last executing test programs:

13m14.760187423s ago: executing program 32 (id=8):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
timerfd_create$auto(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
sendto$auto(r0, &(0x7f0000000200), 0xb, 0x5, &(0x7f0000000240), 0xc8e)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5)
syz_genetlink_get_family_id$auto_ovs_meter(0x0, 0xffffffffffffffff)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r1 = socket(0x15, 0x5, 0x0)
bind$auto(r1, 0x0, 0x68)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000003240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40)
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), r0)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r2, 0x1, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x8040)
write$auto(0x3, 0x0, 0xfffffdef)
setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0xdf, 0x91, 0xfff, 0x8001)

13m11.047191725s ago: executing program 33 (id=23):
mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
timer_delete$auto(0x8)
connect$auto(0x3, &(0x7f0000000000), 0x55)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x801, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000800)='./file0\x00', 0x2240, 0x154)
sysfs$auto(0x2, 0x0, 0x0)
fsopen$auto(0x0, 0x1)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
prctl$auto(0x23, 0xd, 0x8, 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70)
mknodat$auto(r0, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8)
renameat2$auto(r0, &(0x7f0000000200)='./file0\x00', r0, &(0x7f0000000240)='./file1\x00', 0x1)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70)
mkdir$auto(&(0x7f0000000000)='./file0/file0\x00', 0x3)
mknodat$auto(r1, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8)
renameat2$auto(r1, &(0x7f0000000200)='./file0\x00', r1, &(0x7f0000000240)='./file1\x00', 0x2)

13m7.136347314s ago: executing program 34 (id=35):
prlimit64$auto(0x80000001, 0x10, 0x0, 0x0) (fail_nth: 1)

11m31.004140484s ago: executing program 35 (id=614):
r0 = socket(0xa, 0x5, 0x84)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(r1, 0x8, 0x0)
sendto$auto(r0, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe7e00"}, 0x1c)

11m23.506548685s ago: executing program 3 (id=666):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/ext4/sda1/session_write_kbytes\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x15)
r1 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000100), 0x40000, 0x0)
readv$auto(0x3, &(0x7f0000003080)={0x0, 0x4}, 0x9)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000afd003a5394e965231da1bd312e7af6d67d09340d0a4bd7805e18ac78f35cb77d1029c69e7270148078c13a91f6dff64055ad11608f0fb"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0)
setresuid$auto(0x2, 0x7, 0x8080)
fsetxattr$auto(0xffffffffffffffff, &(0x7f0000003040)='-,\'*\x00', 0x0, 0x1, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0x40043d0d, 0x0)
fchmod$auto(r1, 0xb1f7)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000003480)=""/247, 0xf7)
write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, &(0x7f0000000000)="fb842e424efb54098ee226e61998ba9f2d6136436bd689871247d65d9b2f48ff28a121e43ee558b59f3e2d9e4efc8674a17a7ae51fd56e0b16ded2104a7c63", 0x3f)

11m22.481642275s ago: executing program 3 (id=671):
r0 = socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(r1, 0x8, 0x0)
sendto$auto(r0, 0x0, 0x401, 0x101, 0x0, 0x1c)

11m22.167640917s ago: executing program 3 (id=673):
acct$auto(&(0x7f0000000040)='/sys/module/kvm/parameters/pi_inject_timer\x00')
mbind$auto(0x0, 0x1, 0x0, &(0x7f0000000000)=0x6466, 0x7, 0x6)
sendmsg$auto_SMC_PNETID_ADD(0xffffffffffffffff, 0x0, 0x10)
memfd_create$auto(0x0, 0x80007fd)
socket(0x18, 0x801, 0x89)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/mouse0\x00', 0x341, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/psaux\x00', 0x64002, 0x0)
mprotect$auto(0x1ffff000, 0x8000000001000001, 0xd)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00')
getdents$auto(r0, 0x0, 0xd2)
acct$auto(0x0)
msgctl$auto(0x5, 0x8000, &(0x7f0000000340)={{0xa1, <r1=>0x0, 0xee01, 0x0, 0x10, 0x80000001}, &(0x7f0000000080)=0xff, &(0x7f00000000c0)=0x40, 0x1, 0x100000001, 0x4, 0x7adf, 0x6, 0x455, 0xa1, 0x40, 0x7, 0x418})
msgctl$auto(0x4, 0x1000, &(0x7f0000000200)={{0x8, 0xee00, <r2=>0xee01, 0x2ed6, 0x630, 0x1, 0xc50}, &(0x7f0000000180)=0x2, &(0x7f00000001c0)=0x5, 0xa5, 0xe, 0x2, 0x8, 0x535, 0xcaa6, 0x0, 0x387, 0x7, 0x2})
lstat$auto(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)={0x3, 0x6, 0x3, 0xf09, r1, r2, 0x0, 0xf, 0x4, 0x2, 0x5, 0x9, 0x1400000000, 0x2, 0x9f16, 0x2, 0x9})

11m21.727670467s ago: executing program 3 (id=677):
r0 = socket(0xa, 0x5, 0x84)
openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x8300, 0x0)
ioctl$auto_PROCMAP_QUERY(r1, 0xc0686611, &(0x7f0000001600)={0x81, 0x3b, 0x24, 0x0, 0x715, 0x8001, 0x7d6, 0x9d, 0x5, 0xbfaf, 0x2, 0x8, 0xd97, 0x2, 0x5}) (async)
ioctl$auto_PROCMAP_QUERY(r1, 0xc0686611, &(0x7f0000001600)={0x81, 0x3b, 0x24, 0x0, 0x715, 0x8001, 0x7d6, 0x9d, 0x5, 0xbfaf, 0x2, 0x8, 0xd97, 0x2, 0x5})
openat$auto_fops_u64_ro_(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ramdisk_pages/ram1\x00', 0x20001, 0x0)
close_range$auto(r0, r1, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0) (async)
socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000)

11m21.533684717s ago: executing program 3 (id=678):
mmap$auto(0x0, 0x40009, 0xdf, 0x18, 0x8, 0x2000000028000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6)
syz_genetlink_get_family_id$auto_seg6(0x0, 0xffffffffffffffff)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_3={0x8, 0xffffffff, 0x18c, 0x6a, 0x0, 0x8, 0x3, 0x57b5, 0xfffffff8, "63acf0e05b2d33ebc15774e816ef77cf", 0x0, 0x541, 0x4, 0x207, 0x3, 0x1009, 0x4, 0x2, 0xe, 0x5, @attach_btf_obj_fd=0x3, 0x166, 0x7ff, 0x6, 0x6, 0x48000000, 0xa7c2}, 0x100)
tkill$auto(0x1, 0x7)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
mbind$auto(0x0, 0x100000004, 0x4, 0x0, 0x20000000000006, 0x2)

11m21.061670811s ago: executing program 3 (id=681):
r0 = socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(r1, 0x8, 0x0)
sendto$auto(r0, 0x0, 0x401, 0x101, 0x0, 0x1c)

11m20.734542264s ago: executing program 36 (id=681):
r0 = socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(r1, 0x8, 0x0)
sendto$auto(r0, 0x0, 0x401, 0x101, 0x0, 0x1c)

9m10.045299611s ago: executing program 7 (id=1382):
mmap$auto(0x972f, 0x8, 0x5, 0x11, 0x401, 0x8000000000000001)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x6e640, 0x90)
r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0xf7}, 0x7)
close_range$auto(r0, 0x8, 0x0)
r1 = openat$auto_fops_bool_file(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/failslab/ignore-gfp-wait\x00', 0x101382, 0x0)
mmap$auto(0x7, 0x5, 0x3, 0x16, 0x1000, 0xb)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
madvise$auto(0x0, 0x2003f0, 0x8)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020005, 0x0, 0x80000010, 0xc, 0x4)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
setgroups$auto(0xe32, &(0x7f0000000040)=0x9)
madvise$auto(0x0, 0x53, 0x9)
write$auto_fops_bool_file(r1, &(0x7f0000000240)="7a8454afb8cc29c39ee4199e94b8e813ea6830eeb28ae68f3e7a228ec53a83ef896e1d82f24c7df985a5d7cee3f1cda520935a2abab70a728c3eca9375fc15d2ca36b4319e9c2e913eb037bb6d2a6860bb37bcd050fbad5bb888d0586f9a0d044af64b595b143283c6596ff95388de03feee8aeae268ed2fd88d8f27064efa76f8dc0da386aa3a8024a0a64364bbcf1bb7b30825871f56d66fd827186a408dae", 0xa0)
mmap$auto(0x3, 0x4, 0x1, 0x100009b72, 0xfffffffffffffffa, 0x100000000001)
pselect6$auto(0x101, &(0x7f0000000080)={[0x6, 0x7, 0xffffffffffffffff, 0x3, 0x1, 0x6, 0x9, 0x7, 0x1, 0x4, 0x9, 0x4, 0x4, 0x7, 0xcb2a, 0x9]}, 0x0, 0x0, 0x0, &(0x7f0000000200))
mremap$auto(0x1fc000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
getxattrat$auto(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0xb91)

9m9.46760365s ago: executing program 7 (id=1387):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000011c0)='/sys/devices/virtual/net/bpq4/statistics/rx_nohandler\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x7, 0x8000)
openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, &(0x7f0000001480)='/proc/thread-self/gid_map\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
mmap$auto(0x5, 0x10, 0x7, 0x81fe, 0x1000, 0xb)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x3, 0x0)
r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r1, 0x40045568, 0x5)

9m9.174292089s ago: executing program 7 (id=1391):
r0 = socket(0xa, 0x2, 0x0)
setsockopt$auto(r0, 0x29, 0x14, 0x0, 0x56b)

9m9.017313548s ago: executing program 7 (id=1393):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/dmi/id/uevent\x00', 0x123402, 0x0)
r0 = socket(0x1, 0x1, 0x1)
read$auto(0x3, 0x0, 0xfb6) (async)
r1 = openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/trap_flow_action_cookie\x00', 0x2202, 0x0)
write$auto(r1, 0x0, 0x1) (async)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) (async)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/smc/autocorking_size\x00', 0xa0002, 0x0)
sendfile$auto(r2, r2, 0x0, 0x7fffe000) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), r3)
sendmsg$auto_WG_CMD_SET_DEVICE(r3, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000002800)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="210026bd7000fedbdf2501000000060006000100000014000200776730"], 0x30}}, 0x80)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) (async)
r6 = geteuid() (async)
openat$auto_memtype_fops_memtype(0xffffffffffffff9c, &(0x7f0000000780), 0x400000, 0x0)
setreuid$auto(r6, 0x0) (async)
setuid$auto(r6)
shmctl$auto(0x9, 0x40, &(0x7f0000000240)={{0x1, 0xee01, <r7=>0xee01, 0x3, 0x3, 0xff, 0x5}, 0x35, 0x5, 0x26, 0x2, 0x8, 0x9, 0xfe01, 0x0, &(0x7f0000000100)="9ae54e2c03b6e032d62f9a97f0fdf40723d58eefcb992509f7d7bdd04af69c0ce3266a1dc950214e43f51e3ffd33a5b2fd4f798de6d6dcff833358331a56d1cf32332d7d04323fdbe2e3e81f25c43fb46d69f322dd51891fe4779670463a13ab300cc5b58ca5fea9ec44c6731af0b9460162cdabf40e86c6e43dbe07c81d68b2073210df999ba61b96c1836ee871782f73ef6f277144d326c1d56a09dd953c79996756ff956746145140aab03ddd64ff87c78d81acb06b2fb3eb204755ebf7c6168eabfde7e782568aeba258832c66424fb32cdeb5b1c1031948889c43cf9b2fbe9371034ef63102578941b2edc219f27ffdaf5defe8926b35", &(0x7f0000000200)="d9a5421abf6a68a4e4e951f9e4c470"})
msgctl$auto(0x100, 0x1, &(0x7f0000000340)={{0xffffe16b, r6, r7, 0x8, 0x10000, 0x2, 0x2}, &(0x7f00000002c0)=0x4d, &(0x7f0000000300)=0xe, 0x8, 0xc9, 0x0, 0x4, 0x6b, 0x4, 0x80, 0x4, 0x3, 0x2})
capget$auto(&(0x7f0000000100)={0x9, <r8=>0x0}, &(0x7f0000000140)={0x3ff, 0x4c, 0x6})
sendmsg$auto_NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000740)={&(0x7f0000000080), 0xc, &(0x7f0000000700)={&(0x7f0000000180)={0x570, r5, 0x800, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_MESH_CONFIG={0x3db, 0x23, 0x0, 0x1, [@generic="df2f5fc0d67c6c6e6c5e974f722afd089079d989079627a487992b3c01b4c0c827a2cafb0427c7bb0de19ab41766b076c8f7cf482613030db14108aef177c49b495cd0e2a95d9e356af125b52e6dfe85e400329486c81fdfb155ec54e097e66f033834c1c1a866562e3d9f387a1775ca088072986afaa49dc72e332ad31cd53be676ee03cd73e19037", @nested={0x1db, 0x110, 0x0, 0x1, [@nested={0x4, 0xea}, @generic="7fd628b77a338a61a4e928b3706279fd7c631cfb83eb72623a1eb276394a0e4a7b6e0b65e464382e6941a548e5d88b0eb856c58ad4137697dfe3a89612b3d748ea1177e1d6495a65545a7ba428d002daead295101d447318c3742082fe75c04ce0b63a36df2dd863e63e8f9b93c5ffa3c9ac30ff804bcca3f53c7522ecd19687fcbcf3024188145f6fd6e3261f0d3a55425847c31de00331006480a10882757db7a314df9c8b667da631bf85cc2ad5de244e4807ad145ed488e4a30c7685bcc963716b90522d583cd1005d1358073def3680c961037e846a1424d0fb2cff097009993e64bd0d", @nested={0x4, 0x12f}, @typed={0x7, 0x14, 0x0, 0x0, @str='#.\x00'}, @generic="31a1b7285bf7dc8fa2855d4008", @typed={0x4, 0x28}, @generic="3135273d9cebeca00cef0c47aff7412ee55ae3151cd90b290e0626f5f6ae9960461ebfd66bd27034105aa0ff78a902940eb503a8787540e0d6cb54c6a62f4e8c506b52b50d708117a5a26f0ffdda5fa30d6e9ade75d683430f9d1a9a52ae169b9fbda76d74ce841a0beb0e6df3a846497921d033cf5e88d99efe6358a73ad6ad7ff89c8dad238818b3985d34c89d3d8907b374e890704eb4b40e840e1e831a83cb321f341537738d4d423cfa72267ad1dfd5fd3c5fc819cf6592007bce88cb39914baed9e861dd76d167d8e26477c11a"]}, @nested={0x2c, 0xcf, 0x0, 0x1, [@nested={0x4, 0xa7}, @typed={0x8, 0x65, 0x0, 0x0, @u32=0x7}, @nested={0x4, 0x3d}, @typed={0xc, 0x136, 0x0, 0x0, @u64=0x70}, @typed={0xc, 0xb2, 0x0, 0x0, @u64=0xc78}]}, @generic="e3f735d9eba55e1a460389d27bb31356b3e682577aac336439f7deb619daee3e5d39e74f4991a2b0c66f1ec9ee587fcb9213aed4f361128d0c4f13e2c44d6191fc6563a46e6524ad7a82663d8027a6cc041c62f0443d02ab9ed39c745ba06162c471937375ebaeef70f4191f8b22e3d5f96ad39413f676a07045430f7c56", @nested={0xc5, 0xb1, 0x0, 0x1, [@nested={0x4, 0x55}, @typed={0x27, 0x4b, 0x0, 0x0, @binary="5c6c026e12bdd9c499ae8bfc3af6cb50e16ad75b2d757bb77ef0de3fc118e5195b6f72"}, @generic="656bae480372d420184499444af3a76151341579bfe5a1650f2fce8213a41b228036cd7d245fe78abce12a6130", @typed={0x8, 0xbe, 0x0, 0x0, @uid=r6}, @nested={0x4, 0x31}, @generic="7c4ef0b05d19cea793c371a59bb90b5a4b3ccf7fbe510875bbac991b84696a8e", @generic="5ffda093e8d8b9e86845ba760ab3ff0c594b815823b43e3f07906be3617c4eabbe5f777ee14af039ffda03842a033fd31c2f37f3ea9179514df6927c"]}]}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0x7}, @NL80211_ATTR_BSS_SELECT={0x120, 0xe3, 0x0, 0x1, [@nested={0x8, 0x19, 0x0, 0x1, [@nested={0x4, 0x64}]}, @nested={0xd3, 0x105, 0x0, 0x1, [@generic="11f116c1ed3ae288bf25be31bf7ed90b5fa3b16698ed52845c40e3050d4516414b08eb5cd1346364c5031ee8abaac450110e9e3f33981f688e1593b1e05a4da7ab88650c0107c854572b8119503e91d71d80c07ad25b0b8597018aeb0ee9a92e748c88edbb41fa76e99a4e8ef45e1405c644c06a5b406c5fbe203b1b0bce3cbe45831a021962da901a25be715081b759a818c75ca51d8b2d082e90ae8df5566bfc00c74e3fb019228e54ae00ef3b30e466722cd688976d", @typed={0x4, 0x9}, @nested={0x4, 0x3e10}, @nested={0x4, 0x10b}, @typed={0xc, 0x4, 0x0, 0x0, @u64=0x9}]}, @nested={0x3f, 0x128, 0x0, 0x1, [@typed={0x8, 0xc5, 0x0, 0x0, @fd=r1}, @generic="08d7f496d9856135f93b64ad7110938fb4b7419ec9faee592a99cbfc52c926c47ebff1488065dc1162e8f12c7502ec7290fffa"]}]}, @NL80211_ATTR_QOS_MAP={0x2e, 0xc7, "c55e28dfdea99d2a86bb6f9b5110eba02b35118e60204475a88bb5ac55e33277e036268d21e9b227b679"}, @NL80211_ATTR_SCAN_FREQ_KHZ={0x28, 0x124, 0x0, 0x1, [@typed={0x8, 0xb8, 0x0, 0x0, @str='[y@\x00'}, @typed={0x14, 0xc9, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x3a}}, @typed={0x8, 0x58, 0x0, 0x0, @pid=r8}]}]}, 0x570}, 0x1, 0x0, 0x0, 0x1}, 0x1)
fcntl$auto(0x2, 0x11, 0xfeffffffffffffff) (async)
r9 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0)
ioctl$auto_RFKILL_IOC_NOINPUT(r9, 0x1, 0x0)

9m8.744940475s ago: executing program 7 (id=1396):
setitimer$auto(0x2, &(0x7f0000000040)={{0x0, 0x5}, {0x0, 0x8}}, 0x0)
unshare$auto(0x40000080)
syslog$auto(0x3, 0xfffffffffffffffd, 0x4)
socket(0xa, 0x3, 0x100)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffe, @_sigpoll={0x52, 0x7}}})
setitimer$auto(0x2, 0x0, 0x0)

9m7.822703686s ago: executing program 7 (id=1405):
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = getpid()
r1 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x200081, 0x0)
ioctl$auto_RTC_PARAM_GET(r1, 0x40187013, &(0x7f0000000100)={0x5, @ptr=0x2, 0x9})
pidfd_open$auto(r0, 0x0)
rt_sigqueueinfo$auto(r0, 0x0, &(0x7f0000000080)={@_si_pad})
r2 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x0, 0x0)
ioctl$auto_USB_RAW_IOCTL_INIT(r2, 0x41015500, &(0x7f0000000140)={"a7a018b09bb196a05739a38a73473b93f5452886bc599ef976c54a71a5dc79483a251405ce72a9af15390e93a8760df83859e16320e8d0b1161f13d13afae66b1d900a4958396aa98d3504ca431aabab1964249251e57fa70517cc19b0e3974dc2a89edac932b8859c767780d65e849700", "e600d778751f5f9e03e1f2b96e39a8ac08de7e036d650e2184857e6b64f6a2c7fb08c6f5ce3828fb4e9498c076bef49c99c9cd91332e12b53664dc20fa879020fbd184b8d300c13be6e57970685ce029fb2385ae6e132c1c6adbcfbd873a3b925d397a08fb733e19ef5ec4f40b0b473c72efd18b8a9e9f3d12c5e44468922beb", 0x5})
ioctl$auto_USB_RAW_IOCTL_RUN(r2, 0x5501, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card1/pcm0c/sub0/hw_params\x00', 0x60000, 0x0)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000001580)='/dev/dsp1\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f00000015c0)=0x8000)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

9m7.407219132s ago: executing program 37 (id=1405):
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = getpid()
r1 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x200081, 0x0)
ioctl$auto_RTC_PARAM_GET(r1, 0x40187013, &(0x7f0000000100)={0x5, @ptr=0x2, 0x9})
pidfd_open$auto(r0, 0x0)
rt_sigqueueinfo$auto(r0, 0x0, &(0x7f0000000080)={@_si_pad})
r2 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x0, 0x0)
ioctl$auto_USB_RAW_IOCTL_INIT(r2, 0x41015500, &(0x7f0000000140)={"a7a018b09bb196a05739a38a73473b93f5452886bc599ef976c54a71a5dc79483a251405ce72a9af15390e93a8760df83859e16320e8d0b1161f13d13afae66b1d900a4958396aa98d3504ca431aabab1964249251e57fa70517cc19b0e3974dc2a89edac932b8859c767780d65e849700", "e600d778751f5f9e03e1f2b96e39a8ac08de7e036d650e2184857e6b64f6a2c7fb08c6f5ce3828fb4e9498c076bef49c99c9cd91332e12b53664dc20fa879020fbd184b8d300c13be6e57970685ce029fb2385ae6e132c1c6adbcfbd873a3b925d397a08fb733e19ef5ec4f40b0b473c72efd18b8a9e9f3d12c5e44468922beb", 0x5})
ioctl$auto_USB_RAW_IOCTL_RUN(r2, 0x5501, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card1/pcm0c/sub0/hw_params\x00', 0x60000, 0x0)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000001580)='/dev/dsp1\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f00000015c0)=0x8000)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

9m6.931830391s ago: executing program 5 (id=1407):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0xfffffffc)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r0 = socket(0x1e, 0x4, 0x0)
mmap$auto(0x2, 0x400, 0x3, 0x18, 0x3ff, 0x10001)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
r1 = socket(0x23, 0x4, 0x200)
setsockopt$auto(r1, 0x10f, 0x83, 0x0, 0x16)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = open(0x0, 0x0, 0x0)
socket(0x2, 0x1, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r4, &(0x7f0000000100)="c80d1b45", 0x4)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000002440), r3)
sendmsg$auto_SMC_NETLINK_ENABLE_SEID(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x28, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, "5ff43fca5d252a546671559f4064f2c8f751e4"}, 0x28}, 0x1, 0x0, 0x0, 0x10000834}, 0x44000)
sendmsg$auto_NL80211_CMD_GET_SURVEY(r3, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000002740)={&(0x7f0000000040)={0x18, r5, 0x73d, 0x70bd25, 0x25dfdbfe, {}, [@NL80211_ATTR_PMKR0_NAME={0x4}]}, 0x18}}, 0x8010)
mmap$auto(0x89d9, 0x4, 0x7, 0xb157, 0x4, 0x6f1d)
sendmsg$auto_NL80211_CMD_SET_COALESCE(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="00012bbd7000fddbdf256500000005001e005800000004001601080035007f0000000600d400ffff00000400dd000400ff00140081800500020009000000050002000400000008007e00080000000400ff000800620006000000"], 0x60}, 0x1, 0x0, 0x0, 0x20000840}, 0x80)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, 0x0, 0x55)
ioctl$auto(0x3, 0x894b, 0x38)

