last executing test programs:

2m37.982456463s ago: executing program 2 (id=1132):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r0 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0)
write$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffffff, &(0x7f0000000180)="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", 0x1000)
write$auto_configfs_file_operations_configfs_internal(r0, &(0x7f0000000140)="8e", 0x1)

2m37.743697185s ago: executing program 2 (id=1135):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8)
sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0xfebf0c436aa031f1)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES64], 0x1ac}}, 0x4100)
recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)
prctl$auto(0x1000000001c, 0x5, 0x4, 0x8, 0x80002)
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
setresuid$auto(0xf5, 0x8000, 0x67)
seccomp$auto(0x1, 0x8, &(0x7f0000000400))
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_SET_WPAN_PHY_NETNS(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)={0x14, r2, 0x1, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x40000)
bind$auto(r0, &(0x7f0000000040)=@qipcrtr={0x2a, 0x4, 0xfffffffe}, 0x6)

2m36.699313867s ago: executing program 2 (id=1140):
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf250200000005002a0001000000080017"], 0x24}, 0x1, 0x0, 0x0, 0xc045}, 0x4)
r0 = open(&(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x8802, 0x32)
mmap$auto(0x1, 0x80000000, 0xa5, 0x16, r0, 0x4)
sendfile$auto(r0, 0x3, 0x0, 0x2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
close_range$auto(0x2, 0x8000, 0x0)
r2 = socket(0xa, 0x2, 0x88)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000280)={'vcan0\x00'})
r4 = semctl$auto(0x4, 0x64, 0x4, 0xffffffffffffff80)
r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SYNC(r5, 0x5001, 0x7)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r5, 0xc004500a, &(0x7f0000000000)=0x5)
bpf$auto(0x0, &(0x7f00000000c0)=@task_fd_query={r4, r5, 0xffffffff, 0x4, 0xa01c, 0x3, r2, 0x3, 0xffffffff7fffffff}, 0xf)
bpf$auto(0x2, &(0x7f00000000c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0x91)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)

2m36.398819877s ago: executing program 2 (id=1142):
r0 = socket(0x1e, 0x5, 0xd3)
close_range$auto(0x2, 0x8, 0x0)
sendmmsg$auto(r0, &(0x7f0000000080)={{&(0x7f0000000100)="669484f7f8a711815851ea4d48a67477f23a08248101868ea6cffa12e6b3273840702e6d96256baf09a83fcf9ad3d848b357b39b2ccd9998d409eb4160962ad627505b75b46cd456acdf38dd09804db7de7a8fcd84b3f5854fe8c54b0351a7a079f270ee3f0cdb6c3f87b67d60c1d65e1ae585a7bce0c1e044968b06ad51c6a4f360d531e948c9ccbb067d3430ee73409774ad10225800f175bd067a79eb577943abc8a96f8b6b4cd2a9006ec7a11ee553a580261a756a903ffc1675729c2148ab7d65b55e42a43a7ae15aaf0fa060d43d", 0x8, &(0x7f0000000040)={&(0x7f0000000200)="f42b02517dea4c7730aea024351d23397186693216781051e69ce033487e11abd2e2da1b914aca11c5b1ec48dd906c76226ac5a9421298318665427f0c4bd257b8cf8bbc890ccdb6b263e3ae1ee6edec2636890df2615ef44ed29f3b00eb60cf3f9d49a5835024f090797609e90c04707ddb7ce218ea2a2e92d300fe52486fedebdb07847cc175ce5e58", 0x1}, 0x3, &(0x7f00000002c0)="9f1cc3cf2ca41f8c2e83daf7cb4f59f000f68874f0c0adeca1da75e9c6e6620686e1ae70a1c890df9d07d5643416fb1ed77f82fb29313ec589f7a51a23036c13c16e6583", 0x10000, 0x7}, 0x7741}, 0x2718, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x1, 0x9)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
ioperm$auto(0x7, 0x6, 0x2)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_udc.2/udc/dummy_udc.2/is_otg\x00', 0x80040, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)=""/17, 0x11)
mseal$auto(0x0, 0x7dda, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@l2tp={0x2, 0x0, @private=0xa010102, 0x2}, 0x4000055)
syz_clone(0x80, 0x0, 0x0, 0x0, 0x0, 0x0)
listen$auto(r0, 0xffc)
accept$auto(0x3, 0x0, 0x0)

2m36.171460987s ago: executing program 2 (id=1144):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
epoll_create$auto(0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_TIOCGDEV2(r0, 0x541b, 0x0)

2m35.9764467s ago: executing program 2 (id=1145):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/snd_aloop.0/sound/card1/number\x00', 0x741180, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)=""/45, 0x2d)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000c00)='/sys/kernel/debug/ieee80211/phy9/total_ps_buffered\x00', 0x8100, 0x0)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008810}, 0x20008000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(r1, 0xfffffffffffff000, 0x4000000000002)
pipe$auto(0x0)
writev$auto(0x8000000000000001, &(0x7f0000000100)={0x0, 0x7}, 0x7b)
pipe$auto(0x0)
tee$auto(0x2000000000000, 0x3, 0x402, 0xa)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1)
mremap$auto(0x21000000, 0x7, 0x3fd6, 0x3, 0x20000000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio1\x00', 0x20b42, 0x0)
r2 = socket(0x2, 0x1, 0x0)
socket(0x1, 0x2, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
ppoll$auto(&(0x7f0000000000)={<r3=>r2, 0x4, 0x5}, 0x7, 0x0, 0x0, 0x8)
setsockopt$auto(r3, 0x6, 0xa, &(0x7f00000002c0)='\xa9[ h=jk\x96\x81kW\x1f\x17\xac]@\xa4\x00\xd1\xf2\xb5\xaf\x03\xf1\x19}\x8a\xebe+(\xc8\xef\x98\xe5DD\"$\x14\xbb#\xd7[\x03\xbe\xfd\x8f\xcdP\xa6\xb7\x19O\xe2\x05\a\x06P3\xf1\r\xd4\x8cuH\xe6u\xc8K\xf8\xc2M\xfc.2Aj\x8cJ\xcb\xe5\xfd\xc4;S\xe1\x96\x06j\xab\x91Ww\x91]Gen\x17\x18<\xeb>\xeb\xd7\x9c\xa3\xa5\x85\xf1\xaf\x98\x91D\tKZ\xec\x85\x84S\xc8\xfd\xd8\xbfY\xd1\x91V\b}', 0x1)
bind$auto(r2, &(0x7f0000000200), 0x6d)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000000), 0x68)
connect$auto(0x3, &(0x7f0000000000), 0x55)
r4 = openat$auto_bridges_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/encoder-0/bridges\x00', 0x8200, 0x0)
read$auto_bridges_fops_(r4, &(0x7f0000000040)=""/5, 0x5)
close$auto(0xffffffffffffffff)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/dynamic_debug/control\x00', 0xaa102, 0x0)
setfsgid$auto(0x9)

2m35.80520653s ago: executing program 32 (id=1145):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/snd_aloop.0/sound/card1/number\x00', 0x741180, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)=""/45, 0x2d)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000c00)='/sys/kernel/debug/ieee80211/phy9/total_ps_buffered\x00', 0x8100, 0x0)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008810}, 0x20008000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(r1, 0xfffffffffffff000, 0x4000000000002)
pipe$auto(0x0)
writev$auto(0x8000000000000001, &(0x7f0000000100)={0x0, 0x7}, 0x7b)
pipe$auto(0x0)
tee$auto(0x2000000000000, 0x3, 0x402, 0xa)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1)
mremap$auto(0x21000000, 0x7, 0x3fd6, 0x3, 0x20000000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio1\x00', 0x20b42, 0x0)
r2 = socket(0x2, 0x1, 0x0)
socket(0x1, 0x2, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
ppoll$auto(&(0x7f0000000000)={<r3=>r2, 0x4, 0x5}, 0x7, 0x0, 0x0, 0x8)
setsockopt$auto(r3, 0x6, 0xa, &(0x7f00000002c0)='\xa9[ h=jk\x96\x81kW\x1f\x17\xac]@\xa4\x00\xd1\xf2\xb5\xaf\x03\xf1\x19}\x8a\xebe+(\xc8\xef\x98\xe5DD\"$\x14\xbb#\xd7[\x03\xbe\xfd\x8f\xcdP\xa6\xb7\x19O\xe2\x05\a\x06P3\xf1\r\xd4\x8cuH\xe6u\xc8K\xf8\xc2M\xfc.2Aj\x8cJ\xcb\xe5\xfd\xc4;S\xe1\x96\x06j\xab\x91Ww\x91]Gen\x17\x18<\xeb>\xeb\xd7\x9c\xa3\xa5\x85\xf1\xaf\x98\x91D\tKZ\xec\x85\x84S\xc8\xfd\xd8\xbfY\xd1\x91V\b}', 0x1)
bind$auto(r2, &(0x7f0000000200), 0x6d)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000000), 0x68)
connect$auto(0x3, &(0x7f0000000000), 0x55)
r4 = openat$auto_bridges_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/encoder-0/bridges\x00', 0x8200, 0x0)
read$auto_bridges_fops_(r4, &(0x7f0000000040)=""/5, 0x5)
close$auto(0xffffffffffffffff)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/dynamic_debug/control\x00', 0xaa102, 0x0)
setfsgid$auto(0x9)

1m44.66112356s ago: executing program 3 (id=1322):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x400004a, 0x0, 0x1, 0x14, 0x580, 0x1)
r0 = socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffefffffffffffa, 0x8000)
openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
write$auto(0x3, 0x0, 0x100082)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
munlock$auto(0x9, 0x29b9)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
write$auto(0x3, 0x0, 0x7fffffff)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp1\x00', 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/adsp1\x00', 0x448135265c842795, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x282, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mkdir$auto(&(0x7f00000001c0)='./file0\x00', 0x0)
mount$auto(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='cifs\x00', 0x8000, &(0x7f0000001580))
sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x20, 0x0, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_VENDOR_DATA={0x9, 0xc5, "45957299be"}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000010}, 0x1)

