b4440edb657e1c0cceffc72c36213e7bd8c73b2fc1911c1b5e5c9ba167a7d619588c9eba5eccfc398242ab7fbce072045b8f1cd937c6d011ea5669b", "4a60ff5dd460e8095d40ad387482cf54bb8aaf5ec582977a3f62571a1701499ae968cbb7450d6e52942bf3667eae654625991947cedfcb3f506d7528451eeb2c07", "fb1ff0aafc09db6625cdc2b855e8445e31588e6dde582683a794bcca384093d1cf4f1a091a52dbd7064056b4c3d528ee746731eb6841957a3f2ed402166e62b70b", "36214fce02b69b4d0e5c0a7a9819bb2b47b0c8ad1718bb5874fa1808d7f0f3198c7bf33719c5e3d12067cd11f2600c1b21250adcbbc7be39a1648d1ba7d86e7388"})

3.371356306s ago: executing program 0 (id=533):
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/zoneinfo\x00', 0x10b402, 0x0)
pread64$auto(r0, 0x0, 0x8100000041, 0x413e)
mmap$auto(0xffffffffffffffff, 0x20009, 0x4000000000df, 0x13, 0x401, 0x7ffe)
mmap$auto(0xfffffffffffffffd, 0x40, 0x120000000, 0xd7b1, r0, 0x5)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0xf1, 0x2, 0x8000)
r1 = io_uring_setup$auto(0x6, 0x0)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0)
timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6)
exit$auto(0x6)
ioctl$auto_CEC_ADAP_G_CONNECTOR_INFO(r1, 0x8044610a, &(0x7f00000000c0)={0x71b1, @drm={0x6, 0x9}})
mmap$auto(0x2, 0x40000000000000c, 0xfffffffffffffffc, 0x9b7e, 0x2, 0x8cf6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0)
write$auto(r0, 0x0, 0x6)
mmap$auto(0x3, 0x9ad, 0x100000000, 0x20111, 0x2, 0x1)
socket(0x2, 0x5, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x14, 0x0, 0x8)
read$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, 0x0, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
kexec_load$auto(0xff, 0x2, &(0x7f0000000080)={@kbuf=&(0x7f0000000280)="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", 0x2, 0x48000, 0x3000}, 0x4)
mmap$auto(0x0, 0x400008, 0x9, 0x9b72, r3, 0x8000)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4, 0x5, 0xeb1, r2, 0x8004)
mincore$auto(0x1000, 0x4000000, 0x0)
capset$auto(0x0, 0x0)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff)
socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)

3.364448698s ago: executing program 3 (id=534):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
getrandom$auto(&(0x7f0000000000)='\xd6[&,\x00', 0x8, 0x5)
madvise$auto(0x0, 0x3, 0x15)
r0 = socket(0x11, 0x80003, 0x0)
setsockopt$auto(r0, 0x107, 0x5, 0x0, 0xce24)
r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x0, 0x0)
read$auto_tomoyo_operations_securityfs_if(r1, &(0x7f0000000080)=""/4096, 0x1000)
read$auto(r1, &(0x7f0000001200)='\xefI5\x1d\xc4~\xd0>\xd2;\xbcj\xce\x18+\x9blE\x18\xa1>V\n\xa4\x90cgy\x98O\xf4\x7f\xe0\xbf\xbb\x9f\xfc\xfb\x870l0\xcf\xb4\rx\xcb\bpg<ez\x87\xe6\xd9\x8dq5 \xf4J\xe8\xd6I\xaf\x04\xb8\xf1\x8a\xa8(\x1e\xc8\x8a\x05\x9b0\xa4\x06\xf9\x8f\xde\x16!\x9b\xd2\xb1\x81\x97\\\x8a,@\x02.p\xf6\xbe\xeaG1C\xd1~\xee\v\x19\x1c\xdd\n\xdc\x83\xb5\xb1\x8b\xc5U\xee\x92\x9e8.\x05R\x90\xab\x8c\x18.*YnZ\xb1\xe2\xec\xe6\xf2\x8d\x03A~\xa8_uk$\xce\xbe?\xd5\x11\r\xadQ\xdb\xc3w\x04r\x84\x92\x1b\xb4\x81*}\xc6\x1ev+\xb7\xb3X\x034\xcf\xce\x06Y\xef\x1a,\xc9\x88\x1d\xcd\x9b\xba\xf7\xca\x99\xe8\t\xbf_\xf2{\x9f\xb8\xe9\xf9\x05\xc8\xd1\x8e\"\xaa\xc0\x9d$\xfaE/\xf75\xfb\xe6\xbb\xe7\xdc', 0x20000074d)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_UPDATE_OWE_INFO(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r2, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x4}]}, 0x1c}}, 0x10)

2.998666658s ago: executing program 2 (id=535):
mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
pipe2$auto(&(0x7f00000000c0), 0x9) (async)
writev$auto(0xca, &(0x7f0000000080)={&(0x7f00000000c0), 0x2}, 0x2000000000000003) (async)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@ethernet={0x1, @multicast}, 0x6a)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
r0 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) (rerun: 32)
ioctl$auto_LOOP_CTL_ADD(r0, 0x4c80, 0xfffffffffffffffd) (async, rerun: 32)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x2) (async, rerun: 64)
process_madvise$auto(0x3, 0x0, 0x7, 0xc15, 0x8000000000000000) (async)
r1 = socket(0x10, 0x80002, 0x0) (async)
close_range$auto(0x2, 0x8000, 0x0) (async)
r2 = io_uring_setup$auto(0x6, 0x0)
r3 = timerfd_create$auto(0x0, 0x0)
timerfd_settime$auto(r2, 0x3, &(0x7f0000000000)={{0x2802, 0xb}, {0xfe, 0xa2b}}, 0x0) (async)
read$auto(0x3, 0x0, 0x80) (async)
r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x100e42, 0x0)
write$auto_sg_fops_sg(r4, &(0x7f00000001c0)="bf5b1a8c24000000dbcbc7a996eea7f3804ca6c7591afff6578d2f5f520f687f316ba7327b581cd8d58309037c0ae2c7", 0x30)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
read$auto(0x3, 0x0, 0x80) (async)
setsockopt$auto(r1, 0x80000001, 0x2, &(0x7f0000000080)='\xbb\xbb\xbb\xbb\xbb\xbb', 0x39c40) (async)
r5 = socket(0x2, 0x1, 0x0)
setsockopt$auto(r5, 0x6, 0x1f, 0x0, 0x3d) (async)
ioctl$auto_IOCTL_GET_NUM_DEVICES(r3, 0x40046104, &(0x7f00000000c0)=0x7) (async)
setsockopt$auto(0xffffffffffffffff, 0x7, 0x1, &(0x7f0000000000)='\xbb\xbb\xbb\xbb\xbb\xbb', 0x80000000)

2.522995226s ago: executing program 3 (id=536):
openat$auto_rfcomm_sock_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x40040, 0x0)
r0 = openat$auto_lsm_ops_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x183800, 0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_MEDIA_SET(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x88, r2, 0x300, 0x70bd26, 0x25dfdbfc, {}, [@TIPC_NLA_UNSPEC={0x73, 0x0, "0057f59066b62c749b74e5350c342ff4818a687de7aa75d8f13fc692b29ea1518dd642e288110a9d71e02d6b326ba832b46b0e55744f12e62d8f4a6e4d9cff0c982ff727037c6f70b572bcdf4b10010551a934d3d34c36181dd91c7014e2960ed99e3c579a2dd0f13f131680f3f9eb"}]}, 0x88}, 0x1, 0x0, 0x0, 0x10}, 0x4000000) (async)
read$auto_lsm_ops_inode(r0, 0x0, 0x0) (async)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/027/001\x00', 0x2, 0x0)
mmap$auto(0x2, 0x1, 0x963e, 0x14, r3, 0xaa7a)

2.300851053s ago: executing program 3 (id=537):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
write$auto(0xffffffffffffffff, 0x0, 0xc9c8)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon35\x00', 0x18b902, 0x0)
readv$auto(r1, &(0x7f0000000240)={0x0, 0x10}, 0x3)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x1800})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
adjtimex$auto(&(0x7f00000000c0)={0x9, 0x0, 0x867b, 0x4, 0x4, 0x776, 0xffff8000, 0x0, 0x6, 0xefee, 0xb, {0x7, 0x1}, 0xffffffffffffffff, 0x1, 0x2, 0x4, 0x0, 0x5, 0x0, 0x755, 0x10, 0x4, 0x1})
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x1, 0x4000000000df, 0x40eb1, 0xffffffffffffffff, 0x300000000000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
close_range$auto(0x0, r0, 0x40000002)
fanotify_init$auto(0x5, 0x1)
socket(0x26, 0x80805, 0x0)
socket(0x10, 0x2, 0xc)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/uts\x00')
fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/cgroup\x00')
io_uring_setup$auto(0x401, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x41ff, 0xfffffffffffffff0, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0e, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)

1.698662639s ago: executing program 0 (id=538):
r0 = prctl$auto_PR_SET_FPEXC(0xc, 0x3708, 0xffffffffffffffff, 0x100, 0x8)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PSE_SET(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r1, 0x10, 0x70bd28, 0x25dfdbfc, {}, [@ETHTOOL_A_C33_PSE_AVAIL_PW_LIMIT={0x8}, @ETHTOOL_A_PODL_PSE_ADMIN_CONTROL={0x8, 0x3, 0x3}]}, 0x24}}, 0x24000000)
syz_clone3(&(0x7f0000000000)={0x1100c1000, 0x0, 0x0, 0x0, {0x26}, &(0x7f00000003c0)=""/46, 0x2e, 0x0, 0x0}, 0x58)

730.887124ms ago: executing program 0 (id=539):
mmap$auto(0x0, 0x4020009, 0xdd, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sg0\x00', 0x103002, 0x0)
write$auto_sg_fops_sg(r0, &(0x7f0000000140)="01000000000d0000624c492f4aa7a158ad329acb69abe1d4bbe91b3ddc84d02747403bbca33c95be8fb08baf91e29260d0", 0x31)
r1 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r1, 0x0, 0x60, 0x0, &(0x7f00000000c0)=0x44)

448.875851ms ago: executing program 1 (id=540):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x3, 0x6)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
r1 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x603, 0x70bd25, 0x25dfdbfd, {}, [@IOAM6_ATTR_NS_DATA={0x8, 0x2, 0xe6f8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x29, 0x2, 0x0)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x7fffffffffffffff, 0x80000006, 0xfffffffffffffffd, 0x7, 0x0, 0x0, 0x0, 0xfffffffeffffff91, 0xfd3, 0x2, 0x8000000ec, 0xfffffffffffffffd, 0x81, 0x100000000, 0x6, 0xfffffffffffffff7, 0x17fffffff})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
madvise$auto(0x2, 0x6, 0x101)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
socket(0x2, 0x3, 0x6) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x2, 0x3, 0x100) (async)
socket(0x10, 0x2, 0x0) (async)
syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x603, 0x70bd25, 0x25dfdbfd, {}, [@IOAM6_ATTR_NS_DATA={0x8, 0x2, 0xe6f8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x29, 0x2, 0x0) (async)
socket(0x10, 0x2, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x7fffffffffffffff, 0x80000006, 0xfffffffffffffffd, 0x7, 0x0, 0x0, 0x0, 0xfffffffeffffff91, 0xfd3, 0x2, 0x8000000ec, 0xfffffffffffffffd, 0x81, 0x100000000, 0x6, 0xfffffffffffffff7, 0x17fffffff}) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) (async)
madvise$auto(0x2, 0x6, 0x101) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)

3.863192ms ago: executing program 1 (id=541):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/tty/driver/usbserial\x00', 0x8080, 0x0)
lseek$auto(r0, 0x5, 0x0)
r1 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_options\x00', 0x2040, 0x0)
sendfile$auto(r0, r1, &(0x7f0000000040)=0x8, 0x60c)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyu0\x00', 0x2, 0x0)