9m6.578506906s ago: executing program 5 (id=1409):
ioctl$auto(0xffffffffffffffff, 0x40045568, 0x5)

9m6.433740573s ago: executing program 5 (id=1410):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup/cgroup.type\x00', 0x22e00, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0xa61c2, 0x84)
mount$auto(&(0x7f0000000000)='pimreg\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd057, 0x0)
mount$auto(0x0, &(0x7f0000000040)='./cgroup\x00', 0x0, 0x7ffffffd, 0x0)
acct$auto(&(0x7f0000000040)='\x00')
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000002980)=""/4070, 0xfe6)

9m6.292499406s ago: executing program 5 (id=1411):
r0 = openat$auto_fops_bool_file(0xffffffffffffff9c, 0x0, 0x101382, 0x0)
write$auto_fops_bool_file(r0, &(0x7f0000000240)="7a8454afb8cc29c39ee4199e94b8e813ea6830eeb28ae68f3e7a228ec53a83ef896e1d82f24c7df985a5d7cee3f1cda520935a2abab70a728c3eca9375fc15d2ca36b4319e9c2e913eb037bb6d2a6860bb37bcd050fbad5bb888d0586f9a0d044af64b595b143283c6596ff95388de03feee8aeae268ed2fd88d8f27064efa76f8dc0da386aa3a8024a0a64364bbcf1bb7b30825871f56d66fd827186a408dae", 0xa0)

9m6.097871306s ago: executing program 5 (id=1413):
setitimer$auto(0x2, &(0x7f0000000040)={{0x0, 0x5}, {0x0, 0x8}}, 0x0)
unshare$auto(0x40000080)
syslog$auto(0x3, 0xfffffffffffffffd, 0x4)
socket(0xa, 0x3, 0x100)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffe, @_sigpoll={0x52, 0x7}}})
setitimer$auto(0x2, 0x0, 0x0)

9m4.2749606s ago: executing program 5 (id=1422):
sched_getattr$auto(0x0, &(0x7f0000000100)={0x80000001, 0x8, 0x2, 0x7, 0x4e22, 0xd340, 0x200, 0x2, 0x8}, 0x101, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
setresuid$auto(0x0, 0x7, 0x0)
pidfd_open$auto(0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/fscaps\x00', 0x40000, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
read$auto(0x3, 0x0, 0x80)
r0 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/tdls_wider_bw\x00', 0x601, 0x0)
write$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r0, 0x0, 0x13)
socket(0x2, 0x2, 0x88)
socket(0x2b, 0x1, 0x0)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
msgrcv$auto(0x0, 0xfffffffffffffffd, 0x200000000000000, 0x10, 0xdf66)

9m3.892663571s ago: executing program 38 (id=1422):
sched_getattr$auto(0x0, &(0x7f0000000100)={0x80000001, 0x8, 0x2, 0x7, 0x4e22, 0xd340, 0x200, 0x2, 0x8}, 0x101, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
setresuid$auto(0x0, 0x7, 0x0)
pidfd_open$auto(0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/fscaps\x00', 0x40000, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
read$auto(0x3, 0x0, 0x80)
r0 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/tdls_wider_bw\x00', 0x601, 0x0)
write$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r0, 0x0, 0x13)
socket(0x2, 0x2, 0x88)
socket(0x2b, 0x1, 0x0)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
msgrcv$auto(0x0, 0xfffffffffffffffd, 0x200000000000000, 0x10, 0xdf66)

9m3.815104242s ago: executing program 8 (id=1425):
ioctl$auto(0xffffffffffffffff, 0x40045568, 0x5)

9m3.641653692s ago: executing program 8 (id=1426):
connect$auto(0x3, &(0x7f00000000c0), 0x55)
readv$auto(0x7, &(0x7f0000000100)={&(0x7f0000000040), 0x3}, 0x9)
writev$auto(0xca, &(0x7f0000000000)={&(0x7f00000000c0), 0x3}, 0x7e)
openat$auto_binder_features_fops_(0xffffffffffffff9c, &(0x7f0000000040)='/dev/binderfs/features/oneway_spam_detection\x00', 0x14880, 0x0)

9m3.565342221s ago: executing program 8 (id=1427):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x18dd01, 0x0)

9m3.512314231s ago: executing program 8 (id=1428):
ioctl$auto_UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000080)={<r0=>0xffffffffffffffff, 0xfffffffc, 0x4, 0x80})
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
pipe2$auto(0x0, 0x80)
setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x8)
listen$auto(0x3, 0x83)
setsockopt$auto(0x3, 0x1, 0x31, 0x0, 0x9)
r2 = openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/gid_map\x00', 0x40080, 0x0)
pread64$auto(r2, 0x0, 0x808001, 0x100000001)
sendmsg$auto_NL80211_CMD_FRAME(r0, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000011c0)={&(0x7f0000000180)={0x14, r1, 0x200, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x44040}, 0x20000000)
getrandom$auto(&(0x7f00000001c0)='/proc/thread-self/gid_map\x00', 0x8, 0x6)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/ram2/queue/fua\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000000)=""/53, 0x35)

9m3.447335105s ago: executing program 8 (id=1429):
setitimer$auto(0x2, &(0x7f0000000040)={{0x0, 0x5}, {0x0, 0x8}}, 0x0)
unshare$auto(0x40000080)
syslog$auto(0x3, 0xfffffffffffffffd, 0x4)
socket(0xa, 0x3, 0x100)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffe, @_sigpoll={0x52, 0x7}}})
setitimer$auto(0x2, 0x0, 0x0)

9m1.682822391s ago: executing program 8 (id=1432):
splice$auto(0x4, 0x0, 0x2, 0x0, 0xfffffffffffffffc, 0x4)
r0 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff)
madvise$auto(0x0, 0x2000040080000004, 0xe)
close_range$auto(0x2, 0x8, 0x0)
prctl$auto(0x35, 0x8, 0xec, 0x2, 0x80000000)
socket(0xa, 0x3, 0x6)
r1 = socket(0x10, 0xa, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd)
sendmsg$auto_NL80211_CMD_GET_REG(r1, 0x0, 0x40000)
sendmsg$auto_CTRL_CMD_GETFAMILY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002abd77dcb7fcdf2503000000190000000000000001"], 0x24}, 0x1, 0x0, 0x0, 0x4008810}, 0x10000000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x1)
r2 = socket(0x10, 0x2, 0x0)
r3 = socket(0xa, 0x2, 0x3a)
connect$auto(0x3, 0x0, 0x55)
sendmsg$auto_NL80211_CMD_DEL_PMK(r3, 0x0, 0x40000)
sendmsg$auto_IPVS_CMD_GET_INFO(r2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000005}, 0x4004010)

9m1.351849924s ago: executing program 39 (id=1432):
splice$auto(0x4, 0x0, 0x2, 0x0, 0xfffffffffffffffc, 0x4)
r0 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff)
madvise$auto(0x0, 0x2000040080000004, 0xe)
close_range$auto(0x2, 0x8, 0x0)
prctl$auto(0x35, 0x8, 0xec, 0x2, 0x80000000)
socket(0xa, 0x3, 0x6)
r1 = socket(0x10, 0xa, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd)
sendmsg$auto_NL80211_CMD_GET_REG(r1, 0x0, 0x40000)
sendmsg$auto_CTRL_CMD_GETFAMILY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002abd77dcb7fcdf2503000000190000000000000001"], 0x24}, 0x1, 0x0, 0x0, 0x4008810}, 0x10000000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x1)
r2 = socket(0x10, 0x2, 0x0)
r3 = socket(0xa, 0x2, 0x3a)
connect$auto(0x3, 0x0, 0x55)
sendmsg$auto_NL80211_CMD_DEL_PMK(r3, 0x0, 0x40000)
sendmsg$auto_IPVS_CMD_GET_INFO(r2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000005}, 0x4004010)

7m20.732055258s ago: executing program 4 (id=1933):
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x4, 0x100)
socket(0x11, 0x3, 0x2)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getsockopt$auto(0x6, 0x107, 0x14, 0x0, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x20800, 0x0)
ioctl$auto(0x3, 0x541b, 0x38)
mseal$auto(0x1, 0x0, 0x1)
io_uring_setup$auto(0x6, 0x0)
r0 = openat$auto_ocfs2_control_fops_stack_user(0xffffffffffffff9c, &(0x7f0000000000), 0x105802, 0x0)
io_uring_register$auto(r0, 0x4, &(0x7f0000000000), 0x7)
mprotect$auto(0xbe0f, 0x8, 0x4)

7m20.259256224s ago: executing program 4 (id=1927):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x1, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(0x4, 0x0, 0x9)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x1, 0x8, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f7)
bpf$auto(0x18, &(0x7f0000000040)=@raw_tracepoint={0xf2, 0xffffffffffffffff, 0x0, 0x800}, 0x92)

7m19.772247781s ago: executing program 4 (id=1928):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/nfc/nfc0/rfkill0/soft\x00', 0x8081, 0x0)
read$auto(r0, &(0x7f0000000000)='\x00', 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x3, 0x2)
setsockopt$auto(0x3, 0x0, 0x100000000000c8, 0xfffffffffffffffc, 0x28)
flock$auto(0x1, 0x8)
r1 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000001440)={0x0, 0x0, &(0x7f0000001400)={&(0x7f0000000240)={0x30, r1, 0x6c5679fc7dece1a9, 0x70bd27, 0x25dfdbff, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x7}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x10001}, @SEG6_ATTR_SECRET={0x4}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x200080c4)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_STOP_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000c00)={0x688, r2, 0x1e27f033bd95ac4d, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_PMKID={0xfb, 0x55, "3363ddc4db379e8dd9bf51aa432db1fb3623a70c2b575b96f5cb5fd20387b4b4d27175b648661df90c39f4ee8429f71728fcc5c74e6c1dbbe81dcf723f9eed80ed396becf346ffa23863ff6b70ad17f9817c13b70cbe4ecceb43bddba09c0399434cbebaea33f0a4d646c6019035e621d686af26d7a4cb3d510fd431627ce2e2312a6b998436c0c294ddcc3b8dd83e2b426576d6a468abaaffe2824850e9af65549a553b89448fdb51012455b020de72e0a6de4df0e38a6c74f9e5f4778bc4e241be33c39f1405ec2a9e1e58386a84fff64ce76a6bb6888a797b7512dc6ff05358730a58c1fcd380446db2e6724afe0e04912b773cddd0"}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x6}, @NL80211_ATTR_PUNCT_BITMAP={0x8, 0x142, 0xfb8b}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x8}, @NL80211_ATTR_SCAN_SSIDS={0x560, 0x2d, 0x0, 0x1, [@typed={0x5, 0x13b, 0x0, 0x0, @str='\x00'}, @nested={0xcd, 0xe2, 0x0, 0x1, [@generic="138ec3bd1959eb677e286dd1adb13374be7390a0f5aa417d2b5c47c1b4935a7ee0d8c40f7c4d72c399c6f15d3e3fba9e6aba1e2577fde307b9f4597c7e240b265aaf", @generic="55e91523e172cdd13ddc9994d2a91528c01500b25731c1193769ef3f8761e022e47f825d2a693225d1784b4b3a28cfc9646d91dec927b0facba288ec580898a91387007dfc2eadd481806e8e08713b55c946011fa4c2d22acbf8035c468542c8739c8056289e16171d873a0163bddc60574aa72166eafbc3bde992da9377d0c33e71ded5aca1a7"]}, @typed={0x4, 0x19}, @nested={0x466, 0x102, 0x0, 0x1, [@typed={0x43, 0x6b, 0x0, 0x0, @binary="116551c92f89355c9819714e07e9f72705e1e2061c0a4785586df7b95a648c56e89368b67eb7eaeafbf307c281316e22f0c1b3242b1ae8601935bfe45ef9e1"}, @nested={0x4, 0xdb}, @generic="1d620a64299dfd8beb8d734336f6bab198a34fa4a7bd7890214e39cd63c7093c6c97595dcafb328bb6fbbd4fba26715dddc4b158f84be04549ac9787ed0dee48bd8bd9164fb79ed97ed10f2653332fa1f35d061f912b909ab889ba7d7ac0c53d4a2ea574d4981604bb0ad8b3760112be05ed7c6b639ffa4ba62dcd6a53682c5b6c64dfa0be9182b541a59daabd579ab5ce686cb5fc06a3e8b57a154d523eef6f6f07377ca1a243f3b5dd0a5ac3cd26ea743e52f28c6976c933fbdf969280472506dddc8d12cbf4905bb98654f41396455e194c8a", @generic="6dc3d9ad41e4dd07cbfa70d8a7d20f5df454b504960175dbd4d633fe23391f798b90729cb5946c7d73d344b9dd312ba3a80ae37d860168f0cbaa166a77ee3833fdf1e7199f065e2d4cdddcc7f6eec81b748bf1922aa3019c8a1a8f83825a04efb718840ed7ed708581564c9a18897e573b3a7fcdd4c9e7d40519f9bd43b1fdde5115237a2c21b32090c4e7088d747b41b37c2a", @nested={0x4, 0x12d}, @typed={0x5, 0x134, 0x0, 0x0, @str='\x00'}, @typed={0xc, 0xc5, 0x0, 0x0, @u64=0x6}, @nested={0x4, 0x6d}, @typed={0x2f, 0x32, 0x0, 0x0, @str='/sys/devices/virtual/nfc/nfc0/rfkill0/soft\x00'}, @generic="e9ced2ad7d77e0428c46e7a3639877af3526bbd18230f9801a6628e9ccf2d211f6b419ba4888c4", @nested={0x23d, 0x11d, 0x0, 0x1, [@generic="0c6202b5f7bb53c393c6f169510ec9677650c4193c86185d3dce17f7bfc5ea31286b040d984dff2a1571046fab8460a305a2328e8ea9caa502d3e414f69241591ebfab9f61a1aa9410f7ac1d5416255cec5f6e712a26363879d76fad65e4b9607490fabf3d645fe07526ad686478ce6712b3bb94ef72a1ac9374d8468be6166c7695e32fb1d32a3d4073c552444cc994643e8fc4795f4fe2b108a858ddd9f069ed388066332a274af985bfa12a850d081e1e76a0addf7b146eccebf93b4f7552e15479a2eb255b332842318d3a2c8d3dcd18c481e37439759bc8913d62f4bee446af9713b2777436672cc03802", @nested={0x6a, 0x9b, 0x0, 0x1, [@generic="08d29b4c1f13ad79b0f7286d1050284195fa0a7a786762975494df9bbcef4ead5675ecac13b81e8ed5d2f129f79edf931bb1104844426c62ebd1e16235d42f2e6ac2b25d823ef41ac5adbbb05ceb36c7bbeda26a0e830c9ae9022c1bf804ee20ebf1ea8901bf"]}, @typed={0x8, 0x93, 0x0, 0x0, @fd}, @typed={0x8, 0xe1, 0x0, 0x0, @fd}, @generic="33a24bd95c546a1e8e5b790b1980a6d7bbb85407df8a346df8fdb53ef99f1a2065e20229734302da35df0b915de744e192824a79de0fe2801e15642beabebd218548a2d60a04dd55bcfab9fa8e3af65ff14209dcb48b9d16ee873761029f3bcddfa1b3dec45518c369cd4c2fbbb54cf3182cc9347a15cb14bc7085d2c589c0c06b0f", @generic="59c0b0b4a224f17554ca5712ddd5f079ea523c76dee5c6587961ae4d8ded1014576632dd958bb8daab1e501b5db826d76bf766454de881bc8af8f1c69752c8a9930c0a08d3a3", @typed={0x8, 0x2, 0x0, 0x0, @fd=r0}]}]}, @typed={0x14, 0x136, 0x0, 0x0, @ipv6=@remote}, @typed={0x4, 0x75}]}]}, 0x688}, 0x1, 0x0, 0x0, 0x20008000}, 0x480c1)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
memfd_create$auto(0x0, 0x0)
write$auto(0x3, 0x0, 0xfdef)

7m19.121379821s ago: executing program 4 (id=1934):
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
exit$auto(0x7)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000040), 0x3, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0x2, &(0x7f0000000080)="bc85e26cdb514e1b8fb3adaf7682562308fb503f065b34667ec6a43e454155b18b829ba8be2d6e6939cbe1df24d9d53d952d24b0aaeaac0ec287a351d9dda2ff43f5b96b809b497dfb36d5da467ec7576625409b35d3a799e8159e499d96d4409e94ef4a21e876c6446232ca6e5e35237b841b5d876bbb3f8d3be8b7995452b41c5d81d0e9e073590480e5e882d3fc736421a02afb0e78c50ca6586d65035f5a0fdfc0e883f9e04c08e26394ef4ee9f2a508b0026358")
exit$auto(0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
read$auto(r1, 0x0, 0x9)
exit$auto(0x4)
write$auto(0x3, 0x0, 0xfdef)

7m18.073386927s ago: executing program 4 (id=1940):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
sendfile$auto(0x6, 0x3, 0x0, 0x8000) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
unshare$auto(0x40000080) (async)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x6) (async)
munmap$auto(0x20001000, 0x7)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async, rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
socket(0x2, 0x3, 0xa) (async)
lsm_list_modules$auto(0x0, &(0x7f0000000100)=0xbefc, 0x0) (async)
ioctl$auto(0x1, 0x89a0, 0x8) (async, rerun: 32)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/lru_gen\x00', 0x12b902, 0x0) (async, rerun: 32)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) (async, rerun: 32)
setitimer$auto(0x2, &(0x7f0000000040)={{0x0, 0x5}, {0x0, 0x8}}, 0x0) (rerun: 32)
pipe2$auto(&(0x7f0000000000)=<r0=>0xffffffffffffffff, 0x7)
pwrite64$auto(r0, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\b\x06e\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\x80\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2\x03\x00\x00\x00\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9', 0x94e, 0x3) (async)
epoll_create1$auto(0x3)
unshare$auto(0x40000080)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x0, 0x4, 0x70bd25, 0x25dfdbfb, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200440c5}, 0x800) (async)
r2 = socket(0x2, 0x801, 0x100)
socket(0xa, 0x2, 0x2)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
listmount$auto(0xfffffffffffffffe, 0xfffffffffffffffc, 0x40420f00, 0x1)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffe, @_sigpoll={0x52, 0x7}}}) (async)
getsockopt$auto(0x6, 0x107, 0x13, 0x0, 0x0)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000001c0), r2)
write$auto(0x3, 0x0, 0x9)

7m16.845615779s ago: executing program 4 (id=1944):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
socket(0xa, 0x801, 0x84)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x15, 0x5, 0x0)
r1 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYRES8=r0, @ANYRES32], 0x18}}, 0x80)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10048884)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
socket(0x1e, 0x1, 0x0)
socket(0x28, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x1, 0x1)
add_key$auto(0x0, 0x0, 0x0, 0xfffffffffffffffd, 0xdf)
pipe2$auto(0x0, 0x80)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8)
socket(0x2, 0x3, 0xa)
pipe2$auto(0x0, 0x80)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x8, 0x5, 0x8)
keyctl$auto(0xf, 0xdfffffffffffffff, 0x69c9, 0x2, 0xbcc)

7m16.419681166s ago: executing program 40 (id=1944):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
socket(0xa, 0x801, 0x84)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x15, 0x5, 0x0)
r1 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYRES8=r0, @ANYRES32], 0x18}}, 0x80)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10048884)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
socket(0x1e, 0x1, 0x0)
socket(0x28, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x1, 0x1)
add_key$auto(0x0, 0x0, 0x0, 0xfffffffffffffffd, 0xdf)
pipe2$auto(0x0, 0x80)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8)
socket(0x2, 0x3, 0xa)
pipe2$auto(0x0, 0x80)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x8, 0x5, 0x8)
keyctl$auto(0xf, 0xdfffffffffffffff, 0x69c9, 0x2, 0xbcc)

6m8.264122897s ago: executing program 9 (id=2280):
r0 = openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0xa8602, 0x0)
exit$auto(0x7)
read$auto_proc_loginuid_operations_base(r0, 0x0, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
setresuid$auto(0x2, 0x7, 0x8080)
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'ip6_vti0\x00', <r3=>0x0})
sendmsg$auto_NETDEV_CMD_BIND_RX(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r2, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@NETDEV_A_DMABUF_FD={0x8, 0x3, r0}, @NETDEV_A_DMABUF_IFINDEX={0x8, 0x1, r3}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x20040090)
ioctl$auto(r1, 0x4b32, 0x92b6)

6m7.214488818s ago: executing program 9 (id=2291):
openat$auto_generic(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/dlm-monitor\x00', 0x300, 0x0)
socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
r0 = socket(0xa, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x4, 0x0, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}, 0x1, 0x0, 0x0, 0x5}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002ac0), r2)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r2, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="831f2abd7000fbdbdf250100000008000100000000001c39d2244b8fc30cebab34203f484ff314e222526633647ee24e4986bc9083f1801957614d9331f2dd241fcb283f95f82c9c461f4dc72a5decda931332c5c6a4491836c432398ec6110d25b36125f918b1b22721a536f88af6cdf9032fe66af81ca00bc72443c429400b1c24b4b485abc0ae0f3d90f948081d67f019ea5d7f426ccdae043add2bf27e985be7e6dfb1bc7cd0a5695e44b3fb631957fc2d26c7e415bbf235f1cef253fbc759caed0f64a57da0"], 0x1c}, 0x1, 0x0, 0x0, 0x20004041}, 0x40004)
socket(0xa, 0x801, 0x106)
r4 = openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x2001, 0x0)
socket(0x2c, 0x80003, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r5 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x38, 0x3, 0x1ffde, 0x7, 0x3, 0x4, 0x9, 0x3, 0x6, 0x5, 0xb4, 0x9, 0x6, 0x10003, 0x80, 0x7, 0x0, 0x7, 0x0, 0x20000200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x3, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffc, 0x7fffffffffffffff, 0x0, 0x24, 0x40000000000003, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x200000000001, 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x1, 0x7, 0xffffffffffffffff, 0x890, 0x8000000000008, 0xc8, 0x1000, 0x0, 0x0, 0x0, 0x1, 0x2, 0x4000000000]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYRESDEC=0x0, @ANYRES16=r4, @ANYRES32=r2, @ANYRES32=r0, @ANYRESOCT=r4], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x4, 0x0, 0x1, 0xa508}, 0x800}, 0x7, 0x6)
socket(0x25, 0x1, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

6m6.16840729s ago: executing program 9 (id=2296):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/nr8/statistics/tx_dropped\x00', 0x80000, 0x0)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x28240, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='&].+(!\x00')

6m5.768578384s ago: executing program 9 (id=2297):
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs$namespace(r0, &(0x7f0000000040)='ns/uts\x00') (fail_nth: 3)