1m43.079176495s ago: executing program 3 (id=1334):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001c00), 0x60000, 0x0)
openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci0/force_wakeup\x00', 0x88f42, 0x0)
mmap$auto(0x3, 0x100, 0x43, 0x2c89dd2, 0x80, 0x9)
read$auto_tomoyo_self_operations_securityfs_if(r0, &(0x7f0000001c40)=""/105, 0x69)
sysfs$auto(0x2, 0x100000000000038, 0x0)
fsopen$auto(0x0, 0x1)
sysfs$auto(0x5, 0xff, 0xf945)
close_range$auto(0x2, 0x8000, 0x0)
r1 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x7, 0x3, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0, 0x1, 0x3, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x200000000001, 0x0, 0xffffffffefffffff, 0x200000000000004, 0x0, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x4, 0x6, 0xffffffffffffffff, 0x890, 0x8000000000008, 0xfffffffffffffffc, 0x1000, 0xa38, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x4000000000, 0x6]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:00.0/enable\x00', 0x18b042, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x6)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(r0, r0, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/nbd5/rqos/wbt/wb_normal\x00', 0x2000, 0x0)
read$auto(r2, 0x0, 0x3)
open(&(0x7f0000000000)='./file0\x00', 0x141800, 0x1)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/uprobe/perf_event_mux_interval_ms\x00', 0x121102, 0x0)
write$auto(r3, 0x0, 0x800000)

1m42.670397126s ago: executing program 3 (id=1338):
r0 = gettid()
process_vm_writev$auto(r0, &(0x7f0000000000)={0x0, 0x7ff}, 0x3, &(0x7f0000000080)={0x0, 0x800007}, 0x4, 0x0)
socket(0x2a, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0x3, 0x800005411, 0x38)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x18, 0x80000, 0x7ff)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82082, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfff5)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8000, 0x0)
r2 = socket(0xa, 0x2, 0x88)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={0xa, @new_prog_fd=0x77, 0xa, @old_map_fd=r2}, 0x10)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x100000000005, r3, 0x0, 0xfffffffffffffff8}, 0xc)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
setsockopt$auto(0x3, 0x0, 0x12, 0x0, 0x28)
read$auto(0x3, 0x0, 0x80)
cachestat$auto(r1, &(0x7f0000000100)={0x3170, 0x8}, &(0x7f0000000140)={0x7, 0x9, 0x6, 0x2, 0x16b58a51}, 0x3)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
sendmmsg$auto(0x3, 0x0, 0x7, 0x0)
mmap$auto(0x0, 0x2020009, 0x81, 0xeb1, 0xfffffffffffffffa, 0x8000)

1m41.662918554s ago: executing program 3 (id=1346):
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket(0xa, 0x2, 0x0) (async, rerun: 64)
r0 = socket(0xf, 0xa, 0x5) (async, rerun: 64)
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
bpf$auto(0x8, &(0x7f0000000000)=@bpf_attr_7={@link_id=0x3ff, 0x2, 0x5000}, 0xc63) (async, rerun: 64)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async, rerun: 32)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (rerun: 32)
setsockopt$auto(0x0, 0x1, 0x23, &(0x7f0000000000)='\x00', 0xbb) (async, rerun: 32)
sendmsg$auto_HANDSHAKE_CMD_ACCEPT(r0, 0x0, 0x200410d0) (async, rerun: 32)
r1 = syz_clone(0x22208100, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/ram14/queue/logical_block_size\x00', 0x300, 0x0) (rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
socket(0xa, 0x2, 0x0)
r4 = socket(0x10, 0x2, 0x0) (async)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$auto_CTRL_CMD_GETFAMILY(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x24048854}, 0x40) (async)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r4, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004) (async, rerun: 64)
socket(0x10, 0x2, 0x0) (async, rerun: 64)
mmap$auto(0x6, 0x8, 0x1000000002, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
prctl$auto(0x1000000003b, 0xffffffffffffffff, r1, 0x105, 0x7) (async, rerun: 64)
ioperm$auto(0x7, 0x6, 0x2) (async, rerun: 64)
setgroups$auto(0x3, 0x0) (async, rerun: 64)
openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cpu/1/msr\x00', 0x2081, 0x0)
pwritev2$auto(0x7, &(0x7f0000004500)={0x0, 0x7ff}, 0x9, 0x0, 0xffffffff, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000000)=""/129, 0x81) (async)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/ram6/power/autosuspend_delay_ms\x00', 0x80, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000600)=""/4096, 0x1000)

1m41.500975983s ago: executing program 3 (id=1349):
mmap$auto(0x0, 0xe983, 0x9, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6)
futex_waitv$auto(&(0x7f0000000000)={0x8, 0xa, 0x2}, 0x7, 0x0, &(0x7f0000000040)={0x10, 0x7}, 0x5)
mmap$auto(0x9, 0x3, 0x1000000004, 0x16, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x34d5, 0x1, 0x1ff, 0x3, 0x5, 0xce6dc3a, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x200000000001, 0x200000b4, 0x9, 0x8, 0x10007, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84, [0x3, 0x2, 0x0, 0x2, 0x0, 0x2000, 0x0, 0xe, 0xc, 0x0, 0x62bb, 0xffffffffffffffff, 0x8, 0x0, 0x6, 0x0, 0xfffffffffffbfffd, 0x800, 0x10000000000001, 0x10000000000, 0xffffffffffffffff, 0x4, 0xfffffffffffffe00, 0x0, 0x0, 0x5, 0x400000000005b8, 0xffff, 0x0, 0x100, 0x0, 0x6, 0xffffffffffffffff, 0x88e, 0x800000000000b, 0xfffffffffffffffc, 0x8, 0xa38, 0x0, 0x3, 0xfffffffffffffffc, 0x2, 0x7, 0xffffffff, 0xc567, 0x4]}, 0x1fe, 0x200d)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/ip_vs\x00', 0x100, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000080)=""/103, 0x67)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x1, 0x0)
socket(0xa, 0x3, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xa)
socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
ioctl$auto(0x1, 0x8983, 0x4)
ioperm$auto(0xffffffffffff3ddc, 0x400, 0x2)
read$auto(0x3, 0x0, 0x80)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffd0e, &(0x7f00000001c0))
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
tkill$auto(0x1, 0x7)

1m40.866728735s ago: executing program 3 (id=1352):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x5c, r1, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_TX_POWER={0x8, 0xb, 0x1}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x5}, @NL802154_ATTR_SCAN_TYPE={0x5, 0x1f, 0xfb}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x3ff}, @NL802154_ATTR_SCAN_DONE_REASON={0x5, 0x25, 0x3}, @NL802154_ATTR_IFNAME={0x14, 0x4, 'vlan0\x00'}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0x3ff}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20004815}, 0x0)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/fail_futex/probability\x00', 0x4002, 0x0)
mknod$auto(&(0x7f0000000080)=':,\x00', 0xc9, 0xcb)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
mount$auto(&(0x7f0000000000)='vlan0\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd057, 0x0)

1m40.605057188s ago: executing program 33 (id=1352):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x5c, r1, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_TX_POWER={0x8, 0xb, 0x1}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x5}, @NL802154_ATTR_SCAN_TYPE={0x5, 0x1f, 0xfb}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x3ff}, @NL802154_ATTR_SCAN_DONE_REASON={0x5, 0x25, 0x3}, @NL802154_ATTR_IFNAME={0x14, 0x4, 'vlan0\x00'}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0x3ff}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20004815}, 0x0)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/fail_futex/probability\x00', 0x4002, 0x0)
mknod$auto(&(0x7f0000000080)=':,\x00', 0xc9, 0xcb)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
mount$auto(&(0x7f0000000000)='vlan0\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd057, 0x0)

34.245275691s ago: executing program 1 (id=1758):
r0 = bpf$auto(0xfffff001, &(0x7f0000000000)=@bpf_attr_3={0xa332, 0x2, 0x7, 0x3, 0xfffffbff, 0x2, 0x1, 0x4, 0x0, "0108a5172d53c2dc73bf58e1423b2178", <r1=>0x0, 0x9, <r2=>0xffffffffffffffff, 0x81, 0xa, 0x81, 0xb03, 0x0, 0x3ff, 0x7, @attach_prog_fd, 0xb5f3, 0x630, 0x57d, 0x9, 0x8, <r3=>0xffffffffffffffff}, 0xa3)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0xd, 0x8}) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000180), r2)
sendmsg$auto_ILA_CMD_FLUSH(r4, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x48, r5, 0x400, 0x70bd25, 0x25dfdbff, {}, [@ILA_ATTR_CSUM_MODE={0x5, 0x7, 0x5}, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x8}, @ILA_ATTR_LOCATOR_MATCH={0xc, 0x3, 0x3}, @ILA_ATTR_CSUM_MODE={0x5}, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x5}, @ILA_ATTR_IFINDEX={0x8, 0x4, r1}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
fsopen$auto(0x0, 0x1) (async, rerun: 64)
socket(0xa, 0x5, 0x0)
r6 = socket(0xa, 0x801, 0x84)
sysfs$auto(0x3, 0x8000000000000000, 0x4) (async, rerun: 64)
mlock$auto(0x6, 0x9) (rerun: 64)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408) (async)
read$auto_tracing_thresh_fops_trace(r0, &(0x7f0000000300)=""/51, 0x33) (async)
ioperm$auto(0x8, 0x9, 0x5) (async)
fchdir$auto(0xf4400000000) (async)
getsockopt$auto(r6, 0x84, 0x71, 0x0, &(0x7f0000000280)=0x22a) (async)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (async)
connect$auto(r3, &(0x7f00000000c0)=@in={0x2, 0x4e20, @broadcast}, 0x8)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0)
sendfile$auto(r7, r7, 0x0, 0x3) (async)
open(0x0, 0x22040, 0x75) (async)
socket(0x840000000002, 0x3, 0xff) (async)
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer1\x00', 0x8000, 0x0) (async, rerun: 64)
ioctl$auto(0x3, 0x80044df9, 0x38) (async, rerun: 64)
connect$auto(0x3, &(0x7f0000000000), 0x55) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)

32.346168822s ago: executing program 1 (id=1763):
r0 = openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) (async)
r1 = openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
poll$auto(&(0x7f0000000040)={r1, 0x0, 0x8}, 0xe, 0xa)
read$auto(r0, &(0x7f0000000280)='/dev/vga_arbiter\x00', 0x8)

29.726506979s ago: executing program 1 (id=1771):
r0 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0)
read$auto_snd_ctl_f_ops_control(r0, &(0x7f0000000100)=""/4096, 0x1000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8)