fstat$auto(0x2, 0x0)
ioctl$auto_TCFLSH2(r2, 0x80045439, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/tty/driver/usbserial\x00', 0x8080, 0x0) (async)
lseek$auto(r0, 0x5, 0x0) (async)
openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_options\x00', 0x2040, 0x0) (async)
sendfile$auto(r0, r1, &(0x7f0000000040)=0x8, 0x60c) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyu0\x00', 0x2, 0x0) (async)
fstat$auto(0x2, 0x0) (async)
ioctl$auto_TCFLSH2(r2, 0x80045439, 0x0) (async)

0s ago: executing program 3 (id=542):
r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x50000, 0x0)
r1 = prctl$auto_PR_SET_ENDIAN(0x14, 0x0, 0xffffffffffffffff, 0x6, 0x3)
ioctl$auto_VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000080)=r1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000280)={0x9, 0xffffff93, 0x0})

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.238' (ED25519) to the list of known hosts.
[   75.110643][ T5822] cgroup: Unknown subsys name 'net'
[   75.251011][ T5822] cgroup: Unknown subsys name 'cpuset'
[   75.259127][ T5822] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   76.620057][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[   76.626549][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[   76.903225][ T5822] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   78.935591][ T5845] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   78.944350][ T5845] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   78.957224][ T5845] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   78.964715][ T5845] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   78.979604][ T5844] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   78.983112][ T5846] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   78.988228][ T5845] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   78.997104][ T5844] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   79.002271][ T5845] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   79.012314][ T5844] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   79.015199][ T5845] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   79.022878][ T5844] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   79.030019][ T5845] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   79.037006][ T5844] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   79.043829][ T5845] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   79.050072][ T5846] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   79.063930][ T5844] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   79.064278][ T5845] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   79.072276][ T5846] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   79.080246][ T5845] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   79.086884][ T5844] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   79.093867][ T5845] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   79.116554][ T5844] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   79.128299][ T5844] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   79.510571][ T5833] chnl_net:caif_netlink_parms(): no params data found
[   79.525123][ T5831] chnl_net:caif_netlink_parms(): no params data found
[   79.615609][ T5834] chnl_net:caif_netlink_parms(): no params data found
[   79.645272][ T5832] chnl_net:caif_netlink_parms(): no params data found
[   79.689066][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.697427][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.704795][ T5831] bridge_slave_0: entered allmulticast mode
[   79.712281][ T5831] bridge_slave_0: entered promiscuous mode
[   79.729026][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.736112][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.743393][ T5833] bridge_slave_0: entered allmulticast mode
[   79.750153][ T5833] bridge_slave_0: entered promiscuous mode
[   79.781079][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.788455][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.795580][ T5831] bridge_slave_1: entered allmulticast mode
[   79.803194][ T5831] bridge_slave_1: entered promiscuous mode
[   79.810547][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.818447][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.825666][ T5833] bridge_slave_1: entered allmulticast mode
[   79.832788][ T5833] bridge_slave_1: entered promiscuous mode
[   79.915551][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.926803][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   79.961263][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.993609][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.000976][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.008555][ T5832] bridge_slave_0: entered allmulticast mode
[   80.015192][ T5832] bridge_slave_0: entered promiscuous mode
[   80.022799][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.030121][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.037356][ T5832] bridge_slave_1: entered allmulticast mode
[   80.043975][ T5832] bridge_slave_1: entered promiscuous mode
[   80.051958][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.072263][ T5833] team0: Port device team_slave_0 added
[   80.106201][ T5833] team0: Port device team_slave_1 added
[   80.112972][ T5834] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.120742][ T5834] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.128125][ T5834] bridge_slave_0: entered allmulticast mode
[   80.134883][ T5834] bridge_slave_0: entered promiscuous mode
[   80.153879][ T5831] team0: Port device team_slave_0 added
[   80.162623][ T5831] team0: Port device team_slave_1 added
[   80.186590][ T5834] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.193835][ T5834] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.201578][ T5834] bridge_slave_1: entered allmulticast mode
[   80.208845][ T5834] bridge_slave_1: entered promiscuous mode
[   80.217589][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.235447][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.242479][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.268599][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   80.291554][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.317551][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.324531][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.354696][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.382609][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.392975][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.419211][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   80.438478][ T5834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.450491][ T5834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.463814][ T5832] team0: Port device team_slave_0 added
[   80.470826][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.477906][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.504343][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.560488][ T5832] team0: Port device team_slave_1 added
[   80.595892][ T5834] team0: Port device team_slave_0 added
[   80.621689][ T5831] hsr_slave_0: entered promiscuous mode
[   80.634768][ T5831] hsr_slave_1: entered promiscuous mode
[   80.644587][ T5833] hsr_slave_0: entered promiscuous mode
[   80.651159][ T5833] hsr_slave_1: entered promiscuous mode
[   80.657822][ T5833] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   80.665579][ T5833] Cannot create hsr debugfs directory
[   80.683084][ T5834] team0: Port device team_slave_1 added
[   80.689674][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.696641][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.722865][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   80.735401][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.742498][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.768693][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.802815][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.809934][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.836025][ T5834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   80.866821][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.874369][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.900438][ T5834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.967469][ T5832] hsr_slave_0: entered promiscuous mode
[   80.973669][ T5832] hsr_slave_1: entered promiscuous mode
[   80.980606][ T5832] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   80.988393][ T5832] Cannot create hsr debugfs directory
[   81.035368][ T5834] hsr_slave_0: entered promiscuous mode
[   81.041574][ T5834] hsr_slave_1: entered promiscuous mode
[   81.048794][ T5834] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   81.056385][ T5834] Cannot create hsr debugfs directory
[   81.177855][ T5839] Bluetooth: hci3: command tx timeout
[   81.177905][ T5845] Bluetooth: hci2: command tx timeout
[   81.183435][   T55] Bluetooth: hci1: command tx timeout
[   81.189016][ T5844] Bluetooth: hci0: command tx timeout