6m5.64780368s ago: executing program 9 (id=2299):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/video44\x00', 0x8a240, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x13, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x400000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff]}, 0x1fe, 0x81)
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3fc, 0x4}, 0xf3, 0x0, 0x0, 0x8)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x1, 0x84)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
r1 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={0xa, @new_prog_fd=0x77, 0xa, @old_map_fd=r1}, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x401, 0x5)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event2\x00', 0x40180, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
read$auto(r3, 0x0, 0x9)
ioctl$auto_evdev_fops_evdev(r2, 0x80084504, 0x0)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0xc)
bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf)
r4 = socket(0xa, 0x2, 0x0)
setsockopt$auto(r4, 0x29, 0x30, 0x0, 0x56b)
syz_genetlink_get_family_id$auto_seg6(0x0, 0xffffffffffffffff)
tkill$auto(0x1, 0x7)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
mbind$auto(0x0, 0x100000004, 0x4, 0x0, 0x20000000000006, 0x2)

6m4.581344345s ago: executing program 9 (id=2304):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0xfffffffffffffe00, 0x10001, 0xfffffffffffffffc, 0x19, 0x76, 0x8000000000000001)
r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/block/loop6/hctx0/cpu0/read_rq_list\x00', 0x60000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_DAT_CACHE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="57e72dbd7000ffdbdf250d00000005000300", @ANYRES32=0x0, @ANYBLOB="6615df81dfca12ce56ddf871b4ae92404c4856523d4d7490928f4b8bc47c1243fb705e020000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffff7fffff0005, 0x8)
madvise$auto(0x0, 0x2003f0, 0x14)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd11/trace/act_mask\x00', 0x20000, 0x0)
read$auto(r0, 0x0, 0x3)
r3 = socket(0x29, 0x5, 0x0)
sendmmsg$auto(r3, 0x0, 0x9a6, 0x3ec0)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/version\x00', 0x141302, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000040)=""/192, 0xc0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000001c0), r3)
mprotect$auto(0x4, 0x40000078e, 0x10000000000000d)
openat$auto_fops_init_pkru_pkeys(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/scsi/sg/def_reserved_size\x00', 0xc8000, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000140), 0x100, 0x0)
r5 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x20601, 0x0)
write$auto_sg_fops_sg(r5, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mbind$auto(0x8000, 0xfa9d, 0x5, &(0x7f0000000280)=0x20000000000000fb, 0x400, 0x1)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r3)
write$auto(r3, &(0x7f00000000c0)='\x00', 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000)

6m4.109528793s ago: executing program 41 (id=2304):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0xfffffffffffffe00, 0x10001, 0xfffffffffffffffc, 0x19, 0x76, 0x8000000000000001)
r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/block/loop6/hctx0/cpu0/read_rq_list\x00', 0x60000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_DAT_CACHE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="57e72dbd7000ffdbdf250d00000005000300", @ANYRES32=0x0, @ANYBLOB="6615df81dfca12ce56ddf871b4ae92404c4856523d4d7490928f4b8bc47c1243fb705e020000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffff7fffff0005, 0x8)
madvise$auto(0x0, 0x2003f0, 0x14)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd11/trace/act_mask\x00', 0x20000, 0x0)
read$auto(r0, 0x0, 0x3)
r3 = socket(0x29, 0x5, 0x0)
sendmmsg$auto(r3, 0x0, 0x9a6, 0x3ec0)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/version\x00', 0x141302, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000040)=""/192, 0xc0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000001c0), r3)
mprotect$auto(0x4, 0x40000078e, 0x10000000000000d)
openat$auto_fops_init_pkru_pkeys(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/scsi/sg/def_reserved_size\x00', 0xc8000, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000140), 0x100, 0x0)
r5 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x20601, 0x0)
write$auto_sg_fops_sg(r5, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mbind$auto(0x8000, 0xfa9d, 0x5, &(0x7f0000000280)=0x20000000000000fb, 0x400, 0x1)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r3)
write$auto(r3, &(0x7f00000000c0)='\x00', 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000)

3.888163738s ago: executing program 1 (id=4860):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r0)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000080)

3.749315707s ago: executing program 0 (id=4861):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0x5c8)
mmap$auto(0x0, 0xb, 0xffb, 0x8000000008011, 0x3, 0x10000000000)
ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0x7)

3.614049458s ago: executing program 1 (id=4862):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_ETHTOOL_MSG_STATS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x14, 0x0, 0x1, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20004000}, 0x40040a2)
socket(0xa, 0x801, 0x100)
socket(0x29, 0x1, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, 0x0, 0x1fe, 0x81)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a000500d71aed11187c00000a000100987874e64b8700000a0001007572c85c318e0000060007000400000008000200", @ANYRES32=0x0, @ANYBLOB='\n\x00'], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x22, 0x940, 0x1ffde, 0x3, 0x6, 0x8000002, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, [0x0, 0x0, 0x0, 0x243efbdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe6e]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)

3.088981424s ago: executing program 0 (id=4863):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x9, 0x5, 0x3)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001400)={0x0, 0x1354}, 0x1, 0x0, 0x0, 0x4000000}, 0x48095)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clone$auto(0x7, 0x2000000000000, 0x0, 0x0, 0xa027)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x1)
socket(0x2, 0x1, 0x106)
sendmsg$auto_NL80211_CMD_DEL_PMK(r1, &(0x7f0000001480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x8000)
madvise$auto(0x1ffff000, 0x5510, 0x8)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="20000000f5e3a692bd5238381603d13e057d4b855c21908bfbf4192d560dbdccf1e1b33a1403ab7585fdbc13d3db9de79d218665e3e8079f3fc9a417c989478d398629f8a2bc8b85d22019aff22dcadafa8ef55c5772b8c1a0de3825693c2a013f4aefe088aacbed7ef52b2fee28136d0338f3c2e2714a4ce82787273ae7e5cca34cc910fe263caae57c1fdf69c7953b1fc2056e44715a35fe6e5998d4c743be2e3e714cdc3850b6590ecdc6597cb98cc6900286909b38", @ANYRES16=0x0, @ANYBLOB="000326fd7000fedbdf25020000000a001800bbbbbbbbbbbb0000"], 0x20}, 0x1, 0x0, 0x0, 0x4c78bac7c0c3b69f}, 0x22048005)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0xe37, 0x3, 0x9, 0x13, 0x1, 0x2)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xb, 0x8)
ioperm$auto(0xf20a, 0x100, 0x9)
mincore$auto(0x1000, 0x6, 0x0)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
madvise$auto(0x8, 0x0, 0x5)
mremap$auto(0x200000, 0x3, 0x3fd6, 0x3, 0x20000000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendto$auto(r0, &(0x7f0000000000)="0c83e4f4d472e83b8dffff558026664de0d1d5e65711f67975310d51", 0xfff8000000000000, 0x9, &(0x7f0000000100)=@nl=@proc={0x10, 0x0, 0x25dfdbfc, 0x4000}, 0x4)
set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x7b, 0x4)

3.067120553s ago: executing program 1 (id=4864):
r0 = socket(0xf, 0x3, 0x2)
sendmsg$auto_TIPC_NL_NET_SET(r0, 0x0, 0x4010092)
ioprio_set$auto(0x2, 0x0, 0x8)
close_range$auto(0x2, 0x8000, 0x0)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv6/conf/veth0_to_hsr/mldv2_unsolicited_report_interval\x00', 0x202, 0x0)
write$auto_console_fops_tty_io(r1, 0x0, 0x0)

2.827586576s ago: executing program 6 (id=4866):
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x18, 0x2, 0x0)
epoll_create$auto(0x1)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
mmap$auto(0x80000000, 0xcf4, 0xffffffffffff8b96, 0x12, 0x100000000, 0x1ff) (async)
mmap$auto(0x80000000, 0xcf4, 0xffffffffffff8b96, 0x12, 0x100000000, 0x1ff)
io_uring_setup$auto(0x6, 0x0) (async)
io_uring_setup$auto(0x6, 0x0)

2.613493675s ago: executing program 6 (id=4868):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
removexattr$auto(0x0, 0x0)
mmap$auto(0x4, 0x2020009, 0x8, 0xeb1, 0xffffffffffeffffa, 0x7ffd)
getrandom$auto(0x0, 0x6000000, 0x3)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rxrpc/calls\x00', 0x100, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000040)=""/88, 0x58)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000001080)=""/4092, 0xffc)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x4000)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x252802, 0x190)
socket(0x1, 0x1, 0x0)
setsockopt$auto(0x3, 0x1, 0xf44, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000001c0), 0x55)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0x3ff57696, 0x9b72, 0x5, 0x8000000000008000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0x80000001, 0x8)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0xffff, 0xeb1, 0xfffffffffffffffa, 0x8000)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x6, 0x4)

2.45554354s ago: executing program 1 (id=4869):
mmap$auto(0xf, 0x5, 0x24000000000d1, 0xeb1, 0x401, 0x8)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
bpf$auto(0x0, &(0x7f0000000000)=@query={@target_fd, 0x9, 0xfff, 0x7, 0x1, @count=0x10, 0x0, 0x8, 0x0, 0x3, 0x4}, 0x9f)
r0 = socket(0x10, 0x2, 0x4)
sendmsg$auto_ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x2000000, 0x8000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x20008000)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x2, 0x88)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'team0\x00', <r3=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1, r1, @relative_id=0x13, 0xe600}, 0xf)
bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0xc)
write$auto(r0, &(0x7f0000000000)='-\x00', 0x2fb)
mmap$auto(0x8000000000000007, 0x200000000034c6, 0x3, 0x410, 0xff0000000000000, 0x5)
futex_wait$auto(0x0, 0x0, 0x7f, 0x2, 0x0, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
socket(0xa, 0x2, 0x0)
socket(0x840000000002, 0x3, 0xff)
setsockopt$auto(0x6, 0xff, 0x1, 0xfffffffffffffffc, 0x0)
futex$auto(0x0, 0x3, 0x8243, 0x0, 0x0, 0x4)

2.360978917s ago: executing program 2 (id=4870):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r0)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000080)

2.163367816s ago: executing program 2 (id=4871):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ptmx\x00', 0x189000, 0x0)
landlock_restrict_self$auto(0xffffffffffffffff, 0x80000000)
read$auto(0x3, 0x0, 0x400000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000)
ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0)

2.160528791s ago: executing program 0 (id=4872):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0x5c8)
mmap$auto(0x0, 0xb, 0xffb, 0x8000000008011, 0x3, 0x10000000000)
ioctl$auto_SNDCTL_DSP_SYNC(0xffffffffffffffff, 0x5001, 0x7)

1.910229046s ago: executing program 0 (id=4873):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_ETHTOOL_MSG_STATS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x14, 0x0, 0x1, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20004000}, 0x40040a2)
socket(0xa, 0x801, 0x100)
socket(0x29, 0x1, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, 0x0, 0x1fe, 0x81)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a000500d71aed11187c00000a000100987874e64b8700000a0001007572c85c318e0000060007000400000008000200", @ANYRES32=0x0, @ANYBLOB='\n\x00'], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x22, 0x940, 0x1ffde, 0x3, 0x6, 0x8000002, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, [0x0, 0x0, 0x0, 0x243efbdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe6e]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)

1.799126387s ago: executing program 2 (id=4874):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000080)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fbdbdf25070000002c000e"], 0x40}, 0x1, 0x0, 0x0, 0x804}, 0x2)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
writev$auto(0x0, &(0x7f0000000380)={0x0, 0x50d}, 0x101)
getrandom$auto(0x0, 0x6000000, 0x3)
socket(0x2, 0x801, 0x106)
ioperm$auto(0x7, 0x6, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0x10eb1, 0xfffffffffffffffd, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x9, 0x3ff57697, 0x9b72, 0x2, 0x8000000000008000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0xd1, 0x0, 0x4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'veth1_to_hsr\x00'})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendto$auto(0x3, 0x0, 0xfffffffffffffdef, 0x101, 0x0, 0x1c)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
shutdown$auto(0x200000003, 0x2)
write$auto(0x3, 0x0, 0xfdf3)
openat$auto_sc_seq_fops_netdebug(0xffffffffffffff9c, 0x0, 0x34000, 0x0)
ioctl$auto(r0, 0x0, 0x5)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef)

1.639999303s ago: executing program 1 (id=4875):
r0 = open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x88000, 0x0)
copy_file_range$auto(r0, 0x0, r1, &(0x7f0000000040)=0xa, 0x4000000000002, 0x7)
prctl$auto(0x1000000001c, 0x5, 0x8, 0x9, 0x80001)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
setreuid$auto(0x0, 0x20000000004)
mincore$auto(0x1000, 0x6, 0x0)
socket(0xa, 0x2, 0x0)
select$auto(0xfffffffd, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
fcntl$auto(r0, 0x81, 0x0)
r2 = socket(0x10, 0x2, 0x0)
r3 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000026d00)='/dev/dri/card1\x00', 0x2000, 0x0)
ioctl$auto(r3, 0x802064c9, 0x1000000000000004)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002dbd7000fedbdf250200000008000200020000"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e"], 0x1ac}, 0x1, 0x0, 0x0, 0x200408c0}, 0x40000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)

1.467458347s ago: executing program 0 (id=4876):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x0, &(0x7f0000000140)={0x4, 0x2, 0x6, 0x6, 0x5, 0xef, <r0=>0xffffffffffffffff, [0x3, 0x10000, 0x100], {0x7ff, 0x3, 0xc, 0x6, 0x0, 0xffffffff, 0xfc2, 0x6}, {0x7, 0x5, 0x6, 0x8b83, 0xc, 0x8000, 0x9, 0xc4e, 0x7}})
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000)
r1 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x109402, 0x0)
ioctl$auto_UBI_IOCDET(r1, 0x40046f41, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYRESOCT=r0, @ANYBLOB="1200"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xb00, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="1e"], 0x1ac}}, 0x40000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0xa, 0x801, 0x84)
listen$auto(r2, 0x3)
getsockopt$auto(r2, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mprotect$auto(0x9, 0x5, 0x200)
socket(0xa, 0x5, 0x0)
io_uring_setup$auto(0x40005, &(0x7f0000000000)={0x6, 0x1, 0x400, 0x7, 0x1005, 0x6, 0x7, [0x4, 0x2e9, 0x8], {0x0, 0x1, 0x8, 0x7, 0x5, 0x5, 0x1, 0xfffffffc, 0x7}, {0x4, 0xfff, 0xffff7ffe, 0x2, 0x8, 0x200, 0x3, 0x0, 0x3}})
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x2, 0x3a)
socket(0x11, 0x80003, 0x300)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x3, 0x2)
socket(0x2, 0x3, 0x104)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x102, 0x0)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
bind$auto(0x3, 0x0, 0x6b)

758.046803ms ago: executing program 0 (id=4877):
r0 = socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x5, 0x8, 0x0)
r1 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r1, 0x84, 0x75, 0x0, &(0x7f0000000000)=0x9000c)
r2 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0)
ioctl$auto_DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, 0x0)
mmap$auto(0x0, 0x9, 0xff7, 0x8000000008012, 0x1000000004, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
r3 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x45, 0x4909b6f8, 0x1ffdf, 0x7, 0xfffffffffffffff7, 0x2, 0xa121, 0x3, 0x6, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x80, 0x100000000, 0x0, 0x7, 0x2100, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffbffd, 0xfffffffffffffffd, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x2000000000000000, 0x0, 0x1, 0x400000000005b8, 0xc, 0x0, 0x3, 0x0, 0x6, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffffffffa, 0x8, 0x4000000000, 0x7]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYRESOCT=0x0, @ANYRESHEX=0x0], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
sendmsg$auto_OVS_FLOW_CMD_GET(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x800)
mmap$auto(0x3, 0xffffffffffffffff, 0x9, 0x14, 0x8cf0, 0x6)

649.854879ms ago: executing program 2 (id=4878):
r0 = socket(0x2, 0x801, 0x106)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000003940)={0x0, 0x0, &(0x7f0000003900)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES16=0x0], 0x20}, 0x1, 0x0, 0x0, 0x40800}, 0x840)
sendmsg$auto_SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010025bd7000f9dbdf25020000000b0001"], 0x20}, 0x1, 0x0, 0x0, 0x4008014}, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r0)
sendmsg$auto_NL80211_CMD_JOIN_MESH(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000440)={0x1830, r2, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_4ADDR={0x5, 0x53, 0x7}, @NL80211_ATTR_UNSOL_BCAST_PROBE_RESP={0x228, 0x127, 0x0, 0x1, [@NL80211_UNSOL_BCAST_PROBE_RESP_ATTR_TMPL={0x20a, 0x2, "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"}, @NL80211_UNSOL_BCAST_PROBE_RESP_ATTR_TMPL={0x16, 0x2, "455d8d806d9ed4489a2bf4c59fc500b42c1c"}]}, @NL80211_ATTR_IE_RIC={0x34c, 0xb2, "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"}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0x81}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x9c}, @NL80211_ATTR_S1G_CAPABILITY_MASK={0x44, 0x129, "30e8e11f063402071fcc474075ec388cb056e7ffe517077134791f845966cd12dce9532982bac1deea3df31ab12dd36f211e70df5acaec29a63b12104e77b532"}, @NL80211_ATTR_SCAN_SSIDS={0x124c, 0x2d, 0x0, 0x1, [@generic="9e978dfc5d1a5191d18ce0a4474ea7b2", @nested={0x1fa, 0x125, 0x0, 0x1, [@generic="dd9d4e7be3c0fca11c13235e8062f4866e3bae0bdebf60fadac967017ed61db06b1ee09e0fd00a1fd55fdf0ef115fcbe21422dc6776e7be0f0dbd19c1cbdfff8b44f735bfb1f2b2f3e86fea5da6d28e1d4cd2ed7b5eec718536e283186037a5ed38af9217535869d5f08a3c859f3fec3a6c92c0b87c4c9483d349514f19beb062003699fc81eba8d1b419cd5f5277950ffc92a613741415740b8972f272095c2cbe504adc583f8cbc480a918cf2844c32ae9fbd1dacc2929cc1663c23bdc441eb172c7aa98", @nested={0x4, 0x7b}, @generic="a68d506a4cd5079b1f6e3cf1b7c45d84fe02f008737378460e9e1ea7262b7e57c2fe79be7851011d3ca000ee3ca0262060f94fad6cabd2396f5dd8c5eeec3e59dcf7bd4af16dd3e38e2f45a170f4b2827b4daf4f99a177439e91a08e364c1b3c911b68ed74b12876f420c7eb20d18fdabfb8d24eb54ce992393b25f684f9323632b3cf2266db4bc3c7e51f0fd81f9c127bd371b6350dfb4a2106c72a0113d73fa04072177c3b376591cf8b1a46498fe95f0d1a0bf2ffd27870f805e762806e14cc18", @nested={0x4, 0x124}, @generic="fad2e7ddf98e0664f69eb8b59e2a0148816cffa7b29470b25e6815fca718909d034d4d731505cc701db0f45a6d95ff1554ee10a37d563213f57dd82ca199ef8914e7e9f27fc84c236388a77ea862884215e34c049b90117f4ece07884531b35aca1e4606b9c6ee"]}, @nested={0x32, 0x128, 0x0, 0x1, [@typed={0x14, 0xc, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @typed={0xc, 0xf, 0x0, 0x0, @u64=0x82eb}, @generic="42c785f254ccc518de8272a19895"]}, @typed={0x8, 0xbb, 0x0, 0x0, @fd=r1}, @generic="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"]}]}, 0x1830}, 0x1, 0x0, 0x0, 0x8040}, 0x4010)
r3 = socket(0x2, 0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'bond_slave_1\x00', <r4=>0x0})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4004804)
write$auto(r0, &(0x7f0000000000)='*\x00', 0xfd)

641.775487ms ago: executing program 6 (id=4879):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4044000}, 0x800)
mmap$auto(0x0, 0xf, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
removexattrat$auto(0xffffffffffffffff, 0x0, 0x5f, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYRES8=r0, @ANYRES16=r0, @ANYBLOB="01002dbd7000fedbdf2505000000e6000400110008002e00", @ANYRES16, @ANYRES64=0x0], 0xfc}, 0x1, 0x0, 0x0, 0x400d0}, 0x50)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x1, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_DROP(r1, 0x40045730, 0x0)
socket(0x10, 0x3, 0x6)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8)
open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154)
fcntl$auto(0x3, 0x400, 0x1)
fcntl$auto(0x3, 0x8, 0x9ebfffffffffffff)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(0x3, 0x400, 0x9ec0000000000000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r2 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r2, 0x0, 0x29, 0x0, &(0x7f0000000040)=0x3)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

410.245475ms ago: executing program 2 (id=4880):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r0)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x28, r1, 0x1, 0x70bd2a, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x10, 0x1, 0x0, 0x1, [@nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0x88, 0x0, 0x0, @pid}]}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x4000080)

393.76028ms ago: executing program 6 (id=4881):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0x5c8)
mmap$auto(0x0, 0xb, 0xffb, 0x8000000008011, 0x3, 0x10000000000)
ioctl$auto_SNDCTL_DSP_SYNC(0xffffffffffffffff, 0x5001, 0x7)

229.314439ms ago: executing program 2 (id=4882):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ptmx\x00', 0x189000, 0x0)
landlock_restrict_self$auto(0xffffffffffffffff, 0x80000000)
read$auto(0x3, 0x0, 0x400000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000)
ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0)

228.159438ms ago: executing program 6 (id=4883):
r0 = openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xb, 0x8000)
r1 = syz_clone3(&(0x7f0000000300)={0x800, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), {0x25}, &(0x7f0000000180)=""/74, 0x4a, &(0x7f0000000200)=""/155, &(0x7f00000002c0)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2}, 0x58)
capset$auto(&(0x7f0000000380)={0x8, r1}, 0x0)
r2 = socket(0x2, 0x5, 0x0)
setsockopt$auto(r2, 0x0, 0x82, 0x0, 0x410000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
bind$auto(r0, &(0x7f0000000040)=@generic={0x6, "9825e1b86a47e22aac018d83696a"}, 0x81)
ioctl$auto(r3, 0x5605, 0x100000000000afcb)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
mbind$auto(0xf000, 0x8000000000000001, 0x100008000, 0x0, 0x6, 0x2)
r4 = openat$auto_fops_init_pkru_pkeys(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$auto_fops_init_pkru_pkeys(r4, 0x0, 0x2b)
sched_get_priority_min$auto(0x8)

36.952097ms ago: executing program 6 (id=4884):
mmap$auto(0x0, 0xfffffffffffffffe, 0xdf, 0xebf, 0x10040000000000a5, 0x38d1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(r0, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity_list\x00', 0x129542, 0x0)
setsockopt$auto(0x6, 0x6, 0x9, &(0x7f0000000040)='n\x00\x00\x00\b\x00\x00\x00\x00>', 0x10001)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/net\x00')
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
read$auto_def_blk_fops_fs(r1, &(0x7f0000000140)=""/194, 0xc2)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
io_uring_setup$auto(0x16, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x840000000002, 0x3, 0xff)
r2 = socket(0x11, 0x80003, 0x300)
futex$auto(0x0, 0x6, 0x6, 0x0, 0x0, 0x9)
setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x4)
mmap$auto(0x0, 0x2020009, 0x1, 0xeb1, 0x7ff, 0x8000)
connect$auto(0x3, &(0x7f0000000040), 0x55)
write$auto(0x3, 0x0, 0xfdf3)
r3 = getuid()
r4 = geteuid()
setresuid$auto(r3, r4, 0xee01)
recvmmsg$auto(r1, 0x0, 0x6, 0x2, 0x0)

