last executing test programs:

2m29.751021295s ago: executing program 3 (id=1007):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0xd6ca)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r0 = socket(0x15, 0x5, 0x0)
read$auto(0x3, 0x0, 0x80)
write$auto(r0, &(0x7f0000000000)='}#]/(I\x00', 0x0)
mmap$auto(0x10001, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001480)='/proc/self/net/rxrpc/locals\x00', 0x40, 0x0)
pread64$auto(r1, 0x0, 0x200000000003, 0x2f4a3a23)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
ustat$auto(0x801, 0x0)
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x4, 0x4)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x20082, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0xe0382, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0x4008ae89, 0x0)

2m29.015419115s ago: executing program 3 (id=1012):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
socket(0x28, 0x5, 0x0)
setsockopt$auto(0x400000000000003, 0x28, 0x9, 0x0, 0x56d)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x81, &(0x7f0000000040)=@raw_tracepoint={0x8, r1, 0x0, 0x3}, 0xe81)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_ifindex=r2, 0x81, 0x9c, 0x7b2, 0x1, @relative_fd=0x7, 0x80}, 0x96)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)

2m28.753532791s ago: executing program 3 (id=1013):
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0xa02, 0x0)
r1 = gettid()
tkill$auto(r1, 0x20000007)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000100)={{@raw=0x5541, 0xffffffff, 0x20e, 0x8, "669cbbd9e97511b991bea188e0f1a57cff01facac1f00b2f6ab8635524133f9e22c7717f6050f2d2252ca5f2", @raw=0x8}, 0x0, @integer64=@value=[0x72688633, 0x6, 0x0, 0x4, 0x2, 0x6, 0xe5a, 0xffffffffffffff29, 0x8, 0x7, 0x1f, 0x6, 0x1, 0x6223, 0x800, 0xc0e1, 0x7, 0x6, 0x120000, 0x7, 0x1, 0x4, 0x0, 0x7fffffff, 0x5, 0x10000, 0x80000000, 0x0, 0x57e0, 0x1, 0x134, 0x80005, 0x81, 0x7, 0x1, 0x18000000, 0x2, 0x983, 0x4, 0x4, 0x200, 0x0, 0x94, 0xfffffffffffffff8, 0x9, 0xda, 0x7, 0x7, 0x7fffffffffffffff, 0x5, 0xe109, 0x0, 0x3, 0x0, 0x37ffffffffffd, 0x1, 0x0, 0x6, 0x400, 0x1ce99b7c, 0x9, 0x8, 0x3, 0x401], "282f77b07e718ed4d99a34617774e3a82f982e0f05e516c299a28a585e68e0d908e2c8e50de5016f1de5d432da2cc20e951d8fcdc4f791a11996aad5af504c0d9927e62ef70b23a13735a4fe805c1ce1b6b1d83d21bb42794ec925b4547a3d52d4b5210392111e181719fef9d685b6484b171d76ad633f94a608b818600a6c85"})
r2 = socket(0xa, 0x2, 0x88)
socket(0xa, 0x5, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x1, 0x84)
mmap$auto(0x6c11, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000)
syz_open_procfs$namespace(0x0, &(0x7f00000022c0)='ns/time_for_children\x00')
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00')
shutdown$auto(0x200000003, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0xfbe, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
pipe$auto(0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback}, 0x55)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r2, @new_prog_fd=0x4, 0x4, @old_map_fd=0x3ff}, 0xa3)
socket(0x10, 0x1, 0x106)
symlink$auto(&(0x7f0000000000)='\xe4\'+@\\+%\x00', 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
mknod$auto(&(0x7f0000000000)='\x00\x00\x00\x00\x00\x00\x00', 0x1001, 0x4)
open(&(0x7f0000000000)='./file0\x00', 0xa01, 0x100)
mmap$auto(0x0, 0x10008, 0x16, 0x15, 0x401, 0x80000011)
sysfs$auto(0x2, 0x100000000000030, 0x0)

2m28.239220161s ago: executing program 3 (id=1016):
r0 = socket(0x2, 0x3, 0x100)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
socket(0xa, 0x801, 0x106)
listen$auto(0x3, 0x83)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x480, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000080)=""/101, 0x65)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x400, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x1, 0x5, 0x0)
socket(0x10, 0x2, 0x4)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$auto_nsim_dev_hwstats_l3_disable_fops_hwstats(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/netdevsim/netdevsim3/hwstats/l3/disable_ifindex\x00', 0x841, 0x0)
r3 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91)
read$auto(r3, 0x0, 0x1)
write$auto_nsim_dev_hwstats_l3_disable_fops_hwstats(r2, 0x0, 0x2b)
setsockopt$auto(0x3, 0x1, 0x1, 0x0, 0x9)
bind$auto(r0, &(0x7f0000000080)=@in={0x2, 0x4e23, @multicast2}, 0x7b)

2m28.072398489s ago: executing program 3 (id=1017):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000001440)={0x0, 0x0, &(0x7f0000001400)={&(0x7f0000000080)=ANY=[@ANYBLOB="071300", @ANYBLOB="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"], 0x1354}}, 0x40001)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x6, 0x0)
pidfd_open$auto(0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x1d, 0x2, 0x6)
io_uring_setup$auto(0x6, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x2, 0x6, 0x0)
epoll_create$auto(0x4)
epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
socket(0x10, 0x3, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

2m27.622791141s ago: executing program 3 (id=1021):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x2) (async)
pidfd_getfd$auto(0x3, 0x1, 0x100000000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
init_module$auto(0x0, 0xffff9, 0x0)
unshare$auto(0x40000080) (async)
mmap$auto(0x6cf5e745, 0x800000000004, 0x4000000000df, 0x40eb1, 0xffffffffffffffff, 0x300000000000) (async)
r1 = socket(0xa, 0x801, 0x84) (async)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/controlC1\x00', 0x20040, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_REPLACE(r2, 0xc1105518, &(0x7f00000001c0)={{@inferred, 0x4, 0x10001, 0xb, "58a732e4f73a26bf0d5924b32c7f641b870461318add2e31420cdc66f14f4a240781b1b1800084506f73bc9d", @raw=0x80}, 0x2, 0xffff, 0x7, @inferred, @reserved="38375c405233ea8084784ddb1ace232c64399d87d409eb2f36d9f5448c1a43dc0bc791e19ab07197dc0632c073769fc9ed53676560dcc714f73920aadc483b09c3db58638027c9a49fc0e13e708b5345bab5d2778d3d93c3603302c831a6ed35975cb34dec29bd40216793a5fa5f100f4ca171b9b25d1a79a874213d41233f2e", "7f7b9de47b25a51c538a7d273180a5557f2fee0f40bee5d4326cf95d0fdf2bfd6619bf3854e89bbbc59a3196305de800cf9c54a11afb0c248781267baa0ea51f"}) (async)
listen$auto(r1, 0x3) (async)
getsockopt$auto(r0, 0x84, 0x6a, 0x0, &(0x7f0000000000)=0x1000c0)
stat$auto(0x0, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0)
ioctl$auto(r3, 0x80045113, 0x3) (async)
close_range$auto(0x2, 0x8000, 0x0) (async)
ioctl$auto(0x3, 0x1276, 0x7) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/nfc/nfc0/rfkill0/index\x00', 0xa0440, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000080)=""/64, 0x40) (async)
sendto$auto(r0, &(0x7f0000000140)="01a633781b255889e1f22698a141488e67886c1b8ab07d8a5fb20c29d4c07d1ab311c3dd266a82143226385a625663bcd96fc4caccec43cbe592cd1dff141c2b67549734322d0d8853dee2a9fc74b5449759a86f9d922dfe09e398a2db27baf25c3c6fd9378cd8db66188e7619c4ab8e479e3457b405a3866265d3917bfd9a55729fa001e99e12", 0x100, 0x5, &(0x7f0000000080)=@generic={0x3, "4b6abcb2a1aa90ae3e9870212a92"}, 0x7ff) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) (async)
socket(0x10, 0x2, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x5, 0x4d3, 0x7)
syslog$auto(0x4, &(0x7f0000000040)='..\x00', 0x7)

2m24.060637929s ago: executing program 1 (id=1040):
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000006880), 0x140, 0x0) (async)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000006880), 0x140, 0x0)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000240)="2a1d264add69b6443126ac8caf6ebbff950e1a647d6a08a1b55dde72409b458e868cfb694987f500e948fcfe47942ebd6279669edb771360dddd4cf8db06a2039760911d9f343746822743d5e50b6dd883b5497f9355d8dd056e7c1b5e8bc1f33cbd5c0eaa78f0f61de725697df000c293dfe38b162207", 0x77)
ioctl$auto(0x3, 0x5501, 0xfffffffffffff4e0)
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/target/version\x00', 0x200000, 0x0)

2m23.948673827s ago: executing program 1 (id=1042):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8081, 0x0)
openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
setns(r0, 0x0)
io_uring_setup$auto(0x6, &(0x7f0000000140)={0x8, 0x6, 0x2, 0xd93, 0x0, 0x16a12000, r0, [0x5, 0x6, 0xfffff781], {0xd, 0x7, 0xf5, 0x0, 0x8, 0x9, 0xade4, 0x0, 0x52}, {0x80000000, 0x0, 0x721d, 0x100, 0x5, 0xe, 0x1, 0x7f, 0x2f5f}})
openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000100), 0x100040, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, 0x0, 0x502, 0x0)
sysfs$auto(0x2, 0x4, 0x4)
mincore$auto(0x1000, 0x8001, 0x0)
r1 = io_uring_setup$auto(0x877, 0x0)
io_uring_enter$auto(r1, 0xcd00, 0xcd00, 0x7, 0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00')
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x15, 0x8}, 0x7)
mprotect$auto(0x1ffff000, 0x8000000000002001, 0x4)
bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_7={@btf_id=0xe9f, 0x4, 0x1c}, 0xa3)
bpf$auto(0x3, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/uapsd_queues\x00', 0x20c02, 0x0)
lseek$auto(0x3, 0x7fffffffffffffff, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty39\x00', 0x40001, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
lstat$auto(0x0, 0x0)
poll$auto(&(0x7f0000000d40)={0x3, 0x1, 0xa}, 0x5, 0x400)
ioctl$auto(0x3, 0x5404, 0x38)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)

2m23.241456087s ago: executing program 1 (id=1044):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
unshare$auto(0x40000080) (async, rerun: 64)
listen$auto(0x3, 0x83) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80, 0x0) (async, rerun: 32)
ioperm$auto(0x6, 0x10001, 0x0) (async, rerun: 32)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
read$auto_snd_ctl_f_ops_control(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) (async)
socket(0x2, 0x3, 0x1)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
ioctl$auto(0x3, 0x800005411, 0x38) (async, rerun: 32)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x6, 0x2) (rerun: 32)
write$auto(0x3, 0x0, 0x10001)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x141201, 0x0) (async)
write$auto(0x3, 0x0, 0x100082) (async)
close_range$auto(0x2, 0x8000, 0x0) (async, rerun: 32)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/disk\x00', 0x100, 0x0) (async, rerun: 32)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
socket(0x28, 0x1, 0x82) (async, rerun: 32)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) (async, rerun: 32)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

2m22.008616169s ago: executing program 1 (id=1047):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/system/node/node0/hugepages/hugepages-1048576kB/demote_size\x00', 0x129982, 0x0)
write$auto(r0, 0x0, 0x40db)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0)
move_pages$auto(0x1, 0x3, 0x0, 0x0, 0x0, 0x8000000000000000)
r2 = open(0x0, 0x4140, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_CARD_INFO(r2, 0x81785501, &(0x7f0000000380)={0x86d, 0x0, "4823796a68c29c7d15926833b7437ba5", "38b3ff2d0000000000000000002000", "5e021e9cce9bb978220010000000000000bd006c817d45ac4dd37342a5d16f15", "c600b3ad1fee0dc4f1f70c748a9d88a923079c9bf12b5a9ccf3ed13fc35db41358ede7513acffa04375f00150981e04a2dc4fd41d8478766ed696e0d0e6ea1a846221c9215eb91b3fb8cada8cc4d451a", "f8c27dd4db91c5a99876d50800913566", "f26ca985c135036f787d44494277fd88f76241a19fc17b890c6c6638c879e229f664d898046d9cceb5813ea18b5274efff11d292e73572afcd704f3ba9282da84a70620567af98e3df58c3d00f091be4", "993237b083425a7ad327c2ab9e13fe280e4197f3e485877b56a0c0d8065c51643ddb48525d058b79a240fec9d05af81030bd7a0180c6816292fa97743e1b9ae36f748dfb1b8cef0b85ddc3a3b2c38e0d1799e02afccdc30fa5d3e1336b7607bd156575ac354dffb198e18a355a8fb0ec14c6e4ceb27ea3d6c6d23e4f666a4d92"})
ioctl$auto(r2, 0x1, 0x9)
ioctl$auto(r1, 0xc0205649, 0x4)

2m21.577942888s ago: executing program 1 (id=1051):
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x11, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@ethernet={0x1, @multicast}, 0x6a)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r1 = socket(0x11, 0x80003, 0x300)
futex$auto(0x0, 0x6, 0x6, 0x0, 0x0, 0x9)
setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4)
r2 = socket(0x11, 0x3, 0x9)
write$auto_tomoyo_operations_securityfs_if(0xffffffffffffffff, &(0x7f0000000200)="0a1b9a", 0x3)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
sendmmsg$auto(r2, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)='L', 0x49}, 0x5, 0x0, 0x5, 0x1}, 0x5}, 0x2, 0x100)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000c80), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_DISASSOCIATE(r3, &(0x7f0000007480)={0x0, 0x0, &(0x7f0000007440)={&(0x7f0000006b80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010027bd7000fcdbdf252800000006000e0500000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000005}, 0xc000)
getpeername$auto(r0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
tkill$auto(0x80000000000001, 0x7)
io_uring_setup$auto(0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/nfs/parameters/nfs_mountpoint_expiry_timeout\x00', 0xa001, 0x0)
write$auto(r5, &(0x7f0000000040)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x2, 0xc)
setsockopt$auto(0x5, 0x104000000000010e, 0x1, 0x0, 0x16)

2m20.398667153s ago: executing program 1 (id=1054):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001040)='/sys/devices/virtual/block/ram11/queue/discard_zeroes_data\x00', 0x80800, 0x0)
r0 = prctl$auto(0x3e, 0x1, 0x4, 0x17, 0x16e)
unshare$auto(0x40000080)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/conf/veth1_to_batadv/route_localnet\x00', 0x42a81, 0x0)
pwrite64$auto(r1, &(0x7f0000000200)='/proc/sys/net/Vpv]~\xf5\xcdnf/aforwarh\xe7\xfcdi\x00\x00\x000\xa5\xc4\x7fKR\xd44\x18z\x8d\xc4\xd0qX\xd5\vV\xe7\xb7\xe1V\xe7\x1aq\xb3\xcd\xe0.\x00P\xfa\x95\x9eYT\x1dG\x1f\xb3,\xcb\x1c\x04\xcc\xe2\x8c`/\xc9\xee\x87\xee', 0x1, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socket(0x840000000002, 0x3, 0xff)
capget$auto(0x0, 0xfffffffffffffffe)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
lsm_list_modules$auto(0x0, 0x0, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x108800, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mlockall$auto(0x8000000000000001)
mprotect$auto(0x1ffff000, 0x810002, 0x6)
syz_clone3(0x0, 0x0)
sendmsg$auto_NL80211_CMD_SET_WOWLAN(r0, 0x0, 0x880)
mmap$auto(0x0, 0x20006, 0xdf, 0xf9, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

2m20.090804894s ago: executing program 32 (id=1054):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001040)='/sys/devices/virtual/block/ram11/queue/discard_zeroes_data\x00', 0x80800, 0x0)
r0 = prctl$auto(0x3e, 0x1, 0x4, 0x17, 0x16e)
unshare$auto(0x40000080)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/conf/veth1_to_batadv/route_localnet\x00', 0x42a81, 0x0)
pwrite64$auto(r1, &(0x7f0000000200)='/proc/sys/net/Vpv]~\xf5\xcdnf/aforwarh\xe7\xfcdi\x00\x00\x000\xa5\xc4\x7fKR\xd44\x18z\x8d\xc4\xd0qX\xd5\vV\xe7\xb7\xe1V\xe7\x1aq\xb3\xcd\xe0.\x00P\xfa\x95\x9eYT\x1dG\x1f\xb3,\xcb\x1c\x04\xcc\xe2\x8c`/\xc9\xee\x87\xee', 0x1, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socket(0x840000000002, 0x3, 0xff)
capget$auto(0x0, 0xfffffffffffffffe)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
lsm_list_modules$auto(0x0, 0x0, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x108800, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mlockall$auto(0x8000000000000001)
mprotect$auto(0x1ffff000, 0x810002, 0x6)
syz_clone3(0x0, 0x0)
sendmsg$auto_NL80211_CMD_SET_WOWLAN(r0, 0x0, 0x880)
mmap$auto(0x0, 0x20006, 0xdf, 0xf9, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

2m12.432408106s ago: executing program 33 (id=1021):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x2) (async)
pidfd_getfd$auto(0x3, 0x1, 0x100000000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
init_module$auto(0x0, 0xffff9, 0x0)
unshare$auto(0x40000080) (async)
mmap$auto(0x6cf5e745, 0x800000000004, 0x4000000000df, 0x40eb1, 0xffffffffffffffff, 0x300000000000) (async)
r1 = socket(0xa, 0x801, 0x84) (async)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/controlC1\x00', 0x20040, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_REPLACE(r2, 0xc1105518, &(0x7f00000001c0)={{@inferred, 0x4, 0x10001, 0xb, "58a732e4f73a26bf0d5924b32c7f641b870461318add2e31420cdc66f14f4a240781b1b1800084506f73bc9d", @raw=0x80}, 0x2, 0xffff, 0x7, @inferred, @reserved="38375c405233ea8084784ddb1ace232c64399d87d409eb2f36d9f5448c1a43dc0bc791e19ab07197dc0632c073769fc9ed53676560dcc714f73920aadc483b09c3db58638027c9a49fc0e13e708b5345bab5d2778d3d93c3603302c831a6ed35975cb34dec29bd40216793a5fa5f100f4ca171b9b25d1a79a874213d41233f2e", "7f7b9de47b25a51c538a7d273180a5557f2fee0f40bee5d4326cf95d0fdf2bfd6619bf3854e89bbbc59a3196305de800cf9c54a11afb0c248781267baa0ea51f"}) (async)
listen$auto(r1, 0x3) (async)
getsockopt$auto(r0, 0x84, 0x6a, 0x0, &(0x7f0000000000)=0x1000c0)
stat$auto(0x0, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0)
ioctl$auto(r3, 0x80045113, 0x3) (async)
close_range$auto(0x2, 0x8000, 0x0) (async)
ioctl$auto(0x3, 0x1276, 0x7) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/nfc/nfc0/rfkill0/index\x00', 0xa0440, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000080)=""/64, 0x40) (async)
sendto$auto(r0, &(0x7f0000000140)="01a633781b255889e1f22698a141488e67886c1b8ab07d8a5fb20c29d4c07d1ab311c3dd266a82143226385a625663bcd96fc4caccec43cbe592cd1dff141c2b67549734322d0d8853dee2a9fc74b5449759a86f9d922dfe09e398a2db27baf25c3c6fd9378cd8db66188e7619c4ab8e479e3457b405a3866265d3917bfd9a55729fa001e99e12", 0x100, 0x5, &(0x7f0000000080)=@generic={0x3, "4b6abcb2a1aa90ae3e9870212a92"}, 0x7ff) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) (async)
socket(0x10, 0x2, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x5, 0x4d3, 0x7)
syslog$auto(0x4, &(0x7f0000000040)='..\x00', 0x7)

17.428206256s ago: executing program 2 (id=1395):
socketpair$auto(0x80001e, 0x4, 0x9, 0x0) (async)
r0 = socketpair$auto(0x80001e, 0x4, 0x9, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv6/conf/default/ignore_routes_with_linkdown\x00', 0x42a81, 0x0)
pwrite64$auto(r1, &(0x7f0000000000)='/proc/sys/net/ipv6/coX\t/all/forwarding\x00', 0x1, 0x2)
openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci0/force_wakeup\x00', 0x88f42, 0x0) (async)
r2 = openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci0/force_wakeup\x00', 0x88f42, 0x0)
write$auto_force_wakeup_fops_hci_vhci(r2, &(0x7f0000001780)='T', 0x1)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000100)=""/15, 0xf)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
io_uring_setup$auto(0xffffffff, &(0x7f0000000080)={0xfffffe01, 0x2, 0x8, 0x56146727, 0x7fffffff, 0x7d, r2, [0x8, 0x0, 0xfffff7ad], {0x0, 0x43beec75, 0xffffffff, 0x0, 0x3, 0x1, 0x80000001, 0x8, 0x6}, {0x200000, 0x8001, 0xc, 0x7, 0x8001, 0xd97a, 0x3, 0xdb43, 0x6}})

17.10648057s ago: executing program 2 (id=1396):
r0 = socket(0xa, 0x801, 0x106)
r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec27\x00', 0x80200, 0x0)
ioctl$auto_CEC_S_MODE(r1, 0x40046109, 0x0)
unshare$auto(0x40000080)
r2 = socket(0x2b, 0x1, 0x1)
r3 = getsockopt$auto(r2, 0x1, 0x1a, 0x0, 0x0)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_RSS_GET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000a80)={0x1c, r6, 0x301, 0x709c2b, 0x25dfdc02, {}, [@ETHTOOL_A_RSS_CONTEXT={0x8, 0x2, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20048847}, 0x0)
mlockall$auto(0x3)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
r7 = socket(0xa, 0x2, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r8 = open(0x0, 0x22240, 0x155)
connect$auto(0x3, &(0x7f00000001c0)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x56)
r9 = open(0x0, 0xc162, 0x0)
ftruncate$auto(r9, 0xdaaf)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000200), r2)
sendfile$auto(r7, r8, 0x0, 0x10000007fffeffa)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_SET_STATION(r3, &(0x7f0000000180)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f00000002c0)={0x588, 0x0, 0x300, 0x70bd25, 0x25dfdbfb, {}, [@NL80211_ATTR_MAC_ADDRS={0x32d, 0xa6, 0x0, 0x1, [@typed={0x4, 0x10b}, @nested={0x30, 0xdd, 0x0, 0x1, [@generic="5454df6a34f014213e07b309c72ff5275a0ff979", @typed={0x8, 0x146, 0x0, 0x0, @uid=0xee00}, @nested={0x4, 0x54}, @nested={0x4, 0xf9}, @nested={0x4, 0x64}, @nested={0x4, 0xfa}]}, @generic="1aa8cb477a80257ac506603266b1845e5312bf9b2810d226e4c3a8fb4f4d4c3c236357fcf2c08dd1f4670446d63a245064a0e2c824cf5395a37e628d93eea42ba2f808b2a21818156ae98386e8335fd65e78f406612f52ea132ecf36dc33a269aacf77d25751afdc79516496138085272fbb651b5d93b066954378b5942000b9ef6e959e89d3f7130e1a9aaa0bcb628e9357b5e616f7b68e8b001e21e8c8b143cc2b2fe1d47cf5c874e603d8a0fd8226bef4e5ce0f914c", @nested={0x18, 0x73, 0x0, 0x1, [@typed={0x8, 0x7e, 0x0, 0x0, @uid=0xffffffffffffffff}, @nested={0x4, 0x11a}, @typed={0x8, 0xe3, 0x0, 0x0, @ipv4=@multicast1}]}, @generic="b05d9ce890e978d6539de77bebb5f108da2f6c873f869520fba76dd5c7283a07ea4301733a931fd7a1c7217ceb46b3590217a6d9a396f90ceabe995596c2b7685fb289603b18c602c9c0366dae08034979154b0c490b4cfb4e7a4c1a1509c9a6cbceae64f714aed97b72371e74cad0ddcbcfb1cee33556be796d10f65cd48a3779adade0fe9959649a5280137ad606571e3f8ac37d04f31be4028a0f4705d9827c874950209dbc3bcb48fd8f9b02", @nested={0x10, 0x10b, 0x0, 0x1, [@typed={0x4, 0xcc}, @typed={0x8, 0x8f, 0x0, 0x0, @u32}]}, @nested={0x166, 0x145, 0x0, 0x1, [@nested={0x4, 0x3a}, @typed={0x14, 0x34, 0x0, 0x0, @ipv6=@empty}, @generic="e82de5a33d111aa7d7ba9aa37dcf17bec018e44eb009cff12be01accdca246c5eb81a287361bdc6b5dcb9ac582f1b8dac3f1d751bb", @typed={0x8, 0xcd, 0x0, 0x0, @u32=0x5}, @nested={0x4, 0xa0}, @generic="ecce3cccea14e144ea6f1a67b2b3b49e50bf30436ef6a70316f6459495952e436cd22ee1caa9990c2c8d31d247849cf7c18e78ad1d308193e1ddc40ce91c625c2be1b1f3b638bdaac93a3449384a2a9cfa9ca117566ca91ebddc0b3db25f1defed650bd03954fd939a433c04f0ca55be6455594c54ffcc89c580d5ad9d99c52d4422e5c550e48ea2907aafcef88974d65327e1076c9e0bce07ee4995be034a9868ef8e69a19a1f437cfc3b2fd2cafcace1979c57e99e9c0cefa31bab0b35befe5d14e87cde0f9cce95ae80718d6164d1805b8ebda3ee1fe8ca003a95ea8c00dad26b75bfa1d2dadfc36d10fe8863a076aa84745eec", @typed={0x14, 0xb2, 0x0, 0x0, @ipv6=@loopback}]}]}, @NL80211_ATTR_IE_PROBE_RESP={0x1b7, 0x7f, "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"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xa, 0xf9, "05f1702ec97e"}, @NL80211_ATTR_MAC={0x7d, 0x6, "904262674d937ece3f7785fc888a44b26550a13015fc00d5c7164100abd3726f1bd99fabd4870d8ee556f26e320750c55dfaa3df9c9a387ca13cfbae41519acf90376fe7e5c2fb69e2c24e3bf3f0202e1c1d4a6ef56a81ee50f98241ca5e4a554f5dddaebb8f59cb8944981a4dbc62a8a6159534261524504e"}]}, 0x588}, 0x1, 0x0, 0x0, 0x80040}, 0x8000)
setsockopt$auto(0x3, 0x0, 0xf, 0x0, 0xb)
getrandom$auto(0x0, 0x6000000, 0x3)
msgctl$auto(0x3, 0x46, &(0x7f0000000900)={{0x1e, <r10=>0x0, 0xee01, 0xce, 0x40, 0x7, 0x5}, &(0x7f0000000880)=0x10, &(0x7f00000008c0)=0xff, 0xffffffff, 0x7, 0x10000, 0x4, 0x9, 0xff, 0x0, 0x5, @raw=0x9, @raw=0xfffffff9})
sendmsg$auto_NL80211_CMD_DEAUTHENTICATE(r0, &(0x7f0000000a00)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x30, r4, 0x10, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x4}, @NL80211_ATTR_REG_RULES={0x10, 0x22, 0x0, 0x1, [@nested={0x4, 0x100}, @typed={0x8, 0xd3, 0x0, 0x0, @uid=r10}]}, @NL80211_ATTR_CONTROL_PORT={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x40c4}, 0x40000)
setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x2)

