last executing test programs:

7m32.403319626s ago: executing program 3 (id=419):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x80805, 0x0)
socket(0x18, 0x4, 0x1)
mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000700)={0x1c, r1, 0x99bc9625bdb7e757, 0x70bd2d, 0x25dfdbff, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_ADD_LINK_STA(r2, 0x0, 0x20000000)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
bpf$auto(0x5, &(0x7f0000000100)=@bpf_attr_3={0x6, 0x5, 0xffffffffffff8001, 0x9, 0x8, 0x7ff, 0x2, 0x9, 0x6, "4e96070077cac613ae7600", 0x0, 0x401, 0xffffffffffffffff, 0x4, 0x4, 0x1, 0x5, 0x865, 0x6, 0x9, @attach_prog_fd, 0x8, 0x7fffffffffffffff, 0x4, 0x0, 0x6}, 0x201)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x801, 0x7, 0x400, 0x1000049, 0xffffffffffffffff, 0x20000000000804, 0x3}, 0x6f3)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

7m31.608012466s ago: executing program 3 (id=430):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x385c0, 0x0)
close_range$auto(r0, 0xffffffffffffffff, 0x0)

7m30.332681743s ago: executing program 3 (id=434):
r0 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim1/health/break_health\x00', 0x101, 0x0)
write$auto(r0, &(0x7f0000000040)='s*\x1c\xac\x84,I\xcb\x9b', 0x40)

7m30.040510521s ago: executing program 3 (id=436):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001cc0), 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
utime$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x6, 0x2}) (async)
io_uring_setup$auto(0x4, 0x0) (async)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f00000000c0), r0) (async)
r1 = socket(0x27, 0x801, 0x80000106)
ioctl$auto(r1, 0x890c, 0x9) (async)
sendmsg$auto_NL802154_CMD_DEL_INTERFACE(r1, &(0x7f0000002180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000000)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x5d24b81a2bf58e7e}, 0x0)

7m29.700031866s ago: executing program 3 (id=437):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0xd2d4, 0x101, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd)
tkill$auto(0x1, 0x7)
openat$auto_ctl_device_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x185680, 0x0)

7m26.928813014s ago: executing program 3 (id=445):
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(0x3, 0x89e0, 0x91) (fail_nth: 2)

7m26.491460344s ago: executing program 32 (id=445):
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(0x3, 0x89e0, 0x91) (fail_nth: 2)

6m51.95003776s ago: executing program 0 (id=598):
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x6, 0xeb1, 0x7f, 0x8000)
socket(0x1e, 0x4, 0x0)
socket(0x10, 0x2, 0x4)
mq_open$auto(&(0x7f0000000000)='P\x02\xb9\xd5\x02r\xbc\xd0\t^\xc0!\x7f\xc0\xdd8\xb0\x80\xfa;\x97\x05n\xf4~Z\x05\xf1\xef\xd1\xf1\b\xd9J\x9bp\xdf\xe7\xcd\x1f\x84-\xbb\x05\xa5\xb8\xfc\xf7v<)\xddR\x02\xd8\r_\x03\xe7\x8eWta\xfa\xbd\xaf\x06kG\xf7\xaa6\x1ch\vmD\xfc|v\xd4Q', 0x7e, 0x9, 0x0)
socket(0x1, 0x1, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$auto_vsock_device_ops_af_vsock(r0, 0x7b9, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
pipe$auto(&(0x7f0000001480))
r1 = open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x10, 0x2, 0x9)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYRES8=r2], 0x18}}, 0x80)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10048884)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0)
ioctl$auto(r4, 0x40085112, 0x3)

6m51.379985635s ago: executing program 0 (id=601):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
connect$auto(0x3, 0x0, 0x59)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_5={@target_fd=0xffff0041, 0x735c, 0x9f, 0x800001, 0x40007, @relative_fd=0xa9, 0xfff}, 0xc63)
mprotect$auto(0x1ffff000, 0x7ffffffffffffffd, 0x4)
io_uring_setup$auto(0x5, &(0x7f0000000000)={0x9, 0x1, 0x453, 0x7, 0x5, 0x2, 0x7, [0x20004, 0x2e9, 0x8], {0x0, 0x0, 0x7, 0x7, 0x5, 0x5, 0x1, 0xfffffffc, 0x7}, {0x4, 0xfffff654, 0xffff7fff, 0x2, 0x9, 0x200, 0x3, 0x0, 0x3}})
mlockall$auto(0x7)

6m49.261662292s ago: executing program 0 (id=606):
ioperm$auto(0x4, 0xbc6, 0x81)
adjtimex$auto(&(0x7f0000000180)={0x428, 0x0, 0x1000, 0x3, 0xde1b, 0x4, 0x4, 0x0, 0x0, 0x10001, 0x6, {0x3, 0x5}, 0x7, 0xffffffff, 0x2, 0x8, 0x0, 0x16, 0x3ff, 0x2, 0x1, 0x4005, 0x7})

6m49.166921486s ago: executing program 0 (id=608):
mmap$auto(0xb, 0x9, 0x0, 0xeb1, 0x5, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
setpriority$auto(0x4000000001, 0x100000001, 0x6)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
setgroups$auto(0xe32, 0x0)
madvise$auto(0x0, 0x53, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
timer_create$auto(0x5, 0x0, 0x0)
timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x9}}, 0x0)
timer_gettime$auto(0x0, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x21, &(0x7f0000000240)=[0x10], 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
mmap$auto(0x6, 0x0, 0x100000001, 0x83b, 0x3, 0xb2)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.7/usb8/avoid_reset_quirk\x00', 0x300, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/114, 0x72)
pselect6$auto(0xff, &(0x7f0000000080)={[0x6, 0x8, 0xffffffffffffffff, 0x3, 0x80000000001, 0x6, 0x6f11, 0x7, 0x3, 0x4, 0x9, 0x4, 0x6, 0x7, 0xcb2a, 0x9]}, &(0x7f0000000100)={[0xffff, 0x3, 0xfffffffffffff31a, 0x47, 0x590, 0x3, 0x1d4, 0x3ff, 0x6, 0x7, 0x5, 0x7, 0x80, 0x8, 0x0, 0x1]}, &(0x7f0000000180)={[0xa9, 0x4, 0x4, 0x1, 0x3, 0x4, 0xcbd0, 0x200000001, 0x1f, 0xfffffffffffffffd, 0x7ff, 0x7ffffffffffffffe, 0x4, 0x7f, 0x91, 0x7]}, &(0x7f0000000000)={0x899, 0x4}, &(0x7f00000002c0)=[0xfff, 0x33, 0x403, 0x6, 0x8000, 0x9, 0x3, 0x4])
socket(0x15, 0x6, 0x80)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000380), 0xffffffffffffffff)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda1\x00', 0x1, 0x0)
rmdir$auto(&(0x7f0000000280)='./file0\x00')
setregid$auto(0x0, 0x0)
mmap$auto(0x0, 0x4000c, 0xdf, 0x9b72, 0x7, 0x28000)
socket$nl_generic(0x10, 0x3, 0x10)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
process_mrelease$auto(0x4, 0x0)
setsockopt$auto(0x3, 0xffffffb1, 0x80000d4, 0xfffffffffffffffc, 0xfd72)

6m48.77055126s ago: executing program 0 (id=610):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x1e, 0x805, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(0x3, 0x10e, 0x2, 0xffffffffffffffff, 0x3)
getsockname$auto(0x3, &(0x7f0000000d00), &(0x7f0000000d40)=0x4)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x6, 0x0)
fsopen$auto(0x0, 0x1)
fsconfig$auto(r0, 0x1, 0x0, &(0x7f0000000280), 0x0)
close_range$auto(0x2, 0x8000, 0x0)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0)
mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000)
openat$auto_fops_atomic_t_(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/fail_page_alloc/space\x00', 0x240, 0x0)
mremap$auto(0x1ff000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
mmap$auto(0xfffffffffffffffe, 0xc2, 0x1, 0xfff, 0x8, 0x9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r2, 0x8004552d, 0x81)
write$auto_configfs_file_operations_configfs_internal(r1, 0x0, 0x0)

6m48.609019635s ago: executing program 0 (id=611):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89b1, &(0x7f0000000040)={'macvtap0\x00'})
socket(0x2, 0x801, 0x100)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/swaps\x00', 0x180, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/sctp/snmp\x00', 0x101800, 0x0)
socket(0x10, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), r1)
sendmsg$auto_TIPC_NL_MEDIA_GET(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="010029bd70001cdbdf250b09dde8dbdb0000"], 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x10)
fanotify_init$auto(0x7, 0x801)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x80805, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x14, 0x940, 0x1ffe0, 0x8003, 0x6, 0x6, 0x7, 0x5, 0x2, 0x9, 0x6, 0x9, 0x2, 0x3, 0x2, 0x7}, 0x1fe, 0x7)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
open(&(0x7f0000000040)='./bus\x00', 0x145940, 0x0)
socket(0x2, 0x1, 0x84)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r4 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000100), 0x101002, 0x0)
write$auto(r4, 0x0, 0xc3)

6m33.54312755s ago: executing program 33 (id=611):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89b1, &(0x7f0000000040)={'macvtap0\x00'})
socket(0x2, 0x801, 0x100)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/swaps\x00', 0x180, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/sctp/snmp\x00', 0x101800, 0x0)
socket(0x10, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), r1)
sendmsg$auto_TIPC_NL_MEDIA_GET(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="010029bd70001cdbdf250b09dde8dbdb0000"], 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x10)
fanotify_init$auto(0x7, 0x801)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x80805, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x14, 0x940, 0x1ffe0, 0x8003, 0x6, 0x6, 0x7, 0x5, 0x2, 0x9, 0x6, 0x9, 0x2, 0x3, 0x2, 0x7}, 0x1fe, 0x7)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
open(&(0x7f0000000040)='./bus\x00', 0x145940, 0x0)
socket(0x2, 0x1, 0x84)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r4 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000100), 0x101002, 0x0)
write$auto(r4, 0x0, 0xc3)

24.456705578s ago: executing program 1 (id=2871):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x300000000000000, 0xffffffffffff0005, 0x19)
mlockall$auto(0x7)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
madvise$auto(0x0, 0x2003f0, 0x15)

24.124282454s ago: executing program 1 (id=2874):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000500), r0)
sendmsg$auto_IPVS_CMD_SET_CONFIG(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000c00)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x40008000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x0, 0x0)
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001500), 0xffffffffffffffff)
mmap$auto(0xffffffffffffffff, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
writev$auto(0x7fff, &(0x7f0000000040)={0x0, 0x68}, 0x2)
mmap$auto(0x4, 0xa7a, 0x6, 0xffffffffffffff94, 0x10000005, 0x8000)
rename$auto(0x0, &(0x7f0000000040)='./file0/file0\x00')
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r3, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="ff00020005ac17e79c903491e09fa6a65178402a5cdbd5c21157de3647c7d2cf30bcf28e7191bdd1024a374bd48eab6b3fecba6a57c489780d805d505bf6244ad1333e807bf5debc74f91e884c9910c7dcd1635c99ce82254c8cf3fd2e8024b95a8fc4c75ed4bc606d78bd6ca9553e3b90fe9c6eaca8e1d5bf6e052e1c673f13cfbc717eeaa1282105048ebd78d114fda114ff49d46bb220a7674a9e2658bc1354c23719a5507b3c6ec0819e4f94e4e131523193be65d8c3f3deafb7ed8cbe41018bfc9e5dad", @ANYRES16=r2, @ANYBLOB="010026bd7000fddbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x810)
r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_FRAME(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="090025bd7000fbdbdf2502000000"], 0x14}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000780)='/proc/sys/net/ipv6/neigh/virt_wifi0/retrans_time\x00', 0x101000, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), r10)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r12=>0x0})
sendmsg$auto_BATADV_CMD_GET_HARDIF(r9, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000200)={0x1c, r11, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@BATADV_ATTR_ACTIVE]}, 0x32}}, 0x4008000)
sendmsg$auto_BATADV_CMD_GET_BLA_CLAIM(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="bf8b4cbd7000fedbdf250b00000008000300", @ANYRES32=r12, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x40811}, 0x800)
read$auto_lru_gen_rw_fops_vmscan(r6, 0x0, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x9, 0x0)

23.784177001s ago: executing program 1 (id=2877):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_ILA_CMD_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8d1}, 0x4000050)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa)
execve$auto(&(0x7f0000000040)=':,\x00', 0x0, &(0x7f0000000200)=&(0x7f00000001c0)=':,\x00')
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x8, 0x5, 0x9, 0x11, 0x5, 0x9)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/mm/hugepages/hugepages-1048576kB/nr_hugepages\x00', 0x480, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000340)=""/152, 0x98)
semctl$auto(0x7, 0x63e, 0x0, 0x7)
socket(0xa, 0x2, 0x73)
getpeername$auto(0x3, 0xfffffffffffffffe, 0x0)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000000)=0x10000002)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f0000000040)=0x5)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, 0x0)

23.622843655s ago: executing program 1 (id=2878):
madvise$auto(0x0, 0x2000040080000005, 0xe) (async)
madvise$auto(0x0, 0x2000040080000005, 0xe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x9, 0x9, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x7fff) (async)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x7fff)
socket(0x2, 0x6, 0x0) (async)
r0 = socket(0x2, 0x6, 0x0)
setsockopt$auto(r0, 0x10d, 0x2, 0x0, 0x800017)
madvise$auto(0x1, 0x1, 0x4) (async)
madvise$auto(0x1, 0x1, 0x4)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x621f, 0x10004)
mmap$auto(0x2, 0x2020009, 0x3, 0x15, 0x5, 0x8000)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x40841, 0x8)
write$auto(r1, 0x0, 0xeffd)
read$auto_proc_mem_operations_base(r1, &(0x7f0000000000)=""/196, 0xc4)
mmap$auto(0x5, 0x4020009, 0xdf, 0xeb1, 0x2000000000004, 0xffffffffffffffff) (async)
mmap$auto(0x5, 0x4020009, 0xdf, 0xeb1, 0x2000000000004, 0xffffffffffffffff)
socket(0xa, 0x801, 0x84)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket(0x2, 0x2, 0x1)
socket(0x2, 0x801, 0x106)
socket(0x8, 0x800, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x145)
fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0) (async)
fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0) (async)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
readv$auto(0x0, &(0x7f0000000080)={0x0, 0x1e}, 0x3) (async)
readv$auto(0x0, &(0x7f0000000080)={0x0, 0x1e}, 0x3)
io_uring_setup$auto(0x6, 0x0)
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8) (async)
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8)
execve$auto(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
mount$auto(&(0x7f0000000000)='pimreg\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd054, 0x0) (async)
mount$auto(&(0x7f0000000000)='pimreg\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd054, 0x0)
mount$auto(&(0x7f0000000000), &(0x7f0000000040)='\x00', 0x0, 0x10dfd057, 0x0)

22.700620348s ago: executing program 1 (id=2887):
mmap$auto(0x0, 0x6, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (rerun: 64)
exit$auto(0x7) (async)
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000001c0), 0xffffffffffffffff) (async)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r0 = openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/comm\x00', 0x2, 0x0)
write$auto(r0, &(0x7f0000000000)='/proc/thread-self/comm\x00', 0x75e9)
io_uring_setup$auto(0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000a80), 0x8c0001, 0x0) (async)
ioctl$auto(0x3, 0x541b, 0x38) (async, rerun: 64)
sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="01032cbd06009b760700000000000000000000000200"], 0x1c}, 0x1, 0x0, 0x0, 0x4019}, 0x0) (rerun: 64)
close_range$auto(r1, 0x8, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1)
sendmsg$auto_NL80211_CMD_STOP_SCHED_SCAN(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x74, r3, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@NL80211_ATTR_STA_WME={0x3c, 0x81, 0x0, 0x1, [@NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x6}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x7}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x24}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x2}, @NL80211_STA_WME_UAPSD_QUEUES={0x5}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x41}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x81}]}, @NL80211_ATTR_AP_SETTINGS_FLAGS={0x8}, @NL80211_ATTR_CNTDWN_OFFS_BEACON={0x13, 0xba, "269851466f33fbef7c538316b08971"}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, 0xfffffffd}]}, 0x74}, 0x1, 0x0, 0x0, 0x44}, 0x4008084) (async)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) (async)
io_uring_setup$auto(0x6, 0x0) (async)
clone$auto(0x9, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)

22.460994128s ago: executing program 1 (id=2892):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/virtual_size\x00', 0x20400, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
mount$auto(&(0x7f0000000000)='pimreg\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd057, 0x0)
mount$auto(0x0, &(0x7f0000000040)='802_15_4_MAC\x00', 0x0, 0xaac, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRESOCT, @ANYRES64=r1], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1)
read$auto(r1, &(0x7f0000000100)='nl80211\x00', 0xbe62)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200", @ANYRES64=r0, @ANYRES64=0x0, @ANYRES16, @ANYRES64=r1, @ANYRES8], 0x1ac}, 0x1, 0x0, 0x0, 0xc000}, 0x20040000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

22.152858709s ago: executing program 34 (id=2892):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/virtual_size\x00', 0x20400, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
mount$auto(&(0x7f0000000000)='pimreg\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd057, 0x0)
mount$auto(0x0, &(0x7f0000000040)='802_15_4_MAC\x00', 0x0, 0xaac, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRESOCT, @ANYRES64=r1], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1)
read$auto(r1, &(0x7f0000000100)='nl80211\x00', 0xbe62)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200", @ANYRES64=r0, @ANYRES64=0x0, @ANYRES16, @ANYRES64=r1, @ANYRES8], 0x1ac}, 0x1, 0x0, 0x0, 0xc000}, 0x20040000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

10.441464496s ago: executing program 2 (id=2944):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
read$auto(0x3, 0x0, 0x7)
futex$auto(0x0, 0x8, 0x8243, 0x0, 0x0, 0x4)
setsockopt$auto(0x3, 0x0, 0x17, 0x0, 0x28)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x8001, 0x0, 0x4, 0x0, 0xcf, 0x7fff}, 0xbb5}, 0x0, 0xfeb)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r1 = openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0)
write$auto_uhid_fops_uhid(r1, 0x0, 0xfccd)
sendmsg$auto_NL80211_CMD_REGISTER_FRAME(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x40)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
writev$auto(0x3, &(0x7f0000000140)={0x0, 0x6}, 0xa2)
r4 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
pidfd_getfd$auto(r2, r3, 0x0)
write$auto_qrtr_tun_ops_tun(r4, &(0x7f00000001c0)="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", 0x1000)
sendmsg$auto_NL80211_CMD_ADD_TX_TS(r0, &(0x7f0000001240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001200)={&(0x7f00000011c0)={0x24, 0x0, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x6}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5, 0x113, 0x31}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x4)
r5 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000000), 0x60000, 0x0)
ioctl$auto_UDMABUF_CREATE_LIST(r5, 0x40087543, &(0x7f0000000180)={0xf, 0x3ff})

9.399789359s ago: executing program 4 (id=2947):
openat$auto_generic(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/ieee80211/phy7/netdev:wlan1/rc_rateidx_mcs_mask_5ghz\x00', 0x300, 0x0)
socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
socket(0xa, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x4, 0x0, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB], 0x1ac}, 0x1, 0x0, 0x0, 0x5}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002ac0), r1)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r1, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000002b00)={0x1c, r2, 0x1f97227bd58c1f83, 0x70bd2a, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004041}, 0x40004)
socket(0xa, 0x801, 0x106)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x2001, 0x0)
socket(0x2c, 0x80003, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r3 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x38, 0x3, 0x1ffde, 0x7, 0x3, 0x4, 0x9, 0x3, 0x6, 0x5, 0xb4, 0x9, 0x6, 0x10003, 0x80, 0x7, 0x0, 0x7, 0x0, 0x20000200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x3, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x24, 0x40000000000003, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x200000000001, 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x1, 0x7, 0xffffffffffffffff, 0x890, 0x8000000000008, 0xc8, 0x1000, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, 0x4000000000]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x4, 0x0, 0x1, 0xa508}, 0x800}, 0x7, 0x6)
socket(0x25, 0x1, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

