last executing test programs:

4m48.820566641s ago: executing program 2 (id=302):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
ioctl$auto(r0, 0x2279, 0xbb1)

4m48.772507538s ago: executing program 2 (id=303):
r0 = socket(0x10, 0x2, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1b000000", @ANYBLOB='_'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000040)='3', 0x1)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x6a)
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_fastopen_blackhole_timeout_sec\x00', 0x40000, 0x0)
sendfile$auto(r0, r2, 0x0, 0x3)

4m48.689451556s ago: executing program 2 (id=305):
process_vm_writev$auto(0x0, &(0x7f00000011c0)={&(0x7f00000001c0)="42777dd1330b458d0b5c44ca32e94fc00cfbce962ee7d8f31c0f90c327830f55adfdceafcc0f7b5a21ea23bdf5344d47d49d60218e57bb33118d04fdd37f5fd17f96a318132a5dd282782f8535b3d80698e45e0442c802a7", 0x9}, 0x7, 0x0, 0x7, 0x5)
sendmsg$auto_TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000000180)=ANY=[@ANYRES64, @ANYRES8=0x0, @ANYBLOB="01000200008000006bbc9d65365cbf80132d596e97fbc50e6203fa1bc9494a6eccca0f2e630bfa8bf1a0cea2f78ebc5acf0646"], 0x18}, 0x1, 0x0, 0x0, 0x4000094}, 0x8080)
socket(0x11, 0x3, 0x9)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/dfscache\x00', 0x8f3b7a51b84bfb01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000040)="20edd9d1027e0dc0023af10e9bfa1babfa3a3753ca9aee370a", 0x19)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/neigh/netdevsim0/delay_first_probe_time\x00', 0x9c481, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0xa, 0x2, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x4, 0x8)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0xc0)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000540), 0xffffffffffffffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/profiling\x00', 0x8d80, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x37, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110)
syz_open_procfs$namespace(0x0, &(0x7f0000000080))
setsockopt$auto(r1, 0x800, 0xc1, &(0x7f0000000040)='\"\x81=\xff{>\xca\xd8w@\xd0\xc4\xfb&L\xeb=j\a\xf1y\xb3\x1d', 0x7)
mprotect$auto(0x1ffff000, 0x80000008, 0xd)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/zram0/algorithm_params\x00', 0xa001, 0x0)
write$auto(r2, &(0x7f0000000540)='\"\x81=\xff{>\xca\xd8w@\xd0\xc4\xfb&L\xeb=j\a\xf1y\xb3\x1d', 0x1)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
dup2$auto(r4, r4)
mq_open$auto(&(0x7f0000000280)='\\*)A ', 0x7e, 0x9, 0x0)
mq_notify$auto(0x5, &(0x7f00000000c0)={@sival_int=0x9d2, @inferred, 0x1})
mq_timedsend$auto(0x5, &(0x7f0000000000)=']#%$\x00', 0x5, 0x9, 0x0)
read$auto(r3, 0x0, 0x9)
openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kfence/stats\x00', 0x20000, 0x0)
close_range$auto(0x2, 0xa, 0x0)

4m48.618388676s ago: executing program 2 (id=306):
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
ftruncate$auto(0x3, 0x700)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
madvise$auto(0xc37d, 0x0, 0x8)
r0 = epoll_create$auto(0xcd)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_clone3(&(0x7f0000000000)={0x28020000, 0x0, 0x0, 0x0, {0x29}, 0x0, 0x0, 0x0, 0x0}, 0x58)

4m48.593299397s ago: executing program 2 (id=307):
r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = getpgrp(0xffffffffffffffff)
fcntl$auto(r0, 0x7fffffff, r1)
ioctl$auto(0xffffffffffffffff, 0x9, 0xff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0x1, 0x100, 0x0, 0x0, 0x800)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000015c0), r2)
sendmsg$auto_NL80211_CMD_GET_STATION(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000001880)={&(0x7f0000000000)=ANY=[@ANYBLOB="7302e2546638402c4c6950d477d7ed0c000000", @ANYRES16=r3, @ANYRES8=r3], 0x1c}, 0x1, 0x0, 0x0, 0x60008815}, 0x800)
migrate_pages$auto(0x0, 0x4, 0x0, 0x0)
clone$auto(0x4, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x8)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0xfffffffffffffffd, 0x6, 0x7)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
mkdir$auto(0x0, 0x0)
mount$auto(0x0, 0x0, 0x0, 0x8000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000940)={'veth1_vlan\x00', <r5=>0x0})
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a000500000000000000000008000200", @ANYRES32=r5, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="0a0001000013"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x1, 0x4000000000df, 0x44eb2, 0x3, 0x300000000000)
r6 = gettid()
process_vm_readv$auto(r6, &(0x7f0000000040)={0x0, 0x8}, 0x4, &(0x7f00000000c0)={0x0, 0x100000000000002}, 0x6, 0x0)
read$auto(0x3, 0x0, 0x80)

4m48.324552578s ago: executing program 2 (id=309):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sr0\x00', 0x10f442, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
flistxattr$auto(0xffffffffffffffff, &(0x7f00000001c0)='/dev/tty12\x00', 0x0)
setdomainname$auto(0xfffffffffffffffc, 0x9)
getxattrat$auto(0xffffffffffffffff, 0x0, 0x1c, 0x0, 0x0, 0x80000000)
sendmsg$auto_IEEE802154_LLSEC_DEL_KEY(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES64=r0, @ANYRES16=r0], 0x3c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4)
r1 = socket(0xa, 0x801, 0x106)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/state\x00', 0x20a42, 0x0)
madvise$auto(0x0, 0x80000001, 0x9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000)
r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
fstat$auto(r4, 0x0)
ioctl$auto(r2, 0x40081271, 0x38)
r5 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/smaps\x00', 0x101880, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_PVERSION(r3, 0x80045500, &(0x7f0000000080)=0x6)
write$auto_snd_seq_f_ops_seq_clientmgr(r5, &(0x7f00000000c0)="632d1bfe595046ab5c40bd6163307acb6d16baef6176e669a216aae1836674fdd80500ffffffffffdfff1a0e00"/56, 0x38)
ioctl$auto(0x3, 0x800541d, 0x38)
setsockopt$auto(0x3, 0x1, 0x42, 0x0, 0x8)
mlock$auto(0xaa77, 0x7fffffffffffffff)
mmap$auto(0x1, 0x8, 0xdc, 0x9b72, 0x2, 0x8000)
mprotect$auto(0x0, 0x8000000000000001, 0x6)
getrandom$auto(0x0, 0x6000000, 0x3)
write$auto(0x3, 0x0, 0xfffffdef)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r6, 0x0)
epoll_ctl$auto(0x5, 0x0, r1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'wg2\x00'})

4m48.165109415s ago: executing program 32 (id=309):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sr0\x00', 0x10f442, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
flistxattr$auto(0xffffffffffffffff, &(0x7f00000001c0)='/dev/tty12\x00', 0x0)
setdomainname$auto(0xfffffffffffffffc, 0x9)
getxattrat$auto(0xffffffffffffffff, 0x0, 0x1c, 0x0, 0x0, 0x80000000)
sendmsg$auto_IEEE802154_LLSEC_DEL_KEY(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES64=r0, @ANYRES16=r0], 0x3c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4)
r1 = socket(0xa, 0x801, 0x106)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/state\x00', 0x20a42, 0x0)
madvise$auto(0x0, 0x80000001, 0x9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000)
r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
fstat$auto(r4, 0x0)
ioctl$auto(r2, 0x40081271, 0x38)
r5 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/smaps\x00', 0x101880, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_PVERSION(r3, 0x80045500, &(0x7f0000000080)=0x6)
write$auto_snd_seq_f_ops_seq_clientmgr(r5, &(0x7f00000000c0)="632d1bfe595046ab5c40bd6163307acb6d16baef6176e669a216aae1836674fdd80500ffffffffffdfff1a0e00"/56, 0x38)
ioctl$auto(0x3, 0x800541d, 0x38)
setsockopt$auto(0x3, 0x1, 0x42, 0x0, 0x8)
mlock$auto(0xaa77, 0x7fffffffffffffff)
mmap$auto(0x1, 0x8, 0xdc, 0x9b72, 0x2, 0x8000)
mprotect$auto(0x0, 0x8000000000000001, 0x6)
getrandom$auto(0x0, 0x6000000, 0x3)
write$auto(0x3, 0x0, 0xfffffdef)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r6, 0x0)
epoll_ctl$auto(0x5, 0x0, r1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'wg2\x00'})

8.905994671s ago: executing program 3 (id=2641):
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x300, 0x70bd36, 0x25dfdbfe, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x9}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0xc005}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/security/tomoyo/version\x00', 0x20840, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x80502, 0x0)
mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
ioctl$auto(0x3, 0x402c542b, 0x38)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f00000000c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002bbd7000ffdbdf250100008008004f000400000008000200", @ANYRES32=0x0, @ANYBLOB="0d0001008100000000000000ff00000008000900", @ANYRES32=r2], 0x3c}}, 0x22008004)
r3 = getpid()
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f00000000c0), 0xffffffff}, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0)
ioctl$auto(0x3, 0xc0585605, 0x38)
read$auto_tomoyo_operations_securityfs_if(r0, &(0x7f0000000100)=""/110, 0xb5)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r4 = openat$auto_trace_time_stamp_mode_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/timestamp_mode\x00', 0x40, 0x0)
mmap$auto(0x2, 0x8, 0x6e1, 0x78, r4, 0x8)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)

8.801255448s ago: executing program 3 (id=2643):
r0 = socket(0x2, 0x6, 0x9)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) (async)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0x44, 0x0, 0x100, 0x70bd25, 0x25dfdbff, {}, [@CTRL_ATTR_FAMILY_NAME={0x6, 0x2, '[\x00'}, @CTRL_ATTR_OP={0x8, 0xa, 0x35}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x6}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x7f}, @CTRL_ATTR_OP={0x8}, @CTRL_ATTR_OP={0x8, 0xa, 0x8448}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000804}, 0x200008d0) (async)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0x44, 0x0, 0x100, 0x70bd25, 0x25dfdbff, {}, [@CTRL_ATTR_FAMILY_NAME={0x6, 0x2, '[\x00'}, @CTRL_ATTR_OP={0x8, 0xa, 0x35}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x6}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x7f}, @CTRL_ATTR_OP={0x8}, @CTRL_ATTR_OP={0x8, 0xa, 0x8448}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000804}, 0x200008d0)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x1fe, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
getrandom$auto(0x0, 0x6000000, 0x3)
madvise$auto(0x0, 0x3, 0x15) (async)
madvise$auto(0x0, 0x3, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x11, 0x3, 0x2)
getsockopt$auto(r1, 0x107, 0xb, 0x0, 0x0) (async)
getsockopt$auto(r1, 0x107, 0xb, 0x0, 0x0)
setrlimit$auto(0x1000000007, 0x0) (async)
setrlimit$auto(0x1000000007, 0x0)
socketpair$auto(0x7, 0x7, 0x5, &(0x7f0000000040)=0x8)
mmap$auto(0x80000001, 0x4, 0x100000000, 0x10, 0x5, 0x1)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) (async)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
r3 = socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) (async)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0x6, &(0x7f00000001c0)=@test={r3, 0x10004, 0x0, 0x1000, 0x106, 0x0, 0x0, 0xfff, 0x10000, 0x9, 0x0, 0x4, 0x7, 0x2, 0xfffeffff}, 0x1)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)

7.804644816s ago: executing program 3 (id=2647):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x3ff, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
io_uring_register$auto(0x2, 0xf, 0x0, 0x20)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/slabinfo\x00', 0x62140, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x1, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
socket(0x22, 0x3, 0x0)
memfd_create$auto(0x0, 0xe)
socket(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC0\x00', 0x200800, 0x0)
memfd_secret$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x200, 0x2010000000000)
r0 = open(0x0, 0x242, 0xe1d2b27bdc14aabc)
fanotify_mark$auto(0x400000000000, 0x101, 0xdd, r0, 0x0)
ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0x11b, 0xf}, 0xc, 0x0, 0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/smaps\x00', 0x42000, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptywa\x00', 0x400, 0x0)

7.46837805s ago: executing program 3 (id=2649):
getgroups$auto(0x7, 0xffffffffffffffff)
r0 = socket(0x2, 0x3, 0xa)
mmap$auto(0x200, 0x400008, 0xdf, 0x20000000000017, 0x2, 0x40000000008002)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/all/accept_local\x00', 0x81, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_SET_QOS_MAP(r0, 0x0, 0x80)
setsockopt$auto(0x3, 0x0, 0x5, 0x0, 0x28)
io_uring_register$auto(r0, 0xfb68, &(0x7f0000000000)="570d1c4e00b3470e78825554d30fefc984a72748a2d726b3c5912b71ea89eea8e8602353e14207070362f03f21168fc10b975c019ad84f1b5478a9b93fb84521a6b8dc36625c0a3a2f05b4b9f49be43d22c09acbdce2ac57a559868f62e9934263759104f4e4c4141ebd44872019ade625912fb74cbd7f62f628025c079fa47f51e9a13f2a7158d0f4cd72b7a89d16d86a4705d06a19f844e2e41d8d49d2832da2ccd8e4056a2fc6cf7c0410fe60ce117f4272540ede7fdc8f8ccd2dd5d18c402f58e4230519ee4eb97f77a256cf93c0ecf158a2", 0x7)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
setsockopt$auto(0x3, 0x0, 0x5, 0x0, 0x28)

7.300960809s ago: executing program 3 (id=2651):
mmap$auto(0xd290, 0x1fffffffc000, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video52\x00', 0x109080, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
set_mempolicy$auto(0x1, &(0x7f0000000000)=0xdad, 0x1)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x7, 0x0, 0x5, 0x3, 0x2000000000210006, 0x0, 0x7, 0x5, 0x2, 0x7, 0xaf, 0x9, 0x2, 0x3, 0x105, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, [0x1b16, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x77, 0x0, 0x0, 0x0, 0x4, 0x0, 0xc06f, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x107, 0x6, 0x0, 0xfffffffffffffffe, 0x4, 0x0, 0x80000000000]}, 0x1fe, 0x81)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030009000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a000100aaaaaaaaaabb00000a000500aaaaaaaaaa3700000800040011"], 0x58}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
setfsgid$auto(0x9)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
readahead$auto(r0, 0x4, 0xfffffffffffffff7)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
ioctl$auto_DMA_HEAP_IOCTL_ALLOC(r1, 0x40345410, 0x0)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)

7.194515505s ago: executing program 3 (id=2654):
mmap$auto(0x800, 0x4, 0x4000000000df, 0x90, 0xffffffffffffffff, 0x300000000003)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={<r0=>0xa, @new_map_fd, 0x4007, @old_prog_fd=0x13b}, 0xa3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioperm$auto(0x4, 0x4, 0x85)
socket(0x25, 0x1, 0x3)
socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
getsockopt$auto(0x100000006, 0x1, 0x3c, 0xfffffffffffffffe, 0x0)
ioctl$auto(r0, 0x100000002, r0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0x3f00)
mmap$auto(0x0, 0x9, 0x20004000000000df, 0x8000000000000010, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x2, 0x0)
socket(0x1f, 0x5, 0x85)
socket(0x29, 0x80000, 0x1)
io_uring_setup$auto(0x3, 0x0)
io_uring_register$auto(0x2, 0x2, &(0x7f0000000040), 0x86)
io_uring_register$auto(r1, 0x6, &(0x7f0000000180), 0x1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
msgrcv$auto(0x9, &(0x7f0000000000)={0x80000000, 0xff}, 0x1, 0x1000000, 0x2)
madvise$auto(0x0, 0x5, 0x15)
pipe2$auto(0x0, 0x80)
migrate_pages$auto(0x0, 0x101, 0x0, &(0x7f0000000140)=0x9)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
eventfd$auto(0x7)
mmap$auto(0x93, 0x9, 0x9, 0x14, 0x100000001, 0x2)

4.168111603s ago: executing program 0 (id=2676):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x90200, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={<r0=>0x2, <r1=>0x4, 0x3, 0x2, 0x8, 0xc, <r2=>0xe3, 0x400000000a, 0x3}, 0x6f4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00') (async)
init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00')
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capset$auto(0x0, 0x0)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xbc4c1, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000040)=""/142, 0x8e) (async)
read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000040)=""/142, 0x8e)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
mmap$auto(0xc, 0x1000200006, 0x1, 0x36d0, r3, 0x4)
madvise$auto(0x5, 0xffffffffffff0005, 0x17) (async)
madvise$auto(0x5, 0xffffffffffff0005, 0x17)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x101, 0x1, r0, 0x5, 0x10000000000)
madvise$auto(0x400004, 0x800080000089, 0x3)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x10, 0x2, 0x0) (async)
r4 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, 0x0, 0x1fe, 0xd) (async)
statmount$auto(0x0, 0x0, 0x1fe, 0xd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
sendmsg$auto_NL80211_CMD_JOIN_OCB(r2, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000128bd7000fddbdf256c0000000c0099000ed700000000000000008b0004004601"], 0x28}, 0x1, 0x0, 0x0, 0x30008030}, 0x400c1)
madvise$auto(0x0, 0xffffffff7fff0005, 0x15)
socket(0x1f, 0x3, 0xffffffff)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4) (async)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
mmap$auto(0xfffffffffffffffd, 0x9f98, 0x8000000000000001, 0x40eb2, r1, 0x0) (async)
mmap$auto(0xfffffffffffffffd, 0x9f98, 0x8000000000000001, 0x40eb2, r1, 0x0)
mmap$auto(0x200000, 0x9, 0x1, 0x40eb1, 0x602, 0xb00000000000)
mmap$auto(0x0, 0x40000a, 0xdf, 0x12, 0xa, 0x8000)