26.341391982s ago: executing program 1 (id=1782):
r0 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpageflags\x00', 0x2, 0x0)
read$auto_snd_ctl_f_ops_control(r0, &(0x7f0000000100)=""/4096, 0x1000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0xfffffffffffffffc, 0x80c, 0x4000000000db, 0xebb, 0x3, 0xffffffffffffffff)
io_uring_setup$auto(0x6, 0x0)
lsm_set_self_attr$auto(0x1, 0x0, 0x80, 0x0)
r1 = openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/gid_map\x00', 0x200003, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x80, 0x6, &(0x7f00000003c0)='\x00', 0x0)
socket(0xa, 0x2, 0x3a)
close_range$auto(r1, 0xffffffffffffffff, 0xfffffffa)
r2 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xc, 0x1, 0x5, 0x5, 0x47, 0x32b, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x2, 0x4, 0xb4, 0x9, 0x2, 0xfffe, 0x80, 0x7, 0x0, 0x7, 0x0, 0x200, 0x0, 0xc00000, [0x5, 0x0, 0x0, 0x50100000000000, 0x0, 0xfffffffffffffffc, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x4c, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x400000000005b8, 0x0, 0x0, 0x0, 0x4000000000, 0xffffffff, 0xffffffffffffffff, 0x0, 0x5, 0xfffffffffffffffc, 0x8bd4, 0xa38, 0x8000000000000001, 0x1, 0xfffffffffffffffc, 0x2, 0xfffffffffffffffd, 0x0, 0x0, 0x3]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = socket(0x2, 0x6, 0x0)
open(&(0x7f00009e1000)='./file0\x00', 0xc162, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x541641, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
ioprio_set$auto(0x2, 0x0, 0x8)
acct$auto(&(0x7f0000000040)='\x00')
acct$auto(0x0)
getsockopt$auto(r3, 0x10d, 0xc, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000080", @ANYRES16=0x0, @ANYBLOB="04002abd7000ffdbdf253900000004009c0005003d00060000000d00a680718ce3bd84b5df0a0c00000004004401"], 0x34}}, 0x4c090)
unshare$auto(0x40000080)

18.062624591s ago: executing program 1 (id=1812):
acct$auto(0x0)
connect$auto(0x3, 0x0, 0x55)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x1, 0x0)
syz_clone3(&(0x7f00000003c0)={0x40400, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x20}, &(0x7f0000000180)=""/225, 0xe1, &(0x7f0000000280)=""/96, &(0x7f0000000300)=[0xffffffffffffffff], 0x1}, 0x58)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000740), r0)
socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x40084)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x106)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
signalfd$auto(0xffffffff, 0x0, 0x8)
fremovexattr$auto(0x3, &(0x7f0000000080)='\\-\x00')
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
read$auto(0x3, 0x0, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
writev$auto(0xe, &(0x7f0000000140)={&(0x7f0000000040), 0x8}, 0xe)
madvise$auto(0x0, 0x7ffffffffffffffc, 0xc)
mremap$auto(0x4000, 0x7ff, 0x3fd6, 0x3, 0xfffff000)
close_range$auto(0x2, 0x8000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioprio_get$auto(0x2000000002, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
inotify_add_watch$auto(0x4, 0x0, 0x9)
writev$auto(0xca, 0x0, 0x7e)

9.270207008s ago: executing program 1 (id=1841):
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r0 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000004000), 0x40, 0x0)
ioctl$auto_RNDADDENTROPY2(r0, 0x40085203, 0x0)
move_pages$auto(0x0, 0x8000000000000001, 0x0, 0x0, 0x0, 0x4)
r1 = openat$auto_lsm_ops_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x183800, 0x0)
read$auto_lsm_ops_inode(r1, 0x0, 0x0)
clock_gettime$auto(0xf, &(0x7f0000000080)={0x6a2, 0xce})
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/machinecheck/machinecheck0/monarch_timeout\x00', 0x2, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000040)='3\x00', 0x2)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r4, 0x4b63, 0x4)
mlock$auto(0x2, 0xe)
openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/projid_map\x00', 0x400200, 0x0)
ioctl$auto_def_blk_fops_fs(r3, 0x5386, 0x0)

7.389382003s ago: executing program 5 (id=1849):
socket(0x10, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/f2fs/status\x00', 0xc282, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x401, 0x8000)
read$auto(0x3, 0x0, 0x80)
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, 0x0, 0x103041, 0x0)
write$auto(r0, 0x0, 0xe00000000000000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'veth0_to_hsr\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r1)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000000100)={0x28, r3, 0x1, 0x70bd2a, 0x25dfdc00, {}, [@ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x8800}, 0x4)
socket(0xa, 0x1, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r4 = socket(0xa, 0x1, 0x84)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
getsockopt$auto(r4, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x5, 0x21ea, 0x7ff, 0x3, 0x1, 0x0, 0x800002e}, 0x6f4)
bpf$auto(0x19, 0xfffffffffffffffe, 0x0)
memfd_create$auto(&(0x7f0000000040)='\xff\x89\xb4$:\x80\"\xd1\x12\b\x1b\xb2mA\xcfQ\xe5t\xa8\x1cLZ\xfe|\x03\xb9\x8a\xf5\x11\a\xd5\x99m\x0e\xcc\xff\x96Oo\x87\xca\xe9\x0ey\x99\b_\xac\x7f\xfa\xdf|v\x91H\x06\xae\xd2\xbb\xd2W\x18*+\x86\xcd\xfb\xc1\x1c\ay\xd3\xff\x85f\xbe/\xe3\x90\xd3J\xdbV\xa5=t\xfa\xeb\x83\x8e&d\xf7\xe0\x1b5f\x01\a\xeb\x1fP\xeax\x0f\x95Z\xb6\xca\xc8\x9f\xff\xd6U\xee\xf9\xb3\xd56J^x\xd2\xb4\xa4vu\r\x17{\x7fY\x95\xcc>m\xdc<Z\tb\x02\xe08\xab\xdd\xdc\x122\x8d\xa1$\xcb\xf7\x15\xa0\x9b\xd6\xe9.\xdd\xf1L\xed\xd1\x18\xa7)!@\x01\bL\xf0K\x96Y.\x8f\xd4\x89\xf5r\xbbg\x93P\xa6y\x1a \x17\x8a 8\xb6\f\x9a\xd9\x916\x9f\xd9!\x1c\x19\x04\x1a|\x9fYE\xb4=\x8b\x9ay\xb9\xfd\x91\xd6\x85\x8e\xef\t-\x89\x82dS;\xcaAw\xee~\xa0\xaa\x18.P7\x01\xe3z\xd0in\xa5\x03\xcc\xd2\xfd\xa4\x10\xf8\x12\x92\xba\x91\xe1\xbf\xca\xb9\xc0\x90\xa56*\xb3\xeaj,\xcf\x1b\x94\xb5\xd9t\xeaTs\xe0h\xfd\xe5\xcb.\xa9\x89\xaa\xebd\x948\xc5\x8ds\xde\xa0K\xc1!\xbb\x93\a\xad0\x94\xaci\xe4c\x17\x92\xf7V\x0e\x86\x01^\"\xce\xb3kN\xfa\x93P\xa6QT\xd5[\xb7\xb8rK\x93Z\x81C\x16\x1a\xe9\xf6\xaf\x9b/I[x\x16\r\xdazQ\\\xc1\xe5\xdf\bb\xdbC\a\x1c\x11\xf7\xae.\xa7]\x1b7\xbd0t\xa8\xe4\x83kJ\f\xd0\xcc8i\xe8\n\x8eL\xc9\x1f\xc9\xe0', 0x16)
connect$auto(0x3, &(0x7f0000000140), 0x55)
fstat$auto(0xffffffffffffffff, &(0x7f0000000040)={0xffffffffffffffff, 0x117, 0xd8d3, 0x5, <r5=>0x0, 0xee00, 0x0, 0xffff, 0x9, 0x1, 0x8007, 0xe, 0x5, 0xea, 0x9, 0xff, 0x8})
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_SET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f0000001e00)=ANY=[@ANYBLOB="e19dfdf17c3a4546592b00f4", @ANYRES16=r3, @ANYBLOB="000828bd7000fbdbdf250e000000a30202801002478008000400", @ANYRES32=r0, @ANYBLOB="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", @ANYRES32=r5, @ANYBLOB='\b\x00/\x00', @ANYRES32=r5, @ANYBLOB="5c60b7266ddf499aa672290f63e21b508e3a11c6efe80e9d26428fc603f7a519eaf79c323a88b0f375efc09ad19875dc54d3701ee5141a5d056e06a18f88b99657ceda30f1f59974d3cec9b16bb201ed0c080da5b613dc2eb41532b022ead840fa7a915aa56ba0ff8fafe8b5354be68d6cb0a8133d1c9ecb45e1912250a90d3afeb2702690dee20044000180080003000600000014000200626f6e64300000000000000000000000140002007465616d30000000000000000000000008000300db21000008000100", @ANYRES32=r2, @ANYBLOB="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"], 0x16e0}}, 0x80)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7400fddbdf250300000004000800100003800c0009"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010600bd7000fbdbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810)

6.979432599s ago: executing program 4 (id=1850):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/netfilter/nf_log/7\x00', 0x40902, 0x0)
r1 = socket(0x1, 0x5, 0x1)
connect$auto(r1, &(0x7f0000000000)=@in={0x2, 0x100}, 0x26)
fstat$auto(r0, &(0x7f0000000080)={0x203, 0x0, 0x8000, 0x21, <r2=>0xee00, 0xee01, 0x0, 0x0, 0x0, 0x7fff, 0xffffffffffffffff, 0xd897, 0x8, 0x1, 0x200, 0x9, 0x7fffffff})
ioprio_set$auto(0xd8, r2, 0x7b)

5.702318496s ago: executing program 0 (id=1852):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi5\x00', 0x0, 0x0)
statmount$auto(&(0x7f0000000040)={0x9, @inferred=r0, 0x8000000000000000, 0x9, 0x5}, &(0x7f0000000080)={0x276, 0xffff, 0x2, 0x5, 0x8000, 0x7, 0xfffffffc, 0x800, 0x4, 0x2, 0x12d, 0x7, 0x1, 0x2004, 0x7, 0x1, 0x4, 0x7fff, 0x1, 0x90, 0x9c, 0x180, 0x10001, 0xb7e0, 0x2, 0x59a0, [0x905, 0x7, 0x401, 0x3, 0x0, 0xffff, 0x8, 0x400, 0x60a, 0x2, 0x9, 0x4, 0x40, 0x6, 0x1, 0x7, 0xffff, 0x3, 0x9, 0x7, 0x6, 0xfffffffffffffffe, 0xfffffffffffffffe, 0x7, 0x4, 0x9, 0x1d, 0x81, 0xfff, 0xb, 0xfffffffffffffffc, 0x89f, 0x1, 0x6, 0xb0, 0x3, 0x2, 0xe, 0x2, 0x5, 0x10001, 0x5, 0xfffffffffffffbff, 0x7, 0x7fff], "b7aca44ea2e383428a32c8e77472ea9552"}, 0x84, 0xe44)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80805, 0x0)
socket(0x2, 0x1, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x1fe, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
move_pages$auto(0x1, 0x3, 0x0, 0x0, 0x0, 0x8000000000000000)
keyctl$auto(0x2000000000000018, 0xfffffffffffffffd, 0x0, 0x1, 0xa0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)

