last executing test programs:

3.266788479s ago: executing program 3 (id=3758):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket(0xa, 0x801, 0x84)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sysfs$auto(0x2, 0x0, 0x0)
fsopen$auto(0x0, 0x1)
epoll_create$auto(0x4)
close_range$auto(r0, r1, 0x0)
epoll_create$auto(0x4)
epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_FRAME(r2, &(0x7f0000001280)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001240)={&(0x7f0000000c80)={0x508, 0x0, 0x4, 0x70bd2d, 0x25dfdbfc, {}, [@HWSIM_ATTR_TX_INFO_FLAGS={0x2a, 0x15, "6a7e96d933f4cac2686df8ef0708d8a0b7a2b23f042b3b8ba2b87129eb999ed9808a7c133283"}, @HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE={0x4}, @HWSIM_ATTR_FRAME={0x4b0, 0x3, "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"}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}, @HWSIM_ATTR_FREQ={0x8, 0x13, 0x8}, @HWSIM_ATTR_CHANNELS={0x8, 0x9, 0xfffffffd}]}, 0x508}, 0x1, 0x0, 0x0, 0x4000000}, 0x50)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000004200)={&(0x7f00000005c0)={0x1c, r3, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@HWSIM_ATTR_REG_HINT_ALPHA2={0x6, 0xb, ',)'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000060}, 0x0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r2, &(0x7f0000000c00)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000380)={0x808, r3, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@HWSIM_ATTR_FRAME={0x532, 0x3, "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"}, @HWSIM_ATTR_PMSR_SUPPORT={0x2b0, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0x84, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x7}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x6}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0xb}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x4}]}]}, @NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR={0x4}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x1}, @NL80211_PMSR_ATTR_TYPE_CAPA={0xbc, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x10000}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x51}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x32}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0xc}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0xff}]}]}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x5}, @NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR={0x4}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x8000}, @NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}, @NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x144, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x10}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xffff}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x7}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x7}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0xa248}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xfffffff9}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x5f}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x7}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x6}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0xa0}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xe}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0xc}]}]}]}, @HWSIM_ATTR_RADIO_NAME={0x9, 0x11, '^/--('}, @HWSIM_ATTR_REG_STRICT_REG={0x4}]}, 0x808}, 0x1, 0x0, 0x0, 0x20000000}, 0x40010)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1)

2.467582872s ago: executing program 3 (id=3762):
r0 = socket(0x1d, 0x4, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
madvise$auto(0xf92, 0x7fffffff, 0x1)
set_mempolicy$auto(0x2, 0x0, 0x4)
sendmmsg$auto(r0, &(0x7f0000001240)={{&(0x7f0000000040)="f4d08f15989e2e84c410c0dcd7cffe17265d3465d34e84ae063721e668341b6c79c6c92948ffeb6b3ea4521abfd6067f8f1925823aae06835f3308545bf98314dcde71f7f828acb839e48d8d6433bfe662a7e48e46ef9130a4507c31a5b2b12cb0f1ab1c9baabcfb7a71a63e8bfb0047c0b86fd8cc785b1a739d4e252743900d1bf82a7b7e118a5cb86a7692b83b6a41d1460d70f49cfd016ec8f5c7faea15cbcde2ab", 0x4, &(0x7f0000001100)={&(0x7f0000000100)="4141104696be0ca8b100abcff686f415c5ca98b0c4951461ef4f0cd50113d313a7bc6cb6ff3630e9f13676f6ef52cfd098d098c5e218b99421ddf88417f26e7afa932aa067932c13bd84a97bc39b68c8406bad58bc4cd74ab1c40c9331c61cde46d3e2162f3abcea5b6621cc5ab5b0e2811e9db530a7499c8f0c7af3b473b81fa92cfc296ab7c178270d3c5af1d03ce5a44eeb0f2225dcaeddb0e7aaa2a78ad00673abc710f7991b1cabc7d0479a292d976ea0d7aa313d9b5a977235b364dcdb98e1991e7cee4274c76bb0b5597a327f637e56f5afd6287a49a91586b82e7e5778e0d37e1c043a06b87cba9952c26825ed12853a88e5415fa15e3912ddade3983c212e11d190d20281e92ea033ca5273e77ebc8caa4962b338988f3b32d0241213a6f7437c7b12341291a824bac0a3fe783705464852a9e30061c1ddd20db781e174a76243ab3d5099e6e5ff10dd2791d938e8433641fb3e6eb7afd38207f628ed4b84d0dc424b1fcb4822a9fef5ea9e7ba1f80e3d9b49e5c480e812849c7e422feeba8fe243b92c746b0dae8614bd8cca93c8d800c2fb0dfdbfe75b945af526d96430080b11e12fa9a7d794b704131b81f15b4fbbe187afb4bada4b94585a0505676cb7fe0865a36ea81b203cea85c243cdfd069842b76bbdc6561bf3fdcd4c3e3984d584c9fbabb5f8b099e6eb36d3b27263e85bfa7631ffe12973d33650f58920d26b9c30c9d0a691ef69b62d29153defd25ac1c23cee9e2ca52a1aa47091fee37e034c62b93b7fb1f4a9afd01f493a5737045e75a58db2241b04dc243636b7b4a147178f6019d79d5ec24b9a037e7ccc8a732f2656f4bc507d13fcde0968d2ea7e7e0142eaad3f1a87a559771cbcf386fb4965f1a33b6fd71e24bcd109915ae758f8456d853b1c3b76d764546d1613c7b39ca79bd7da0a6cf024a1f58eb81ff4332f6c2dd6b891a73aabf6fd23359286bcec54e35b93f3b63a095ad4e259ef64078b8a78cbe215d5863401443bdc24a31c9d5f47a4f5afe89ccf93f40a2eee40f668bd5abbdf78fa2048ec30e3719b2949a7fa6077d85b9ca2534170bc3c465e3974dff41692dcc6b1700efc64e7632af87c9ddacc246818c6a2cd9208c2f6d60e4f490337035a4ee1fea54d23d40f54d82eda75dd03e59538add72d27972a0ed55308987b5e096dbd6dc6454923493cee2a2c59ee017711af3b702f3340a0aadd5b030128d8deebf0b0dd4f51f1e78f7628c864f52346cf56ba767e8a3063eac978c47726b6cc18fcd8e460d082c95f2ea04aee50869cde1949e51cd64f8bbb29f748e4eb71c1ef6c0102c88668f008376a71686c4570417abdb2ed2610801656992fa00326db165f39ff45725dfae7734427d45e9062fde70bd17f876acbde32ffe119741861bd9623e45180d4c2b719f72bb967b99f6055b5a3e256bcd5cc3155b8dc90218032305a57548c3d2ea2aef55667a3ca4db71246c86902694ed0e2f785037e3acd8339028c53554c8ff4dca691006ff5cab169d5fc7299610e94295df7d62092fb952e1e990e01da098ef6314d7eca7a3f33e191a4173bd3441ba88b5bf62a9593677a65689944702f72059e1e40f0c60483150b554ee050d46593c38a829f74d53a78058b95c8c4879aef27ed6a05d8dae71cd9fd1b9687366ba74630ab082823fba165e3e99b521b152e581d9ed9a8c13f0268e00b3159526e8739ac5c15ac5ff7e6d434cfaa19967c5fbc8ad2db73fefa3a1b0b08d7cc4553e0b8b2ad0f7accd9d54c603e959a317f7bd99bb8f47e8552e137187209a0c9f6e685250271f961da0b4cb2c618e84392b88539146f84d7bb3c8b2e3aae7ba2352e386d214ab9a0d3eb138b0345270d6b6e423e2af92e236953ccf69782438d865c9a014ce0e8efeaf95605e0e3358b573c24be6fae7c2e9de9708f554b47384303d6266311a741f1a3ef8d08fe9ffe3d984565271a92ae590948f8715c3b463ec24ea255434b14e581ba587822f0a4ac946d386885850a0de75032b32df2d25deef7bf69c80e469855e31e463fdfc32495d3a01fac8039d237119417293bfdf871325a4676b793b1f0dfb732fc18e9c9974f9da27f5b7bb6b25d52beff0d0360f52434b188a78bfad21f7bdb8ba02c73f32ba60333ac59e522ba68368d20555b76c4be862ab56ef154e3009fdafaa8016057ed9147e13adc97bd39d8d798ff9a2be8263d3b4a9a36f43bd0a098a963157a550cccb2acb787dfbc92126e11063f6b4f5bb3425bebb98d381e776b45fba67d885368067f48449f9d385b9cb901bdadf4014e902faf5ff740c51c9379eae738593dca2e5e5e53376c5890724d6fe0341d49e461e816e75c969c4dbeeb2f23e5534f124b0dfc7eba7e2cf2da3185ce0a8c4359fa801b382c805f338d3781c88f3b7689e307412729f9fa5a1984fa6caff1c9cab43fe7b438a0abd88759ad02978f724b0c7a3aa9bd452d9882d17e7c8c21d23d175595f4bb3ef21a8287a8f287e28e3989638fa8d4d03b1262c10bd3b924d6af2c57a7fa4a06a30389a83684b39463972febf5705934ef31f92d692f3a0db4023da7d920b0cc8de3f16e155f56b6ba01b03945d552ff44a76dddfc43cd2c031c467f868cd43ffa28ad9f90811906085032c8adcdf1a6ab2817353ce12ca28ac5616759549052635044e04bba42e60970d268eaebea257b739735ae191fa67b8783ce314966c3709eb77fb9dd237347421385526ab4532d1f914b728cbde6a02ffa3af8f6d5c05e10276588c1f3c8fbf2d5291e04a9bcd6aa7bc67a849eb59f873025f8e517b701f9f918c192b21518e45d6299f0fd31110714ce9770513ae5b6962160bc6416bd5088267e12e9c58957c221627d44eef1200d55e596ea474b5647d0fbe48bf3167bf226e6a1a75a43832f652adf0bde1dcd3e86a1a7b70edbda4fc29de5501066eb49e2f6007fd8af335eb95d8c7d038b8cf1f5ce0a838a6743a93c3417f5cedacf489a51f06e743037c8a064a9473c76884903fa0746d88d3206a0b901b0f1458522c0369d391934d2a69b43f111ca2a3be9437a77a2692344bb6d9fde26bac6131dfb4b296f2c722e343a551106f9d5deafbdbf252c7f278a9efe3edfa2d2ca99648cf2ef14114ea6af437f98930e1bfbc9282236b6f4168c21848816456ed86a2366adb3dedc7fcde58e7830527047734769f9f6b0fbfa7acc7449f587997ed0f343f17cc3a14d30c492a01b3a900897810ef5889e2d1e84d8dd5a8ffea4227f578e1d74d261d02f5e89f825de864d30ffec9296937024f7c3171a637fb7b7a526ec8938372959e7548a6c5a2a7ea9e9bdc75e83225116c789f4ad19ca701d0e149ae856ed12c3f1a639e508e730e13d90536e0b1444245c8e709aafafeb40ff307f87ae9ca96fbc1dfb111236a0233fb38bef71aaed1c727980bcf4be9fae1ca9ffa2d12d5d6bd47e0042f2de6a6234f1193e19557248b9adbbc729510121837e403fd82b35cf5a524bcb30854dfbe1cea06e1e929ed6b00e099710eaf75e60db14e2651cbf64e9f40c6f723cc0e2709fd280cd595963039b17d8dff4c20ffff301461c69f73e0dff1edefd48b4b90f1c65d0af6264d1476bbc8975db99a130fd0acfe8509a1ff4adf7e2034bd54e9e46d213bb2a71e80155576f0fdddf804648c17f44abab55825a5c07179491becb73be5cda731de0ef09b546d070e7ce31103bda4848aba9d8e8eb71f207bc912b63fa30d39d38690bc2a21e71fbfeabd36376f5156557c853c2b94fa68ecdb87e85d2273ebc7783bf7fbae061239d8b6c21aa8b6f495a217a2bd70d3af7492b9f127809265c95a01410b31837c0b839aace4209ad8d86a9105911640e66c7896b86784785b0b867d5fb0b4d7c22cbd31da1053ea838c7717d4c52faa9da153248a3568b85ce3f041f5694eb962d02d3ff6bebfbeff9cc88983df128ded9c9a1bebcb226739b9082dc0b3efe81d0134d1e9c0e55e5c0b10b808bea551c83f7946a58204085dc67264178350d2772233f7205f385f298a93fce90ce88c17f2453c8b041b73040a52621f6a3528eb11261b10f643a207cc04da482a9d08161787f503f05c37975673082b6427a70962a3be8ba806f02346e68c795bac7fcf7492faac0f50c88868a4f8b6adc1cce5d4572df6b0f0a5f68165fd849eb140adfcc864834802dadc06021aa6ed8f1d7ab1557403afbcef6382087464ef6bc0068a2f6cafe3c4e1ef2b1e23881f4c013f9a6c7baea0e27e32e207484d00c1e841c450a87a99176e8955439eafe0846b8488932dc474627b9e2391483209886c9018f36c419aa04516142853554041b79dffb4d1ffffb8a51a86aebd428d76f83cfcbf41cbf0a2de78497621a8923fa4014e2576f7f3b855c4541501b4ee8a849e75494df4485c1de4bfcacdbe569ad7c848e2346c9f75e21277eb32640d5a19b436b227d17e0149d854d08b8610c1eac1a02a97d5a0fed1413955bdd799845c646e4c881bace3c99741d6fbd1f04c9a4dc7890776c403ab834db0ca9e772f4b15f1b11e59dc7e97e7c4906688d8fbb85f2aefe96840fc876596a390996e0caf8933c40ba3b6acf6b2fa12b49e96c67b8fe13755941f451b375ba05a4f1d09a4ee1b1254d8c124de45ab1e0f33fb06d4121a8b22b313500c043b7cf64c20b423d0274284555516c834f824e253638d047823b3a0507225792d70b53df47b81382416966d39846803b0a1040e6e07654914fa2e99622fdb265aef514ae6c84cdd555472bfbc50bc0549c4961a6af397ed64cbb54ffca3f74bbabd494eacd0e488746264de0f8f06bf9b1a95bbe653e5672ae9189bf8c6cc5d54e90ce94a3b629a2a3af6d019d9b95ca7b39d7d41386c0b8e98556cd7540c0d443b3ec008ba7c649c92f4040b923707a5e5bfc024d3a01a6c4c1cd214ad8e8663ecaed89125e111cfe72fe3e9c47883edd89ecef4c11516122cf25fb3baa6d04da9769c003b0695e012dbe354f4e7cd83dc44570810e9ef7945391905c9672b5faba8929df54bb4c0ea8f1e6ac5fe3c12064623e3db3e2ee5359b563402448a4a3d6c99d1bf23838e97805384155404944ba43d4d307cc0c28092351e1bf2aaf5c7e9510f2fefa71d6592a922898e548b9e7e013b6b23d155e88237241edc5a28eb0cc813f3603806683806da9cf91d6fe3009e9efe988288293454ddb834114649d7e8496d4c1253da3ae48cab953496cb0ab58b79df63d84fb1fed3d23f7da0ccc5525bcbcd0a70d7e659b52371f0cd1f08fd26a39234bd8ed760937174498f911813cd7eed54411e73ee4015e756db347834f95310a2c1fa7f0584d8a5b9bd43967658892d79746eb51e0c97843e1214a5588c5cc5545d791a52a768906b1b34a6e2de276c0fe13a6382e584615efff012217b99ad9aefb0d3f75f674d53c2b5a6ef91e08ac762a9314f0cd10907746cf1fb20982aa374c5ed2472c9309b6034a5f35a46d56adbe4e56af632ea485603c72d4c15f401b1a89855bc729592800884ca21ef9f03f8a87cd79c4ad711425ddd503ba107d86bba0888790016168e2510f50a1026bca91e867de935cbf4c24a5835efaeb6511c82739d0457c1e023e815f17dc84734c84aff6e5f9fd7894246d72055e3b921c62617d2fdac7f2cae065db5ce0b2c06a7126ce6ff9a211f64255d0e67a2e6183d69aa6ca51c734c4fe81db2605bed3aedb8ca98df4e255d7d5ab0d7aec484ac11d9cb8c620894d87950e4ae0308c161f7517d25e4ee6", 0x1000}, 0x2, &(0x7f0000001140)="830740ac54b9ec8a3575cab7d820f94bdbbd7eb3b3c6174aba0a7069cf45508e509a3a146a0faf90226373e1ac650a942195a96b477b49bae0444365eb004fdeb346d5e49f3fea6551287dac4ec40b7031baaaea7a8d63c68a5601e743993fea0e9d0c5114eaee7af1f5f24867ffc1d9c9ddd14aa5222525e2586d0f94d3b439499dbe0c1ccab9b5755df45c3c6af2b962692ac5d7ea1e9415c91a9ad1d5a82237d2bea00745f0eeb23b61bbf99fe2cf27fe6b9ef0fae94eca4569da43fdb773aaf23bb67593c0d9", 0x2, 0x7}, 0x40}, 0x3ff, 0x6)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x1, 0x8000, 0xa3e4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
bind$auto(0xffffffffffffffff, &(0x7f0000000000)=@rc={0x1f, @any, 0x1}, 0x69)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1e, 0x5, 0x1, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
write$auto(0x4, 0x0, 0x100082)
socket(0x23, 0x80805, 0x0)
set_mempolicy$auto(0x9, 0x0, 0x3)
mincore$auto(0x20000000000, 0x10000, 0x0)

