last executing test programs:

3m25.604745442s ago: executing program 3 (id=217):
socket$nl_generic(0x10, 0x3, 0x10)
setresuid$auto(0x60, 0x1000, 0x8000)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdds\x1cJ\x99\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20044801}, 0x20004000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
connect$auto(0x3, &(0x7f0000000000), 0x55)
r0 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000001500)='/proc/kpagecgroup\x00', 0x101000, 0x0)
read$auto_stat_fops_(r0, &(0x7f0000000040)=""/39, 0x27)

3m25.365730281s ago: executing program 3 (id=220):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/adsp1\x00', 0x2042, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x22340, 0x1a1)
r1 = socket(0x1e, 0x1, 0x0)
poll$auto(&(0x7f0000000040)={r1, 0x8, 0xea85}, 0x100, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
ioctl$auto_SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000004900)=0x40000)

3m24.719238126s ago: executing program 3 (id=222):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000011c0)='/sys/devices/pci0000:00/0000:00:03.0/vendor\x00', 0x0, 0x0)
rename$auto(0x0, &(0x7f0000000300)='v#\xd5\xaf>=\x14\xe6%\xf7\x8a\x8d\x9a\xae\x1a\xd6\xa8\xb8\x1d\xf5(\xb0\x1f\xbd\xcbV\n\"\xe3V\xfeP\xceN\xb2\xc32\xaf\xcc\x80\xfa\xf0\xd4\xd9|\xfe\x03y\xd16\x17\x99R\xca\xe5\xf4\xb4T\xfcv\xfc\xe6\x9cv\a\x00\xc2a\x16\xd1\x8a\x80\x90\x87\xa5s\x10\xed\x93\xd4\x15=\xc0\x1f\x0e\xb0\x18v}\x03!\xf0I\xe3}\x90\x9b\x92[\xfe2<7\xd3\x81\x9a~\xcd\r\x19\x9e\x10(5\xfd\x8b\x82\xd4\xc85\xc3\x93t\t\xd0\x9d\xca^n\xf3\xcb>\x1bO\xcej\xe0\xef\xf2\xd7\xc2}\x18\xd9`AO\x95<\x9aH\vu\xae\xd4\xea\x12\xb8\xd1\n\x01\x83r\x85\xbf*\x18\xa7 S:R\x14\x89Z3\x94\x8bP)')
r1 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
sysfs$auto(0x2, 0x19, 0x0)
r2 = fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/set_event_pid\x00', 0xa28c1, 0x0)
getsockopt$auto(r1, 0x84, 0x16, 0x0, &(0x7f0000000040)=0x5)
r3 = openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/kernel/tracing/error_log\x00', 0x8940, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x42102, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r2, 0x0, 0x0)
read$auto_tracing_err_log_fops_trace(r3, &(0x7f0000001100)=""/169, 0xa9)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)=""/4096, 0x1000)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x262142, 0x0)

3m22.663452355s ago: executing program 3 (id=233):
keyctl$auto(0x3, 0xfffffffb, 0x6, 0x0, 0x80b8c)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0xa, 0x80002, 0x73)
socket(0x2, 0x1, 0xd)
r1 = io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000000c0), r0)
r4 = waitid$auto(0x6, r1, &(0x7f0000000100)={@_si_pad}, 0xbbd, &(0x7f0000000180)={{0x7fffffffffffffff, 0x8}, {0x8, 0xff}, 0x0, 0x1, 0xd907, 0x8, 0x0, 0x8001, 0x1, 0x6, 0x888, 0x68b, 0x80000001, 0x5, 0x7fffffffffffffff, 0x80})
sendmsg$auto_TIPC_NL_NET_SET(r2, &(0x7f0000000700)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000006c0)={&(0x7f0000000240)={0x46c, r3, 0x300, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_MON={0x458, 0x9, 0x0, 0x1, [@nested={0xc3, 0x27, 0x0, 0x1, [@generic="22b1079fa831c150b88306c0d7b45ddc5044fc294518bc906b69c9ed840fd91a26c96f9e2b7890a9ba34755fa53cd13bb6e06fd280ded80b86ab7aa6c899b854af3aacf1471099b6d22469c6660990309597a6c71607ee506065322bb8606d2e921782df45064454b1680a2d52771a7d8a70b281af59f2e1d28bb8847c13fe8fcf79a5ee3abc83315abc45755620825b4e35c681359ca05dee1a55e76a86b77b1cf1adbc4ba7ce255caff730a8a48dea92e0b69e371d65f23505cd5d9f14a6"]}, @generic="04d4b678d4430d62831e7afa55d43c21877929e6ebc7b69320f90ccd422efe62f2dd2463907e0347bf1e8691d03cc9e6fc05a4c0a6a36f9f179814d01d90978e9f5858a212724bb82c13367f768200fbd0b6b734b7e11120492d177110511efab03778c7dd4346609fae1751029f80ed58a0c3ad5b847b1ea195cf590f18161ea36a3855e661d220a3a7b7d1c7beed1652a766161a82ccee16929130fed2b9f9006431ae5d0df3223ed05f16c314e95f46418a843271d61a8bfac3ca1d1aa9ef15e57ded46c8b7c9f1ffea4349987c20", @typed={0x4, 0x47}, @typed={0xcc, 0x1f, 0x0, 0x0, @binary="6bb15eb6db98b987bef1c95ffe7ced0e5d1c59b6a5d7971aab6503febe94460144d48f1488760f80ab305e0e6d5488002a2724c6ceff061d7e14cf866eeff9c8104ef01a4b3754a1c87624bf2e7b97245e3ced1535e3dcb378c51a972b6dfb7dccb397d1041ebb982222a1ff4f56f3d92199205fffad49f870349b57e0a97c24a5ff2a0108da99a4bc4ca85d143c5ad453e543a62810969b53d0895ba912c885d99b4fd02e8f88737d4ed9bf76e17d63ca68d966671ed8a260ea1cdb59804bf3e2d52d2818d2b591"}, @generic="fb59", @typed={0x14, 0xdd, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}, @nested={0x54, 0x56, 0x0, 0x1, [@generic="8145ae25ef3adf8dbab0ec26cf78250cf04cb36b4a659ede3629704282b26ed1c9a25b83333efbe2dd0d3827fbf6b175976b99cdcfda65ffca79ed371e877bd192d6d1bd797d4f44f941db6875d4648e"]}, @generic="fb6b9f640c9969b6f1f5a674e502fbad66f3057afe776d5568d30981b73ef28b4d5249cee87d9377373f13847127a633a109f37210f665ae62d2756ed4766e5d81862672de5cfc52ea00a288f1e72e2864fab8be074ccaaca4d35be06623220d8d25163b5cfa74f8fbc0abdc56f72be65ecee8e1168fc12478a3f5b3e241ebda6237d490d717cb2efba2ae6264f3274c22c8092e58aedebfab31b112abf9c9064e9802b39e57", @nested={0xd6, 0x17, 0x0, 0x1, [@nested={0x4, 0xa8}, @typed={0x8, 0x1b, 0x0, 0x0, @pid=r4}, @typed={0x14, 0x7d, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @generic="d6e2027a5fb99c80342b0bf9273cf8b91c533957f169d88e0076919f66f73d7790eec830051a660a03b78f107b6b7d174d03a0eb87ac2f45c4736fabd777c753628ef52f26bb6cc57a010bf3fb050604f8eea0f117e534558428b2eb88793e81566f90ebdf96b2704f4f12011c8a98c2a2efdc4cfc29d5950be3e2021bb22f8257aada56d6152f1403501ae178d00699523e7fd87e8e331f268dfeafe4fc0321fe6fa78301929c5071cf219126d3b17ea30a"]}, @typed={0x8, 0x5d, 0x0, 0x0, @ipv4=@local}]}]}, 0x46c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
futex_requeue$auto(0xfffffffffffffffc, 0x0, 0xfffffffffffffffd, 0x1000000000000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
msync$auto(0x0, 0x2000000005, 0x6)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r6 = open(&(0x7f0000000040)='./file0\x00', 0x40841, 0x8)
write$auto(r6, 0x0, 0xeffd)
ioctl$auto_TIOCVHANGUP2(r5, 0x5437, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
setsockopt$auto(0x3, 0x10000000084, 0x19, 0x0, 0x8)

3m21.82316034s ago: executing program 3 (id=236):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = io_uring_setup$auto(0x6, 0x0)
getpid()
fcntl$getown(r0, 0x9)
capget$auto(&(0x7f00000002c0)={0x10001}, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/dev\x00', 0x40100, 0x0)
pread64$auto(r1, 0x0, 0x1ff, 0x3ff)
r2 = getpid()
process_vm_readv$auto(r2, 0x0, 0x1, 0x0, 0x6, 0x0)
r3 = getpid()
pidfd_open$auto(r3, 0x0)
openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0)
r4 = openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/comm\x00', 0x2, 0x0)
write$auto(r4, 0x0, 0x75e9)
syz_clone3(0x0, 0x0)
open(0x0, 0x22240, 0x155)
mmap$auto_fb_fops_fb_chrdev(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x100010, r0, 0x9e)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6)
io_uring_enter$auto(0xffffffffffffffff, 0x100, 0xffff230a, 0x9, 0x0, 0x7fff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x0, 0x60, 0x0, 0x10001)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0x2003f0, 0x4)
tkill$auto(0x1, 0x7)

3m20.07932263s ago: executing program 3 (id=244):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000011c0)='/sys/devices/pci0000:00/0000:00:03.0/vendor\x00', 0x0, 0x0)
rename$auto(0x0, &(0x7f0000000300)='v#\xd5\xaf>=\x14\xe6%\xf7\x8a\x8d\x9a\xae\x1a\xd6\xa8\xb8\x1d\xf5(\xb0\x1f\xbd\xcbV\n\"\xe3V\xfeP\xceN\xb2\xc32\xaf\xcc\x80\xfa\xf0\xd4\xd9|\xfe\x03y\xd16\x17\x99R\xca\xe5\xf4\xb4T\xfcv\xfc\xe6\x9cv\a\x00\xc2a\x16\xd1\x8a\x80\x90\x87\xa5s\x10\xed\x93\xd4\x15=\xc0\x1f\x0e\xb0\x18v}\x03!\xf0I\xe3}\x90\x9b\x92[\xfe2<7\xd3\x81\x9a~\xcd\r\x19\x9e\x10(5\xfd\x8b\x82\xd4\xc85\xc3\x93t\t\xd0\x9d\xca^n\xf3\xcb>\x1bO\xcej\xe0\xef\xf2\xd7\xc2}\x18\xd9`AO\x95<\x9aH\vu\xae\xd4\xea\x12\xb8\xd1\n\x01\x83r\x85\xbf*\x18\xa7 S:R\x14\x89Z3\x94\x8bP)')
r1 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
sysfs$auto(0x2, 0x19, 0x0)
r2 = fsopen$auto(0x0, 0x1)
close_range$auto(0x2, r1, 0xffffeffd)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/set_event_pid\x00', 0xa28c1, 0x0)
getsockopt$auto(r1, 0x84, 0x16, 0x0, &(0x7f0000000040)=0x5)
r3 = openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/kernel/tracing/error_log\x00', 0x8940, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x42102, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r2, 0x0, 0x0)
read$auto_tracing_err_log_fops_trace(r3, &(0x7f0000001100)=""/169, 0xa9)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)=""/4096, 0x1000)
r4 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
listen$auto(0x3, 0x81)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x262142, 0x0)

3m19.772484649s ago: executing program 32 (id=244):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000011c0)='/sys/devices/pci0000:00/0000:00:03.0/vendor\x00', 0x0, 0x0)
rename$auto(0x0, &(0x7f0000000300)='v#\xd5\xaf>=\x14\xe6%\xf7\x8a\x8d\x9a\xae\x1a\xd6\xa8\xb8\x1d\xf5(\xb0\x1f\xbd\xcbV\n\"\xe3V\xfeP\xceN\xb2\xc32\xaf\xcc\x80\xfa\xf0\xd4\xd9|\xfe\x03y\xd16\x17\x99R\xca\xe5\xf4\xb4T\xfcv\xfc\xe6\x9cv\a\x00\xc2a\x16\xd1\x8a\x80\x90\x87\xa5s\x10\xed\x93\xd4\x15=\xc0\x1f\x0e\xb0\x18v}\x03!\xf0I\xe3}\x90\x9b\x92[\xfe2<7\xd3\x81\x9a~\xcd\r\x19\x9e\x10(5\xfd\x8b\x82\xd4\xc85\xc3\x93t\t\xd0\x9d\xca^n\xf3\xcb>\x1bO\xcej\xe0\xef\xf2\xd7\xc2}\x18\xd9`AO\x95<\x9aH\vu\xae\xd4\xea\x12\xb8\xd1\n\x01\x83r\x85\xbf*\x18\xa7 S:R\x14\x89Z3\x94\x8bP)')
r1 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
sysfs$auto(0x2, 0x19, 0x0)
r2 = fsopen$auto(0x0, 0x1)
close_range$auto(0x2, r1, 0xffffeffd)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/set_event_pid\x00', 0xa28c1, 0x0)
getsockopt$auto(r1, 0x84, 0x16, 0x0, &(0x7f0000000040)=0x5)
r3 = openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/kernel/tracing/error_log\x00', 0x8940, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x42102, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r2, 0x0, 0x0)
read$auto_tracing_err_log_fops_trace(r3, &(0x7f0000001100)=""/169, 0xa9)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)=""/4096, 0x1000)
r4 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
listen$auto(0x3, 0x81)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x262142, 0x0)

1m53.719102438s ago: executing program 2 (id=681):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0x80000001, 0x8)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
r1 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/vkms_config\x00', 0x80200, 0x0)
read$auto_drm_debugfs_entry_fops_drm_debugfs(r1, &(0x7f0000001140)=""/25, 0x19)
ioctl$auto(r0, 0x901064ac, 0x5)
r2 = socket(0x11, 0x3, 0x2)
clock_getres$auto(0xa, 0x0)
r3 = getsockopt$auto(r2, 0x107, 0x7, 0x0, 0x0)
ioctl$auto_CEC_ADAP_G_CAPS(r3, 0xc04c6100, &(0x7f0000001080)={"c9956b674d079ee6e425305ad73d6369b8a3c2ec701cdf9f809f0b1a86a0f783", "53da545beb301d0acaaf1e4f2f677df1a11787f2bab3f679b3e74a796e463f07", 0x100, 0x7fffffff, 0x6})
madvise$auto(0x0, 0x3, 0x15)
r4 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x68481, 0x0)
pselect6$auto(0xbf41, 0x0, 0x0, 0x0, &(0x7f0000000d00)={0x4e, 0xfffffffffffffffc}, 0x0)
setgroups$auto(0xe32, &(0x7f0000000040)=0x9)
ioctl$auto_IOCTL_VMCI_QUEUEPAIR_DETACH(r4, 0x7aa, 0xf)
madvise$auto(0x400, 0x3, 0xf1)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001040)='/sys/devices/virtual/block/loop1/queue/wbt_lat_usec\x00', 0x101400, 0x0)
r6 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000001100)='/dev/usbmon20\x00', 0x25ad03, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000040c0)='/dev/bus/usb/001/001\x00', 0x8800, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000011c0), r3)
sendmsg$auto_NL80211_CMD_SET_HW_TIMESTAMP(r3, &(0x7f0000001280)={&(0x7f0000001180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001240)={&(0x7f0000001200)={0x20, r7, 0x2, 0x70bd27, 0x25dfdbfe, {}, [@NL80211_ATTR_HW_TIMESTAMP_ENABLED={0x4}, @NL80211_ATTR_TIMEOUT_REASON={0x8, 0xf8, 0x101}]}, 0x20}, 0x1, 0x0, 0x0, 0x4040}, 0x40048040)
ioctl$auto_MON_IOCG_STATS(r6, 0x80089203, &(0x7f0000000080)={0x7fff, 0x22fb})
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000040)=""/4096, 0x1000)
clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)

1m53.511070334s ago: executing program 2 (id=683):
r0 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x3c, r0, 0x1b, 0x70bd2a, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0xb, 0x0, 0x0, @fd=r1}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
write$auto(r1, &(0x7f0000000080)='ovs_p\xfdcket\x00', 0x5)

1m53.352741219s ago: executing program 2 (id=684):
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bond0\x00'})
bpf$auto(0x1, &(0x7f00000000c0)=@token_create, 0x200f)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r2, 0x0, 0x3}, 0xc)
readv$auto(0x6, &(0x7f00000000c0)={0x0, 0x1}, 0x1)
close_range$auto(0x2, 0x8, 0x0)
write$auto_tomoyo_operations_securityfs_if(r0, &(0x7f0000000100)="0a1b9a3c2b00006e163bb154d7886d8ea5c2574c58e9867ecec3371cadb848770dc8f745d1c76eedba12b9f694dabdbcf3401910bb713aca465c9bbc23b5d40a", 0x40)

1m53.05082662s ago: executing program 2 (id=686):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda\x00', 0x8041, 0x0)
lseek$auto(r0, 0x8000, 0x1)

1m52.876015105s ago: executing program 2 (id=689):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x16fb02, 0x0)
mmap$auto(0x0, 0x7, 0x3, 0xeb1, r0, 0x8000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
madvise$auto(0x0, 0x5, 0xfffffffb)
madvise$auto(0x0, 0x200007, 0x8) (async)
madvise$auto(0x0, 0x2000040080000004, 0xe) (async)
mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) (async)
rseq$auto(&(0x7f0000000300)={0x0, 0x9, 0x0, 0x4, 0xffffffff, 0xfffffffe}, 0x8000, 0x0, 0x3) (async)
shmdt$auto(0x0) (async)
madvise$auto(0x0, 0x3, 0x15) (async)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x5, r0}}}) (async)
seccomp$auto(0x2, 0x40, 0x0)
socket(0x25, 0x5, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
recvmsg$auto(0x4, 0x0, 0x33c) (async)
vmsplice$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x6, 0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async)
rseq$auto(&(0x7f0000000180)={0x0, 0x1ff, 0x426c, 0xaf, 0x1, 0x80000000, "04ccda588a91eb391e604e0d7e7c148d9a7fb6a5a56be7449884d55ba11f7eeec6c7b16e3750e1f46fec806980b9b597770342089b851fbb0f18a07cde89d7f1c34980ec67d66829fe3e577187f550094866869a449cb344fe793dae4665ffca0b24684f42c95fc55dcb0a85b67243e9feb38a6ad7ad809d6b234810b560a4eecf7087f354e2d07c3e74fa2a4742a3a4bf81f41a3b4c6b45f0a9370f7dce26a305b66c3d"}, 0x2, 0x4, 0x1) (async)
fremovexattr$auto(r1, &(0x7f0000000140)='i,@{\x00') (async)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kallsyms\x00', 0x101000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0xa, 0x2, 0x88)
openat$auto_dma_buf_debug_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x82202, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x2, 0x3, 0x100)

1m51.873714459s ago: executing program 2 (id=694):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TCP_METRICS_CMD_DEL(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYRES32=r0, @ANYRES16=r0], 0x14}, 0x1, 0x0, 0x0, 0xc004}, 0x20008000)
sendmsg$auto_TCP_METRICS_CMD_DEL(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="58000000c6753aa37b4fffcb7e69b42ae9610a52ee10457ac403917b393834e071b6e2ee6bcd1f8aafd0e0161237013ba44719bc7f68b8c2eca01ebd2804ab83fe3ca66ec2d45e30b8d6972b3857fe955df3a5750369d1215ccc5ea36a328fe8f3b1ec662bdf50ae7e94522fd63c0b19c1fcfb06389482db2dc63bfc21d6339aa307e88238d8151764d900447fbfcce7e36d1fc2290c40d0956a5c6666422691e06993cde6e04541d35d59323ddd79cadc63bcdd43d9d73ecceccb5681c4adf197b552549d340300731ebfad4218e9452dd6cc86a8b83d", @ANYRES16=r1, @ANYBLOB="20002bbd7000fbdbdf250200000014000200fc00000000000000000000000000000114000c000000000000000000000000000000000114000c0000000000000000000000ffffac14141008000b000a010100"], 0x58}, 0x1, 0x0, 0x0, 0x8c0}, 0x40000)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYRESDEC=r0, @ANYRES32=r0, @ANYRESOCT=r1, @ANYRES64=r1, @ANYRES32=r1, @ANYBLOB="16c7ae45941bc913b7c816883a3eb3bcd1f35e77f4b889001ec398534504e8ee43874e3c965f616003e12d94d3dcbc0820a05b0a5bd05014a988b2c965b2bbc3657e58a72e39ebe89269e2dae1a2cebf34441f", @ANYBLOB="0800e20fd1b12297a6db3628db53cb0900", @ANYRESDEC=r1, @ANYBLOB="f669abdf65917f751f0a114449e1ee772ec0d8d157cfdd82ec72410a1eb4baa0cbde2450abb71b3c80516a029eef050000000000000069b69015cd89363519b06a246736ef594fa80399e170543a6bb7347bd94c5688af993850d3198e289b5ef7c94946208ecf2f4d508b132ddcee1a872e4868071790e7ff6bf9f0d25f6eca9983afc5c53d7a6b13c22c6369d6ac066e4129552649c81f6b95d67487e4e418ad71f02c02"], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x20000000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'veth1_to_team\x00'})
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYRES16=r3, @ANYRES8, @ANYRES64=r0, @ANYRESDEC=0x0, @ANYRES8=r2, @ANYRESDEC=0x0, @ANYRESHEX=r3, @ANYRESDEC=r1, @ANYRES16=r2, @ANYRESHEX=r4], 0x24}, 0x1, 0x0, 0x0, 0x4000023}, 0x4040081)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'wlan0\x00'})
socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, 0x0, 0xf)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0xc0, 0x0, 0x9a6, 0xfffffffe)
io_uring_setup$auto(0x3ff, 0x0)
socket(0x31, 0x6, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x1, 0x100000001, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
mbind$auto(0x0, 0x100000004, 0x5, 0x0, 0x5, 0x2)