9.182048334s ago: executing program 2 (id=2948):
r0 = open(&(0x7f0000000080)='./file0\x00', 0x22ac2, 0x5d745cb200ae4d7b)
utimes$auto(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)={0x8, 0x8001})
read$auto(r0, 0x0, 0x6)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/bus/usb/drivers/snd-bcd2000/unbind\x00', 0x10d000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)=""/17, 0x11)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0xb32, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x902, 0x0)
ioctl$auto(r2, 0x80000000, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0)
ioctl$auto(r3, 0x40045108, 0x3)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x121040, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd)
openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0xc05, 0x0)
close_range$auto(0x2, 0x8, 0x0)

8.674356713s ago: executing program 4 (id=2951):
read$auto(0x3, 0x0, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x9, 0x5, 0x3)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x2000, 0xffffffffffff0001, 0x15)

8.331327271s ago: executing program 2 (id=2954):
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
setrlimit$auto(0xb, 0x0)
timer_create$auto(0x1, 0x0, 0x0)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x4044086}, 0x2000c041)
writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040)=[0x2], 0x1}, 0x7e)
connect$auto(0xffffffffffffffff, &(0x7f0000001c00)=@nl=@kern={0x10, 0x0, 0x0, 0x2000}, 0x9)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000009400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002dbd7000fcdbdf2501000000040012800c0002000100000000000000"], 0x24}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
write$auto(0xffffffffffffffff, &(0x7f0000000280)='$\x00', 0x8)
poll$auto(&(0x7f0000000100)={<r0=>0xffffffffffffffff, 0xe7f1, 0x1726}, 0x7, 0x2)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001640), 0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
mlockall$auto(0x3)
io_uring_setup$auto(0x6, 0x0)
mlockall$auto(0x6)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)
sendmsg$auto_NL802154_CMD_SEND_BEACONS(r0, &(0x7f0000000440)={&(0x7f00000002c0), 0xc, &(0x7f0000000400)={&(0x7f0000000140)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="04002abd7000fcdbdf25260000005da1a718cf43d4bb08000b0008000000d8872ba28c0f75dc32d37d7a87e219f43fa0917f8a"], 0x24}, 0x1, 0x0, 0x0, 0x8005}, 0x4000010)

7.728453043s ago: executing program 4 (id=2955):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001900), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000080), r0)
sendmsg$auto_MACSEC_CMD_GET_TXSC(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001940)={0x14, r1, 0x186f202170196f7b, 0x70bd26, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x4000, 0xe8)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x40000000000000, 0xf)

7.296487866s ago: executing program 4 (id=2958):
mmap$auto(0x0, 0x8, 0x4000000000df, 0x44eb1, 0x6, 0x300000000000)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/user/max_fanotify_groups\x00', 0x20202, 0x0)
r1 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/apparmor/exec\x00', 0x10000, 0x0)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0)
sendfile$auto(r1, r0, 0x0, 0x200)
mremap$auto(0x0, 0x1400000007, 0x8000000003fd8, 0x3, 0x420000000)
mmap$auto(0x0, 0x8, 0x4000000000df, 0x44eb1, 0x6, 0x300000000000) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/user/max_fanotify_groups\x00', 0x20202, 0x0) (async)
openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/apparmor/exec\x00', 0x10000, 0x0) (async)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) (async)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) (async)
sendfile$auto(r1, r0, 0x0, 0x200) (async)
mremap$auto(0x0, 0x1400000007, 0x8000000003fd8, 0x3, 0x420000000) (async)

6.695892947s ago: executing program 4 (id=2962):
r0 = gettid()
r1 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x10a)
sendmsg$auto_WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0xa0, 0x0, 0x100, 0x70bd28, 0x25dfdbfb, {}, [@WGDEVICE_A_PRIVATE_KEY={0x41, 0x3, "64fd2ed89745e72e59df82097d596f17e50fd547b239ce5e262f01c095b3a22b5ff5f761d83471b7c3f25eb49c046f5d154c812ff5f10f5963b7a5ca71"}, @WGDEVICE_A_PRIVATE_KEY={0x45, 0x3, "c76b29a5c755931fedec020bc55e75d8818814497f44c9bd3a60c2e0d0732ff88d0c83286c9656fb55ff2c00f530156b0c38634cd5bf3cec7843174a906f305bb6"}]}, 0xa0}, 0x1, 0x0, 0x0, 0x80}, 0x0)
open_by_handle_at$auto(r1, &(0x7f0000000040)={0x8, 0x2, "0600000000000000"}, 0x2)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x40, 0x0)
kill$auto(r0, 0x8)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
mmap$auto(0xfffffffffffffffe, 0x20009, 0x4000000000e0, 0xffffffffffffffff, 0x2, 0x8000)
socket(0xa, 0x6, 0x0)
setsockopt$auto(0x3, 0x29, 0x1a, 0xffffffffffffffff, 0x3)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/net\x00')
mmap$auto(0x0, 0xffff, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0xffffffff, 0x9)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)
getdents64$auto(r2, 0x0, 0x24)
ioctl$auto(0x3, 0x2284, 0x8)
move_pages$auto(r0, 0x9, &(0x7f0000000080)=&(0x7f0000000000)=[0x2, 0x6, 0xfffffffffffffffd, 0xfffffffffffffffe, 0x2, 0x9, 0x401, 0x5, 0x2], &(0x7f00000000c0)=0xc, &(0x7f0000000140)=0x6, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000026d00)='/dev/dri/card1\x00', 0x2000, 0x0)
ioperm$auto(0x7, 0x6, 0x2)
unshare$auto(0x20000)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
setns(r3, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)
rt_sigaction$auto(0x3, 0x0, 0x0, 0x8)
pivot_root$auto(&(0x7f0000000040)='..\x00', &(0x7f0000000080)='.\x00')

6.249686997s ago: executing program 6 (id=2964):
r0 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim1/health/break_health\x00', 0x101, 0x0)
write$auto(r0, &(0x7f00000001c0)='/dev/ptyxa\x00', 0x2004)

6.059314664s ago: executing program 5 (id=2965):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000180), 0x80001, 0x0)
ioctl$auto_I2C_RDWR(r0, 0x707, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x800000002, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x202000c, 0x3, 0xeb3, 0x0, 0x8000)
mmap$auto(0xfffffffffffffffe, 0x6, 0x3, 0xeb1, 0xffffeffffffffffa, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0xb32, 0x8000)
mmap$auto(0x0, 0x4020009, 0x80, 0xebf, 0x401, 0x8000)
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x902, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
clone$auto(0x1, 0x1, 0x0, 0x0, 0x7)
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0xfffffffffffffffd, 0x8000)
madvise$auto(0x0, 0x2003f0, 0x15)
setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9)
getsockopt$auto(0x3, 0x200000000001, 0x3f, 0x0, 0x0)
dup2$auto(0x5, 0x4)
openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/smaps\x00', 0x20000, 0x0)
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
mount$auto(&(0x7f0000000000)='pimreg\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd057, 0x0)
prctl$auto(0x44, 0x0, 0x0, 0x0, 0x0)
mount$auto(0x0, &(0x7f0000000040)='802_15_4_MAC\x00', 0x0, 0xaaa, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x402, 0x8000)
setreuid$auto(0x15, 0x5)
r1 = socket(0x10, 0x2, 0x9)
setsockopt$auto(r1, 0x104000000000010e, 0x8, 0x0, 0x380)

5.904883679s ago: executing program 6 (id=2966):
r0 = socket(0x10, 0x2, 0xc)
r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="53010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
memfd_secret$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
mmap$auto(0x0, 0x40008, 0xdb, 0x9b72, 0x7, 0x28000)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804)
socket(0x2, 0xa, 0xe57a)
lstat$auto(0x0, &(0x7f0000000180)={0xe, 0x6, 0x100000001, 0xfb9, 0x0, 0x0, 0x0, 0x9, 0x6, 0x10008, 0x5, 0x7fffffff, 0x5, 0xffffffff80000000, 0xdf1, 0x61, 0x102})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
write$auto(0x3, 0x0, 0xfdef)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='q\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="4cb245184f86db27df250a00000a"], 0xf8}}, 0x10004010)

4.989800235s ago: executing program 5 (id=2967):
mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) (async)
close_range$auto(0x2, 0xa, 0x0) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x1e, 0x4, 0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000003680)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_NEW_KEY(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000004880)={&(0x7f0000000ac0)={0x28, r2, 0x1, 0x70bd29, 0x25dfdbff, {}, [@NL80211_ATTR_KEY_DATA={0x4}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r4}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x9}]}, 0x28}, 0x1, 0x0, 0x0, 0x40010}, 0x890)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000940)={'batadv0\x00', <r8=>0x0})
sendmsg$auto_BATADV_CMD_TP_METER(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x24, r6, 0x77bed28568c43d3b, 0x70bd2a, 0x25dfdbfd, {}, [@BATADV_ATTR_FLAG_BEST={0x4}, @BATADV_ATTR_ORIG_ADDRESS={0xa}]}, 0x24}}, 0x80) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'xfrm0\x00', <r9=>0x0})
r10 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r11 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r12=>0x0}) (async)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r10, &(0x7f0000000200)={0x0, 0xffffffffffffff80, &(0x7f0000000c80)={&(0x7f00000002c0)={0xfffffffffffffd8f, r11, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_RX_MAX_FRAMES={0x0, 0x3, 0x1ff}, @ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x0, 0x2, 'veth0_vlan\x00'}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x20000080}, 0x0) (async)
r13 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r14 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r15=>0x0})
sendmsg$auto_BATADV_CMD_SET_MESH(r14, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)={0x24, r13, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r15}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0xb78}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x140000e4) (async)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0xe8, 0x0, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0xfb}, @ETHTOOL_A_LINKINFO_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}]}, @ETHTOOL_A_LINKINFO_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}]}, @ETHTOOL_A_LINKINFO_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r15}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x4}]}, 0xe8}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
r16 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r16, 0x10f, 0x87, 0x0, 0x14) (async)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
bind$auto(0x3, 0xfffffffffffffffd, 0x0)
sendto$auto(0x4, 0x0, 0xff, 0x6, 0x0, 0xe)

4.946925555s ago: executing program 6 (id=2968):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0xa, 0x2, 0x3a)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r2, &(0x7f0000001e00)={0x0, 0xfffd, &(0x7f0000001dc0)={&(0x7f00000000c0)={0x30, r3, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x8880)
r4 = fcntl$getown(0xffffffffffffffff, 0x9)
sendmsg$auto_NL80211_CMD_GET_FTM_RESPONDER_STATS(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="f0010000", @ANYRES16=r1, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="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"], 0x1f0}, 0x1, 0x0, 0x0, 0x4010}, 0x10)
unshare$auto(0x40000080)
unshare$auto(0x3)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clone3$auto(0x0, 0x40)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
epoll_pwait$auto(0x3, 0x0, 0x1, 0xffff0102, 0x0, 0x8)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
getsockopt$auto(0x4, 0x6, 0x5, 0xfffffffffffffffd, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x1)

4.080030463s ago: executing program 5 (id=2969):
setuid$auto(0x10e)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC0\x00', 0x185a00, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
ioctl$auto(0x3, 0x80045530, 0x38)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/controlC2\x00', 0x88880, 0x0)
ioctl$auto(0x3, 0xc10c5541, 0xb551)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000080)={0x18, 0x0, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_HEADER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x80}, 0x0)
syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), 0xffffffffffffffff)
getpgrp(0x0)
openat$auto_userfaultfd_dev_fops_userfaultfd(0xffffffffffffff9c, &(0x7f0000000040), 0x280080, 0x0)
sendmsg$auto_IPVS_CMD_GET_DEST(r0, 0x0, 0x804)
r1 = openat$auto_lsm_ops_inode(0xffffffffffffff9c, &(0x7f0000000100), 0x4000, 0x0)
readahead$auto(r1, 0x6, 0x1)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000f40)={'batadv0\x00'})
unshare$auto(0x80003fb)

3.951393496s ago: executing program 2 (id=2970):
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x20)
chmod$auto(&(0x7f00000000c0)='./file0\x00', 0x8)
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
openat$auto_sc_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
ioctl$auto_TIOCGDEV2(r0, 0x540f, 0x0)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)

3.89179093s ago: executing program 5 (id=2971):
select$auto(0x87, &(0x7f0000000040)={[0xc71, 0x1, 0x7, 0x7, 0x100000001, 0x5, 0xfff, 0x0, 0xfffffffffffffff9, 0x8001, 0x9, 0x7fff, 0x2, 0x5, 0xd83e, 0xc]}, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xfffffffffffff801, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
get_robust_list$auto(0x0, 0x0, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x6979}, 0xed71390}, 0x9a6, 0x3f000000)

3.649012185s ago: executing program 5 (id=2972):
r0 = openat$auto_dma_buf_debug_fops_(0xffffffffffffff9c, &(0x7f00000000c0), 0x4000, 0x0)
read$auto_dma_buf_debug_fops_(r0, &(0x7f0000000180)=""/186, 0xba)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
symlink$auto(&(0x7f0000000080)='\xe6\'\xd4\v{T+\xac', &(0x7f0000000000)='\'--[[\x14+\\\x00')
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
readlink$auto(&(0x7f0000000040)='\'--[[\x14+\\\x00', &(0x7f0000000140)='\x00', 0x8)
openat$auto_component_list_fops_(0xffffffffffffff9c, &(0x7f0000000ac0), 0x2000, 0x0)
ioctl$auto_UDMABUF_CREATE_LIST(0xffffffffffffffff, 0x40087543, &(0x7f0000000000)={0xffffffff, 0x4, [{<r1=>0xffffffffffffffff, 0x0, 0x6, 0x8000}]})
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_AUTHENTICATE(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB="200100003c87a62a3f4373840eb4d498c40eb506351a972719e31cee8a0577e9c05e225864d27c7fa42308e95b8c263269e0907864524f10c30577bc92fdad3e441343cba9a2c5a682e5d7ada0fbb5280d2c1b5f6d196b7f2b76a57aa77e5cf582f3b919df8836e577c68dcb6b5183be3fb3af7bb44322a79694957f807419fd68b2b7522524fbb35ead7be0e91ec65ece67531d15d1a04470a8b798495db415b93cbfce7f996b518a11467569e7d3048e4bf928b28c15e919", @ANYRES16=r2, @ANYBLOB="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"], 0x120}, 0x1, 0x0, 0x0, 0x4000000}, 0x4040040)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/tracing/trace\x00', 0x80800, 0x0)
read$auto(0x3, 0x0, 0x400000)

3.426286909s ago: executing program 4 (id=2973):
openat$auto_generic(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/ieee80211/phy7/netdev:wlan1/rc_rateidx_mcs_mask_5ghz\x00', 0x300, 0x0)
socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
socket(0xa, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x4, 0x0, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00"], 0x1ac}, 0x1, 0x0, 0x0, 0x5}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002ac0), r1)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r1, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000002b00)={0x1c, r2, 0x1f97227bd58c1f83, 0x70bd2a, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004041}, 0x40004)
socket(0xa, 0x801, 0x106)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x2001, 0x0)
socket(0x2c, 0x80003, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r3 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x38, 0x3, 0x1ffde, 0x7, 0x3, 0x4, 0x9, 0x3, 0x6, 0x5, 0xb4, 0x9, 0x6, 0x10003, 0x80, 0x7, 0x0, 0x7, 0x0, 0x20000200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x3, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x24, 0x40000000000003, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x200000000001, 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x1, 0x7, 0xffffffffffffffff, 0x890, 0x8000000000008, 0xc8, 0x1000, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, 0x4000000000]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x4, 0x0, 0x1, 0xa508}, 0x800}, 0x7, 0x6)
socket(0x25, 0x1, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

3.068689885s ago: executing program 2 (id=2974):
r0 = open(&(0x7f0000000080)='./file0\x00', 0x22ac2, 0x5d745cb200ae4d7b)
utimes$auto(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)={0x8, 0x8001})
read$auto(r0, 0x0, 0x6)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/bus/usb/drivers/snd-bcd2000/unbind\x00', 0x10d000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)=""/17, 0x11)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0xb32, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x902, 0x0)
ioctl$auto(r2, 0x80000000, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x121040, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd)
openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0xc05, 0x0)
close_range$auto(0x2, 0x8, 0x0)

2.544524874s ago: executing program 6 (id=2975):
statx$auto(0xffffffffffffffff, 0x0, 0x1003, 0x4005, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x1, 0x0)
read$auto_bm_status_operations_binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/scsi/sg/debug\x00', 0x40, 0x0)
r1 = socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567)
r2 = socket(0x10, 0x3, 0xa)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000004d40), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'macsec0\x00', <r5=>0x0})
sendmsg$auto_MACSEC_CMD_DEL_RXSC(r3, &(0x7f0000007500)={0x0, 0xffffffffffffffb2, &(0x7f00000074c0)={&(0x7f0000000180)=ANY=[@ANYRES8=r4, @ANYRES16=r4, @ANYRES32=r2, @ANYRES32=r5, @ANYRESOCT=r5], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x80)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'syzkaller1\x00', <r6=>0x0})
sendmsg$auto_MACSEC_CMD_ADD_RXSA(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f0000000280)={0x131c, r4, 0x200, 0x70bd28, 0x25dfdbfb, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x78, 0x2, 0x0, 0x1, [@generic="a9fde6f4b495d3c7ca3eb15687dc4f0c73f818c726bd8ce091a83c06f3beeb1938ed6c970b223dc23c18342040b205cced38e95785182eaa8be848461575c39a2b8ef59ed480930e5caee653e4b87ebfac36db6d5194c078875f9193be06c9edc99df60bbdd96762ad08eaff7120a74cafc584fc"]}, @MACSEC_ATTR_RXSC_CONFIG={0x104, 0x2, 0x0, 0x1, [@nested={0x100, 0x11c, 0x0, 0x1, [@nested={0x4, 0x1a}, @nested={0x4, 0xc5}, @generic="18dcfecb3be24670272f22c6e24c3b5d45a4cee64e7533b0092c94b32fb9758398233435b049459e3a8f81294c66e1c172970980afd16778b498fa601cd00caacd3326d2f273546d16cc25a2cbd26b9e921d65a4da8ef43ab3c3e10977bddbc1739db39003d335c98e5bb4d38f6e7dd05e29e8c9e34c270d6473e48bd072ebcc1a75f8e03e6561e541d2d11e33c60ea344b73aadc58cc6c4d8e7947d048a4f7292af12010ef222f987d593b4f921ab75ec2c75b313970884396890c72e2d937e0a7fdf3854ebed87e471e831bd9cf9d8f70e3f55744a3876c30af19b74e1778ebd3e75c702bbdcf7ff414d7134c3d856", @nested={0x4, 0xc6}]}]}, @MACSEC_ATTR_SA_CONFIG={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0x13c, 0x0, 0x0, @u32=0x50}]}, @MACSEC_ATTR_SA_CONFIG={0x1176, 0x3, 0x0, 0x1, [@typed={0x14, 0x23, 0x0, 0x0, @ipv6=@private0}, @generic="c02e48435bf9e40335581f789f930e8c01a23aac11e6", @nested={0x147, 0x5, 0x0, 0x1, [@typed={0x18, 0x85, 0x0, 0x0, @str='/proc/scsi/sg/debug\x00'}, @generic="082d2468876f4466e48ef4ce47681081819264476c4a63f481b7b19ad313ae806326ccc8e69b9efb6293816094b44b3ecf3c3ede29933544355c64dbc879f690a08268b64733aaec88f5c4dbf6cfbb7f28c1d84fca2a76f1a98d986167b2b4ea5d107dfd39cf3b57916ddee906e7cfecac4c03b5ada1fdc8c365d800ccb6f9598e62b7d082e647b4d88c1698cf6f4342b43ba4347d1870f8fc1d0b1e6c9b1941", @generic="292324b40dc84092eb9ad907e2c3ff9c89bba894d209451c137a59131be0d39cc1abdb7a1ae2dbe1053bf3ae1e7e446034a2305f4364c7e7b082219c63e6aabe8c361cc7c1180c41fcf259a2775651468e2fce44281237020afd5ee95b07e076819b9c3f68953322e45da3d6dc153cde2d951c23742059128df17b9ec1cac7319fd7ee74b05a62", @nested={0x4, 0x1b}]}, @generic="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"]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r6}]}, 0x131c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000050)
read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000180)=""/249, 0xf9)
socket$nl_generic(0x10, 0x3, 0x10)