2.318087739s ago: executing program 1 (id=3764):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f80)={0x1120, r1, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x14, 0x1, 0x0, 0x1, [@typed={0x8, 0x37, 0x0, 0x0, @u32=0x75}, @typed={0x8, 0x6a, 0x0, 0x0, @uid}]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x1010, 0x1, 0x0, 0x1, [@typed={0x8, 0x51, 0x0, 0x0, @u32=0x3c1}, @nested={0x1004, 0xc8, 0x0, 0x1, [@generic="c74397ff0850048f1e0c83f631099e335e8dc7c1d0b8a7dc62b09ba05fd39f37ecaadbcf9f7c1669dfb46752545297bba74313f7156b1e1959ea853a71a5b68b227751b02d12f1179a03fd2aea27d68b46b61cd95a64a395a8a451fc7ed32c00c560fac5fd77c4db886c61045104f511a40ecec79f8be5e370035b817c636422b27d1e12e1b669a96800d0c2fc9f870b0cf699a22048595c5aaff6f81fbbfbed62f79d338394d577bcb267b94a09f6ed3afeffc600c00a1eb2832e80046dd5a5496ac4d81267175501d7f430e470c23cae3b1cf7322fd46bb8ec57059e0d5b7314f960ea8e4e682f74719670f295973f5770b3cab74f7289ce559eb8a7fa8f45ec13fe813a734a6912a5bc82956663b5175ff3b7186407203f89282126917f19f874db893bfff21ecdde5c04695efdc28201340ad8a68762b611b85810f95cc1165ce13f0ee52d59c9d37d36241d86db95fdce10ada3d18a4840d02867e3018485470f3be7beebf91e589c1693c620f54cd7cc49556796ad57a043ee142d430be2b6f0b97b99b4a2691d8d9efb6941c959d718ca11574383b1cea94c8ddda2af845ce67b43631fae165a674904141124991430a2843f39be523a15b9b61c2e00ba229e5c90535a26beffe8dc1ba098ed544e2d8c71663b590a4cee625a14fb734f653f2689feb5ad7d85f9db20dc629b182f1002557679a1911f9a9cc390f4b30a0b7dd44c75eec858f929232c73370558585725eb06e4a4578a7ec7f95ec3afc4921a72b5d85ff64a559b690123450939b0a86aa7b345c20be4fd5c606423a6bcd31c79f4ddfb3e102d43af4ec3d3e1b5e71b12c72fe793d7ed0dbebd13804e1f2dfdd760b132ef97cb370131061760114c09dff38e9b4da9baf9fbea32fe0da028a76bc56cd07561bef39841abe9ea4ff6ae06259ab30e8def58ff43b2f46441aa8846dc026fde87aff893746468e965a03641e0e6f9c7536756e51d3115d68594d92e1a481bc22ab33f66beac2ed20e88e93ee77537cb2a1a80653f80c34b6b72600f42db10a359db0feb01e11f0869e908606fe35b0f5d747d19961bcac492b56393972bee3554f8d9e5a6ba7e2fb109d27d955693a14b86792e910218806f1c31698d035be67b4cbb6337bb9b71ebe18a4da28a4317e3a15a3a765d965a029a9a36b90fe2ba34a255eff1f7a47b176f9dd3c96666c994aee6ebaade09c0f5b46855851298fa38936fa22421c897ad12e4153b68d27178bfec5d93b0200fd5edd645dfe6ac682b06bf635ae7f5810ed53280114dcf8787191703919d6c00463135bdeb53f37de10a267d1cca8d8a610fbb35e9ad8cb71f58d7607776e8ee3175dc1e00cbe0181fef7ee9ac3e2762ae51dd2f95b0f572636ea2539401b81189ff4265d79b18a0e9b7b87ccf81491c23833c7267865fc17103289cc8a490a46450644cc48e92716ac4be822ea83f63d8c357e7d3d1e9406f69b29001d4ba3851506662d1ef7d52a1346294ce2af06ccf9da9a2cfc85c66326aae1577332eebd62a08134c5738c19cdc7d7a17d9f8ae8a129cf0ad32b173d9cf3f1980e6abae879544ea49b82ebfc2bdd2125ee2e361184cd9545b69b6f085b75b6901e8d08d2ac88499ee9a5e1cc61428ee81d9ba5abf7e577ef825a8b84d28621fc87d8eb1552b4f265d0c8bdfb4cbc966c7657f22e76243fcecd3e6ca6aeec8e3909c18adb75ee61ce71b9d2383565a09678ed6f93b3b55cfac9b1889d219eb681caa4bc78a55bca29b652657315606e4fe7deb0807380568ff8ba9a59042b6fc2fc3e58ac7abc91975d665e6716a969c00318ef6459b924532bd55e5d8c0a9dbb3437ec5f7b2f1722fee9313f4afd0703c2fa7c9c13b8f4ed708bba76c229aa21591755bde30acec7ddf6bb6414155b0f7973b97d4df8b77f7a76795361af61496e19d8b63eda6331b9c67056bb3b4e6d3ff155db85913d940dd597a453ceb64157763537e4ab56657b74f323c401a93249c59bb6eb416272432b142be214e9f4c1733bcf45ab5118edadfdd5ba31853176cf9a621f2fe188dc4d6208d9ab67444d02575d650b7c80e84cd1f5eda91ed045834c5bf9b742184b98c15e370b4edba879dace6118034b65904438f917c4550122c599cbcd6cef06aecae71495997816b7d32393cf5f1bcf2088ab0b6bfd3c6bd4e479982e0b2c7018d843e48ca0d13e81fc06b21b9921013d575d557aa5519dba52d16d5e187232561f78296026471f54131c904a067e9efa8a45f259f69245eae99df1ba31372dca1ddb96add1d55883ba0e8392b50058918d15af49d24bcd545764fbbd57a0404ddd76f1e43b6ba8d3867ad1ebbe4c9be2ffaafa8d1ba8e05e332f027ec852eb31d829ceb5691c6538830e676c7627f5cf44e1e3b9c657945c5bdcf914a6243404eb9ac9bbc983ac21b803b65dc48d0bb8399de60ad155628313ec1afa41332c47453d6ba4392d5d5e55e8e443562bbe3d6532a0c5f35c674e25d2a3e9079595f12526cf2b044c3dfc38185ebe233da7c4aa1793aaf20fd018d64957c38e1c5a2bd7279799a4f70de6a05a67f9ec8ce642510da9952319ce9e15afbc0f1662e299ca88fc1c0c70065a22f82d3787dec497c924d887a01e25dfd486ace6d9ff2939438e61621ce2c09e87544a83418e9d8c212475007de4ee47e813b7a7e5e0d5b6ff19204cf51673b9a3c29412d04689818d186408e7fe66257faa23d6c93ec84669c1c494ae64c0461c2639c1469649a6a5fc4f29c4e2901eb5c0f72eebf09e6f12a69154f324717d028ab76c565ffab46ba6c60818f984f20d3d94e3f1d252a36c9d5cac4c38cb97baf897716fbca81f6b194f04e672f2f905412a46b59956d25947578acab4cfa30d6b7df4f1f53383c6df58445c7b1bc85e57383046ff8b09cd83c30aff3f1237663b54c44476692c21c4c0a669ea8a4a429a11aa022815b7a09808f860cb93a95c86c7cf4a7c0326d2c3a0b0711d92dbf3feb58a168e8d9f7eddba720fc6c5f9036845fc02991fa1e44efa5e9e88b7a5182f8255bfb1a775c015b115e1ac66ea4e9a2f50d8e71e3d144483c5ae92c0d68b1120ac8502ac98f9a6889a40075279420ff42a456829529c5c2bcb26e45fa9d40dd06b08745057724c9a20ff1d665a1d3953bc2f44821b84c1e06390c088c8d20e480f0ca69dc82b6d8af163c1cd1b7cef2953208db5524e571a78452c870ec6bd775fc45afe804939dea8214bab75f77cbda06eab689bc44d011de25f012b8006801429360a1f1e908b11d808acd3dc14b50ccd42b7c497a38ea46051c22623813595f760bdbe598d68f9c3c738d03326dd77d5c0557afa415dfc44d809b97c007fdf54e06d285d91fea50caf09dae442bce8c7ce4327b71288bc81dfefac425b3bd4185cc4f6c97be89f55ac7f580f70197ed29603f87379aad43fa04a8c8a0a9935b3bb80e8b600609035b4ecf3ceb848a88b59aa75cdc22e38b875d726ffeef6de296ea17ce0fdce48adf782d70e2e9121e9a5f0818be74d0805ed555e6dd4d1499cf4fb7134a50ee57a147a3c9b6611185586282ae09f6662ffc9e74cb5a0b5f281f8d42f2412ebc8ed0572a324f08ebde61df1948c8853939ac16a5146fe9b9990fd1a7b325591f44253cc13a63762d67413ea65b5e498940b6cfaaa1160f8a6df2fe61451f44fcadd2bf97d2ebaf29542af8028c798924f7cc6b04e216d6d93012ca2bec241cc18b1148b1724e9f571d498743407a5e65b20287768222c82f3d852c800ab7a1d77fb940755d7972f804a8188e6bb9a224289dff6b1e2211a2b96f85da4808c721b9fc349970351c9e3a1b6e253bc56c0d1add880d0e284426f2708e9194388442e0f8e6eea9f45eb0967490095cbdb5c5cc155ac9b06908440e3811bc0a73d0d2eb46cd793e88d25aa30bb221fc5c87aad883aeaf54dbc12a62af22f21c16929b66a4233394cb9dafb5aab4b607b5fde02bd3cbf56a1056b9722466563e116a952a1011b879a9aaabade23189f4d22b932c4cb1cae11fe466f8d01ec15c330d60c55c87877893ac429249472347b7c7c94f7643ab03aa60ac6e0313fc9629640c39b283cb7badf1dcc3e69b866fbc36fbe67b2300b1db50e1eb7dea792c482b7be53dd0c437cd739404690176fb42a2e7dd9bdba3ad70d3d26e1083fe2742483e619c2b029e8cf98fffbfc6347f5ee88b6f3a98cb59783211ed41edf3fe5ab0bdd80b7a37513af6d0a2d6a30902bdc34c60def2ab135cb1a03563c3fda01a46aa20930adac1b100f56e6e7898f4a52014cdefee9519e81c2d965b1a3e8102658b052752eb9bd96549dffc567ecf3ef91e22c417933284387f45a0c282c5e39987bfa3013cd753237453d22d7e15b2e2ebf30065f795c6be447afd9945d444c0833473f07b80433069bf5b53ccca529a3c5d64d152e184f3d4611f8b3a6575735599a6a075fb0b953f0d4d1d5bc41b629db84f57983a64678aec958e4fabc8dc7a21233c5e642709b723292346d775d26b31b5e871db4757e18603cb4796403f4fba9c32ae8e5d9a27fc67131078b066400bcca00d1975652aa1c9ebb2589c20739cb7eb0a1af9cf4f5a75842d6d5cbf63c05f81fc5a19693456ce57aec1a4954205a15350258654b6484ef12eb6423f6e481fff29fcd354ba64f349c1a1bbc7d91101885fca3687574905805504ee0f80688e346113dfff57ba6e8eebb65381d91608b2c0879034cff3d6a91e407ba9659d1a6db1a5df9831ad648e38f2e685cd31c07aa47f682161502d1e96a15cef9806e3234556426d9219e14d6fe25ded00e08098651d7e33a97f16d593ef63569e29659c0b8651c5086474a45b6c2fb08daeca08d142e50f146d1e1f8321d75c08c7d3ed1d7d488e018841eb807ae4d698c8b93c61058789ea2bce2712fe5d0a8ec5fd483558ef09082b0f63a939dcbda0f28f971cbb0a5229103d4f5a6f8e9706eec0b89de56adbbacc45eeb07698d8a4a19024b9cacdae6e9d574553f1638b73dde14401c0f858c3c6cc4c1870ff81a00a73229eb5f562537a2b27c81f89473613a9cde2d7fd48759836f87fafb5abe78be3c5869b0aafa12e5e7790a979a0e1b809b4c61d38316a32b6d44a388626c9f9a7f42e63a5d506a026fc82de12fa52bd2056948d9c96b8bc6a6ca09807e7f5c059cfbe1ebb8c4d8f6f5f1daedc7b10c4f813caea56fe794941989b7789ea16422aa1745ea9c618da92f3ba0e4f1aa48e13c19e97002a8a120663f3c7e25a907cb84e6e61aeb14d5cdb0db6d3142133fd990b1ee5f85ceb0ab6088c8872b3a33566734341ee2e1756486b28c59c7a76f04a27d28022953fbf9f8cfb234b09b82a2a1e1cc5ee21fee4f08bc62649040a598901000022ae3472699fdb9430b245100f8fd35e5b1f552bdadcc4c9d7408d6cab813b131b20041d65de7f643ffce4eeffb4e7dca74ca3ea1d6466dc6f186b470ddf20a0053f0670850c38353ebba5820b59d94c72ef7ab824e58b8d77f56ee9f9d0f101b85f3af9eae79d3ea5ec0c54468021ca15f3dfbd3dc0708ea7874f83f4bae29d1e1246bb1d5b16712fb5921877b89b5b1e25f14ff35fd81721ee8830b0dc4653f7da747c69cae5a0931d4c6508b74106b9617bb8319c044fb77b60749ffda4b0ce41ca2eaa4af013c11502b495ff299c19a2db01df4af8efdf11dc08d171f99506f6938bfba4d858762a2840f81b69b89037025dde22aed27f53d18c17489b6453f0aa40cf7106abfde2ccc396eb07888a"]}]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0xdc, 0x1, 0x0, 0x1, [@generic="5845e7c268634b658f8415a18777321c04c73c46664531416cbf4d0efc46eba4a69d9a52b76119e8d9cedbffb414b9fc6cc6aaed4f73dd5eb6d9fd9cc0b29986c70c1a", @nested={0x1f, 0x10e, 0x0, 0x1, [@generic="00e10b9786e7640bd96621b2072785dc00b52228571e12", @nested={0x4, 0x12e}]}, @generic="c041a433ae048f11106d9bcd3dd6d38d8857a8243d985f3debe82f25de40eb29fd7b9a79eca9f79be6da6dbc9c44dd9c721ee524d1350c37ac3bba435e1c5f3d1cd03a8ec7f8cc8fd1d9fac860", @nested={0x1d, 0x77, 0x0, 0x1, [@nested={0x4, 0xa0}, @typed={0xc, 0xd0, 0x0, 0x0, @u64=0x6}, @generic="c0d2ea902c10cf89da"]}, @typed={0x8, 0xad, 0x0, 0x0, @pid}]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x6a}]}]}, 0x1120}, 0x1, 0x0, 0x0, 0x4040}, 0x840)

2.205470157s ago: executing program 1 (id=3766):
close_range$auto(0x0, 0x5, 0x0)
r0 = inotify_init1$auto(0x3000000000000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
clock_gettime$auto(0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x28, 0x5, 0x0)
setsockopt$auto(0x400000000000003, 0x28, 0x6, 0x0, 0x56d)
write$auto_vga_arb_device_fops_vgaarb(r0, &(0x7f0000000040)="30a4a2c9c66f880db5a87d98a7bfc99acea2cca15e873174f745bd90bc6ff0c1e2ebc66d3b4cdfa463f5b0f920dd97190ca1a61057e828009a949cd34c0658a4ad1245d995bedfbc4fce1022a2236d094303714352c76eaaf480a850ed4b44138501afd2cee51ab91a1e16f407e206c4b5f7eda88e149bee5f28c12ef68638f8cf4352863578e8", 0x87)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'ip6gretap0\x00', <r3=>0x0})
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_0={0x4, 0xff, 0x8, 0x5fc, 0x7ffd, r0, 0x80000000, "d0d38c6a5e1c42a036ce8c3b03280086", r3, r0, 0x0, 0x5, 0x0, 0x1, r2, r1}, 0x6f4)

2.193282128s ago: executing program 2 (id=3767):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff)
mmap$auto(0x9f3, 0x8, 0x2, 0xb6d2, 0x5, 0x0)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
ioctl$auto(r0, 0x400c4d04, 0x2)
statmount$auto(0x0, &(0x7f0000000180)={0x0, 0x1, 0x9, 0x7, 0x3b, 0x4909b6fb, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb4, 0xb, 0x2, 0x10000, 0x80, 0x7, 0x40000, 0x7, 0x2000, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x2000000000, 0x0, 0x100, 0xa, 0x70624ce7, 0x0, 0x6, 0xb, 0x0, 0x0, 0x7, 0x0, 0x0, 0xfffffffffffffffd, 0x7, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x804, 0x0, 0x9, 0xffffffffffffffff, 0x5, 0x8000000000008, 0xfffffffffffffffc, 0x3, 0xa38, 0x4, 0x4000000000100, 0x80000000, 0x2, 0x3fffffffff, 0x0, 0x2, 0xffff]}, 0x202, 0xd)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x2, 0x0)
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/device_info\x00', 0x48041, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
shmget$auto(0x0, 0x5, 0x4)
sendto$auto(0xffffffffffffffff, 0x0, 0x3fe, 0x101, &(0x7f0000000000)=@generic={0xa, "01e983638bffff4993021400"}, 0x1c)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x80805, 0x0)
memfd_secret$auto(0x0)
socket(0x2b, 0x1, 0x1)
mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd)
bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x4e21, @local}, 0x68)
access$auto(&(0x7f0000000040)='./cgroup\x00', 0x7)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000000c0)="22edd92f26639ec0023a8686bd579dcf16f50e9bfa20abfa3a305b", 0x1b)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x1, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x6, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0x3, 0x7, 0x10007, 0x80, 0x2a0, 0x0, 0xa, 0x22000, 0x200, 0x4, 0x84, [0x3, 0x2, 0x0, 0x2, 0x0, 0x2000, 0x0, 0x0, 0x70624ce7, 0x1, 0xfffffffffffffffd, 0x8, 0x8, 0x0, 0x6, 0x0, 0xfffffffffffbfffd, 0x5, 0x10000000000001, 0x10000000000, 0xe, 0x4, 0xfffffffffffffe00, 0x0, 0x0, 0x5, 0x400000000005b8, 0xffff, 0x0, 0x100, 0x0, 0x6, 0xffffffffffffffff, 0xfffffffffffffffa, 0x8000000000008, 0xfffffffffffffffc, 0xa, 0xa38, 0x0, 0x3, 0xfffffffffffffffc, 0x9, 0x1, 0x7, 0xc567]}, 0x1fe, 0xd)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x50)
r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd03, &(0x7f00000001c0))
fadvise64$auto(r1, 0x3, 0xa83, 0x7)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mtd0\x00', 0x8080, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
move_pages$auto(0x0, 0x91, 0x0, 0x0, 0x0, 0x0)

2.103167177s ago: executing program 1 (id=3768):
r0 = pidfd_getfd$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x4)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x72382, 0x0)
close_range$auto(0xffffffffffffffff, r0, 0xd)
syz_genetlink_get_family_id$auto_netdev(&(0x7f00000000c0), r0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/vivid.0/video4linux/video17/power/runtime_active_time\x00', 0x20000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001980)=""/4096, 0x1000)
syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000080), r0)
sendmsg$auto_NFC_CMD_DEP_LINK_UP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x880}, 0xc1)
syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = clone$auto(0x20003b4b, 0x8000000000000000, 0x0, 0x0, 0x9)
rt_tgsigqueueinfo$auto(r2, r2, 0x80, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000000500)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40044001}, 0xc, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="ad687c139ed615a6f87af27b1df38a91fd5a9333cb31d2c3444fdce1a37c0dced3cc6cabd83f35a65b8ab4c4e9eab778a41d6fef38f4f592efddf40983ec598739da605533f16cc5972dc027c577df8b37fe6506b4c1ef9e9b763f1694dc3efe62f1e3531b8bf66c01e35a75b8e88dd45d943b896d734b53da80cde9aae7ee8de2f121f1a07d840f27ba304d873fbb2381c770ffff", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf2504000000ad001600547efd262ac87b911834baf67b5f3c9f452109cdcbcdb66b07ed15cc1142dbc7ef70496d4893b9576951666fc3a913762c5c41bcbc63efed26bde6d23e6cf8dab435dcfa5ea81deedbcf1e15fc399c41399a01df1f7628c8948df17b9aed23c39590a064353b1c038cbb6fb415234864b6e1913b95d598003e0eac40f022ba689a4dc48c5e757f6dae446a96b9e7e9e24cf51ec6f4783d3ea292d57f9f295cfb050e1688fbc837584f000000c0001800a325f8b522a1f707ac387b9a3f7f0312b13519d6a475f29d34bc60eafb4fb2df899f36ce10ce13a9817d4e2cad8c8a6ea3bfd2f339ba0cf266516f461946cfc32e4c1781c3984a633c71fd7e31c8936ae0c87ea7eda11150d765e7f3809482e8131f94adef3a434238e01697913e7e78ece312f5542b5e8430f2d0d0ca4106e2b780620588795a787d64cfb1792a69e8e8358d8b9124415afa9493ad050c4096397a7ef2a773a7dcc0d8f96295cde3a6389e432e3dd3736176716dc9800001002ae42c6d6d0d8e25c83abcf23d94935cdebadb27a7b681178fb2765b40d6c1900684b258c90dbdb5479802ed2c3ab151fb6156c0e253609b665633cedde7f36ec285f43083b2ffb4cdb14cb79a20030b215e9a1a07a61ebf93e9d63739260786f56788397ddb7a5c6258f50a8d69a1325556bc6854da4fe316b3f4ef07001100285d5d00"], 0x20c}, 0x1, 0x0, 0x0, 0x20004830}, 0x80)
sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="93ab2dbd7000fcdbdf250800000008000300", @ANYRES32=0x0, @ANYBLOB="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"/327], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22040, 0x75)
socket(0x840000000002, 0x3, 0xff)
connect$auto(0x3, &(0x7f0000000000), 0x55)
open(&(0x7f00009e1000)='./file0\x00', 0xc162, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x1e, 0x5, 0x0)
open(&(0x7f0000000100)='./file0\x00', 0x201c2, 0x10e)
bpf$auto(0x6, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0xfff, 0x5, 0x10, 0x0)
ioprio_set$auto(0x3, 0x0, 0x4b34)
socket(0x15, 0x5, 0x0)
madvise$auto(0x1ffff000, 0x7, 0x100000000)

2.035453984s ago: executing program 0 (id=3769):
mmap$auto(0x1e, 0x2020009, 0xfff7ffffffffffff, 0xeb1, 0xfffffffffffffffa, 0x8)
prctl$auto(0x10000000016, 0x1, 0x4, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x20001, 0x0)
mmap$auto(0x9, 0x40000a, 0x100000000000007, 0x10, 0x2, 0x8000)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x123002, 0x0)
ioctl$auto_SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x50040, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x400, 0x0)
socket(0x10, 0x2, 0x14)
semctl$auto(0x7, 0x806, 0x13, 0x4)
close_range$auto(0x2, 0x8, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\xc2\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3)

1.255051715s ago: executing program 1 (id=3770):
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
clock_settime$auto(0x2, &(0x7f0000000040)={0x4, 0x1ba})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000003fc0)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20a02, 0x0)
mmap$auto(0x0, 0x40009, 0x6, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'geneve0\x00', <r1=>0x0})
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)={0x1c, 0x0, 0x30f4b0fcc8d9477d, 0x70bd2d, 0x25dfdbfc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x4000044)
r2 = socket(0xa, 0x5, 0x84)
sendto$auto(r2, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4040894}, 0x4010)
bpf$auto(0x0, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xffff, 0xfffff0b6, 0xffff, 0x84, 0xac1, 0x2, 0x36242398, 0x9, 0x3bb, 0x7, 0xffff, 0x6, 0x81, 0x68198}, 0x6f0)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, 0x0, 0x20008000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(r4, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000100)=ANY=[@ANYBLOB="010027bd", @ANYBLOB=',\x00\x00\x00', @ANYRES8], 0x2c}, 0x1, 0x0, 0x0, 0x4811}, 0x20000001)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r5 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64)
write$auto_msr_fops_msr(r5, &(0x7f0000000180)="07ae1627f70740d09d5c0c9b1f4aafdb16d60145c81e9d6008c0e84557660dd6aa91306ee64a43c422cf215c0c58abf6e7525d60a23f2a1302d6c1d2e0b6929ac1d5e2536058afcde5ed90110a59a5303774f86dc2901fa88747d45b35df9ba8be3a74ecbad91d8b3521d677f070bd5e7329f810e5264ca291f078e1f0bad7e425a6e3f31b83c8c155357eb53e96bc569690167d57a9555b25e196aff7575ccff815a565385acec805b8b0ae77a1087e5b49cf3c", 0xb4)
r6 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/iomem\x00', 0x303000, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
r7 = pidfd_open$auto(0x0, 0xffff77d9)
setns(r7, 0x40000000)
read$auto_proc_iter_file_ops_compat_inode(r6, &(0x7f00000002c0)=""/233, 0xe9)
read$auto(0x3, 0x0, 0x80)

1.10997678s ago: executing program 0 (id=3771):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
ustat$auto(0x801, 0x0)
sendmmsg$auto(0x3, 0x0, 0x3, 0x1)
r0 = open(0x0, 0x161342, 0x100)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(r1, 0x8, 0x1)
fcntl$auto(r1, 0x10, 0x2)
ioctl$NS_GET_PARENT(r0, 0x40305828, 0x0)
r2 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000140), 0x1a3000, 0x0)
ioctl$auto_dvb_frontend_fops_dvb_frontend(r2, 0x40000000, 0x0)

1.108283685s ago: executing program 2 (id=3772):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x1, 0x5)
madvise$auto(0x108000, 0x800034, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
pwrite64$auto(0xc8, &(0x7f0000000240)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rB\xad\x8b\xdf\xc4\xd5BJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeep\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x0)
open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000040)={0x8, 0x2, "0200000000000000"}, 0x2)

793.447881ms ago: executing program 2 (id=3773):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x1, 0x5)
madvise$auto(0x108000, 0x800034, 0x9)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
pwrite64$auto(0xc8, &(0x7f0000000240)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rB\xad\x8b\xdf\xc4\xd5BJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeep\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
r1 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
open_by_handle_at$auto(r1, &(0x7f0000000040)={0x8, 0x2, "0200000000000000"}, 0x2)
sendfile$auto(r0, r0, 0x0, 0x2)

745.91005ms ago: executing program 2 (id=3774):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002)
fanotify_init$auto(0x5, 0x800)
pipe2$auto(0x0, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
getsockopt$auto(0x6, 0x84, 0x72, 0x0, &(0x7f00000000c0)=0x10000)
r1 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000540), 0x40000, 0x0)
lseek$auto(r1, 0x0, 0x2)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1c8340, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x1, 0x0)
select$auto(0x7, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x6, 0x15, 0x1000, 0x100000001, 0xc, 0xf, 0x0, 0x0, 0xe, 0xd59, 0x101, 0xff, 0x2, 0x80000001]}, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x1c, r2, 0x1, 0x5, 0x25dfdbfb, {}, [@HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44004811}, 0x40000c0)

707.549981ms ago: executing program 3 (id=3775):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
ioctl$auto(0x3, 0x80045530, 0xffffffffffffffff)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/039/001\x00', 0x20a103, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/system/clockevents/clockevent0/current_device\x00', 0x62640, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)=""/4096, 0x1000)
r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r2, 0x40045568, 0x5)
mmap$auto(0x1, 0x8007f, 0x2000000665a, 0xeb1, r1, 0x1000)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
socket(0x2, 0x801, 0x84)
socket(0x29, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x88)
getsockopt$auto(0x6, 0x40000000029, 0x8, 0xfffffffffffffffe, 0x0)
ioctl$auto(r0, 0xc0105500, r0)