1m51.504337088s ago: executing program 33 (id=694):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TCP_METRICS_CMD_DEL(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYRES32=r0, @ANYRES16=r0], 0x14}, 0x1, 0x0, 0x0, 0xc004}, 0x20008000)
sendmsg$auto_TCP_METRICS_CMD_DEL(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="58000000c6753aa37b4fffcb7e69b42ae9610a52ee10457ac403917b393834e071b6e2ee6bcd1f8aafd0e0161237013ba44719bc7f68b8c2eca01ebd2804ab83fe3ca66ec2d45e30b8d6972b3857fe955df3a5750369d1215ccc5ea36a328fe8f3b1ec662bdf50ae7e94522fd63c0b19c1fcfb06389482db2dc63bfc21d6339aa307e88238d8151764d900447fbfcce7e36d1fc2290c40d0956a5c6666422691e06993cde6e04541d35d59323ddd79cadc63bcdd43d9d73ecceccb5681c4adf197b552549d340300731ebfad4218e9452dd6cc86a8b83d", @ANYRES16=r1, @ANYBLOB="20002bbd7000fbdbdf250200000014000200fc00000000000000000000000000000114000c000000000000000000000000000000000114000c0000000000000000000000ffffac14141008000b000a010100"], 0x58}, 0x1, 0x0, 0x0, 0x8c0}, 0x40000)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYRESDEC=r0, @ANYRES32=r0, @ANYRESOCT=r1, @ANYRES64=r1, @ANYRES32=r1, @ANYBLOB="16c7ae45941bc913b7c816883a3eb3bcd1f35e77f4b889001ec398534504e8ee43874e3c965f616003e12d94d3dcbc0820a05b0a5bd05014a988b2c965b2bbc3657e58a72e39ebe89269e2dae1a2cebf34441f", @ANYBLOB="0800e20fd1b12297a6db3628db53cb0900", @ANYRESDEC=r1, @ANYBLOB="f669abdf65917f751f0a114449e1ee772ec0d8d157cfdd82ec72410a1eb4baa0cbde2450abb71b3c80516a029eef050000000000000069b69015cd89363519b06a246736ef594fa80399e170543a6bb7347bd94c5688af993850d3198e289b5ef7c94946208ecf2f4d508b132ddcee1a872e4868071790e7ff6bf9f0d25f6eca9983afc5c53d7a6b13c22c6369d6ac066e4129552649c81f6b95d67487e4e418ad71f02c02"], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x20000000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'veth1_to_team\x00'})
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYRES16=r3, @ANYRES8, @ANYRES64=r0, @ANYRESDEC=0x0, @ANYRES8=r2, @ANYRESDEC=0x0, @ANYRESHEX=r3, @ANYRESDEC=r1, @ANYRES16=r2, @ANYRESHEX=r4], 0x24}, 0x1, 0x0, 0x0, 0x4000023}, 0x4040081)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'wlan0\x00'})
socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, 0x0, 0xf)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0xc0, 0x0, 0x9a6, 0xfffffffe)
io_uring_setup$auto(0x3ff, 0x0)
socket(0x31, 0x6, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x1, 0x100000001, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
mbind$auto(0x0, 0x100000004, 0x5, 0x0, 0x5, 0x2)

1m32.356113756s ago: executing program 1 (id=764):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x80800, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000)
sendfile$auto(0x6, 0x3, 0x0, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
munmap$auto(0x20001000, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0xfffffffffffffffe, 0x8, 0x8003, 0xeb3, 0xfffffffffffffff9, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
timer_settime$auto(0x0, 0xffff8000, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x8c3a, 0xfffffffffffffffe, 0x4000a)
socket(0x2, 0xa, 0xa)
lsm_list_modules$auto(0x0, &(0x7f0000000100)=0xbefc, 0x0)
ioctl$auto(0x1, 0x89a0, 0x8)
read$auto(0x3, 0x0, 0x400000)
socket(0xa, 0x3, 0x6)
r0 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
recvfrom$auto(0x3, 0x0, 0x8001, 0x3c, 0x0, 0xfffffffffffffffd)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="1a00279e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)

1m30.486168173s ago: executing program 1 (id=770):
madvise$auto(0x0, 0x7fffffffffffffff, 0x800)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x800, 0x31, 0x8}, 0x18)
mknodat$auto(r0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
r1 = socket(0x5, 0xcfae9d4251233771, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/diskstats\x00', 0x8000, 0x0)
socket(0x1d, 0x2, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendfile$auto(0x6, 0x3, 0x0, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bond0\x00', <r3=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, <r4=>r2, 0x4, 0x1ff, r1, @relative_id=0x13, 0xe600}, 0xf)
socketpair$auto(0x1, 0x801, 0x8000000000000000, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r5, 0x0, 0x3}, 0xc)
close_range$auto(0x2, 0x8000, 0x0)
open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2)
open_by_handle_at$auto(r2, &(0x7f0000000000)={0xfffffffffffffe82, 0xa, "8b00000000000000"}, 0xfffffffe)
close_range$auto(0x2, 0x8, 0x0)
pipe$auto(&(0x7f0000001480)=<r6=>0xffffffffffffffff)
vmsplice$auto(r6, &(0x7f0000000000)={0x0, 0x7}, 0x5, 0x1)
syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000180), r4)
write$auto(0x3, 0x0, 0xffd8)

1m29.058939159s ago: executing program 1 (id=775):
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x20080, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6b, 0x0, 0x7d, 0xfffffffffffffffd, 0xd4, 0x4, 0x4, 0x0, 0x1, 0x368e, 0x2, {0xc, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x8000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0x4, 0x0, 0x800})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(r0, 0x4b48, 0x9)
mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd)
socket(0x10, 0x800, 0x0)
socket(0xa, 0x2, 0x88)
capset$auto(0x0, 0x0)
socket(0xa, 0x2, 0x88)
r1 = bpf$auto(0x0, &(0x7f0000000400)=@link_update={0xffffffffffffffff, @new_prog_fd=0x4, 0x4, @old_map_fd=0x3ff}, 0xa3)
bpf$auto(0x2, &(0x7f00000001c0)=@bpf_attr_1={0xffffffffffffffff, 0xbb8, @value, 0x100000003}, 0xcd)
r2 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0xc05, 0x0)
write$auto_tracing_mark_raw_fops_trace(r2, 0x0, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000000c0), r1)
sendmsg$auto_TIPC_NL_NODE_GET(r3, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2aa7a32371f1ca95}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r4, 0x210, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x10)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r5, 0x0, 0xa3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
semctl$auto(0x1ff, 0x2, 0x13, 0x4)
r6 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r6, 0x0, 0x43, 0x0, &(0x7f00000000c0)=0x1e)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x261c2, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff)

1m27.227328779s ago: executing program 1 (id=781):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x80800, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000)
sendfile$auto(0x6, 0x3, 0x0, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
munmap$auto(0x20001000, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0xfffffffffffffffe, 0x8, 0x8003, 0xeb3, 0xfffffffffffffff9, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
timer_settime$auto(0x0, 0xffff8000, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x8c3a, 0xfffffffffffffffe, 0x4000a)
socket(0x2, 0xa, 0xa)
lsm_list_modules$auto(0x0, &(0x7f0000000100)=0xbefc, 0x0)
ioctl$auto(0x1, 0x89a0, 0x8)
read$auto(0x3, 0x0, 0x400000)
socket(0xa, 0x3, 0x6)
r0 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
recvfrom$auto(0x3, 0x0, 0x8001, 0x3c, 0x0, 0xfffffffffffffffd)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="1a00279e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)

1m24.581855487s ago: executing program 1 (id=789):
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
ioperm$auto(0x7, 0x6, 0x1)
tkill$auto(0x80000000000001, 0x7)
r0 = socket(0x2, 0x1, 0x0)
socket(0x1e, 0x5, 0x0)
memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4)
mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000)
r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/manager\x00', 0x40500, 0x0)
syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, 0x0, 0x40040c0)
fstat$auto(0x2, 0x0)
open(0x0, 0x40a2c0, 0x114)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
unlink$auto(0x0)
read$auto(r1, 0x0, 0x74d)
getsockopt$auto(r0, 0x4, 0x8d, &(0x7f0000000040)='#\x00', &(0x7f0000000080)=0x9)
read$auto_tomoyo_operations_securityfs_if(r1, 0x0, 0x0)
mmap$auto(0x8000000, 0x8, 0x1000000016, 0x13, 0x3, 0x180000000)
clone$auto(0x6, 0x401, 0xffffffffffffffff, 0xfffffffffffffffc, 0xa31b)
mmap$auto(0x0, 0x402000b, 0x80000000000000df, 0x10000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(r2, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f0000000100)={0x228, 0x0, 0x700, 0x70bd29, 0x25dfdbfd, {}, [@ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}, @ETHTOOL_A_EEE_MODES_OURS={0x1f2, 0x2, 0x0, 0x1, [@typed={0x8, 0x2e, 0x0, 0x0, @uid}, @nested={0xae, 0x14d, 0x0, 0x1, [@typed={0xc, 0xea, 0x0, 0x0, @u64=0x200}, @typed={0x28, 0x109, 0x0, 0x0, @str='/sys/kernel/security/tomoyo/manager\x00'}, @generic="bee363e42c7f47745d635fe7e8c7f9d39caa0e2d6cec967ab084fcc308ec373f976289cc97c86f9bc7deb089f754069a733b35c8463b6d7c2896567871d775c546fa31f0d928d6b75217", @generic="bf6b69d5a6b62dc1cca035a113f201dad336838b87a9ba61fd3c4afa8f826e9f03c96d48", @typed={0x6, 0x43, 0x0, 0x0, @str='@\x00'}]}, @generic="10d7b98af3f6c6e369a5d774759eb071ed689b357683de0bb0b7a04db5743e83330fb4b0cec49c14223497828cb30fde166485e5414a9b76ec5e047185445d7e15dddb9cd60f96d0c02138f7be1aa99536e6f179a8c97f8f1b43fef57fe96977dba16032757bfcf3ce99acf7f66d70277eedd753cdc510819748cbec1139d731be1386aec02ca5c490df64f8bb1bf238be83e43e880c40a37bb898dff0268faea59135f7eda64849524a16da2dcd1c943c546814b4d04324790c837a83c296155553cbb6327c131e8cce5811332a16b7e48256e198ae13522a55f5f2808616306d7f6ec6209f809404af00e4c821", @typed={0x42, 0x12a, 0x0, 0x0, @binary="13326005b0c67d561a7b876de4db17afc2d2627a35034b113e269746531a60d91d698fd54aad5fae024259eaed4f35cc674e7d5a561b7bf97f8199fe33cc"}, @typed={0x4, 0x49}]}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x5}]}, 0x228}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)
socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)

1m21.585386982s ago: executing program 1 (id=796):
r0 = openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0x400000000000eb2, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
io_uring_setup$auto(0x6, 0x0) (async, rerun: 32)
io_uring_register$auto(0x2, 0x19, &(0x7f0000000180), 0x7) (rerun: 32)
r1 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f00000001c0), 0x80440, 0x0)
read$auto_kmsg_fops_printk(r1, &(0x7f0000000240)=""/208, 0xd0)
ioctl$auto(0xffffffffffffffff, 0x4004510f, 0x3) (async, rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (rerun: 64)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x280, 0x0)
pread64$auto(r2, 0x0, 0x8, 0x8) (async)
close_range$auto(r0, 0xffffffffffffffff, 0x610f28f3) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0xc8, 0x401054d6, 0x8) (async)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000100), 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async, rerun: 64)
socket(0xa, 0x2, 0x3a) (rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) (async)
sendmsg$auto_NBD_CMD_CONNECT(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100253d700dfddbdf2501000000ff7f00000c000180080001800000000008002300", @ANYRES64=r0, @ANYRES8], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x8880) (async, rerun: 64)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) (rerun: 64)
setrlimit$auto(0x1000000007, 0x0)
io_uring_setup$auto(0x6, 0x0)
clock_nanosleep$auto(0x2, 0x1000, 0x0, &(0x7f0000000040)={0x2, 0x2})
mmap$auto(0xfa90, 0x80, 0x7, 0x16, 0x79, 0x6) (async, rerun: 32)
madvise$auto(0x0, 0x7ffffffffffffffc, 0xa) (rerun: 32)
mmap$auto(0x0, 0x2020009, 0x4, 0x200000eb2, 0xfffffffffffffffb, 0x8000) (async, rerun: 64)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) (rerun: 64)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)

1m21.228802082s ago: executing program 34 (id=796):
r0 = openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0x400000000000eb2, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
io_uring_setup$auto(0x6, 0x0) (async, rerun: 32)
io_uring_register$auto(0x2, 0x19, &(0x7f0000000180), 0x7) (rerun: 32)
r1 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f00000001c0), 0x80440, 0x0)
read$auto_kmsg_fops_printk(r1, &(0x7f0000000240)=""/208, 0xd0)
ioctl$auto(0xffffffffffffffff, 0x4004510f, 0x3) (async, rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (rerun: 64)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x280, 0x0)
pread64$auto(r2, 0x0, 0x8, 0x8) (async)
close_range$auto(r0, 0xffffffffffffffff, 0x610f28f3) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0xc8, 0x401054d6, 0x8) (async)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000100), 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async, rerun: 64)
socket(0xa, 0x2, 0x3a) (rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) (async)
sendmsg$auto_NBD_CMD_CONNECT(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100253d700dfddbdf2501000000ff7f00000c000180080001800000000008002300", @ANYRES64=r0, @ANYRES8], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x8880) (async, rerun: 64)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) (rerun: 64)
setrlimit$auto(0x1000000007, 0x0)
io_uring_setup$auto(0x6, 0x0)
clock_nanosleep$auto(0x2, 0x1000, 0x0, &(0x7f0000000040)={0x2, 0x2})
mmap$auto(0xfa90, 0x80, 0x7, 0x16, 0x79, 0x6) (async, rerun: 32)
madvise$auto(0x0, 0x7ffffffffffffffc, 0xa) (rerun: 32)
mmap$auto(0x0, 0x2020009, 0x4, 0x200000eb2, 0xfffffffffffffffb, 0x8000) (async, rerun: 64)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) (rerun: 64)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)

8.616610841s ago: executing program 6 (id=1104):
mmap$auto(0x3, 0x5, 0x2, 0x9b7e, 0x2, 0x8000)
r0 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0)
write$auto_configfs_file_operations_configfs_internal(r0, 0x0, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x400000000000003, 0x29, 0xd1, 0x0, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NLBL_MGMT_C_REMOVE(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="030000", @ANYBLOB="000127bd7000ffdbdf250200000008"], 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x2008040)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="120027", @ANYBLOB="5de1523353782950330a"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB='!'], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x100, 0x0)

8.048680958s ago: executing program 4 (id=1106):
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4001, @loopback}, 0x6b)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0)
socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
socket(0x11, 0x3, 0x3)
r0 = openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
close_range$auto(0x2, r0, 0xfffffffd)

7.234969229s ago: executing program 4 (id=1108):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000080)=0x7)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mmap$auto_snd_pcm_oss_f_reg_pcm_oss(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x11, r0, 0x0)
write$auto_snd_pcm_oss_f_reg_pcm_oss(r0, &(0x7f0000000100)="e0e3732acb", 0x5)
write$auto(0x3, 0x0, 0x100082) (fail_nth: 1)

6.930623094s ago: executing program 6 (id=1110):
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000180)='ns/ipc\x00')
socket(0x2, 0x5, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x88)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
bind$auto(0x3, 0x0, 0x6b)

5.821605003s ago: executing program 4 (id=1116):
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
mmap$auto(0x0, 0x27, 0x3, 0xeb1, 0xfffffffffffffffa, 0x84)
open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91)
r0 = socket(0x2, 0x801, 0x106)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
r1 = getsockopt$auto(r0, 0x11c, 0x1, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="e40a2f69a9ddec603e34820af8f4855ec3b7aac8ddfc8d53f1591abdf5b21aaeb909eb95a0729dd61bb482d711adae715dbe094fcff333d0fb66f9ce3a421c22ffad5d6409d7bf139d6b31fed35ad75025d66c38437e7100bac62386551c8b73cf693aa2fb2f0e5a500ac30c3af9396c7abb8916ff95e81ace294a", @ANYRES16=r2, @ANYBLOB="000429bd7000ffdbdf250200000008009e0006000000ab002501a98269308bc52f02ffe03860424255681f53ae1cc5e89a50e3609c6faa705dbaee0703752a55bff1fbc197a487438598d19152cc30e0837bf15901cc6b6a34ddb1736a18209768d54c2f45b3540e031119fcd95f2f9b5ea658fc0269bc88e1fa91bdaac672a0bb427e326a3adcdec1b5bf178f7880bd651419595bdea066312bf833031384b3cb4ce01cdc745fb01fc639b076d11685a710422875edcc6b4ad566575160dda470001c001b80050001000700000004000300040002000400020004000200"], 0xe4}, 0x1, 0x0, 0x0, 0x40044}, 0x1)
r3 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0)
ioctl$auto_DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
shmctl$auto(0x6, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000040), r4)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG(r5, 0x0, 0x0)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x490380, 0x0)
close_range$auto(0xffffffffffffffff, r6, 0xe)
getuid()
fanotify_mark$auto(0xffffffffffffffff, 0x8, 0xf, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/active_links\x00', 0x2080, 0x0)
read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r7, 0x0, 0x0)
acct$auto(&(0x7f0000000100)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00')
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)

5.346767463s ago: executing program 0 (id=1117):
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
socket(0xa, 0x5, 0x0)
socket(0xa, 0x3, 0x6)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
getsockopt$auto(0x6, 0x84, 0x25, 0x0, &(0x7f00000000c0)=0x10000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x1, 0x0)
setsockopt$auto(0x5, 0x10f, 0x8a, 0xfffffffffffffffe, 0x0)
r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000000c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
io_uring_setup$auto(0xd, 0x0)
ppoll$auto(&(0x7f0000000000)={0xffffffffffffffff, 0x9b2, 0x1}, 0x2, &(0x7f0000000140)={0x4, 0x4}, &(0x7f0000000080)={0xffffffff}, 0x8)
close_range$auto(0x2, 0x8000, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
setsockopt$auto(0xffffffffffffffff, 0x104000000000010e, 0xffffffff, 0x0, 0x16)
r2 = semctl$auto(0xffff, 0x202d182d, 0x6, 0x2)
shmctl$auto(0x8, 0x200, &(0x7f0000000500)={{0x8, <r3=>0x0, 0xffffffffffffffff, 0x3, 0x8001, 0x3, 0x9}, 0x2, 0x5, 0x0, 0x8, @inferred, @raw=0xa, 0x40, 0x0, &(0x7f0000000480)="b00689bfbec2ab595335d1c1ce55387f3c6f437bc6183067933a1c941c308e25c40b50a914dabd53934a112c126afc02067c3e34", &(0x7f00000004c0)="675072b0e30812516c3061e39d73fba2b47c908f5914e359684eda1a0ab6565f3f9ce609eea1abb539ee2de1754bb4b80af2db734c6522dff806310aba3f"})
r4 = openat$auto_dma_buf_debug_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x82202, 0x0)
read$auto_dma_buf_debug_fops_(r4, &(0x7f0000000040)=""/249, 0xf9)
sendmsg$auto_OVS_FLOW_CMD_GET(r0, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000400)={&(0x7f0000000580)={0x370, r1, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@OVS_FLOW_ATTR_KEY={0x24, 0x1, 0x0, 0x1, [@typed={0x1f, 0xe, 0x0, 0x0, @binary="6134ba879ffaa4e4a6e8a9f9c276c81585008c64bd2c7047430586"}]}, @OVS_FLOW_ATTR_ACTIONS={0x323, 0x2, 0x0, 0x1, [@generic="b9c8d71097faf7d8b74e5e92e5528cf3d26f6de4c8f9c2a93a46435c1bec2fcadd6c0d72b0a96fa9870ebe4cde2a04ec29b3914c5e8d0e2cf84beed6b28bbbc06c0fbbd69e7e31dfcd8277b9b726300ce3a481834b19a9b9a40dd2201217bf04a4068956d07166f22194f24592502a3b4a8cdfc9033813278e817133b1dd5410a39ad63511c537cd6a74407bdc72db6bd8159bc4c60fb7709b1100d389bb2d4a4d4f4413eaafbad55ba87f416c413d5fc6c948559b0e3d0c7ee1ffe2a2458869fa1ab3e3f115bb5debd96080d1fe85abdead", @generic="b45269c10d8a2796de4a0a43fa41e7920f9c8339ae175d3eba4a5b8b9f9743a9c90dde88f86bca9e672c3c503dc2d6361f5ef5c41bd1a2440bf571", @generic="fb00eafe5e9b985a5e4be6e514859b1c11f4ab617c863617ed554c0c800f4900f44b263aa8b9849fb7afa3cb1a21dceb88285aa20d814276e8284139bddce8b92767d90ea9592eeb255c4a1ce0252f78fc8ae5efd46736970e5e6b8853d64a70a32f5aca9c33d6ffc516a2f296ca9e5f23fbbd0d39e7c81c6025b9eeeffc038c67a5a6754ca6e9a6240a545da3c07cfa1fc56d027988dcf8dbd9319dad906929b69ce2b6a5f760626280d91b6f54d45248e731a1634c866edba89d334d447ac87a714d9c40f49bb638bab2b623b32e83608c1dae26b3018762afd3d983983dc64d7366576a39597a9808cbba84103e314eae2dbd21c5", @typed={0x8, 0x5, 0x0, 0x0, @pid=r2}, @typed={0x4, 0x68}, @nested={0x10f, 0x43, 0x0, 0x1, [@generic="e171ccb2833ae3fac72fcb7e14f286b4f850215eb1c6f7b7c0d078e93dee4f931340f64d8e291baa93b2fa8d3666bfe3bd214c9f0351abf122ddef1b8e1c495beabeb10ae90685d69fceece17a5bfeb8d92ae5d68643ce1ea25e4a3a60404841ff46386e27", @generic="50fbf60ecd1dc9a0b42fddee878c4908cc800170453c199bb12295fd1d5444ff83fb38cadcdfe4b40aa57bd3213d8601a3bcdba13c3775005ac5c238e0fb4521acddd26569dcd809b3e920e99c603c1285cb88376fa9aedf28436e99ca6fccb87e6875a66b60a9f2d2bdc14da966c54793d68283b44040d46e3518dc6e2d4690c14e066b17a2", @typed={0xc, 0x8b, 0x0, 0x0, @str='\\[-]]\\&\x00'}, @typed={0x8, 0x61, 0x0, 0x0, @uid=r3}, @typed={0xc, 0xfa, 0x0, 0x0, @u64=0x3}]}]}, @OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x7}, @OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x3}, @OVS_FLOW_ATTR_CLEAR={0x4}]}, 0x370}, 0x1, 0x0, 0x0, 0x4014000}, 0x40800)
socket(0xa, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)

4.949261493s ago: executing program 6 (id=1118):
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4001, @loopback}, 0x6b)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0)
socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
socket(0x11, 0x3, 0x3)
r0 = openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
close_range$auto(0x2, r0, 0xfffffffd)