2.331408675s ago: executing program 2 (id=2976):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000180), 0x80001, 0x0)
ioctl$auto_I2C_RDWR(r0, 0x707, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x800000002, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x202000c, 0x3, 0xeb3, 0x0, 0x8000)
mmap$auto(0xfffffffffffffffe, 0x6, 0x3, 0xeb1, 0xffffeffffffffffa, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0xb32, 0x8000)
mmap$auto(0x0, 0x4020009, 0x80, 0xebf, 0x401, 0x8000)
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x902, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
clone$auto(0x1, 0x1, 0x0, 0x0, 0x7)
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0xfffffffffffffffd, 0x8000)
madvise$auto(0x0, 0x2003f0, 0x15)
setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9)
getsockopt$auto(0x3, 0x200000000001, 0x3f, 0x0, 0x0)
dup2$auto(0x5, 0x4)
openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/smaps\x00', 0x20000, 0x0)
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
mount$auto(&(0x7f0000000000)='pimreg\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd057, 0x0)
prctl$auto(0x44, 0x0, 0x0, 0x0, 0x0)
mount$auto(0x0, &(0x7f0000000040)='802_15_4_MAC\x00', 0x0, 0xaaa, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x402, 0x8000)
setreuid$auto(0x15, 0x5)
r1 = socket(0x10, 0x2, 0x9)
setsockopt$auto(r1, 0x104000000000010e, 0x8, 0x0, 0x380)

2.10700068s ago: executing program 6 (id=2978):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/bus/auxiliary/drivers_autoprobe\x00', 0x8000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/124, 0x7c) (async)
unlinkat$auto(0x1ff, 0xfffffffffffffffd, 0x200)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00')
r1 = socket(0xa, 0x1, 0x84)
sendto$auto(r1, 0x0, 0x1, 0x9, &(0x7f0000000000)=@in={0x2, 0x1, @remote}, 0x1c) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x1d, 0x7, 0x40) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe) (async)
capset$auto(0x0, &(0x7f0000000180)={0x8000001, 0xffffffff, 0x6}) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x15, 0x8}, 0x7)
mprotect$auto(0x1ffff000, 0x8000000000002001, 0x4) (async)
mmap$auto(0x27c, 0x6, 0xe, 0x13, 0x0, 0x0)
bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_7={@btf_id=0xe9f, 0x4, 0x1c}, 0xa3)
bpf$auto(0x2, 0x0, 0xf) (async)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffdcb, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200040c4}, 0x440c5) (async)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x38, 0x100000001, 0xffffffff, 0x0, 0x0, 0x0, 0x1000000006, 0x10001, 0x7, 0x400, 0x7ffffffb, 0x5, 0xffffffff80000000, 0x5, 0x61, 0x103}) (async)
r2 = socket(0x29, 0x2, 0x0)
sendmsg$auto_NFSD_CMD_VERSION_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="08002bd27000fddb000200000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x2404c814) (async)
sendmsg$auto_NL80211_CMD_GET_FTM_RESPONDER_STATS(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x14, 0x0, 0x4, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4000010)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

156.330629ms ago: executing program 5 (id=2979):
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlockall$auto(0x7)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
epoll_ctl$auto(0x5, 0x3, 0xffffffffffffffff, 0x0)
syslog$auto(0x4, &(0x7f0000000040)='..\x00', 0x7)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
pselect6$auto(0x2, 0x0, &(0x7f00000000c0)={[0x1, 0xb44f, 0x2e9, 0x1, 0xfffffffff0000000, 0x0, 0x1, 0x4, 0x1, 0x7, 0x4, 0x4, 0x10003, 0x2e0, 0xffffffffffffffff, 0x2]}, 0x0, 0x0, &(0x7f0000000280))
epoll_pwait2$auto(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0x62)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f00000038c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r2=>0x0})
sendmsg$auto_NET_SHAPER_CMD_CAP_GET2(r1, &(0x7f0000003a00)={0x0, 0x0, &(0x7f00000039c0)={&(0x7f00000000c0)={0x1c, r0, 0x400, 0x70bd28, 0x25dfdbff, {}, [@NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x86)
set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x7b, 0x4)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_7={@btf_id, 0xd, 0x9}, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/net\x00')
fchdir$auto(r3)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
symlink$auto(0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

0s ago: executing program 6 (id=2980):
r0 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim1/health/break_health\x00', 0x101, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
mmap$auto(0x119, 0x3eb, 0xffffffffffff0001, 0x14, 0x2, 0x2628)
r1 = socket(0x29, 0x5, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
sendmmsg$auto(r1, 0x0, 0x9a6, 0x3ec0)
fcntl$auto(0x3, 0x4, 0xa553)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3ec0)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
write$auto(r0, &(0x7f00000001c0)='/dev/ptyxa\x00', 0x2004)

kernel console output (not intermixed with test programs):