[   81.309015][ T5831] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   81.320897][ T5831] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   81.338981][ T5831] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   81.361181][ T5831] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   81.391057][ T5833] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   81.417463][ T5833] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   81.442310][ T5833] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   81.461728][ T5832] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   81.471212][ T5832] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   81.485223][ T5833] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   81.510497][ T5832] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   81.521672][ T5832] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   81.569191][ T5834] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   81.594664][ T5834] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   81.616285][ T5834] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   81.646368][ T5834] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   81.705470][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.745648][ T5831] 8021q: adding VLAN 0 to HW filter on device team0
[   81.783267][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.790511][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.822770][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.846376][   T71] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.853567][   T71] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.920685][ T5833] 8021q: adding VLAN 0 to HW filter on device team0
[   81.942033][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.953686][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.963817][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.970946][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.024975][ T5832] 8021q: adding VLAN 0 to HW filter on device team0
[   82.035855][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.042998][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.090633][ T5834] 8021q: adding VLAN 0 to HW filter on device team0
[   82.114520][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.121711][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.132584][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.139690][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.165664][   T71] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.172829][   T71] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.203801][   T71] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.210929][   T71] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.370558][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.481944][ T5831] veth0_vlan: entered promiscuous mode
[   82.514623][ T5831] veth1_vlan: entered promiscuous mode
[   82.581648][ T5831] veth0_macvtap: entered promiscuous mode
[   82.602607][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.613885][ T5831] veth1_macvtap: entered promiscuous mode
[   82.626153][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.662551][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.688693][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.711019][ T5831] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.724679][ T5831] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.734275][ T5831] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.743609][ T5831] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.765982][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.825172][ T5833] veth0_vlan: entered promiscuous mode
[   82.836329][ T5832] veth0_vlan: entered promiscuous mode
[   82.854626][ T5833] veth1_vlan: entered promiscuous mode
[   82.891954][ T5832] veth1_vlan: entered promiscuous mode
[   82.945999][ T5834] veth0_vlan: entered promiscuous mode
[   82.965841][ T5832] veth0_macvtap: entered promiscuous mode
[   82.966096][ T3510] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.980346][ T5834] veth1_vlan: entered promiscuous mode
[   83.001317][ T3510] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.015993][ T5832] veth1_macvtap: entered promiscuous mode
[   83.028860][ T5833] veth0_macvtap: entered promiscuous mode
[   83.057717][ T5833] veth1_macvtap: entered promiscuous mode
[   83.067298][ T3510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.069579][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.085997][ T3510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.092624][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.109470][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0
[   83.125416][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.136370][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.150643][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.161948][ T5832] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.171632][ T5832] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.181253][ T5832] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.193942][ T5832] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.213311][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.223908][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.239327][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.250039][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.260615][   T55] Bluetooth: hci1: command tx timeout
[   83.260664][ T5839] Bluetooth: hci3: command tx timeout
[   83.269510][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[   83.277009][ T5839] Bluetooth: hci2: command tx timeout
[   83.279386][   T55] Bluetooth: hci0: command tx timeout
[   83.302956][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.313571][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.324514][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.335177][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.346493][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.364097][ T5831] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   83.390881][ T5833] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.400939][ T5833] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.410033][ T5833] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.419118][ T5833] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.432234][ T5834] veth0_macvtap: entered promiscuous mode
[   83.442332][ T5834] veth1_macvtap: entered promiscuous mode
[   83.475174][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.487497][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.501493][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.512445][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.522836][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.533703][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.545009][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0
[   83.570802][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.583597][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.601398][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.612143][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.614280][ T5898] process 'syz.3.4' launched '/dev/fd/4' with NULL argv: empty string added
[   83.622498][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.641582][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.653155][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.681421][ T5834] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.693806][ T5834] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.704726][ T5834] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.713827][ T5834] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.788447][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.796289][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.830234][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.853855][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.866530][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.872149][ T5900] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   83.881489][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.965104][ T3510] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.984795][ T3510] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.088914][ T3510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.110426][ T3510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.143318][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.171742][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.677993][ T5917] Zero length message leads to an empty skb
[   85.337573][   T55] Bluetooth: hci0: command tx timeout
[   85.337759][ T5845] Bluetooth: hci1: command tx timeout
[   85.349744][   T55] Bluetooth: hci2: command tx timeout
[   85.355661][   T55] Bluetooth: hci3: command tx timeout
[   86.547356][ T5951] netlink: 28 bytes leftover after parsing attributes in process `syz.0.12'.
[   86.665198][ T5951] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   87.251048][ T5951] batman_adv: batadv0: Removing interface: batadv_slave_1
[   87.417218][   T55] Bluetooth: hci3: command tx timeout
[   87.418527][ T5839] Bluetooth: hci1: command tx timeout
[   87.422730][   T55] Bluetooth: hci2: command tx timeout
[   87.428708][ T5845] Bluetooth: hci0: command tx timeout
[   87.674513][ T5956] kexec: Could not allocate control_code_buffer
[   87.819536][ T5968] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   89.312752][ T5978] could not allocate digest TFM handle binfmt_misc
[   91.255712][   T30] audit: type=1800 audit(6036840029.241:2): pid=6021 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.25" name="features" dev="configfs" ino=7136 res=0 errno=0
[   91.998698][  T975] cfg80211: failed to load regulatory.db
[   92.227208][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   96.028700][ T6068] ubi0: attaching mtd0
[   96.035337][ T6068] ubi0: scanning is finished
[   96.040653][ T6068] ubi0 error: ubi_read_volume_table: the layout volume was not found
[   96.085113][ T6067] Invalid ELF header magic: != ELF
[   96.908383][ T6068] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[   99.011119][ T6096] netlink: 28 bytes leftover after parsing attributes in process `syz.1.44'.