4.92728361s ago: executing program 0 (id=1120):
mmap$auto(0x3, 0x5, 0x2, 0x9b7e, 0x2, 0x8000)
r0 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0)
write$auto_configfs_file_operations_configfs_internal(r0, 0x0, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x400000000000003, 0x29, 0xd1, 0x0, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NLBL_MGMT_C_REMOVE(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="030000", @ANYBLOB="000127bd7000ffdbdf250200000008"], 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x2008040)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="120027", @ANYBLOB="5de1523353782950330a"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB='!'], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x100, 0x0)

4.432078019s ago: executing program 6 (id=1122):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
futex_waitv$auto(&(0x7f0000000000)={0x0, 0x7e4, 0x2}, 0x1, 0x0, 0x0, 0x623d)

4.409921509s ago: executing program 4 (id=1123):
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
sendto$auto(r0, &(0x7f0000000200), 0xb, 0x5, &(0x7f0000000240), 0xc8e)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5)
syz_genetlink_get_family_id$auto_ovs_meter(0x0, r0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r1 = socket(0x15, 0x5, 0x0)
bind$auto(r1, &(0x7f0000000300), 0x68)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000003240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), r0)
write$auto(0x3, 0x0, 0xfffffdef)
setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0xdf, 0x91, 0xfff, 0x8001)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0xffffffffffff0001, 0x17)
socket(0x26, 0xa, 0x0)
process_mrelease$auto(0x24d, 0xd)
mmap$auto(0x0, 0x1, 0x4000000000df, 0x44eb2, 0x3, 0x300000000000)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000)
mmap$auto(0x6, 0x100, 0xdf, 0x9b7e, 0x2, 0x7ffd)
socket(0x11, 0x80003, 0x300)
mincore$auto(0x1000, 0x8001, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

3.694975839s ago: executing program 6 (id=1124):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/gro_flush_timeout\x00', 0x88282, 0x0)
sendfile$auto(r0, r0, 0x0, 0x1)
r1 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0x101040, 0x0)
setsockopt$auto(r1, 0x9, 0xf, 0x0, 0x6)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mq_open$auto(&(0x7f00000000c0)='\xff)-\\&[}\x00\x8b\xa5\x1f\x04< rU\xcf<,!\xc1\xa7\xcb\xedB\x1a\xc3P@V\xbbO\x86\xe6\x92}q\x92\x12\xff\x8a\xa1(\xa2\xc4Y\x88\tc<d\xd5N\x1az\xc2o\xf5b\xe4\x17\x16@\xa0dr\x15\x85\xad\x855\x90e\x96\a\xd1:&l\xcd1\xf1N\x11\xe4\xe97V\t\x93\x8f\xd2\x8e\xd9V\xf4\xe4p\xa7\a\xf9\xcf\x1c\xce\xf9\x0ff\xc2\xef\xe4\xb2\xf3\xc9\x0e\xc8\xac\xed\x16^VO\xb2}\x9e\x04\x8b\\\x92\xc18\x978h+s\x8a\xd9\t\xf1\t\xb7\xb8\xd9\rD+W\x98k\x1b\x9d\x1b\xde{H0\x0f\xdf\x9a\x7f\xde\xe9\xdc\xb8\xa3\x9cu^\x14s\x16\xd7\xaf\xda{\x1fO\xb3\xd3\x94\'C\a\xc1\xe8\x80\x1b\x8c\xbb\x7f\xa1\x9b\x93\n\xdeb\xa7\"qs\xd7\x97\x1f\x1b\xd7\x8aS5\n\x1c\xc7\x8a\xc0\xe9\x85\x80\aO\xb7e\xe1\xf3\xff\xca\x80\x17:\xaa3\xe7\xd4iJ\xc6\xd1\x902\xe1\x82W\x82N$D\xb7#Y<C\t\xad\x98\x03\xc9Da:\x8c\x05\xda4\x9b\x8eU$\x05^\x9e \x0fv!\a?\x88\v\xadu\x03\x15>', 0xde8, 0xf, 0x0)
mq_getsetattr$auto(0x0, &(0x7f0000000000)={0x0, 0x2, 0x7fff}, 0x0)
fanotify_init$auto(0x80000000, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f0000000080)=0x7)
r3 = openat$auto_show_traces_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/available_tracers\x00', 0x40000, 0x0)
read$auto_show_traces_fops_trace(r3, &(0x7f0000000640)=""/188, 0xbc)
read$auto_show_traces_fops_trace(r3, &(0x7f0000000000)=""/179, 0xb3)
mmap$auto(0x4000000, 0x0, 0xdf, 0xeb1, 0x40000000000a5, 0x3)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/platform/vivid.0/video4linux/video9/index\x00', 0x141c00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000b40)=""/4096, 0x1000)
mmap$auto_snd_pcm_oss_f_reg_pcm_oss(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x11, r2, 0x0)
write$auto_snd_pcm_oss_f_reg_pcm_oss(r2, &(0x7f0000000100)="e0e3732acb", 0x5)
write$auto(0x3, 0x0, 0x100082)

3.69237792s ago: executing program 0 (id=1132):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
futex_waitv$auto(&(0x7f0000000000)={0x0, 0x7e4, 0x2}, 0x1, 0x0, 0x0, 0x623d)

3.185515263s ago: executing program 0 (id=1125):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_TIOCGDEV2(r0, 0x80045432, &(0x7f0000000040)=0x9)
io_uring_setup$auto(0x6, 0x0)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0x22240, 0x155)
open(0x0, 0xa240, 0x1de)
openat$auto_clear_warn_once_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x101040, 0x0)

2.874560033s ago: executing program 5 (id=1126):
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
sendto$auto(r0, &(0x7f0000000200), 0xb, 0x5, &(0x7f0000000240), 0xc8e)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5)
syz_genetlink_get_family_id$auto_ovs_meter(0x0, r0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r1 = socket(0x15, 0x5, 0x0)
bind$auto(r1, &(0x7f0000000300), 0x68)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000003240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), r0)
write$auto(0x3, 0x0, 0xfffffdef)
setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0xdf, 0x91, 0xfff, 0x8001)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0xffffffffffff0001, 0x17)
socket(0x26, 0xa, 0x0)
process_mrelease$auto(0x24d, 0xd)
mmap$auto(0x0, 0x1, 0x4000000000df, 0x44eb2, 0x3, 0x300000000000)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000)
mmap$auto(0x6, 0x100, 0xdf, 0x9b7e, 0x2, 0x7ffd)
socket(0x11, 0x80003, 0x300)
mincore$auto(0x1000, 0x8001, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

1.867119965s ago: executing program 0 (id=1127):
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000180)='ns/ipc\x00')
socket(0x11, 0x80003, 0x300)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x88)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
bind$auto(0x3, 0x0, 0x6b)

1.856058922s ago: executing program 5 (id=1128):
select$auto(0x5, 0x0, 0x0, 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
eventfd$auto(0x8c)
mmap$auto(0x0, 0x400000, 0x9, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x10042, 0x0)
r1 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x2, 0x0)
write$auto_event_inject_fops_trace(r1, &(0x7f0000000340)="0400", 0x2)
ioctl$auto_KVM_CREATE_VM(r0, 0xc004ae02, 0x88)
ppoll$auto(&(0x7f0000000040)={0xffffffffffffffff, 0x3, 0x83}, 0xb, &(0x7f0000000080)={0x6, 0x3}, 0x0, 0x8)

1.18019248s ago: executing program 4 (id=1129):
close_range$auto(0x2, 0x8, 0x2)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0)
r0 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/psaux\x00', 0x8801, 0x0)
mbind$auto(0x40, 0x7ff, 0xac, &(0x7f0000000040)=0x8, 0x10000, 0xffffffff)
read$auto_mousedev_fops_mousedev(r0, 0x0, 0x0)
socket(0x28, 0x1, 0x0)
socket(0x28, 0x5, 0xfffffff8)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @hyper}, 0x55)
read$auto(0x3, 0x0, 0x80)

841.962605ms ago: executing program 5 (id=1130):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) (async)
landlock_add_rule$auto(r0, 0x1, &(0x7f0000000080), 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0xa, 0x3, 0x3a) (async)
setuid$auto(0xe) (async)
syslog$auto(0x1, 0x0, 0x9) (async)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) (async)
r1 = getpid()
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/system/memory/memory12/state\x00', 0x101000, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000080}, 0x800) (async)
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) (async)
syslog$auto(0x3, &(0x7f0000000100)='@\x00', 0x0)
r2 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_I2C_RDWR(r2, 0x707, 0x0) (async)
pipe$auto(0x0) (async)
fcntl$auto(0x3, 0x4, 0xa553) (async)
close_range$auto(0x2, 0x8, 0x0)

640.443905ms ago: executing program 0 (id=1131):
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4001, @loopback}, 0x6b)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0)
socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
socket(0x11, 0x3, 0x3)
r0 = openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
close_range$auto(0x2, r0, 0xfffffffd)

640.322423ms ago: executing program 4 (id=1133):
mmap$auto(0x3, 0x5, 0x2, 0x9b7e, 0x2, 0x8000)
r0 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0)
write$auto_configfs_file_operations_configfs_internal(r0, 0x0, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x400000000000003, 0x29, 0xd1, 0x0, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NLBL_MGMT_C_REMOVE(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="030000", @ANYBLOB="000127bd7000ffdbdf250200000008"], 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x2008040)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="120027", @ANYBLOB="5de1523353782950330a"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB='!'], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x100, 0x0)

545.797165ms ago: executing program 5 (id=1134):
r0 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
ioctl$auto_LOOP_CTL_ADD(r0, 0x4c80, 0x6c)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
fanotify_init$auto(0x65, 0x2)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
sysfs$auto(0x2, 0x100000000000039, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
pipe2$auto(0x0, 0x80)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x4601, 0x0)

361.352568ms ago: executing program 5 (id=1135):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
futex_waitv$auto(0x0, 0x1, 0x0, 0x0, 0x623d)

738.858µs ago: executing program 6 (id=1136):
openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/ieee80211/phy0/statistics/dot11RTSFailureCount\x00', 0x149040, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/transparent_hugepage/hugepages-2048kB/shmem_enabled\x00', 0x0, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mprotect$auto(0x1ffff000, 0x8000000001000001, 0xd)
mlockall$auto(0x8000000000000001)
mprotect$auto(0x1ffff000, 0x810002, 0x6)
write$auto(0xffffffffffffffff, 0x0, 0x2fe)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
madvise$auto(0x10000000000003, 0x62, 0x100e)
ioctl$auto(0xffffffffffffffff, 0x901064ad, 0x2)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x4, 0x1, 0x9, 0x3, 0xc, 0x1000000000940, 0x1ffde, 0x3, 0x6, 0x2, 0x6, 0x5, 0x2, 0x7, 0xb0, 0x9, 0x2, 0x7, 0x5, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, [0x0, 0x0, 0x200000000]}, 0x1fe, 0x81)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000006900)='/sys/kernel/config/target/dbroot\x00', 0x189002, 0x0)
r1 = openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x101000, 0x0)
read$auto(r1, 0x0, 0x8000000007)
write$auto(0x3, 0x0, 0xfdef)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/44, 0x2c)
getuid()
msgctl$auto(0x6, 0x1, &(0x7f0000000100)={{0x8, 0xee01, 0xee00, 0x7, 0x1, 0x4, 0xc}, &(0x7f0000000080)=0x18, &(0x7f00000000c0)=0x7f, 0x5, 0xa5, 0x1, 0x8fda, 0x1, 0x7fff, 0x6, 0x7755, @inferred=0xffffffffffffffff, @raw})
getpgid(0x0)

0s ago: executing program 5 (id=1137):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x2, 0x1)
r1 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/pcmC1D1p\x00', 0x208100, 0x0)
bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_11={0x7, 0x7, 0x5, 0x9, 0x6cccebb0, 0x2, 0x21, r1}, 0xcd6)
r2 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x100182, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00'})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01e39abc5800010000006b00000008000300", @ANYRES32=0x0], 0x24}, 0x1, 0x0, 0x0, 0x4000023}, 0x20008088)
ppoll$auto(&(0x7f00000000c0)={<r5=>r2, 0xf7f, 0x81}, 0x10, 0x0, 0x0, 0x8)
read$auto_proc_iter_file_ops_compat_inode(r5, &(0x7f0000001fc0)=""/83, 0x53)
read$auto(r0, 0x0, 0x210000001)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/netdevsim/new_device\x00', 0x103a00, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/rdma_readwrite_threshold\x00', 0x48041, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(0xffffffffffffffff, 0x40095505, &(0x7f0000000000)={0x3, 0x0, 0x5, 0x8, 0x0, 0xff, 0xb4, 0x2})
write$auto(r6, 0x0, 0x6)

kernel console output (not intermixed with test programs):