8 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  409.456190][T12513] RSP: 002b:00007fe3130d7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  409.464647][T12513] RAX: ffffffffffffffda RBX: 00007fe312575fa0 RCX: 00007fe31238472c
[  409.472656][T12513] RDX: 000000000000000f RSI: 00007fe3130d70a0 RDI: 0000000000000004
[  409.480658][T12513] RBP: 00007fe3130d7090 R08: 0000000000000000 R09: 0000000000000000
[  409.488663][T12513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  409.496664][T12513] R13: 0000000000000000 R14: 00007fe312575fa0 R15: 00007ffe27704348
[  409.504685][T12513]  </TASK>
[  409.507824][    C1] vkms_vblank_simulate: vblank timer overrun
[  409.516896][T12511] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12511 comm: syz.1.1906)
[  409.695320][T12515] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1909'.
[  409.772836][T12528] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1912'.
[  410.229792][T12542] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1923'.
[  410.266389][T12542] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1923'.
[  410.470355][T12522] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12522 comm: syz.1.1911)
[  410.568427][T12554] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12554 comm: syz.1.1919)
[  411.378092][T12555] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12555 comm: syz.1.1920)
[  411.390081][T12413] Bluetooth: hci2: command 0x0419 tx timeout
[  411.640969][T12576] netlink: 'syz.1.1927': attribute type 4 has an invalid length.
[  411.657157][T12576] netlink: 314 bytes leftover after parsing attributes in process `syz.1.1927'.
[  411.682774][T12576] IPv6: NLM_F_CREATE should be specified when creating new route
[  411.825212][T12576] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12576 comm: syz.1.1927)
[  412.239442][T12594] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1935'.
[  412.800866][T12604] Invalid ELF header magic: != ELF
[  413.065604][T12595] warn_unsupported: 1 callbacks suppressed
[  413.065625][T12595] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12595 comm: syz.1.1936)
[  413.548790][T12626] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1946'.
[  413.579642][T12628] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1947'.
[  413.588875][T12626] bridge_slave_1: left allmulticast mode
[  413.594693][T12626] bridge_slave_1: left promiscuous mode
[  413.616342][T12626] bridge0: port 2(bridge_slave_1) entered disabled state
[  413.636886][T12607] kexec: Could not allocate control_code_buffer
[  413.649482][T12626] bridge_slave_0: left allmulticast mode
[  413.660490][T12626] bridge_slave_0: left promiscuous mode
[  413.676523][T12626] bridge0: port 1(bridge_slave_0) entered disabled state
[  413.805230][T12623] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12623 comm: syz.1.1944)
[  413.879081][T12639] netlink: 'syz.2.1949': attribute type 1 has an invalid length.
[  414.149346][T12641] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12641 comm: syz.1.1950)
[  414.383129][T12660] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1955'.
[  414.561868][T12654] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12654 comm: syz.1.1954)
[  414.772499][T12679] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  415.026986][T12681] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12681 comm: syz.1.1959)
[  415.303853][T12687] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12687 comm: syz.1.1963)
[  415.401023][T12686] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1962'.
[  415.420329][T12686] bridge_slave_1: left allmulticast mode
[  415.427782][T12686] bridge_slave_1: left promiscuous mode
[  415.441286][T12686] bridge0: port 2(bridge_slave_1) entered disabled state
[  415.457335][T12686] bridge_slave_0: left allmulticast mode
[  415.473365][T12686] bridge_slave_0: left promiscuous mode
[  415.483655][T12686] bridge0: port 1(bridge_slave_0) entered disabled state
[  415.593528][T12697] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1966'.
[  416.572852][T12710] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12710 comm: syz.1.1965)
[  417.160828][T12737] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1978'.
[  417.169873][T12737] bridge_slave_1: left allmulticast mode
[  417.193776][T12740] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12740 comm: syz.1.1977)
[  417.210021][T12737] bridge_slave_1: left promiscuous mode
[  417.216793][T12737] bridge0: port 2(bridge_slave_1) entered disabled state
[  417.260132][   T29] audit: type=1800 audit(4294967376.470:35): pid=12729 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1976" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  417.284493][T12737] bridge_slave_0: left allmulticast mode
[  417.305747][T12737] bridge_slave_0: left promiscuous mode
[  417.320241][T12737] bridge0: port 1(bridge_slave_0) entered disabled state
[  418.013397][T12743] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12743 comm: syz.1.1979)
[  418.081137][T12763] FAULT_INJECTION: forcing a failure.
[  418.081137][T12763] name failslab, interval 1, probability 0, space 0, times 0
[  418.120134][T12763] CPU: 0 UID: 0 PID: 12763 Comm: syz.2.1986 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  418.130964][T12763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  418.141049][T12763] Call Trace:
[  418.144353][T12763]  <TASK>
[  418.147326][T12763]  dump_stack_lvl+0x16c/0x1f0
[  418.152050][T12763]  should_fail_ex+0x497/0x5b0
[  418.156768][T12763]  ? fs_reclaim_acquire+0xae/0x150
[  418.161924][T12763]  should_failslab+0xc2/0x120
[  418.166645][T12763]  __kmalloc_noprof+0xce/0x4f0
[  418.171450][T12763]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  418.177113][T12763]  ? tomoyo_realpath_from_path+0xbf/0x710
[  418.182877][T12763]  tomoyo_realpath_from_path+0xbf/0x710
[  418.188468][T12763]  ? tomoyo_path_number_perm+0x235/0x5b0
[  418.194148][T12763]  tomoyo_path_number_perm+0x248/0x5b0
[  418.199650][T12763]  ? tomoyo_path_number_perm+0x235/0x5b0
[  418.205330][T12763]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  418.211387][T12763]  ? __pfx_lock_release+0x10/0x10
[  418.216457][T12763]  ? trace_lock_acquire+0x14e/0x1f0
[  418.221698][T12763]  ? lock_acquire+0x2f/0xb0
[  418.226234][T12763]  ? __fget_files+0x40/0x3a0
[  418.230862][T12763]  ? __fget_files+0x206/0x3a0
[  418.235579][T12763]  security_file_ioctl+0x9b/0x240
[  418.240612][T12763]  __x64_sys_ioctl+0xb7/0x200
[  418.245307][T12763]  do_syscall_64+0xcd/0x250
[  418.249819][T12763]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  418.255722][T12763] RIP: 0033:0x7f51ef385d19
[  418.260141][T12763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  418.279757][T12763] RSP: 002b:00007f51f01ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  418.288180][T12763] RAX: ffffffffffffffda RBX: 00007f51ef575fa0 RCX: 00007f51ef385d19
[  418.296159][T12763] RDX: 0000000000000038 RSI: 0000000000004b69 RDI: 0000000000000003
[  418.304128][T12763] RBP: 00007f51f01ab090 R08: 0000000000000000 R09: 0000000000000000
[  418.312099][T12763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  418.320075][T12763] R13: 0000000000000000 R14: 00007f51ef575fa0 R15: 00007ffed3b4d528
[  418.328069][T12763]  </TASK>
[  418.360398][T12763] ERROR: Out of memory at tomoyo_realpath_from_path.
[  418.778552][T12564] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12564 comm: syz.1.1920)
[  418.979770][T12769] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12769 comm: syz.1.1988)
[  419.405617][   T29] audit: type=1800 audit(4294967378.630:36): pid=12779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1991" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  419.793924][T12786] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12786 comm: syz.1.1995)
[  420.128318][T12800] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1998'.
[  420.282611][T12800] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12800 comm: syz.1.1998)
[  420.332394][T12802] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1999'.
[  420.734458][T12819] FAULT_INJECTION: forcing a failure.
[  420.734458][T12819] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  420.813490][T12819] CPU: 1 UID: 0 PID: 12819 Comm: syz.4.2005 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  420.824323][T12819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  420.834407][T12819] Call Trace:
[  420.837707][T12819]  <TASK>
[  420.840676][T12819]  dump_stack_lvl+0x16c/0x1f0
[  420.845388][T12819]  should_fail_ex+0x497/0x5b0
[  420.850189][T12819]  _copy_to_user+0x32/0xd0
[  420.854640][T12819]  simple_read_from_buffer+0xd0/0x160
[  420.860047][T12819]  proc_fail_nth_read+0x198/0x270
[  420.865108][T12819]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  420.870698][T12819]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  420.876292][T12819]  vfs_read+0x1df/0xbe0
[  420.880486][T12819]  ? __fget_files+0x1fc/0x3a0
[  420.885202][T12819]  ? __pfx___mutex_lock+0x10/0x10
[  420.890259][T12819]  ? __pfx_vfs_read+0x10/0x10
[  420.894975][T12819]  ? __fget_files+0x206/0x3a0
[  420.899691][T12819]  ksys_read+0x12b/0x250
[  420.903963][T12819]  ? __pfx_ksys_read+0x10/0x10
[  420.908765][T12819]  do_syscall_64+0xcd/0x250
[  420.913301][T12819]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.919221][T12819] RIP: 0033:0x7fcab538472c
[  420.923657][T12819] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  420.943292][T12819] RSP: 002b:00007fcab6127030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  420.951739][T12819] RAX: ffffffffffffffda RBX: 00007fcab5575fa0 RCX: 00007fcab538472c
[  420.959738][T12819] RDX: 000000000000000f RSI: 00007fcab61270a0 RDI: 000000000000000b
[  420.967733][T12819] RBP: 00007fcab6127090 R08: 0000000000000000 R09: 0000000000000000
[  420.975732][T12819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  420.983731][T12819] R13: 0000000000000000 R14: 00007fcab5575fa0 R15: 00007fffa6b6e608
[  420.991752][T12819]  </TASK>
[  421.633718][T12840] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12840 comm: syz.1.2003)
[  421.911681][T12811] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12811 comm: syz.1.2003)
[  422.241448][T12852] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2014'.
[  422.348752][T12851] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12851 comm: syz.1.2014)
[  422.600264][T12413] Bluetooth: hci4: unexpected event 0x03 length: 72 > 11
[  422.726778][T12863] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12863 comm: syz.1.2016)
[  422.928689][T12870] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12870 comm: syz.1.2018)
[  423.274670][T12873] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12873 comm: syz.1.2020)
[  423.791800][T12887] warn_unsupported: 1 callbacks suppressed
[  423.791822][T12887] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12887 comm: syz.1.2025)
[  423.981612][T12899] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12899 comm: syz.1.2028)
[  424.309141][T12904] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12904 comm: syz.1.2029)
[  424.755489][T12911] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12911 comm: syz.1.2031)
[  427.286240][T12917] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12917 comm: syz.1.2033)
[  427.549698][T12939] sd 0:0:1:0: PR command failed: 1026
[  427.588849][T12939] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  427.625992][T12939] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  427.697231][T12946] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2038'.
[  427.710113][   T29] audit: type=1800 audit(4294967386.930:37): pid=12942 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2036" name="discovery_nqn" dev="configfs" ino=37997 res=0 errno=0
[  427.734529][T12946] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2038'.
[  427.954052][T12943] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12943 comm: syz.1.2038)
[  428.287733][T12954] tipc: Started in network mode
[  428.313572][T12954] tipc: Node identity ee00, cluster identity 4711
[  428.333509][T12954] tipc: Node number set to 60928
[  428.835112][T12960] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2043'.
[  428.895280][T12961] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2043'.
[  429.024430][T12952] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12952 comm: syz.1.2040)
[  429.390356][T12962] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12962 comm: syz.1.2045)
[  429.989834][T12980] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2049'.
[  430.051761][T12980] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2049'.
[  430.507718][T12969] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12969 comm: syz.1.2048)
[  431.033862][T12998] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12998 comm: syz.1.2054)
[  431.240865][T13003] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2056'.
[  431.265834][T13003] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2056'.
[  431.404888][T13000] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13000 comm: syz.1.2056)
[  431.848328][T13013] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13013 comm: syz.1.2060)
[  432.088751][T13010] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13010 comm: syz.1.2060)
[  432.539535][T13025] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13025 comm: syz.1.2061)
[  432.647900][T13023] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13023 comm: syz.1.2061)
[  432.810966][T13033] FAULT_INJECTION: forcing a failure.
[  432.810966][T13033] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  432.848480][T13033] CPU: 1 UID: 0 PID: 13033 Comm: syz.1.2064 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  432.859396][T13033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  432.869480][T13033] Call Trace:
[  432.872787][T13033]  <TASK>
[  432.875751][T13033]  dump_stack_lvl+0x16c/0x1f0
[  432.880477][T13033]  should_fail_ex+0x497/0x5b0
[  432.885197][T13033]  _copy_from_user+0x2e/0xd0
[  432.889838][T13033]  kstrtouint_from_user+0xd7/0x1c0
[  432.894987][T13033]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  432.900767][T13033]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  432.906445][T13033]  proc_fail_nth_write+0x84/0x250
[  432.911512][T13033]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  432.917191][T13033]  ? ksys_write+0x12b/0x250
[  432.921742][T13033]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  432.927434][T13033]  vfs_write+0x24c/0x1150
[  432.931811][T13033]  ? __fget_files+0x1fc/0x3a0
[  432.936536][T13033]  ? __pfx___mutex_lock+0x10/0x10
[  432.941603][T13033]  ? __pfx_vfs_write+0x10/0x10
[  432.946426][T13033]  ? __fget_files+0x206/0x3a0
[  432.951158][T13033]  ksys_write+0x12b/0x250
[  432.955525][T13033]  ? __pfx_ksys_write+0x10/0x10
[  432.960418][T13033]  do_syscall_64+0xcd/0x250
[  432.964967][T13033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.970907][T13033] RIP: 0033:0x7f8e531847cf
[  432.975351][T13033] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  432.994994][T13033] RSP: 002b:00007f8e5400b030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  433.003442][T13033] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8e531847cf
[  433.011444][T13033] RDX: 0000000000000001 RSI: 00007f8e5400b0a0 RDI: 0000000000000004
[  433.019443][T13033] RBP: 00007f8e5400b090 R08: 0000000000000000 R09: 0000000000000000
[  433.027440][T13033] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  433.035445][T13033] R13: 0000000000000000 R14: 00007f8e53375fa0 R15: 00007ffd69fb18e8
[  433.043468][T13033]  </TASK>
[  433.121618][T13033] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13033 comm: syz.1.2064)
[  434.946600][T13054] warn_unsupported: 3 callbacks suppressed
[  434.946622][T13054] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13054 comm: syz.1.2072)
[  435.268036][T13072] tipc: Started in network mode
[  435.293488][T13072] tipc: Node identity ee00, cluster identity 4711
[  435.323868][T13072] tipc: Node number set to 60928
[  436.082700][T13071] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13071 comm: syz.1.2078)
[  436.450039][   T29] audit: type=1326 audit(4294967395.660:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm=093D exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8e53185d19 code=0x0
[  436.520896][   T29] audit: type=1800 audit(4294967395.750:39): pid=13097 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2084" name="discovery_nqn" dev="configfs" ino=37337 res=0 errno=0
[  437.373800][T13091] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13091 comm: syz.1.2082)
[  438.211852][T13067] Process accounting paused
[  438.421224][T13122] tipc: Started in network mode
[  438.456243][T13122] tipc: Node identity ee00, cluster identity 4711
[  438.470196][T13122] tipc: Node number set to 60928
[  438.543205][T13124] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2092'.
[  438.682513][T13127] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2092'.
[  438.719659][T13135] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2096'.
[  439.010616][T13139] netlink: 93 bytes leftover after parsing attributes in process `syz.5.2097'.
[  439.386156][T13146] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2098'.
[  439.571386][T13142] delete_channel: no stack
[  439.795338][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  439.801765][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  439.953969][T13147] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2099'.
[  440.636548][T13172] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2105'.
[  440.977723][T13177] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2107'.
[  441.005246][T13177] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2107'.
[  441.217520][T13184] FAULT_INJECTION: forcing a failure.
[  441.217520][T13184] name failslab, interval 1, probability 0, space 0, times 0
[  441.250470][T13184] CPU: 0 UID: 0 PID: 13184 Comm: syz.2.2108 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  441.261299][T13184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  441.271384][T13184] Call Trace:
[  441.274687][T13184]  <TASK>
[  441.277639][T13184]  dump_stack_lvl+0x16c/0x1f0
[  441.282353][T13184]  should_fail_ex+0x497/0x5b0
[  441.287061][T13184]  ? fs_reclaim_acquire+0xae/0x150
[  441.292207][T13184]  should_failslab+0xc2/0x120
[  441.296924][T13184]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  441.302332][T13184]  ? getname_flags.part.0+0x4c/0x550
[  441.307655][T13184]  ? vfs_write+0x306/0x1150
[  441.312195][T13184]  getname_flags.part.0+0x4c/0x550
[  441.317340][T13184]  getname+0x8d/0xe0
[  441.321243][T13184]  do_sys_openat2+0x104/0x1e0
[  441.325934][T13184]  ? __pfx_do_sys_openat2+0x10/0x10
[  441.331149][T13184]  ? __fget_files+0x206/0x3a0
[  441.335837][T13184]  __x64_sys_openat+0x175/0x210
[  441.340697][T13184]  ? __pfx___x64_sys_openat+0x10/0x10
[  441.346082][T13184]  ? ksys_write+0x1ba/0x250
[  441.350597][T13184]  do_syscall_64+0xcd/0x250
[  441.355112][T13184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.361015][T13184] RIP: 0033:0x7f51ef385d19
[  441.365436][T13184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  441.385055][T13184] RSP: 002b:00007f51f01ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  441.393470][T13184] RAX: ffffffffffffffda RBX: 00007f51ef575fa0 RCX: 00007f51ef385d19
[  441.401444][T13184] RDX: 0000000000080000 RSI: 0000000020000340 RDI: ffffffffffffff9c
[  441.409416][T13184] RBP: 00007f51f01ab090 R08: 0000000000000000 R09: 0000000000000000
[  441.417389][T13184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  441.425363][T13184] R13: 0000000000000001 R14: 00007f51ef575fa0 R15: 00007ffed3b4d528
[  441.433348][T13184]  </TASK>
[  441.949449][T13193] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2111'.
[  443.428885][T13233] netlink: 'syz.1.2123': attribute type 11 has an invalid length.
[  443.970175][T13248] netlink: 'syz.1.2123': attribute type 11 has an invalid length.
[  444.335828][T13258] __nla_validate_parse: 2 callbacks suppressed
[  444.335848][T13258] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2128'.
[  444.397756][T13260] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2128'.
[  446.608707][T13288] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2135'.
[  446.732586][T13295] FAULT_INJECTION: forcing a failure.
[  446.732586][T13295] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  446.758529][T13295] CPU: 1 UID: 0 PID: 13295 Comm: syz.1.2137 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  446.769368][T13295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  446.779456][T13295] Call Trace:
[  446.782766][T13295]  <TASK>
[  446.785725][T13295]  dump_stack_lvl+0x16c/0x1f0
[  446.790442][T13295]  should_fail_ex+0x497/0x5b0
[  446.795164][T13295]  _copy_to_user+0x32/0xd0
[  446.799621][T13295]  drm_ioctl+0x5a6/0xba0
[  446.803909][T13295]  ? __pfx_drm_ioctl+0x10/0x10
[  446.808700][T13295]  ? __pfx_lock_release+0x10/0x10
[  446.813762][T13295]  ? trace_lock_acquire+0x14e/0x1f0
[  446.819013][T13295]  ? __pfx_drm_ioctl+0x10/0x10
[  446.823812][T13295]  __x64_sys_ioctl+0x190/0x200
[  446.828623][T13295]  do_syscall_64+0xcd/0x250
[  446.833162][T13295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.839084][T13295] RIP: 0033:0x7f8e53185d19
[  446.843535][T13295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  446.863200][T13295] RSP: 002b:00007f8e5400b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  446.871655][T13295] RAX: ffffffffffffffda RBX: 00007f8e53375fa0 RCX: 00007f8e53185d19
[  446.879660][T13295] RDX: 1000000000000004 RSI: 00000000802064c9 RDI: 0000000000000003
[  446.887665][T13295] RBP: 00007f8e5400b090 R08: 0000000000000000 R09: 0000000000000000
[  446.895661][T13295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  446.903661][T13295] R13: 0000000000000000 R14: 00007f8e53375fa0 R15: 00007ffd69fb18e8
[  446.911682][T13295]  </TASK>
[  447.195944][T13303] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2138'.
[  447.226198][T13303] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2138'.
[  447.649664][T13307] workqueue: name exceeds WQ_NAME_LEN. Truncating to:  ‡BþPÆ®ŽCŸß*x$åÁ›ý”‹YµË]R&ñv
[  448.087900][T13314] FAULT_INJECTION: forcing a failure.
[  448.087900][T13314] name failslab, interval 1, probability 0, space 0, times 0
[  448.156919][T13317] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2144'.
[  448.191300][T13314] CPU: 0 UID: 0 PID: 13314 Comm:  Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  448.201258][T13314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  448.211351][T13314] Call Trace:
[  448.214661][T13314]  <TASK>
[  448.217621][T13314]  dump_stack_lvl+0x16c/0x1f0
[  448.222336][T13314]  should_fail_ex+0x497/0x5b0
[  448.227049][T13314]  ? fs_reclaim_acquire+0xae/0x150
[  448.232200][T13314]  should_failslab+0xc2/0x120
[  448.236921][T13314]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  448.242342][T13314]  ? getname_flags.part.0+0x4c/0x550
[  448.247677][T13314]  ? vfs_write+0x306/0x1150
[  448.252220][T13314]  getname_flags.part.0+0x4c/0x550
[  448.257387][T13314]  getname+0x8d/0xe0
[  448.261326][T13314]  do_sys_openat2+0x104/0x1e0
[  448.266044][T13314]  ? __pfx_do_sys_openat2+0x10/0x10
[  448.271296][T13314]  ? __fget_files+0x206/0x3a0
[  448.276018][T13314]  __x64_sys_openat+0x175/0x210
[  448.280913][T13314]  ? __pfx___x64_sys_openat+0x10/0x10
[  448.286324][T13314]  ? ksys_write+0x1ba/0x250
[  448.290875][T13314]  do_syscall_64+0xcd/0x250
[  448.295418][T13314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  448.301350][T13314] RIP: 0033:0x7fcab5385d19
[  448.305794][T13314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  448.325442][T13314] RSP: 002b:00007fcab6127038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  448.333982][T13314] RAX: ffffffffffffffda RBX: 00007fcab5575fa0 RCX: 00007fcab5385d19
[  448.341990][T13314] RDX: 0000000000082204 RSI: 0000000020000400 RDI: ffffffffffffff9c
[  448.350001][T13314] RBP: 00007fcab6127090 R08: 0000000000000000 R09: 0000000000000000
[  448.358007][T13314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  448.366016][T13314] R13: 0000000000000000 R14: 00007fcab5575fa0 R15: 00007fffa6b6e608
[  448.374043][T13314]  </TASK>
[  448.377109][    C0] vkms_vblank_simulate: vblank timer overrun