0s ago: executing program 1 (id=4885):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_ETHTOOL_MSG_STATS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x14, 0x0, 0x1, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20004000}, 0x40040a2)
socket(0xa, 0x801, 0x100)
socket(0x29, 0x1, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, 0x0, 0x1fe, 0x81)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a000500d71aed11187c00000a000100987874e64b8700000a0001007572c85c318e0000060007000400000008000200", @ANYRES32=0x0, @ANYBLOB='\n\x00'], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x22, 0x940, 0x1ffde, 0x3, 0x6, 0x8000002, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, [0x0, 0x0, 0x0, 0x243efbdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe6e]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)

kernel console output (not intermixed with test programs):

08: 0000000000000000 R09: 0000000000000000
[  652.647289][T18001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  652.655270][T18001] R13: 0000000000000000 R14: 00007f0f1c576080 R15: 00007ffebfff0418
[  652.663264][T18001]  </TASK>
[  652.808356][T18007] netlink: 326 bytes leftover after parsing attributes in process `syz.2.3071'.
[  652.821460][T18007] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3071'.
[  653.700220][T18017] netlink: 334 bytes leftover after parsing attributes in process `syz.1.3074'.
[  653.798384][T18021] Process accounting resumed
[  654.113356][T18027] netlink: 'syz.6.3079': attribute type 11 has an invalid length.
[  654.179725][T18031] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  654.766353][T18054] netlink: 326 bytes leftover after parsing attributes in process `syz.1.3086'.
[  654.804551][T18054] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3086'.
[  656.157319][T18081] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  656.267696][T18081] CIFS mount error: No usable UNC path provided in device string!
[  656.267696][T18081] 
[  656.379781][T18081] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  657.527114][T17699] syz.0.2989 (17699) used greatest stack depth: 18848 bytes left
[  657.788741][T18109] netlink: 326 bytes leftover after parsing attributes in process `syz.6.3103'.
[  657.859853][T18109] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3103'.
[  658.154646][T18117] netlink: 'syz.2.3107': attribute type 46 has an invalid length.
[  659.876837][T18198] netlink: 326 bytes leftover after parsing attributes in process `syz.0.3123'.
[  659.914848][T18198] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3123'.
[  660.142286][T18177] cgroup: fork rejected by pids controller in /syz2
[  660.570360][T18231] netlink: 342 bytes leftover after parsing attributes in process `syz.6.3125'.
[  661.561254][T18258] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3132'.
[  661.763511][T18265] netlink: 326 bytes leftover after parsing attributes in process `syz.6.3136'.
[  661.817092][T18265] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3136'.
[  662.751638][T18290] FAULT_INJECTION: forcing a failure.
[  662.751638][T18290] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  662.797847][T18290] CPU: 0 UID: 0 PID: 18290 Comm: syz.6.3143 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  662.808665][T18290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  662.818730][T18290] Call Trace:
[  662.822008][T18290]  <TASK>
[  662.824936][T18290]  dump_stack_lvl+0x16c/0x1f0
[  662.829627][T18290]  should_fail_ex+0x497/0x5b0
[  662.834317][T18290]  strncpy_from_user+0x3b/0x2d0
[  662.839178][T18290]  getname_flags.part.0+0x8f/0x550
[  662.844308][T18290]  getname+0x8d/0xe0
[  662.848209][T18290]  do_sys_openat2+0x104/0x1e0
[  662.852899][T18290]  ? __pfx_do_sys_openat2+0x10/0x10
[  662.858114][T18290]  ? __fget_files+0x206/0x3a0
[  662.862806][T18290]  __x64_sys_openat+0x175/0x210
[  662.867681][T18290]  ? __pfx___x64_sys_openat+0x10/0x10
[  662.873084][T18290]  ? ksys_write+0x1ba/0x250
[  662.877613][T18290]  do_syscall_64+0xcd/0x250
[  662.882138][T18290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  662.888044][T18290] RIP: 0033:0x7fe8c8585d19
[  662.892462][T18290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  662.912079][T18290] RSP: 002b:00007fe8c945f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  662.920505][T18290] RAX: ffffffffffffffda RBX: 00007fe8c8775fa0 RCX: 00007fe8c8585d19
[  662.928483][T18290] RDX: 0000000000080342 RSI: 0000000020000180 RDI: ffffffffffffff9c
[  662.936454][T18290] RBP: 00007fe8c945f090 R08: 0000000000000000 R09: 0000000000000000
[  662.944429][T18290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  662.952411][T18290] R13: 0000000000000001 R14: 00007fe8c8775fa0 R15: 00007ffde27f5b18
[  662.960406][T18290]  </TASK>
[  663.536958][T18307] CIFS mount error: No usable UNC path provided in device string!
[  663.536958][T18307] 
[  663.577660][T18307] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  664.047681][   T29] audit: type=1800 audit(4294967457.080:30): pid=18296 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3144" name="SYSV00000014" dev="hugetlbfs" ino=0 res=0 errno=0
[  666.077494][T18341] netlink: 'syz.1.3155': attribute type 2 has an invalid length.
[  666.567240][T18361] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3162'.
[  666.888036][T18367] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  667.385798][T18376] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3167'.
[  672.697871][T18444] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3180'.
[  672.919181][T18444] bond0: (slave bond_slave_0): Releasing backup interface
[  673.248504][T18460] openvswitch: HSR: Dropping previously announced user features
[  673.297681][T18462] openvswitch: HSR: Dropping previously announced user features
[  673.772927][T18486] lo: entered allmulticast mode
[  673.844306][T18489] lo: left allmulticast mode
[  675.624457][T18536] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3207'.
[  675.696554][T18536] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  675.768322][T18542] ptrace attach of "./syz-executor exec"[11245] was attempted by "./syz-executor exec"[18542]
[  675.781358][T18536] batman_adv: batadv0: Removing interface: batadv_slave_0
[  675.833640][T18539] mmap: syz.2.3209 (18539): VmData 37601280 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data.
[  675.837010][T18536] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  675.937118][T18536] batman_adv: batadv0: Removing interface: batadv_slave_1
[  676.229486][T18555] FAULT_INJECTION: forcing a failure.
[  676.229486][T18555] name failslab, interval 1, probability 0, space 0, times 0
[  676.283475][T18555] CPU: 1 UID: 0 PID: 18555 Comm: syz.1.3212 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  676.294299][T18555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  676.294502][T18557] __vm_enough_memory: pid: 18557, comm: syz.2.3213, bytes: 4503599627366400 not enough memory for the allocation
[  676.304362][T18555] Call Trace:
[  676.304394][T18555]  <TASK>
[  676.304406][T18555]  dump_stack_lvl+0x16c/0x1f0
[  676.327206][T18555]  should_fail_ex+0x497/0x5b0
[  676.331922][T18555]  ? fs_reclaim_acquire+0xae/0x150
[  676.337070][T18555]  should_failslab+0xc2/0x120
[  676.341791][T18555]  __kmalloc_cache_noprof+0x68/0x420
[  676.347113][T18555]  ? __pfx___lock_acquire+0x10/0x10
[  676.352357][T18555]  handle_policy_update+0xaf/0x11e0
[  676.357595][T18555]  ? __pfx_handle_policy_update+0x10/0x10
[  676.363343][T18555]  ? apparmor_capable+0x114/0x1d0
[  676.368408][T18555]  ? bpf_lsm_capable+0x9/0x10
[  676.373110][T18555]  ? security_capable+0x7e/0x260
[  676.378088][T18555]  safesetid_gid_file_write+0x87/0xc0
[  676.383494][T18555]  ? __pfx_safesetid_gid_file_write+0x10/0x10
[  676.389609][T18555]  vfs_write+0x24c/0x1150
[  676.393974][T18555]  ? __fget_files+0x1fc/0x3a0
[  676.398684][T18555]  ? __pfx___mutex_lock+0x10/0x10
[  676.403740][T18555]  ? __pfx_vfs_write+0x10/0x10
[  676.408543][T18555]  ? __fget_files+0x206/0x3a0
[  676.413260][T18555]  ksys_write+0x12b/0x250
[  676.417618][T18555]  ? __pfx_ksys_write+0x10/0x10
[  676.422505][T18555]  do_syscall_64+0xcd/0x250
[  676.427043][T18555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  676.432968][T18555] RIP: 0033:0x7f0f1c385d19
[  676.437408][T18555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  676.457048][T18555] RSP: 002b:00007f0f1d101038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  676.465498][T18555] RAX: ffffffffffffffda RBX: 00007f0f1c575fa0 RCX: 00007f0f1c385d19
[  676.473504][T18555] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  676.481517][T18555] RBP: 00007f0f1d101090 R08: 0000000000000000 R09: 0000000000000000
[  676.489526][T18555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  676.497532][T18555] R13: 0000000000000000 R14: 00007f0f1c575fa0 R15: 00007ffebfff0418
[  676.505552][T18555]  </TASK>
[  676.710199][T18564] rtc_cmos 00:00: Alarms can be up to one day in the future
[  677.427747][T18583] netlink: 326 bytes leftover after parsing attributes in process `syz.6.3223'.
[  677.439872][T18583] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3223'.
[  677.615620][T18581] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3222'.
[  677.794615][T18581] bond0: (slave bond_slave_0): Releasing backup interface
[  679.360616][T18608] mtrr: base(0x65000) is not aligned on a size(0x0000) boundary
[  679.870767][T18620] netlink: 'syz.0.3233': attribute type 27 has an invalid length.
[  679.897783][T18620] netlink: 334 bytes leftover after parsing attributes in process `syz.0.3233'.
[  680.148831][T18628] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3235'.
[  680.348731][T18628] bond0: (slave bond_slave_0): Releasing backup interface
[  680.356482][T18633] netlink: 326 bytes leftover after parsing attributes in process `syz.2.3236'.
[  680.450264][T18634] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3236'.
[  681.555799][T18663] __vm_enough_memory: pid: 18663, comm: syz.0.3247, bytes: 4503599627366400 not enough memory for the allocation
[  681.808317][T18669] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3251'.
[  682.353796][T18683] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3256'.
[  682.374566][T18683] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  682.394799][T18683] batman_adv: batadv0: Removing interface: batadv_slave_0
[  682.402791][T18685] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3257'.
[  682.419880][T18683] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  682.427426][T18685] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  682.448177][T18683] batman_adv: batadv0: Removing interface: batadv_slave_1
[  682.455356][T18685] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  682.737972][T18692] CIFS: VFS: Invalid SecurityFlags:  (errno 9)
[  682.737972][T18692] 
[  682.820156][T18695] netlink: 326 bytes leftover after parsing attributes in process `syz.6.3259'.
[  682.864440][T18695] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3259'.
[  683.062068][T18700] FAULT_INJECTION: forcing a failure.
[  683.062068][T18700] name failslab, interval 1, probability 0, space 0, times 0
[  683.123405][T18700] CPU: 1 UID: 0 PID: 18700 Comm: syz.1.3261 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  683.134235][T18700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  683.144314][T18700] Call Trace:
[  683.147612][T18700]  <TASK>
[  683.150564][T18700]  dump_stack_lvl+0x16c/0x1f0
[  683.155281][T18700]  should_fail_ex+0x497/0x5b0
[  683.159990][T18700]  ? fs_reclaim_acquire+0xae/0x150
[  683.165136][T18700]  should_failslab+0xc2/0x120
[  683.169876][T18700]  __kmalloc_node_noprof+0xd1/0x520
[  683.175117][T18700]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  683.180618][T18700]  ? __pfx_lock_release+0x10/0x10
[  683.185688][T18700]  __kvmalloc_node_noprof+0xad/0x1a0
[  683.191022][T18700]  seq_read_iter+0x82a/0x12b0
[  683.195748][T18700]  seq_read+0x39f/0x4e0
[  683.199937][T18700]  ? __pfx_seq_read+0x10/0x10
[  683.204667][T18700]  ? __pfx_seq_read+0x10/0x10
[  683.209370][T18700]  proc_reg_read+0x23d/0x330
[  683.213989][T18700]  ? __pfx_proc_reg_read+0x10/0x10
[  683.219135][T18700]  vfs_read+0x1df/0xbe0
[  683.223332][T18700]  ? __fget_files+0x1fc/0x3a0
[  683.228039][T18700]  ? __pfx___mutex_lock+0x10/0x10
[  683.233109][T18700]  ? __pfx_vfs_read+0x10/0x10
[  683.237803][T18700]  ? __fget_files+0x206/0x3a0
[  683.242494][T18700]  ksys_read+0x12b/0x250
[  683.246746][T18700]  ? __pfx_ksys_read+0x10/0x10
[  683.251528][T18700]  do_syscall_64+0xcd/0x250
[  683.256049][T18700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  683.261955][T18700] RIP: 0033:0x7f0f1c385d19
[  683.266382][T18700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  683.286003][T18700] RSP: 002b:00007f0f1d101038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  683.294426][T18700] RAX: ffffffffffffffda RBX: 00007f0f1c575fa0 RCX: 00007f0f1c385d19
[  683.302405][T18700] RDX: 00000000000000c0 RSI: 0000000020000040 RDI: 0000000000000003
[  683.310378][T18700] RBP: 00007f0f1d101090 R08: 0000000000000000 R09: 0000000000000000
[  683.318351][T18700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  683.326325][T18700] R13: 0000000000000000 R14: 00007f0f1c575fa0 R15: 00007ffebfff0418
[  683.334314][T18700]  </TASK>
[  683.337381][    C1] vkms_vblank_simulate: vblank timer overrun
[  684.071282][T18716] scsi_strcpy_devinfo: vendor string ';íÙ/&cŒÀ' is too long
[  684.124068][   T29] audit: type=1800 audit(4294967477.160:31): pid=18717 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3272" name="discovery_nqn" dev="configfs" ino=59708 res=0 errno=0
[  684.141473][T18716] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3272'.
[  684.144870][    C1] vkms_vblank_simulate: vblank timer overrun
[  685.449142][T18740] openvswitch: netlink: Key type 261 is out of range max 32
[  685.927980][T18754] TCP: TCP_TX_DELAY enabled
[  686.120775][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  686.123010][T18755] __nla_validate_parse: 1 callbacks suppressed
[  686.123028][T18755] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3274'.
[  686.127149][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  686.201541][T18758] Process accounting resumed
[  686.329261][T18766] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3286'.
[  687.738618][T18795] Invalid ELF header magic: != ELF
[  687.930382][T18806] bridge0: port 3(team0) entered blocking state
[  687.936902][T18806] bridge0: port 3(team0) entered disabled state
[  687.965839][T18806] team0: entered allmulticast mode
[  687.971868][T18806] team_slave_0: entered allmulticast mode
[  687.998678][T18806] team0: entered promiscuous mode
[  688.007740][T18806] team_slave_0: entered promiscuous mode
[  688.043715][T18806] bridge0: port 3(team0) entered blocking state
[  688.050225][T18806] bridge0: port 3(team0) entered forwarding state
[  688.283189][T18810] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3289'.
[  688.999070][T18824] FAULT_INJECTION: forcing a failure.
[  688.999070][T18824] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  689.069401][T18824] CPU: 0 UID: 0 PID: 18824 Comm: syz.1.3291 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  689.080237][T18824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  689.090321][T18824] Call Trace:
[  689.093883][T18824]  <TASK>
[  689.096843][T18824]  dump_stack_lvl+0x16c/0x1f0
[  689.101559][T18824]  should_fail_ex+0x497/0x5b0
[  689.106275][T18824]  ? fs_reclaim_acquire+0xae/0x150
[  689.111426][T18824]  should_fail_alloc_page+0xe7/0x130
[  689.116758][T18824]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  689.122951][T18824]  __alloc_pages_noprof+0x190/0x25b0
[  689.128281][T18824]  ? __lock_acquire+0x2077/0x3c40
[  689.133365][T18824]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  689.139124][T18824]  ? __pfx___lock_acquire+0x10/0x10
[  689.144361][T18824]  ? do_raw_spin_lock+0x12d/0x2c0
[  689.149436][T18824]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  689.155097][T18824]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  689.161029][T18824]  ? policy_nodemask+0xea/0x4e0
[  689.165922][T18824]  alloc_pages_mpol_noprof+0x2c9/0x610
[  689.171427][T18824]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  689.177448][T18824]  ? down_write+0x14e/0x200
[  689.182001][T18824]  tracing_splice_read_pipe+0x38c/0xdc0
[  689.187603][T18824]  ? __pfx_tracing_splice_read_pipe+0x10/0x10
[  689.193719][T18824]  ? __pfx_tracing_spd_release_pipe+0x10/0x10
[  689.199828][T18824]  ? lock_acquire.part.0+0x11b/0x380
[  689.205848][T18824]  ? __pfx___mutex_trylock_common+0x10/0x10
[  689.211774][T18824]  ? pipe_lock+0x64/0x80
[  689.216080][T18824]  ? trace_lock_acquire+0x14e/0x1f0
[  689.221319][T18824]  ? lock_acquire+0x2f/0xb0
[  689.225850][T18824]  ? __fget_files+0x40/0x3a0
[  689.230479][T18824]  ? __pfx_tracing_splice_read_pipe+0x10/0x10
[  689.236582][T18824]  do_splice_read+0x282/0x370
[  689.241296][T18824]  splice_file_to_pipe+0x109/0x120
[  689.246441][T18824]  do_sendfile+0x3fd/0xe30
[  689.250891][T18824]  ? __pfx_do_sendfile+0x10/0x10
[  689.255855][T18824]  ? __fget_files+0x206/0x3a0
[  689.260567][T18824]  __x64_sys_sendfile64+0x1da/0x220
[  689.265800][T18824]  ? ksys_write+0x1ba/0x250
[  689.270332][T18824]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  689.276097][T18824]  do_syscall_64+0xcd/0x250
[  689.280644][T18824]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  689.286574][T18824] RIP: 0033:0x7f0f1c385d19
[  689.291022][T18824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  689.310756][T18824] RSP: 002b:00007f0f1d101038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  689.319205][T18824] RAX: ffffffffffffffda RBX: 00007f0f1c575fa0 RCX: 00007f0f1c385d19
[  689.327203][T18824] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001
[  689.335201][T18824] RBP: 00007f0f1d101090 R08: 0000000000000000 R09: 0000000000000000
[  689.343201][T18824] R10: 0000000000000048 R11: 0000000000000246 R12: 0000000000000001
[  689.351197][T18824] R13: 0000000000000000 R14: 00007f0f1c575fa0 R15: 00007ffebfff0418
[  689.359215][T18824]  </TASK>
[  691.017808][T18839] Process accounting resumed
[  691.303167][T18842] FAULT_INJECTION: forcing a failure.
[  691.303167][T18842] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  691.328944][T18844] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3299'.
[  691.342298][T18842] CPU: 0 UID: 0 PID: 18842 Comm: syz.6.3295 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  691.353101][T18842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  691.363176][T18842] Call Trace:
[  691.366474][T18842]  <TASK>
[  691.369426][T18842]  dump_stack_lvl+0x16c/0x1f0
[  691.374144][T18842]  should_fail_ex+0x497/0x5b0
[  691.378861][T18842]  _copy_to_user+0x32/0xd0
[  691.383320][T18842]  simple_read_from_buffer+0xd0/0x160
[  691.388738][T18842]  proc_fail_nth_read+0x198/0x270
[  691.393800][T18842]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  691.399392][T18842]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  691.404983][T18842]  vfs_read+0x1df/0xbe0
[  691.409169][T18842]  ? __fget_files+0x1fc/0x3a0
[  691.413878][T18842]  ? __pfx___mutex_lock+0x10/0x10
[  691.418936][T18842]  ? __pfx_vfs_read+0x10/0x10
[  691.423654][T18842]  ? __fget_files+0x206/0x3a0
[  691.428374][T18842]  ksys_read+0x12b/0x250
[  691.432654][T18842]  ? __pfx_ksys_read+0x10/0x10
[  691.437464][T18842]  do_syscall_64+0xcd/0x250
[  691.442006][T18842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  691.447936][T18842] RIP: 0033:0x7fe8c858472c
[  691.452377][T18842] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  691.472014][T18842] RSP: 002b:00007fe8c941d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  691.480466][T18842] RAX: ffffffffffffffda RBX: 00007fe8c8776160 RCX: 00007fe8c858472c
[  691.488468][T18842] RDX: 000000000000000f RSI: 00007fe8c941d0a0 RDI: 0000000000000003
[  691.496466][T18842] RBP: 00007fe8c941d090 R08: 0000000000000000 R09: 0000000000000002
[  691.504462][T18842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  691.512460][T18842] R13: 0000000000000001 R14: 00007fe8c8776160 R15: 00007ffde27f5b18
[  691.520476][T18842]  </TASK>
[  694.135274][T18887] sctp: [Deprecated]: syz.6.3312 (pid 18887) Use of struct sctp_assoc_value in delayed_ack socket option.
[  694.135274][T18887] Use struct sctp_sack_info instead
[  694.896531][T18917] netlink: 326 bytes leftover after parsing attributes in process `syz.6.3317'.
[  694.926325][T18917] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3317'.
[  695.107913][T18921] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3318'.
[  695.265534][T18885] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3308'.
[  696.641173][T18944] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3323'.
[  697.890032][T18957] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3338'.
[  701.058541][T18998] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3343'.
[  703.096356][T19026] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3350'.
[  705.130875][T19062] netlink: 'syz.0.3359': attribute type 2 has an invalid length.
[  705.579135][T19067] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3362'.
[  705.648906][T19072] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3364'.
[  705.670284][T19072] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3364'.
[  707.606533][T19095] kexec: Could not allocate control_code_buffer
[  710.411615][T19125] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3379'.
[  710.457846][T19125] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3379'.
[  710.652684][T19127] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3380'.
[  714.759411][T19185] : Can't lookup blockdev
[  716.246140][T19210] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3402'.
[  717.077216][T19229] netlink: 330 bytes leftover after parsing attributes in process `syz.0.3407'.
[  718.965425][T19255] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3417'.
[  721.125607][T19301] netlink: 'syz.2.3427': attribute type 4 has an invalid length.
[  721.154252][T19301] netlink: 314 bytes leftover after parsing attributes in process `syz.2.3427'.
[  722.652967][T19324] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3435'.
[  723.749150][T19331] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3436'.
[  729.365023][T19659] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  729.376777][T19659] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  729.390870][T19659] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  729.427409][T19659] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  729.454968][T19659] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  729.466884][T19659] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  730.171494][T19654] chnl_net:caif_netlink_parms(): no params data found
[  730.507121][T19654] bridge0: port 1(bridge_slave_0) entered blocking state
[  730.515094][T19654] bridge0: port 1(bridge_slave_0) entered disabled state
[  730.522722][T19654] bridge_slave_0: entered allmulticast mode
[  730.530459][T19654] bridge_slave_0: entered promiscuous mode
[  730.538349][T19654] bridge0: port 2(bridge_slave_1) entered blocking state
[  730.545472][T19654] bridge0: port 2(bridge_slave_1) entered disabled state
[  730.553062][T19654] bridge_slave_1: entered allmulticast mode
[  730.560228][T19654] bridge_slave_1: entered promiscuous mode
[  730.596307][T19654] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  730.640403][T19654] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  730.795340][T19654] team0: Port device team_slave_0 added
[  730.824774][T19654] team0: Port device team_slave_1 added
[  730.940368][T19654] batman_adv: batadv0: Adding interface: batadv_slave_0
[  730.947409][T19654] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  730.995942][T19654] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  731.019748][T19654] batman_adv: batadv0: Adding interface: batadv_slave_1