tadv_slave_1
[   70.283303][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.309338][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.338996][ T5826] team0: Port device team_slave_0 added
[   70.371970][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.380427][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.406780][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.420599][ T5826] team0: Port device team_slave_1 added
[   70.426891][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.434378][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.462343][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.534744][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.542940][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.569541][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.585601][ T5828] hsr_slave_0: entered promiscuous mode
[   70.592260][ T5828] hsr_slave_1: entered promiscuous mode
[   70.609046][ T5825] hsr_slave_0: entered promiscuous mode
[   70.615362][ T5825] hsr_slave_1: entered promiscuous mode
[   70.622531][ T5825] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.630914][ T5825] Cannot create hsr debugfs directory
[   70.637348][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.644314][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.670957][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.686362][ T5827] hsr_slave_0: entered promiscuous mode
[   70.693168][ T5827] hsr_slave_1: entered promiscuous mode
[   70.699742][ T5827] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.707649][ T5827] Cannot create hsr debugfs directory
[   70.795798][ T5826] hsr_slave_0: entered promiscuous mode
[   70.802160][ T5826] hsr_slave_1: entered promiscuous mode
[   70.810499][ T5826] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.818329][ T5826] Cannot create hsr debugfs directory
[   70.938293][ T5837] Bluetooth: hci0: command tx timeout
[   71.017309][ T5837] Bluetooth: hci2: command tx timeout
[   71.017417][   T54] Bluetooth: hci3: command tx timeout
[   71.075053][ T5825] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   71.088356][ T5825] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   71.097132][   T54] Bluetooth: hci1: command tx timeout
[   71.118369][ T5825] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   71.128829][ T5825] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   71.151375][ T5827] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   71.173254][ T5827] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   71.184522][ T5827] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   71.200880][ T5827] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   71.260110][ T5828] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   71.274903][ T5828] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   71.285181][ T5828] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   71.296557][ T5828] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   71.371505][ T5826] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   71.383982][ T5826] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   71.406158][ T5826] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   71.416419][ T5826] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   71.489790][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.513071][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.556368][ T5825] 8021q: adding VLAN 0 to HW filter on device team0
[   71.570098][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.580041][ T5827] 8021q: adding VLAN 0 to HW filter on device team0
[   71.613899][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.621274][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.643897][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.651026][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.663933][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.671064][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.692699][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[   71.711132][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.718313][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.756308][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.783067][ T5826] 8021q: adding VLAN 0 to HW filter on device team0
[   71.793611][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.800780][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.822416][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[   71.829268][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[   71.834128][ T5825] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   71.851718][ T5825] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   71.883726][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.890963][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.916594][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.923808][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.941073][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.948268][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.114963][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.209800][ T5825] veth0_vlan: entered promiscuous mode
[   72.243597][ T5825] veth1_vlan: entered promiscuous mode
[   72.334737][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.373882][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.384452][ T5825] veth0_macvtap: entered promiscuous mode
[   72.409188][ T5825] veth1_macvtap: entered promiscuous mode
[   72.451322][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.469598][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.482212][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.514214][ T5825] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.523820][ T5825] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.534435][ T5825] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.544332][ T5825] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.564676][ T5827] veth0_vlan: entered promiscuous mode
[   72.591824][ T5827] veth1_vlan: entered promiscuous mode
[   72.610267][ T5826] veth0_vlan: entered promiscuous mode
[   72.646979][ T5826] veth1_vlan: entered promiscuous mode
[   72.715703][ T5828] veth0_vlan: entered promiscuous mode
[   72.727275][ T5826] veth0_macvtap: entered promiscuous mode
[   72.739870][ T5826] veth1_macvtap: entered promiscuous mode
[   72.752675][ T5827] veth0_macvtap: entered promiscuous mode
[   72.762351][ T5827] veth1_macvtap: entered promiscuous mode
[   72.783162][ T5828] veth1_vlan: entered promiscuous mode
[   72.799052][   T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.810207][   T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.843744][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.855678][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.869566][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.882430][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.893304][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.904737][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.923675][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.925631][ T5827] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.942004][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.945910][ T5827] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.958527][ T5827] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.967345][ T5827] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.981066][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.992945][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.003024][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.014274][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.018261][   T54] Bluetooth: hci0: command tx timeout
[   73.030831][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.046309][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.057571][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.067611][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.078283][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.089198][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.098184][   T54] Bluetooth: hci2: command tx timeout
[   73.101838][ T5828] veth0_macvtap: entered promiscuous mode
[   73.103608][   T54] Bluetooth: hci3: command tx timeout
[   73.124979][ T5828] veth1_macvtap: entered promiscuous mode
[   73.135783][ T5826] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.144838][ T5826] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.154450][ T5826] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.163286][ T5826] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.177675][   T54] Bluetooth: hci1: command tx timeout
[   73.208789][ T5825] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   73.297135][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.309268][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.319387][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.330187][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.341375][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.356664][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.368741][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.410297][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.427001][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.436873][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.449040][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.459515][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.470254][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.480922][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.499604][ T5888] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   73.522685][ T5888] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   73.533112][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.555476][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.587766][ T5828] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.598774][ T5828] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.607991][ T5828] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.616848][ T5828] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.660803][   T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.684788][   T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.746031][   T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.770508][   T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.800390][   T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.822832][   T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.853918][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.877628][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.972326][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.998551][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.511846][ T5909] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   74.529663][ T5903] netlink: zone id is out of range
[   74.546547][ T5903] netlink: set zone limit has 8 unknown bytes
[   75.097621][   T54] Bluetooth: hci0: command tx timeout
[   75.177279][   T54] Bluetooth: hci2: command tx timeout
[   75.177294][ T5837] Bluetooth: hci3: command tx timeout
[   75.257817][   T54] Bluetooth: hci1: command tx timeout
[   75.631696][ T5928] erspan0: entered allmulticast mode
[   75.792027][ T5936] Zero length message leads to an empty skb
[   76.711443][ T5953] size and base must be multiples of 4 kiB
[   76.734576][ T5953] CPU: 1 UID: 0 PID: 5953 Comm: syz.1.17 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[   76.745152][ T5953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   76.755259][ T5953] Call Trace:
[   76.758570][ T5953]  <TASK>
[   76.761538][ T5953]  dump_stack_lvl+0x16c/0x1f0
[   76.766280][ T5953]  mtrr_add+0xdf/0x110
[   76.770411][ T5953]  mtrr_ioctl+0x7cd/0xcd0
[   76.774850][ T5953]  ? __pfx_mtrr_ioctl+0x10/0x10
[   76.779777][ T5953]  ? __pfx_lock_release+0x10/0x10
[   76.784857][ T5953]  ? __fget_files+0x206/0x3a0
[   76.789591][ T5953]  ? __pfx_mtrr_ioctl+0x10/0x10
[   76.794510][ T5953]  proc_reg_unlocked_ioctl+0x226/0x320
[   76.800025][ T5953]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[   76.806073][ T5953]  __x64_sys_ioctl+0x190/0x200
[   76.810893][ T5953]  do_syscall_64+0xcd/0x250
[   76.815454][ T5953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.822009][ T5953] RIP: 0033:0x7fd227f85d29
[   76.826466][ T5953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.846130][ T5953] RSP: 002b:00007fd228dd8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   76.854565][ T5953] RAX: ffffffffffffffda RBX: 00007fd228175fa0 RCX: 00007fd227f85d29
[   76.862557][ T5953] RDX: 0000000000000002 RSI: 00000000400c4d01 RDI: 0000000000000004
[   76.870540][ T5953] RBP: 00007fd228001a20 R08: 0000000000000000 R09: 0000000000000000
[   76.878522][ T5953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   76.886505][ T5953] R13: 0000000000000000 R14: 00007fd228175fa0 R15: 00007ffc9671ff68
[   76.894500][ T5953]  </TASK>
[   76.972038][ T5955] lo: entered allmulticast mode
[   76.988913][ T5955] netlink: 28 bytes leftover after parsing attributes in process `syz.3.19'.
[   77.020632][ T5898] mmap: syz.2.3 (5898) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   77.178462][   T54] Bluetooth: hci0: command tx timeout
[   77.257249][   T54] Bluetooth: hci2: command tx timeout
[   77.271661][   T54] Bluetooth: hci3: command tx timeout
[   77.340200][   T54] Bluetooth: hci1: command tx timeout
[   77.465154][ T5954] lo: left allmulticast mode
[   77.570428][ T5963] process 'syz.1.20' launched '/dev/fd/4/./file1' with NULL argv: empty string added
[   78.755190][ T5994] size and base must be multiples of 4 kiB
[   78.761215][ T5991] erspan0: entered allmulticast mode
[   78.766733][ T5994] CPU: 1 UID: 0 PID: 5994 Comm: syz.3.29 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[   78.777288][ T5994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   78.787381][ T5994] Call Trace:
[   78.790689][ T5994]  <TASK>
[   78.793661][ T5994]  dump_stack_lvl+0x16c/0x1f0
[   78.798393][ T5994]  mtrr_add+0xdf/0x110
[   78.802530][ T5994]  mtrr_ioctl+0x7cd/0xcd0
[   78.806920][ T5994]  ? __pfx_mtrr_ioctl+0x10/0x10
[   78.811824][ T5994]  ? __pfx_lock_release+0x10/0x10
[   78.816904][ T5994]  ? __fget_files+0x206/0x3a0
[   78.821629][ T5994]  ? __pfx_mtrr_ioctl+0x10/0x10
[   78.826550][ T5994]  proc_reg_unlocked_ioctl+0x226/0x320
[   78.832068][ T5994]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[   78.838106][ T5994]  __x64_sys_ioctl+0x190/0x200
[   78.842916][ T5994]  do_syscall_64+0xcd/0x250
[   78.847468][ T5994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.853415][ T5994] RIP: 0033:0x7fa6fad85d29
[   78.857871][ T5994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.877523][ T5994] RSP: 002b:00007fa6f8bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   78.885994][ T5994] RAX: ffffffffffffffda RBX: 00007fa6faf75fa0 RCX: 00007fa6fad85d29
[   78.894013][ T5994] RDX: 0000000000000002 RSI: 00000000400c4d01 RDI: 0000000000000004
[   78.902030][ T5994] RBP: 00007fa6fae01a20 R08: 0000000000000000 R09: 0000000000000000
[   78.910041][ T5994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   78.918052][ T5994] R13: 0000000000000000 R14: 00007fa6faf75fa0 R15: 00007ffff3753128
[   78.926079][ T5994]  </TASK>
[   79.574515][ T6008] lo: entered allmulticast mode
[   79.588247][ T6010] netlink: 4 bytes leftover after parsing attributes in process `syz.3.33'.
[   79.609970][ T6008] netlink: 28 bytes leftover after parsing attributes in process `syz.2.32'.
[   79.868294][ T6014] Process accounting resumed
[   80.013829][ T6007] lo: left allmulticast mode
[   80.682384][ T6025] =======================================================
[   80.682384][ T6025] WARNING: The mand mount option has been deprecated and
[   80.682384][ T6025]          and is ignored by this kernel. Remove the mand
[   80.682384][ T6025]          option from the mount to silence this warning.
[   80.682384][ T6025] =======================================================
[   80.782706][ T6036] FAULT_INJECTION: forcing a failure.
[   80.782706][ T6036] name failslab, interval 1, probability 0, space 0, times 1
[   80.804154][ T6036] CPU: 0 UID: 0 PID: 6036 Comm: syz.1.40 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[   80.814737][ T6036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   80.824829][ T6036] Call Trace:
[   80.828121][ T6036]  <TASK>
[   80.831063][ T6036]  dump_stack_lvl+0x16c/0x1f0
[   80.835763][ T6036]  should_fail_ex+0x497/0x5b0
[   80.840455][ T6036]  ? fs_reclaim_acquire+0xae/0x150
[   80.845583][ T6036]  should_failslab+0xc2/0x120
[   80.850284][ T6036]  kmem_cache_alloc_noprof+0x6e/0x3b0
[   80.855677][ T6036]  ? ptlock_alloc+0x1f/0x70
[   80.860200][ T6036]  ptlock_alloc+0x1f/0x70
[   80.864546][ T6036]  pte_alloc_one+0x74/0x390
[   80.869062][ T6036]  __pte_alloc+0x6e/0x3b0
[   80.873425][ T6036]  ? __pfx___pte_alloc+0x10/0x10
[   80.878391][ T6036]  do_pte_missing+0x2810/0x3e00
[   80.883263][ T6036]  ? mt_find+0x82d/0xa20
[   80.887526][ T6036]  ? __pfx_lock_release+0x10/0x10
[   80.892560][ T6036]  __handle_mm_fault+0x103c/0x2a40
[   80.897696][ T6036]  ? __pfx___handle_mm_fault+0x10/0x10
[   80.903164][ T6036]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   80.908816][ T6036]  ? find_vma+0xc0/0x140
[   80.913071][ T6036]  ? __pfx_find_vma+0x10/0x10
[   80.917759][ T6036]  handle_mm_fault+0x3fa/0xaa0
[   80.922539][ T6036]  do_user_addr_fault+0x7a3/0x13f0
[   80.927664][ T6036]  exc_page_fault+0x5c/0xc0
[   80.932180][ T6036]  asm_exc_page_fault+0x26/0x30
[   80.937045][ T6036] RIP: 0010:rep_movs_alternative+0x4a/0x70
[   80.942872][ T6036] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[   80.962490][ T6036] RSP: 0018:ffffc9000443fda0 EFLAGS: 00050202
[   80.968566][ T6036] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000055
[   80.976542][ T6036] RDX: fffff52000887fce RSI: 0000000000000000 RDI: ffffc9000443fe18
[   80.984518][ T6036] RBP: 0000000000000055 R08: 0000000000000001 R09: fffff52000887fcd
[   80.992511][ T6036] R10: ffffc9000443fe6c R11: 0000000000000000 R12: 0000000000000000
[   81.000487][ T6036] R13: ffffc9000443fe18 R14: 0000000000000055 R15: 0000000000000000
[   81.008477][ T6036]  _copy_from_user+0x9a/0xd0
[   81.013087][ T6036]  move_addr_to_kernel+0x68/0x160
[   81.018122][ T6036]  __sys_connect+0xb0/0x170
[   81.022638][ T6036]  ? __pfx___sys_connect+0x10/0x10
[   81.027768][ T6036]  ? __pfx_ksys_write+0x10/0x10
[   81.032634][ T6036]  __x64_sys_connect+0x72/0xb0
[   81.037409][ T6036]  ? lockdep_hardirqs_on+0x7c/0x110
[   81.042618][ T6036]  do_syscall_64+0xcd/0x250
[   81.047133][ T6036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.053037][ T6036] RIP: 0033:0x7fd227f85d29
[   81.057470][ T6036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.077085][ T6036] RSP: 002b:00007fd228db7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   81.085507][ T6036] RAX: ffffffffffffffda RBX: 00007fd228176080 RCX: 00007fd227f85d29
[   81.093484][ T6036] RDX: 0000000000000055 RSI: 0000000000000000 RDI: 0000000000000003
[   81.101460][ T6036] RBP: 00007fd228db7090 R08: 0000000000000000 R09: 0000000000000000
[   81.109436][ T6036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.117412][ T6036] R13: 0000000000000001 R14: 00007fd228176080 R15: 00007ffc9671ff68
[   81.125401][ T6036]  </TASK>
[   81.555002][ T6041] size and base must be multiples of 4 kiB
[   81.571844][ T6041] CPU: 1 UID: 0 PID: 6041 Comm: syz.2.42 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[   81.582422][ T6041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   81.592524][ T6041] Call Trace:
[   81.595838][ T6041]  <TASK>
[   81.598806][ T6041]  dump_stack_lvl+0x16c/0x1f0
[   81.603546][ T6041]  mtrr_add+0xdf/0x110
[   81.607676][ T6041]  mtrr_ioctl+0x7cd/0xcd0
[   81.612062][ T6041]  ? __pfx_mtrr_ioctl+0x10/0x10
[   81.616966][ T6041]  ? __pfx_lock_release+0x10/0x10
[   81.622045][ T6041]  ? __fget_files+0x206/0x3a0
[   81.626783][ T6041]  ? __pfx_mtrr_ioctl+0x10/0x10
[   81.631688][ T6041]  proc_reg_unlocked_ioctl+0x226/0x320
[   81.637196][ T6041]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[   81.643245][ T6041]  __x64_sys_ioctl+0x190/0x200
[   81.648061][ T6041]  do_syscall_64+0xcd/0x250
[   81.652624][ T6041]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.658587][ T6041] RIP: 0033:0x7f767d385d29
[   81.663044][ T6041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.682697][ T6041] RSP: 002b:00007f767b1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   81.691160][ T6041] RAX: ffffffffffffffda RBX: 00007f767d575fa0 RCX: 00007f767d385d29
[   81.699191][ T6041] RDX: 0000000000000002 RSI: 00000000400c4d01 RDI: 0000000000000004
[   81.707212][ T6041] RBP: 00007f767d401a20 R08: 0000000000000000 R09: 0000000000000000
[   81.715240][ T6041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   81.723260][ T6041] R13: 0000000000000000 R14: 00007f767d575fa0 R15: 00007ffebd6e2458
[   81.731302][ T6041]  </TASK>
[   82.438544][ T6055] erspan0: entered allmulticast mode
[   83.119469][ T6064] lo: entered allmulticast mode
[   83.130378][ T6065] netlink: 28 bytes leftover after parsing attributes in process `syz.0.47'.
[   83.920006][ T6063] lo: left allmulticast mode
[   84.349581][ T6092] size and base must be multiples of 4 kiB
[   84.355446][ T6092] CPU: 0 UID: 0 PID: 6092 Comm: syz.0.54 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[   84.365997][ T6092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   84.376087][ T6092] Call Trace:
[   84.379395][ T6092]  <TASK>
[   84.382348][ T6092]  dump_stack_lvl+0x16c/0x1f0
[   84.387066][ T6092]  mtrr_add+0xdf/0x110
[   84.391176][ T6092]  mtrr_ioctl+0x7cd/0xcd0
[   84.395554][ T6092]  ? __pfx_mtrr_ioctl+0x10/0x10
[   84.400456][ T6092]  ? __pfx_lock_release+0x10/0x10
[   84.405533][ T6092]  ? __fget_files+0x206/0x3a0
[   84.410255][ T6092]  ? __pfx_mtrr_ioctl+0x10/0x10
[   84.415161][ T6092]  proc_reg_unlocked_ioctl+0x226/0x320
[   84.420675][ T6092]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[   84.426703][ T6092]  __x64_sys_ioctl+0x190/0x200
[   84.431514][ T6092]  do_syscall_64+0xcd/0x250
[   84.436062][ T6092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.442001][ T6092] RIP: 0033:0x7f3767185d29
[   84.446460][ T6092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.466109][ T6092] RSP: 002b:00007f3767f68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   84.474572][ T6092] RAX: ffffffffffffffda RBX: 00007f3767375fa0 RCX: 00007f3767185d29
[   84.482594][ T6092] RDX: 0000000000000002 RSI: 00000000400c4d01 RDI: 0000000000000004
[   84.490603][ T6092] RBP: 00007f3767201a20 R08: 0000000000000000 R09: 0000000000000000
[   84.498610][ T6092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   84.506591][ T6092] R13: 0000000000000000 R14: 00007f3767375fa0 R15: 00007fff93d033b8
[   84.514581][ T6092]  </TASK>
[   84.571127][ T6095] binder: 6094:6095 ioctl c0306201 9 returned -14
[   85.273376][ T6117] block mtdblock0: the capability attribute has been deprecated.
[   85.599959][ T6130] lo: entered allmulticast mode
[   85.620354][ T6130] netlink: 28 bytes leftover after parsing attributes in process `syz.1.64'.
[   86.022839][ T6129] lo: left allmulticast mode
[   86.279614][ T6150] size and base must be multiples of 4 kiB
[   86.285495][ T6150] CPU: 0 UID: 0 PID: 6150 Comm: syz.3.69 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[   86.296046][ T6150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   86.306139][ T6150] Call Trace:
[   86.309461][ T6150]  <TASK>
[   86.312425][ T6150]  dump_stack_lvl+0x16c/0x1f0
[   86.317239][ T6150]  mtrr_add+0xdf/0x110
[   86.321370][ T6150]  mtrr_ioctl+0x7cd/0xcd0
[   86.325763][ T6150]  ? __pfx_mtrr_ioctl+0x10/0x10
[   86.330684][ T6150]  ? __pfx_lock_release+0x10/0x10
[   86.335790][ T6150]  ? __fget_files+0x206/0x3a0
[   86.340517][ T6150]  ? __pfx_mtrr_ioctl+0x10/0x10