15.172568731s ago: executing program 0 (id=1401):
r0 = socket(0x10, 0x3, 0x6)
mmap$auto(0x0, 0x7f, 0x1, 0xeb1, 0x401, 0x8000)
acct$auto(&(0x7f0000000000)='/proc/02/smp_ity_list\x00\x00\x00\x00\x00\x00')
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vbi7\x00', 0x400, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
ioctl$auto(0x3, 0x40085618, 0x38)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
io_uring_setup$auto(0xe, &(0x7f0000000100)={0xffffffff, 0x1, 0x0, 0xa4c, 0x7, 0x10, r0, [0x0, 0x1, 0xa], {0x4, 0x6f4, 0x0, 0xff, 0xa, 0x5, 0x130, 0x1ff, 0x3}, {0xd5, 0x0, 0xff, 0x4, 0x4f54, 0x80002, 0x4, 0x6, 0x99a}})
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

14.224642848s ago: executing program 0 (id=1403):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x40000, 0x0)
socketpair$auto(0xffffffff, 0x5, 0x8000000000000000, 0x0) (async)
r1 = fcntl$auto(r0, 0x3, 0x0)
unshare$auto(0x40000080) (async)
connect$auto(0x3, 0x0, 0x55) (async)
r2 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/irq/15/affinity_hint\x00', 0x18240, 0x0)
r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x9, 0x11, r3, 0x0) (async)
ioctl$auto(0x3, 0x80084d17, 0x38)
r4 = syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f00000000c0), r1) (async)
r5 = getpid()
sendmsg$auto_MAC802154_HWSIM_CMD_GET_RADIO(r1, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000380)={&(0x7f0000000100)={0x26c, r4, 0x100, 0x70bd28, 0x25dfdbfb, {}, [@MAC802154_HWSIM_ATTR_RADIO_EDGES={0x256, 0x3, 0x0, 0x1, [@typed={0x8, 0xc6, 0x0, 0x0, @fd=r2}, @nested={0x159, 0xf7, 0x0, 0x1, [@nested={0x4, 0x5a}, @generic="0557b0ff2b1dcacf598b0244e06dcd143e6541b2b92c7ff757a6f745153ad4dfe0fe03c90d342e02f9033aeebf4740f7834690627ed07854bd1d36d3bd4f60114baa418babe000ae17f50f97b57c6e5b269a6da74f7d88fbf90eb602e38273585860b1186db84324137871568c29da46a5da57972b177f8a5bef7637058ba64d9baf427df4eab28353", @typed={0x8, 0x137, 0x0, 0x0, @fd}, @typed={0x14, 0xa8, 0x0, 0x0, @ipv6=@local}, @generic="980a1b30b01f1fdacbfe91d211469cc89006020bff51571cb35acab6caa22bc1d4f6d0bdff16e3a1a1c034565d058ff0ad7f2788a70ff22cad34", @nested={0x4, 0xaf}, @nested={0x4, 0x124}, @generic="3df0b8a2c5daaa96afdccacb817c6dff74c49491b80aede7b11df5dd2048d056b89e429d2e953d66186bba3677ae03cc1ea4f605cc604ad5abc09dc2dc140c26ad6f76dbd8335ede1eeb82cef6c68c8e252148d0f023f3f96ac8177a5d9f434076ea85be0b3cda7aaa22"]}, @typed={0x8, 0x92, 0x0, 0x0, @pid=r5}, @typed={0xc2, 0x32, 0x0, 0x0, @binary="6a3ceb93563f0ee8160ed622b957ddac81082de623e7e576e0309e1f90786afe3ce3ef5baa4fd976c291988aeda8005e541ab0ccb7765cfa0fb127ff05fc8e0befd50d9667ac582081b5204e331cad9ae3a7bd45f08968f23becc1b9b5cf10a35a75b3a6e05f477e867b5a028061bd34068ae6222019ba22352d5ba187ecbce03e0b6bb0c4a4ea4526487d9887210792ba076a6aeacc32f223731e83f091fc7b891e963ccc7f4f996b58f0c6fbc84a587fdf43bfbc0605866ba48a479fb7"}, @generic="1cbd46b9290b1e7b7a71c73f52af279f81", @generic="c43922a37ca17fb10d8b29ea00bef506fa"]}]}, 0x26c}, 0x1, 0x0, 0x0, 0x40}, 0x10) (async)
unshare$auto(0x8)

12.546269355s ago: executing program 2 (id=1406):
r0 = memfd_secret$auto(0x1)
read$auto_fops_u32_ro_(r0, &(0x7f0000000000)=""/109, 0x6d)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
rseq$auto(&(0x7f0000000300)={0x0, 0x9, 0x0, 0x4, 0xffffffff, 0xfffffffe}, 0x8000, 0x0, 0x6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop12/size\x00', 0x0, 0x0)
socket(0x29, 0x3, 0x0)
getpriority$auto(0x2, 0x0)
setitimer$auto(0x1, &(0x7f0000000000)={{0x7fe, 0x7f}, {0x800100004, 0x1}}, 0x0)
getitimer$auto(0x1, &(0x7f0000000280)={{0x101}, {0x8, 0x80}})
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
fsopen$auto(0x0, 0x3)
mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r1, 0x84, 0x75, 0x0, 0x0)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0)
mincore$auto(0x5, 0x7fffffffffffffff, &(0x7f0000000100)='/dev/dma_heap/system\x00')
socketpair$auto(0xfff, 0x0, 0x2, &(0x7f0000000140)=0x3)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
r2 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x45, 0x4909b6f8, 0x1ffdf, 0x7, 0x200003, 0x2, 0xa121, 0x3, 0x6, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x80, 0x100000000, 0x0, 0x7, 0x2100, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffbffd, 0xfffffffffffffffd, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x2000000000000000, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x7, 0x3, 0xfffffffffffffffa, 0x8, 0x4000000000, 0x7]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
read$auto_proc_pid_set_timerslack_ns_operations_base(r0, &(0x7f0000000380)=""/228, 0xe4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r2, &(0x7f00000000c0)={{0x0, 0x0, &(0x7f0000000080)={0x0, 0xfbf}, 0x3, 0x0, 0x7, 0xa505}, 0x7ff}, 0x7, 0x4008)

12.328570864s ago: executing program 5 (id=1407):
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x6946c0, 0x0)
fallocate$auto(r0, 0x9e, 0x200, 0x9)
mmap$auto(0x2, 0x6, 0x4000000000e3, 0x40ebf, r0, 0x300000000040)
bind$auto(0x3, 0x0, 0x6a)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r1 = socket(0x2, 0x5, 0x0)
r2 = getsockopt$auto(r1, 0x84, 0xd, 0x0, 0x0)
r3 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r3, r3, 0x1)
open(0x0, 0x22240, 0x155)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0xa0dfc49763a9f89, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
write$auto_fops_x64_ro_(r2, &(0x7f0000000000)="d08e31edaaa21f10a0b67e25fbf6562c7dd9ca54efb4bc9de85518c510f7d223435822178b2b20233ea01b03f699c97ec81d220e49b2e56ae366780f6daf05b5ee24de2b9dde0765aa0809deb12e4e4e15ae698b8cb1834de8f7079ab11e8f4afe4591699f710fb4ccd896bf2d538ce985fe646d55c3c9f6f8c10c48055e3306306b4001550fb5e73ae4909d650c08c924d5d828026a9cf72cb34ce9f1bdc6a560c5b15355e7af6830197f2fedbe503a416803497dedc9f88b250f2ef96cd74b5b40575ee947a40f", 0xc8)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0xe0382, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r4, 0x4008ae89, 0x0)

10.456632307s ago: executing program 0 (id=1410):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xed)
pwrite64$auto(0xffffffffffffffff, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x5)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
mount$auto(&(0x7f0000000000)='pimreg\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd057, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r1 = openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, &(0x7f0000000000), 0x82c00, 0x0)
ioctl$auto_BINDER_CTL_ADD(r1, 0xc1086201, 0x0)
r2 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x1000, 0x400, 0x7ff}, 0x9, 0x0)
landlock_restrict_self$auto(r0, 0x0)
symlink$auto(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000180)='./file0\x00')
r3 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f00000037c0)='/proc/self/attr/current\x00', 0x1, 0x0)
write$auto_proc_pid_attr_operations_base(r3, 0x0, 0x0)
mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = socket(0x29, 0x2, 0x0)
setsockopt$auto(r4, 0x119, 0x1, 0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
futex$auto(&(0x7f0000000040)=0x9, 0x5, 0x0, 0x0, 0x0, 0xc0040000)
r5 = socket(0x2, 0x3, 0xa)
getsockopt$auto(r5, 0x0, 0x29, 0x0, &(0x7f0000000040)=0xdbb)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r6)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={0x0, 0x40}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ram9\x00', 0x1c5800, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop5\x00', 0x0, 0x0)

9.357199383s ago: executing program 4 (id=1412):
r0 = socket(0x2, 0x3, 0x100)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
socket(0xa, 0x801, 0x106)
listen$auto(0x3, 0x83)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x480, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000080)=""/101, 0x65)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x400, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x1, 0x5, 0x0)
mmap$auto(0x0, 0x9, 0x3ff57697, 0x9b72, 0x2, 0x8000000000008000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(0x3, 0x10000000084, 0x76, 0x0, 0x8)
socket(0x10, 0x2, 0x4)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_nsim_dev_hwstats_l3_disable_fops_hwstats(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/netdevsim/netdevsim3/hwstats/l3/disable_ifindex\x00', 0x841, 0x0)
r3 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91)
read$auto(r3, 0x0, 0x1)
write$auto_nsim_dev_hwstats_l3_disable_fops_hwstats(r2, 0x0, 0x2b)
setsockopt$auto(0x3, 0x1, 0x1, 0x0, 0x9)
bind$auto(r0, &(0x7f0000000080)=@in={0x2, 0x4e23, @multicast2}, 0x7b)

9.317573207s ago: executing program 0 (id=1413):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffa, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0x1, 0x3}, 0x8000, 0x0, 0x6)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x80805, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
semctl$auto(0x3, 0x2, 0x13, 0x9)
fcntl$auto(0xffffffffffffffff, 0xf, 0x6)
memfd_secret$auto(0x0)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
fchownat$auto(0x2, 0x0, 0x4, 0x8001, 0x1000)
unshare$auto(0x40000080)
r0 = openat$auto_show_traces_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/available_tracers\x00', 0x40000, 0x0)
read$auto_show_traces_fops_trace(r0, &(0x7f0000000640)=""/188, 0xbc)
read$auto_show_traces_fops_trace(r0, &(0x7f0000000000)=""/179, 0xb3)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000e80), 0xffffffffffffffff)
r1 = socket(0x10, 0x3, 0x6)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="fc000000", @ANYRES16=r2, @ANYBLOB="01002dbd7000fedbdf2505000000e6000400110008002e00", @ANYRES16, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4100f7b4a8132d759892f424887b55fbcf38553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43341a1e670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100045800c00c50003000000000000001800368014006c800800150002020000050018005d0000000000d0cb580b273180"], 0xfc}, 0x1, 0x0, 0x0, 0x4044800}, 0x50)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r1)
bind$auto(0x3, 0x0, 0x6a)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = open(0x0, 0x22240, 0x155)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x20082, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(r3, r4, 0x6)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0xe0382, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)

9.157103844s ago: executing program 4 (id=1414):
r0 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f0000001500)=@link_update={r0, @new_prog_fd=0x4, 0x8, @old_map_fd}, 0xa3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', <r3=>0x0})
sendmsg$auto_NET_SHAPER_CMD_GROUP(r1, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd7000dedbdf25040000000400018004000a8008000800", @ANYRES32=r3, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYRESOCT, @ANYRES16=r5, @ANYBLOB="050327bd7000ffdbdf252b000000", @ANYRES64], 0x14}}, 0x84)
sendmsg$auto_NL802154_CMD_DEL_SEC_DEV(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="00012bbd7000fbdbdf251b0000000500100008000000083afba50e00000008000c0004000000080016000300000006000a0040000000050026000000000005001f00000000000500260000000000140004006970766c616e30000000000000000000"], 0x68}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYRESDEC=r0, @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a000100d19d0c87343100000a0001000000000000000000080003003800000008000200", @ANYRES32=0x0, @ANYBLOB="0a0001000180c20000000000"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13", @ANYRES32=0x0], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xd4}, 0x8, 0x0, 0x0, 0x9}, 0x40007}, 0x3, 0x0)
mmap$auto(0x0, 0x202000d, 0x100000000000007, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r6 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x6a)
sendmmsg$auto(r6, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)

8.78701443s ago: executing program 5 (id=1415):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x4070bd25, 0x25dfdbff, {}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x200}]}, 0x1c}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810)
socket(0x2, 0x1, 0x106)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r3, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x20000060}, 0x20000010)
madvise$auto(0xfffffffffffffffe, 0xffffffffffff0005, 0x19)
mmap$auto_comedi_fops_comedi_fops(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2, 0x2010, r0, 0xfffffffffffffff8)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x1, 0x7, 0xf3, 0x2000eb7, 0x5, 0x8000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
read$auto(0x3, 0x0, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r6, &(0x7f00000110c0)={0x0, 0x0, &(0x7f0000011080)={&(0x7f000000e000)=ANY=[@ANYBLOB="18000000", @ANYRES16=r7, @ANYBLOB="010026bd87adc545df2514000000040007"], 0x18}, 0x1, 0x0, 0x0, 0x104}, 0x40)
syz_genetlink_get_family_id$auto_nl80211(0x0, r5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x5, 0x0)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd)

8.415555057s ago: executing program 4 (id=1416):
execve$auto(0x0, 0x0, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket(0x2, 0x2, 0x1)
bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_4={0x1b, r0, 0x2, r0}, 0x10)
sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(0xffffffffffffffff, 0x0, 0x4010)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x92000, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x6, 0x100)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x5, 0x801, 0x104)
socket(0xa, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f00000000c0)=@link_update={r2, @new_prog_fd=0x4, 0x91e, @old_map_fd=r1}, 0xa3)
faccessat2$auto(0xffffffffffffff9c, 0x0, 0x1, 0xbc6c)
r3 = socket(0xa, 0x1, 0x84)
connect$auto(0xffffffffffffffff, &(0x7f0000000140)=@tipc=@id={0x1e, 0x3, 0x1, {0x4e1e, 0x3}}, 0x291f)
open(0x0, 0x101800, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, r3)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)

6.724548647s ago: executing program 2 (id=1417):
r0 = socket(0x1e, 0x2, 0x6)
socket(0x2, 0x1, 0x0) (async)
r1 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
close_range$auto(0x2, r0, 0x0)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
mmap$auto(0xfab2, 0x2020008, 0x3, 0x800000565e, 0xfffffffffffffffa, 0x400000008005)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x7, 0x6, 0x4000000000df, 0xeb1, r0, 0x8000)
fsmount$auto(r2, 0x0, 0x6) (async)
fsmount$auto(r2, 0x0, 0x6)
r3 = epoll_create1$auto(0x2)
syz_genetlink_get_family_id$auto_seg6(0x0, r3) (async)
syz_genetlink_get_family_id$auto_seg6(0x0, r3)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1, 0x1, 0x0)
r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x282, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
ioctl$auto_SNDCTL_DSP_SYNC(r4, 0x5001, 0x7)
ioctl$auto_SNDCTL_DSP_SPEED(r4, 0xc0045002, 0x0) (async)
ioctl$auto_SNDCTL_DSP_SPEED(r4, 0xc0045002, 0x0)
mbind$auto(0x2000, 0x108000004, 0x100000000, 0x0, 0x474, 0x101)
r5 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sg0\x00', 0x82002, 0x0)
ioctl$auto(r5, 0x1274, r5)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x8d00, 0x0) (async)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x8d00, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xaea2, 0xffffffffffffffff)
bind$auto(0x3, &(0x7f0000000180)=@tipc=@nameseq={0x1e, 0x1, 0x1, {0x41, 0x4, 0x2}}, 0x6a) (async)
bind$auto(0x3, &(0x7f0000000180)=@tipc=@nameseq={0x1e, 0x1, 0x1, {0x41, 0x4, 0x2}}, 0x6a)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r7 = open$auto(&(0x7f0000000000)='./file0\x00', 0x81, 0x7)
ioctl$auto_SNDCTL_DSP_CHANNELS(r7, 0xc0045006, &(0x7f00000000c0)) (async)
ioctl$auto_SNDCTL_DSP_CHANNELS(r7, 0xc0045006, &(0x7f00000000c0))
shutdown$auto(r1, 0x7)
inotify_init1$auto(0x3000000000000) (async)
inotify_init1$auto(0x3000000000000)

6.365580334s ago: executing program 0 (id=1418):
r0 = open(&(0x7f0000000100)='./file0\x00', 0x201c2, 0x10e)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000002c0), r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'sit0\x00', <r3=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, 0xffffffffffffffff, 0x4, 0x1ff, 0xffffffffffffffff, @relative_id=0x13, 0xe600}, 0xf)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'pim6reg\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'macvtap0\x00', <r5=>0x0})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r6)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r8=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="2f212cbd7010ca705d845526cc0008000380", @ANYRES32=r8], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4000000)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f00000004c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000480)={&(0x7f0000000380)={0xf4, r1, 0x100, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_CHANNELS_HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}]}, @ETHTOOL_A_CHANNELS_HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x24000001}, 0x0)
socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
statmount$auto(0x0, &(0x7f0000000040)={0x0, 0x0, 0x5ae, 0x5, 0x7, 0x8000000009, 0x10000, 0x10, 0x5, 0x4, 0x6, 0x9, 0x5, 0x9, 0x1ff, 0x7698, 0x8, 0x10000, 0x0, 0x6}, 0x8, 0x0)
utimes$auto(0x0, &(0x7f0000000040)={0x800, 0x591})
r9 = socketpair$auto(0x1e, 0x5, 0x0, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
sendfile$auto(0x6, 0x3, 0x0, 0xfffffdef)
faccessat$auto(r9, &(0x7f0000000240)='./file0\x00', 0x1)
openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8000, 0x0)

4.026967137s ago: executing program 5 (id=1419):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getresgid$auto(&(0x7f00000001c0)=0x10001, &(0x7f0000000200)=0x5, 0x0)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000004c0), r0)
sendmsg$auto_ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000001a00)={0x0, 0x0, &(0x7f00000019c0)={&(0x7f00000001c0)={0x3c, r1, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_PAUSE_STATS_SRC={0x8, 0x6, 0x2}, @ETHTOOL_A_PAUSE_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
sysfs$auto(0x2, 0x4, 0x4)
mincore$auto(0x1000, 0x8001, 0x0)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
r3 = socket(0x2, 0x1, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram2/partscan\x00', 0x80200, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000004300)=""/108, 0x6c)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
getsockopt$auto(0xffffffffffffffff, 0x84, 0x1c, 0x0, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
listen$auto(r2, 0x1)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x800009}, 0x5, 0x2000fd12)
r5 = io_uring_setup$auto(0x1ff, 0x0)
getpid()
io_uring_enter$auto(r5, 0xcd00, 0xcd00, 0x7, 0x0, 0xffffffffffffffff)

3.344188674s ago: executing program 5 (id=1420):
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
io_cancel$auto(0x4, &(0x7f0000000000)={0xfffffffffffffffd, 0x5, 0x2, 0x6, 0x1, r0, 0x42a5, 0x100000001, 0x1, 0x0, 0x4, <r1=>r0}, &(0x7f00000000c0)={0x6, 0x5, 0x7, 0xe})
ioctl$auto_PPPIOCSMRU(r1, 0x40047452, &(0x7f0000000100)=0x8)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
io_uring_setup$auto(0x40000002c55, 0x0)
setsockopt$auto(r0, 0x10000000084, 0x7f, 0x0, 0xad4)

3.294050549s ago: executing program 4 (id=1421):
socket(0xa, 0x3, 0x100) (async)
mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0) (async)
semctl$auto(0x8, 0x806, 0x13, 0x8)
mmap$auto(0xfffffffffffffffd, 0x2020006, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000) (async, rerun: 64)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) (rerun: 64)
read$auto(r0, 0x0, 0x20)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) (async)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async, rerun: 64)
socket(0x1d, 0x2, 0x6) (async, rerun: 64)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) (async, rerun: 64)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) (rerun: 64)
mmap$auto(0x0, 0x39, 0x8, 0x11, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket(0x2, 0x1, 0x0) (async, rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
socket(0x23, 0x80805, 0x0)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000000c0), 0x40200, 0x0) (async, rerun: 32)
socket(0x25, 0x1, 0x3) (async, rerun: 32)
setsockopt$auto(0x3, 0x10000000116, 0x7f, 0xfffffffffffffffd, 0x3) (async)
connect$auto(0x3, &(0x7f00000018c0)=@isdn={0x22, 0x20, 0x3, 0x5, 0x8e}, 0x55) (async)
socket(0x11, 0x4, 0x80)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x29, 0x40, 0x0, 0x10001)

2.299000778s ago: executing program 0 (id=1422):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x0)
r0 = socket(0xa, 0x3, 0xff)
connect$auto(r0, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x1ffff000, 0x7, 0x100000000)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2)
shmget$auto(0x8, 0x10563, 0x568d1af2)
r1 = socket(0xa, 0x1, 0x4c709e3b)
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, r0, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
socket(0xa, 0x2, 0x0)
swapoff$auto(&(0x7f0000000080)='/proc/self/timens_offsets\x00')
socket(0xa, 0x3, 0x6)
mq_open$auto(&(0x7f0000000000)='.\xf1e4\xdf\x16\x95kxE\xd9x\x15\xb0\xf6V\x93\xb4E\x06\xc5}l', 0x56a, 0xb275, 0x0)
mq_timedreceive$auto(0x8, 0x0, 0xfffffffd, 0x0, 0x0)
mq_timedsend$auto(0x8, 0x0, 0x100, 0x9, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, r1, 0x0)
io_uring_setup$auto(0x6, 0x0)
swapoff$auto(&(0x7f00000000c0)='#}}?%\\/{\x00')
socket(0x11, 0x4, 0xa)

