last executing test programs:

4m21.028761217s ago: executing program 1 (id=610):
r0 = socket(0xa, 0x3, 0x3a)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/reserved_size\x00', 0x400, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)=""/222, 0xde)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000a80), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x9, 0x7)
ioperm$auto(0x7, 0x6, 0x2)
setgroups$auto(0x3, 0x0)
sendmsg$auto_NL80211_CMD_GET_MPP(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000140)={0x1c, r2, 0x301, 0x70bd2f, 0x25dfdbfd, {}, [@NL80211_ATTR_FILS_DISCOVERY={0x7, 0x14c}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200040c4}, 0x20000040)
mprotect$auto(0x1ffff000, 0x1010000000800, 0xd)
r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x20601, 0x0)
write$auto_sg_fops_sg(r4, &(0x7f0000000080)="06adab", 0x3)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/nr8/statistics/multicast\x00', 0x80000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
read$auto(r5, 0x0, 0x20)
r6 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r6, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSCOMPRESS(r6, 0x4010744d, &(0x7f00000001c0)={0x0, 0x20, 0x8})
setsockopt$auto(r0, 0x2000029, 0x49, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\x87\x02\x1c\xfd\xac\xc7\xaa\n\xf9\x19\xc4#<^\x91\x1d\xda\xc4m\xef\xff(i\xc6@\x91_\vBj\x0eQ\xceV\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5', 0x10000110)

4m20.729360273s ago: executing program 1 (id=612):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000)
write$auto(0x800000000000c8, 0x0, 0x1a)
mmap$auto(0x6, 0x9, 0x6, 0x32d4, 0x10000, 0x80000001)
ioctl$auto(0xc8, 0xffffffff800454dd, 0x4000000000008)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
shutdown$auto(0x200000003, 0x2)
mmap$auto(0x0, 0x40009, 0x0, 0x9b73, 0x7, 0x28000)
mremap$auto(0x4000, 0x9, 0x3fd6, 0x3, 0xfffff000)
set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x7b, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x1e, r0, 0x2)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x7fffffffffffffff, 0xdf, 0x15, 0x7, 0x28000)
write$auto(0x3, 0x0, 0x7fffffff)
read$auto(0x3, 0x0, 0x80)
r1 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x8, 0x1040000004, 0x8b74, 0x2, 0x8000)
r2 = getsockopt$auto(r1, 0x84, 0x1b, 0x0, &(0x7f0000000040)=0xc)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap$auto(0x0, 0x4, 0x4000000020df, 0x40eb2, 0x402, 0x300000000000)
capset$auto(0x0, 0x0)
r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0)
read$auto(r3, 0x0, 0x39b8)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x5a7, 0xe, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x4000000, 0x20009, 0xdf, 0xeb1, 0x401, 0x3)

4m19.348998868s ago: executing program 1 (id=617):
mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x406, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46)
r0 = pidfd_open$auto(0x1, 0x0)
setns(r0, 0x10000000)

4m19.176678325s ago: executing program 1 (id=618):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0082, 0x0)
write$auto_lockdown_ops_lockdown(0xffffffffffffffff, &(0x7f00000000c0)="59ac7a61d575aeffd349703c", 0xc)
add_key$auto(0x0, 0x0, 0x0, 0x6, 0x100)
write$auto(r0, &(0x7f0000000280)='/dev/bus/usb/009/001\x00', 0x4)
socket(0x2, 0x801, 0x100)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
r1 = socket(0x2, 0x5, 0x0)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0xff04}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
landlock_create_ruleset$auto(0x0, 0x9, 0x0)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/damon_reclaim/parameters/min_age\x00', 0x60b82, 0x0)
write$auto(r2, 0x0, 0x401)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
futex_waitv$auto(&(0x7f0000000000)={0x0, 0x7e4, 0x2}, 0x1, 0x2, 0x0, 0x623d)

4m18.90254925s ago: executing program 1 (id=620):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, 0x0, 0x800)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000240)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}})
migrate_pages$auto(0x1, 0x9, 0x0, &(0x7f0000000840)=0x2)
openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f00000001c0), 0x121000, 0x0)
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
bpf$auto(0xa, &(0x7f0000000000)=@bpf_attr_7={@start_id=0xfffffff7, 0x6820, 0x9}, 0x0)
ioctl$auto(0xc8, 0xffffffff800454dd, 0x4000000000008)
setrlimit$auto(0x9, 0x0)
r0 = gettid()
process_vm_writev$auto(r0, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x400, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video61\x00', 0x8a240, 0x0)
read$auto_v4l2_fops_v4l2_dev(r1, &(0x7f0000000080)=""/33, 0x21)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8003, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffff7ffffffffffa, 0x8000)
r2 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, 0x0, 0x80001, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x3b72, 0x0)
mbind$auto(0x0, 0x2, 0x1, 0x0, 0x6, 0x2)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80)
r3 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x100000001, &(0x7f00000002c0)="676dc200ff9b601f49e3866905c3f8e4bf68f73fb95f35b041d52f0f970db9bc4926c936ed0d5b1b38fff0ad4ed789ca148946c7f73c79", 0x6, 0xa505}, 0x800}, 0x7, 0x84008)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x3, 0x71)
setresuid$auto(0x0, 0x8, 0x8000)
ioctl$auto(0x1, 0x8936, 0x8)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/slab/kmalloc-64/reclaim_account\x00', 0x2600, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/228, 0xe4)
move_pages$auto(r0, 0x3, 0x0, 0x0, 0x0, 0x71e0)
open(&(0x7f00000001c0)='./file0\x00', 0x282c2, 0x16c)

4m18.278882828s ago: executing program 1 (id=627):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000)
write$auto(0x800000000000c8, 0x0, 0x1a)
mmap$auto(0x6, 0x9, 0x6, 0x32d4, 0x10000, 0x80000001)
ioctl$auto(0xc8, 0xffffffff800454dd, 0x4000000000008)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
shutdown$auto(0x200000003, 0x2)
mmap$auto(0x0, 0x40009, 0x0, 0x9b73, 0x7, 0x28000)
mremap$auto(0x4000, 0x9, 0x3fd6, 0x3, 0xfffff000)
set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x7b, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x1e, r0, 0x2)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x7fffffffffffffff, 0xdf, 0x15, 0x7, 0x28000)
write$auto(0x3, 0x0, 0x7fffffff)
read$auto(0x3, 0x0, 0x80)
r1 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x8, 0x1040000004, 0x8b74, 0x2, 0x8000)
r2 = getsockopt$auto(r1, 0x84, 0x1b, 0x0, &(0x7f0000000040)=0xc)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap$auto(0x0, 0x4, 0x4000000020df, 0x40eb2, 0x402, 0x300000000000)
capset$auto(0x0, 0x0)
r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0)
read$auto(r3, 0x0, 0x39b8)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x5a7, 0xe, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x4000000, 0x20009, 0xdf, 0xeb1, 0x401, 0x3)

4m18.037574184s ago: executing program 32 (id=627):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000)
write$auto(0x800000000000c8, 0x0, 0x1a)
mmap$auto(0x6, 0x9, 0x6, 0x32d4, 0x10000, 0x80000001)
ioctl$auto(0xc8, 0xffffffff800454dd, 0x4000000000008)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
shutdown$auto(0x200000003, 0x2)
mmap$auto(0x0, 0x40009, 0x0, 0x9b73, 0x7, 0x28000)
mremap$auto(0x4000, 0x9, 0x3fd6, 0x3, 0xfffff000)
set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x7b, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x1e, r0, 0x2)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x7fffffffffffffff, 0xdf, 0x15, 0x7, 0x28000)
write$auto(0x3, 0x0, 0x7fffffff)
read$auto(0x3, 0x0, 0x80)
r1 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x8, 0x1040000004, 0x8b74, 0x2, 0x8000)
r2 = getsockopt$auto(r1, 0x84, 0x1b, 0x0, &(0x7f0000000040)=0xc)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap$auto(0x0, 0x4, 0x4000000020df, 0x40eb2, 0x402, 0x300000000000)
capset$auto(0x0, 0x0)
r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0)
read$auto(r3, 0x0, 0x39b8)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x5a7, 0xe, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x4000000, 0x20009, 0xdf, 0xeb1, 0x401, 0x3)

2m33.513329903s ago: executing program 3 (id=1108):
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r0 = socket(0x2, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r1 = socket(0x2, 0x1, 0x84)
keyctl$auto(0x5, 0xfffffffd, 0x101, 0x1, 0x4000000000b8c)
ioctl$auto(0xc8, 0x8927, 0x5c8d)
keyctl$auto(0xb, 0xfffffffd, 0x7, 0xfffffffffff00003, 0x6)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000740)={0x1374, 0x0, 0x4, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0xdc, 0x1, 0x0, 0x1, [@generic="f5c53c7461b64f8c60fb90f69a1d13d52d6da3527ec7b5be48e686e7364c12793198cdcb6a78253c3bdd7916ced602b5b19762a916baa53c0411bfbf1477407c42963b5791e719e91567d82c697af89370f6f7872979c6713c9b4265a481e529d40b485bc24dac0ed112ebaf8e0f59b20e48f9cffcaa0bed04dad70c00c2d584eb40a6d01a4f463f88d47ae307e73bfd4123c7765a43faedde7088214666ba0cf2c894acec", @generic="f4b358e7d6797543969f90555c41b96df7234b5237ca670f904a28f72579178c25bf6a22216e878271d4470dca09c947456824"]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_DEST={0x127c, 0x2, 0x0, 0x1, [@nested={0x1278, 0xda, 0x0, 0x1, [@typed={0x4, 0x9f}, @typed={0x8, 0xe6, 0x0, 0x0, @fd=r0}, @nested={0x4, 0xe7}, @typed={0x8, 0x146, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="f6df8860479bf4ac5b61473e46ffa131008fd465ea8399b7a1ba4072052f5a503ac58c64ff48c439e4b13532e91a5fe3", @typed={0xc, 0x139, 0x0, 0x0, @u64=0x2}, @nested={0x4, 0x4}, @nested={0x121c, 0xae, 0x0, 0x1, [@nested={0x28, 0x68, 0x0, 0x1, [@nested={0x4, 0x146}, @nested={0x4, 0xf2}, @typed={0xc, 0x24, 0x0, 0x0, @u64=0x4}, @nested={0x4, 0x81}, @typed={0x5, 0xad, 0x0, 0x0, @str='\x00'}, @nested={0x4, 0x51}]}, @typed={0x8, 0x44, 0x0, 0x0, @fd=r1}, @typed={0x14, 0xee, 0x0, 0x0, @ipv6=@loopback}, @typed={0x8, 0xbc, 0x0, 0x0, @str='@-\x15\x00'}, @typed={0x9, 0x132, 0x0, 0x0, @str='\x8f&\xfa-\x00'}, @typed={0x14, 0x135, 0x0, 0x0, @ipv6=@empty}, @nested={0x119f, 0x2, 0x0, 0x1, [@generic="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", @typed={0x8, 0xd1, 0x0, 0x0, @ipv4=@empty}, @nested={0x4, 0x15}, @typed={0x4, 0x93}, @generic="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", @nested={0x4, 0x80}, @generic="acf4cbea13aaeb9dc58c168b70bdec8c3c65342d319726fc74522e7326e44f0a46913d05e88da7eb69fe5930a8aeb248956a66c4fffc92b1062f7b9dfeb1ae09284179f258c9b4094956e6e5b79c01a29cc4431ebffc1f99db823d457b3bfa4303e7ad30bbc9544aabc048b51ee521d0f059304d61a68f9962eace555f385f9cad1522ef", @nested={0x4, 0x66}, @generic]}, @typed={0xc, 0x104, 0x0, 0x0, @u64=0xd31}]}]}]}]}, 0x1374}, 0x1, 0x0, 0x0, 0x4004080}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r2, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x1}, 0x800}, 0x10a, 0x8, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video4\x00', 0x88000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x7fff, 0xeb1, r0, 0x8000)
socket(0x2, 0x1, 0x9)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x1b, &(0x7f0000000340)="1d7b602a68f48f75a53bb57f654d863536314c9674eeafe38e7968c0db2d90e5a6b120be765eeae7cf7cd18a52d4f5defadf925639b7c59b30d17a5d18db561ff8913d6b4a5b86ab793b53c150e68c2566415db8896663a89ccc3d6423850491f4d15cbcca2070ed263271c8dc9332a11e32b42bef06e02ce50f41a22a07f6492bea0de9471136a36a0355fbfdcca0d58e", 0x1)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a001}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
shutdown$auto(0x200000003, 0x2)

2m33.002817651s ago: executing program 3 (id=1112):
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/025/001\x00', 0xcb01, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x28000, 0x0)
ioctl$auto(0x3, 0x80045510, 0x38)

2m32.887970777s ago: executing program 3 (id=1113):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
r0 = io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x1c, 0x0, 0x1)
fspick$auto(0xffffffffffffffff, 0x0, 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001640), r1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
r3 = socket(0x2, 0x80802, 0x0)
setsockopt$auto(r3, 0x11, 0x67, 0x0, 0x8)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
listmount$auto(0x0, 0x0, 0x368, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x40400, 0x0)
connect$auto(0x3, &(0x7f0000000140), 0x55)
socket(0x2, 0x5, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x3ff, 0x0)
mmap$auto(0x0, 0xbb0c, 0x329, 0x10011, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r1, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000180)={0x28, r2, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x9}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x9}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
shmctl$auto(0x4, 0x2, &(0x7f0000001100)={{0x9, <r4=>0xee01, 0xffffffffffffffff, 0x8ceb, 0x4, 0x8, 0x1000}, 0x5, 0x3, 0x246, 0x7, @raw=0x5, @raw=0x3, 0x8, 0x0, &(0x7f0000000040)="8e8f82134e3385524db27ae818e20525f1a4a610bf4c96df1860a9efe26711b63264e1e3903af3160c08641006fc90298897f40bd9ff395de2e5936af85b6d5d08e41c2f228dc944029a75b098e42a866ca7e7aba969041de871badb0b9081c76ae0a60603672eaac1d1068419072326882fd8508f10f431987eefe6dca515c877a06c29abcc3f936e116620fa", &(0x7f0000000100)="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"})
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r0, &(0x7f00000012c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001280)={&(0x7f0000001180)={0xd0, r2, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@NL802154_ATTR_PEER={0xa0, 0x28, 0x0, 0x1, [@typed={0x8, 0x110, 0x0, 0x0, @fd=r0}, @nested={0x18, 0x2e, 0x0, 0x1, [@typed={0x4, 0xa7}, @nested={0x4, 0xfe}, @nested={0x4, 0xa5}, @typed={0x8, 0x77, 0x0, 0x0, @uid=r4}]}, @nested={0x7a, 0x9a, 0x0, 0x1, [@nested={0x4, 0x37}, @generic="141e439a8cbdc7ea7ffa983d34ae43efaf7a228821483c83b3637a6381200b3c53698ac73c591ee3a97992ac10ef97cce885c9891f72d493dff6e719c7243fe9a25ef2735a23e0b48a58f520e207925f7e22a89cd7b7675ecb0920ec8977ee801782f15dfa5013c60c01f88a4a5c", @nested={0x4, 0xa3}]}]}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0xd}, @NL802154_ATTR_SCAN_DONE_REASON={0x5, 0x25, 0x4}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x3}]}, 0xd0}, 0x1, 0x0, 0x0, 0x8000}, 0x94)
getpriority$auto(0x2, 0x0)

2m32.374373529s ago: executing program 3 (id=1115):
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto(0x3, 0x80045510, 0x38) (fail_nth: 3)

2m32.042927114s ago: executing program 3 (id=1119):
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x800)
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
tkill$auto(0x80000000000001, 0x7)
r0 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="fb4f2abd7000fddb9f25080000000800030035fe"], 0x1c}, 0x1, 0x0, 0x0, 0x400c804}, 0x800)
mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xd0}, 0x840)

2m31.566750517s ago: executing program 3 (id=1123):
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) (async)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
sched_setattr$auto(0x0, &(0x7f00000002c0)={0x1000, 0x4e, 0x1d, 0xc, 0x6, 0x5f02, 0x82, 0x9, 0x874, 0x6}, 0x20000000)

2m31.193636116s ago: executing program 33 (id=1123):
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) (async)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
sched_setattr$auto(0x0, &(0x7f00000002c0)={0x1000, 0x4e, 0x1d, 0xc, 0x6, 0x5f02, 0x82, 0x9, 0x874, 0x6}, 0x20000000)

8.915591839s ago: executing program 2 (id=2064):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000002440), r0)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="fae7f642b75501748462c200f3d2e4d414e8b83b5d0f4b7eefc1378b9754c4ea39ab9875c2d32615a678dd53c5b1548e82670e"], 0x14}, 0x1, 0x0, 0x0, 0x8800}, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x1d, 0x3, 0x1)
r1 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000001c80)='/sys/kernel/debug/block/nbd10/hctx0/tags_bitmap\x00', 0x400, 0x0)
r2 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$auto_ima_measure_policy_ops_ima_fs(r2, &(0x7f0000000080)="24abef9125eda23d480177235fe93e85e06a09", 0x13)
r3 = mq_open$auto(&(0x7f0000000080)='&\'!*\x00', 0x9, 0x6, &(0x7f00000000c0)={0x1, 0x8, 0xfffffffffffffffb, 0x4})
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001080), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r6=>0x0})
sendmsg$auto_NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="810b25bd7000ffdbdf253200000008000300", @ANYRES32=r6], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_REQ_SET_REG(r7, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="080027bd7000fedbdf251b0000000800090001000000060096000800000006001000061200000600eb00c3000000060098000400000004007300040008010500d30000000000"], 0x4c}, 0x1, 0x0, 0x0, 0x884}, 0x800)
sendmsg$auto_NL80211_CMD_SET_HW_TIMESTAMP(r3, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r4, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x80}]}, 0x1c}}, 0x4008801)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r3, &(0x7f0000000040)=""/227, 0xe3)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r1, &(0x7f0000001cc0)=""/123, 0x7b)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r8 = socket(0x1e, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sysfs$auto(0x2, 0x46, 0x2)
r9 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r9, 0x4b47, 0x1)
getsockopt$auto(r8, 0x10f, 0x84, 0x0, 0x0)
getpeername$auto(0x3, 0x0, 0x0)
io_uring_setup$auto(0xd, 0x0)
sendmsg$auto_TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x24004044}, 0x10000000)

4.645013213s ago: executing program 4 (id=2084):
ioctl$auto(0x3, 0x127c, 0x38)
mmap$auto(0x0, 0x676, 0x6, 0x9b72, 0x2, 0x8000)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0)
io_uring_setup$auto(0x6, 0x0)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64$auto(0xffffffffffffffff, 0x1, 0x0, 0x0)

4.398773968s ago: executing program 4 (id=2085):
openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim5/trap_flow_action_cookie\x00', 0x2202, 0x0)
mmap$auto(0x6, 0x7, 0x2000000000, 0x714, 0xfffffffffffffffa, 0x7fffffff)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r1 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x20000, 0x0)
read$auto_proc_mountinfo_operations_mnt_namespace(r1, &(0x7f0000000080)=""/4096, 0x1000)
read$auto(0x3, 0x0, 0x80)
r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), r3)
sendmsg$auto_CTRL_CMD_GETFAMILY(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="efff289d7000ffdbdf2503000000050002"], 0x1c}, 0x1, 0x0, 0x0, 0x20040880}, 0x800)
read$auto(r3, 0x0, 0x2005)
ioctl$auto(r2, 0x405c5503, 0x81)
close_range$auto(0x2, 0x8000, 0x0)
read$auto(r0, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.4/usb5/power/wakeup_active_count\x00', 0x400200, 0x0)

4.200523484s ago: executing program 4 (id=2087):
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x0, 0x0) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r1 = socket(0x29, 0xa, 0x8)
rseq$auto(&(0x7f0000000000)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x7ffe, 0x0, 0x6) (async)
readv$auto(0x4, &(0x7f0000000100)={0x0, 0x1000}, 0x8)
write$auto(0x3, 0x0, 0xfdef) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
getcwd$auto(0x0, 0xffffffffffffffff)
setxattrat$auto(0xffffffffffffffff, 0x0, 0x100, 0x0, 0x0, 0x5d8) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
r2 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cgroup.threads\x00', 0x20000, 0x0)
r4 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec8\x00', 0x101901, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r4, 0xc05c6104, &(0x7f0000000100)={'\x00', 0xffff, 0x6, 0x57, 0x9b4, 0x9, "ce7009002ce100", '\x00', "0201ccb7", '\x00', ["00000f0008b330ac007abfc1", "70d900001100", "0800000000000000000000ec", "0000090000005f91ddfb00"]}) (async)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)=""/156, 0x9c) (async)
socket(0x2, 0x80002, 0x73)
ioctl$auto_UDMABUF_CREATE(r2, 0x40187542, &(0x7f0000000180)={r1, 0x7fff, 0x3ff, 0xe}) (async)
socket(0xa, 0x6, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
mmap$auto_vmwgfx_driver_fops_vmwgfx_drv(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x6, 0x4000010, r0, 0xea5) (async)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000080)=""/136, 0x88)