[   99.076407][ T6096] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   99.095771][ T6098] netlink: 28 bytes leftover after parsing attributes in process `syz.2.40'.
[  100.558685][ T6096] batman_adv: batadv0: Removing interface: batadv_slave_1
[  101.362242][ T6118] binder: 6117:6118 ioctl 400c620e 9 returned -22
[  102.244781][ T6101] kexec: Could not allocate control_code_buffer
[  102.741126][   T30] audit: type=1326 audit(6036840040.741:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6143 comm="syz.1.50" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6e42b8d169 code=0x0
[  103.890271][ T6163] mmap: syz.0.54 (6163) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  104.161565][ T6176] Invalid ELF header magic: != ELF
[  105.467480][ T6182] netlink: 28 bytes leftover after parsing attributes in process `syz.3.56'.
[  105.542236][ T6182] geneve1: entered allmulticast mode
[  106.559977][ T6224] netlink: 28 bytes leftover after parsing attributes in process `syz.3.64'.
[  106.637884][    T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!!
[  108.231988][ T6264] netlink: 334 bytes leftover after parsing attributes in process `syz.0.74'.
[  109.763515][ T6296] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  110.486690][ T6312] netlink: 'syz.1.86': attribute type 33 has an invalid length.
[  110.507002][ T6312] netlink: 322 bytes leftover after parsing attributes in process `syz.1.86'.
[  111.672462][ T6330] Invalid ELF header magic: != ELF
[  113.444091][ T6355] syz.1.99 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  113.759322][ T6355] netlink: 330 bytes leftover after parsing attributes in process `syz.1.99'.
[  113.790269][ T6355] program syz.1.99 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  114.679597][ T6372] sock: sock_timestamping_bind_phc: sock not bind to device
[  114.687329][ T5845] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  115.629024][ T6390] FAULT_INJECTION: forcing a failure.
[  115.629024][ T6390] name failslab, interval 1, probability 0, space 0, times 1
[  115.718823][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.1.110 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[  115.718860][ T6390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  115.718879][ T6390] Call Trace:
[  115.718888][ T6390]  <TASK>
[  115.718898][ T6390]  dump_stack_lvl+0x16c/0x1f0
[  115.718953][ T6390]  should_fail_ex+0x50a/0x650
[  115.718982][ T6390]  ? fs_reclaim_acquire+0xae/0x150
[  115.719016][ T6390]  should_failslab+0xc2/0x120
[  115.719041][ T6390]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  115.719079][ T6390]  ? getname_flags.part.0+0x4c/0x550
[  115.719112][ T6390]  getname_flags.part.0+0x4c/0x550
[  115.719143][ T6390]  getname+0x8d/0xe0
[  115.719174][ T6390]  do_sys_openat2+0x104/0x1e0
[  115.719199][ T6390]  ? __pfx_do_sys_openat2+0x10/0x10
[  115.719235][ T6390]  __x64_sys_openat+0x175/0x210
[  115.719261][ T6390]  ? __pfx___x64_sys_openat+0x10/0x10
[  115.719298][ T6390]  do_syscall_64+0xcd/0x250
[  115.719336][ T6390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.719370][ T6390] RIP: 0033:0x7f6e42b8d169
[  115.719389][ T6390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.719416][ T6390] RSP: 002b:00007f6e439ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  115.719438][ T6390] RAX: ffffffffffffffda RBX: 00007f6e42da5fa0 RCX: 00007f6e42b8d169
[  115.719454][ T6390] RDX: 0000000000002002 RSI: 0000400000000080 RDI: ffffffffffffff9c
[  115.719469][ T6390] RBP: 00007f6e42c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  115.719483][ T6390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  115.719498][ T6390] R13: 0000000000000000 R14: 00007f6e42da5fa0 R15: 00007ffe6a870f28
[  115.719526][ T6390]  </TASK>
[  118.529217][ T6448] netlink: 44 bytes leftover after parsing attributes in process `syz.1.123'.
[  118.927711][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  119.847161][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  119.983303][ T6492] Invalid ELF header magic: != ELF
[  120.235392][ T6501] ecryptfs_miscdev_write: Invalid packet size [192]
[  120.827529][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  123.207605][ T6537] FAULT_INJECTION: forcing a failure.
[  123.207605][ T6537] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  123.240489][ T6537] CPU: 0 UID: 0 PID: 6537 Comm: syz.1.145 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[  123.240523][ T6537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  123.240540][ T6537] Call Trace:
[  123.240548][ T6537]  <TASK>
[  123.240559][ T6537]  dump_stack_lvl+0x16c/0x1f0
[  123.240609][ T6537]  should_fail_ex+0x50a/0x650
[  123.240641][ T6537]  strncpy_from_user+0x3b/0x2d0
[  123.240687][ T6537]  getname_flags.part.0+0x8f/0x550
[  123.240720][ T6537]  ? rcu_is_watching+0x12/0xc0
[  123.240752][ T6537]  getname_flags+0x93/0xf0
[  123.240791][ T6537]  __x64_sys_symlinkat+0x79/0xc0
[  123.240838][ T6537]  do_syscall_64+0xcd/0x250
[  123.240881][ T6537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.240920][ T6537] RIP: 0033:0x7f6e42b8d169
[  123.240940][ T6537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.240966][ T6537] RSP: 002b:00007f6e439ee038 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
[  123.240992][ T6537] RAX: ffffffffffffffda RBX: 00007f6e42da5fa0 RCX: 00007f6e42b8d169
[  123.241011][ T6537] RDX: 0000400000000040 RSI: ffffffffffffff9c RDI: 0000400000000000
[  123.241029][ T6537] RBP: 00007f6e42c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  123.241045][ T6537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  123.241062][ T6537] R13: 0000000000000000 R14: 00007f6e42da5fa0 R15: 00007ffe6a870f28
[  123.241095][ T6537]  </TASK>
[  124.437627][ T6568] sock: sock_timestamping_bind_phc: sock not bind to device
[  124.497442][ T6568] syz.0.153 uses obsolete (PF_INET,SOCK_PACKET)
[  125.139713][ T6580] netlink: 8 bytes leftover after parsing attributes in process `syz.1.156'.
[  125.614541][   T55] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18
[  125.939266][ T6584] Invalid ELF header magic: != ELF
[  129.416646][ T6641] synth uevent: /bus/memstick: unknown uevent action string
[  131.074617][ T6680] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.849384][ T6704] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input5
[  132.952805][ T6707] 
[  136.179354][ T6776] netlink: 28 bytes leftover after parsing attributes in process `syz.3.198'.
[  138.077271][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  138.083605][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  139.678838][ T6878] netlink: 44 bytes leftover after parsing attributes in process `syz.1.212'.
[  141.556143][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  141.557068][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[  141.964479][ T6932] FAULT_INJECTION: forcing a failure.