2.255568885s ago: executing program 5 (id=1423):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
r1 = fsopen$auto(0x0, 0x3)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
madvise$auto(0x6, 0x7, 0x13)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
readv$auto(0x0, &(0x7f0000000080)={&(0x7f0000000040), 0x6}, 0x7ff)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
read$auto(0x4, 0x0, 0xfdef)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0xa4e00, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/rose14/statistics/rx_length_errors\x00', 0x400000, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000002040)={'veth0\x00', <r4=>0x0})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_0\x00'})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="10000000", @ANYRES16=0x0, @ANYBLOB="080027bd7000fedbdf251a00000018000180140002006d6163767461703000000000000000005000018008000100", @ANYRES32=r4, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="08000400080000001400020076657468305f766c616e00000000000008000100", @ANYRES32=0x0, @ANYRES16=r2, @ANYRES32=0x0, @ANYRESDEC=r4], 0xbc}, 0x1, 0x0, 0x0, 0xc011}, 0x1)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000001100)=""/4105, 0x1009)
r5 = setfsuid$auto(0xffffffffffffffff)
r6 = getegid()
keyctl$auto(0xffffffff, r5, r5, r6, 0x10001)
mmap$auto(0x4, 0x40009, 0x3, 0x9b74, 0x7, 0xf44d)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x240008, 0xdb, 0x9b72, 0x7, 0x28000)
sysfs$auto(0x1, 0x49, 0x0)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
getsockopt$auto(0xffffffffffffffff, 0x1, 0x24, 0x0, 0x0)

1.916572761s ago: executing program 2 (id=1424):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)="4c0300000000000000a3677337f9eca907", 0x49}, 0x5, &(0x7f0000000700), 0x5, 0x1}, 0x5}, 0x2, 0x100) (async)
r0 = socket(0x10, 0x2, 0x0) (async)
mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) (async)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x1e, 0x4, 0x0) (async)
socket(0x1e, 0x4, 0x0) (async)
connect$auto(0x4, 0x0, 0x10) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x2, 0x8, 0x0) (async)
socketpair$auto(0x6, 0x800, 0x7, &(0x7f0000000140)=0x3)
mount_setattr$auto(0x3, 0x0, 0x1000, &(0x7f0000000100)={0x3, 0xa195, 0x5, @inferred=<r1=>0xffffffffffffffff}, 0x687)
socket(0x2, 0x80002, 0x73) (async)
r2 = socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async)
sendmsg$auto_NBD_CMD_DISCONNECT(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x64, 0x0, 0x20, 0x70bd29, 0x25dfdbfd, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x3}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xd}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x6}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x9}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x7}, @NBD_ATTR_INDEX={0x8, 0x1, 0x7f}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x5}]}, 0x64}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
connect$auto(r2, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
ioctl$auto_PPPIOCSMRU(r1, 0x40047452, &(0x7f0000000480)=0xb)
unshare$auto(0x40000080) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_RSS_GET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x14, r4, 0x301, 0x70bc2b, 0x25dfdc02}, 0x14}, 0x1, 0x0, 0x0, 0x8086}, 0x4010)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

1.736233173s ago: executing program 4 (id=1425):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r0 = socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x33a00, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x6, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mincore$auto(0x1000, 0x8001, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptyw5\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x40045431, 0x0)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x2000c041)
r2 = io_uring_setup$auto(0x4bf15e08, 0x0)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000240), r2)
ioctl$auto_PPPIOCSACTIVE(r2, 0x40107446, &(0x7f0000000140)={0x7, &(0x7f0000000000)={0x183, 0x3, 0x2, @inferred=r0}})
bind$auto(0x3, 0x0, 0x6b)
recvfrom$auto(r1, 0x0, 0x101, 0x100, 0x0, 0xfffffffffffffffd)
unshare$auto(0x40000080)
socket(0xa, 0x3, 0x3a)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket(0xa, 0x801, 0x106)
setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x567)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x438000, 0x0)

1.328749397s ago: executing program 2 (id=1426):
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/meminfo\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x6, 0x0)
epoll_wait$auto(0xffffffffffffffff, 0x0, 0xe007, 0x1)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
r0 = socket(0x11, 0x2, 0x40000e)
capset$auto(0x0, &(0x7f0000000000)={0xfffffffe, 0x41, 0x4a})
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
timer_create$auto(0x9, 0x0, 0x0)
timer_settime$auto(0x0, 0x9, &(0x7f00000000c0)={{0x4, 0x10007}, {0x9}}, 0x0)
timer_delete$auto(0x0)
sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, 0x0, 0x2e, 0x0, 0x7, 0x1083}, 0x5}, 0x2, 0x100)

163.636905ms ago: executing program 5 (id=1427):
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = io_uring_setup$auto(0xa, 0x0)
getgroups$auto(0x0, 0x0)
readv$auto(r0, 0x0, 0x9)
close_range$auto(0x2, 0xa, 0x0)
open(0x0, 0x161342, 0x100)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
userfaultfd$auto(0x4002003)
close_range$auto(0x2, 0x8, 0xbea)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/nbd12\x00', 0x480, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000000), r2)
r3 = socket(0x10, 0x3, 0x6)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="fc000000", @ANYRES16=r4, @ANYRES64=r1, @ANYRES16, @ANYRES32=0x0], 0xfc}, 0x1, 0x0, 0x0, 0x400c0}, 0x50)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'batadv0\x00'})
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r3)
r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x441c3, 0x85)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4)
lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
setrlimit$auto(0x1, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
ioctl$auto(r5, 0xc0b45545, 0xffffffffffffffff)
openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f00000000c0), 0x400, 0x0)
fdatasync$auto(r0)

0s ago: executing program 4 (id=1428):
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
sendmsg$auto_NL80211_CMD_DISASSOCIATE(r0, &(0x7f0000001140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="34100000", @ANYRES16=r1, @ANYBLOB="000225bd7000fbdbdf25280000000600eb00060000000810db00", @ANYRES32=r2, @ANYBLOB="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"], 0x1034}, 0x1, 0x0, 0x0, 0x8000}, 0x400d0)
connect$auto(0x3, 0x0, 0x57)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, 0x0, 0x40)
write$auto(0x3, 0x0, 0xfffffdef)
setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2)
mmap$auto(0x0, 0x400008, 0x9f, 0x9b72, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff)
unshare$auto(0x40000080)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0x9b6, 0x8000000008011, 0x20000000000003, 0x8000)
syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x8, 0x20200, 0x15)

kernel console output (not intermixed with test programs):