[  448.903029][T13332] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2149'.
[  448.931261][T13332] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2149'.
[  449.280130][T13333] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2148'.
[  449.308096][T13342] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2152'.
[  451.902292][T13376] netlink: 'syz.2.2160': attribute type 11 has an invalid length.
[  451.963983][T13376] netlink: 'syz.2.2160': attribute type 11 has an invalid length.
[  451.995102][T13376] netlink: 'syz.2.2160': attribute type 11 has an invalid length.
[  453.027714][T13389] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2164'.
[  453.081072][T13390] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2164'.
[  454.690118][T13398] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2168'.
[  454.751116][T13398] bridge0: port 3(batadv0) entered disabled state
[  454.758211][T13398] bridge0: port 2(bridge_slave_1) entered disabled state
[  454.765518][T13398] bridge0: port 1(bridge_slave_0) entered disabled state
[  454.860676][T13398] bridge0: entered promiscuous mode
[  459.135853][   T29] audit: type=1326 audit(4294967418.350:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13455 comm="syz.4.2183" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcab5385d19 code=0x0
[  459.306909][T13464] ALSA: mixer_oss: invalid OSS volume ' '
[  459.529406][T13467] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2185'.
[  461.903415][T13506] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2196'.
[  462.403801][T13519] tipc: Started in network mode
[  462.408816][T13519] tipc: Node identity ee00, cluster identity 4711
[  462.567624][T13519] tipc: Node number set to 60928
[  462.869182][T13528] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2202'.
[  463.293975][T13531] FAULT_INJECTION: forcing a failure.
[  463.293975][T13531] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  463.506905][T13531] CPU: 0 UID: 0 PID: 13531 Comm: syz.1.2204 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  463.517739][T13531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  463.527825][T13531] Call Trace:
[  463.531129][T13531]  <TASK>
[  463.534092][T13531]  dump_stack_lvl+0x16c/0x1f0
[  463.538810][T13531]  should_fail_ex+0x497/0x5b0
[  463.543535][T13531]  _copy_to_user+0x32/0xd0
[  463.547988][T13531]  simple_read_from_buffer+0xd0/0x160
[  463.553402][T13531]  proc_fail_nth_read+0x198/0x270
[  463.558467][T13531]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  463.564053][T13531]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  463.569631][T13531]  vfs_read+0x1df/0xbe0
[  463.573811][T13531]  ? __fget_files+0x1fc/0x3a0
[  463.578515][T13531]  ? __pfx___mutex_lock+0x10/0x10
[  463.583567][T13531]  ? __pfx_vfs_read+0x10/0x10
[  463.588277][T13531]  ? __fget_files+0x206/0x3a0
[  463.592992][T13531]  ksys_read+0x12b/0x250
[  463.597263][T13531]  ? __pfx_ksys_read+0x10/0x10
[  463.602069][T13531]  do_syscall_64+0xcd/0x250
[  463.606609][T13531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  463.612535][T13531] RIP: 0033:0x7f8e5318472c
[  463.616971][T13531] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  463.636610][T13531] RSP: 002b:00007f8e5400b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  463.645057][T13531] RAX: ffffffffffffffda RBX: 00007f8e53375fa0 RCX: 00007f8e5318472c
[  463.653062][T13531] RDX: 000000000000000f RSI: 00007f8e5400b0a0 RDI: 0000000000000004
[  463.661064][T13531] RBP: 00007f8e5400b090 R08: 0000000000000000 R09: 0000000000000000
[  463.669065][T13531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  463.677061][T13531] R13: 0000000000000000 R14: 00007f8e53375fa0 R15: 00007ffd69fb18e8
[  463.685078][T13531]  </TASK>
[  465.199808][T13547] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2212'.
[  465.280673][T13550] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2212'.
[  465.670544][T13557] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2215'.
[  465.845030][T13556] Process accounting resumed
[  465.849698][T13556] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13556 comm: syz.1.2215)
[  467.104364][T13578] netlink: 'syz.4.2222': attribute type 4 has an invalid length.
[  467.324420][T13584] FAULT_INJECTION: forcing a failure.
[  467.324420][T13584] name failslab, interval 1, probability 0, space 0, times 0
[  467.357988][T13584] CPU: 0 UID: 0 PID: 13584 Comm: syz.5.2220 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  467.368823][T13584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  467.379351][T13584] Call Trace:
[  467.382654][T13584]  <TASK>
[  467.385607][T13584]  dump_stack_lvl+0x16c/0x1f0
[  467.390318][T13584]  should_fail_ex+0x497/0x5b0
[  467.395026][T13584]  ? fs_reclaim_acquire+0xae/0x150
[  467.400177][T13584]  should_failslab+0xc2/0x120
[  467.404891][T13584]  __kmalloc_noprof+0xce/0x4f0
[  467.409692][T13584]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  467.415357][T13584]  ? tomoyo_realpath_from_path+0xbf/0x710
[  467.421106][T13584]  tomoyo_realpath_from_path+0xbf/0x710
[  467.426664][T13584]  ? tomoyo_path_number_perm+0x235/0x5b0
[  467.432317][T13584]  tomoyo_path_number_perm+0x248/0x5b0
[  467.437789][T13584]  ? tomoyo_path_number_perm+0x235/0x5b0
[  467.443439][T13584]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  467.449457][T13584]  ? __pfx_lock_release+0x10/0x10
[  467.454498][T13584]  ? trace_lock_acquire+0x14e/0x1f0
[  467.459708][T13584]  ? lock_acquire+0x2f/0xb0
[  467.464213][T13584]  ? __fget_files+0x40/0x3a0
[  467.468814][T13584]  ? __fget_files+0x206/0x3a0
[  467.473501][T13584]  security_file_ioctl+0x9b/0x240
[  467.478530][T13584]  __x64_sys_ioctl+0xb7/0x200
[  467.483226][T13584]  do_syscall_64+0xcd/0x250
[  467.487738][T13584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.493661][T13584] RIP: 0033:0x7fe312385d19
[  467.498100][T13584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.517739][T13584] RSP: 002b:00007fe3130d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  467.526170][T13584] RAX: ffffffffffffffda RBX: 00007fe312575fa0 RCX: 00007fe312385d19
[  467.534156][T13584] RDX: 0000000000000000 RSI: 000000100000127e RDI: 0000000000000003
[  467.542133][T13584] RBP: 00007fe3130d7090 R08: 0000000000000000 R09: 0000000000000000
[  467.550104][T13584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  467.558076][T13584] R13: 0000000000000000 R14: 00007fe312575fa0 R15: 00007ffe27704348
[  467.566079][T13584]  </TASK>
[  467.688982][T13584] ERROR: Out of memory at tomoyo_realpath_from_path.
[  467.955564][T13567] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13567 comm: syz.1.2218)
[  467.981277][T13595] netlink: 222 bytes leftover after parsing attributes in process `syz.2.2227'.
[  468.011178][T13594] netlink: 222 bytes leftover after parsing attributes in process `syz.2.2227'.
[  468.260385][T13605] ALSA: mixer_oss: invalid OSS volume ''
[  468.758894][T13504] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13504 comm: syz.1.2195)
[  469.419459][T13605] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13605 comm: syz.1.2229)
[  469.579973][   T29] audit: type=1326 audit(4294967428.790:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13616 comm="syz.2.2234" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f51ef385d19 code=0x0
[  469.722006][T13625] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13625 comm: syz.1.2237)
[  469.964519][T13630] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13630 comm: syz.1.2239)
[  470.389318][T13637] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13637 comm: syz.1.2241)
[  470.691098][T13642] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2244'.
[  470.746544][T13650] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2245'.
[  470.797304][T13650] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2245'.
[  470.819463][T13641] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13641 comm: syz.1.2244)
[  470.915135][T13654] FAULT_INJECTION: forcing a failure.
[  470.915135][T13654] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  470.948758][T13654] CPU: 1 UID: 0 PID: 13654 Comm: syz.1.2247 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  470.959587][T13654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  470.969704][T13654] Call Trace:
[  470.973010][T13654]  <TASK>
[  470.975974][T13654]  dump_stack_lvl+0x16c/0x1f0
[  470.980690][T13654]  should_fail_ex+0x497/0x5b0
[  470.985415][T13654]  _copy_to_iter+0x29b/0x1400
[  470.990136][T13654]  ? trace_lock_acquire+0x14e/0x1f0
[  470.995365][T13654]  ? __pfx_lock_release+0x10/0x10
[  471.000411][T13654]  ? __pfx__copy_to_iter+0x10/0x10
[  471.005532][T13654]  ? __virt_addr_valid+0x1a4/0x590
[  471.010658][T13654]  ? __virt_addr_valid+0x5e/0x590
[  471.015692][T13654]  ? __phys_addr_symbol+0x30/0x80
[  471.020729][T13654]  ? __check_object_size+0x488/0x710
[  471.026028][T13654]  seq_read_iter+0xd00/0x12b0
[  471.030721][T13654]  kernfs_fop_read_iter+0x414/0x580
[  471.035929][T13654]  ? rw_verify_area+0xd0/0x700
[  471.040701][T13654]  vfs_read+0x87f/0xbe0
[  471.044866][T13654]  ? __pfx_vfs_read+0x10/0x10
[  471.049563][T13654]  ksys_read+0x12b/0x250
[  471.053815][T13654]  ? __pfx_ksys_read+0x10/0x10
[  471.058591][T13654]  do_syscall_64+0xcd/0x250
[  471.063110][T13654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  471.069023][T13654] RIP: 0033:0x7f8e53185d19
[  471.073451][T13654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  471.093075][T13654] RSP: 002b:00007f8e5400b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  471.101497][T13654] RAX: ffffffffffffffda RBX: 00007f8e53375fa0 RCX: 00007f8e53185d19
[  471.109479][T13654] RDX: 00000000000000e4 RSI: 00000000200000c0 RDI: 0000000000000003
[  471.117454][T13654] RBP: 00007f8e5400b090 R08: 0000000000000000 R09: 0000000000000000
[  471.125436][T13654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  471.133415][T13654] R13: 0000000000000000 R14: 00007f8e53375fa0 R15: 00007ffd69fb18e8
[  471.141436][T13654]  </TASK>
[  471.144548][    C1] vkms_vblank_simulate: vblank timer overrun
[  471.406985][T13654] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13654 comm: syz.1.2247)
[  471.794220][T13670] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2249'.
[  472.427583][T13666] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13666 comm: syz.1.2250)
[  472.615898][T13695] program syz.2.2255 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  472.634500][T13693] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2257'.
[  472.660815][T13693] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2257'.
[  472.696221][T13690] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13690 comm: syz.1.2256)
[  473.627606][T13699] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13699 comm: syz.1.2258)
[  474.044164][T13725] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13725 comm: syz.1.2265)
[  475.020966][T13744] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13744 comm: syz.1.2268)
[  475.170931][T13759] FAULT_INJECTION: forcing a failure.
[  475.170931][T13759] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  475.215553][T13763] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13763 comm: syz.1.2274)
[  475.259940][T13759] CPU: 1 UID: 0 PID: 13759 Comm: syz.5.2273 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  475.270861][T13759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  475.280949][T13759] Call Trace:
[  475.284258][T13759]  <TASK>
[  475.287207][T13759]  dump_stack_lvl+0x16c/0x1f0
[  475.291930][T13759]  should_fail_ex+0x497/0x5b0
[  475.296645][T13759]  _copy_to_user+0x32/0xd0
[  475.301102][T13759]  simple_read_from_buffer+0xd0/0x160
[  475.306525][T13759]  proc_fail_nth_read+0x198/0x270
[  475.311594][T13759]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  475.317189][T13759]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  475.322778][T13759]  vfs_read+0x1df/0xbe0
[  475.326960][T13759]  ? __fget_files+0x1fc/0x3a0
[  475.331665][T13759]  ? __pfx___mutex_lock+0x10/0x10
[  475.336721][T13759]  ? __pfx_vfs_read+0x10/0x10
[  475.341441][T13759]  ? __fget_files+0x206/0x3a0
[  475.346164][T13759]  ksys_read+0x12b/0x250
[  475.350439][T13759]  ? __pfx_ksys_read+0x10/0x10
[  475.355244][T13759]  do_syscall_64+0xcd/0x250
[  475.359782][T13759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  475.365715][T13759] RIP: 0033:0x7fe31238472c
[  475.370160][T13759] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  475.389791][T13759] RSP: 002b:00007fe3101f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  475.398305][T13759] RAX: ffffffffffffffda RBX: 00007fe312576080 RCX: 00007fe31238472c
[  475.406288][T13759] RDX: 000000000000000f RSI: 00007fe3101f60a0 RDI: 0000000000000004
[  475.414262][T13759] RBP: 00007fe3101f6090 R08: 0000000000000000 R09: 0000000000000000
[  475.422237][T13759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  475.430211][T13759] R13: 0000000000000000 R14: 00007fe312576080 R15: 00007ffe27704348
[  475.438204][T13759]  </TASK>
[  475.595471][T13764] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13764 comm: syz.1.2275)
[  476.511146][T13780] FAULT_INJECTION: forcing a failure.
[  476.511146][T13780] name failslab, interval 1, probability 0, space 0, times 0
[  476.533907][T13780] CPU: 1 UID: 0 PID: 13780 Comm: syz.2.2280 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  476.544733][T13780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  476.554826][T13780] Call Trace:
[  476.558128][T13780]  <TASK>
[  476.561087][T13780]  dump_stack_lvl+0x16c/0x1f0
[  476.565806][T13780]  should_fail_ex+0x497/0x5b0
[  476.570532][T13780]  ? fs_reclaim_acquire+0xae/0x150
[  476.575686][T13780]  should_failslab+0xc2/0x120
[  476.580410][T13780]  __kmalloc_node_noprof+0xd1/0x520
[  476.585654][T13780]  ? __pfx___mutex_lock+0x10/0x10
[  476.590715][T13780]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  476.596222][T13780]  __kvmalloc_node_noprof+0xad/0x1a0
[  476.601549][T13780]  traverse.part.0.constprop.0+0x392/0x640
[  476.607391][T13780]  ? __pfx_lock_release+0x10/0x10
[  476.612466][T13780]  seq_read_iter+0x934/0x12b0
[  476.617188][T13780]  seq_read+0x39f/0x4e0
[  476.621373][T13780]  ? __pfx_seq_read+0x10/0x10
[  476.626106][T13780]  ? __pfx_seq_read+0x10/0x10
[  476.630811][T13780]  proc_reg_read+0x23d/0x330
[  476.635446][T13780]  ? __pfx_proc_reg_read+0x10/0x10
[  476.640600][T13780]  vfs_read+0x1df/0xbe0
[  476.644803][T13780]  ? __fget_files+0x1fc/0x3a0
[  476.649516][T13780]  ? __pfx_lock_release+0x10/0x10
[  476.654586][T13780]  ? __pfx_vfs_read+0x10/0x10
[  476.659277][T13780]  ? lock_acquire+0x2f/0xb0
[  476.663794][T13780]  ? __fget_files+0x40/0x3a0
[  476.668395][T13780]  ? __fget_files+0x206/0x3a0
[  476.673088][T13780]  __x64_sys_pread64+0x1f6/0x250
[  476.678036][T13780]  ? __pfx___x64_sys_pread64+0x10/0x10
[  476.683510][T13780]  do_syscall_64+0xcd/0x250
[  476.688025][T13780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.693925][T13780] RIP: 0033:0x7f51ef385d19
[  476.698341][T13780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  476.717969][T13780] RSP: 002b:00007f51f01ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  476.726395][T13780] RAX: ffffffffffffffda RBX: 00007f51ef575fa0 RCX: 00007f51ef385d19
[  476.734370][T13780] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000003
[  476.742343][T13780] RBP: 00007f51f01ab090 R08: 0000000000000000 R09: 0000000000000000
[  476.750316][T13780] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001
[  476.758284][T13780] R13: 0000000000000000 R14: 00007f51ef575fa0 R15: 00007ffed3b4d528
[  476.766268][T13780]  </TASK>
[  476.817398][T13770] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13770 comm: syz.1.2276)
[  476.878154][T13776] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  476.928254][T13776] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  476.962983][T13783] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2281'.
[  476.986003][T13776] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  477.042447][T13784] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2281'.
[  477.056913][T13776] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  477.289214][T13788] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13788 comm: syz.1.2283)
[  477.493644][T13797] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13797 comm: syz.1.2285)
[  477.617326][T13800] FAULT_INJECTION: forcing a failure.
[  477.617326][T13800] name failslab, interval 1, probability 0, space 0, times 0
[  477.652397][T13800] CPU: 1 UID: 0 PID: 13800 Comm: syz.1.2286 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  477.663228][T13800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  477.673320][T13800] Call Trace:
[  477.676624][T13800]  <TASK>
[  477.679577][T13800]  dump_stack_lvl+0x16c/0x1f0
[  477.684298][T13800]  should_fail_ex+0x497/0x5b0
[  477.689016][T13800]  ? fs_reclaim_acquire+0xae/0x150
[  477.694168][T13800]  should_failslab+0xc2/0x120
[  477.698899][T13800]  __kmalloc_noprof+0xce/0x4f0
[  477.703712][T13800]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  477.709378][T13800]  ? tomoyo_realpath_from_path+0xbf/0x710
[  477.715151][T13800]  tomoyo_realpath_from_path+0xbf/0x710
[  477.720745][T13800]  ? tomoyo_path_number_perm+0x235/0x5b0
[  477.726430][T13800]  tomoyo_path_number_perm+0x248/0x5b0
[  477.732016][T13800]  ? tomoyo_path_number_perm+0x235/0x5b0
[  477.737705][T13800]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  477.743767][T13800]  ? __pfx_lock_release+0x10/0x10
[  477.748838][T13800]  ? trace_lock_acquire+0x14e/0x1f0
[  477.754094][T13800]  ? lock_acquire+0x2f/0xb0
[  477.758635][T13800]  ? __fget_files+0x40/0x3a0
[  477.763284][T13800]  ? __fget_files+0x206/0x3a0
[  477.768008][T13800]  security_file_ioctl+0x9b/0x240
[  477.773076][T13800]  __x64_sys_ioctl+0xb7/0x200
[  477.777809][T13800]  do_syscall_64+0xcd/0x250
[  477.782367][T13800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  477.788310][T13800] RIP: 0033:0x7f8e53185d19
[  477.792768][T13800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  477.812417][T13800] RSP: 002b:00007f8e5400b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  477.820881][T13800] RAX: ffffffffffffffda RBX: 00007f8e53375fa0 RCX: 00007f8e53185d19
[  477.828896][T13800] RDX: 0000000000000000 RSI: 000000004004743d RDI: 0000000000000004
[  477.836914][T13800] RBP: 00007f8e5400b090 R08: 0000000000000000 R09: 0000000000000000
[  477.844928][T13800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  477.852944][T13800] R13: 0000000000000000 R14: 00007f8e53375fa0 R15: 00007ffd69fb18e8
[  477.860972][T13800]  </TASK>
[  477.876639][T13800] ERROR: Out of memory at tomoyo_realpath_from_path.
[  477.881838][T13784] bond0: (slave bond_slave_1): Releasing backup interface
[  477.926649][T13800] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13800 comm: syz.1.2286)
[  478.159496][T13808] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2288'.
[  478.190129][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout
[  478.337862][T13808] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13808 comm: syz.1.2288)
[  478.338252][T13810] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2289'.
[  478.533245][T13816] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13816 comm: syz.1.2291)
[  478.827280][T13825] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13825 comm: syz.1.2293)
[  478.990754][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout
[  479.070158][ T5837] Bluetooth: hci2: command 0x0419 tx timeout
[  479.076227][ T5837] Bluetooth: hci4: command 0x0c1a tx timeout
[  480.529096][T13836] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13836 comm: syz.1.2296)
[  481.242327][T13859] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13859 comm: syz.1.2304)
[  481.979035][T13881] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2308'.
[  482.218873][T13885] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2311'.
[  482.360716][T13874] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13874 comm: syz.1.2307)
[  482.612302][T13886] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2310'.
[  483.726440][T13894] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13894 comm: syz.1.2313)
[  483.927195][T13918] Process accounting resumed
[  483.997420][T13918] Process accounting resumed
[  484.074546][T13927] FAULT_INJECTION: forcing a failure.
[  484.074546][T13927] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  484.107884][T13927] CPU: 0 UID: 0 PID: 13927 Comm: syz.4.2320 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  484.118712][T13927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  484.128802][T13927] Call Trace:
[  484.132107][T13927]  <TASK>
[  484.135070][T13927]  dump_stack_lvl+0x16c/0x1f0
[  484.139785][T13927]  should_fail_ex+0x497/0x5b0
[  484.144509][T13927]  _copy_from_user+0x2e/0xd0
[  484.149145][T13927]  copy_msghdr_from_user+0x99/0x160
[  484.154387][T13927]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  484.160252][T13927]  ___sys_sendmsg+0xff/0x1e0
[  484.164884][T13927]  ? __pfx____sys_sendmsg+0x10/0x10
[  484.170142][T13927]  ? __pfx_lock_release+0x10/0x10
[  484.175212][T13927]  ? trace_lock_acquire+0x14e/0x1f0
[  484.180458][T13927]  ? __fget_files+0x206/0x3a0
[  484.185185][T13927]  __sys_sendmsg+0x16e/0x220
[  484.189815][T13927]  ? __pfx___sys_sendmsg+0x10/0x10
[  484.194985][T13927]  do_syscall_64+0xcd/0x250
[  484.199536][T13927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  484.205464][T13927] RIP: 0033:0x7fcab5385d19
[  484.209899][T13927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  484.226522][T13925] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2321'.
[  484.229511][T13927] RSP: 002b:00007fcab6106038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  484.229542][T13927] RAX: ffffffffffffffda RBX: 00007fcab5576080 RCX: 00007fcab5385d19
[  484.229561][T13927] RDX: 0000000004040004 RSI: 0000000020000180 RDI: 0000000000000002
[  484.262867][T13927] RBP: 00007fcab6106090 R08: 0000000000000000 R09: 0000000000000000
[  484.270845][T13927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  484.270864][T13927] R13: 0000000000000001 R14: 00007fcab5576080 R15: 00007fffa6b6e608
[  484.270897][T13927]  </TASK>
[  484.270984][    C0] vkms_vblank_simulate: vblank timer overrun
[  484.296228][    C0] vkms_vblank_simulate: vblank timer overrun
[  484.515374][T13848] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13848 comm: syz.1.2296)
[  484.566739][T13924] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13924 comm: syz.1.2321)
[  484.759824][T13941] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13941 comm: syz.1.2325)
[  484.816703][ T5837] Bluetooth: hci3: unexpected event 0x03 length: 72 > 11
[  484.957613][T13945] netlink: 93 bytes leftover after parsing attributes in process `syz.4.2327'.
[  485.103584][T13957] Process accounting resumed
[  485.131844][T13957] Process accounting resumed
[  485.504806][T13970] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2334'.
[  485.745511][T13947] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13947 comm: syz.1.2329)
[  485.821829][T13984] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 13984 comm: syz.1.2341)
[  485.895051][T13984] Process accounting resumed
[  485.962129][T13984] Process accounting resumed
[  486.630000][T14013] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2346'.
[  486.713224][T14018] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2346'.
[  489.026863][T14062] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2360'.
[  491.570267][T14128] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2381'.
[  491.610960][T14128] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2381'.
[  491.991191][T14139] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  493.748949][T14179] netlink: 'syz.4.2398': attribute type 14 has an invalid length.
[  493.757145][T14179] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2398'.
[  494.914320][T14201] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2404'.
[  494.992014][T14201] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2404'.
[  495.649787][T14206] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2406'.
[  501.093942][T14253] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2430'.