[  141.964479][ T6932] name failslab, interval 1, probability 0, space 0, times 0
[  141.987037][ T6932] CPU: 0 UID: 0 PID: 6932 Comm: syz.3.221 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[  141.987071][ T6932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  141.987086][ T6932] Call Trace:
[  141.987093][ T6932]  <TASK>
[  141.987103][ T6932]  dump_stack_lvl+0x16c/0x1f0
[  141.987150][ T6932]  should_fail_ex+0x50a/0x650
[  141.987181][ T6932]  should_failslab+0xc2/0x120
[  141.987208][ T6932]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  141.987251][ T6932]  ? skb_clone+0x190/0x3f0
[  141.987284][ T6932]  skb_clone+0x190/0x3f0
[  141.987313][ T6932]  netlink_deliver_tap+0xabd/0xd30
[  141.987362][ T6932]  netlink_unicast+0x5e1/0x7f0
[  141.987408][ T6932]  ? __pfx_netlink_unicast+0x10/0x10
[  141.987453][ T6932]  ? __phys_addr_symbol+0x30/0x80
[  141.987481][ T6932]  ? __check_object_size+0x488/0x710
[  141.987513][ T6932]  netlink_sendmsg+0x8b8/0xd70
[  141.987569][ T6932]  ? __pfx_netlink_sendmsg+0x10/0x10
[  141.987626][ T6932]  ____sys_sendmsg+0xaaf/0xc90
[  141.987662][ T6932]  ? copy_msghdr_from_user+0x10b/0x160
[  141.987690][ T6932]  ? __pfx_____sys_sendmsg+0x10/0x10
[  141.987741][ T6932]  ___sys_sendmsg+0x135/0x1e0
[  141.987770][ T6932]  ? __pfx____sys_sendmsg+0x10/0x10
[  141.987811][ T6932]  ? __pfx_lock_release+0x10/0x10
[  141.987848][ T6932]  ? trace_lock_acquire+0x14e/0x1f0
[  141.987892][ T6932]  ? __fget_files+0x206/0x3a0
[  141.987940][ T6932]  __sys_sendmsg+0x16e/0x220
[  141.987969][ T6932]  ? __pfx___sys_sendmsg+0x10/0x10
[  141.988019][ T6932]  do_syscall_64+0xcd/0x250
[  141.988063][ T6932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.988101][ T6932] RIP: 0033:0x7f029858d169
[  141.988123][ T6932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.988148][ T6932] RSP: 002b:00007f02993be038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  141.988173][ T6932] RAX: ffffffffffffffda RBX: 00007f02987a5fa0 RCX: 00007f029858d169
[  141.988191][ T6932] RDX: 0000000000008000 RSI: 0000400000007240 RDI: 0000000000000003
[  141.988207][ T6932] RBP: 00007f02993be090 R08: 0000000000000000 R09: 0000000000000000
[  141.988224][ T6932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.988240][ T6932] R13: 0000000000000000 R14: 00007f02987a5fa0 R15: 00007ffd5ffb4888
[  141.988274][ T6932]  </TASK>
[  142.347169][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  143.034968][ T6941] netlink: 'syz.0.224': attribute type 19 has an invalid length.
[  143.057474][ T6941] netlink: 334 bytes leftover after parsing attributes in process `syz.0.224'.
[  143.879826][ T6954] program syz.3.228 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  143.984886][   T30] audit: type=1800 audit(6036840097.976:4): pid=6963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.227" name="dbroot" dev="configfs" ino=13326 res=0 errno=0
[  144.362055][ T6958] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input6
[  145.866126][ T6991] Invalid ELF header magic: != ELF
[  146.054759][ T6983] netlink: 'syz.0.232': attribute type 1 has an invalid length.
[  146.138089][ T6983] netlink: 'syz.0.232': attribute type 1 has an invalid length.
[  146.167435][ T6983] netlink: 'syz.0.232': attribute type 1 has an invalid length.
[  146.201837][ T6983] netlink: 'syz.0.232': attribute type 1 has an invalid length.
[  146.284428][ T6983] netlink: 'syz.0.232': attribute type 1 has an invalid length.
[  146.365974][ T6983] netlink: 'syz.0.232': attribute type 1 has an invalid length.
[  146.431363][ T6983] netlink: 'syz.0.232': attribute type 1 has an invalid length.
[  146.626746][ T6979] Invalid ELF header magic: != ELF
[  146.816641][ T6993] netlink: 28 bytes leftover after parsing attributes in process `syz.3.235'.
[  147.107355][ T7006] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  147.114068][ T7006] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  147.214655][ T7022] vivid-003: =================  START STATUS  =================
[  147.299398][ T7022] vivid-003: Radio HW Seek Mode: Bounded
[  147.305306][ T7022] vivid-003: Radio Programmable HW Seek: false
[  147.368106][ T7022] vivid-003: RDS Rx I/O Mode: Block I/O
[  147.373837][ T7022] vivid-003: Generate RBDS Instead of RDS: false
[  147.447041][ T7022] vivid-003: RDS Reception: true
[  147.477044][ T7022] vivid-003: RDS Program Type: 0 inactive
[  147.482887][ T7022] vivid-003: RDS PS Name:  inactive
[  147.651573][ T7022] vivid-003: RDS Radio Text:  inactive
[  147.845932][ T7022] vivid-003: RDS Traffic Announcement: false inactive
[  148.037120][ T7022] vivid-003: RDS Traffic Program: false inactive
[  148.236022][ T7022] vivid-003: RDS Music: false inactive
[  148.241757][ T7022] vivid-003: ==================  END STATUS  ==================
[  149.817477][ T6620] [drm:drm_crtc_add_crc_entry] *ERROR* Overflow of CRC buffer, userspace reads too slow.
[  152.768661][   T30] audit: type=1800 audit(6036840106.766:5): pid=7096 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.257" name="dbroot" dev="configfs" ino=13555 res=0 errno=0
[  152.893579][ T7102] netlink: 28 bytes leftover after parsing attributes in process `syz.1.260'.
[  154.066367][ T7105] kexec: Could not allocate control_code_buffer
[  155.314401][ T7142] Invalid ELF header magic: != ELF
[  155.408317][ T7149] netlink: 252 bytes leftover after parsing attributes in process `syz.0.269'.
[  155.468342][ T7149] unsupported nla_type 40065
[  155.515708][ T7149] netlink: 252 bytes leftover after parsing attributes in process `syz.0.269'.
[  156.063877][ T7142] =======================================================
[  156.063877][ T7142] WARNING: The mand mount option has been deprecated and
[  156.063877][ T7142]          and is ignored by this kernel. Remove the mand
[  156.063877][ T7142]          option from the mount to silence this warning.
[  156.063877][ T7142] =======================================================
[  156.098888][    C0] vkms_vblank_simulate: vblank timer overrun
[  156.144735][ T7142] cifs: Unknown parameter '#�ʑ���C�	ˀH�/R{�<'
[  158.687514][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  158.695828][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  160.504330][ T7250] netlink: 25 bytes leftover after parsing attributes in process `syz.2.295'.
[  160.632019][ T7252] netlink: 8 bytes leftover after parsing attributes in process `syz.1.296'.
[  161.215216][ T7277] tipc: Started in network mode
[  161.221100][ T7277] tipc: Node identity ee00, cluster identity 4711
[  161.232375][ T7277] tipc: Node number set to 60928
[  162.574616][ T7299] synth uevent: /devices/virtual/misc/dlm_plock: unknown uevent action string
[  162.625280][ T7290] lo: entered allmulticast mode
[  162.647703][ T7299] misc dlm_plock: uevent: failed to send synthetic uevent: -22
[  162.969958][ T7284] lo: left allmulticast mode
[  165.525609][ T7351] netlink: 8 bytes leftover after parsing attributes in process `syz.0.315'.
[  165.918435][ T7375] netlink: 28 bytes leftover after parsing attributes in process `syz.0.320'.
[  166.088835][    C1] vcan0: j1939_xtp_rx_dat: no tx connection found
[  166.169389][ T7379] FAULT_INJECTION: forcing a failure.