3.508222514s ago: executing program 0 (id=2091):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket(0x29, 0x80000, 0x0)
sendmmsg$auto(r1, 0x0, 0x9a6, 0x3ec0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000001080), r2)
sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r2, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001100)={&(0x7f00000010c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=<r4=>r3, @ANYBLOB="01002abd70471bdbee8777778238"], 0x14}, 0x1, 0x0, 0x0, 0x4000001}, 0x50114)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x9, 0xffc, 0x7, 0xfffffffd, <r5=>0x0, <r6=>0xee01, 0x0, 0x6, 0x1, 0x5, 0xc0f, 0x2, 0x7ff, 0x92bc, 0xffffffff, 0x6, 0x3})
r7 = getuid()
setreuid$auto(r5, r7)
msgctl$auto(0x3, 0xfffffff7, &(0x7f0000000180)={{0x2, <r8=>0xffffffffffffffff, 0xee01, 0x6, 0x9, 0x6, 0x4}, &(0x7f0000000040)=0x1, &(0x7f0000000080)=0x4, 0x2b9, 0x80, 0x5, 0x80000000, 0x2, 0x9, 0x10, 0x9})
r9 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioprio_get$auto(0x2000000002, 0x0)
sendmsg$auto_L2TP_CMD_SESSION_GET(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000001200)=ANY=[@ANYBLOB="f8d3c56f3a8f22147d223287540093923d", @ANYRES64=r6, @ANYBLOB="00042bbd7000fcdbdf250800000020001e8008001d00", @ANYRES32, @ANYBLOB="1400290020010000000000000000000000000000050006000600000008001900ffffffff08001800ff010000050007000b00000005001200ff0000000c001e8008005c00", @ANYRES32=r8, @ANYBLOB="050004004000000008000c0002000000"], 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x84)
r10 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r10, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmsg$auto_MACSEC_CMD_DEL_TXSA(r0, &(0x7f0000001180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000400)={&(0x7f00000027c0)=ANY=[@ANYBLOB="fc05000079120f3c5ea9ce0cab29eae7bd5bbab3bcd08671f3866e794774b90e6fa1a2331507117da9bfe049fdb4fa9e27faecf323546fbb26dc37d6495d9f020db007acd595c70e7e061542d4859302c22a9d0a962fcf619d8eb4ec5f5d0e472c49006abab5ef2c76e186dfe6a3239f7d04d64fad904a9465f5211b", @ANYRES8=r7, @ANYRES16=r4, @ANYRES16=r4, @ANYBLOB="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", @ANYRES16=r9, @ANYRESHEX=r0, @ANYBLOB="0d21fdf8bc0dfecfdfa00e8ff18140f3aecb79d068679e34fe8b718e6371d0c14fabe2a2d7fa18aafcce67a4844e81151a21ddc6e6886620c0c8527ba1829226858cef6442bde8b5832070e2829f827d009637fe423bcfb66459ab62012a4f13b5d673cfb826ab1d0cce1738f1f4b6b8f392ee0c53b1d2572832451e53c3331139dbf2ca566cbfe78bc2507584130885f28f18ce1019130cbff4a17203c4624413ffa17f857864f31e98fd997d4671e0bfa5ba5ee44414754ef6f3a716fdee2c365c1655bfa2d3256abbfbe01a12354376394c1ed5627b95ab054416b23c3d2ab6e48762ef923458", @ANYBLOB="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", @ANYRESOCT=r7, @ANYBLOB='\x00'], 0x5fc}, 0x1, 0x0, 0x0, 0x20048841}, 0x4000080)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio1\x00', 0x101000, 0x0)
r11 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/psaux\x00', 0x68800, 0x0)
poll$auto(&(0x7f0000000000)={r11, 0x3, 0x4}, 0xb, 0x7)
ioctl$auto(0x3, 0x80044df9, 0x38)
r12 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/arp\x00', 0x60000, 0x0)
r13 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_options\x00', 0x2, 0x0)
write$auto_tracing_iter_fops_trace(r13, 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r12, &(0x7f0000000000)=""/223, 0xdf)
r14 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rxrpc/stats\x00', 0xaa102, 0x0)
write$auto(r12, 0x0, 0x100000000)
prlimit64$auto(0x0, 0x8, 0x0, &(0x7f0000002780)={0x80, 0x9})
read$auto_proc_reg_file_ops_compat_inode(r14, &(0x7f0000000140)=""/4085, 0xff5)

2.475516398s ago: executing program 0 (id=2093):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0)
ioctl$auto(r0, 0x81008003, 0x7)

2.40039442s ago: executing program 5 (id=2094):
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
setsockopt$auto(r0, 0x1, 0x34, 0x0, 0xb)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=ANY=[@ANYRESDEC=r1, @ANYRESOCT=r1, @ANYBLOB="010527bd7000fe0c7e6802"], 0x34}, 0x1, 0x0, 0x0, 0x4068811}, 0x80)
r2 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0)
r3 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$auto_ima_measure_policy_ops_ima_fs(r3, &(0x7f0000000080)="24abef9125eda23d480177235fe93e85e06a09", 0x13)
io_submit$auto(0x7, 0xb, &(0x7f0000000180)=&(0x7f0000000140)={0xfffffffffffffe01, 0x4, 0x7ff, 0x3a45, 0x6, r0, 0x5, 0x3, 0x7, 0x0, 0x2, <r4=>r3})
ioctl$auto_I2C_RETRIES(r2, 0x701, 0x4)
ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0x11b, 0xf}, 0xc, 0x0, 0x0, 0x8)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/set_event_notrace_pid\x00', 0x1, 0x0)
read$auto_uinput_fops_uinput(r4, &(0x7f0000000340)=""/138, 0x8a)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000011c0)='/sys/kernel/mm/hugepages/hugepages-2048kB/nr_overcommit_hugepages\x00', 0x8aa00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000300)=""/33, 0x21)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="1e0027"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
sethostname$auto(&(0x7f0000000000)='\xa6\x00', 0x3ff)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

2.32089883s ago: executing program 2 (id=2067):
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00{', @ANYRES16=0x0, @ANYBLOB="000326bd7000fedbdf2502000000080027000e0000000a0010"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/midi2\x00', 0x103341, 0x0)
r1 = socket(0x2, 0x80802, 0x0)
dup2$auto(r0, r1)
write$auto(r1, &(0x7f0000000000)='+*&(\'\x00', 0x1ff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0xa, 0x2, 0x88)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r4=>0x0})
r5 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x4, 0x1, r2, @relative_id=0x13, 0xe600}, 0xf)
close_range$auto(r3, 0xfffffffffffff000, 0x4000000000002)
mq_notify$auto(0x1, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x21, 0x2, 0x2)
syz_genetlink_get_family_id$auto_ila(&(0x7f0000000000), r5)
io_uring_setup$auto(0x6, 0x0)
ppoll$auto(&(0x7f0000003600)={0x8, 0x800, 0x1}, 0xd6, &(0x7f0000003640)={0x7fffffffffffffff, 0x489}, 0x0, 0x8)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
semctl$auto(0x1ff, 0x2, 0x13, 0x4)
write$auto(0xffffffffffffffff, 0x0, 0xc3)

2.139446121s ago: executing program 5 (id=2095):
openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim5/trap_flow_action_cookie\x00', 0x2202, 0x0)
mmap$auto(0x6, 0x7, 0x2000000000, 0x714, 0xfffffffffffffffa, 0x7fffffff)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r1 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x20000, 0x0)
read$auto_proc_mountinfo_operations_mnt_namespace(r1, &(0x7f0000000080)=""/4096, 0x1000)
read$auto(0x3, 0x0, 0x80)
r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), r3)
sendmsg$auto_CTRL_CMD_GETFAMILY(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="efff289d7000ffdbdf2503000000050002"], 0x1c}, 0x1, 0x0, 0x0, 0x20040880}, 0x800)
read$auto(r3, 0x0, 0x2005)
ioctl$auto(r2, 0x405c5503, 0x81)
close_range$auto(0x2, 0x8000, 0x0)
read$auto(r0, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.4/usb5/power/wakeup_active_count\x00', 0x400200, 0x0)

1.994152324s ago: executing program 0 (id=2096):
keyctl$auto(0x13, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x1a9382, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0)
r1 = openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x101001, 0x0)
write$auto_bm_entry_operations_binfmt_misc(r1, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x11, 0x3, 0x2)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x420402, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptyz0\x00', 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000006740), r3)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000007800)={0x0, 0x0, &(0x7f00000077c0)={&(0x7f0000006780)={0x14, r4, 0x9, 0x70bd28, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4000020}, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$sock_SIOCGIFINDEX(r2, 0x40045431, 0x0)
ioctl$auto(r0, 0x81008003, 0x7)

1.947833718s ago: executing program 5 (id=2097):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = getpgrp(0xffffffffffffffff)
r1 = prctl$auto(0x1000000003b, 0x1, r0, 0x6, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x2, 0x6, 0x0)
r2 = pipe$auto(0x0)
mmap$auto(0x0, 0x400009, 0xfffffffffffffffe, 0x9b72, 0xc76, 0x8000)
recvmmsg$auto(r2, 0x0, 0xfffd, 0x301, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r3, r3, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0)
landlock_restrict_self$auto(r3, 0x0)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
fsetxattr$auto(r1, &(0x7f0000000180)='/proc/scsi/sg/device_hdr\x00', &(0x7f00000001c0)="44b0a54e618774ea5dc061b833fa4518902cdf987d2e44887752294d9e84bee2c77710f39556efc053bebc85318ec14ea29b9025a0c0f38b916033792477c44f82c454886211b2442b", 0x34, 0xaa56)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/sg/device_hdr\x00', 0x0, 0x0)
r4 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @private=0xa010100}, 0x9)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000080)="907d7409ac77ac9230441d5471529b1e3651c13156f257cb6955838caef4a216366d1f7d9b498dc8a87b5864d027", 0x1a, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_GTP_CMD_ECHOREQ(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="79d594c2b4b0e8685894f85c3fe9e6b8dc172e2bc4bc941e7bb735a0309c0b5ff9b872b0d7845185f1dab5d33dd5c72fb154d93d7653c2d8360000000065fb72d81c639cb049e6e1bd55c77ebc1c1fafa216c9ac50431268f1a440d4372162b8b0504266ab55b34f6e1f021b846e800139fe15000e7a4c0f146e5214855cfe0ca06a8371ff34fdf080c3f1189954d9c860dba70bf2491e690e9704bd4939d839df09fcf81cb2956d297bd36b4af07555b9", @ANYRES16=r6, @ANYBLOB="030225bd7000ffdbdf25030000000800040000000000080001000100000008000200cd0d0000"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)
write$auto(0x3, 0x0, 0xfdf3)

1.906916765s ago: executing program 2 (id=2098):
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x400d0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000)
gettid()
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000002600), 0x82, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0xa, 0x2, 0x73)
sendmsg$auto_L2TP_CMD_SESSION_MODIFY(r1, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x24004001)
bind$auto(0x3, &(0x7f0000000040), 0x69)
select$auto(0x6d0c, 0x0, &(0x7f0000000100)={[0x0, 0x1ff, 0x800000000000008, 0xc, 0x9, 0xfffffffffffffff9, 0x6, 0x1, 0x400040009, 0x5e582972, 0x4000000000000000, 0x14, 0x93, 0xffffffffffffff17, 0x8, 0x8]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140), 0x55)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0xff, 0x0, 0x1, 0x3}, 0xed7138c}, 0xb, 0x0)
ioctl$auto_RTC_PIE_ON(r0, 0x7005, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
read$auto(r0, 0x0, 0xa2)
r2 = socket(0x1d, 0x2, 0x2)
sendmmsg$auto(r2, 0x0, 0x0, 0x7000038)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f0000000000)=0x10000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00@', @ANYRES16=0x0, @ANYBLOB="1b0026bd7000fddbdf2503000000040008000800038004001280"], 0x20}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket(0x10, 0x2, 0x4)
socket(0x10, 0x2, 0x0)

1.376915058s ago: executing program 4 (id=2099):
statx$auto(0x564, 0xfffffffffffffffc, 0x1000, 0x3, 0x0)
r0 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x7ff, 0x6, 0x9b72, 0x2, 0x80000000)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
setsockopt$auto(0x3, 0x0, 0x13, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040), 0x69)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x1e, 0x0, 0x8)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x188000, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
read$auto(0x3, 0x0, 0x3)
ioctl$auto_NVRAM_SETCKS(r0, 0x7041, 0x0)

1.08735543s ago: executing program 0 (id=2100):
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f00000003c0), 0x80, 0x0)

1.073412286s ago: executing program 5 (id=2101):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = io_uring_setup$auto(0x1, 0x0)
r1 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r1, 0x107, 0x1, 0x0, 0x8004)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x3, 0x6)
socket(0xa, 0x0, 0x73)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
clock_gettime$auto(0x1, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x9fe)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x10, 0x2, 0x0)
sendfile$auto(0x1, r3, 0x0, 0x11a4)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="1a00279e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
r4 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r0)
sendmsg$auto_OVS_VPORT_CMD_DEL(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x28, r4, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_NAME={0x9, 0x3, '-\'{/\x00'}, @OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0xfff}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000081}, 0x4000001)

913.042255ms ago: executing program 2 (id=2102):
mmap$auto(0x0, 0x4, 0x4000000000db, 0x40eb2, 0x4, 0x300000000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002a00)=ANY=[@ANYBLOB="fc940be0d3541c41dd9deee9937cad7671e0d4564cbf7b5da72852a2fb664f07036e6f1ba1c525d43ad27c1030b369740bde0f0f77be71473a0d23c7565012b4cf71b196328c4d97f7d0b10c381259f7991ef471428de803d73819893482b62c7387b79e16e23b71fd8e7a96", @ANYRES64=r0, @ANYRES64=r0, @ANYBLOB="d26c22064b6acb7e17ae7128303d952b6462d23c968ec5aef654c6758e4f180481ffe7830bd0033120a0b6b3549a0f86cfade47ce8892a1b803c0df8ee31fa9a223bd324aa2f1b33955288c2df2db3ba4e91805ff73321caaf76938f35521a97d2b1fa86dca4e3d2b9c2e3035d1a5eed139a7cdfc3ae0c00395eb343a02ec8a380a3ac76d6a880befa4e250e3f0245e0d451635cda4d494443830da564513d49cdd5d15447d7f6226d8685e9c4f444a42c13616f4c32dfb0ea8bf1d1b71a6e8e92990fc4f5f94be97d54c2b28ad6374c0e059a4d40559a07ce909acbd5", @ANYRES64=r0, @ANYBLOB="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", @ANYRESDEC=r0, @ANYRESOCT=r0, @ANYRES16=r0, @ANYRESOCT=r0], 0x101c}, 0x1, 0x0, 0x0, 0x40010}, 0x8800)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
mmap$auto(0x4, 0x2, 0x4001000000e1, 0x13, r1, 0x800000000008000)
sendmsg$auto_NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x3e}, 0x1, 0x0, 0x0, 0x804}, 0x8010)
sendmsg$auto_NFC_CMD_GET_SE(r0, 0x0, 0x90)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/pid_for_children\x00')
fstat$auto(r2, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x2000c, 0xdf, 0xeb1, 0x40000000000a5, 0x8002)
ioperm$auto(0x7, 0x6, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f00000029c0)='/sys/kernel/debug/tracing/per_cpu/cpu0/buffer_size_kb\x00', 0x181041, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
socket(0xa, 0x801, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x14, 0x0, 0x1)

717.640629ms ago: executing program 0 (id=2103):
mmap$auto(0x0, 0x2020009, 0x3, 0x10, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x4, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
io_uring_enter$auto(0x3, 0x0, 0x1, 0x3, 0x0, 0x2)
io_uring_enter$auto(0x3, 0x7, 0x2688, 0xe, 0x0, 0x7)

688.075395ms ago: executing program 2 (id=2104):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd12\x00', 0x8001, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x82000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x6)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x20018010)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x118)
socket(0x2, 0x1, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000001c0), 0x55)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb0, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x2, 0xfffffffffffefffd, 0x17)
mmap$auto(0x200000, 0x400008, 0xdf, 0x19, 0x2, 0x80000000008000)
mmap$auto(0x2, 0x10008, 0x3ff57696, 0x9b75, 0x5, 0x6)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0x80000001, 0x8)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

565.156004ms ago: executing program 5 (id=2105):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000003640)='/proc/self/numa_maps\x00', 0x40080, 0x0)
preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x8}, 0x4, 0x800, 0x1, 0x0)

395.040328ms ago: executing program 4 (id=2106):
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00{', @ANYRES16=0x0, @ANYBLOB="000326bd7000fedbdf2502000000080027000e0000000a0010"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/midi2\x00', 0x103341, 0x0)
r1 = socket(0x2, 0x80802, 0x0)
dup2$auto(r0, r1)
write$auto(r1, &(0x7f0000000000)='+*&(\'\x00', 0x1ff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0xa, 0x2, 0x88)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r4=>0x0})
r5 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x4, 0x1, r2, @relative_id=0x13, 0xe600}, 0xf)
close_range$auto(r3, 0xfffffffffffff000, 0x4000000000002)
mq_notify$auto(0x1, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x21, 0x2, 0x2)
syz_genetlink_get_family_id$auto_ila(&(0x7f0000000000), r5)
io_uring_setup$auto(0x6, 0x0)
ppoll$auto(&(0x7f0000003600)={0x8, 0x800, 0x1}, 0xd6, &(0x7f0000003640)={0x7fffffffffffffff, 0x489}, 0x0, 0x8)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
semctl$auto(0x1ff, 0x2, 0x13, 0x4)
write$auto(0xffffffffffffffff, 0x0, 0xc3)

324.640482ms ago: executing program 5 (id=2107):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'macsec0\x00', <r2=>0x0})
sendmsg$auto_MACSEC_CMD_DEL_TXSA(r0, &(0x7f00000056c0)={0x0, 0x0, &(0x7f0000005680)={&(0x7f0000000200)={0x34, r1, 0xbb484b3ccf0b22b, 0x70bd2b, 0x25dfdbfc, {}, [@MACSEC_ATTR_SA_CONFIG={0x18, 0x3, 0x0, 0x1, [@typed={0x14, 0x1, 0x0, 0x0, @ipv6=@empty}]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r2}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000050}, 0x40094)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x106)
setsockopt$auto(0x3, 0x1, 0x10, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r5, <r6=>0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'pimreg0\x00', <r7=>0x0})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r10=>0x0})
sendmsg$auto_BATADV_CMD_GET_HARDIF(r8, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000040)={0x1c, r9, 0x13ebbac2338983f3, 0x70b927, 0x25dfdbfe, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r10}]}, 0x1c}}, 0x4008000)
r11 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r6)
sendmsg$auto_NL80211_CMD_SET_POWER_SAVE(r6, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r11, 0x200, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_AP_ISOLATE={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8004)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'vlan1\x00', <r12=>0x0})
sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000140)={&(0x7f00000009c0)=ANY=[@ANYBLOB="14020000", @ANYRES16=r3, @ANYBLOB="000125bd7000fcdbdf25130000004800018008000100", @ANYRES32=r5, @ANYBLOB="080003000100000008000100", @ANYRES32=r2, @ANYBLOB="0800030040000000080003000900000008000100", @ANYRES32=r2, @ANYBLOB="1400020073797a5f74756e0000000000000000002400018008000100", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r7, @ANYBLOB="680001800800030017d8000008000100", @ANYRES32=r2, @ANYBLOB="1400020076657468305f746f5f6272696467650008000100", @ANYRES32=r2, @ANYBLOB="0800030099f2000014000200776c616e300000000000000000000000140002006c6f000000000000000000000000000008000100", @ANYRES32=r10, @ANYBLOB="6000018014000200766c616e31000000000000000000000008000100", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB="0800030008000000140002006970366772657461703000000000000014000200766c616e30000000000000000000000008000100", @ANYRES32=r2, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB="140002006272696467655f736c6176655f30000008000100", @ANYRES32=r2, @ANYBLOB="0800030000000000140002006261746164765f736c6176655f310000140002006e7230000000000000000000000000000c00018008000100", @ANYRES32=r2, @ANYBLOB="18000180140002006e657464657673696d300000000000004800018008000100", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r12, @ANYBLOB="140002006970366772653000000000000000000008000100", @ANYRES32=r2, @ANYBLOB="080003000002000008000100", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB], 0x214}, 0x1, 0x0, 0x0, 0x1}, 0x4000000)

230.048103ms ago: executing program 0 (id=2108):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x100000000, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
stat$auto(0x0, 0x0)
madvise$auto(0x0, 0x2003f0, 0x11)
ioctl$auto_RNDZAPENTCNT(0xffffffffffffffff, 0x5204, 0x0)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x8, 0x300000000000)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
r0 = io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8000, 0x0)
ioctl$auto(0x3, 0xc0481273, 0x38)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x5, 0x1ff, 0x7, 0x5, 0x4909b6f8, 0x1ffdd, 0x5, 0x3, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x6, 0x10003, 0x4080, 0x4, 0x0, 0x7, 0x2000, 0x200, 0x8001, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x1000002000, 0x0, 0x5, 0x70624ce7, 0xefde, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x7, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0xee, 0xfffffffffffffffd, 0x400000000005b4, 0x8, 0x0, 0x0, 0x0, 0x6, 0xffffffffbfffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0xb, 0xa38, 0x0, 0x6, 0xfffffffffffffffc, 0x2, 0x3, 0x4, 0x0, 0x9]}, 0x1fe, 0xd)
r2 = socket(0x10, 0x2, 0x1)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x1ff, 0x7, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x200000000001, 0xb4, 0x9, 0x8, 0x10006, 0x4000080, 0x0, 0x0, 0xe, 0x22000, 0x200, 0x0, 0x84, [0x3, 0x2, 0x0, 0x2, 0x0, 0x2000, 0x0, 0xe, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x8, 0x0, 0x2, 0x0, 0xfffffffffffbfffd, 0x2000000000000004, 0x10000000000001, 0x10000000000, 0xffffffffffffffff, 0x4, 0xfffffffffffffe00, 0x0, 0xfffffffffffffffc, 0x5, 0x400000000005b8, 0xffff, 0x0, 0x100, 0x0, 0x6, 0x2, 0x88e, 0x40, 0xfffffffffffffffc, 0x8, 0xa38, 0x0, 0x3, 0xfffffffffffffffc, 0x2, 0x8, 0x7, 0xc567]}, 0x1fe, 0xd)
r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffffffffffd0a, &(0x7f00000001c0))
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYRES16=r2, @ANYRESOCT=r1, @ANYRESHEX=r0, @ANYRES16=r2, @ANYRESOCT=r1, @ANYRESDEC=r2, @ANYRESOCT=r2, @ANYRESHEX=r1, @ANYBLOB="1c1600990353513648c0ea8f174af65d6a7fc16f7be362dff7e33c6f96dbd80459"], 0x1ac}}, 0x40000)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x101300, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000040)=""/192, 0xc0)
read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000100)=""/31, 0x1f)
recvmmsg$auto(r2, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000000), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
keyctl$auto(0xf, 0xfffffffffffffffe, 0x6, 0x80, 0x401)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/keys\x00', 0x8340, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r5, &(0x7f0000001700)=""/4096, 0x1000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x107601, 0x0)
ioctl$auto(0x3, 0x1276, 0x7)