3.644053353s ago: executing program 0 (id=2680):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = open$auto(&(0x7f0000000000)='./file0\x00', 0x6, 0x7)
syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f0000000080), r1)
r3 = syz_clone(0x8a000, &(0x7f00000000c0)="96636b79ae85471163981aa9acbcecdbcbd7bc32057bdd286f0a724e988492c267d451a11f8ec15b0a9cc67fe6142644b3137344c43e5687c07d1d5620161a32ac958d8c98f3108e05b0e871397179c7f89262e1eca5f8088d43d97ee1383f7401", 0x61, &(0x7f0000000140), &(0x7f0000001540), &(0x7f00000001c0)="a5ba4b8831b541f2e7698940e62edaee1e6aecddb32e48dd80ef2e3d2df375b1061b30fff7359ceda529c7304b79b8ba0f69ba2d1728841a2d2853677dc0c44d90e31fa4061198d4c153b548f10f74e3df2b565a06de67b68a6106c574eed3b4edab5fcb9829b60b08472d349c")
waitid$auto(0x5, 0xffffffffffffffff, &(0x7f0000001240)={@siginfo_0_0={0x1, 0x200, 0xe, @_sigfault={&(0x7f0000000240)="12dcae60017f80e82d6ef7139e1810a2a5eb4c23a7bfadc012ed939ffd16c465b2c174d5e11abd2ab9d66316f88fd0432ed305449b3e5184c31ba2724b7370838a388c7ba5c0048ae633470f65e97b54681cf04395cd931bcd0f0ad7f39c2e80688f0c395bad1f38d30f9bf8b5862a885ddca567337c1c403a5cad0037323cee766888db47cc2b75ec130ef3736cc7dfbc86aa1ea6ce4ca388af7b5b6cee88d128b9863948047c349855506f0682ffa21c3e66e2a1de910a4e9a908e322775eb4d7739c4bb18826da73a4c5757b8fce073ea19cb8b5ae8f11c019d8ea9bd680a2d17822cef5d31cc215bfff7ba26acee20bdbbf0972a8723dda98f4c50cda8c2796fe33783842b3ea37dbfa7646e889b3237eec1e79d4dcf4b055e5b5de661ba37aa4ffd363a1544248ce0c2ab60e91e7ead4b8ec52e3beac88b658313acf167a6994cb4c9e250b51ddec54e2e384e3b5a476a92f682e974945882e094f7ace229babe0fd257299eb8938ff1eb19e0e294dbd4d177b234dfb6f066bc0ecfb9d61eea683d5a440a21f122cde771b0fa3481d94a748040d4b8b9c591ef2cb2e1c8ff292b656a2eff01e57b97e4e5add5b6ac17d7f02526b7aa7d75d63f9d43b0f218ce1b8112a1d5c6a63b40ba566373efa40786a27ee82faaf2c16792aabf36bca4c07afcea2f61f98af1c2f043f1ae777e11f6ad8249631033d7e561fd7f9a9ac2d4ab674f63c2b0dae9b2d77a846925b139da1c0a392df9d963a77b694aadf3a5952184fac84bbff7bc1db8b533974dcdd969540c9e786a6ea0004a766e5790f1319c812677c6aabec92f690985bd68e3f8d080a5fb061328ed9e2d96ed0a601709a86c12766b17e28b6b20f8a59a52ce75dd66ce7f173b8b4b338c08b07f92a309b1b5ec35dceeb61a065f4bdf12e7a9232f047babc9ce3d9395195be133856c0d54ef3585cabaec00d5f7d9a80749e5f06dc132fd4acc11ef528a80142d3d46b950329e455e8bba186d8bc6c7cc0dcebd354efe2fe20f23543b77ec9251e9582ce2ce6faa5e1bbe01b5dbff729ef3434fde21cb36d2e9a9054d2fdfcbc2d731044a3fb1ff7efb658346ebe4fd22b7d828b64c45e16d114b6b78e4ffef70b69deafd95348ca7d43325bbfe34662b20ddbe60addfe2ba68c0944ac7761d3dc564500559b23e6b99c56e98ba71225c774ead2134acae9aa4534e167f36b14837d7c62f5405d03aa991e795029c1f893d9706ca8f0a5f46b61d41e7c907595fd1fd1e7214a0e3c33cc76b0edeecf1cffd40ee9777e3271fa5791b9d190b3c46b981f6d7f8e7cc61e6ac03e1c452a91d8eccd79f4b721ff95e136ee069ef868a3004a3ff3f185b9b0360a1e13ea461f6c2191a8ac8e5d325157b21d47c5a7f9deaf737fb8f920850d332f03bad27e6c6d3c3a2a1630e446217e150f0e28de03a9e1d6eb4494fcb38b86541ea32ddb4826fee08f5706569a9fb713bc3e42f94ef3b86f3aac9ee1aa8134c8b25ce4772de14be248d7c7d64379a969bb866be6a23d0e057bb4bdc40dc455983858eb82495bbd65bfe88a3154e9e71aacf953a0cbc1e4cf91571976e5f758e05269004a0d7f970b2e33a8d32ca130d3862ff4d4a122ed3b98ac558551f3d723afa9cfc9ea62daa67727fb3194e32ddc7b6844c4482c02edd70beeeaad2dd6fa985a69fc9a52ab151777df4eddf89d34a3178b25d0a35977543b1c1dd36dbea7f8fd90e89d859a5e209cebf2f97274e932de9ef23f499cbcacf77fdc1c1dc2f8280205b6d67470e263c773b5bd68e67c70a968e5b6b32e01792d7e8d9fe4e18b648ca8a952a1f8f8a2fe7479a974aa7b7cc6b460af2c8283f3b93b6c4f46414dec789acfba1bef8bb41a8f8d02acb6788031161995c3641a1f2fd26dc7ff69c4b76b7d85d5d661fbf798682af2a864ba6b3645a7bfcc6c0219ab0872211b422b896b3925dc4944703465a52057faae006e9257f745675e46e4717c73506fd38c9379665786befed34676aa812bddfd2bd0270ba3a630b7db0c024bd1eb213a0758228a6a9bbd06e50111c6d894f252c8528bc58e7007df1e0a57c4d2e977170694dcd973b9ba23b62044d100894531cd14896336d5bd67718f6a9b2836c5e935c721adabe2034876341b39e1d673af8cd9c8b5da226e93ee61f23439c418391498b5c40ace9380a7f6204f6e13812bdf91f375015c52ec28eca4842e29df8eb89f670cc3ccc0be2b3082066dcda7085e95b22094ae699f6f44bd4b149a45cbca3352bf8276c1fd9e304014188f361478d2e049813fb7ad4d408c951bb678fc835d89019dceaebceb5920019311d83f0e59cc54782984a88f2cc3575fb18cc3605d531985e89159972eac57cfed09c98f02ff50188484c47a98043aa85571763574bba944ff53a667b38643a0cbd24bd6f0abd3462c807c983c1a98bccfedd2a53152d5c2fe0712fd41b33ae1841a4aad3689b18a96a6e5cc6275ca32f45078e176e4535d99a063de997aac300b549264ae1bf5e5c7f4f11f8212f5e70fbd6e47d733b5502ccd83ab5631311232515cec3c13db94be180ad4d3024e22cbd22924cd22ec1296e6a10cc5d8a78d90aec8c1872e693c1d598d5b22a06e228b80af2050ab78f7191f5c0336b873087d80c23c63ac486645a4c376bbaeddb40d70c178f57b899c2338a0504bb4f63e9050f4794a11f9b0ba4132a0a4949c50d953261b76e48c1e9419106c99bc506a0c68055391736cbf495cab68b6f10a1fcf56ce80fa808525eee680bc02f02f3d50ba2bd16bca5369115b65c002bbf864bc0dfdc54229d1af9f7100a10de14ae0b77dee3147894a2b3a4c5df77ece269b5157a6de269ce13839858a3c330cf6f600f17c49087287f98e518b6fd0e55c9751455bea9728769192dee9f23148fb8ad96275b0d39cc235580beb8e032b142a894967f1b91587954ed1ce3b29b412c7680daf4dbe3059b1cffe5820775100ee4389d49ff334ca4b4f55dfb1666c9234963b0d78f916759b65ad0dbe056ae23720a6955af237a706f9c64cc9a70b1cf1353950537c7a7cd5ef1f619d04cfe3200e2f0983e046e5b671787c6332ab0259f7e1b1bbdda7892a8833885519e4c0faafc82248b64105e37146eaeba8db099955d3cf91613401b4ed9c33c148981be5a64d4d896a6d681217ce46cee0145f1a3cfb0c479196a20b2437f03d745540fc7d7ade4b94611f22bc83e37c93c68e03952ae6a9dd86b565ccfdf012307db54c777736f0f4b1c7875d34b94ee614861869ad2c5c966a7ea3121f67260cc9f5bb68ac17a713a95fc04c7b093d414e0c9834c3f69e7b6a902e3c34ae30a0f3e71727d0ef1632018df36223ccf1ab13811c32d5fe82abe91a9240306561d46c43a1e20472e4bcae66a268e95863ff367d24987d82d16ecddc652f04ab2fcbe52de8d36e5e2d76588d13bc902c2775ac4d83dec6f090a24982f3100ec39f0390dd8dea9702026746ae9249d436bf0d8ced4e7b720495e4feb74b9844bda69a868f170a174cb50cfac034fd9dfc8f764ec6bc36aac687ab641e22634a7efb537c65387d6306833c1db54614349499e9d4bf4d6482de7fcef110688f67ecaa6dade65d6a63abd12a52bc945c5dba03126fab0606a35892cb581ad8e2b2f4cc0aee79421667626e76680a0e1422c0750757baad2956ed5f305dd48a0c9a72780b67d95dffdba21d3b5ca2c9a3b670d13da7e9f808a419f798ba0b1c44fd83ade6f7bae2519eb085ab127abd612a3296aacfe71d0457b546717ee3ceae44775b8f0361066e006f4be6f6531b36fd3fd4d3eebc85e672bc0c5dd01a4d0214c09388869a810db366e3c57c84d248ffb039fba5c573b8f80ffb28dcd2043f57823c29ffc40df510ccf6dd9c05b101d50e54a1a777c4406a6ab92f89c0bf445f3af14f697ed4eb303ea6de812a9f9aefbda1a655d65d1a2f2ee42ab5483d799c99be7ebacf6f0586cb84c0c4e491af6a53957577374c2129f51d153c179a30901f029b2e455153442cc300337a22972971d4d059f8b63d22bef40528632e46145034da5844382807a271c04f80911df007064e997b7e78e6858f93e0c27fc7a3c8b14ee2e4517f4f951ea950316840fe3c79c27d10149f7deb46e029c59cdcd8404f60a08b5fb91c0ec8ffd13f2049a781b8999bab95da54aeeab677149f5fd52de0c8caf5e466d598ee1debc38c70df066bb71992dd670c3602dce01ed512be6184a64f47a7783bdccca99f7f4afd87bb8172a7146c8b87e23bb4a9f134b5bd04da49df904b229e87e101acad8d4f7076a0ad9ced5dabebd0e0e061844aae6e7eb13273e3b0f41c31862ac9579201b05ba74b6bf93ad11a2cb08378007cd66d10ee2c048e41636ddf0207e56105382d1f955151ea8bfc19dbd8272e55ed7d0614d5514582662943a5eb11ba6e8762eaae4a098995a8baf6877172d0b80ff8fa9a74a434e6d5d224b7afd240852ecd71a6eb10e9f8faf4c7d26076c429142b45ca47684bbf368bf1ec61beea37e9cf9d4d57971b5da4b6a67b4f26c46b4bbabc2f8d2062e9ab718c71da475940c855c0b66b88b2b30e8880cd219828f8187a047ced63620bf46c2781e12557ad700f45550c448d5c5c0f3d725e3b8d5e2d8f74e33a94e3ad826cfac3c92217c53821f581d8b9066586cddeaae5b11bf9af920013ff27382dfb0102dfa66d7533dd3a5e987a66f7e7aca904175a530cdd86e993fc75970f69ee4bae00fa4c99391241e4c1c29593c8ceabde270e9bd894b564631e6efec036d5cc3ac0aa5941cde0cd2ab7bb3b27a2ac954837c0a069f7e823fc992cf4d8f8ab3f868b48365762577a5c900febeb7107ffd741dcdbf9eac5ceec843209664b4c3f219ae293f0f6c04dad1a9aa160f1fc593af5e19a22187dfe1fc217afeb5375bc59283b9eb755793bc1b26e269be16281f70c05cb19c9087c2e82054e7d04224e2daf6681d9814916b68e3f5a83869b62577e620aeaf47a584f94c5bccfed15781e06622f7aad97d5113d7cd6307977e70be57a3046b7151d5fe65aa3aeeacc5c66bcb8c184a86a8ea87bcb18ca0594f73705ac867c4a568b9bd33eb9aeaf6fd885c0c0e9d247cb1e95157f1cbb7be5663dd9c5a44dcdeedf56bf1b9225eeeb6d33bf38bb3955e425db13cc0bec1dd2b19d1ba11bed8c6c4f4bebea3f2ee896b8c6ce5299f7fbf9987f93e488ee13d9b56c370ec046c438c49b3abc047a2cd475dee959b24d0f12e2de81d593f3f247660af9b200e9de63d662727be023d72b400f2617ac08b98b68ac59dba145840e7c33ca9b1c46c75e73c63666930d61b39739a6de565048968a1309a2ff476808fa108e162abafdac8ed0fde67b19ba129d5ec92d5c42c4b40795a72be10a7493bbe35d3d368ab66843f49e5defbfdbfaf458e62cd3811f1ce5c3bb6f0d56ad635d298854d1c99d127efb95ef3d14be71bc79182b0433ec49abe0a827cc160abe9d5ad3fc4e480fc74ff1dfaa52ca4de8e029f70bed6975ffe4613f6811f7bcbcba08197054b4e8f7f439da4af439d72ee5813379265fbac6bae7c642e226cb819ad021215f678ee59d94f53af3f2cc6f77c6667397f969162d865dd05fcd48d8a29ced752256f26376014d80a5dad9be7226b55303deda9b8e8e2dbda382d06c6377dfd68193e0dd8801d94eb499f0c384f78c00f27eae41ab03d622521415518ad91682d8311607830e5513093a83973a85032217117b4b49a97b9f577d16134d833", @_addr_pkey={"030fcd42eebe49c0", 0x7ff}}}}, 0x4, &(0x7f00000012c0)={{0x6, 0x2}, {0x4, 0xff}, 0x1, 0x80000001, 0x5, 0x2, 0x4, 0x1, 0x101, 0x9, 0xfffffffffffffc00, 0x101, 0x2, 0x5, 0x9, 0x3})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = socket(0x2, 0x80000, 0x6)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
open(0x0, 0x22240, 0x154)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x401c5820, 0x0)
setpgid$auto(r3, r3)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0xa0811}, 0x2000010)
r5 = io_uring_setup$auto(0x6, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), r0)
sendmsg$auto_NL802154_CMD_DEL_SEC_DEV(r5, &(0x7f0000000180)={&(0x7f0000000040), 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x30, r6, 0x8, 0x70bd2c, 0x35dfdbfe, {}, [@NL802154_ATTR_IFNAME={0x14, 0x4, 'pimreg0\x00'}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0xa33}]}, 0x30}, 0x1, 0x0, 0x0, 0x40004}, 0x10)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
clone$auto(0x800, 0x4, &(0x7f00000014c0)=0x8, &(0x7f0000001500)=0x18704327, 0x9)
waitid$auto(0x4, r2, &(0x7f0000001380)={@siginfo_0_0={0x3, 0xa984efa8, 0xfff, @_sigsys={&(0x7f0000001580)="b10d7cb03f9d71a7b004f87135a60b4a1694bf12dc5205fe45c24c4a3b56e26436566504939174ed403f53e8f14be01dacc21930ed934b13028e59b54ca6a3", 0x23, 0xffffffa3}}}, 0xfffffffc, &(0x7f0000001400)={{0x880000000000000, 0xffffffffffffff5b}, {0xfffffffffffffffd, 0x6}, 0x7fffffff, 0x6, 0x2000, 0x9, 0x1, 0x7, 0x726, 0x8, 0xfffffffffffffffc, 0x0, 0x3, 0xf, 0xfffffffffffff001, 0x1})
socket(0x1e, 0x805, 0x0)

3.065498189s ago: executing program 0 (id=2684):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x52204b}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)={0x4c, r0, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@OVS_METER_ATTR_ID={0x8, 0x1, 0x828e}, @OVS_METER_ATTR_ID={0x8, 0x1, 0xfffffff0}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x8}, @OVS_METER_ATTR_CLEAR={0x4}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_USED={0xc, 0x5, 0x4}, @OVS_METER_ATTR_MAX_METERS={0x8, 0x7, 0x7f}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000000}, 0x880)
madvise$auto(0x100000, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
open(&(0x7f0000000300)='./file0\x00', 0x7ffd, 0x12)
r1 = openat$auto_trace_options_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/options/test_nop_refuse\x00', 0x480, 0x0)
flock$auto(r1, 0x7)
write$auto(0x3, 0x0, 0x100082)
openat$auto_short_retry_limit_ops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/short_retry_limit\x00', 0x0, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
bpf$auto(0x5, &(0x7f0000001080)=@bpf_attr_7={@prog_id=0xc, 0x92f1, 0x4}, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x52204b}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)={0x4c, r0, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@OVS_METER_ATTR_ID={0x8, 0x1, 0x828e}, @OVS_METER_ATTR_ID={0x8, 0x1, 0xfffffff0}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x8}, @OVS_METER_ATTR_CLEAR={0x4}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_USED={0xc, 0x5, 0x4}, @OVS_METER_ATTR_MAX_METERS={0x8, 0x7, 0x7f}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000000}, 0x880) (async)
madvise$auto(0x100000, 0xffffffffffff0005, 0x19) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
open(&(0x7f0000000300)='./file0\x00', 0x7ffd, 0x12) (async)
openat$auto_trace_options_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/options/test_nop_refuse\x00', 0x480, 0x0) (async)
flock$auto(r1, 0x7) (async)
write$auto(0x3, 0x0, 0x100082) (async)
openat$auto_short_retry_limit_ops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/short_retry_limit\x00', 0x0, 0x0) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) (async)
madvise$auto(0x0, 0x200007, 0x19) (async)
bpf$auto(0x5, &(0x7f0000001080)=@bpf_attr_7={@prog_id=0xc, 0x92f1, 0x4}, 0xa) (async)

2.972170008s ago: executing program 1 (id=2685):
mmap$auto(0x0, 0xc, 0x6, 0xeb1, 0x3ff, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b75, 0x800, 0x28000)
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x401081, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x9, 0x11, r0, 0x0)
r1 = syz_clone(0x4ea0e211, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages$auto(r1, 0x1002, 0x0, 0x0, 0x0, 0x2)
ioperm$auto(0x7, 0x6, 0x200)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x2020009, 0x3, 0x1000000000000015, r0, 0x7ffc)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r2 = socket(0x11, 0x2, 0x300)
setsockopt$auto(r2, 0x1, 0xe, 0x0, 0x8)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6ab)
read$auto(0x3, 0x0, 0x7ffffffff000)

2.069150457s ago: executing program 1 (id=2687):
rt_sigaction$auto(0x1, &(0x7f00000001c0)={&(0x7f0000000080)=0x0, 0x7fffffffffffffff, 0x0, {0x5}}, 0x0, 0x8)
prctl$auto(0x2a, 0x0, 0x0, 0x0, 0x0) (async)
mkdir$auto(&(0x7f00000001c0)='}[,&*}\x00', 0xc001)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
open(0x0, 0x325081, 0x484) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3) (async)
r0 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r0, 0x107, 0x12, 0x0, 0x4) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b75, 0x2, 0x8000)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x06\x00\x06\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3) (async)
pwrite64$auto(0xc8, 0x0, 0xe, 0x3) (async)
lseek$auto(0x0, 0x1000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
io_uring_enter$auto(0x3, 0x5, 0xffffffff, 0x3, 0x0, 0x2) (async)
mmap$auto(0x0, 0x20006, 0x3, 0xe72, 0x401, 0x8000)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
ioctl$auto(r1, 0x4004510d, 0x3) (async)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/zram-control/hot_add\x00', 0x20800, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000ec0)=""/4096, 0x1000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) (async)
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6b) (async)
rt_sigaction$auto(0x4, &(0x7f0000000300)={&(0x7f0000000240)=0x0, 0x0, 0x0, {0x1}}, 0x0, 0x8) (async)
gettid()

2.029553245s ago: executing program 0 (id=2688):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x88441, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r1, 0x4c01, 0x0) (async)
r2 = prctl$auto(0x0, 0x3, 0x0, 0x3, 0x4) (async)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
faccessat2$auto(r2, &(0x7f0000000000)='./file0\x00', 0x401, 0x3) (async)
ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0) (async)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video29\x00', 0x802, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)

1.876170265s ago: executing program 4 (id=2689):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000780), r0)
sendmsg$auto_TIPC_NL_BEARER_GET(r0, &(0x7f00000023c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b00)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="010028c25bdf2504000000000000"], 0x14}}, 0x40000)
ioctl$auto(0x3, 0xc038563b, 0x38)

1.827766411s ago: executing program 0 (id=2690):
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
socket(0xa, 0x5, 0x0)
listen$auto(0x3, 0x81)
io_uring_setup$auto(0x6, 0x0)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0x200800, 0x124)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x480003, 0x0)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
socket(0x1a, 0x800, 0x100000)
r0 = socket(0x2b, 0x1, 0x1)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000140), 0x382, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptys0\x00', 0x101e81, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_POWER_STATE(r0, 0x40045431, 0x0)
open(0x0, 0xa240, 0x1de)
r1 = geteuid()
setreuid$auto(r1, 0x0)
r2 = getuid()
setresuid$auto(0x0, r2, 0xee00)
ioprio_set$auto(0x101, r2, 0x10000)

1.755359368s ago: executing program 1 (id=2691):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/tainted\x00', 0x28002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, r0, 0x8000)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
write$auto(0x3, 0x0, 0xfdef)
socket(0x0, 0x2, 0x4)
socket(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x2040, 0x0)
poll$auto(&(0x7f0000000080)={r1, 0x75b, 0x8000}, 0x3, 0x3)
r2 = socket(0x10, 0x2, 0x4)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket(0x25, 0x1, 0x3)
r3 = socket(0x10, 0x3, 0x6)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000480)=ANY=[@ANYBLOB="f0020000", @ANYBLOB="616a26fbab0e89fa50fbc40995959085a613771078cb42a8ca6f9f03a8176af4263d52ae13c46f", @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100005800c00c50003000000000000000c02368008027a8087010c800800e800", @ANYRES32=r2, @ANYBLOB="0800fb00", @ANYRES32=r3], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/thread-self/net/can/rcvlist_fil\x00', 0x8000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC1\x00', 0x22000, 0x0)
r4 = openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$auto_safesetid_gid_file_fops_securityfs(r4, &(0x7f0000000640)="d053b10debaeca8a4a67af1c833e3a7424d4d5bb4671455879dd5c94a6195564e73013fdfef280c53c4b640b0e2f1536972a2a68f778e81ec79aefdaf3452f30c311f620b2a00928a8899fb7c239bd4ec9c40fb9d08f2bd6b6382688633df9059cc8480baea9443660a069b202a93ec8de3b4b82fe516dd1e08d3ae8d32a8f3df74773bf64b32a0ba66394227652bc3325a233394a654499408fa694400a", 0x9e)
r5 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_getsetattr$auto(0x3, 0x0, &(0x7f0000000100)={0x8, 0x8, 0x2, 0x1})
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = timerfd_create$auto(0x10001, 0x6)
r7 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r5)
sendmsg$auto_NFSD_CMD_THREADS_SET(r6, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4001000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, r7, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@NFSD_A_SERVER_GRACETIME={0x8, 0x2, 0x7}, @NFSD_A_SERVER_GRACETIME={0x8, 0x2, 0xfffffff1}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x3ff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40015}, 0x880)

1.381336983s ago: executing program 4 (id=2692):
mmap$auto(0x0, 0x20007, 0xffff, 0xeb1, 0x405, 0x8000)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000480)='/dev/radio13\x00', 0x802, 0x0)
write$auto_v4l2_fops_v4l2_dev(r0, 0x0, 0x0)
r1 = socketpair$auto(0x400001d, 0x2, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x118)
r2 = socket(0x2, 0x1, 0x0)
ioctl$auto_evdev_fops_evdev(r1, 0xfff, &(0x7f0000000000)="20fdfe19d48832ba1246566a04f3947d29d61403f4f208ba88d7600a44cf71bb590d033ae17b81a768c6996ff6c938b9e6728c")
r3 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000004000), 0x101143, 0x0)
ioctl$auto_RNDADDENTROPY2(r3, 0x40085203, &(0x7f0000004040)=[0xffffaf7b])
setsockopt$auto(r2, 0x1, 0x3e, 0x0, 0x7)
connect$auto(0x3, &(0x7f00000001c0)=@in={0x2, 0x4e21, @rand_addr=0x64010102}, 0x55)
ioctl$auto(0x3, 0x800005411, 0x38)

1.321869688s ago: executing program 0 (id=2693):
socket(0xa, 0x801, 0x106)
mlockall$auto(0x3)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0x3, 0x0, 0xf, 0x0, 0xb)
getrandom$auto(0x0, 0x6000000, 0x3)
setsockopt$auto(0x3, 0x0, 0x3, 0x0, 0x0)
mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xebf, 0x401, 0x62)
prctl$auto(0x71a, 0x800000000004, 0x4, 0x20005, 0x20010004)
unshare$auto(0x40000080)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
vmsplice$auto(0x3, 0x0, 0x9, 0x7)
socket(0x18, 0xa, 0x8e5)
r0 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0x20100, 0x0)
read$auto_msr_fops_msr(r0, &(0x7f0000000080)=""/49, 0x31)
mmap$auto(0x0, 0x8, 0xdb, 0x9b72, r0, 0x8000)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)
getcwd$auto(0x0, 0xffffffffffffffff)
socket(0x1d, 0x2, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r0, r1, 0xfffffffe)
socket(0x15, 0x5, 0x0)
r2 = socket(0x10, 0x3, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r2, @ANYRES8=r1, @ANYRES32], 0x18}}, 0x80)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10048884)
move_mount$auto(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x176)
setrlimit$auto(0xb, 0x0)