[  166.169389][ T7379] name failslab, interval 1, probability 0, space 0, times 0
[  166.186493][ T7379] CPU: 0 UID: 0 PID: 7379 Comm: syz.1.321 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[  166.186540][ T7379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  166.186556][ T7379] Call Trace:
[  166.186564][ T7379]  <TASK>
[  166.186574][ T7379]  dump_stack_lvl+0x16c/0x1f0
[  166.186625][ T7379]  should_fail_ex+0x50a/0x650
[  166.186670][ T7379]  ? fs_reclaim_acquire+0xae/0x150
[  166.186713][ T7379]  ? __register_sysctl_table+0xeaf/0x1910
[  166.186761][ T7379]  should_failslab+0xc2/0x120
[  166.186791][ T7379]  __kmalloc_noprof+0xcb/0x510
[  166.186855][ T7379]  __register_sysctl_table+0xeaf/0x1910
[  166.186907][ T7379]  ? __pfx___register_sysctl_table+0x10/0x10
[  166.186956][ T7379]  ? is_module_address+0x2a/0x50
[  166.186996][ T7379]  ? register_net_sysctl_sz+0x228/0x3e0
[  166.187045][ T7379]  __devinet_sysctl_register+0x1b5/0x360
[  166.187095][ T7379]  ? __pfx___devinet_sysctl_register+0x10/0x10
[  166.187137][ T7379]  ? trace_kmalloc+0x2d/0xd0
[  166.187169][ T7379]  ? devinet_init_net+0xeb/0x900
[  166.187212][ T7379]  ? __asan_memcpy+0x3c/0x60
[  166.187250][ T7379]  ? __pfx_devinet_init_net+0x10/0x10
[  166.187293][ T7379]  devinet_init_net+0x315/0x900
[  166.187337][ T7379]  ? __pfx_devinet_init_net+0x10/0x10
[  166.187386][ T7379]  ops_init+0x1df/0x5f0
[  166.187420][ T7379]  setup_net+0x21f/0x860
[  166.187451][ T7379]  ? __pfx_setup_net+0x10/0x10
[  166.187479][ T7379]  ? down_read_killable+0xcc/0x380
[  166.187506][ T7379]  ? __pfx_down_read_killable+0x10/0x10
[  166.187532][ T7379]  ? __raw_spin_lock_init+0x3a/0x110
[  166.187561][ T7379]  ? debug_mutex_init+0x37/0x70
[  166.187595][ T7379]  copy_net_ns+0x2a6/0x5f0
[  166.187631][ T7379]  create_new_namespaces+0x3ea/0xad0
[  166.187685][ T7379]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  166.187735][ T7379]  ksys_unshare+0x45d/0xa40
[  166.187765][ T7379]  ? __pfx_ksys_unshare+0x10/0x10
[  166.187792][ T7379]  ? xfd_validate_state+0x5d/0x180
[  166.187843][ T7379]  __x64_sys_unshare+0x31/0x40
[  166.187872][ T7379]  do_syscall_64+0xcd/0x250
[  166.187916][ T7379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.187955][ T7379] RIP: 0033:0x7f6e42b8d169
[  166.187977][ T7379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.188003][ T7379] RSP: 002b:00007f6e439ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  166.188029][ T7379] RAX: ffffffffffffffda RBX: 00007f6e42da5fa0 RCX: 00007f6e42b8d169
[  166.188047][ T7379] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  166.188064][ T7379] RBP: 00007f6e42c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  166.188081][ T7379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  166.188097][ T7379] R13: 0000000000000000 R14: 00007f6e42da5fa0 R15: 00007ffe6a870f28
[  166.188131][ T7379]  </TASK>
[  166.485000][ T7379] sysctl could not get directory: /net/ipv4 -12
[  166.845546][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805de19800: rx timeout, send abort
[  167.146564][ T7375] kexec: Could not allocate control_code_buffer
[  167.254497][   T30] audit: type=1800 audit(4294967304.940:6): pid=7404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.324" name="dummy_udc" dev="gadgetfs" ino=7267 res=0 errno=0
[  167.305636][    C0] vkms_vblank_simulate: vblank timer overrun
[  167.355308][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805de19800: abort rx timeout. Force session deactivation
[  167.482985][ T7409] random: crng reseeded on system resumption
[  168.869091][ T7455] scsi_strcpy_devinfo: vendor string '��/&c��~n]	�|
[  168.869091][ T7455] M�' is too long
[  168.914446][ T7455] scsi_strcpy_devinfo: model string '�Dd5��K�2b�
[  168.914446][ T7455] ���W����� ��' is too long
[  170.194800][ T7483] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  170.327811][ T7483] ima: policy update failed
[  170.343482][   T30] audit: type=1802 audit(4294967308.030:7): pid=7483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="" res=0 errno=0
[  171.063911][ T7509] bond0: option all_slaves_active: invalid value (7)
[  171.385436][ T7514] netlink: 'syz.2.351': attribute type 2 has an invalid length.
[  171.402391][ T7514] netlink: 12 bytes leftover after parsing attributes in process `syz.2.351'.
[  171.584304][ T7521] usb usb15: usbfs: process 7521 (syz.0.353) did not claim interface 1 before use
[  172.040062][ T7528] netlink: 4 bytes leftover after parsing attributes in process `syz.1.356'.
[  172.067665][ T7528] netlink: 354 bytes leftover after parsing attributes in process `syz.1.356'.
[  172.640878][ T7542] snd_aloop snd_aloop.0: control 1:6:6:���_�he�R��:0 is already present
[  172.673982][ T7542] netlink: 4 bytes leftover after parsing attributes in process `syz.2.360'.
[  175.578110][ T7588] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[7588]
[  176.197026][ T7598] netlink: 342 bytes leftover after parsing attributes in process `syz.3.375'.
[  176.870809][ T7625] netlink: 28 bytes leftover after parsing attributes in process `syz.3.381'.
[  176.992055][ T7625] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  177.346084][ T7625] batman_adv: batadv0: Removing interface: batadv_slave_1
[  178.072806][ T7626] kexec: Could not allocate control_code_buffer
[  181.856827][ T7700] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  183.091868][ T7735] netlink: zone id is out of range
[  183.107091][ T7735] netlink: zone id is out of range
[  183.127055][ T7735] netlink: zone id is out of range
[  183.133547][ T7735] netlink: zone id is out of range
[  183.156969][ T7735] netlink: zone id is out of range
[  183.162144][ T7735] netlink: zone id is out of range
[  183.163404][ T7736] openvswitch: netlink: IPv6 tunnel dst address is zero
[  183.216639][ T7735] netlink: zone id is out of range
[  183.250580][ T7735] netlink: zone id is out of range
[  183.951881][ T7747] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[7747]
[  184.776452][ T7763] Invalid ELF header magic: != ELF
[  185.105624][   T55] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18
[  185.245692][   T30] audit: type=1800 audit(4294967330.928:8): pid=7774 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.409" name="dbroot" dev="configfs" ino=16653 res=0 errno=0
[  185.308215][ T7774] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input9
[  185.333718][   T30] audit: type=1804 audit(4294967330.988:9): pid=7774 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.409" name="/newroot/sys/kernel/config/target/dbroot" dev="configfs" ino=16653 res=1 errno=0
[  186.486970][ T7764] sg_write: process 403 (syz.3.406) changed security contexts after opening file descriptor, this is not allowed.
[  187.122298][ T7801] netlink: 28 bytes leftover after parsing attributes in process `syz.3.415'.
[  187.225820][ T7805] netlink: 28 bytes leftover after parsing attributes in process `syz.2.417'.
[  187.256544][ T7805] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  187.863182][ T7805] batman_adv: batadv0: Removing interface: batadv_slave_1
[  188.363364][ T7816] netlink: 252 bytes leftover after parsing attributes in process `syz.0.418'.
[  188.459824][ T7801] kexec: Could not allocate control_code_buffer
[  189.152938][ T7848] netlink: 28 bytes leftover after parsing attributes in process `syz.1.423'.
[  189.293022][ T7853] net_ratelimit: 23 callbacks suppressed
[  189.293042][ T7853] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  190.756100][ T7883] netlink: 28 bytes leftover after parsing attributes in process `syz.0.431'.
[  192.174429][ T7883] kexec: Could not allocate control_code_buffer
[  192.421595][ T7924] netlink: 252 bytes leftover after parsing attributes in process `syz.3.442'.
[  193.288231][ T7949] FAULT_INJECTION: forcing a failure.
[  193.288231][ T7949] name failslab, interval 1, probability 0, space 0, times 0
[  193.355923][ T7952] netlink: 28 bytes leftover after parsing attributes in process `syz.1.449'.