[  501.201940][T14279] misc userio: The device must be registered before sending interrupts
[  501.927870][T14300] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2439'.
[  503.059313][T14333] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2449'.
[  503.130189][T14302] ALSA: mixer_oss: invalid OSS volume ' '
[  503.183262][T14333] veth1_macvtap: left promiscuous mode
[  503.857330][   T29] audit: type=1800 audit(4294967463.080:42): pid=14355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2456" name="discovery_nqn" dev="configfs" ino=42806 res=0 errno=0
[  504.787214][T14362] ALSA: mixer_oss: invalid OSS volume ' '
[  504.792616][T14378] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2465'.
[  504.834224][   T29] audit: type=1800 audit(4294967464.060:43): pid=14380 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2466" name="discovery_nqn" dev="configfs" ino=43561 res=0 errno=0
[  504.871571][T14381] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2465'.
[  506.790457][T14422] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2479'.
[  506.836963][T14422] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2479'.
[  507.662131][T14427] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2483'.
[  508.384200][T14448] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2489'.
[  508.500268][T14454] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2489'.
[  509.655842][T14466] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2495'.
[  510.040418][T14490] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2503'.
[  510.070874][T14490] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2503'.
[  510.974928][T14511] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2513'.
[  511.090659][T14520] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2514'.
[  512.502723][T14557] __nla_validate_parse: 2 callbacks suppressed
[  512.502746][T14557] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2527'.
[  512.557127][T14556] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2526'.
[  512.617221][T14558] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2526'.
[  512.893125][T14560] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2528'.
[  513.562694][T14590] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2539'.
[  513.572599][T14590] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2539'.
[  513.672187][T14589] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2536'.
[  514.175845][T14609] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  514.318284][T14613] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  514.469949][T14377] Process accounting paused
[  515.205126][T14630] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2550'.
[  515.250864][T14630] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2550'.
[  515.255687][T14631] FAULT_INJECTION: forcing a failure.
[  515.255687][T14631] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  515.319593][T14631] CPU: 0 UID: 0 PID: 14631 Comm: syz.5.2549 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  515.330427][T14631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  515.340522][T14631] Call Trace:
[  515.342345][T14627] Process accounting paused
[  515.343801][T14631]  <TASK>
[  515.343814][T14631]  dump_stack_lvl+0x16c/0x1f0
[  515.355932][T14631]  should_fail_ex+0x497/0x5b0
[  515.360655][T14631]  _copy_to_user+0x32/0xd0
[  515.365113][T14631]  simple_read_from_buffer+0xd0/0x160
[  515.370534][T14631]  proc_fail_nth_read+0x198/0x270
[  515.375599][T14631]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  515.381187][T14631]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  515.386772][T14631]  vfs_read+0x1df/0xbe0
[  515.390964][T14631]  ? __fget_files+0x1fc/0x3a0
[  515.395675][T14631]  ? __pfx___mutex_lock+0x10/0x10
[  515.400734][T14631]  ? __pfx_vfs_read+0x10/0x10
[  515.405446][T14631]  ? __fget_files+0x206/0x3a0
[  515.410172][T14631]  ksys_read+0x12b/0x250
[  515.414445][T14631]  ? __pfx_ksys_read+0x10/0x10
[  515.419247][T14631]  do_syscall_64+0xcd/0x250
[  515.423781][T14631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.429710][T14631] RIP: 0033:0x7fe31238472c
[  515.434148][T14631] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  515.453792][T14631] RSP: 002b:00007fe3130d7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  515.462249][T14631] RAX: ffffffffffffffda RBX: 00007fe312575fa0 RCX: 00007fe31238472c
[  515.470247][T14631] RDX: 000000000000000f RSI: 00007fe3130d70a0 RDI: 0000000000000004
[  515.478241][T14631] RBP: 00007fe3130d7090 R08: 0000000000000000 R09: 0000000000000000
[  515.486236][T14631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  515.494242][T14631] R13: 0000000000000000 R14: 00007fe312575fa0 R15: 00007ffe27704348
[  515.502263][T14631]  </TASK>
[  515.505436][    C0] vkms_vblank_simulate: vblank timer overrun
[  517.714504][T14596] Process accounting paused
[  518.276836][T14655] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2559'.
[  518.460321][T14658] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2561'.
[  518.484852][T14658] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2561'.
[  518.790496][T14669] FAULT_INJECTION: forcing a failure.
[  518.790496][T14669] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  518.803884][T14669] CPU: 0 UID: 0 PID: 14669 Comm: syz.1.2565 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  518.814690][T14669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  518.824779][T14669] Call Trace:
[  518.828086][T14669]  <TASK>
[  518.831038][T14669]  dump_stack_lvl+0x16c/0x1f0
[  518.835757][T14669]  should_fail_ex+0x497/0x5b0
[  518.840474][T14669]  strncpy_from_user+0x3b/0x2d0
[  518.845365][T14669]  getname_flags.part.0+0x8f/0x550
[  518.850524][T14669]  getname+0x8d/0xe0
[  518.854447][T14669]  do_sys_openat2+0x104/0x1e0
[  518.859156][T14669]  ? __pfx_do_sys_openat2+0x10/0x10
[  518.864390][T14669]  ? __fget_files+0x206/0x3a0
[  518.869100][T14669]  __x64_sys_openat+0x175/0x210
[  518.873985][T14669]  ? __pfx___x64_sys_openat+0x10/0x10
[  518.879386][T14669]  ? ksys_write+0x1ba/0x250
[  518.883922][T14669]  do_syscall_64+0xcd/0x250
[  518.888460][T14669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  518.894383][T14669] RIP: 0033:0x7f8e53185d19
[  518.898823][T14669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  518.918460][T14669] RSP: 002b:00007f8e5400b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  518.926908][T14669] RAX: ffffffffffffffda RBX: 00007f8e53375fa0 RCX: 00007f8e53185d19
[  518.934898][T14669] RDX: 0000000000080000 RSI: 0000000020000340 RDI: ffffffffffffff9c
[  518.942894][T14669] RBP: 00007f8e5400b090 R08: 0000000000000000 R09: 0000000000000000
[  518.950887][T14669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  518.958888][T14669] R13: 0000000000000001 R14: 00007f8e53375fa0 R15: 00007ffd69fb18e8
[  518.966912][T14669]  </TASK>
[  519.913580][T14684] program syz.2.2569 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  520.119472][T14693] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2568'.
[  520.581509][T14709] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2576'.
[  520.722452][T14716] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2579'.
[  522.135848][   T29] audit: type=1326 audit(4294967481.360:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14756 comm="syz.2.2587" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f51ef385d19 code=0x0
[  522.464936][T14774] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2590'.
[  524.751598][T14805] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2600'.
[  524.805645][T14807] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2600'.
[  525.267004][T14809] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2601'.
[  525.495195][T14816] FAULT_INJECTION: forcing a failure.
[  525.495195][T14816] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  525.566619][T14816] CPU: 0 UID: 0 PID: 14816 Comm: syz.4.2604 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  525.577456][T14816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  525.587544][T14816] Call Trace:
[  525.590850][T14816]  <TASK>
[  525.593797][T14816]  dump_stack_lvl+0x16c/0x1f0
[  525.598522][T14816]  should_fail_ex+0x497/0x5b0
[  525.603240][T14816]  _copy_to_iter+0x4a5/0x1400
[  525.607965][T14816]  ? __pfx__copy_to_iter+0x10/0x10
[  525.613114][T14816]  ? __virt_addr_valid+0x1a4/0x590
[  525.618271][T14816]  ? __virt_addr_valid+0x5e/0x590
[  525.623333][T14816]  ? __phys_addr_symbol+0x30/0x80
[  525.628397][T14816]  ? __check_object_size+0x488/0x710
[  525.633753][T14816]  seq_read_iter+0x725/0x12b0
[  525.638482][T14816]  seq_read+0x39f/0x4e0
[  525.642694][T14816]  ? __pfx_seq_read+0x10/0x10
[  525.647408][T14816]  ? copy_iovec_from_user+0x138/0x170
[  525.652910][T14816]  ? iovec_from_user.part.0+0x7e/0x130
[  525.658423][T14816]  full_proxy_read+0xfb/0x1b0
[  525.663147][T14816]  ? __pfx_full_proxy_read+0x10/0x10
[  525.668482][T14816]  vfs_readv+0x6bf/0x890
[  525.672769][T14816]  ? __pfx___lock_acquire+0x10/0x10
[  525.678011][T14816]  ? find_held_lock+0x2d/0x110
[  525.682821][T14816]  ? __pfx_vfs_readv+0x10/0x10
[  525.687629][T14816]  ? __fget_files+0x1fc/0x3a0
[  525.692346][T14816]  ? __pfx_lock_release+0x10/0x10
[  525.697426][T14816]  ? __fget_files+0x206/0x3a0
[  525.702145][T14816]  ? do_preadv+0x1b1/0x270
[  525.706582][T14816]  do_preadv+0x1b1/0x270
[  525.710855][T14816]  ? __pfx_do_preadv+0x10/0x10
[  525.715662][T14816]  do_syscall_64+0xcd/0x250
[  525.720205][T14816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  525.726132][T14816] RIP: 0033:0x7fcab5385d19
[  525.730577][T14816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  525.750226][T14816] RSP: 002b:00007fcab6127038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  525.758676][T14816] RAX: ffffffffffffffda RBX: 00007fcab5575fa0 RCX: 00007fcab5385d19
[  525.766687][T14816] RDX: 0000000000000006 RSI: 0000000020000080 RDI: 0040000000000003
[  525.774695][T14816] RBP: 00007fcab6127090 R08: 0000000000000005 R09: 0000000000000000
[  525.782701][T14816] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  525.790699][T14816] R13: 0000000000000000 R14: 00007fcab5575fa0 R15: 00007fffa6b6e608
[  525.798726][T14816]  </TASK>
[  526.530395][T14828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2608'.
[  526.640917][T14830] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2608'.
[  526.711974][ T5831] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  526.733900][ T5831] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  526.743818][ T5831] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  526.780015][ T5831] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  526.788480][ T5831] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  526.800260][ T5831] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  527.087208][T14831] chnl_net:caif_netlink_parms(): no params data found
[  527.280682][T14843] nbd: must specify at least one socket
[  527.473994][T14851] nbd: must specify at least one socket
[  527.550841][T14852] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2611'.
[  527.641422][T14831] bridge0: port 1(bridge_slave_0) entered blocking state
[  527.649167][T14856] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2611'.
[  527.670003][T14831] bridge0: port 1(bridge_slave_0) entered disabled state
[  527.677583][T14831] bridge_slave_0: entered allmulticast mode
[  527.716182][T14831] bridge_slave_0: entered promiscuous mode
[  527.757718][T14831] bridge0: port 2(bridge_slave_1) entered blocking state
[  527.772825][T14831] bridge0: port 2(bridge_slave_1) entered disabled state
[  527.792689][T14831] bridge_slave_1: entered allmulticast mode
[  527.819424][T14831] bridge_slave_1: entered promiscuous mode
[  528.421977][T14867] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2615'.
[  528.435416][T14831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  528.472653][T14831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  528.518877][T14867] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2615'.
[  528.742269][T14831] team0: Port device team_slave_0 added
[  528.770835][T14831] team0: Port device team_slave_1 added
[  528.910041][ T5837] Bluetooth: hci1: command tx timeout
[  528.976305][T14831] batman_adv: batadv0: Adding interface: batadv_slave_0
[  528.989114][T14831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  529.034096][T14831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  529.056689][T14831] batman_adv: batadv0: Adding interface: batadv_slave_1
[  529.068529][T14831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  529.094437][    C0] vkms_vblank_simulate: vblank timer overrun
[  529.132239][T14831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  529.302692][T14831] hsr_slave_0: entered promiscuous mode
[  529.350635][T14831] hsr_slave_1: entered promiscuous mode
[  529.383029][T14831] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  529.406558][T14831] Cannot create hsr debugfs directory
[  530.563847][T14831] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  530.710389][T14888] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2621'.
[  530.764900][T14891] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2621'.
[  530.948047][T14831] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  530.990221][ T5837] Bluetooth: hci1: command tx timeout
[  531.334847][T14831] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  531.884198][T14903] FAULT_INJECTION: forcing a failure.
[  531.884198][T14903] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  531.931738][T14831] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  532.038200][T14903] CPU: 1 UID: 0 PID: 14903 Comm: syz.5.2626 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  532.049032][T14903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  532.059118][T14903] Call Trace:
[  532.062423][T14903]  <TASK>
[  532.065371][T14903]  dump_stack_lvl+0x16c/0x1f0
[  532.070082][T14903]  should_fail_ex+0x497/0x5b0
[  532.074797][T14903]  _copy_to_user+0x32/0xd0
[  532.079258][T14903]  simple_read_from_buffer+0xd0/0x160
[  532.084674][T14903]  proc_fail_nth_read+0x198/0x270
[  532.089735][T14903]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  532.095313][T14903]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  532.100872][T14903]  vfs_read+0x1df/0xbe0
[  532.105042][T14903]  ? __pfx_vfs_read+0x10/0x10
[  532.109723][T14903]  ? __pfx_do_utimes+0x10/0x10
[  532.114493][T14903]  ? do_sys_openat2+0xb1/0x1e0
[  532.119269][T14903]  ? __pfx_do_sys_openat2+0x10/0x10
[  532.124489][T14903]  ? do_futimesat+0x197/0x200
[  532.129172][T14903]  ? __pfx_do_futimesat+0x10/0x10
[  532.134209][T14903]  ksys_read+0x12b/0x250
[  532.138460][T14903]  ? __pfx_ksys_read+0x10/0x10
[  532.143241][T14903]  do_syscall_64+0xcd/0x250
[  532.147755][T14903]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  532.153659][T14903] RIP: 0033:0x7fe31238472c
[  532.158079][T14903] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  532.177689][T14903] RSP: 002b:00007fe3130d7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  532.186117][T14903] RAX: ffffffffffffffda RBX: 00007fe312575fa0 RCX: 00007fe31238472c
[  532.194094][T14903] RDX: 000000000000000f RSI: 00007fe3130d70a0 RDI: 0000000000000003
[  532.202070][T14903] RBP: 00007fe3130d7090 R08: 0000000000000000 R09: 0000000000000000
[  532.210046][T14903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  532.218017][T14903] R13: 0000000000000000 R14: 00007fe312575fa0 R15: 00007ffe27704348
[  532.226008][T14903]  </TASK>
[  532.496268][T14831] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  532.553843][T14831] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  532.593903][T14831] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  532.682653][T14831] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  532.911223][T14831] 8021q: adding VLAN 0 to HW filter on device bond0
[  532.951437][T14831] 8021q: adding VLAN 0 to HW filter on device team0
[  532.982779][T14752] bridge0: port 1(bridge_slave_0) entered blocking state
[  532.989925][T14752] bridge0: port 1(bridge_slave_0) entered forwarding state
[  533.051144][T14752] bridge0: port 2(bridge_slave_1) entered blocking state
[  533.058280][T14752] bridge0: port 2(bridge_slave_1) entered forwarding state
[  533.074154][ T5837] Bluetooth: hci1: command tx timeout
[  533.143055][T14831] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  533.180898][T14831] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  533.601144][T14831] 8021q: adding VLAN 0 to HW filter on device batadv0
[  533.620685][T14931] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2634'.
[  533.660876][T14931] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2634'.
[  533.712539][T14831] veth0_vlan: entered promiscuous mode
[  533.749032][T14831] veth1_vlan: entered promiscuous mode
[  533.796655][T14831] veth0_macvtap: entered promiscuous mode
[  533.818781][T14831] veth1_macvtap: entered promiscuous mode
[  533.880867][T14831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  533.901028][T14831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  533.930267][T14831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  533.950185][T14831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  533.974769][T14831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  533.998576][T14831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  534.020908][T14831] batman_adv: batadv0: Interface activated: batadv_slave_0
[  534.048804][T14831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  534.079750][T14831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  534.102517][T14831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  534.129902][T14831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  534.159994][T14831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  534.189894][T14831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  534.230825][T14831] batman_adv: batadv0: Interface activated: batadv_slave_1
[  534.304415][T14831] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  534.340065][T14831] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  534.348828][T14831] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  534.389008][T14831] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  534.711753][T14758] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  534.719597][T14758] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  534.799669][T14758] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  534.830436][T14758] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  535.160292][ T5837] Bluetooth: hci1: command tx timeout
[  535.774574][ T5837] Bluetooth: hci1: unexpected event 0x03 length: 72 > 11
[  536.062257][T14959] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2642'.
[  536.401573][T14972] FAULT_INJECTION: forcing a failure.
[  536.401573][T14972] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  536.430236][T14972] CPU: 0 UID: 0 PID: 14972 Comm:  Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  536.440187][T14972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  536.450270][T14972] Call Trace:
[  536.453576][T14972]  <TASK>
[  536.456527][T14972]  dump_stack_lvl+0x16c/0x1f0
[  536.461252][T14972]  should_fail_ex+0x497/0x5b0
[  536.465968][T14972]  strncpy_from_user+0x3b/0x2d0
[  536.470858][T14972]  getname_flags.part.0+0x8f/0x550
[  536.476008][T14972]  getname+0x8d/0xe0
[  536.479936][T14972]  do_sys_openat2+0x104/0x1e0
[  536.484659][T14972]  ? __pfx_do_sys_openat2+0x10/0x10
[  536.489895][T14972]  ? __fget_files+0x206/0x3a0
[  536.494605][T14972]  __x64_sys_openat+0x175/0x210
[  536.499503][T14972]  ? __pfx___x64_sys_openat+0x10/0x10
[  536.504917][T14972]  ? ksys_write+0x1ba/0x250
[  536.509464][T14972]  do_syscall_64+0xcd/0x250
[  536.514006][T14972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.519932][T14972] RIP: 0033:0x7f51ef385d19
[  536.524377][T14972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  536.544016][T14972] RSP: 002b:00007f51f01ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  536.552446][T14972] RAX: ffffffffffffffda RBX: 00007f51ef575fa0 RCX: 00007f51ef385d19
[  536.560429][T14972] RDX: 0000000000082204 RSI: 0000000020000400 RDI: ffffffffffffff9c
[  536.568496][T14972] RBP: 00007f51f01ab090 R08: 0000000000000000 R09: 0000000000000000
[  536.576471][T14972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  536.584452][T14972] R13: 0000000000000000 R14: 00007f51ef575fa0 R15: 00007ffed3b4d528
[  536.592447][T14972]  </TASK>
[  536.595477][    C0] vkms_vblank_simulate: vblank timer overrun
[  538.720906][T14998] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2654'.
[  539.487252][ T5837] Bluetooth: hci4: ISO packet for unknown connection handle 1028
[  540.594281][   T29] audit: type=1800 audit(4294967499.820:45): pid=15030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="version" dev="configfs" ino=46029 res=0 errno=0
[  541.585418][   T29] audit: type=1326 audit(4294967500.810:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15039 comm="syz.4.2666" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcab5385d19 code=0x0
[  541.758677][T15040] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2666'.
[  543.080791][T15075] netlink: 'syz.5.2677': attribute type 2 has an invalid length.
[  543.280995][T15072] netlink: 'syz.5.2677': attribute type 2 has an invalid length.
[  544.668552][T15085] Process accounting resumed
[  546.500542][T15109] __vm_enough_memory: pid: 15109, comm: syz.2.2685, bytes: 4503599627366400 not enough memory for the allocation
[  547.301128][T15092] Process accounting resumed
[  548.068983][T15124] netlink: 'syz.4.2690': attribute type 11 has an invalid length.
[  548.280857][T15124] netlink: 'syz.4.2690': attribute type 11 has an invalid length.
[  548.434254][T15124] netlink: 'syz.4.2690': attribute type 11 has an invalid length.
[  550.702766][T15161] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2701'.
[  551.138055][T15170] FAULT_INJECTION: forcing a failure.
[  551.138055][T15170] name failslab, interval 1, probability 0, space 0, times 0
[  551.207017][T15170] CPU: 0 UID: 0 PID: 15170 Comm: syz.2.2703 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  551.217843][T15170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  551.227922][T15170] Call Trace:
[  551.231218][T15170]  <TASK>
[  551.234188][T15170]  dump_stack_lvl+0x16c/0x1f0
[  551.238914][T15170]  should_fail_ex+0x497/0x5b0
[  551.243645][T15170]  ? fs_reclaim_acquire+0xae/0x150
[  551.248794][T15170]  should_failslab+0xc2/0x120
[  551.253512][T15170]  __kmalloc_noprof+0xce/0x4f0
[  551.258313][T15170]  ? tomoyo_encode2+0x100/0x3e0
[  551.263189][T15170]  tomoyo_encode2+0x100/0x3e0
[  551.267886][T15170]  tomoyo_realpath_from_path+0x1a7/0x710
[  551.273524][T15170]  ? tomoyo_path_number_perm+0x235/0x5b0
[  551.279169][T15170]  tomoyo_path_number_perm+0x248/0x5b0
[  551.284645][T15170]  ? tomoyo_path_number_perm+0x235/0x5b0
[  551.290288][T15170]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  551.296308][T15170]  ? __pfx_lock_release+0x10/0x10
[  551.301358][T15170]  ? trace_lock_acquire+0x14e/0x1f0
[  551.306567][T15170]  ? lock_acquire+0x2f/0xb0
[  551.311069][T15170]  ? __fget_files+0x40/0x3a0
[  551.315666][T15170]  ? __fget_files+0x206/0x3a0
[  551.320348][T15170]  security_file_ioctl+0x9b/0x240
[  551.325375][T15170]  __x64_sys_ioctl+0xb7/0x200
[  551.330072][T15170]  do_syscall_64+0xcd/0x250
[  551.334592][T15170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.340497][T15170] RIP: 0033:0x7f51ef385d19
[  551.344913][T15170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  551.364608][T15170] RSP: 002b:00007f51f018a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  551.373029][T15170] RAX: ffffffffffffffda RBX: 00007f51ef576080 RCX: 00007f51ef385d19
[  551.381000][T15170] RDX: 0000000000000038 RSI: 000000000000541b RDI: 0000000000000003
[  551.388970][T15170] RBP: 00007f51f018a090 R08: 0000000000000000 R09: 0000000000000000
[  551.396938][T15170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  551.404920][T15170] R13: 0000000000000001 R14: 00007f51ef576080 R15: 00007ffed3b4d528
[  551.412905][T15170]  </TASK>
[  551.520002][T15170] ERROR: Out of memory at tomoyo_realpath_from_path.