652.343273ms ago: executing program 0 (id=3776):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket(0xa, 0x801, 0x84)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sysfs$auto(0x2, 0x0, 0x0)
fsopen$auto(0x0, 0x1)
epoll_create$auto(0x4)
close_range$auto(r0, r1, 0x0)
epoll_create$auto(0x4)
epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_FRAME(r2, &(0x7f0000001280)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001240)={&(0x7f0000000c80)={0x508, 0x0, 0x4, 0x70bd2d, 0x25dfdbfc, {}, [@HWSIM_ATTR_TX_INFO_FLAGS={0x2a, 0x15, "6a7e96d933f4cac2686df8ef0708d8a0b7a2b23f042b3b8ba2b87129eb999ed9808a7c133283"}, @HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE={0x4}, @HWSIM_ATTR_FRAME={0x4b0, 0x3, "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"}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}, @HWSIM_ATTR_FREQ={0x8, 0x13, 0x8}, @HWSIM_ATTR_CHANNELS={0x8, 0x9, 0xfffffffd}]}, 0x508}, 0x1, 0x0, 0x0, 0x4000000}, 0x50)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000004200)={&(0x7f00000005c0)={0x1c, r3, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@HWSIM_ATTR_REG_HINT_ALPHA2={0x6, 0xb, ',)'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000060}, 0x0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r2, &(0x7f0000000c00)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000380)={0x80c, r3, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@HWSIM_ATTR_FRAME={0x532, 0x3, "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"}, @HWSIM_ATTR_PMSR_SUPPORT={0x2b4, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0x84, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x7}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x6}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0xb}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x4}]}]}, @NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR={0x4}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x1}, @NL80211_PMSR_ATTR_TYPE_CAPA={0xc0, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x10000}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x51}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x32}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xad06}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0xc}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0xff}]}]}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x5}, @NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR={0x4}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x8000}, @NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}, @NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x144, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x10}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xffff}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x7}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x7}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0xa248}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xfffffff9}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x5f}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x7}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x6}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0xa0}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xe}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0xc}]}]}]}, @HWSIM_ATTR_RADIO_NAME={0x9, 0x11, '^/--('}, @HWSIM_ATTR_REG_STRICT_REG={0x4}]}, 0x80c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40010)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1)

606.865162ms ago: executing program 2 (id=3777):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket(0xa, 0x801, 0x84)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sysfs$auto(0x2, 0x0, 0x0)
fsopen$auto(0x0, 0x1)
epoll_create$auto(0x4)
close_range$auto(r0, r1, 0x0)
epoll_create$auto(0x4)
epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_FRAME(r2, &(0x7f0000001280)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001240)={&(0x7f0000000c80)={0x508, 0x0, 0x4, 0x70bd2d, 0x25dfdbfc, {}, [@HWSIM_ATTR_TX_INFO_FLAGS={0x2a, 0x15, "6a7e96d933f4cac2686df8ef0708d8a0b7a2b23f042b3b8ba2b87129eb999ed9808a7c133283"}, @HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE={0x4}, @HWSIM_ATTR_FRAME={0x4b0, 0x3, "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"}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}, @HWSIM_ATTR_FREQ={0x8, 0x13, 0x8}, @HWSIM_ATTR_CHANNELS={0x8, 0x9, 0xfffffffd}]}, 0x508}, 0x1, 0x0, 0x0, 0x4000000}, 0x50)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000004200)={&(0x7f00000005c0)={0x1c, r3, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@HWSIM_ATTR_REG_HINT_ALPHA2={0x6, 0xb, ',)'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000060}, 0x0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r2, &(0x7f0000000c00)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000380)={0x80c, r3, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@HWSIM_ATTR_FRAME={0x532, 0x3, "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"}, @HWSIM_ATTR_PMSR_SUPPORT={0x2b4, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0x84, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x7}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x6}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0xb}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x4}]}]}, @NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR={0x4}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x1}, @NL80211_PMSR_ATTR_TYPE_CAPA={0xc0, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x10000}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x51}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x32}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xad06}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0xc}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0xff}]}]}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x5}, @NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR={0x4}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x8000}, @NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}, @NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x144, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x10}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xffff}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x7}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x7}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0xa248}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xfffffff9}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x5f}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x7}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x6}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0xa0}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xe}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0xc}]}]}]}, @HWSIM_ATTR_RADIO_NAME={0x9, 0x11, '^/--('}, @HWSIM_ATTR_REG_STRICT_REG={0x4}]}, 0x80c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40010)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1)

514.405492ms ago: executing program 0 (id=3778):
mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000180), 0x20000, 0x0)
r0 = open$auto(&(0x7f0000000280)='./file0\x00', 0x401, 0x6)
ioctl$auto_USB_RAW_IOCTL_EP0_WRITE(r0, 0x40085503, &(0x7f00000001c0)={0xfffa, 0x3, 0x8, "5dbfe0afe46fb72609b49cd7b2eb93b4c1bfda22e5404966a14db7101a6185f68f361cc3255d5e1fab19c14c66245f956c4b28269689187024565c2798740a025b357f464ad3a9cf2d1c774b80af9522217e61ea8336311b881dc920ff3f3ba818856bee1cfce8b97e6bd0083f3e397ca3601f1e19c47999445abe57b250b40a3b004186387daa1d6497942e026fe58df1bad741d6f3ec"})
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket(0x2, 0x1, 0x0)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu/hugetlb.1GB.rsvd.usage_in_bytes\x00', 0xe0244, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000000)=""/28, 0x1c)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYRESOCT=r1, @ANYRESOCT=r1, @ANYRESDEC=r0, @ANYRES8=r3, @ANYRES8=r2, @ANYRESHEX=r3, @ANYRES16=r1, @ANYRES16=r3, @ANYBLOB="22a2de8ed2ee4d9c92249195101f0790c9aa", @ANYRES32], 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x2000c801)
r4 = clone$auto(0x9, 0x6, &(0x7f0000000080)=0x83, &(0x7f0000000300)=0x9, 0x5)
pidfd_open$auto(r4, 0x8000)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram8\x00', 0xa4e00, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(r6, &(0x7f0000006940)={0x0, 0x0, &(0x7f0000006900)={&(0x7f0000000000)={0x3c, r7, 0x1, 0x70bd29, 0x25dfdbff, {}, [@HWSIM_ATTR_FLAGS={0x8, 0x4, 0x1}, @HWSIM_ATTR_ADDR_TRANSMITTER={0xa, 0x2, "a060292f83d9"}, @HWSIM_ATTR_COOKIE={0xc}, @HWSIM_ATTR_SIGNAL={0x8, 0x6, 0xffffffcc}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000041}, 0x800)
ioctl$auto_def_blk_fops_fs(r5, 0x127a, 0x0)

491.466097ms ago: executing program 2 (id=3779):
mmap$auto(0x1e, 0x2020009, 0xfff7ffffffffffff, 0xeb1, 0xfffffffffffffffa, 0x8)
prctl$auto(0x10000000016, 0x1, 0x4, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x20001, 0x0)
mmap$auto(0x9, 0x40000a, 0x100000000000007, 0x10, 0x2, 0x8000)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x123002, 0x0)
ioctl$auto_SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x50040, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x400, 0x0)
socket(0x10, 0x2, 0x14)
semctl$auto(0x7, 0x806, 0x13, 0x4)
close_range$auto(0x2, 0x8, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\xc2\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3)

459.179619ms ago: executing program 3 (id=3780):
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PLCA_GET_CFG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x2c, r1, 0x1, 0x70bd27, 0x25dfdc01, {}, [@ETHTOOL_A_PLCA_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}, 0x1, 0x9e, 0x0, 0x24008081}, 0x4000004)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vkms/graphics/fb0/rotate\x00', 0x141c01, 0x0)
socket(0x10, 0x3, 0x6)

327.099355ms ago: executing program 0 (id=3781):
r0 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
clock_settime$auto(0x2, &(0x7f0000000040)={0x4, 0x1ba})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r1 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000003fc0)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20a02, 0x0)
mmap$auto(0x0, 0x40009, 0x6, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r2 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64)
write$auto_msr_fops_msr(r2, &(0x7f0000000180)="07ae1627f70740d09d5c0c9b1f4aafdb16d60145c81e9d6008c0e84557660dd6aa91306ee64a43c422cf215c0c58abf6e7525d60a23f2a1302d6c1d2e0b6929ac1d5e2536058afcde5ed90110a59a5303774f86dc2901fa88747d45b35df9ba8be3a74ecbad91d8b3521d677f070bd5e7329f810e5264ca291f078e1f0bad7e425a6e3f31b83c8c155357eb53e96bc569690167d57a9555b25e196aff7575ccff815a565385acec805b8b0ae77a1087e5b49cf3c", 0xb4)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/fs/netfs/caches\x00', 0x20000, 0x0)
setresuid$auto(0xd, 0x5, 0x200)
r4 = getpgid(0x0)
r5 = pidfd_open$auto(r4, 0x0)
setns(r5, 0x40000000)
read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f00000002c0)=""/233, 0xe9)
read$auto(0x3, 0x0, 0x80)
fchdir$auto(r2)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, 0x0, 0xc005)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x94\xa1\x90Z\x99\x88d\x11\x1cJ\x99\x12:\x00!\r>\x94\x1a\xd3\xd3\x1d\x93\xab{Lh\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CQ\"\x01\x0e\xa4\xdf\x11\xbb\a\x90\x11x\xfb\xdav\x1cC\x8a\xeeq\xf0\xcdr\xc1\xa8\xcd\xf9.=(\xeb\xd1\x14^\x87&^\xcc\x181\xd6\xa3k\xd9\x9f\xefC\xda\x1f+\xb4`\xdd02S\x18\x9efHu\xfe\xfd\x90\x13\xa2(o\xdf\x82\xca\xb4C\x06-&\xf1\xa22(\xc7}\x0eE.R<\xea\x8e-\x9cv\x0e\xcb\x95\x15\xce\xb3\x8f\xb9]\x9f\xd6\xa0;', 0x28, 0x100000000)
r6 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x101842, 0x0)
r7 = openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x129941, 0x0)
get_mempolicy$auto(0x0, 0x0, 0x400, 0x0, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000c80), r8)
sendmsg$auto_L2TP_CMD_TUNNEL_GET(r8, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000cc0)={0x1c, r9, 0x121, 0x70bd2c, 0x25dfdbfd, {}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0xfffffffd}]}, 0x1c}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r10 = getsockopt$auto(r1, 0xd25b, 0x200, &(0x7f0000000440)='\\(.$]/,/\xc4%^+\x00', &(0x7f0000000480)=0x5)
sendmsg$auto_L2TP_CMD_SESSION_MODIFY(r2, &(0x7f0000000580)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x50, r9, 0x919f7aafc45f933a, 0x70bd2a, 0x25dfdbfe, {}, [@L2TP_ATTR_SEND_SEQ={0x5, 0x13, 0x3}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, 0x7}, @L2TP_ATTR_FD={0x8, 0x17, r10}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, 0x2741}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x2c1}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @mcast2}]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
write$auto_buffer_subbuf_size_fops_trace(r7, 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r6, 0xc1105511, &(0x7f0000000300)={{@raw=0x1, 0xa, 0xf8, 0x4671, "a401d243991a4dc376cc2bd4dbe3040e3cff152230323227f8d6c24be7ceeed84366bbadec197ea40209a468", @raw}, 0x1ec, 0x80d, 0x1, @inferred, @reserved="b2089ab0bbaab63c40853405fb772ade9448008d0040560232dbb586cf8f11ca82a2ba37174118952b850ad2099d3a3bc1c77e916330e96e2989bebf719430efe8c9a59c9349eac701c2bbb3122607916561a6da1cfdfc5dc83f4cc979d6dbf96bcb58d1f9042592b39ceec6193960c9a37975bc0153c5fce4d94f329d47f6d4", "2bb2d72b107f03a0ef0c6760e2e1fd64b8ae4a5be70b75810dfa4cc7182ed519d3613ea5b4243440fc9595b760cee784decb284ff015aa97d8f86dd61fd4f929"})
select$auto(0x3, 0x0, &(0x7f0000000100)={[0x5, 0x200, 0x0, 0x9, 0x9, 0x3, 0x6, 0x2, 0x9, 0x5e58296f, 0x1, 0x9, 0x3, 0x300, 0x6, 0xf]}, 0x0, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP0_READ(r0, 0xc0085504, &(0x7f0000000080)={0x0, 0x80, 0x7})

274.401944ms ago: executing program 1 (id=3782):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x1, 0x5)
madvise$auto(0x108000, 0x800034, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
pwrite64$auto(0xc8, &(0x7f0000000240)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rB\xad\x8b\xdf\xc4\xd5BJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeep\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x0)
open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000040)={0x8, 0x2, "0200000000000000"}, 0x2)

90.931266ms ago: executing program 3 (id=3783):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x1, 0x5)
madvise$auto(0x108000, 0x800034, 0x9)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
pwrite64$auto(0xc8, &(0x7f0000000240)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rB\xad\x8b\xdf\xc4\xd5BJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeep\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x29, 0x5, 0x0)
r1 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
open_by_handle_at$auto(r1, &(0x7f0000000040)={0x8, 0x2, "0200000000000000"}, 0x2)
sendfile$auto(r0, r0, 0x0, 0x2)

87.949547ms ago: executing program 0 (id=3784):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
sendmsg$auto_IEEE802154_LLSEC_LIST_KEY(0xffffffffffffffff, 0x0, 0x24000000)
r0 = socket(0x11, 0xa, 0x300)
read$auto(0x3, 0x0, 0x80)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
sendmmsg$auto(r0, 0x0, 0x9a9, 0x9ff)

44.553555ms ago: executing program 1 (id=3785):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x246400, 0x0)
openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x6, 0x8000)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
ioperm$auto(0x3, 0x5, 0x149)
iopl$auto(0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
socket(0x29, 0x2, 0x9)
setrlimit$auto(0x2, &(0x7f0000000080)={0x0, 0x6})
mprotect$auto(0x20000000, 0xeb, 0x6)
write$auto(0x3, 0x0, 0xfffffdef)
r1 = fcntl$auto(0x3, 0x4, 0xa553)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x20000003ff, 0x0, 0x3}, 0xed71388}, 0x2, 0x9)
setsockopt$auto(0xffffffffffffffff, 0x4, 0x23, 0x0, 0x9)
openat$auto_uhid_fops_uhid(0xffffffffffffff9c, 0x0, 0x680, 0x0)
bpf$auto(0x5, &(0x7f0000000000)=@iter_create={r0, 0x800}, 0x7)
semctl$auto(0x8, 0x2, 0xffffff00, 0xbb)
munlock$auto(0x0, 0x5)
ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy4/aqm\x00', 0x120000, 0x0)
sendmsg$auto_NL802154_CMD_NEW_SEC_DEVKEY(r1, &(0x7f0000000680)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000640)={&(0x7f0000000280)=ANY=[@ANYBLOB="a4030000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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"], 0x3a4}, 0x1, 0x0, 0x0, 0x44}, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
poll$auto(&(0x7f0000003640)={r2, 0x7, 0x6}, 0x6, 0x100000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x4)
timerfd_create$auto(0x8, 0x800)

0s ago: executing program 3 (id=3786):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x5, 0x25dfdbfb, {}, [@HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44004811}, 0x40000c0)

kernel console output (not intermixed with test programs):