[  731.026729][T19654] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  731.091355][T19654] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  731.281537][T19654] hsr_slave_0: entered promiscuous mode
[  731.319352][T19654] hsr_slave_1: entered promiscuous mode
[  731.333361][T19654] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  731.352162][T19654] Cannot create hsr debugfs directory
[  731.564194][T14299] Bluetooth: hci4: command tx timeout
[  731.707129][T19654] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  731.900312][T19654] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  732.072639][T19654] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  732.219266][T19654] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  732.423308][T19654] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  732.445833][T19654] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  732.455767][T19654] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  732.473034][T19654] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  732.742651][T19654] 8021q: adding VLAN 0 to HW filter on device bond0
[  732.793357][T19654] 8021q: adding VLAN 0 to HW filter on device team0
[  732.849945][   T81] bridge0: port 1(bridge_slave_0) entered blocking state
[  732.857110][   T81] bridge0: port 1(bridge_slave_0) entered forwarding state
[  732.899548][ T1334] bridge0: port 2(bridge_slave_1) entered blocking state
[  732.906684][ T1334] bridge0: port 2(bridge_slave_1) entered forwarding state
[  733.410857][T19654] 8021q: adding VLAN 0 to HW filter on device batadv0
[  733.531626][T19654] veth0_vlan: entered promiscuous mode
[  733.575584][T19654] veth1_vlan: entered promiscuous mode
[  733.625161][T19654] veth0_macvtap: entered promiscuous mode
[  733.641075][T14299] Bluetooth: hci4: command tx timeout
[  733.654266][T19654] veth1_macvtap: entered promiscuous mode
[  733.671230][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  733.682932][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  733.693613][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  733.704323][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  733.714294][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  733.727643][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  733.746428][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  733.765867][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  733.792818][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  733.826238][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  733.872023][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  733.915800][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  733.935852][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  733.957243][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  733.987052][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  734.011886][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.065927][T19654] batman_adv: batadv0: Interface activated: batadv_slave_0
[  734.106300][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.118243][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.164011][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.205306][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.233198][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.276012][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.308346][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.328000][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.367082][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.406264][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.434469][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.463126][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.508968][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.537635][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.565151][T19654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.586072][T19654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.629158][T19654] batman_adv: batadv0: Interface activated: batadv_slave_1
[  734.676284][T19654] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  734.695965][T19654] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  734.726457][T19654] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  734.769009][T19654] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  734.928384][ T1334] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  734.936269][ T1334] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  735.048382][ T1334] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  735.078022][ T1334] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  735.568819][T19987] FAULT_INJECTION: forcing a failure.
[  735.568819][T19987] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  735.633534][T19987] CPU: 1 UID: 0 PID: 19987 Comm: syz.2.3992 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  735.644365][T19987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  735.654443][T19987] Call Trace:
[  735.657744][T19987]  <TASK>
[  735.660690][T19987]  dump_stack_lvl+0x16c/0x1f0
[  735.665399][T19987]  should_fail_ex+0x497/0x5b0
[  735.670128][T19987]  _copy_from_user+0x2e/0xd0
[  735.674758][T19987]  move_addr_to_kernel+0x68/0x160
[  735.679809][T19987]  __sys_connect+0xb0/0x170
[  735.684339][T19987]  ? __pfx___sys_connect+0x10/0x10
[  735.689503][T19987]  ? __pfx_ksys_write+0x10/0x10
[  735.694392][T19987]  __x64_sys_connect+0x72/0xb0
[  735.699189][T19987]  ? lockdep_hardirqs_on+0x7c/0x110
[  735.704418][T19987]  do_syscall_64+0xcd/0x250
[  735.708956][T19987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  735.714878][T19987] RIP: 0033:0x7fa6edd85d19
[  735.719316][T19987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  735.738959][T19987] RSP: 002b:00007fa6eebaa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  735.747411][T19987] RAX: ffffffffffffffda RBX: 00007fa6edf75fa0 RCX: 00007fa6edd85d19
[  735.755410][T19987] RDX: 0000000000000054 RSI: 0000000020000080 RDI: 0000000000000003
[  735.763404][T19987] RBP: 00007fa6eebaa090 R08: 0000000000000000 R09: 0000000000000000
[  735.771400][T19987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  735.779398][T19987] R13: 0000000000000000 R14: 00007fa6edf75fa0 R15: 00007ffc117c8148
[  735.787414][T19987]  </TASK>
[  735.809439][T14299] Bluetooth: hci4: command tx timeout
[  735.998369][T19659] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  736.042230][T19659] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  736.055496][T19659] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  736.077379][T19659] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  736.088336][T19659] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  736.094804][T20004] FAULT_INJECTION: forcing a failure.
[  736.094804][T20004] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  736.108907][T19659] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  736.111819][T20004] CPU: 1 UID: 0 PID: 20004 Comm: syz.2.4004 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  736.126655][T20004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  736.136738][T20004] Call Trace:
[  736.140040][T20004]  <TASK>
[  736.142997][T20004]  dump_stack_lvl+0x16c/0x1f0
[  736.147721][T20004]  should_fail_ex+0x497/0x5b0
[  736.152444][T20004]  _copy_from_user+0x2e/0xd0
[  736.157078][T20004]  snd_rawmidi_kernel_write1+0x35e/0x860
[  736.162760][T20004]  ? _raw_spin_unlock_irq+0x23/0x50
[  736.167997][T20004]  snd_rawmidi_write+0x267/0xbe0
[  736.172979][T20004]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  736.178476][T20004]  ? apparmor_file_permission+0x251/0x400
[  736.184238][T20004]  ? bpf_lsm_file_permission+0x9/0x10
[  736.189652][T20004]  ? security_file_permission+0x71/0x210
[  736.195320][T20004]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  736.200818][T20004]  vfs_writev+0x6da/0xdd0
[  736.205175][T20004]  ? find_held_lock+0x2d/0x110
[  736.209983][T20004]  ? __pfx_vfs_writev+0x10/0x10
[  736.214861][T20004]  ? find_held_lock+0x2d/0x110
[  736.219665][T20004]  ? __pfx_lock_release+0x10/0x10
[  736.224728][T20004]  ? trace_lock_acquire+0x14e/0x1f0
[  736.229968][T20004]  ? __fget_files+0x206/0x3a0
[  736.234679][T20004]  ? do_writev+0x297/0x340
[  736.239121][T20004]  do_writev+0x297/0x340
[  736.243402][T20004]  ? __pfx_do_writev+0x10/0x10
[  736.248209][T20004]  do_syscall_64+0xcd/0x250
[  736.252754][T20004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  736.258687][T20004] RIP: 0033:0x7fa6edd85d19
[  736.263152][T20004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  736.282805][T20004] RSP: 002b:00007fa6eebaa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  736.291249][T20004] RAX: ffffffffffffffda RBX: 00007fa6edf75fa0 RCX: 00007fa6edd85d19
[  736.299242][T20004] RDX: 0000000000000005 RSI: 0000000020000080 RDI: 0000000000000004
[  736.307240][T20004] RBP: 00007fa6eebaa090 R08: 0000000000000000 R09: 0000000000000000
[  736.315237][T20004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  736.323232][T20004] R13: 0000000000000000 R14: 00007fa6edf75fa0 R15: 00007ffc117c8148
[  736.331241][T20004]  </TASK>
[  736.534209][T20021] FAULT_INJECTION: forcing a failure.
[  736.534209][T20021] name failslab, interval 1, probability 0, space 0, times 0
[  736.547579][T20021] CPU: 0 UID: 0 PID: 20021 Comm: syz.2.4015 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  736.558371][T20021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  736.568448][T20021] Call Trace:
[  736.571749][T20021]  <TASK>
[  736.574684][T20021]  dump_stack_lvl+0x16c/0x1f0
[  736.579386][T20021]  should_fail_ex+0x497/0x5b0
[  736.584100][T20021]  ? rcu_is_watching+0x12/0xc0
[  736.588927][T20021]  should_failslab+0xc2/0x120
[  736.593657][T20021]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  736.599069][T20021]  ? lock_acquire+0x2f/0xb0
[  736.603599][T20021]  ? sctp_get_port_local+0x3af/0x1650
[  736.609006][T20021]  ? sctp_get_port_local+0xba4/0x1650
[  736.614420][T20021]  sctp_get_port_local+0xba4/0x1650
[  736.619661][T20021]  ? __pfx_sctp_get_port_local+0x10/0x10
[  736.625323][T20021]  ? lock_acquire+0x2f/0xb0
[  736.629858][T20021]  ? sctp_bind_addr_match+0x43/0x300
[  736.635192][T20021]  ? sctp_bind_addr_match+0x19d/0x300
[  736.640618][T20021]  sctp_do_bind+0x223/0x700
[  736.645166][T20021]  sctp_connect_new_asoc+0x5ff/0x790
[  736.650485][T20021]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  736.656332][T20021]  ? mark_held_locks+0x9f/0xe0
[  736.661138][T20021]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  736.666729][T20021]  sctp_sendmsg+0x162a/0x1f10
[  736.671436][T20021]  ? __pfx___lock_acquire+0x10/0x10
[  736.676674][T20021]  ? __pfx_sctp_sendmsg+0x10/0x10
[  736.681758][T20021]  ? __pfx_aa_sk_perm+0x10/0x10
[  736.686653][T20021]  ? __pfx_sctp_sendmsg+0x10/0x10
[  736.691710][T20021]  inet_sendmsg+0x119/0x140
[  736.696245][T20021]  __sys_sendto+0x42a/0x4f0
[  736.700812][T20021]  ? __pfx___sys_sendto+0x10/0x10
[  736.705914][T20021]  ? ksys_write+0x1ba/0x250
[  736.710469][T20021]  ? __pfx_ksys_write+0x10/0x10
[  736.715394][T20021]  __x64_sys_sendto+0xe0/0x1c0
[  736.720305][T20021]  ? do_syscall_64+0x91/0x250
[  736.725023][T20021]  ? lockdep_hardirqs_on+0x7c/0x110
[  736.730261][T20021]  do_syscall_64+0xcd/0x250
[  736.734919][T20021]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  736.740870][T20021] RIP: 0033:0x7fa6edd85d19
[  736.745315][T20021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  736.764948][T20021] RSP: 002b:00007fa6eebaa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  736.773392][T20021] RAX: ffffffffffffffda RBX: 00007fa6edf75fa0 RCX: 00007fa6edd85d19
[  736.781386][T20021] RDX: 0000000000000401 RSI: 0000000000000000 RDI: 0000000000000005
[  736.789382][T20021] RBP: 00007fa6eebaa090 R08: 0000000020000000 R09: 000000000000001c
[  736.797383][T20021] R10: 0000000000000101 R11: 0000000000000246 R12: 0000000000000001
[  736.805387][T20021] R13: 0000000000000000 R14: 00007fa6edf75fa0 R15: 00007ffc117c8148
[  736.813418][T20021]  </TASK>
[  736.951757][T20034] ptrace attach of "./syz-executor exec"[19654] was attempted by "./syz-executor exec"[20034]
[  737.031309][T19998] chnl_net:caif_netlink_parms(): no params data found
[  737.421181][T19998] bridge0: port 1(bridge_slave_0) entered blocking state
[  737.456478][T19998] bridge0: port 1(bridge_slave_0) entered disabled state
[  737.467792][T19998] bridge_slave_0: entered allmulticast mode
[  737.496005][T19998] bridge_slave_0: entered promiscuous mode
[  737.523579][T19998] bridge0: port 2(bridge_slave_1) entered blocking state
[  737.534142][T19998] bridge0: port 2(bridge_slave_1) entered disabled state
[  737.554960][T19998] bridge_slave_1: entered allmulticast mode
[  737.564182][T19998] bridge_slave_1: entered promiscuous mode
[  737.662400][T19998] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  737.699695][T19998] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  737.799613][T19998] team0: Port device team_slave_0 added
[  737.849335][T19998] team0: Port device team_slave_1 added
[  737.877718][T19659] Bluetooth: hci4: command tx timeout
[  737.943416][T19998] batman_adv: batadv0: Adding interface: batadv_slave_0
[  737.968284][T19998] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  738.000682][T19998] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  738.056904][T19998] batman_adv: batadv0: Adding interface: batadv_slave_1
[  738.090839][T19998] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  738.150041][T19998] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  738.208464][T19659] Bluetooth: hci1: command tx timeout
[  738.351286][T19998] hsr_slave_0: entered promiscuous mode
[  738.427504][T19998] hsr_slave_1: entered promiscuous mode
[  738.457734][T19998] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  738.465363][T19998] Cannot create hsr debugfs directory
[  738.930860][T19998] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  739.053250][T19998] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  739.382016][T19998] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  739.605183][T19998] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  739.886373][T19998] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  739.950161][T19998] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  739.991645][T19998] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  740.040326][T19998] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  740.218104][T19998] 8021q: adding VLAN 0 to HW filter on device bond0
[  740.266983][T19998] 8021q: adding VLAN 0 to HW filter on device team0
[  740.286362][T19659] Bluetooth: hci1: command tx timeout
[  740.294327][T12280] bridge0: port 1(bridge_slave_0) entered blocking state
[  740.301457][T12280] bridge0: port 1(bridge_slave_0) entered forwarding state
[  740.326197][T12280] bridge0: port 2(bridge_slave_1) entered blocking state
[  740.333350][T12280] bridge0: port 2(bridge_slave_1) entered forwarding state
[  740.441159][T19998] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  740.452092][T19998] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  740.913164][T19998] 8021q: adding VLAN 0 to HW filter on device batadv0
[  741.034755][T19998] veth0_vlan: entered promiscuous mode
[  741.063849][T19998] veth1_vlan: entered promiscuous mode
[  741.137319][T19998] veth0_macvtap: entered promiscuous mode
[  741.185825][T19998] veth1_macvtap: entered promiscuous mode
[  741.212071][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  741.229757][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.288280][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  741.308178][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.318945][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  741.329920][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.339892][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  741.350630][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.361185][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  741.372126][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.382051][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  741.392562][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.402759][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  741.413514][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.423763][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  741.434462][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.444335][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  741.455196][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.468197][T19998] batman_adv: batadv0: Interface activated: batadv_slave_0
[  741.484391][T20201] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4161'.
[  741.507056][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  741.519238][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.537734][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  741.557084][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.568979][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  741.580442][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.591693][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  741.605299][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.632421][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  741.662322][T20207] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4162'.
[  741.723805][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.733784][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  741.744588][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.754532][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  741.765221][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.775307][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  741.785792][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.795671][T19998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  741.806388][T19998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.818161][T19998] batman_adv: batadv0: Interface activated: batadv_slave_1
[  741.968133][T19998] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  741.976897][T19998] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  741.994241][T19998] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  742.004495][T19998] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  742.262376][T12280] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  742.302107][T12280] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  742.358024][T19659] Bluetooth: hci1: command tx timeout
[  742.508476][ T1334] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  742.545469][ T1334] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  743.443284][T20250] Process accounting resumed
[  743.501965][T20259] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4186'.
[  744.439047][T19659] Bluetooth: hci1: command tx timeout
[  745.376528][T14299] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  745.387395][T14299] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  745.395975][T14299] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  745.404939][T14299] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  745.414907][T14299] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  745.422344][T14299] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  745.984194][T20322] chnl_net:caif_netlink_parms(): no params data found
[  746.389462][T20322] bridge0: port 1(bridge_slave_0) entered blocking state
[  746.403670][T20322] bridge0: port 1(bridge_slave_0) entered disabled state
[  746.418041][T20322] bridge_slave_0: entered allmulticast mode
[  746.430099][T20322] bridge_slave_0: entered promiscuous mode
[  746.449368][T20322] bridge0: port 2(bridge_slave_1) entered blocking state
[  746.456635][T20322] bridge0: port 2(bridge_slave_1) entered disabled state
[  746.472571][T20322] bridge_slave_1: entered allmulticast mode
[  746.486707][T20322] bridge_slave_1: entered promiscuous mode
[  746.594025][T20322] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  746.631282][T20322] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  746.761664][T20322] team0: Port device team_slave_0 added
[  746.791962][T20322] team0: Port device team_slave_1 added
[  746.823650][T20341] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4249'.
[  746.862170][T20322] batman_adv: batadv0: Adding interface: batadv_slave_0
[  746.877757][T20322] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  746.903701][    C1] vkms_vblank_simulate: vblank timer overrun
[  746.936433][T20322] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  746.990046][T20322] batman_adv: batadv0: Adding interface: batadv_slave_1
[  747.017364][T20322] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  747.060083][T20322] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  747.124386][T20322] hsr_slave_0: entered promiscuous mode
[  747.157466][T20322] hsr_slave_1: entered promiscuous mode
[  747.217808][T20322] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  747.225438][T20322] Cannot create hsr debugfs directory
[  747.478784][T19659] Bluetooth: hci2: command tx timeout
[  747.505237][T20322] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  747.559989][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  747.566616][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  747.610752][T20322] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  747.788877][T20322] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  747.898982][T20322] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  748.205731][T20322] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  748.274525][T20322] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  748.318266][T20322] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  748.340663][T20322] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  748.495669][T20322] 8021q: adding VLAN 0 to HW filter on device bond0
[  748.549294][T20322] 8021q: adding VLAN 0 to HW filter on device team0
[  748.597332][T12307] bridge0: port 1(bridge_slave_0) entered blocking state
[  748.604534][T12307] bridge0: port 1(bridge_slave_0) entered forwarding state
[  748.649306][T12307] bridge0: port 2(bridge_slave_1) entered blocking state
[  748.656470][T12307] bridge0: port 2(bridge_slave_1) entered forwarding state
[  748.771761][T20322] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  749.085582][T20322] 8021q: adding VLAN 0 to HW filter on device batadv0
[  749.130327][T20322] veth0_vlan: entered promiscuous mode
[  749.143469][T20322] veth1_vlan: entered promiscuous mode
[  749.173312][T20322] veth0_macvtap: entered promiscuous mode
[  749.186255][T20322] veth1_macvtap: entered promiscuous mode
[  749.223881][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  749.238007][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.248505][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  749.259593][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.272672][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  749.283531][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.294328][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  749.306551][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.316873][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  749.328299][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.338555][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  749.349937][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.360156][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  749.371000][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.381148][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  749.393751][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.404230][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  749.415260][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.444933][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  749.455777][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.478267][T20322] batman_adv: batadv0: Interface activated: batadv_slave_0