[  193.377064][ T7949] CPU: 0 UID: 0 PID: 7949 Comm: syz.3.448 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[  193.377101][ T7949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  193.377122][ T7949] Call Trace:
[  193.377130][ T7949]  <TASK>
[  193.377141][ T7949]  dump_stack_lvl+0x16c/0x1f0
[  193.377192][ T7949]  should_fail_ex+0x50a/0x650
[  193.377221][ T7949]  ? fs_reclaim_acquire+0xae/0x150
[  193.377263][ T7949]  ? trace_pid_list_alloc+0x27c/0x3f0
[  193.377302][ T7949]  should_failslab+0xc2/0x120
[  193.377332][ T7949]  __kmalloc_cache_noprof+0x68/0x410
[  193.377384][ T7949]  trace_pid_list_alloc+0x27c/0x3f0
[  193.377428][ T7949]  trace_pid_write+0x10f/0x460
[  193.377482][ T7949]  ? __pfx_trace_pid_write+0x10/0x10
[  193.377530][ T7949]  ? __pfx___mutex_lock+0x10/0x10
[  193.377599][ T7949]  event_pid_write.isra.0+0x3b3/0x7a0
[  193.377645][ T7949]  ? __pfx_event_pid_write.isra.0+0x10/0x10
[  193.377700][ T7949]  ? __pfx_ftrace_event_pid_write+0x10/0x10
[  193.377752][ T7949]  vfs_write+0x24c/0x1150
[  193.377818][ T7949]  ? __fget_files+0x1fc/0x3a0
[  193.377882][ T7949]  ? __pfx___mutex_lock+0x10/0x10
[  193.377939][ T7949]  ? __pfx_vfs_write+0x10/0x10
[  193.377995][ T7949]  ? __fget_files+0x206/0x3a0
[  193.378055][ T7949]  ksys_write+0x12b/0x250
[  193.378100][ T7949]  ? __pfx_ksys_write+0x10/0x10
[  193.378158][ T7949]  do_syscall_64+0xcd/0x250
[  193.378210][ T7949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.378255][ T7949] RIP: 0033:0x7f029858d169
[  193.378281][ T7949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.378311][ T7949] RSP: 002b:00007f02993be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  193.378341][ T7949] RAX: ffffffffffffffda RBX: 00007f02987a5fa0 RCX: 00007f029858d169
[  193.378361][ T7949] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  193.378380][ T7949] RBP: 00007f029860e2a0 R08: 0000000000000000 R09: 0000000000000000
[  193.378400][ T7949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  193.378418][ T7949] R13: 0000000000000000 R14: 00007f02987a5fa0 R15: 00007ffd5ffb4888
[  193.378461][ T7949]  </TASK>
[  194.047361][ T7970] FAULT_INJECTION: forcing a failure.
[  194.047361][ T7970] name failslab, interval 1, probability 0, space 0, times 0
[  194.071952][ T7970] CPU: 1 UID: 0 PID: 7970 Comm: syz.2.452 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[  194.071989][ T7970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  194.072007][ T7970] Call Trace:
[  194.072015][ T7970]  <TASK>
[  194.072040][ T7970]  dump_stack_lvl+0x16c/0x1f0
[  194.072119][ T7970]  should_fail_ex+0x50a/0x650
[  194.072146][ T7970]  ? fs_reclaim_acquire+0xae/0x150
[  194.072185][ T7970]  ? __pfx_stats_fop_open+0x10/0x10
[  194.072219][ T7970]  should_failslab+0xc2/0x120
[  194.072247][ T7970]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  194.072289][ T7970]  ? trace_kmalloc+0x2d/0xd0
[  194.072319][ T7970]  ? seq_open+0x55/0x170
[  194.072352][ T7970]  ? __pfx_stats_fop_open+0x10/0x10
[  194.072386][ T7970]  seq_open+0x55/0x170
[  194.072416][ T7970]  __seq_open_private+0x3e/0xd0
[  194.072451][ T7970]  sc_common_open+0x6b/0x200
[  194.072487][ T7970]  full_proxy_open_regular+0x1b6/0x360
[  194.072532][ T7970]  do_dentry_open+0x735/0x1c40
[  194.072573][ T7970]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  194.072615][ T7970]  ? inode_permission+0xdd/0x5f0
[  194.072650][ T7970]  vfs_open+0x82/0x3f0
[  194.072676][ T7970]  ? may_open+0x1f2/0x400
[  194.072711][ T7970]  path_openat+0x1e88/0x2d80
[  194.072765][ T7970]  ? __pfx_path_openat+0x10/0x10
[  194.072812][ T7970]  ? __pfx___lock_acquire+0x10/0x10
[  194.072850][ T7970]  ? lock_acquire.part.0+0x11b/0x380
[  194.072888][ T7970]  ? find_held_lock+0x2d/0x110
[  194.072922][ T7970]  do_filp_open+0x20c/0x470
[  194.072964][ T7970]  ? __pfx_do_filp_open+0x10/0x10
[  194.073002][ T7970]  ? find_held_lock+0x2d/0x110
[  194.073052][ T7970]  ? alloc_fd+0x41f/0x760
[  194.073102][ T7970]  do_sys_openat2+0x17a/0x1e0
[  194.073131][ T7970]  ? __pfx_do_sys_openat2+0x10/0x10
[  194.073164][ T7970]  ? __pfx___might_resched+0x10/0x10
[  194.073214][ T7970]  __x64_sys_openat+0x175/0x210
[  194.073245][ T7970]  ? __pfx___x64_sys_openat+0x10/0x10
[  194.073289][ T7970]  do_syscall_64+0xcd/0x250
[  194.073335][ T7970]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.073374][ T7970] RIP: 0033:0x7fbce658d169
[  194.073395][ T7970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.073421][ T7970] RSP: 002b:00007fbce7432038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  194.073447][ T7970] RAX: ffffffffffffffda RBX: 00007fbce67a6160 RCX: 00007fbce658d169
[  194.073464][ T7970] RDX: 0000000000181000 RSI: 0000400000000000 RDI: ffffffffffffff9c
[  194.073482][ T7970] RBP: 00007fbce660e2a0 R08: 0000000000000000 R09: 0000000000000000
[  194.073499][ T7970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  194.073515][ T7970] R13: 0000000000000000 R14: 00007fbce67a6160 R15: 00007ffc5d08baf8
[  194.073548][ T7970]  </TASK>
[  195.647218][   T30] audit: type=1800 audit(4294967341.318:10): pid=7995 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.458" name="bus" dev="tmpfs" ino=596 res=0 errno=0
[  195.696654][ T7952] kexec: Could not allocate control_code_buffer
[  197.311746][ T8030] netlink: 8 bytes leftover after parsing attributes in process `syz.3.465'.
[  197.677477][ T8036] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[8036]
[  197.983572][ T8043] netlink: 28 bytes leftover after parsing attributes in process `syz.2.468'.
[  198.878539][ T8063] netlink: 252 bytes leftover after parsing attributes in process `syz.0.473'.
[  199.061818][ T8043] kexec: Could not allocate control_code_buffer
[  199.401472][ T8074] netlink: 28 bytes leftover after parsing attributes in process `syz.2.478'.
[  199.506167][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  199.513024][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  200.083942][ T8101] netlink: 28 bytes leftover after parsing attributes in process `syz.3.485'.
[  201.577006][ T5846] Bluetooth: hci1: command 0x0406 tx timeout
[  201.583179][ T5846] Bluetooth: hci3: command 0x0406 tx timeout
[  201.591125][ T5846] Bluetooth: hci2: command 0x0406 tx timeout
[  201.592690][ T5144] Bluetooth: hci0: command 0x0406 tx timeout
[  202.047298][ T8101] kexec: Could not allocate control_code_buffer
[  202.464140][ T8137] netlink: 452 bytes leftover after parsing attributes in process `syz.2.492'.
[  202.477147][ T8137] netlink: 452 bytes leftover after parsing attributes in process `syz.2.492'.
[  202.840201][ T8147] Invalid ELF header magic: != ELF
[  205.189413][ T8184] FAULT_INJECTION: forcing a failure.