[   86.345425][ T6150]  proc_reg_unlocked_ioctl+0x226/0x320
[   86.350939][ T6150]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[   86.356981][ T6150]  __x64_sys_ioctl+0x190/0x200
[   86.361800][ T6150]  do_syscall_64+0xcd/0x250
[   86.366351][ T6150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.372293][ T6150] RIP: 0033:0x7fa6fad85d29
[   86.376744][ T6150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.396394][ T6150] RSP: 002b:00007fa6f8bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   86.404858][ T6150] RAX: ffffffffffffffda RBX: 00007fa6faf75fa0 RCX: 00007fa6fad85d29
[   86.412874][ T6150] RDX: 0000000000000002 RSI: 00000000400c4d01 RDI: 0000000000000004
[   86.420924][ T6150] RBP: 00007fa6fae01a20 R08: 0000000000000000 R09: 0000000000000000
[   86.428935][ T6150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.436950][ T6150] R13: 0000000000000000 R14: 00007fa6faf75fa0 R15: 00007ffff3753128
[   86.444984][ T6150]  </TASK>
[   86.465189][ T6145] erspan0: entered allmulticast mode
[   86.724415][ T6159] netlink: 372 bytes leftover after parsing attributes in process `syz.1.71'.
[   87.186573][   T46] cfg80211: failed to load regulatory.db
[   87.989221][ T6172] openvswitch: netlink: Duplicate key (type 15).
[   88.285011][ T6182] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   88.295835][ T6182] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   88.453772][ T6185] lo: entered allmulticast mode
[   88.469308][ T6185] netlink: 28 bytes leftover after parsing attributes in process `syz.1.80'.
[   88.493398][ T6184] lo: left allmulticast mode
[   89.358738][ T6219] capability: warning: `syz.2.86' uses 32-bit capabilities (legacy support in use)
[   89.839947][ T6230] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   89.867473][ T6230] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   90.428045][ T6255] FAULT_INJECTION: forcing a failure.
[   90.428045][ T6255] name failslab, interval 1, probability 0, space 0, times 0
[   90.482558][ T6255] CPU: 1 UID: 0 PID: 6255 Comm: syz.0.95 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[   90.493130][ T6255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   90.503194][ T6255] Call Trace:
[   90.506478][ T6255]  <TASK>
[   90.509412][ T6255]  dump_stack_lvl+0x16c/0x1f0
[   90.514105][ T6255]  should_fail_ex+0x497/0x5b0
[   90.518797][ T6255]  ? fs_reclaim_acquire+0xae/0x150
[   90.523917][ T6255]  should_failslab+0xc2/0x120
[   90.528609][ T6255]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[   90.534951][ T6255]  ? kstrdup_const+0x63/0x80
[   90.539553][ T6255]  kstrdup+0x42/0xb0
[   90.543462][ T6255]  kstrdup_const+0x63/0x80
[   90.547889][ T6255]  __kernfs_new_node+0x9c/0x890
[   90.552751][ T6255]  ? hlock_class+0x4e/0x130
[   90.557269][ T6255]  ? __pfx___kernfs_new_node+0x10/0x10
[   90.562759][ T6255]  ? __pfx___lock_acquire+0x10/0x10
[   90.567982][ T6255]  kernfs_new_node+0x186/0x240
[   90.572760][ T6255]  ? lock_acquire.part.0+0x11b/0x380
[   90.578054][ T6255]  kernfs_create_dir_ns+0x4c/0x150
[   90.583184][ T6255]  sysfs_create_dir_ns+0x13b/0x2b0
[   90.588322][ T6255]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   90.594000][ T6255]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   90.599383][ T6255]  ? kobject_add_internal+0x12d/0x990
[   90.604768][ T6255]  ? do_raw_spin_unlock+0x172/0x230
[   90.609975][ T6255]  kobject_add_internal+0x2c8/0x990
[   90.615192][ T6255]  kobject_init_and_add+0x11c/0x190
[   90.620407][ T6255]  ? __pfx_kobject_init_and_add+0x10/0x10
[   90.626142][ T6255]  ? lockdep_init_map_type+0x16d/0x7d0
[   90.631612][ T6255]  ? __raw_spin_lock_init+0x3a/0x110
[   90.636911][ T6255]  bus_add_driver+0x186/0x690
[   90.641607][ T6255]  driver_register+0x15c/0x4b0
[   90.646390][ T6255]  usb_gadget_register_driver_owner+0x132/0x330
[   90.652650][ T6255]  raw_ioctl+0x1924/0x2a50
[   90.657079][ T6255]  ? __pfx_raw_ioctl+0x10/0x10
[   90.661851][ T6255]  ? __fget_files+0x206/0x3a0
[   90.666544][ T6255]  ? __pfx_raw_ioctl+0x10/0x10
[   90.671326][ T6255]  __x64_sys_ioctl+0x190/0x200
[   90.676100][ T6255]  do_syscall_64+0xcd/0x250
[   90.680623][ T6255]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.686615][ T6255] RIP: 0033:0x7f3767185d29
[   90.691034][ T6255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.710739][ T6255] RSP: 002b:00007f3767f68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   90.719161][ T6255] RAX: ffffffffffffffda RBX: 00007f3767375fa0 RCX: 00007f3767185d29
[   90.727143][ T6255] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000003
[   90.735116][ T6255] RBP: 00007f3767f68090 R08: 0000000000000000 R09: 0000000000000000
[   90.743092][ T6255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.751067][ T6255] R13: 0000000000000000 R14: 00007f3767375fa0 R15: 00007fff93d033b8
[   90.759055][ T6255]  </TASK>
[   90.786393][ T6257] openvswitch: netlink: Duplicate key (type 15).
[   90.807293][ T6255] kobject: kobject_add_internal failed for raw-gadget.0 (error: -12 parent: drivers)
[   90.829121][ T6255] UDC core: USB Raw Gadget: driver registration failed: -12
[   90.883713][ T6255] misc raw-gadget: fail, usb_gadget_register_driver returned -12
[   91.490447][ T6273] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.526015][ T6273] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.550322][ T6276] lo: entered allmulticast mode
[   91.668145][ T6276] netlink: 28 bytes leftover after parsing attributes in process `syz.2.102'.
[   91.759940][ T6275] lo: left allmulticast mode
[   92.689165][ T6310] openvswitch: netlink: Duplicate key (type 15).
[   93.548447][ T6338] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.570078][ T6338] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   93.948616][ T6350] qrtr: Invalid version 0
[   95.106075][ T6388] openvswitch: netlink: Duplicate key (type 15).
[   95.291209][ T6393] qrtr: Invalid version 0
[   97.347631][ T6442] syz.0.149 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   97.537790][ T6445] qrtr: Invalid version 0
[   99.262929][ T6486] FAULT_INJECTION: forcing a failure.
[   99.262929][ T6486] name failslab, interval 1, probability 0, space 0, times 0
[   99.317096][   T29] audit: type=1800 audit(1734581304.647:2): pid=6474 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.150" name="members" dev="configfs" ino=10479 res=0 errno=0
[   99.341414][ T6486] CPU: 0 UID: 0 PID: 6486 Comm: syz.2.148 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[   99.352157][ T6486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   99.362222][ T6486] Call Trace:
[   99.365507][ T6486]  <TASK>
[   99.368448][ T6486]  dump_stack_lvl+0x16c/0x1f0
[   99.373152][ T6486]  should_fail_ex+0x497/0x5b0
[   99.377850][ T6486]  ? fs_reclaim_acquire+0xae/0x150
[   99.382978][ T6486]  should_failslab+0xc2/0x120
[   99.387675][ T6486]  __kmalloc_noprof+0xce/0x4f0
[   99.392480][ T6486]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   99.398121][ T6486]  ? tomoyo_realpath_from_path+0xbf/0x710
[   99.403859][ T6486]  tomoyo_realpath_from_path+0xbf/0x710
[   99.409428][ T6486]  ? tomoyo_path_number_perm+0x235/0x5b0
[   99.415087][ T6486]  tomoyo_path_number_perm+0x248/0x5b0
[   99.420563][ T6486]  ? tomoyo_path_number_perm+0x235/0x5b0
[   99.426218][ T6486]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   99.432242][ T6486]  ? __pfx_lock_release+0x10/0x10
[   99.437276][ T6486]  ? trace_lock_acquire+0x14e/0x1f0
[   99.442493][ T6486]  ? lock_acquire+0x2f/0xb0
[   99.447003][ T6486]  ? __fget_files+0x40/0x3a0
[   99.451610][ T6486]  ? __fget_files+0x206/0x3a0
[   99.456300][ T6486]  security_file_ioctl+0x9b/0x240
[   99.461424][ T6486]  __x64_sys_ioctl+0xb7/0x200
[   99.466116][ T6486]  do_syscall_64+0xcd/0x250
[   99.470638][ T6486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.476549][ T6486] RIP: 0033:0x7f767d385d29
[   99.480969][ T6486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.500592][ T6486] RSP: 002b:00007f767b1b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   99.509020][ T6486] RAX: ffffffffffffffda RBX: 00007f767d576160 RCX: 00007f767d385d29
[   99.517004][ T6486] RDX: 0000000000000007 RSI: 000000000000560a RDI: 0000000000000005
[   99.524988][ T6486] RBP: 00007f767b1b4090 R08: 0000000000000000 R09: 0000000000000000
[   99.532969][ T6486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.540948][ T6486] R13: 0000000000000000 R14: 00007f767d576160 R15: 00007ffebd6e2458
[   99.549030][ T6486]  </TASK>
[   99.757149][ T6486] ERROR: Out of memory at tomoyo_realpath_from_path.
[   99.924332][ T6491] FAULT_INJECTION: forcing a failure.
[   99.924332][ T6491] name failslab, interval 1, probability 0, space 0, times 0
[   99.957004][ T6491] CPU: 1 UID: 0 PID: 6491 Comm: syz.3.152 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[   99.967745][ T6491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   99.977830][ T6491] Call Trace:
[   99.981125][ T6491]  <TASK>
[   99.984064][ T6491]  dump_stack_lvl+0x16c/0x1f0
[   99.988763][ T6491]  should_fail_ex+0x497/0x5b0
[   99.993480][ T6491]  ? fs_reclaim_acquire+0xae/0x150
[   99.998607][ T6491]  should_failslab+0xc2/0x120
[  100.003300][ T6491]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[  100.009991][ T6491]  ? __d_alloc+0x35/0x8c0
[  100.014339][ T6491]  __d_alloc+0x35/0x8c0
[  100.018605][ T6491]  d_alloc+0x4a/0x1e0
[  100.022605][ T6491]  d_alloc_parallel+0xe9/0x12b0
[  100.027477][ T6491]  ? __pfx_d_alloc_parallel+0x10/0x10
[  100.032860][ T6491]  ? lockdep_init_map_type+0x16d/0x7d0
[  100.039117][ T6491]  ? lock_acquire.part.0+0x11b/0x380
[  100.044411][ T6491]  ? lockdep_init_map_type+0x16d/0x7d0
[  100.049887][ T6491]  __lookup_slow+0x194/0x460
[  100.054495][ T6491]  ? __pfx___lookup_slow+0x10/0x10
[  100.059632][ T6491]  ? walk_component+0x342/0x5b0
[  100.064499][ T6491]  ? lookup_fast+0x155/0x540
[  100.069122][ T6491]  walk_component+0x350/0x5b0
[  100.073832][ T6491]  link_path_walk.part.0.constprop.0+0x669/0xd40
[  100.080193][ T6491]  path_openat+0x228/0x2d60
[  100.084714][ T6491]  ? hlock_class+0x4e/0x130
[  100.089254][ T6491]  ? __pfx_path_openat+0x10/0x10
[  100.094208][ T6491]  ? __pfx___lock_acquire+0x10/0x10
[  100.099428][ T6491]  ? lock_acquire.part.0+0x11b/0x380
[  100.104723][ T6491]  ? find_held_lock+0x2d/0x110
[  100.109501][ T6491]  do_filp_open+0x20c/0x470
[  100.114020][ T6491]  ? __pfx_do_filp_open+0x10/0x10
[  100.119056][ T6491]  ? find_held_lock+0x2d/0x110
[  100.123842][ T6491]  ? __pfx_kfree_link+0x10/0x10
[  100.128718][ T6491]  ? alloc_fd+0x41f/0x760
[  100.133069][ T6491]  do_sys_openat2+0x17a/0x1e0
[  100.137764][ T6491]  ? __pfx_do_sys_openat2+0x10/0x10
[  100.142982][ T6491]  ? __fget_files+0x206/0x3a0
[  100.147675][ T6491]  __x64_sys_openat+0x175/0x210
[  100.152547][ T6491]  ? __pfx___x64_sys_openat+0x10/0x10
[  100.157937][ T6491]  ? ksys_write+0x1ba/0x250
[  100.162463][ T6491]  do_syscall_64+0xcd/0x250
[  100.166986][ T6491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.172898][ T6491] RIP: 0033:0x7fa6fad85d29
[  100.177325][ T6491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.196956][ T6491] RSP: 002b:00007fa6f8bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  100.205395][ T6491] RAX: ffffffffffffffda RBX: 00007fa6faf75fa0 RCX: 00007fa6fad85d29
[  100.213381][ T6491] RDX: 00000000000c0000 RSI: 0000000020000080 RDI: ffffffffffffff9c
[  100.221366][ T6491] RBP: 00007fa6f8bf6090 R08: 0000000000000000 R09: 0000000000000000
[  100.229354][ T6491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.237337][ T6491] R13: 0000000000000001 R14: 00007fa6faf75fa0 R15: 00007ffff3753128
[  100.245337][ T6491]  </TASK>
[  104.377138][ T6505] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  104.407160][ T6507] qrtr: Invalid version 0
[  106.788079][ T6574] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  107.182210][ T6581] netlink: 24 bytes leftover after parsing attributes in process `syz.1.177'.
[  107.958534][ T6605] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  108.350298][ T6609] netlink: 28 bytes leftover after parsing attributes in process `syz.2.187'.
[  108.377345][ T6623] zero sized request
[  108.839650][ T6630] [U] 
[  108.842572][ T6630] [U] 
[  108.845291][ T6630] [U] 
[  108.847992][ T6630] [U] 
[  108.877530][ T6630] [U] 
[  108.880320][ T6630] [U] 
[  108.883072][ T6630] [U] 
[  108.885895][ T6630] [U] 
[  108.935620][ T6634] [U] 
[  109.294994][ T6609] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  109.335833][ T6609] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  109.369346][ T6609] bond0 (unregistering): Released all slaves
[  109.408686][ T6640] netlink: 342 bytes leftover after parsing attributes in process `syz.3.197'.
[  109.788938][ T6648] [U] 
[  109.791724][ T6648] [U] 
[  109.794470][ T6648] [U] 
[  109.797211][ T6648] [U] 
[  109.823254][ T6654] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  109.827274][ T6648] [U] 
[  109.834501][ T6648] [U] 
[  109.837239][ T6648] [U] 
[  109.839977][ T6648] [U] 
[  109.867347][ T6648] [U] 
[  109.870130][ T6648] [U] 
[  109.872870][ T6648] [U] 
[  109.875606][ T6648] [U] 
[  109.892609][ T6650] [U] 
[  110.173530][ T6662] netlink: 122 bytes leftover after parsing attributes in process `syz.1.201'.
[  110.521666][ T6674] [U] 
[  110.524442][ T6674] [U] 
[  110.527166][ T6674] [U] 
[  110.530076][ T6674] [U] 
[  110.577615][ T6674] [U] 
[  110.580392][ T6674] [U] 
[  110.583124][ T6674] [U] 
[  110.585853][ T6674] [U] 
[  110.596388][ T6674] [U] 
[  110.599154][ T6674] [U] 
[  110.601874][ T6674] [U] 
[  110.604599][ T6674] [U] 
[  110.657255][ T6674] [U] 
[  110.660026][ T6674] [U] 
[  110.662757][ T6674] [U] 
[  110.665478][ T6674] [U] 
[  110.677517][ T6666] [U] 
[  111.890258][ T6709] openvswitch: netlink: nsh attr 160 is out of range max 3
[  112.715121][ T6720] [U] 
[  112.717907][ T6720] [U] 
[  112.720640][ T6720] [U] 
[  112.723382][ T6720] [U] 
[  112.767691][ T6743] [U] 
[  115.507900][ T6791] [U] 
[  115.510668][ T6791] [U] 
[  115.513396][ T6791] [U] 
[  115.516119][ T6791] [U] 
[  115.567474][ T6791] [U] 
[  115.570246][ T6791] [U] 
[  115.572971][ T6791] [U] 
[  115.575698][ T6791] [U] 
[  115.681917][ T6790] [U] 
[  116.235581][ T6810] FAULT_INJECTION: forcing a failure.
[  116.235581][ T6810] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  116.291297][ T6810] CPU: 1 UID: 0 PID: 6810 Comm: syz.0.239 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  116.301956][ T6810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  116.312051][ T6810] Call Trace:
[  116.315351][ T6810]  <TASK>
[  116.318315][ T6810]  dump_stack_lvl+0x16c/0x1f0
[  116.323037][ T6810]  should_fail_ex+0x497/0x5b0
[  116.327767][ T6810]  _copy_from_user+0x2e/0xd0
[  116.332404][ T6810]  copy_msghdr_from_user+0x99/0x160
[  116.337655][ T6810]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  116.343536][ T6810]  ___sys_sendmsg+0xff/0x1e0
[  116.348197][ T6810]  ? __pfx____sys_sendmsg+0x10/0x10
[  116.353466][ T6810]  ? __pfx_lock_release+0x10/0x10
[  116.358533][ T6810]  ? trace_lock_acquire+0x14e/0x1f0
[  116.363796][ T6810]  ? __fget_files+0x206/0x3a0
[  116.368530][ T6810]  __sys_sendmsg+0x16e/0x220
[  116.373176][ T6810]  ? __pfx___sys_sendmsg+0x10/0x10
[  116.378359][ T6810]  do_syscall_64+0xcd/0x250
[  116.382917][ T6810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.388866][ T6810] RIP: 0033:0x7f3767185d29
[  116.393314][ T6810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.412959][ T6810] RSP: 002b:00007f3767f68038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  116.421425][ T6810] RAX: ffffffffffffffda RBX: 00007f3767375fa0 RCX: 00007f3767185d29
[  116.429442][ T6810] RDX: 0000000020000004 RSI: 0000000020000100 RDI: 0000000000000003
[  116.437453][ T6810] RBP: 00007f3767f68090 R08: 0000000000000000 R09: 0000000000000000
[  116.445458][ T6810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.453472][ T6810] R13: 0000000000000000 R14: 00007f3767375fa0 R15: 00007fff93d033b8
[  116.461503][ T6810]  </TASK>
[  116.464654][    C1] vkms_vblank_simulate: vblank timer overrun
[  118.187342][   T35] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.509745][   T35] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.605207][ T5837] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  118.614432][ T5837] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  118.624394][ T5837] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  118.637936][ T5837] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  118.654613][ T5837] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  118.662148][ T5837] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  118.768704][ T6847] netlink: 28 bytes leftover after parsing attributes in process `syz.1.250'.
[  118.818719][   T35] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.970292][   T35] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.390286][   T35] bridge_slave_1: left allmulticast mode
[  119.396324][   T35] bridge_slave_1: left promiscuous mode
[  119.405365][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.435338][   T35] bridge_slave_0: left allmulticast mode
[  119.447095][   T35] bridge_slave_0: left promiscuous mode
[  119.452867][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.968931][   T35] erspan0 (unregistering): left allmulticast mode
[  120.472420][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  120.534974][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  120.545597][   T35] bond0 (unregistering): Released all slaves
[  120.573292][ T6846] chnl_net:caif_netlink_parms(): no params data found
[  120.704180][   T54] Bluetooth: hci3: command tx timeout
[  120.835085][ T6846] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.867220][ T6846] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.887730][ T6846] bridge_slave_0: entered allmulticast mode
[  120.894944][ T6846] bridge_slave_0: entered promiscuous mode
[  120.928363][ T6846] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.935522][ T6846] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.964038][ T6846] bridge_slave_1: entered allmulticast mode
[  120.972378][ T6846] bridge_slave_1: entered promiscuous mode
[  121.160965][ T6846] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  121.270722][ T6846] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  121.385300][   T35] hsr_slave_0: left promiscuous mode
[  121.408938][   T35] hsr_slave_1: left promiscuous mode
[  121.417797][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  121.425301][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[  121.448571][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  121.456035][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[  121.547605][   T35] veth1_macvtap: left promiscuous mode
[  121.553634][   T35] veth0_macvtap: left promiscuous mode
[  121.559896][   T35] veth1_vlan: left promiscuous mode
[  121.565461][   T35] veth0_vlan: left promiscuous mode
[  122.488301][   T35] team0 (unregistering): Port device team_slave_1 removed
[  122.594469][   T35] team0 (unregistering): Port device team_slave_0 removed
[  122.777201][   T54] Bluetooth: hci3: command tx timeout
[  123.731644][ T6846] team0: Port device team_slave_0 added
[  123.759464][ T6846] team0: Port device team_slave_1 added
[  123.896161][ T6846] batman_adv: batadv0: Adding interface: batadv_slave_0
[  123.922321][ T6846] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  123.983418][ T6846] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  124.009156][ T6846] batman_adv: batadv0: Adding interface: batadv_slave_1
[  124.016152][ T6846] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  124.056842][ T6846] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  124.175803][ T6846] hsr_slave_0: entered promiscuous mode
[  124.202894][ T6846] hsr_slave_1: entered promiscuous mode
[  124.223116][ T6846] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  124.239110][ T6846] Cannot create hsr debugfs directory
[  124.489098][ T6846] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  124.504178][ T6846] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  124.514013][ T6846] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  124.524042][ T6846] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  124.597376][ T6846] 8021q: adding VLAN 0 to HW filter on device bond0
[  124.615545][ T6846] 8021q: adding VLAN 0 to HW filter on device team0
[  124.638165][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.645300][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  124.664618][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.671802][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  124.857145][   T54] Bluetooth: hci3: command tx timeout
[  124.908399][ T6846] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.183296][ T6846] veth0_vlan: entered promiscuous mode
[  125.202184][ T6846] veth1_vlan: entered promiscuous mode
[  125.245944][ T6846] veth0_macvtap: entered promiscuous mode
[  125.258000][ T6846] veth1_macvtap: entered promiscuous mode
[  125.274900][ T6846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  125.286747][ T6846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.297358][ T6846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  125.308357][ T6846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.318562][ T6846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  125.329392][ T6846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.341285][ T6846] batman_adv: batadv0: Interface activated: batadv_slave_0
[  125.357791][ T6846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.374117][ T6846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.385019][ T6846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.398710][ T6846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.408913][ T6846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.419712][ T6846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.431448][ T6846] batman_adv: batadv0: Interface activated: batadv_slave_1
[  125.454712][ T6846] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  125.464646][ T6846] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  125.480264][ T6846] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  125.489363][ T6846] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  125.590584][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  125.602546][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  125.633468][ T6742] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  125.646501][ T6742] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.937189][   T54] Bluetooth: hci3: command tx timeout
[  128.008959][ T7020] netlink: 16 bytes leftover after parsing attributes in process `syz.1.265'.
[  128.397938][ T7025] usb usb6: usbfs: process 7025 (syz.0.260) did not claim interface 0 before use
[  130.431418][ T7092] Invalid ELF header magic: != ELF
[  131.030629][ T7101] netlink: 32 bytes leftover after parsing attributes in process `syz.1.284'.
[  131.116492][ T7097] HfR: entered promiscuous mode
[  132.237576][ T7127] netlink: 32 bytes leftover after parsing attributes in process `syz.2.291'.
[  132.884445][ T7137] Invalid ELF header magic: != ELF
[  133.267428][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  133.277326][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  133.763592][ T7144] HfR: entered promiscuous mode
[  133.834689][ T7157] netlink: 32 bytes leftover after parsing attributes in process `syz.4.296'.
[  135.484403][ T7167] netlink: 32 bytes leftover after parsing attributes in process `syz.0.301'.
[  139.542806][ T7220] Invalid ELF header magic: != ELF
[  139.930462][ T7237] netlink: 32 bytes leftover after parsing attributes in process `syz.1.312'.
[  139.995489][ T7218] HfR: entered promiscuous mode
[  140.108054][ T7222] netlink: 32 bytes leftover after parsing attributes in process `syz.2.311'.