1.168371678s ago: executing program 4 (id=2694):
mmap$auto(0x0, 0xc, 0x6, 0xeb1, 0x3ff, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b75, 0x800, 0x28000)
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x401081, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x9, 0x11, r0, 0x0)
r1 = syz_clone(0x4ea0e211, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages$auto(r1, 0x1002, 0x0, 0x0, 0x0, 0x2)
ioperm$auto(0x7, 0x6, 0x200)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x2020009, 0x3, 0x1000000000000015, r0, 0x7ffc)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r2 = socket(0x11, 0x2, 0x300)
setsockopt$auto(r2, 0x1, 0xe, 0x0, 0x8)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6ab)
read$auto(0x3, 0x0, 0x7ffffffff000)

868.203113ms ago: executing program 1 (id=2695):
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) (async)
io_uring_setup$auto(0x7, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/devices/virtual/net/nr5/queues/rx-0/rps_flow_cnt\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
open(0x0, 0x22240, 0x155) (async)
r0 = socket(0x2, 0x80802, 0x0)
setsockopt$auto(r0, 0x11, 0x67, 0x0, 0x8) (async)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async)
connect$auto(0x3, &(0x7f0000000140), 0x55) (async)
socket(0x10, 0x2, 0x0)
socket(0x10, 0x2, 0x4) (async)
socket(0x2, 0x5, 0x0) (async)
openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) (async)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mtdblock0\x00', 0xa4300, 0x0) (async)
mmap$auto(0x0, 0x5, 0xfffffffffffffe01, 0x8011, 0x3, 0x8000) (async)
prctl$auto(0xf, 0x6, 0x4, 0x5, 0x7) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

524.082188ms ago: executing program 1 (id=2696):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x3, 0x6)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3ffff7f6)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x6)
socket(0xa, 0x2, 0x88)
r1 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYBLOB='\nG'], 0x18}, 0x1, 0x0, 0x0, 0x64048001}, 0x80)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x4000000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
open(0x0, 0x22240, 0x154)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0)

359.965686ms ago: executing program 4 (id=2697):
stat$auto(&(0x7f0000001300)='./file0\x00', &(0x7f0000001340)={0x4, 0xfff, 0x1, 0x0, 0xee01, <r0=>0xee00, 0x0, 0xffeb, 0xc00000000, 0xffffffffffffffff, 0x9, 0x0, 0x1, 0xffff, 0x8000, 0x3})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000001100), r2)
sendmsg$auto_CTRL_CMD_GETFAMILY(r2, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001400)=ANY=[@ANYRES32=r2, @ANYRES8=r0, @ANYRESOCT=0x0, @ANYRES64=r1, @ANYRESOCT=r0], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x20000040)
syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000200), r2)
fstat$auto(r2, &(0x7f0000000340)={0x0, 0x4, 0xbaf, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffff, 0x1, 0x10001, 0x1, 0x4, 0x4, 0x4, 0x4b66, 0x8000000000000001, 0x6})
fstat$auto(r1, &(0x7f0000000400)={0xa001, 0x5, 0x10, 0x1f52, 0x0, 0xffffffffffffffff, 0x0, 0x7, 0x0, 0x9, 0x9, 0xa34, 0x6e, 0x2, 0xfffffffffffffffb, 0x2, 0x8636})
gettid()
ioprio_get$auto(0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8004)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_UPD_RXSA(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001200)={0x14, r4, 0x1, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x94)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r5 = fcntl$auto(0x3, 0x4, 0xa553)
r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x0, 0x0)
ioctl$auto_UDMABUF_CREATE_LIST(r5, 0x40087543, &(0x7f0000001080)={0x0, 0xfff, [{r6, 0x0, 0xd, 0x1}, {<r7=>r6, 0x0, 0x7, 0x3}]})
read$auto_tomoyo_operations_securityfs_if(r7, &(0x7f00000010c0)=""/105, 0x69)
read$auto_tomoyo_operations_securityfs_if(r6, &(0x7f0000000040)=""/4099, 0xfd98)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x801, 0x100)
socket(0x11, 0x3, 0x2)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
getsockopt$auto(0x6, 0x107, 0x17, 0x0, 0x0)
read$auto(r6, &(0x7f0000001200)='\xefI5\x1d\xc4~\xd0<\xd2;\xbcj\xce\x18+\x9blE\x18\xa1>V\n\xa4\x90cgy\x98O\xf4\x7f\xe0\xbf\xbb\x9f\xfc\xfb\x870l0\xcf\xb4\rx\xcb\bpg<ez\x87\xe6\xd9\x8dq5 \xf4J\xe8\xd6I\xaf\x04\xb8\xf1\x8a\xa8(\x1e\xc8\x8a\x05\x9b0\xa4\x06\xf9\x8f\xde\x16!\x9b\xd2\xb1\x81\x97\\\x8a,@\x02.p\xf6\xbe\xeaG1C\xd1~\xee\v\x19\x1c\xdd\n\xdc\x83\xb5\xb1\x8b\xc5U\xee\x92\x9e8.\x05R\x90\xab\x8c\x18.*YnZ\xb1\xe2\xec\xe6\xf2\x8d\x03A~\xa8_uk$\xce\xbe?\xd5\x11\r\xadQ\xdb\xc3w\x04r\x84\x92\x1b\xb4\x81*}\xc6\x1ev+\xb7\xb3X\x034\xcf\xce\x06Y\xef\x1a,\xc9\x88\x1d\xcd\x9b\xba\xf7\xca\x99\xe8\t\xbf_\xf2{\x9f\xb8\xe9\xf9\x05\xc8\xd1\x8e\"\xaa\xc0\x9d$\xfaE/\xf75\xfb\xe6\xbb\xe7\xdc', 0x20000074d)
fstat$auto(r7, &(0x7f0000001140)={0xc, 0x4, 0x81, 0x1, <r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff, 0x0, 0x1, 0xfffffffffffffff9, 0x350376cf, 0xf, 0x7, 0x1000, 0x8000000000000001, 0x8, 0x18c})
keyctl$auto(0x4000017, r8, r8, r9, 0x5)
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x2183, 0x0)

122.538193ms ago: executing program 4 (id=2698):
io_pgetevents$auto(0x6, 0x7f, 0x4, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x2dc}) (async)
socket(0x2, 0x1, 0x0) (async)
mmap$auto(0x0, 0x5, 0xfffffffffffffe01, 0x8011, 0x3, 0x8000) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
io_uring_setup$auto(0x6, 0x0) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x5452, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0) (async)
select$auto(0x5, &(0x7f0000000080)={[0x20000009, 0xfffffffffffbfffc, 0x9, 0x5, 0xc, 0x3, 0x3, 0x1ffe000, 0x2, 0x2, 0x9, 0xf, 0xa657, 0x202, 0x6, 0x1]}, 0x0, 0x0, 0x0) (async)
mq_timedsend$auto(0x200, 0x0, 0xd, 0x4, &(0x7f0000000040)={0xff, 0x80000000}) (async)
munmap$auto(0x4, 0xd)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) (async)
r2 = socket(0x2, 0x801, 0x106)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
listen$auto(0x3, 0x81) (async)
getsockopt$auto(r2, 0x11c, 0x1, 0x0, 0x0) (async)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000) (async)
mprotect$auto(0x1ffff000, 0x810002, 0x0)

61.511764ms ago: executing program 1 (id=2699):
r0 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/enable\x00', 0x1c1602, 0x0)
write$auto_ftrace_enable_fops_trace_events(r0, &(0x7f0000000040)="96f822fbd69827d042cc1e5d9827aa8099d6d3e0648a67aae321d366478d7fd82d28922462833917324a21de2d1f74577c9caa9f6b932b52118f45a1a1a634850033831c7f9e6548030b5d90eadffd4245e93746a3429bc0622d8d295c2f3cfa3e266ecf2bafc90413eb245075ce274aa643e443a022c635f0582720e532072ba69f586e8bcabb0fa754c47074f02b8d568a64a31a3f9b50e6a29e1b0d615a4cf614ede701d801ca393c6e94d1035a1084b806ca96906727cb27c5f7f65adb8b93fd68a56d14d2d7794159412707f3cfe4ca53da626e4cacf131721ddf3d897e870819c8d51577edb252e2aa25d87730c37b2d60a2d08a", 0xf7)
mount$auto(&(0x7f0000000140)='veth1_macvtap\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='{\x96!()$#-,]!${\x00', 0x8000000000000001, &(0x7f0000000200)="0c9bd6f66439b0b885886e133eb6ea06d4dbb6823b7a6398d652b1e3ba83abaa3983b66e7fcf3d8ee1772fbe37cfd4bbc4c33f9e26f1210fec616a1580f6d14e7ca23fb19ad538dabdab95b5b587f9")
r1 = socket(0x2a, 0x80000, 0xfffffffc)
r2 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f00000002c0), r1)
sendmsg$auto_IEEE802154_LLSEC_ADD_SECLEVEL(r1, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x64, r2, 0x800, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}, @IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x6}, @IEEE802154_ATTR_ED_LIST={0x1f, 0x16, "a921aec1baad4a1847ed9f8038cad4194c7fff8f753a7cde691385"}, @IEEE802154_ATTR_CCA_ED_LEVEL={0x8, 0x24, 0xfa4}, @IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0x76}, @IEEE802154_ATTR_DEST_SHORT_ADDR={0x6, 0xe, 0x9}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0x1}]}, 0x64}, 0x1, 0x0, 0x0, 0x40}, 0x20002884)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000440), r1)
sendmsg$auto_NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x120000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r3, 0x200, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_PUNCT_BITMAP={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x4000004)
poll$auto(&(0x7f0000000540)={<r4=>0xffffffffffffffff, 0x8c39, 0x1}, 0xdc50, 0x9)
r5 = landlock_create_ruleset$auto(&(0x7f0000000580)={0x4, 0x5, 0x1}, 0xa54b, 0x1)
r6 = openat2$dir(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)={0x440000, 0x81, 0x21}, 0x18)
connect$auto(r6, &(0x7f0000000640)=@l2={0x1f, 0x5, @none, 0x3, 0x1}, 0x81)
mount$auto(&(0x7f0000000680)='veth1_macvtap\x00', &(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)='{\x96!()$#-,]!${\x00', 0x9, &(0x7f0000000740)="e3c76436508e853ce6413d695b9abf4753")
r7 = openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f00000007c0), 0x1, 0x0)
splice$auto(r5, &(0x7f0000000780)=0x4, r7, &(0x7f0000000800)=0xa, 0x6, 0x8)
openat$auto_rfcomm_dlc_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
r8 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000880)='/dev/bus/usb/029/001\x00', 0x12b000, 0x0)
ioctl$auto(r4, 0x1, r8)
read$auto_userio_fops_userio(r8, &(0x7f00000008c0)=""/64, 0x40)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000900), 0x0, 0x0)
r9 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000980), r4)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000001200)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000011c0)={&(0x7f00000009c0)={0x7f4, r9, 0x200, 0x70bd26, 0x25dfdbfd, {}, [@HWSIM_ATTR_CHANNELS={0x8, 0x9, 0x15c0}, @HWSIM_ATTR_FRAME={0x7d2, 0x3, "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"}, @HWSIM_ATTR_MULTI_RADIO={0x4}]}, 0x7f4}, 0x1, 0x0, 0x0, 0x4080819}, 0x10)
mprotect$auto(0x5, 0x7fff, 0x9)
sendmsg$auto_NL80211_CMD_SET_BSS(r4, &(0x7f0000001300)={&(0x7f0000001240)={0x10, 0x0, 0x0, 0x880}, 0xc, &(0x7f00000012c0)={&(0x7f0000001280)={0x2c, r3, 0x0, 0x70bd2c, 0x25dfdbfd, {}, [@NL80211_ATTR_CIPHER_SUITE_GROUP={0x8, 0x4a, 0x8}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x7}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000885)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001340), r1)
recvfrom$auto(r1, &(0x7f0000001380)="ddd2fde8862e34566fa14f5afc0ae068c3dce7c6a98ce7dc2fc1389000f9bd711a5518775921f5fcb893466f4aeff4da5b45b4a74ed313bc8f4a138d117a72ad67332730e0ed4ecafd75c833aaad85003c47bfa77c6928768a0c774e0f603608611a075de0c412de8b87c085b326079e47d53b51ef0b5954aebdd51c8205a213ec72fd2b5150fbe115742b10c3c6d3ec69eb8534c10f473190b95da180e7eaa38d8709b1147a97634ce931ed92ce61166d934e23a6186921debb51595678", 0x6, 0xff, &(0x7f0000001440)=@l2={0x1f, 0x5, @any, 0x136}, &(0x7f0000001480)=0xb)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000014c0), 0x380, 0x0)
socket(0xa, 0x4, 0x80000000)
mprotect$auto(0x40, 0x4, 0x9)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000001500), r4)

0s ago: executing program 4 (id=2700):
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000000), 0x8202, 0x0)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, r0)
write$auto(0x3, 0x0, 0xfdf3) (async)
write$auto(0x3, 0x0, 0xfdf3)
sendmsg$auto_ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x28, r1, 0x1, 0x70bd26, 0x25dfdbff, {}, [@ETHTOOL_A_PAUSE_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x44044)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
ioperm$auto(0x4, 0xbc6, 0x81)
socket(0x25, 0x1, 0x3) (async)
socket(0x25, 0x1, 0x3)
socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
getsockopt$auto(0x100000006, 0x1, 0x3c, 0xfffffffffffffffe, 0x0)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) (async)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
r2 = prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0) (async)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r3) (async)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r3)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000002500)={0x1324, 0x0, 0x0, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_PEER={0x130d, 0x28, 0x0, 0x1, [@typed={0x35, 0xd9, 0x0, 0x0, @binary="9a4c40951d394159bded8518c29600807bd319edf0b36af50697aec056817a34bbe1e82212e0ace09e255d737a6430c526"}, @nested={0xbd, 0x110, 0x0, 0x1, [@generic="3f38b77cc9f282fbe30ce86cf808b6d99c0dc722358a20108e30baee0b02af71b9cb5f869f28d3c6373031e5bdb7a71492ffbaf2db1e761e6d1a7866da0446f41a5927101a5e53f72c1be7ae1ca3b1f3aaa8159bbd236f17c8f93a291c63c5090564ba4f3d165dace5bfef01010577b787e9ff8344bbfbc6b69cc09cc21d6865df063d56b808c3412edd92e3ae5a3a0b7cfed5891b3435e477321e93e55d29cd5df56ef6b3764e5e22bdfc4dcf643ba84e58ad682fae32232d"]}, @generic="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", @generic="9c089c4a032ac447986c319541a2688127d088c52f38ec15e1cf0ce58244413c4088f77d8aeafecc3e5d86bee2f709727bdd82a4f0e30867672f74baf660bf0360ac201ec4b694f2d2163d6ed2b180ce98daa0114443d8421551b4f721e8ec62b3d037e9e2ee6198be073d98fc3b9e4440479ba9aa5619d2c26ea9999012127963dcffebfffb23d12d1de90d5a12", @generic="d23689fef4c0786f7a83299ea21954f307a076edfbc5225c845158d797e19d179da18b78c68e66bd4c2e611dfe36ec10e6c330e22591b451a419969e85682ae17f67e63c7e5d2cafc88f04726d620c5eabb977d71b76e93f71971de18a371056159e3bde7818875e4b82cace21ea7a024a7a3aa5982ac775bbc937ffa358ad5ea6598b96f505497d8e8b29d6bd76d96dc92ed8286f74e52c8f7001fa", @typed={0xfe1, 0x139, 0x0, 0x0, @binary="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"}]}]}, 0x1324}, 0x1, 0x0, 0x0, 0x20000000}, 0x200000c0)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r3, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r4, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) (async)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r3, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r4, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r3, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)
r5 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000080), r2)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r5, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0xfd}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x81)

kernel console output (not intermixed with test programs):

evsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.903214][   T12] batadv0: left allmulticast mode
[  101.919473][   T12] batadv0: left promiscuous mode
[  101.924609][   T12] bridge0: port 3(batadv0) entered disabled state
[  101.957768][   T12] bridge_slave_1: left allmulticast mode
[  101.972620][   T12] bridge_slave_1: left promiscuous mode
[  101.986718][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.006849][ T5841] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  102.014203][ T5841] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  102.023474][ T5841] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  102.031214][ T5841] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  102.050721][ T5841] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  102.059451][ T5841] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  102.059759][   T12] bridge_slave_0: left allmulticast mode
[  102.091781][   T12] bridge_slave_0: left promiscuous mode
[  102.098711][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.180728][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  102.192846][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  102.205082][   T12] bond0 (unregistering): Released all slaves
[  102.589343][ T7162] chnl_net:caif_netlink_parms(): no params data found
[  102.639957][   T12] hsr_slave_0: left promiscuous mode
[  102.670983][   T12] hsr_slave_1: left promiscuous mode
[  102.677175][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  102.695340][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  102.716182][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  102.725515][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  102.795300][   T12] veth1_macvtap: left promiscuous mode
[  102.805766][   T12] veth0_macvtap: left promiscuous mode
[  102.811368][   T12] veth1_vlan: left promiscuous mode
[  102.825675][   T12] veth0_vlan: left promiscuous mode
[  103.020802][   T12] team0 (unregistering): Port device team_slave_1 removed
[  103.032881][   T12] team0 (unregistering): Port device team_slave_0 removed
[  103.373110][ T7162] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.381650][ T7162] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.390363][ T7162] bridge_slave_0: entered allmulticast mode
[  103.399715][ T7162] bridge_slave_0: entered promiscuous mode
[  103.410862][ T7162] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.419270][ T7162] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.427349][ T7162] bridge_slave_1: entered allmulticast mode
[  103.434388][ T7162] bridge_slave_1: entered promiscuous mode
[  103.662596][ T7162] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.673767][ T7206] ptrace attach of "./syz-executor exec"[5828] was attempted by "¼-b33`Ì°Ëö|÷'ªÖ`YM}9\x0c‘_xl}�öîÑS±”ž\x5c±<g~�,,ú!•¡@åu±lYˆ1‹]d±-å™û‰VXå[ßšœcê·
覺þ…Y^¬ö‡ŠÅ¨p»ý –îeï�ll‘h\x22\x1bx]NÕôñøÌ)S¼6J¨Jè„2ûlÛ“„ªB+²hhŒ