73.706948ms ago: executing program 4 (id=2109):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x9cb, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4001, @loopback}, 0x6b)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
close_range$auto(0x2, 0x8, 0x0)
fanotify_init$auto(0x5, 0x2000000000002)
socket(0x2, 0x801, 0x100)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xc018aec0, 0x0)

0s ago: executing program 2 (id=2110):
socket(0xa, 0x4, 0xfffffffc)
mmap$auto(0x0, 0xe982, 0x8, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
setgroups$auto(0xe32, &(0x7f0000000040)=0x9)
madvise$auto(0x0, 0x53, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
pselect6$auto(0x101, &(0x7f0000000080)={[0x6, 0x7, 0xffffffffffffffff, 0x3, 0x1, 0x6, 0x9, 0x7, 0x1, 0x4, 0x9, 0x4, 0x4, 0x7, 0xcb2a, 0x9]}, &(0x7f0000000100)={[0xffff, 0x3, 0xfffffffffffff31a, 0x7, 0x590, 0x8, 0x1d4, 0x4, 0x6, 0x7, 0x5, 0x7, 0x80, 0x8, 0x0, 0x1]}, 0x0, &(0x7f0000000000)={0x899, 0x5}, &(0x7f0000000200))
mremap$auto(0x1fc000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)
ppoll$auto(&(0x7f0000000280)={0xffffffffffffffff, 0x6, 0x9}, 0x9, &(0x7f00000002c0)={0x8000000000000001, 0x8001}, &(0x7f0000000300)={0x7ff}, 0x8)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00T\x00'/40, 0x9)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2a, 0x1, 0x4)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r0 = socket(0x2, 0x801, 0x106)
getsockopt$auto(r0, 0x11c, 0x3, 0x0, 0x0)
r1 = socket(0x2a, 0x3, 0x3a)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r1)
r4 = gettid()
sendmsg$auto_NL802154_CMD_DISASSOCIATE(r2, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\t\x00', @ANYRES16=r3, @ANYBLOB="000227bd7000fcdbdf2529000000050007000700000005001f000800000008000b0090c18f1508001c00", @ANYRES32=r4, @ANYBLOB="080021000d00689aca0eec5c065c6800"], 0x44}}, 0x859)
ioctl$auto(0x1, 0x8983, 0x4)
recvfrom$auto(0xffffffffffffffff, &(0x7f0000000040), 0x9, 0x3, 0x0, 0x0)

kernel console output (not intermixed with test programs):

 1
[   97.588314][ T6329] CPU: 0 UID: 0 PID: 6329 Comm: syz.0.129 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   97.598963][ T6329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   97.609046][ T6329] Call Trace:
[   97.612347][ T6329]  <TASK>
[   97.615298][ T6329]  dump_stack_lvl+0x16c/0x1f0
[   97.620011][ T6329]  should_fail_ex+0x497/0x5b0
[   97.624726][ T6329]  ? fs_reclaim_acquire+0xae/0x150
[   97.629875][ T6329]  should_fail_alloc_page+0xe7/0x130
[   97.635205][ T6329]  prepare_alloc_pages.constprop.0+0x16f/0x560
[   97.641397][ T6329]  __alloc_pages_noprof+0x190/0x25b0
[   97.646720][ T6329]  ? __pfx_lock_release+0x10/0x10
[   97.651769][ T6329]  ? rcu_is_watching+0x12/0xc0
[   97.656573][ T6329]  ? mark_held_locks+0x9f/0xe0
[   97.661381][ T6329]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   97.667136][ T6329]  ? hlock_class+0x4e/0x130
[   97.671674][ T6329]  ? __lock_acquire+0xcc5/0x3c40
[   97.676663][ T6329]  ? __pfx___lock_acquire+0x10/0x10
[   97.681903][ T6329]  ? __pfx___lock_acquire+0x10/0x10
[   97.687140][ T6329]  ? __pfx_mark_lock+0x10/0x10
[   97.691943][ T6329]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   97.697870][ T6329]  ? policy_nodemask+0xea/0x4e0
[   97.702764][ T6329]  alloc_pages_mpol_noprof+0x2c9/0x610
[   97.708269][ T6329]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   97.714291][ T6329]  ? __mutex_trylock_common+0xea/0x250
[   97.719779][ T6329]  ? __pfx___mutex_trylock_common+0x10/0x10
[   97.725696][ T6329]  ? usb_device_read+0x1ec/0x330
[   97.730672][ T6329]  get_free_pages_noprof+0xc/0x40
[   97.735721][ T6329]  usb_device_dump+0xcf/0x2460
[   97.740517][ T6329]  ? __mutex_lock+0x1cc/0xa60
[   97.745234][ T6329]  ? idr_get_next_ul+0x197/0x2e0
[   97.750385][ T6329]  ? usb_device_read+0x1ec/0x330
[   97.755356][ T6329]  ? __pfx___mutex_lock+0x10/0x10
[   97.760403][ T6329]  ? idr_get_next+0xed/0x150
[   97.765010][ T6329]  usb_device_read+0x22b/0x330
[   97.769793][ T6329]  ? __pfx_usb_device_read+0x10/0x10
[   97.775103][ T6329]  ? debugfs_file_get+0x21c/0x5c0
[   97.780154][ T6329]  ? __pfx_debugfs_file_get+0x10/0x10
[   97.785551][ T6329]  full_proxy_read+0xfb/0x1b0
[   97.790248][ T6329]  ? __pfx_full_proxy_read+0x10/0x10
[   97.795551][ T6329]  vfs_read+0x1df/0xbe0
[   97.799719][ T6329]  ? __fget_files+0x1fc/0x3a0
[   97.804407][ T6329]  ? __pfx___mutex_lock+0x10/0x10
[   97.809445][ T6329]  ? __pfx_vfs_read+0x10/0x10
[   97.814140][ T6329]  ? __fget_files+0x206/0x3a0
[   97.818832][ T6329]  ksys_read+0x12b/0x250
[   97.823078][ T6329]  ? __pfx_ksys_read+0x10/0x10
[   97.827860][ T6329]  do_syscall_64+0xcd/0x250
[   97.832373][ T6329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.838276][ T6329] RIP: 0033:0x7f00ad985d29
[   97.842693][ T6329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.862302][ T6329] RSP: 002b:00007f00ae872038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   97.870722][ T6329] RAX: ffffffffffffffda RBX: 00007f00adb75fa0 RCX: 00007f00ad985d29
[   97.878708][ T6329] RDX: 000000000000647f RSI: 0000000020000080 RDI: 0000000000000003
[   97.886863][ T6329] RBP: 00007f00ae872090 R08: 0000000000000000 R09: 0000000000000000
[   97.894848][ T6329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.902875][ T6329] R13: 0000000000000000 R14: 00007f00adb75fa0 R15: 00007ffec402ce18
[   97.910873][ T6329]  </TASK>
[   98.174341][ T6337] netlink: 'syz.0.134': attribute type 23 has an invalid length.
[   99.838548][ T6380] FAULT_INJECTION: forcing a failure.
[   99.838548][ T6380] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   99.854706][ T6380] CPU: 0 UID: 0 PID: 6380 Comm: syz.3.148 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   99.865353][ T6380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   99.875439][ T6380] Call Trace:
[   99.878736][ T6380]  <TASK>
[   99.881729][ T6380]  dump_stack_lvl+0x16c/0x1f0
[   99.886446][ T6380]  should_fail_ex+0x497/0x5b0
[   99.891168][ T6380]  _copy_to_user+0x32/0xd0
[   99.895628][ T6380]  simple_read_from_buffer+0xd0/0x160
[   99.901046][ T6380]  proc_fail_nth_read+0x198/0x270
[   99.906225][ T6380]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   99.911819][ T6380]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   99.917404][ T6380]  vfs_read+0x1df/0xbe0
[   99.921594][ T6380]  ? __fget_files+0x1fc/0x3a0
[   99.926285][ T6380]  ? __pfx___mutex_lock+0x10/0x10
[   99.931336][ T6380]  ? __pfx_vfs_read+0x10/0x10
[   99.936037][ T6380]  ? __fget_files+0x206/0x3a0
[   99.940735][ T6380]  ksys_read+0x12b/0x250
[   99.945004][ T6380]  ? __pfx_ksys_read+0x10/0x10
[   99.949789][ T6380]  do_syscall_64+0xcd/0x250
[   99.954312][ T6380]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.960223][ T6380] RIP: 0033:0x7f56d098473c
[   99.964651][ T6380] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   99.984267][ T6380] RSP: 002b:00007f56d1824030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   99.992689][ T6380] RAX: ffffffffffffffda RBX: 00007f56d0b75fa0 RCX: 00007f56d098473c
[  100.000665][ T6380] RDX: 000000000000000f RSI: 00007f56d18240a0 RDI: 0000000000000004
[  100.008638][ T6380] RBP: 00007f56d1824090 R08: 0000000000000000 R09: 0000000000000000
[  100.016620][ T6380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.024596][ T6380] R13: 0000000000000000 R14: 00007f56d0b75fa0 R15: 00007fffe9c266c8
[  100.032582][ T6380]  </TASK>
[  101.073230][ T6405] netlink: 8 bytes leftover after parsing attributes in process `syz.2.158'.
[  101.122583][ T6405] netlink: 8 bytes leftover after parsing attributes in process `syz.2.158'.
[  101.557298][ T6420] netlink: 8 bytes leftover after parsing attributes in process `syz.0.163'.
[  101.567743][ T6420] netlink: 8 bytes leftover after parsing attributes in process `syz.0.163'.
[  101.755728][ T6427] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  102.169103][ T6439] FAULT_INJECTION: forcing a failure.
[  102.169103][ T6439] name failslab, interval 1, probability 0, space 0, times 0
[  102.219869][ T6439] CPU: 1 UID: 0 PID: 6439 Comm: syz.1.169 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  102.230521][ T6439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  102.240608][ T6439] Call Trace:
[  102.243911][ T6439]  <TASK>
[  102.246871][ T6439]  dump_stack_lvl+0x16c/0x1f0
[  102.251604][ T6439]  should_fail_ex+0x497/0x5b0
[  102.256320][ T6439]  ? fs_reclaim_acquire+0xae/0x150
[  102.261475][ T6439]  should_failslab+0xc2/0x120
[  102.266194][ T6439]  __kmalloc_noprof+0xce/0x4f0
[  102.271001][ T6439]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  102.276663][ T6439]  ? tomoyo_realpath_from_path+0xbf/0x710
[  102.282429][ T6439]  tomoyo_realpath_from_path+0xbf/0x710
[  102.288021][ T6439]  ? tomoyo_path_number_perm+0x235/0x5b0
[  102.293700][ T6439]  tomoyo_path_number_perm+0x248/0x5b0
[  102.299203][ T6439]  ? tomoyo_path_number_perm+0x235/0x5b0
[  102.304885][ T6439]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  102.310944][ T6439]  ? __pfx_lock_release+0x10/0x10
[  102.316012][ T6439]  ? trace_lock_acquire+0x14e/0x1f0
[  102.321255][ T6439]  ? lock_acquire+0x2f/0xb0
[  102.325787][ T6439]  ? __fget_files+0x40/0x3a0
[  102.330428][ T6439]  ? __fget_files+0x206/0x3a0
[  102.335147][ T6439]  security_file_ioctl+0x9b/0x240
[  102.340206][ T6439]  __x64_sys_ioctl+0xb7/0x200
[  102.344918][ T6439]  do_syscall_64+0xcd/0x250
[  102.349458][ T6439]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.355386][ T6439] RIP: 0033:0x7f4b2f385d29
[  102.359834][ T6439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.379489][ T6439] RSP: 002b:00007f4b301bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  102.387934][ T6439] RAX: ffffffffffffffda RBX: 00007f4b2f575fa0 RCX: 00007f4b2f385d29
[  102.395935][ T6439] RDX: 0000000020000900 RSI: 00000000000089b1 RDI: 0000000000000003
[  102.403932][ T6439] RBP: 00007f4b301bf090 R08: 0000000000000000 R09: 0000000000000000
[  102.411925][ T6439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  102.419921][ T6439] R13: 0000000000000000 R14: 00007f4b2f575fa0 R15: 00007ffcc04038b8
[  102.427936][ T6439]  </TASK>
[  102.443842][ T6439] ERROR: Out of memory at tomoyo_realpath_from_path.
[  104.389945][ T6491] netlink: 4 bytes leftover after parsing attributes in process `syz.2.187'.
[  105.368477][ T6441] Process accounting paused
[  105.493915][ T6521] netlink: 4 bytes leftover after parsing attributes in process `syz.0.197'.
[  105.523643][ T6521] netlink: 4 bytes leftover after parsing attributes in process `syz.0.197'.
[  107.196900][ T6572] netlink: 334 bytes leftover after parsing attributes in process `syz.3.210'.
[  107.586022][ T6580] netlink: 8 bytes leftover after parsing attributes in process `syz.0.217'.
[  107.754662][ T6586] mmap: syz.2.219 (6586) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  107.963274][ T6596] raw_sendmsg: syz.0.222 forgot to set AF_INET. Fix it!
[  108.494592][ T6595] can0: slcan on ptm0.
[  108.911978][ T6595] can0 (unregistered): slcan off ptm0.
[  109.742512][ T6650] RDS: rds_bind could not find a transport for ::ffff:172.30.65.2, load rds_tcp or rds_rdma?
[  109.812065][ T6654] FAULT_INJECTION: forcing a failure.
[  109.812065][ T6654] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.891837][ T6654] CPU: 0 UID: 0 PID: 6654 Comm: syz.3.231 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  109.902488][ T6654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  109.912577][ T6654] Call Trace:
[  109.915892][ T6654]  <TASK>
[  109.918857][ T6654]  dump_stack_lvl+0x16c/0x1f0
[  109.923576][ T6654]  should_fail_ex+0x497/0x5b0
[  109.928297][ T6654]  _copy_from_user+0x2e/0xd0
[  109.932932][ T6654]  copy_msghdr_from_user+0x99/0x160
[  109.938175][ T6654]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  109.944034][ T6654]  ___sys_sendmsg+0xff/0x1e0
[  109.948667][ T6654]  ? __pfx____sys_sendmsg+0x10/0x10
[  109.953924][ T6654]  ? __pfx_lock_release+0x10/0x10
[  109.958975][ T6654]  ? trace_lock_acquire+0x14e/0x1f0
[  109.964213][ T6654]  ? __fget_files+0x206/0x3a0
[  109.968930][ T6654]  __sys_sendmsg+0x16e/0x220
[  109.973559][ T6654]  ? __pfx___sys_sendmsg+0x10/0x10
[  109.978731][ T6654]  do_syscall_64+0xcd/0x250
[  109.983283][ T6654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.989215][ T6654] RIP: 0033:0x7f56d0985d29
[  109.993656][ T6654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.013298][ T6654] RSP: 002b:00007f56d1824038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  110.021752][ T6654] RAX: ffffffffffffffda RBX: 00007f56d0b75fa0 RCX: 00007f56d0985d29
[  110.029758][ T6654] RDX: 0000000020000000 RSI: 00000000200008c0 RDI: 0000000000000003
[  110.037761][ T6654] RBP: 00007f56d1824090 R08: 0000000000000000 R09: 0000000000000000
[  110.045765][ T6654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.053770][ T6654] R13: 0000000000000000 R14: 00007f56d0b75fa0 R15: 00007fffe9c266c8
[  110.061786][ T6654]  </TASK>
[  110.897163][ T6683] netlink: 4 bytes leftover after parsing attributes in process `syz.0.243'.
[  110.924827][ T6683] netlink: 4 bytes leftover after parsing attributes in process `syz.0.243'.
[  111.609304][ T6703] netlink: 4 bytes leftover after parsing attributes in process `syz.1.249'.
[  111.988407][ T6713] netlink: 130 bytes leftover after parsing attributes in process `syz.0.256'.
[  112.332888][ T6724] netlink: 4 bytes leftover after parsing attributes in process `syz.2.259'.