[  551.946953][T15185] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  553.981710][T15204] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2712'.
[  557.880276][T15252] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2729'.
[  558.150289][T15256] netlink: 'syz.5.2726': attribute type 11 has an invalid length.
[  558.224705][T15256] netlink: 'syz.5.2726': attribute type 11 has an invalid length.
[  558.315044][T15256] netlink: 'syz.5.2726': attribute type 11 has an invalid length.
[  559.082590][T15278] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2739'.
[  559.389425][T15282] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2740'.
[  560.660998][T15306] FAULT_INJECTION: forcing a failure.
[  560.660998][T15306] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  560.760564][T15306] CPU: 1 UID: 0 PID: 15306 Comm: syz.5.2749 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  560.771404][T15306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  560.781579][T15306] Call Trace:
[  560.784877][T15306]  <TASK>
[  560.787824][T15306]  dump_stack_lvl+0x16c/0x1f0
[  560.792645][T15306]  should_fail_ex+0x497/0x5b0
[  560.797372][T15306]  _copy_to_user+0x32/0xd0
[  560.801834][T15306]  simple_read_from_buffer+0xd0/0x160
[  560.807268][T15306]  proc_fail_nth_read+0x198/0x270
[  560.812333][T15306]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  560.817934][T15306]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  560.823525][T15306]  vfs_read+0x1df/0xbe0
[  560.827730][T15306]  ? __fget_files+0x1fc/0x3a0
[  560.832439][T15306]  ? __pfx___mutex_lock+0x10/0x10
[  560.837497][T15306]  ? __pfx_vfs_read+0x10/0x10
[  560.842217][T15306]  ? __fget_files+0x206/0x3a0
[  560.846937][T15306]  ksys_read+0x12b/0x250
[  560.851217][T15306]  ? __pfx_ksys_read+0x10/0x10
[  560.856027][T15306]  do_syscall_64+0xcd/0x250
[  560.860564][T15306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  560.866501][T15306] RIP: 0033:0x7fe31238472c
[  560.870946][T15306] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  560.890589][T15306] RSP: 002b:00007fe3130d7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  560.899047][T15306] RAX: ffffffffffffffda RBX: 00007fe312575fa0 RCX: 00007fe31238472c
[  560.907048][T15306] RDX: 000000000000000f RSI: 00007fe3130d70a0 RDI: 0000000000000004
[  560.915053][T15306] RBP: 00007fe3130d7090 R08: 0000000000000000 R09: 0000000000000000
[  560.923055][T15306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  560.931051][T15306] R13: 0000000000000000 R14: 00007fe312575fa0 R15: 00007ffe27704348
[  560.939068][T15306]  </TASK>
[  561.136104][T15316] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2751'.
[  561.928231][T15336] FAULT_INJECTION: forcing a failure.
[  561.928231][T15336] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  561.960465][T15336] CPU: 1 UID: 0 PID: 15336 Comm: syz.1.2758 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  561.971291][T15336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  561.981378][T15336] Call Trace:
[  561.984673][T15336]  <TASK>
[  561.987614][T15336]  dump_stack_lvl+0x16c/0x1f0
[  561.992326][T15336]  should_fail_ex+0x497/0x5b0
[  561.997043][T15336]  _copy_from_user+0x2e/0xd0
[  562.001666][T15336]  kstrtouint_from_user+0xd7/0x1c0
[  562.006801][T15336]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  562.012559][T15336]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  562.018222][T15336]  proc_fail_nth_write+0x84/0x250
[  562.023280][T15336]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  562.028947][T15336]  ? ksys_write+0x12b/0x250
[  562.033489][T15336]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  562.039157][T15336]  vfs_write+0x24c/0x1150
[  562.043521][T15336]  ? __fget_files+0x1fc/0x3a0
[  562.048227][T15336]  ? __pfx___mutex_lock+0x10/0x10
[  562.053285][T15336]  ? __pfx_vfs_write+0x10/0x10
[  562.058107][T15336]  ? __fget_files+0x206/0x3a0
[  562.062824][T15336]  ksys_write+0x12b/0x250
[  562.067184][T15336]  ? __pfx_ksys_write+0x10/0x10
[  562.072074][T15336]  do_syscall_64+0xcd/0x250
[  562.076613][T15336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.082539][T15336] RIP: 0033:0x7f281ab847cf
[  562.086977][T15336] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  562.106617][T15336] RSP: 002b:00007f281b939030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  562.115067][T15336] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f281ab847cf
[  562.123063][T15336] RDX: 0000000000000001 RSI: 00007f281b9390a0 RDI: 0000000000000003
[  562.131059][T15336] RBP: 00007f281b939090 R08: 0000000000000000 R09: 0000000000000000
[  562.139056][T15336] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  562.147048][T15336] R13: 0000000000000001 R14: 00007f281ad76080 R15: 00007ffcf15cf5f8
[  562.155062][T15336]  </TASK>
[  563.210704][T15361] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2764'.
[  565.516143][T15414] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2778'.
[  565.576683][T15417] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2778'.
[  566.142883][T15431] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2787'.
[  566.368868][T15431] Process accounting resumed
[  566.383235][T15431] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15431 comm: syz.2.2787)
[  566.782850][T15439] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15439 comm: syz.2.2789)
[  567.067051][T15446] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15446 comm: syz.2.2792)
[  567.640749][T15460] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2795'.
[  567.700877][T15460] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2795'.
[  567.891268][T15464] FAULT_INJECTION: forcing a failure.
[  567.891268][T15464] name failslab, interval 1, probability 0, space 0, times 0
[  567.965675][T15464] CPU: 0 UID: 0 PID: 15464 Comm: syz.1.2797 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  567.976499][T15464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  567.986581][T15464] Call Trace:
[  567.989884][T15464]  <TASK>
[  567.992846][T15464]  dump_stack_lvl+0x16c/0x1f0
[  567.997562][T15464]  should_fail_ex+0x497/0x5b0
[  568.002279][T15464]  ? fs_reclaim_acquire+0xae/0x150
[  568.007423][T15464]  should_failslab+0xc2/0x120
[  568.012134][T15464]  __kmalloc_noprof+0xce/0x4f0
[  568.016930][T15464]  ? d_absolute_path+0x137/0x1b0
[  568.021903][T15464]  ? tomoyo_encode2+0x100/0x3e0
[  568.026767][T15464]  tomoyo_encode2+0x100/0x3e0
[  568.031459][T15464]  tomoyo_realpath_from_path+0x1a7/0x710
[  568.037110][T15464]  tomoyo_path_number_perm+0x248/0x5b0
[  568.042581][T15464]  ? tomoyo_path_number_perm+0x235/0x5b0
[  568.048225][T15464]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  568.054242][T15464]  ? __pfx_lock_release+0x10/0x10
[  568.059280][T15464]  ? trace_lock_acquire+0x14e/0x1f0
[  568.064488][T15464]  ? lock_acquire+0x2f/0xb0
[  568.068991][T15464]  ? __fget_files+0x40/0x3a0
[  568.073594][T15464]  ? __fget_files+0x206/0x3a0
[  568.078285][T15464]  security_file_ioctl+0x9b/0x240
[  568.083402][T15464]  __x64_sys_ioctl+0xb7/0x200
[  568.088096][T15464]  do_syscall_64+0xcd/0x250
[  568.092611][T15464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  568.098510][T15464] RIP: 0033:0x7f281ab85d19
[  568.102927][T15464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  568.122540][T15464] RSP: 002b:00007f281b95a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  568.130961][T15464] RAX: ffffffffffffffda RBX: 00007f281ad75fa0 RCX: 00007f281ab85d19
[  568.138936][T15464] RDX: 0000000000000000 RSI: 000000100000127e RDI: 0000000000000003
[  568.146906][T15464] RBP: 00007f281b95a090 R08: 0000000000000000 R09: 0000000000000000
[  568.154968][T15464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  568.162943][T15464] R13: 0000000000000000 R14: 00007f281ad75fa0 R15: 00007ffcf15cf5f8
[  568.170929][T15464]  </TASK>
[  568.174061][    C0] vkms_vblank_simulate: vblank timer overrun
[  568.469328][T15464] ERROR: Out of memory at tomoyo_realpath_from_path.
[  569.595019][T15450] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15450 comm: syz.2.2794)
[  569.924432][T15482] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15482 comm: syz.2.2802)
[  570.061410][T15485] FAULT_INJECTION: forcing a failure.
[  570.061410][T15485] name failslab, interval 1, probability 0, space 0, times 0
[  570.120103][T15485] CPU: 1 UID: 0 PID: 15485 Comm: syz.2.2804 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  570.130931][T15485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  570.141016][T15485] Call Trace:
[  570.144313][T15485]  <TASK>
[  570.147261][T15485]  dump_stack_lvl+0x16c/0x1f0
[  570.151973][T15485]  should_fail_ex+0x497/0x5b0
[  570.156677][T15485]  ? fs_reclaim_acquire+0xae/0x150
[  570.161821][T15485]  should_failslab+0xc2/0x120
[  570.166533][T15485]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  570.172380][T15485]  ? __alloc_skb+0x2b3/0x380
[  570.177013][T15485]  __alloc_skb+0x2b3/0x380
[  570.181468][T15485]  ? __pfx___alloc_skb+0x10/0x10
[  570.186437][T15485]  ? lock_acquire+0x2f/0xb0
[  570.190953][T15485]  netlink_alloc_large_skb+0x69/0x130
[  570.196332][T15485]  netlink_sendmsg+0x689/0xd70
[  570.201106][T15485]  ? __pfx_netlink_sendmsg+0x10/0x10
[  570.206404][T15485]  ____sys_sendmsg+0x9ae/0xb40
[  570.211175][T15485]  ? copy_msghdr_from_user+0x10b/0x160
[  570.216642][T15485]  ? __pfx_____sys_sendmsg+0x10/0x10
[  570.221935][T15485]  ? __lock_acquire+0xcc5/0x3c40
[  570.226895][T15485]  ___sys_sendmsg+0x135/0x1e0
[  570.231583][T15485]  ? __pfx____sys_sendmsg+0x10/0x10
[  570.236802][T15485]  ? trace_lock_acquire+0x14e/0x1f0
[  570.242027][T15485]  __sys_sendmmsg+0x201/0x420
[  570.246718][T15485]  ? __pfx___sys_sendmmsg+0x10/0x10
[  570.251937][T15485]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  570.257934][T15485]  ? fput+0x67/0x440
[  570.261841][T15485]  ? ksys_write+0x1ba/0x250
[  570.266348][T15485]  ? __pfx_ksys_write+0x10/0x10
[  570.271209][T15485]  __x64_sys_sendmmsg+0x9c/0x100
[  570.276156][T15485]  ? lockdep_hardirqs_on+0x7c/0x110
[  570.281359][T15485]  do_syscall_64+0xcd/0x250
[  570.285883][T15485]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  570.291782][T15485] RIP: 0033:0x7f51ef385d19
[  570.296201][T15485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  570.315812][T15485] RSP: 002b:00007f51f01ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  570.324230][T15485] RAX: ffffffffffffffda RBX: 00007f51ef575fa0 RCX: 00007f51ef385d19
[  570.332201][T15485] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003
[  570.340187][T15485] RBP: 00007f51f01ab090 R08: 0000000000000000 R09: 0000000000000000
[  570.348161][T15485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  570.356135][T15485] R13: 0000000000000000 R14: 00007f51ef575fa0 R15: 00007ffed3b4d528
[  570.364124][T15485]  </TASK>
[  570.528401][T15485] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15485 comm: syz.2.2804)
[  571.058951][T15492] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15492 comm: syz.2.2806)
[  571.235407][T15497] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2807'.
[  571.287043][T15505] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2807'.
[  572.146978][T15520] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2814'.
[  572.591004][ T5837] Bluetooth: hci3: unexpected event 0x04 length: 49 > 10
[  572.766939][T15500] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15500 comm: syz.2.2809)
[  572.948033][T15530] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15530 comm: syz.2.2821)
[  573.032776][T15537] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2822'.
[  573.070758][T15537] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2822'.
[  573.897118][T15535] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15535 comm: syz.2.2823)
[  574.471599][T15556] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2826'.
[  574.489075][T15548] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15548 comm: syz.2.2827)
[  574.680044][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout
[  575.036817][T15562] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  575.044053][T15563] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  575.084292][T15563] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  575.087822][T15562] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  575.200209][T15562] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  575.206299][T15562] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  575.253264][T15562] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  575.315893][T15572] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2833'.
[  575.355726][T15572] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2833'.
[  575.456221][T15576] Invalid ELF header magic: != ELF
[  575.549634][T15562] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  575.570344][T15565] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2830'.
[  575.814503][T15567] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15567 comm: syz.2.2831)
[  575.916671][T15581] ptrace attach of "./syz-executor exec"[8345] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[15581]
[  575.945572][T15580] netlink: 'syz.5.2834': attribute type 4 has an invalid length.
[  576.103837][T15582] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15582 comm: syz.2.2836)
[  576.830701][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout
[  577.138957][T15589] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15589 comm: syz.2.2839)
[  577.150831][ T5831] Bluetooth: hci4: command 0x0c1a tx timeout
[  577.229961][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout
[  577.236065][ T5831] Bluetooth: hci2: command 0x0419 tx timeout
[  577.349318][T15603] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15603 comm: syz.2.2842)
[  577.488179][T15609] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2843'.
[  577.509615][T15609] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2843'.
[  578.072542][T15586] kexec: Could not allocate control_code_buffer
[  578.436476][T15608] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15608 comm: syz.2.2844)
[  578.558747][T15586] Process accounting paused
[  579.294262][T15623] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15623 comm: syz.2.2849)
[  579.360058][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout
[  580.416476][T15647] nbd: must specify at least one socket
[  580.525218][T15633] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15633 comm: syz.2.2850)
[  580.566979][T15648] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2854'.
[  580.612999][T15648] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2854'.
[  581.236268][T15652] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15652 comm: syz.2.2855)
[  581.399904][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout
[  581.629193][T15665] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15665 comm: syz.2.2858)
[  582.013807][T15676] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15676 comm: syz.2.2862)
[  582.690416][T15627] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15627 comm: syz.2.2849)
[  582.727562][T15692] FAULT_INJECTION: forcing a failure.
[  582.727562][T15692] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  582.771743][T15692] CPU: 0 UID: 0 PID: 15692 Comm: syz.1.2867 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  582.782582][T15692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  582.792663][T15692] Call Trace:
[  582.795957][T15692]  <TASK>
[  582.798903][T15692]  dump_stack_lvl+0x16c/0x1f0
[  582.803616][T15692]  should_fail_ex+0x497/0x5b0
[  582.808335][T15692]  _copy_to_user+0x32/0xd0
[  582.812800][T15692]  con_get_trans_new+0xac/0x100
[  582.817686][T15692]  ? __pfx_con_get_trans_new+0x10/0x10
[  582.823183][T15692]  ? __pfx_stack_trace_save+0x10/0x10
[  582.828649][T15692]  ? bpf_lsm_capable+0x9/0x10
[  582.833356][T15692]  ? security_capable+0x7e/0x260
[  582.838320][T15692]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  582.844231][T15692]  vt_ioctl+0x119b/0x2fd0
[  582.848567][T15692]  ? __pfx_vt_ioctl+0x10/0x10
[  582.853247][T15692]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  582.858900][T15692]  ? tomoyo_path_number_perm+0x190/0x5b0
[  582.864551][T15692]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  582.870545][T15692]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  582.876448][T15692]  ? do_vfs_ioctl+0x513/0x1950
[  582.881226][T15692]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  582.887125][T15692]  ? tty_jobctrl_ioctl+0x152/0xe00
[  582.892299][T15692]  ? __pfx_vt_ioctl+0x10/0x10
[  582.896979][T15692]  tty_ioctl+0x651/0x1640
[  582.901319][T15692]  ? __pfx_tty_ioctl+0x10/0x10
[  582.906101][T15692]  ? __pfx_lock_release+0x10/0x10
[  582.911139][T15692]  ? trace_lock_acquire+0x14e/0x1f0
[  582.916361][T15692]  ? __fget_files+0x206/0x3a0
[  582.921046][T15692]  ? __pfx_tty_ioctl+0x10/0x10
[  582.925818][T15692]  __x64_sys_ioctl+0x190/0x200
[  582.930599][T15692]  do_syscall_64+0xcd/0x250
[  582.935109][T15692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.941007][T15692] RIP: 0033:0x7f281ab85d19
[  582.945420][T15692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  582.965031][T15692] RSP: 002b:00007f281b95a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  582.973451][T15692] RAX: ffffffffffffffda RBX: 00007f281ad75fa0 RCX: 00007f281ab85d19
[  582.981426][T15692] RDX: 0000000000000038 RSI: 0000000000004b69 RDI: 0000000000000003
[  582.989398][T15692] RBP: 00007f281b95a090 R08: 0000000000000000 R09: 0000000000000000
[  582.997370][T15692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  583.005350][T15692] R13: 0000000000000000 R14: 00007f281ad75fa0 R15: 00007ffcf15cf5f8
[  583.013352][T15692]  </TASK>
[  583.095718][T15684] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15684 comm: syz.2.2864)
[  583.522561][T15705] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15705 comm: syz.2.2872)
[  583.993244][T15720] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15720 comm: syz.2.2876)
[  584.258364][T15729] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15729 comm: syz.2.2879)
[  584.317149][T15737] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15737 comm: syz.2.2882)
[  584.368989][T15739] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15739 comm: syz.2.2883)
[  584.432277][T15741] FAULT_INJECTION: forcing a failure.
[  584.432277][T15741] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  584.445481][T15741] CPU: 0 UID: 0 PID: 15741 Comm: syz.2.2884 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  584.456267][T15741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  584.466333][T15741] Call Trace:
[  584.469612][T15741]  <TASK>
[  584.472538][T15741]  dump_stack_lvl+0x16c/0x1f0
[  584.477222][T15741]  should_fail_ex+0x497/0x5b0
[  584.481904][T15741]  _copy_to_user+0x32/0xd0
[  584.486327][T15741]  simple_read_from_buffer+0xd0/0x160
[  584.491706][T15741]  proc_fail_nth_read+0x198/0x270
[  584.496735][T15741]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  584.502325][T15741]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  584.507911][T15741]  vfs_read+0x1df/0xbe0
[  584.512095][T15741]  ? __pfx_vfs_read+0x10/0x10
[  584.516784][T15741]  ? do_sys_openat2+0xb1/0x1e0
[  584.521575][T15741]  ? __sys_sendmsg+0x19a/0x220
[  584.526373][T15741]  ? __pfx___sys_sendmsg+0x10/0x10
[  584.531495][T15741]  ksys_read+0x12b/0x250
[  584.535736][T15741]  ? __pfx_ksys_read+0x10/0x10
[  584.540500][T15741]  do_syscall_64+0xcd/0x250
[  584.545007][T15741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  584.550908][T15741] RIP: 0033:0x7f51ef38472c
[  584.555338][T15741] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  584.575216][T15741] RSP: 002b:00007f51f01ab030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  584.583647][T15741] RAX: ffffffffffffffda RBX: 00007f51ef575fa0 RCX: 00007f51ef38472c
[  584.591623][T15741] RDX: 000000000000000f RSI: 00007f51f01ab0a0 RDI: 0000000000000003
[  584.599601][T15741] RBP: 00007f51f01ab090 R08: 0000000000000000 R09: 0000000000000000
[  584.607669][T15741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  584.615732][T15741] R13: 0000000000000000 R14: 00007f51ef575fa0 R15: 00007ffed3b4d528
[  584.623805][T15741]  </TASK>
[  584.630522][T15741] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15741 comm: syz.2.2884)
[  584.735390][T15744] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15744 comm: syz.2.2885)
[  584.864817][T15747] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15747 comm: syz.2.2886)
[  584.976542][T15749] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15749 comm: syz.2.2888)
[  585.092800][ T5831] Bluetooth: hci4: unexpected event 0x03 length: 72 > 11
[  585.152903][T15751] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15751 comm: syz.2.2889)
[  585.233416][T15753] netlink: 93 bytes leftover after parsing attributes in process `syz.5.2890'.
[  585.253597][ T2908] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  585.384427][ T2908] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  585.547096][ T2908] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  585.652467][ T2908] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  585.992549][ T2908] bridge_slave_1: left allmulticast mode
[  586.002574][ T2908] bridge_slave_1: left promiscuous mode
[  586.014211][ T2908] bridge0: port 2(bridge_slave_1) entered disabled state
[  586.032552][ T2908] bridge_slave_0: left allmulticast mode
[  586.040039][ T2908] bridge_slave_0: left promiscuous mode
[  586.070354][ T5837] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  586.071347][ T2908] bridge0: port 1(bridge_slave_0) entered disabled state
[  586.086048][ T5837] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  586.095658][ T5837] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  586.105332][ T5837] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  586.113553][ T5837] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  586.121130][ T5837] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  587.417635][T15765] syz.5.2895: vmalloc error: size 3444736, failed to allocated page array size 6728, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  587.435470][T15765] CPU: 1 UID: 0 PID: 15765 Comm: syz.5.2895 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  587.446276][T15765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  587.456359][T15765] Call Trace:
[  587.459650][T15765]  <TASK>
[  587.462590][T15765]  dump_stack_lvl+0x16c/0x1f0
[  587.467280][T15765]  warn_alloc+0x24d/0x3a0
[  587.471621][T15765]  ? __pfx_warn_alloc+0x10/0x10
[  587.476486][T15765]  ? __get_vm_area_node+0x1b0/0x2f0
[  587.481693][T15765]  ? __get_vm_area_node+0x1dc/0x2f0
[  587.486938][T15765]  __vmalloc_node_range_noprof+0x1105/0x1530
[  587.492952][T15765]  ? ip_set_sockfn_get+0x185/0xc50
[  587.498082][T15765]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  587.504428][T15765]  ? __get_vm_area_node+0x1b0/0x2f0
[  587.509643][T15765]  ? __get_vm_area_node+0x1dc/0x2f0
[  587.514854][T15765]  __vmalloc_node_range_noprof+0xd85/0x1530
[  587.520759][T15765]  ? ip_set_sockfn_get+0x185/0xc50
[  587.525881][T15765]  ? __pfx___lock_acquire+0x10/0x10
[  587.531110][T15765]  ? ip_set_sockfn_get+0x185/0xc50
[  587.536232][T15765]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  587.542570][T15765]  ? apparmor_capable+0x114/0x1d0
[  587.547610][T15765]  ? ip_set_sockfn_get+0x185/0xc50
[  587.552817][T15765]  vmalloc_noprof+0x6b/0x90
[  587.557332][T15765]  ? ip_set_sockfn_get+0x185/0xc50
[  587.562449][T15765]  ip_set_sockfn_get+0x185/0xc50
[  587.567390][T15765]  ? __pfx_lock_release+0x10/0x10
[  587.572432][T15765]  ? __pfx_ip_set_sockfn_get+0x10/0x10
[  587.577902][T15765]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  587.583904][T15765]  nf_getsockopt+0x79/0xe0
[  587.588335][T15765]  ip_getsockopt+0x18e/0x1e0
[  587.592928][T15765]  ? __pfx_ip_getsockopt+0x10/0x10
[  587.598039][T15765]  ? __schedule+0xe60/0x5ad0
[  587.602635][T15765]  ? __pfx___lock_acquire+0x10/0x10
[  587.607857][T15765]  ipv6_getsockopt+0x230/0x280
[  587.612635][T15765]  ? __pfx_ipv6_getsockopt+0x10/0x10
[  587.617926][T15765]  ? __pfx_mark_lock+0x10/0x10
[  587.622706][T15765]  sctp_getsockopt+0x1d2/0x7ae0
[  587.627568][T15765]  ? hlock_class+0x4e/0x130
[  587.632079][T15765]  ? mark_lock+0xb5/0xc60