jh*?l¾¦Ó“ÜF�nÎô¶lã†S’hë|žŽ1.–¡ŽâK¤æšÊ—²´Qn«�ºäŒsì\x5cÃA=‡y÷K—&èæŽZ_¢6Y-Âz! �
Þt*Aþ´ñE€ûË\x5c8S`¼!ÐX|¨×›íª¢*±+ŽfilŒ¢\x1bDnn=c ùUE`DŸ>\x0cÜ×¾€”øôºEÎ>¹5MpúùŒç‹ÁhÖõÅ8ª.(1\x0c£*úNAT]çä¡5�'e6”÷\x0a@Pûiw¡üA;K/ ½ö‹H6>š§—GdŽ&NJ…aVš#¸>KS·ÅHh›
›Lþ2\x09Eί†¤ÒÃÙæÇ/ôIû{ðœß
(nÓðgÒ.¾øÅ(šÚàCBÛô†‹et[QäGÒ\x1b†ö0TM5îg¦¬üøn\x22hÒž¬o}pØå¶W]@QmL²$¯CòÂ…ßËwS�±ÑX?>ºøû�²hX.hk ¯°62q}ù$›€û‘‘+0šÃé¼¼0G–ïB{\x09þÂtg�ÝïüoÎ/\x0c¶à'i¬(ᇫ°Ðβš2›p\x1bИä-$f-ųvd“}×v‚Ñ·o<7žô³ 2r¯2ò¹Y°ø:±¾%‚÷tq—tõmסŠw »•ò`JÑLHÄÔ-*ô6ä°v´]âjÄt+pTâ…p\x1b¥:¨®é-ø©M’†Ôr~Ì>Ý01—\x0dÈ«\x22ñi?­Eá-”™Š±ìVÛ±wõZ†=³¬ƒÓ&a=bŠ·Èò½R[ß ú“æ÷È’ª&mû˜O B*Žd¾?ý¤rÁJlü'2�Ïpb¯e�<ç< \x1b¢MaIž²PPÿåã\x0a±ÃZñò¿É¦Yáh¤ª„ñ‘|ØÕ~ê’¸ªÈ<µ€Úµ`X�dá¬>8#7ç\x0bzÊhü˜6¼q‰n¢f�{LFÕNÎÕðÔC
¡ Éÿ‹»�É)áþ1109’:¡´rJ¼&.¨ jG_»�• \x09\x0aç
[  103.698399][ T7162] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.994255][ T7162] team0: Port device team_slave_0 added
[  104.016874][ T7162] team0: Port device team_slave_1 added
[  104.078410][ T7162] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.093365][ T7162] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.122492][ T5841] Bluetooth: hci1: command tx timeout
[  104.161511][ T7162] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.226141][ T7162] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.246877][ T7162] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.325461][ T7162] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.399710][ T7162] hsr_slave_0: entered promiscuous mode
[  104.414688][ T7162] hsr_slave_1: entered promiscuous mode
[  104.425881][ T7162] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  104.433555][ T7162] Cannot create hsr debugfs directory
[  104.706248][ T7162] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  104.774405][ T7162] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  104.793223][ T7162] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  104.814421][ T7162] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  105.008274][ T7162] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.078903][ T7162] 8021q: adding VLAN 0 to HW filter on device team0
[  105.102545][ T1324] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.109718][ T1324] bridge0: port 1(bridge_slave_0) entered forwarding state
[  105.137987][   T73] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.145140][   T73] bridge0: port 2(bridge_slave_1) entered forwarding state
[  105.406607][ T7162] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  105.859780][ T7304] netlink: 4 bytes leftover after parsing attributes in process `syz.0.338'.
[  106.019287][ T7293] MTRR 1 not used
[  106.097577][ T7162] 8021q: adding VLAN 0 to HW filter on device batadv0
[  106.187295][ T5841] Bluetooth: hci1: command tx timeout
[  106.431857][ T7334] could not allocate digest TFM handle 
[  106.539394][ T7162] veth0_vlan: entered promiscuous mode
[  106.570491][ T7162] veth1_vlan: entered promiscuous mode
[  106.621980][ T7162] veth0_macvtap: entered promiscuous mode
[  106.648401][ T7322] netlink: 342 bytes leftover after parsing attributes in process `syz.1.339'.
[  106.671945][ T7162] veth1_macvtap: entered promiscuous mode
[  106.698084][ T7162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  106.711099][ T7162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.721502][ T7162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  106.732772][ T7162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.743190][ T7162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  106.757208][ T7162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.776914][ T7162] batman_adv: batadv0: Interface activated: batadv_slave_0
[  106.792197][ T7162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  106.815181][ T7162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.840539][ T7162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  106.859838][ T7162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.876425][ T7162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  106.899839][ T7162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.918551][ T7162] batman_adv: batadv0: Interface activated: batadv_slave_1
[  106.983102][ T7162] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.004413][ T7162] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.015321][ T7162] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  107.024670][ T7162] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  107.107403][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.123962][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.157089][ T1324] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.195301][ T1324] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.370178][ T7391] netlink: 28 bytes leftover after parsing attributes in process `syz.4.310'.
[  108.138819][ T7421] openvswitch: netlink: Key 23 has unexpected len 793 expected 2
[  108.266712][ T5841] Bluetooth: hci1: command tx timeout
[  109.048245][ T7471] can: request_module (can-proto-0) failed.
[  109.073244][   T29] audit: type=1804 audit(2086.560:3): pid=7471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.361" name="#)-\&[}" dev="mqueue" ino=15353 res=1 errno=0
[  109.073253][ T7471] kernel read not supported for file /#)-\&[} (pid: 7471 comm: syz.1.361)
[  109.135681][   T29] audit: type=1800 audit(2086.560:4): pid=7471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.361" name="#)-\&[}" dev="mqueue" ino=15353 res=0 errno=0
[  109.175549][   T29] audit: type=1804 audit(2086.630:5): pid=7471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.361" name="#)-\&[}" dev="mqueue" ino=15353 res=1 errno=0
[  109.271745][   T29] audit: type=1804 audit(2086.630:6): pid=7471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.361" name="#)-\&[}" dev="mqueue" ino=15353 res=1 errno=0
[  109.537727][ T7491] IPVS: length: 11322 != 8
[  109.684186][ T7498] IPVS: length: 11322 != 8
[  109.710465][   T29] audit: type=1800 audit(2087.200:7): pid=7506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.367" name="members" dev="configfs" ino=15769 res=0 errno=0
[  110.346445][ T5841] Bluetooth: hci1: command tx timeout
[  111.350828][ T7590] syz.3.387(7590): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  111.608410][ T7598] netlink: 28 bytes leftover after parsing attributes in process `syz.3.389'.
[  111.788675][ T7604] netlink: 4 bytes leftover after parsing attributes in process `syz.3.390'.
[  112.185629][ T7616] netlink: 4 bytes leftover after parsing attributes in process `syz.0.393'.
[  112.488405][ T7627] netlink: 28 bytes leftover after parsing attributes in process `syz.4.394'.
[  112.596784][ T7627] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.689207][ T7627] batman_adv: batadv0: Removing interface: batadv_slave_0
[  112.709305][ T7627] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  112.746906][ T7627] batman_adv: batadv0: Removing interface: batadv_slave_1
[  112.876234][ T7624] blktrace: Concurrent blktraces are not allowed on sg0
[  113.013208][ T7637] vivid-009: =================  START STATUS  =================
[  113.037709][ T7637] vivid-009: Enable Output Cropping: true
[  113.050239][ T7637] vivid-009: Enable Output Composing: true
[  113.063878][ T7637] vivid-009: Enable Output Scaler: true
[  113.076350][ T7637] vivid-009: Tx RGB Quantization Range: Automatic
[  113.090714][ T7637] vivid-009: Transmit Mode: HDMI
[  113.102497][ T7637] vivid-009: Hotplug Present: 0x00000000
[  113.114962][ T7637] vivid-009: RxSense Present: 0x00000000
[  113.127687][ T7637] vivid-009: EDID Present: 0x00000000
[  113.139895][ T7637] vivid-009: ==================  END STATUS  ==================
[  113.279182][ T7640] netlink: 334 bytes leftover after parsing attributes in process `syz.0.398'.
[  114.490512][ T7690] FAULT_INJECTION: forcing a failure.
[  114.490512][ T7690] name failslab, interval 1, probability 0, space 0, times 1
[  114.526153][ T7690] CPU: 1 UID: 0 PID: 7690 Comm: syz.4.412 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  114.536880][ T7690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  114.546983][ T7690] Call Trace:
[  114.550295][ T7690]  <TASK>
[  114.553257][ T7690]  dump_stack_lvl+0x16c/0x1f0
[  114.557972][ T7690]  should_fail_ex+0x497/0x5b0
[  114.562671][ T7690]  ? fs_reclaim_acquire+0xae/0x150
[  114.567807][ T7690]  should_failslab+0xc2/0x120
[  114.572507][ T7690]  __kmalloc_noprof+0xce/0x4f0
[  114.577301][ T7690]  ? d_absolute_path+0x137/0x1b0
[  114.582353][ T7690]  ? tomoyo_encode2+0x100/0x3e0
[  114.587228][ T7690]  tomoyo_encode2+0x100/0x3e0
[  114.591936][ T7690]  tomoyo_realpath_from_path+0x1a7/0x710
[  114.597595][ T7690]  tomoyo_path_number_perm+0x248/0x5b0
[  114.603186][ T7690]  ? tomoyo_path_number_perm+0x235/0x5b0
[  114.608865][ T7690]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  114.614872][ T7690]  ? rcu_is_watching+0x12/0xc0
[  114.619657][ T7690]  ? preempt_count_add+0x76/0x150
[  114.624717][ T7690]  ? __pfx_lock_release+0x10/0x10
[  114.629781][ T7690]  ? trace_lock_acquire+0x14e/0x1f0
[  114.635007][ T7690]  ? __fget_files+0x40/0x3a0
[  114.639628][ T7690]  ? lock_acquire+0x2f/0xb0
[  114.644160][ T7690]  ? __fget_files+0x40/0x3a0
[  114.648771][ T7690]  ? __fget_files+0x206/0x3a0
[  114.653466][ T7690]  security_file_ioctl+0x9b/0x240
[  114.658504][ T7690]  __x64_sys_ioctl+0xb7/0x200
[  114.663199][ T7690]  do_syscall_64+0xcd/0x250
[  114.667723][ T7690]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.673636][ T7690] RIP: 0033:0x7fac4c185d29
[  114.678063][ T7690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.697698][ T7690] RSP: 002b:00007fac4cf09038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  114.706131][ T7690] RAX: ffffffffffffffda RBX: 00007fac4c375fa0 RCX: 00007fac4c185d29
[  114.714124][ T7690] RDX: 0000000000000bb1 RSI: 0000000000002279 RDI: 0000000000000003
[  114.722110][ T7690] RBP: 00007fac4cf09090 R08: 0000000000000000 R09: 0000000000000000
[  114.730107][ T7690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.738104][ T7690] R13: 0000000000000000 R14: 00007fac4c375fa0 R15: 00007fffb1cfa9b8
[  114.746112][ T7690]  </TASK>
[  114.755531][ T7690] ERROR: Out of memory at tomoyo_realpath_from_path.
[  115.396633][ T7711] netlink: 342 bytes leftover after parsing attributes in process `syz.0.416'.
[  116.032613][ T7732] FAULT_INJECTION: forcing a failure.
[  116.032613][ T7732] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  116.057236][ T7732] CPU: 1 UID: 0 PID: 7732 Comm: syz.3.423 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  116.067878][ T7732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  116.077951][ T7732] Call Trace:
[  116.081241][ T7732]  <TASK>
[  116.084181][ T7732]  dump_stack_lvl+0x16c/0x1f0
[  116.088882][ T7732]  should_fail_ex+0x497/0x5b0
[  116.093753][ T7732]  _copy_to_user+0x32/0xd0
[  116.098197][ T7732]  simple_read_from_buffer+0xd0/0x160
[  116.103585][ T7732]  proc_fail_nth_read+0x198/0x270
[  116.108635][ T7732]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  116.114203][ T7732]  ? bpf_lsm_file_permission+0x9/0x10
[  116.119599][ T7732]  ? security_file_permission+0x71/0x210
[  116.125253][ T7732]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  116.130853][ T7732]  vfs_read+0x1df/0xbe0
[  116.135037][ T7732]  ? __fget_files+0x1fc/0x3a0
[  116.139739][ T7732]  ? __pfx___mutex_lock+0x10/0x10
[  116.144808][ T7732]  ? __pfx_vfs_read+0x10/0x10
[  116.149519][ T7732]  ? __fget_files+0x206/0x3a0
[  116.154230][ T7732]  ksys_read+0x12b/0x250
[  116.158498][ T7732]  ? __pfx_ksys_read+0x10/0x10
[  116.163306][ T7732]  ? rcu_is_watching+0x12/0xc0
[  116.168101][ T7732]  ? rcu_is_watching+0x12/0xc0
[  116.172897][ T7732]  do_syscall_64+0xcd/0x250
[  116.177431][ T7732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.183347][ T7732] RIP: 0033:0x7fe34fd8473c
[  116.187781][ T7732] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  116.207410][ T7732] RSP: 002b:00007fe350b42030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  116.215849][ T7732] RAX: ffffffffffffffda RBX: 00007fe34ff75fa0 RCX: 00007fe34fd8473c
[  116.223850][ T7732] RDX: 000000000000000f RSI: 00007fe350b420a0 RDI: 0000000000000004
[  116.231931][ T7732] RBP: 00007fe350b42090 R08: 0000000000000000 R09: 0000000000000000
[  116.239933][ T7732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.247932][ T7732] R13: 0000000000000000 R14: 00007fe34ff75fa0 R15: 00007ffd6f86be88
[  116.255939][ T7732]  </TASK>
[  116.757286][ T7771] ima: policy update failed
[  116.776599][   T29] audit: type=1802 audit(2094.270:8): pid=7771 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.430" res=0 errno=0
[  118.065479][ T7814] nbd0: detected capacity change from 0 to 68719476736
[  118.073968][ T5819] block nbd0: Send control failed (result -22)
[  118.080382][ T5819] block nbd0: Request send failed, requeueing
[  118.099873][ T5841] block nbd0: Receive control failed (result -32)
[  118.106865][   T58] block nbd0: Dead connection, failed to find a fallback
[  118.113921][   T58] block nbd0: shutting down sockets
[  118.119677][   T58] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  118.130811][   T58] Buffer I/O error on dev nbd0, logical block 0, async page read
[  118.186998][ T5819] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  118.238168][ T5819] Buffer I/O error on dev nbd0, logical block 0, async page read
[  118.283544][ T5819] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  118.313458][ T5819] Buffer I/O error on dev nbd0, logical block 0, async page read
[  118.330144][ T5819] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  118.356406][ T5819] Buffer I/O error on dev nbd0, logical block 0, async page read
[  118.370494][ T5819] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  118.383512][ T5819] Buffer I/O error on dev nbd0, logical block 0, async page read
[  118.429708][ T5819] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  118.457082][ T5819] Buffer I/O error on dev nbd0, logical block 0, async page read
[  118.464973][ T5819] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  118.484500][ T5819] Buffer I/O error on dev nbd0, logical block 0, async page read
[  118.502545][ T5819] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  118.520381][ T5819] Buffer I/O error on dev nbd0, logical block 0, async page read
[  118.529278][ T5819] ldm_validate_partition_table(): Disk read failed.
[  118.549115][ T5819] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  118.577018][ T5819] Buffer I/O error on dev nbd0, logical block 0, async page read
[  118.593167][ T5819] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  118.612585][ T5819] Buffer I/O error on dev nbd0, logical block 0, async page read
[  118.656659][ T5819] Dev nbd0: unable to read RDB block 0
[  118.662592][ T5819]  nbd0: unable to read partition table
[  118.728657][ T5819] ldm_validate_partition_table(): Disk read failed.
[  118.778850][ T5819] Dev nbd0: unable to read RDB block 0
[  118.784740][ T5819]  nbd0: unable to read partition table
[  119.916771][ T7905] netlink: 342 bytes leftover after parsing attributes in process `syz.4.456'.
[  119.954057][ T7905] netlink: 342 bytes leftover after parsing attributes in process `syz.4.456'.
[  120.017133][ T7905] netlink: 342 bytes leftover after parsing attributes in process `syz.4.456'.
[  120.694135][ T7938] netlink: 68 bytes leftover after parsing attributes in process `syz.1.462'.
[  121.303400][ T7981] netlink: 342 bytes leftover after parsing attributes in process `syz.1.466'.
[  123.636444][ T8111] netlink: 28 bytes leftover after parsing attributes in process `syz.1.486'.
[  125.587415][ T8223] netlink: 36 bytes leftover after parsing attributes in process `syz.1.501'.
[  125.614237][ T8224] netlink: 24 bytes leftover after parsing attributes in process `syz.3.499'.
[  125.680601][ T8219] netlink: 24 bytes leftover after parsing attributes in process `syz.3.499'.
[  125.910694][ T8233] ecryptfs_parse_packet_length: Five-byte packet length not supported
[  125.936123][ T8233] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[  126.392921][ T8242] bridge0: port 3(veth1_to_hsr) entered blocking state
[  126.441025][ T8242] bridge0: port 3(veth1_to_hsr) entered disabled state
[  126.480416][ T8242] veth1_to_hsr: entered allmulticast mode
[  126.556203][ T8242] veth1_to_hsr: entered promiscuous mode
[  126.577072][ T8242] bridge0: port 3(veth1_to_hsr) entered blocking state
[  126.584013][ T8242] bridge0: port 3(veth1_to_hsr) entered forwarding state
[  128.016277][ T8293] netlink: 342 bytes leftover after parsing attributes in process `syz.4.519'.
[  128.497765][ T8308] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(1635017058.3176036.0), cmd(6)
[  128.975148][ T8321] FAULT_INJECTION: forcing a failure.
[  128.975148][ T8321] name failslab, interval 1, probability 0, space 0, times 0
[  129.058199][ T8321] CPU: 1 UID: 0 PID: 8321 Comm: syz.1.526 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  129.068838][ T8321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  129.078918][ T8321] Call Trace:
[  129.082213][ T8321]  <TASK>
[  129.085156][ T8321]  dump_stack_lvl+0x16c/0x1f0
[  129.089869][ T8321]  should_fail_ex+0x497/0x5b0
[  129.094578][ T8321]  ? fs_reclaim_acquire+0xae/0x150
[  129.099717][ T8321]  should_failslab+0xc2/0x120
[  129.104433][ T8321]  __kmalloc_cache_noprof+0x68/0x420
[  129.109774][ T8321]  ? trace_lock_acquire+0x14e/0x1f0
[  129.115001][ T8321]  alloc_pipe_info+0x10e/0x590
[  129.119793][ T8321]  splice_direct_to_actor+0x793/0xa40
[  129.125188][ T8321]  ? lock_release+0x4e2/0x6f0
[  129.129885][ T8321]  ? __pfx_direct_splice_actor+0x10/0x10
[  129.135542][ T8321]  ? __pfx_lock_release+0x10/0x10
[  129.140592][ T8321]  ? trace_lock_acquire+0x14e/0x1f0
[  129.145819][ T8321]  ? __pfx_aa_file_perm+0x10/0x10
[  129.150868][ T8321]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  129.156787][ T8321]  ? rcu_is_watching+0x12/0xc0
[  129.161581][ T8321]  ? lock_release+0x4e2/0x6f0
[  129.166280][ T8321]  ? __fget_files+0x1fc/0x3a0
[  129.170984][ T8321]  do_splice_direct+0x178/0x250
[  129.175863][ T8321]  ? __pfx_do_splice_direct+0x10/0x10
[  129.181264][ T8321]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  129.187190][ T8321]  ? bpf_lsm_file_permission+0x9/0x10
[  129.192595][ T8321]  ? security_file_permission+0x71/0x210
[  129.198253][ T8321]  do_sendfile+0xaed/0xe30
[  129.202697][ T8321]  ? __pfx_do_sendfile+0x10/0x10
[  129.207659][ T8321]  ? __fget_files+0x206/0x3a0
[  129.212362][ T8321]  __x64_sys_sendfile64+0x1da/0x220
[  129.217589][ T8321]  ? ksys_write+0x1ba/0x250
[  129.222113][ T8321]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  129.227858][ T8321]  ? rcu_is_watching+0x12/0xc0
[  129.232644][ T8321]  ? rcu_is_watching+0x12/0xc0
[  129.237443][ T8321]  do_syscall_64+0xcd/0x250
[  129.241975][ T8321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.247898][ T8321] RIP: 0033:0x7f2055385d29
[  129.252327][ T8321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.272313][ T8321] RSP: 002b:00007f2056277038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  129.280750][ T8321] RAX: ffffffffffffffda RBX: 00007f2055575fa0 RCX: 00007f2055385d29
[  129.288745][ T8321] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  129.296731][ T8321] RBP: 00007f2056277090 R08: 0000000000000000 R09: 0000000000000000
[  129.304721][ T8321] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  129.312710][ T8321] R13: 0000000000000000 R14: 00007f2055575fa0 R15: 00007ffc12d042c8
[  129.320708][ T8321]  </TASK>
[  129.672777][ T8342] erspan0: entered allmulticast mode
[  130.128247][ T8361] FAULT_INJECTION: forcing a failure.
[  130.128247][ T8361] name failslab, interval 1, probability 0, space 0, times 0
[  130.162972][ T8361] CPU: 0 UID: 0 PID: 8361 Comm: syz.1.538 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  130.173621][ T8361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  130.183748][ T8361] Call Trace:
[  130.187040][ T8361]  <TASK>
[  130.189986][ T8361]  dump_stack_lvl+0x16c/0x1f0
[  130.194700][ T8361]  should_fail_ex+0x497/0x5b0
[  130.199410][ T8361]  ? fs_reclaim_acquire+0xae/0x150
[  130.204546][ T8361]  should_failslab+0xc2/0x120
[  130.209250][ T8361]  __kmalloc_noprof+0xce/0x4f0
[  130.214042][ T8361]  ? alloc_pipe_info+0x1ec/0x590
[  130.219012][ T8361]  alloc_pipe_info+0x1ec/0x590
[  130.223804][ T8361]  splice_direct_to_actor+0x793/0xa40
[  130.229203][ T8361]  ? lock_release+0x4e2/0x6f0
[  130.233882][ T8361]  ? __pfx_direct_splice_actor+0x10/0x10
[  130.239530][ T8361]  ? __pfx_lock_release+0x10/0x10
[  130.244565][ T8361]  ? trace_lock_acquire+0x14e/0x1f0
[  130.249773][ T8361]  ? __pfx_aa_file_perm+0x10/0x10
[  130.254800][ T8361]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  130.260700][ T8361]  ? rcu_is_watching+0x12/0xc0
[  130.265557][ T8361]  ? lock_release+0x4e2/0x6f0
[  130.270230][ T8361]  ? __fget_files+0x1fc/0x3a0
[  130.274915][ T8361]  do_splice_direct+0x178/0x250
[  130.279765][ T8361]  ? __pfx_do_splice_direct+0x10/0x10
[  130.285144][ T8361]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  130.291033][ T8361]  ? bpf_lsm_file_permission+0x9/0x10
[  130.296409][ T8361]  ? security_file_permission+0x71/0x210
[  130.302043][ T8361]  do_sendfile+0xaed/0xe30
[  130.306459][ T8361]  ? __pfx_do_sendfile+0x10/0x10
[  130.311398][ T8361]  ? __fget_files+0x206/0x3a0
[  130.316076][ T8361]  __x64_sys_sendfile64+0x1da/0x220
[  130.321275][ T8361]  ? ksys_write+0x1ba/0x250
[  130.325788][ T8361]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  130.331516][ T8361]  ? rcu_is_watching+0x12/0xc0
[  130.336282][ T8361]  ? rcu_is_watching+0x12/0xc0
[  130.341053][ T8361]  do_syscall_64+0xcd/0x250
[  130.345596][ T8361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.351492][ T8361] RIP: 0033:0x7f2055385d29
[  130.355903][ T8361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.375519][ T8361] RSP: 002b:00007f2056277038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  130.383933][ T8361] RAX: ffffffffffffffda RBX: 00007f2055575fa0 RCX: 00007f2055385d29
[  130.392014][ T8361] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  130.399981][ T8361] RBP: 00007f2056277090 R08: 0000000000000000 R09: 0000000000000000
[  130.407949][ T8361] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  130.415916][ T8361] R13: 0000000000000000 R14: 00007f2055575fa0 R15: 00007ffc12d042c8
[  130.423890][ T8361]  </TASK>
[  130.617246][ T8374] netlink: 4 bytes leftover after parsing attributes in process `syz.0.541'.
[  130.637164][ T8374] netlink: 4 bytes leftover after parsing attributes in process `syz.0.541'.
[  131.587992][ T8408] FAULT_INJECTION: forcing a failure.
[  131.587992][ T8408] name failslab, interval 1, probability 0, space 0, times 0
[  131.630596][ T8408] CPU: 1 UID: 0 PID: 8408 Comm: syz.4.549 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  131.641249][ T8408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  131.651325][ T8408] Call Trace:
[  131.654623][ T8408]  <TASK>
[  131.657571][ T8408]  dump_stack_lvl+0x16c/0x1f0
[  131.662283][ T8408]  should_fail_ex+0x497/0x5b0
[  131.666988][ T8408]  ? fs_reclaim_acquire+0xae/0x150
[  131.672124][ T8408]  should_failslab+0xc2/0x120
[  131.676836][ T8408]  __kmalloc_noprof+0xce/0x4f0
[  131.681633][ T8408]  ? copy_splice_read+0x1a8/0xb90
[  131.686675][ T8408]  copy_splice_read+0x1a8/0xb90
[  131.691549][ T8408]  ? lockdep_unlock+0x11a/0x290
[  131.696424][ T8408]  ? __pfx_copy_splice_read+0x10/0x10
[  131.701829][ T8408]  ? __pfx_register_lock_class+0x10/0x10
[  131.707488][ T8408]  ? __pfx_copy_splice_read+0x10/0x10
[  131.712885][ T8408]  do_splice_read+0x282/0x370
[  131.717581][ T8408]  splice_direct_to_actor+0x2a4/0xa40
[  131.722978][ T8408]  ? __pfx_direct_splice_actor+0x10/0x10
[  131.728636][ T8408]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  131.734548][ T8408]  ? lock_release+0x4e2/0x6f0