syzkaller
syzkaller login: [  114.824545][ T6758] FAULT_INJECTION: forcing a failure.
[  114.824545][ T6758] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  114.830799][ T6760] netlink: 28 bytes leftover after parsing attributes in process `syz.2.271'.
[  114.918401][ T6758] CPU: 1 UID: 0 PID: 6758 Comm: syz.1.270 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  114.929059][ T6758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  114.939143][ T6758] Call Trace:
[  114.942448][ T6758]  <TASK>
[  114.945404][ T6758]  dump_stack_lvl+0x16c/0x1f0
[  114.950121][ T6758]  should_fail_ex+0x497/0x5b0
[  114.954839][ T6758]  _copy_from_user+0x2e/0xd0
[  114.959469][ T6758]  vt_ioctl+0x2396/0x2fd0
[  114.963831][ T6758]  ? __pfx_vt_ioctl+0x10/0x10
[  114.968531][ T6758]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  114.974194][ T6758]  ? tomoyo_path_number_perm+0x190/0x5b0
[  114.979841][ T6758]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  114.985839][ T6758]  ? do_vfs_ioctl+0x513/0x1950
[  114.990616][ T6758]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  114.996518][ T6758]  ? tty_jobctrl_ioctl+0x152/0xe00
[  115.001634][ T6758]  ? __pfx_vt_ioctl+0x10/0x10
[  115.006320][ T6758]  tty_ioctl+0x651/0x1640
[  115.010663][ T6758]  ? __pfx_tty_ioctl+0x10/0x10
[  115.015445][ T6758]  ? __pfx_lock_release+0x10/0x10
[  115.020475][ T6758]  ? trace_lock_acquire+0x14e/0x1f0
[  115.025697][ T6758]  ? __fget_files+0x206/0x3a0
[  115.030384][ T6758]  ? __pfx_tty_ioctl+0x10/0x10
[  115.035161][ T6758]  __x64_sys_ioctl+0x190/0x200
[  115.039930][ T6758]  do_syscall_64+0xcd/0x250
[  115.044444][ T6758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.050347][ T6758] RIP: 0033:0x7f4b2f385d29
[  115.054765][ T6758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.074373][ T6758] RSP: 002b:00007f4b301bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  115.082793][ T6758] RAX: ffffffffffffffda RBX: 00007f4b2f575fa0 RCX: 00007f4b2f385d29
[  115.090765][ T6758] RDX: 000000000000d2d7 RSI: 000000000000560e RDI: 0000000000000002
[  115.098738][ T6758] RBP: 00007f4b301bf090 R08: 0000000000000000 R09: 0000000000000000
[  115.106712][ T6758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.114686][ T6758] R13: 0000000000000000 R14: 00007f4b2f575fa0 R15: 00007ffcc04038b8
[  115.122670][ T6758]  </TASK>
[  115.366603][ T6760] team0: Port device team_slave_0 removed
[  116.072587][ T6779] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  117.077461][ T6796] erspan0: entered allmulticast mode
[  133.088972][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  133.102264][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  133.285273][ T6557] syz.3.208 (6557) used greatest stack depth: 19328 bytes left
[  134.381639][ T6564] syz.3.208 (6564) used greatest stack depth: 19184 bytes left
[  134.400333][ T6563] syz.3.208 (6563) used greatest stack depth: 18768 bytes left
[  136.383338][ T7015] Process accounting resumed
[  139.155355][ T7074] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  139.162114][ T7074] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  139.177281][ T7074] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  139.187323][ T7074] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  139.193479][ T7074] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  139.200510][ T7074] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  139.214961][ T7074] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  139.222644][ T7074] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  139.236377][ T7074] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  139.250062][ T7074] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  139.256237][ T7074] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  139.263273][ T7074] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  140.444548][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout
[  141.243958][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout
[  141.244008][   T54] Bluetooth: hci2: command 0x0c1a tx timeout
[  141.324831][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[  142.523890][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[  143.325370][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[  143.329587][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout
[  143.403832][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout
[  143.471942][ T7146] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  143.505150][ T7146] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  143.511310][ T7146] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  143.524113][ T7146] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  145.512963][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout
[  145.563976][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout
[  145.566287][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[  145.570006][ T5842] Bluetooth: hci2: command 0x0c1a tx timeout
[  148.554329][ T7242] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  148.564148][ T7242] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  148.576994][ T7242] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  148.594101][ T7242] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  148.884601][ T7261] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  148.896601][ T7261] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  148.916000][ T7261] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  148.940272][ T7261] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  150.527989][ T7285] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  150.924036][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[  150.925095][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout
[  150.936918][ T7294] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  150.944824][ T7294] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  150.951770][ T7294] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  150.990314][ T7294] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  153.003992][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout
[  153.004034][   T54] Bluetooth: hci2: command 0x0c1a tx timeout
[  153.010889][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout
[  153.023015][ T5842] Bluetooth: hci3: command 0x0c1a tx timeout
[  158.449399][ T7404] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  158.455612][ T7404] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  158.461670][ T7404] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  158.467882][ T7404] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  159.804045][ T5842] Bluetooth: hci1: command 0x0c1a tx timeout
[  160.533886][ T5842] Bluetooth: hci3: command 0x0c1a tx timeout
[  160.534047][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout
[  160.539948][ T5842] Bluetooth: hci2: command 0x0c1a tx timeout
[  161.883214][ T7458] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  161.889476][ T7458] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  161.896206][ T7458] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  161.902213][ T7458] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  163.163957][ T5842] Bluetooth: hci1: command 0x0c1a tx timeout
[  163.964247][ T5842] Bluetooth: hci3: command 0x0c1a tx timeout
[  163.964973][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout
[  163.970319][ T5842] Bluetooth: hci2: command 0x0c1a tx timeout
[  167.094510][ T7510] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  167.100638][ T7510] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  167.114379][ T7510] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  167.134172][ T7510] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  167.230950][ T7510] Process accounting paused
[  168.363988][ T5842] Bluetooth: hci1: command 0x0c1a tx timeout
[  169.164720][ T5842] Bluetooth: hci3: command 0x0c1a tx timeout
[  169.170827][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout
[  169.177653][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout
[  170.192041][ T7558] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  170.211022][ T7558] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  170.237725][ T7558] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  170.257983][ T7558] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  171.483933][ T5842] Bluetooth: hci1: command 0x0c1a tx timeout
[  172.293997][ T5842] Bluetooth: hci3: command 0x0c1a tx timeout
[  172.300119][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout
[  172.306185][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout
[  174.445151][ T7620] netlink: 4 bytes leftover after parsing attributes in process `syz.2.540'.
[  177.661255][ T7660] netlink: 4 bytes leftover after parsing attributes in process `syz.0.543'.
[  183.023543][ T7702] netlink: 4 bytes leftover after parsing attributes in process `syz.3.555'.
[  186.788852][ T7741] netlink: 4 bytes leftover after parsing attributes in process `syz.1.566'.
[  191.296143][ T7815] netlink: 28 bytes leftover after parsing attributes in process `syz.1.588'.
[  192.255882][ T7837] FAULT_INJECTION: forcing a failure.
[  192.255882][ T7837] name failslab, interval 1, probability 0, space 0, times 0
[  192.343899][ T7837] CPU: 0 UID: 0 PID: 7837 Comm: syz.3.597 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  192.354561][ T7837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  192.364651][ T7837] Call Trace:
[  192.367958][ T7837]  <TASK>
[  192.370913][ T7837]  dump_stack_lvl+0x16c/0x1f0
[  192.375638][ T7837]  should_fail_ex+0x497/0x5b0
[  192.380351][ T7837]  ? fs_reclaim_acquire+0xae/0x150
[  192.385498][ T7837]  should_failslab+0xc2/0x120
[  192.390216][ T7837]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  192.395627][ T7837]  ? is_bpf_text_address+0x30/0x1a0
[  192.400877][ T7837]  ? ptlock_alloc+0x1f/0x70
[  192.405423][ T7837]  ptlock_alloc+0x1f/0x70
[  192.409790][ T7837]  pte_alloc_one+0x74/0x390
[  192.414325][ T7837]  do_pte_missing+0x1ae7/0x3e00
[  192.419226][ T7837]  __handle_mm_fault+0x103c/0x2a40
[  192.424387][ T7837]  ? __pfx___handle_mm_fault+0x10/0x10
[  192.429887][ T7837]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  192.435566][ T7837]  ? find_vma+0xc0/0x140
[  192.439841][ T7837]  ? __pfx_find_vma+0x10/0x10
[  192.444565][ T7837]  handle_mm_fault+0x3fa/0xaa0
[  192.449373][ T7837]  do_user_addr_fault+0x7a3/0x13f0
[  192.454520][ T7837]  exc_page_fault+0x5c/0xc0
[  192.459055][ T7837]  asm_exc_page_fault+0x26/0x30
[  192.464218][ T7837] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  192.470155][ T7837] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  192.489808][ T7837] RSP: 0018:ffffc900043bf7e8 EFLAGS: 00050206
[  192.495922][ T7837] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00000000000000c4
[  192.503927][ T7837] RDX: ffffed1005c47799 RSI: 0000000000000000 RDI: ffff88802e23bc00
[  192.511929][ T7837] RBP: ffffc900043bfd60 R08: 0000000000000001 R09: ffffed1005c47798
[  192.519936][ T7837] R10: ffff88802e23bcc3 R11: 0000000000000000 R12: 00000000000000c4
[  192.527977][ T7837] R13: 00007ffffffff000 R14: ffff88802e23bc00 R15: 00000000000000c4
[  192.536010][ T7837]  _copy_from_iter+0x384/0x1400
[  192.540915][ T7837]  ? trace_lock_acquire+0x14e/0x1f0
[  192.546167][ T7837]  ? __alloc_skb+0x200/0x380
[  192.550804][ T7837]  ? __pfx__copy_from_iter+0x10/0x10
[  192.556133][ T7837]  ? __virt_addr_valid+0x1a4/0x590
[  192.561283][ T7837]  ? __virt_addr_valid+0x5e/0x590
[  192.566353][ T7837]  ? __phys_addr_symbol+0x30/0x80
[  192.571425][ T7837]  ? __check_object_size+0x488/0x710
[  192.576771][ T7837]  netlink_sendmsg+0x813/0xd70
[  192.581581][ T7837]  ? __pfx_netlink_sendmsg+0x10/0x10
[  192.586919][ T7837]  ____sys_sendmsg+0x9ae/0xb40
[  192.591726][ T7837]  ? copy_msghdr_from_user+0x10b/0x160
[  192.597233][ T7837]  ? __pfx_____sys_sendmsg+0x10/0x10
[  192.602558][ T7837]  ? __lock_acquire+0xcc5/0x3c40
[  192.607559][ T7837]  ___sys_sendmsg+0x135/0x1e0
[  192.612284][ T7837]  ? __pfx____sys_sendmsg+0x10/0x10
[  192.617538][ T7837]  ? trace_lock_acquire+0x14e/0x1f0
[  192.622800][ T7837]  __sys_sendmmsg+0x201/0x420
[  192.627529][ T7837]  ? __pfx___sys_sendmmsg+0x10/0x10
[  192.632778][ T7837]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  192.638822][ T7837]  ? fput+0x67/0x440
[  192.642768][ T7837]  ? ksys_write+0x1ba/0x250
[  192.647317][ T7837]  ? __pfx_ksys_write+0x10/0x10
[  192.652328][ T7837]  __x64_sys_sendmmsg+0x9c/0x100
[  192.657315][ T7837]  ? lockdep_hardirqs_on+0x7c/0x110
[  192.662550][ T7837]  do_syscall_64+0xcd/0x250
[  192.667096][ T7837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.673025][ T7837] RIP: 0033:0x7f56d0985d29
[  192.677476][ T7837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.697126][ T7837] RSP: 002b:00007f56d1824038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  192.705575][ T7837] RAX: ffffffffffffffda RBX: 00007f56d0b75fa0 RCX: 00007f56d0985d29
[  192.713578][ T7837] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003
[  192.721582][ T7837] RBP: 00007f56d1824090 R08: 0000000000000000 R09: 0000000000000000
[  192.729583][ T7837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  192.737583][ T7837] R13: 0000000000000000 R14: 00007f56d0b75fa0 R15: 00007fffe9c266c8
[  192.745599][ T7837]  </TASK>
[  193.167291][ T7847] syz.3.600 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  194.534936][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  194.541305][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  197.517902][ T7904] Process accounting resumed
[  197.854615][ T5838] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  197.864392][ T5838] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  197.918294][ T5838] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  197.945786][ T5838] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  197.955499][ T5838] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  197.965756][ T5838] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  198.111879][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.244786][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.525055][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.803257][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.850039][ T7932] chnl_net:caif_netlink_parms(): no params data found
[  199.161439][ T7932] bridge0: port 1(bridge_slave_0) entered blocking state
[  199.180472][ T7932] bridge0: port 1(bridge_slave_0) entered disabled state
[  199.192781][ T7932] bridge_slave_0: entered allmulticast mode
[  199.216938][ T7932] bridge_slave_0: entered promiscuous mode
[  199.280460][ T7932] bridge0: port 2(bridge_slave_1) entered blocking state
[  199.291119][ T7932] bridge0: port 2(bridge_slave_1) entered disabled state
[  199.311950][ T7932] bridge_slave_1: entered allmulticast mode
[  199.335003][ T7932] bridge_slave_1: entered promiscuous mode
[  199.414162][   T12] bridge_slave_1: left allmulticast mode
[  199.430343][   T12] bridge_slave_1: left promiscuous mode
[  199.445267][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  199.536510][   T12] bridge_slave_0: left allmulticast mode
[  199.542212][   T12] bridge_slave_0: left promiscuous mode
[  199.553944][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.045157][ T5842] Bluetooth: hci2: command tx timeout
[  200.360818][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  200.394531][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  200.406858][   T12] bond0 (unregistering): Released all slaves
[  200.449403][ T7932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  200.472517][ T7932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  200.896680][ T7932] team0: Port device team_slave_0 added
[  200.916126][ T7932] team0: Port device team_slave_1 added
[  201.016807][ T7932] batman_adv: batadv0: Adding interface: batadv_slave_0
[  201.053787][ T7932] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.159853][ T7932] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  201.193430][ T7932] batman_adv: batadv0: Adding interface: batadv_slave_1
[  201.213825][ T7932] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.271000][ T7932] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  201.616946][   T12] hsr_slave_0: left promiscuous mode
[  201.622997][   T12] hsr_slave_1: left promiscuous mode
[  201.640027][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  201.651078][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  201.662062][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  201.673877][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  201.707738][   T12] veth1_macvtap: left promiscuous mode
[  201.724075][   T12] veth0_macvtap: left promiscuous mode
[  201.729719][   T12] veth1_vlan: left promiscuous mode
[  201.743895][   T12] veth0_vlan: left promiscuous mode
[  202.134209][ T5842] Bluetooth: hci2: command tx timeout
[  202.494181][   T12] team0 (unregistering): Port device team_slave_1 removed
[  202.542148][   T12] team0 (unregistering): Port device team_slave_0 removed
[  202.971446][ T7932] hsr_slave_0: entered promiscuous mode
[  202.981979][ T7932] hsr_slave_1: entered promiscuous mode
[  202.988783][ T7932] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  202.998102][ T7932] Cannot create hsr debugfs directory
[  203.341190][ T7932] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  203.376584][ T7932] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  203.410342][ T7932] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  203.445800][ T7932] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  203.601063][ T7932] 8021q: adding VLAN 0 to HW filter on device bond0
[  203.668328][ T7932] 8021q: adding VLAN 0 to HW filter on device team0
[  203.682328][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  203.689505][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  203.758500][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  203.765691][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  204.127187][ T7932] 8021q: adding VLAN 0 to HW filter on device batadv0
[  204.209302][ T5842] Bluetooth: hci2: command tx timeout
[  204.829617][ T7932] veth0_vlan: entered promiscuous mode
[  204.906458][ T7932] veth1_vlan: entered promiscuous mode
[  205.014932][ T7932] veth0_macvtap: entered promiscuous mode
[  205.049927][ T7932] veth1_macvtap: entered promiscuous mode
[  205.164562][ T7932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  205.186310][ T7932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.214074][ T7932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  205.233854][ T7932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.253816][ T7932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  205.273999][ T7932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.296124][ T7932] batman_adv: batadv0: Interface activated: batadv_slave_0
[  205.478904][ T7932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  205.511692][ T7932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.535917][ T7932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  205.573123][ T7932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.608581][ T7932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  205.634314][ T7932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.650046][ T7932] batman_adv: batadv0: Interface activated: batadv_slave_1
[  205.687104][ T7932] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  205.712058][ T7932] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  205.737176][ T7932] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  205.761003][ T7932] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  206.084977][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  206.113834][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  206.187001][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  206.214189][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  206.284338][ T5842] Bluetooth: hci2: command tx timeout
[  206.874835][ T5838] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  206.884156][ T5838] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  206.892903][ T5838] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  206.902326][ T5838] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  206.912211][ T5838] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  206.924312][ T5838] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  207.406698][   T12] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.490231][   T12] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.637814][   T12] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.683097][ T8091] chnl_net:caif_netlink_parms(): no params data found
[  207.785966][   T12] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.901281][ T8091] bridge0: port 1(bridge_slave_0) entered blocking state
[  207.909075][ T8091] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.935660][ T8091] bridge_slave_0: entered allmulticast mode
[  207.942699][ T8091] bridge_slave_0: entered promiscuous mode
[  207.957928][ T8091] bridge0: port 2(bridge_slave_1) entered blocking state
[  207.969808][ T8091] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.977115][ T8091] bridge_slave_1: entered allmulticast mode
[  207.984542][ T8091] bridge_slave_1: entered promiscuous mode
[  208.046156][ T8091] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  208.076283][ T8091] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  208.234115][ T8091] team0: Port device team_slave_0 added
[  208.262888][ T8091] team0: Port device team_slave_1 added
[  208.337988][ T8091] batman_adv: batadv0: Adding interface: batadv_slave_0
[  208.346381][ T8091] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  208.374200][ T8091] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  208.388103][ T8091] batman_adv: batadv0: Adding interface: batadv_slave_1
[  208.396147][ T8091] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  208.422987][ T8091] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  208.437087][   T12] bridge_slave_1: left allmulticast mode
[  208.442770][   T12] bridge_slave_1: left promiscuous mode
[  208.448784][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.474676][   T12] bridge_slave_0: left allmulticast mode
[  208.480372][   T12] bridge_slave_0: left promiscuous mode
[  208.493980][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  209.005063][ T5838] Bluetooth: hci1: command tx timeout
[  209.695546][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  209.712983][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  209.768544][   T12] bond0 (unregistering): Released all slaves
[  210.003519][ T8091] hsr_slave_0: entered promiscuous mode
[  210.041304][ T8091] hsr_slave_1: entered promiscuous mode
[  210.075461][ T8091] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  210.083075][ T8091] Cannot create hsr debugfs directory
[  210.669586][   T12] hsr_slave_0: left promiscuous mode