3][   T29] audit: type=1326 audit(1735338387.556:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14803 comm="syz.1.2534" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  406.358029][T14805] random: crng reseeded on system resumption
[  406.646418][T14810] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2535'.
[  406.655609][T14810] nbd: must specify a size in bytes for the device
[  407.002782][T14823] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2538'.
[  407.032478][T14823] nbd: must specify a size in bytes for the device
[  407.579369][T14837] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2540'.
[  407.588635][T14837] nbd: must specify a size in bytes for the device
[  407.722653][T14849] Process accounting resumed
[  408.410884][T14864] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2548'.
[  408.432495][T14864] nbd: must specify a size in bytes for the device
[  409.285447][T14883] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2552'.
[  409.303330][T14883] nbd: must specify a size in bytes for the device
[  409.468266][T14892] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2553'.
[  409.477464][T14892] nbd: must specify a size in bytes for the device
[  409.497205][T14900] Process accounting resumed
[  409.676018][T14909] nvme_fabrics: missing parameter 'transport=%s'
[  409.688051][T14909] nvme_fabrics: missing parameter 'nqn=%s'
[  410.706157][T14934] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2565'.
[  410.740402][T14934] bond0: (slave bond_slave_0): Releasing backup interface
[  410.797294][T14940] netlink: 'syz.2.2566': attribute type 33 has an invalid length.
[  410.816556][T14940] netlink: 322 bytes leftover after parsing attributes in process `syz.2.2566'.
[  410.833206][T14940] FAULT_INJECTION: forcing a failure.
[  410.833206][T14940] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  410.848120][T14940] CPU: 0 UID: 0 PID: 14940 Comm: syz.2.2566 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  410.858953][T14940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  410.869070][T14940] Call Trace:
[  410.872419][T14940]  <TASK>
[  410.875391][T14940]  dump_stack_lvl+0x16c/0x1f0
[  410.880129][T14940]  should_fail_ex+0x497/0x5b0
[  410.884872][T14940]  _copy_from_user+0x2e/0xd0
[  410.889534][T14940]  copy_msghdr_from_user+0x99/0x160
[  410.894804][T14940]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  410.900684][T14940]  ? _kstrtoull+0x146/0x200
[  410.905249][T14940]  ? __pfx__kstrtoull+0x10/0x10
[  410.910147][T14940]  ? lock_release+0x4e2/0x6f0
[  410.914879][T14940]  ___sys_sendmsg+0xff/0x1e0
[  410.919536][T14940]  ? __pfx____sys_sendmsg+0x10/0x10
[  410.924826][T14940]  ? __pfx_kstrtouint+0x10/0x10
[  410.929749][T14940]  ? trace_lock_acquire+0x14e/0x1f0
[  410.935037][T14940]  __sys_sendmmsg+0x201/0x420
[  410.939786][T14940]  ? __pfx___sys_sendmmsg+0x10/0x10
[  410.945069][T14940]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  410.951115][T14940]  ? fput+0x67/0x440
[  410.955071][T14940]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x230
[  410.961296][T14940]  ? syscall_user_dispatch+0x77/0x140
[  410.966725][T14940]  __x64_sys_sendmmsg+0x9c/0x100
[  410.971726][T14940]  do_syscall_64+0xcd/0x250
[  410.976288][T14940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  410.982245][T14940] RIP: 0033:0x7f6be3985d29
[  410.986701][T14940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  411.006362][T14940] RSP: 002b:00007f6be4869038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  411.014832][T14940] RAX: ffffffffffffffda RBX: 00007f6be3b75fa0 RCX: 00007f6be3985d29
[  411.022872][T14940] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003
[  411.030888][T14940] RBP: 00007f6be4869090 R08: 0000000000000000 R09: 0000000000000000
[  411.038905][T14940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  411.046925][T14940] R13: 0000000000000000 R14: 00007f6be3b75fa0 R15: 00007ffeef71cee8
[  411.054948][T14940]  </TASK>
[  411.197212][T14942] netlink: 'syz.3.2567': attribute type 33 has an invalid length.
[  411.211645][T14942] netlink: 322 bytes leftover after parsing attributes in process `syz.3.2567'.
[  411.277964][   T29] audit: type=1326 audit(1735338392.536:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14946 comm="syz.2.2569" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  411.362375][T14949] random: crng reseeded on system resumption
[  412.176786][   T29] audit: type=1326 audit(1735338393.436:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14956 comm="syz.0.2578" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  412.210215][T14963] Process accounting resumed
[  412.251302][T14964] random: crng reseeded on system resumption
[  413.056089][   T29] audit: type=1326 audit(1735338394.316:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14982 comm="syz.1.2574" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  413.078233][   T29] audit: type=1326 audit(1735338394.316:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14983 comm="syz.0.2575" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  413.142127][T14987] random: crng reseeded on system resumption
[  413.317543][T14998] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2577'.
[  413.333245][T14998] bond0: (slave bond_slave_0): Releasing backup interface
[  413.548945][   T29] audit: type=1326 audit(1735338394.806:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15002 comm="syz.2.2580" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  413.761034][T15014] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2584'.
[  413.771128][T15014] nbd: must specify a size in bytes for the device
[  413.987618][   T29] audit: type=1326 audit(1735338395.246:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15023 comm="syz.1.2586" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  414.052338][T15026] random: crng reseeded on system resumption
[  414.092102][T15022] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2594'.
[  414.101250][T15022] nbd: must specify a size in bytes for the device
[  414.731087][T15044] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2589'.
[  414.745713][T15044] bond0: (slave bond_slave_0): Releasing backup interface
[  414.954284][T15051] nvme_fabrics: missing parameter 'transport=%s'
[  414.960680][T15051] nvme_fabrics: missing parameter 'nqn=%s'
[  415.332328][   T29] audit: type=1326 audit(1735338396.596:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15066 comm="syz.2.2595" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  415.406880][T15070] random: crng reseeded on system resumption
[  416.130404][   T29] audit: type=1326 audit(1735338397.386:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15080 comm="syz.0.2598" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  416.248400][T15082] random: crng reseeded on system resumption
[  416.252061][   T29] audit: type=1326 audit(1735338397.506:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15086 comm="syz.2.2600" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  416.257305][T15077] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2597'.
[  416.292640][T15077] nbd: must specify a size in bytes for the device
[  417.145868][   T29] audit: type=1326 audit(1735338398.406:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15098 comm="syz.2.2603" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  417.210435][T15097] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2601'.
[  417.218015][T15106] random: crng reseeded on system resumption
[  417.250039][T15097] bond0: (slave bond_slave_0): Releasing backup interface
[  419.710738][   T29] audit: type=1326 audit(1735338400.966:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15185 comm="syz.1.2622" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  419.779296][T15188] random: crng reseeded on system resumption
[  420.046395][T15194] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2623'.
[  420.710909][T15198] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2625'.
[  420.720157][T15198] nbd: must specify a size in bytes for the device
[  420.993503][   T29] audit: type=1326 audit(1735338402.246:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15211 comm="syz.2.2631" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  421.059417][T15215] random: crng reseeded on system resumption
[  421.277427][T15218] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2627'.
[  421.286812][T15218] nbd: must specify a size in bytes for the device
[  421.584276][   T29] audit: type=1326 audit(1735338402.846:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15231 comm="syz.0.2634" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  422.082762][T15246] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2636'.
[  422.093586][T15246] nbd: must specify a size in bytes for the device
[  422.772028][T15262] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2642'.
[  422.781776][T15262] nbd: must specify a size in bytes for the device
[  422.908377][   T29] audit: type=1326 audit(1735338404.166:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15274 comm="syz.3.2645" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  422.976012][T15278] random: crng reseeded on system resumption
[  423.009012][T15281] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2646'.
[  423.535928][T15284] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2647'.
[  423.545183][T15284] nbd: must specify a size in bytes for the device
[  423.627407][   T29] audit: type=1326 audit(1735338404.876:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15290 comm="syz.1.2651" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  423.915458][   T29] audit: type=1800 audit(1735338405.176:63): pid=15301 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2652" name="dbroot" dev="configfs" ino=58001 res=0 errno=0
[  424.220459][T15306] net_ratelimit: 7 callbacks suppressed
[  424.220484][T15306] netlink: zone id is out of range
[  424.235923][T15306] netlink: set zone limit has 8 unknown bytes
[  424.551929][   T29] audit: type=1326 audit(1735338405.806:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15321 comm="syz.2.2661" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  424.601792][T15320] binder: 15317:15320 unknown command 0
[  424.607526][T15320] binder: 15317:15320 ioctl c0306201 9 returned -22
[  424.635564][T15326] random: crng reseeded on system resumption
[  424.841724][T15319] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2659'.
[  424.850760][T15319] nbd: must specify a size in bytes for the device
[  424.967356][T15336] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2662'.
[  426.029868][T15356] netlink: zone id is out of range
[  426.095487][T15356] netlink: zone id is out of range
[  426.110257][T15356] netlink: set zone limit has 8 unknown bytes
[  426.535429][T15370] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2672'.
[  426.556099][T15370] nbd: must specify a size in bytes for the device
[  426.589789][T15384] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2675'.
[  426.758560][   T29] audit: type=1800 audit(1735338408.016:65): pid=15378 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2673" name="dbroot" dev="configfs" ino=58962 res=0 errno=0
[  427.722662][T15411] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  427.811204][T15415] mkiss: ax0: crc mode is auto.
[  428.134560][T15418] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2685'.
[  428.178296][T15418] nbd: must specify a size in bytes for the device
[  428.277481][T15435] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2688'.
[  429.075022][T15448] binder: 15447:15448 unknown command 0
[  429.075860][   T29] audit: type=1800 audit(1735338410.336:66): pid=15449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2691" name="dbroot" dev="configfs" ino=59531 res=0 errno=0
[  429.100978][T15448] binder: 15447:15448 ioctl c0306201 9 returned -22
[  429.400397][   T29] audit: type=1326 audit(1735338410.646:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15455 comm="syz.1.2696" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  429.515465][T15462] random: crng reseeded on system resumption
[  431.447108][T15504] binder: 15503:15504 unknown command 0
[  431.453460][T15504] binder: 15503:15504 ioctl c0306201 9 returned -22
[  431.790977][T15505] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2705'.
[  431.826072][T15505] nbd: must specify a size in bytes for the device
[  432.610931][   T29] audit: type=1326 audit(1735338413.866:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15537 comm="syz.0.2713" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  432.677228][T15539] random: crng reseeded on system resumption
[  433.041612][   T29] audit: type=1326 audit(1735338414.296:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15547 comm="syz.1.2716" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  433.068112][   T29] audit: type=1326 audit(1735338414.326:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15549 comm="syz.3.2717" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  434.758633][T15594] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2727'.
[  435.048345][   T29] audit: type=1326 audit(1735338416.306:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15599 comm="syz.3.2730" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  435.115577][T15602] random: crng reseeded on system resumption
[  435.200961][   T29] audit: type=1326 audit(1735338416.456:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15607 comm="syz.1.2732" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  435.622757][T15613] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2733'.
[  435.632438][T15613] nbd: must specify a size in bytes for the device
[  437.197319][T15658] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2745'.
[  437.208050][T15658] nbd: must specify a size in bytes for the device
[  437.773127][   T29] audit: type=1326 audit(1735338419.036:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15664 comm="syz.1.2749" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  437.796798][   T29] audit: type=1326 audit(1735338419.036:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15668 comm="syz.2.2747" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  437.845249][T15674] random: crng reseeded on system resumption
[  438.326671][T15695] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2754'.
[  438.344323][T15695] nbd: must specify a size in bytes for the device
[  439.028004][T15714] Invalid ELF header magic: != ELF
[  439.988357][   T29] audit: type=1326 audit(1735338421.246:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15737 comm="syz.3.2766" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  440.055021][T15741] random: crng reseeded on system resumption
[  440.090705][T15740] CIFS: VFS: Invalid SecurityFlags: 0
[  440.090705][T15740] 
[  440.205420][   T29] audit: type=1326 audit(1735338421.466:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15750 comm="syz.0.2770" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  441.668627][T15792] Invalid ELF header magic: != ELF
[  441.781984][   T29] audit: type=1326 audit(1735338423.036:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15795 comm="syz.2.2780" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  441.881212][T15799] random: crng reseeded on system resumption
[  442.435215][T15813] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2786'.
[  442.471870][T15813] nbd: must specify a size in bytes for the device
[  443.205501][T15825] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2789'.
[  443.216063][T15825] nbd: must specify a size in bytes for the device
[  443.642053][T15866] netlink: 'syz.0.2796': attribute type 8 has an invalid length.
[  443.997317][T15869] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2797'.
[  444.031552][T15869] nbd: must specify a size in bytes for the device
[  444.805970][   T29] audit: type=1806 audit(1735338426.066:78): xattr="100" res=-22
[  445.092692][T15906] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2801'.
[  445.125769][T15906] nbd: must specify a size in bytes for the device
[  445.430576][   T29] audit: type=1326 audit(1735338426.686:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15922 comm="syz.0.2805" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  445.535349][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  445.542542][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  445.582215][T15931] random: crng reseeded on system resumption
[  445.699474][T15925] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2807'.
[  445.770268][T15925] nbd: must specify a size in bytes for the device
[  447.069270][T15959] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2822'.
[  447.091676][T15959] nbd: must specify a size in bytes for the device
[  447.248512][   T29] audit: type=1326 audit(1735338428.506:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15974 comm="syz.3.2818" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  447.308220][T15980] random: crng reseeded on system resumption
[  447.550545][T15982] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2819'.
[  447.599674][T15982] nbd: must specify a size in bytes for the device
[  448.373968][T16005] FAULT_INJECTION: forcing a failure.
[  448.373968][T16005] name failslab, interval 1, probability 0, space 0, times 0
[  448.387406][T16005] CPU: 0 UID: 0 PID: 16005 Comm: syz.3.2824 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  448.398240][T16005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  448.408333][T16005] Call Trace:
[  448.411636][T16005]  <TASK>
[  448.414586][T16005]  dump_stack_lvl+0x16c/0x1f0
[  448.419406][T16005]  should_fail_ex+0x497/0x5b0
[  448.424118][T16005]  ? fs_reclaim_acquire+0xae/0x150
[  448.429256][T16005]  should_failslab+0xc2/0x120
[  448.433970][T16005]  __kmalloc_noprof+0xce/0x4f0
[  448.438764][T16005]  ? tomoyo_realpath_from_path+0xbf/0x710
[  448.444542][T16005]  tomoyo_realpath_from_path+0xbf/0x710
[  448.450119][T16005]  ? tomoyo_path_number_perm+0x235/0x5b0
[  448.455791][T16005]  tomoyo_path_number_perm+0x248/0x5b0
[  448.461294][T16005]  ? tomoyo_path_number_perm+0x235/0x5b0
[  448.466985][T16005]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  448.473007][T16005]  ? rcu_is_watching+0x12/0xc0
[  448.477813][T16005]  ? preempt_count_add+0x76/0x150
[  448.482882][T16005]  ? __pfx_lock_release+0x10/0x10
[  448.487930][T16005]  ? trace_lock_acquire+0x14e/0x1f0
[  448.493158][T16005]  ? __fget_files+0x40/0x3a0
[  448.497776][T16005]  ? lock_acquire+0x2f/0xb0
[  448.502303][T16005]  ? __fget_files+0x40/0x3a0
[  448.506922][T16005]  ? __fget_files+0x206/0x3a0
[  448.511642][T16005]  security_file_ioctl+0x9b/0x240
[  448.516692][T16005]  __x64_sys_ioctl+0xb7/0x200
[  448.521392][T16005]  do_syscall_64+0xcd/0x250
[  448.525927][T16005]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  448.531853][T16005] RIP: 0033:0x7f5ec0b85d29
[  448.536285][T16005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  448.555918][T16005] RSP: 002b:00007f5ec19a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  448.564357][T16005] RAX: ffffffffffffffda RBX: 00007f5ec0d75fa0 RCX: 00007f5ec0b85d29
[  448.572346][T16005] RDX: 0000000000000000 RSI: 00000000c4c85512 RDI: 000000000000000e
[  448.580337][T16005] RBP: 00007f5ec19a2090 R08: 0000000000000000 R09: 0000000000000000
[  448.588334][T16005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  448.596376][T16005] R13: 0000000000000000 R14: 00007f5ec0d75fa0 R15: 00007ffee15ca738
[  448.604400][T16005]  </TASK>
[  448.613332][T16005] ERROR: Out of memory at tomoyo_realpath_from_path.
[  448.662447][T15999] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2830'.
[  448.681722][T15999] nbd: must specify a size in bytes for the device
[  449.038853][T16025] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2837'.
[  449.061723][T16025] nbd: must specify a size in bytes for the device
[  449.204867][T16019] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2827'.
[  449.214079][T16019] nbd: must specify a size in bytes for the device
[  449.312957][   T29] audit: type=1326 audit(1735338430.576:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16039 comm="syz.3.2831" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  449.379823][T16045] random: crng reseeded on system resumption
[  449.843506][T16054] netlink: 'syz.1.2832': attribute type 8 has an invalid length.
[  450.129429][T16062] FAULT_INJECTION: forcing a failure.
[  450.129429][T16062] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  450.166054][T16062] CPU: 0 UID: 0 PID: 16062 Comm: syz.2.2836 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  450.176907][T16062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  450.187025][T16062] Call Trace:
[  450.190342][T16062]  <TASK>
[  450.193312][T16062]  dump_stack_lvl+0x16c/0x1f0
[  450.198054][T16062]  should_fail_ex+0x497/0x5b0
[  450.202797][T16062]  _copy_to_user+0x32/0xd0
[  450.207286][T16062]  simple_read_from_buffer+0xd0/0x160
[  450.212715][T16062]  proc_fail_nth_read+0x198/0x270
[  450.217812][T16062]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  450.223431][T16062]  ? bpf_lsm_file_permission+0x9/0x10
[  450.228874][T16062]  ? security_file_permission+0x71/0x210
[  450.234573][T16062]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  450.240190][T16062]  vfs_read+0x1df/0xbe0
[  450.244407][T16062]  ? __fget_files+0x1fc/0x3a0
[  450.249147][T16062]  ? __pfx___mutex_lock+0x10/0x10
[  450.254230][T16062]  ? __pfx_vfs_read+0x10/0x10
[  450.258983][T16062]  ? __fget_files+0x206/0x3a0
[  450.263726][T16062]  ksys_read+0x12b/0x250
[  450.268031][T16062]  ? __pfx_ksys_read+0x10/0x10
[  450.272854][T16062]  ? rcu_is_watching+0x12/0xc0
[  450.277686][T16062]  ? rcu_is_watching+0x12/0xc0
[  450.282510][T16062]  do_syscall_64+0xcd/0x250
[  450.287080][T16062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  450.293046][T16062] RIP: 0033:0x7f6be398473c
[  450.297511][T16062] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  450.317173][T16062] RSP: 002b:00007f6be4869030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  450.325646][T16062] RAX: ffffffffffffffda RBX: 00007f6be3b75fa0 RCX: 00007f6be398473c
[  450.333667][T16062] RDX: 000000000000000f RSI: 00007f6be48690a0 RDI: 0000000000000006
[  450.341693][T16062] RBP: 00007f6be4869090 R08: 0000000000000000 R09: 0000000000000000
[  450.349718][T16062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  450.357740][T16062] R13: 0000000000000000 R14: 00007f6be3b75fa0 R15: 00007ffeef71cee8
[  450.365768][T16062]  </TASK>
[  450.515939][   T29] audit: type=1326 audit(1735338431.776:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16071 comm="syz.2.2840" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  450.687186][T16075] random: crng reseeded on system resumption
[  450.698758][T16074] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2841'.
[  450.737607][T16074] nbd: must specify a size in bytes for the device
[  451.751815][T16108] netlink: get zone limit has 4 unknown bytes
[  451.797831][T16111] netlink: get zone limit has 4 unknown bytes
[  451.851680][T16114] netlink: get zone limit has 4 unknown bytes
[  452.193213][T16125] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2852'.
[  452.220262][T16125] nbd: must specify a size in bytes for the device
[  452.240065][T16130] netlink: 'syz.2.2853': attribute type 8 has an invalid length.
[  452.749722][T16141] crash hp: kexec_trylock() failed, kdump image may be inaccurate

syzkaller
syzkaller login: [  453.665634][T16132] kexec: Could not allocate control_code_buffer
[  453.937016][T16206] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2867'.
[  454.835575][T16232] netlink: 'syz.3.2870': attribute type 8 has an invalid length.
[  454.873980][T16233] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2878'.
[  455.000920][T16229] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2872'.
[  455.012010][T16229] nbd: must specify a size in bytes for the device
[  455.095864][   T29] audit: type=1326 audit(1735338436.356:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16238 comm="syz.2.2873" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  455.157140][T16240] random: crng reseeded on system resumption
[  455.429334][   T29] audit: type=1326 audit(1735338436.686:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16246 comm="syz.1.2874" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  456.576321][T16270] binder: 16269:16270 ioctl c0306201 5 returned -14
[  456.889157][T16292] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2885'.
[  457.279934][T16298] netlink: get zone limit has 4 unknown bytes
[  457.442868][   T29] audit: type=1326 audit(1735338438.706:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16301 comm="syz.0.2888" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  457.562135][T16307] random: crng reseeded on system resumption
[  457.663558][T16306] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2887'.
[  457.713444][T16306] nbd: must specify a size in bytes for the device
[  457.792375][   T29] audit: type=1326 audit(1735338439.046:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16316 comm="syz.2.2890" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  458.391258][T16329] vivid-013: =================  START STATUS  =================
[  458.430495][T16329] vivid-013: Generate PTS: true
[  458.440576][T16329] vivid-013: Generate SCR: true
[  458.474474][T16329] tpg source WxH: 640x360 (Y'CbCr)
[  458.482704][T16329] tpg field: 1
[  458.488528][T16329] tpg crop: 640x360@0x0
[  458.502159][T16329] tpg compose: 640x360@0x0
[  458.510321][T16329] tpg colorspace: 8
[  458.526667][T16329] tpg transfer function: 0/0
[  458.535240][T16329] tpg Y'CbCr encoding: 0/0
[  458.541881][T16329] tpg quantization: 0/0
[  458.549975][T16329] tpg RGB range: 0/2
[  458.565878][T16329] vivid-013: ==================  END STATUS  ==================
[  458.870494][   T29] audit: type=1800 audit(1735338440.126:87): pid=16342 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2895" name="dbroot" dev="configfs" ino=65184 res=0 errno=0
[  458.898132][T16342] db_root: cannot open: ›
[  459.075011][T16349] netlink: get zone limit has 4 unknown bytes
[  459.344940][T16353] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2900'.
[  459.345617][T16360] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2899'.
[  459.354060][T16353] nbd: must specify a size in bytes for the device
[  459.403813][T16361] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2901'.
[  459.435639][   T29] audit: type=1326 audit(1735338440.696:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16362 comm="syz.3.2902" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  459.497034][T16366] random: crng reseeded on system resumption
[  459.856223][   T29] audit: type=1326 audit(1735338441.116:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16371 comm="syz.2.2904" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  460.879899][T16396] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2911'.
[  460.890153][T16396] nbd: must specify a size in bytes for the device
[  461.745677][T16410] crash hp: kexec_trylock() failed, kdump image may be inaccurate
[  461.786592][T16417] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2916'.
[  461.798755][T16418] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2915'.

syzkaller
syzkaller login: [  462.445078][T16407] kexec: Could not allocate control_code_buffer
[  462.608378][   T29] audit: type=1326 audit(1735338443.866:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16424 comm="syz.3.2920" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  462.651819][   T29] audit: type=1326 audit(1735338443.906:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16429 comm="syz.1.2918" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  462.678527][T16431] random: crng reseeded on system resumption
[  463.636844][T16463] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2928'.
[  464.696334][T16469] binder: 16466:16469 ioctl c0306201 5 returned -14
[  464.803175][T16487] Process accounting resumed
[  465.079409][T16486] crash hp: kexec_trylock() failed, kdump image may be inaccurate

syzkaller
syzkaller login: [  465.307891][   T29] audit: type=1326 audit(1735338446.566:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16496 comm="syz.2.2936" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  465.394700][T16501] random: crng reseeded on system resumption
[  466.104686][T16518] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2941'.
[  466.486588][T16467] kexec: Could not allocate control_code_buffer
[  467.055866][T16541] netlink: get zone limit has 4 unknown bytes
[  467.559534][T16524] binder: 16522:16524 ioctl c0306201 5 returned -14
[  467.671043][   T29] audit: type=1326 audit(1735338448.926:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16550 comm="syz.2.2951" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  467.757879][T16556] random: crng reseeded on system resumption
[  468.837942][T16585] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2957'.
[  468.994339][T16584] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2958'.
[  469.049921][T16584] nbd: must specify a size in bytes for the device