[  131.739256][ T8408]  ? __fget_files+0x1fc/0x3a0
[  131.743956][ T8408]  do_splice_direct+0x178/0x250
[  131.748826][ T8408]  ? __pfx_do_splice_direct+0x10/0x10
[  131.754218][ T8408]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  131.760132][ T8408]  ? bpf_lsm_file_permission+0x9/0x10
[  131.765544][ T8408]  ? security_file_permission+0x71/0x210
[  131.771197][ T8408]  do_sendfile+0xaed/0xe30
[  131.775643][ T8408]  ? __pfx_do_sendfile+0x10/0x10
[  131.780607][ T8408]  ? __fget_files+0x206/0x3a0
[  131.785395][ T8408]  __x64_sys_sendfile64+0x1da/0x220
[  131.790612][ T8408]  ? ksys_write+0x1ba/0x250
[  131.795133][ T8408]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  131.800877][ T8408]  ? rcu_is_watching+0x12/0xc0
[  131.805672][ T8408]  ? rcu_is_watching+0x12/0xc0
[  131.810464][ T8408]  do_syscall_64+0xcd/0x250
[  131.814991][ T8408]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.820920][ T8408] RIP: 0033:0x7fac4c185d29
[  131.825363][ T8408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.844992][ T8408] RSP: 002b:00007fac4cf09038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  131.853439][ T8408] RAX: ffffffffffffffda RBX: 00007fac4c375fa0 RCX: 00007fac4c185d29
[  131.861439][ T8408] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  131.869693][ T8408] RBP: 00007fac4cf09090 R08: 0000000000000000 R09: 0000000000000000
[  131.877686][ T8408] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  131.885677][ T8408] R13: 0000000000000000 R14: 00007fac4c375fa0 R15: 00007fffb1cfa9b8
[  131.893683][ T8408]  </TASK>
[  132.563016][ T8461] netlink: 4736 bytes leftover after parsing attributes in process `syz.1.564'.
[  133.149362][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  133.155797][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  133.959678][ T8516] netlink: 342 bytes leftover after parsing attributes in process `syz.1.579'.
[  133.966131][ T8512] netlink: 28 bytes leftover after parsing attributes in process `syz.3.575'.
[  134.083210][ T8521] device-mapper: ioctl: Unable to rename non-existent device,  to „
[  134.165515][ T8511] netlink: 'syz.4.578': attribute type 1 has an invalid length.
[  134.206308][ T8511] netlink: 'syz.4.578': attribute type 1 has an invalid length.
[  134.431214][ T8538] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  135.011621][ T8571] ptrace attach of "./syz-executor exec"[7162] was attempted by ""[8571]
[  135.292434][ T8588] netlink: 28 bytes leftover after parsing attributes in process `syz.0.600'.
[  136.200571][ T8604] Process accounting resumed
[  136.205209][ T8604] kernel write not supported for file /current_tracer (pid: 8604 comm: syz.3.604)
[  136.293119][ T8608] netlink: 28 bytes leftover after parsing attributes in process `syz.3.606'.
[  136.504457][ T8613] Invalid ELF header magic: != ELF
[  136.552441][ T8608] kernel write not supported for file /current_tracer (pid: 8608 comm: syz.3.606)
[  136.891268][ T8619] netlink: 'syz.3.610': attribute type 1 has an invalid length.
[  136.933164][ T8619] bridge0: port 4(batadv0) entered blocking state
[  136.958819][ T8619] bridge0: port 4(batadv0) entered disabled state
[  136.986790][ T8619] batadv0: entered allmulticast mode
[  136.992916][ T8619] batadv0: entered promiscuous mode
[  137.038085][ T8619] bridge0: port 4(batadv0) entered blocking state
[  137.044624][ T8619] bridge0: port 4(batadv0) entered forwarding state
[  137.085691][   T35] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  137.095111][   T35] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  137.190526][ T8619] kernel write not supported for file /current_tracer (pid: 8619 comm: syz.3.610)
[  137.505454][ T8627] netlink: 'syz.1.612': attribute type 1 has an invalid length.
[  137.599693][ T8623] kernel write not supported for file /current_tracer (pid: 8623 comm: syz.3.611)
[  138.610029][ T8632] kernel write not supported for file /current_tracer (pid: 8632 comm: syz.3.614)
[  139.089463][ T8668] kernel write not supported for file /current_tracer (pid: 8668 comm: syz.3.622)
[  139.312351][ T8680] netlink: 16 bytes leftover after parsing attributes in process `syz.3.625'.
[  139.489768][ T8679] kernel write not supported for file /current_tracer (pid: 8679 comm: syz.3.625)
[  139.665837][ T8693] openvswitch: netlink: ufid size 28 bytes exceeds the range (1, 16)
[  139.673952][ T8693] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  139.722454][ T8698] netlink: 334 bytes leftover after parsing attributes in process `syz.0.630'.
[  139.764323][ T8698] netlink: 342 bytes leftover after parsing attributes in process `syz.0.630'.
[  139.790695][ T8698] netlink: 342 bytes leftover after parsing attributes in process `syz.0.630'.
[  139.808393][ T8690] kernel write not supported for file /current_tracer (pid: 8690 comm: syz.3.627)
[  139.924530][ T8712] netlink: 8 bytes leftover after parsing attributes in process `syz.0.633'.
[  139.946773][ T8712] netlink: 8 bytes leftover after parsing attributes in process `syz.0.633'.
[  140.011504][ T8717] netlink: 4 bytes leftover after parsing attributes in process `syz.1.635'.
[  140.137786][ T8714] kernel write not supported for file /current_tracer (pid: 8714 comm: syz.3.634)
[  140.448812][ T8732] kernel write not supported for file /current_tracer (pid: 8732 comm: syz.3.637)
[  141.541459][ T8772] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma?
[  141.741174][ T8783] netlink: 338 bytes leftover after parsing attributes in process `syz.0.643'.
[  142.094857][ T8742] warn_unsupported: 1 callbacks suppressed
[  142.094879][ T8742] kernel write not supported for file /current_tracer (pid: 8742 comm: syz.3.638)
[  142.371804][ T8808] kernel write not supported for file /current_tracer (pid: 8808 comm: syz.3.648)
[  142.452558][ T8813] netlink: 7 bytes leftover after parsing attributes in process `syz.4.647'.
[  142.477318][ T8813] netlink: 7 bytes leftover after parsing attributes in process `syz.4.647'.
[  142.653727][ T8817] kernel write not supported for file /current_tracer (pid: 8817 comm: syz.3.651)
[  142.684883][ T8824] ucma_write: process 306 (syz.4.652) changed security contexts after opening file descriptor, this is not allowed.
[  143.225581][ T8853] futex_wake_op: syz.1.659 tries to shift op by 64; fix this program
[  143.420591][ T8833] kernel write not supported for file /current_tracer (pid: 8833 comm: syz.3.655)
[  143.597357][ T8861] kernel write not supported for file /current_tracer (pid: 8861 comm: syz.3.662)
[  143.761785][ T8864] kernel write not supported for file /current_tracer (pid: 8864 comm: syz.3.663)
[  143.864720][ T8870] kernel write not supported for file /current_tracer (pid: 8870 comm: syz.3.664)
[  144.771544][ T8875] kernel write not supported for file /current_tracer (pid: 8875 comm: syz.3.666)
[  144.782403][ T8913] Invalid ELF header magic: != ELF
[  145.416420][ T8917] netlink: 28 bytes leftover after parsing attributes in process `syz.1.675'.
[  145.822594][ T8919] kernel write not supported for file /current_tracer (pid: 8919 comm: syz.3.677)
[  146.018144][ T8950] kernel write not supported for file /current_tracer (pid: 8950 comm: syz.3.683)
[  146.757757][ T8990] netlink: 16 bytes leftover after parsing attributes in process `syz.1.694'.
[  146.875075][ T8997] capability: warning: `syz.0.695' uses 32-bit capabilities (legacy support in use)
[  147.118407][ T9003] warn_unsupported: 1 callbacks suppressed
[  147.118426][ T9003] kernel write not supported for file /current_tracer (pid: 9003 comm: syz.3.697)
[  148.953029][ T9057] Process accounting resumed
[  149.136025][ T9063] bridge0: port 5(team0) entered blocking state
[  149.142719][ T9063] bridge0: port 5(team0) entered disabled state
[  149.159663][ T9063] team0: entered allmulticast mode
[  149.181185][ T9063] team_slave_0: entered allmulticast mode
[  149.197379][ T9063] team_slave_1: entered allmulticast mode
[  149.213068][ T9063] team0: entered promiscuous mode
[  149.224267][ T9063] team_slave_0: entered promiscuous mode
[  149.243256][ T9063] team_slave_1: entered promiscuous mode
[  149.261754][ T9063] bridge0: port 5(team0) entered blocking state
[  149.268174][ T9063] bridge0: port 5(team0) entered forwarding state
[  149.907849][ T9084] netlink: 28 bytes leftover after parsing attributes in process `syz.1.718'.
[  149.927051][ T9084] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  149.942305][ T9084] batman_adv: batadv0: Removing interface: batadv_slave_0
[  149.966221][ T9084] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  149.985247][ T9084] batman_adv: batadv0: Removing interface: batadv_slave_1
[  150.257348][ T9111] netlink: 28 bytes leftover after parsing attributes in process `syz.0.725'.
[  150.261017][ T9112] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  150.268345][ T9111] ipvlan0: entered allmulticast mode
[  150.296471][ T9111] veth0_vlan: entered allmulticast mode
[  150.308052][ T9111] netlink: 28 bytes leftover after parsing attributes in process `syz.0.725'.
[  150.544519][ T9140] netlink: 338 bytes leftover after parsing attributes in process `syz.3.732'.
[  150.782528][ T9164] mmap: syz.3.736 (9164): VmData 37601280 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data.
[  150.904094][ T9162] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000010006
[  151.346612][ T9176] ICMPv6: process `syz.1.739' is using deprecated sysctl (syscall) net.ipv6.neigh.virt_wifi0.retrans_time - use net.ipv6.neigh.virt_wifi0.retrans_time_ms instead
[  151.546177][ T9183] netlink: 28 bytes leftover after parsing attributes in process `syz.0.740'.
[  151.796110][ T9192] netlink: 28 bytes leftover after parsing attributes in process `syz.3.743'.
[  151.823413][ T9192] bond0: (slave bond_slave_0): Releasing backup interface
[  152.437116][ T9206] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  152.565704][ T9213] netlink: 28 bytes leftover after parsing attributes in process `syz.1.750'.
[  152.607335][ T9213] netlink: 28 bytes leftover after parsing attributes in process `syz.1.750'.
[  153.232063][ T9241] netlink: 16 bytes leftover after parsing attributes in process `syz.3.757'.
[  153.819009][ T9257] delete_channel: no stack
[  153.839245][ T9257] ecryptfs_miscdev_write: Invalid packet size [192]
[  154.674336][ T9286] netlink: 28 bytes leftover after parsing attributes in process `syz.3.772'.
[  154.973976][ T9296] ICMPv6: process `syz.3.774' is using deprecated sysctl (syscall) net.ipv6.neigh.virt_wifi0.retrans_time - use net.ipv6.neigh.virt_wifi0.retrans_time_ms instead
[  155.197509][ T9303] team0: left allmulticast mode
[  155.205524][ T9303] team_slave_0: left allmulticast mode
[  155.211559][ T9303] team_slave_1: left allmulticast mode
[  155.228972][ T9303] team0: left promiscuous mode
[  155.236767][ T9303] team_slave_0: left promiscuous mode
[  155.256138][ T9303] team_slave_1: left promiscuous mode
[  155.261819][ T9303] bridge0: port 5(team0) entered disabled state
[  155.312499][ T9301] erspan0: entered allmulticast mode
[  156.230229][ T9343] netlink: 'syz.1.786': attribute type 28 has an invalid length.
[  156.252744][ T9343] netlink: 'syz.1.786': attribute type 29 has an invalid length.
[  156.270025][ T9343] netlink: 'syz.1.786': attribute type 30 has an invalid length.
[  156.288269][ T9343] netlink: 'syz.1.786': attribute type 31 has an invalid length.
[  156.304421][ T9343] netlink: 'syz.1.786': attribute type 32 has an invalid length.
[  156.321154][ T9343] netlink: 'syz.1.786': attribute type 33 has an invalid length.
[  156.337821][ T9343] netlink: 'syz.1.786': attribute type 35 has an invalid length.
[  156.354905][ T9343] netlink: 'syz.1.786': attribute type 37 has an invalid length.
[  156.370482][ T9343] netlink: 'syz.1.786': attribute type 39 has an invalid length.
[  156.387283][ T9343] netlink: 'syz.1.786': attribute type 40 has an invalid length.
[  156.404423][ T9343] netlink: 18 bytes leftover after parsing attributes in process `syz.1.786'.
[  158.535693][ T9427] netlink: 334 bytes leftover after parsing attributes in process `syz.1.806'.
[  159.361600][ T5841] Bluetooth: hci1: ACL packet too small
[  160.178074][ T9507] cgroup: fork rejected by pids controller in /syz0
[  160.370720][ T9537] netlink: 4 bytes leftover after parsing attributes in process `syz.3.820'.
[  160.506850][ T9498] smc: net device syz_tun applied user defined pnetid ETHTOOL
[  161.447815][ T9566] netlink: 4 bytes leftover after parsing attributes in process `syz.1.831'.
[  161.734537][ T9577] netlink: 28 bytes leftover after parsing attributes in process `syz.3.836'.
[  161.743991][ T9577] mac80211_hwsim hwsim4 wlan0: entered promiscuous mode
[  161.751071][ T9577] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode
[  162.035770][ T9584] netlink: 4 bytes leftover after parsing attributes in process `syz.1.837'.
[  162.069138][ T9584] netlink: 4 bytes leftover after parsing attributes in process `syz.1.837'.
[  162.553932][ T9600] vivid-009: =================  START STATUS  =================
[  162.585834][ T9600] vivid-009: Enable Output Cropping: true grabbed
[  162.592322][ T9600] vivid-009: Enable Output Composing: true grabbed
[  162.615644][ T9600] vivid-009: Enable Output Scaler: true grabbed
[  162.632133][ T9600] vivid-009: Tx RGB Quantization Range: Automatic grabbed
[  162.649819][ T9600] vivid-009: Transmit Mode: HDMI grabbed
[  162.665464][ T9600] vivid-009: Hotplug Present: 0x00000000
[  162.677997][ T9607] netlink: 330 bytes leftover after parsing attributes in process `syz.0.844'.
[  162.685508][ T9600] vivid-009: RxSense Present: 0x00000000
[  162.692611][ T9600] vivid-009: EDID Present: 0x00000000
[  162.714481][ T9600] vivid-009: ==================  END STATUS  ==================
[  163.330061][   T29] audit: type=1326 audit(2140.820:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9631 comm="syz.0.848" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb82bd85d29 code=0x0
[  163.812715][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  163.819584][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  164.243188][ T9640] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  164.263251][ T9640] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  164.294339][ T9640] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  164.324567][ T9640] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  164.355827][ T9640] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  164.396626][ T9640] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  164.946205][ T9675] netlink: 252 bytes leftover after parsing attributes in process `syz.4.857'.
[  164.977843][ T9675] netlink: 252 bytes leftover after parsing attributes in process `syz.4.857'.
[  165.197404][ T9688] netlink: 4 bytes leftover after parsing attributes in process `syz.0.860'.
[  165.545796][ T5841] Bluetooth: hci0: command 0x040f tx timeout
[  165.828069][ T9731] netlink: 4 bytes leftover after parsing attributes in process `syz.3.873'.
[  165.885456][ T9731] openvswitch: netlink: Flow key attr not present in new flow.
[  166.266832][ T5841] Bluetooth: hci2: command 0x0419 tx timeout
[  166.348390][ T5841] Bluetooth: hci1: command 0x0c1a tx timeout
[  166.354914][ T5837] Bluetooth: hci3: command 0x0419 tx timeout
[  166.555286][ T9752] netlink: 28 bytes leftover after parsing attributes in process `syz.3.878'.
[  166.875817][ T9758] netlink: 28 bytes leftover after parsing attributes in process `syz.3.881'.
[  167.013528][ T9758] bond0: (slave bond_slave_1): Releasing backup interface
[  167.041301][ T9773] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  167.047741][ T9773] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  167.429876][ T9783] cgroup: fork rejected by pids controller in /syz3
[  167.449780][ T9816] netlink: 'syz.0.889': attribute type 11 has an invalid length.
[  168.420917][ T9959] netlink: 12 bytes leftover after parsing attributes in process `syz.0.898'.
[  168.430008][ T5841] Bluetooth: hci1: command 0x0c1a tx timeout
[  168.800434][ T9965] netlink: 326 bytes leftover after parsing attributes in process `syz.4.900'.
[  168.812349][ T9963] netlink: 4 bytes leftover after parsing attributes in process `syz.0.899'.
[  168.907103][ T9954] erspan0: entered allmulticast mode
[  169.106196][ T9974] netlink: 342 bytes leftover after parsing attributes in process `syz.4.903'.
[  170.502386][T10028] ovs_: entered promiscuous mode
[  170.505611][ T5841] Bluetooth: hci1: command 0x0c1a tx timeout
[  171.166959][T10045] validate_nla: 1 callbacks suppressed
[  171.166978][T10045] netlink: 'syz.4.918': attribute type 1 has an invalid length.
[  175.067793][T10157] random: crng reseeded on system resumption
[  175.462664][T10077] syz.3.927 (10077) used greatest stack depth: 21184 bytes left
[  175.638179][T10154] netlink: 330 bytes leftover after parsing attributes in process `syz.0.944'.
[  178.663052][T10246] netlink: 330 bytes leftover after parsing attributes in process `syz.4.967'.
[  178.983597][T10255] netlink: 338 bytes leftover after parsing attributes in process `syz.4.968'.
[  179.023878][T10253] netlink: 338 bytes leftover after parsing attributes in process `syz.4.968'.
[  179.932824][T10271] ptrace attach of "./syz-executor exec"[7162] was attempted by "./syz-executor exec"[10271]
[  180.113590][T10282] netlink: 'syz.4.975': attribute type 1 has an invalid length.
[  180.647389][T10305] netlink: 124 bytes leftover after parsing attributes in process `syz.4.980'.
[  181.490372][T10309] binder: 10308:10309 ioctl 0 200031c0 returned -22
[  181.676556][T10314] misc userio: The device must be registered before sending interrupts
[  181.799758][T10313] mkiss: ax0: crc mode is auto.
[  182.536069][T10331] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  182.564936][T10329] CIFS mount error: No usable UNC path provided in device string!
[  182.564936][T10329] 
[  182.577924][T10329] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  182.625070][T10331] CIFS mount error: No usable UNC path provided in device string!
[  182.625070][T10331] 
[  182.695201][T10331] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  183.379795][T10350] kernel read not supported for file /#)-\&[} (pid: 10350 comm: syz.0.994)
[  183.392310][   T29] audit: type=1800 audit(8277292039.400:10): pid=10350 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.994" name="#)-\&[}" dev="mqueue" ino=30026 res=0 errno=0
[  183.395170][T10348] can: request_module (can-proto-0) failed.
[  183.516328][T10333] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  183.522661][T10333] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  183.532771][T10333] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  183.547243][T10333] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  183.670938][T10362] netlink: 28 bytes leftover after parsing attributes in process `syz.1.996'.
[  183.698519][T10362] smc: removing net device syz_tun with user defined pnetid ETHTOOL
[  184.521418][T10376] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  184.568782][T10378] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1002'.
[  184.580251][T10376] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  184.825556][ T5841] Bluetooth: hci0: command 0x040f tx timeout
[  185.545037][ T5841] Bluetooth: hci3: command 0x0419 tx timeout
[  185.545048][ T5837] Bluetooth: hci2: command 0x0419 tx timeout
[  185.623937][ T5841] Bluetooth: hci1: command 0x0c1a tx timeout
[  186.760604][T10454] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1018'.
[  186.967295][T10461] Process accounting resumed
[  190.370611][T10544] can: request_module (can-proto-4) failed.
[  191.132847][T10557] blk_print_req_error: 24 callbacks suppressed
[  191.132870][T10557] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  191.173555][T10557] buffer_io_error: 23 callbacks suppressed
[  191.173575][T10557] Buffer I/O error on dev nbd0, logical block 0, async page read
[  191.287115][T10557] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  191.341084][T10557] Buffer I/O error on dev nbd0, logical block 0, async page read
[  191.434015][T10557] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  191.490858][T10557] Buffer I/O error on dev nbd0, logical block 0, async page read
[  191.499319][T10557] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  191.508469][T10557] Buffer I/O error on dev nbd0, logical block 0, async page read
[  191.516467][T10557] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  191.526191][T10557] Buffer I/O error on dev nbd0, logical block 0, async page read
[  191.534331][T10557] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  191.543749][T10557] Buffer I/O error on dev nbd0, logical block 0, async page read
[  191.551784][T10557] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  191.564242][T10557] Buffer I/O error on dev nbd0, logical block 0, async page read
[  191.572183][T10557] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  191.581355][T10557] Buffer I/O error on dev nbd0, logical block 0, async page read
[  191.589337][T10557] ldm_validate_partition_table(): Disk read failed.
[  191.596504][T10557] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  191.605788][T10557] Buffer I/O error on dev nbd0, logical block 0, async page read
[  191.613787][T10557] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  191.623254][T10557] Buffer I/O error on dev nbd0, logical block 0, async page read
[  191.631390][T10557] Dev nbd0: unable to read RDB block 0
[  191.637886][T10557]  nbd0: unable to read partition table
	=	=ô
ô
ÿ[  192.079230][T10588] syz.0.1053 (10588) used greatest stack depth: 20448 bytes left
[  192.855352][T10634] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1064'.
[  193.428167][T10638] cgroup: fork rejected by pids controller in /syz1
[  194.585419][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  194.592024][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  195.333932][T10752] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1078'.
[  195.622360][T10755] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1079'.
[  195.651736][T10755] bridge_slave_1: left allmulticast mode
[  195.657923][T10755] bridge_slave_1: left promiscuous mode
[  195.671809][T10755] bridge0: port 2(bridge_slave_1) entered disabled state
[  195.821809][T10755] bridge_slave_0: left allmulticast mode
[  195.836296][T10755] bridge_slave_0: left promiscuous mode
[  195.852644][T10755] bridge0: port 1(bridge_slave_0) entered disabled state
[  198.775327][T10838] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1093'.
[  198.808643][T10838] mac80211_hwsim hwsim6 ›: renamed from wlan0 (while UP)
[  198.857040][T10842] netlink: zone id is out of range
[  198.880857][T10842] netlink: set zone limit has 8 unknown bytes
[  199.405018][T10858] HfR: entered promiscuous mode
[  199.424160][T10858] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1099'.
[  199.771704][T10875] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1097'.
[  199.795919][T10875] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  199.818747][T10875] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1097'.
[  200.733586][T10884] KVM: debugfs: duplicate directory 10884-3
[  200.742940][T10884] KVM: debugfs: duplicate directory 10884-4
[  200.824266][T10884] KVM: debugfs: duplicate directory 10884-4
[  200.844675][T10884] KVM: debugfs: duplicate directory 10884-5
[  200.923373][T10884] KVM: debugfs: duplicate directory 10884-5
[  200.936856][T10884] KVM: debugfs: duplicate directory 10884-6
[  201.036378][T10884] KVM: debugfs: duplicate directory 10884-8
[  201.102722][T10884] KVM: debugfs: duplicate directory 10884-8
[  201.113343][T10884] KVM: debugfs: duplicate directory 10884-9
[  201.203711][T10884] KVM: debugfs: duplicate directory 10884-9
[  203.310500][T11012] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1118'.