[  210.694813][   T12] hsr_slave_1: left promiscuous mode
[  210.717723][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  210.733116][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  210.765147][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  210.772608][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  210.858713][   T12] veth1_macvtap: left promiscuous mode
[  210.879348][   T12] veth0_macvtap: left promiscuous mode
[  210.891673][   T12] veth1_vlan: left promiscuous mode
[  210.902779][   T12] veth0_vlan: left promiscuous mode
[  211.090393][ T5838] Bluetooth: hci1: command tx timeout
[  212.090929][   T12] team0 (unregistering): Port device team_slave_1 removed
[  212.230722][   T12] team0 (unregistering): Port device team_slave_0 removed
[  213.164038][ T5838] Bluetooth: hci1: command tx timeout
[  214.026393][ T8091] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  214.071900][ T8091] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  214.098492][ T8091] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  214.181354][ T8091] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  214.427763][ T8091] 8021q: adding VLAN 0 to HW filter on device bond0
[  214.478838][ T8091] 8021q: adding VLAN 0 to HW filter on device team0
[  214.509328][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  214.516515][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  214.567992][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  214.575173][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  215.217325][ T8091] 8021q: adding VLAN 0 to HW filter on device batadv0
[  215.244918][ T5838] Bluetooth: hci1: command tx timeout
[  215.364433][ T8091] veth0_vlan: entered promiscuous mode
[  215.375276][ T8091] veth1_vlan: entered promiscuous mode
[  215.395378][ T8091] veth0_macvtap: entered promiscuous mode
[  215.404112][ T8091] veth1_macvtap: entered promiscuous mode
[  215.418018][ T8091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  215.428613][ T8091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  215.438623][ T8091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  215.449151][ T8091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  215.459025][ T8091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  215.469647][ T8091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  215.483448][ T8091] batman_adv: batadv0: Interface activated: batadv_slave_0
[  215.498674][ T8091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  215.514565][ T8091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  215.563896][ T8091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  215.608530][ T8091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  215.633771][ T8091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  215.653822][ T8091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  215.674799][ T8091] batman_adv: batadv0: Interface activated: batadv_slave_1
[  215.687524][ T8091] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  215.696301][ T8091] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  215.705066][ T8091] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  215.713841][ T8091] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  216.000935][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  216.024995][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  216.113483][ T3511] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  216.122008][ T3511] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  220.193150][ T8304] netlink: 8 bytes leftover after parsing attributes in process `syz.4.677'.
[  222.133663][ T8338] netlink: 338 bytes leftover after parsing attributes in process `syz.3.688'.
[  222.148309][ T8338] netlink: 338 bytes leftover after parsing attributes in process `syz.3.688'.
[  222.609243][ T8347] netlink: 8 bytes leftover after parsing attributes in process `syz.3.691'.
[  224.107709][ T8374] netlink: 338 bytes leftover after parsing attributes in process `syz.2.699'.
[  224.134579][ T8374] netlink: 338 bytes leftover after parsing attributes in process `syz.2.699'.
[  224.424297][ T8378] netlink: 338 bytes leftover after parsing attributes in process `syz.2.708'.
[  224.454562][ T8378] netlink: 338 bytes leftover after parsing attributes in process `syz.2.708'.
[  227.632305][ T8485] netlink: 338 bytes leftover after parsing attributes in process `syz.3.712'.
[  227.654154][ T8485] netlink: 338 bytes leftover after parsing attributes in process `syz.3.712'.
[  227.821299][ T8444] Process accounting paused
[  230.097708][ T8561] netlink: 338 bytes leftover after parsing attributes in process `syz.3.723'.
[  230.140815][ T8561] netlink: 338 bytes leftover after parsing attributes in process `syz.3.723'.
[  233.436278][ T8619] netlink: 338 bytes leftover after parsing attributes in process `syz.2.737'.
[  233.454446][ T8619] netlink: 338 bytes leftover after parsing attributes in process `syz.2.737'.
[  233.711032][ T8625] netlink: 338 bytes leftover after parsing attributes in process `syz.3.747'.
[  233.721962][ T8625] netlink: 338 bytes leftover after parsing attributes in process `syz.3.747'.
[  234.972962][ T8663] netlink: 338 bytes leftover after parsing attributes in process `syz.0.750'.
[  235.014280][ T8663] netlink: 338 bytes leftover after parsing attributes in process `syz.0.750'.
[  235.364800][ T8672] netlink: 40 bytes leftover after parsing attributes in process `syz.4.754'.
[  235.988114][   T29] audit: type=1800 audit(4294967432.839:3): pid=8683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.759" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  236.081800][ T8690] netlink: 338 bytes leftover after parsing attributes in process `syz.2.761'.
[  236.112628][ T8690] netlink: 338 bytes leftover after parsing attributes in process `syz.2.761'.
[  237.788741][ T8725] netlink: 338 bytes leftover after parsing attributes in process `syz.4.771'.
[  239.462282][ T8769] __nla_validate_parse: 1 callbacks suppressed
[  239.462304][ T8769] netlink: 338 bytes leftover after parsing attributes in process `syz.0.782'.
[  239.541980][ T8769] netlink: 338 bytes leftover after parsing attributes in process `syz.0.782'.
[  239.855207][ T8779] FAULT_INJECTION: forcing a failure.
[  239.855207][ T8779] name failslab, interval 1, probability 0, space 0, times 0
[  239.884020][ T8779] CPU: 1 UID: 0 PID: 8779 Comm: syz.3.789 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  239.894682][ T8779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  239.904760][ T8779] Call Trace:
[  239.908053][ T8779]  <TASK>
[  239.911002][ T8779]  dump_stack_lvl+0x16c/0x1f0
[  239.915711][ T8779]  should_fail_ex+0x497/0x5b0
[  239.920425][ T8779]  ? fs_reclaim_acquire+0xae/0x150
[  239.925574][ T8779]  should_failslab+0xc2/0x120
[  239.930291][ T8779]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[  239.936048][ T8779]  ? ksys_write+0x12b/0x250
[  239.940579][ T8779]  ? sock_alloc_inode+0x25/0x1c0
[  239.945552][ T8779]  ? __pfx_sock_alloc_inode+0x10/0x10
[  239.950949][ T8779]  sock_alloc_inode+0x25/0x1c0
[  239.955737][ T8779]  alloc_inode+0x5d/0x230
[  239.960100][ T8779]  sock_alloc+0x40/0x280
[  239.964380][ T8779]  do_accept+0xf8/0x530
[  239.969356][ T8779]  ? do_raw_spin_lock+0x12d/0x2c0
[  239.974429][ T8779]  ? __pfx_do_accept+0x10/0x10
[  239.979242][ T8779]  __sys_accept4+0xfe/0x1b0
[  239.983780][ T8779]  ? __pfx___sys_accept4+0x10/0x10
[  239.988931][ T8779]  ? ksys_write+0x1ba/0x250
[  239.993472][ T8779]  ? __pfx_ksys_write+0x10/0x10
[  239.998363][ T8779]  __x64_sys_accept+0x74/0xb0
[  240.003079][ T8779]  ? lockdep_hardirqs_on+0x7c/0x110
[  240.008315][ T8779]  do_syscall_64+0xcd/0x250
[  240.012856][ T8779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.018783][ T8779] RIP: 0033:0x7fe113985d29
[  240.023220][ T8779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.042855][ T8779] RSP: 002b:00007fe1146f1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[  240.051303][ T8779] RAX: ffffffffffffffda RBX: 00007fe113b75fa0 RCX: 00007fe113985d29
[  240.059305][ T8779] RDX: ffffffffffffffff RSI: ffffffffffffffff RDI: 0000000000000003
[  240.067301][ T8779] RBP: 00007fe1146f1090 R08: 0000000000000000 R09: 0000000000000000
[  240.075297][ T8779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  240.083286][ T8779] R13: 0000000000000000 R14: 00007fe113b75fa0 R15: 00007ffcf8966208
[  240.091290][ T8779]  </TASK>
[  240.094341][    C1] vkms_vblank_simulate: vblank timer overrun
[  240.780059][ T8810] Process accounting resumed
[  241.209368][ T8819] binder: 8818:8819 ioctl c0306201 9 returned -14
[  244.426415][ T8880] HfR: entered promiscuous mode
[  245.211457][ T8903] bridge0: port 3(batadv0) entered blocking state
[  245.254184][ T8903] bridge0: port 3(batadv0) entered disabled state
[  245.263996][ T8903] batadv0: entered allmulticast mode
[  245.270662][ T8903] batadv0: entered promiscuous mode
[  245.342658][ T8903] bridge0: port 3(batadv0) entered blocking state
[  245.349280][ T8903] bridge0: port 3(batadv0) entered forwarding state
[  245.538666][ T3444] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  245.548286][ T3444] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  245.680372][ T8913] HfR: entered promiscuous mode
[  248.995472][ T8972] netlink: 12 bytes leftover after parsing attributes in process `syz.4.846'.
[  253.520239][ T8996] 
: entered promiscuous mode
[  254.798781][ T9016] netlink: 28 bytes leftover after parsing attributes in process `syz.2.856'.
[  255.973203][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  255.980926][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  257.054447][ T9060] netlink: 28 bytes leftover after parsing attributes in process `syz.4.864'.
[  257.073721][ T9060] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  257.081173][ T9060] batman_adv: batadv0: Removing interface: batadv_slave_0
[  257.224845][ T9060] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  257.280455][ T9060] batman_adv: batadv0: Removing interface: batadv_slave_1
[  258.143772][ T9035] Process accounting resumed
[  258.436101][ T9072] FAULT_INJECTION: forcing a failure.
[  258.436101][ T9072] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  258.483793][ T9072] CPU: 0 UID: 0 PID: 9072 Comm: syz.0.867 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  258.494450][ T9072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  258.504529][ T9072] Call Trace:
[  258.507823][ T9072]  <TASK>
[  258.510770][ T9072]  dump_stack_lvl+0x16c/0x1f0
[  258.515482][ T9072]  should_fail_ex+0x497/0x5b0
[  258.520202][ T9072]  _copy_to_user+0x32/0xd0
[  258.524657][ T9072]  simple_read_from_buffer+0xd0/0x160
[  258.530072][ T9072]  proc_fail_nth_read+0x198/0x270
[  258.535134][ T9072]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  258.540721][ T9072]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  258.546302][ T9072]  vfs_read+0x1df/0xbe0
[  258.550486][ T9072]  ? __fget_files+0x1fc/0x3a0
[  258.555193][ T9072]  ? __pfx___mutex_lock+0x10/0x10
[  258.560247][ T9072]  ? __pfx_vfs_read+0x10/0x10
[  258.564965][ T9072]  ? __fget_files+0x206/0x3a0
[  258.569691][ T9072]  ksys_read+0x12b/0x250
[  258.573968][ T9072]  ? __pfx_ksys_read+0x10/0x10
[  258.578772][ T9072]  do_syscall_64+0xcd/0x250
[  258.583311][ T9072]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.589240][ T9072] RIP: 0033:0x7f00ad98473c
[  258.593684][ T9072] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  258.613321][ T9072] RSP: 002b:00007f00ae872030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  258.621769][ T9072] RAX: ffffffffffffffda RBX: 00007f00adb75fa0 RCX: 00007f00ad98473c
[  258.629772][ T9072] RDX: 000000000000000f RSI: 00007f00ae8720a0 RDI: 0000000000000004
[  258.637763][ T9072] RBP: 00007f00ae872090 R08: 0000000000000000 R09: 0000000000000000
[  258.645739][ T9072] R10: 000000000000008d R11: 0000000000000246 R12: 0000000000000001
[  258.653711][ T9072] R13: 0000000000000000 R14: 00007f00adb75fa0 R15: 00007ffec402ce18
[  258.661704][ T9072]  </TASK>
[  259.274180][ T9079] FAULT_INJECTION: forcing a failure.
[  259.274180][ T9079] name failslab, interval 1, probability 0, space 0, times 0
[  259.328628][ T9079] CPU: 0 UID: 0 PID: 9079 Comm: syz.0.868 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  259.339287][ T9079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  259.349374][ T9079] Call Trace:
[  259.352675][ T9079]  <TASK>
[  259.355625][ T9079]  dump_stack_lvl+0x16c/0x1f0
[  259.360339][ T9079]  should_fail_ex+0x497/0x5b0
[  259.365055][ T9079]  ? fs_reclaim_acquire+0xae/0x150
[  259.370209][ T9079]  should_failslab+0xc2/0x120
[  259.374934][ T9079]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  259.380343][ T9079]  ? ip6mr_mfc_add+0x40b/0x3490
[  259.385236][ T9079]  ip6mr_mfc_add+0x40b/0x3490
[  259.389945][ T9079]  ? mark_held_locks+0x9f/0xe0
[  259.394754][ T9079]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  259.400598][ T9079]  ? __pfx_ip6mr_mfc_add+0x10/0x10
[  259.405744][ T9079]  ? ip6_mroute_setsockopt+0x508/0x25b0
[  259.411327][ T9079]  ? __pfx___mutex_lock+0x10/0x10
[  259.416378][ T9079]  ? __pfx_lock_release+0x10/0x10
[  259.421447][ T9079]  ? ip6_mroute_setsockopt+0x1813/0x25b0
[  259.427120][ T9079]  ip6_mroute_setsockopt+0x1813/0x25b0
[  259.432627][ T9079]  ? __pfx_ip6_mroute_setsockopt+0x10/0x10
[  259.438465][ T9079]  ? hlock_class+0x4e/0x130
[  259.443007][ T9079]  ? mark_lock+0xb5/0xc60
[  259.447369][ T9079]  ? __pfx_mark_lock+0x10/0x10
[  259.452173][ T9079]  ? __pfx_mark_lock+0x10/0x10
[  259.456969][ T9079]  ? find_held_lock+0x2d/0x110
[  259.461767][ T9079]  ? is_bpf_text_address+0x8a/0x1a0
[  259.467003][ T9079]  ? __pfx_lock_release+0x10/0x10
[  259.472047][ T9079]  ? trace_lock_acquire+0x14e/0x1f0
[  259.477290][ T9079]  ? __pfx_mark_lock+0x10/0x10
[  259.482088][ T9079]  ? __lock_acquire+0x15a9/0x3c40
[  259.487176][ T9079]  ? do_ipv6_setsockopt+0x8f7/0x4660
[  259.492494][ T9079]  do_ipv6_setsockopt+0x8f7/0x4660
[  259.497650][ T9079]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[  259.503229][ T9079]  ? __lock_acquire+0xcc5/0x3c40
[  259.508210][ T9079]  ? hlock_class+0x4e/0x130
[  259.512742][ T9079]  ? mark_lock+0xb5/0xc60
[  259.517103][ T9079]  ? aa_label_sk_perm+0x19d/0x5a0
[  259.522180][ T9079]  ? __pfx_mark_lock+0x10/0x10
[  259.526984][ T9079]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  259.532400][ T9079]  ? find_held_lock+0x2d/0x110
[  259.537220][ T9079]  ? ipv6_setsockopt+0xcb/0x170
[  259.542100][ T9079]  ipv6_setsockopt+0xcb/0x170
[  259.546837][ T9079]  rawv6_setsockopt+0xdc/0x700
[  259.551630][ T9079]  ? __pfx_rawv6_setsockopt+0x10/0x10
[  259.557033][ T9079]  ? sock_common_setsockopt+0x2e/0xf0
[  259.562442][ T9079]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  259.568454][ T9079]  do_sock_setsockopt+0x222/0x480
[  259.573507][ T9079]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  259.579259][ T9079]  ? lock_acquire+0x2f/0xb0
[  259.583805][ T9079]  __sys_setsockopt+0x1a0/0x230
[  259.588692][ T9079]  __x64_sys_setsockopt+0xbd/0x160
[  259.593845][ T9079]  ? do_syscall_64+0x91/0x250
[  259.598562][ T9079]  ? lockdep_hardirqs_on+0x7c/0x110
[  259.603798][ T9079]  do_syscall_64+0xcd/0x250
[  259.608350][ T9079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.614275][ T9079] RIP: 0033:0x7f00ad985d29
[  259.618713][ T9079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.638352][ T9079] RSP: 002b:00007f00ae851038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  259.646800][ T9079] RAX: ffffffffffffffda RBX: 00007f00adb76080 RCX: 00007f00ad985d29
[  259.654889][ T9079] RDX: 00000000000000cc RSI: 0000000000000029 RDI: 0400000000000003
[  259.662902][ T9079] RBP: 00007f00ae851090 R08: 0000000000000567 R09: 0000000000000000
[  259.670901][ T9079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  259.678900][ T9079] R13: 0000000000000000 R14: 00007f00adb76080 R15: 00007ffec402ce18
[  259.687006][ T9079]  </TASK>
[  260.415643][ T9100] netlink: 4 bytes leftover after parsing attributes in process `syz.3.874'.
[  261.664136][ T9118] netlink: 28 bytes leftover after parsing attributes in process `syz.3.878'.
[  261.673072][ T9118] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  261.789104][ T9118] batman_adv: batadv0: Removing interface: batadv_slave_0
[  261.950932][ T9118] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  262.067384][ T9118] batman_adv: batadv0: Removing interface: batadv_slave_1
[  262.219990][ T9118] bridge0: port 3(batadv0) entered disabled state
[  262.614633][ T9118] batadv0 (unregistering): left allmulticast mode
[  262.692195][ T9118] batadv0 (unregistering): left promiscuous mode
[  262.753874][ T9118] bridge0: port 3(batadv0) entered disabled state
[  262.904520][ T9127] netlink: 28 bytes leftover after parsing attributes in process `syz.4.880'.
[  263.815794][ T9138] netlink: 4 bytes leftover after parsing attributes in process `syz.4.885'.
[  265.837310][ T9168] netlink: 28 bytes leftover after parsing attributes in process `syz.2.895'.
[  265.925151][ T9168] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  265.993493][ T9168] batman_adv: batadv0: Removing interface: batadv_slave_0
[  266.104632][ T9168] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  266.112090][ T9168] batman_adv: batadv0: Removing interface: batadv_slave_1
[  266.714738][ T9174] netlink: 28 bytes leftover after parsing attributes in process `syz.0.897'.
[  266.743800][ T9174] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  266.751254][ T9174] batman_adv: batadv0: Removing interface: batadv_slave_0
[  266.777922][ T9176] netlink: 4 bytes leftover after parsing attributes in process `syz.4.898'.
[  266.873866][ T9174] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  266.881825][ T9174] batman_adv: batadv0: Removing interface: batadv_slave_1
[  267.535159][ T9185] netlink: 4 bytes leftover after parsing attributes in process `syz.2.901'.
[  267.602636][ T9186] nfs: Bad value for 'source'
[  267.854845][ T9192] Process accounting resumed
[  269.415769][ T9221] netlink: 28 bytes leftover after parsing attributes in process `syz.0.910'.
[  270.939126][ T9243] netlink: 28 bytes leftover after parsing attributes in process `syz.3.918'.
[  270.954915][ T9245] netlink: 334 bytes leftover after parsing attributes in process `syz.2.917'.
[  272.529912][ T9286] kernel read not supported for file /#)-\&[} (pid: 9286 comm: syz.0.929)
[  272.533731][   T29] audit: type=1804 audit(4294967469.380:4): pid=9286 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.929" name="#)-\&[}" dev="mqueue" ino=19996 res=1 errno=0
[  272.614830][   T29] audit: type=1804 audit(4294967469.470:5): pid=9289 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.929" name="#)-\&[}" dev="mqueue" ino=19996 res=1 errno=0
[  272.653716][   T29] audit: type=1804 audit(4294967469.470:6): pid=9289 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.929" name="#)-\&[}" dev="mqueue" ino=19996 res=1 errno=0
[  272.690516][   T29] audit: type=1800 audit(4294967469.470:7): pid=9286 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.929" name="#)-\&[}" dev="mqueue" ino=19996 res=0 errno=0
[  274.274668][ T9316] Process accounting resumed
[  276.354361][   T29] audit: type=1326 audit(4294967473.200:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9356 comm="syz.0.954" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f00ad985d29 code=0x0
[  277.536401][ T9382] netlink: 8 bytes leftover after parsing attributes in process `syz.0.961'.
[  280.988881][ T9444] netlink: 12 bytes leftover after parsing attributes in process `syz.3.982'.
[  282.628245][ T9453] netlink: 8 bytes leftover after parsing attributes in process `syz.3.985'.
[  284.067513][ T9463] netlink: zone id is out of range
[  284.072698][ T9463] netlink: del zone limit has 4 unknown bytes
[  284.464590][ T9476] netlink: 12 bytes leftover after parsing attributes in process `syz.2.994'.
[  285.055270][ T9488] netlink: 28 bytes leftover after parsing attributes in process `syz.3.996'.
[  285.211210][ T9488] bond0: (slave bond_slave_0): Releasing backup interface
[  286.582742][ T9519] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1004'.
[  287.066569][ T9514] netlink: zone id is out of range
[  287.071753][ T9514] netlink: del zone limit has 4 unknown bytes
[  287.271524][ T9533] can: request_module (can-proto-0) failed.
[  288.358830][ T9558] syz.3.1014: vmalloc error: size 69206016, failed to allocated page array size 135168, mode:0xc22(GFP_ATOMIC|__GFP_HIGHMEM|__GFP_DIRECT_RECLAIM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  288.418100][ T9558] CPU: 1 UID: 0 PID: 9558 Comm: syz.3.1014 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  288.428837][ T9558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  288.438916][ T9558] Call Trace:
[  288.442212][ T9558]  <TASK>
[  288.445164][ T9558]  dump_stack_lvl+0x16c/0x1f0
[  288.449871][ T9558]  warn_alloc+0x24d/0x3a0
[  288.454233][ T9558]  ? __pfx_warn_alloc+0x10/0x10
[  288.459128][ T9558]  ? __get_vm_area_node+0x1b0/0x2f0
[  288.464358][ T9558]  ? __get_vm_area_node+0x1dc/0x2f0
[  288.469604][ T9558]  __vmalloc_node_range_noprof+0x1105/0x1530
[  288.475629][ T9558]  ? ctl_ioctl+0x862/0xde0
[  288.480084][ T9558]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  288.486443][ T9558]  ? rcu_is_watching+0x12/0xc0
[  288.491237][ T9558]  ? trace_kmalloc+0x2d/0xd0
[  288.495853][ T9558]  ? __kmalloc_node_noprof.cold+0x5a/0x5f
[  288.501608][ T9558]  ? ctl_ioctl+0x862/0xde0
[  288.506056][ T9558]  __kvmalloc_node_noprof+0x14f/0x1a0
[  288.511457][ T9558]  ? ctl_ioctl+0x862/0xde0
[  288.515910][ T9558]  ctl_ioctl+0x862/0xde0
[  288.520180][ T9558]  ? __pfx_get_target_version+0x10/0x10
[  288.525771][ T9558]  ? do_vfs_ioctl+0x513/0x1950
[  288.530569][ T9558]  ? __pfx_ctl_ioctl+0x10/0x10
[  288.535396][ T9558]  ? __fget_files+0x206/0x3a0
[  288.540107][ T9558]  dm_ctl_ioctl+0x22/0x30
[  288.544464][ T9558]  ? __pfx_dm_ctl_ioctl+0x10/0x10
[  288.549530][ T9558]  __x64_sys_ioctl+0x190/0x200
[  288.554323][ T9558]  do_syscall_64+0xcd/0x250
[  288.558860][ T9558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.564782][ T9558] RIP: 0033:0x7fe113985d29
[  288.569215][ T9558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.588863][ T9558] RSP: 002b:00007fe1146f1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  288.597313][ T9558] RAX: ffffffffffffffda RBX: 00007fe113b75fa0 RCX: 00007fe113985d29
[  288.605309][ T9558] RDX: 00000000200001c0 RSI: fffffffffffffd11 RDI: 0000000000000008
[  288.613303][ T9558] RBP: 00007fe113a01aa8 R08: 0000000000000000 R09: 0000000000000000
[  288.621298][ T9558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  288.629296][ T9558] R13: 0000000000000000 R14: 00007fe113b75fa0 R15: 00007ffcf8966208
[  288.637307][ T9558]  </TASK>
[  288.675145][ T9558] Mem-Info:
[  288.678304][ T9558] active_anon:82787 inactive_anon:0 isolated_anon:0
[  288.678304][ T9558]  active_file:10808 inactive_file:48533 isolated_file:0
[  288.678304][ T9558]  unevictable:768 dirty:433 writeback:0