m netdevsim3 netdevsim0: renamed from eth0
[   71.877852][ T5841] Bluetooth: hci3: command tx timeout
[   71.885307][ T5841] Bluetooth: hci0: command tx timeout
[   71.909997][ T5834] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   71.930531][ T5834] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   71.940699][ T5834] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   71.957471][   T53] Bluetooth: hci1: command tx timeout
[   71.963207][ T5841] Bluetooth: hci2: command tx timeout
[   71.989684][ T5827] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   72.001453][ T5827] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   72.010533][ T5827] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   72.023774][ T5827] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   72.086306][ T5832] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   72.110593][ T5832] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   72.120265][ T5832] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   72.129584][ T5832] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   72.185131][ T5830] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   72.208392][ T5830] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   72.228217][ T5830] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   72.249160][ T5830] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   72.294269][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.329874][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.340586][ T5834] 8021q: adding VLAN 0 to HW filter on device team0
[   72.375527][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.382701][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.393846][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.400944][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.439264][ T5827] 8021q: adding VLAN 0 to HW filter on device team0
[   72.452152][ T3433] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.459272][ T3433] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.496572][ T3433] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.503672][ T3433] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.520696][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.575665][ T5832] 8021q: adding VLAN 0 to HW filter on device team0
[   72.595877][ T3433] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.602986][ T3433] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.623734][ T3433] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.630860][ T3433] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.653907][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.706821][ T5830] 8021q: adding VLAN 0 to HW filter on device team0
[   72.736026][ T3446] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.743181][ T3446] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.783940][ T3446] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.791074][ T3446] bridge0: port 2(bridge_slave_1) entered forwarding state
[   73.035276][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0
[   73.049773][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0
[   73.074558][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0
[   73.163823][ T5827] veth0_vlan: entered promiscuous mode
[   73.185601][ T5827] veth1_vlan: entered promiscuous mode
[   73.201514][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0
[   73.211076][ T5832] veth0_vlan: entered promiscuous mode
[   73.220348][ T5834] veth0_vlan: entered promiscuous mode
[   73.243469][ T5832] veth1_vlan: entered promiscuous mode
[   73.256501][ T5827] veth0_macvtap: entered promiscuous mode
[   73.271463][ T5827] veth1_macvtap: entered promiscuous mode
[   73.290170][ T5834] veth1_vlan: entered promiscuous mode
[   73.324274][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.335652][ T5830] veth0_vlan: entered promiscuous mode
[   73.354570][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.375731][ T5834] veth0_macvtap: entered promiscuous mode
[   73.384890][ T5830] veth1_vlan: entered promiscuous mode
[   73.392156][ T5827] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.401853][ T5827] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.411488][ T5827] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.421767][ T5827] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.434963][ T5834] veth1_macvtap: entered promiscuous mode
[   73.455089][ T5832] veth0_macvtap: entered promiscuous mode
[   73.467756][ T5832] veth1_macvtap: entered promiscuous mode
[   73.491803][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.502702][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.515260][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.546722][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.563033][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.574497][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.602368][ T5830] veth0_macvtap: entered promiscuous mode
[   73.609746][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.620973][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.630898][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.642272][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.653791][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.661845][ T5832] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.670710][ T5832] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.679602][ T5832] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.688736][ T5832] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.710860][ T5830] veth1_macvtap: entered promiscuous mode
[   73.724246][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.734968][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.745380][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.756668][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.768302][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.809380][ T2907] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.822907][ T5834] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.831930][ T2907] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.834748][ T5834] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.848346][ T5834] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.857048][ T5834] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.897613][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.908781][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.918655][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.929598][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.940254][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.950914][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.961148][ T5841] Bluetooth: hci0: command tx timeout
[   73.961199][ T5841] Bluetooth: hci3: command tx timeout
[   73.969052][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0
[   74.001929][ T2907] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.002024][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.020472][ T2907] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.020863][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.039225][ T5841] Bluetooth: hci2: command tx timeout
[   74.039234][   T53] Bluetooth: hci1: command tx timeout
[   74.044679][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.061067][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.071206][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.083867][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.094561][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1
[   74.143337][ T5830] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.152448][ T5830] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.161616][ T5830] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.170478][ T5830] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   74.202371][ T3485] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.216731][ T3485] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.221028][ T5827] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   74.311466][ T3433] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.335091][ T3433] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.352963][ T3433] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.361220][ T3433] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.459353][ T3446] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.472531][ T3446] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.524159][ T3433] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.540892][ T3433] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.570747][ T3485] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.595969][ T3485] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.766995][ T5890] Zero length message leads to an empty skb
[   75.114960][ T5894] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3'.
[   75.124024][ T5894] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[   75.154003][ T5903] can: request_module (can-proto-0) failed.
[   75.366435][ T5898] erspan0: entered allmulticast mode
[   75.611256][ T5915] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9'.
[   75.674594][ T5909] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   75.713820][ T5915] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.819072][ T5922] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   75.863801][ T5915] bridge_slave_0 (unregistering): left allmulticast mode
[   75.897179][ T5915] bridge_slave_0 (unregistering): left promiscuous mode
[   75.904714][ T5915] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.037460][   T53] Bluetooth: hci0: command tx timeout
[   76.038667][ T5841] Bluetooth: hci3: command tx timeout
[   76.117765][ T5841] Bluetooth: hci1: command tx timeout
[   76.117776][   T53] Bluetooth: hci2: command tx timeout
[   76.410567][   T29] audit: type=1800 audit(4294967298.510:2): pid=5927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.11" name="lu_gp_id" dev="configfs" ino=7459 res=0 errno=0
[   76.506635][ T5927] netlink: 4804 bytes leftover after parsing attributes in process `syz.0.11'.
[   78.117766][   T53] Bluetooth: hci3: command tx timeout
[   78.123218][   T53] Bluetooth: hci0: command tx timeout
[   78.198183][ T5841] Bluetooth: hci1: command tx timeout
[   78.203629][ T5841] Bluetooth: hci2: command tx timeout
[   79.759440][   T29] audit: type=1800 audit(4294967301.860:3): pid=5969 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.19" name="discovery_nqn" dev="configfs" ino=8338 res=0 errno=0
[   80.215221][ T5958] FAULT_INJECTION: forcing a failure.
[   80.215221][ T5958] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   80.289101][ T5958] CPU: 1 UID: 0 PID: 5958 Comm: syz.3.18 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   80.299662][ T5958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   80.309753][ T5958] Call Trace:
[   80.313049][ T5958]  <TASK>
[   80.315995][ T5958]  dump_stack_lvl+0x16c/0x1f0
[   80.320714][ T5958]  should_fail_ex+0x497/0x5b0
[   80.325430][ T5958]  ? fs_reclaim_acquire+0xae/0x150
[   80.330593][ T5958]  should_fail_alloc_page+0xe7/0x130
[   80.335928][ T5958]  prepare_alloc_pages.constprop.0+0x16f/0x560
[   80.342122][ T5958]  ? mark_lock+0xb5/0xc60
[   80.346496][ T5958]  ? __pfx_mark_lock+0x10/0x10
[   80.351316][ T5958]  __alloc_pages_noprof+0x190/0x25b0
[   80.356655][ T5958]  ? __pfx_mark_lock+0x10/0x10
[   80.361473][ T5958]  ? hlock_class+0x4e/0x130
[   80.366014][ T5958]  ? mark_lock+0xb5/0xc60
[   80.370395][ T5958]  ? __pfx_mark_lock+0x10/0x10
[   80.375208][ T5958]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   80.380984][ T5958]  ? hlock_class+0x4e/0x130
[   80.385528][ T5958]  ? mark_lock+0xb5/0xc60
[   80.389912][ T5958]  ? hlock_class+0x4e/0x130
[   80.394452][ T5958]  ? __lock_acquire+0xcc5/0x3c40
[   80.399423][ T5958]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   80.405357][ T5958]  ? policy_nodemask+0xea/0x4e0
[   80.410260][ T5958]  alloc_pages_mpol_noprof+0x2c8/0x620
[   80.415759][ T5958]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   80.421776][ T5958]  ? hlock_class+0x4e/0x130
[   80.426333][ T5958]  folio_alloc_mpol_noprof+0x36/0xd0
[   80.431652][ T5958]  vma_alloc_folio_noprof+0xee/0x1b0
[   80.436965][ T5958]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   80.442892][ T5958]  ? find_held_lock+0x2d/0x110
[   80.447702][ T5958]  do_pte_missing+0x2017/0x3e00
[   80.452608][ T5958]  __handle_mm_fault+0x103c/0x2a40
[   80.457769][ T5958]  ? find_held_lock+0x2d/0x110
[   80.462625][ T5958]  ? __pfx___handle_mm_fault+0x10/0x10
[   80.468121][ T5958]  ? follow_page_pte+0x3c3/0x1b20
[   80.473162][ T5958]  ? __pfx_lock_release+0x10/0x10
[   80.478206][ T5958]  ? follow_page_pte+0x3f7/0x1b20
[   80.483267][ T5958]  handle_mm_fault+0x3fa/0xaa0
[   80.488071][ T5958]  __get_user_pages+0x8d9/0x3b50
[   80.493032][ T5958]  ? __pfx_mt_find+0x10/0x10
[   80.497640][ T5958]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   80.503281][ T5958]  ? __pfx___get_user_pages+0x10/0x10
[   80.508670][ T5958]  ? __mm_populate+0x21d/0x380
[   80.513450][ T5958]  populate_vma_page_range+0x27f/0x3a0
[   80.518925][ T5958]  ? __pfx_populate_vma_page_range+0x10/0x10
[   80.524913][ T5958]  ? __pfx_find_vma_intersection+0x10/0x10
[   80.530728][ T5958]  ? vm_mmap_pgoff+0x25b/0x360
[   80.535505][ T5958]  __mm_populate+0x1d6/0x380
[   80.540110][ T5958]  ? __pfx___mm_populate+0x10/0x10
[   80.545237][ T5958]  ? up_write+0x1b2/0x520
[   80.549592][ T5958]  vm_mmap_pgoff+0x293/0x360
[   80.554207][ T5958]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[   80.559334][ T5958]  ? __x64_sys_futex+0x1e1/0x4c0
[   80.564284][ T5958]  ? __x64_sys_futex+0x1ea/0x4c0
[   80.569237][ T5958]  ksys_mmap_pgoff+0x7d/0x5c0
[   80.573931][ T5958]  ? rcu_is_watching+0x12/0xc0
[   80.578713][ T5958]  __x64_sys_mmap+0x125/0x190
[   80.583415][ T5958]  do_syscall_64+0xcd/0x250
[   80.587937][ T5958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.593850][ T5958] RIP: 0033:0x7fcec8b85d29
[   80.598284][ T5958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.618265][ T5958] RSP: 002b:00007fcec9970038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   80.626689][ T5958] RAX: ffffffffffffffda RBX: 00007fcec8d75fa0 RCX: 00007fcec8b85d29
[   80.634668][ T5958] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000
[   80.642642][ T5958] RBP: 00007fcec8c01b08 R08: ffffffffffffffff R09: 0000000000028000
[   80.650619][ T5958] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[   80.658592][ T5958] R13: 0000000000000000 R14: 00007fcec8d75fa0 R15: 00007ffe11a8da28
[   80.666581][ T5958]  </TASK>
[   82.329049][ T6004] netlink: 'syz.1.26': attribute type 21 has an invalid length.
[   82.330116][ T6000] sg_write: data in/out 2059/169 bytes for SCSI command 0x57-- guessing data in;
[   82.330116][ T6000]    program syz.3.25 not setting count and/or reply_len properly
[   82.336832][ T6004] netlink: 326 bytes leftover after parsing attributes in process `syz.1.26'.
[   82.585591][ T5994] netlink: 28 bytes leftover after parsing attributes in process `syz.2.24'.
[   82.646922][ T5998] netlink: 4 bytes leftover after parsing attributes in process `syz.2.24'.
[   85.365783][ T6045] Invalid ELF header magic: != ELF
[   86.614109][ T6058] random: crng reseeded on system resumption
[   86.701373][ T6060] netlink: 'syz.2.39': attribute type 21 has an invalid length.
[   86.739966][ T6060] netlink: 326 bytes leftover after parsing attributes in process `syz.2.39'.
[   87.039614][  T972] cfg80211: failed to load regulatory.db
[   88.064253][ T6063] [U] 
[   88.067150][ T6063] [U] 
[   88.069875][ T6063] [U] 
[   88.072574][ T6063] [U] 
[   88.128434][ T6063] [U] 
[   88.131218][ T6063] [U] ãöŸoWÆ×~…ŧÀž«Ñé›2ë
[   88.135919][ T6063] [U] æÈ’¢oœ}Ý �Èàò?ÙN}76[–Ì°†;wTK­“‰Õ6׶g‡Ç‚ÃÊrÕËp�³�×6Ø
f»'A+c™I+ ï.†	ÉŠƒ™�wé7êMÏt‹�tD~ß¡ø‡Ö¼	.Ô?><ë
…aÒŽ?O4f‡pM“MÇÈoÈû÷Táoø‡8V‰qíQÒÍœI™+I€yæbÊ“2ÕÛœ`¬V”ŽÑµ”ü–Wt"ߘŒ�‹C6Û¨^1žÁÙ=nUä{Þñ¸˜Ç4HY°«¼Gd;<Wð†�Úîû@­ÏêÇPx”ض�Ùu‹Â·Î8¨ö¯ÑFý›ê…bK,kIÝÍÝŸ—àØñãÑd_�î@Æ®!¢Û㦫ë^Fü�ŽsI€šÚî RKßi+9/^³^PÂ�;>.†êS2|ûÀƼ"çH=¼ÌËé¨â~xÉ£Ÿtp™Æ²8Î.­·µ\ä…àÙaÊÌkh$ºAÈt·ÂÛ?YÂÙÅkRo RÓÃé¡þZ¡:ö9¤2ùë+û 5<A‡žð!èÁwúÇü0[ÀrÄÌ~ùN)wLÈTj¡gÊ[ÏHOÔ(¡-�ÈŒ2»¡´éN=ÁÖ^÷T�²¯‚ 
[   88.314256][ T6063] [U] ÛùTN¦ÎZr*»ófkM•—4äˆïÀ'„…'IGï4v›8D¯Ê«y
[   88.322237][ T6076] random: crng reseeded on system resumption
[   88.342934][ T6063] [U] ‘“m|í7LFBY[T½ÊyR&¶¯¸Xˆ¤Fʫÿ2/œæR/[»§ŽEøêe	ÇsLØmû¼ïSÊ	�…ëœÜŽ‰{ÛôÕ	xoÜ6À¾*h;lŸÏM�Â6V†T0|}1~ÿt,ËØ(L˜At
[   88.392565][ T6063] [U] #~ÞóîS…š�©z
:Lw4†
Z½�ßWm¡Iå±uÑò옲¯”[µÂG�€9±©ëYZÆÄ<ƒ11ùé�¬¬-è¦5€7)2#ƒå¼þ O˜¢\eǪñÌŠ	Ñ!_´¼—*öiV2E…b(èFá¿C¹w+ŽÉ²z”©UhňÜN2YS~+ÄÍͦ‹¸»¹´”iµE#¹X ±
[   88.525866][ T6063] [U] ÈK˜°ü½lªA°‹ÁSþ©Ðlø8EÃûmU�’ÕžŒëÉ
[   88.547266][ T6063] [U] ÄË.ÕvÑ”d[QI4|0(ѪsKÁ£ûÇŽ±'Sö©*nþÑð«&Kü±¤Ý­�.ý\¬?�”¬ÄÐ.ÓA«b1À \¿7ˆQWPc]
0Ù�ÚãÃÎ8
#V‚Ž-±i™Ÿ@€îFO¹ûãïkllÈO²P(Vç)²:Àà€PD°o¶'‹‡]úø¾MHä<˜}À�š®Î÷eE#T�pDññdáÚäfõ!îÊJ-9©iÜÁ˜«Ü~ð
Z©jðòàõ´_¯;ä~»b]l§PO¸KÞcÎ5x´ê/¸×M•Í¥¡yûØ,søùrp£¤åý3­MýüÙÕ
[   88.659302][ T6077] netlink: 'syz.2.44': attribute type 21 has an invalid length.
[   88.667225][ T6063] [U] c©}	¼Š�éƒ
[   88.670809][ T6063] [U]  €¦%ÅÇó²WQÈ.PiÇÂ?\'÷`gÊ*>Æz€ª»¦½?QÖ(4€©?Ù„³¿�Õæòpº©;wÏa a¬Iîî˜ýY}jÊ°_Ç
[   88.704270][ T6077] netlink: 326 bytes leftover after parsing attributes in process `syz.2.44'.
[   88.747303][ T6063] [U] Þ¡Ý/uU›ëך›*@ƒ°Ë0÷™fÈ@¦¤ÂF•û>k-Ýáç;Ôèªò1.tÏêËV]/ø‹¶z#žiå¯IøôxвRœ¹É–}eéDµl­ÕOÑÏlÒñ—*BDXÌ.X­�9£!g;–H©n^±ôÊ
KFMaÁ¡ÆÑIËGç)]„b´bÛ€ždP{µQ2À» cA>6ϺY4£¿úúu¯.c1ë˜ô]	OÅâJäJ,È¿±%J¼€ÇøSS¯,Ú×iRƒYZR¢ cç	o¶ÿc½ZcüÞhZÓöLNvð!σêí.m€Vþ�€2Í)ÛzCjJ¤ƒÕ¬”‡_î¢ÔJe'��ç ¹ÂÏÁÀN—ûQüOˆÄ¿þ"	-Ź±p·f¿
[   88.927134][ T6063] [U] Ë::Ô°ÒšÛ¡8©Í—“Ÿe€ûHZׂÌ�7)žü�F箎	ûŽ
[   88.965512][ T6063] [U] 
õ™œR‰õsõ»çå>î”)DÏ*[¾ðxhô:¹2
‰&›o™þ×úpî�]ã5–'¨�häžÿ£0®Á
[   89.022880][ T6063] [U] [£Ê¸?OY÷ä&RЇ"gm�›
[   89.057161][ T6063] [U] w ø!ÆŒ°àŽ	^K@þÎÀ}J(£2Ÿ!ÓvÚC<ÊÇ»…úŒyòª¡¿€°'dgÖ¨RäÎÒBž;Ni[ÿ×W”XË-®nÔꩉÄKÆ$nbÕsµI6£�‹=ðSŒ*QѺŽ’%B@É›éep"¢Qª
[   89.121994][ T6063] [U] 8ø‡MS“ìÊ­PŸ�|ßAlMo›ý¦LWÓÉÍ«H
[   89.142827][ T6063] [U] ƒç6¾ü?�Å�ÿ]•H’Ì|=ÈUÅ3pL=×ÞûÐ�øá¸w
[   89.157204][ T6063] [U] o.ÂaeT·&ò½¦Üzo‚V¥l“É{Ød¸B˜®ï,Î]i È0bã5q¯Ô+RO® EZÔpRX?èP�þ”"|ɳù„ôz×¹
Ï…Ÿñþdµ$j>�qÜí–O{{°GR¶øòw²;É&’MHøK¨ìÁç�ðŸfNg‰$+i"ý®ˆÊGzÍÙFWcbà+àƦ—Œ²,�ï/|šqé~KPZ²¥6ÊûŽÚy¢u.níØAþûÛ<@NºÉ0’��f
[   89.355596][ T6083] netlink: 12 bytes leftover after parsing attributes in process `syz.2.46'.
[   89.356126][ T6063] [U] mkr�yCNDW
“ yÎËx8T¥ÝÀïmä]í�=¡ÔyÞ¦â÷^e R«š%4!3îWOûUeè€mFjæ5ôË’ð”Aì½ìnhVz Ý÷{Væ
[   89.547155][ T6091] sg_write: data in/out 2059/169 bytes for SCSI command 0x57-- guessing data in;
[   89.547155][ T6091]    program syz.0.45 not setting count and/or reply_len properly
[   89.601803][ T6063] [U] ôßü­üJ¨z�ßvj¢Ä“m«�¬úÆH·¢Ž’`¿ž™­qÿw*ŠÛ‚Ì?(¦…‘TØדö1÷›¡ý–8!:ËŠô¸þ«Yd,KÞßÛ�yMÒ2#¶¢ï®+à‰£Ò6P…
[   89.602616][ T6083] tipc: Started in network mode
[   89.629540][ T6083] tipc: Node identity ffffffff, cluster identity 4711
[   89.638610][ T6083] tipc: Node number set to 4294967295
[   89.781314][ T6095] random: crng reseeded on system resumption
[   89.823286][ T6063] [U] ­:ÉKVfúäòÀ@±�¸¿Ä 5eÁjÛß`V€È@œâ°ž/
?¼€ÈRŒù°J×H�½¦Ãî
Ó�—±5*‚y&¥ÍÇ�qÒ  àçÃ{ì<ùu·>0¶&M?Š¡Šð*
[   89.835462][ T6063] [U] ËÓ÷)0ZÖý© ¼©7ýϨh�›:‰+/ð+Î`â¹õ¥>à�ÂͲg($�Û
½’ÈÓî™À¤„º˜d¹‰É$hª4Y¢ZT€£Q\¶Ï»ý£<*O„.Ãá0ïOÜlÖX½¤N¢ý˜0¨XíCc`b˜¡÷å”�›÷*,è^
[   89.849171][ T6063] [U] >3bZ$Kt‡¤2Ðæš"ùeòJN«y=Ä?¥xãS³«€y!Ö -àûŠPÓñ]j¥âà#ñ<n_ôó#¡.‚óÏZ*}óš¡÷—Š1˜™žÞ¡Ú÷eöÅU¿(ëhˆ0@æÿÙ<n,Ñ
[   89.861309][ T6063] [U] àSû+ƒ åéÆð"t_ÿŠ1´‰ÛT{ä6™mʵ
[   89.867196][ T6063] [U] Qù­=¶ÎŒ
[   89.870673][ T6063] [U] �£.ÏÔ`Í(·'¤K¬~Q}l¶q,ø§@<a¥„BDkSwôk°wÈ•¸_w,Tç¼6ç÷ë\Ö*tà­S
[   89.879126][ T6063] [U] ´I>ÿäÿ%ŠäÙ˜M’–<Ì6‡÷,RœYmÞ˜cžî5iZâ0rTÈ¿ÓÛ[ñBeÅVÜI¢¢u»0Gu…tÐaÐ"%÷ïë£BéY)2 Ѷ]®;9r;‘Ÿh
[   89.940534][ T6063] [U] M³mþžáE¼p]·fØÔ3áÎ+Å“ýrû/�iˆW,rüP“*žIêxÆïÙ¡Vf6»ŸÒóñŠ—Ù3I¥Ëèdß….g#Öúr1`7…	e%·ÍóPZ!Z[°øB	%¸×ó¯ÑEʸ™ô¸\J�4gË›V\ä¡íÎYCmeÝgw�8¬·‚ì1fHLúêªh| …Ò²)ÃÚV~Îߨ#›º§¥-_'¥µ˜†ÁÎ)L44àÐ8œg"
ÄY÷š²ãLk’X	ÒKtRË_ »kè⩱eËÃÛ’öŽ¢~åÄè9ÿ’’7¾˜ˆvWK}ÿ¶­?–üQÓ¨Û§è
[   90.137288][ T6063] [U] ~˜õ�%¯ìG@@%=¶À!
¥\.
añ„L½çdß#ÉáÛ%u�—µ¥GVªy—²<¶rYÒðGçšàäíÜ8ZâÕlë7±ÎÄ¢µþÑâ(r¶¥¯lyOIôðcûÄiX=§nFŽgŸ‘Â1¶õ°£Ã~~©vù¾½î7&´î|yÈ{Š>ãá+þÿ+'«ô@ê½Ûè_FpÄðüEÒ¾:»	ÉÆ{ºÀ†
[   90.287196][ T6096] netlink: 'syz.2.47': attribute type 21 has an invalid length.
[   90.297180][ T6063] [U] V&ÿÈe•àŠÕ–œa]â\Lq ´‹/‚­IJóñü©¤…‰1„‹=QnÎ —ÀBÉÀ„Z:NžÉ¥ŠõÌVAFy+]w18É"š„¡¶®Ô%ì¶,[ùÜ…žT­(#á5×KU„¡‰
[   90.316706][ T6096] netlink: 326 bytes leftover after parsing attributes in process `syz.2.47'.
[   90.366388][ T6063] [U]  4VƒlêÌ£2Ë%WD?0P›¥ž:ClÞÙDåÑ"¥®Ñ•ç_4pÞ<v5u:/ÎRÍ-wx&#"ì‰=Æ&9,ƒoŠš·Ý÷¹Î¨‘DtT—÷Ë]_éí.+^UÙUó¼(
[   90.484148][ T6063] [U] ÿÕçú	õEÚ]S4(ž1|Èrzx†-»I+Sf˜§pAà Êú6Zr)¾p²x¸AȈ¸Xìú¼q€ú½ôO^K«ñp±Î;ã°ûûóŽ{E¶ˆF}Gç̈#>ƒ6Î`÷›™™³C°öIÀ¹uàGì<öæ¢÷žÞ¡ö¬Z³¿Ýé†s{u$ŸÚ$vý’ÞC.Éô Öä*äE`ü¦+Šd‰q5‚×¹ª²Pa
0ûëáÜ­%Þb:#eùŸ™™©„ëèj~~ãÏl§**®
üi(î}¤ã”‘©X�T„0¾ìrí“,¢`ôj=°0ñð*Ôh%Ö)e
Å:éÎ..½¥iq’Ü%3¸x°¼¯Ô×–^7°~žÐkNØÎÑ^�™¤£
£íŽø2îãØ
[   90.627293][ T6063] [U] Ñ�söìÕ©K8
[   90.630991][ T6063] [U] RX¶)2KªyÇ~;ÚØÔ³«‹ÄG¯°9O�mô
[   90.669992][ T6063] [U] ²§-µðÞq„†zG·ÿcmÏ3݃p¨=M˜_Jõ#‘	Í8ey«Î4‰f­µ“–çn
[   90.676962][ T6063] [U] ÏÝ«%1Çë;ÕkAV϶áK˜±ût"…¯ÓÑʦÙ$÷ÀϺu�c’¨X°Ä3‹÷—cÐ>yQçÞ-Ž»ƒ"
[   90.721102][ T6063] [U] KLJCèpºsZxÊjE�¼“Ù¿c›ø
[   90.741135][ T6063] [U] J[Í¡]¦âî/ÔÒ«¹Œ“Ùáfï) rc
ºõç“™ÕQiÄÑkýʬýŠ|œXù(œQhu¢I¦MMðŸá«çLÉÖˆ¬0Ï°"'Ô¥1îâA—##d]¹Ç+0@L½;²Ñ,+Åãuòî¾aEâBÒt1Gš¦º×ÿªJ —<…1ç
[   90.812514][ T6063] [U] [.êJ�Ól��rÇCå]‹�-x²HðØ+SôŒ¶çtoñfþJñ. ÍÄ1P¥XØ$#¶Ü|
[   90.847299][ T6063] [U] Cú’SÍ”1©¬�,
§ò[' Z–¹°ÜZf‡õÊTU×<±…XºSŽå‚î
[   90.901555][ T6063] [U] ÈÁY9IÒ_
[   90.904905][ T6063] [U] ÒÆ4Û…œG�õÁXk}ÊÀšQô“HpÒú�ܮޔ
[   90.967458][ T6063] [U] ƺ©®&[K	:ì†{ÎöÌ 7çˆh­oæ8¶…1÷Ÿl:EAµö2Ž¤ýN+
[   90.974194][ T6063] [U] ¾º�I‡d’(5dsþj’Ä×’ÐZPu7ñ¯¡›oVòaSíÒÓ(x
zDR^ä>M;¾q[C…ã¶{(0‹|ž1
[   91.017450][   T29] audit: type=1807 audit(4294967316.630:4): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0
[   91.029660][   T29] audit: type=1802 audit(4294967316.630:5): pid=6109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.50" res=0 errno=0
[   91.050118][ T6063] [U] s6«²
[   91.052436][ T6109] ima: policy update failed
[   91.059227][   T29] audit: type=1802 audit(4294967316.680:6): pid=6109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.50" res=0 errno=0
[   91.087539][ T6107] netlink: 12 bytes leftover after parsing attributes in process `syz.0.49'.
[   91.096337][ T6107] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[   91.274352][ T6063] [U] …O¤{
ÜFS†¡±òV¯¤¬ªTâ|Ké-u¯:¡ôJçôZµY’€K§Æ¸3045Oƒ“ˆM?atL
[   91.650631][ T6121] netlink: 4 bytes leftover after parsing attributes in process `syz.0.52'.
[   91.931028][ T6128] netlink: 12 bytes leftover after parsing attributes in process `syz.0.57'.
[   92.103632][ T6128] tipc: Started in network mode
[   92.118305][ T6128] tipc: Node identity ffffffff, cluster identity 4711
[   92.125110][ T6128] tipc: Node number set to 4294967295
[   92.473807][ T6139] random: crng reseeded on system resumption
[   92.601544][ T6147] sg_write: data in/out 2059/169 bytes for SCSI command 0x57-- guessing data in;
[   92.601544][ T6147]    program syz.3.61 not setting count and/or reply_len properly
[   92.954697][ T6145] netlink: 'syz.0.59': attribute type 21 has an invalid length.
[   93.014247][ T6145] netlink: 326 bytes leftover after parsing attributes in process `syz.0.59'.
[   93.101712][ T6149] netlink: 'syz.1.62': attribute type 21 has an invalid length.
[   93.157366][ T6149] netlink: 326 bytes leftover after parsing attributes in process `syz.1.62'.
[   94.013629][ T6171] random: crng reseeded on system resumption
[   94.157766][ T6169] netlink: 'syz.0.67': attribute type 21 has an invalid length.
[   94.207553][ T6169] netlink: 326 bytes leftover after parsing attributes in process `syz.0.67'.
[   94.701100][ T6168] [U] 
[   94.703875][ T6168] [U] 
[   94.706607][ T6168] [U] 
[   94.709332][ T6168] [U] 
[   94.717454][ T6168] [U] 
[   94.720197][ T6168] [U] 
[   94.722918][ T6168] [U] 
[   94.725636][ T6168] [U] 
[   94.738188][ T6168] [U] 
[   94.740943][ T6168] [U] 
[   94.743672][ T6168] [U] 
[   94.746395][ T6168] [U] 
[   94.817368][ T6168] [U] 
[   94.820125][ T6168] [U] 
[   94.822851][ T6168] [U] 
[   94.825571][ T6168] [U] 
[   95.337937][ T6168] [U] 
[   95.340696][ T6168] [U] 
[   95.343428][ T6168] [U] 
[   95.695703][ T6191] Invalid ELF header magic: != ELF
[   96.442880][ T6188] [U] 
[   99.372122][ T6220] FAULT_INJECTION: forcing a failure.
[   99.372122][ T6220] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   99.497882][ T6220] CPU: 0 UID: 0 PID: 6220 Comm: syz.3.80 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   99.508442][ T6220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   99.518516][ T6220] Call Trace:
[   99.521799][ T6220]  <TASK>
[   99.524730][ T6220]  dump_stack_lvl+0x16c/0x1f0
[   99.529420][ T6220]  should_fail_ex+0x497/0x5b0
[   99.534111][ T6220]  _copy_to_user+0x32/0xd0
[   99.538544][ T6220]  simple_read_from_buffer+0xd0/0x160
[   99.543923][ T6220]  proc_fail_nth_read+0x198/0x270
[   99.548964][ T6220]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   99.554525][ T6220]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   99.560083][ T6220]  vfs_read+0x1df/0xbe0
[   99.564245][ T6220]  ? __fget_files+0x1fc/0x3a0
[   99.568929][ T6220]  ? __pfx___mutex_lock+0x10/0x10
[   99.573962][ T6220]  ? __pfx_vfs_read+0x10/0x10
[   99.578654][ T6220]  ? __fget_files+0x206/0x3a0
[   99.583344][ T6220]  ksys_read+0x12b/0x250
[   99.587603][ T6220]  ? __pfx_ksys_read+0x10/0x10
[   99.592379][ T6220]  do_syscall_64+0xcd/0x250
[   99.596892][ T6220]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.602807][ T6220] RIP: 0033:0x7fcec8b8473c
[   99.607224][ T6220] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   99.626846][ T6220] RSP: 002b:00007fcec9970030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   99.635268][ T6220] RAX: ffffffffffffffda RBX: 00007fcec8d75fa0 RCX: 00007fcec8b8473c
[   99.643255][ T6220] RDX: 000000000000000f RSI: 00007fcec99700a0 RDI: 0000000000000003
[   99.651229][ T6220] RBP: 00007fcec9970090 R08: 0000000000000000 R09: 0000000000000000
[   99.659201][ T6220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.667172][ T6220] R13: 0000000000000000 R14: 00007fcec8d75fa0 R15: 00007ffe11a8da28
[   99.675156][ T6220]  </TASK>
[   99.799163][ T6228] Invalid ELF header magic: != ELF
[  100.585671][ T6243] netlink: 342 bytes leftover after parsing attributes in process `syz.3.85'.
[  102.254636][ T6275] netlink: 342 bytes leftover after parsing attributes in process `syz.1.96'.
[  102.868281][ T6289] netlink: 452 bytes leftover after parsing attributes in process `syz.3.100'.
[  102.955526][ T6290] netlink: 452 bytes leftover after parsing attributes in process `syz.3.100'.
[  102.983231][ T6285] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[6285]
[  103.356144][ T6306] netlink: 24 bytes leftover after parsing attributes in process `syz.1.104'.
[  103.469034][ T6306] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  103.519058][ T6306] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  104.148938][ T6306] syz.1.104 (6306) used greatest stack depth: 20480 bytes left
[  104.384448][ T6321] netlink: 342 bytes leftover after parsing attributes in process `syz.1.107'.
[  105.347406][ T6338] syz.0.110 uses obsolete (PF_INET,SOCK_PACKET)
[  106.728357][ T6372] netlink: 342 bytes leftover after parsing attributes in process `syz.1.118'.
[  106.839639][ T6370] netlink: 322 bytes leftover after parsing attributes in process `syz.3.117'.
[  107.081669][ T6366] Invalid ELF header magic: != ELF
[  109.196292][ T6412] process 'syz.2.125' launched '/dev/fd/28' with NULL argv: empty string added
[  110.248835][ T6436] netlink: 342 bytes leftover after parsing attributes in process `syz.1.128'.
[  112.101577][ T6473] serio: Serial port ptm0
[  112.553854][ T6487] netlink: 342 bytes leftover after parsing attributes in process `syz.1.140'.
[  113.108193][ T6496] netlink: 4 bytes leftover after parsing attributes in process `syz.0.143'.
[  113.170784][ T6496] netlink: 4 bytes leftover after parsing attributes in process `syz.0.143'.
[  113.410637][ T6504] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  113.424154][ T6504] openvswitch: netlink: Flow key attr not present in new flow.
[  113.531501][ T6509] netlink: 12 bytes leftover after parsing attributes in process `syz.2.144'.
[  113.537770][ T6501] HfR: entered promiscuous mode
[  113.753173][ T6509] HfR: left promiscuous mode
[  114.627265][ T6537] netlink: 342 bytes leftover after parsing attributes in process `syz.2.151'.
[  115.612190][ T6545] ICMPv6: process `syz.2.154' is using deprecated sysctl (syscall) net.ipv6.neigh.erspan0.retrans_time - use net.ipv6.neigh.erspan0.retrans_time_ms instead
[  117.269599][ T6590] netlink: 342 bytes leftover after parsing attributes in process `syz.1.163'.
[  117.426326][   T29] audit: type=1800 audit(4294967297.960:7): pid=6594 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.164" name="lu_gp_id" dev="configfs" ino=10489 res=0 errno=0
[  117.538379][ T6594] netlink: 4804 bytes leftover after parsing attributes in process `syz.1.164'.
[  118.495886][ T6612] can: request_module (can-proto-0) failed.
[  118.648452][ T6601] netlink: 12 bytes leftover after parsing attributes in process `syz.0.166'.
[  118.713683][ T6601] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  118.852390][ T6605] erspan0: entered allmulticast mode
[  118.975774][ T6624] netlink: 342 bytes leftover after parsing attributes in process `syz.2.173'.
[  119.199702][ T6629] netlink: 28 bytes leftover after parsing attributes in process `syz.2.174'.
[  119.245373][ T6629] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.408080][ T6629] bridge_slave_0 (unregistering): left allmulticast mode
[  119.415206][ T6629] bridge_slave_0 (unregistering): left promiscuous mode
[  119.469752][ T6629] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.545809][ T6663] netlink: 326 bytes leftover after parsing attributes in process `syz.2.183'.