[  205.124711][T11045] netlink: 'syz.1.1127': attribute type 1 has an invalid length.
[  205.163345][T11045] netlink: 'syz.1.1127': attribute type 1 has an invalid length.
[  205.345736][T11068] netlink: 'syz.1.1132': attribute type 2 has an invalid length.
[  205.493743][T11077] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1134'.
[  205.884336][T11101] lo: entered allmulticast mode
[  205.965639][T11105] lo: left allmulticast mode
[  207.356541][T11145] netlink: 'syz.1.1149': attribute type 64 has an invalid length.
[  207.368044][T11145] netlink: 46 bytes leftover after parsing attributes in process `syz.1.1149'.
[  207.624009][T11157] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  207.633447][T11157] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  207.639434][T11157] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  207.645013][T11157] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  208.907547][T11183] syz.1.1161 (11183) used greatest stack depth: 20416 bytes left
[  208.917093][T11205] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1167'.
[  209.092334][T11214] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1169'.
[  209.100459][T11214] bridge_slave_1: left allmulticast mode
[  209.123634][T11214] bridge_slave_1: left promiscuous mode
[  209.128804][T11214] bridge0: port 2(bridge_slave_1) entered disabled state
[  209.205130][T11214] bridge_slave_0: left allmulticast mode
[  209.222861][T11214] bridge_slave_0: left promiscuous mode
[  209.228124][T11214] bridge0: port 1(bridge_slave_0) entered disabled state
[  209.299581][ T9786] syz.3.887 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  209.360846][ T9786] CPU: 0 UID: 0 PID: 9786 Comm: syz.3.887 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  209.370444][ T9786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  209.379540][ T9786] Call Trace:
[  209.382520][ T9786]  <TASK>
[  209.385175][ T9786]  dump_stack_lvl+0x16c/0x1f0
[  209.389419][ T9786]  dump_header+0x101/0x900
[  209.393428][ T9786]  oom_kill_process+0x270/0xa60
[  209.397827][ T9786]  ? mem_cgroup_out_of_memory+0x8d/0x270
[  209.403004][ T9786]  out_of_memory+0x351/0x1700
[  209.407259][ T9786]  ? __pfx_out_of_memory+0x10/0x10
[  209.411891][ T9786]  ? rcu_read_unlock+0x17/0x60
[  209.416210][ T9786]  ? __pfx_lock_release+0x10/0x10
[  209.420757][ T9786]  mem_cgroup_out_of_memory+0x207/0x270
[  209.425770][ T9786]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  209.431265][ T9786]  ? do_raw_spin_unlock+0x172/0x230
[  209.435984][ T9786]  try_charge_memcg+0x54c/0xaf0
[  209.440383][ T9786]  ? __pfx_try_charge_memcg+0x10/0x10
[  209.445249][ T9786]  ? get_mem_cgroup_from_mm+0x87/0x5f0
[  209.450193][ T9786]  ? get_mem_cgroup_from_mm+0x87/0x5f0
[  209.455135][ T9786]  ? get_mem_cgroup_from_mm+0x131/0x5f0
[  209.460155][ T9786]  __mem_cgroup_charge+0x9b/0x280
[  209.464728][ T9786]  filemap_add_folio+0x89/0x220
[  209.469146][ T9786]  ? __pfx_filemap_add_folio+0x10/0x10
[  209.474102][ T9786]  __filemap_get_folio+0x468/0xaf0
[  209.478841][ T9786]  filemap_fault+0x670/0x2820
[  209.483089][ T9786]  ? __pfx_filemap_fault+0x10/0x10
[  209.487731][ T9786]  ? do_pte_missing+0xdd7/0x3e00
[  209.492210][ T9786]  ? __pfx_lock_release+0x10/0x10
[  209.496759][ T9786]  __do_fault+0x10a/0x490
[  209.500685][ T9786]  do_pte_missing+0xebd/0x3e00
[  209.505006][ T9786]  ? ___pte_offset_map+0x1b9/0x540
[  209.509633][ T9786]  ? __pfx_lock_release+0x10/0x10
[  209.514187][ T9786]  __handle_mm_fault+0x103c/0x2a40
[  209.518828][ T9786]  ? __pfx___handle_mm_fault+0x10/0x10
[  209.523788][ T9786]  ? lock_release+0x4e2/0x6f0
[  209.528101][ T9786]  ? follow_page_pte+0x3c3/0x1b20
[  209.532660][ T9786]  ? __pfx_lock_release+0x10/0x10
[  209.537209][ T9786]  ? __pfx___pte_offset_map_lock+0x10/0x10
[  209.542477][ T9786]  ? follow_page_pte+0x3f7/0x1b20
[  209.547042][ T9786]  handle_mm_fault+0x3fa/0xaa0
[  209.551375][ T9786]  __get_user_pages+0x8d9/0x3b50
[  209.555863][ T9786]  ? __pfx___get_user_pages+0x10/0x10
[  209.560735][ T9786]  ? down_read_killable+0xcc/0x380
[  209.565412][ T9786]  ? __pfx_down_read_killable+0x10/0x10
[  209.570464][ T9786]  ? shmem_file_write_iter+0xcf/0x140
[  209.575341][ T9786]  ? __kernel_write_iter+0x59f/0xa80
[  209.580136][ T9786]  get_dump_page+0xff/0x230
[  209.584227][ T9786]  ? __pfx_get_dump_page+0x10/0x10
[  209.588867][ T9786]  ? __pfx___might_resched+0x10/0x10
[  209.593665][ T9786]  ? dump_user_range+0x49d/0x8c0
[  209.598154][ T9786]  dump_user_range+0x135/0x8c0
[  209.602494][ T9786]  ? __pfx_dump_user_range+0x10/0x10
[  209.607288][ T9786]  ? elf_coredump_extra_notes_write+0xbe/0x430
[  209.612859][ T9786]  ? __pfx_writenote+0x10/0x10
[  209.617336][ T9786]  elf_core_dump+0x2787/0x3880
[  209.621660][ T9786]  ? __pfx_elf_core_dump+0x10/0x10
[  209.626290][ T9786]  ? kasan_save_stack+0x42/0x60
[  209.630683][ T9786]  ? kasan_save_stack+0x33/0x60
[  209.635088][ T9786]  ? kasan_save_track+0x14/0x30
[  209.639569][ T9786]  ? __kasan_kmalloc+0xaa/0xb0
[  209.643890][ T9786]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  209.648837][ T9786]  ? do_coredump+0x1665/0x43e0
[  209.653165][ T9786]  ? get_signal+0x23f3/0x2610
[  209.657411][ T9786]  ? mas_ascend+0x519/0x930
[  209.661508][ T9786]  ? rcu_is_watching+0x12/0xc0
[  209.665825][ T9786]  ? trace_lock_acquire+0x14e/0x1f0
[  209.670534][ T9786]  ? __pfx_sort+0x10/0x10
[  209.674461][ T9786]  ? get_signal+0x23f3/0x2610
[  209.678700][ T9786]  ? do_coredump+0x2dd5/0x43e0
[  209.683024][ T9786]  do_coredump+0x2dd5/0x43e0
[  209.687274][ T9786]  ? __pfx_do_coredump+0x10/0x10
[  209.691752][ T9786]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  209.697108][ T9786]  ? rcu_is_watching+0x12/0xc0
[  209.701423][ T9786]  get_signal+0x23f3/0x2610
[  209.705515][ T9786]  ? __pfx_get_signal+0x10/0x10
[  209.709910][ T9786]  ? rcu_is_watching+0x12/0xc0
[  209.714231][ T9786]  ? trace_irq_disable.constprop.0+0xea/0x140
[  209.719722][ T9786]  arch_do_signal_or_restart+0x90/0x7e0
[  209.724746][ T9786]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  209.730324][ T9786]  ? do_user_addr_fault+0xa4b/0x13f0
[  209.735103][ T9786]  ? rcu_is_watching+0x12/0xc0
[  209.739423][ T9786]  irqentry_exit_to_user_mode+0x13f/0x280
[  209.744607][ T9786]  asm_exc_page_fault+0x26/0x30
[  209.749000][ T9786] RIP: 0033:0x0
[  209.752136][ T9786] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  209.758776][ T9786] RSP: 002b:000000000000000a EFLAGS: 00010217
[  209.764263][ T9786] RAX: 0000000000000000 RBX: 00007fe34ff76080 RCX: 00007fe34fd85d29
[  209.771461][ T9786] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46
[  209.778732][ T9786] RBP: 00007fe34fe01aa8 R08: 0000000000000002 R09: 0000000000000000
[  209.785929][ T9786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  209.793123][ T9786] R13: 0000000000000000 R14: 00007fe34ff76080 R15: 00007ffd6f86be88
[  209.800325][ T9786]  </TASK>
[  209.807656][ T5841] Bluetooth: hci1: command 0x0c1a tx timeout
[  209.807680][ T5837] Bluetooth: hci3: command 0x0419 tx timeout
[  209.813151][ T5841] Bluetooth: hci2: command 0x0419 tx timeout
[  209.813180][ T5841] Bluetooth: hci0: command 0x040f tx timeout
[  209.820525][ T9786] memory: usage 307200kB, limit 307200kB, failcnt 19696
[  209.835899][ T9786] memory+swap: usage 430284kB, limit 9007199254740988kB, failcnt 0
[  209.843213][ T9786] kmem: usage 3668kB, limit 9007199254740988kB, failcnt 0
[  209.849625][ T9786] Memory cgroup stats for /syz3:
[  209.849716][ T9786] cache 305815552
[  209.857523][ T9786] rss 3018752
[  209.860502][ T9786] rss_huge 0
[  209.863604][ T9786] shmem 305807360
[  209.867099][ T9786] mapped_file 4968448
[  209.870697][ T9786] dirty 0
[  209.873375][ T9786] writeback 0
[  209.876349][ T9786] workingset_refault_anon 2882
[  209.880659][ T9786] workingset_refault_file 1074
[  209.885474][ T9786] swap 126038016
[  209.888886][ T9786] swapcached 1957888
[  209.892580][ T9786] pgpgin 467692
[  209.895742][ T9786] pgpgout 394881
[  209.899045][ T9786] pgfault 213490
[  209.902308][ T9786] pgmajfault 631
[  209.905515][ T9786] inactive_anon 76853248
[  209.909391][ T9786] active_anon 233930752
[  209.913230][ T9786] inactive_file 8192
[  209.916749][ T9786] active_file 0
[  209.919870][ T9786] unevictable 0
[  209.923042][ T9786] hierarchical_memory_limit 314572800
[  209.927896][ T9786] hierarchical_memsw_limit 9223372036854771712
[  209.933488][ T9786] total_cache 305815552
[  209.937240][ T9786] total_rss 3018752
[  209.940684][ T9786] total_rss_huge 0
[  209.944603][ T9786] total_shmem 305807360
[  209.948705][ T9786] total_mapped_file 4968448
[  209.952930][ T9786] total_dirty 0
[  209.956058][ T9786] total_writeback 0
[  209.959494][ T9786] total_workingset_refault_anon 2882
[  209.964943][ T9786] total_workingset_refault_file 1074
[  209.969964][ T9786] total_swap 126038016
[  209.976202][ T9786] total_swapcached 1957888
[  209.980203][ T9786] total_pgpgin 467692
[  209.985179][ T9786] total_pgpgout 394881
[  209.989553][ T9786] total_pgfault 213490
[  209.993736][ T9786] total_pgmajfault 631
[  209.997413][ T9786] total_inactive_anon 76853248
[  210.002191][ T9786] total_active_anon 233930752
[  210.006418][ T9786] total_inactive_file 8192
[  210.010400][ T9786] total_active_file 0
[  210.016186][ T9786] total_unevictable 0
[  210.019789][ T9786] anon_cost 0
[  210.023176][ T9786] file_cost 0
[  210.026278][ T9786] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.887,pid=9813,uid=0
[  210.040123][ T9786] Memory cgroup out of memory: Killed process 9813 (syz.3.887) total-vm:131696kB, anon-rss:3484kB, file-rss:34676kB, shmem-rss:4736kB, UID:0 pgtables:172kB oom_score_adj:1000
[  211.188070][T11235] erspan0: entered allmulticast mode
[  211.386178][ T9794] syz.3.887 (9794) used greatest stack depth: 19960 bytes left
[  211.986555][T11285] netlink: 'syz.3.1175': attribute type 46 has an invalid length.
[  212.105470][   T31] oom_reaper: reaped process 9813 (syz.3.887), now anon-rss:36kB, file-rss:4732kB, shmem-rss:0kB
[  212.156879][T11260] netlink: 'syz.3.1175': attribute type 46 has an invalid length.
[  212.459862][T11303] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1187'.
[  212.681225][ T9805] syz.3.887 (9805) used greatest stack depth: 19512 bytes left
[  212.989886][ T9813] syz.3.887 (9813) used greatest stack depth: 19104 bytes left
[  213.287953][ T9790] syz.3.887 (9790) used greatest stack depth: 18936 bytes left
[  213.332926][ T9804] syz.3.887 (9804) used greatest stack depth: 18920 bytes left
[  213.611231][T11334] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1193'.
[  213.732796][T11337] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  213.745128][T11334] bond0: (slave bond_slave_1): Releasing backup interface
[  213.854498][T11345] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1197'.
[  214.424430][T11363] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1201'.
[  214.451935][T11363] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  215.466183][T11402] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1213'.
[  215.541089][T11408] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1215'.
[  217.234266][T11478] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1231'.
[  217.483197][T11489] blk_print_req_error: 6 callbacks suppressed
[  217.483219][T11489] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  217.503946][T11489] buffer_io_error: 6 callbacks suppressed
[  217.503965][T11489] Buffer I/O error on dev nbd0, logical block 0, async page read
[  217.516809][T11489] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  217.582214][T11489] Buffer I/O error on dev nbd0, logical block 0, async page read
[  217.594595][T11489] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  217.601753][T11503] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1239'.
[  217.631994][T11489] Buffer I/O error on dev nbd0, logical block 0, async page read
[  217.660971][T11489] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  217.697225][T11513] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1242'.
[  217.708869][T11489] Buffer I/O error on dev nbd0, logical block 0, async page read
[  217.743339][T11489] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  217.777309][T11517] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1244'.
[  217.789875][T11489] Buffer I/O error on dev nbd0, logical block 0, async page read
[  217.800016][T11489] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  217.809662][T11489] Buffer I/O error on dev nbd0, logical block 0, async page read
[  217.827798][T11526] netlink: 5995 bytes leftover after parsing attributes in process `syz.0.1246'.
[  217.890237][T11489] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  217.898905][T11528] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1247'.
[  217.911786][T11489] Buffer I/O error on dev nbd0, logical block 0, async page read
[  217.929047][T11489] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  218.055617][T11489] Buffer I/O error on dev nbd0, logical block 0, async page read
[  218.129993][T11489] ldm_validate_partition_table(): Disk read failed.
[  218.188526][T11489] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  218.265272][T11489] Buffer I/O error on dev nbd0, logical block 0, async page read
[  218.278152][T11489] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  218.359895][T11489] Buffer I/O error on dev nbd0, logical block 0, async page read
[  218.400815][T11489] Dev nbd0: unable to read RDB block 0
[  218.472723][T11489]  nbd0: unable to read partition table
[  218.667054][T11564] Process accounting resumed
[  218.967781][T11580] netlink: 'syz.4.1258': attribute type 1 has an invalid length.
[  219.032989][T11577] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1257'.
[  219.280369][T11592] svc: failed to register nfsdv3 RPC service (errno 111).
[  219.313740][T11592] svc: failed to register nfsaclv3 RPC service (errno 111).
[  220.321774][T11619] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  221.110322][T11646] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma?
[  223.261889][T11694] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1279'.
[  223.486040][T11701] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1281'.
[  223.516539][T11701] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  223.533894][T11692] can0: slcan on ptm1.
[  223.639901][T11700] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1282'.
[  223.670639][T11700] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1282'.
[  223.712815][T11691] can0 (unregistered): slcan off ptm1.
[  224.112498][   T29] audit: type=1800 audit(2054.090:11): pid=11736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1289" name="lu_gp_id" dev="configfs" ino=37525 res=0 errno=0
[  224.919671][T11765] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[  225.672317][T11786] netlink: 74 bytes leftover after parsing attributes in process `syz.3.1295'.
[  225.700071][T11785] misc userio: No port type given on /dev/userio
[  225.727295][T11778] netlink: 74 bytes leftover after parsing attributes in process `syz.1.1302'.
[  226.909740][T11827] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1303'.
[  228.332621][T11863] HSR: entered promiscuous mode
[  229.812434][T11932] cifs: Unknown parameter 'T.\[f(E<c[Pj$b
f5H)|1UsCnEs-J>l.vZ-:	->_/Tea*5Zdoei"mPfwYMh:*/xD
l])
WmgUkGAm3yO7MXX9
tXva/fj_AR#HxM	v,p1$^;tXq31+#nl!5-
6)+ek>qG<0kcT)n.|eMMwNa(t.PSMNF1,~$u&3Z-HvClHAi!]5@_&r
&8@EfK$O
)Ez>x'
[  229.836325][    C1] vkms_vblank_simulate: vblank timer overrun
[  231.007731][T11974] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1341'.
[  231.102092][T11964] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[  233.453118][T12087] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1366'.
[  233.479884][T12087] : renamed from hsr_slave_0 (while UP)
[  233.925706][T12099] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1371'.
[  233.934278][T12099] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  234.917976][T12113] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1374'.
[  235.167364][T12124] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1378'.
[  235.289119][   T29] audit: type=1800 audit(2056.100:12): pid=12137 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1389" name="lu_gp_id" dev="configfs" ino=38684 res=0 errno=0
[  235.503631][T12142] snd_aloop snd_aloop.0: control 4365:65536:6:i'x?F"i/hlzFK7fC*a*:0 is already present
[  236.946439][T12202] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1398'.
[  237.436269][T12218] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1400'.
[  237.452812][T12218] netdevsim netdevsim4 netdevsim2: entered allmulticast mode
[  237.670382][T12240] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1405'.
[  237.797262][T12240] team0: Port device team_slave_0 removed
[  238.753713][T12268] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1411'.
[  240.058532][T12331] netlink: 'syz.0.1428': attribute type 1 has an invalid length.
[  240.480910][T12327] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1428'.
[  240.498076][T12341] netlink: 22 bytes leftover after parsing attributes in process `syz.4.1430'.
[  240.523104][T12346] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1431'.
[  240.697655][T12351] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1433'.
[  241.005924][T12372] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1438'.
[  241.031079][T12372] mac80211_hwsim hwsim6 : entered promiscuous mode
[  241.042974][T12372] mac80211_hwsim hwsim6 : entered allmulticast mode
[  241.925660][T12392] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1443'.
[  241.969925][T12392] hsr_slave_1 (unregistering): left promiscuous mode
[  242.321524][T12426] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1450'.
[  242.348124][T12426] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[  242.364797][T12426] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode
[  242.412537][T12431] Invalid ELF header magic: != ELF
[  242.732787][T12445] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1456'.
[  242.759669][T12442] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1456'.
[  242.858255][T12449] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1458'.
[  242.873286][T12450] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1458'.
[  243.506118][T12470] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1465'.
[  243.637639][T12473] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1466'.
[  243.659658][T12473] bridge0: port 1(bridge_slave_0) entered disabled state
[  243.681815][T12473] bridge_slave_0 (unregistering): left allmulticast mode
[  243.695920][T12473] bridge_slave_0 (unregistering): left promiscuous mode
[  243.710694][T12473] bridge0: port 1(bridge_slave_0) entered disabled state
[  244.721788][T12527] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1478'.
[  245.960067][T12548] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1483'.
[  245.998462][T12548] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  246.018599][T12548] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  246.038163][T12548] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  246.046649][T12548] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  246.384055][   T29] audit: type=1800 audit(2067.200:13): pid=12578 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1494" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0
[  246.454125][T12583] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1504'.
[  246.548615][T12590] vcan0: entered promiscuous mode
[  246.905854][T12604] unsupported nla_type 32969
[  246.973041][T12606] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  247.708385][T12637] openvswitch: netlink: IP tunnel TTL not specified.
[  249.158657][T12672] netlink: 'syz.3.1520': attribute type 9 has an invalid length.
[  249.168082][T12672] __nla_validate_parse: 2 callbacks suppressed
[  249.168100][T12672] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1520'.
[  249.680196][T12693] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1527'.
[  249.828172][T12698] mkiss: ax0: crc mode is auto.
[  249.927795][T12710] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1532'.
[  249.932736][   T54] Bluetooth: hci1: unexpected event 0x06 length: 4 > 3
[  250.063331][T12725] netlink: 'syz.1.1535': attribute type 4 has an invalid length.
[  250.100841][T12725] netlink: 314 bytes leftover after parsing attributes in process `syz.1.1535'.
[  250.129489][T12711] netlink: 93 bytes leftover after parsing attributes in process `syz.0.1529'.
[  250.185016][T12730] netlink: 'syz.1.1535': attribute type 4 has an invalid length.
[  250.202922][T12730] netlink: 314 bytes leftover after parsing attributes in process `syz.1.1535'.
[  250.817604][T12761] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1539'.
[  251.739984][T12783] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1549'.
[  252.231425][   T54] Bluetooth: hci1: Received unexpected HCI Event 0x00
[  252.246526][T12822] netlink: 318 bytes leftover after parsing attributes in process `syz.0.1557'.
[  252.325246][T12826] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1558'.
[  252.878901][T12881] team0: Port device team_slave_0 removed
[  253.674623][T12908] sctp: [Deprecated]: syz.0.1579 (pid 12908) Use of struct sctp_assoc_value in delayed_ack socket option.
[  253.674623][T12908] Use struct sctp_sack_info instead
[  254.841702][T12930] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[12930]
[  255.225104][T12958] __nla_validate_parse: 2 callbacks suppressed
[  255.225129][T12958] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1593'.
[  255.239934][T12958] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  256.023924][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  256.029659][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  256.052539][T12976] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[12976]
[  256.232528][T12980] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1600'.
[  256.651369][T13005] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1605'.
[  256.783824][T13008] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1606'.
[  256.804486][T13008] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1606'.
[  256.949082][T13018] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1610'.
[  257.329036][T13050] can: request_module (can-proto-0) failed.
[  257.467328][T13043] kernel read not supported for file /#)-\&[} (pid: 13043 comm: syz.3.1614)
[  257.484805][   T29] audit: type=1804 audit(2078.270:14): pid=13043 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1614" name="#)-\&[}" dev="mqueue" ino=42797 res=1 errno=0
[  257.531780][   T29] audit: type=1800 audit(2078.290:15): pid=13043 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1614" name="#)-\&[}" dev="mqueue" ino=42797 res=0 errno=0
[  257.592410][   T29] audit: type=1804 audit(2078.380:16): pid=13043 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1614" name="#)-\&[}" dev="mqueue" ino=42797 res=1 errno=0
[  257.645576][   T29] audit: type=1804 audit(2078.380:17): pid=13043 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1614" name="#)-\&[}" dev="mqueue" ino=42797 res=1 errno=0
[  259.198159][T13107] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1627'.
[  259.385806][T13115] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1631'.
[  259.484121][T13118] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1640'.
[  261.363024][T13198] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1654'.
[  262.397123][T13218] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1659'.
[  263.688073][   T29] audit: type=1326 audit(4294967297.400:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13271 comm="syz.3.1682" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe34fd85d29 code=0x0