[  749.496159][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  749.507250][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.521028][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  749.533142][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.558008][T19659] Bluetooth: hci2: command tx timeout
[  749.567903][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  749.587600][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.648086][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  749.677982][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.708245][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  749.766753][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.798498][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  749.832067][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.867859][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  749.900899][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.922257][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  749.943421][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.959724][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  749.970803][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  749.981672][T20322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  749.993013][T20322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  750.005973][T20322] batman_adv: batadv0: Interface activated: batadv_slave_1
[  750.022855][T20375] Process accounting resumed
[  750.120259][T20322] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  750.133552][T20322] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  750.152043][T20322] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  750.161883][T20322] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  750.400743][   T81] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  750.415398][   T81] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  750.555831][T12307] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  750.565818][T12307] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  750.813315][T20390] FAULT_INJECTION: forcing a failure.
[  750.813315][T20390] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  750.827485][T20390] CPU: 0 UID: 0 PID: 20390 Comm: syz.2.4274 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  750.838294][T20390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  750.848974][T20390] Call Trace:
[  750.852256][T20390]  <TASK>
[  750.855189][T20390]  dump_stack_lvl+0x16c/0x1f0
[  750.859883][T20390]  should_fail_ex+0x497/0x5b0
[  750.864575][T20390]  _copy_from_user+0x2e/0xd0
[  750.869182][T20390]  do_sys_poll+0x1d6/0xde0
[  750.873614][T20390]  ? __pfx_mark_lock+0x10/0x10
[  750.878415][T20390]  ? __pfx_do_sys_poll+0x10/0x10
[  750.883388][T20390]  ? __pfx___lock_acquire+0x10/0x10
[  750.888650][T20390]  ? __pfx_vfs_write+0x10/0x10
[  750.893422][T20390]  ? do_sys_openat2+0xb1/0x1e0
[  750.898199][T20390]  ? set_user_sigmask+0x217/0x2a0
[  750.903230][T20390]  ? __pfx_do_sys_openat2+0x10/0x10
[  750.908443][T20390]  ? __pfx_set_user_sigmask+0x10/0x10
[  750.913843][T20390]  __x64_sys_ppoll+0x25a/0x2d0
[  750.918624][T20390]  ? __pfx___x64_sys_ppoll+0x10/0x10
[  750.923918][T20390]  ? ksys_write+0x1ba/0x250
[  750.928429][T20390]  ? __pfx_ksys_write+0x10/0x10
[  750.933296][T20390]  do_syscall_64+0xcd/0x250
[  750.937820][T20390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  750.943728][T20390] RIP: 0033:0x7fa6edd85d19
[  750.948165][T20390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  750.967784][T20390] RSP: 002b:00007fa6eebaa038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  750.976208][T20390] RAX: ffffffffffffffda RBX: 00007fa6edf75fa0 RCX: 00007fa6edd85d19
[  750.984566][T20390] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000020000000
[  750.992542][T20390] RBP: 00007fa6eebaa090 R08: 0000000000000008 R09: 0000000000000000
[  751.000518][T20390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  751.008492][T20390] R13: 0000000000000000 R14: 00007fa6edf75fa0 R15: 00007ffc117c8148
[  751.016480][T20390]  </TASK>
[  751.637994][T19659] Bluetooth: hci2: command tx timeout
[  751.990382][T20398] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4263'.
[  753.718373][T19659] Bluetooth: hci2: command tx timeout
[  754.890776][T20485] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4321'.
[  755.429936][T14299] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  755.440729][T14299] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  755.456625][T14299] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  755.473851][T14299] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  755.483720][T14299] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  755.491654][T14299] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  755.939515][T20485] bond0: (slave bond_slave_1): Releasing backup interface
[  756.047943][T20480] Process accounting resumed
[  756.581369][T20488] chnl_net:caif_netlink_parms(): no params data found
[  757.025443][T20488] bridge0: port 1(bridge_slave_0) entered blocking state
[  757.032974][T20488] bridge0: port 1(bridge_slave_0) entered disabled state
[  757.042572][T20488] bridge_slave_0: entered allmulticast mode
[  757.059088][T20488] bridge_slave_0: entered promiscuous mode
[  757.098848][T20488] bridge0: port 2(bridge_slave_1) entered blocking state
[  757.105981][T20488] bridge0: port 2(bridge_slave_1) entered disabled state
[  757.128291][T20488] bridge_slave_1: entered allmulticast mode
[  757.135278][T20488] bridge_slave_1: entered promiscuous mode
[  757.468538][T20488] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  757.534711][T20488] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  757.558019][T19659] Bluetooth: hci0: command tx timeout
[  758.072404][T20488] team0: Port device team_slave_0 added
[  758.170219][T20488] team0: Port device team_slave_1 added
[  758.252510][T20515] Process accounting resumed
[  758.499918][T20488] batman_adv: batadv0: Adding interface: batadv_slave_0
[  758.507341][T20488] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  758.637623][T20488] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  758.669880][   T29] audit: type=1800 audit(4294967309.390:32): pid=20519 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4325" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  758.699566][T20488] batman_adv: batadv0: Adding interface: batadv_slave_1
[  758.706556][T20488] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  758.802718][T20488] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  759.010806][T20488] hsr_slave_0: entered promiscuous mode
[  759.073865][T20488] hsr_slave_1: entered promiscuous mode
[  759.110576][T20488] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  759.128369][T20488] Cannot create hsr debugfs directory
[  759.453107][T20488] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  759.638380][T19659] Bluetooth: hci0: command tx timeout
[  759.656268][T20488] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  760.057509][T20488] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  760.275254][T20488] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  760.302291][T20533] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4330'.
[  760.634613][T20488] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  760.665458][T20488] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  760.698257][T20488] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  760.716089][T20488] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  760.918755][T20488] 8021q: adding VLAN 0 to HW filter on device bond0
[  760.959249][T20488] 8021q: adding VLAN 0 to HW filter on device team0
[  761.023894][T12307] bridge0: port 1(bridge_slave_0) entered blocking state
[  761.031092][T12307] bridge0: port 1(bridge_slave_0) entered forwarding state
[  761.059656][T12307] bridge0: port 2(bridge_slave_1) entered blocking state
[  761.066843][T12307] bridge0: port 2(bridge_slave_1) entered forwarding state
[  761.610794][T20488] 8021q: adding VLAN 0 to HW filter on device batadv0
[  761.717753][T19659] Bluetooth: hci0: command tx timeout
[  761.824049][T20556] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4334'.
[  762.099166][T20556] bond0: (slave bond_slave_1): Releasing backup interface
[  762.489581][T20488] veth0_vlan: entered promiscuous mode
[  762.522422][T20488] veth1_vlan: entered promiscuous mode
[  762.608867][T20488] veth0_macvtap: entered promiscuous mode
[  762.638462][T20488] veth1_macvtap: entered promiscuous mode
[  762.670184][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  762.700217][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  762.715127][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  762.727773][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  762.738273][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  762.750147][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  762.762133][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  762.778283][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  762.800598][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  762.817533][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  762.837671][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  762.856509][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  762.877047][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  762.897654][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  762.925726][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  762.945214][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  762.966394][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  762.979064][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  762.998126][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  763.009842][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  763.020393][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  763.031814][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  763.047037][T20558] Process accounting resumed
[  763.058900][T20488] batman_adv: batadv0: Interface activated: batadv_slave_0
[  763.079028][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  763.093882][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  763.104387][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  763.116174][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  763.139752][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  763.166944][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  763.197670][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  763.239663][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  763.257637][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  763.282112][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  763.302018][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  763.319009][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  763.330405][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  763.343258][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  763.357698][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  763.372457][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  763.394047][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  763.415560][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  763.436313][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  763.457656][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  763.477848][T20488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  763.520904][T20488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  763.561504][T20488] batman_adv: batadv0: Interface activated: batadv_slave_1
[  763.591626][T20488] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  763.617664][T20488] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  763.636636][T20488] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  763.657628][T20488] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  763.809033][T19659] Bluetooth: hci0: command tx timeout
[  764.269016][T12290] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  764.276888][T12290] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  764.286582][T12290] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  764.294817][T12290] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  764.690380][T20574] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4337'.
[  764.770309][T20580] netlink: 'syz.1.4338': attribute type 46 has an invalid length.
[  765.606984][T20596] netlink: 342 bytes leftover after parsing attributes in process `syz.6.4341'.
[  766.676661][T20611] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4346'.
[  767.498118][T20625] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4351'.
[  767.543682][T20620] netlink: 'syz.6.4349': attribute type 46 has an invalid length.
[  767.647706][T20629] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4350'.
[  768.154793][T20634] could not allocate digest TFM handle 
[  769.035375][T20655] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4357'.
[  769.638708][T20661] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4360'.
[  770.307330][T20676] FAULT_INJECTION: forcing a failure.
[  770.307330][T20676] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  770.349406][T20676] CPU: 0 UID: 0 PID: 20676 Comm: syz.0.4364 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  770.360243][T20676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  770.370421][T20676] Call Trace:
[  770.373720][T20676]  <TASK>
[  770.376675][T20676]  dump_stack_lvl+0x16c/0x1f0
[  770.381392][T20676]  should_fail_ex+0x497/0x5b0
[  770.386110][T20676]  _copy_to_user+0x32/0xd0
[  770.390568][T20676]  simple_read_from_buffer+0xd0/0x160
[  770.395984][T20676]  proc_fail_nth_read+0x198/0x270
[  770.401049][T20676]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  770.406637][T20676]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  770.412220][T20676]  vfs_read+0x1df/0xbe0
[  770.416411][T20676]  ? __pfx_vfs_read+0x10/0x10
[  770.421120][T20676]  ? do_sys_openat2+0xb1/0x1e0
[  770.425932][T20676]  ? __pfx_do_sys_openat2+0x10/0x10
[  770.431185][T20676]  ksys_read+0x12b/0x250
[  770.435460][T20676]  ? __pfx_ksys_read+0x10/0x10
[  770.440264][T20676]  do_syscall_64+0xcd/0x250
[  770.444809][T20676]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  770.450743][T20676] RIP: 0033:0x7f535ad8472c
[  770.455204][T20676] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  770.474847][T20676] RSP: 002b:00007f535bc6d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  770.483295][T20676] RAX: ffffffffffffffda RBX: 00007f535af75fa0 RCX: 00007f535ad8472c
[  770.491296][T20676] RDX: 000000000000000f RSI: 00007f535bc6d0a0 RDI: 0000000000000001
[  770.499295][T20676] RBP: 00007f535bc6d090 R08: 0000000000000000 R09: 0000000000000000
[  770.506472][T20671] netlink: 'syz.2.4362': attribute type 46 has an invalid length.
[  770.507273][T20676] R10: 0000000000000fff R11: 0000000000000246 R12: 0000000000000001
[  770.523065][T20676] R13: 0000000000000000 R14: 00007f535af75fa0 R15: 00007ffe510cc118
[  770.531079][T20676]  </TASK>
[  770.534211][    C0] vkms_vblank_simulate: vblank timer overrun
[  771.481426][T20692] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4367'.
[  771.822211][T20692] bond0: (slave bond_slave_1): Releasing backup interface
[  772.194086][T20699] erspan0: entered allmulticast mode
[  773.469883][T20716] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4372'.
[  773.591032][T20718] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4373'.
[  773.823139][T20718] bond0: (slave bond_slave_1): Releasing backup interface
[  774.547931][T20731] bond0: no command found in slaves file - use +ifname or -ifname
[  775.414218][T20744] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4379'.
[  775.463553][T20754] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4384'.
[  777.174630][T20795] FAULT_INJECTION: forcing a failure.
[  777.174630][T20795] name failslab, interval 1, probability 0, space 0, times 0
[  777.211019][T20795] CPU: 1 UID: 0 PID: 20795 Comm: syz.0.4393 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  777.221853][T20795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  777.231941][T20795] Call Trace:
[  777.235250][T20795]  <TASK>
[  777.238206][T20795]  dump_stack_lvl+0x16c/0x1f0
[  777.242953][T20795]  should_fail_ex+0x497/0x5b0
[  777.247672][T20795]  should_failslab+0xc2/0x120
[  777.252398][T20795]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  777.257813][T20795]  ? dst_alloc+0x99/0x1a0
[  777.262178][T20795]  dst_alloc+0x99/0x1a0
[  777.266360][T20795]  rt_dst_alloc+0x35/0x3a0
[  777.270794][T20795]  ip_route_output_key_hash_rcu+0x8a5/0x2770
[  777.276782][T20795]  ? __lock_acquire+0xb02/0x3c40
[  777.281737][T20795]  ip_route_output_key_hash+0x138/0x2e0
[  777.287292][T20795]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  777.293372][T20795]  ? hlock_class+0x4e/0x130
[  777.297901][T20795]  tcp_v4_connect+0x7df/0x1b80
[  777.302679][T20795]  ? __pfx_tcp_v4_connect+0x10/0x10
[  777.307893][T20795]  ? __pfx_mark_lock+0x10/0x10
[  777.312688][T20795]  __inet_stream_connect+0x3c7/0x1020
[  777.318093][T20795]  ? find_held_lock+0x2d/0x110
[  777.322882][T20795]  ? __pfx___inet_stream_connect+0x10/0x10
[  777.328711][T20795]  ? __pfx_lock_release+0x10/0x10
[  777.333768][T20795]  ? mark_held_locks+0x9f/0xe0
[  777.338555][T20795]  ? __local_bh_enable_ip+0xa4/0x120
[  777.343862][T20795]  inet_stream_connect+0x57/0xa0
[  777.348822][T20795]  kernel_connect+0xdd/0x140
[  777.353436][T20795]  ? __pfx_kernel_connect+0x10/0x10
[  777.358665][T20795]  ? mark_held_locks+0x9f/0xe0
[  777.363446][T20795]  ? __local_bh_enable_ip+0xa4/0x120
[  777.368742][T20795]  smc_connect+0x4c7/0x760
[  777.373167][T20795]  ? __pfx_smc_connect+0x10/0x10
[  777.378109][T20795]  __sys_connect_file+0x13e/0x1a0
[  777.383147][T20795]  __sys_connect+0x14f/0x170
[  777.387744][T20795]  ? __pfx___sys_connect+0x10/0x10
[  777.392882][T20795]  __x64_sys_connect+0x72/0xb0
[  777.399488][T20795]  ? lockdep_hardirqs_on+0x7c/0x110
[  777.404703][T20795]  do_syscall_64+0xcd/0x250
[  777.409235][T20795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  777.415142][T20795] RIP: 0033:0x7f535ad85d19
[  777.419567][T20795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  777.439184][T20795] RSP: 002b:00007f535bc6d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  777.447616][T20795] RAX: ffffffffffffffda RBX: 00007f535af75fa0 RCX: 00007f535ad85d19
[  777.455603][T20795] RDX: 0000000000000055 RSI: 00000000200000c0 RDI: 0000000000000003
[  777.463581][T20795] RBP: 00007f535bc6d090 R08: 0000000000000000 R09: 0000000000000000
[  777.471559][T20795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  777.479540][T20795] R13: 0000000000000000 R14: 00007f535af75fa0 R15: 00007ffe510cc118
[  777.487530][T20795]  </TASK>
[  778.075493][T20808] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  778.875765][T20819] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4406'.
[  778.886944][T20817] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4398'.
[  779.119180][T20822] bond0: no command found in slaves file - use +ifname or -ifname
[  779.472801][T20830] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  779.978248][T20844] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4403'.
[  780.309330][T20849] FAULT_INJECTION: forcing a failure.
[  780.309330][T20849] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  780.323289][T20849] CPU: 1 UID: 0 PID: 20849 Comm: syz.0.4407 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  780.334126][T20849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  780.344212][T20849] Call Trace:
[  780.347507][T20849]  <TASK>
[  780.350455][T20849]  dump_stack_lvl+0x16c/0x1f0
[  780.355172][T20849]  should_fail_ex+0x497/0x5b0
[  780.359896][T20849]  _copy_from_user+0x2e/0xd0
[  780.364533][T20849]  copy_msghdr_from_user+0x99/0x160
[  780.369773][T20849]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  780.375650][T20849]  ___sys_sendmsg+0xff/0x1e0
[  780.380286][T20849]  ? __pfx____sys_sendmsg+0x10/0x10
[  780.385525][T20849]  ? __pfx_lock_release+0x10/0x10
[  780.390572][T20849]  ? trace_lock_acquire+0x14e/0x1f0
[  780.395789][T20849]  ? __fget_files+0x206/0x3a0
[  780.400479][T20849]  __sys_sendmsg+0x16e/0x220
[  780.405080][T20849]  ? __pfx___sys_sendmsg+0x10/0x10
[  780.410219][T20849]  do_syscall_64+0xcd/0x250
[  780.414734][T20849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  780.420640][T20849] RIP: 0033:0x7f535ad85d19
[  780.425062][T20849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  780.444680][T20849] RSP: 002b:00007f535bc6d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  780.453104][T20849] RAX: ffffffffffffffda RBX: 00007f535af75fa0 RCX: 00007f535ad85d19
[  780.461083][T20849] RDX: 0000000020000000 RSI: 00000000200008c0 RDI: 0000000000000003
[  780.469061][T20849] RBP: 00007f535bc6d090 R08: 0000000000000000 R09: 0000000000000000
[  780.477039][T20849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  780.485024][T20849] R13: 0000000000000000 R14: 00007f535af75fa0 R15: 00007ffe510cc118
[  780.493020][T20849]  </TASK>
[  781.084166][T20860] FAULT_INJECTION: forcing a failure.
[  781.084166][T20860] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  781.105095][T20860] CPU: 0 UID: 0 PID: 20860 Comm: syz.2.4413 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  781.115934][T20860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  781.126025][T20860] Call Trace:
[  781.129335][T20860]  <TASK>
[  781.132295][T20860]  dump_stack_lvl+0x16c/0x1f0
[  781.137021][T20860]  should_fail_ex+0x497/0x5b0
[  781.141746][T20860]  _copy_from_user+0x2e/0xd0
[  781.146417][T20860]  do_ipv6_getsockopt+0x282/0x3390
[  781.151580][T20860]  ? __pfx_do_ipv6_getsockopt+0x10/0x10
[  781.157167][T20860]  ? __lock_acquire+0xcc5/0x3c40
[  781.162156][T20860]  ? hlock_class+0x4e/0x130
[  781.166699][T20860]  ? aa_label_sk_perm+0x19d/0x5a0
[  781.171771][T20860]  ? hlock_class+0x4e/0x130
[  781.176311][T20860]  ? __lock_acquire+0x15a9/0x3c40
[  781.181402][T20860]  ? __pfx___lock_acquire+0x10/0x10
[  781.186664][T20860]  ? ipv6_getsockopt+0x126/0x280
[  781.191644][T20860]  ipv6_getsockopt+0x126/0x280
[  781.196448][T20860]  ? __pfx_ipv6_getsockopt+0x10/0x10
[  781.201777][T20860]  ? __might_fault+0x13b/0x190
[  781.206593][T20860]  ? __pfx_lock_release+0x10/0x10
[  781.211663][T20860]  rawv6_getsockopt+0xb3/0x490
[  781.216455][T20860]  ? __pfx_rawv6_getsockopt+0x10/0x10
[  781.221961][T20860]  ? __might_fault+0xe3/0x190
[  781.226693][T20860]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  781.232723][T20860]  do_sock_getsockopt+0x3fe/0x870
[  781.237797][T20860]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  781.243373][T20860]  ? lock_acquire+0x2f/0xb0
[  781.247906][T20860]  ? __fget_files+0x40/0x3a0
[  781.252543][T20860]  ? __fget_files+0x206/0x3a0
[  781.257263][T20860]  __sys_getsockopt+0x12f/0x260
[  781.262159][T20860]  __x64_sys_getsockopt+0xbd/0x160
[  781.267322][T20860]  ? do_syscall_64+0x91/0x250
[  781.272046][T20860]  ? lockdep_hardirqs_on+0x7c/0x110
[  781.277281][T20860]  do_syscall_64+0xcd/0x250
[  781.281828][T20860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  781.287756][T20860] RIP: 0033:0x7fa6edd85d19
[  781.292193][T20860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  781.311831][T20860] RSP: 002b:00007fa6eebaa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  781.320277][T20860] RAX: ffffffffffffffda RBX: 00007fa6edf75fa0 RCX: 00007fa6edd85d19
[  781.328274][T20860] RDX: 000000000000003d RSI: 0000000000000029 RDI: 0000000000000003
[  781.336267][T20860] RBP: 00007fa6eebaa090 R08: 0000000000000000 R09: 0000000000000000
[  781.344261][T20860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  781.352254][T20860] R13: 0000000000000000 R14: 00007fa6edf75fa0 R15: 00007ffc117c8148
[  781.360274][T20860]  </TASK>
[  781.399862][T20856] erspan0: entered allmulticast mode
[  783.779137][T20897] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  783.855600][T20897] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4421'.