[  123.650191][   T29] audit: type=1800 audit(4294967313.819:8): pid=6688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.192" name="discovery_nqn" dev="configfs" ino=10748 res=0 errno=0
[  124.346340][ T6697] netlink: 326 bytes leftover after parsing attributes in process `syz.1.196'.
[  125.178196][ T6712] netlink: 326 bytes leftover after parsing attributes in process `syz.2.206'.
[  125.386345][ T6711] netlink: 12 bytes leftover after parsing attributes in process `syz.3.198'.
[  125.408693][ T6711] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  125.527466][ T6718] erspan0: entered allmulticast mode
[  126.171739][ T6737] HSR: entered promiscuous mode
[  126.241761][ T6737] delete_channel: no stack
[  126.649929][ T6752] netlink: 28 bytes leftover after parsing attributes in process `syz.3.208'.
[  126.748964][ T6752] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  126.781153][ T6761] sg_write: data in/out 2059/169 bytes for SCSI command 0x57-- guessing data in;
[  126.781153][ T6761]    program syz.2.205 not setting count and/or reply_len properly
[  126.808206][ T6752] batman_adv: batadv0: Removing interface: batadv_slave_0
[  126.848611][ T6752] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  126.869809][ T6752] batman_adv: batadv0: Removing interface: batadv_slave_1
[  129.391624][ T6846] netlink: 28 bytes leftover after parsing attributes in process `syz.1.232'.
[  130.154291][   T29] audit: type=1800 audit(4294967332.322:9): pid=6875 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.237" name="discovery_nqn" dev="configfs" ino=10234 res=0 errno=0
[  130.531723][ T6884] lo: entered promiscuous mode
[  130.676137][ T6879] lo: left promiscuous mode
[  130.952627][   T29] audit: type=1326 audit(4294967333.122:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6898 comm="syz.3.243" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcec8b85d29 code=0x0
[  131.002241][ T6901] Process accounting resumed
[  132.340821][ T6924] netlink: 8 bytes leftover after parsing attributes in process `syz.3.248'.
[  132.408292][ T6927] netlink: 8 bytes leftover after parsing attributes in process `syz.3.248'.
[  132.672685][ T6931] FAULT_INJECTION: forcing a failure.
[  132.672685][ T6931] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  132.686148][ T6931] CPU: 0 UID: 7 PID: 6931 Comm: syz.3.250 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  132.696776][ T6931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  132.706858][ T6931] Call Trace:
[  132.710163][ T6931]  <TASK>
[  132.713120][ T6931]  dump_stack_lvl+0x16c/0x1f0
[  132.717836][ T6931]  should_fail_ex+0x497/0x5b0
[  132.722532][ T6931]  ? fs_reclaim_acquire+0xae/0x150
[  132.727654][ T6931]  should_fail_alloc_page+0xe7/0x130
[  132.732960][ T6931]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  132.739125][ T6931]  __alloc_pages_noprof+0x190/0x25b0
[  132.744433][ T6931]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  132.750173][ T6931]  ? find_held_lock+0x2d/0x110
[  132.754949][ T6931]  ? local_lock_release+0x99/0x140
[  132.760081][ T6931]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  132.765983][ T6931]  ? policy_nodemask+0xea/0x4e0
[  132.770848][ T6931]  alloc_pages_mpol_noprof+0x2c8/0x620
[  132.776312][ T6931]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  132.782304][ T6931]  ? lockdep_init_map_type+0x16d/0x7d0
[  132.787771][ T6931]  get_free_pages_noprof+0xc/0x40
[  132.792801][ T6931]  pgd_alloc+0x2b/0x2a0
[  132.796969][ T6931]  mm_init+0x6a0/0x10e0
[  132.801134][ T6931]  ? copy_mm+0x2c2/0x25b0
[  132.805476][ T6931]  copy_mm+0x31a/0x25b0
[  132.809644][ T6931]  ? lock_acquire.part.0+0x11b/0x380
[  132.814957][ T6931]  ? __pfx_copy_mm+0x10/0x10
[  132.819564][ T6931]  ? copy_process+0x3ca7/0x6f20
[  132.824428][ T6931]  ? __pfx_lock_release+0x10/0x10
[  132.829458][ T6931]  ? lockdep_init_map_type+0x16d/0x7d0
[  132.834924][ T6931]  ? __raw_spin_lock_init+0x3a/0x110
[  132.840226][ T6931]  copy_process+0x3e6d/0x6f20
[  132.844920][ T6931]  ? __pfx_copy_process+0x10/0x10
[  132.849966][ T6931]  ? futex_wake+0x18e/0x4e0
[  132.854479][ T6931]  kernel_clone+0xfd/0x960
[  132.858905][ T6931]  ? __pfx_kernel_clone+0x10/0x10
[  132.863955][ T6931]  ? do_futex+0x123/0x350
[  132.868303][ T6931]  ? __pfx_do_futex+0x10/0x10
[  132.872996][ T6931]  ? 0xffffffffff600000
[  132.877150][ T6931]  __do_sys_clone+0xba/0x100
[  132.881752][ T6931]  ? __pfx___do_sys_clone+0x10/0x10
[  132.886962][ T6931]  ? 0xffffffffff600000
[  132.891132][ T6931]  do_syscall_64+0xcd/0x250
[  132.895673][ T6931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.901605][ T6931] RIP: 0033:0x7fcec8b85d29
[  132.906019][ T6931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.925631][ T6931] RSP: 002b:00007fcec9970038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  132.934050][ T6931] RAX: ffffffffffffffda RBX: 00007fcec8d75fa0 RCX: 00007fcec8b85d29
[  132.942024][ T6931] RDX: ffffffffffffffff RSI: 004000000000000a RDI: 0000000000008001
[  132.949995][ T6931] RBP: 00007fcec8c01b08 R08: 000000000000000b R09: 0000000000000000
[  132.957968][ T6931] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000000
[  132.965944][ T6931] R13: 0000000000000000 R14: 00007fcec8d75fa0 R15: 00007ffe11a8da28
[  132.973922][ T6931]  ? 0xffffffffff600000
[  132.978091][ T6931]  </TASK>
[  133.086853][   T29] audit: type=1800 audit(4294967335.202:11): pid=6932 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.249" name="discovery_nqn" dev="configfs" ino=11387 res=0 errno=0
[  133.114842][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  133.125803][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  133.610367][ T6936] netlink: 28 bytes leftover after parsing attributes in process `syz.3.259'.
[  133.671636][ T6942] netlink: 4 bytes leftover after parsing attributes in process `syz.3.259'.
[  133.760489][ T6940] FAULT_INJECTION: forcing a failure.
[  133.760489][ T6940] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  133.799341][ T6940] CPU: 1 UID: 0 PID: 6940 Comm: syz.2.252 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  133.809984][ T6940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  133.820066][ T6940] Call Trace:
[  133.823370][ T6940]  <TASK>
[  133.826326][ T6940]  dump_stack_lvl+0x16c/0x1f0
[  133.831051][ T6940]  should_fail_ex+0x497/0x5b0
[  133.835775][ T6940]  ? fs_reclaim_acquire+0xae/0x150
[  133.840930][ T6940]  should_fail_alloc_page+0xe7/0x130
[  133.845138][ T6918] lo: entered allmulticast mode
[  133.846240][ T6940]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  133.857255][ T6940]  ? mark_lock+0xb5/0xc60
[  133.861635][ T6940]  ? __pfx_mark_lock+0x10/0x10
[  133.866436][ T6940]  __alloc_pages_noprof+0x190/0x25b0
[  133.871738][ T6940]  ? __pfx_mark_lock+0x10/0x10
[  133.876551][ T6940]  ? hlock_class+0x4e/0x130
[  133.881071][ T6940]  ? mark_lock+0xb5/0xc60
[  133.885419][ T6940]  ? __pfx_mark_lock+0x10/0x10
[  133.890202][ T6940]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  133.895964][ T6940]  ? hlock_class+0x4e/0x130
[  133.900489][ T6940]  ? mark_lock+0xb5/0xc60
[  133.904848][ T6940]  ? hlock_class+0x4e/0x130
[  133.909372][ T6940]  ? __lock_acquire+0xcc5/0x3c40
[  133.914316][ T6940]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  133.920217][ T6940]  ? policy_nodemask+0xea/0x4e0
[  133.925083][ T6940]  alloc_pages_mpol_noprof+0x2c8/0x620
[  133.930549][ T6940]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  133.936541][ T6940]  ? hlock_class+0x4e/0x130
[  133.941073][ T6940]  folio_alloc_mpol_noprof+0x36/0xd0
[  133.946372][ T6940]  vma_alloc_folio_noprof+0xee/0x1b0
[  133.951669][ T6940]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  133.957570][ T6940]  ? find_held_lock+0x2d/0x110
[  133.962355][ T6940]  do_pte_missing+0x2017/0x3e00
[  133.967231][ T6940]  __handle_mm_fault+0x103c/0x2a40
[  133.972356][ T6940]  ? find_held_lock+0x2d/0x110
[  133.977131][ T6940]  ? __pfx___handle_mm_fault+0x10/0x10
[  133.982606][ T6940]  ? follow_page_pte+0x3c3/0x1b20
[  133.987641][ T6940]  ? __pfx_lock_release+0x10/0x10
[  133.992676][ T6940]  ? follow_page_pte+0x3f7/0x1b20
[  133.997712][ T6940]  handle_mm_fault+0x3fa/0xaa0
[  134.002490][ T6940]  __get_user_pages+0x8d9/0x3b50
[  134.007461][ T6940]  ? __pfx_mt_find+0x10/0x10
[  134.012072][ T6940]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  134.017714][ T6940]  ? __pfx___get_user_pages+0x10/0x10
[  134.023101][ T6940]  ? __mm_populate+0x21d/0x380
[  134.027880][ T6940]  populate_vma_page_range+0x27f/0x3a0
[  134.033354][ T6940]  ? __pfx_populate_vma_page_range+0x10/0x10
[  134.039347][ T6940]  ? __pfx_find_vma_intersection+0x10/0x10
[  134.045167][ T6940]  ? vm_mmap_pgoff+0x25b/0x360
[  134.049958][ T6940]  __mm_populate+0x1d6/0x380
[  134.054563][ T6940]  ? __pfx___mm_populate+0x10/0x10
[  134.059695][ T6940]  ? up_write+0x1b2/0x520
[  134.064037][ T6940]  vm_mmap_pgoff+0x293/0x360
[  134.068646][ T6940]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  134.073775][ T6940]  ? __x64_sys_futex+0x1e1/0x4c0
[  134.078736][ T6940]  ? __x64_sys_futex+0x1ea/0x4c0
[  134.083688][ T6940]  ksys_mmap_pgoff+0x7d/0x5c0
[  134.088377][ T6940]  ? rcu_is_watching+0x12/0xc0
[  134.093153][ T6940]  __x64_sys_mmap+0x125/0x190
[  134.097842][ T6940]  do_syscall_64+0xcd/0x250
[  134.102359][ T6940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.108264][ T6940] RIP: 0033:0x7f69db385d29
[  134.112685][ T6940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.132296][ T6940] RSP: 002b:00007f69dc28e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  134.140713][ T6940] RAX: ffffffffffffffda RBX: 00007f69db575fa0 RCX: 00007f69db385d29
[  134.148690][ T6940] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000
[  134.156664][ T6940] RBP: 00007f69db401b08 R08: ffffffffffffffff R09: 0000000000028000
[  134.164638][ T6940] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  134.172615][ T6940] R13: 0000000000000000 R14: 00007f69db575fa0 R15: 00007fff099b0b68
[  134.180622][ T6940]  </TASK>
[  134.342186][ T6950] FAULT_INJECTION: forcing a failure.
[  134.342186][ T6950] name failslab, interval 1, probability 0, space 0, times 1
[  134.393413][ T6950] CPU: 1 UID: 0 PID: 6950 Comm: syz.1.254 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  134.404101][ T6950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  134.414185][ T6950] Call Trace:
[  134.417489][ T6950]  <TASK>
[  134.420457][ T6950]  dump_stack_lvl+0x16c/0x1f0
[  134.425181][ T6950]  should_fail_ex+0x497/0x5b0
[  134.429911][ T6950]  ? fs_reclaim_acquire+0xae/0x150
[  134.435065][ T6950]  should_failslab+0xc2/0x120
[  134.439791][ T6950]  __kmalloc_cache_noprof+0x68/0x420
[  134.445126][ T6950]  get_mountpoint+0x145/0x420
[  134.449851][ T6950]  attach_recursive_mnt+0x166/0x1370
[  134.455196][ T6950]  ? __pfx_attach_recursive_mnt+0x10/0x10
[  134.460960][ T6950]  ? do_raw_spin_lock+0x12d/0x2c0
[  134.466027][ T6950]  ? rcu_is_watching+0x12/0xc0
[  134.470832][ T6950]  ? kfree+0x274/0x4b0
[  134.474940][ T6950]  ? lockref_get+0x15/0x50
[  134.479407][ T6950]  graft_tree+0x189/0x210
[  134.483783][ T6950]  do_add_mount+0x1ca/0x320
[  134.488334][ T6950]  path_mount+0x1a48/0x1f00
[  134.492886][ T6950]  ? kmem_cache_free+0x152/0x4c0
[  134.497872][ T6950]  ? __pfx_path_mount+0x10/0x10
[  134.502766][ T6950]  ? putname+0x13c/0x180
[  134.507028][ T6950]  __x64_sys_mount+0x294/0x320
[  134.511813][ T6950]  ? __pfx___x64_sys_mount+0x10/0x10
[  134.517121][ T6950]  do_syscall_64+0xcd/0x250
[  134.521640][ T6950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.527548][ T6950] RIP: 0033:0x7f65f4985d29
[  134.531968][ T6950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.551581][ T6950] RSP: 002b:00007f65f5728038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  134.560008][ T6950] RAX: ffffffffffffffda RBX: 00007f65f4b75fa0 RCX: 00007f65f4985d29
[  134.567986][ T6950] RDX: 0000000020000140 RSI: 00000000200000c0 RDI: 0000000000000000
[  134.575960][ T6950] RBP: 00007f65f4a01b08 R08: 0000000000000000 R09: 0000000000000000
[  134.583939][ T6950] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000
[  134.591916][ T6950] R13: 0000000000000000 R14: 00007f65f4b75fa0 R15: 00007ffce7d638b8
[  134.599917][ T6950]  </TASK>
[  134.809465][ T6912] lo: left allmulticast mode
[  134.897790][ T6959] FAULT_INJECTION: forcing a failure.
[  134.897790][ T6959] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.977269][ T6959] CPU: 1 UID: 0 PID: 6959 Comm: syz.3.256 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  134.987933][ T6959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  134.998009][ T6959] Call Trace:
[  135.001307][ T6959]  <TASK>
[  135.004257][ T6959]  dump_stack_lvl+0x16c/0x1f0
[  135.008972][ T6959]  should_fail_ex+0x497/0x5b0
[  135.013691][ T6959]  _copy_to_user+0x32/0xd0
[  135.018148][ T6959]  simple_read_from_buffer+0xd0/0x160
[  135.023554][ T6959]  proc_fail_nth_read+0x198/0x270
[  135.028621][ T6959]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  135.034216][ T6959]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  135.039804][ T6959]  vfs_read+0x1df/0xbe0
[  135.043994][ T6959]  ? __fget_files+0x1fc/0x3a0
[  135.048710][ T6959]  ? __pfx___mutex_lock+0x10/0x10
[  135.053768][ T6959]  ? __pfx_vfs_read+0x10/0x10
[  135.058492][ T6959]  ? __fget_files+0x206/0x3a0
[  135.063211][ T6959]  ksys_read+0x12b/0x250
[  135.067491][ T6959]  ? __pfx_ksys_read+0x10/0x10
[  135.072299][ T6959]  do_syscall_64+0xcd/0x250
[  135.076842][ T6959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.082764][ T6959] RIP: 0033:0x7fcec8b8473c
[  135.087209][ T6959] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  135.106835][ T6959] RSP: 002b:00007fcec9970030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  135.115254][ T6959] RAX: ffffffffffffffda RBX: 00007fcec8d75fa0 RCX: 00007fcec8b8473c
[  135.123230][ T6959] RDX: 000000000000000f RSI: 00007fcec99700a0 RDI: 0000000000000004
[  135.131201][ T6959] RBP: 00007fcec9970090 R08: 0000000000000000 R09: 0000000000000000
[  135.139185][ T6959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.147163][ T6959] R13: 0000000000000000 R14: 00007fcec8d75fa0 R15: 00007ffe11a8da28
[  135.155154][ T6959]  </TASK>
[  136.251689][ T6991] netlink: 4 bytes leftover after parsing attributes in process `syz.0.267'.
[  136.297486][ T6991] netlink: 4 bytes leftover after parsing attributes in process `syz.0.267'.
[  137.077630][ T7014] netlink: 2778 bytes leftover after parsing attributes in process `syz.2.273'.
[  137.617786][   T29] audit: type=1800 audit(4294967339.792:12): pid=7030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.277" name="discovery_nqn" dev="configfs" ino=12375 res=0 errno=0
[  138.399505][ T7041] [U] 
[  138.402550][ T7041] [U] 
[  138.405277][ T7041] [U] 
[  138.408006][ T7041] [U] 
[  138.427368][ T7041] [U] 
[  138.430121][ T7041] [U] 
[  138.432851][ T7041] [U] 
[  138.435583][ T7041] [U] 
[  138.447179][ T7041] [U] 
[  138.449929][ T7041] [U] 
[  138.452660][ T7041] [U] 
[  138.455388][ T7041] [U] 
[  138.477290][ T7041] [U] 
[  138.480052][ T7041] [U] 
[  138.482785][ T7041] [U] 
[  138.485512][ T7041] [U] 
[  138.499501][ T7041] [U] 
[  138.502255][ T7041] [U] 
[  138.504988][ T7041] [U] 
[  138.524909][ T7040] [U] 
[  139.417771][   T29] audit: type=1800 audit(4294967341.592:13): pid=7075 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.289" name="discovery_nqn" dev="configfs" ino=12471 res=0 errno=0
[  141.327633][   T29] audit: type=1800 audit(4294967343.501:14): pid=7125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.299" name="discovery_nqn" dev="configfs" ino=12555 res=0 errno=0
[  143.628650][   T29] audit: type=1800 audit(4294967345.801:15): pid=7181 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.311" name="discovery_nqn" dev="configfs" ino=12638 res=0 errno=0
[  144.071023][ T7188] =======================================================
[  144.071023][ T7188] WARNING: The mand mount option has been deprecated and
[  144.071023][ T7188]          and is ignored by this kernel. Remove the mand
[  144.071023][ T7188]          option from the mount to silence this warning.
[  144.071023][ T7188] =======================================================
[  146.128223][   T29] audit: type=1800 audit(4294967348.301:16): pid=7222 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.321" name="discovery_nqn" dev="configfs" ino=12029 res=0 errno=0
[  147.892575][   T29] audit: type=1800 audit(4294967350.061:17): pid=7275 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.332" name="discovery_nqn" dev="configfs" ino=12828 res=0 errno=0
[  149.915133][ T7311] futex_wake_op: syz.0.342 tries to shift op by 64; fix this program
[  151.002232][ T7324] netlink: 346 bytes leftover after parsing attributes in process `syz.1.345'.
[  151.805422][ T7330] mkiss: ax0: crc mode is auto.
[  152.272569][   T29] audit: type=1800 audit(4294967354.441:18): pid=7343 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.351" name="discovery_nqn" dev="configfs" ino=13033 res=0 errno=0
[  152.836589][ T7355] Invalid ELF header magic: != ELF
[  153.072837][ T7362] netlink: 28 bytes leftover after parsing attributes in process `syz.2.356'.
[  153.761298][ T7372] Invalid ELF header magic: != ELF
[  154.456686][   T29] audit: type=1800 audit(4294967356.621:19): pid=7406 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.366" name="discovery_nqn" dev="configfs" ino=13621 res=0 errno=0
[  155.045348][ T7419] bridge0: port 3(hsr_slave_1) entered blocking state
[  155.052907][ T7419] bridge0: port 3(hsr_slave_1) entered disabled state
[  155.059942][ T7419] hsr_slave_1: entered allmulticast mode
[  155.066940][ T7419] hsr_slave_1: left allmulticast mode
[  155.593098][ T7424] openvswitch: netlink: IP tunnel dst address not specified
[  156.764520][   T29] audit: type=1800 audit(4294967358.931:20): pid=7461 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.378" name="discovery_nqn" dev="configfs" ino=13175 res=0 errno=0
[  157.223782][ T7473] netlink: 28 bytes leftover after parsing attributes in process `syz.1.381'.
[  157.575522][ T7486] sg_write: data in/out 2059/169 bytes for SCSI command 0x57-- guessing data in;
[  157.575522][ T7486]    program syz.3.382 not setting count and/or reply_len properly
[  160.116064][ T7532] netlink: 4 bytes leftover after parsing attributes in process `syz.2.390'.
[  160.190304][ T7532] netlink: 'syz.2.390': attribute type 16 has an invalid length.
[  160.211333][ T7532] netlink: 330 bytes leftover after parsing attributes in process `syz.2.390'.
[  161.202883][ T7564] netlink: 326 bytes leftover after parsing attributes in process `syz.3.399'.
[  162.950455][ T7608] Process accounting resumed
[  163.000020][ T7608] kernel write not supported for file /333/timerslack_ns (pid: 7608 comm: syz.0.407)
[  163.312910][ T7619] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[  163.479484][ T7625] afs: Unknown parameter '¨ÎP4Å'
[  166.801762][ T7706] mmap: syz.1.428 (7706) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  168.257469][ T7727] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  175.686565][   T29] audit: type=1800 audit(4294967377.851:21): pid=7861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.465" name="discovery_nqn" dev="configfs" ino=15683 res=0 errno=0
[  176.296022][   T29] audit: type=1800 audit(1023.560:22): pid=7868 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.466" name="discovery_nqn" dev="configfs" ino=15695 res=0 errno=0
[  176.622187][ T7871] FAULT_INJECTION: forcing a failure.
[  176.622187][ T7871] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.782386][ T7871] CPU: 1 UID: 0 PID: 7871 Comm: syz.3.466 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  176.793033][ T7871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  176.803105][ T7871] Call Trace:
[  176.806395][ T7871]  <TASK>
[  176.809344][ T7871]  dump_stack_lvl+0x16c/0x1f0
[  176.814054][ T7871]  should_fail_ex+0x497/0x5b0
[  176.818762][ T7871]  _copy_to_iter+0x29b/0x1400
[  176.823473][ T7871]  ? trace_lock_acquire+0x14e/0x1f0
[  176.828705][ T7871]  ? __pfx__copy_to_iter+0x10/0x10
[  176.833841][ T7871]  ? __virt_addr_valid+0x1a4/0x590
[  176.838987][ T7871]  ? __virt_addr_valid+0x5e/0x590
[  176.844042][ T7871]  ? __phys_addr+0xc6/0x150
[  176.848596][ T7871]  ? __phys_addr_symbol+0x30/0x80
[  176.853656][ T7871]  ? __check_object_size+0x488/0x710
[  176.858984][ T7871]  configfs_read_iter+0x188/0x690
[  176.864039][ T7871]  ? rw_verify_area+0xd0/0x700
[  176.868836][ T7871]  vfs_read+0x87f/0xbe0
[  176.873027][ T7871]  ? __pfx_vfs_read+0x10/0x10
[  176.877752][ T7871]  ksys_read+0x12b/0x250
[  176.882022][ T7871]  ? __pfx_ksys_read+0x10/0x10
[  176.886821][ T7871]  do_syscall_64+0xcd/0x250
[  176.891361][ T7871]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.897288][ T7871] RIP: 0033:0x7fcec8b85d29
[  176.901727][ T7871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.921361][ T7871] RSP: 002b:00007fcec994f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  176.929806][ T7871] RAX: ffffffffffffffda RBX: 00007fcec8d76080 RCX: 00007fcec8b85d29
[  176.937799][ T7871] RDX: 000000000000007f RSI: 0000000000000000 RDI: 0000000000000003
[  176.945794][ T7871] RBP: 00007fcec994f090 R08: 0000000000000000 R09: 0000000000000000
[  176.953783][ T7871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  176.961776][ T7871] R13: 0000000000000001 R14: 00007fcec8d76080 R15: 00007ffe11a8da28
[  176.969787][ T7871]  </TASK>
[  178.977769][   T29] audit: type=1800 audit(1026.250:23): pid=7893 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.473" name="dbroot" dev="configfs" ino=15286 res=0 errno=0
[  179.777974][   T29] audit: type=1800 audit(1027.050:24): pid=7914 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.477" name="discovery_nqn" dev="configfs" ino=15821 res=0 errno=0
[  180.165841][ T7916] FAULT_INJECTION: forcing a failure.
[  180.165841][ T7916] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  180.261132][ T7916] CPU: 1 UID: 0 PID: 7916 Comm: syz.1.477 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  180.271774][ T7916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  180.281831][ T7916] Call Trace:
[  180.285111][ T7916]  <TASK>
[  180.288070][ T7916]  dump_stack_lvl+0x16c/0x1f0
[  180.292764][ T7916]  should_fail_ex+0x497/0x5b0
[  180.297453][ T7916]  _copy_to_user+0x32/0xd0
[  180.301881][ T7916]  simple_read_from_buffer+0xd0/0x160
[  180.307265][ T7916]  proc_fail_nth_read+0x198/0x270
[  180.312324][ T7916]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  180.317897][ T7916]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  180.323466][ T7916]  vfs_read+0x1df/0xbe0
[  180.327636][ T7916]  ? __fget_files+0x1fc/0x3a0
[  180.332324][ T7916]  ? __pfx___mutex_lock+0x10/0x10
[  180.337361][ T7916]  ? __pfx_vfs_read+0x10/0x10
[  180.342055][ T7916]  ? __fget_files+0x206/0x3a0
[  180.346752][ T7916]  ksys_read+0x12b/0x250
[  180.351003][ T7916]  ? __pfx_ksys_read+0x10/0x10
[  180.355782][ T7916]  do_syscall_64+0xcd/0x250
[  180.360324][ T7916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.366231][ T7916] RIP: 0033:0x7f65f498473c
[  180.370669][ T7916] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  180.390284][ T7916] RSP: 002b:00007f65f5707030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  180.398704][ T7916] RAX: ffffffffffffffda RBX: 00007f65f4b76080 RCX: 00007f65f498473c
[  180.406696][ T7916] RDX: 000000000000000f RSI: 00007f65f57070a0 RDI: 0000000000000004
[  180.414668][ T7916] RBP: 00007f65f5707090 R08: 0000000000000000 R09: 0000000000000000
[  180.422642][ T7916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.430613][ T7916] R13: 0000000000000001 R14: 00007f65f4b76080 R15: 00007ffce7d638b8
[  180.438601][ T7916]  </TASK>
[  180.775466][ T7931] netlink: 22 bytes leftover after parsing attributes in process `syz.2.482'.
[  181.035155][ T7937] netlink: 4 bytes leftover after parsing attributes in process `syz.1.483'.
[  181.339081][ T7939] netlink: 4 bytes leftover after parsing attributes in process `syz.1.483'.
[  182.221295][   T29] audit: type=1800 audit(1029.490:25): pid=7960 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.489" name="discovery_nqn" dev="configfs" ino=16137 res=0 errno=0
[  183.219935][ T7981] netlink: 28 bytes leftover after parsing attributes in process `syz.3.493'.
[  184.840435][ T8009] netlink: 'syz.2.500': attribute type 4 has an invalid length.
[  184.869258][ T8008] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  185.589666][ T8029] warning: `syz.2.506' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  187.235349][ T8075] kAFS: bad VL server IP address
[  188.264741][ T8094] netlink: 4 bytes leftover after parsing attributes in process `syz.2.523'.
[  188.658680][ T8103] openvswitch: netlink: Duplicate or invalid key (type 0).
[  191.874518][ T8165] nbd: couldn't find device at index 33904
[  194.542109][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  194.548442][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  194.724812][ T8221] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  195.734304][ T8246] netlink: 330 bytes leftover after parsing attributes in process `syz.2.557'.
[  195.861596][ T8246] mac80211_hwsim hwsim4 ›: renamed from wlan0 (while UP)
[  195.923414][ T8260] netlink: 28 bytes leftover after parsing attributes in process `syz.1.560'.
[  196.083768][ T8260] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.185457][ T8260] bridge_slave_0 (unregistering): left allmulticast mode
[  196.203520][ T8260] bridge_slave_0 (unregistering): left promiscuous mode
[  196.222230][ T8260] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.606137][ T5145] Bluetooth: hci3: command 0x0406 tx timeout
[  196.613252][ T5839] Bluetooth: hci0: command 0x0406 tx timeout
[  196.619656][ T5145] Bluetooth: hci1: command 0x0406 tx timeout
[  196.626021][ T5833] Bluetooth: hci2: command 0x0406 tx timeout
[  196.645125][ T8272] netlink: 74 bytes leftover after parsing attributes in process `syz.1.563'.
[  199.178768][ T8316] netlink: 504 bytes leftover after parsing attributes in process `syz.1.575'.
[  200.223942][ T8327] netlink: 28 bytes leftover after parsing attributes in process `syz.0.578'.
[  200.234449][ T8327] veth1_macvtap: entered allmulticast mode
[  201.864747][   T29] audit: type=1800 audit(4294967305.155:26): pid=8405 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.594" name="discovery_nqn" dev="configfs" ino=19575 res=0 errno=0
[  201.939598][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  201.968141][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  201.976643][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  201.987345][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  201.995867][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  202.014854][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  202.246500][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  202.316065][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  202.324908][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  203.534707][   T29] audit: type=1800 audit(4294967306.831:27): pid=8459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.606" name="discovery_nqn" dev="configfs" ino=18631 res=0 errno=0
[  205.281653][ T8508] block nbd2: Unsupported socket: shutdown callout must be supported.
[  206.107595][   T29] audit: type=1800 audit(4294967309.411:28): pid=8534 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.626" name="discovery_nqn" dev="configfs" ino=18748 res=0 errno=0
[  206.416122][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  207.711579][   T29] audit: type=1800 audit(4294967311.011:29): pid=8571 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.638" name="discovery_nqn" dev="configfs" ino=18803 res=0 errno=0
[  208.375195][   T29] audit: type=1800 audit(4294967311.681:30): pid=8583 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.639" name="discovery_nqn" dev="configfs" ino=18869 res=0 errno=0
[  212.358216][ T8687] netlink: 64 bytes leftover after parsing attributes in process `syz.0.668'.
[  212.431501][ T8684] ima: policy update failed
[  212.550871][   T29] audit: type=1802 audit(4294967315.761:31): pid=8684 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.668" res=0 errno=0
[  212.926332][   T29] audit: type=1800 audit(4294967316.231:32): pid=8709 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.673" name="discovery_nqn" dev="configfs" ino=19119 res=0 errno=0
[  215.124931][ T8726] [U] 
[  215.127686][ T8726] [U] 
[  215.130393][ T8726] [U] 
[  215.133088][ T8726] [U] 
[  215.197092][ T8726] [U] 
[  215.199816][ T8726] [U] æ9
÷¯mKˆ«ašËw aØ­Ì6/ÛvB!a.ón’‹=“[ãeÿ®Ã³çÝ|üÒÚuY“S© dFy}<߆
[  215.293516][ T8726] [U] J½W:÷&7y¤tjûß˸"m­Y8ÝhÜ7~OqØÄ	ßæRWwø:–†„I
ç
[  215.304099][ T8726] [U] Â$ãBñgÂÕä`†&m>4ºY¿�¥vI4i›yè¸}ôüÓæ>sÍ7…w`ž¶�1PŶÛku[¸§¤cýŽ
[  215.312628][ T8726] [U] …ë|»B�GðŸ9ŠGÇ‹îï|ù–°†!ãWvÀ4÷Ë× 
[  215.318731][ T8726] [U] 5}XázÝ=beÉ›Æ81Ìú.!Ý�e=
蘦h�ÊYöÔÌ&SÌH£aíÎfA{Žz‘An=8W�ø+e‡œQûkô“xcS—®‡°¡Òöè\	›Éºñ&ÕPè’:¢:-Æ¢xé qª™ Â|á
[  215.331686][ T8726] [U] êb`ÊÖm±à-
[  215.335619][ T8726] [U] ~èîk3jÃŽ�ñqâŒÅ*cœ*àÏþY‰2Ô5Jú´.tØŒÝ^Rð›§eDD²…?ˆQ—Ñ™­`ºgˆoabû:}Œc`c·çu�Hæo†x P¬Ñ›„¤“,_:�+ß#gœ¤MX±zÊVv„˜{ümN–X¾˜¦²ÂÓÄ-7Ü8A|jŠm—ƺr`Úpýy«Ÿ+)\î‡hyy3¬ÕgP´^"ðp’á–Kƒ*¥ðð´tI_È™1b©v2ÏÂe)š�úNf�?ÑÙÿ®b‰M§ÛñG+ðPä~‰–‘ëT”åveýd@9Æ�f7:¹	�
[  215.404885][ T8726] [U] EžH€“T¹-®¥L4×Û]ÚÍïÄ(¸Ow½TÎξØ`Žü¢sÍ¿Ž¤Öé­	ÖLy‡€‚÷þPÂÎJè+:èö,ßú�úlp^¥¬‘¹ÜÓ;búÖË–ä�¨}FدɆ
[  215.416563][ T8726] [U] 2@õ
[  215.419534][ T8726] [U] ‘©eɘÏ»¤ß@@7ôÆ7$6@<›Sp˜˜š€jý]}Ð
[  215.425327][ T8726] [U] <^[¸ZÙш.àQaû‚Ó^,3n&Y
[  215.430255][ T8726] [U] m¹x¬Ãœ_TœÀHíTˆlvÄ­ë’ôÿ•ùûá^ó\Ø9s[C‰0ÀÆ6ëÊSú#¡�E±m¨4³üŒÔo��–Ê4Xÿã5ªÐ½M#p‚þF'+v‹p¹îúlôårˆ¤÷›	“`]7‚â·b{@�tI¤ð†¬—ÂäN?ËIJR­s¬Vmvp"Çù7ÏšüôAÊ
[  215.446512][ T8726] [U] n¯¡ÆÇ&z¦³õ›ÛÔ]á\ùKØóGÎûÍ9àXÂ
[  215.451823][ T8726] [U] âè`&:P­äZçxv/'¹Öñ�á6