[  288.678304][ T9558]  slab_reclaimable:11128 slab_unreclaimable:96373
[  288.678304][ T9558]  mapped:36256 shmem:67736 pagetables:873
[  288.678304][ T9558]  sec_pagetables:0 bounce:0
[  288.678304][ T9558]  kernel_misc_reclaimable:0
[  288.678304][ T9558]  free:1244896 free_pcp:12428 free_cma:0
[  288.741341][ T9558] Node 0 active_anon:327548kB inactive_anon:0kB active_file:43232kB inactive_file:186120kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:141844kB dirty:1724kB writeback:0kB shmem:265708kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11000kB pagetables:3592kB sec_pagetables:0kB all_unreclaimable? no
[  288.842625][ T9558] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8012kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:4280kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  288.913730][ T9558] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  288.983826][ T9558] lowmem_reserve[]: 0 2465 2466 0 0
[  288.994037][ T9558] Node 0 DMA32 free:1130664kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:314912kB inactive_anon:0kB active_file:43232kB inactive_file:183488kB unevictable:4436kB writepending:1824kB present:3129332kB managed:2551336kB mlocked:2900kB bounce:0kB free_pcp:7168kB local_pcp:2968kB free_cma:0kB
[  289.051320][ T9558] lowmem_reserve[]: 0 0 0 0 0
[  289.056290][ T9558] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:832kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  289.095232][ T9570] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1019'.
[  289.113918][ T9558] lowmem_reserve[]: 0 0 0 0 0
[  289.125577][ T9558] Node 1 Normal free:3847364kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8012kB unevictable:1536kB writepending:8kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:43864kB local_pcp:25752kB free_cma:0kB
[  289.193728][ T9558] lowmem_reserve[]: 0 0 0 0 0
[  289.198515][ T9558] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  289.223802][ T9558] Node 0 DMA32: 8024*4kB (UME) 323*8kB (UME) 106*16kB (UME) 1524*32kB (UME) 1273*64kB (UME) 559*128kB (UME) 141*256kB (ME) 41*512kB (ME) 11*1024kB (ME) 8*2048kB (UM) 199*4096kB (M) = 1138008kB
[  289.304570][ T9558] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  289.363698][ T9558] Node 1 Normal: 370*4kB (UME) 118*8kB (U) 50*16kB (UME) 75*32kB (UME) 86*64kB (UM) 37*128kB (UME) 17*256kB (UME) 11*512kB (UME) 8*1024kB (UME) 4*2048kB (UE) 929*4096kB (M) = 3847416kB
[  289.443399][ T9558] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  289.469973][ T9558] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  289.523708][ T9558] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  289.533307][ T9558] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  289.603690][ T9558] 115136 total pagecache pages
[  289.608500][ T9558] 1049 pages in swap cache
[  289.612917][ T9558] Free swap  = 120120kB
[  289.641817][ T9558] Total swap = 124996kB
[  289.666673][ T9580] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1023'.
[  289.683629][ T9558] 2097051 pages RAM
[  289.687557][ T9558] 0 pages HighMem/MovableOnly
[  289.692245][ T9558] 427367 pages reserved
[  289.733661][ T9558] 0 pages cma reserved
[  291.700654][ T9625] program syz.3.1038 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  292.024770][ T9640] FAULT_INJECTION: forcing a failure.
[  292.024770][ T9640] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  292.095185][ T9640] CPU: 1 UID: 0 PID: 9640 Comm: syz.3.1049 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  292.105921][ T9640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  292.115994][ T9640] Call Trace:
[  292.119272][ T9640]  <TASK>
[  292.122204][ T9640]  dump_stack_lvl+0x16c/0x1f0
[  292.126898][ T9640]  should_fail_ex+0x497/0x5b0
[  292.131587][ T9640]  _copy_from_user+0x2e/0xd0
[  292.136185][ T9640]  copy_msghdr_from_user+0x99/0x160
[  292.141399][ T9640]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  292.147226][ T9640]  ___sys_sendmsg+0xff/0x1e0
[  292.151824][ T9640]  ? __pfx____sys_sendmsg+0x10/0x10
[  292.157043][ T9640]  ? __pfx_lock_release+0x10/0x10
[  292.162070][ T9640]  ? trace_lock_acquire+0x14e/0x1f0
[  292.167291][ T9640]  ? __fget_files+0x206/0x3a0
[  292.171982][ T9640]  __sys_sendmsg+0x16e/0x220
[  292.176593][ T9640]  ? __pfx___sys_sendmsg+0x10/0x10
[  292.181727][ T9640]  do_syscall_64+0xcd/0x250
[  292.186246][ T9640]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.192145][ T9640] RIP: 0033:0x7fe113985d29
[  292.196561][ T9640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.216172][ T9640] RSP: 002b:00007fe1146f1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  292.224589][ T9640] RAX: ffffffffffffffda RBX: 00007fe113b75fa0 RCX: 00007fe113985d29
[  292.232563][ T9640] RDX: 0000000000000810 RSI: 0000000020000140 RDI: 0000000000000003
[  292.240533][ T9640] RBP: 00007fe1146f1090 R08: 0000000000000000 R09: 0000000000000000
[  292.248501][ T9640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  292.256473][ T9640] R13: 0000000000000000 R14: 00007fe113b75fa0 R15: 00007ffcf8966208
[  292.264464][ T9640]  </TASK>
[  296.863820][ T9726] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  296.945916][ T9726] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  296.952041][ T9726] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  297.013164][ T9726] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  297.073875][ T9726] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  297.163925][ T9726] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  297.209783][ T9726] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  297.267888][ T9726] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  298.924044][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout
[  298.930147][ T5842] Bluetooth: hci0: command 0x0c1a tx timeout
[  298.980255][ T9784] Process accounting resumed
[  299.003639][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout
[  299.044001][ T9784] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1083'.
[  299.128717][ T9784] mac80211_hwsim hwsim17 wlan0: entered promiscuous mode
[  299.195147][ T9784] mac80211_hwsim hwsim17 wlan0: entered allmulticast mode
[  299.255130][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout
[  301.093691][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout
[  301.246957][ T9839] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1097'.
[  301.324084][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout
[  302.841308][ T9866] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1116'.
[  302.903676][ T9866] : renamed from bond_slave_1 (while UP)
[  303.092325][ T9894] FAULT_INJECTION: forcing a failure.
[  303.092325][ T9894] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  303.105517][ T9894] CPU: 1 UID: 0 PID: 9894 Comm: syz.3.1115 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  303.116227][ T9894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  303.126309][ T9894] Call Trace:
[  303.129602][ T9894]  <TASK>
[  303.132547][ T9894]  dump_stack_lvl+0x16c/0x1f0
[  303.137260][ T9894]  should_fail_ex+0x497/0x5b0
[  303.141975][ T9894]  _copy_to_user+0x32/0xd0
[  303.146432][ T9894]  simple_read_from_buffer+0xd0/0x160
[  303.151845][ T9894]  proc_fail_nth_read+0x198/0x270
[  303.156908][ T9894]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  303.162493][ T9894]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  303.165536][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout
[  303.168051][ T9894]  vfs_read+0x1df/0xbe0
[  303.178193][ T9894]  ? __fget_files+0x1fc/0x3a0
[  303.182902][ T9894]  ? __pfx___mutex_lock+0x10/0x10
[  303.187959][ T9894]  ? __pfx_vfs_read+0x10/0x10
[  303.192676][ T9894]  ? __fget_files+0x206/0x3a0
[  303.197394][ T9894]  ksys_read+0x12b/0x250
[  303.201670][ T9894]  ? __pfx_ksys_read+0x10/0x10
[  303.206476][ T9894]  do_syscall_64+0xcd/0x250
[  303.211019][ T9894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.216954][ T9894] RIP: 0033:0x7fe11398473c
[  303.221374][ T9894] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  303.240990][ T9894] RSP: 002b:00007fe1146f1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  303.249408][ T9894] RAX: ffffffffffffffda RBX: 00007fe113b75fa0 RCX: 00007fe11398473c
[  303.257382][ T9894] RDX: 000000000000000f RSI: 00007fe1146f10a0 RDI: 0000000000000005
[  303.265357][ T9894] RBP: 00007fe1146f1090 R08: 0000000000000000 R09: 0000000000000000
[  303.273329][ T9894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  303.281300][ T9894] R13: 0000000000000000 R14: 00007fe113b75fa0 R15: 00007ffcf8966208
[  303.289289][ T9894]  </TASK>
[  303.403668][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout
[  303.656610][ T9903] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1120'.
[  304.427292][ T3444] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.501169][ T9920] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1125'.
[  304.604963][ T3444] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.703984][ T9917] netlink: 102 bytes leftover after parsing attributes in process `syz.0.1125'.
[  304.766816][ T5842] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  304.776131][ T5842] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  304.784400][ T5842] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  304.806642][ T5842] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  304.814236][ T5842] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  304.821946][ T5842] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  304.973120][ T3444] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.995357][ T9927] svc: failed to register nfsdv3 RPC service (errno 111).
[  305.004120][ T9927] svc: failed to register nfsaclv3 RPC service (errno 111).
[  305.156016][ T3444] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.439135][ T9921] chnl_net:caif_netlink_parms(): no params data found
[  305.977063][ T3444] bridge_slave_1: left allmulticast mode
[  306.001703][ T3444] bridge_slave_1: left promiscuous mode
[  306.025538][ T3444] bridge0: port 2(bridge_slave_1) entered disabled state
[  306.098518][ T3444] bridge_slave_0: left allmulticast mode
[  306.104918][ T3444] bridge_slave_0: left promiscuous mode
[  306.119921][ T3444] bridge0: port 1(bridge_slave_0) entered disabled state
[  306.845316][ T5838] Bluetooth: hci1: command tx timeout
[  307.243994][ T3444] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  307.265210][ T3444] bond0 (unregistering): Released all slaves
[  307.280817][ T9921] bridge0: port 1(bridge_slave_0) entered blocking state
[  307.288796][ T9921] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.299818][ T9921] bridge_slave_0: entered allmulticast mode
[  307.306909][ T9921] bridge_slave_0: entered promiscuous mode
[  307.318793][ T9921] bridge0: port 2(bridge_slave_1) entered blocking state
[  307.327117][ T9921] bridge0: port 2(bridge_slave_1) entered disabled state
[  307.334395][ T9921] bridge_slave_1: entered allmulticast mode
[  307.346502][ T9921] bridge_slave_1: entered promiscuous mode
[  307.365128][ T9965] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1133'.
[  307.413596][ T3444] HfR: left promiscuous mode
[  307.535787][ T9921] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  307.611943][ T9921] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  307.787792][ T9921] team0: Port device team_slave_0 added
[  307.799058][ T9980] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1134'.
[  307.819827][ T9921] team0: Port device team_slave_1 added
[  307.996126][ T9921] batman_adv: batadv0: Adding interface: batadv_slave_0
[  308.003113][ T9921] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  308.037331][ T9921] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  308.116801][ T9991] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1140'.
[  308.155866][ T9921] batman_adv: batadv0: Adding interface: batadv_slave_1
[  308.162860][ T9921] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  308.209024][ T9921] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  308.522764][ T3444] hsr_slave_0: left promiscuous mode
[  308.573719][ T3444] hsr_slave_1: left promiscuous mode
[  308.599017][ T3444] veth1_macvtap: left promiscuous mode
[  308.625519][ T3444] veth0_macvtap: left promiscuous mode
[  308.631167][ T3444] veth1_vlan: left promiscuous mode
[  308.647063][ T3444] veth0_vlan: left promiscuous mode
[  308.923668][ T5838] Bluetooth: hci1: command tx timeout
[  309.782725][ T3444] team0 (unregistering): Port device team_slave_1 removed
[  309.876015][ T3444] team0 (unregistering): Port device team_slave_0 removed
[  310.339531][ T9921] hsr_slave_0: entered promiscuous mode
[  310.346769][ T9921] hsr_slave_1: entered promiscuous mode
[  310.691784][ T9921] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  310.720205][ T9921] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  310.764793][ T9921] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  310.788967][ T9921] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  310.988823][ T9921] 8021q: adding VLAN 0 to HW filter on device bond0
[  311.004379][ T5838] Bluetooth: hci1: command tx timeout
[  311.028344][ T9921] 8021q: adding VLAN 0 to HW filter on device team0
[  311.084707][T10029] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  311.122521][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  311.129702][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  311.188864][ T3511] bridge0: port 2(bridge_slave_1) entered blocking state
[  311.196045][ T3511] bridge0: port 2(bridge_slave_1) entered forwarding state
[  311.355778][ T9921] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  311.501836][T10051] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1148'.
[  311.741270][ T9921] 8021q: adding VLAN 0 to HW filter on device batadv0
[  312.271139][ T9921] veth0_vlan: entered promiscuous mode
[  312.310737][ T9921] veth1_vlan: entered promiscuous mode
[  312.339620][ T9921] veth0_macvtap: entered promiscuous mode
[  312.361413][ T9921] veth1_macvtap: entered promiscuous mode
[  312.402265][ T9921] batman_adv: batadv0: Interface activated: batadv_slave_0
[  312.423440][ T9921] batman_adv: batadv0: Interface activated: batadv_slave_1
[  312.459678][ T9921] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  312.481925][ T9921] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  312.492484][ T9921] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  312.501833][ T9921] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  312.615749][ T3511] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  312.631050][ T3511] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  312.675039][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  312.693940][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  312.894566][T10096] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2].
[  312.978675][T10101] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000010006
[  313.004504][T10101] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1151'.
[  313.084001][ T5838] Bluetooth: hci1: command tx timeout
[  313.932108][   T29] audit: type=1800 audit(4294967510.780:9): pid=10140 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1159" name="discovery_nqn" dev="configfs" ino=23908 res=0 errno=0
[  314.872596][   T29] audit: type=1800 audit(4294967511.720:10): pid=10180 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1165" name="SYSV00000009" dev="hugetlbfs" ino=0 res=0 errno=0
[  316.655158][T10239] FAULT_INJECTION: forcing a failure.
[  316.655158][T10239] name failslab, interval 1, probability 0, space 0, times 0
[  316.714036][T10239] CPU: 0 UID: 0 PID: 10239 Comm: syz.4.1175 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  316.724863][T10239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  316.734946][T10239] Call Trace:
[  316.738252][T10239]  <TASK>
[  316.741204][T10239]  dump_stack_lvl+0x16c/0x1f0
[  316.745920][T10239]  should_fail_ex+0x497/0x5b0
[  316.750632][T10239]  ? fs_reclaim_acquire+0xae/0x150
[  316.755782][T10239]  should_failslab+0xc2/0x120
[  316.760501][T10239]  __kmalloc_noprof+0xce/0x4f0
[  316.765305][T10239]  ? afs_lookup_cell+0x621/0x1710
[  316.770365][T10239]  afs_lookup_cell+0x621/0x1710
[  316.775248][T10239]  ? __pfx_afs_lookup_cell+0x10/0x10
[  316.780545][T10239]  ? net_generic+0xea/0x2a0
[  316.785098][T10239]  ? __pfx_lock_release+0x10/0x10
[  316.790134][T10239]  ? trace_lock_acquire+0x14e/0x1f0
[  316.795348][T10239]  ? lock_acquire+0x2f/0xb0
[  316.799867][T10239]  afs_cell_init+0x62/0x270
[  316.804397][T10239]  afs_proc_rootcell_write+0x15a/0x1c0
[  316.809876][T10239]  proc_simple_write+0x114/0x1b0
[  316.814831][T10239]  ? __pfx_proc_simple_write+0x10/0x10
[  316.820306][T10239]  proc_reg_write+0x23d/0x330
[  316.824996][T10239]  ? __pfx_proc_reg_write+0x10/0x10
[  316.830205][T10239]  vfs_write+0x24c/0x1150
[  316.834546][T10239]  ? __fget_files+0x1fc/0x3a0
[  316.839231][T10239]  ? __pfx___mutex_lock+0x10/0x10
[  316.844264][T10239]  ? __pfx_vfs_write+0x10/0x10
[  316.849044][T10239]  ? __fget_files+0x206/0x3a0
[  316.853733][T10239]  ksys_write+0x12b/0x250
[  316.858070][T10239]  ? __pfx_ksys_write+0x10/0x10
[  316.862931][T10239]  do_syscall_64+0xcd/0x250
[  316.867445][T10239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.873344][T10239] RIP: 0033:0x7fe6f8b85d29
[  316.877766][T10239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  316.897383][T10239] RSP: 002b:00007fe6f99cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  316.905820][T10239] RAX: ffffffffffffffda RBX: 00007fe6f8d75fa0 RCX: 00007fe6f8b85d29
[  316.913795][T10239] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000004
[  316.921765][T10239] RBP: 00007fe6f99cf090 R08: 0000000000000000 R09: 0000000000000000
[  316.929745][T10239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  316.937720][T10239] R13: 0000000000000000 R14: 00007fe6f8d75fa0 R15: 00007ffdaa4f2248
[  316.945703][T10239]  </TASK>
[  317.425312][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  317.431667][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  318.405996][T10273] openvswitch: netlink: Key type 261 is out of range max 32
[  319.033003][T10291] FAULT_INJECTION: forcing a failure.
[  319.033003][T10291] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  319.083976][T10291] CPU: 0 UID: 0 PID: 10291 Comm: syz.4.1187 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  319.094782][T10291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  319.104840][T10291] Call Trace:
[  319.108115][T10291]  <TASK>
[  319.111045][T10291]  dump_stack_lvl+0x16c/0x1f0
[  319.115734][T10291]  should_fail_ex+0x497/0x5b0
[  319.120420][T10291]  _copy_from_user+0x2e/0xd0
[  319.125019][T10291]  do_sys_poll+0x1d6/0xde0
[  319.129446][T10291]  ? __pfx_mark_lock+0x10/0x10
[  319.134228][T10291]  ? __pfx_do_sys_poll+0x10/0x10
[  319.139178][T10291]  ? __pfx___lock_acquire+0x10/0x10
[  319.144450][T10291]  ? __pfx_timespec64_add_safe+0x10/0x10
[  319.150088][T10291]  ? ktime_get_ts64+0x2d4/0x400
[  319.154950][T10291]  ? read_tsc+0x9/0x20
[  319.159026][T10291]  ? ktime_get_ts64+0x256/0x400
[  319.163890][T10291]  __x64_sys_poll+0x1a8/0x450
[  319.168571][T10291]  ? __pfx___x64_sys_poll+0x10/0x10
[  319.173782][T10291]  do_syscall_64+0xcd/0x250
[  319.178295][T10291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.184194][T10291] RIP: 0033:0x7fe6f8b85d29
[  319.188701][T10291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  319.208311][T10291] RSP: 002b:00007fe6f99cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007
[  319.216728][T10291] RAX: ffffffffffffffda RBX: 00007fe6f8d75fa0 RCX: 00007fe6f8b85d29
[  319.224698][T10291] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000020000040
[  319.232667][T10291] RBP: 00007fe6f99cf090 R08: 0000000000000000 R09: 0000000000000000
[  319.240637][T10291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  319.248612][T10291] R13: 0000000000000000 R14: 00007fe6f8d75fa0 R15: 00007ffdaa4f2248
[  319.256610][T10291]  </TASK>
[  322.228970][T10387] netlink: 5995 bytes leftover after parsing attributes in process `syz.5.1215'.
[  322.427417][T10396] netlink: 'syz.5.1218': attribute type 2 has an invalid length.
[  322.440757][T10396] netlink: 674 bytes leftover after parsing attributes in process `syz.5.1218'.
[  322.585566][T10402] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1216'.
[  323.564014][T10435] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1229'.
[  323.613699][T10435] nbd: must specify at least one socket
[  324.664949][T10464] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1233'.
[  326.107549][T10536] ubi0: attaching mtd0
[  326.115473][T10536] ubi0: scanning is finished
[  326.120121][T10536] ubi0: empty MTD device detected
[  326.261523][T10543] =======================================================
[  326.261523][T10543] WARNING: The mand mount option has been deprecated and
[  326.261523][T10543]          and is ignored by this kernel. Remove the mand
[  326.261523][T10543]          option from the mount to silence this warning.
[  326.261523][T10543] =======================================================
[  326.298668][T10536] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  326.315265][T10536] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  326.322580][T10536] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  326.329782][T10536] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  326.337328][T10536] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  326.344254][T10536] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  326.352342][T10536] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3592595636
[  326.362583][T10536] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  326.379175][T10544] ubi0: background thread "ubi_bgt0d" started, PID 10544
[  327.372680][T10593] size and base must be multiples of 4 kiB
[  327.394818][T10585] size and base must be multiples of 4 kiB
[  327.403781][T10593] CPU: 1 UID: 0 PID: 10593 Comm: syz.0.1263 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  327.414595][T10593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  327.424675][T10593] Call Trace:
[  327.427972][T10593]  <TASK>
[  327.430919][T10593]  dump_stack_lvl+0x16c/0x1f0
[  327.435650][T10593]  mtrr_add+0xdf/0x110
[  327.439809][T10593]  mtrr_ioctl+0x7cd/0xcd0
[  327.444174][T10593]  ? __pfx_mtrr_ioctl+0x10/0x10
[  327.449063][T10593]  ? __pfx_lock_release+0x10/0x10
[  327.454120][T10593]  ? __fget_files+0x206/0x3a0
[  327.458832][T10593]  ? __pfx_mtrr_ioctl+0x10/0x10
[  327.463715][T10593]  proc_reg_unlocked_ioctl+0x226/0x320
[  327.469203][T10593]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  327.475209][T10593]  __x64_sys_ioctl+0x190/0x200
[  327.479999][T10593]  do_syscall_64+0xcd/0x250
[  327.484531][T10593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.490454][T10593] RIP: 0033:0x7f00ad985d29
[  327.494891][T10593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.514522][T10593] RSP: 002b:00007f00ae851038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  327.522970][T10593] RAX: ffffffffffffffda RBX: 00007f00adb76080 RCX: 00007f00ad985d29