[  263.771637][T13277] program syz.3.1682 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  263.938448][T13283] netlink: 122 bytes leftover after parsing attributes in process `syz.4.1679'.
[  264.304205][T13289] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1683'.
[  264.515841][T13307] netlink: 252 bytes leftover after parsing attributes in process `syz.3.1687'.
[  264.538185][T13308] netlink: 252 bytes leftover after parsing attributes in process `syz.3.1687'.
[  264.557183][T13307] netlink: 252 bytes leftover after parsing attributes in process `syz.3.1687'.
[  265.228481][T13316] blktrace: Concurrent blktraces are not allowed on sg0
[  268.123606][T13400] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1708'.
[  268.286881][T13408] tipc: Started in network mode
[  268.312741][T13408] tipc: Node identity ee00, cluster identity 4711
[  268.340501][T13408] tipc: Node number set to 60928
[  268.565133][   T29] audit: type=1326 audit(4294967301.260:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13426 comm="syz.1.1714" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2055385d29 code=0x0
[  269.893553][T13478] netlink: 322 bytes leftover after parsing attributes in process `syz.0.1728'.
[  270.249146][T13482] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1730'.
[  270.763530][   T29] audit: type=1326 audit(4294967303.460:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13493 comm="syz.4.1732" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fac4c185d29 code=0x0
[  271.139395][T13512] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1739'.
[  276.531618][T13655] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1771'.
[  276.543299][T13655] macvlan1: entered allmulticast mode
[  276.551477][T13655] veth1_vlan: entered allmulticast mode
[  277.665609][T13675] netlink: 'syz.4.1776': attribute type 16 has an invalid length.
[  277.677936][T13675] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1776'.
[  278.472431][T13695] openvswitch: HSR: Dropping previously announced user features
[  278.594960][T13698] delete_channel: no stack
[  280.492213][T13761] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1794'.
[  282.013088][T13797] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1804'.
[  284.219308][T13870] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1819'.
[  286.531100][T13932] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1830'.
[  286.558876][T13934] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1832'.
[  289.513280][T13987] Invalid ELF header magic: != ELF
[  290.616190][T14000] Invalid ELF header magic: != ELF
[  292.433798][T14013] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1846'.
[  292.561316][T14013] geneve1: entered allmulticast mode
[  292.637464][T14022] netlink: 122 bytes leftover after parsing attributes in process `syz.4.1853'.
[  292.660419][T14022] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1853'.
[  292.689777][T14021] delete_channel: no stack
[  293.078100][T14043] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1858'.
[  293.195756][T14059] openvswitch: netlink: ct_state flags 05001eac unsupported
[  293.431469][T14066] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1863'.
[  293.440874][T14066] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  293.448568][T14066] batman_adv: batadv0: Removing interface: batadv_slave_0
[  293.469971][T14066] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  293.487576][T14066] batman_adv: batadv0: Removing interface: batadv_slave_1
[  294.278815][T14097] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1869'.
[  296.900664][T14199] HfR: entered promiscuous mode
[  296.941001][T14199] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1897'.
[  296.964540][T14199] HfR: left promiscuous mode
[  297.694642][T14239] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1909'.
[  297.806457][T14239] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1909'.
[  298.150180][T14274] openvswitch: netlink: IPv6 tunnel dst address is zero
[  298.608362][T14292] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1922'.
[  299.272936][T14307] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  299.397913][T14307] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  299.418385][T14309] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1924'.
[  299.647806][T14316] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1926'.
[  300.034218][T14319] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1927'.
[  300.098434][T14327] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1927'.
[  300.445337][T14336] netlink: 1204 bytes leftover after parsing attributes in process `syz.3.1930'.
[  300.477812][T14336] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1930'.
[  300.518053][T14347] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1931'.
[  303.951617][T14449] Invalid ELF header magic: != ELF
[  304.688980][T14465] sctp: [Deprecated]: syz.4.1959 (pid 14465) Use of int in maxseg socket option.
[  304.688980][T14465] Use struct sctp_assoc_value instead
[  305.259008][T14469] __nla_validate_parse: 1 callbacks suppressed
[  305.259029][T14469] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1956'.
[  305.383781][T14469] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  305.409974][T14469] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  305.443404][T14469] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  305.476678][T14469] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  305.539062][T14469] geneve1: entered allmulticast mode
[  306.361220][T14509] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1970'.
[  306.403416][T14509] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1970'.
[  306.427669][T14509] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1970'.
[  306.449050][T14509] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1970'.
[  306.469751][T14509] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1970'.
[  306.498207][T14509] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1970'.
[  306.516997][T14509] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1970'.
[  306.547646][T14509] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1970'.
[  306.558330][T14509] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1970'.
[  307.766152][T14557] Invalid ELF header magic: != ELF
[  308.937956][T14585] ksmbd: Unknown IPC event: 0, ignore.
[  310.241049][T14633] : Can't lookup blockdev
[  310.293888][T14635] __nla_validate_parse: 29 callbacks suppressed
[  310.293908][T14635] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2003'.
[  311.641391][T14710] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2025'.
[  311.759561][T14715] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2026'.
[  311.780777][T14715] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2026'.
[  311.822794][T14715] netlink: 250 bytes leftover after parsing attributes in process `syz.1.2026'.
[  311.895321][T14721] Process accounting resumed
[  311.950610][T14724] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2030'.
[  313.391135][T14764] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2039'.
[  314.293294][T14808] HfR: entered promiscuous mode
[  314.532369][T14814] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2053'.
[  314.565874][T14814] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2053'.
[  314.594954][T14814] netlink: 98 bytes leftover after parsing attributes in process `syz.4.2053'.
[  314.618239][T14814] veth0_macvtap: left promiscuous mode
[  315.296467][T14861] netlink: zone id is out of range
[  315.306682][T14861] netlink: zone id is out of range
[  315.319478][T14861] netlink: zone id is out of range
[  315.328879][T14861] netlink: del zone limit has 4 unknown bytes
[  315.413671][T14869] __nla_validate_parse: 1 callbacks suppressed
[  315.413691][T14869] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2067'.
[  315.794369][T14884] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  315.809490][T14884] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  316.751871][T14959] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2081'.
[  317.217531][T14977] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2085'.
[  317.459444][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  317.465355][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  318.059258][T15012] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2093'.
[  318.823488][T15052] netlink: 74 bytes leftover after parsing attributes in process `syz.1.2100'.
[  319.887108][T15099] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2109'.
[  321.049497][T15142] netlink: 11 bytes leftover after parsing attributes in process `syz.1.2119'.
[  321.146457][T15147] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2121'.
[  321.197176][T15149] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2122'.
[  322.118508][T15188] netlink: 'syz.3.2131': attribute type 15 has an invalid length.
[  322.135873][T15188] netlink: 252 bytes leftover after parsing attributes in process `syz.3.2131'.
[  322.197925][T15194] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2132'.
[  322.381574][T15202] can: request_module (can-proto-0) failed.
[  325.060264][T15288] netlink: 222 bytes leftover after parsing attributes in process `syz.3.2155'.
[  325.070209][T15287] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2156'.
[  325.089416][T15288] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2155'.
[  325.245441][T15288] bridge0: port 2(bridge_slave_1) entered disabled state
[  325.330179][T15288] bridge_slave_1 (unregistering): left allmulticast mode
[  325.336564][T15288] bridge_slave_1 (unregistering): left promiscuous mode
[  325.364252][T15302] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2162'.
[  325.378263][T15288] bridge0: port 2(bridge_slave_1) entered disabled state
[  326.967517][T15351] delete_channel: no stack
[  327.547097][T15361] openvswitch: netlink: Tunnel attr 8192 out of range max 16
[  328.507658][T15398] __vm_enough_memory: pid: 15398, comm: syz.3.2183, bytes: 4503599627366400 not enough memory for the allocation
[  329.136268][T15405] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2185'.
[  329.358704][T15411] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2185'.
[  329.390685][T15405] netlink: 'syz.4.2185': attribute type 4 has an invalid length.
[  329.494687][T15416] netlink: 'syz.4.2185': attribute type 4 has an invalid length.
[  330.257590][T15431] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2190'.
[  330.294408][T15445] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2193'.
[  330.316354][T15445] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2193'.
[  330.810434][T15458] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2199'.
[  330.833079][T15458] netlink: 220 bytes leftover after parsing attributes in process `syz.0.2199'.
[  331.146288][T15471] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2202'.
[  331.375700][T15481] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2204'.
[  331.552074][T15490] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2205'.
[  331.608306][T15490] vcan0: entered promiscuous mode
[  333.047786][T15502] veth0_macvtap: left promiscuous mode
[  333.720300][T15527] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[  335.005200][T15594] __nla_validate_parse: 4 callbacks suppressed
[  335.005221][T15594] netlink: 354 bytes leftover after parsing attributes in process `syz.1.2236'.
[  335.122531][T15607] openvswitch: netlink: IP tunnel TTL not specified.
[  336.057456][T15636] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2241'.
[  336.067205][T15636] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2241'.
[  336.728992][T15673] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2250'.
[  336.736757][T15672] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2252'.
[  337.652664][T15714] netlink: 'syz.0.2260': attribute type 2 has an invalid length.
[  337.945608][T15724] netlink: 4836 bytes leftover after parsing attributes in process `syz.1.2262'.
[  338.070595][T15724] can: request_module (can-proto-5) failed.
[  338.775937][T15759] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2270'.
[  339.654009][T15779] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2273'.
[  340.306879][T15822] could not allocate digest TFM handle binfmt_misc
[  340.463880][T15828] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2284'.
[  340.986288][T15857] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  341.794191][T15897] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2302'.
[  342.014942][T15900] Invalid ELF header magic: != ELF
[  342.150313][T15909] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2306'.
[  342.557882][ T5841] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  342.566407][ T5841] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  342.573514][ T5841] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  342.580486][ T5841] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  342.587151][ T5841] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  342.595095][ T5841] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  342.974009][T15918] chnl_net:caif_netlink_parms(): no params data found
[  343.148873][T15918] bridge0: port 1(bridge_slave_0) entered blocking state
[  343.157946][T15918] bridge0: port 1(bridge_slave_0) entered disabled state
[  343.163627][T15942] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2314'.
[  343.164420][T15918] bridge_slave_0: entered allmulticast mode
[  343.191471][T15918] bridge_slave_0: entered promiscuous mode
[  343.217687][T15918] bridge0: port 2(bridge_slave_1) entered blocking state
[  343.225495][T15918] bridge0: port 2(bridge_slave_1) entered disabled state
[  343.232134][T15918] bridge_slave_1: entered allmulticast mode
[  343.238428][T15918] bridge_slave_1: entered promiscuous mode
[  343.263747][T15918] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  343.281225][T15918] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  343.319350][T15918] team0: Port device team_slave_0 added
[  343.328413][T15918] team0: Port device team_slave_1 added
[  343.366974][T15918] batman_adv: batadv0: Adding interface: batadv_slave_0
[  343.373918][T15918] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  343.398844][T15918] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  343.416936][T15918] batman_adv: batadv0: Adding interface: batadv_slave_1
[  343.427767][T15918] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  343.487868][T15918] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  343.563198][T15918] hsr_slave_0: entered promiscuous mode
[  343.569270][T15918] hsr_slave_1: entered promiscuous mode
[  343.579803][T15918] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  343.592925][T15918] Cannot create hsr debugfs directory
[  343.750758][T15918] bridge0: port 2(bridge_slave_1) entered blocking state
[  343.757197][T15918] bridge0: port 2(bridge_slave_1) entered forwarding state
[  343.763883][T15918] bridge0: port 1(bridge_slave_0) entered blocking state
[  343.770303][T15918] bridge0: port 1(bridge_slave_0) entered forwarding state
[  343.831894][T15918] 8021q: adding VLAN 0 to HW filter on device bond0
[  343.845029][ T8802] bridge0: port 1(bridge_slave_0) entered disabled state
[  343.855018][ T8802] bridge0: port 2(bridge_slave_1) entered disabled state
[  343.882069][T15918] 8021q: adding VLAN 0 to HW filter on device team0
[  343.894423][ T9496] bridge0: port 1(bridge_slave_0) entered blocking state
[  343.900895][ T9496] bridge0: port 1(bridge_slave_0) entered forwarding state
[  343.912361][ T9483] bridge0: port 2(bridge_slave_1) entered blocking state
[  343.918785][ T9483] bridge0: port 2(bridge_slave_1) entered forwarding state
[  343.938189][T15965] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2320'.
[  344.129330][T15918] 8021q: adding VLAN 0 to HW filter on device batadv0
[  344.466447][T15918] veth0_vlan: entered promiscuous mode
[  344.476395][T15918] veth1_vlan: entered promiscuous mode
[  344.599003][T15918] veth0_macvtap: entered promiscuous mode
[  344.613591][T15918] veth1_macvtap: entered promiscuous mode
[  344.627734][T15918] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  344.659082][   T54] Bluetooth: hci4: command tx timeout
[  344.674170][T15918] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  344.685532][T15918] batman_adv: batadv0: Interface activated: batadv_slave_0
[  344.694831][T15918] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  344.704955][T15918] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  344.720793][T15918] batman_adv: batadv0: Interface activated: batadv_slave_1
[  344.929893][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  344.951920][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  344.987648][ T8799] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  344.995506][ T8799] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  345.950371][T16044] svc: failed to register nfsdv3 RPC service (errno 111).
[  345.967480][T16044] svc: failed to register nfsaclv3 RPC service (errno 111).
[  346.016541][T16050] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2339'.
[  346.026815][T16050] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2339'.
[  346.391326][T16061] raw_sendmsg: syz.1.2343 forgot to set AF_INET. Fix it!
[  346.737896][   T54] Bluetooth: hci4: command tx timeout
[  346.761461][ T5841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  346.775039][ T5841] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  346.781851][ T5841] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  346.789259][ T5841] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  346.796108][ T5841] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  346.804719][ T5841] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  347.029896][T16081] chnl_net:caif_netlink_parms(): no params data found
[  347.080241][T16081] bridge0: port 1(bridge_slave_0) entered blocking state
[  347.089811][T16081] bridge0: port 1(bridge_slave_0) entered disabled state
[  347.096313][T16081] bridge_slave_0: entered allmulticast mode
[  347.103506][T16081] bridge_slave_0: entered promiscuous mode
[  347.111230][T16081] bridge0: port 2(bridge_slave_1) entered blocking state
[  347.117755][T16081] bridge0: port 2(bridge_slave_1) entered disabled state
[  347.124637][T16081] bridge_slave_1: entered allmulticast mode
[  347.132266][T16081] bridge_slave_1: entered promiscuous mode
[  347.163298][T16081] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  347.181737][T16081] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  347.208971][T16081] team0: Port device team_slave_0 added
[  347.216042][T16081] team0: Port device team_slave_1 added
[  347.237153][T16081] batman_adv: batadv0: Adding interface: batadv_slave_0
[  347.243664][T16081] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  347.269127][T16081] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  347.280951][T16081] batman_adv: batadv0: Adding interface: batadv_slave_1
[  347.287449][T16081] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  347.311683][T16081] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  347.349258][T16081] hsr_slave_0: entered promiscuous mode
[  347.356371][T16081] hsr_slave_1: entered promiscuous mode
[  347.362831][T16081] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  347.371076][T16081] Cannot create hsr debugfs directory
[  347.453433][T16081] bridge0: port 2(bridge_slave_1) entered blocking state
[  347.459888][T16081] bridge0: port 2(bridge_slave_1) entered forwarding state
[  347.466535][T16081] bridge0: port 1(bridge_slave_0) entered blocking state
[  347.472975][T16081] bridge0: port 1(bridge_slave_0) entered forwarding state
[  347.520073][T16081] 8021q: adding VLAN 0 to HW filter on device bond0
[  347.532450][ T8799] bridge0: port 1(bridge_slave_0) entered disabled state
[  347.540336][ T8799] bridge0: port 2(bridge_slave_1) entered disabled state
[  347.554433][T16081] 8021q: adding VLAN 0 to HW filter on device team0
[  347.564794][ T9480] bridge0: port 1(bridge_slave_0) entered blocking state
[  347.571236][ T9480] bridge0: port 1(bridge_slave_0) entered forwarding state
[  347.597702][T16081] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  347.609361][T16081] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  347.625682][ T9480] bridge0: port 2(bridge_slave_1) entered blocking state
[  347.632132][ T9480] bridge0: port 2(bridge_slave_1) entered forwarding state
[  347.742188][T16125] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(49)
[  347.760324][T16081] 8021q: adding VLAN 0 to HW filter on device batadv0
[  348.174976][T16081] veth0_vlan: entered promiscuous mode
[  348.186613][T16081] veth1_vlan: entered promiscuous mode
[  348.205320][T16081] veth0_macvtap: entered promiscuous mode
[  348.213757][T16081] veth1_macvtap: entered promiscuous mode
[  348.226497][T16152] netlink: zone id is out of range
[  348.226561][T16081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  348.240785][T16081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  348.249858][T16081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  348.259525][T16081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  348.267450][T16152] netlink: set zone limit has 8 unknown bytes
[  348.269360][T16081] batman_adv: batadv0: Interface activated: batadv_slave_0
[  348.319414][T16081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  348.329608][T16081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  348.340867][T16081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  348.350827][T16081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  348.368676][T16081] batman_adv: batadv0: Interface activated: batadv_slave_1
[  348.534997][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  348.546196][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  348.611742][ T9483] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  348.637895][ T9483] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  348.741017][T16180] netlink: 'syz.3.2367': attribute type 11 has an invalid length.
[  348.818209][ T5841] Bluetooth: hci0: command tx timeout
[  348.822232][   T54] Bluetooth: hci4: command tx timeout
[  348.895044][T16194] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2372'.
[  348.942786][T16194] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  348.965468][T16194] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  348.990263][T16194] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  349.007092][T16194] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  349.328365][T16229] netlink: 'syz.3.2382': attribute type 2 has an invalid length.
[  349.428421][T16240] lo: entered promiscuous mode
[  349.529685][T16239] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2384'.
[  349.583270][T16254] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2387'.
[  349.589319][T16240] lo: left promiscuous mode
[  349.928009][T16276] netlink: 326 bytes leftover after parsing attributes in process `syz.4.2393'.
[  349.972051][T16276] bridge0: port 2(bridge_slave_1) entered disabled state
[  349.978765][T16276] bridge0: port 1(bridge_slave_0) entered disabled state
[  350.259895][T16295] openvswitch: netlink: Missing valid actions attribute.
[  350.292733][T16298] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2396'.
[  350.897943][   T54] Bluetooth: hci4: command tx timeout
[  350.902899][ T5841] Bluetooth: hci0: command tx timeout
[  352.523868][T16352] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  352.567938][T16352] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  352.978816][   T54] Bluetooth: hci0: command tx timeout