syzkaller
syzkaller login: [  469.217571][T16586] crash hp: kexec_trylock() failed, kdump image may be inaccurate
[  469.664945][T16599] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2961'.
[  469.681810][T16599] nbd: must specify a size in bytes for the device
[  469.741621][   T29] audit: type=1326 audit(1735338450.996:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16605 comm="syz.0.2964" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  469.805909][T16607] random: crng reseeded on system resumption
[  470.724240][T16627] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2968'.
[  470.741572][T16627] nbd: must specify a size in bytes for the device
[  470.983383][T16634] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2970'.
[  471.006191][T16634] nbd: must specify a size in bytes for the device
[  471.032390][T16642] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2972'.
[  471.104229][T16569] kexec: Could not allocate control_code_buffer
[  471.609090][T16653] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2984'.
[  471.634369][T16653] nbd: must specify a size in bytes for the device
[  471.721814][   T29] audit: type=1326 audit(1735338452.976:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16660 comm="syz.1.2979" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  471.788636][T16663] random: crng reseeded on system resumption
[  472.067346][   T29] audit: type=1326 audit(1735338453.326:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16676 comm="syz.3.2983" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  472.214884][T16679] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2982'.
[  472.224091][T16679] nbd: must specify a size in bytes for the device
[  472.737374][T16696] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2989'.
[  472.746668][T16696] nbd: must specify a size in bytes for the device
[  472.824406][T16703] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2991'.
[  473.009857][   T29] audit: type=1326 audit(1735338454.266:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16713 comm="syz.2.2996" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  473.099524][T16718] random: crng reseeded on system resumption
[  473.856953][T16735] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3008'.
[  474.370673][   T29] audit: type=1326 audit(1735338455.626:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16755 comm="syz.1.3005" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  474.432756][T16757] random: crng reseeded on system resumption
[  474.681728][   T29] audit: type=1326 audit(1735338455.936:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16761 comm="syz.0.3006" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  474.866948][   T29] audit: type=1326 audit(1735338456.126:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16768 comm="syz.3.3010" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  475.794955][   T29] audit: type=1326 audit(1735338457.056:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16797 comm="syz.2.3026" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  475.835717][T16801] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3016'.
[  475.859889][T16802] random: crng reseeded on system resumption
[  476.046431][T16810] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3019'.
[  476.623043][   T29] audit: type=1326 audit(1735338457.876:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16813 comm="syz.0.3020" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  476.697760][T16815] random: crng reseeded on system resumption
[  476.746187][T16822] FAULT_INJECTION: forcing a failure.
[  476.746187][T16822] name failslab, interval 1, probability 0, space 0, times 0
[  476.759170][T16822] CPU: 1 UID: 0 PID: 16822 Comm: syz.2.3024 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  476.769993][T16822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  476.780081][T16822] Call Trace:
[  476.783378][T16822]  <TASK>
[  476.786323][T16822]  dump_stack_lvl+0x16c/0x1f0
[  476.791036][T16822]  should_fail_ex+0x497/0x5b0
[  476.795743][T16822]  ? fs_reclaim_acquire+0xae/0x150
[  476.800884][T16822]  should_failslab+0xc2/0x120
[  476.805599][T16822]  __kmalloc_noprof+0xce/0x4f0
[  476.810393][T16822]  ? rcu_is_watching+0x12/0xc0
[  476.815207][T16822]  ? kernfs_fop_write_iter+0x223/0x500
[  476.820701][T16822]  ? apparmor_file_permission+0x251/0x400
[  476.826461][T16822]  kernfs_fop_write_iter+0x223/0x500
[  476.831891][T16822]  vfs_write+0x5ae/0x1150
[  476.836249][T16822]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  476.842105][T16822]  ? __pfx___mutex_lock+0x10/0x10
[  476.847175][T16822]  ? __pfx_vfs_write+0x10/0x10
[  476.852029][T16822]  ksys_write+0x12b/0x250
[  476.856394][T16822]  ? __pfx_ksys_write+0x10/0x10
[  476.861275][T16822]  ? rcu_is_watching+0x12/0xc0
[  476.866074][T16822]  ? rcu_is_watching+0x12/0xc0
[  476.870871][T16822]  do_syscall_64+0xcd/0x250
[  476.875413][T16822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.881339][T16822] RIP: 0033:0x7f6be3985d29
[  476.885772][T16822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  476.905405][T16822] RSP: 002b:00007f6be4869038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  476.913843][T16822] RAX: ffffffffffffffda RBX: 00007f6be3b75fa0 RCX: 00007f6be3985d29
[  476.921834][T16822] RDX: 0000000000000008 RSI: 0000000020000000 RDI: 0000000000000003
[  476.929828][T16822] RBP: 00007f6be4869090 R08: 0000000000000000 R09: 0000000000000000
[  476.937819][T16822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  476.945820][T16822] R13: 0000000000000000 R14: 00007f6be3b75fa0 R15: 00007ffeef71cee8
[  476.953823][T16822]  </TASK>
[  476.972812][   T29] audit: type=1326 audit(1735338458.226:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16819 comm="syz.1.3023" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  477.354664][T16842] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3030'.
[  477.645268][   T29] audit: type=1326 audit(1735338458.906:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16847 comm="syz.1.3033" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  477.726476][T16851] random: crng reseeded on system resumption
[  479.357311][T16898] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3046'.
[  479.613363][   T29] audit: type=1326 audit(1735338460.796:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16899 comm="syz.3.3048" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  479.653093][T16903] random: crng reseeded on system resumption
[  480.502159][T16931] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3056'.
[  480.511183][T16931] nbd: must specify a size in bytes for the device
[  480.523500][   T29] audit: type=1326 audit(1735338461.786:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16935 comm="syz.0.3058" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  480.590000][   T29] audit: type=1326 audit(1735338461.846:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16937 comm="syz.3.3059" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  480.591900][T16938] random: crng reseeded on system resumption
[  480.869561][T16946] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3060'.
[  481.621092][   T29] audit: type=1326 audit(1735338462.876:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16962 comm="syz.0.3065" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  481.690389][T16964] random: crng reseeded on system resumption
[  482.068719][T16973] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3068'.
[  482.078029][T16973] nbd: must specify a size in bytes for the device
[  482.529926][   T29] audit: type=1326 audit(1735338463.786:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16987 comm="syz.0.3073" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  482.595045][T16992] random: crng reseeded on system resumption
[  482.990128][T17001] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3075'.
[  483.138745][T17004] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3076'.
[  483.921921][T17016] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3080'.
[  483.931160][T17016] nbd: must specify a size in bytes for the device
[  484.516429][T17046] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3089'.
[  484.869154][T17056] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3093'.
[  484.878462][T17056] nbd: must specify a size in bytes for the device
[  484.953859][   T29] audit: type=1326 audit(1735338466.206:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.2.3095" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  485.028608][T17063] random: crng reseeded on system resumption
[  486.799909][T17097] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3105'.
[  486.827034][T17097] nbd: must specify a size in bytes for the device
[  487.010565][T17106] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3107'.
[  488.207445][T17128] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3114'.
[  488.225471][T17128] nbd: must specify a size in bytes for the device
[  489.287384][T17167] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3124'.
[  489.747384][T17173] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3126'.
[  489.764346][T17173] nbd: must specify a size in bytes for the device
[  490.155312][   T29] audit: type=1326 audit(1735338471.416:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17183 comm="syz.2.3129" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  490.288942][T17185] random: crng reseeded on system resumption
[  490.774065][T17193] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3130'.
[  491.065882][   T29] audit: type=1326 audit(1735338472.326:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17194 comm="syz.2.3131" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  491.985419][   T29] audit: type=1326 audit(1735338473.246:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17210 comm="syz.2.3137" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  492.075026][T17214] random: crng reseeded on system resumption
[  492.541947][T17221] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3138'.
[  492.551059][T17221] nbd: must specify a size in bytes for the device
[  492.703792][T17229] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3140'.
[  492.713702][   T29] audit: type=1326 audit(1735338473.976:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17236 comm="syz.1.3142" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  492.716760][T17229] nbd: must specify a size in bytes for the device
[  492.832709][   T29] audit: type=1326 audit(1735338474.096:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17240 comm="syz.3.3143" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  492.892302][T17243] random: crng reseeded on system resumption
[  493.323071][   T29] audit: type=1326 audit(1735338474.586:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17246 comm="syz.2.3146" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  494.673373][T17266] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3152'.
[  494.682784][T17266] nbd: must specify a size in bytes for the device
[  495.815731][   T29] audit: type=1326 audit(1735338477.076:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17288 comm="syz.3.3157" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  496.170120][   T29] audit: type=1326 audit(1735338477.426:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17299 comm="syz.1.3159" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  496.200168][T17293] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3155'.
[  496.209401][T17293] nbd: must specify a size in bytes for the device
[  496.699918][   T29] audit: type=1326 audit(1735338477.956:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17317 comm="syz.3.3163" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  496.773306][T17319] random: crng reseeded on system resumption
[  497.620942][T17346] Process accounting resumed
[  497.629708][T17346] syz.3.3169 uses obsolete (PF_INET,SOCK_PACKET)
[  497.864719][T17349] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3170'.
[  497.874205][T17349] nbd: must specify a size in bytes for the device
[  498.044644][   T29] audit: type=1326 audit(1735338479.306:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17353 comm="syz.3.3172" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  498.101689][T17355] random: crng reseeded on system resumption
[  498.393323][T17362] ima: policy update failed
[  498.418227][   T29] audit: type=1802 audit(1735338479.666:121): pid=17362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.3173" res=0 errno=0
[  498.574545][   T29] audit: type=1326 audit(1735338479.836:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17368 comm="syz.2.3176" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  498.602838][T17365] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3174'.
[  498.614750][T17365] nbd: must specify a size in bytes for the device
[  498.803767][ T5144] Bluetooth: hci4: command 0x0406 tx timeout
[  498.880785][T17379] FAULT_INJECTION: forcing a failure.
[  498.880785][T17379] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  498.898604][T17379] CPU: 1 UID: 0 PID: 17379 Comm: syz.1.3179 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  498.909456][T17379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  498.919553][T17379] Call Trace:
[  498.922863][T17379]  <TASK>
[  498.925824][T17379]  dump_stack_lvl+0x16c/0x1f0
[  498.930559][T17379]  should_fail_ex+0x497/0x5b0
[  498.935309][T17379]  _copy_from_user+0x2e/0xd0
[  498.939958][T17379]  __tun_chr_ioctl+0x1ee/0x4960
[  498.944865][T17379]  ? __pfx___tun_chr_ioctl+0x10/0x10
[  498.950205][T17379]  ? __fget_files+0x206/0x3a0
[  498.954941][T17379]  ? __pfx_tun_chr_ioctl+0x10/0x10
[  498.960106][T17379]  __x64_sys_ioctl+0x190/0x200
[  498.964922][T17379]  do_syscall_64+0xcd/0x250
[  498.969489][T17379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.975446][T17379] RIP: 0033:0x7f29b9985d29
[  498.979900][T17379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  498.999564][T17379] RSP: 002b:00007f29ba743038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  499.008039][T17379] RAX: ffffffffffffffda RBX: 00007f29b9b75fa0 RCX: 00007f29b9985d29
[  499.016058][T17379] RDX: 0000000000000000 RSI: 0000000000008924 RDI: 00000000000000c8
[  499.024086][T17379] RBP: 00007f29ba743090 R08: 0000000000000000 R09: 0000000000000000
[  499.032106][T17379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  499.040119][T17379] R13: 0000000000000000 R14: 00007f29b9b75fa0 R15: 00007ffe84b8e1f8
[  499.048137][T17379]  </TASK>
[  499.392325][T17395] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3182'.
[  499.401707][T17395] nbd: must specify a size in bytes for the device
[  500.143811][T17420] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3186'.
[  500.152960][T17420] nbd: must specify a size in bytes for the device
[  500.266852][   T29] audit: type=1326 audit(1735338481.526:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17430 comm="syz.0.3189" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  500.367355][T17436] random: crng reseeded on system resumption
[  500.507824][T17433] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3190'.
[  500.547473][T17433] nbd: must specify a size in bytes for the device
[  500.857381][T17452] FAULT_INJECTION: forcing a failure.
[  500.857381][T17452] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  500.879996][T17452] CPU: 1 UID: 0 PID: 17452 Comm: syz.2.3197 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  500.890875][T17452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  500.901066][T17452] Call Trace:
[  500.904374][T17452]  <TASK>
[  500.907322][T17452]  dump_stack_lvl+0x16c/0x1f0
[  500.912040][T17452]  should_fail_ex+0x497/0x5b0
[  500.916755][T17452]  _copy_to_user+0x32/0xd0
[  500.921208][T17452]  simple_read_from_buffer+0xd0/0x160
[  500.926607][T17452]  proc_fail_nth_read+0x198/0x270
[  500.931667][T17452]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  500.937245][T17452]  ? bpf_lsm_file_permission+0x9/0x10
[  500.942654][T17452]  ? security_file_permission+0x71/0x210
[  500.948315][T17452]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  500.953906][T17452]  vfs_read+0x1df/0xbe0
[  500.958087][T17452]  ? __fget_files+0x1fc/0x3a0
[  500.962795][T17452]  ? __pfx___mutex_lock+0x10/0x10
[  500.967850][T17452]  ? __pfx_vfs_read+0x10/0x10
[  500.972555][T17452]  ? __fget_files+0x206/0x3a0
[  500.977266][T17452]  ksys_read+0x12b/0x250
[  500.981533][T17452]  ? __pfx_ksys_read+0x10/0x10
[  500.986334][T17452]  ? rcu_is_watching+0x12/0xc0
[  500.991127][T17452]  ? rcu_is_watching+0x12/0xc0
[  500.995923][T17452]  do_syscall_64+0xcd/0x250
[  501.000458][T17452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  501.006468][T17452] RIP: 0033:0x7f6be398473c
[  501.010899][T17452] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  501.030546][T17452] RSP: 002b:00007f6be4869030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  501.038988][T17452] RAX: ffffffffffffffda RBX: 00007f6be3b75fa0 RCX: 00007f6be398473c
[  501.046980][T17452] RDX: 000000000000000f RSI: 00007f6be48690a0 RDI: 0000000000000007
[  501.054992][T17452] RBP: 00007f6be4869090 R08: 0000000000000000 R09: 0000000000000000
[  501.062986][T17452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  501.071060][T17452] R13: 0000000000000000 R14: 00007f6be3b75fa0 R15: 00007ffeef71cee8
[  501.079072][T17452]  </TASK>
[  501.257465][T17461] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3199'.
[  501.338580][T17459] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3200'.
[  501.349535][T17459] nbd: must specify a size in bytes for the device
[  502.190070][T17474] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3203'.
[  502.199116][T17474] nbd: must specify a size in bytes for the device
[  502.419398][T17491] ima: policy update failed
[  502.426003][   T29] audit: type=1802 audit(1735338483.686:124): pid=17491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3206" res=0 errno=0
[  502.581155][   T29] audit: type=1326 audit(1735338483.836:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17498 comm="syz.0.3207" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  502.637652][T17500] random: crng reseeded on system resumption
[  502.995254][   T29] audit: type=1804 audit(1735338484.256:126): pid=17508 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3209" name="/newroot/sys/kernel/debug/tracing/trace_marker_raw" dev="tracefs" ino=1180 res=1 errno=0
[  503.039675][T17509] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3211'.
[  503.895616][T17516] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3214'.
[  503.921859][   T54] Bluetooth: hci3: command 0x0406 tx timeout
[  504.117003][T17526] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3215'.
[  504.160283][T17526] nbd: must specify a size in bytes for the device
[  504.201634][T17519] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3212'.
[  504.223864][T17519] nbd: must specify a size in bytes for the device
[  504.345888][T17535] ima: policy update failed
[  504.374912][   T29] audit: type=1802 audit(1735338485.626:127): pid=17535 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.3216" res=0 errno=0
[  504.510068][T17550] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3221'.
[  505.030635][T17563] netlink: zone id is out of range
[  505.041809][T17563] netlink: zone id is out of range
[  505.048466][T17563] netlink: zone id is out of range
[  505.054259][T17563] netlink: zone id is out of range
[  505.059978][T17563] netlink: zone id is out of range
[  505.065283][T17563] netlink: zone id is out of range
[  505.073017][T17563] netlink: zone id is out of range
[  505.078453][T17563] netlink: zone id is out of range
[  505.095228][T17563] netlink: zone id is out of range
[  505.106490][T17563] netlink: zone id is out of range
[  505.492185][T17579] Process accounting resumed
[  505.767967][T17582] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3231'.
[  505.794597][T17582] nbd: must specify a size in bytes for the device
[  505.933620][T17604] FAULT_INJECTION: forcing a failure.
[  505.933620][T17604] name failslab, interval 1, probability 0, space 0, times 0
[  505.972660][T17604] CPU: 1 UID: 0 PID: 17604 Comm: syz.2.3237 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  505.983512][T17604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  505.993697][T17604] Call Trace:
[  505.997014][T17604]  <TASK>
[  505.999977][T17604]  dump_stack_lvl+0x16c/0x1f0
[  506.004710][T17604]  should_fail_ex+0x497/0x5b0
[  506.009446][T17604]  ? fs_reclaim_acquire+0xae/0x150
[  506.014611][T17604]  should_failslab+0xc2/0x120
[  506.019375][T17604]  __kmalloc_noprof+0xce/0x4f0
[  506.024293][T17604]  ? tomoyo_realpath_from_path+0xbf/0x710
[  506.030073][T17604]  tomoyo_realpath_from_path+0xbf/0x710
[  506.035681][T17604]  ? tomoyo_path_number_perm+0x235/0x5b0
[  506.041386][T17604]  tomoyo_path_number_perm+0x248/0x5b0
[  506.046953][T17604]  ? tomoyo_path_number_perm+0x235/0x5b0
[  506.052665][T17604]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  506.058728][T17604]  ? rcu_is_watching+0x12/0xc0
[  506.063556][T17604]  ? preempt_count_add+0x76/0x150
[  506.068660][T17604]  ? __pfx_lock_release+0x10/0x10
[  506.073731][T17604]  ? trace_lock_acquire+0x14e/0x1f0
[  506.079029][T17604]  ? __fget_files+0x40/0x3a0
[  506.083678][T17604]  ? lock_acquire+0x2f/0xb0
[  506.088220][T17604]  ? __fget_files+0x40/0x3a0
[  506.092870][T17604]  ? __fget_files+0x206/0x3a0
[  506.097605][T17604]  security_file_ioctl+0x9b/0x240
[  506.102676][T17604]  __x64_sys_ioctl+0xb7/0x200
[  506.107392][T17604]  do_syscall_64+0xcd/0x250
[  506.111950][T17604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  506.117902][T17604] RIP: 0033:0x7f6be3985d29
[  506.122358][T17604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  506.142281][T17604] RSP: 002b:00007f6be4869038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  506.150764][T17604] RAX: ffffffffffffffda RBX: 00007f6be3b75fa0 RCX: 00007f6be3985d29
[  506.158787][T17604] RDX: 0000000000000003 RSI: 0000000080045113 RDI: 0000000000000003
[  506.166827][T17604] RBP: 00007f6be4869090 R08: 0000000000000000 R09: 0000000000000000
[  506.174859][T17604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  506.182906][T17604] R13: 0000000000000000 R14: 00007f6be3b75fa0 R15: 00007ffeef71cee8
[  506.190935][T17604]  </TASK>
[  506.194097][    C1] vkms_vblank_simulate: vblank timer overrun
[  506.210892][T17604] ERROR: Out of memory at tomoyo_realpath_from_path.
[  506.338370][T17616] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3239'.
[  506.966410][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  506.972984][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  507.359706][T17632] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3246'.
[  507.388241][T17632] nbd: must specify a size in bytes for the device
[  508.595622][T17673] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3257'.
[  508.669253][T17676] raw_sendmsg: syz.0.3258 forgot to set AF_INET. Fix it!
[  508.834245][T17681] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3260'.
[  508.845624][T17681] nbd: must specify a size in bytes for the device
[  508.918905][   T29] audit: type=1326 audit(1735338490.176:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17686 comm="syz.0.3261" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  508.940887][    C1] vkms_vblank_simulate: vblank timer overrun
[  508.971082][T17690] random: crng reseeded on system resumption
[  510.361957][T17727] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3270'.
[  510.371012][T17727] nbd: must specify a size in bytes for the device