Èé9j’„n/�bx3!‡1ý*Zå£u‹ãX›œƒŒ½Ô,©©­Õßè÷™Š:0îÀqÓ‚3Åâ±ç÷â~u÷nºÎ•‚Þ?7DŽQ«¶ZWÉcm4K€zDç�¶tp„Ú";À<ý¨–ÀE^¤t̃�„23�XÕ©1AG¡–ËƸ¢Ù÷6j=­‚逑¬åVæM,åü&ƒ@NÛ™,HgxSÍ«ÁÕ
[  215.470847][ T8726] [U] ½²ÆÑr}ªÌâ6M–Â+àÄöPïˆgWé r�40hÏI¾ª‰�ØD∼îy.“Vmô›Ô¡ŠhX ¤O¯/ÖÜü½W2·,V:ÔÏŸ
[  215.486402][ T8726] [U] x뎂¨=îbIsDil k5
[  215.519108][ T8726] [U] ¿0«‚…·rLÏT=p9HÍ؈OEø®zÒdõkµf98¦÷Îàë}jMWhG$(°Ml‚0ÎïûŠ‰`åì’OÚs]GŸ	fHª#%ý£	�HÜy±hvþ*(P|ò¦
[  215.529743][ T8726] [U] 
[  215.532442][ T8726] [U] 
[  215.535140][ T8726] [U] 
[  215.585510][ T8726] [U] 
[  215.588261][ T8726] [U] 
[  215.590975][ T8726] [U] 
[  215.593688][ T8726] [U] 
[  215.621504][ T8726] [U] 
[  215.624257][ T8726] [U] 
[  215.626973][ T8726] [U] 
[  215.629691][ T8726] [U] 
[  216.024309][ T8753] [U] 
[  216.327806][ T8766] netlink: 452 bytes leftover after parsing attributes in process `syz.0.688'.
[  216.356543][ T8766] netlink: 452 bytes leftover after parsing attributes in process `syz.0.688'.
[  216.825271][   T29] audit: type=1800 audit(4294967320.121:33): pid=8793 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.694" name="discovery_nqn" dev="configfs" ino=19288 res=0 errno=0
[  217.972892][ T8817] openvswitch: netlink: IP tunnel dst address not specified
[  218.271999][   T29] audit: type=1800 audit(4294967321.561:34): pid=8837 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.705" name="discovery_nqn" dev="configfs" ino=20585 res=0 errno=0
[  218.302184][   T29] audit: type=1800 audit(4294967321.601:35): pid=8837 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.705" name="lu_gp_id" dev="configfs" ino=20586 res=0 errno=0
[  218.955916][ T8851] syz.1.706 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  219.720407][   T29] audit: type=1800 audit(4294967323.021:36): pid=8881 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.714" name="discovery_nqn" dev="configfs" ino=21627 res=0 errno=0
[  220.488991][ T8899] netlink: 334 bytes leftover after parsing attributes in process `syz.0.718'.
[  221.843652][ T8930] netlink: 178 bytes leftover after parsing attributes in process `syz.1.726'.
[  222.792082][   T29] audit: type=1800 audit(4294967326.091:37): pid=8949 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.732" name="discovery_nqn" dev="configfs" ino=20776 res=0 errno=0
[  222.862484][ T8935] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  222.869427][ T8935] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  222.935842][ T8935] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  222.941872][ T8935] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  222.979131][ T8935] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  223.006263][ T8935] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  223.068184][ T8935] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  223.075140][ T8935] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  223.783173][ T8976] netlink: 28 bytes leftover after parsing attributes in process `syz.2.738'.
[  224.100838][ T8990] : Can't lookup blockdev
[  224.124896][ T5842] Bluetooth: hci0: command 0x0406 tx timeout
[  224.898949][ T9005] netlink: 4 bytes leftover after parsing attributes in process `syz.1.744'.
[  225.004851][ T5842] Bluetooth: hci2: command 0x0406 tx timeout
[  225.005794][ T5838] Bluetooth: hci1: command 0x0406 tx timeout
[  225.085022][ T5838] Bluetooth: hci3: command 0x0406 tx timeout
[  226.083474][ T9034] netlink: 350 bytes leftover after parsing attributes in process `syz.2.752'.
[  226.165554][ T9027] Process accounting resumed
[  226.207017][ T5838] Bluetooth: hci0: command 0x0406 tx timeout
[  226.425242][ T9045] netlink: 334 bytes leftover after parsing attributes in process `syz.2.754'.
[  227.088175][ T5838] Bluetooth: hci2: command 0x0406 tx timeout
[  227.088186][ T5842] Bluetooth: hci1: command 0x0406 tx timeout
[  227.164892][ T5838] Bluetooth: hci3: command 0x0406 tx timeout
[  227.427611][ T9059] capability: warning: `syz.0.758' uses 32-bit capabilities (legacy support in use)
[  227.743991][ T9074] netlink: 244 bytes leftover after parsing attributes in process `syz.2.762'.
[  227.763409][ T9070] netlink: 4 bytes leftover after parsing attributes in process `syz.0.761'.
[  227.774946][ T9073] netlink: 244 bytes leftover after parsing attributes in process `syz.2.762'.
[  228.867506][ T9079] Invalid ELF header magic: != ELF
[  228.994837][   T29] audit: type=1800 audit(4294967300.980:38): pid=9085 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.764" name="discovery_nqn" dev="configfs" ino=21952 res=0 errno=0
[  229.109465][   T29] audit: type=1800 audit(4294967301.100:39): pid=9087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.765" name="features" dev="configfs" ino=21959 res=0 errno=0
[  230.161709][   T29] audit: type=1800 audit(4294967302.146:40): pid=9093 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.766" name="discovery_nqn" dev="configfs" ino=21970 res=0 errno=0
[  231.204784][ T9110] netlink: 28 bytes leftover after parsing attributes in process `syz.0.771'.
[  233.137818][   T29] audit: type=1800 audit(4294967305.126:41): pid=9157 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.783" name="discovery_nqn" dev="configfs" ino=21276 res=0 errno=0
[  235.300188][   T29] audit: type=1800 audit(4294967307.286:42): pid=9195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.793" name="discovery_nqn" dev="configfs" ino=21354 res=0 errno=0
[  236.077868][   T29] audit: type=1800 audit(4294967308.066:43): pid=9205 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.803" name="features" dev="configfs" ino=22285 res=0 errno=0
[  240.005222][ T9278] mmap: syz.1.813 (9278): VmData 37597184 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  240.159135][ T9273] netlink: 28 bytes leftover after parsing attributes in process `syz.2.812'.
[  242.129324][ T9320] Invalid ELF header magic: != ELF
[  242.166026][ T9319] [U] 
[  242.168872][ T9319] [U] 
[  242.171602][ T9319] [U] 
[  242.174329][ T9319] [U] 
[  242.208762][ T9319] [U] 
[  242.211507][ T9319] [U] 
[  242.214241][ T9319] [U] 
[  242.216968][ T9319] [U] 
[  242.245052][ T9319] [U] 
[  242.247802][ T9319] [U] 
[  242.250525][ T9319] [U] 
[  242.253249][ T9319] [U] 
[  242.289070][ T9319] [U] 
[  242.291844][ T9319] [U] 
[  242.294569][ T9319] [U] 
[  242.297300][ T9319] [U] 
[  242.325461][ T9319] [U] 
[  242.328220][ T9319] [U] 
[  242.330951][ T9319] [U] 
[  242.357678][ T9318] [U] 
[  242.515982][ T9330] netlink: 252 bytes leftover after parsing attributes in process `syz.2.830'.
[  242.548857][   T29] audit: type=1800 audit(4294967314.542:44): pid=9334 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.831" name="discovery_nqn" dev="configfs" ino=23601 res=0 errno=0
[  243.334218][ T9359] netlink: 138 bytes leftover after parsing attributes in process `syz.3.838'.
[  243.829188][ T9362] [U] 
[  243.832036][ T9362] [U] 
[  243.834757][ T9362] [U] 
[  243.837487][ T9362] [U] 
[  243.892430][ T9362] [U] 
[  243.895188][ T9362] [U] 
[  243.897917][ T9362] [U] 
[  243.900643][ T9362] [U] 
[  243.949286][ T9362] [U] 
[  243.952045][ T9362] [U] 
[  243.954778][ T9362] [U] 
[  243.957505][ T9362] [U] 
[  243.998153][ T9362] [U] 
[  244.000904][ T9362] [U] 
[  244.003633][ T9362] [U] 
[  244.006365][ T9362] [U] 
[  244.098966][ T9362] [U] 
[  244.101724][ T9362] [U] 
[  244.104449][ T9362] [U] 
[  244.197029][ T9361] [U] 
[  245.717349][ T9406] Invalid ELF header magic: != ELF
[  246.475200][ T9425] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  246.559602][ T9425] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  246.588397][ T9425] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  246.614743][ T9425] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  246.645643][ T9425] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  246.664661][ T9425] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  246.672943][ T9425] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  246.766131][ T9425] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  246.774425][ T9425] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  247.098594][ T9425] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  248.785591][ T9418] lo: entered allmulticast mode
[  249.063232][ T9417] lo: left allmulticast mode
[  250.428446][ T9487] netlink: 12 bytes leftover after parsing attributes in process `syz.0.868'.
[  253.663845][ T9534] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  253.693785][ T9534] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  253.764889][ T9534] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  253.770966][ T9534] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  254.365069][ T9566] [U] 
[  254.367930][ T9566] [U] 
[  254.370753][ T9566] [U] 
[  254.373487][ T9566] [U] 
[  254.394850][ T9566] [U] 
[  254.397600][ T9566] [U] 
[  254.400328][ T9566] [U] 
[  254.403057][ T9566] [U] 
[  254.415990][ T9566] [U] 
[  254.418739][ T9566] [U] 
[  254.421470][ T9566] [U] 
[  254.424195][ T9566] [U] 
[  254.454747][ T9566] [U] 
[  254.457496][ T9566] [U] 
[  254.460220][ T9566] [U] 
[  254.462952][ T9566] [U] 
[  254.495947][ T9566] [U] 
[  254.498700][ T9566] [U] 
[  254.501434][ T9566] [U] 
[  254.549065][ T9565] [U] 
[  254.843596][ T9574] [U] 
[  254.846444][ T9574] [U] 
[  254.849171][ T9574] [U] 
[  254.851893][ T9574] [U] 
[  254.864744][ T9574] [U] 
[  254.867495][ T9574] [U] 
[  254.870214][ T9574] [U] 
[  254.872934][ T9574] [U] 
[  254.884483][ T9574] [U] 
[  254.887230][ T9574] [U] 
[  254.889954][ T9574] [U] 
[  254.892678][ T9574] [U] 
[  254.904723][ T9574] [U] 
[  254.907461][ T9574] [U] 
[  254.910186][ T9574] [U] 
[  254.912913][ T9574] [U] 
[  254.919156][ T9574] [U] 
[  254.921897][ T9574] [U] 
[  254.924619][ T9574] [U] 
[  255.640879][ T9571] [U] 
[  255.644843][ T5829] Bluetooth: hci0: command 0x0406 tx timeout
[  255.724868][ T5829] Bluetooth: hci1: command 0x0406 tx timeout
[  255.804748][ T5829] Bluetooth: hci3: command 0x0406 tx timeout
[  255.804758][ T5842] Bluetooth: hci2: command 0x0406 tx timeout
[  255.967638][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  255.974003][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  257.154566][ T9634] netlink: 334 bytes leftover after parsing attributes in process `syz.3.905'.
[  257.608839][ T9646] netlink: 12 bytes leftover after parsing attributes in process `syz.2.909'.
[  259.110736][ T9674] netlink: 4 bytes leftover after parsing attributes in process `syz.1.917'.
[  259.228385][ T9655] [U] 
[  259.231238][ T9655] [U] 
[  259.233972][ T9655] [U] 
[  259.236692][ T9655] [U] 
[  259.332698][ T9655] [U] 
[  259.335459][ T9655] [U] 
[  259.338178][ T9655] [U] 
[  259.340907][ T9655] [U] 
[  259.404738][ T9655] [U] 
[  259.407492][ T9655] [U] 
[  259.410227][ T9655] [U] 
[  259.412952][ T9655] [U] 
[  259.474863][ T9655] [U] 
[  259.477615][ T9655] [U] 
[  259.480349][ T9655] [U] 
[  259.483079][ T9655] [U] 
[  259.504705][ T9655] [U] 
[  259.725642][ T9676] [U] 
[  259.728494][ T9676] [U] 
[  259.731225][ T9676] [U] 
[  259.733949][ T9676] [U] 
[  259.758106][ T9676] [U] 
[  259.760853][ T9676] [U] 
[  259.763583][ T9676] [U] 
[  259.766309][ T9676] [U] 
[  259.880038][ T9676] [U] 
[  259.882811][ T9676] [U] 
[  259.885544][ T9676] [U] 
[  259.888273][ T9676] [U] 
[  259.940354][ T9676] [U] 
[  259.943117][ T9676] [U] 
[  259.945846][ T9676] [U] 
[  259.948576][ T9676] [U] 
[  259.963148][ T9692] netlink: 12 bytes leftover after parsing attributes in process `syz.3.921'.
[  260.174685][ T9676] [U] 
[  260.174757][ T9676] [U] 
[  260.174801][ T9676] [U] 
[  260.174888][ T9676] [U] 
[  263.376830][ T9741] [U] 
[  263.379681][ T9741] [U] 
[  263.382409][ T9741] [U] 
[  263.385138][ T9741] [U] 
[  263.455513][ T9741] [U] 
[  263.458277][ T9741] [U] 
[  263.461003][ T9741] [U] 
[  263.463726][ T9741] [U] 
[  263.508216][ T9741] [U] 
[  263.510969][ T9741] [U] 
[  263.513691][ T9741] [U] 
[  263.516422][ T9741] [U] 
[  263.572941][ T9741] [U] 
[  263.575680][ T9741] [U] 
[  263.578377][ T9741] [U] 
[  263.581075][ T9741] [U] 
[  263.643851][ T9741] [U] 
[  263.646616][ T9741] [U] 
[  263.649341][ T9741] [U] 
[  263.688477][ T9741] [U] 
[  264.298397][ T9756] netlink: 8 bytes leftover after parsing attributes in process `syz.1.934'.
[  264.506067][ T9756] block nbd5: Unsupported socket: shutdown callout must be supported.
[  266.564973][ T9787] [U] 
[  266.567825][ T9787] [U] 
[  266.570553][ T9787] [U] 
[  266.573277][ T9787] [U] 
[  266.617258][ T9787] [U] 
[  266.620022][ T9787] [U] 
[  266.622754][ T9787] [U] 
[  266.625495][ T9787] [U] 
[  266.685921][ T9787] [U] 
[  266.688678][ T9787] [U] 
[  266.691409][ T9787] [U] 
[  266.694129][ T9787] [U] 
[  266.764715][ T9787] [U] 
[  266.767479][ T9787] [U] 
[  266.770210][ T9787] [U] 
[  266.772942][ T9787] [U] 
[  266.816940][ T9787] [U] 
[  266.819688][ T9787] [U] 
[  266.822410][ T9787] [U] 
[  266.854962][ T9786] [U] 
[  267.467374][ T9795] could not allocate digest TFM handle 
[  268.556568][ T9843] netlink: 330 bytes leftover after parsing attributes in process `syz.1.954'.
[  268.590029][ T9842] netlink: 330 bytes leftover after parsing attributes in process `syz.1.954'.
[  268.620953][ T9842] mac80211_hwsim hwsim2 ›: renamed from wlan0 (while UP)
[  269.201348][ T9858] binder: 9857:9858 ioctl c0306201 9 returned -14
[  269.831457][ T9869] netlink: 244 bytes leftover after parsing attributes in process `syz.0.959'.
[  271.581391][ T9903] netlink: 4 bytes leftover after parsing attributes in process `syz.1.969'.
[  279.370144][T10068] net_ratelimit: 55 callbacks suppressed
[  279.370163][T10068] openvswitch: netlink: Key type 29 is not supported
[  279.423979][T10068] openvswitch: netlink: Key type 29 is not supported
[  279.499865][T10068] openvswitch: netlink: Key type 29 is not supported
[  279.624523][T10068] openvswitch: netlink: Key type 29 is not supported
[  279.712738][T10068] openvswitch: netlink: Key type 29 is not supported
[  279.764886][T10068] openvswitch: netlink: Key type 29 is not supported
[  279.796607][T10068] openvswitch: netlink: Key type 29 is not supported
[  279.837481][T10068] openvswitch: netlink: Key type 29 is not supported
[  279.874998][T10068] openvswitch: netlink: Key type 29 is not supported
[  279.904554][T10068] openvswitch: netlink: Key type 29 is not supported
[  282.201421][T10134] Invalid ELF header magic: != ELF
[  288.199559][T10256] can: request_module (can-proto-5) failed.
[  288.981105][T10267] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1053'.
[  289.038462][T10267] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1053'.
[  289.952188][ T5833] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  289.964112][ T5833] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  289.979219][ T5833] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  290.010144][ T5833] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  290.022526][ T5833] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  290.035409][ T5833] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  290.595149][T10282] chnl_net:caif_netlink_parms(): no params data found
[  290.774869][T10292] [U] *&JÝi¶D1&¬Œ¯n»ÿ•d}j¡µ]Þr@›EŽ†ŒûiI‡õ
[  290.781022][T10292] [U] 
[  290.783751][T10292] [U] 
[  290.786481][T10292] [U] 
[  290.798353][T10292] [U] 
[  290.801098][T10292] [U] 
[  290.803825][T10292] [U] 
[  290.806553][T10292] [U] 
[  290.964502][T10282] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.973362][T10282] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.983625][T10292] [U] 
[  290.986370][T10292] [U] 
[  290.989088][T10292] [U] 
[  290.991817][T10292] [U] 
[  291.000330][T10282] bridge_slave_0: entered allmulticast mode
[  291.015915][T10282] bridge_slave_0: entered promiscuous mode
[  291.035976][T10282] bridge0: port 2(bridge_slave_1) entered blocking state
[  291.043145][T10282] bridge0: port 2(bridge_slave_1) entered disabled state
[  291.057081][T10292] [U] 
[  291.059820][T10292] [U] 
[  291.062545][T10292] [U] 
[  291.065262][T10292] [U] 
[  291.068195][T10282] bridge_slave_1: entered allmulticast mode
[  291.093531][T10282] bridge_slave_1: entered promiscuous mode
[  291.104922][T10292] [U] 
[  291.107666][T10292] [U] 
[  291.110399][T10292] [U] 
[  291.113130][T10292] [U] 
[  291.240679][T10282] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  291.256998][T10282] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  291.373127][T10282] team0: Port device team_slave_0 added
[  291.404151][T10282] team0: Port device team_slave_1 added
[  291.447408][T10282] batman_adv: batadv0: Adding interface: batadv_slave_0
[  291.464546][T10282] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  291.504776][T10282] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  291.526790][T10282] batman_adv: batadv0: Adding interface: batadv_slave_1
[  291.533746][T10282] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  291.614629][T10282] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  291.694361][T10282] hsr_slave_0: entered promiscuous mode
[  291.702157][T10282] hsr_slave_1: entered promiscuous mode
[  291.712698][T10282] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  291.730811][T10282] Cannot create hsr debugfs directory
[  292.001385][T10282] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  292.027622][T10282] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  292.077449][T10282] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  292.093398][T10282] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  292.125118][ T5833] Bluetooth: hci0: command tx timeout
[  292.357067][T10282] 8021q: adding VLAN 0 to HW filter on device bond0
[  292.418283][T10282] 8021q: adding VLAN 0 to HW filter on device team0
[  292.449102][ T7824] bridge0: port 1(bridge_slave_0) entered blocking state
[  292.456245][ T7824] bridge0: port 1(bridge_slave_0) entered forwarding state
[  292.489628][ T7824] bridge0: port 2(bridge_slave_1) entered blocking state
[  292.497306][ T7824] bridge0: port 2(bridge_slave_1) entered forwarding state
[  292.599900][T10282] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  292.942436][T10282] 8021q: adding VLAN 0 to HW filter on device batadv0
[  293.408181][T10282] veth0_vlan: entered promiscuous mode
[  293.421021][T10282] veth1_vlan: entered promiscuous mode
[  293.453832][T10282] veth0_macvtap: entered promiscuous mode
[  293.462499][T10282] veth1_macvtap: entered promiscuous mode
[  293.477435][T10282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  293.491376][T10282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.501467][T10282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  293.512129][T10282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.522212][T10282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  293.534782][T10282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.546985][T10282] batman_adv: batadv0: Interface activated: batadv_slave_0
[  293.587370][T10282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  293.598793][T10282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.624627][T10282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  293.641705][T10282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.654783][T10282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  293.674607][T10282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.685636][T10282] batman_adv: batadv0: Interface activated: batadv_slave_1
[  293.737246][T10282] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  293.746919][T10282] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  293.764659][T10282] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  293.773383][T10282] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  294.022156][ T8159] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  294.044820][ T8159] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  294.083094][ T7969] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  294.125934][ T7969] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  294.230976][ T5833] Bluetooth: hci0: command tx timeout
[  294.566816][T10329] GUP no longer grows the stack in syz.4.1056 (10329): 8000-409000 (0)
[  294.585962][T10329] CPU: 0 UID: 0 PID: 10329 Comm: syz.4.1056 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  294.596768][T10329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  294.606859][T10329] Call Trace:
[  294.610160][T10329]  <TASK>
[  294.613111][T10329]  dump_stack_lvl+0x16c/0x1f0
[  294.617828][T10329]  gup_vma_lookup+0x1d2/0x220
[  294.622547][T10329]  __get_user_pages+0x236/0x3b50
[  294.627518][T10329]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  294.633100][T10329]  ? __gup_longterm_locked+0x123/0x1870
[  294.638689][T10329]  ? __gup_longterm_locked+0x123/0x1870
[  294.644282][T10329]  ? __pfx___get_user_pages+0x10/0x10
[  294.649692][T10329]  ? down_read_killable+0xcc/0x380
[  294.654857][T10329]  ? __pfx_down_read_killable+0x10/0x10
[  294.660445][T10329]  ? __pfx___lock_acquire+0x10/0x10
[  294.665675][T10329]  __gup_longterm_locked+0x211/0x1870
[  294.671093][T10329]  ? __pfx___gup_longterm_locked+0x10/0x10
[  294.676932][T10329]  ? gup_fast_fallback+0x84c/0x2690
[  294.682158][T10329]  ? __pfx_lock_release+0x10/0x10
[  294.687207][T10329]  ? lock_acquire+0x2f/0xb0
[  294.691738][T10329]  ? ___pte_offset_map+0x42/0x540
[  294.696801][T10329]  gup_fast_fallback+0x1802/0x2690
[  294.701971][T10329]  ? __pfx_gup_fast_fallback+0x10/0x10
[  294.707461][T10329]  ? do_syscall_64+0xcd/0x250
[  294.712171][T10329]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.718291][T10329]  get_user_pages_fast+0xa8/0x100
[  294.723348][T10329]  ? __pfx_get_user_pages_fast+0x10/0x10
[  294.729026][T10329]  get_futex_key+0x1f5/0x1000
[  294.733741][T10329]  ? __pfx_get_futex_key+0x10/0x10
[  294.738894][T10329]  ? kasan_save_track+0x14/0x30
[  294.743774][T10329]  ? __kasan_kmalloc+0xaa/0xb0
[  294.748573][T10329]  futex_lock_pi+0x282/0x7a0
[  294.753202][T10329]  ? __pfx_mark_lock+0x10/0x10
[  294.758009][T10329]  ? hlock_class+0x4e/0x130
[  294.762553][T10329]  ? __pfx_futex_lock_pi+0x10/0x10
[  294.767694][T10329]  ? __pfx_lock_release+0x10/0x10
[  294.772753][T10329]  ? __folio_batch_add_and_move+0x612/0xc60
[  294.778711][T10329]  ? __pfx_futex_wake_mark+0x10/0x10
[  294.784034][T10329]  ? do_user_addr_fault+0xdc7/0x13f0
[  294.789343][T10329]  ? reacquire_held_locks+0x20b/0x4c0
[  294.794744][T10329]  do_futex+0x11b/0x350
[  294.798938][T10329]  ? __pfx_do_futex+0x10/0x10
[  294.803645][T10329]  ? find_held_lock+0x2d/0x110
[  294.808453][T10329]  __x64_sys_futex+0x1e1/0x4c0
[  294.813258][T10329]  ? __pfx___x64_sys_futex+0x10/0x10
[  294.818583][T10329]  ? do_user_addr_fault+0x83d/0x13f0