[  783.891804][T20888] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4417'.
[  784.171243][T20900] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  784.412384][T20904] FAULT_INJECTION: forcing a failure.
[  784.412384][T20904] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  784.446284][T20904] CPU: 1 UID: 0 PID: 20904 Comm: syz.1.4424 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  784.457117][T20904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  784.467204][T20904] Call Trace:
[  784.470522][T20904]  <TASK>
[  784.473489][T20904]  dump_stack_lvl+0x16c/0x1f0
[  784.478207][T20904]  should_fail_ex+0x497/0x5b0
[  784.482923][T20904]  _copy_from_user+0x2e/0xd0
[  784.487554][T20904]  copy_msghdr_from_user+0x99/0x160
[  784.492785][T20904]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  784.498618][T20904]  ___sys_sendmsg+0xff/0x1e0
[  784.503219][T20904]  ? __pfx____sys_sendmsg+0x10/0x10
[  784.508440][T20904]  ? __pfx_lock_release+0x10/0x10
[  784.513486][T20904]  ? trace_lock_acquire+0x14e/0x1f0
[  784.518708][T20904]  ? __fget_files+0x206/0x3a0
[  784.523405][T20904]  __sys_sendmsg+0x16e/0x220
[  784.528016][T20904]  ? __pfx___sys_sendmsg+0x10/0x10
[  784.533153][T20904]  do_syscall_64+0xcd/0x250
[  784.537674][T20904]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  784.543587][T20904] RIP: 0033:0x7f9689d85d19
[  784.548007][T20904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  784.567626][T20904] RSP: 002b:00007f9687bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  784.576057][T20904] RAX: ffffffffffffffda RBX: 00007f9689f75fa0 RCX: 00007f9689d85d19
[  784.584049][T20904] RDX: 0000000000044000 RSI: 0000000020000300 RDI: 0000000000000003
[  784.592032][T20904] RBP: 00007f9687bf6090 R08: 0000000000000000 R09: 0000000000000000
[  784.600008][T20904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  784.607989][T20904] R13: 0000000000000000 R14: 00007f9689f75fa0 R15: 00007ffe7264a618
[  784.615980][T20904]  </TASK>
[  784.619136][    C1] vkms_vblank_simulate: vblank timer overrun
[  784.800919][T20908] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4425'.
[  785.752799][T20930] netlink: 4096 bytes leftover after parsing attributes in process `syz.2.4436'.
[  786.030633][   T29] audit: type=1800 audit(2054.070:33): pid=20935 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4437" name="members" dev="configfs" ino=71389 res=0 errno=0
[  786.244013][T20939] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4439'.
[  786.870882][T20953] Process accounting resumed
[  787.785334][T20972] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4448'.
[  788.053206][T20976] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4450'.
[  788.157800][T20981] FAULT_INJECTION: forcing a failure.
[  788.157800][T20981] name failslab, interval 1, probability 0, space 0, times 0
[  788.198057][T20981] CPU: 1 UID: 0 PID: 20981 Comm: syz.2.4452 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  788.208889][T20981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  788.218979][T20981] Call Trace:
[  788.222281][T20981]  <TASK>
[  788.225239][T20981]  dump_stack_lvl+0x16c/0x1f0
[  788.229960][T20981]  should_fail_ex+0x497/0x5b0
[  788.234674][T20981]  ? fs_reclaim_acquire+0xae/0x150
[  788.239826][T20981]  should_failslab+0xc2/0x120
[  788.244556][T20981]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  788.250400][T20981]  ? __alloc_skb+0x2b3/0x380
[  788.255032][T20981]  __alloc_skb+0x2b3/0x380
[  788.259495][T20981]  ? __pfx___alloc_skb+0x10/0x10
[  788.264485][T20981]  netlink_alloc_large_skb+0x69/0x130
[  788.269881][T20981]  netlink_sendmsg+0x689/0xd70
[  788.274663][T20981]  ? __pfx_netlink_sendmsg+0x10/0x10
[  788.279963][T20981]  ____sys_sendmsg+0x9ae/0xb40
[  788.284732][T20981]  ? copy_msghdr_from_user+0x10b/0x160
[  788.290214][T20981]  ? __pfx_____sys_sendmsg+0x10/0x10
[  788.295517][T20981]  ___sys_sendmsg+0x135/0x1e0
[  788.300207][T20981]  ? __pfx____sys_sendmsg+0x10/0x10
[  788.305427][T20981]  ? __pfx_lock_release+0x10/0x10
[  788.310469][T20981]  ? trace_lock_acquire+0x14e/0x1f0
[  788.315688][T20981]  ? __fget_files+0x206/0x3a0
[  788.320380][T20981]  __sys_sendmsg+0x16e/0x220
[  788.324983][T20981]  ? __pfx___sys_sendmsg+0x10/0x10
[  788.330122][T20981]  do_syscall_64+0xcd/0x250
[  788.334642][T20981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  788.340549][T20981] RIP: 0033:0x7fa6edd85d19
[  788.344974][T20981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  788.364591][T20981] RSP: 002b:00007fa6eebaa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  788.373019][T20981] RAX: ffffffffffffffda RBX: 00007fa6edf75fa0 RCX: 00007fa6edd85d19
[  788.380994][T20981] RDX: 0000000020000000 RSI: 00000000200008c0 RDI: 0000000000000003
[  788.388968][T20981] RBP: 00007fa6eebaa090 R08: 0000000000000000 R09: 0000000000000000
[  788.396942][T20981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  788.404914][T20981] R13: 0000000000000000 R14: 00007fa6edf75fa0 R15: 00007ffc117c8148
[  788.412910][T20981]  </TASK>
[  788.416051][    C1] vkms_vblank_simulate: vblank timer overrun
[  789.728293][T21013] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4461'.
[  790.234567][T21022] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4462'.
[  790.430153][T21026] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4463'.
[  791.100425][T21030] FAULT_INJECTION: forcing a failure.
[  791.100425][T21030] name failslab, interval 1, probability 0, space 0, times 0
[  791.113684][T21030] CPU: 0 UID: 0 PID: 21030 Comm: syz.1.4465 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  791.124483][T21030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  791.134561][T21030] Call Trace:
[  791.137878][T21030]  <TASK>
[  791.140839][T21030]  dump_stack_lvl+0x16c/0x1f0
[  791.145551][T21030]  should_fail_ex+0x497/0x5b0
[  791.150266][T21030]  should_failslab+0xc2/0x120
[  791.154978][T21030]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  791.160378][T21030]  ? inet_bind_bucket_create+0x2d/0x260
[  791.165935][T21030]  inet_bind_bucket_create+0x2d/0x260
[  791.171315][T21030]  inet_csk_get_port+0x128e/0x2530
[  791.176457][T21030]  __inet6_bind+0x590/0x1e50
[  791.181066][T21030]  inet6_bind_sk+0x17b/0x230
[  791.185665][T21030]  ? __pfx_inet6_bind_sk+0x10/0x10
[  791.190794][T21030]  __sys_bind+0x213/0x260
[  791.195140][T21030]  ? __pfx___sys_bind+0x10/0x10
[  791.200002][T21030]  ? __fget_files+0x206/0x3a0
[  791.204698][T21030]  ? __pfx_ksys_write+0x10/0x10
[  791.209563][T21030]  __x64_sys_bind+0x72/0xb0
[  791.214075][T21030]  ? lockdep_hardirqs_on+0x7c/0x110
[  791.219286][T21030]  do_syscall_64+0xcd/0x250
[  791.223826][T21030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  791.229747][T21030] RIP: 0033:0x7f9689d85d19
[  791.234177][T21030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  791.253799][T21030] RSP: 002b:00007f9687bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  791.262227][T21030] RAX: ffffffffffffffda RBX: 00007f9689f75fa0 RCX: 00007f9689d85d19
[  791.270202][T21030] RDX: 000000000000006b RSI: 0000000000000000 RDI: 0000000000000003
[  791.278178][T21030] RBP: 00007f9687bf6090 R08: 0000000000000000 R09: 0000000000000000
[  791.286154][T21030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  791.294126][T21030] R13: 0000000000000000 R14: 00007f9689f75fa0 R15: 00007ffe7264a618
[  791.302125][T21030]  </TASK>
[  791.804204][T21040] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4471'.
[  792.028280][T21047] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4472'.
[  793.730217][T21082] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4481'.
[  794.442688][T21093] FAULT_INJECTION: forcing a failure.
[  794.442688][T21093] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  794.528504][T21093] CPU: 1 UID: 0 PID: 21093 Comm: syz.0.4483 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  794.539319][T21093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  794.549394][T21093] Call Trace:
[  794.552692][T21093]  <TASK>
[  794.555642][T21093]  dump_stack_lvl+0x16c/0x1f0
[  794.560360][T21093]  should_fail_ex+0x497/0x5b0
[  794.565074][T21093]  strncpy_from_user+0x3b/0x2d0
[  794.569964][T21093]  getname_flags.part.0+0x8f/0x550
[  794.575121][T21093]  getname+0x8d/0xe0
[  794.579051][T21093]  do_sys_openat2+0x104/0x1e0
[  794.583771][T21093]  ? __pfx_do_sys_openat2+0x10/0x10
[  794.589016][T21093]  ? __fget_files+0x206/0x3a0
[  794.593732][T21093]  __x64_sys_openat+0x175/0x210
[  794.598630][T21093]  ? __pfx___x64_sys_openat+0x10/0x10
[  794.604051][T21093]  ? ksys_write+0x1ba/0x250
[  794.608602][T21093]  do_syscall_64+0xcd/0x250
[  794.613140][T21093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  794.619069][T21093] RIP: 0033:0x7f535ad84680
[  794.623522][T21093] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  794.643164][T21093] RSP: 002b:00007f535bc6cf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  794.651618][T21093] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f535ad84680
[  794.659622][T21093] RDX: 0000000000000002 RSI: 00007f535bc6cfa0 RDI: 00000000ffffff9c
[  794.667621][T21093] RBP: 00007f535bc6cfa0 R08: 0000000000000000 R09: 0000000000000000
[  794.675620][T21093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  794.683617][T21093] R13: 0000000000000001 R14: 00007f535af75fa0 R15: 00007ffe510cc118
[  794.691635][T21093]  </TASK>
[  794.694692][    C1] vkms_vblank_simulate: vblank timer overrun
[  796.516978][T21128] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4493'.
[  796.841960][T21143] FAULT_INJECTION: forcing a failure.
[  796.841960][T21143] name failslab, interval 1, probability 0, space 0, times 0
[  796.855382][T21143] CPU: 0 UID: 0 PID: 21143 Comm: syz.0.4495 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  796.866277][T21143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  796.876548][T21143] Call Trace:
[  796.879850][T21143]  <TASK>
[  796.882807][T21143]  dump_stack_lvl+0x16c/0x1f0
[  796.887526][T21143]  should_fail_ex+0x497/0x5b0
[  796.892341][T21143]  should_failslab+0xc2/0x120
[  796.897070][T21143]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  796.902495][T21143]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  796.908169][T21143]  ? dst_alloc+0x99/0x1a0
[  796.912538][T21143]  ? __pfx_ip6_dst_gc+0x10/0x10
[  796.917432][T21143]  dst_alloc+0x99/0x1a0
[  796.921624][T21143]  ip6_dst_alloc+0x2c/0xa0
[  796.926079][T21143]  ip6_pol_route+0x956/0x1120
[  796.930797][T21143]  ? __pfx_ip6_pol_route+0x10/0x10
[  796.935961][T21143]  ? __pfx___lock_acquire+0x10/0x10
[  796.941225][T21143]  ? __pfx_ip6_pol_route_output+0x10/0x10
[  796.946986][T21143]  fib6_rule_lookup+0x386/0x720
[  796.951875][T21143]  ? __pfx_fib6_rule_lookup+0x10/0x10
[  796.957288][T21143]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  796.962976][T21143]  ? rcu_is_watching+0x12/0xc0
[  796.967783][T21143]  ? trace_lock_acquire+0x14e/0x1f0
[  796.973018][T21143]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  796.978948][T21143]  ? ip6_route_output_flags+0x45/0x640
[  796.984444][T21143]  ? lock_acquire+0x2f/0xb0
[  796.988974][T21143]  ? ip6_route_output_flags+0x45/0x640
[  796.994476][T21143]  ip6_route_output_flags+0x1d0/0x640
[  796.999886][T21143]  ip6_dst_lookup_tail.constprop.0+0x1159/0x2150
[  797.006259][T21143]  ? tomoyo_supervisor+0xaa5/0x1180
[  797.011499][T21143]  ? vsnprintf+0x40f/0x1870
[  797.016040][T21143]  ? __pfx_ip6_dst_lookup_tail.constprop.0+0x10/0x10
[  797.022756][T21143]  ? __pfx_vsnprintf+0x10/0x10
[  797.027559][T21143]  ? hlock_class+0x4e/0x130
[  797.032107][T21143]  ? snprintf+0xc8/0x100
[  797.036399][T21143]  ip6_dst_lookup_flow+0x99/0x1d0
[  797.041471][T21143]  ? __pfx_ip6_dst_lookup_flow+0x10/0x10
[  797.047145][T21143]  ? __pfx_mark_lock+0x10/0x10
[  797.051968][T21143]  tcp_v6_connect+0xdf9/0x20d0
[  797.056777][T21143]  ? __pfx_tcp_v6_connect+0x10/0x10
[  797.062039][T21143]  ? __pfx_mark_lock+0x10/0x10
[  797.066859][T21143]  ? __inet_stream_connect+0x3c7/0x1020
[  797.072453][T21143]  __inet_stream_connect+0x3c7/0x1020
[  797.077874][T21143]  ? find_held_lock+0x2d/0x110
[  797.082681][T21143]  ? __pfx___inet_stream_connect+0x10/0x10
[  797.088527][T21143]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  797.093939][T21143]  ? __pfx_inet_stream_connect+0x10/0x10
[  797.099641][T21143]  ? mark_held_locks+0x9f/0xe0
[  797.104452][T21143]  ? __local_bh_enable_ip+0xa4/0x120
[  797.109775][T21143]  ? __pfx_inet_stream_connect+0x10/0x10
[  797.115450][T21143]  inet_stream_connect+0x57/0xa0
[  797.120439][T21143]  __sys_connect_file+0x13e/0x1a0
[  797.125509][T21143]  __sys_connect+0x14f/0x170
[  797.130135][T21143]  ? __pfx___sys_connect+0x10/0x10
[  797.135384][T21143]  ? __pfx_ksys_write+0x10/0x10
[  797.140279][T21143]  __x64_sys_connect+0x72/0xb0
[  797.142459][T21129] netlink: 342 bytes leftover after parsing attributes in process `syz.6.4491'.
[  797.145067][T21143]  ? lockdep_hardirqs_on+0x7c/0x110
[  797.159359][T21143]  do_syscall_64+0xcd/0x250
[  797.163901][T21143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  797.169828][T21143] RIP: 0033:0x7f535ad85d19
[  797.174267][T21143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  797.193909][T21143] RSP: 002b:00007f535bc6d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  797.202372][T21143] RAX: ffffffffffffffda RBX: 00007f535af75fa0 RCX: 00007f535ad85d19
[  797.210374][T21143] RDX: 0000000000000055 RSI: 0000000000000000 RDI: 0000000000000003
[  797.218369][T21143] RBP: 00007f535bc6d090 R08: 0000000000000000 R09: 0000000000000000
[  797.226364][T21143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  797.234358][T21143] R13: 0000000000000000 R14: 00007f535af75fa0 R15: 00007ffe510cc118
[  797.242373][T21143]  </TASK>
[  797.502311][T21149] FAULT_INJECTION: forcing a failure.
[  797.502311][T21149] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  797.535955][T21149] CPU: 1 UID: 0 PID: 21149 Comm: syz.0.4497 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  797.546790][T21149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  797.556874][T21149] Call Trace:
[  797.560178][T21149]  <TASK>
[  797.563137][T21149]  dump_stack_lvl+0x16c/0x1f0
[  797.567854][T21149]  should_fail_ex+0x497/0x5b0
[  797.572755][T21149]  _copy_from_user+0x2e/0xd0
[  797.577397][T21149]  copy_msghdr_from_user+0x99/0x160
[  797.582643][T21149]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  797.588501][T21149]  ___sys_sendmsg+0xff/0x1e0
[  797.593132][T21149]  ? __pfx____sys_sendmsg+0x10/0x10
[  797.598404][T21149]  ? __pfx_lock_release+0x10/0x10
[  797.603468][T21149]  ? trace_lock_acquire+0x14e/0x1f0
[  797.608712][T21149]  ? __fget_files+0x206/0x3a0
[  797.613435][T21149]  __sys_sendmsg+0x16e/0x220
[  797.618069][T21149]  ? __pfx___sys_sendmsg+0x10/0x10
[  797.623242][T21149]  do_syscall_64+0xcd/0x250
[  797.627784][T21149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  797.633714][T21149] RIP: 0033:0x7f535ad85d19
[  797.638155][T21149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  797.657783][T21149] RSP: 002b:00007f535bc6d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  797.666201][T21149] RAX: ffffffffffffffda RBX: 00007f535af75fa0 RCX: 00007f535ad85d19
[  797.674176][T21149] RDX: 0000000000044000 RSI: 0000000020000300 RDI: 0000000000000003
[  797.682155][T21149] RBP: 00007f535bc6d090 R08: 0000000000000000 R09: 0000000000000000
[  797.690133][T21149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  797.698140][T21149] R13: 0000000000000000 R14: 00007f535af75fa0 R15: 00007ffe510cc118
[  797.706145][T21149]  </TASK>
[  797.935787][T21158] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4499'.
[  798.682682][T21181] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4507'.
[  799.610790][T21202] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4512'.
[  799.737958][T21207] netlink: 4108 bytes leftover after parsing attributes in process `syz.1.4514'.
[  800.127388][T21216] netlink: zone id is out of range
[  800.147059][T21216] netlink: set zone limit has 8 unknown bytes
[  803.254717][T21276] netlink: zone id is out of range
[  803.273722][T21276] netlink: set zone limit has 8 unknown bytes
[  804.022221][T21291] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4536'.
[  805.604601][T21325] FAULT_INJECTION: forcing a failure.
[  805.604601][T21325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  805.638642][T21325] CPU: 1 UID: 0 PID: 21325 Comm: syz.6.4547 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  805.649519][T21325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  805.659622][T21325] Call Trace:
[  805.662925][T21325]  <TASK>
[  805.665885][T21325]  dump_stack_lvl+0x16c/0x1f0
[  805.670611][T21325]  should_fail_ex+0x497/0x5b0
[  805.675333][T21325]  _copy_to_iter+0x4a5/0x1400
[  805.680064][T21325]  ? __pfx__copy_to_iter+0x10/0x10
[  805.685224][T21325]  ? __virt_addr_valid+0x1a4/0x590
[  805.690389][T21325]  ? __virt_addr_valid+0x5e/0x590
[  805.695467][T21325]  ? __phys_addr_symbol+0x30/0x80
[  805.700530][T21325]  ? __check_object_size+0x488/0x710
[  805.705872][T21325]  seq_read_iter+0xd00/0x12b0
[  805.710608][T21325]  seq_read+0x39f/0x4e0
[  805.714804][T21325]  ? __pfx_seq_read+0x10/0x10
[  805.719543][T21325]  ? __pfx_seq_read+0x10/0x10
[  805.724256][T21325]  vfs_read+0x1df/0xbe0
[  805.728465][T21325]  ? __fget_files+0x1fc/0x3a0
[  805.733196][T21325]  ? __pfx___mutex_lock+0x10/0x10
[  805.738261][T21325]  ? __pfx_vfs_read+0x10/0x10
[  805.742978][T21325]  ? __fget_files+0x206/0x3a0
[  805.747697][T21325]  ksys_read+0x12b/0x250
[  805.751965][T21325]  ? __pfx_ksys_read+0x10/0x10
[  805.756748][T21325]  do_syscall_64+0xcd/0x250
[  805.761273][T21325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  805.767199][T21325] RIP: 0033:0x7fc36cb85d19
[  805.771626][T21325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  805.791253][T21325] RSP: 002b:00007fc36d915038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  805.799700][T21325] RAX: ffffffffffffffda RBX: 00007fc36cd75fa0 RCX: 00007fc36cb85d19
[  805.807681][T21325] RDX: 0000000000000067 RSI: 00000000200051c0 RDI: 0000000000000003
[  805.815661][T21325] RBP: 00007fc36d915090 R08: 0000000000000000 R09: 0000000000000000
[  805.823634][T21325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  805.831607][T21325] R13: 0000000000000000 R14: 00007fc36cd75fa0 R15: 00007ffd3e9d4b48
[  805.839597][T21325]  </TASK>
[  805.842636][    C1] vkms_vblank_simulate: vblank timer overrun
[  806.151942][T21336] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4551'.
[  807.116788][T21345] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4553'.
[  807.400707][T21348] netlink: zone id is out of range
[  807.406141][T21348] netlink: set zone limit has 8 unknown bytes
[  809.002900][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  809.009742][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  809.378707][T21371] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4557'.
[  809.681152][T21375] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4559'.
[  810.556824][T21386] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4562'.
[  810.585854][T21388] netlink: zone id is out of range
[  810.612932][T21388] netlink: set zone limit has 8 unknown bytes
[  811.966956][T21418] netlink: zone id is out of range
[  811.983367][T21418] netlink: set zone limit has 8 unknown bytes
[  814.068061][T21454] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4582'.
[  814.292558][T21456] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4583'.
[  816.146144][T21485] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4592'.
[  821.060928][T21565] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4615'.
[  821.107226][T21565] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4615'.
[  821.133318][T21565] netlink: 130 bytes leftover after parsing attributes in process `syz.0.4615'.
[  822.761630][T21604] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4626'.
[  822.907759][T21604] hsr_slave_0 (unregistering): left promiscuous mode
[  823.231092][T21618] HfR: entered promiscuous mode
[  824.025096][T21631] FAULT_INJECTION: forcing a failure.
[  824.025096][T21631] name failslab, interval 1, probability 0, space 0, times 0
[  824.067795][T21631] CPU: 1 UID: 0 PID: 21631 Comm: syz.0.4633 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  824.078624][T21631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  824.088711][T21631] Call Trace:
[  824.092014][T21631]  <TASK>
[  824.094971][T21631]  dump_stack_lvl+0x16c/0x1f0
[  824.099696][T21631]  should_fail_ex+0x497/0x5b0
[  824.104419][T21631]  ? fs_reclaim_acquire+0xae/0x150
[  824.109570][T21631]  should_failslab+0xc2/0x120
[  824.114285][T21631]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  824.120133][T21631]  ? __alloc_skb+0x2b3/0x380
[  824.124769][T21631]  __alloc_skb+0x2b3/0x380
[  824.129228][T21631]  ? __pfx___alloc_skb+0x10/0x10
[  824.134197][T21631]  ? lock_acquire+0x2f/0xb0
[  824.138718][T21631]  netlink_alloc_large_skb+0x69/0x130
[  824.144101][T21631]  netlink_sendmsg+0x689/0xd70
[  824.148874][T21631]  ? __pfx_netlink_sendmsg+0x10/0x10
[  824.154263][T21631]  ____sys_sendmsg+0x9ae/0xb40
[  824.159036][T21631]  ? copy_msghdr_from_user+0x10b/0x160
[  824.164513][T21631]  ? __pfx_____sys_sendmsg+0x10/0x10
[  824.169814][T21631]  ___sys_sendmsg+0x135/0x1e0
[  824.174506][T21631]  ? __pfx____sys_sendmsg+0x10/0x10
[  824.179728][T21631]  ? __pfx_lock_release+0x10/0x10
[  824.184768][T21631]  ? trace_lock_acquire+0x14e/0x1f0
[  824.189983][T21631]  ? __fget_files+0x206/0x3a0
[  824.194681][T21631]  __sys_sendmsg+0x16e/0x220
[  824.199284][T21631]  ? __pfx___sys_sendmsg+0x10/0x10
[  824.204429][T21631]  do_syscall_64+0xcd/0x250
[  824.208947][T21631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  824.214846][T21631] RIP: 0033:0x7f535ad85d19
[  824.219265][T21631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  824.238880][T21631] RSP: 002b:00007f535bc6d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  824.247310][T21631] RAX: ffffffffffffffda RBX: 00007f535af75fa0 RCX: 00007f535ad85d19
[  824.255288][T21631] RDX: 0000000020000004 RSI: 0000000020000100 RDI: 0000000000000003
[  824.263267][T21631] RBP: 00007f535bc6d090 R08: 0000000000000000 R09: 0000000000000000
[  824.271253][T21631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  824.279230][T21631] R13: 0000000000000000 R14: 00007f535af75fa0 R15: 00007ffe510cc118
[  824.287216][T21631]  </TASK>
[  827.231169][T21683] FAULT_INJECTION: forcing a failure.
[  827.231169][T21683] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  827.267907][T21683] CPU: 1 UID: 0 PID: 21683 Comm: syz.0.4647 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  827.278727][T21683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  827.288784][T21683] Call Trace:
[  827.292064][T21683]  <TASK>
[  827.294998][T21683]  dump_stack_lvl+0x16c/0x1f0
[  827.299689][T21683]  should_fail_ex+0x497/0x5b0
[  827.304377][T21683]  _copy_from_user+0x2e/0xd0
[  827.308982][T21683]  memdup_user_nul+0x72/0x110
[  827.313757][T21683]  event_inject_write+0xbe/0x1ec0
[  827.318790][T21683]  ? hlock_class+0x4e/0x130
[  827.323312][T21683]  ? __pfx_event_inject_write+0x10/0x10
[  827.328873][T21683]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  827.334519][T21683]  ? rcu_is_watching+0x12/0xc0
[  827.339292][T21683]  ? trace_lock_acquire+0x14e/0x1f0
[  827.344506][T21683]  ? __x64_sys_pwrite64+0x1f6/0x250
[  827.349719][T21683]  ? __pfx_event_inject_write+0x10/0x10
[  827.355272][T21683]  vfs_write+0x24c/0x1150
[  827.359611][T21683]  ? __fget_files+0x1fc/0x3a0
[  827.364301][T21683]  ? __pfx_lock_release+0x10/0x10
[  827.369350][T21683]  ? __pfx_vfs_write+0x10/0x10
[  827.374132][T21683]  ? lock_acquire+0x2f/0xb0
[  827.378654][T21683]  ? __fget_files+0x40/0x3a0
[  827.383257][T21683]  ? __fget_files+0x206/0x3a0
[  827.387949][T21683]  __x64_sys_pwrite64+0x1f6/0x250
[  827.392999][T21683]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  827.398560][T21683]  do_syscall_64+0xcd/0x250
[  827.403077][T21683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  827.408982][T21683] RIP: 0033:0x7f535ad85d19