5.526406782s ago: executing program 4 (id=1853):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto_def_blk_fops_fs(r0, 0x1261, 0x0)
r1 = socket(0x10, 0x2, 0x0)
r2 = fsopen$auto(&(0x7f0000000140)='/dev/ptp0\x00', 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYBLOB="6a005191"], 0x1ac}}, 0x2004c0c4)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x7ff}, 0x7, 0x4008)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
io_uring_setup$auto(0x40000002c55, 0x0)
r3 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r3, 0x84, 0x7f, 0x0, 0x0)
socket(0x26, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
pkey_free$auto(0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r4)
read$auto(r4, &(0x7f0000000100)='nl80211\x00', 0xbe62)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40050)
r5 = open(&(0x7f00009e1000)='./file0\x00', 0x208162, 0x10)
ftruncate$auto(r5, 0x80)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x9, 0x9}, 0x9}, 0x2, 0x800)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='^\x00\'', @ANYRESDEC], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)

5.061192361s ago: executing program 4 (id=1854):
r0 = openat$auto_userfaultfd_dev_fops_userfaultfd(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0)
epoll_pwait2$auto(r0, &(0x7f0000000040)={0xe03, 0x200}, 0x8, &(0x7f0000000080)={0x101, 0x8}, &(0x7f00000000c0)={0x7}, 0x8)
ioctl$auto(r0, 0x7f, r0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x48480, 0x0)
madvise$auto(0xb, 0x100, 0x0)
ioctl$auto(r0, 0x0, r1)
connect$auto(0xffffffffffffffff, &(0x7f0000000140)=@generic={0x38, "a103b832531d7300e75fd9ee61f5"}, 0x4)
r2 = socketpair$auto(0x12, 0x6, 0x3, &(0x7f0000000180)=0x961)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r2)
connect$auto(r1, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast, 0x4}, 0x5)
uname$auto(&(0x7f0000000240)={"0ac36ba7f3ab0038a1eae7887375a92a7def139a60bab8a7f58f0515b81f745ee91ca90d3bb69c6c15a5b2080bb0edfde9f75d2fa7c22b483b7544e9ce19f4ef8a", "39c32e97a8c03306215aa43572fd7be30f6fb2b4815c4b7278b59e778379971ef3fcb26d54bafd1b1a25e85581adf52c060941e7557b4366bfb0956de0b86dde27", "648bd033cf20fd10544e6ed3f04fb7b3b4271aec2fe44cfbb40e9172b63b619f360708dc9dd56a8ffd3bd8024d919a7f9d3740e524e865bfbd5759402581a1dff3", "4d3f0ed4e828e483a753fa7d1e04726632d82b3c0328f491ba320855489a6ec266c94559bca9fb406febbef0b3b0787284f1948f66431dca9200c9eeaa7ce1117e", "fe042fa1c96d0e1df2fdc0c684af0b512b0733c7e35289584d628aefc750f4f92e4fcda5cd397993095aed8e6d5736327b6cba2064e374ded7812227b557e7adaf", "cbe8c881a12d91462de15c7c490a2b038e83653def4f1c9c69e3062cabc7d768c69c11cda46d171707688541db409e461ff7cd155e349c4682300ceb43f1d06cac"})
r4 = bpf$auto(0x0, &(0x7f0000000400)=@link_update={<r5=>0xffffffffffffffff, @new_prog_fd=<r6=>r0, 0x9, @old_map_fd=<r7=>r0}, 0x3)
ioctl$auto(r1, 0x478, r5)
r8 = openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/thread-self/ns/cgroup\x00', 0x40040, 0x0)
sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(r6, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x5c, r3, 0x400, 0x70bd2a, 0x3ff, {}, [@NL80211_ATTR_S1G_CAPABILITY={0x48, 0x128, "f9be32773149e6230c10535600f7b50846d5fde51d3cef92dcba00e0707dc04135c34c0bca864528663d1a639dcee87c2e00a09a8eeaede8a28a3cd1fd9cc3bd2cb93f94"}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20000800}, 0x40)
sendmsg$auto_NL80211_CMD_GET_REG(r7, &(0x7f0000000700)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x38, r3, 0x4, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'wlan1\x00'}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x3}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x1000}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000018}, 0x40)
read$auto_stat_fops_per_vm_kvm_main(r4, &(0x7f0000000740)=""/74, 0x4a)
r9 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000800), r6)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000840)={'team_slave_1\x00', <r10=>0x0})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000880)={'ip6erspan0\x00', <r11=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000008c0)={'bond_slave_1\x00', <r12=>0x0})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000900)={'bond0\x00', <r13=>0x0})
sendmsg$auto_ETHTOOL_MSG_LINKSTATE_GET(r5, &(0x7f0000000a40)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000940)={0xb8, r9, 0x410, 0x70bd2a, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKSTATE_HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}, @ETHTOOL_A_LINKSTATE_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}]}, @ETHTOOL_A_LINKSTATE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7fff}]}, @ETHTOOL_A_LINKSTATE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x8080}, 0x40080c0)
r14 = socket$nl_generic(0x10, 0x3, 0x10)
rt_sigprocmask$auto(0x8, &(0x7f0000000a80)={0x1125}, &(0x7f0000000ac0)={0x8}, 0x8)
ioctl$auto(r8, 0x7fffffff, r14)
newfstatat$auto(r2, &(0x7f0000000b00)='./file0\x00', &(0x7f0000000b40)={0xe8, 0x80, 0xffff, 0x6, <r15=>0xffffffffffffffff, 0xee00, 0x0, 0x9, 0x10000, 0xffff, 0x0, 0x8001, 0x6, 0xf, 0x4, 0xbd70, 0x8}, 0x5)
statx$auto(r6, &(0x7f0000000c00)='./file0\x00', 0x132e, 0x8f3, &(0x7f0000000c40)={0xffff, 0x81, 0x6, 0xc23, <r16=>0xee00, 0xee01, 0x7, 0x100, 0xfffffffffffffff1, 0x9fb6, 0x101, 0xfff, {0x83, 0xfffffff3}, {0x40, 0xa22}, {0x9, 0x8}, {0xbe2b, 0x800000}, 0x0, 0x81, 0x2, 0x8, 0x9, 0x10, 0x6, 0x8, 0x82, 0x10001, 0x9f, 0x1, [0x1ff, 0x6, 0xb, 0x4, 0x80, 0x2, 0x8000000000000001, 0x2, 0x3]})
setreuid$auto(r15, r16)
madvise$auto(0x9, 0x3, 0x1)

4.924920483s ago: executing program 0 (id=1855):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
statmount$auto(0x0, &(0x7f0000000180)={0x7, 0x4, 0x9, 0x3, 0x30, 0x940, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x4, 0x3, 0xb0, 0x9, 0x2, 0x7fff, 0x5, 0x7fffffff, 0x0, 0x0, 0x2000002, 0x0, 0x2}, 0x1fe, 0x81)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
mprotect$auto(0x0, 0x8000000000000001, 0x6)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
socket(0x10, 0x2, 0xc)
socket(0x28, 0x1, 0x0)
getsockopt$auto(0x4, 0x6, 0x17, 0xfffffffffffffffc, 0x0)
r2 = fcntl$getown(r0, 0x9)
r3 = gettid()
process_vm_writev$auto(r3, &(0x7f0000000000)={0x0, 0x7ff}, 0x3, &(0x7f0000000080)={0x0, 0x800007}, 0x4, 0x0)
syz_clone3(&(0x7f0000001380)={0x10000, &(0x7f0000000000)=<r4=>0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080), {0x800002e}, &(0x7f00000000c0)=""/67, 0x43, &(0x7f0000001400)=""/4096, &(0x7f0000000140)=[0x0, r2, 0xffffffffffffffff, r3, 0x0], 0x5}, 0x58)
process_mrelease$auto(r4, 0x7)

4.774323823s ago: executing program 4 (id=1856):
mmap$auto(0x0, 0x40009, 0x1ff, 0x9b72, 0x7, 0x28000)
r0 = socket(0x2, 0x1, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x4f1, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x810)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
timer_create$auto(0x1, 0x0, 0x0)
timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x9}}, 0x0)
timer_gettime$auto(0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22040, 0x75)
socket(0x840000000002, 0x3, 0xff)
io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace\x00', 0x0, 0x0)
mmap$auto(0x0, 0x9, 0x4000002, 0x16, r1, 0xfffffffffffffffc)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/scsi/sg/allow_dio\x00', 0x101181, 0x0)
write$auto(0x3, 0x0, 0xffd8)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rmdir$auto(&(0x7f0000000000)='./file0\x00')
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x1, 0x1)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0)
close_range$auto(0x2, 0x8, 0x0)

3.250994825s ago: executing program 0 (id=1857):
socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x25}}, 0x6b)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r0, &(0x7f0000003b00)={0x0, 0x0, &(0x7f0000003ac0)={&(0x7f0000000840)=ANY=[@ANYBLOB=',;\x00\x00', @ANYRES16=r1, @ANYBLOB="8b0a2cbd7000ffd9df25010000000800018004000280103b01"], 0x3b2c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000)

2.49706806s ago: executing program 0 (id=1858):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x14, 0x940, 0x1ffe0, 0x3, 0x6, 0x6, 0x7, 0x5, 0x2, 0x9, 0x6, 0x9, 0x2, 0x3, 0x2, 0x80, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0x7)
r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0)
io_pgetevents$auto(0x3231, 0xffffffff, 0x4, &(0x7f00000000c0)={0xffffffffffffffff, 0x1, 0xa, 0x9}, &(0x7f0000000100)={0x4, 0x3}, &(0x7f00000003c0)={&(0x7f0000000140)={0x400}})
read$auto(r0, 0x0, 0x7fff)
r1 = epoll_create$auto(0x4000000)
read$auto_hwsim_fops_ps_(r1, &(0x7f0000000000)=""/182, 0xb6)
pwritev$auto(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0xb}, 0x7, 0xb6, 0x3)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x14, 0x940, 0x1ffe0, 0x3, 0x6, 0x6, 0x7, 0x5, 0x2, 0x9, 0x6, 0x9, 0x2, 0x3, 0x2, 0x80, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0x7) (async)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0) (async)
io_pgetevents$auto(0x3231, 0xffffffff, 0x4, &(0x7f00000000c0)={0xffffffffffffffff, 0x1, 0xa, 0x9}, &(0x7f0000000100)={0x4, 0x3}, &(0x7f00000003c0)={&(0x7f0000000140)={0x400}}) (async)
read$auto(r0, 0x0, 0x7fff) (async)
epoll_create$auto(0x4000000) (async)
read$auto_hwsim_fops_ps_(r1, &(0x7f0000000000)=""/182, 0xb6) (async)
pwritev$auto(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0xb}, 0x7, 0xb6, 0x3) (async)