[  294.823896][T10329]  do_syscall_64+0xcd/0x250
[  294.828433][T10329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.834364][T10329] RIP: 0033:0x7f2dc2185d29
[  294.838799][T10329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  294.858435][T10329] RSP: 002b:00007f2dc3076038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  294.866882][T10329] RAX: ffffffffffffffda RBX: 00007f2dc2376080 RCX: 00007f2dc2185d29
[  294.874876][T10329] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[  294.882859][T10329] RBP: 00007f2dc2201b08 R08: 0000000000000000 R09: 0000000080000001
[  294.890850][T10329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  294.898846][T10329] R13: 0000000000000001 R14: 00007f2dc2376080 R15: 00007ffecb6f6cd8
[  294.906857][T10329]  </TASK>
[  296.287745][ T5833] Bluetooth: hci0: command tx timeout
[  297.236546][ T5840] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  297.246116][ T5840] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  297.253825][ T5840] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  297.263296][ T5840] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  297.270929][ T5840] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  297.278776][ T5840] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  297.898327][T10355] chnl_net:caif_netlink_parms(): no params data found
[  298.366062][ T5833] Bluetooth: hci0: command tx timeout
[  298.567095][T10373] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1073'.
[  298.582745][T10355] bridge0: port 1(bridge_slave_0) entered blocking state
[  298.592691][T10355] bridge0: port 1(bridge_slave_0) entered disabled state
[  298.624239][T10355] bridge_slave_0: entered allmulticast mode
[  298.641536][T10355] bridge_slave_0: entered promiscuous mode
[  298.682654][T10355] bridge0: port 2(bridge_slave_1) entered blocking state
[  298.726757][T10355] bridge0: port 2(bridge_slave_1) entered disabled state
[  298.747985][T10355] bridge_slave_1: entered allmulticast mode
[  298.763116][T10355] bridge_slave_1: entered promiscuous mode
[  298.922060][T10355] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  298.974403][T10355] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  299.154431][T10355] team0: Port device team_slave_0 added
[  299.200273][T10355] team0: Port device team_slave_1 added
[  299.264713][T10390] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1077'.
[  299.325599][ T5833] Bluetooth: hci4: command tx timeout
[  299.334991][T10355] batman_adv: batadv0: Adding interface: batadv_slave_0
[  299.341955][T10355] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  299.421959][T10355] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  299.593353][T10355] batman_adv: batadv0: Adding interface: batadv_slave_1
[  299.619566][T10355] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  299.750343][T10355] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  299.928993][T10355] hsr_slave_0: entered promiscuous mode
[  299.954340][T10355] hsr_slave_1: entered promiscuous mode
[  299.999037][T10355] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  300.011098][T10355] Cannot create hsr debugfs directory
[  300.390737][T10355] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  300.412198][T10355] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  300.451021][T10355] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  300.492717][T10355] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  300.705997][T10355] 8021q: adding VLAN 0 to HW filter on device bond0
[  300.767437][T10355] 8021q: adding VLAN 0 to HW filter on device team0
[  300.817727][ T7969] bridge0: port 1(bridge_slave_0) entered blocking state
[  300.824909][ T7969] bridge0: port 1(bridge_slave_0) entered forwarding state
[  300.896027][ T7824] bridge0: port 2(bridge_slave_1) entered blocking state
[  300.903149][ T7824] bridge0: port 2(bridge_slave_1) entered forwarding state
[  301.404770][ T5833] Bluetooth: hci4: command tx timeout
[  301.568156][T10355] 8021q: adding VLAN 0 to HW filter on device batadv0
[  302.559934][T10355] veth0_vlan: entered promiscuous mode
[  302.598677][T10355] veth1_vlan: entered promiscuous mode
[  302.743349][T10355] veth0_macvtap: entered promiscuous mode
[  302.788388][T10355] veth1_macvtap: entered promiscuous mode
[  302.883010][T10355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  302.934970][T10355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  302.985136][T10355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.028860][T10355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.073683][T10355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.121190][T10355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.164269][T10355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.214267][T10355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.253755][T10355] batman_adv: batadv0: Interface activated: batadv_slave_0
[  303.335358][T10355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  303.383718][T10355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.434338][T10355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  303.483593][T10355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.534732][T10355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  303.546198][ T5833] Bluetooth: hci4: command tx timeout
[  303.564712][T10355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.577622][T10355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  303.598439][T10355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.637846][T10355] batman_adv: batadv0: Interface activated: batadv_slave_1
[  303.677638][T10355] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  303.725659][T10355] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  303.734390][T10355] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  303.764616][T10355] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  304.067094][ T7807] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  304.098070][ T7807] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  304.182091][ T7824] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  304.211444][ T7824] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  304.546407][T10457] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4)
[  305.564782][ T5833] Bluetooth: hci4: command tx timeout
[  305.782085][T10479] netlink: 'syz.5.1092': attribute type 21 has an invalid length.
[  305.816466][T10479] netlink: 326 bytes leftover after parsing attributes in process `syz.5.1092'.
[  308.199012][T10499] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1098'.
[  308.253326][T10504] HSR: entered promiscuous mode
[  308.477769][T10510] delete_channel: no stack
[  309.937975][T10530] netlink: 452 bytes leftover after parsing attributes in process `syz.0.1105'.
[  309.979514][T10530] netlink: 452 bytes leftover after parsing attributes in process `syz.0.1105'.
[  310.313435][T10532] FAULT_INJECTION: forcing a failure.
[  310.313435][T10532] name failslab, interval 1, probability 0, space 0, times 0
[  310.381055][T10532] CPU: 1 UID: 0 PID: 10532 Comm: syz.4.1106 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  310.391858][T10532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  310.401935][T10532] Call Trace:
[  310.405226][T10532]  <TASK>
[  310.408176][T10532]  dump_stack_lvl+0x16c/0x1f0
[  310.412914][T10532]  should_fail_ex+0x497/0x5b0
[  310.417627][T10532]  ? fs_reclaim_acquire+0xae/0x150
[  310.422776][T10532]  should_failslab+0xc2/0x120
[  310.427485][T10532]  __kmalloc_node_noprof+0xd1/0x520
[  310.432715][T10532]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  310.438295][T10532]  __kvmalloc_node_noprof+0xad/0x1a0
[  310.443609][T10532]  seq_read_iter+0x82a/0x12b0
[  310.448306][T10532]  ? __mutex_trylock_common+0xea/0x250
[  310.453794][T10532]  kernfs_fop_read_iter+0x414/0x580
[  310.459016][T10532]  ? rw_verify_area+0xd0/0x700
[  310.463804][T10532]  vfs_read+0x87f/0xbe0
[  310.467995][T10532]  ? __pfx_vfs_read+0x10/0x10
[  310.472714][T10532]  ksys_read+0x12b/0x250
[  310.476992][T10532]  ? __pfx_ksys_read+0x10/0x10
[  310.481796][T10532]  do_syscall_64+0xcd/0x250
[  310.486333][T10532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.492264][T10532] RIP: 0033:0x7f2dc2185d29
[  310.496698][T10532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.516324][T10532] RSP: 002b:00007f2dc3097038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  310.524776][T10532] RAX: ffffffffffffffda RBX: 00007f2dc2375fa0 RCX: 00007f2dc2185d29
[  310.532768][T10532] RDX: 0000000000000074 RSI: 0000000020000040 RDI: 0000000000000003
[  310.540754][T10532] RBP: 00007f2dc3097090 R08: 0000000000000000 R09: 0000000000000000
[  310.548741][T10532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  310.556727][T10532] R13: 0000000000000000 R14: 00007f2dc2375fa0 R15: 00007ffecb6f6cd8
[  310.564730][T10532]  </TASK>
[  310.647907][T10534] netlink: 'syz.0.1107': attribute type 21 has an invalid length.
[  310.673917][T10534] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1107'.
[  311.158950][T10541] netlink: 'syz.0.1109': attribute type 2 has an invalid length.
[  311.186929][T10541] netlink: 'syz.0.1109': attribute type 21 has an invalid length.
[  311.214245][T10541] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1109'.
[  312.824988][T10573] netlink: 'syz.4.1117': attribute type 21 has an invalid length.
[  312.869362][T10573] netlink: 326 bytes leftover after parsing attributes in process `syz.4.1117'.
[  312.904080][T10576] FAULT_INJECTION: forcing a failure.
[  312.904080][T10576] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  312.982595][T10576] CPU: 1 UID: 0 PID: 10576 Comm: syz.2.1120 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  312.993405][T10576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  313.003474][T10576] Call Trace:
[  313.006763][T10576]  <TASK>
[  313.009704][T10576]  dump_stack_lvl+0x16c/0x1f0
[  313.014411][T10576]  should_fail_ex+0x497/0x5b0
[  313.019114][T10576]  _copy_to_iter+0x29b/0x1400
[  313.023818][T10576]  ? trace_lock_acquire+0x14e/0x1f0
[  313.029041][T10576]  ? __pfx_lock_release+0x10/0x10
[  313.034079][T10576]  ? __pfx__copy_to_iter+0x10/0x10
[  313.039215][T10576]  ? __virt_addr_valid+0x1a4/0x590
[  313.044362][T10576]  ? __virt_addr_valid+0x5e/0x590
[  313.049432][T10576]  ? __phys_addr_symbol+0x30/0x80
[  313.054478][T10576]  ? __check_object_size+0x488/0x710
[  313.059794][T10576]  seq_read_iter+0xd00/0x12b0
[  313.064504][T10576]  kernfs_fop_read_iter+0x414/0x580
[  313.069728][T10576]  ? rw_verify_area+0xd0/0x700
[  313.074513][T10576]  vfs_read+0x87f/0xbe0
[  313.078693][T10576]  ? __pfx_vfs_read+0x10/0x10
[  313.083411][T10576]  ksys_read+0x12b/0x250
[  313.087677][T10576]  ? __pfx_ksys_read+0x10/0x10
[  313.092470][T10576]  do_syscall_64+0xcd/0x250
[  313.097006][T10576]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.102922][T10576] RIP: 0033:0x7f69db385d29
[  313.107350][T10576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.126977][T10576] RSP: 002b:00007f69dc28e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  313.135410][T10576] RAX: ffffffffffffffda RBX: 00007f69db575fa0 RCX: 00007f69db385d29
[  313.143393][T10576] RDX: 0000000000000074 RSI: 0000000020000040 RDI: 0000000000000003
[  313.151379][T10576] RBP: 00007f69dc28e090 R08: 0000000000000000 R09: 0000000000000000
[  313.159363][T10576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.167352][T10576] R13: 0000000000000000 R14: 00007f69db575fa0 R15: 00007fff099b0b68
[  313.175356][T10576]  </TASK>
[  314.403955][T10594] HfR: entered promiscuous mode
[  315.904981][T10615] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1124'.
[  317.422623][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  317.436168][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  317.540827][T10639] FAULT_INJECTION: forcing a failure.
[  317.540827][T10639] name failslab, interval 1, probability 0, space 0, times 0
[  317.600700][T10639] CPU: 1 UID: 0 PID: 10639 Comm: syz.5.1128 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  317.611513][T10639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  317.621584][T10639] Call Trace:
[  317.624875][T10639]  <TASK>
[  317.627820][T10639]  dump_stack_lvl+0x16c/0x1f0
[  317.632541][T10639]  should_fail_ex+0x497/0x5b0
[  317.637246][T10639]  should_failslab+0xc2/0x120
[  317.641952][T10639]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  317.647352][T10639]  ? skb_clone+0x190/0x3f0
[  317.651802][T10639]  skb_clone+0x190/0x3f0
[  317.656079][T10639]  netlink_deliver_tap+0xafd/0xca0
[  317.661217][T10639]  netlink_unicast+0x5e1/0x7f0
[  317.666009][T10639]  ? __pfx_netlink_unicast+0x10/0x10
[  317.671315][T10639]  ? __phys_addr_symbol+0x30/0x80
[  317.676365][T10639]  ? __check_object_size+0x488/0x710
[  317.681686][T10639]  netlink_sendmsg+0x8b8/0xd70
[  317.686501][T10639]  ? __pfx_netlink_sendmsg+0x10/0x10
[  317.691823][T10639]  ____sys_sendmsg+0x9ae/0xb40
[  317.696610][T10639]  ? copy_msghdr_from_user+0x10b/0x160
[  317.702095][T10639]  ? __pfx_____sys_sendmsg+0x10/0x10
[  317.707413][T10639]  ? __lock_acquire+0xcc5/0x3c40
[  317.712392][T10639]  ___sys_sendmsg+0x135/0x1e0
[  317.717101][T10639]  ? __pfx____sys_sendmsg+0x10/0x10
[  317.722342][T10639]  ? trace_lock_acquire+0x14e/0x1f0
[  317.727587][T10639]  __sys_sendmmsg+0x201/0x420
[  317.732293][T10639]  ? __pfx___sys_sendmmsg+0x10/0x10
[  317.737527][T10639]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  317.743545][T10639]  ? fput+0x67/0x440
[  317.747475][T10639]  ? ksys_write+0x1ba/0x250
[  317.752003][T10639]  ? __pfx_ksys_write+0x10/0x10
[  317.756888][T10639]  __x64_sys_sendmmsg+0x9c/0x100
[  317.761855][T10639]  ? lockdep_hardirqs_on+0x7c/0x110
[  317.767076][T10639]  do_syscall_64+0xcd/0x250
[  317.771605][T10639]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.777524][T10639] RIP: 0033:0x7fcf18785d29
[  317.781954][T10639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.801754][T10639] RSP: 002b:00007fcf195bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  317.810188][T10639] RAX: ffffffffffffffda RBX: 00007fcf18976080 RCX: 00007fcf18785d29
[  317.818171][T10639] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003
[  317.826152][T10639] RBP: 00007fcf195bc090 R08: 0000000000000000 R09: 0000000000000000
[  317.834133][T10639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  317.842117][T10639] R13: 0000000000000000 R14: 00007fcf18976080 R15: 00007ffdd88da998
[  317.850117][T10639]  </TASK>
[  318.144779][T10639] netlink: 'syz.5.1128': attribute type 21 has an invalid length.
[  318.154772][T10639] netlink: 326 bytes leftover after parsing attributes in process `syz.5.1128'.
[  318.737513][T10651] FAULT_INJECTION: forcing a failure.
[  318.737513][T10651] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  318.834737][T10651] CPU: 1 UID: 0 PID: 10651 Comm: syz.0.1131 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  318.845542][T10651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  318.855608][T10651] Call Trace:
[  318.858898][T10651]  <TASK>
[  318.861841][T10651]  dump_stack_lvl+0x16c/0x1f0
[  318.866548][T10651]  should_fail_ex+0x497/0x5b0
[  318.871256][T10651]  _copy_to_user+0x32/0xd0
[  318.875700][T10651]  simple_read_from_buffer+0xd0/0x160
[  318.881097][T10651]  proc_fail_nth_read+0x198/0x270
[  318.886153][T10651]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  318.891729][T10651]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  318.897302][T10651]  vfs_read+0x1df/0xbe0
[  318.901481][T10651]  ? __fget_files+0x1fc/0x3a0
[  318.906183][T10651]  ? __pfx___mutex_lock+0x10/0x10
[  318.911230][T10651]  ? __pfx_vfs_read+0x10/0x10
[  318.915933][T10651]  ? __fget_files+0x206/0x3a0
[  318.920640][T10651]  ksys_read+0x12b/0x250
[  318.924902][T10651]  ? __pfx_ksys_read+0x10/0x10
[  318.929695][T10651]  do_syscall_64+0xcd/0x250
[  318.934223][T10651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.940139][T10651] RIP: 0033:0x7fc4c958473c
[  318.944567][T10651] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  318.964190][T10651] RSP: 002b:00007fc4ca37b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  318.972624][T10651] RAX: ffffffffffffffda RBX: 00007fc4c9775fa0 RCX: 00007fc4c958473c
[  318.980607][T10651] RDX: 000000000000000f RSI: 00007fc4ca37b0a0 RDI: 0000000000000004
[  318.988593][T10651] RBP: 00007fc4ca37b090 R08: 0000000000000000 R09: 0000000000000000
[  318.996576][T10651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  319.004557][T10651] R13: 0000000000000000 R14: 00007fc4c9775fa0 R15: 00007ffd3f257c78
[  319.012558][T10651]  </TASK>
[  319.778180][T10665] netlink: 452 bytes leftover after parsing attributes in process `syz.5.1135'.
[  319.833848][T10668] netlink: 452 bytes leftover after parsing attributes in process `syz.5.1135'.
[  322.031007][T10691] netlink: 452 bytes leftover after parsing attributes in process `syz.0.1139'.
[  322.047869][T10691] netlink: 452 bytes leftover after parsing attributes in process `syz.0.1139'.
[  322.633157][T10706] can: request_module (can-proto-0) failed.
[  329.433943][T10820] net_ratelimit: 55 callbacks suppressed
[  329.433963][T10820] openvswitch: netlink: Flow key attr not present in new flow.
[  331.077821][T10848] netlink: 'syz.0.1167': attribute type 21 has an invalid length.
[  331.115098][T10848] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1167'.
[  335.382505][T10896] netlink: 452 bytes leftover after parsing attributes in process `syz.5.1178'.
[  335.424896][T10896] netlink: 452 bytes leftover after parsing attributes in process `syz.5.1178'.
[  339.221303][T10941] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1188'.
[  340.442326][T10951] netlink: 'syz.4.1187': attribute type 21 has an invalid length.
[  341.225145][T10951] netlink: 326 bytes leftover after parsing attributes in process `syz.4.1187'.
[  344.276207][T10983] netlink: 452 bytes leftover after parsing attributes in process `syz.4.1195'.
[  347.637895][T11002] netlink: 'syz.5.1200': attribute type 21 has an invalid length.
[  347.661897][T11002] netlink: 326 bytes leftover after parsing attributes in process `syz.5.1200'.
[  351.538153][T11048] netlink: 452 bytes leftover after parsing attributes in process `syz.2.1211'.
[  352.794308][T11062] [U] 
[  352.797085][T11062] [U] 
[  352.799810][T11062] [U] 
[  352.802529][T11062] [U] 
[  352.853996][T11062] [U] 
[  352.856740][T11062] [U] 
[  352.859454][T11062] [U] 
[  352.862166][T11062] [U] 
[  352.895985][T11062] [U] 
[  352.898729][T11062] [U] 
[  352.901443][T11062] [U] 
[  352.904158][T11062] [U] 
[  352.942794][T11062] [U] 
[  352.945565][T11062] [U] 
[  352.948288][T11062] [U] 
[  352.951012][T11062] [U] 
[  352.971690][T11062] [U] 
[  352.974430][T11062] [U] 
[  352.977141][T11062] [U] 
[  352.979849][T11062] [U] 
[  353.342968][T11056] kexec: Could not allocate control_code_buffer
[  354.615426][T11092] Unable to find swap-space signature
[  355.102111][T11116] [U] 
[  355.104859][T11116] [U] 
[  355.107571][T11116] [U] 
[  355.110286][T11116] [U] 
[  355.156591][T11116] [U] 
[  355.159340][T11116] [U] 
[  355.162052][T11116] [U] 
[  355.164766][T11116] [U] 
[  355.220818][T11116] [U] 
[  355.223566][T11116] [U] 
[  355.226285][T11116] [U] 
[  355.229001][T11116] [U] 
[  355.293352][T11116] [U] 
[  355.296104][T11116] [U] 
[  355.298819][T11116] [U] 
[  355.301530][T11116] [U] 
[  355.353117][T11116] [U] 
[  355.355864][T11116] [U] 
[  355.358584][T11116] [U] 
[  355.361295][T11116] [U] 
[  356.008995][T11136] vivid-003: =================  START STATUS  =================
[  356.071430][T11136] vivid-003: Radio HW Seek Mode: Bounded
[  356.121377][T11136] vivid-003: Radio Programmable HW Seek: false
[  356.230951][T11136] vivid-003: RDS Rx I/O Mode: Block I/O
[  356.265155][T11136] vivid-003: Generate RBDS Instead of RDS: false
[  356.271551][T11136] vivid-003: RDS Reception: true
[  356.415899][T11136] vivid-003: RDS Program Type: 0 inactive
[  356.421704][T11136] vivid-003: RDS PS Name:  inactive
[  356.645785][T11136] vivid-003: RDS Radio Text:  inactive
[  356.651331][T11136] vivid-003: RDS Traffic Announcement: false inactive
[  356.798643][T11136] vivid-003: RDS Traffic Program: false inactive
[  356.896696][T11136] vivid-003: RDS Music: false inactive
[  356.972982][T11136] vivid-003: ==================  END STATUS  ==================
[  357.001513][T11143] mkiss: ax0: crc mode is auto.
[  358.780938][T11173] devtmpfs: Bad value for 'gid'
[  358.804691][T11173] devtmpfs: Bad value for 'gid'
[  359.053039][T11171] [U] 
[  359.055798][T11171] [U] 
[  359.058514][T11171] [U] 
[  359.061232][T11171] [U] 
[  359.163930][T11177] syz.4.1230: vmalloc error: size 8388608, failed to allocated page array size 16384, mode:0x400cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  359.193386][T11171] [U] 
[  359.196127][T11171] [U] 
[  359.198843][T11171] [U] 
[  359.201555][T11171] [U] 
[  359.242518][T11171] [U] 
[  359.245275][T11171] [U] 
[  359.247991][T11171] [U] 
[  359.250707][T11171] [U] 
[  359.394380][T11171] [U] 
[  359.397137][T11171] [U] 
[  359.399866][T11171] [U] 
[  359.402578][T11171] [U] 
[  359.457263][T11184] netlink: 452 bytes leftover after parsing attributes in process `syz.2.1232'.
[  359.510480][T11177] CPU: 1 UID: 0 PID: 11177 Comm: syz.4.1230 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  359.521295][T11177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  359.531363][T11177] Call Trace:
[  359.534652][T11177]  <TASK>
[  359.537596][T11177]  dump_stack_lvl+0x16c/0x1f0
[  359.542298][T11177]  warn_alloc+0x24d/0x3a0
[  359.546654][T11177]  ? __pfx_warn_alloc+0x10/0x10
[  359.551541][T11177]  ? __get_vm_area_node+0x1b0/0x2f0
[  359.556763][T11177]  ? __get_vm_area_node+0x1dc/0x2f0
[  359.561995][T11177]  __vmalloc_node_range_noprof+0x1105/0x1530
[  359.568009][T11177]  ? __do_sys_listmount+0x1be/0xe70
[  359.573241][T11177]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  359.579593][T11177]  ? rcu_is_watching+0x12/0xc0
[  359.584381][T11177]  ? trace_kmalloc+0x2d/0xd0
[  359.588988][T11177]  ? __kmalloc_node_noprof.cold+0x5a/0x5f
[  359.594742][T11177]  ? __do_sys_listmount+0x1be/0xe70
[  359.599965][T11177]  __kvmalloc_node_noprof+0x14f/0x1a0
[  359.605362][T11177]  ? __do_sys_listmount+0x1be/0xe70
[  359.610580][T11177]  __do_sys_listmount+0x1be/0xe70
[  359.615629][T11177]  ? __x64_sys_futex+0x1e1/0x4c0
[  359.620592][T11177]  ? __x64_sys_futex+0x1ea/0x4c0
[  359.625557][T11177]  ? __pfx___do_sys_listmount+0x10/0x10
[  359.631121][T11177]  ? xfd_validate_state+0x5d/0x180