[  141.516051][   T29] audit: type=1107 audit(1734581346.868:3): pid=7275 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  141.937420][ T7291] netlink: 28 bytes leftover after parsing attributes in process `syz.0.322'.
[  141.996291][ T7291] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  142.333007][ T7291] batman_adv: batadv0: Removing interface: batadv_slave_0
[  143.384951][ T7296] netlink: 8 bytes leftover after parsing attributes in process `syz.4.320'.
[  145.603209][ T7368] HfR: entered promiscuous mode
[  145.651126][ T7368] netlink: 32 bytes leftover after parsing attributes in process `syz.0.331'.
[  145.663515][   T29] audit: type=1107 audit(1734581351.018:4): pid=7364 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  145.743632][ T7377] netlink: 32 bytes leftover after parsing attributes in process `syz.4.323'.
[  146.194630][ T7385] netlink: 32 bytes leftover after parsing attributes in process `syz.1.336'.
[  146.267467][ T7384] Invalid ELF header magic: != ELF
[  147.032429][ T7406] netlink: 28 bytes leftover after parsing attributes in process `syz.1.334'.
[  147.041952][ T7406] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  147.097361][ T7406] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.505625][   T29] audit: type=1107 audit(1734581352.858:5): pid=7409 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  147.938950][ T7418] bridge0: port 3(hsr0) entered blocking state
[  147.960325][ T7418] bridge0: port 3(hsr0) entered disabled state
[  147.966732][ T7418] hsr0: entered allmulticast mode
[  147.984736][ T7418] hsr_slave_0: entered allmulticast mode
[  147.991408][ T7418] hsr_slave_1: entered allmulticast mode
[  148.019507][ T7418] hsr0: entered promiscuous mode
[  148.038102][ T7418] bridge0: port 3(hsr0) entered blocking state
[  148.045514][ T7418] bridge0: port 3(hsr0) entered forwarding state
[  148.186581][ T7433] netlink: 2 bytes leftover after parsing attributes in process `syz.0.344'.
[  148.412780][ T7438] Invalid ELF header magic: != ELF
[  148.567508][ T7424] netlink: 8 bytes leftover after parsing attributes in process `syz.1.338'.
[  149.760580][   T29] audit: type=1107 audit(1734581355.118:6): pid=7443 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  149.969517][ T7452] netlink: 28 bytes leftover after parsing attributes in process `syz.4.350'.
[  149.997159][ T7452] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  150.128513][ T7452] batman_adv: batadv0: Removing interface: batadv_slave_0
[  150.439062][ T7457] Process accounting resumed
[  150.659597][ T7461] netlink: 28 bytes leftover after parsing attributes in process `syz.4.353'.
[  150.703082][ T7461] veth0_macvtap: left promiscuous mode
[  150.721963][ T7461] macvtap0: entered allmulticast mode
[  151.156001][ T7480] netlink: 'syz.0.359': attribute type 2 has an invalid length.
[  151.622403][ T7489] netlink: 28 bytes leftover after parsing attributes in process `syz.2.361'.
[  151.817381][ T7489] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  151.877064][ T7498] Process accounting resumed
[  151.885708][ T7489] batman_adv: batadv0: Removing interface: batadv_slave_0
[  152.486819][ T7509] netlink: 'syz.4.368': attribute type 2 has an invalid length.
[  153.248740][ T7516] netlink: 8 bytes leftover after parsing attributes in process `syz.2.367'.
[  154.918885][ T7553] vivid-009: =================  START STATUS  =================
[  155.037180][ T7553] vivid-009: Enable Output Cropping: true grabbed
[  155.043963][ T7553] vivid-009: Enable Output Composing: true grabbed
[  155.297090][ T7553] vivid-009: Enable Output Scaler: true grabbed
[  155.303442][ T7553] vivid-009: Tx RGB Quantization Range: Automatic grabbed
[  155.462037][ T7553] vivid-009: Transmit Mode: HDMI grabbed
[  155.522731][ T7553] vivid-009: Hotplug Present: 0x00000000
[  155.560963][ T7553] vivid-009: RxSense Present: 0x00000000
[  155.656377][ T7553] vivid-009: EDID Present: 0x00000000
[  155.693155][ T7553] vivid-009: ==================  END STATUS  ==================
[  157.426512][ T7565] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  157.433153][ T7565] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  157.470585][ T7565] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  157.508218][ T7565] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  157.514244][ T7565] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  157.821553][ T7565] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  157.850957][ T7586] : Can't lookup blockdev
[  158.010244][ T7565] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  158.061871][ T7565] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  158.146221][ T7565] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  158.225106][ T7565] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  158.266673][ T7565] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  158.325332][ T7565] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  158.937180][   T54] Bluetooth: hci2: command 0x0c1a tx timeout
[  159.141696][ T7607] netlink: 'syz.2.394': attribute type 2 has an invalid length.
[  159.177369][ T7603] netlink: 8 bytes leftover after parsing attributes in process `syz.0.393'.
[  159.479384][ T7611] vivid-009: =================  START STATUS  =================
[  159.561426][ T7611] vivid-009: Enable Output Cropping: true grabbed
[  159.577136][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[  159.661909][ T7611] vivid-009: Enable Output Composing: true grabbed
[  159.697850][ T7611] vivid-009: Enable Output Scaler: true grabbed
[  159.734876][ T7611] vivid-009: Tx RGB Quantization Range: Automatic grabbed
[  159.780615][ T7611] vivid-009: Transmit Mode: HDMI grabbed
[  159.827119][ T7611] vivid-009: Hotplug Present: 0x00000000
[  159.847119][ T7611] vivid-009: RxSense Present: 0x00000000
[  159.852928][ T7611] vivid-009: EDID Present: 0x00000000
[  159.902988][ T7611] vivid-009: ==================  END STATUS  ==================
[  160.061686][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[  160.297066][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[  161.017523][   T54] Bluetooth: hci2: command 0x0c1a tx timeout
[  161.419705][ T7649] FAULT_INJECTION: forcing a failure.
[  161.419705][ T7649] name failslab, interval 1, probability 0, space 0, times 0
[  161.448318][ T7649] CPU: 0 UID: 0 PID: 7649 Comm: syz.2.406 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  161.458975][ T7649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  161.469065][ T7649] Call Trace:
[  161.472379][ T7649]  <TASK>
[  161.475342][ T7649]  dump_stack_lvl+0x16c/0x1f0
[  161.480069][ T7649]  should_fail_ex+0x497/0x5b0
[  161.484787][ T7649]  ? fs_reclaim_acquire+0xae/0x150
[  161.489943][ T7649]  should_failslab+0xc2/0x120
[  161.494677][ T7649]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  161.500100][ T7649]  ? vm_area_dup+0x21/0x300
[  161.504655][ T7649]  vm_area_dup+0x21/0x300
[  161.509030][ T7649]  __split_vma+0x181/0x1210
[  161.513591][ T7649]  ? __pfx___split_vma+0x10/0x10
[  161.518605][ T7649]  vms_gather_munmap_vmas+0x38b/0x1730
[  161.524128][ T7649]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  161.530168][ T7649]  ? mas_walk+0x6a6/0x910
[  161.534547][ T7649]  __mmap_region+0x31d/0x2670
[  161.539277][ T7649]  ? __pfx___mmap_region+0x10/0x10
[  161.544438][ T7649]  ? hlock_class+0x4e/0x130
[  161.548994][ T7649]  ? mark_lock+0xb5/0xc60
[  161.553382][ T7649]  ? hlock_class+0x4e/0x130
[  161.557935][ T7649]  ? __pfx___lock_acquire+0x10/0x10
[  161.563249][ T7649]  ? cap_mmap_addr+0x53/0x320
[  161.567972][ T7649]  mmap_region+0x127/0x320
[  161.572428][ T7649]  do_mmap+0xc00/0xfc0
[  161.576543][ T7649]  vm_mmap_pgoff+0x1ba/0x360
[  161.581185][ T7649]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  161.586350][ T7649]  ? __fget_files+0x206/0x3a0
[  161.591080][ T7649]  ksys_mmap_pgoff+0x32c/0x5c0
[  161.595891][ T7649]  ? __pfx_ksys_write+0x10/0x10
[  161.600792][ T7649]  __x64_sys_mmap+0x125/0x190
[  161.605526][ T7649]  do_syscall_64+0xcd/0x250
[  161.610082][ T7649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.616023][ T7649] RIP: 0033:0x7f767d385d29
[  161.620496][ T7649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.640148][ T7649] RSP: 002b:00007f767b1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  161.648605][ T7649] RAX: ffffffffffffffda RBX: 00007f767d575fa0 RCX: 00007f767d385d29
[  161.656613][ T7649] RDX: 0000000000010000 RSI: 0000000000000009 RDI: 0000000000000000
[  161.657294][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[  161.664592][ T7649] RBP: 00007f767b1f6090 R08: 0000001000000004 R09: 0000000000000000
[  161.678601][ T7649] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001
[  161.686612][ T7649] R13: 0000000000000000 R14: 00007f767d575fa0 R15: 00007ffebd6e2458
[  161.694646][ T7649]  </TASK>
[  161.784838][ T7622] syz.1.402: vmalloc error: size 67117056, failed to allocated page array size 131088, mode:0xc22(GFP_ATOMIC|__GFP_HIGHMEM|__GFP_DIRECT_RECLAIM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  161.831211][ T7622] CPU: 0 UID: 0 PID: 7622 Comm: syz.1.402 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  161.841874][ T7622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  161.851969][ T7622] Call Trace:
[  161.855274][ T7622]  <TASK>
[  161.858230][ T7622]  dump_stack_lvl+0x16c/0x1f0
[  161.862961][ T7622]  warn_alloc+0x24d/0x3a0
[  161.867351][ T7622]  ? __pfx_warn_alloc+0x10/0x10
[  161.872273][ T7622]  ? __get_vm_area_node+0x1b0/0x2f0
[  161.877513][ T7622]  ? __get_vm_area_node+0x1dc/0x2f0
[  161.882757][ T7622]  __vmalloc_node_range_noprof+0x1105/0x1530
[  161.888805][ T7622]  ? ctl_ioctl+0x862/0xde0
[  161.893284][ T7622]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  161.899662][ T7622]  ? rcu_is_watching+0x12/0xc0
[  161.904474][ T7622]  ? trace_kmalloc+0x2d/0xd0
[  161.909104][ T7622]  ? __kmalloc_node_noprof.cold+0x5a/0x5f
[  161.914883][ T7622]  ? ctl_ioctl+0x862/0xde0
[  161.919357][ T7622]  __kvmalloc_node_noprof+0x14f/0x1a0
[  161.924796][ T7622]  ? ctl_ioctl+0x862/0xde0
[  161.929261][ T7622]  ctl_ioctl+0x862/0xde0
[  161.933551][ T7622]  ? __pfx_get_target_version+0x10/0x10
[  161.939144][ T7622]  ? do_vfs_ioctl+0x513/0x1950
[  161.943968][ T7622]  ? __pfx_ctl_ioctl+0x10/0x10
[  161.948816][ T7622]  ? __fget_files+0x206/0x3a0
[  161.953551][ T7622]  dm_ctl_ioctl+0x22/0x30
[  161.957931][ T7622]  ? __pfx_dm_ctl_ioctl+0x10/0x10
[  161.963009][ T7622]  __x64_sys_ioctl+0x190/0x200
[  161.967823][ T7622]  do_syscall_64+0xcd/0x250
[  161.972370][ T7622]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.978305][ T7622] RIP: 0033:0x7fd227f85d29
[  161.982748][ T7622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.002406][ T7622] RSP: 002b:00007fd228d96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  162.010871][ T7622] RAX: ffffffffffffffda RBX: 00007fd228176160 RCX: 00007fd227f85d29
[  162.018881][ T7622] RDX: 00000000200001c0 RSI: fffffffffffffd11 RDI: 0000000000000009
[  162.026893][ T7622] RBP: 00007fd228001a20 R08: 0000000000000000 R09: 0000000000000000
[  162.034898][ T7622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  162.042913][ T7622] R13: 0000000000000000 R14: 00007fd228176160 R15: 00007ffc9671ff68
[  162.050943][ T7622]  </TASK>
[  162.107047][ T7622] Mem-Info:
[  162.110223][ T7622] active_anon:95737 inactive_anon:0 isolated_anon:0
[  162.110223][ T7622]  active_file:8286 inactive_file:51096 isolated_file:0
[  162.110223][ T7622]  unevictable:782 dirty:257 writeback:0
[  162.110223][ T7622]  slab_reclaimable:10364 slab_unreclaimable:96754
[  162.110223][ T7622]  mapped:44839 shmem:86174 pagetables:1087
[  162.110223][ T7622]  sec_pagetables:0 bounce:0
[  162.110223][ T7622]  kernel_misc_reclaimable:0
[  162.110223][ T7622]  free:1239460 free_pcp:3899 free_cma:0
[  162.157333][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[  162.377013][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[  162.458923][ T7622] Node 0 active_anon:382432kB inactive_anon:0kB active_file:33144kB inactive_file:204320kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:180296kB dirty:1108kB writeback:0kB shmem:342540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11980kB pagetables:4468kB sec_pagetables:0kB all_unreclaimable? no
[  162.639278][ T7622] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  162.862215][ T7622] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  162.976728][ T7666] vivid-009: =================  START STATUS  =================
[  162.991680][ T7622] lowmem_reserve[]: 0 2465 2466 0 0
[  162.997262][ T7622] Node 0 DMA32 free:823568kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:380092kB inactive_anon:0kB active_file:33144kB inactive_file:203492kB unevictable:1536kB writepending:1208kB present:3129332kB managed:2551336kB mlocked:0kB bounce:0kB free_pcp:10140kB local_pcp:756kB free_cma:0kB
[  163.037539][ T7666] vivid-009: Enable Output Cropping: true grabbed
[  163.044206][ T7666] vivid-009: Enable Output Composing: true grabbed
[  163.045718][ T7622] lowmem_reserve[]: 0 0 0 0 0
[  163.061460][ T7622] Node 0 Normal free:8kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:828kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  163.088490][ T7622] lowmem_reserve[]: 0 0 0 0 0
[  163.089926][ T7666] vivid-009: Enable Output Scaler: 
[  163.093252][ T7622] Node 1 Normal free:3899648kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:8444kB local_pcp:6120kB free_cma:0kB
[  163.104214][   T54] Bluetooth: hci2: command 0x0c1a tx timeout
[  163.128104][ T7622] lowmem_reserve[]: 0 0 0 0 0
[  163.144179][ T7666] true grabbed
[  163.167246][ T7666] vivid-009: Tx RGB Quantization Range: Automatic grabbed
[  163.178903][ T7666] vivid-009: Transmit Mode: HDMI grabbed
[  163.184621][ T7666] vivid-009: Hotplug Present: 0x00000000
[  163.223436][ T7666] vivid-009: RxSense Present: 0x00000000
[  163.343890][ T7666] vivid-009: EDID Present: 0x00000000
[  163.362369][ T7666] vivid-009: ==================  END STATUS  ==================
[  163.376161][ T7622] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  163.424901][ T7622] Node 0 DMA32: 2571*4kB (UME) 1011*8kB (UME) 548*16kB (UME) 231*32kB (UME) 71*64kB (UME) 46*128kB (UME) 23*256kB (UME) 23*512kB (UME) 3*1024kB (ME) 1*2048kB (U) 166*4096kB (M) = 747684kB
[  163.523025][ T7622] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  163.606832][ T7622] Node 1 Normal: 76*4kB (UE) 2*8kB (UE) 6*16kB (E) 15*32kB (UE) 64*64kB (UME) 31*128kB (UE) 14*256kB (UME) 8*512kB (UM) 4*1024kB (UM) 4*2048kB (UME) 945*4096kB (M) = 3899648kB
[  163.707101][ T7622] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  163.716724][ T7622] Node 0 hugepages_total=4 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  163.737567][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[  163.907081][ T7622] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  163.908334][ T7672] netlink: 24 bytes leftover after parsing attributes in process `syz.2.413'.
[  163.916667][ T7622] Node 1 hugepages_total=3 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  163.967193][ T7622] 134275 total pagecache pages
[  163.972020][ T7622] 11 pages in swap cache
[  163.976284][ T7622] Free swap  = 124380kB
[  163.997200][ T7622] Total swap = 124996kB
[  164.001626][ T7622] 2097051 pages RAM
[  164.005469][ T7622] 0 pages HighMem/MovableOnly
[  164.017154][ T7622] 427367 pages reserved
[  164.021356][ T7622] 0 pages cma reserved
[  164.227290][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[  164.370594][ T7680] netlink: 252 bytes leftover after parsing attributes in process `syz.0.411'.
[  164.457499][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[  165.271611][ T7692] netlink: 4 bytes leftover after parsing attributes in process `syz.0.417'.
[  166.220116][ T7702] netlink: 28 bytes leftover after parsing attributes in process `syz.0.429'.
[  166.851181][ T7712] vivid-009: =================  START STATUS  =================
[  166.930251][ T7712] vivid-009: Enable Output Cropping: true grabbed
[  166.936778][ T7712] vivid-009: Enable Output Composing: true grabbed
[  167.005078][ T7712] vivid-009: Enable Output Scaler: true grabbed
[  167.044189][ T7712] vivid-009: Tx RGB Quantization Range: Automatic grabbed
[  167.096952][ T7712] vivid-009: Transmit Mode: HDMI grabbed
[  167.126364][ T7712] vivid-009: Hotplug Present: 0x00000000
[  167.192569][ T7712] vivid-009: RxSense Present: 0x00000000
[  167.203228][ T7712] vivid-009: EDID Present: 0x00000000
[  167.237034][ T7712] vivid-009: ==================  END STATUS  ==================
[  167.306152][ T7683] Process accounting resumed
[  168.983665][ T7725] vivid-009: =================  START STATUS  =================
[  169.026290][ T7725] vivid-009: Enable Output Cropping: true grabbed
[  169.077992][ T7725] vivid-009: Enable Output Composing: true grabbed
[  169.084610][ T7725] vivid-009: Enable Output Scaler: true grabbed
[  169.137184][ T7725] vivid-009: Tx RGB Quantization Range: Automatic grabbed
[  169.164526][ T7725] vivid-009: Transmit Mode: HDMI grabbed
[  169.208589][ T7725] vivid-009: Hotplug Present: 0x00000000
[  169.272435][ T7725] vivid-009: RxSense Present: 0x00000000
[  169.301612][ T7725] vivid-009: EDID Present: 0x00000000
[  169.317494][ T7725] vivid-009: ==================  END STATUS  ==================
[  170.179847][ T7751] Process accounting resumed
[  172.791409][   T29] audit: type=1800 audit(1734581378.148:7): pid=7819 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm=FFFFF2FFFFFFF2FFFFFFF2FFFFFFF2 name="features" dev="configfs" ino=16647 res=0 errno=0
[  172.836836][   T29] audit: type=1800 audit(1734581378.168:8): pid=7822 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.449" name="features" dev="configfs" ino=16647 res=0 errno=0
[  176.274838][ T7902] sp0: Synchronizing with TNC
[  183.547820][ T8031] FAULT_INJECTION: forcing a failure.
[  183.547820][ T8031] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  183.600062][ T8031] CPU: 0 UID: 0 PID: 8031 Comm: syz.0.509 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  183.610722][ T8031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  183.620822][ T8031] Call Trace:
[  183.624133][ T8031]  <TASK>
[  183.627094][ T8031]  dump_stack_lvl+0x16c/0x1f0
[  183.631811][ T8031]  should_fail_ex+0x497/0x5b0
[  183.636529][ T8031]  _copy_from_user+0x2e/0xd0
[  183.641165][ T8031]  copy_msghdr_from_user+0x99/0x160
[  183.646420][ T8031]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  183.652296][ T8031]  ___sys_sendmsg+0xff/0x1e0
[  183.656934][ T8031]  ? __pfx____sys_sendmsg+0x10/0x10
[  183.662199][ T8031]  ? __pfx_lock_release+0x10/0x10
[  183.667259][ T8031]  ? trace_lock_acquire+0x14e/0x1f0
[  183.672514][ T8031]  ? __fget_files+0x206/0x3a0
[  183.677236][ T8031]  __sys_sendmsg+0x16e/0x220
[  183.681880][ T8031]  ? __pfx___sys_sendmsg+0x10/0x10
[  183.687066][ T8031]  do_syscall_64+0xcd/0x250
[  183.691612][ T8031]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.697547][ T8031] RIP: 0033:0x7f3767185d29
[  183.702004][ T8031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.721654][ T8031] RSP: 002b:00007f3767f68038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  183.730116][ T8031] RAX: ffffffffffffffda RBX: 00007f3767375fa0 RCX: 00007f3767185d29
[  183.738135][ T8031] RDX: 0000000000000010 RSI: 0000000020000400 RDI: 0000000000000003
[  183.746147][ T8031] RBP: 00007f3767f68090 R08: 0000000000000000 R09: 0000000000000000
[  183.754163][ T8031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  183.762176][ T8031] R13: 0000000000000000 R14: 00007f3767375fa0 R15: 00007fff93d033b8
[  183.770213][ T8031]  </TASK>
[  185.616646][ T8084] ALSA: mixer_oss: invalid OSS volume ' '
[  189.129933][ T8175] zero sized request
[  189.800979][ T8201] netlink: 93 bytes leftover after parsing attributes in process `syz.1.568'.
[  189.834471][ T8195] netlink: 93 bytes leftover after parsing attributes in process `syz.1.568'.
[  191.306463][ T8250] netlink: 354 bytes leftover after parsing attributes in process `syz.1.594'.
[  192.067997][ T8274] netlink: 28 bytes leftover after parsing attributes in process `syz.4.592'.
[  192.216798][ T8274] hsr_slave_1 (unregistering): left promiscuous mode
[  192.302294][ T8298] netlink: 330 bytes leftover after parsing attributes in process `syz.1.601'.
[  193.954500][ T8339] netlink: 330 bytes leftover after parsing attributes in process `syz.1.614'.
[  194.133454][ T8345] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  194.175077][ T8345] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  194.237938][ T8350] netlink: 8 bytes leftover after parsing attributes in process `syz.2.617'.
[  194.703807][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  194.710392][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  194.862352][ T8359] FAULT_INJECTION: forcing a failure.
[  194.862352][ T8359] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  194.880205][ T8359] CPU: 1 UID: 0 PID: 8359 Comm: syz.2.620 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  194.890863][ T8359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  194.900955][ T8359] Call Trace:
[  194.904269][ T8359]  <TASK>
[  194.907227][ T8359]  dump_stack_lvl+0x16c/0x1f0
[  194.911950][ T8359]  should_fail_ex+0x497/0x5b0
[  194.916668][ T8359]  ? fs_reclaim_acquire+0xae/0x150
[  194.921817][ T8359]  should_fail_alloc_page+0xe7/0x130
[  194.927135][ T8359]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  194.933325][ T8359]  ? hlock_class+0x4e/0x130
[  194.937842][ T8359]  __alloc_pages_noprof+0x190/0x25b0
[  194.943151][ T8359]  ? hlock_class+0x4e/0x130
[  194.947668][ T8359]  ? mark_lock+0xb5/0xc60
[  194.952017][ T8359]  ? __pfx_mark_lock+0x10/0x10
[  194.956795][ T8359]  ? __pfx_register_lock_class+0x10/0x10
[  194.962435][ T8359]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  194.968173][ T8359]  ? hlock_class+0x4e/0x130
[  194.972687][ T8359]  ? hlock_class+0x4e/0x130
[  194.977199][ T8359]  ? mark_lock+0xb5/0xc60
[  194.981544][ T8359]  ? hlock_class+0x4e/0x130
[  194.986061][ T8359]  ? __pfx_mark_lock+0x10/0x10
[  194.990852][ T8359]  ? hlock_class+0x4e/0x130
[  194.995379][ T8359]  ? __lock_acquire+0xcc5/0x3c40
[  195.000333][ T8359]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  195.006242][ T8359]  ? policy_nodemask+0xea/0x4e0
[  195.011124][ T8359]  alloc_pages_mpol_noprof+0x2c9/0x610
[  195.016608][ T8359]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  195.022620][ T8359]  ? __lock_acquire+0xcc5/0x3c40
[  195.027588][ T8359]  folio_alloc_mpol_noprof+0x36/0xd0
[  195.032897][ T8359]  vma_alloc_folio_noprof+0xee/0x1b0
[  195.038192][ T8359]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  195.044098][ T8359]  ? find_held_lock+0x2d/0x110
[  195.048891][ T8359]  do_pte_missing+0x2017/0x3e00
[  195.053772][ T8359]  __handle_mm_fault+0x103c/0x2a40
[  195.058906][ T8359]  ? __pfx___handle_mm_fault+0x10/0x10
[  195.064377][ T8359]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  195.070039][ T8359]  ? find_vma+0xc0/0x140
[  195.074291][ T8359]  ? __pfx_find_vma+0x10/0x10
[  195.078981][ T8359]  handle_mm_fault+0x3fa/0xaa0
[  195.083765][ T8359]  do_user_addr_fault+0x7a3/0x13f0
[  195.088893][ T8359]  exc_page_fault+0x5c/0xc0
[  195.093416][ T8359]  asm_exc_page_fault+0x26/0x30
[  195.098281][ T8359] RIP: 0010:rep_movs_alternative+0x15/0x70
[  195.104124][ T8359] Code: cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84
[  195.123751][ T8359] RSP: 0018:ffffc9000c0c7af8 EFLAGS: 00050202
[  195.129831][ T8359] RAX: 0000000000000031 RBX: 0000000020001100 RCX: 0000000000000002
[  195.137818][ T8359] RDX: ffffed100be71401 RSI: ffff88805f38a000 RDI: 0000000020001100
[  195.145800][ T8359] RBP: ffffc9000c0c7da0 R08: 0000000000000000 R09: ffffed100be71400
[  195.153781][ T8359] R10: ffff88805f38a001 R11: 0000000000000002 R12: 0000000020001102
[  195.161762][ T8359] R13: 00007ffffffff000 R14: ffff88805f38a000 R15: 0000000000000002
[  195.169757][ T8359]  _copy_to_iter+0x384/0x1400