[  327.530964][T10593] RDX: 0000000000000002 RSI: 00000000400c4d01 RDI: 0000000000000007
[  327.538953][T10593] RBP: 00007f00ada01aa8 R08: 0000000000000000 R09: 0000000000000000
[  327.546953][T10593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  327.554947][T10593] R13: 0000000000000000 R14: 00007f00adb76080 R15: 00007ffec402ce18
[  327.562952][T10593]  </TASK>
[  327.570097][T10585] CPU: 0 UID: 0 PID: 10585 Comm: syz.0.1263 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  327.580904][T10585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  327.590984][T10585] Call Trace:
[  327.594286][T10585]  <TASK>
[  327.597234][T10585]  dump_stack_lvl+0x16c/0x1f0
[  327.601943][T10585]  mtrr_add+0xdf/0x110
[  327.606049][T10585]  mtrr_ioctl+0x7cd/0xcd0
[  327.610418][T10585]  ? __pfx_mtrr_ioctl+0x10/0x10
[  327.615309][T10585]  ? __pfx_lock_release+0x10/0x10
[  327.620369][T10585]  ? __fget_files+0x206/0x3a0
[  327.625084][T10585]  ? __pfx_mtrr_ioctl+0x10/0x10
[  327.629974][T10585]  proc_reg_unlocked_ioctl+0x226/0x320
[  327.635468][T10585]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  327.641483][T10585]  __x64_sys_ioctl+0x190/0x200
[  327.646275][T10585]  do_syscall_64+0xcd/0x250
[  327.650820][T10585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.656753][T10585] RIP: 0033:0x7f00ad985d29
[  327.661194][T10585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.680835][T10585] RSP: 002b:00007f00ae872038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  327.689288][T10585] RAX: ffffffffffffffda RBX: 00007f00adb75fa0 RCX: 00007f00ad985d29
[  327.697295][T10585] RDX: 0000000000000002 RSI: 00000000400c4d01 RDI: 0000000000000007
[  327.705288][T10585] RBP: 00007f00ada01aa8 R08: 0000000000000000 R09: 0000000000000000
[  327.713286][T10585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  327.721283][T10585] R13: 0000000000000000 R14: 00007f00adb75fa0 R15: 00007ffec402ce18
[  327.729295][T10585]  </TASK>
[  327.772547][T10598] netlink: 290 bytes leftover after parsing attributes in process `syz.2.1265'.
[  327.802985][T10601] netlink: 290 bytes leftover after parsing attributes in process `syz.2.1265'.
[  327.937716][T10603] netlink: 138 bytes leftover after parsing attributes in process `syz.4.1266'.
[  327.994484][T10606] Invalid ELF header magic: != ELF
[  328.337902][T10616] openvswitch: netlink: VXLAN extension 0 has unexpected len 1 expected 0
[  329.345360][ T5838] Bluetooth: hci0: ACL packet for unknown connection handle 0
[  330.519629][T10687] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  331.275205][T10712] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1284'.
[  332.032855][T10735] netlink: 'syz.5.1287': attribute type 2 has an invalid length.
[  332.071818][T10735] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1287'.
[  332.705144][T10766] sctp: [Deprecated]: syz.4.1294 (pid 10766) Use of struct sctp_assoc_value in delayed_ack socket option.
[  332.705144][T10766] Use struct sctp_sack_info instead
[  333.536971][T10791] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1303'.
[  334.451979][T10815] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1308'.
[  334.483152][T10815] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1308'.
[  334.588074][T10817] FAULT_INJECTION: forcing a failure.
[  334.588074][T10817] name failslab, interval 1, probability 0, space 0, times 0
[  334.592918][T10810] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1310'.
[  334.666431][T10817] CPU: 0 UID: 0 PID: 10817 Comm: syz.0.1309 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  334.677253][T10817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  334.687334][T10817] Call Trace:
[  334.690637][T10817]  <TASK>
[  334.693589][T10817]  dump_stack_lvl+0x16c/0x1f0
[  334.698303][T10817]  should_fail_ex+0x497/0x5b0
[  334.703003][T10817]  ? fs_reclaim_acquire+0xae/0x150
[  334.708145][T10817]  should_failslab+0xc2/0x120
[  334.712860][T10817]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  334.718278][T10817]  ? __pfx___might_resched+0x10/0x10
[  334.723600][T10817]  ? __anon_vma_prepare+0x344/0x5e0
[  334.728845][T10817]  __anon_vma_prepare+0x344/0x5e0
[  334.733925][T10817]  __vmf_anon_prepare+0x11c/0x240
[  334.738983][T10817]  do_wp_page+0xf7e/0x4670
[  334.743420][T10817]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  334.749064][T10817]  ? __pfx_do_wp_page+0x10/0x10
[  334.753922][T10817]  ? rcu_is_watching+0x12/0xc0
[  334.758706][T10817]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  334.764088][T10817]  ? lock_acquire+0x2f/0xb0
[  334.768591][T10817]  ? __handle_mm_fault+0xdfa/0x2a40
[  334.773803][T10817]  __handle_mm_fault+0x1ade/0x2a40
[  334.778933][T10817]  ? __pfx___handle_mm_fault+0x10/0x10
[  334.784416][T10817]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  334.790076][T10817]  ? find_vma+0xc0/0x140
[  334.794336][T10817]  ? __pfx_find_vma+0x10/0x10
[  334.799034][T10817]  handle_mm_fault+0x3fa/0xaa0
[  334.803826][T10817]  do_user_addr_fault+0x7a3/0x13f0
[  334.808947][T10817]  exc_page_fault+0x5c/0xc0
[  334.813460][T10817]  asm_exc_page_fault+0x26/0x30
[  334.818324][T10817] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  334.824154][T10817] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  334.843775][T10817] RSP: 0018:ffffc900052cfa30 EFLAGS: 00050202
[  334.849880][T10817] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000080
[  334.857873][T10817] RDX: ffffed100c9b2010 RSI: ffff888064d90000 RDI: 0000000000000000
[  334.865854][T10817] RBP: ffffc900052cfda0 R08: 0000000000000000 R09: ffffed100c9b200f
[  334.873837][T10817] R10: ffff888064d9007f R11: 0000000000000001 R12: 0000000000000080
[  334.881896][T10817] R13: 00007ffffffff000 R14: ffff888064d90000 R15: 0000000000000080
[  334.889888][T10817]  _copy_to_iter+0x384/0x1400
[  334.894584][T10817]  ? pipe_read+0x8b7/0x13f0
[  334.899095][T10817]  ? find_held_lock+0x2d/0x110
[  334.903873][T10817]  ? __pfx__copy_to_iter+0x10/0x10
[  334.908994][T10817]  ? __pfx___mutex_lock+0x10/0x10
[  334.914077][T10817]  copy_page_to_iter+0xf1/0x180
[  334.919045][T10817]  pipe_read+0x53d/0x13f0
[  334.923405][T10817]  ? __pfx_pipe_read+0x10/0x10
[  334.928187][T10817]  ? __pfx_autoremove_wake_function+0x10/0x10
[  334.934278][T10817]  ? bpf_lsm_file_permission+0x9/0x10
[  334.939761][T10817]  ? security_file_permission+0x71/0x210
[  334.945410][T10817]  vfs_read+0xa4c/0xbe0
[  334.949752][T10817]  ? __pfx_vfs_read+0x10/0x10
[  334.954433][T10817]  ? __fget_files+0x40/0x3a0
[  334.959046][T10817]  ksys_read+0x207/0x250
[  334.963302][T10817]  ? __pfx_ksys_read+0x10/0x10
[  334.968080][T10817]  do_syscall_64+0xcd/0x250
[  334.972595][T10817]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.978499][T10817] RIP: 0033:0x7f00ad985d29
[  334.982918][T10817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.002531][T10817] RSP: 002b:00007f00ae872038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  335.010954][T10817] RAX: ffffffffffffffda RBX: 00007f00adb75fa0 RCX: 00007f00ad985d29
[  335.018939][T10817] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000003
[  335.026927][T10817] RBP: 00007f00ae872090 R08: 0000000000000000 R09: 0000000000000000
[  335.034907][T10817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  335.042880][T10817] R13: 0000000000000000 R14: 00007f00adb75fa0 R15: 00007ffec402ce18
[  335.050869][T10817]  </TASK>
[  335.649969][T10837] FAULT_INJECTION: forcing a failure.
[  335.649969][T10837] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  335.730735][T10837] CPU: 0 UID: 0 PID: 10837 Comm: syz.5.1317 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  335.741573][T10837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  335.751667][T10837] Call Trace:
[  335.754973][T10837]  <TASK>
[  335.757928][T10837]  dump_stack_lvl+0x16c/0x1f0
[  335.762618][T10837]  should_fail_ex+0x497/0x5b0
[  335.767310][T10837]  _copy_from_user+0x2e/0xd0
[  335.771917][T10837]  ____sys_sendmsg+0x846/0xb40
[  335.776691][T10837]  ? __pfx_____sys_sendmsg+0x10/0x10
[  335.781980][T10837]  ? __lock_acquire+0xcc5/0x3c40
[  335.786947][T10837]  ___sys_sendmsg+0x135/0x1e0
[  335.791639][T10837]  ? __pfx____sys_sendmsg+0x10/0x10
[  335.796856][T10837]  ? trace_lock_acquire+0x14e/0x1f0
[  335.802081][T10837]  __sys_sendmmsg+0x201/0x420
[  335.806773][T10837]  ? __pfx___sys_sendmmsg+0x10/0x10
[  335.812021][T10837]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  335.818040][T10837]  ? fput+0x67/0x440
[  335.821968][T10837]  ? ksys_write+0x1ba/0x250
[  335.826489][T10837]  ? __pfx_ksys_write+0x10/0x10
[  335.831349][T10837]  __x64_sys_sendmmsg+0x9c/0x100
[  335.836319][T10837]  ? lockdep_hardirqs_on+0x7c/0x110
[  335.841548][T10837]  do_syscall_64+0xcd/0x250
[  335.846081][T10837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.851991][T10837] RIP: 0033:0x7f7436985d29
[  335.856415][T10837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.876034][T10837] RSP: 002b:00007f7437897038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  335.884452][T10837] RAX: ffffffffffffffda RBX: 00007f7436b75fa0 RCX: 00007f7436985d29
[  335.892429][T10837] RDX: 00000000000009a6 RSI: 0000000020000000 RDI: 0000000000000003
[  335.900406][T10837] RBP: 00007f7437897090 R08: 0000000000000000 R09: 0000000000000000
[  335.908391][T10837] R10: 000000000000ff00 R11: 0000000000000246 R12: 0000000000000001
[  335.916366][T10837] R13: 0000000000000000 R14: 00007f7436b75fa0 R15: 00007fff58a18288
[  335.924352][T10837]  </TASK>
[  336.006988][T10840] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1318'.
[  337.372602][T10871] FAULT_INJECTION: forcing a failure.
[  337.372602][T10871] name failslab, interval 1, probability 0, space 0, times 0
[  337.433501][T10871] CPU: 0 UID: 0 PID: 10871 Comm: syz.0.1324 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  337.444324][T10871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  337.454401][T10871] Call Trace:
[  337.457681][T10871]  <TASK>
[  337.460613][T10871]  dump_stack_lvl+0x16c/0x1f0
[  337.465300][T10871]  should_fail_ex+0x497/0x5b0
[  337.469985][T10871]  ? fs_reclaim_acquire+0xae/0x150
[  337.475111][T10871]  should_failslab+0xc2/0x120
[  337.480147][T10871]  __kmalloc_noprof+0xce/0x4f0
[  337.484922][T10871]  ? d_absolute_path+0x137/0x1b0
[  337.489868][T10871]  ? tomoyo_encode2+0x100/0x3e0
[  337.494738][T10871]  tomoyo_encode2+0x100/0x3e0
[  337.499420][T10871]  tomoyo_realpath_from_path+0x1a7/0x710
[  337.505065][T10871]  tomoyo_path_number_perm+0x248/0x5b0
[  337.510538][T10871]  ? tomoyo_path_number_perm+0x235/0x5b0
[  337.516185][T10871]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  337.522199][T10871]  ? __pfx_lock_release+0x10/0x10
[  337.527225][T10871]  ? trace_lock_acquire+0x14e/0x1f0
[  337.532434][T10871]  ? lock_acquire+0x2f/0xb0
[  337.536938][T10871]  ? __fget_files+0x40/0x3a0
[  337.541536][T10871]  ? __fget_files+0x206/0x3a0
[  337.546224][T10871]  security_file_ioctl+0x9b/0x240
[  337.551256][T10871]  __x64_sys_ioctl+0xb7/0x200
[  337.555945][T10871]  do_syscall_64+0xcd/0x250
[  337.560471][T10871]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.566895][T10871] RIP: 0033:0x7f00ad985d29
[  337.571314][T10871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  337.590927][T10871] RSP: 002b:00007f00ae851038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  337.599350][T10871] RAX: ffffffffffffffda RBX: 00007f00adb76080 RCX: 00007f00ad985d29
[  337.607324][T10871] RDX: 0000000000000000 RSI: 0000000000005414 RDI: 0000000000000003
[  337.615295][T10871] RBP: 00007f00ae851090 R08: 0000000000000000 R09: 0000000000000000
[  337.623266][T10871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  337.631245][T10871] R13: 0000000000000001 R14: 00007f00adb76080 R15: 00007ffec402ce18
[  337.639235][T10871]  </TASK>
[  337.663779][T10871] ERROR: Out of memory at tomoyo_realpath_from_path.
[  339.665189][T10932] binder: 10931:10932 ioctl 400c620e 9 returned -14
[  341.449164][T10981] program syz.0.1364 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  341.662131][T10989] nbd: couldn't find a device at index 4096
[  341.881947][T10996] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1369'.
[  342.873953][T11020] block nbd0: not configured, cannot reconfigure
[  344.607689][T11055] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1388'.
[  345.206246][T11071] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1393'.
[  345.521565][T11087] openvswitch: netlink: Multiple metadata blocks provided
[  347.040455][T11129] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1405'.
[  347.641430][T11150] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1412'.
[  348.272743][T11172] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1418'.
[  348.675655][T11182] syz.0.1420 uses obsolete (PF_INET,SOCK_PACKET)
[  348.744451][T11180] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1421'.
[  348.776236][T11180] netdevsim netdevsim4 netdevsim2: entered allmulticast mode
[  352.632967][T11304] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1458'.
[  353.209263][    T9] smpboot: CPU 1 is now offline
[  353.576549][   T29] audit: type=1806 audit(8277292046.600:11): xattr="" res=-22
[  354.115354][   T29] audit: type=1800 audit(8277292047.150:12): pid=11349 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1476" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  360.298622][   T29] audit: type=1800 audit(8277292053.330:13): pid=11435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1494" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  360.560325][T11452] FAULT_INJECTION: forcing a failure.
[  360.560325][T11452] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  360.633814][T11452] CPU: 0 UID: 0 PID: 11452 Comm: syz.4.1500 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  360.644597][T11452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  360.654641][T11452] Call Trace:
[  360.657907][T11452]  <TASK>
[  360.660840][T11452]  dump_stack_lvl+0x16c/0x1f0
[  360.665512][T11452]  should_fail_ex+0x497/0x5b0
[  360.670188][T11452]  _copy_to_user+0x32/0xd0
[  360.674604][T11452]  simple_read_from_buffer+0xd0/0x160
[  360.679987][T11452]  proc_fail_nth_read+0x198/0x270
[  360.685008][T11452]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  360.690552][T11452]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  360.696090][T11452]  vfs_read+0x1df/0xbe0
[  360.700257][T11452]  ? __fget_files+0x1fc/0x3a0
[  360.704938][T11452]  ? __pfx___mutex_lock+0x10/0x10
[  360.709965][T11452]  ? __pfx_vfs_read+0x10/0x10
[  360.714649][T11452]  ? __fget_files+0x206/0x3a0
[  360.719421][T11452]  ksys_read+0x12b/0x250
[  360.723663][T11452]  ? __pfx_ksys_read+0x10/0x10
[  360.728429][T11452]  do_syscall_64+0xcd/0x250
[  360.732947][T11452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.738836][T11452] RIP: 0033:0x7fe6f8b8473c
[  360.743241][T11452] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  360.762874][T11452] RSP: 002b:00007fe6f99cf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  360.771285][T11452] RAX: ffffffffffffffda RBX: 00007fe6f8d75fa0 RCX: 00007fe6f8b8473c
[  360.779264][T11452] RDX: 000000000000000f RSI: 00007fe6f99cf0a0 RDI: 0000000000000005
[  360.787243][T11452] RBP: 00007fe6f99cf090 R08: 0000000000000000 R09: 0000000000000000
[  360.795207][T11452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  360.803182][T11452] R13: 0000000000000000 R14: 00007fe6f8d75fa0 R15: 00007ffdaa4f2248
[  360.811156][T11452]  </TASK>
[  361.148339][T11465] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1504'.
[  361.199419][T11469] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1504'.
[  361.237055][T11465] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1504'.
[  366.775407][T11609] [U] �E��h&��㩔�0�S���V�H0%>�{�.�p:�9���8鰤�?'��J�)H<v5�@�G����Xޏ�z�>���3,(���Ea׀7�!���N�������	�3;���M�+��U̷�͵������Q�mֽ:�|J%��b`1��W��Ǎ�,g>�.��<|���ٸ���1����MU�n`�|��v�~`ՐoҺ�g-eY��;�=�?�|��m�i"�kb
3�
����9�$�z>f.�G7��v]�Ҫ�p7q��@K�pZ�P �m�� �yv�O^��++�`n%Qn���xM�'��dҤ��r^/�^0@�ψ(p]��?��I�X�F���o�*�
[  366.808774][T11609] [U] �h)`��
[  367.156323][T11609] [U] �%rUR_�
-�����.,_��*Y�Ha�鬴�c��J���J_��%:�o gW�h4z��/`��L5u�Z���?����S����a��^�>u�݄�k�����wH8=����D��E�PH5H"�+h'Nl�H�/5��x_3ƞ	���X�	LY�nC�e����א'lp�0���F]h�2Qh�
[  367.343435][T11615] netlink: 178 bytes leftover after parsing attributes in process `syz.4.1543'.
[  367.381231][T11609] [U] ��#O�m��& ��=%����F�yƵ�j��x�������}Ѹ��1�U�d�y�}1u��P��+A`�L�T���'�����E��
[  367.451028][T11609] [U] ��Ĉ�t����l�!�
[  367.494980][T11609] [U] �~��x^��Oz[��m~�"� i�ؤ��X�x���䄪�D�v�����w�^��u�����y�F����=��+����3%���2&�`f!�G��
[  367.586912][T11609] [U] Ɂ�ED
[  367.590043][T11609] [U] �k3�ϼ(!�/=�☼�f
[  367.695697][T11609] [U] ����I[*���Z�;S��C�'}ӧPb�δ�'HH����%Qӂu9�6��7;��G���2Y�v��|�iWu�8�[Υ�6YTw���rqDo4A���+L�V|(��x���ͦ��)�/�#��ܛ2��b���~N��uHլ3�(
[  367.762322][T11609] [U] �j�J(�+�u�W��Ɇ����,�sC���Гb�c
���q=�k�^jƦHvҔ��>�ƚ�����CI�$*�w'���t���&�u/<��H�Z��ٗ���rf�rt�Y�t�+?����2
[  367.837353][T11609] [U] ��.}=��&[X;
���*����1R�E|�1�
[  367.865331][T11609] [U] �]�y�_# �)t�R�D�΀����x�h
[  368.127667][T11636] cifs: Unknown parameter 'no+ 1����`��r�sFn)��a�H��ā��h`����9k�A}���1\D@��.��Z�Cg^�'
[  369.364797][T11645] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1554'.
[  369.411255][T11645] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  369.451091][T11645] batman_adv: batadv0: Removing interface: batadv_slave_0
[  369.565639][T11645] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  369.586436][T11645] batman_adv: batadv0: Removing interface: batadv_slave_1
[  371.378214][T11716] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1574'.
[  372.063011][T11722] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1578'.
[  372.906624][T11761] HfR: entered promiscuous mode
[  373.076135][T11761] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1589'.
[  374.225660][T11790] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1595'.
[  377.112308][T11865] sctp: [Deprecated]: syz.5.1617 (pid 11865) Use of int in maxseg socket option.
[  377.112308][T11865] Use struct sctp_assoc_value instead
[  377.569034][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  377.584009][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  378.623611][T11906] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1626'.
[  379.310712][T11936] snd_aloop snd_aloop.0: control 5:9:1:IA��>/�[k<���mgz���<�5����l�0S:0 is already present
[  379.783920][T11936] snd_aloop snd_aloop.0: control 0:0:1:�:0 is already present
[  379.943170][T11936] snd_aloop snd_aloop.0: control 0:0:1:�:0 is already present
[  381.176463][T11994] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1643'.
[  381.696728][T12012] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1649'.
[  381.859813][T12016] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1650'.
[  382.162212][T12023] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1654'.
[  383.467769][T12064] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  383.536981][T12064] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  383.617537][T12064] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  383.672424][T12064] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  383.728887][T12064] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  383.797971][T12064] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  384.365277][T12061] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  384.450672][   T29] audit: type=1806 audit(8277292077.480:14): xattr="." res=0
[  384.464453][T12080] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  384.533826][T12080] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  384.907278][T12088] Invalid ELF header magic: != ELF
[  385.205265][T12087] netlink: 93 bytes leftover after parsing attributes in process `syz.4.1673'.
[  385.484419][ T5842] Bluetooth: hci0: command 0x0c1a tx timeout
[  385.563680][ T5842] Bluetooth: hci3: command 0x0c1a tx timeout
[  385.643607][ T5842] Bluetooth: hci2: command 0x0c1a tx timeout
[  385.725023][ T5842] Bluetooth: hci1: command 0x0c1a tx timeout
[  385.924657][T12102] netlink: 'syz.5.1676': attribute type 28 has an invalid length.
[  386.018629][T12102] netlink: 'syz.5.1676': attribute type 29 has an invalid length.
[  386.135038][T12102] netlink: 'syz.5.1676': attribute type 30 has an invalid length.
[  386.197393][T12102] netlink: 'syz.5.1676': attribute type 31 has an invalid length.
[  386.250330][T12102] netlink: 'syz.5.1676': attribute type 32 has an invalid length.
[  386.303434][T12102] netlink: 'syz.5.1676': attribute type 33 has an invalid length.
[  386.356259][T12102] netlink: 'syz.5.1676': attribute type 35 has an invalid length.
[  386.412765][T12102] netlink: 'syz.5.1676': attribute type 37 has an invalid length.
[  386.462217][T12102] netlink: 'syz.5.1676': attribute type 39 has an invalid length.
[  386.516742][T12102] netlink: 'syz.5.1676': attribute type 40 has an invalid length.
[  386.576356][T12102] netlink: 18 bytes leftover after parsing attributes in process `syz.5.1676'.
[  386.675187][T12105] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  386.709677][T12105] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  386.725229][T12105] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  386.753801][T12105] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  388.683633][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout
[  388.763643][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout
[  388.769944][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout
[  388.776227][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout
[  390.435720][T12237] qrtr: Invalid version 0
[  390.843604][T12175] Bluetooth: hci1: command 0x0c1a tx timeout
[  391.035607][T12231] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1713'.
[  391.049219][T12242] validate_nla: 1 callbacks suppressed
[  391.049231][T12242] netlink: 'syz.0.1715': attribute type 1 has an invalid length.
[  391.550196][T12229] kexec: Could not allocate control_code_buffer
[  391.909861][T12270] netlink: 178 bytes leftover after parsing attributes in process `syz.2.1726'.
[  392.744566][T12302] netlink: 178 bytes leftover after parsing attributes in process `syz.5.1737'.
[  393.204013][T12296] netlink: zone id is out of range
[  393.209150][T12296] netlink: del zone limit has 4 unknown bytes
[  393.352361][T12305] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1738'.
[  393.453298][T12319] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1741'.
[  394.043480][T12336] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1747'.
[  394.510248][T12345] netlink: 178 bytes leftover after parsing attributes in process `syz.0.1748'.
[  395.435225][T12368] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1754'.
[  395.774533][T12379] openvswitch: netlink: IP tunnel dst address not specified
[  396.248322][T12390] bridge0: port 3(veth1_to_hsr) entered blocking state
[  396.277488][T12390] bridge0: port 3(veth1_to_hsr) entered disabled state