[  359.636266][T11177]  do_syscall_64+0xcd/0x250
[  359.640803][T11177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.646724][T11177] RIP: 0033:0x7f2dc2185d29
[  359.651154][T11177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.670785][T11177] RSP: 002b:00007f2dc3097038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  359.679227][T11177] RAX: ffffffffffffffda RBX: 00007f2dc2375fa0 RCX: 00007f2dc2185d29
[  359.687218][T11177] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000000020000100
[  359.695202][T11177] RBP: 00007f2dc2201b08 R08: 0000000000000000 R09: 0000000000000000
[  359.703185][T11177] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  359.711167][T11177] R13: 0000000000000000 R14: 00007f2dc2375fa0 R15: 00007ffecb6f6cd8
[  359.719166][T11177]  </TASK>
[  359.985961][T11177] Mem-Info:
[  359.989120][T11177] active_anon:92245 inactive_anon:0 isolated_anon:0
[  359.989120][T11177]  active_file:13534 inactive_file:45452 isolated_file:0
[  359.989120][T11177]  unevictable:768 dirty:622 writeback:0
[  359.989120][T11177]  slab_reclaimable:10946 slab_unreclaimable:103523
[  359.989120][T11177]  mapped:43827 shmem:75980 pagetables:1089
[  359.989120][T11177]  sec_pagetables:0 bounce:0
[  359.989120][T11177]  kernel_misc_reclaimable:0
[  359.989120][T11177]  free:1233085 free_pcp:913 free_cma:0
[  360.576082][T11177] Node 0 active_anon:379104kB inactive_anon:0kB active_file:56160kB inactive_file:181736kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:177396kB dirty:2484kB writeback:0kB shmem:312752kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12248kB pagetables:4172kB sec_pagetables:0kB all_unreclaimable? no
[  361.267627][T11177] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  362.194793][T11177] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  362.388802][T11177] lowmem_reserve[]: 0 2491 2492 0 0
[  362.444711][T11177] Node 0 DMA32 free:991708kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:378680kB inactive_anon:0kB active_file:55992kB inactive_file:181104kB unevictable:1536kB writepending:1748kB present:3129332kB managed:2551312kB mlocked:0kB bounce:0kB free_pcp:2896kB local_pcp:1016kB free_cma:0kB
[  363.039836][T11177] lowmem_reserve[]: 0 0 0 0 0
[  363.124439][T11177] Node 0 Normal free:8kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:832kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  363.152079][T11177] lowmem_reserve[]: 0 0 0 0 0
[  363.157194][T11177] Node 1 Normal free:3912008kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  363.186885][T11177] lowmem_reserve[]: 0 0 0 0 0
[  363.191720][T11177] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  363.205253][T11177] Node 0 DMA32: 136*4kB (UME) 78*8kB (UME) 143*16kB (UME) 124*32kB (UME) 20*64kB (UME) 51*128kB (UME) 16*256kB (UM) 38*512kB (UME) 40*1024kB (UME) 16*2048kB (UM) 215*4096kB (UME) = 993152kB
[  363.226068][T11177] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  363.238471][T11177] Node 1 Normal: 130*4kB (UME) 62*8kB (UME) 39*16kB (UME) 143*32kB (UME) 74*64kB (UME) 29*128kB (UME) 16*256kB (UME) 10*512kB (UME) 5*1024kB (UM) 2*2048kB (UE) 947*4096kB (M) = 3912008kB
[  363.257798][T11177] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  363.372524][T11177] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  363.543920][T11177] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  363.920065][T11177] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  364.224145][T11177] 130046 total pagecache pages
[  364.284046][T11177] 37 pages in swap cache
[  364.375154][T11177] Free swap  = 124360kB
[  364.379346][T11177] Total swap = 124996kB
[  364.403216][T11194] [U] 
[  364.405959][T11194] [U] 
[  364.408672][T11194] [U] 
[  364.411382][T11194] [U] 
[  364.430208][T11194] [U] 
[  364.432941][T11194] [U] 
[  364.435657][T11194] [U] 
[  364.438369][T11194] [U] 
[  364.492955][T11194] [U] 
[  364.495700][T11194] [U] 
[  364.498421][T11194] [U] 
[  364.501139][T11194] [U] 
[  364.510226][T11177] 2097051 pages RAM
[  364.514050][T11177] 0 pages HighMem/MovableOnly
[  364.539285][T11194] [U] 
[  364.542016][T11194] [U] 
[  364.544734][T11194] [U] 
[  364.547447][T11194] [U] 
[  364.594457][T11194] [U] 
[  364.597196][T11194] [U] 
[  364.599907][T11194] [U] 
[  364.602620][T11194] [U] 
[  364.633150][T11194] [U] 
[  364.635885][T11194] [U] 
[  364.638598][T11194] [U] 
[  364.641315][T11194] [U] 
[  364.672077][T11177] 427373 pages reserved
[  364.715880][T11194] [U] 
[  364.718618][T11194] [U] 
[  364.721335][T11194] [U] 
[  364.724050][T11194] [U] 
[  364.731977][T11177] 0 pages cma reserved
[  365.922048][T11244] netlink: 'syz.4.1249': attribute type 21 has an invalid length.
[  366.066233][T11244] netlink: 326 bytes leftover after parsing attributes in process `syz.4.1249'.
[  368.823621][T11258] mkiss: ax0: crc mode is auto.
[  369.396900][T11276] Invalid ELF header magic: != ELF
[  370.654052][T11276] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1258'.
[  373.857485][ T5833] Bluetooth: hci4: unexpected event 0x06 length: 4 > 3
[  374.626908][T11368] netlink: 'syz.0.1278': attribute type 21 has an invalid length.
[  374.698743][T11368] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1278'.
[  375.242022][T11373] could not allocate digest TFM handle 
[  375.570364][T11379] could not allocate digest TFM handle 
[  378.856294][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  378.880989][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  379.892507][T11435] netlink: 'syz.4.1294': attribute type 21 has an invalid length.
[  379.919369][T11435] netlink: 326 bytes leftover after parsing attributes in process `syz.4.1294'.
[  383.994600][T11516] [U] 
[  383.997357][T11516] [U] 
[  384.000085][T11516] [U] 
[  384.002798][T11516] [U] 
[  384.037452][T11516] [U] 
[  384.040286][T11516] [U] 
[  384.043016][T11516] [U] 
[  384.045748][T11516] [U] 
[  384.135899][T11516] [U] 
[  384.138647][T11516] [U] 
[  384.141360][T11516] [U] 
[  384.144075][T11516] [U] 
[  384.249670][T11516] [U] 
[  384.252427][T11516] [U] 
[  384.255156][T11516] [U] 
[  384.257871][T11516] [U] 
[  384.367591][T11516] [U] 
[  384.370343][T11516] [U] 
[  384.373051][T11516] [U] 
[  384.375749][T11516] [U] 
[  384.660691][T11528] mkiss: ax0: crc mode is auto.
[  386.283561][T11573] Invalid ELF header magic: != ELF
[  386.875298][T11590] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1327'.
[  387.757483][T11605] Invalid ELF header magic: != ELF
[  387.808925][T11578] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1324'.
[  391.301764][T11643] ptrace attach of "./syz-executor exec"[10355] was attempted by "./syz-executor exec"[11643]
[  393.518659][T11682] 
: entered promiscuous mode
[  393.858804][T11690] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1342'.
[  395.342582][T11722] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1347'.
[  399.656472][T11769] netlink: 'syz.5.1358': attribute type 28 has an invalid length.
[  399.773751][T11769] netlink: 326 bytes leftover after parsing attributes in process `syz.5.1358'.
[  400.860508][T11789] netlink: 178 bytes leftover after parsing attributes in process `syz.4.1364'.
[  403.244839][T11807] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1366'.
[  408.651111][T11902] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1383'.
[  408.685716][T11902] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1383'.
[  409.404715][T11910] Invalid ELF header magic: != ELF
[  409.465444][T11910] Invalid ELF header magic: != ELF
[  409.530283][T11910] Invalid ELF header magic: != ELF
[  409.663587][T11910] Invalid ELF header magic: != ELF
[  410.344111][T11922] zero sized request
[  411.253254][T11930] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1390'.
[  411.367878][T11930] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1390'.
[  414.763949][T11973] netlink: 130 bytes leftover after parsing attributes in process `syz.0.1401'.
[  416.075716][T11984] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1405'.
[  416.530131][T11984] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  416.548093][T11984] batman_adv: batadv0: Removing interface: batadv_slave_0
[  416.577370][T11984] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  416.599379][T11984] batman_adv: batadv0: Removing interface: batadv_slave_1
[  416.826268][ T5833] Bluetooth: hci0: command 0x0406 tx timeout
[  421.357393][T12022] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1413'.
[  421.723418][T12023] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  421.808525][T12023] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  421.888553][ T5840] Bluetooth: hci4: command 0x0406 tx timeout
[  426.246672][T12051] FAULT_INJECTION: forcing a failure.
[  426.246672][T12051] name failslab, interval 1, probability 0, space 0, times 0
[  426.272251][T12051] CPU: 1 UID: 0 PID: 12051 Comm: syz.4.1421 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  426.283050][T12051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  426.293117][T12051] Call Trace:
[  426.296408][T12051]  <TASK>
[  426.299354][T12051]  dump_stack_lvl+0x16c/0x1f0
[  426.304061][T12051]  should_fail_ex+0x497/0x5b0
[  426.308770][T12051]  ? fs_reclaim_acquire+0xae/0x150
[  426.313905][T12051]  should_failslab+0xc2/0x120
[  426.318617][T12051]  __kmalloc_noprof+0xce/0x4f0
[  426.323414][T12051]  ? lsm_blob_alloc+0x68/0x90
[  426.328123][T12051]  lsm_blob_alloc+0x68/0x90
[  426.332652][T12051]  security_sk_alloc+0x30/0x270
[  426.337535][T12051]  sk_prot_alloc+0x1c7/0x2a0
[  426.342151][T12051]  sk_alloc+0x36/0xb90
[  426.346247][T12051]  __netlink_create+0x5e/0x2c0
[  426.351055][T12051]  __netlink_kernel_create+0xee/0x750
[  426.356456][T12051]  ? __pfx___netlink_kernel_create+0x10/0x10
[  426.362462][T12051]  ? find_held_lock+0x2d/0x110
[  426.367261][T12051]  rtnetlink_net_init+0xba/0x140
[  426.372239][T12051]  ? __pfx_rtnetlink_net_init+0x10/0x10
[  426.377817][T12051]  ? __pfx_rtnetlink_rcv+0x10/0x10
[  426.382949][T12051]  ? __pfx_rtnetlink_bind+0x10/0x10
[  426.388173][T12051]  ? __pfx_netlink_tap_init_net+0x10/0x10
[  426.393918][T12051]  ? debug_mutex_init+0x37/0x70
[  426.398799][T12051]  ? __pfx_rtnetlink_net_init+0x10/0x10
[  426.404373][T12051]  ops_init+0x1df/0x5f0
[  426.408565][T12051]  setup_net+0x21f/0x860
[  426.412847][T12051]  ? __pfx_setup_net+0x10/0x10
[  426.417640][T12051]  ? down_read_killable+0xcc/0x380
[  426.422782][T12051]  ? __pfx_down_read_killable+0x10/0x10
[  426.428364][T12051]  ? debug_mutex_init+0x37/0x70
[  426.433253][T12051]  copy_net_ns+0x2b4/0x6c0
[  426.437698][T12051]  create_new_namespaces+0x3ea/0xad0
[  426.443014][T12051]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  426.448675][T12051]  ksys_unshare+0x45d/0xa40
[  426.453210][T12051]  ? __pfx_ksys_unshare+0x10/0x10
[  426.458260][T12051]  ? xfd_validate_state+0x5d/0x180
[  426.463405][T12051]  __x64_sys_unshare+0x31/0x40
[  426.468196][T12051]  do_syscall_64+0xcd/0x250
[  426.472727][T12051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.478648][T12051] RIP: 0033:0x7f2dc2185d29
[  426.483075][T12051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.502701][T12051] RSP: 002b:00007f2dc3076038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  426.511136][T12051] RAX: ffffffffffffffda RBX: 00007f2dc2376080 RCX: 00007f2dc2185d29
[  426.519122][T12051] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  426.527109][T12051] RBP: 00007f2dc2201b08 R08: 0000000000000000 R09: 0000000000000000
[  426.535097][T12051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  426.543081][T12051] R13: 0000000000000000 R14: 00007f2dc2376080 R15: 00007ffecb6f6cd8
[  426.551086][T12051]  </TASK>
[  428.431975][T12076] erspan0: entered allmulticast mode
[  430.223069][T12088] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1427'.
[  431.001721][T12088] ==================================================================
[  431.009827][T12088] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0
[  431.017571][T12088] Read of size 8 at addr ffff888029cfd818 by task syz.5.1427/12088
[  431.025471][T12088] 
[  431.027806][T12088] CPU: 1 UID: 0 PID: 12088 Comm: syz.5.1427 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  431.038581][T12088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  431.048642][T12088] Call Trace:
[  431.051929][T12088]  <TASK>
[  431.054879][T12088]  dump_stack_lvl+0x116/0x1f0
[  431.059592][T12088]  print_report+0xc3/0x620
[  431.064033][T12088]  ? __virt_addr_valid+0x5e/0x590
[  431.069075][T12088]  ? __phys_addr+0xc6/0x150
[  431.073598][T12088]  kasan_report+0xd9/0x110
[  431.078038][T12088]  ? dvb_device_open+0x36a/0x3b0
[  431.082997][T12088]  ? dvb_device_open+0x36a/0x3b0
[  431.087958][T12088]  ? __pfx_dvb_device_open+0x10/0x10
[  431.093261][T12088]  dvb_device_open+0x36a/0x3b0
[  431.098045][T12088]  ? __pfx_dvb_device_open+0x10/0x10
[  431.103347][T12088]  chrdev_open+0x237/0x6a0
[  431.107786][T12088]  ? __pfx_apparmor_file_open+0x10/0x10
[  431.113350][T12088]  ? __pfx_chrdev_open+0x10/0x10
[  431.118317][T12088]  do_dentry_open+0xf59/0x1ea0
[  431.123111][T12088]  ? __pfx_chrdev_open+0x10/0x10
[  431.128067][T12088]  ? inode_permission+0xdd/0x5f0
[  431.133032][T12088]  vfs_open+0x82/0x3f0
[  431.137124][T12088]  ? may_open+0x1f2/0x400
[  431.141465][T12088]  path_openat+0x1e6a/0x2d60
[  431.146082][T12088]  ? __pfx_path_openat+0x10/0x10
[  431.151037][T12088]  ? __pfx___lock_acquire+0x10/0x10
[  431.156250][T12088]  ? lock_acquire.part.0+0x11b/0x380
[  431.161551][T12088]  ? find_held_lock+0x2d/0x110
[  431.166340][T12088]  do_filp_open+0x20c/0x470
[  431.170862][T12088]  ? __pfx_do_filp_open+0x10/0x10
[  431.175910][T12088]  ? find_held_lock+0x2d/0x110
[  431.180708][T12088]  ? alloc_fd+0x41f/0x760
[  431.185058][T12088]  do_sys_openat2+0x17a/0x1e0
[  431.189789][T12088]  ? __pfx_do_sys_openat2+0x10/0x10
[  431.195013][T12088]  ? __pfx_lock_release+0x10/0x10
[  431.200062][T12088]  __x64_sys_openat+0x175/0x210
[  431.204945][T12088]  ? __pfx___x64_sys_openat+0x10/0x10
[  431.210349][T12088]  do_syscall_64+0xcd/0x250
[  431.214881][T12088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.220805][T12088] RIP: 0033:0x7fcf18785d29
[  431.225227][T12088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  431.244848][T12088] RSP: 002b:00007fcf195dd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  431.253306][T12088] RAX: ffffffffffffffda RBX: 00007fcf18975fa0 RCX: 00007fcf18785d29
[  431.261291][T12088] RDX: 0000000000000400 RSI: 00000000200000c0 RDI: ffffffffffffff9c
[  431.269274][T12088] RBP: 00007fcf18801b08 R08: 0000000000000000 R09: 0000000000000000
[  431.277256][T12088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  431.285236][T12088] R13: 0000000000000000 R14: 00007fcf18975fa0 R15: 00007ffdd88da998
[  431.293224][T12088]  </TASK>
[  431.296249][T12088] 
[  431.298591][T12088] Allocated by task 11978:
[  431.303013][T12088]  kasan_save_stack+0x33/0x60
[  431.307712][T12088]  kasan_save_track+0x14/0x30
[  431.312406][T12088]  __kasan_kmalloc+0xaa/0xb0
[  431.317012][T12088]  ct_init_net+0x56/0x270
[  431.321361][T12088]  ops_init+0x1df/0x5f0
[  431.325548][T12088]  setup_net+0x21f/0x860
[  431.329812][T12088]  copy_net_ns+0x2b4/0x6c0
[  431.334238][T12088]  create_new_namespaces+0x3ea/0xad0
[  431.339544][T12088]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  431.345193][T12088]  ksys_unshare+0x45d/0xa40
[  431.349714][T12088]  __x64_sys_unshare+0x31/0x40
[  431.354502][T12088]  do_syscall_64+0xcd/0x250
[  431.359025][T12088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.364939][T12088] 
[  431.367263][T12088] Freed by task 11978:
[  431.371330][T12088]  kasan_save_stack+0x33/0x60
[  431.376024][T12088]  kasan_save_track+0x14/0x30
[  431.380717][T12088]  kasan_save_free_info+0x3b/0x60
[  431.385750][T12088]  __kasan_slab_free+0x51/0x70
[  431.390528][T12088]  kfree+0x14f/0x4b0
[  431.394434][T12088]  ct_exit_net+0x143/0x3b0
[  431.398862][T12088]  ops_exit_list+0x128/0x180
[  431.403478][T12088]  setup_net+0x4fe/0x860
[  431.407736][T12088]  copy_net_ns+0x2b4/0x6c0
[  431.412157][T12088]  create_new_namespaces+0x3ea/0xad0
[  431.417459][T12088]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  431.423105][T12088]  ksys_unshare+0x45d/0xa40
[  431.427630][T12088]  __x64_sys_unshare+0x31/0x40
[  431.432412][T12088]  do_syscall_64+0xcd/0x250
[  431.436936][T12088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.442849][T12088] 
[  431.445183][T12088] The buggy address belongs to the object at ffff888029cfd800
[  431.445183][T12088]  which belongs to the cache kmalloc-256 of size 256
[  431.459245][T12088] The buggy address is located 24 bytes inside of
[  431.459245][T12088]  freed 256-byte region [ffff888029cfd800, ffff888029cfd900)
[  431.472968][T12088] 
[  431.475298][T12088] The buggy address belongs to the physical page:
[  431.481713][T12088] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x29cfc
[  431.490479][T12088] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  431.498982][T12088] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  431.506531][T12088] page_type: f5(slab)
[  431.510522][T12088] raw: 00fff00000000040 ffff88801ac41b40 ffffea0000d23800 dead000000000002
[  431.519112][T12088] raw: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000
[  431.527705][T12088] head: 00fff00000000040 ffff88801ac41b40 ffffea0000d23800 dead000000000002
[  431.536383][T12088] head: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000
[  431.545064][T12088] head: 00fff00000000001 ffffea0000a73f01 ffffffffffffffff 0000000000000000
[  431.553753][T12088] head: 0000000000000002 0000000000000000 00000000ffffffff 0000000000000000
[  431.562430][T12088] page dumped because: kasan: bad access detected
[  431.568852][T12088] page_owner tracks the page as allocated
[  431.574573][T12088] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 14601297774, free_ts 0
[  431.594302][T12088]  post_alloc_hook+0x2d1/0x350
[  431.599089][T12088]  get_page_from_freelist+0xfce/0x2f80
[  431.604566][T12088]  __alloc_pages_noprof+0x223/0x25b0
[  431.609872][T12088]  alloc_pages_mpol_noprof+0x2c8/0x620
[  431.615340][T12088]  new_slab+0x2c9/0x410
[  431.619505][T12088]  ___slab_alloc+0xce2/0x1650
[  431.624194][T12088]  __slab_alloc.constprop.0+0x56/0xb0
[  431.629578][T12088]  __kmalloc_cache_noprof+0xf6/0x420
[  431.634882][T12088]  bus_add_driver+0x92/0x690
[  431.639484][T12088]  driver_register+0x15c/0x4b0
[  431.644269][T12088]  usb_register_driver+0x216/0x4d0
[  431.649400][T12088]  uvc_init+0x24/0x60
[  431.653393][T12088]  do_one_initcall+0x128/0x630
[  431.658174][T12088]  kernel_init_freeable+0x58f/0x8b0
[  431.663392][T12088]  kernel_init+0x1c/0x2b0
[  431.667742][T12088]  ret_from_fork+0x45/0x80
[  431.672166][T12088] page_owner free stack trace missing
[  431.677531][T12088] 
[  431.679893][T12088] Memory state around the buggy address:
[  431.685531][T12088]  ffff888029cfd700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  431.693594][T12088]  ffff888029cfd780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  431.701658][T12088] >ffff888029cfd800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  431.709726][T12088]                             ^
[  431.714575][T12088]  ffff888029cfd880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  431.722637][T12088]  ffff888029cfd900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  431.730699][T12088] ==================================================================
[  432.150784][T12088] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  432.158016][T12088] CPU: 1 UID: 0 PID: 12088 Comm: syz.5.1427 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  432.168786][T12088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  432.178854][T12088] Call Trace:
[  432.182137][T12088]  <TASK>
[  432.185071][T12088]  dump_stack_lvl+0x3d/0x1f0
[  432.189689][T12088]  panic+0x71d/0x800
[  432.193599][T12088]  ? __pfx_panic+0x10/0x10
[  432.198032][T12088]  ? irqentry_exit+0x3b/0x90
[  432.202633][T12088]  ? lockdep_hardirqs_on+0x7c/0x110
[  432.207847][T12088]  ? preempt_schedule_thunk+0x1a/0x30
[  432.213231][T12088]  ? preempt_schedule_common+0x44/0xc0
[  432.218711][T12088]  check_panic_on_warn+0xab/0xb0
[  432.223669][T12088]  end_report+0x117/0x180
[  432.228017][T12088]  kasan_report+0xe9/0x110
[  432.232451][T12088]  ? dvb_device_open+0x36a/0x3b0
[  432.237409][T12088]  ? dvb_device_open+0x36a/0x3b0
[  432.242368][T12088]  ? __pfx_dvb_device_open+0x10/0x10
[  432.247665][T12088]  dvb_device_open+0x36a/0x3b0
[  432.252446][T12088]  ? __pfx_dvb_device_open+0x10/0x10
[  432.257744][T12088]  chrdev_open+0x237/0x6a0
[  432.262182][T12088]  ? __pfx_apparmor_file_open+0x10/0x10
[  432.267743][T12088]  ? __pfx_chrdev_open+0x10/0x10
[  432.272704][T12088]  do_dentry_open+0xf59/0x1ea0
[  432.277486][T12088]  ? __pfx_chrdev_open+0x10/0x10
[  432.282440][T12088]  ? inode_permission+0xdd/0x5f0
[  432.287400][T12088]  vfs_open+0x82/0x3f0
[  432.291484][T12088]  ? may_open+0x1f2/0x400
[  432.295824][T12088]  path_openat+0x1e6a/0x2d60
[  432.300430][T12088]  ? __pfx_path_openat+0x10/0x10
[  432.305386][T12088]  ? __pfx___lock_acquire+0x10/0x10
[  432.310590][T12088]  ? lock_acquire.part.0+0x11b/0x380
[  432.315885][T12088]  ? find_held_lock+0x2d/0x110
[  432.320674][T12088]  do_filp_open+0x20c/0x470
[  432.325190][T12088]  ? __pfx_do_filp_open+0x10/0x10
[  432.330228][T12088]  ? find_held_lock+0x2d/0x110
[  432.335013][T12088]  ? alloc_fd+0x41f/0x760
[  432.339360][T12088]  do_sys_openat2+0x17a/0x1e0
[  432.344056][T12088]  ? __pfx_do_sys_openat2+0x10/0x10
[  432.349276][T12088]  ? __pfx_lock_release+0x10/0x10
[  432.354314][T12088]  __x64_sys_openat+0x175/0x210
[  432.359184][T12088]  ? __pfx___x64_sys_openat+0x10/0x10
[  432.364582][T12088]  do_syscall_64+0xcd/0x250
[  432.369102][T12088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.375010][T12088] RIP: 0033:0x7fcf18785d29
[  432.379431][T12088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  432.399050][T12088] RSP: 002b:00007fcf195dd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  432.407477][T12088] RAX: ffffffffffffffda RBX: 00007fcf18975fa0 RCX: 00007fcf18785d29
[  432.415455][T12088] RDX: 0000000000000400 RSI: 00000000200000c0 RDI: ffffffffffffff9c
[  432.423435][T12088] RBP: 00007fcf18801b08 R08: 0000000000000000 R09: 0000000000000000
[  432.431411][T12088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  432.439387][T12088] R13: 0000000000000000 R14: 00007fcf18975fa0 R15: 00007ffdd88da998
[  432.447373][T12088]  </TASK>
[  432.450625][T12088] Kernel Offset: disabled
[  432.454943][T12088] Rebooting in 86400 seconds..