[  587.636418][T15765]  ? aa_label_sk_perm+0x19d/0x5a0
[  587.641466][T15765]  ? __pfx_sctp_getsockopt+0x10/0x10
[  587.646760][T15765]  ? __lock_acquire+0x15a9/0x3c40
[  587.651811][T15765]  ? __pfx___lock_acquire+0x10/0x10
[  587.657031][T15765]  ? find_held_lock+0x2d/0x110
[  587.661806][T15765]  ? __might_fault+0x13b/0x190
[  587.666587][T15765]  ? __pfx_lock_release+0x10/0x10
[  587.671632][T15765]  ? trace_lock_acquire+0x14e/0x1f0
[  587.676861][T15765]  ? lock_acquire+0x2f/0xb0
[  587.681394][T15765]  ? __might_fault+0xe3/0x190
[  587.686103][T15765]  ? __might_fault+0xe3/0x190
[  587.691166][T15765]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  587.697082][T15765]  ? do_sock_getsockopt+0x3fe/0x870
[  587.702301][T15765]  do_sock_getsockopt+0x3fe/0x870
[  587.707341][T15765]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  587.712904][T15765]  ? lock_acquire+0x2f/0xb0
[  587.717409][T15765]  ? __fget_files+0x40/0x3a0
[  587.722008][T15765]  ? __fget_files+0x206/0x3a0
[  587.726692][T15765]  __sys_getsockopt+0x12f/0x260
[  587.731555][T15765]  __x64_sys_getsockopt+0xbd/0x160
[  587.736670][T15765]  ? do_syscall_64+0x91/0x250
[  587.741357][T15765]  ? lockdep_hardirqs_on+0x7c/0x110
[  587.746562][T15765]  do_syscall_64+0xcd/0x250
[  587.751087][T15765]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.757077][T15765] RIP: 0033:0x7fe312385d19
[  587.761493][T15765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  587.781111][T15765] RSP: 002b:00007fe3101f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  587.789540][T15765] RAX: ffffffffffffffda RBX: 00007fe312576080 RCX: 00007fe312385d19
[  587.797516][T15765] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 000000000000000d
[  587.805494][T15765] RBP: 00007fe312401a20 R08: 0000000020000040 R09: 0000000000000000
[  587.813467][T15765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  587.821527][T15765] R13: 0000000000000000 R14: 00007fe312576080 R15: 00007ffe27704348
[  587.829515][T15765]  </TASK>
[  587.833618][T15765] Mem-Info:
[  587.836774][T15765] active_anon:42710 inactive_anon:4 isolated_anon:0
[  587.836774][T15765]  active_file:3455 inactive_file:56544 isolated_file:0
[  587.836774][T15765]  unevictable:768 dirty:1128 writeback:0
[  587.836774][T15765]  slab_reclaimable:12177 slab_unreclaimable:107340
[  587.836774][T15765]  mapped:33334 shmem:30279 pagetables:899
[  587.836774][T15765]  sec_pagetables:0 bounce:0
[  587.836774][T15765]  kernel_misc_reclaimable:0
[  587.836774][T15765]  free:1215693 free_pcp:15148 free_cma:0
[  587.882698][T15765] Node 0 active_anon:170876kB inactive_anon:16kB active_file:13820kB inactive_file:226004kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:133412kB dirty:4512kB writeback:0kB shmem:119612kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12016kB pagetables:3572kB sec_pagetables:0kB all_unreclaimable? no
[  587.916048][T15765] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:4kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  587.946719][T15765] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  587.974077][T15765] lowmem_reserve[]: 0 2465 2466 0 0
[  587.979366][T15765] Node 0 DMA32 free:996436kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:171840kB inactive_anon:16kB active_file:13820kB inactive_file:225172kB unevictable:1536kB writepending:4512kB present:3129332kB managed:2551344kB mlocked:0kB bounce:0kB free_pcp:4300kB local_pcp:3536kB free_cma:0kB
[  588.010775][T15765] lowmem_reserve[]: 0 0 0 0 0
[  588.015545][T15765] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:832kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  588.042552][T15765] lowmem_reserve[]: 0 0 0 0 0
[  588.047327][T15765] Node 1 Normal free:3852912kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:53444kB local_pcp:28852kB free_cma:0kB
[  588.076909][T15765] lowmem_reserve[]: 0 0 0 0 0
[  588.084186][T15765] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  588.097686][T15765] Node 0 DMA32: 2*4kB (E) 7128*8kB (UME) 4347*16kB (UME) 2707*32kB (ME) 1631*64kB (ME) 795*128kB (ME) 401*256kB (UME) 167*512kB (UM) 62*1024kB (ME) 18*2048kB (ME) 70*4096kB (UME) = 994584kB
[  588.116672][T15765] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  588.128341][T15765] Node 1 Normal: 217*4kB (UME) 20*8kB (M) 20*16kB (UME) 199*32kB (UME) 120*64kB (UME) 35*128kB (UM) 23*256kB (UM) 13*512kB (UME) 7*1024kB (UM) 4*2048kB (UME) 929*4096kB (M) = 3852964kB
[  588.146922][T15765] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  588.156571][T15765] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  588.166247][T15765] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  588.176025][T15765] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  588.185541][T15765] 91124 total pagecache pages
[  588.190425][T15765] 125 pages in swap cache
[  588.192700][ T5837] Bluetooth: hci0: command tx timeout
[  588.195188][T15765] Free swap  = 118112kB
[  588.204945][T15765] Total swap = 124996kB
[  588.209147][T15765] 2097051 pages RAM
[  588.213108][T15765] 0 pages HighMem/MovableOnly
[  588.217797][T15765] 427365 pages reserved
[  588.222028][T15765] 0 pages cma reserved
[  588.388518][ T2908] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  588.460524][ T2908] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  588.491641][ T2908] bond0 (unregistering): Released all slaves
[  589.520804][ T2908] hsr_slave_0: left promiscuous mode
[  589.607105][ T2908] hsr_slave_1: left promiscuous mode
[  589.615937][ T2908] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  589.649943][ T2908] batman_adv: batadv0: Removing interface: batadv_slave_0
[  589.697537][ T2908] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  589.728211][ T2908] batman_adv: batadv0: Removing interface: batadv_slave_1
[  589.786200][ T2908] veth1_macvtap: left promiscuous mode
[  589.797692][ T2908] veth0_macvtap: left promiscuous mode
[  589.807236][ T2908] veth1_vlan: left promiscuous mode
[  589.830235][ T2908] veth0_vlan: left promiscuous mode
[  590.270048][ T5837] Bluetooth: hci0: command tx timeout
[  591.148436][ T2908] team0 (unregistering): Port device team_slave_1 removed
[  591.222804][ T2908] team0 (unregistering): Port device team_slave_0 removed
[  591.985952][T15865] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2912'.
[  592.157939][T15779] chnl_net:caif_netlink_parms(): no params data found
[  592.350166][ T5837] Bluetooth: hci0: command tx timeout
[  592.438943][T15779] bridge0: port 1(bridge_slave_0) entered blocking state
[  592.471903][T15779] bridge0: port 1(bridge_slave_0) entered disabled state
[  592.490194][T15779] bridge_slave_0: entered allmulticast mode
[  592.502694][T15779] bridge_slave_0: entered promiscuous mode
[  592.527194][T15779] bridge0: port 2(bridge_slave_1) entered blocking state
[  592.546910][T15779] bridge0: port 2(bridge_slave_1) entered disabled state
[  592.580119][T15779] bridge_slave_1: entered allmulticast mode
[  592.587291][T15779] bridge_slave_1: entered promiscuous mode
[  592.782594][T15779] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  592.832797][T15779] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  593.040815][T15779] team0: Port device team_slave_0 added
[  593.067721][T15779] team0: Port device team_slave_1 added
[  593.196651][T15779] batman_adv: batadv0: Adding interface: batadv_slave_0
[  593.223278][T15779] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  593.247935][T15809] warn_unsupported: 3 callbacks suppressed
[  593.247956][T15809] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15809 comm: syz.2.2903)
[  593.300484][T15779] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  593.342895][T15779] batman_adv: batadv0: Adding interface: batadv_slave_1
[  593.362874][T15779] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  593.454619][T15779] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  593.637260][T15779] hsr_slave_0: entered promiscuous mode
[  593.661865][T15779] hsr_slave_1: entered promiscuous mode
[  593.689727][T15779] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  593.700513][T15779] Cannot create hsr debugfs directory
[  594.376988][T15907] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15907 comm: syz.2.2919)
[  594.400046][T15779] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  594.430048][ T5837] Bluetooth: hci0: command tx timeout
[  594.473800][T15779] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  594.564670][T15779] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  594.604188][T15779] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  594.691363][T15946] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2925'.
[  594.751332][T15946] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2925'.
[  594.808148][T15945] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15945 comm: syz.2.2926)
[  594.854345][T15779] 8021q: adding VLAN 0 to HW filter on device bond0
[  594.879359][T15779] 8021q: adding VLAN 0 to HW filter on device team0
[  594.896476][T14759] bridge0: port 1(bridge_slave_0) entered blocking state
[  594.903639][T14759] bridge0: port 1(bridge_slave_0) entered forwarding state
[  594.947336][T14759] bridge0: port 2(bridge_slave_1) entered blocking state
[  594.954538][T14759] bridge0: port 2(bridge_slave_1) entered forwarding state
[  595.045182][T15952] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15952 comm: syz.2.2929)
[  595.073488][T15779] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  595.201349][T15964] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2931'.
[  595.455738][T15968] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15968 comm: syz.2.2930)
[  595.547709][T15779] 8021q: adding VLAN 0 to HW filter on device batadv0
[  595.587155][T15964] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2931'.
[  595.710071][T15984] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15984 comm: syz.2.2932)
[  595.944287][T15995] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 15995 comm: syz.2.2935)
[  596.161520][T16005] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2936'.
[  596.180795][T16005] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2936'.
[  596.386819][T16017] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2938'.
[  596.437370][T15779] veth0_vlan: entered promiscuous mode
[  596.513455][T16002] Process accounting paused
[  596.538839][T15779] veth1_vlan: entered promiscuous mode
[  596.652640][T15779] veth0_macvtap: entered promiscuous mode
[  596.709474][T15779] veth1_macvtap: entered promiscuous mode
[  596.840524][T15779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  596.871461][T15779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  596.895494][T15779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  596.934537][T15779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  596.967234][T15779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  597.022504][T15779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.051178][T15779] batman_adv: batadv0: Interface activated: batadv_slave_0
[  597.074162][T16036] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2942'.
[  597.100257][T15779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  597.104091][T16036] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2942'.
[  597.124242][T16039] FAULT_INJECTION: forcing a failure.
[  597.124242][T16039] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  597.150011][T15779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.179892][T15779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  597.200714][T16039] CPU: 1 UID: 0 PID: 16039 Comm: syz.5.2943 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  597.211537][T16039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  597.221625][T16039] Call Trace:
[  597.225015][T16039]  <TASK>
[  597.227971][T16039]  dump_stack_lvl+0x16c/0x1f0
[  597.232689][T16039]  should_fail_ex+0x497/0x5b0
[  597.237412][T16039]  _copy_from_user+0x2e/0xd0
[  597.242041][T16039]  udmabuf_ioctl+0x21b/0x310
[  597.246668][T16039]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  597.251832][T16039]  ? __fget_files+0x206/0x3a0
[  597.256541][T16039]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  597.261667][T16039]  __x64_sys_ioctl+0x190/0x200
[  597.266450][T16039]  do_syscall_64+0xcd/0x250
[  597.270967][T16039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  597.276872][T16039] RIP: 0033:0x7fe312385d19
[  597.281291][T16039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  597.300909][T16039] RSP: 002b:00007fe3130d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  597.309328][T16039] RAX: ffffffffffffffda RBX: 00007fe312575fa0 RCX: 00007fe312385d19
[  597.317317][T16039] RDX: 0000000020000180 RSI: 0000000040087543 RDI: 0000000000000003
[  597.325300][T16039] RBP: 00007fe3130d7090 R08: 0000000000000000 R09: 0000000000000000
[  597.333280][T16039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  597.341253][T16039] R13: 0000000000000000 R14: 00007fe312575fa0 R15: 00007ffe27704348
[  597.349239][T16039]  </TASK>
[  597.355707][T15779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.373413][T15779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  597.439906][T15779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.490324][T15779] batman_adv: batadv0: Interface activated: batadv_slave_1
[  597.588093][T15779] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  597.619757][T15779] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  597.647357][T15779] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  597.674394][T15779] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  597.834736][T16042] qrtr: Invalid version 220
[  597.955593][T14754] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  598.020224][T14754] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  598.109559][T14758] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  598.117756][T14758] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  598.445125][   T29] audit: type=1800 audit(4294967557.670:47): pid=16054 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2946" name="features" dev="configfs" ino=51204 res=0 errno=0
[  598.574536][T16068] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2947'.
[  598.619944][T16068] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2947'.
[  599.513810][ T5837] Bluetooth: hci2: ACL packet for unknown connection handle 16
[  600.788806][T16134] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2960'.
[  600.851355][T16137] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2960'.
[  602.181429][T16156] netlink: 93 bytes leftover after parsing attributes in process `syz.6.2966'.
[  605.065887][T16205] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2973'.
[  605.118986][T16205] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2973'.
[  606.048123][T16224] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  606.058640][T16224] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  606.068160][T16224] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  606.077123][T16224] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  606.085469][T16224] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  606.093493][T16224] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  607.494311][T16221] chnl_net:caif_netlink_parms(): no params data found
[  607.734651][T16221] bridge0: port 1(bridge_slave_0) entered blocking state
[  607.769111][T16221] bridge0: port 1(bridge_slave_0) entered disabled state
[  607.837410][T16221] bridge_slave_0: entered allmulticast mode
[  607.860310][T16221] bridge_slave_0: entered promiscuous mode
[  607.901108][T16221] bridge0: port 2(bridge_slave_1) entered blocking state
[  607.908330][T16221] bridge0: port 2(bridge_slave_1) entered disabled state
[  607.932228][T16221] bridge_slave_1: entered allmulticast mode
[  607.950445][T16221] bridge_slave_1: entered promiscuous mode
[  607.976118][T16244] ------------[ cut here ]------------
[  607.981923][T16244] WARNING: CPU: 0 PID: 16244 at mm/page_alloc.c:4727 __alloc_pages_noprof+0xeff/0x25b0
[  607.992018][T16244] Modules linked in:
[  607.995948][T16244] CPU: 0 UID: 0 PID: 16244 Comm: syz.6.2980 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  608.007031][T16244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  608.017524][T16244] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  608.023925][T16244] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 0e b3 fe ff e9 69 f9 ff ff c6 05 e1 44 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 9f a2 0c 00 8b 14 24 e9
[  608.044211][T16244] RSP: 0018:ffffc90003d27938 EFLAGS: 00010246
[  608.050795][T16244] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  608.058808][T16244] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0
[  608.067337][T16244] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000
[  608.075842][T16244] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000013
[  608.084143][T16244] R13: 0000000000040cc0 R14: 1ffff920007a4f3b R15: 00000000ffffffff
[  608.092658][T16244] FS:  00007f0f7f0036c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  608.101935][T16244] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  608.108569][T16244] CR2: 0000001b2d01cff8 CR3: 000000003d88a000 CR4: 00000000003526f0
[  608.117745][T16244] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  608.126025][T16244] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  608.134304][T16244] Call Trace:
[  608.137773][T16244]  <TASK>
[  608.140810][T16244]  ? __warn+0xea/0x3c0
[  608.144933][T16244]  ? __alloc_pages_noprof+0xeff/0x25b0
[  608.150499][T16244]  ? report_bug+0x3c0/0x580
[  608.155046][T16244]  ? handle_bug+0x54/0xa0
[  608.159416][T16244]  ? exc_invalid_op+0x17/0x50
[  608.164447][T16244]  ? asm_exc_invalid_op+0x1a/0x20
[  608.169541][T16244]  ? __alloc_pages_noprof+0xeff/0x25b0
[  608.175304][T16244]  ? hlock_class+0x4e/0x130
[  608.179948][T16244]  ? mark_lock+0xb5/0xc60
[  608.184335][T16244]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  608.190299][T16244]  ? find_held_lock+0x2d/0x110
[  608.195102][T16244]  ? aa_file_perm+0x4c6/0xfe0
[  608.199797][T16244]  ? __pfx_lock_release+0x10/0x10
[  608.201405][T16224] Bluetooth: hci1: command tx timeout
[  608.204896][T16244]  ? trace_lock_acquire+0x14e/0x1f0
[  608.215889][T16244]  ? hlock_class+0x4e/0x130
[  608.220534][T16244]  ? __lock_acquire+0x15a9/0x3c40
[  608.225635][T16244]  ___kmalloc_large_node+0x84/0x1b0
[  608.231075][T16244]  __kmalloc_large_node_noprof+0x1c/0x70
[  608.236755][T16244]  ? __pfx___lock_acquire+0x10/0x10
[  608.242242][T16244]  __kmalloc_node_track_caller_noprof.cold+0x5/0x5f
[  608.248913][T16244]  ? nsim_dev_health_break_write+0x9a/0x1e0
[  608.255027][T16244]  memdup_user_nul+0x2b/0x110
[  608.259754][T16244]  nsim_dev_health_break_write+0x9a/0x1e0
[  608.265827][T16244]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[  608.272424][T16244]  ? rcu_is_watching+0x12/0xc0
[  608.277237][T16244]  ? trace_lock_acquire+0x14e/0x1f0
[  608.282598][T16244]  full_proxy_write+0xfb/0x1b0
[  608.287418][T16244]  ? __pfx_full_proxy_write+0x10/0x10
[  608.292885][T16244]  vfs_write+0x24c/0x1150
[  608.297252][T16244]  ? __fget_files+0x1fc/0x3a0
[  608.302055][T16244]  ? __pfx___mutex_lock+0x10/0x10
[  608.307205][T16244]  ? __pfx_vfs_write+0x10/0x10
[  608.312109][T16244]  ? __fget_files+0x206/0x3a0
[  608.316843][T16244]  ksys_write+0x12b/0x250
[  608.321577][T16244]  ? __pfx_ksys_write+0x10/0x10
[  608.326485][T16244]  do_syscall_64+0xcd/0x250
[  608.331400][T16244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  608.337581][T16244] RIP: 0033:0x7f0f7e185d19
[  608.342314][T16244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  608.362141][T16244] RSP: 002b:00007f0f7f003038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  608.370886][T16244] RAX: ffffffffffffffda RBX: 00007f0f7e376080 RCX: 00007f0f7e185d19
[  608.378901][T16244] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  608.387183][T16244] RBP: 00007f0f7e201a20 R08: 0000000000000000 R09: 0000000000000000
[  608.395310][T16244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  608.403503][T16244] R13: 0000000000000000 R14: 00007f0f7e376080 R15: 00007ffc7d5ee358
[  608.411658][T16244]  </TASK>
[  608.414704][T16244] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  608.422016][T16244] CPU: 0 UID: 0 PID: 16244 Comm: syz.6.2980 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  608.432807][T16244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  608.442897][T16244] Call Trace:
[  608.446199][T16244]  <TASK>
[  608.449155][T16244]  dump_stack_lvl+0x3d/0x1f0
[  608.453787][T16244]  panic+0x71d/0x800
[  608.457721][T16244]  ? __pfx_panic+0x10/0x10
[  608.462176][T16244]  ? show_trace_log_lvl+0x29d/0x3d0
[  608.467427][T16244]  ? __alloc_pages_noprof+0xeff/0x25b0
[  608.472932][T16244]  check_panic_on_warn+0xab/0xb0
[  608.477914][T16244]  __warn+0xf6/0x3c0
[  608.481853][T16244]  ? __alloc_pages_noprof+0xeff/0x25b0
[  608.487354][T16244]  report_bug+0x3c0/0x580
[  608.491724][T16244]  handle_bug+0x54/0xa0
[  608.495917][T16244]  exc_invalid_op+0x17/0x50
[  608.500451][T16244]  asm_exc_invalid_op+0x1a/0x20
[  608.505313][T16244] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0
[  608.511395][T16244] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 0e b3 fe ff e9 69 f9 ff ff c6 05 e1 44 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 9f a2 0c 00 8b 14 24 e9
[  608.531019][T16244] RSP: 0018:ffffc90003d27938 EFLAGS: 00010246
[  608.537095][T16244] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  608.545072][T16244] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0
[  608.553056][T16244] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000
[  608.561075][T16244] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000013
[  608.569047][T16244] R13: 0000000000040cc0 R14: 1ffff920007a4f3b R15: 00000000ffffffff
[  608.577045][T16244]  ? hlock_class+0x4e/0x130
[  608.581565][T16244]  ? mark_lock+0xb5/0xc60
[  608.585916][T16244]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  608.591650][T16244]  ? find_held_lock+0x2d/0x110
[  608.596427][T16244]  ? aa_file_perm+0x4c6/0xfe0
[  608.601111][T16244]  ? __pfx_lock_release+0x10/0x10
[  608.606150][T16244]  ? trace_lock_acquire+0x14e/0x1f0
[  608.611361][T16244]  ? hlock_class+0x4e/0x130
[  608.615900][T16244]  ? __lock_acquire+0x15a9/0x3c40
[  608.620947][T16244]  ___kmalloc_large_node+0x84/0x1b0
[  608.626156][T16244]  __kmalloc_large_node_noprof+0x1c/0x70
[  608.631793][T16244]  ? __pfx___lock_acquire+0x10/0x10
[  608.637008][T16244]  __kmalloc_node_track_caller_noprof.cold+0x5/0x5f
[  608.643617][T16244]  ? nsim_dev_health_break_write+0x9a/0x1e0
[  608.649531][T16244]  memdup_user_nul+0x2b/0x110
[  608.654224][T16244]  nsim_dev_health_break_write+0x9a/0x1e0
[  608.659954][T16244]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[  608.666309][T16244]  ? rcu_is_watching+0x12/0xc0
[  608.671102][T16244]  ? trace_lock_acquire+0x14e/0x1f0
[  608.676327][T16244]  full_proxy_write+0xfb/0x1b0
[  608.681108][T16244]  ? __pfx_full_proxy_write+0x10/0x10
[  608.686492][T16244]  vfs_write+0x24c/0x1150
[  608.690836][T16244]  ? __fget_files+0x1fc/0x3a0
[  608.695529][T16244]  ? __pfx___mutex_lock+0x10/0x10
[  608.700564][T16244]  ? __pfx_vfs_write+0x10/0x10
[  608.705351][T16244]  ? __fget_files+0x206/0x3a0
[  608.710043][T16244]  ksys_write+0x12b/0x250
[  608.714378][T16244]  ? __pfx_ksys_write+0x10/0x10
[  608.719244][T16244]  do_syscall_64+0xcd/0x250
[  608.723764][T16244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  608.729687][T16244] RIP: 0033:0x7f0f7e185d19
[  608.734119][T16244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  608.753742][T16244] RSP: 002b:00007f0f7f003038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  608.762185][T16244] RAX: ffffffffffffffda RBX: 00007f0f7e376080 RCX: 00007f0f7e185d19
[  608.770168][T16244] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  608.778155][T16244] RBP: 00007f0f7e201a20 R08: 0000000000000000 R09: 0000000000000000
[  608.786133][T16244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  608.794110][T16244] R13: 0000000000000000 R14: 00007f0f7e376080 R15: 00007ffc7d5ee358
[  608.802100][T16244]  </TASK>
[  608.805393][T16244] Kernel Offset: disabled
[  608.809767][T16244] Rebooting in 86400 seconds..