1.91511474s ago: executing program 5 (id=1859):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0)
mmap$auto(0x0, 0x2, 0xdb, 0x9b72, 0x6, 0x100000000)
ioctl$auto(0x3, 0x40045612, 0x34)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2b, 0x1, 0x1)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdds\x1cJ\x99\x00:2\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, r0, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x18, &(0x7f0000000040)=@raw_tracepoint={0x8, r1, 0x0, 0xff}, 0x92)

1.487972474s ago: executing program 5 (id=1860):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
mprotect$auto(0x0, 0x8000000000000001, 0x6)
futex$auto(&(0x7f0000000000)=0x400, 0x627, 0x7fff, &(0x7f0000000040)={0x8, 0x855}, &(0x7f0000000080)=0x7fff, 0x5)

1.138114406s ago: executing program 0 (id=1861):
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
r0 = socket(0xa, 0x2, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = open(0x0, 0x22240, 0x155)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000240)=@in={0x2, 0x4e22}, 0x55)
r2 = open(0x0, 0xc162, 0x0)
ftruncate$auto(r2, 0xdaaf)
read$auto_hwsim_fops_group_(r1, &(0x7f0000000000)=""/1, 0x1)
sendfile$auto(r0, 0xffffffffffffffff, 0x0, 0x10000007fffeffa)

833.654495ms ago: executing program 4 (id=1862):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(r0, r0, 0x0) (async)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84) (async)
flistxattr$auto(0x3, 0x0, 0x3) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r1 = fcntl$auto(0xffffffffffffffff, 0x5, 0x9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x0, 0x0)
ioctl$auto_TIOCSTI2(r2, 0x5402, 0x0) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/sctp/remaddr\x00', 0xb00, 0x0) (async)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, 0x0, 0xc800) (async)
madvise$auto(0x200, 0xffffffffffff0005, 0x7) (async)
ppoll$auto(&(0x7f00000000c0)={<r4=>r1, 0x40, 0x2bd8}, 0x800, &(0x7f0000000100)={0xfffffffff8000000, 0x1f}, &(0x7f0000000140)={0x9}, 0x8) (async)
write$auto_bm_status_operations_binfmt_misc(0xffffffffffffffff, &(0x7f0000000340)="b7327a", 0x3)
ioctl$auto_PPPIOCSACTIVE(r4, 0x40107446, &(0x7f00000001c0)={0xd, &(0x7f0000000180)={0x9, 0xf0, 0x6, @inferred=r0}}) (async)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x77)
chmod$auto(&(0x7f0000000000)='./file0\x00', 0xf4b6)
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) (async)
pread64$auto(r3, 0x0, 0x594c, 0x9fffffffd)
socket(0x27, 0x5, 0x73) (async)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async)
connect$auto(0x3, &(0x7f0000000080)=@llc={0x1a, 0x337, 0xd, 0x4, 0x95, 0xd, @multicast}, 0x54)

723.048588ms ago: executing program 0 (id=1863):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
mbind$auto(0x4, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
pipe$auto(&(0x7f0000000500)=<r0=>0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
statmount$auto(0x0, &(0x7f0000000680)={0x8, 0x1, 0x9, 0x3, 0x29, 0x940, 0x5366, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x25, 0x1, 0x3)
setsockopt$auto(0x4, 0x2000000000000116, 0x80, 0xfffffffffffffffd, 0x9)
r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
semctl$auto(0x80001ff, 0x804, 0x13, 0x4)
keyctl$auto(0x1, 0x7, 0x100, 0x8, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r5=>0x0})
sendmsg$auto_BATADV_CMD_SET_MESH(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010026bd7000fbdbdf250f00000008000300", @ANYRES32=r5, @ANYBLOB='\b\x00.'], 0x24}, 0x1, 0x0, 0x0, 0xc050}, 0x140000e4)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000640), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_DEL(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r6, 0x1, 0x70bd28, 0x25dfdbff, {}, [@OVS_METER_ATTR_ID={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000480), r7)
sendmsg$auto_GTP_CMD_DELPDP(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="059b8e99082ab67000fbdbdf2501adde6be139285c544faff2cf6bac326a3fda0c662136170aa85de21d752c"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x80)
flock$auto(r0, 0x5)

528.373187ms ago: executing program 5 (id=1864):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000005c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r3=>0x0})
sendmsg$auto_ETHTOOL_MSG_PSE_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x28, r1, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_PSE_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0xffff}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000050}, 0x40d8)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x5, 0x15) (async)
madvise$auto(0x0, 0x5, 0x15)
madvise$auto(0x0, 0x200007, 0x19)

130.177274ms ago: executing program 5 (id=1865):
r0 = openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
open_by_handle_at$auto(r0, &(0x7f0000000040)={0xf4, 0xffffff7f, "b95e7f9f520c09737e12d01d374883b286c3879eaa22c97e94d9d632734e21274514114a9ee73661d47c15eac6001d97f6868f291ee36de3db63731ca9e6eeb7e233842fb4c1b3817fb6a394e8442e8824c3f2713272cacddda3628f65990229a1141f9875b048b6ed5401aed225eb95e6bed75692a97748d8bf6cbd706e5c3ced1c2b5740b57dae8d6cf6272f48653724646bf04954f278923d7ec6bb8fab32770aa9824eb62eaf5ca32ba0cd17779d7f419ce9e7e78020b460098cd0e40abeabea53d410b5f45a6158e847f9b2b7ef219b4dc9a2471cc3e669c71a176ce09084372150b9cf355b69def6a62d42a727fff64038"}, 0x80)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)

95.444286ms ago: executing program 4 (id=1866):
mmap$auto(0x2, 0x20009, 0xdf, 0xffffffffffff8a7f, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
capset$auto(&(0x7f00000001c0)={0x9, <r1=>0xffffffffffffffff}, &(0x7f0000000200)={0x401, 0xfff, 0x3})
prctl$auto(0x72, 0x7, r1, 0x7, 0x7)
r2 = openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/bluetooth/hci7/force_wakeup\x00', 0x204240, 0x0)
close_range$auto(0x0, r2, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x8000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
mmap$auto(0x0, 0x202000d, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x801, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
r4 = getsockopt$auto(0x6, 0x84, 0x25, 0x0, &(0x7f00000000c0)=0x10000)
ioctl$auto(0x3, 0x4b66, r0)
setuid$auto(0x0)
sched_setaffinity$auto(r1, 0x8, &(0x7f00000019c0)=0xc8ae)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), r3)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
ioctl$auto(0xffffffffffffffff, 0x40045564, 0x1f)
r5 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000003fc0)='/dev/bus/usb/017/001\x00', 0xa300, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r5, 0xc0109207, &(0x7f0000000040)={0x0, 0x6, 0x1000})
ioctl$auto_MON_IOCX_MFETCH(r5, 0xc0109207, &(0x7f0000000100)={0x0, 0x4, 0x7})
close_range$auto(0x2, 0x8, 0x0)
read$auto_stat_fops_per_vm_kvm_main(r4, &(0x7f0000000280)=""/4096, 0x1000)
sendmsg$auto_NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x2404c040)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0)

0s ago: executing program 5 (id=1867):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/afs/stats\x00', 0x20200, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000e80)=""/215, 0xd7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), r1)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000b80)='/proc/sys/kernel/kptr_restrict\x00', 0x202, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
sendmmsg$auto(r2, 0x0, 0x3, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2b, 0x1, 0x0)
move_pages$auto(0x0, 0x33b, &(0x7f0000000080)=0x0, 0x0, 0x0, 0x4)
mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000)
r3 = socket(0x2, 0x3, 0xa)
getsockopt$auto(r3, 0x0, 0x29, 0x0, &(0x7f0000000040)=0xdbb)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0)
acct$auto(&(0x7f0000000100)='/proc/sys/kernel/kptr_restrict\x00')
madvise$auto(0x9, 0x6, 0x47)
read$auto(r2, 0x0, 0xb5)

kernel console output (not intermixed with test programs):