[  353.175208][T16374] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2418'.
[  353.212374][T16382] svc: failed to register nfsdv3 RPC service (errno 111).
[  353.231542][T16382] svc: failed to register nfsaclv3 RPC service (errno 111).
[  354.485452][T16434] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2430'.
[  354.751211][T16441] svc: failed to register nfsdv3 RPC service (errno 111).
[  354.765189][T16441] svc: failed to register nfsaclv3 RPC service (errno 111).
[  355.068172][   T54] Bluetooth: hci0: command tx timeout
[  355.753770][T16465] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2438'.
[  355.872057][T16481] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2445'.
[  356.342065][T16501] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2447'.
[  356.712659][T16506] svc: failed to register nfsdv3 RPC service (errno 111).
[  356.721915][T16506] svc: failed to register nfsaclv3 RPC service (errno 111).
[  357.059513][T16518] netlink: 164 bytes leftover after parsing attributes in process `syz.4.2453'.
[  357.110981][T16521] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2457'.
[  358.040189][T16536] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2458'.
[  358.295583][T16554] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2461'.
[  358.783723][T16558] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2462'.
[  358.804696][T16558] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2462'.
[  358.895670][T16565] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2465'.
[  359.804154][T16591] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2468'.
[  360.050360][T16605] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2470'.
[  360.484958][T16611] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2472'.
[  361.516930][T16651] HfR: entered promiscuous mode
[  361.849567][T16666] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2485'.
[  361.858709][T16666] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  361.868197][T16666] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  361.880194][T16666] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  361.898077][T16666] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  361.930252][T16666] geneve1: entered allmulticast mode
[  362.465593][T16694] Invalid ELF header magic: != ELF
[  363.828820][ T5841] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  363.835773][ T5841] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  363.842992][ T5841] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  363.856285][ T5841] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  363.863494][ T5841] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  363.870097][ T5841] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  364.207038][T16744] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2503'.
[  364.285285][T16733] chnl_net:caif_netlink_parms(): no params data found
[  364.438106][T16752] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2505'.
[  364.463876][T16733] bridge0: port 1(bridge_slave_0) entered blocking state
[  364.474719][T16733] bridge0: port 1(bridge_slave_0) entered disabled state
[  364.490529][T16733] bridge_slave_0: entered allmulticast mode
[  364.504791][T16733] bridge_slave_0: entered promiscuous mode
[  364.530412][T16733] bridge0: port 2(bridge_slave_1) entered blocking state
[  364.544424][T16733] bridge0: port 2(bridge_slave_1) entered disabled state
[  364.559003][T16733] bridge_slave_1: entered allmulticast mode
[  364.574533][T16733] bridge_slave_1: entered promiscuous mode
[  364.647158][T16733] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  364.663049][T16733] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  364.704394][T16733] team0: Port device team_slave_0 added
[  364.721937][T16733] team0: Port device team_slave_1 added
[  364.763656][T16733] batman_adv: batadv0: Adding interface: batadv_slave_0
[  364.771138][T16733] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  364.803938][T16733] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  364.815886][T16733] batman_adv: batadv0: Adding interface: batadv_slave_1
[  364.825811][T16733] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  364.852516][T16733] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  364.891971][T16763] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2506'.
[  364.899249][T16733] hsr_slave_0: entered promiscuous mode
[  364.913556][T16733] hsr_slave_1: entered promiscuous mode
[  364.913799][T16763] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2506'.
[  364.927929][T16733] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  364.935638][T16733] Cannot create hsr debugfs directory
[  365.062169][T16733] bridge0: port 2(bridge_slave_1) entered blocking state
[  365.068621][T16733] bridge0: port 2(bridge_slave_1) entered forwarding state
[  365.075292][T16733] bridge0: port 1(bridge_slave_0) entered blocking state
[  365.081738][T16733] bridge0: port 1(bridge_slave_0) entered forwarding state
[  365.165443][T16733] 8021q: adding VLAN 0 to HW filter on device bond0
[  365.201214][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[  365.209423][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[  365.240648][T16733] 8021q: adding VLAN 0 to HW filter on device team0
[  365.260970][ T9483] bridge0: port 1(bridge_slave_0) entered blocking state
[  365.267409][ T9483] bridge0: port 1(bridge_slave_0) entered forwarding state
[  365.305031][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  365.311482][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  365.346561][T16785] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2513'.
[  365.581890][T16733] 8021q: adding VLAN 0 to HW filter on device batadv0
[  365.823862][T16811] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  365.834428][T16811] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  365.854312][T16811] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  365.875055][T16811] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  365.880060][T16733] veth0_vlan: entered promiscuous mode
[  365.891495][T16811] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  365.900599][T16733] veth1_vlan: entered promiscuous mode
[  365.907747][T16811] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  365.914242][T16811] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  365.937968][   T54] Bluetooth: hci1: command tx timeout
[  365.944960][T16733] veth0_macvtap: entered promiscuous mode
[  365.953299][T16811] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  365.958875][T16733] veth1_macvtap: entered promiscuous mode
[  365.971771][T16733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  365.982416][T16811] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  365.988547][T16733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.997966][T16733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  366.007364][T16733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.016290][T16733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  366.037106][T16733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.047066][T16733] batman_adv: batadv0: Interface activated: batadv_slave_0
[  366.055551][T16811] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  366.070561][T16733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  366.095673][T16733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.122576][T16733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  366.145722][T16733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.162261][T16733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  366.180247][T16733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.196176][T16733] batman_adv: batadv0: Interface activated: batadv_slave_1
[  366.382875][ T8802] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  366.421181][ T8802] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  366.620921][ T8802] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  366.635075][ T8802] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  366.649570][   T29] audit: type=1326 audit(8277292100.440:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16831 comm="syz.3.2521" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe34fd85d29 code=0x0
[  367.341240][T16855] netlink: 146 bytes leftover after parsing attributes in process `syz.1.2525'.
[  367.875067][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[  367.881864][   T54] Bluetooth: hci3: command 0x0419 tx timeout
[  367.941354][ T5841] Bluetooth: hci0: command 0x0c1a tx timeout
[  368.018408][ T5841] Bluetooth: hci1: command 0x040f tx timeout
[  369.589782][T16925] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2540'.
[  369.937993][ T5841] Bluetooth: hci4: command 0x0c1a tx timeout
[  370.030556][ T5841] Bluetooth: hci0: command 0x0c1a tx timeout
[  370.098148][ T5841] Bluetooth: hci1: command 0x040f tx timeout
[  371.759435][T16966] Process accounting resumed
[  372.002044][T16995] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2553'.
[  372.018142][ T5841] Bluetooth: hci4: command 0x0c1a tx timeout
[  372.098065][ T5841] Bluetooth: hci0: command 0x0c1a tx timeout
[  372.178287][ T5841] Bluetooth: hci1: command 0x040f tx timeout
[  372.667234][T17020] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2560'.
[  373.192512][T17047] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  373.220985][T17047] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  373.249668][T17047] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  373.255136][T17047] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  373.718891][T17060] can: request_module (can-proto-0) failed.
[  373.811965][T17071] netlink: 326 bytes leftover after parsing attributes in process `syz.4.2571'.
[  375.218589][   T54] Bluetooth: hci3: command 0x0419 tx timeout
[  375.298414][   T54] Bluetooth: hci1: command 0x040f tx timeout
[  375.303870][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[  375.310450][ T5841] Bluetooth: hci4: command 0x0c1a tx timeout
[  376.155251][T17165] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2596'.
[  377.378126][T17131] Bluetooth: hci1: command 0x040f tx timeout
[  377.997238][T17203] sd 0:0:1:0: PR command failed: 1026
[  378.005212][T17203] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  378.021011][T17203] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  378.329626][T17222] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2610'.
[  378.899587][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  378.905416][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  380.153413][   T29] audit: type=1800 audit(8277292113.940:22): pid=17296 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2629" name="features" dev="configfs" ino=61678 res=0 errno=0
[  380.247891][   T29] audit: type=1800 audit(8277292113.940:23): pid=17297 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2629" name="dbroot" dev="configfs" ino=61680 res=0 errno=0
[  380.295680][T17302] Line length is too long: Should be less than 4094
[  380.319230][T17305] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2632'.
[  380.387265][T17307] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2630'.
[  380.593973][T17327] netlink: 326 bytes leftover after parsing attributes in process `syz.4.2636'.
[  381.455026][T17347] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2640'.
[  381.619425][T17359] ima: policy update failed
[  381.649222][   T29] audit: type=1802 audit(8277292115.440:24): pid=17359 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2644" res=0 errno=0
[  383.565666][T17452] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2662'.
[  383.595758][T17452] bridge_slave_1: left allmulticast mode
[  383.609558][T17452] bridge_slave_1: left promiscuous mode
[  383.614753][T17452] bridge0: port 2(bridge_slave_1) entered disabled state
[  383.682817][T17452] bridge_slave_0: left allmulticast mode
[  383.702812][T17452] bridge_slave_0: left promiscuous mode
[  383.738103][T17452] bridge0: port 1(bridge_slave_0) entered disabled state
[  385.043139][T17494] netlink: zone id is out of range
[  385.061651][T17494] netlink: zone id is out of range
[  385.066300][T17494] netlink: zone id is out of range
[  385.112891][T17494] netlink: zone id is out of range
[  385.138102][T17494] netlink: zone id is out of range
[  385.624815][T17519] Invalid ELF header magic: != ELF
[  385.638330][T17518] Invalid ELF header magic: != ELF
[  385.928381][T17529] ptrace attach of "./syz-executor exec"[16081] was attempted by "./syz-executor exec"[17529]
[  386.041730][T17534] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  386.049756][T17527] tipc: Started in network mode
[  386.055315][T17527] tipc: Node identity ee00, cluster identity 4711
[  386.114452][T17527] tipc: Node number set to 60928
[  386.542857][T17546] openvswitch: netlink: Port -2134900732 exceeds max allowable 65535
[  388.029461][T16735] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  388.036016][T16735] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  388.042791][T16735] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  388.049772][T16735] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  388.057233][T16735] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  388.064725][T16735] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  388.438425][T17587] chnl_net:caif_netlink_parms(): no params data found
[  388.970579][T17587] bridge0: port 1(bridge_slave_0) entered blocking state
[  388.977072][T17587] bridge0: port 1(bridge_slave_0) entered disabled state
[  389.008819][T17587] bridge_slave_0: entered allmulticast mode
[  389.031445][T17587] bridge_slave_0: entered promiscuous mode
[  389.056620][T17587] bridge0: port 2(bridge_slave_1) entered blocking state
[  389.082237][T17587] bridge0: port 2(bridge_slave_1) entered disabled state
[  389.104144][T17587] bridge_slave_1: entered allmulticast mode
[  389.122832][T17587] bridge_slave_1: entered promiscuous mode
[  389.219144][T17587] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  389.254425][T17587] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  389.432095][   T29] audit: type=1800 audit(8277292123.220:25): pid=17624 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2697" name="lu_gp_id" dev="configfs" ino=63719 res=0 errno=0
[  389.453141][T17587] team0: Port device team_slave_0 added
[  389.505732][T17587] team0: Port device team_slave_1 added
[  389.521809][T17625] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2696'.
[  389.659755][T17587] batman_adv: batadv0: Adding interface: batadv_slave_0
[  389.666043][T17587] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  389.726181][T17587] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  389.737950][T17587] batman_adv: batadv0: Adding interface: batadv_slave_1
[  389.744963][T17587] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  389.785335][T17636] ------------[ cut here ]------------
[  389.790491][T17636] WARNING: CPU: 0 PID: 17636 at mm/page_alloc.c:4729 __alloc_pages_noprof+0xeff/0x25b0
[  389.797879][T17587] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  389.799267][T17636] Modules linked in:
[  389.812323][T17636] CPU: 0 UID: 0 PID: 17636 Comm: syz.4.2700 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  389.822093][T17636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  389.831218][T17636] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0
[  389.836732][T17636] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 34 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9
[  389.854836][T17636] RSP: 0018:ffffc900036f78e8 EFLAGS: 00010246
[  389.860728][T17636] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  389.867987][T17636] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0
[  389.875186][T17636] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000100
[  389.882563][T17636] R10: 0000000000000100 R11: 00000000000a2001 R12: 0000000000000013
[  389.889932][T17636] R13: 0000000000040cc0 R14: 1ffff920006def31 R15: 00000000ffffffff
[  389.897135][T17636] FS:  00007f92beb526c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  389.905334][T17636] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  389.911537][T17636] CR2: 0000000000000000 CR3: 00000000716fa000 CR4: 00000000003526f0
[  389.918777][T17636] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  389.925971][T17636] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  389.933285][T17636] Call Trace:
[  389.936253][T17636]  <TASK>
[  389.939015][T17636]  ? __warn+0xea/0x3c0
[  389.942743][T17636]  ? __alloc_pages_noprof+0xeff/0x25b0
[  389.947699][T17636]  ? report_bug+0x3c0/0x580
[  389.951851][T17636]  ? handle_bug+0x54/0xa0
[  389.955793][T17636]  ? exc_invalid_op+0x17/0x50
[  389.960345][T17636]  ? asm_exc_invalid_op+0x1a/0x20
[  389.964909][T17636]  ? __alloc_pages_noprof+0xeff/0x25b0
[  389.970295][T17636]  ? stack_trace_save+0x95/0xd0
[  389.974703][T17636]  ? __pfx_stack_trace_save+0x10/0x10
[  389.979668][T17636]  ? stack_depot_save_flags+0x28/0x9e0
[  389.984728][T17636]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  389.990050][T17636]  ? kasan_save_stack+0x33/0x60
[  389.994528][T17636]  ? __kasan_kmalloc+0xaa/0xb0
[  389.998906][T17636]  ? safesetid_gid_file_write+0x87/0xc0
[  390.003930][T17636]  ? vfs_write+0x24c/0x1150
[  390.008138][T17636]  ? ksys_write+0x12b/0x250
[  390.012219][T17636]  ? do_syscall_64+0xcd/0x250
[  390.016477][T17636]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.022069][T17636]  ___kmalloc_large_node+0x84/0x1b0
[  390.026776][T17636]  __kmalloc_large_node_noprof+0x1c/0x70
[  390.032008][T17636]  __kmalloc_node_track_caller_noprof.cold+0x5/0x5f
[  390.038027][T17636]  ? handle_policy_update+0x188/0x11e0
[  390.042977][T17636]  memdup_user_nul+0x2b/0x110
[  390.047229][T17636]  handle_policy_update+0x188/0x11e0
[  390.052147][T17636]  ? __pfx_handle_policy_update+0x10/0x10
[  390.057324][T17636]  ? apparmor_capable+0x114/0x1d0
[  390.062223][T17636]  ? bpf_lsm_capable+0x9/0x10
[  390.066530][T17636]  ? security_capable+0x7e/0x260
[  390.071354][T17636]  safesetid_gid_file_write+0x87/0xc0
[  390.076232][T17636]  ? __pfx_safesetid_gid_file_write+0x10/0x10
[  390.081813][T17636]  vfs_write+0x24c/0x1150
[  390.085884][T17636]  ? __fget_files+0x1fc/0x3a0
[  390.090311][T17636]  ? __pfx___mutex_lock+0x10/0x10
[  390.094881][T17636]  ? __pfx_vfs_write+0x10/0x10
[  390.099369][T17636]  ? __fget_files+0x206/0x3a0
[  390.103622][T17636]  ksys_write+0x12b/0x250
[  390.107640][T17636]  ? __pfx_ksys_write+0x10/0x10
[  390.107992][T16735] Bluetooth: hci2: command tx timeout
[  390.112078][T17636]  ? rcu_is_watching+0x12/0xc0
[  390.121218][T17636]  ? rcu_is_watching+0x12/0xc0
[  390.125542][T17636]  do_syscall_64+0xcd/0x250
[  390.129689][T17636]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.135035][T17636] RIP: 0033:0x7f92bdd85d29
[  390.139101][T17636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.156841][T17636] RSP: 002b:00007f92beb52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  390.164859][T17636] RAX: ffffffffffffffda RBX: 00007f92bdf76080 RCX: 00007f92bdd85d29
[  390.172394][T17636] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  390.179778][T17636] RBP: 00007f92bde01aa8 R08: 0000000000000000 R09: 0000000000000000
[  390.186984][T17636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  390.194359][T17636] R13: 0000000000000000 R14: 00007f92bdf76080 R15: 00007ffea767e268
[  390.201984][T17636]  </TASK>
[  390.204734][T17636] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  390.211324][T17636] CPU: 0 UID: 0 PID: 17636 Comm: syz.4.2700 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  390.221038][T17636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  390.230124][T17636] Call Trace:
[  390.233101][T17636]  <TASK>
[  390.235763][T17636]  dump_stack_lvl+0x3d/0x1f0
[  390.239928][T17636]  panic+0x71d/0x800
[  390.243478][T17636]  ? __pfx_panic+0x10/0x10
[  390.247492][T17636]  ? show_trace_log_lvl+0x29d/0x3d0
[  390.252351][T17636]  ? check_panic_on_warn+0x1f/0xb0
[  390.256989][T17636]  ? __alloc_pages_noprof+0xeff/0x25b0
[  390.261933][T17636]  check_panic_on_warn+0xab/0xb0
[  390.266393][T17636]  __warn+0xf6/0x3c0
[  390.269913][T17636]  ? __alloc_pages_noprof+0xeff/0x25b0
[  390.274842][T17636]  report_bug+0x3c0/0x580
[  390.278747][T17636]  handle_bug+0x54/0xa0
[  390.282500][T17636]  exc_invalid_op+0x17/0x50
[  390.286560][T17636]  asm_exc_invalid_op+0x1a/0x20
[  390.290934][T17636] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0
[  390.296407][T17636] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 34 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9
[  390.314065][T17636] RSP: 0018:ffffc900036f78e8 EFLAGS: 00010246
[  390.319535][T17636] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  390.326737][T17636] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0
[  390.333916][T17636] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000100
[  390.341091][T17636] R10: 0000000000000100 R11: 00000000000a2001 R12: 0000000000000013
[  390.348266][T17636] R13: 0000000000040cc0 R14: 1ffff920006def31 R15: 00000000ffffffff
[  390.355457][T17636]  ? stack_trace_save+0x95/0xd0
[  390.359835][T17636]  ? __pfx_stack_trace_save+0x10/0x10
[  390.364691][T17636]  ? stack_depot_save_flags+0x28/0x9e0
[  390.369618][T17636]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  390.374778][T17636]  ? kasan_save_stack+0x33/0x60
[  390.379151][T17636]  ? __kasan_kmalloc+0xaa/0xb0
[  390.383447][T17636]  ? safesetid_gid_file_write+0x87/0xc0
[  390.388453][T17636]  ? vfs_write+0x24c/0x1150
[  390.392511][T17636]  ? ksys_write+0x12b/0x250
[  390.396569][T17636]  ? do_syscall_64+0xcd/0x250
[  390.400789][T17636]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.406266][T17636]  ___kmalloc_large_node+0x84/0x1b0
[  390.410952][T17636]  __kmalloc_large_node_noprof+0x1c/0x70
[  390.416028][T17636]  __kmalloc_node_track_caller_noprof.cold+0x5/0x5f
[  390.421971][T17636]  ? handle_policy_update+0x188/0x11e0
[  390.426902][T17636]  memdup_user_nul+0x2b/0x110
[  390.431127][T17636]  handle_policy_update+0x188/0x11e0
[  390.435909][T17636]  ? __pfx_handle_policy_update+0x10/0x10
[  390.441080][T17636]  ? apparmor_capable+0x114/0x1d0
[  390.445629][T17636]  ? bpf_lsm_capable+0x9/0x10
[  390.449851][T17636]  ? security_capable+0x7e/0x260
[  390.454317][T17636]  safesetid_gid_file_write+0x87/0xc0
[  390.459160][T17636]  ? __pfx_safesetid_gid_file_write+0x10/0x10
[  390.464628][T17636]  vfs_write+0x24c/0x1150
[  390.468533][T17636]  ? __fget_files+0x1fc/0x3a0
[  390.472759][T17636]  ? __pfx___mutex_lock+0x10/0x10
[  390.477292][T17636]  ? __pfx_vfs_write+0x10/0x10
[  390.481615][T17636]  ? __fget_files+0x206/0x3a0
[  390.485853][T17636]  ksys_write+0x12b/0x250
[  390.489762][T17636]  ? __pfx_ksys_write+0x10/0x10
[  390.494138][T17636]  ? rcu_is_watching+0x12/0xc0
[  390.498538][T17636]  ? rcu_is_watching+0x12/0xc0
[  390.502993][T17636]  do_syscall_64+0xcd/0x250
[  390.507057][T17636]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.512384][T17636] RIP: 0033:0x7f92bdd85d29
[  390.516531][T17636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.534206][T17636] RSP: 002b:00007f92beb52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  390.541869][T17636] RAX: ffffffffffffffda RBX: 00007f92bdf76080 RCX: 00007f92bdd85d29
[  390.549126][T17636] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  390.556356][T17636] RBP: 00007f92bde01aa8 R08: 0000000000000000 R09: 0000000000000000
[  390.563544][T17636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  390.570720][T17636] R13: 0000000000000000 R14: 00007f92bdf76080 R15: 00007ffea767e268
[  390.577921][T17636]  </TASK>
[  390.580915][T17636] Kernel Offset: disabled
[  390.584816][T17636] Rebooting in 86400 seconds..