[  396.326066][T12390] veth1_to_hsr: entered allmulticast mode
[  396.376181][T12390] veth1_to_hsr: entered promiscuous mode
[  396.394238][T12390] bridge0: port 3(veth1_to_hsr) entered blocking state
[  396.401175][T12390] bridge0: port 3(veth1_to_hsr) entered forwarding state
[  398.230336][T12423] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1774'.
[  399.327547][T12438] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1778'.
[  400.343691][T12471] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1786'.
[  400.413775][T12463] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1786'.
[  401.194090][T12485] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1793'.
[  403.303969][T12534] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1800'.
[  403.588529][T12558] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1804'.
[  404.882576][T12575] netlink: 'syz.0.1809': attribute type 2 has an invalid length.
[  404.957139][T12575] netlink: 674 bytes leftover after parsing attributes in process `syz.0.1809'.
[  406.065760][T12610] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1821'.
[  406.515578][T12631] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1828'.
[  406.616084][T12631] bridge0: port 1(bridge_slave_0) entered disabled state
[  406.715532][T12631] bridge_slave_0 (unregistering): left allmulticast mode
[  406.751108][T12631] bridge_slave_0 (unregistering): left promiscuous mode
[  406.773123][T12631] bridge0: port 1(bridge_slave_0) entered disabled state
[  406.826753][T12609] kexec: Could not allocate control_code_buffer
[  407.923873][T12650] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1836'.
[  408.491858][T12674] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1841'.
[  408.600534][T12674] bridge0: port 1(bridge_slave_0) entered disabled state
[  408.754019][T12673] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1849'.
[  408.806154][T12674] bridge_slave_0 (unregistering): left allmulticast mode
[  408.828587][T12674] bridge_slave_0 (unregistering): left promiscuous mode
[  408.875169][T12674] bridge0: port 1(bridge_slave_0) entered disabled state
[  409.357662][T12665] kexec: Could not allocate control_code_buffer
[  409.714089][T12699] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1850'.
[  409.813649][T12703] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1850'.
[  410.064413][T12695] netlink: 'syz.4.1848': attribute type 2 has an invalid length.
[  410.134651][T12695] netlink: 674 bytes leftover after parsing attributes in process `syz.4.1848'.
[  411.045824][T12723] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1855'.
[  411.840757][T12742] netlink: 'syz.4.1862': attribute type 19 has an invalid length.
[  411.890250][T12742] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1862'.
[  412.114869][T12747] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1863'.
[  412.159052][T12747] bridge0: port 1(bridge_slave_0) entered disabled state
[  412.234387][T12747] bridge_slave_0 (unregistering): left allmulticast mode
[  412.259294][T12747] bridge_slave_0 (unregistering): left promiscuous mode
[  412.285454][T12747] bridge0: port 1(bridge_slave_0) entered disabled state
[  412.563837][T12751] netlink: 'syz.4.1864': attribute type 11 has an invalid length.
[  413.904339][T12762] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1868'.
[  414.673700][T12757] kexec: Could not allocate control_code_buffer
[  416.083433][T12807] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1882'.
[  417.318799][T12812] kexec: Could not allocate control_code_buffer
[  418.470688][T12871] netlink: 'syz.2.1900': attribute type 28 has an invalid length.
[  418.513232][T12871] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1900'.
[  419.020279][T12892] netlink: 'syz.5.1906': attribute type 1 has an invalid length.
[  419.153947][T12888] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1903'.
[  419.567401][T12885] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1904'.
[  420.249107][T12936] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1914'.
[  420.282824][T12936] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1914'.
 `syz.2.1916'.
[  424.138186][T13001] netlink: 'syz.0.1929': attribute type 1 has an invalid length.
[  425.027920][T13004] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1930'.
[  427.141246][T13036] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1940'.
[  427.217386][T13039] Process accounting resumed
[  427.565715][T13050] dyndbg: bad flag-op b, at start of blacklisting initcall %s\n
[  427.600123][T13050] dyndbg: flags parse failed
[  427.642725][T13050] dyndbg: bad flag-op i, at start of init/m
[  427.685846][T13050] dyndbg: flags parse failed
[  428.554370][T13054] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1946'.
[  430.715222][T13066] kexec: Could not allocate control_code_buffer
[  431.106025][T13087] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1957'.
[  431.688419][T13107] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1963'.
[  432.503969][T13120] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1970'.
[  432.915087][T13137] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1976'.
[  434.065144][T13164] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1985'.
[  434.743367][T13194] ubi: mtd0 is already attached to ubi0
[  434.753304][T13187] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1998'.
[  435.297094][T13174] kexec: Could not allocate control_code_buffer
[  435.348606][T13207] netlink: 'syz.4.1995': attribute type 16 has an invalid length.
[  435.405391][T13207] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1995'.
[  435.983368][T13215] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1997'.
[  436.369352][   T29] audit: type=1804 audit(8277292129.400:15): pid=13225 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2003" name="/newroot/sys/kernel/tracing/free_buffer" dev="tracefs" ino=1056 res=1 errno=0
[  436.470079][   T29] audit: type=1800 audit(8277292129.450:16): pid=13230 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2005" name="lu_gp_id" dev="configfs" ino=37069 res=0 errno=0
[  437.282813][T13211] kexec: Could not allocate control_code_buffer
[  437.368762][T13244] usb usb6: usbfs: process 13244 (syz.4.2009) did not claim interface 0 before use
[  437.631455][T13252] netlink: 326 bytes leftover after parsing attributes in process `syz.4.2012'.
[  437.914419][T13245] Invalid ELF header magic: != ELF
[  438.549362][T13272] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2015'.
[  439.797179][T13269] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2016'.
[  439.986137][T13306] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2020'.
[  440.296578][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  440.302904][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  440.406236][T13290] kexec: Could not allocate control_code_buffer
[  440.604581][T13320] netlink: 'syz.0.2024': attribute type 16 has an invalid length.
[  440.653043][T13320] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2024'.
[  441.603325][T13329] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2027'.
[  442.737239][T13347] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2032'.
[  443.763221][T13372] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2039'.
[  443.805015][T13392] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2043'.
[  444.943991][T13401] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2045'.
[  445.074387][T13407] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2047'.
[  445.292336][T13420] ubi: mtd0 is already attached to ubi0
[  445.878221][T13428] netlink: 'syz.5.2053': attribute type 16 has an invalid length.
[  445.920454][T13428] netlink: 330 bytes leftover after parsing attributes in process `syz.5.2053'.
[  447.199597][T13459] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2065'.
[  447.897675][   T54] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  447.906589][   T54] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  447.914822][   T54] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  447.932885][   T54] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  447.940311][   T54] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  447.948665][   T54] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  448.285923][T13476] chnl_net:caif_netlink_parms(): no params data found
[  448.508690][T13476] bridge0: port 1(bridge_slave_0) entered blocking state
[  448.530278][T13476] bridge0: port 1(bridge_slave_0) entered disabled state
[  448.563819][T13476] bridge_slave_0: entered allmulticast mode
[  448.590753][T13476] bridge_slave_0: entered promiscuous mode
[  448.617732][T13476] bridge0: port 2(bridge_slave_1) entered blocking state
[  448.655525][T13476] bridge0: port 2(bridge_slave_1) entered disabled state
[  448.690557][T13476] bridge_slave_1: entered allmulticast mode
[  448.711260][T13476] bridge_slave_1: entered promiscuous mode
[  448.876666][T13476] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  448.916421][T13476] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  449.108343][T13476] team0: Port device team_slave_0 added
[  449.142103][T13476] team0: Port device team_slave_1 added
[  449.283975][T13476] batman_adv: batadv0: Adding interface: batadv_slave_0
[  449.320647][T13476] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  449.433288][T13476] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  449.493935][T13476] batman_adv: batadv0: Adding interface: batadv_slave_1
[  449.500949][T13476] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  449.634140][T13476] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  449.659895][T13507] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2077'.
[  449.809948][T13476] hsr_slave_0: entered promiscuous mode
[  449.830119][T13476] hsr_slave_1: entered promiscuous mode
[  449.850560][T13476] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  449.876554][T13476] Cannot create hsr debugfs directory
[  450.044352][T12175] Bluetooth: hci3: command tx timeout
[  450.335747][T13476] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  450.507130][T13476] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  450.675534][T13476] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  450.850286][T13476] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.092237][T13476] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  451.251387][T13476] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  451.301240][T13476] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  451.324487][T13526] ecryptfs_parse_packet_length: Error parsing packet length
[  451.381150][T13476] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  451.434215][T13526] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[  451.655016][T13476] 8021q: adding VLAN 0 to HW filter on device bond0
[  451.707863][T13476] 8021q: adding VLAN 0 to HW filter on device team0
[  451.764823][T11190] bridge0: port 1(bridge_slave_0) entered blocking state
[  451.771957][T11190] bridge0: port 1(bridge_slave_0) entered forwarding state
[  451.855611][T11190] bridge0: port 2(bridge_slave_1) entered blocking state
[  451.862780][T11190] bridge0: port 2(bridge_slave_1) entered forwarding state
[  452.124442][T12175] Bluetooth: hci3: command tx timeout
[  452.234470][T13476] 8021q: adding VLAN 0 to HW filter on device batadv0
[  452.317974][T13476] veth0_vlan: entered promiscuous mode
[  452.348841][T13476] veth1_vlan: entered promiscuous mode
[  452.408552][T13476] veth0_macvtap: entered promiscuous mode
[  452.437582][T13476] veth1_macvtap: entered promiscuous mode
[  452.485874][T13476] batman_adv: batadv0: Interface activated: batadv_slave_0
[  452.519845][T13476] batman_adv: batadv0: Interface activated: batadv_slave_1
[  452.554406][T13476] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  452.588907][T13476] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  452.623425][T13476] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  452.655794][T13476] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  452.858879][T11211] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  452.896230][T11211] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  452.968657][T11211] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  452.999259][T11211] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  453.119975][   T29] audit: type=1807 audit(8277292146.150:17): UNKNOWN=$��%��=H
w#_�>��j res=0
[  453.189802][   T29] audit: type=1802 audit(8277292146.180:18): pid=13561 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.5.2094" res=0 errno=0
[  453.231758][T13561] ima: policy update failed
[  453.245964][T13565] netlink: 'syz.2.2067': attribute type 16 has an invalid length.
[  453.286415][T13565] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2067'.
[  453.296349][   T29] audit: type=1802 audit(8277292146.300:19): pid=13561 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.2094" res=0 errno=0
[  454.203715][T12175] Bluetooth: hci3: command tx timeout
[  454.434603][T13579] lo: entered allmulticast mode
[  454.604366][T13585] lo: left allmulticast mode
[  454.751272][T13579] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2101'.
[  455.154518][T13601] netlink: 'syz.5.2107': attribute type 1 has an invalid length.
[  455.167482][T13602] netlink: 'syz.4.2106': attribute type 16 has an invalid length.
[  455.214650][T13602] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2106'.
[  455.468834][ T5833] 
[  455.471174][ T5833] ======================================================
[  455.478166][ T5833] WARNING: possible circular locking dependency detected
[  455.485160][ T5833] 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0 Not tainted
[  455.492249][ T5833] ------------------------------------------------------
[  455.499244][ T5833] kworker/0:3/5833 is trying to acquire lock:
[  455.505283][ T5833] ffff88807123e6a8 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_switch_to_fallback+0x2d/0xa00
[  455.515985][ T5833] 
[  455.515985][ T5833] but task is already holding lock:
[  455.523324][ T5833] ffff88807123de58 (sk_lock-AF_INET){+.+.}-{0:0}, at: smc_connect_work+0x53c/0xae0
[  455.532613][ T5833] 
[  455.532613][ T5833] which lock already depends on the new lock.
[  455.532613][ T5833] 
[  455.542990][ T5833] 
[  455.542990][ T5833] the existing dependency chain (in reverse order) is:
[  455.551992][ T5833] 
[  455.551992][ T5833] -> #2 (sk_lock-AF_INET){+.+.}-{0:0}:
[  455.559618][ T5833]        lock_sock_nested+0x3a/0xf0
[  455.564803][ T5833]        sockopt_lock_sock+0x54/0x70
[  455.570074][ T5833]        do_ip_getsockopt+0x115c/0x2bf0
[  455.575600][ T5833]        ip_getsockopt+0x9c/0x1e0
[  455.580605][ T5833]        raw_getsockopt+0x4d/0x1e0
[  455.585696][ T5833]        do_sock_getsockopt+0x3fe/0x870
[  455.591221][ T5833]        __sys_getsockopt+0x12f/0x260
[  455.596581][ T5833]        __x64_sys_getsockopt+0xbd/0x160
[  455.602198][ T5833]        do_syscall_64+0xcd/0x250
[  455.607320][ T5833]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  455.613748][ T5833] 
[  455.613748][ T5833] -> #1 (rtnl_mutex){+.+.}-{4:4}:
[  455.620950][ T5833]        __mutex_lock+0x19b/0xa60
[  455.625969][ T5833]        do_ip_setsockopt+0xf9/0x38c0
[  455.631333][ T5833]        ip_setsockopt+0x59/0xf0
[  455.636254][ T5833]        ipv6_setsockopt+0x155/0x170
[  455.641523][ T5833]        tcp_setsockopt+0xa4/0x100
[  455.646616][ T5833]        smc_setsockopt+0x1b4/0xc00
[  455.651804][ T5833]        do_sock_setsockopt+0x222/0x480
[  455.657331][ T5833]        __sys_setsockopt+0x1a0/0x230
[  455.662689][ T5833]        __x64_sys_setsockopt+0xbd/0x160
[  455.668325][ T5833]        do_syscall_64+0xcd/0x250
[  455.673356][ T5833]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  455.679778][ T5833] 
[  455.679778][ T5833] -> #0 (&smc->clcsock_release_lock){+.+.}-{4:4}:
[  455.688378][ T5833]        __lock_acquire+0x249e/0x3c40
[  455.693756][ T5833]        lock_acquire.part.0+0x11b/0x380
[  455.699371][ T5833]        __mutex_lock+0x19b/0xa60
[  455.704390][ T5833]        smc_switch_to_fallback+0x2d/0xa00
[  455.710215][ T5833]        smc_connect_fallback+0x42/0x240
[  455.715841][ T5833]        __smc_connect+0xb6f/0x4890
[  455.721019][ T5833]        smc_connect_work+0x54f/0xae0
[  455.726377][ T5833]        process_one_work+0x958/0x1b30
[  455.731861][ T5833]        worker_thread+0x6c8/0xf00
[  455.736985][ T5833]        kthread+0x2c1/0x3a0
[  455.741568][ T5833]        ret_from_fork+0x45/0x80
[  455.746503][ T5833]        ret_from_fork_asm+0x1a/0x30
[  455.751782][ T5833] 
[  455.751782][ T5833] other info that might help us debug this:
[  455.751782][ T5833] 
[  455.761992][ T5833] Chain exists of:
[  455.761992][ T5833]   &smc->clcsock_release_lock --> rtnl_mutex --> sk_lock-AF_INET
[  455.761992][ T5833] 
[  455.775525][ T5833]  Possible unsafe locking scenario:
[  455.775525][ T5833] 
[  455.782963][ T5833]        CPU0                    CPU1
[  455.788307][ T5833]        ----                    ----
[  455.793653][ T5833]   lock(sk_lock-AF_INET);
[  455.798064][ T5833]                                lock(rtnl_mutex);
[  455.804546][ T5833]                                lock(sk_lock-AF_INET);
[  455.811473][ T5833]   lock(&smc->clcsock_release_lock);
[  455.816825][ T5833] 
[  455.816825][ T5833]  *** DEADLOCK ***
[  455.816825][ T5833] 
[  455.824943][ T5833] 3 locks held by kworker/0:3/5833:
[  455.830117][ T5833]  #0: ffff888030fcd548 ((wq_completion)smc_hs_wq){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30
[  455.840796][ T5833]  #1: ffffc90003ab7d80 ((work_completion)(&smc->connect_work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30
[  455.852514][ T5833]  #2: ffff88807123de58 (sk_lock-AF_INET){+.+.}-{0:0}, at: smc_connect_work+0x53c/0xae0
[  455.862234][ T5833] 
[  455.862234][ T5833] stack backtrace:
[  455.868098][ T5833] CPU: 0 UID: 0 PID: 5833 Comm: kworker/0:3 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  455.878834][ T5833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  455.888871][ T5833] Workqueue: smc_hs_wq smc_connect_work
[  455.894580][ T5833] Call Trace:
[  455.897842][ T5833]  <TASK>
[  455.900759][ T5833]  dump_stack_lvl+0x116/0x1f0
[  455.905436][ T5833]  print_circular_bug+0x41c/0x610
[  455.910451][ T5833]  check_noncircular+0x31a/0x400
[  455.915378][ T5833]  ? __pfx_check_noncircular+0x10/0x10
[  455.920836][ T5833]  ? hlock_class+0x4e/0x130
[  455.925322][ T5833]  ? mark_lock+0xb5/0xc60
[  455.929641][ T5833]  ? lockdep_lock+0xc6/0x200
[  455.934218][ T5833]  ? __pfx_lockdep_lock+0x10/0x10
[  455.939242][ T5833]  __lock_acquire+0x249e/0x3c40
[  455.944086][ T5833]  ? __pfx___lock_acquire+0x10/0x10
[  455.949276][ T5833]  ? hlock_class+0x4e/0x130
[  455.953766][ T5833]  lock_acquire.part.0+0x11b/0x380
[  455.958858][ T5833]  ? smc_switch_to_fallback+0x2d/0xa00
[  455.964312][ T5833]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  455.969926][ T5833]  ? rcu_is_watching+0x12/0xc0
[  455.974675][ T5833]  ? trace_lock_acquire+0x14e/0x1f0
[  455.979859][ T5833]  ? smc_switch_to_fallback+0x2d/0xa00
[  455.985309][ T5833]  ? lock_acquire+0x2f/0xb0
[  455.989792][ T5833]  ? smc_switch_to_fallback+0x2d/0xa00
[  455.995238][ T5833]  __mutex_lock+0x19b/0xa60
[  455.999728][ T5833]  ? smc_switch_to_fallback+0x2d/0xa00
[  456.005174][ T5833]  ? smc_switch_to_fallback+0x2d/0xa00
[  456.010622][ T5833]  ? __pfx___mutex_lock+0x10/0x10
[  456.015629][ T5833]  ? __lock_acquire+0x15a9/0x3c40
[  456.020645][ T5833]  ? smc_switch_to_fallback+0x2d/0xa00
[  456.026095][ T5833]  smc_switch_to_fallback+0x2d/0xa00
[  456.031372][ T5833]  smc_connect_fallback+0x42/0x240
[  456.036478][ T5833]  __smc_connect+0xb6f/0x4890
[  456.041137][ T5833]  ? find_held_lock+0x2d/0x110
[  456.045890][ T5833]  ? __pfx___smc_connect+0x10/0x10
[  456.050983][ T5833]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  456.056340][ T5833]  ? mark_held_locks+0x9f/0xe0
[  456.061099][ T5833]  ? __local_bh_enable_ip+0xa4/0x120
[  456.066372][ T5833]  smc_connect_work+0x54f/0xae0
[  456.071216][ T5833]  ? __pfx_smc_connect_work+0x10/0x10
[  456.076572][ T5833]  ? lock_acquire+0x2f/0xb0
[  456.081053][ T5833]  ? process_one_work+0x8bb/0x1b30
[  456.086145][ T5833]  process_one_work+0x958/0x1b30
[  456.091064][ T5833]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  456.096679][ T5833]  ? __pfx_process_one_work+0x10/0x10
[  456.102032][ T5833]  ? rcu_is_watching+0x12/0xc0
[  456.106782][ T5833]  ? assign_work+0x1a0/0x250
[  456.111359][ T5833]  worker_thread+0x6c8/0xf00
[  456.115940][ T5833]  ? __kthread_parkme+0x148/0x220
[  456.120953][ T5833]  ? __pfx_worker_thread+0x10/0x10
[  456.126046][ T5833]  kthread+0x2c1/0x3a0
[  456.130104][ T5833]  ? _raw_spin_unlock_irq+0x23/0x50
[  456.135285][ T5833]  ? __pfx_kthread+0x10/0x10
[  456.139861][ T5833]  ret_from_fork+0x45/0x80
[  456.144270][ T5833]  ? __pfx_kthread+0x10/0x10
[  456.148853][ T5833]  ret_from_fork_asm+0x1a/0x30
[  456.153623][ T5833]  </TASK>
[  456.156749][    C0] vkms_vblank_simulate: vblank timer overrun
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  456.524601][T12175] Bluetooth: hci3: command tx timeout
[  456.537969][T13612] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000010006
[  457.221242][T13475] Process accounting paused
[  457.695864][T11193] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.804906][T11193] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.859167][T11193] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.914813][T11193] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.004813][T11193] bridge_slave_1: left allmulticast mode
[  458.010486][T11193] bridge_slave_1: left promiscuous mode
[  458.047151][T11193] bridge0: port 2(bridge_slave_1) entered disabled state
[  458.064307][T11193] bridge_slave_0: left allmulticast mode
[  458.069970][T11193] bridge_slave_0: left promiscuous mode
[  458.115966][T11193] bridge0: port 1(bridge_slave_0) entered disabled state
[  458.228601][T11193] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  458.244882][T11193] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  458.258629][T11193] bond0 (unregistering): Released all slaves
[  458.389658][T11193] hsr_slave_0: left promiscuous mode
[  458.404812][T11193] hsr_slave_1: left promiscuous mode
[  458.410369][T11193] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  458.424295][T11193] batman_adv: batadv0: Removing interface: batadv_slave_0
[  458.441093][T11193] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  458.458447][T11193] batman_adv: batadv0: Removing interface: batadv_slave_1
[  458.475025][T11193] veth1_macvtap: left promiscuous mode
[  458.480511][T11193] veth0_macvtap: left promiscuous mode
[  458.513458][T11193] veth1_vlan: left promiscuous mode
[  458.519560][T11193] veth0_vlan: left promiscuous mode
[  458.708387][T11193] team0 (unregistering): Port device team_slave_1 removed
[  458.732020][T11193] team0 (unregistering): Port device team_slave_0 removed