[  195.174456][ T8359]  ? trace_lock_acquire+0x14e/0x1f0
[  195.179673][ T8359]  ? __pfx_lock_release+0x10/0x10
[  195.184706][ T8359]  ? __pfx__copy_to_iter+0x10/0x10
[  195.189837][ T8359]  ? __virt_addr_valid+0x1a4/0x590
[  195.194973][ T8359]  ? __virt_addr_valid+0x5e/0x590
[  195.200013][ T8359]  ? __phys_addr_symbol+0x30/0x80
[  195.205058][ T8359]  ? __check_object_size+0x488/0x710
[  195.210376][ T8359]  seq_read_iter+0xd00/0x12b0
[  195.215092][ T8359]  kernfs_fop_read_iter+0x414/0x580
[  195.220309][ T8359]  ? rw_verify_area+0xd0/0x700
[  195.225091][ T8359]  vfs_read+0x87f/0xbe0
[  195.229264][ T8359]  ? __pfx_vfs_read+0x10/0x10
[  195.233966][ T8359]  ksys_read+0x12b/0x250
[  195.238226][ T8359]  ? __pfx_ksys_read+0x10/0x10
[  195.243008][ T8359]  do_syscall_64+0xcd/0x250
[  195.247527][ T8359]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.253436][ T8359] RIP: 0033:0x7f767d385d29
[  195.257857][ T8359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.277476][ T8359] RSP: 002b:00007f767b1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  195.285904][ T8359] RAX: ffffffffffffffda RBX: 00007f767d575fa0 RCX: 00007f767d385d29
[  195.293881][ T8359] RDX: 00000000000000c0 RSI: 0000000020001100 RDI: 0000000000000003
[  195.301865][ T8359] RBP: 00007f767b1f6090 R08: 0000000000000000 R09: 0000000000000000
[  195.309843][ T8359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  195.317827][ T8359] R13: 0000000000000000 R14: 00007f767d575fa0 R15: 00007ffebd6e2458
[  195.325827][ T8359]  </TASK>
[  196.918024][ T8398] netlink: 8 bytes leftover after parsing attributes in process `syz.0.630'.
[  197.072624][ T8407] random: crng reseeded on system resumption
[  197.090146][ T8405] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  197.107034][ T8405] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  197.870821][ T8406] Process accounting paused
[  198.834171][ T8447] netlink: 8 bytes leftover after parsing attributes in process `syz.4.645'.
[  199.333870][ T8454] syz.2.647 uses obsolete (PF_INET,SOCK_PACKET)
[  199.697569][ T8465] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  199.720458][ T8465] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  201.897934][ T8513] netlink: 8 bytes leftover after parsing attributes in process `syz.1.659'.
[  202.408313][ T8524] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  202.431444][ T8524] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  202.770739][   T54] Bluetooth: hci0: ACL packet for unknown connection handle 0
[  203.107137][   T29] audit: type=1800 audit(1734581408.458:9): pid=8545 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.666" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  205.671434][ T8620] netlink: 330 bytes leftover after parsing attributes in process `syz.4.691'.
[  206.039760][ T1140] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.199278][ T1140] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.397655][ T1140] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.608623][ T1140] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.817319][ T5837] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  206.861271][ T5837] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  206.874236][ T5837] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  206.875717][ T8650] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  206.888163][ T8650] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  206.925906][ T5837] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  206.954551][ T5837] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  206.963123][ T1140] hsr0: left allmulticast mode
[  206.964419][ T5837] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  206.972323][ T1140] hsr_slave_0: left allmulticast mode
[  207.007153][ T1140] hsr_slave_1: left allmulticast mode
[  207.012652][ T1140] hsr0: left promiscuous mode
[  207.017844][ T1140] bridge0: port 3(hsr0) entered disabled state
[  207.029956][ T1140] bridge_slave_1: left allmulticast mode
[  207.035651][ T1140] bridge_slave_1: left promiscuous mode
[  207.041503][ T1140] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.082935][ T1140] bridge_slave_0: left allmulticast mode
[  207.089617][ T1140] bridge_slave_0: left promiscuous mode
[  207.095354][ T1140] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.235011][ T8659] netlink: 'syz.4.703': attribute type 22 has an invalid length.
[  207.967136][   T29] audit: type=1800 audit(1734581413.318:10): pid=8688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.708" name="discovery_nqn" dev="configfs" ino=19765 res=0 errno=0
[  208.077765][ T1140] erspan0 (unregistering): left allmulticast mode
[  208.112114][ T8690] vivid-006: =================  START STATUS  =================
[  208.132781][ T8690] vivid-006: RDS Tx I/O Mode: Controls
[  208.143988][ T8690] vivid-006: RDS Program ID: 32904
[  208.167036][ T8690] vivid-006: RDS Program Type: 3
[  208.172074][ T8690] vivid-006: RDS PS Name: VIVID-TX
[  208.212273][ T8690] vivid-006: RDS Radio Text: This is a VIVID default Radio Text template text, change at will
[  208.252932][ T8690] vivid-006: RDS Stereo: true
[  208.272508][ T8690] vivid-006: RDS Artificial Head: false
[  208.282385][ T8690] vivid-006: RDS Compressed: false
[  208.300105][ T8690] vivid-006: RDS Dynamic PTY: false
[  208.316377][ T8690] vivid-006: RDS Traffic Announcement: false
[  208.363667][ T8690] vivid-006: RDS Traffic Program: true
[  208.391275][ T8690] vivid-006: RDS Music: true
[  208.428510][ T1140] HfR: left promiscuous mode
[  208.429993][ T8690] vivid-006: ==================  END STATUS  ==================
[  208.671603][ T8699] FAULT_INJECTION: forcing a failure.
[  208.671603][ T8699] name failslab, interval 1, probability 0, space 0, times 0
[  208.684853][ T8699] CPU: 0 UID: 0 PID: 8699 Comm: syz.1.711 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  208.695490][ T8699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  208.705587][ T8699] Call Trace:
[  208.708890][ T8699]  <TASK>
[  208.711843][ T8699]  dump_stack_lvl+0x16c/0x1f0
[  208.716539][ T8699]  should_fail_ex+0x497/0x5b0
[  208.721235][ T8699]  should_failslab+0xc2/0x120
[  208.725933][ T8699]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  208.731322][ T8699]  ? do_raw_spin_lock+0x12d/0x2c0
[  208.736364][ T8699]  ? inet_bind2_bucket_create+0x36/0x590
[  208.742013][ T8699]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  208.747402][ T8699]  inet_bind2_bucket_create+0x36/0x590
[  208.752878][ T8699]  __inet_hash_connect+0xfa4/0x1900
[  208.758099][ T8699]  ? __pfx___inet_check_established+0x10/0x10
[  208.764177][ T8699]  ? __pfx___inet_hash_connect+0x10/0x10
[  208.769839][ T8699]  tcp_v4_connect+0xddc/0x1b80
[  208.774624][ T8699]  ? __pfx_tcp_v4_connect+0x10/0x10
[  208.779894][ T8699]  ? __local_bh_enable_ip+0xa4/0x120
[  208.785232][ T8699]  mptcp_connect+0x66b/0xee0
[  208.789858][ T8699]  __inet_stream_connect+0x3c7/0x1020
[  208.795250][ T8699]  ? find_held_lock+0x2d/0x110
[  208.800036][ T8699]  ? __pfx___inet_stream_connect+0x10/0x10
[  208.805859][ T8699]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  208.811241][ T8699]  ? __pfx_inet_stream_connect+0x10/0x10
[  208.816893][ T8699]  ? mark_held_locks+0x9f/0xe0
[  208.821676][ T8699]  ? __local_bh_enable_ip+0xa4/0x120
[  208.826975][ T8699]  ? __pfx_inet_stream_connect+0x10/0x10
[  208.832646][ T8699]  inet_stream_connect+0x57/0xa0
[  208.837609][ T8699]  __sys_connect_file+0x13e/0x1a0
[  208.842654][ T8699]  __sys_connect+0x14f/0x170
[  208.847265][ T8699]  ? __pfx___sys_connect+0x10/0x10
[  208.852400][ T8699]  ? __pfx_ksys_write+0x10/0x10
[  208.857284][ T8699]  __x64_sys_connect+0x72/0xb0
[  208.862096][ T8699]  ? lockdep_hardirqs_on+0x7c/0x110
[  208.867331][ T8699]  do_syscall_64+0xcd/0x250
[  208.871853][ T8699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.877762][ T8699] RIP: 0033:0x7fd227f85d29
[  208.882188][ T8699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.901809][ T8699] RSP: 002b:00007fd228dd8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  208.910236][ T8699] RAX: ffffffffffffffda RBX: 00007fd228175fa0 RCX: 00007fd227f85d29
[  208.918301][ T8699] RDX: 0000000000000054 RSI: 0000000020000080 RDI: 0000000000000003
[  208.926279][ T8699] RBP: 00007fd228dd8090 R08: 0000000000000000 R09: 0000000000000000
[  208.934260][ T8699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  208.942263][ T8699] R13: 0000000000000000 R14: 00007fd228175fa0 R15: 00007ffc9671ff68
[  208.950260][ T8699]  </TASK>
[  209.017037][ T5837] Bluetooth: hci1: command tx timeout
[  209.051114][ T8647] chnl_net:caif_netlink_parms(): no params data found
[  209.528745][ T8647] bridge0: port 1(bridge_slave_0) entered blocking state
[  209.535889][ T8647] bridge0: port 1(bridge_slave_0) entered disabled state
[  209.574216][ T8647] bridge_slave_0: entered allmulticast mode
[  209.585510][ T8647] bridge_slave_0: entered promiscuous mode
[  209.728909][ T8647] bridge0: port 2(bridge_slave_1) entered blocking state
[  209.736101][ T8647] bridge0: port 2(bridge_slave_1) entered disabled state
[  209.744797][ T8647] bridge_slave_1: entered allmulticast mode
[  209.759584][ T8647] bridge_slave_1: entered promiscuous mode
[  209.915970][ T8647] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  209.980563][ T8647] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  210.077502][ T1140] hsr_slave_0: left promiscuous mode
[  210.090981][ T1140] hsr_slave_1: left promiscuous mode
[  210.103423][ T1140] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  210.114025][ T1140] batman_adv: batadv0: Removing interface: batadv_slave_1
[  210.145927][ T1140] veth1_macvtap: left promiscuous mode
[  210.153913][ T1140] veth0_macvtap: left promiscuous mode
[  210.165321][ T1140] veth1_vlan: left promiscuous mode
[  210.173199][ T1140] veth0_vlan: left promiscuous mode
[  210.641880][ T1140] team0 (unregistering): Port device team_slave_1 removed
[  210.693285][ T1140] team0 (unregistering): Port device team_slave_0 removed
[  211.097309][ T5837] Bluetooth: hci1: command tx timeout
[  211.139802][ T8647] team0: Port device team_slave_0 added
[  211.157784][ T8647] team0: Port device team_slave_1 added
[  211.216569][ T8647] batman_adv: batadv0: Adding interface: batadv_slave_0
[  211.228795][ T8647] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  211.255017][ T8647] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  211.271079][ T8647] batman_adv: batadv0: Adding interface: batadv_slave_1
[  211.278765][ T8647] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  211.305559][ T8647] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  211.375335][ T8647] hsr_slave_0: entered promiscuous mode
[  211.382026][ T8647] hsr_slave_1: entered promiscuous mode
[  211.388751][ T8647] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  211.397479][ T8647] Cannot create hsr debugfs directory
[  211.660690][ T8647] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  211.712172][ T8647] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  211.730147][ T8647] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  211.750417][ T8647] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  211.856223][ T8647] 8021q: adding VLAN 0 to HW filter on device bond0
[  211.900885][ T8647] 8021q: adding VLAN 0 to HW filter on device team0
[  211.915330][ T6749] bridge0: port 1(bridge_slave_0) entered blocking state
[  211.922480][ T6749] bridge0: port 1(bridge_slave_0) entered forwarding state
[  211.933579][ T6742] bridge0: port 2(bridge_slave_1) entered blocking state
[  211.940843][ T6742] bridge0: port 2(bridge_slave_1) entered forwarding state
[  212.166427][ T8647] 8021q: adding VLAN 0 to HW filter on device batadv0
[  212.434516][ T8647] veth0_vlan: entered promiscuous mode
[  212.449625][ T8647] veth1_vlan: entered promiscuous mode
[  212.477160][ T8647] veth0_macvtap: entered promiscuous mode
[  212.486607][ T8647] veth1_macvtap: entered promiscuous mode
[  212.508342][ T8647] batman_adv: batadv0: Interface activated: batadv_slave_0
[  212.524191][ T8647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  212.535064][ T8647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.545423][ T8647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  212.555998][ T8647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.566055][ T8647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  212.577252][ T8647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.588373][ T8647] batman_adv: batadv0: Interface activated: batadv_slave_1
[  212.603138][ T8647] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  212.612419][ T8647] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  212.622791][ T8647] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  212.631873][ T8647] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  212.702861][ T6729] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  212.715650][ T6729] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  212.747922][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  212.756683][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  213.193006][ T5837] Bluetooth: hci1: command tx timeout
[  214.217579][ T8838] vivid-006: =================  START STATUS  =================
[  214.248100][ T8838] vivid-006: RDS Tx I/O Mode: Controls
[  214.253719][ T8838] vivid-006: RDS Program ID: 32904
[  214.277190][ T8838] vivid-006: RDS Program Type: 3
[  214.282222][ T8838] vivid-006: RDS PS Name: VIVID-TX
[  214.304462][ T8843] netlink: 350 bytes leftover after parsing attributes in process `syz.0.725'.
[  214.319639][ T8838] vivid-006: RDS Radio Text: This is a VIVID default Radio Text template text, change at will
[  214.341259][ T8838] vivid-006: RDS Stereo: true
[  214.346124][ T8838] vivid-006: RDS Artificial Head: false
[  214.360424][ T8838] vivid-006: RDS Compressed: false
[  214.389863][ T8838] vivid-006: RDS Dynamic PTY: false
[  214.405498][ T8838] vivid-006: RDS Traffic Announcement: false
[  214.430584][ T8838] vivid-006: RDS Traffic Program: true
[  214.451019][ T8838] vivid-006: RDS Music: true
[  214.508972][ T8838] vivid-006: ==================  END STATUS  ==================
[  215.257248][ T5837] Bluetooth: hci1: command tx timeout
[  215.351344][ T8871] vivid-006: =================  START STATUS  =================
[  215.376959][ T8871] vivid-006: RDS Tx I/O Mode: Controls
[  215.397118][ T8871] vivid-006: RDS Program ID: 32904
[  215.447782][ T8871] vivid-006: RDS Program Type: 3
[  215.463666][ T8871] vivid-006: RDS PS Name: VIVID-TX
[  215.534508][ T8871] vivid-006: RDS Radio Text: This is a VIVID default Radio Text template text, change at will
[  215.662298][ T8871] vivid-006: RDS Stereo: true
[  215.686424][ T8871] vivid-006: RDS Artificial Head: false
[  215.727026][ T8871] vivid-006: RDS Compressed: false
[  215.769431][ T8871] vivid-006: RDS Dynamic PTY: false
[  215.808309][ T8871] vivid-006: RDS Traffic Announcement: false
[  215.847973][ T8871] vivid-006: RDS Traffic Program: true
[  215.892274][ T8871] vivid-006: RDS Music: true
[  215.920583][ T8871] vivid-006: ==================  END STATUS  ==================
[  216.861311][ T8896] kAFS: Invalid Command on /proc/fs/afs/cells file
[  216.934824][ T8914] netlink: 350 bytes leftover after parsing attributes in process `syz.1.737'.
[  217.167159][ T8919] ecryptfs_parse_packet_length: Five-byte packet length not supported
[  217.209683][ T8919] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[  220.743183][ T8955] vivid-006: =================  START STATUS  =================
[  220.779480][ T8955] vivid-006: RDS Tx I/O Mode: Controls
[  220.855877][ T8955] vivid-006: RDS Program ID: 32904
[  220.873749][ T8955] vivid-006: RDS Program Type: 3
[  220.898820][ T8955] vivid-006: RDS PS Name: VIVID-TX
[  220.938660][ T8955] vivid-006: RDS Radio Text: This is a VIVID default Radio Text template text, change at will
[  220.994859][ T8955] vivid-006: RDS Stereo: true
[  221.044125][ T8955] vivid-006: RDS Artificial Head: false
[  221.092573][ T8955] vivid-006: RDS Compressed: false
[  221.187135][ T8955] vivid-006: RDS Dynamic PTY: false
[  221.192663][ T8955] vivid-006: RDS Traffic Announcement: false
[  221.199442][ T8955] vivid-006: RDS Traffic Program: true
[  221.205148][ T8955] vivid-006: RDS Music: true
[  221.210416][ T8955] vivid-006: ==================  END STATUS  ==================
[  222.198722][ T8973] netlink: 350 bytes leftover after parsing attributes in process `syz.4.752'.
[  222.400771][ T8979] vivid-006: =================  START STATUS  =================
[  222.424122][ T8979] vivid-006: RDS Tx I/O Mode: Controls
[  222.440566][ T8979] vivid-006: RDS Program ID: 32904
[  222.807396][ T8979] vivid-006: RDS Program Type: 3
[  222.812443][ T8979] vivid-006: RDS PS Name: VIVID-TX
[  223.002939][ T8979] vivid-006: RDS Radio Text: This is a VIVID default Radio Text template text, change at will
[  223.197055][ T8979] vivid-006: RDS Stereo: true
[  223.201819][ T8979] vivid-006: RDS Artificial Head: false
[  223.296966][ T8979] vivid-006: RDS Compressed: false
[  223.302205][ T8979] vivid-006: RDS Dynamic PTY: false
[  223.427046][ T8979] vivid-006: RDS Traffic Announcement: false
[  223.433139][ T8979] vivid-006: RDS Traffic Program: true
[  223.507032][ T8979] vivid-006: RDS Music: true
[  223.547527][ T8979] vivid-006: ==================  END STATUS  ==================
[  226.664518][ T9038] netlink: 350 bytes leftover after parsing attributes in process `syz.5.768'.
[  227.133862][ T9047] Process accounting resumed
[  231.063059][ T9134] Process accounting resumed
[  235.694407][ T9248] Process accounting resumed
[  236.141481][ T9261] netlink: 8 bytes leftover after parsing attributes in process `syz.4.795'.
[  237.071541][   T54] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  237.082542][   T54] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  237.092331][   T54] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  237.117188][   T54] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  237.126450][   T54] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  237.133868][   T54] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  237.539958][ T9273] chnl_net:caif_netlink_parms(): no params data found
[  237.797884][ T9273] bridge0: port 1(bridge_slave_0) entered blocking state
[  237.805185][ T9273] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.825524][ T9273] bridge_slave_0: entered allmulticast mode
[  237.833650][ T9273] bridge_slave_0: entered promiscuous mode
[  237.841759][ T9273] bridge0: port 2(bridge_slave_1) entered blocking state
[  237.849216][ T9273] bridge0: port 2(bridge_slave_1) entered disabled state
[  237.856444][ T9273] bridge_slave_1: entered allmulticast mode
[  237.863646][ T9273] bridge_slave_1: entered promiscuous mode
[  237.980963][ T9273] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  237.992841][ T9273] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  238.139367][ T9273] team0: Port device team_slave_0 added
[  238.167866][ T9273] team0: Port device team_slave_1 added
[  238.235263][ T9273] batman_adv: batadv0: Adding interface: batadv_slave_0
[  238.246930][ T9273] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  238.317010][ T9273] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  238.349197][ T9273] batman_adv: batadv0: Adding interface: batadv_slave_1
[  238.356212][ T9273] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  238.382152][    C1] vkms_vblank_simulate: vblank timer overrun
[  238.397488][ T9273] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  238.493491][ T9273] hsr_slave_0: entered promiscuous mode
[  238.502083][ T9273] hsr_slave_1: entered promiscuous mode
[  238.517882][ T9273] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  238.526112][ T9273] Cannot create hsr debugfs directory
[  238.751233][ T9273] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  238.765084][ T9273] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  238.794106][ T9273] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  238.826303][ T9273] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  238.952205][ T9273] 8021q: adding VLAN 0 to HW filter on device bond0
[  238.969127][ T9273] 8021q: adding VLAN 0 to HW filter on device team0
[  238.981369][ T6749] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.989394][ T6749] bridge0: port 1(bridge_slave_0) entered forwarding state
[  239.003835][ T6742] bridge0: port 2(bridge_slave_1) entered blocking state
[  239.011017][ T6742] bridge0: port 2(bridge_slave_1) entered forwarding state
[  239.155371][ T9273] 8021q: adding VLAN 0 to HW filter on device batadv0
[  239.177102][ T5837] Bluetooth: hci2: command tx timeout
[  239.313064][ T9273] veth0_vlan: entered promiscuous mode
[  239.324045][ T9273] veth1_vlan: entered promiscuous mode
[  239.353420][ T9273] veth0_macvtap: entered promiscuous mode
[  239.363697][ T9273] veth1_macvtap: entered promiscuous mode
[  239.381074][ T9273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  239.392027][ T9273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.404198][ T9273] batman_adv: batadv0: Interface activated: batadv_slave_0
[  239.415727][ T9273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.427366][ T9273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.438969][ T9273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.450305][ T9273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.460469][ T9273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.471397][ T9273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.481590][ T9273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.492194][ T9273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.507254][ T9273] batman_adv: batadv0: Interface activated: batadv_slave_1
[  239.523503][ T9273] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  239.532458][ T9273] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  239.541915][ T9273] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  239.551483][ T9273] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  239.621466][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  239.637746][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  239.660595][ T6749] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  239.669412][ T6749] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  239.756588][ T9306] FAULT_INJECTION: forcing a failure.
[  239.756588][ T9306] name failslab, interval 1, probability 0, space 0, times 0
[  239.770996][ T9306] CPU: 1 UID: 0 PID: 9306 Comm: syz.6.797 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  239.781650][ T9306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  239.791735][ T9306] Call Trace:
[  239.795042][ T9306]  <TASK>
[  239.797997][ T9306]  dump_stack_lvl+0x16c/0x1f0
[  239.802698][ T9306]  should_fail_ex+0x497/0x5b0
[  239.807391][ T9306]  ? fs_reclaim_acquire+0xae/0x150
[  239.812515][ T9306]  should_failslab+0xc2/0x120
[  239.817210][ T9306]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  239.822603][ T9306]  ? security_file_alloc+0x34/0x2b0
[  239.827830][ T9306]  security_file_alloc+0x34/0x2b0
[  239.832872][ T9306]  init_file+0x93/0x480
[  239.837047][ T9306]  alloc_empty_file+0x91/0x1e0
[  239.841830][ T9306]  path_openat+0xe1/0x2d60
[  239.846257][ T9306]  ? hlock_class+0x4e/0x130
[  239.850776][ T9306]  ? __lock_acquire+0x15a9/0x3c40
[  239.855828][ T9306]  ? __pfx_path_openat+0x10/0x10
[  239.860785][ T9306]  ? __pfx___lock_acquire+0x10/0x10
[  239.866010][ T9306]  ? lock_acquire.part.0+0x11b/0x380
[  239.871306][ T9306]  ? find_held_lock+0x2d/0x110
[  239.876095][ T9306]  do_filp_open+0x20c/0x470
[  239.880613][ T9306]  ? __pfx_do_filp_open+0x10/0x10
[  239.885657][ T9306]  ? find_held_lock+0x2d/0x110
[  239.890452][ T9306]  ? alloc_fd+0x41f/0x760
[  239.894804][ T9306]  do_sys_openat2+0x17a/0x1e0
[  239.899519][ T9306]  ? __pfx_do_sys_openat2+0x10/0x10
[  239.904755][ T9306]  ? __fget_files+0x206/0x3a0