  141.048808][ T7424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.056810][ T7424] R13: 0000000000000000 R14: 00007f3e07575fa0 R15: 00007ffd258aa6e8
[  141.064838][ T7424]  </TASK>
[  141.605753][ T7442] FAULT_INJECTION: forcing a failure.
[  141.605753][ T7442] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  141.624865][ T7442] CPU: 0 UID: 0 PID: 7442 Comm: syz.1.327 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  141.635521][ T7442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  141.645609][ T7442] Call Trace:
[  141.648914][ T7442]  <TASK>
[  141.651875][ T7442]  dump_stack_lvl+0x16c/0x1f0
[  141.656595][ T7442]  should_fail_ex+0x497/0x5b0
[  141.661312][ T7442]  ? __pfx_clear_refs_write+0x10/0x10
[  141.666734][ T7442]  ? __pfx_clear_refs_write+0x10/0x10
[  141.672141][ T7442]  _copy_from_user+0x2e/0xd0
[  141.676783][ T7442]  clear_refs_write+0xeb/0xbf0
[  141.681587][ T7442]  ? __pfx___lock_acquire+0x10/0x10
[  141.686838][ T7442]  ? __pfx___lock_acquire+0x10/0x10
[  141.692106][ T7442]  ? __pfx_aa_file_perm+0x10/0x10
[  141.697168][ T7442]  ? __pfx_clear_refs_write+0x10/0x10
[  141.702589][ T7442]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  141.708275][ T7442]  ? rcu_is_watching+0x12/0xc0
[  141.713121][ T7442]  ? trace_lock_acquire+0x14e/0x1f0
[  141.718391][ T7442]  ? __pfx_clear_refs_write+0x10/0x10
[  141.723806][ T7442]  vfs_write+0x24c/0x1150
[  141.728198][ T7442]  ? __fget_files+0x1fc/0x3a0
[  141.732935][ T7442]  ? __pfx___mutex_lock+0x10/0x10
[  141.738033][ T7442]  ? __pfx_vfs_write+0x10/0x10
[  141.742897][ T7442]  ? __fget_files+0x206/0x3a0
[  141.747636][ T7442]  ksys_write+0x12b/0x250
[  141.752095][ T7442]  ? __pfx_ksys_write+0x10/0x10
[  141.757003][ T7442]  do_syscall_64+0xcd/0x250
[  141.761555][ T7442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.767488][ T7442] RIP: 0033:0x7f51bb585d29
[  141.771937][ T7442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.791600][ T7442] RSP: 002b:00007f51bc3d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  141.800059][ T7442] RAX: ffffffffffffffda RBX: 00007f51bb775fa0 RCX: 00007f51bb585d29
[  141.808070][ T7442] RDX: 00000000ffffff4b RSI: 0000000000000000 RDI: 0000000000000004
[  141.816136][ T7442] RBP: 00007f51bc3d2090 R08: 0000000000000000 R09: 0000000000000000
[  141.824137][ T7442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.832150][ T7442] R13: 0000000000000000 R14: 00007f51bb775fa0 R15: 00007ffcf22df5b8
[  141.840172][ T7442]  </TASK>
[  142.274131][ T7457] snd_virmidi snd_virmidi.0: control 5:9:1:IAͺƒ>/Ζ[k<χΞΗmgx­Ž¬<Ϊ5Ίœ+-Cξ°άYΘέ5:0 is already present
[  143.464223][ T7472] FAULT_INJECTION: forcing a failure.
[  143.464223][ T7472] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  143.518996][ T7472] CPU: 1 UID: 0 PID: 7472 Comm: syz.3.334 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  143.529653][ T7472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  143.539739][ T7472] Call Trace:
[  143.543033][ T7472]  <TASK>
[  143.545982][ T7472]  dump_stack_lvl+0x16c/0x1f0
[  143.550688][ T7472]  should_fail_ex+0x497/0x5b0
[  143.555570][ T7472]  _copy_to_user+0x32/0xd0
[  143.560029][ T7472]  simple_read_from_buffer+0xd0/0x160
[  143.565452][ T7472]  proc_fail_nth_read+0x198/0x270
[  143.570527][ T7472]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  143.576121][ T7472]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  143.581700][ T7472]  vfs_read+0x1df/0xbe0
[  143.585886][ T7472]  ? __fget_files+0x1fc/0x3a0
[  143.590600][ T7472]  ? __pfx___mutex_lock+0x10/0x10
[  143.595664][ T7472]  ? __pfx_vfs_read+0x10/0x10
[  143.600381][ T7472]  ? __fget_files+0x206/0x3a0
[  143.605098][ T7472]  ksys_read+0x12b/0x250
[  143.609368][ T7472]  ? __pfx_ksys_read+0x10/0x10
[  143.614166][ T7472]  do_syscall_64+0xcd/0x250
[  143.618718][ T7472]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.624735][ T7472] RIP: 0033:0x7f3e0738473c
[  143.629183][ T7472] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  143.648841][ T7472] RSP: 002b:00007f3e0826c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  143.657380][ T7472] RAX: ffffffffffffffda RBX: 00007f3e07575fa0 RCX: 00007f3e0738473c
[  143.665395][ T7472] RDX: 000000000000000f RSI: 00007f3e0826c0a0 RDI: 0000000000000004
[  143.673397][ T7472] RBP: 00007f3e0826c090 R08: 0000000000000000 R09: 0000000000000000
[  143.681420][ T7472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.689428][ T7472] R13: 0000000000000000 R14: 00007f3e07575fa0 R15: 00007ffd258aa6e8
[  143.697455][ T7472]  </TASK>
[  143.720651][ T7482] FAULT_INJECTION: forcing a failure.
[  143.720651][ T7482] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  143.741379][ T7482] CPU: 1 UID: 0 PID: 7482 Comm: syz.0.336 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  143.752029][ T7482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  143.762123][ T7482] Call Trace:
[  143.765422][ T7482]  <TASK>
[  143.768369][ T7482]  dump_stack_lvl+0x16c/0x1f0
[  143.773076][ T7482]  should_fail_ex+0x497/0x5b0
[  143.777797][ T7482]  _copy_from_iter+0x29b/0x1400
[  143.782715][ T7482]  ? trace_lock_acquire+0x14e/0x1f0
[  143.787961][ T7482]  ? __pfx__copy_from_iter+0x10/0x10
[  143.793284][ T7482]  ? __virt_addr_valid+0x1a4/0x590
[  143.798442][ T7482]  ? __virt_addr_valid+0x5e/0x590
[  143.803499][ T7482]  ? __phys_addr_symbol+0x30/0x80
[  143.808570][ T7482]  ? __check_object_size+0x488/0x710
[  143.813911][ T7482]  file_tty_write.constprop.0+0x48d/0x9a0
[  143.819682][ T7482]  redirected_tty_write+0xcc/0x140
[  143.824839][ T7482]  vfs_write+0x5ae/0x1150
[  143.829197][ T7482]  ? __pfx_redirected_tty_write+0x10/0x10
[  143.834968][ T7482]  ? __pfx_vfs_write+0x10/0x10
[  143.839794][ T7482]  ? __fget_files+0x40/0x3a0
[  143.844450][ T7482]  ksys_write+0x12b/0x250
[  143.848814][ T7482]  ? __pfx_ksys_write+0x10/0x10
[  143.853709][ T7482]  do_syscall_64+0xcd/0x250
[  143.858253][ T7482]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.864190][ T7482] RIP: 0033:0x7fa41a985d29
[  143.868637][ T7482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.888288][ T7482] RSP: 002b:00007fa41b852038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  143.896736][ T7482] RAX: ffffffffffffffda RBX: 00007fa41ab75fa0 RCX: 00007fa41a985d29
[  143.904734][ T7482] RDX: 000000000000002b RSI: 0000000020000840 RDI: 0000000000000003
[  143.912735][ T7482] RBP: 00007fa41b852090 R08: 0000000000000000 R09: 0000000000000000
[  143.920738][ T7482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.928738][ T7482] R13: 0000000000000000 R14: 00007fa41ab75fa0 R15: 00007ffd9c5b6d68
[  143.936756][ T7482]  </TASK>
[  144.135565][ T7485] FAULT_INJECTION: forcing a failure.
[  144.135565][ T7485] name failslab, interval 1, probability 0, space 0, times 0
[  144.236316][ T7485] CPU: 1 UID: 0 PID: 7485 Comm: syz.3.337 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  144.246975][ T7485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  144.257068][ T7485] Call Trace:
[  144.260367][ T7485]  <TASK>
[  144.263321][ T7485]  dump_stack_lvl+0x16c/0x1f0
[  144.268046][ T7485]  should_fail_ex+0x497/0x5b0
[  144.272759][ T7485]  ? fs_reclaim_acquire+0xae/0x150
[  144.277909][ T7485]  should_failslab+0xc2/0x120
[  144.282642][ T7485]  __kmalloc_node_noprof+0xd1/0x520
[  144.287882][ T7485]  ? file_tty_write.constprop.0+0x281/0x9a0
[  144.293816][ T7485]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  144.299314][ T7485]  __kvmalloc_node_noprof+0xad/0x1a0
[  144.304636][ T7485]  file_tty_write.constprop.0+0x6dd/0x9a0
[  144.310484][ T7485]  ? redirected_tty_write+0x1f/0x140
[  144.315813][ T7485]  redirected_tty_write+0xcc/0x140
[  144.320975][ T7485]  vfs_write+0x5ae/0x1150
[  144.325352][ T7485]  ? __pfx_redirected_tty_write+0x10/0x10
[  144.331128][ T7485]  ? __pfx_vfs_write+0x10/0x10
[  144.335932][ T7485]  ? __fget_files+0x40/0x3a0
[  144.340654][ T7485]  ksys_write+0x12b/0x250
[  144.345106][ T7485]  ? __pfx_ksys_write+0x10/0x10
[  144.350008][ T7485]  do_syscall_64+0xcd/0x250
[  144.354563][ T7485]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.360489][ T7485] RIP: 0033:0x7f3e07385d29
[  144.364936][ T7485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.384580][ T7485] RSP: 002b:00007f3e0826c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  144.393047][ T7485] RAX: ffffffffffffffda RBX: 00007f3e07575fa0 RCX: 00007f3e07385d29
[  144.401069][ T7485] RDX: 000000000000002b RSI: 0000000020000840 RDI: 0000000000000003
[  144.409077][ T7485] RBP: 00007f3e0826c090 R08: 0000000000000000 R09: 0000000000000000
[  144.417088][ T7485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.425092][ T7485] R13: 0000000000000000 R14: 00007f3e07575fa0 R15: 00007ffd258aa6e8
[  144.433114][ T7485]  </TASK>
[  145.593512][ T7509] vivid-013: =================  START STATUS  =================
[  145.644857][   T29] audit: type=1804 audit(1734641589.970:4): pid=7514 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.346" name="/newroot/sys/kernel/tracing/error_log" dev="tracefs" ino=264 res=1 errno=0
[  145.654391][ T7509] vivid-013: Generate PTS: true
[  145.801808][ T7509] vivid-013: Generate SCR: true
[  145.898576][ T7509] tpg source WxH: 640x360 (Y'CbCr)
[  145.903791][ T7509] tpg field: 1
[  146.026344][ T7509] tpg crop: 640x360@0x0
[  146.030562][ T7509] tpg compose: 640x360@0x0
[  146.068343][ T7509] tpg colorspace: 8
[  146.084552][ T7509] tpg transfer function: 0/0