[  510.533610][T17748] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3277'.
[  510.544193][T17749] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3275'.
[  511.993660][T17783] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3287'.
[  512.022888][T17783] nbd: must specify a size in bytes for the device
[  512.449214][T17799] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3291'.
[  512.520790][T17791] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3299'.
[  512.540768][T17791] nbd: must specify a size in bytes for the device
[  512.811562][T17807] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3292'.
[  513.906965][T17832] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3302'.
[  513.936720][T17832] nbd: must specify a size in bytes for the device
[  514.135478][T17838] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3303'.
[  514.152695][T17838] nbd: must specify a size in bytes for the device
[  514.161602][T17789] Bluetooth: hci2: command 0x0406 tx timeout
[  514.373225][T17850] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3305'.
[  515.098585][T17869] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3313'.
[  515.107732][T17869] nbd: must specify a size in bytes for the device
[  515.362615][T17875] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3315'.
[  515.371813][T17875] nbd: must specify a size in bytes for the device
[  515.435630][   T29] audit: type=1326 audit(1735338496.696:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17883 comm="syz.3.3318" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  515.509818][T17890] random: crng reseeded on system resumption
[  516.876497][T17918] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3324'.
[  516.893830][T17911] nbd: must specify a size in bytes for the device
[  517.376471][   T29] audit: type=1326 audit(1735338498.636:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17935 comm="syz.1.3330" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  517.429496][T17939] random: crng reseeded on system resumption
[  517.624788][T17941] __nla_validate_parse: 1 callbacks suppressed
[  517.624813][T17941] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3331'.
[  517.640311][T17941] nbd: must specify a size in bytes for the device
[  517.697925][   T29] audit: type=1326 audit(1735338498.956:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17944 comm="syz.3.3332" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  517.952284][T17951] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3342'.
[  518.726109][T17964] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3336'.
[  519.015210][T17967] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3337'.
[  519.035267][T17967] nbd: must specify a size in bytes for the device
[  519.281629][T17789] Bluetooth: hci1: command 0x0406 tx timeout
[  520.157934][T17994] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3346'.
[  520.167913][T17994] nbd: must specify a size in bytes for the device
[  520.494618][   T29] audit: type=1326 audit(1735338501.756:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18007 comm="syz.2.3349" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  520.534340][T18009] netlink: 4720 bytes leftover after parsing attributes in process `syz.3.3348'.
[  520.550979][T18010] random: crng reseeded on system resumption
[  522.745017][T18061] netlink: 4720 bytes leftover after parsing attributes in process `syz.1.3361'.
[  522.777597][T18045] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3358'.
[  522.786921][T18045] nbd: must specify a size in bytes for the device
[  522.930267][T18069] FAULT_INJECTION: forcing a failure.
[  522.930267][T18069] name failslab, interval 1, probability 0, space 0, times 0
[  522.943512][T18069] CPU: 1 UID: 0 PID: 18069 Comm: syz.3.3374 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  522.954433][T18069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  522.964522][T18069] Call Trace:
[  522.967808][T18069]  <TASK>
[  522.970759][T18069]  dump_stack_lvl+0x16c/0x1f0
[  522.975460][T18069]  should_fail_ex+0x497/0x5b0
[  522.980184][T18069]  ? fs_reclaim_acquire+0xae/0x150
[  522.985319][T18069]  should_failslab+0xc2/0x120
[  522.990031][T18069]  __kmalloc_node_noprof+0xd1/0x520
[  522.995256][T18069]  ? __pfx_lock_release+0x10/0x10
[  523.000292][T18069]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  523.005777][T18069]  __kvmalloc_node_noprof+0xad/0x1a0
[  523.011099][T18069]  seq_read_iter+0x82a/0x12b0
[  523.015800][T18069]  ? __mutex_trylock_common+0xea/0x250
[  523.021285][T18069]  ? apparmor_file_permission+0x251/0x400
[  523.027045][T18069]  proc_reg_read_iter+0x21d/0x310
[  523.032100][T18069]  vfs_read+0x87f/0xbe0
[  523.036284][T18069]  ? __pfx_vfs_read+0x10/0x10
[  523.041016][T18069]  ksys_read+0x12b/0x250
[  523.045298][T18069]  ? __pfx_ksys_read+0x10/0x10
[  523.050105][T18069]  ? rcu_is_watching+0x12/0xc0
[  523.054945][T18069]  ? rcu_is_watching+0x12/0xc0
[  523.059739][T18069]  do_syscall_64+0xcd/0x250
[  523.064294][T18069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  523.070221][T18069] RIP: 0033:0x7f5ec0b85d29
[  523.074654][T18069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  523.094302][T18069] RSP: 002b:00007f5ec19a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  523.102752][T18069] RAX: ffffffffffffffda RBX: 00007f5ec0d75fa0 RCX: 00007f5ec0b85d29
[  523.110746][T18069] RDX: 0000000000001000 RSI: 0000000020001040 RDI: 0000000000000003
[  523.118733][T18069] RBP: 00007f5ec19a2090 R08: 0000000000000000 R09: 0000000000000000
[  523.126722][T18069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  523.134715][T18069] R13: 0000000000000000 R14: 00007f5ec0d75fa0 R15: 00007ffee15ca738
[  523.142723][T18069]  </TASK>
[  523.446044][   T29] audit: type=1326 audit(1735338504.706:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18076 comm="syz.0.3367" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  523.525395][T18080] random: crng reseeded on system resumption
[  523.819333][   T29] audit: type=1326 audit(1735338505.076:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18096 comm="syz.1.3373" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  523.851304][T18099] netlink: 'syz.2.3375': attribute type 19 has an invalid length.
[  523.859413][T18099] netlink: 334 bytes leftover after parsing attributes in process `syz.2.3375'.
[  524.389166][T18113] netlink: 4720 bytes leftover after parsing attributes in process `syz.0.3379'.
[  524.804160][T18118] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3381'.
[  524.813722][T18118] nbd: must specify a size in bytes for the device
[  525.005919][T18123] random: crng reseeded on system resumption
[  525.313516][   T29] audit: type=1326 audit(1735338506.566:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18135 comm="syz.2.3388" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  525.359738][T18138] random: crng reseeded on system resumption
[  525.607403][   T29] audit: type=1326 audit(1735338506.866:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18143 comm="syz.3.3390" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  526.083834][T18151] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3391'.
[  526.092979][T18151] nbd: must specify a size in bytes for the device
[  526.343846][T18164] FAULT_INJECTION: forcing a failure.
[  526.343846][T18164] name failslab, interval 1, probability 0, space 0, times 0
[  526.357690][T18164] CPU: 0 UID: 0 PID: 18164 Comm: syz.2.3395 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  526.368673][T18164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  526.378884][T18164] Call Trace:
[  526.382181][T18164]  <TASK>
[  526.385130][T18164]  dump_stack_lvl+0x16c/0x1f0
[  526.389839][T18164]  should_fail_ex+0x497/0x5b0
[  526.394548][T18164]  ? fs_reclaim_acquire+0xae/0x150
[  526.399692][T18164]  should_failslab+0xc2/0x120
[  526.404404][T18164]  __kmalloc_node_noprof+0xd1/0x520
[  526.409659][T18164]  ? __pfx___mutex_lock+0x10/0x10
[  526.414728][T18164]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  526.420221][T18164]  __kvmalloc_node_noprof+0xad/0x1a0
[  526.425542][T18164]  traverse.part.0.constprop.0+0x392/0x640
[  526.431381][T18164]  ? aa_file_perm+0x142/0xfe0
[  526.436089][T18164]  seq_read_iter+0x934/0x12b0
[  526.440873][T18164]  ? __pfx_kstrtouint+0x10/0x10
[  526.445750][T18164]  ? __pfx_aa_file_perm+0x10/0x10
[  526.450811][T18164]  seq_read+0x39f/0x4e0
[  526.455162][T18164]  ? __pfx_seq_read+0x10/0x10
[  526.459859][T18164]  ? lock_acquire+0x2f/0xb0
[  526.464391][T18164]  ? lock_release+0x4e2/0x6f0
[  526.469095][T18164]  ? bpf_lsm_file_permission+0x9/0x10
[  526.474504][T18164]  ? security_file_permission+0x71/0x210
[  526.480161][T18164]  ? __pfx_seq_read+0x10/0x10
[  526.484857][T18164]  vfs_read+0x1df/0xbe0
[  526.489057][T18164]  ? __fget_files+0x1fc/0x3a0
[  526.493847][T18164]  ? __pfx_lock_release+0x10/0x10
[  526.498892][T18164]  ? __pfx_vfs_read+0x10/0x10
[  526.503594][T18164]  ? __fget_files+0x40/0x3a0
[  526.508210][T18164]  ? lock_acquire+0x2f/0xb0
[  526.512736][T18164]  ? __fget_files+0x40/0x3a0
[  526.517358][T18164]  ? __fget_files+0x206/0x3a0
[  526.522072][T18164]  __x64_sys_pread64+0x1f6/0x250
[  526.527039][T18164]  ? __pfx___x64_sys_pread64+0x10/0x10
[  526.532532][T18164]  ? rcu_is_watching+0x12/0xc0
[  526.537327][T18164]  ? rcu_is_watching+0x12/0xc0
[  526.542123][T18164]  do_syscall_64+0xcd/0x250
[  526.546657][T18164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.552579][T18164] RIP: 0033:0x7f6be3985d29
[  526.557019][T18164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  526.576652][T18164] RSP: 002b:00007f6be4869038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  526.585086][T18164] RAX: ffffffffffffffda RBX: 00007f6be3b75fa0 RCX: 00007f6be3985d29
[  526.593095][T18164] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000003
[  526.601194][T18164] RBP: 00007f6be4869090 R08: 0000000000000000 R09: 0000000000000000
[  526.609200][T18164] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[  526.617198][T18164] R13: 0000000000000000 R14: 00007f6be3b75fa0 R15: 00007ffeef71cee8
[  526.625200][T18164]  </TASK>
[  526.787294][T18169] netlink: 4720 bytes leftover after parsing attributes in process `syz.3.3396'.
[  527.690642][T18186] netlink: 4720 bytes leftover after parsing attributes in process `syz.2.3407'.
[  528.366406][T18193] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3401'.
[  528.389356][T18193] nbd: must specify a size in bytes for the device
[  528.626678][T18199] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3403'.
[  529.316309][T18221] bridge0: port 3(syz_tun) entered blocking state
[  529.337511][T18221] bridge0: port 3(syz_tun) entered disabled state
[  529.358061][T18221] syz_tun: entered allmulticast mode
[  529.372685][T18221] syz_tun: entered promiscuous mode
[  529.390423][T18221] bridge0: port 3(syz_tun) entered blocking state
[  529.397024][T18221] bridge0: port 3(syz_tun) entered forwarding state
[  529.732126][T18232] netlink: 4720 bytes leftover after parsing attributes in process `syz.1.3412'.
[  530.024866][T18238] random: crng reseeded on system resumption
[  530.282787][T18243] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3415'.
[  530.835988][T18257] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3419'.
[  531.003202][T18262] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3420'.
[  531.023424][T18262] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3420'.
[  531.788155][T18277] random: crng reseeded on system resumption
[  531.907471][T18284] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3427'.
[  532.170867][   T29] audit: type=1326 audit(1735338513.426:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18295 comm="syz.0.3431" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  532.223069][T18297] random: crng reseeded on system resumption
[  532.750588][T18306] FAULT_INJECTION: forcing a failure.
[  532.750588][T18306] name failslab, interval 1, probability 0, space 0, times 0
[  532.764079][T18306] CPU: 0 UID: 0 PID: 18306 Comm: syz.3.3435 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  532.774909][T18306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  532.784988][T18306] Call Trace:
[  532.788281][T18306]  <TASK>
[  532.791224][T18306]  dump_stack_lvl+0x16c/0x1f0
[  532.796455][T18306]  should_fail_ex+0x497/0x5b0
[  532.801162][T18306]  ? fs_reclaim_acquire+0xae/0x150
[  532.806302][T18306]  should_failslab+0xc2/0x120
[  532.811013][T18306]  __kmalloc_node_noprof+0xd1/0x520
[  532.816248][T18306]  ? __pfx___mutex_lock+0x10/0x10
[  532.821304][T18306]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  532.826799][T18306]  __kvmalloc_node_noprof+0xad/0x1a0
[  532.832129][T18306]  traverse.part.0.constprop.0+0x392/0x640
[  532.837961][T18306]  ? __pfx_lock_release+0x10/0x10
[  532.843012][T18306]  seq_read_iter+0x934/0x12b0
[  532.847717][T18306]  ? __pfx_kstrtouint+0x10/0x10
[  532.852593][T18306]  seq_read+0x39f/0x4e0
[  532.856770][T18306]  ? lock_release+0x4e2/0x6f0
[  532.861479][T18306]  ? __pfx_seq_read+0x10/0x10
[  532.866188][T18306]  ? trace_lock_acquire+0x14e/0x1f0
[  532.871424][T18306]  ? lock_acquire+0x2f/0xb0
[  532.875962][T18306]  ? apparmor_file_permission+0x251/0x400
[  532.881718][T18306]  ? __pfx_seq_read+0x10/0x10
[  532.886424][T18306]  proc_reg_read+0x23d/0x330
[  532.891043][T18306]  ? __pfx_proc_reg_read+0x10/0x10
[  532.896184][T18306]  vfs_read+0x1df/0xbe0
[  532.900366][T18306]  ? __fget_files+0x1fc/0x3a0
[  532.905070][T18306]  ? __pfx_lock_release+0x10/0x10
[  532.910114][T18306]  ? __pfx_vfs_read+0x10/0x10
[  532.914844][T18306]  ? __fget_files+0x40/0x3a0
[  532.919494][T18306]  ? lock_acquire+0x2f/0xb0
[  532.924044][T18306]  ? __fget_files+0x40/0x3a0
[  532.928672][T18306]  ? __fget_files+0x206/0x3a0
[  532.933379][T18306]  __x64_sys_pread64+0x1f6/0x250
[  532.938350][T18306]  ? __pfx___x64_sys_pread64+0x10/0x10
[  532.943847][T18306]  ? rcu_is_watching+0x12/0xc0
[  532.948641][T18306]  ? rcu_is_watching+0x12/0xc0
[  532.953434][T18306]  do_syscall_64+0xcd/0x250
[  532.957971][T18306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  532.963897][T18306] RIP: 0033:0x7f5ec0b85d29
[  532.968330][T18306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  532.987963][T18306] RSP: 002b:00007f5ec19a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  532.996412][T18306] RAX: ffffffffffffffda RBX: 00007f5ec0d75fa0 RCX: 00007f5ec0b85d29
[  533.004491][T18306] RDX: 000000000000f42c RSI: 0000000000000000 RDI: 0000000000000003
[  533.012486][T18306] RBP: 00007f5ec19a2090 R08: 0000000000000000 R09: 0000000000000000
[  533.020474][T18306] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  533.028465][T18306] R13: 0000000000000000 R14: 00007f5ec0d75fa0 R15: 00007ffee15ca738
[  533.036464][T18306]  </TASK>
[  533.248923][T18309] Process accounting resumed
[  533.406428][T18319] random: crng reseeded on system resumption
[  533.567203][T18326] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3440'.
[  533.785296][T18334] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3443'.
[  534.633551][T18345] FAULT_INJECTION: forcing a failure.
[  534.633551][T18345] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  534.661699][T18341] TCP: TCP_TX_DELAY enabled
[  534.666346][T18345] CPU: 1 UID: 0 PID: 18345 Comm: syz.1.3448 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  534.677180][T18345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  534.687370][T18345] Call Trace:
[  534.690688][T18345]  <TASK>
[  534.693667][T18345]  dump_stack_lvl+0x16c/0x1f0
[  534.698411][T18345]  should_fail_ex+0x497/0x5b0
[  534.703156][T18345]  _copy_to_iter+0x4a5/0x1400
[  534.707901][T18345]  ? __pfx__copy_to_iter+0x10/0x10
[  534.713073][T18345]  ? __virt_addr_valid+0x1a4/0x590
[  534.718253][T18345]  ? __virt_addr_valid+0x5e/0x590
[  534.723349][T18345]  ? __phys_addr_symbol+0x30/0x80
[  534.728429][T18345]  ? __check_object_size+0x488/0x710
[  534.733786][T18345]  seq_read_iter+0xd00/0x12b0
[  534.738533][T18345]  seq_read+0x39f/0x4e0
[  534.742750][T18345]  ? __pfx_seq_read+0x10/0x10
[  534.747484][T18345]  ? __pfx_lock_release+0x10/0x10
[  534.752564][T18345]  ? lock_acquire+0x2f/0xb0
[  534.757135][T18345]  ? apparmor_file_permission+0x251/0x400
[  534.762920][T18345]  ? __pfx_seq_read+0x10/0x10
[  534.767634][T18345]  proc_reg_read+0x23d/0x330
[  534.772259][T18345]  ? __pfx_proc_reg_read+0x10/0x10
[  534.777418][T18345]  vfs_read+0x1df/0xbe0
[  534.781609][T18345]  ? __fget_files+0x1fc/0x3a0
[  534.786315][T18345]  ? __pfx___mutex_lock+0x10/0x10
[  534.791376][T18345]  ? __pfx_vfs_read+0x10/0x10
[  534.796104][T18345]  ? __fget_files+0x206/0x3a0
[  534.800842][T18345]  ksys_read+0x12b/0x250
[  534.805137][T18345]  ? __pfx_ksys_read+0x10/0x10
[  534.809970][T18345]  ? rcu_is_watching+0x12/0xc0
[  534.814783][T18345]  ? rcu_is_watching+0x12/0xc0
[  534.819590][T18345]  do_syscall_64+0xcd/0x250
[  534.824149][T18345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  534.830094][T18345] RIP: 0033:0x7f29b9985d29
[  534.834629][T18345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  534.854267][T18345] RSP: 002b:00007f29ba743038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  534.862706][T18345] RAX: ffffffffffffffda RBX: 00007f29b9b75fa0 RCX: 00007f29b9985d29
[  534.870696][T18345] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000003
[  534.878687][T18345] RBP: 00007f29ba743090 R08: 0000000000000000 R09: 0000000000000000
[  534.886676][T18345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  534.894667][T18345] R13: 0000000000000000 R14: 00007f29b9b75fa0 R15: 00007ffe84b8e1f8
[  534.902667][T18345]  </TASK>
[  535.011091][T18357] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3452'.
[  535.203316][T18365] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3453'.
[  535.674786][T18383] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3457'.
[  536.113676][T18387] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3458'.
[  536.383434][T18397] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3459'.
[  537.212550][T18403] FAULT_INJECTION: forcing a failure.
[  537.212550][T18403] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  537.231564][T18403] CPU: 0 UID: 0 PID: 18403 Comm: syz.1.3465 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  537.242412][T18403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  537.252525][T18403] Call Trace:
[  537.255842][T18403]  <TASK>
[  537.258812][T18403]  dump_stack_lvl+0x16c/0x1f0
[  537.263550][T18403]  should_fail_ex+0x497/0x5b0
[  537.268288][T18403]  _copy_to_iter+0x4a5/0x1400
[  537.273032][T18403]  ? rcu_is_watching+0x12/0xc0
[  537.277859][T18403]  ? __pfx__copy_to_iter+0x10/0x10
[  537.283074][T18403]  ? __virt_addr_valid+0x1a4/0x590
[  537.288251][T18403]  ? __virt_addr_valid+0x5e/0x590
[  537.293337][T18403]  ? __phys_addr_symbol+0x30/0x80
[  537.298421][T18403]  ? __check_object_size+0x488/0x710
[  537.303791][T18403]  seq_read_iter+0x725/0x12b0
[  537.308708][T18403]  ? __pfx_kstrtouint+0x10/0x10
[  537.313629][T18403]  seq_read+0x39f/0x4e0
[  537.317843][T18403]  ? lock_release+0x4e2/0x6f0
[  537.322597][T18403]  ? __pfx_seq_read+0x10/0x10
[  537.327332][T18403]  ? trace_lock_acquire+0x14e/0x1f0
[  537.332598][T18403]  ? lock_acquire+0x2f/0xb0
[  537.337232][T18403]  ? apparmor_file_permission+0x251/0x400
[  537.342997][T18403]  ? __pfx_seq_read+0x10/0x10
[  537.347708][T18403]  proc_reg_read+0x23d/0x330
[  537.352327][T18403]  ? __pfx_proc_reg_read+0x10/0x10
[  537.357464][T18403]  vfs_read+0x1df/0xbe0
[  537.361645][T18403]  ? __fget_files+0x1fc/0x3a0
[  537.366357][T18403]  ? __pfx_lock_release+0x10/0x10
[  537.371405][T18403]  ? __pfx_vfs_read+0x10/0x10
[  537.376124][T18403]  ? __fget_files+0x40/0x3a0
[  537.380741][T18403]  ? lock_acquire+0x2f/0xb0
[  537.385270][T18403]  ? __fget_files+0x40/0x3a0
[  537.389907][T18403]  ? __fget_files+0x206/0x3a0
[  537.394641][T18403]  __x64_sys_pread64+0x1f6/0x250
[  537.399632][T18403]  ? __pfx___x64_sys_pread64+0x10/0x10
[  537.405226][T18403]  ? rcu_is_watching+0x12/0xc0
[  537.410033][T18403]  ? rcu_is_watching+0x12/0xc0
[  537.414859][T18403]  do_syscall_64+0xcd/0x250
[  537.419487][T18403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.425415][T18403] RIP: 0033:0x7f29b9985d29
[  537.429850][T18403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  537.449483][T18403] RSP: 002b:00007f29ba743038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  537.457921][T18403] RAX: ffffffffffffffda RBX: 00007f29b9b75fa0 RCX: 00007f29b9985d29
[  537.465999][T18403] RDX: 000000000000f42c RSI: 0000000000000000 RDI: 0000000000000003
[  537.473994][T18403] RBP: 00007f29ba743090 R08: 0000000000000000 R09: 0000000000000000
[  537.482084][T18403] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  537.490089][T18403] R13: 0000000000000000 R14: 00007f29b9b75fa0 R15: 00007ffe84b8e1f8
[  537.498100][T18403]  </TASK>
[  537.569079][T18405] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3464'.
[  537.769942][T18409] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3467'.
[  537.801548][T18409] nbd: must specify a size in bytes for the device
[  538.748504][T18445] netlink: 4720 bytes leftover after parsing attributes in process `syz.0.3474'.
[  538.790021][T18444] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3473'.
[  539.300404][T18455] FAULT_INJECTION: forcing a failure.
[  539.300404][T18455] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  539.314657][T18455] CPU: 1 UID: 0 PID: 18455 Comm: syz.1.3478 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  539.325583][T18455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  539.335774][T18455] Call Trace:
[  539.339093][T18455]  <TASK>
[  539.342065][T18455]  dump_stack_lvl+0x16c/0x1f0
[  539.346949][T18455]  should_fail_ex+0x497/0x5b0
[  539.351690][T18455]  _copy_to_user+0x32/0xd0
[  539.356176][T18455]  simple_read_from_buffer+0xd0/0x160
[  539.361697][T18455]  proc_fail_nth_read+0x198/0x270
[  539.366797][T18455]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  539.372434][T18455]  ? bpf_lsm_file_permission+0x9/0x10
[  539.377905][T18455]  ? security_file_permission+0x71/0x210
[  539.383606][T18455]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  539.389235][T18455]  vfs_read+0x1df/0xbe0
[  539.393456][T18455]  ? __fget_files+0x1fc/0x3a0
[  539.398193][T18455]  ? __pfx___mutex_lock+0x10/0x10
[  539.403291][T18455]  ? __pfx_vfs_read+0x10/0x10
[  539.408045][T18455]  ? __fget_files+0x206/0x3a0
[  539.412790][T18455]  ksys_read+0x12b/0x250
[  539.417088][T18455]  ? __pfx_ksys_read+0x10/0x10
[  539.421909][T18455]  ? rcu_is_watching+0x12/0xc0
[  539.426743][T18455]  ? rcu_is_watching+0x12/0xc0
[  539.431571][T18455]  do_syscall_64+0xcd/0x250
[  539.436167][T18455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  539.443693][T18455] RIP: 0033:0x7f29b998473c
[  539.448152][T18455] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  539.467817][T18455] RSP: 002b:00007f29ba743030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  539.476291][T18455] RAX: ffffffffffffffda RBX: 00007f29b9b75fa0 RCX: 00007f29b998473c
[  539.484313][T18455] RDX: 000000000000000f RSI: 00007f29ba7430a0 RDI: 0000000000000004
[  539.492332][T18455] RBP: 00007f29ba743090 R08: 0000000000000000 R09: 0000000000000000
[  539.500352][T18455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  539.508371][T18455] R13: 0000000000000000 R14: 00007f29b9b75fa0 R15: 00007ffe84b8e1f8
[  539.516410][T18455]  </TASK>
[  539.861552][T18461] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3480'.
[  539.881018][T18461] nbd: must specify a size in bytes for the device
[  541.383876][T18498] netlink: 4720 bytes leftover after parsing attributes in process `syz.2.3488'.