[  205.189413][ T8184] name failslab, interval 1, probability 0, space 0, times 0
[  205.210422][ T8184] CPU: 1 UID: 0 PID: 8184 Comm: syz.3.503 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[  205.210456][ T8184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  205.210471][ T8184] Call Trace:
[  205.210480][ T8184]  <TASK>
[  205.210490][ T8184]  dump_stack_lvl+0x16c/0x1f0
[  205.210538][ T8184]  should_fail_ex+0x50a/0x650
[  205.210565][ T8184]  ? fs_reclaim_acquire+0xae/0x150
[  205.210605][ T8184]  should_failslab+0xc2/0x120
[  205.210633][ T8184]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  205.210676][ T8184]  ? getname_flags.part.0+0x4c/0x550
[  205.210714][ T8184]  getname_flags.part.0+0x4c/0x550
[  205.210751][ T8184]  getname+0x8d/0xe0
[  205.210794][ T8184]  do_sys_openat2+0x104/0x1e0
[  205.210825][ T8184]  ? __pfx_do_sys_openat2+0x10/0x10
[  205.210868][ T8184]  __x64_sys_openat+0x175/0x210
[  205.210898][ T8184]  ? __pfx___x64_sys_openat+0x10/0x10
[  205.210943][ T8184]  do_syscall_64+0xcd/0x250
[  205.210988][ T8184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.211027][ T8184] RIP: 0033:0x7f029858d169
[  205.211048][ T8184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.211075][ T8184] RSP: 002b:00007f02993be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  205.211102][ T8184] RAX: ffffffffffffffda RBX: 00007f02987a5fa0 RCX: 00007f029858d169
[  205.211120][ T8184] RDX: 0000000000000080 RSI: 0000400000000100 RDI: ffffffffffffff9c
[  205.211137][ T8184] RBP: 00007f029860e2a0 R08: 0000000000000000 R09: 0000000000000000
[  205.211154][ T8184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  205.211171][ T8184] R13: 0000000000000000 R14: 00007f02987a5fa0 R15: 00007ffd5ffb4888
[  205.211203][ T8184]  </TASK>
[  205.337171][ T5839] Bluetooth: hci2: SCO packet too small
[  207.128754][ T5839] Bluetooth: hci2: Malformed LE Event: 0x1d
[  207.318017][ T8228] delete_channel: no stack
[  208.793281][ T8265] usb usb8: usbfs: interface 0 claimed by hub while 'syz.3.521' sets config #5
[  209.790292][ T8273] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  209.798614][ T8273] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  209.851605][ T8273] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  209.927204][ T8273] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  209.966104][ T8273] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  210.001134][ T8273] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  210.054564][ T8273] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  210.092645][ T8273] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  211.578521][ T5839] Bluetooth: hci1: command 0x0406 tx timeout
[  211.896982][ T5839] Bluetooth: hci2: command 0x0406 tx timeout
[  211.977251][ T5839] Bluetooth: hci0: command 0x0406 tx timeout
[  212.029915][ T8333] cgroup: fork rejected by pids controller in /syz2
[  212.066987][ T5839] Bluetooth: hci3: command 0x0406 tx timeout
[  213.657066][ T5839] Bluetooth: hci1: command 0x0406 tx timeout
[  213.977300][ T5839] Bluetooth: hci2: command 0x0406 tx timeout
[  214.067483][ T5839] Bluetooth: hci0: command 0x0406 tx timeout
[  214.138746][ T5839] Bluetooth: hci3: command 0x0406 tx timeout
[  214.412131][ T8412] sg_write: data in/out 3292/1 bytes for SCSI command 0xa3-- guessing data in;
[  214.412131][ T8412]    program syz.0.539 not setting count and/or reply_len properly
[  214.607099][ T5875] BUG: sleeping function called from invalid context at ./include/linux/pagemap.h:1161
[  214.617290][ T5875] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 5875, name: kworker/0:4
[  214.626409][ T5875] preempt_count: 1, expected: 0
[  214.631265][ T5875] RCU nest depth: 0, expected: 0
[  214.636211][ T5875] 3 locks held by kworker/0:4/5875:
[  214.641433][ T5875]  #0: ffff88801b080d48 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0
[  214.651944][ T5875]  #1: ffffc90004417d18 ((work_completion)(&sfp->ew.work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0
[  214.663354][ T5875]  #2: ffff888024660080 (&sfp->rq_list_lock){..-.}-{3:3}, at: sg_remove_sfp_usercontext+0x86/0x580
[  214.674144][ T5875] irq event stamp: 308244
[  214.678503][ T5875] hardirqs last  enabled at (308243): [<ffffffff8b583523>] _raw_spin_unlock_irq+0x23/0x50
[  214.688423][ T5875] hardirqs last disabled at (308244): [<ffffffff8b5839c2>] _raw_write_lock_irqsave+0x52/0x60
[  214.698610][ T5875] softirqs last  enabled at (305240): [<ffffffff817c235b>] handle_softirqs+0x5bb/0x8f0
[  214.708281][ T5875] softirqs last disabled at (305209): [<ffffffff817c2b12>] do_softirq+0xb2/0xf0
[  214.717323][ T5875] Preemption disabled at:
[  214.717334][ T5875] [<0000000000000000>] 0x0
[  214.726076][ T5875] CPU: 0 UID: 0 PID: 5875 Comm: kworker/0:4 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[  214.726103][ T5875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  214.726118][ T5875] Workqueue: events sg_remove_sfp_usercontext
[  214.726157][ T5875] Call Trace:
[  214.726164][ T5875]  <TASK>
[  214.726172][ T5875]  dump_stack_lvl+0x116/0x1f0
[  214.726211][ T5875]  __might_resched+0x3c0/0x5e0
[  214.726247][ T5875]  ? mark_lock+0xb5/0xc60
[  214.726280][ T5875]  ? __pfx___might_resched+0x10/0x10
[  214.726318][ T5875]  ? bio_first_folio+0x3de/0x640
[  214.726358][ T5875]  __bio_release_pages+0x310/0x3b0
[  214.726396][ T5875]  ? __pfx___bio_release_pages+0x10/0x10
[  214.726447][ T5875]  blk_rq_unmap_user+0x3c0/0x990
[  214.726479][ T5875]  ? lock_acquire.part.0+0x11b/0x380
[  214.726514][ T5875]  ? __pfx_blk_rq_unmap_user+0x10/0x10
[  214.726541][ T5875]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  214.726578][ T5875]  ? do_raw_write_lock+0x11d/0x3a0
[  214.726602][ T5875]  ? __pfx_do_raw_write_lock+0x10/0x10
[  214.726630][ T5875]  sg_finish_rem_req+0xde/0x590
[  214.726689][ T5875]  sg_remove_sfp_usercontext+0x102/0x580
[  214.726739][ T5875]  process_one_work+0x9c5/0x1ba0
[  214.726784][ T5875]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  214.726822][ T5875]  ? __pfx_process_one_work+0x10/0x10
[  214.726875][ T5875]  ? assign_work+0x1a0/0x250
[  214.726918][ T5875]  worker_thread+0x6c8/0xf00
[  214.726960][ T5875]  ? __kthread_parkme+0x148/0x220
[  214.726985][ T5875]  ? __pfx_worker_thread+0x10/0x10
[  214.727018][ T5875]  kthread+0x3af/0x750
[  214.727048][ T5875]  ? __pfx_kthread+0x10/0x10
[  214.727077][ T5875]  ? lock_acquire+0x2f/0xb0
[  214.727114][ T5875]  ? __pfx_kthread+0x10/0x10
[  214.727144][ T5875]  ret_from_fork+0x45/0x80
[  214.727176][ T5875]  ? __pfx_kthread+0x10/0x10
[  214.727216][ T5875]  ret_from_fork_asm+0x1a/0x30
[  214.727254][ T5875]  </TASK>