[  146.124135][ T7509] tpg Y'CbCr encoding: 0/0
[  146.152216][ T7509] tpg quantization: 0/0
[  146.163791][ T7526] FAULT_INJECTION: forcing a failure.
[  146.163791][ T7526] name failslab, interval 1, probability 0, space 0, times 0
[  146.179427][ T7509] tpg RGB range: 0/2
[  146.195298][ T7509] vivid-013: ==================  END STATUS  ==================
[  146.203035][ T7526] CPU: 1 UID: 0 PID: 7526 Comm: syz.1.348 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  146.213658][ T7526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  146.223833][ T7526] Call Trace:
[  146.227130][ T7526]  <TASK>
[  146.230090][ T7526]  dump_stack_lvl+0x16c/0x1f0
[  146.234808][ T7526]  should_fail_ex+0x497/0x5b0
[  146.239534][ T7526]  ? fs_reclaim_acquire+0xae/0x150
[  146.244696][ T7526]  should_failslab+0xc2/0x120
[  146.249407][ T7526]  __kmalloc_node_noprof+0xd1/0x520
[  146.254648][ T7526]  ? file_tty_write.constprop.0+0x281/0x9a0
[  146.260586][ T7526]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  146.266089][ T7526]  __kvmalloc_node_noprof+0xad/0x1a0
[  146.271425][ T7526]  file_tty_write.constprop.0+0x6dd/0x9a0
[  146.277192][ T7526]  ? redirected_tty_write+0x1f/0x140
[  146.282526][ T7526]  redirected_tty_write+0xcc/0x140
[  146.287696][ T7526]  vfs_write+0x5ae/0x1150
[  146.292058][ T7526]  ? __pfx_redirected_tty_write+0x10/0x10
[  146.297832][ T7526]  ? __pfx_vfs_write+0x10/0x10
[  146.302630][ T7526]  ? __fget_files+0x40/0x3a0
[  146.307274][ T7526]  ksys_write+0x12b/0x250
[  146.311643][ T7526]  ? __pfx_ksys_write+0x10/0x10
[  146.316541][ T7526]  do_syscall_64+0xcd/0x250
[  146.321138][ T7526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.327067][ T7526] RIP: 0033:0x7f51bb585d29
[  146.331598][ T7526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.351503][ T7526] RSP: 002b:00007f51bc3d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  146.359965][ T7526] RAX: ffffffffffffffda RBX: 00007f51bb775fa0 RCX: 00007f51bb585d29
[  146.367974][ T7526] RDX: 000000000000002b RSI: 0000000020000840 RDI: 0000000000000003
[  146.375978][ T7526] RBP: 00007f51bc3d2090 R08: 0000000000000000 R09: 0000000000000000
[  146.383977][ T7526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.391973][ T7526] R13: 0000000000000000 R14: 00007f51bb775fa0 R15: 00007ffcf22df5b8
[  146.400003][ T7526]  </TASK>
[  146.915022][ T7533] nbd: must specify at least one socket
[  149.129423][ T7567] netlink: 146 bytes leftover after parsing attributes in process `syz.1.359'.
[  149.227376][ T7574] FAULT_INJECTION: forcing a failure.
[  149.227376][ T7574] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.333202][ T7572] netlink: 5120 bytes leftover after parsing attributes in process `syz.1.359'.
[  149.344681][ T7574] CPU: 1 UID: 0 PID: 7574 Comm: syz.2.360 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  149.355414][ T7574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  149.365475][ T7574] Call Trace:
[  149.368766][ T7574]  <TASK>
[  149.371701][ T7574]  dump_stack_lvl+0x16c/0x1f0
[  149.376389][ T7574]  should_fail_ex+0x497/0x5b0
[  149.381076][ T7574]  _copy_from_iter+0x29b/0x1400
[  149.385936][ T7574]  ? trace_lock_acquire+0x14e/0x1f0
[  149.391149][ T7574]  ? __pfx__copy_from_iter+0x10/0x10
[  149.396442][ T7574]  ? __virt_addr_valid+0x1a4/0x590
[  149.401564][ T7574]  ? __virt_addr_valid+0x5e/0x590
[  149.406606][ T7574]  ? __phys_addr_symbol+0x30/0x80
[  149.411643][ T7574]  ? __check_object_size+0x488/0x710
[  149.416954][ T7574]  file_tty_write.constprop.0+0x48d/0x9a0
[  149.422697][ T7574]  redirected_tty_write+0xcc/0x140
[  149.427818][ T7574]  vfs_write+0x5ae/0x1150
[  149.432156][ T7574]  ? __pfx_redirected_tty_write+0x10/0x10
[  149.437885][ T7574]  ? __pfx_vfs_write+0x10/0x10
[  149.442656][ T7574]  ? __fget_files+0x40/0x3a0
[  149.447273][ T7574]  ksys_write+0x12b/0x250
[  149.451606][ T7574]  ? __pfx_ksys_write+0x10/0x10
[  149.456472][ T7574]  do_syscall_64+0xcd/0x250
[  149.460993][ T7574]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.466898][ T7574] RIP: 0033:0x7f9281585d29
[  149.471326][ T7574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.490935][ T7574] RSP: 002b:00007f9282468038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  149.499351][ T7574] RAX: ffffffffffffffda RBX: 00007f9281775fa0 RCX: 00007f9281585d29
[  149.507329][ T7574] RDX: 000000000000002b RSI: 0000000020000840 RDI: 0000000000000003
[  149.515306][ T7574] RBP: 00007f9282468090 R08: 0000000000000000 R09: 0000000000000000
[  149.523283][ T7574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.531258][ T7574] R13: 0000000000000000 R14: 00007f9281775fa0 R15: 00007ffc33f83788
[  149.539262][ T7574]  </TASK>
[  152.110303][ T7616] FAULT_INJECTION: forcing a failure.
[  152.110303][ T7616] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  152.230713][ T7616] CPU: 1 UID: 0 PID: 7616 Comm: syz.0.369 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  152.241368][ T7616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  152.251456][ T7616] Call Trace:
[  152.254758][ T7616]  <TASK>
[  152.257715][ T7616]  dump_stack_lvl+0x16c/0x1f0
[  152.262435][ T7616]  should_fail_ex+0x497/0x5b0
[  152.267165][ T7616]  _copy_to_user+0x32/0xd0
[  152.271624][ T7616]  simple_read_from_buffer+0xd0/0x160
[  152.277042][ T7616]  proc_fail_nth_read+0x198/0x270
[  152.282096][ T7616]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  152.287662][ T7616]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  152.293218][ T7616]  vfs_read+0x1df/0xbe0
[  152.297377][ T7616]  ? __fget_files+0x1fc/0x3a0
[  152.302059][ T7616]  ? __pfx___mutex_lock+0x10/0x10
[  152.307175][ T7616]  ? __pfx_vfs_read+0x10/0x10
[  152.311864][ T7616]  ? __fget_files+0x206/0x3a0
[  152.316640][ T7616]  ksys_read+0x12b/0x250
[  152.320912][ T7616]  ? __pfx_ksys_read+0x10/0x10
[  152.325696][ T7616]  do_syscall_64+0xcd/0x250
[  152.330217][ T7616]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.336121][ T7616] RIP: 0033:0x7fa41a98473c
[  152.340538][ T7616] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  152.360151][ T7616] RSP: 002b:00007fa41b852030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  152.368571][ T7616] RAX: ffffffffffffffda RBX: 00007fa41ab75fa0 RCX: 00007fa41a98473c
[  152.376544][ T7616] RDX: 000000000000000f RSI: 00007fa41b8520a0 RDI: 0000000000000004
[  152.384521][ T7616] RBP: 00007fa41b852090 R08: 0000000000000000 R09: 0000000000000000
[  152.392498][ T7616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.400473][ T7616] R13: 0000000000000000 R14: 00007fa41ab75fa0 R15: 00007ffd9c5b6d68
[  152.408459][ T7616]  </TASK>
[  154.614738][ T7636] Process accounting resumed
[  155.554672][ T7670] netlink: 206 bytes leftover after parsing attributes in process `syz.3.383'.
[  155.739830][ T7673] FAULT_INJECTION: forcing a failure.
[  155.739830][ T7673] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  155.784009][ T7673] CPU: 1 UID: 0 PID: 7673 Comm: syz.1.384 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  155.794667][ T7673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  155.804749][ T7673] Call Trace:
[  155.808050][ T7673]  <TASK>
[  155.811126][ T7673]  dump_stack_lvl+0x16c/0x1f0
[  155.815852][ T7673]  should_fail_ex+0x497/0x5b0
[  155.820580][ T7673]  _copy_to_user+0x32/0xd0
[  155.825040][ T7673]  simple_read_from_buffer+0xd0/0x160
[  155.830465][ T7673]  proc_fail_nth_read+0x198/0x270
[  155.835538][ T7673]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  155.841134][ T7673]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  155.846724][ T7673]  vfs_read+0x1df/0xbe0
[  155.850923][ T7673]  ? __fget_files+0x1fc/0x3a0
[  155.855631][ T7673]  ? __pfx___mutex_lock+0x10/0x10
[  155.860693][ T7673]  ? __pfx_vfs_read+0x10/0x10
[  155.865444][ T7673]  ? __fget_files+0x206/0x3a0
[  155.870184][ T7673]  ksys_read+0x12b/0x250
[  155.874466][ T7673]  ? __pfx_ksys_read+0x10/0x10
[  155.879323][ T7673]  do_syscall_64+0xcd/0x250
[  155.883952][ T7673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.889889][ T7673] RIP: 0033:0x7f51bb58473c
[  155.894332][ T7673] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  155.913973][ T7673] RSP: 002b:00007f51bc3d2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  155.922426][ T7673] RAX: ffffffffffffffda RBX: 00007f51bb775fa0 RCX: 00007f51bb58473c
[  155.930430][ T7673] RDX: 000000000000000f RSI: 00007f51bc3d20a0 RDI: 0000000000000004
[  155.938436][ T7673] RBP: 00007f51bc3d2090 R08: 0000000000000000 R09: 0000000000000000
[  155.946437][ T7673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.954530][ T7673] R13: 0000000000000000 R14: 00007f51bb775fa0 R15: 00007ffcf22df5b8
[  155.962557][ T7673]  </TASK>
[  161.971573][ T7767] FAULT_INJECTION: forcing a failure.
[  161.971573][ T7767] name failslab, interval 1, probability 0, space 0, times 0
[  162.016835][ T7767] CPU: 0 UID: 0 PID: 7767 Comm: syz.1.405 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  162.027492][ T7767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  162.037582][ T7767] Call Trace:
[  162.040891][ T7767]  <TASK>
[  162.043845][ T7767]  dump_stack_lvl+0x16c/0x1f0
[  162.048561][ T7767]  should_fail_ex+0x497/0x5b0
[  162.053274][ T7767]  ? fs_reclaim_acquire+0xae/0x150
[  162.058436][ T7767]  should_failslab+0xc2/0x120
[  162.063148][ T7767]  __kmalloc_node_noprof+0xd1/0x520
[  162.068385][ T7767]  ? file_tty_write.constprop.0+0x281/0x9a0