[  239.909453][ T9306]  __x64_sys_openat+0x175/0x210
[  239.914325][ T9306]  ? __pfx___x64_sys_openat+0x10/0x10
[  239.919720][ T9306]  ? ksys_write+0x1ba/0x250
[  239.924247][ T9306]  do_syscall_64+0xcd/0x250
[  239.928771][ T9306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.934681][ T9306] RIP: 0033:0x7faa04985d29
[  239.939106][ T9306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.958728][ T9306] RSP: 002b:00007faa057db038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  239.967173][ T9306] RAX: ffffffffffffffda RBX: 00007faa04b75fa0 RCX: 00007faa04985d29
[  239.975164][ T9306] RDX: 0000000000000002 RSI: 0000000020000040 RDI: ffffffffffffff9c
[  239.983147][ T9306] RBP: 00007faa057db090 R08: 0000000000000000 R09: 0000000000000000
[  239.991129][ T9306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  239.999108][ T9306] R13: 0000000000000000 R14: 00007faa04b75fa0 R15: 00007fff3a2121a8
[  240.007100][ T9306]  </TASK>
[  240.088467][ T9310] Process accounting resumed
[  241.266974][ T5837] Bluetooth: hci2: command tx timeout
[  241.773918][ T9351] Process accounting resumed
[  243.337691][ T5837] Bluetooth: hci2: command tx timeout
[  245.427381][ T5837] Bluetooth: hci2: command tx timeout
[  249.003248][ T9494] netlink: 8 bytes leftover after parsing attributes in process `syz.0.858'.
[  253.867390][ T9536] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  253.897419][ T9536] CIFS mount error: No usable UNC path provided in device string!
[  253.897419][ T9536] 
[  253.917286][ T9536] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  256.147361][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  256.153747][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  265.631112][ T9707] Process accounting resumed
[  265.672255][ T9707] Console: switching to colour VGA+ 80x25
[  266.028071][ T9714] ptrace attach of "./syz-executor exec"[6846] was attempted by "./syz-executor exec"[9714]
[  267.460982][ T9735] netlink: 5995 bytes leftover after parsing attributes in process `syz.4.928'.
[  268.994621][ T9744] kexec: Could not allocate control_code_buffer
[  269.085657][ T9763] Process accounting resumed
[  270.523129][ T9804] Process accounting resumed
[  272.434730][ T9842] Process accounting resumed
[  274.235698][ T9886] mkiss: ax0: crc mode is auto.
[  274.604991][ T9900] netlink: 'syz.4.977': attribute type 2 has an invalid length.
[  275.902463][ T9934] Process accounting resumed
[  277.712057][ T9972] svc: failed to register nfsdv3 RPC service (errno 111).
[  277.778102][ T9972] svc: failed to register nfsaclv3 RPC service (errno 111).
[  280.897003][T10015] svc: failed to register nfsdv3 RPC service (errno 111).
[  280.939999][T10018] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1013'.
[  280.955160][T10015] svc: failed to register nfsaclv3 RPC service (errno 111).
[  287.642727][T10079] svc: failed to register nfsdv3 RPC service (errno 111).
[  287.769483][T10079] svc: failed to register nfsaclv3 RPC service (errno 111).
[  288.154764][T10084] [U] 
[  288.157552][T10084] [U] 
[  288.160299][T10084] [U] 
[  288.163037][T10084] [U] 
[  288.217359][T10084] [U] 
[  288.220144][T10084] [U] 
[  288.222880][T10084] [U] 
[  288.225620][T10084] [U] 
[  288.263764][T10084] [U] 
[  288.268011][T10084] [U] 
[  288.268058][T10084] [U] 
[  288.268099][T10084] [U] 
[  288.269147][T10084] [U] 
[  288.269191][T10084] [U] 
[  288.269232][T10084] [U] 
[  288.269272][T10084] [U] 
[  288.269664][T10084] [U] 
[  288.269708][T10084] [U] 
[  288.269747][T10084] [U] 
[  288.269786][T10084] [U] 
[  288.269972][T10084] [U] 
[  288.270017][T10084] [U] 
[  288.270056][T10084] [U] 
[  288.270096][T10084] [U] 
[  288.270440][T10084] [U] 
[  288.270479][T10084] [U] 
[  288.270540][T10084] [U] 
[  288.270588][T10084] [U] 
[  288.270782][T10084] [U] 
[  288.270822][T10084] [U] 
[  288.270862][T10084] [U] 
[  288.270902][T10084] [U] 
[  288.271164][T10084] [U] 
[  288.271206][T10084] [U] 
[  288.271250][T10084] [U] 
[  288.271290][T10084] [U] 
[  288.271555][T10084] [U] 
[  288.271604][T10084] [U] 
[  288.271645][T10084] [U] 
[  288.271683][T10084] [U] 
[  288.271954][T10084] [U] 
[  288.271994][T10084] [U] 
[  288.272034][T10084] [U] 
[  288.272076][T10084] [U] 
[  288.272261][T10084] [U] 
[  288.272300][T10084] [U] 
[  288.272338][T10084] [U] 
[  288.272376][T10084] [U] 
[  288.272730][T10084] [U] 
[  288.272769][T10084] [U] 
[  288.272808][T10084] [U] 
[  288.272845][T10084] [U] 
[  288.273029][T10084] [U] 
[  288.273071][T10084] [U] 
[  288.273110][T10084] [U] 
[  288.273149][T10084] [U] 
[  288.273419][T10084] [U] 
[  288.273458][T10084] [U] 
[  288.273497][T10084] [U] 
[  288.273539][T10084] [U] 
[  288.273808][T10084] [U] 
[  288.273847][T10084] [U] 
[  288.273887][T10084] [U] 
[  288.273925][T10084] [U] 
[  288.274198][T10084] [U] 
[  288.274239][T10084] [U] 
[  288.274280][T10084] [U] 
[  288.274321][T10084] [U] 
[  288.274509][T10084] [U] 
[  288.274547][T10084] [U] 
[  288.274594][T10084] [U] 
[  288.274641][T10084] [U] 
[  288.274985][T10084] [U] 
[  288.275049][T10084] [U] 
[  288.275092][T10084] [U] 
[  288.275133][T10084] [U] 
[  288.275317][T10084] [U] 
[  288.275357][T10084] [U] 
[  288.275398][T10084] [U] 
[  288.275437][T10084] [U] 
[  288.275721][T10084] [U] 
[  288.275761][T10084] [U] 
[  288.275805][T10084] [U] 
[  288.275843][T10084] [U] 
[  288.276094][T10084] [U] 
[  288.276136][T10084] [U] 
[  288.276177][T10084] [U] 
[  288.276217][T10084] [U] 
[  288.276492][T10084] [U] 
[  288.276531][T10084] [U] 
[  288.276570][T10084] [U] 
[  288.276619][T10084] [U] 
[  288.276815][T10084] [U] 
[  288.276855][T10084] [U] 
[  288.276886][T10084] [U] 
[  288.276919][T10084] [U] 
[  288.306025][T10084] [U] 
[  288.306071][T10084] [U] 
[  288.306113][T10084] [U] 
[  288.306151][T10084] [U] 
[  288.306337][T10084] [U] 
[  288.306379][T10084] [U] 
[  288.306419][T10084] [U] 
[  288.306458][T10084] [U] 
[  288.306750][T10084] [U] 
[  288.306790][T10084] [U] 
[  288.306827][T10084] [U] 
[  288.306862][T10084] [U] 
[  288.321527][T10084] [U] 
[  288.321584][T10084] [U] 
[  288.321625][T10084] [U] 
[  288.321664][T10084] [U] 
[  288.321961][T10084] [U] 
[  288.322001][T10084] [U] 
[  288.322040][T10084] [U] 
[  288.322078][T10084] [U] 
[  288.322259][T10084] [U] 
[  288.322298][T10084] [U] 
[  288.322336][T10084] [U] 
[  288.322375][T10084] [U] 
[  288.383662][T10083] [U] 
[  291.812410][T10121] svc: failed to register nfsdv3 RPC service (errno 111).
[  291.903174][T10121] svc: failed to register nfsaclv3 RPC service (errno 111).
[  295.946796][T10185] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1059'.
[  296.377642][T10189] netlink: 338 bytes leftover after parsing attributes in process `syz.6.1060'.
[  296.443360][T10193] netlink: 338 bytes leftover after parsing attributes in process `syz.6.1060'.
[  297.508824][T10201] ptrace attach of "./syz-executor exec"[9273] was attempted by ""[10201]
[  299.478898][T10221] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1067'.
[  299.986974][T10229] FAULT_INJECTION: forcing a failure.
[  299.986974][T10229] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  300.032379][T10229] CPU: 1 UID: 0 PID: 10229 Comm: syz.0.1068 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  300.043218][T10229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  300.053308][T10229] Call Trace:
[  300.056606][T10229]  <TASK>
[  300.059562][T10229]  dump_stack_lvl+0x16c/0x1f0
[  300.064277][T10229]  should_fail_ex+0x497/0x5b0
[  300.069001][T10229]  _copy_to_user+0x32/0xd0
[  300.073473][T10229]  simple_read_from_buffer+0xd0/0x160
[  300.078901][T10229]  proc_fail_nth_read+0x198/0x270
[  300.083970][T10229]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  300.089565][T10229]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  300.095167][T10229]  vfs_read+0x1df/0xbe0
[  300.099372][T10229]  ? __fget_files+0x1fc/0x3a0
[  300.104090][T10229]  ? __pfx___mutex_lock+0x10/0x10
[  300.109157][T10229]  ? __pfx_vfs_read+0x10/0x10
[  300.113884][T10229]  ? __fget_files+0x206/0x3a0
[  300.118613][T10229]  ksys_read+0x12b/0x250
[  300.122898][T10229]  ? __pfx_ksys_read+0x10/0x10
[  300.127714][T10229]  do_syscall_64+0xcd/0x250
[  300.132260][T10229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.138189][T10229] RIP: 0033:0x7f376718473c
[  300.142633][T10229] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  300.162362][T10229] RSP: 002b:00007f3767f26030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  300.170792][T10229] RAX: ffffffffffffffda RBX: 00007f3767376160 RCX: 00007f376718473c
[  300.178778][T10229] RDX: 000000000000000f RSI: 00007f3767f260a0 RDI: 0000000000000009
[  300.186757][T10229] RBP: 00007f3767f26090 R08: 0000000000000000 R09: 0000000000000000
[  300.194738][T10229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  300.202722][T10229] R13: 0000000000000000 R14: 00007f3767376160 R15: 00007fff93d033b8
[  300.210718][T10229]  </TASK>
[  302.850815][T10271] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  302.887262][T10271] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  302.919022][T10279] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1081'.
[  306.197854][   T29] audit: type=1800 audit(4294967301.600:11): pid=10327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1094" name="discovery_nqn" dev="configfs" ino=30229 res=0 errno=0
[  306.218681][    C0] vkms_vblank_simulate: vblank timer overrun
[  306.823144][T10321] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  306.897332][T10321] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  306.917127][T10321] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  306.926195][T10338] netlink: 968 bytes leftover after parsing attributes in process `syz.5.1096'.
[  306.943510][T10321] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  306.976999][   T29] audit: type=1800 audit(4294967302.370:12): pid=10338 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1096" name="discovery_nqn" dev="configfs" ino=31467 res=0 errno=0
[  307.079077][T10338] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1096'.
[  307.301222][T10321] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  307.505854][T10321] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  307.516415][T10321] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  307.782737][T10321] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  308.192243][T10353] netlink: 968 bytes leftover after parsing attributes in process `syz.4.1100'.
[  308.217107][ T5829] Bluetooth: hci0: command 0x0c1a tx timeout
[  308.234064][T10353] FAULT_INJECTION: forcing a failure.
[  308.234064][T10353] name failslab, interval 1, probability 0, space 0, times 0
[  308.263095][T10353] CPU: 1 UID: 0 PID: 10353 Comm: syz.4.1100 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  308.273930][T10353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  308.284037][T10353] Call Trace:
[  308.287350][T10353]  <TASK>
[  308.290307][T10353]  dump_stack_lvl+0x16c/0x1f0
[  308.295037][T10353]  should_fail_ex+0x497/0x5b0
[  308.299762][T10353]  ? fs_reclaim_acquire+0xae/0x150
[  308.304929][T10353]  should_failslab+0xc2/0x120
[  308.309656][T10353]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  308.315082][T10353]  ? lockdep_init_map_type+0x16d/0x7d0
[  308.320585][T10353]  ? security_inode_alloc+0x3b/0x2b0
[  308.325932][T10353]  security_inode_alloc+0x3b/0x2b0
[  308.331101][T10353]  inode_init_always_gfp+0xce4/0x1030
[  308.336526][T10353]  alloc_inode+0x82/0x230
[  308.340907][T10353]  new_inode+0x22/0x210
[  308.345110][T10353]  ? __pfx_lock_release+0x10/0x10
[  308.350178][T10353]  configfs_new_inode+0x24/0x4a0
[  308.355162][T10353]  configfs_create+0xd9/0x3b0
[  308.359890][T10353]  configfs_lookup+0x38f/0x780
[  308.364710][T10353]  ? __pfx_configfs_lookup+0x10/0x10
[  308.370044][T10353]  lookup_open.isra.0+0x92d/0x14c0
[  308.375207][T10353]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  308.380808][T10353]  ? path_openat+0x88a/0x2d60
[  308.385549][T10353]  ? mnt_get_write_access+0x20c/0x300
[  308.390993][T10353]  path_openat+0x904/0x2d60
[  308.395559][T10353]  ? __pfx_path_openat+0x10/0x10
[  308.400546][T10353]  ? __pfx___lock_acquire+0x10/0x10
[  308.405806][T10353]  ? lock_acquire.part.0+0x11b/0x380
[  308.411133][T10353]  ? find_held_lock+0x2d/0x110
[  308.415953][T10353]  do_filp_open+0x20c/0x470
[  308.420506][T10353]  ? __pfx_do_filp_open+0x10/0x10
[  308.425577][T10353]  ? find_held_lock+0x2d/0x110
[  308.430415][T10353]  ? alloc_fd+0x41f/0x760
[  308.434805][T10353]  do_sys_openat2+0x17a/0x1e0
[  308.439537][T10353]  ? __pfx_do_sys_openat2+0x10/0x10
[  308.444795][T10353]  ? __fget_files+0x206/0x3a0
[  308.449532][T10353]  __x64_sys_openat+0x175/0x210
[  308.454483][T10353]  ? __pfx___x64_sys_openat+0x10/0x10
[  308.459914][T10353]  ? ksys_write+0x1ba/0x250
[  308.464476][T10353]  do_syscall_64+0xcd/0x250
[  308.469032][T10353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.474974][T10353] RIP: 0033:0x7fc351b85d29
[  308.479429][T10353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  308.499085][T10353] RSP: 002b:00007fc352904038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  308.507547][T10353] RAX: ffffffffffffffda RBX: 00007fc351d75fa0 RCX: 00007fc351b85d29
[  308.515555][T10353] RDX: 0000000000189002 RSI: 0000000020000100 RDI: ffffffffffffff9c
[  308.523568][T10353] RBP: 00007fc352904090 R08: 0000000000000000 R09: 0000000000000000
[  308.531582][T10353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  308.539593][T10353] R13: 0000000000000000 R14: 00007fc351d75fa0 R15: 00007fff58f0c1c8
[  308.547628][T10353]  </TASK>
[  308.560205][T10353] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1100'.
[  308.937014][ T5829] Bluetooth: hci1: command 0x0c1a tx timeout
[  308.943162][ T5829] Bluetooth: hci3: command 0x0c1a tx timeout
[  309.112866][T10362] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1103'.
[  309.543141][   T29] audit: type=1800 audit(4294967304.920:13): pid=10367 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1104" name="discovery_nqn" dev="configfs" ino=30343 res=0 errno=0
[  309.580279][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout
[  311.026996][ T5829] Bluetooth: hci1: command 0x0c1a tx timeout
[  311.043120][T10387] FAULT_INJECTION: forcing a failure.
[  311.043120][T10387] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  311.181363][T10387] CPU: 0 UID: 0 PID: 10387 Comm: syz.4.1108 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  311.192194][T10387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  311.202285][T10387] Call Trace:
[  311.205591][T10387]  <TASK>
[  311.208550][T10387]  dump_stack_lvl+0x16c/0x1f0
[  311.213282][T10387]  should_fail_ex+0x497/0x5b0
[  311.218009][T10387]  _copy_from_user+0x2e/0xd0
[  311.222647][T10387]  snd_pcm_oss_write+0x2e7/0xa00
[  311.227635][T10387]  ? rw_verify_area+0xd0/0x700
[  311.232449][T10387]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  311.237964][T10387]  vfs_write+0x24c/0x1150
[  311.242339][T10387]  ? __fget_files+0x1fc/0x3a0
[  311.247055][T10387]  ? __pfx_lock_release+0x10/0x10
[  311.252114][T10387]  ? __pfx_vfs_write+0x10/0x10
[  311.256922][T10387]  ? lock_acquire+0x2f/0xb0
[  311.261458][T10387]  ? __fget_files+0x40/0x3a0
[  311.266105][T10387]  ? __fget_files+0x206/0x3a0
[  311.270837][T10387]  ksys_write+0x12b/0x250
[  311.275212][T10387]  ? __pfx_ksys_write+0x10/0x10
[  311.280115][T10387]  do_syscall_64+0xcd/0x250
[  311.284666][T10387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.290603][T10387] RIP: 0033:0x7fc351b85d29
[  311.295055][T10387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.314704][T10387] RSP: 002b:00007fc352904038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  311.323163][T10387] RAX: ffffffffffffffda RBX: 00007fc351d75fa0 RCX: 00007fc351b85d29
[  311.331170][T10387] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  311.339182][T10387] RBP: 00007fc352904090 R08: 0000000000000000 R09: 0000000000000000
[  311.347190][T10387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  311.355194][T10387] R13: 0000000000000000 R14: 00007fc351d75fa0 R15: 00007fff58f0c1c8
[  311.363219][T10387]  </TASK>
[  311.657079][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout
[  313.093020][   T29] audit: type=1800 audit(4294967308.480:14): pid=10415 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1120" name="discovery_nqn" dev="configfs" ino=30517 res=0 errno=0
[  313.125967][ T5829] Bluetooth: hci1: command 0x0c1a tx timeout
[  313.287052][T10403] Process accounting resumed
[  313.746928][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout
[  314.367532][   T29] audit: type=1800 audit(4294967309.770:15): pid=10420 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1121" name="dbroot" dev="configfs" ino=31690 res=0 errno=0
[  314.419968][T10420] db_root: cannot open: initcall:initcall_finish
[  314.419968][T10420] initcall:initcall_start
[  314.419968][T10420] initcall:initcall_level
[  314.419968][T10420] vsyscall:emulate_vsyscall
[  314.419968][T10420] kvm:kvm_test_age_hva
[  314.419968][T10420] kvm:kvm_age_hva
[  314.419968][T10420] kvm:kvm_unmap_hva_range
[  314.419968][T10420] kvm:kvm_dirty_ring_exit
[  314.419968][T10420] kvm:kvm_dirty_ring_reset
[  314.419968][T10420] kvm:kvm_dirty_ring_push
[  314.419968][T10420] kvm:kvm_halt_poll_ns
[  314.419968][T10420] kvm:kvm_async_pf_completed
[  314.419968][T10420] kvm:kvm_async_pf_ready
[  314.419968][T10420] kvm:kvm_async_pf_not_present
[  314.419968][T10420] kvm:kvm_async_pf_repeated_fault
[  314.419968][T10420] kvm:kvm_try_async_get_page
[  314.419968][T10420] kvm:kvm_fpu
[  314.419968][T10420] kvm:kvm_iocsr
[  314.419968][T10420] kvm:kvm_mmio
[  314.419968][T10420] kvm:kvm_ack_irq
[  314.419968][T10420] kvm:kvm_msi_set_irq
[  314.419968][T10420] kvm:kvm_ioapic_delayed_eoi_inj
[  314.419968][T10420] kvm:kvm_ioapic_set_irq
[  314.419968][T10420] kvm:kvm_set_irq
[  314.419968][T10420] kvm:kvm_vcpu_wakeup
[  314.419968][T10420] kvm:kvm_userspace_exit
[  314.419968][T10420] kvm:kvm_rmp_fault
[  314.419968][T10420] kvm:kvm_vmgexit_msr_protocol_exit
[  314.419968][T10420] kvm:kvm_vmgexit_msr_protocol_enter
[  314.419968][T10420] kvm:kvm_vmgexit_exit
[  314.419968][T10420] kvm:kvm_vmgexit_enter
[  314.419968][T10420] kvm:kvm_hv_syndbg_get_msr
[  314.419968][T10420] kvm:kvm_hv_syndbg_set_msr
[  314.419968][T10420] kvm:kvm_nested_vmenter_failed
[  314.419968][T10420] kvm:kvm_pv_tlb_flush
[  314.419968][T10420] kvm:kvm_hv_send_ipi_ex
[  314.419968][T10420] kvm:kvm_hv_send_ipi
[  314.419968][T10420] kvm:kvm_hv_flush_tlb_ex
[  314.419968][T10420] kvm:kvm_hv_flush_tlb
[  314.419968][T10420] kvm:kvm_hv_timer_state
[  314.419968][T10420] kvm:kvm_avic_doorbell
[  314.419968][T10420] kvm:kvm_avic_kick_vcpu_slowpath
[  314.419968][T10420] kvm:kvm_avic_ga_log
[  314.419968][T10420] k
[  317.362794][   T29] audit: type=1800 audit(4294967312.749:16): pid=10466 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1133" name="discovery_nqn" dev="configfs" ino=31754 res=0 errno=0
[  317.597373][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  317.603948][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  317.854471][T10474] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1137'.
[  317.899660][T10474] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN PTI
[  317.912317][T10474] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  317.920759][T10474] CPU: 1 UID: 0 PID: 10474 Comm: syz.5.1137 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  317.931570][T10474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  317.941643][T10474] RIP: 0010:vmalloc_info_show+0x511/0xc40
[  317.947375][T10474] Code: 00 00 48 8b 53 20 44 89 e0 48 8d 2c c2 48 89 ea 48 c1 ea 03 42 80 3c 32 00 0f 85 ae 05 00 00 48 8b 6d 00 48 89 ea 48 c1 ea 03 <42> 80 3c 32 00 0f 85 8b 05 00 00 4c 8b 7d 00 48 c7 c7 ff ff ff ff
[  317.966999][T10474] RSP: 0018:ffffc9000c027bc8 EFLAGS: 00010246
[  317.973070][T10474] RAX: 0000000000000000 RBX: ffff888026764a00 RCX: ffffc9000ecd9000
[  317.981035][T10474] RDX: 0000000000000000 RSI: ffffffff81ea753b RDI: 0000000000000005
[  317.989004][T10474] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  317.996975][T10474] R10: 0000000000000008 R11: 0000000000000001 R12: 0000000000000000
[  318.004953][T10474] R13: 0000000000000001 R14: dffffc0000000000 R15: 0000000000000000
[  318.012923][T10474] FS:  00007fb0c94816c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  318.021864][T10474] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  318.028446][T10474] CR2: 0000001b2f60bff8 CR3: 000000003c59e000 CR4: 00000000003526f0
[  318.036436][T10474] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  318.044399][T10474] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  318.052366][T10474] Call Trace:
[  318.055632][T10474]  <TASK>
[  318.058553][T10474]  ? die_addr+0x3b/0xa0
[  318.062701][T10474]  ? exc_general_protection+0x155/0x230
[  318.068244][T10474]  ? asm_exc_general_protection+0x26/0x30
[  318.073959][T10474]  ? vmalloc_info_show+0x4db/0xc40
[  318.079091][T10474]  ? vmalloc_info_show+0x511/0xc40
[  318.084201][T10474]  ? vmalloc_info_show+0x4db/0xc40
[  318.089314][T10474]  seq_read_iter+0x4f4/0x12b0
[  318.093984][T10474]  ? do_raw_spin_unlock+0x172/0x230
[  318.099181][T10474]  proc_reg_read_iter+0x21d/0x310
[  318.104198][T10474]  vfs_read+0x87f/0xbe0
[  318.108350][T10474]  ? __pfx_vfs_read+0x10/0x10
[  318.113040][T10474]  ? do_futex+0x123/0x350
[  318.117374][T10474]  ? __pfx_set_user_sigmask+0x10/0x10
[  318.122749][T10474]  ? __x64_sys_futex+0x1e1/0x4c0
[  318.127693][T10474]  ? __x64_sys_futex+0x1ea/0x4c0
[  318.132632][T10474]  ksys_read+0x12b/0x250
[  318.136895][T10474]  ? __pfx_ksys_read+0x10/0x10
[  318.141683][T10474]  do_syscall_64+0xcd/0x250
[  318.146187][T10474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.152074][T10474] RIP: 0033:0x7fb0c8585d29
[  318.156476][T10474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.176077][T10474] RSP: 002b:00007fb0c9481038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  318.184480][T10474] RAX: ffffffffffffffda RBX: 00007fb0c8775fa0 RCX: 00007fb0c8585d29
[  318.192452][T10474] RDX: 0000000000000053 RSI: 0000000020001fc0 RDI: 0000000000000002
[  318.200464][T10474] RBP: 00007fb0c8601a20 R08: 0000000000000000 R09: 0000000000000000
[  318.208427][T10474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  318.216389][T10474] R13: 0000000000000000 R14: 00007fb0c8775fa0 R15: 00007fff259d6d98
[  318.224361][T10474]  </TASK>
[  318.227375][T10474] Modules linked in:
[  318.231826][T10474] ---[ end trace 0000000000000000 ]---
[  318.237528][T10474] RIP: 0010:vmalloc_info_show+0x511/0xc40
[  318.243270][T10474] Code: 00 00 48 8b 53 20 44 89 e0 48 8d 2c c2 48 89 ea 48 c1 ea 03 42 80 3c 32 00 0f 85 ae 05 00 00 48 8b 6d 00 48 89 ea 48 c1 ea 03 <42> 80 3c 32 00 0f 85 8b 05 00 00 4c 8b 7d 00 48 c7 c7 ff ff ff ff
[  318.262906][T10474] RSP: 0018:ffffc9000c027bc8 EFLAGS: 00010246
[  318.268992][T10474] RAX: 0000000000000000 RBX: ffff888026764a00 RCX: ffffc9000ecd9000
[  318.276975][T10474] RDX: 0000000000000000 RSI: ffffffff81ea753b RDI: 0000000000000005
[  318.284944][T10474] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  318.292926][T10474] R10: 0000000000000008 R11: 0000000000000001 R12: 0000000000000000
[  318.300996][T10474] R13: 0000000000000001 R14: dffffc0000000000 R15: 0000000000000000
[  318.309040][T10474] FS:  00007fb0c94816c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  318.317995][T10474] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  318.324637][T10474] CR2: 0000001b2f60bff8 CR3: 000000003c59e000 CR4: 00000000003526f0
[  318.332690][T10474] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  318.340679][T10474] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  318.348690][T10474] Kernel panic - not syncing: Fatal exception
[  318.354892][T10474] Kernel Offset: disabled
[  318.359208][T10474] Rebooting in 86400 seconds..