[  542.251822][   T29] audit: type=1326 audit(1735338523.496:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18508 comm="syz.2.3491" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  542.324008][T18511] random: crng reseeded on system resumption
[  542.451364][T18514] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3492'.
[  542.460581][T18514] nbd: must specify a size in bytes for the device
[  542.654760][T18521] FAULT_INJECTION: forcing a failure.
[  542.654760][T18521] name failslab, interval 1, probability 0, space 0, times 0
[  542.673305][T18521] CPU: 0 UID: 0 PID: 18521 Comm: syz.3.3489 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  542.684170][T18521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  542.694276][T18521] Call Trace:
[  542.697591][T18521]  <TASK>
[  542.700561][T18521]  dump_stack_lvl+0x16c/0x1f0
[  542.705300][T18521]  should_fail_ex+0x497/0x5b0
[  542.710048][T18521]  ? fs_reclaim_acquire+0xae/0x150
[  542.715215][T18521]  should_failslab+0xc2/0x120
[  542.719962][T18521]  __kmalloc_noprof+0xce/0x4f0
[  542.724795][T18521]  ? d_absolute_path+0x137/0x1b0
[  542.729812][T18521]  ? tomoyo_encode2+0x100/0x3e0
[  542.734736][T18521]  tomoyo_encode2+0x100/0x3e0
[  542.739477][T18521]  tomoyo_realpath_from_path+0x1a7/0x710
[  542.745176][T18521]  ? tomoyo_path_number_perm+0x235/0x5b0
[  542.750887][T18521]  tomoyo_path_number_perm+0x248/0x5b0
[  542.756432][T18521]  ? tomoyo_path_number_perm+0x235/0x5b0
[  542.762148][T18521]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  542.768210][T18521]  ? rcu_is_watching+0x12/0xc0
[  542.773044][T18521]  ? preempt_count_add+0x76/0x150
[  542.778147][T18521]  ? __pfx_lock_release+0x10/0x10
[  542.783222][T18521]  ? trace_lock_acquire+0x14e/0x1f0
[  542.788497][T18521]  ? __fget_files+0x40/0x3a0
[  542.793148][T18521]  ? lock_acquire+0x2f/0xb0
[  542.797704][T18521]  ? __fget_files+0x40/0x3a0
[  542.802353][T18521]  ? __fget_files+0x206/0x3a0
[  542.807096][T18521]  security_file_ioctl+0x9b/0x240
[  542.812179][T18521]  __x64_sys_ioctl+0xb7/0x200
[  542.816924][T18521]  do_syscall_64+0xcd/0x250
[  542.821489][T18521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  542.827443][T18521] RIP: 0033:0x7f5ec0b85d29
[  542.831927][T18521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  542.851594][T18521] RSP: 002b:00007f5ec1981038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  542.860065][T18521] RAX: ffffffffffffffda RBX: 00007f5ec0d76080 RCX: 00007f5ec0b85d29
[  542.868086][T18521] RDX: 000000000000000e RSI: 00000000400454d4 RDI: 00000000000000c8
[  542.876111][T18521] RBP: 00007f5ec1981090 R08: 0000000000000000 R09: 0000000000000000
[  542.884131][T18521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  542.892147][T18521] R13: 0000000000000000 R14: 00007f5ec0d76080 R15: 00007ffee15ca738
[  542.900174][T18521]  </TASK>
[  542.911380][T18521] ERROR: Out of memory at tomoyo_realpath_from_path.
[  543.284557][T18543] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3498'.
[  543.706205][T18558] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3503'.
[  543.722012][T18558] nbd: must specify a size in bytes for the device
[  543.973500][   T29] audit: type=1326 audit(1735338525.236:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18565 comm="syz.3.3506" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  544.024713][T18567] random: crng reseeded on system resumption
[  544.791007][T18588] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3512'.
[  544.839768][T18588] nbd: must specify a size in bytes for the device
[  544.952895][   T29] audit: type=1326 audit(1735338526.216:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18595 comm="syz.1.3521" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  544.987620][T18599] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3513'.
[  545.032968][T18603] random: crng reseeded on system resumption
[  545.880855][T18614] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3516'.
[  546.719719][T18621] vmstat_refresh: nr_hugetlb -2048
[  546.730902][T18619] FAULT_INJECTION: forcing a failure.
[  546.730902][T18619] name failslab, interval 1, probability 0, space 0, times 0
[  546.767206][T18619] CPU: 1 UID: 0 PID: 18619 Comm: syz.2.3519 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  546.778132][T18619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  546.788236][T18619] Call Trace:
[  546.791562][T18619]  <TASK>
[  546.794535][T18619]  dump_stack_lvl+0x16c/0x1f0
[  546.799272][T18619]  should_fail_ex+0x497/0x5b0
[  546.804016][T18619]  ? fs_reclaim_acquire+0xae/0x150
[  546.809191][T18619]  should_failslab+0xc2/0x120
[  546.814124][T18619]  __kmalloc_noprof+0xce/0x4f0
[  546.818953][T18619]  ? d_absolute_path+0x137/0x1b0
[  546.823968][T18619]  ? tomoyo_encode2+0x100/0x3e0
[  546.828898][T18619]  tomoyo_encode2+0x100/0x3e0
[  546.833650][T18619]  tomoyo_realpath_from_path+0x1a7/0x710
[  546.839361][T18619]  tomoyo_path_number_perm+0x248/0x5b0
[  546.844895][T18619]  ? tomoyo_path_number_perm+0x235/0x5b0
[  546.850598][T18619]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  546.856678][T18619]  ? rcu_is_watching+0x12/0xc0
[  546.856729][T18619]  ? preempt_count_add+0x76/0x150
[  546.856787][T18619]  ? __pfx_lock_release+0x10/0x10
[  546.856817][T18619]  ? trace_lock_acquire+0x14e/0x1f0
[  546.856860][T18619]  ? __fget_files+0x40/0x3a0
[  546.856900][T18619]  ? lock_acquire+0x2f/0xb0
[  546.856929][T18619]  ? __fget_files+0x40/0x3a0
[  546.856969][T18619]  ? __fget_files+0x206/0x3a0
[  546.857008][T18619]  security_file_ioctl+0x9b/0x240
[  546.857042][T18619]  __x64_sys_ioctl+0xb7/0x200
[  546.857074][T18619]  do_syscall_64+0xcd/0x250
[  546.857116][T18619]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  546.857159][T18619] RIP: 0033:0x7f6be3985d29
[  546.857184][T18619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  546.857216][T18619] RSP: 002b:00007f6be4869038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  546.857249][T18619] RAX: ffffffffffffffda RBX: 00007f6be3b75fa0 RCX: 00007f6be3985d29
[  546.857271][T18619] RDX: 0000000000000000 RSI: 000000000000540a RDI: 0000000000000003
[  546.857293][T18619] RBP: 00007f6be4869090 R08: 0000000000000000 R09: 0000000000000000
[  546.857313][T18619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  546.857334][T18619] R13: 0000000000000000 R14: 00007f6be3b75fa0 R15: 00007ffeef71cee8
[  546.857374][T18619]  </TASK>
[  546.880072][T18619] ERROR: Out of memory at tomoyo_realpath_from_path.
[  546.919735][T18620] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3527'.
[  547.024147][T18620] nbd: must specify a size in bytes for the device
[  547.391124][T18645] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3523'.
[  547.456237][T18638] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3533'.
[  547.485311][T18638] nbd: must specify a size in bytes for the device
[  547.787405][T18656] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3526'.
[  547.988239][   T29] audit: type=1326 audit(1735338529.246:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18662 comm="syz.2.3530" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  548.049892][T18665] random: crng reseeded on system resumption
[  549.373668][T18691] FAULT_INJECTION: forcing a failure.
[  549.373668][T18691] name failslab, interval 1, probability 0, space 0, times 0
[  549.420448][T18691] CPU: 1 UID: 0 PID: 18691 Comm: syz.3.3538 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  549.431731][T18691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  549.441836][T18691] Call Trace:
[  549.445158][T18691]  <TASK>
[  549.448142][T18691]  dump_stack_lvl+0x16c/0x1f0
[  549.452889][T18691]  should_fail_ex+0x497/0x5b0
[  549.457633][T18691]  ? fs_reclaim_acquire+0xae/0x150
[  549.462893][T18691]  should_failslab+0xc2/0x120
[  549.467739][T18691]  __kmalloc_noprof+0xce/0x4f0
[  549.472569][T18691]  ? d_absolute_path+0x137/0x1b0
[  549.477575][T18691]  ? tomoyo_encode2+0x100/0x3e0
[  549.482489][T18691]  tomoyo_encode2+0x100/0x3e0
[  549.487236][T18691]  tomoyo_realpath_from_path+0x1a7/0x710
[  549.492926][T18691]  tomoyo_path_number_perm+0x248/0x5b0
[  549.498454][T18691]  ? tomoyo_path_number_perm+0x235/0x5b0
[  549.504162][T18691]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  549.510226][T18691]  ? rcu_is_watching+0x12/0xc0
[  549.515054][T18691]  ? preempt_count_add+0x76/0x150
[  549.520511][T18691]  ? __pfx_lock_release+0x10/0x10
[  549.525587][T18691]  ? trace_lock_acquire+0x14e/0x1f0
[  549.530857][T18691]  ? __fget_files+0x40/0x3a0
[  549.535521][T18691]  ? lock_acquire+0x2f/0xb0
[  549.540084][T18691]  ? __fget_files+0x40/0x3a0
[  549.544747][T18691]  ? __fget_files+0x206/0x3a0
[  549.549484][T18691]  security_file_ioctl+0x9b/0x240
[  549.554657][T18691]  __x64_sys_ioctl+0xb7/0x200
[  549.559395][T18691]  do_syscall_64+0xcd/0x250
[  549.563963][T18691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  549.569921][T18691] RIP: 0033:0x7f5ec0b85d29
[  549.574387][T18691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  549.594062][T18691] RSP: 002b:00007f5ec19a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  549.602546][T18691] RAX: ffffffffffffffda RBX: 00007f5ec0d75fa0 RCX: 00007f5ec0b85d29
[  549.610594][T18691] RDX: 0000000000000000 RSI: 000000000000460f RDI: 0000000000000003
[  549.610621][T18691] RBP: 00007f5ec19a2090 R08: 0000000000000000 R09: 0000000000000000
[  549.610643][T18691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  549.610665][T18691] R13: 0000000000000000 R14: 00007f5ec0d75fa0 R15: 00007ffee15ca738
[  549.610698][T18691]  </TASK>
[  549.621643][T18691] ERROR: Out of memory at tomoyo_realpath_from_path.
[  549.631056][T18694] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3537'.
[  549.663293][T18694] nbd: must specify a size in bytes for the device
[  550.193105][   T29] audit: type=1326 audit(1735338531.446:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18715 comm="syz.0.3544" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  550.254427][T18720] random: crng reseeded on system resumption
[  550.444124][T18713] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3541'.
[  551.069658][T18735] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3547'.
[  552.232965][T18749] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3553'.
[  552.242585][T18749] nbd: must specify a size in bytes for the device
[  552.664477][   T29] audit: type=1326 audit(1735338533.926:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18760 comm="syz.0.3557" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  552.725352][T18763] random: crng reseeded on system resumption
[  552.925470][   T29] audit: type=1326 audit(1735338534.186:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18765 comm="syz.1.3556" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  553.750325][T18777] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3560'.
[  555.087006][T18794] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3564'.
[  555.129198][T18794] nbd: must specify a size in bytes for the device
[  555.682142][   T29] audit: type=1326 audit(1735338536.946:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18804 comm="syz.3.3568" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  555.791628][T18808] random: crng reseeded on system resumption
[  555.803077][   T29] audit: type=1326 audit(1735338537.046:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18809 comm="syz.2.3569" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  556.192315][T18802] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3567'.
[  556.225372][T18802] nbd: must specify a size in bytes for the device
[  556.645065][   T29] audit: type=1326 audit(1735338537.906:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18817 comm="syz.3.3570" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  556.741973][T18819] random: crng reseeded on system resumption
[  557.532917][T18828] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3573'.
[  558.243264][T18841] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3577'.
[  558.325373][T18841] nbd: must specify a size in bytes for the device
[  558.681475][T18856] FAULT_INJECTION: forcing a failure.
[  558.681475][T18856] name failslab, interval 1, probability 0, space 0, times 0
[  558.694295][T18856] CPU: 1 UID: 0 PID: 18856 Comm: syz.3.3580 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  558.705133][T18856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  558.715246][T18856] Call Trace:
[  558.718678][T18856]  <TASK>
[  558.721653][T18856]  dump_stack_lvl+0x16c/0x1f0
[  558.726395][T18856]  should_fail_ex+0x497/0x5b0
[  558.731151][T18856]  should_failslab+0xc2/0x120
[  558.735909][T18856]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  558.741787][T18856]  ? __alloc_skb+0x2b3/0x380
[  558.746455][T18856]  __alloc_skb+0x2b3/0x380
[  558.750944][T18856]  ? __pfx___alloc_skb+0x10/0x10
[  558.755951][T18856]  ? tipc_node_check_state+0x1e80/0x1f20
[  558.761647][T18856]  ? lock_acquire+0x2f/0xb0
[  558.766211][T18856]  ? net_generic+0x30/0x2a0
[  558.770777][T18856]  tipc_buf_acquire+0x26/0xe0
[  558.775510][T18856]  tipc_msg_create+0x39/0x1d0
[  558.780315][T18856]  __tipc_shutdown+0xba4/0xef0
[  558.785130][T18856]  ? __pfx___tipc_shutdown+0x10/0x10
[  558.790463][T18856]  ? lock_release+0x4e2/0x6f0
[  558.795168][T18856]  ? tipc_release+0x67/0x1650
[  558.799974][T18856]  ? __pfx_lock_release+0x10/0x10
[  558.805023][T18856]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  558.810426][T18856]  ? __pfx_woken_wake_function+0x10/0x10
[  558.816107][T18856]  ? rcu_is_watching+0x12/0xc0
[  558.820907][T18856]  ? tipc_sk_filtering+0x420/0x520
[  558.826060][T18856]  tipc_release+0xe5/0x1650
[  558.830605][T18856]  ? down_write+0x14e/0x200
[  558.835149][T18856]  ? __pfx_down_write+0x10/0x10
[  558.840042][T18856]  ? __pfx_locks_remove_file+0x10/0x10
[  558.845683][T18856]  __sock_release+0xb0/0x270
[  558.850322][T18856]  ? __pfx_sock_close+0x10/0x10
[  558.855242][T18856]  sock_close+0x1c/0x30
[  558.859564][T18856]  __fput+0x3f8/0xb60
[  558.863597][T18856]  task_work_run+0x14e/0x250
[  558.868237][T18856]  ? __pfx_task_work_run+0x10/0x10
[  558.873399][T18856]  ? __pfx___do_sys_close_range+0x10/0x10
[  558.879160][T18856]  ? rcu_is_watching+0x12/0xc0
[  558.883966][T18856]  syscall_exit_to_user_mode+0x27b/0x2a0
[  558.889637][T18856]  do_syscall_64+0xda/0x250
[  558.894197][T18856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  558.900127][T18856] RIP: 0033:0x7f5ec0b85d29
[  558.904576][T18856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  558.924217][T18856] RSP: 002b:00007f5ec19a2038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  558.932678][T18856] RAX: 0000000000000000 RBX: 00007f5ec0d75fa0 RCX: 00007f5ec0b85d29
[  558.940703][T18856] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000002
[  558.948699][T18856] RBP: 00007f5ec19a2090 R08: 0000000000000000 R09: 0000000000000000
[  558.956701][T18856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  558.964702][T18856] R13: 0000000000000000 R14: 00007f5ec0d75fa0 R15: 00007ffee15ca738
[  558.972724][T18856]  </TASK>
[  559.159311][T18846] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3578'.
[  559.203911][T18846] nbd: must specify a size in bytes for the device
[  560.209867][   T29] audit: type=1326 audit(1735338541.436:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18871 comm="syz.0.3583" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  560.246145][T18879] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3587'.
[  560.267120][T18881] random: crng reseeded on system resumption
[  560.671182][T18887] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3589'.
[  560.713638][T18887] nbd: must specify a size in bytes for the device
[  561.092253][   T29] audit: type=1326 audit(1735338542.356:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18900 comm="syz.3.3591" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ec0b85d29 code=0x0
[  562.156726][T18931] netlink: 'syz.2.3598': attribute type 33 has an invalid length.
[  562.171603][T18931] netlink: 322 bytes leftover after parsing attributes in process `syz.2.3598'.
[  562.192879][T18931] FAULT_INJECTION: forcing a failure.
[  562.192879][T18931] name failslab, interval 1, probability 0, space 0, times 0
[  562.222997][T18931] CPU: 0 UID: 0 PID: 18931 Comm: syz.2.3598 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  562.233934][T18931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  562.244129][T18931] Call Trace:
[  562.247444][T18931]  <TASK>
[  562.250411][T18931]  dump_stack_lvl+0x16c/0x1f0
[  562.255158][T18931]  should_fail_ex+0x497/0x5b0
[  562.259932][T18931]  ? fs_reclaim_acquire+0xae/0x150
[  562.265111][T18931]  should_failslab+0xc2/0x120
[  562.269863][T18931]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  562.275734][T18931]  ? __alloc_skb+0x2b3/0x380
[  562.280394][T18931]  __alloc_skb+0x2b3/0x380
[  562.284876][T18931]  ? __pfx___alloc_skb+0x10/0x10
[  562.289889][T18931]  ? rcu_is_watching+0x12/0xc0
[  562.294714][T18931]  ? lock_release+0x4e2/0x6f0
[  562.299442][T18931]  ? is_bpf_text_address+0x8a/0x1a0
[  562.304707][T18931]  ? __pfx_lock_release+0x10/0x10
[  562.309789][T18931]  netlink_alloc_large_skb+0x69/0x130
[  562.315244][T18931]  netlink_sendmsg+0x689/0xd70
[  562.320075][T18931]  ? __pfx_netlink_sendmsg+0x10/0x10
[  562.325425][T18931]  ____sys_sendmsg+0x9ae/0xb40
[  562.330241][T18931]  ? copy_msghdr_from_user+0x10b/0x160
[  562.335779][T18931]  ? __pfx_____sys_sendmsg+0x10/0x10
[  562.341100][T18931]  ? _kstrtoull+0x146/0x200
[  562.345629][T18931]  ? __pfx__kstrtoull+0x10/0x10
[  562.350510][T18931]  ? lock_release+0x4e2/0x6f0
[  562.355220][T18931]  ___sys_sendmsg+0x135/0x1e0
[  562.359950][T18931]  ? __pfx____sys_sendmsg+0x10/0x10
[  562.365193][T18931]  ? __pfx_kstrtouint+0x10/0x10
[  562.370076][T18931]  ? trace_lock_acquire+0x14e/0x1f0
[  562.375361][T18931]  __sys_sendmmsg+0x201/0x420
[  562.380081][T18931]  ? __pfx___sys_sendmmsg+0x10/0x10
[  562.385325][T18931]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  562.391349][T18931]  ? fput+0x67/0x440
[  562.395370][T18931]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x230
[  562.401567][T18931]  ? syscall_user_dispatch+0x77/0x140
[  562.406971][T18931]  __x64_sys_sendmmsg+0x9c/0x100
[  562.411953][T18931]  do_syscall_64+0xcd/0x250
[  562.416596][T18931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.422548][T18931] RIP: 0033:0x7f6be3985d29
[  562.426984][T18931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  562.446644][T18931] RSP: 002b:00007f6be4869038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  562.455091][T18931] RAX: ffffffffffffffda RBX: 00007f6be3b75fa0 RCX: 00007f6be3985d29
[  562.463092][T18931] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003
[  562.471086][T18931] RBP: 00007f6be4869090 R08: 0000000000000000 R09: 0000000000000000
[  562.479080][T18931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  562.487069][T18931] R13: 0000000000000000 R14: 00007f6be3b75fa0 R15: 00007ffeef71cee8
[  562.495072][T18931]  </TASK>
[  563.075103][T18950] FAULT_INJECTION: forcing a failure.
[  563.075103][T18950] name failslab, interval 1, probability 0, space 0, times 0
[  563.090390][T18950] CPU: 0 UID: 0 PID: 18950 Comm: syz.2.3603 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  563.101300][T18950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  563.111420][T18950] Call Trace:
[  563.114742][T18950]  <TASK>
[  563.117702][T18950]  dump_stack_lvl+0x16c/0x1f0
[  563.122411][T18950]  should_fail_ex+0x497/0x5b0
[  563.127126][T18950]  ? fs_reclaim_acquire+0xae/0x150
[  563.132265][T18950]  should_failslab+0xc2/0x120
[  563.136998][T18950]  __kmalloc_cache_noprof+0x68/0x420
[  563.142343][T18950]  ? vb2_fop_write+0xe3/0x3e0
[  563.147080][T18950]  __vb2_init_fileio+0x253/0x1110
[  563.152151][T18950]  ? __mutex_lock+0x1cc/0xa60
[  563.156863][T18950]  ? __pfx_kstrtouint+0x10/0x10
[  563.161747][T18950]  ? vb2_fop_write+0xe3/0x3e0
[  563.166456][T18950]  __vb2_perform_fileio+0x9de/0x1620
[  563.171875][T18950]  ? __pfx___vb2_perform_fileio+0x10/0x10
[  563.177635][T18950]  ? lock_acquire+0x2f/0xb0
[  563.182169][T18950]  vb2_fop_write+0x202/0x3e0
[  563.186799][T18950]  v4l2_write+0x226/0x360
[  563.191160][T18950]  ? __pfx_v4l2_write+0x10/0x10
[  563.196068][T18950]  vfs_write+0x24c/0x1150
[  563.200433][T18950]  ? __fget_files+0x1fc/0x3a0
[  563.205141][T18950]  ? __pfx_lock_release+0x10/0x10
[  563.210233][T18950]  ? __pfx_vfs_write+0x10/0x10
[  563.215033][T18950]  ? __fget_files+0x40/0x3a0
[  563.219660][T18950]  ? lock_acquire+0x2f/0xb0
[  563.224211][T18950]  ? __fget_files+0x40/0x3a0
[  563.228835][T18950]  ? __fget_files+0x206/0x3a0
[  563.233553][T18950]  ksys_write+0x12b/0x250
[  563.237919][T18950]  ? __pfx_ksys_write+0x10/0x10
[  563.242809][T18950]  ? rcu_is_watching+0x12/0xc0
[  563.247696][T18950]  ? rcu_is_watching+0x12/0xc0
[  563.252492][T18950]  do_syscall_64+0xcd/0x250
[  563.257042][T18950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  563.263026][T18950] RIP: 0033:0x7f6be3985d29
[  563.267551][T18950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  563.287206][T18950] RSP: 002b:00007f6be4869038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  563.295651][T18950] RAX: ffffffffffffffda RBX: 00007f6be3b75fa0 RCX: 00007f6be3985d29
[  563.303647][T18950] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000003
[  563.311643][T18950] RBP: 00007f6be4869090 R08: 0000000000000000 R09: 0000000000000000
[  563.319635][T18950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  563.327625][T18950] R13: 0000000000000000 R14: 00007f6be3b75fa0 R15: 00007ffeef71cee8
[  563.335629][T18950]  </TASK>
[  563.793170][T18965] netlink: 'syz.3.3606': attribute type 33 has an invalid length.
[  563.801233][T18965] netlink: 322 bytes leftover after parsing attributes in process `syz.3.3606'.
[  564.319774][T19000] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3614'.
[  564.474162][   T29] audit: type=1326 audit(1735338545.736:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19005 comm="syz.2.3618" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  564.537867][T19009] random: crng reseeded on system resumption
[  565.461872][T19021] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3620'.
[  565.491110][T19020] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3627'.
[  566.374642][T19051] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3637'.
[  566.538017][T19054] netlink: 'syz.1.3639': attribute type 33 has an invalid length.
[  566.551511][T19054] netlink: 322 bytes leftover after parsing attributes in process `syz.1.3639'.
[  566.690100][   T29] audit: type=1326 audit(1735338547.946:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19058 comm="syz.1.3631" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  567.705321][T19088] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3638'.
[  567.756611][T19087] net_ratelimit: 492 callbacks suppressed
[  567.756638][T19087] netlink: zone id is out of range
[  567.817632][T19087] netlink: zone id is out of range
[  567.827393][T19087] netlink: set zone limit has 8 unknown bytes
[  567.944222][T19096] netlink: 'syz.0.3642': attribute type 33 has an invalid length.
[  567.961806][T19096] netlink: 322 bytes leftover after parsing attributes in process `syz.0.3642'.
[  568.089535][T19100] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3643'.
[  568.404166][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  568.410794][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  568.633814][   T29] audit: type=1326 audit(1735338549.896:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19110 comm="syz.1.3649" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29b9985d29 code=0x0
[  568.872091][T19120] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3652'.