[  827.413399][T21683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  827.433019][T21683] RSP: 002b:00007f535bc6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  827.441443][T21683] RAX: ffffffffffffffda RBX: 00007f535af75fa0 RCX: 00007f535ad85d19
[  827.449418][T21683] RDX: 0000000000000052 RSI: 0000000020000140 RDI: 0000000000000003
[  827.457392][T21683] RBP: 00007f535bc6d090 R08: 0000000000000000 R09: 0000000000000000
[  827.465363][T21683] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  827.473345][T21683] R13: 0000000000000000 R14: 00007f535af75fa0 R15: 00007ffe510cc118
[  827.481339][T21683]  </TASK>
[  830.535759][T21752] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4665'.
[  832.812906][T21785] netlink: 504 bytes leftover after parsing attributes in process `syz.0.4675'.
[  835.871195][T21828] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  835.958206][T21828] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  840.443379][T21883] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  840.578222][T21883] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  843.228167][T21918] FAULT_INJECTION: forcing a failure.
[  843.228167][T21918] name failslab, interval 1, probability 0, space 0, times 0
[  843.255341][T21918] CPU: 0 UID: 0 PID: 21918 Comm: syz.0.4707 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  843.266151][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  843.276230][T21918] Call Trace:
[  843.279536][T21918]  <TASK>
[  843.282493][T21918]  dump_stack_lvl+0x16c/0x1f0
[  843.287216][T21918]  should_fail_ex+0x497/0x5b0
[  843.291929][T21918]  ? fs_reclaim_acquire+0xae/0x150
[  843.297086][T21918]  should_failslab+0xc2/0x120
[  843.301806][T21918]  __kmalloc_noprof+0xce/0x4f0
[  843.306613][T21918]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  843.312273][T21918]  ? tomoyo_realpath_from_path+0xbf/0x710
[  843.318031][T21918]  tomoyo_realpath_from_path+0xbf/0x710
[  843.323614][T21918]  ? tomoyo_path_number_perm+0x235/0x5b0
[  843.329292][T21918]  tomoyo_path_number_perm+0x248/0x5b0
[  843.334790][T21918]  ? tomoyo_path_number_perm+0x235/0x5b0
[  843.340468][T21918]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  843.346541][T21918]  ? __pfx_lock_release+0x10/0x10
[  843.351699][T21918]  ? trace_lock_acquire+0x14e/0x1f0
[  843.356941][T21918]  ? lock_acquire+0x2f/0xb0
[  843.361475][T21918]  ? __fget_files+0x40/0x3a0
[  843.366114][T21918]  ? __fget_files+0x206/0x3a0
[  843.370832][T21918]  security_file_ioctl+0x9b/0x240
[  843.375895][T21918]  __x64_sys_ioctl+0xb7/0x200
[  843.380620][T21918]  do_syscall_64+0xcd/0x250
[  843.385159][T21918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  843.391083][T21918] RIP: 0033:0x7f535ad85d19
[  843.395530][T21918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  843.415200][T21918] RSP: 002b:00007f535bc6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  843.423644][T21918] RAX: ffffffffffffffda RBX: 00007f535af75fa0 RCX: 00007f535ad85d19
[  843.431649][T21918] RDX: 0000000000000000 RSI: 0000000000005453 RDI: 0000000000000003
[  843.439649][T21918] RBP: 00007f535bc6d090 R08: 0000000000000000 R09: 0000000000000000
[  843.447740][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  843.455746][T21918] R13: 0000000000000000 R14: 00007f535af75fa0 R15: 00007ffe510cc118
[  843.463768][T21918]  </TASK>
[  843.498059][T21918] ERROR: Out of memory at tomoyo_realpath_from_path.
[  845.024584][T21950] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4715'.
[  845.345767][T21957] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4726'.
[  847.358725][T21998] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4730'.
[  849.444160][T22031] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4741'.
[  849.607121][T22037] FAULT_INJECTION: forcing a failure.
[  849.607121][T22037] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  849.621149][T22037] CPU: 1 UID: 0 PID: 22037 Comm: syz.6.4742 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  849.631973][T22037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  849.642141][T22037] Call Trace:
[  849.645432][T22037]  <TASK>
[  849.648360][T22037]  dump_stack_lvl+0x16c/0x1f0
[  849.653040][T22037]  should_fail_ex+0x497/0x5b0
[  849.657738][T22037]  _copy_from_user+0x2e/0xd0
[  849.662374][T22037]  ctrl_cdev_ioctl+0x145/0x3d0
[  849.667260][T22037]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[  849.672586][T22037]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[  849.677906][T22037]  __x64_sys_ioctl+0x190/0x200
[  849.682724][T22037]  do_syscall_64+0xcd/0x250
[  849.687263][T22037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  849.693177][T22037] RIP: 0033:0x7fc36cb85d19
[  849.697605][T22037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  849.717253][T22037] RSP: 002b:00007fc36d915038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  849.725947][T22037] RAX: ffffffffffffffda RBX: 00007fc36cd75fa0 RCX: 00007fc36cb85d19
[  849.734479][T22037] RDX: 0000000000000000 RSI: 0000000040186f40 RDI: 0000000000000004
[  849.742646][T22037] RBP: 00007fc36d915090 R08: 0000000000000000 R09: 0000000000000000
[  849.750630][T22037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  849.758603][T22037] R13: 0000000000000000 R14: 00007fc36cd75fa0 R15: 00007ffd3e9d4b48
[  849.766589][T22037]  </TASK>
[  851.130756][T22074] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4751'.
[  851.271441][T22077] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  851.309374][T22077] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  852.051684][T22054] Bluetooth: hci4: command 0x0406 tx timeout
[  852.256393][T22112] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4762'.
[  853.816489][T22151] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4772'.
[  853.851793][T22153] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4773'.
[  853.886376][T22153] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4773'.
[  854.215428][T22157] vivid-013: =================  START STATUS  =================
[  854.226111][T22157] vivid-013: Generate PTS: true
[  854.239173][T22157] vivid-013: Generate SCR: true
[  854.249554][T22157] tpg source WxH: 640x360 (Y'CbCr)
[  854.261795][T22157] tpg field: 1
[  854.265369][T22157] tpg crop: 640x360@0x0
[  854.270202][T22157] tpg compose: 640x360@0x0
[  854.274786][T22157] tpg colorspace: 8
[  854.281721][T22157] tpg transfer function: 0/0
[  854.286439][T22157] tpg Y'CbCr encoding: 0/0
[  854.291436][T22157] tpg quantization: 0/0
[  854.295838][T22157] tpg RGB range: 0/2
[  854.317012][T22157] vivid-013: ==================  END STATUS  ==================
[  854.725959][T22172] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4779'.
[  855.087883][T22182] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4783'.
[  855.835914][T22201] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4788'.
[  855.862442][T22201] vcan0: entered promiscuous mode
[  856.174071][T22213] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4794'.
[  856.457726][T22219] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4795'.
[  857.048944][T22234] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4800'.
[  857.089786][T22235] netlink: 274 bytes leftover after parsing attributes in process `syz.2.4800'.
[  857.119617][T22235] netlink: 274 bytes leftover after parsing attributes in process `syz.2.4800'.
[  857.133121][T22235] netlink: 274 bytes leftover after parsing attributes in process `syz.2.4800'.
[  857.151795][T22235] netlink: 274 bytes leftover after parsing attributes in process `syz.2.4800'.
[  857.171448][T22235] netlink: 274 bytes leftover after parsing attributes in process `syz.2.4800'.
[  857.188070][T22235] netlink: 274 bytes leftover after parsing attributes in process `syz.2.4800'.
[  857.208209][T22235] netlink: 274 bytes leftover after parsing attributes in process `syz.2.4800'.
[  857.868870][T22259] FAULT_INJECTION: forcing a failure.
[  857.868870][T22259] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  857.896789][T22259] CPU: 1 UID: 0 PID: 22259 Comm: syz.6.4808 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  857.907601][T22259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  857.917661][T22259] Call Trace:
[  857.920961][T22259]  <TASK>
[  857.923914][T22259]  dump_stack_lvl+0x16c/0x1f0
[  857.928627][T22259]  should_fail_ex+0x497/0x5b0
[  857.933340][T22259]  strncpy_from_user+0x3b/0x2d0
[  857.938234][T22259]  getname_flags.part.0+0x8f/0x550
[  857.943394][T22259]  getname+0x8d/0xe0
[  857.947319][T22259]  do_sys_openat2+0x104/0x1e0
[  857.952039][T22259]  ? __pfx_do_sys_openat2+0x10/0x10
[  857.957278][T22259]  ? __fget_files+0x206/0x3a0
[  857.961991][T22259]  __x64_sys_openat+0x175/0x210
[  857.966881][T22259]  ? __pfx___x64_sys_openat+0x10/0x10
[  857.972289][T22259]  ? ksys_write+0x1ba/0x250
[  857.976837][T22259]  do_syscall_64+0xcd/0x250
[  857.981385][T22259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  857.987320][T22259] RIP: 0033:0x7fc36cb85d19
[  857.991790][T22259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  858.011444][T22259] RSP: 002b:00007fc36d915038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  858.019898][T22259] RAX: ffffffffffffffda RBX: 00007fc36cd75fa0 RCX: 00007fc36cb85d19
[  858.027896][T22259] RDX: 0000000000109180 RSI: 0000000020000000 RDI: ffffffffffffff9c
[  858.035893][T22259] RBP: 00007fc36d915090 R08: 0000000000000000 R09: 0000000000000000
[  858.043886][T22259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  858.051866][T22259] R13: 0000000000000001 R14: 00007fc36cd75fa0 R15: 00007ffd3e9d4b48
[  858.059857][T22259]  </TASK>
[  858.396336][T22280] FAULT_INJECTION: forcing a failure.
[  858.396336][T22280] name failslab, interval 1, probability 0, space 0, times 0
[  858.427681][T22280] CPU: 0 UID: 0 PID: 22280 Comm: syz.1.4816 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  858.438502][T22280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  858.448586][T22280] Call Trace:
[  858.451887][T22280]  <TASK>
[  858.454847][T22280]  dump_stack_lvl+0x16c/0x1f0
[  858.459563][T22280]  should_fail_ex+0x497/0x5b0
[  858.464279][T22280]  ? fs_reclaim_acquire+0xae/0x150
[  858.469436][T22280]  should_failslab+0xc2/0x120
[  858.474157][T22280]  __kmalloc_noprof+0xce/0x4f0
[  858.478965][T22280]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  858.484625][T22280]  ? tomoyo_realpath_from_path+0xbf/0x710
[  858.490388][T22280]  tomoyo_realpath_from_path+0xbf/0x710
[  858.496039][T22280]  ? tomoyo_path_number_perm+0x235/0x5b0
[  858.501743][T22280]  tomoyo_path_number_perm+0x248/0x5b0
[  858.507246][T22280]  ? tomoyo_path_number_perm+0x235/0x5b0
[  858.512944][T22280]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  858.519007][T22280]  ? __pfx_lock_release+0x10/0x10
[  858.524081][T22280]  ? trace_lock_acquire+0x14e/0x1f0
[  858.529328][T22280]  ? lock_acquire+0x2f/0xb0
[  858.533872][T22280]  ? __fget_files+0x40/0x3a0
[  858.538517][T22280]  ? __fget_files+0x206/0x3a0
[  858.543236][T22280]  security_file_ioctl+0x9b/0x240
[  858.548294][T22280]  __x64_sys_ioctl+0xb7/0x200
[  858.553024][T22280]  do_syscall_64+0xcd/0x250
[  858.557658][T22280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  858.563591][T22280] RIP: 0033:0x7f9689d85d19
[  858.568044][T22280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  858.587684][T22280] RSP: 002b:00007f9687bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  858.596129][T22280] RAX: ffffffffffffffda RBX: 00007f9689f75fa0 RCX: 00007f9689d85d19
[  858.604130][T22280] RDX: 0000000000003c1e RSI: 0000000000004b32 RDI: 0000000000000003
[  858.612125][T22280] RBP: 00007f9687bf6090 R08: 0000000000000000 R09: 0000000000000000
[  858.620210][T22280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  858.628211][T22280] R13: 0000000000000000 R14: 00007f9689f75fa0 R15: 00007ffe7264a618
[  858.636225][T22280]  </TASK>
[  858.639383][    C0] vkms_vblank_simulate: vblank timer overrun
[  858.666736][T22280] ERROR: Out of memory at tomoyo_realpath_from_path.
[  860.416321][T22315] FAULT_INJECTION: forcing a failure.
[  860.416321][T22315] name failslab, interval 1, probability 0, space 0, times 0
[  860.436537][T22315] CPU: 0 UID: 0 PID: 22315 Comm: syz.6.4825 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  860.447355][T22315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  860.457435][T22315] Call Trace:
[  860.460736][T22315]  <TASK>
[  860.463689][T22315]  dump_stack_lvl+0x16c/0x1f0
[  860.468409][T22315]  should_fail_ex+0x497/0x5b0
[  860.473128][T22315]  ? fs_reclaim_acquire+0xae/0x150
[  860.474528][T22317] CIFS: VFS: Unsupported security flags: 0x20
[  860.478256][T22315]  should_failslab+0xc2/0x120
[  860.478311][T22315]  __kmalloc_noprof+0xce/0x4f0
[  860.478343][T22315]  ? d_absolute_path+0x137/0x1b0
[  860.498831][T22315]  ? tomoyo_encode2+0x100/0x3e0
[  860.503732][T22315]  tomoyo_encode2+0x100/0x3e0
[  860.508447][T22315]  tomoyo_realpath_from_path+0x1a7/0x710
[  860.514128][T22315]  tomoyo_path_number_perm+0x248/0x5b0
[  860.519629][T22315]  ? tomoyo_path_number_perm+0x235/0x5b0
[  860.525307][T22315]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  860.531366][T22315]  ? __pfx_lock_release+0x10/0x10
[  860.536432][T22315]  ? trace_lock_acquire+0x14e/0x1f0
[  860.541678][T22315]  ? lock_acquire+0x2f/0xb0
[  860.546213][T22315]  ? __fget_files+0x40/0x3a0
[  860.550854][T22315]  ? __fget_files+0x206/0x3a0
[  860.555604][T22315]  security_file_ioctl+0x9b/0x240
[  860.560662][T22315]  __x64_sys_ioctl+0xb7/0x200
[  860.565381][T22315]  do_syscall_64+0xcd/0x250
[  860.569923][T22315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  860.575873][T22315] RIP: 0033:0x7fc36cb85d19
[  860.580371][T22315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  860.600009][T22315] RSP: 002b:00007fc36d915038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  860.608467][T22315] RAX: ffffffffffffffda RBX: 00007fc36cd75fa0 RCX: 00007fc36cb85d19
[  860.616468][T22315] RDX: 00000000200002c0 RSI: 00000000c1105517 RDI: 0000000000000003
[  860.624465][T22315] RBP: 00007fc36d915090 R08: 0000000000000000 R09: 0000000000000000
[  860.632460][T22315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  860.640480][T22315] R13: 0000000000000000 R14: 00007fc36cd75fa0 R15: 00007ffd3e9d4b48
[  860.648518][T22315]  </TASK>
[  860.651664][    C0] vkms_vblank_simulate: vblank timer overrun
[  860.693343][T22315] ERROR: Out of memory at tomoyo_realpath_from_path.
[  862.281581][T21154] Bluetooth: hci1: command 0x0406 tx timeout
[  862.518112][T22353] CIFS: VFS: Unsupported security flags: 0x20
[  863.236526][T22371] __nla_validate_parse: 29 callbacks suppressed
[  863.236555][T22371] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4841'.
[  864.004671][T22378] netlink: 342 bytes leftover after parsing attributes in process `syz.6.4843'.
[  865.263685][T22406] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4852'.
[  865.619906][T22411] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4854'.
[  865.903347][T22416] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4855'.
[  866.599134][T22426] netlink: 342 bytes leftover after parsing attributes in process `syz.6.4858'.
[  866.697346][T22436] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4862'.
[  868.392070][T22471] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4873'.
[  869.034679][T22481] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4875'.
[  869.839009][T22495] netlink: zone id is out of range
[  870.216294][T22504] ------------[ cut here ]------------
[  870.222088][T22504] WARNING: CPU: 0 PID: 22504 at mm/page_alloc.c:4727 __alloc_pages_noprof+0xeff/0x25b0
[  870.232028][T22504] Modules linked in:
[  870.236107][T22504] CPU: 0 UID: 0 PID: 22504 Comm: syz.6.4884 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  870.247363][T22504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  870.257581][T22504] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0
[  870.263703][T22504] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 0e b3 fe ff e9 69 f9 ff ff c6 05 e1 48 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 9f a3 0c 00 8b 14 24 e9
[  870.284534][T22504] RSP: 0018:ffffc9000fda7918 EFLAGS: 00010246
[  870.291892][T22504] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  870.299995][T22504] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0
[  870.308588][T22504] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  870.316606][T22504] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000013
[  870.324969][T22504] R13: 0000000000040cc0 R14: 1ffff92001fb4f37 R15: 00000000ffffffff
[  870.333526][T22504] FS:  00007fc36d9156c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  870.342737][T22504] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  870.349555][T22504] CR2: 0000001b2c213ff8 CR3: 000000006bbca000 CR4: 00000000003526f0
[  870.357687][T22504] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  870.365877][T22504] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  870.374244][T22504] Call Trace:
[  870.377994][T22504]  <TASK>
[  870.380971][T22504]  ? __warn+0xea/0x3c0
[  870.385659][T22504]  ? __alloc_pages_noprof+0xeff/0x25b0
[  870.392142][T22504]  ? report_bug+0x3c0/0x580
[  870.396715][T22504]  ? handle_bug+0x54/0xa0
[  870.401155][T22504]  ? exc_invalid_op+0x17/0x50
[  870.405887][T22504]  ? asm_exc_invalid_op+0x1a/0x20
[  870.411135][T22504]  ? __alloc_pages_noprof+0xeff/0x25b0
[  870.411158][T22507] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4885'.
[  870.411197][T22504]  ? __pfx___lock_acquire+0x10/0x10
[  870.431078][T22504]  ? hlock_class+0x4e/0x130
[  870.435643][T22504]  ? mark_lock+0xb5/0xc60
[  870.443702][T22504]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  870.448269][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  870.450699][T22504]  ? find_held_lock+0x2d/0x110
[  870.456211][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  870.460513][T22504]  ? __pfx_lock_release+0x10/0x10
[  870.471995][T22504]  ? trace_lock_acquire+0x14e/0x1f0
[  870.477517][T22504]  ? __pfx_lock_release+0x10/0x10
[  870.483376][T22504]  ___kmalloc_large_node+0x84/0x1b0
[  870.489153][T22504]  __kmalloc_large_node_noprof+0x1c/0x70
[  870.495235][T22504]  __kmalloc_node_track_caller_noprof.cold+0x5/0x5f
[  870.501977][T22504]  ? bitmap_parselist_user+0x24/0x90
[  870.507358][T22504]  memdup_user_nul+0x2b/0x110
[  870.512179][T22504]  bitmap_parselist_user+0x24/0x90
[  870.517428][T22504]  irq_affinity_list_proc_write+0x148/0x260
[  870.523481][T22504]  ? __pfx_irq_affinity_list_proc_write+0x10/0x10
[  870.530160][T22504]  ? rcu_is_watching+0x12/0xc0
[  870.534974][T22504]  ? trace_lock_acquire+0x14e/0x1f0
[  870.540481][T22504]  ? __pfx_irq_affinity_list_proc_write+0x10/0x10
[  870.547104][T22504]  proc_reg_write+0x23d/0x330
[  870.552124][T22504]  ? __pfx_proc_reg_write+0x10/0x10
[  870.557407][T22504]  vfs_write+0x24c/0x1150
[  870.561886][T22504]  ? __fget_files+0x1fc/0x3a0
[  870.566612][T22504]  ? __pfx___mutex_lock+0x10/0x10
[  870.571876][T22504]  ? __pfx_vfs_write+0x10/0x10
[  870.576742][T22504]  ? __fget_files+0x206/0x3a0
[  870.582007][T22504]  ksys_write+0x12b/0x250
[  870.586402][T22504]  ? __pfx_ksys_write+0x10/0x10
[  870.592103][T22504]  do_syscall_64+0xcd/0x250
[  870.597048][T22504]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  870.603353][T22504] RIP: 0033:0x7fc36cb85d19
[  870.607974][T22504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  870.627864][T22504] RSP: 002b:00007fc36d915038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  870.636483][T22504] RAX: ffffffffffffffda RBX: 00007fc36cd75fa0 RCX: 00007fc36cb85d19
[  870.644824][T22504] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  870.653076][T22504] RBP: 00007fc36cc01a20 R08: 0000000000000000 R09: 0000000000000000
[  870.661155][T22504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  870.669409][T22504] R13: 0000000000000000 R14: 00007fc36cd75fa0 R15: 00007ffd3e9d4b48
[  870.677487][T22504]  </TASK>
[  870.680902][T22504] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  870.688208][T22504] CPU: 0 UID: 0 PID: 22504 Comm: syz.6.4884 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[  870.698986][T22504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  870.709065][T22504] Call Trace:
[  870.712351][T22504]  <TASK>
[  870.715285][T22504]  dump_stack_lvl+0x3d/0x1f0
[  870.719901][T22504]  panic+0x71d/0x800
[  870.723916][T22504]  ? __pfx_panic+0x10/0x10
[  870.728350][T22504]  ? show_trace_log_lvl+0x29d/0x3d0
[  870.733576][T22504]  ? __alloc_pages_noprof+0xeff/0x25b0
[  870.739057][T22504]  check_panic_on_warn+0xab/0xb0
[  870.744012][T22504]  __warn+0xf6/0x3c0
[  870.747925][T22504]  ? __alloc_pages_noprof+0xeff/0x25b0
[  870.753401][T22504]  report_bug+0x3c0/0x580
[  870.757751][T22504]  handle_bug+0x54/0xa0
[  870.761929][T22504]  exc_invalid_op+0x17/0x50
[  870.766447][T22504]  asm_exc_invalid_op+0x1a/0x20
[  870.771308][T22504] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0
[  870.777394][T22504] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 0e b3 fe ff e9 69 f9 ff ff c6 05 e1 48 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 9f a3 0c 00 8b 14 24 e9
[  870.797191][T22504] RSP: 0018:ffffc9000fda7918 EFLAGS: 00010246
[  870.803272][T22504] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  870.811249][T22504] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0
[  870.819224][T22504] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  870.827199][T22504] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000013
[  870.835184][T22504] R13: 0000000000040cc0 R14: 1ffff92001fb4f37 R15: 00000000ffffffff
[  870.843217][T22504]  ? __pfx___lock_acquire+0x10/0x10
[  870.848450][T22504]  ? hlock_class+0x4e/0x130
[  870.852979][T22504]  ? mark_lock+0xb5/0xc60
[  870.857326][T22504]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  870.863067][T22504]  ? find_held_lock+0x2d/0x110
[  870.867881][T22504]  ? __pfx_lock_release+0x10/0x10
[  870.872932][T22504]  ? trace_lock_acquire+0x14e/0x1f0
[  870.878142][T22504]  ? __pfx_lock_release+0x10/0x10
[  870.883194][T22504]  ___kmalloc_large_node+0x84/0x1b0
[  870.888409][T22504]  __kmalloc_large_node_noprof+0x1c/0x70
[  870.894063][T22504]  __kmalloc_node_track_caller_noprof.cold+0x5/0x5f
[  870.900690][T22504]  ? bitmap_parselist_user+0x24/0x90
[  870.906009][T22504]  memdup_user_nul+0x2b/0x110
[  870.910705][T22504]  bitmap_parselist_user+0x24/0x90
[  870.915853][T22504]  irq_affinity_list_proc_write+0x148/0x260
[  870.921752][T22504]  ? __pfx_irq_affinity_list_proc_write+0x10/0x10
[  870.928177][T22504]  ? rcu_is_watching+0x12/0xc0
[  870.932953][T22504]  ? trace_lock_acquire+0x14e/0x1f0
[  870.938169][T22504]  ? __pfx_irq_affinity_list_proc_write+0x10/0x10
[  870.944599][T22504]  proc_reg_write+0x23d/0x330
[  870.949292][T22504]  ? __pfx_proc_reg_write+0x10/0x10
[  870.954497][T22504]  vfs_write+0x24c/0x1150
[  870.958848][T22504]  ? __fget_files+0x1fc/0x3a0
[  870.963570][T22504]  ? __pfx___mutex_lock+0x10/0x10
[  870.968629][T22504]  ? __pfx_vfs_write+0x10/0x10
[  870.973413][T22504]  ? __fget_files+0x206/0x3a0
[  870.978193][T22504]  ksys_write+0x12b/0x250
[  870.982533][T22504]  ? __pfx_ksys_write+0x10/0x10
[  870.987403][T22504]  do_syscall_64+0xcd/0x250
[  870.991930][T22504]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  870.997839][T22504] RIP: 0033:0x7fc36cb85d19
[  871.002263][T22504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  871.021891][T22504] RSP: 002b:00007fc36d915038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  871.030320][T22504] RAX: ffffffffffffffda RBX: 00007fc36cd75fa0 RCX: 00007fc36cb85d19
[  871.038297][T22504] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  871.046271][T22504] RBP: 00007fc36cc01a20 R08: 0000000000000000 R09: 0000000000000000
[  871.054247][T22504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  871.062232][T22504] R13: 0000000000000000 R14: 00007fc36cd75fa0 R15: 00007ffd3e9d4b48
[  871.070224][T22504]  </TASK>
[  871.073554][T22504] Kernel Offset: disabled
[  871.077953][T22504] Rebooting in 86400 seconds..