[  568.887559][T19120] ipvlan0: entered allmulticast mode
[  568.894422][T19120] veth0_vlan: entered allmulticast mode
[  569.382731][T19142] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3659'.
[  569.579664][T19151] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3661'.
[  569.908257][T19159] FAULT_INJECTION: forcing a failure.
[  569.908257][T19159] name failslab, interval 1, probability 0, space 0, times 0
[  569.921214][T19159] CPU: 0 UID: 0 PID: 19159 Comm: syz.0.3664 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  569.932048][T19159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  569.942161][T19159] Call Trace:
[  569.945470][T19159]  <TASK>
[  569.948431][T19159]  dump_stack_lvl+0x16c/0x1f0
[  569.953148][T19159]  should_fail_ex+0x497/0x5b0
[  569.957852][T19159]  ? fs_reclaim_acquire+0xae/0x150
[  569.963001][T19159]  should_failslab+0xc2/0x120
[  569.967733][T19159]  __kmalloc_node_noprof+0xd1/0x520
[  569.972957][T19159]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  569.978442][T19159]  __kvmalloc_node_noprof+0xad/0x1a0
[  569.983748][T19159]  seq_read_iter+0x82a/0x12b0
[  569.988438][T19159]  ? __mutex_trylock_common+0xea/0x250
[  569.993914][T19159]  kernfs_fop_read_iter+0x414/0x580
[  569.999133][T19159]  ? rw_verify_area+0xd0/0x700
[  570.003925][T19159]  vfs_read+0x87f/0xbe0
[  570.008121][T19159]  ? __pfx_vfs_read+0x10/0x10
[  570.012840][T19159]  ksys_read+0x12b/0x250
[  570.017128][T19159]  ? __pfx_ksys_read+0x10/0x10
[  570.021918][T19159]  ? rcu_is_watching+0x12/0xc0
[  570.026712][T19159]  ? rcu_is_watching+0x12/0xc0
[  570.031536][T19159]  do_syscall_64+0xcd/0x250
[  570.036068][T19159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  570.041987][T19159] RIP: 0033:0x7fda49f85d29
[  570.046418][T19159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  570.066046][T19159] RSP: 002b:00007fda4ae30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  570.074478][T19159] RAX: ffffffffffffffda RBX: 00007fda4a175fa0 RCX: 00007fda49f85d29
[  570.082494][T19159] RDX: 0000000000000005 RSI: 0000000020000200 RDI: 0000000000000003
[  570.090479][T19159] RBP: 00007fda4ae30090 R08: 0000000000000000 R09: 0000000000000000
[  570.098464][T19159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  570.106448][T19159] R13: 0000000000000000 R14: 00007fda4a175fa0 R15: 00007ffd2e4e5ab8
[  570.114448][T19159]  </TASK>
[  570.364654][   T29] audit: type=1326 audit(1735338551.626:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19172 comm="syz.2.3670" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  570.618501][T19185] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3673'.
[  570.925954][T19188] program syz.0.3674 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  570.935896][T19188] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  571.421805][T19203] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3680'.
[  571.478098][T19205] ubi0: attaching mtd0
[  571.485375][T19205] ubi0: scanning is finished
[  571.490258][T19205] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[  571.623080][T19205] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  572.313715][   T29] audit: type=1326 audit(1735338553.576:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19234 comm="syz.0.3687" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  572.582127][T19243] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3691'.
[  572.655261][T19245] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3693'.
[  572.676871][T19245] bond0: (slave bond_slave_1): Releasing backup interface
[  573.116628][T19261] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3697'.
[  573.635997][   T29] audit: type=1326 audit(1735338554.896:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19285 comm="syz.0.3708" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  573.657782][    C1] vkms_vblank_simulate: vblank timer overrun
[  573.914113][T19297] RDS: rds_bind could not find a transport for ::ffff:172.30.65.2, load rds_tcp or rds_rdma?
[  573.933666][T19298] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3710'.
[  574.171359][T19303] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3720'.
[  574.814642][T19311] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3713'.
[  574.915779][T19315] syz.2.3715 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  575.116641][T19330] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3729'.
[  576.143260][   T29] audit: type=1806 audit(1735338557.396:156): xattr="100" res=-22
[  576.171835][T19345] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3725'.
[  576.523836][T19347] bridge0: port 3(team0) entered blocking state
[  576.542649][T19347] bridge0: port 3(team0) entered disabled state
[  576.549144][T19347] team0: entered allmulticast mode
[  576.567950][T19347] team_slave_0: entered allmulticast mode
[  576.583900][T19347] team_slave_1: entered allmulticast mode
[  576.600906][T19347] team0: entered promiscuous mode
[  576.606157][T19347] team_slave_0: entered promiscuous mode
[  576.621680][T19347] team_slave_1: entered promiscuous mode
[  576.628083][T19347] bridge0: port 3(team0) entered blocking state
[  576.634508][T19347] bridge0: port 3(team0) entered forwarding state
[  576.851915][T19357] FAULT_INJECTION: forcing a failure.
[  576.851915][T19357] name failslab, interval 1, probability 0, space 0, times 0
[  576.871505][T19357] CPU: 1 UID: 0 PID: 19357 Comm: syz.3.3732 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  576.882349][T19357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  576.892448][T19357] Call Trace:
[  576.895753][T19357]  <TASK>
[  576.898709][T19357]  dump_stack_lvl+0x16c/0x1f0
[  576.903443][T19357]  should_fail_ex+0x497/0x5b0
[  576.908174][T19357]  ? fs_reclaim_acquire+0xae/0x150
[  576.913408][T19357]  should_failslab+0xc2/0x120
[  576.918124][T19357]  __kmalloc_cache_noprof+0x68/0x420
[  576.923438][T19357]  ? bpf_lsm_capable+0x9/0x10
[  576.928139][T19357]  ? security_capable+0x7e/0x260
[  576.933118][T19357]  evm_write_xattrs+0x1a6/0x890
[  576.938001][T19357]  ? lock_acquire+0x2f/0xb0
[  576.942528][T19357]  ? __pfx_evm_write_xattrs+0x10/0x10
[  576.947933][T19357]  ? __mutex_trylock_common+0xea/0x250
[  576.953421][T19357]  ? ksys_write+0x12b/0x250
[  576.958039][T19357]  ? lock_acquire+0x2f/0xb0
[  576.962564][T19357]  ? ksys_write+0x12b/0x250
[  576.967094][T19357]  ? __pfx_evm_write_xattrs+0x10/0x10
[  576.972495][T19357]  vfs_write+0x24c/0x1150
[  576.976851][T19357]  ? __fget_files+0x1fc/0x3a0
[  576.981553][T19357]  ? __pfx___mutex_lock+0x10/0x10
[  576.986610][T19357]  ? __pfx_vfs_write+0x10/0x10
[  576.991407][T19357]  ? __fget_files+0x206/0x3a0
[  576.996121][T19357]  ksys_write+0x12b/0x250
[  577.000479][T19357]  ? __pfx_ksys_write+0x10/0x10
[  577.005357][T19357]  ? rcu_is_watching+0x12/0xc0
[  577.010152][T19357]  ? rcu_is_watching+0x12/0xc0
[  577.014945][T19357]  do_syscall_64+0xcd/0x250
[  577.019509][T19357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  577.025437][T19357] RIP: 0033:0x7f5ec0b85d29
[  577.029871][T19357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  577.049508][T19357] RSP: 002b:00007f5ec19a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  577.057949][T19357] RAX: ffffffffffffffda RBX: 00007f5ec0d75fa0 RCX: 00007f5ec0b85d29
[  577.065949][T19357] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000005
[  577.073965][T19357] RBP: 00007f5ec19a2090 R08: 0000000000000000 R09: 0000000000000000
[  577.081961][T19357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  577.089947][T19357] R13: 0000000000000000 R14: 00007f5ec0d75fa0 R15: 00007ffee15ca738
[  577.097980][T19357]  </TASK>
[  577.101050][    C1] vkms_vblank_simulate: vblank timer overrun
[  577.151554][   T29] audit: type=1806 audit(1735338558.116:157):  res=-12
[  577.310611][T19368] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3734'.
[  577.332227][T19367] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3736'.
[  577.344136][T19367] veth1_macvtap: entered allmulticast mode
[  577.427478][T19374] FAULT_INJECTION: forcing a failure.
[  577.427478][T19374] name failslab, interval 1, probability 0, space 0, times 0
[  577.461468][T19374] CPU: 0 UID: 0 PID: 19374 Comm: syz.0.3738 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  577.472403][T19374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  577.482504][T19374] Call Trace:
[  577.485819][T19374]  <TASK>
[  577.488784][T19374]  dump_stack_lvl+0x16c/0x1f0
[  577.493522][T19374]  should_fail_ex+0x497/0x5b0
[  577.498254][T19374]  ? fs_reclaim_acquire+0xae/0x150
[  577.503428][T19374]  should_failslab+0xc2/0x120
[  577.508184][T19374]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  577.514057][T19374]  ? __alloc_skb+0x2b3/0x380
[  577.518805][T19374]  __alloc_skb+0x2b3/0x380
[  577.523286][T19374]  ? __pfx___alloc_skb+0x10/0x10
[  577.528261][T19374]  ? __pfx_lock_release+0x10/0x10
[  577.533308][T19374]  ? trace_lock_acquire+0x14e/0x1f0
[  577.538537][T19374]  ? is_bpf_text_address+0x30/0x1a0
[  577.543782][T19374]  alloc_skb_with_frags+0xe4/0x850
[  577.548940][T19374]  ? is_bpf_text_address+0x94/0x1a0
[  577.554175][T19374]  ? kernel_text_address+0x8d/0x100
[  577.559397][T19374]  sock_alloc_send_pskb+0x7f1/0x980
[  577.564636][T19374]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  577.570393][T19374]  ? rcu_is_watching+0x12/0xc0
[  577.575191][T19374]  ? lock_release+0x4e2/0x6f0
[  577.579892][T19374]  ? aa_file_perm+0x4c6/0xfe0
[  577.584603][T19374]  ? __pfx_lock_release+0x10/0x10
[  577.589649][T19374]  ? trace_lock_acquire+0x14e/0x1f0
[  577.594889][T19374]  ? __pfx__kstrtoull+0x10/0x10
[  577.599768][T19374]  ? lock_release+0x4e2/0x6f0
[  577.604483][T19374]  tun_get_user+0xd3b/0x3e40
[  577.609129][T19374]  ? __pfx_tun_get_user+0x10/0x10
[  577.614198][T19374]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  577.619701][T19374]  ? rcu_is_watching+0x12/0xc0
[  577.624500][T19374]  ? lock_release+0x4e2/0x6f0
[  577.629205][T19374]  ? __pfx_lock_release+0x10/0x10
[  577.634265][T19374]  ? tun_get+0x30/0x370
[  577.638449][T19374]  ? lock_acquire+0x2f/0xb0
[  577.642980][T19374]  ? tun_get+0x30/0x370
[  577.647166][T19374]  tun_chr_write_iter+0xdc/0x210
[  577.652136][T19374]  vfs_write+0x5ae/0x1150
[  577.656494][T19374]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  577.662081][T19374]  ? __pfx_lock_release+0x10/0x10
[  577.667128][T19374]  ? __pfx_vfs_write+0x10/0x10
[  577.671938][T19374]  ? lock_acquire+0x2f/0xb0
[  577.676463][T19374]  ? __fget_files+0x40/0x3a0
[  577.681087][T19374]  __x64_sys_pwrite64+0x1f6/0x250
[  577.686139][T19374]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  577.691715][T19374]  ? rcu_is_watching+0x12/0xc0
[  577.696514][T19374]  ? rcu_is_watching+0x12/0xc0
[  577.701310][T19374]  do_syscall_64+0xcd/0x250
[  577.705847][T19374]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  577.711781][T19374] RIP: 0033:0x7fda49f85d29
[  577.716393][T19374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  577.736028][T19374] RSP: 002b:00007fda4ae30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  577.744466][T19374] RAX: ffffffffffffffda RBX: 00007fda4a175fa0 RCX: 00007fda49f85d29
[  577.752462][T19374] RDX: 000000000000fdf2 RSI: 0000000020000040 RDI: 00000000000000c8
[  577.760456][T19374] RBP: 00007fda4ae30090 R08: 0000000000000000 R09: 0000000000000000
[  577.768447][T19374] R10: 000000000000003a R11: 0000000000000246 R12: 0000000000000001
[  577.776453][T19374] R13: 0000000000000000 R14: 00007fda4a175fa0 R15: 00007ffd2e4e5ab8
[  577.784456][T19374]  </TASK>
[  578.310754][T19389] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3744'.
[  578.329930][T19389] bond0: (slave bond_slave_1): Releasing backup interface
[  578.671549][   T29] audit: type=1806 audit(1735338559.916:158):  res=-14
[  578.815555][T19393] can: request_module (can-proto-0) failed.
[  578.944619][T19403] FAULT_INJECTION: forcing a failure.
[  578.944619][T19403] name failslab, interval 1, probability 0, space 0, times 0
[  578.991545][T19403] CPU: 1 UID: 0 PID: 19403 Comm: syz.0.3751 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  579.002401][T19403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  579.012499][T19403] Call Trace:
[  579.015805][T19403]  <TASK>
[  579.018765][T19403]  dump_stack_lvl+0x16c/0x1f0
[  579.023500][T19403]  should_fail_ex+0x497/0x5b0
[  579.028235][T19403]  ? fs_reclaim_acquire+0xae/0x150
[  579.033399][T19403]  should_failslab+0xc2/0x120
[  579.038137][T19403]  __kmalloc_noprof+0xce/0x4f0
[  579.042955][T19403]  ? d_absolute_path+0x137/0x1b0
[  579.047954][T19403]  ? tomoyo_encode2+0x100/0x3e0
[  579.052861][T19403]  tomoyo_encode2+0x100/0x3e0
[  579.057597][T19403]  tomoyo_realpath_from_path+0x1a7/0x710
[  579.063296][T19403]  tomoyo_path_number_perm+0x248/0x5b0
[  579.068904][T19403]  ? tomoyo_path_number_perm+0x235/0x5b0
[  579.074602][T19403]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  579.080628][T19403]  ? rcu_is_watching+0x12/0xc0
[  579.085428][T19403]  ? preempt_count_add+0x76/0x150
[  579.090497][T19403]  ? __pfx_lock_release+0x10/0x10
[  579.095575][T19403]  ? trace_lock_acquire+0x14e/0x1f0
[  579.100814][T19403]  ? __fget_files+0x40/0x3a0
[  579.105430][T19403]  ? lock_acquire+0x2f/0xb0
[  579.109948][T19403]  ? __fget_files+0x40/0x3a0
[  579.114567][T19403]  ? __fget_files+0x206/0x3a0
[  579.119277][T19403]  security_file_ioctl+0x9b/0x240
[  579.124784][T19403]  __x64_sys_ioctl+0xb7/0x200
[  579.129488][T19403]  do_syscall_64+0xcd/0x250
[  579.134023][T19403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  579.140382][T19403] RIP: 0033:0x7fda49f85d29
[  579.144818][T19403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  579.164550][T19403] RSP: 002b:00007fda4ae30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  579.173006][T19403] RAX: ffffffffffffffda RBX: 00007fda4a175fa0 RCX: 00007fda49f85d29
[  579.180999][T19403] RDX: 0000000000000000 RSI: 00000000c4c85512 RDI: 000000000000000e
[  579.188990][T19403] RBP: 00007fda4ae30090 R08: 0000000000000000 R09: 0000000000000000
[  579.196981][T19403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  579.204966][T19403] R13: 0000000000000000 R14: 00007fda4a175fa0 R15: 00007ffd2e4e5ab8
[  579.212964][T19403]  </TASK>
[  579.226007][T19403] ERROR: Out of memory at tomoyo_realpath_from_path.
[  579.452391][   T29] audit: type=1326 audit(1735338560.686:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19418 comm="syz.0.3756" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  580.464801][T19442] netlink: get zone limit has 4 unknown bytes
[  580.722829][   T29] audit: type=1326 audit(1735338561.986:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19452 comm="syz.0.3769" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda49f85d29 code=0x0
[  582.306311][   T29] audit: type=1326 audit(1735338563.566:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19480 comm="syz.2.3779" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6be3985d29 code=0x0
[  582.793756][T19497] mmap: syz.1.3785 (19497): VmData 71086080 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  582.904368][T19497] ------------[ cut here ]------------
[  582.909905][T19497] WARNING: CPU: 0 PID: 19497 at mm/page_alloc.c:4729 __alloc_pages_noprof+0xeff/0x25b0
[  582.919994][T19497] Modules linked in:
[  582.924334][T19497] CPU: 0 UID: 0 PID: 19497 Comm: syz.1.3785 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  582.935585][T19497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  582.946153][T19497] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0
[  582.952415][T19497] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 04 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9
[  582.972382][T19497] RSP: 0018:ffffc9000ba7f8e8 EFLAGS: 00010246
[  582.978527][T19497] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  582.989218][T19497] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0
[  582.997329][T19497] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000100
[  583.005421][T19497] R10: 0000000000000100 R11: 00000000000a2001 R12: 0000000000000013
[  583.013561][T19497] R13: 0000000000040cc0 R14: 1ffff9200174ff31 R15: 00000000ffffffff
[  583.021802][T19497] FS:  00007f29ba7436c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  583.030893][T19497] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  583.038093][T19497] CR2: 0000001b3230dff8 CR3: 000000007148c000 CR4: 00000000003526f0
[  583.046657][T19497] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  583.054750][T19497] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  583.062846][T19497] Call Trace:
[  583.066164][T19497]  <TASK>
[  583.069147][T19497]  ? __warn+0xea/0x3c0
[  583.073341][T19497]  ? __alloc_pages_noprof+0xeff/0x25b0
[  583.078899][T19497]  ? report_bug+0x3c0/0x580
[  583.083544][T19497]  ? handle_bug+0x54/0xa0
[  583.087956][T19497]  ? exc_invalid_op+0x17/0x50
[  583.092798][T19497]  ? asm_exc_invalid_op+0x1a/0x20
[  583.097903][T19497]  ? __alloc_pages_noprof+0xeff/0x25b0
[  583.103519][T19497]  ? stack_trace_save+0x95/0xd0
[  583.108462][T19497]  ? __pfx_stack_trace_save+0x10/0x10
[  583.113979][T19497]  ? stack_depot_save_flags+0x28/0x9e0
[  583.119535][T19497]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  583.125415][T19497]  ? kasan_save_stack+0x33/0x60
[  583.130356][T19497]  ? __kasan_kmalloc+0xaa/0xb0
[  583.135262][T19497]  ? safesetid_uid_file_write+0x84/0xc0
[  583.141281][T19497]  ? vfs_write+0x24c/0x1150
[  583.146320][T19497]  ? ksys_write+0x12b/0x250
[  583.150900][T19497]  ? do_syscall_64+0xcd/0x250
[  583.155710][T19497]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.161921][T19497]  ___kmalloc_large_node+0x84/0x1b0
[  583.167193][T19497]  __kmalloc_large_node_noprof+0x1c/0x70
[  583.172972][T19497]  __kmalloc_node_track_caller_noprof.cold+0x5/0x5f
[  583.179651][T19497]  ? handle_policy_update+0x188/0x11e0
[  583.185237][T19497]  memdup_user_nul+0x2b/0x110
[  583.189986][T19497]  handle_policy_update+0x188/0x11e0
[  583.195400][T19497]  ? __pfx_handle_policy_update+0x10/0x10
[  583.201194][T19497]  ? apparmor_capable+0x114/0x1d0
[  583.206374][T19497]  ? bpf_lsm_capable+0x9/0x10
[  583.211203][T19497]  ? security_capable+0x7e/0x260
[  583.216288][T19497]  safesetid_uid_file_write+0x84/0xc0
[  583.221798][T19497]  ? __pfx_safesetid_uid_file_write+0x10/0x10
[  583.227925][T19497]  vfs_write+0x24c/0x1150
[  583.232391][T19497]  ? __fget_files+0x1fc/0x3a0
[  583.237145][T19497]  ? __pfx___mutex_lock+0x10/0x10
[  583.242710][T19497]  ? __pfx_vfs_write+0x10/0x10
[  583.247551][T19497]  ? __fget_files+0x206/0x3a0
[  583.252779][T19497]  ksys_write+0x12b/0x250
[  583.257179][T19497]  ? __pfx_ksys_write+0x10/0x10
[  583.262157][T19497]  ? rcu_is_watching+0x12/0xc0
[  583.266990][T19497]  ? rcu_is_watching+0x12/0xc0
[  583.271884][T19497]  do_syscall_64+0xcd/0x250
[  583.276478][T19497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.282696][T19497] RIP: 0033:0x7f29b9985d29
[  583.287174][T19497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  583.306930][T19497] RSP: 002b:00007f29ba743038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  583.315493][T19497] RAX: ffffffffffffffda RBX: 00007f29b9b75fa0 RCX: 00007f29b9985d29
[  583.323590][T19497] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  583.331699][T19497] RBP: 00007f29b9a01b08 R08: 0000000000000000 R09: 0000000000000000
[  583.339848][T19497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  583.348434][T19497] R13: 0000000000000000 R14: 00007f29b9b75fa0 R15: 00007ffe84b8e1f8
[  583.356982][T19497]  </TASK>
[  583.360052][T19497] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  583.367368][T19497] CPU: 0 UID: 0 PID: 19497 Comm: syz.1.3785 Not tainted 6.13.0-rc4-syzkaller-00069-g8379578b11d5 #0
[  583.378193][T19497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  583.388277][T19497] Call Trace:
[  583.391574][T19497]  <TASK>
[  583.394522][T19497]  dump_stack_lvl+0x3d/0x1f0
[  583.399151][T19497]  panic+0x71d/0x800
[  583.403088][T19497]  ? __pfx_panic+0x10/0x10
[  583.407561][T19497]  ? show_trace_log_lvl+0x29d/0x3d0
[  583.412796][T19497]  ? __alloc_pages_noprof+0xeff/0x25b0
[  583.418305][T19497]  check_panic_on_warn+0xab/0xb0
[  583.423281][T19497]  __warn+0xf6/0x3c0
[  583.427386][T19497]  ? __alloc_pages_noprof+0xeff/0x25b0
[  583.432914][T19497]  report_bug+0x3c0/0x580
[  583.437286][T19497]  handle_bug+0x54/0xa0
[  583.441478][T19497]  exc_invalid_op+0x17/0x50
[  583.446014][T19497]  asm_exc_invalid_op+0x1a/0x20
[  583.450893][T19497] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0
[  583.457025][T19497] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 04 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9
[  583.476674][T19497] RSP: 0018:ffffc9000ba7f8e8 EFLAGS: 00010246
[  583.482768][T19497] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  583.490763][T19497] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0
[  583.498763][T19497] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000100
[  583.506753][T19497] R10: 0000000000000100 R11: 00000000000a2001 R12: 0000000000000013
[  583.514747][T19497] R13: 0000000000040cc0 R14: 1ffff9200174ff31 R15: 00000000ffffffff
[  583.522751][T19497]  ? stack_trace_save+0x95/0xd0
[  583.527644][T19497]  ? __pfx_stack_trace_save+0x10/0x10
[  583.533053][T19497]  ? stack_depot_save_flags+0x28/0x9e0
[  583.538554][T19497]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  583.544402][T19497]  ? kasan_save_stack+0x33/0x60
[  583.549319][T19497]  ? __kasan_kmalloc+0xaa/0xb0
[  583.554128][T19497]  ? safesetid_uid_file_write+0x84/0xc0
[  583.559709][T19497]  ? vfs_write+0x24c/0x1150
[  583.564241][T19497]  ? ksys_write+0x12b/0x250
[  583.568771][T19497]  ? do_syscall_64+0xcd/0x250
[  583.573480][T19497]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.579590][T19497]  ___kmalloc_large_node+0x84/0x1b0
[  583.584820][T19497]  __kmalloc_large_node_noprof+0x1c/0x70
[  583.590479][T19497]  __kmalloc_node_track_caller_noprof.cold+0x5/0x5f
[  583.597114][T19497]  ? handle_policy_update+0x188/0x11e0
[  583.602638][T19497]  memdup_user_nul+0x2b/0x110
[  583.607346][T19497]  handle_policy_update+0x188/0x11e0
[  583.612665][T19497]  ? __pfx_handle_policy_update+0x10/0x10
[  583.618467][T19497]  ? apparmor_capable+0x114/0x1d0
[  583.623680][T19497]  ? bpf_lsm_capable+0x9/0x10
[  583.628393][T19497]  ? security_capable+0x7e/0x260
[  583.633372][T19497]  safesetid_uid_file_write+0x84/0xc0
[  583.638788][T19497]  ? __pfx_safesetid_uid_file_write+0x10/0x10
[  583.644895][T19497]  vfs_write+0x24c/0x1150
[  583.649262][T19497]  ? __fget_files+0x1fc/0x3a0
[  583.653976][T19497]  ? __pfx___mutex_lock+0x10/0x10
[  583.659050][T19497]  ? __pfx_vfs_write+0x10/0x10
[  583.663855][T19497]  ? __fget_files+0x206/0x3a0
[  583.668568][T19497]  ksys_write+0x12b/0x250
[  583.672929][T19497]  ? __pfx_ksys_write+0x10/0x10
[  583.677810][T19497]  ? rcu_is_watching+0x12/0xc0
[  583.682610][T19497]  ? rcu_is_watching+0x12/0xc0
[  583.687408][T19497]  do_syscall_64+0xcd/0x250
[  583.691949][T19497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.697877][T19497] RIP: 0033:0x7f29b9985d29
[  583.702312][T19497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  583.721952][T19497] RSP: 002b:00007f29ba743038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  583.730397][T19497] RAX: ffffffffffffffda RBX: 00007f29b9b75fa0 RCX: 00007f29b9985d29
[  583.738390][T19497] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  583.746383][T19497] RBP: 00007f29b9a01b08 R08: 0000000000000000 R09: 0000000000000000
[  583.754465][T19497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  583.762575][T19497] R13: 0000000000000000 R14: 00007f29b9b75fa0 R15: 00007ffe84b8e1f8
[  583.770594][T19497]  </TASK>
[  583.773927][T19497] Kernel Offset: disabled
[  583.778296][T19497] Rebooting in 86400 seconds..