[  162.074328][ T7767]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  162.079833][ T7767]  __kvmalloc_node_noprof+0xad/0x1a0
[  162.085162][ T7767]  file_tty_write.constprop.0+0x6dd/0x9a0
[  162.090922][ T7767]  ? redirected_tty_write+0x1f/0x140
[  162.096229][ T7767]  redirected_tty_write+0xcc/0x140
[  162.101358][ T7767]  vfs_write+0x5ae/0x1150
[  162.105696][ T7767]  ? __pfx_redirected_tty_write+0x10/0x10
[  162.111432][ T7767]  ? __pfx_vfs_write+0x10/0x10
[  162.116210][ T7767]  ? __fget_files+0x40/0x3a0
[  162.120838][ T7767]  ksys_write+0x12b/0x250
[  162.125176][ T7767]  ? __pfx_ksys_write+0x10/0x10
[  162.130041][ T7767]  do_syscall_64+0xcd/0x250
[  162.134556][ T7767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.140462][ T7767] RIP: 0033:0x7f51bb585d29
[  162.144881][ T7767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.164588][ T7767] RSP: 002b:00007f51bc3d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  162.173011][ T7767] RAX: ffffffffffffffda RBX: 00007f51bb775fa0 RCX: 00007f51bb585d29
[  162.180992][ T7767] RDX: 0000000000000004 RSI: 0000000020000280 RDI: 0000000000000003
[  162.189061][ T7767] RBP: 00007f51bc3d2090 R08: 0000000000000000 R09: 0000000000000000
[  162.197041][ T7767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.205022][ T7767] R13: 0000000000000000 R14: 00007f51bb775fa0 R15: 00007ffcf22df5b8
[  162.213019][ T7767]  </TASK>
[  163.263993][ T7795] netlink: 342 bytes leftover after parsing attributes in process `syz.0.410'.
[  163.791988][ T7805] netlink: 342 bytes leftover after parsing attributes in process `syz.0.414'.
[  164.206331][ T7812] netlink: zone id is out of range
[  165.324971][ T7837] binder: 7835:7837 ioctl 40044900 800000000000003 returned -22
[  166.912662][ T7857] netlink: 24 bytes leftover after parsing attributes in process `syz.3.428'.
[  168.282005][ T7878] FAULT_INJECTION: forcing a failure.
[  168.282005][ T7878] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.324028][ T7878] CPU: 0 UID: 0 PID: 7878 Comm: syz.2.434 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  168.334691][ T7878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  168.344782][ T7878] Call Trace:
[  168.348082][ T7878]  <TASK>
[  168.351021][ T7878]  dump_stack_lvl+0x16c/0x1f0
[  168.355725][ T7878]  should_fail_ex+0x497/0x5b0
[  168.360432][ T7878]  _copy_to_user+0x32/0xd0
[  168.364873][ T7878]  simple_read_from_buffer+0xd0/0x160
[  168.370268][ T7878]  proc_fail_nth_read+0x198/0x270
[  168.375314][ T7878]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  168.381050][ T7878]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  168.386610][ T7878]  vfs_read+0x1df/0xbe0
[  168.390778][ T7878]  ? __fget_files+0x1fc/0x3a0
[  168.395464][ T7878]  ? __pfx___mutex_lock+0x10/0x10
[  168.400508][ T7878]  ? __pfx_vfs_read+0x10/0x10
[  168.405207][ T7878]  ? __fget_files+0x206/0x3a0
[  168.409917][ T7878]  ksys_read+0x12b/0x250
[  168.414175][ T7878]  ? __pfx_ksys_read+0x10/0x10
[  168.418959][ T7878]  do_syscall_64+0xcd/0x250
[  168.423505][ T7878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.429420][ T7878] RIP: 0033:0x7f928158473c
[  168.433842][ T7878] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  168.453725][ T7878] RSP: 002b:00007f9282468030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  168.462148][ T7878] RAX: ffffffffffffffda RBX: 00007f9281775fa0 RCX: 00007f928158473c
[  168.470133][ T7878] RDX: 000000000000000f RSI: 00007f92824680a0 RDI: 0000000000000004
[  168.478112][ T7878] RBP: 00007f9282468090 R08: 0000000000000000 R09: 0000000000000000
[  168.486094][ T7878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  168.494071][ T7878] R13: 0000000000000000 R14: 00007f9281775fa0 R15: 00007ffc33f83788
[  168.502065][ T7878]  </TASK>
[  169.636945][ T7901] FAULT_INJECTION: forcing a failure.
[  169.636945][ T7901] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  169.754361][ T7901] CPU: 1 UID: 0 PID: 7901 Comm: syz.3.440 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  169.765199][ T7901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  169.775473][ T7901] Call Trace:
[  169.778781][ T7901]  <TASK>
[  169.781748][ T7901]  dump_stack_lvl+0x16c/0x1f0
[  169.786477][ T7901]  should_fail_ex+0x497/0x5b0
[  169.791211][ T7901]  ? fs_reclaim_acquire+0xae/0x150
[  169.796455][ T7901]  should_fail_alloc_page+0xe7/0x130
[  169.801796][ T7901]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  169.807991][ T7901]  ? find_held_lock+0x2d/0x110
[  169.812785][ T7901]  __alloc_pages_noprof+0x190/0x25b0
[  169.818113][ T7901]  ? hlock_class+0x4e/0x130
[  169.822644][ T7901]  ? mark_lock+0xb5/0xc60
[  169.827098][ T7901]  ? __pfx_mark_lock+0x10/0x10
[  169.831882][ T7901]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  169.837620][ T7901]  ? page_ext_get+0x34/0x310
[  169.842321][ T7901]  ? hlock_class+0x4e/0x130
[  169.846840][ T7901]  ? hlock_class+0x4e/0x130
[  169.851355][ T7901]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  169.857274][ T7901]  ? policy_nodemask+0xea/0x4e0
[  169.862142][ T7901]  alloc_pages_mpol_noprof+0x2c9/0x610
[  169.867617][ T7901]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  169.873619][ T7901]  ? __pfx___lock_acquire+0x10/0x10
[  169.878848][ T7901]  pte_alloc_one+0x20/0x390
[  169.883375][ T7901]  do_pte_missing+0x1ae7/0x3e00
[  169.888255][ T7901]  __handle_mm_fault+0x103c/0x2a40
[  169.893394][ T7901]  ? __pfx___handle_mm_fault+0x10/0x10
[  169.898868][ T7901]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  169.904544][ T7901]  ? find_vma+0xc0/0x140
[  169.908872][ T7901]  ? __pfx_find_vma+0x10/0x10
[  169.913557][ T7901]  ? __pfx_mark_lock+0x10/0x10
[  169.918342][ T7901]  handle_mm_fault+0x3fa/0xaa0
[  169.923124][ T7901]  do_user_addr_fault+0x7a3/0x13f0
[  169.928248][ T7901]  exc_page_fault+0x5c/0xc0
[  169.932763][ T7901]  asm_exc_page_fault+0x26/0x30
[  169.937630][ T7901] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  169.943454][ T7901] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  169.963164][ T7901] RSP: 0018:ffffc9000218fbb0 EFLAGS: 00050206
[  169.969259][ T7901] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000001000
[  169.977238][ T7901] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88804af78000
[  169.985214][ T7901] RBP: ffffc9000218fda0 R08: 0000000000000001 R09: ffffed10095ef1ff
[  169.993194][ T7901] R10: ffff88804af78fff R11: 0000000000000000 R12: 0000000000001000
[  170.001176][ T7901] R13: 00007ffffffff000 R14: ffff88804af78000 R15: 0000000000001000
[  170.009175][ T7901]  _copy_from_iter+0x384/0x1400
[  170.014050][ T7901]  ? trace_lock_acquire+0x14e/0x1f0
[  170.019267][ T7901]  ? __pfx__copy_from_iter+0x10/0x10
[  170.024565][ T7901]  ? __virt_addr_valid+0x1a4/0x590
[  170.030038][ T7901]  ? __virt_addr_valid+0x5e/0x590
[  170.035077][ T7901]  ? __phys_addr_symbol+0x30/0x80
[  170.040121][ T7901]  ? __check_object_size+0x488/0x710
[  170.045447][ T7901]  kernfs_fop_write_iter+0x19d/0x500
[  170.050781][ T7901]  vfs_write+0x5ae/0x1150
[  170.055147][ T7901]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  170.060999][ T7901]  ? __pfx___mutex_lock+0x10/0x10
[  170.066051][ T7901]  ? __pfx_vfs_write+0x10/0x10
[  170.070850][ T7901]  ksys_write+0x12b/0x250
[  170.075193][ T7901]  ? __pfx_ksys_write+0x10/0x10
[  170.080059][ T7901]  do_syscall_64+0xcd/0x250
[  170.084581][ T7901]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.090496][ T7901] RIP: 0033:0x7f3e07385d29
[  170.094936][ T7901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.114565][ T7901] RSP: 002b:00007f3e0826c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  170.123170][ T7901] RAX: ffffffffffffffda RBX: 00007f3e07575fa0 RCX: 00007f3e07385d29
[  170.131153][ T7901] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[  170.139135][ T7901] RBP: 00007f3e0826c090 R08: 0000000000000000 R09: 0000000000000000
[  170.147117][ T7901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  170.155097][ T7901] R13: 0000000000000000 R14: 00007f3e07575fa0 R15: 00007ffd258aa6e8
[  170.163093][ T7901]  </TASK>
[  171.060282][ T7926] Invalid ELF header magic: != ELF
[  173.972285][ T7963] FAULT_INJECTION: forcing a failure.
[  173.972285][ T7963] name failslab, interval 1, probability 0, space 0, times 0
[  174.068923][ T7963] CPU: 1 UID: 0 PID: 7963 Comm: syz.3.454 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  174.079690][ T7963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  174.089793][ T7963] Call Trace:
[  174.093193][ T7963]  <TASK>
[  174.096156][ T7963]  dump_stack_lvl+0x16c/0x1f0
[  174.100877][ T7963]  should_fail_ex+0x497/0x5b0
[  174.105594][ T7963]  ? fs_reclaim_acquire+0xae/0x150
[  174.110749][ T7963]  should_failslab+0xc2/0x120
[  174.115468][ T7963]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  174.120877][ T7963]  ? ptlock_alloc+0x1f/0x70
[  174.125423][ T7963]  ptlock_alloc+0x1f/0x70
[  174.129822][ T7963]  pte_alloc_one+0x74/0x390
[  174.134368][ T7963]  do_pte_missing+0x1ae7/0x3e00
[  174.139282][ T7963]  __handle_mm_fault+0x103c/0x2a40
[  174.144454][ T7963]  ? __pfx___handle_mm_fault+0x10/0x10
[  174.149953][ T7963]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  174.155651][ T7963]  ? find_vma+0xc0/0x140
[  174.159924][ T7963]  ? __pfx_find_vma+0x10/0x10
[  174.164623][ T7963]  ? __pfx_mark_lock+0x10/0x10
[  174.169422][ T7963]  handle_mm_fault+0x3fa/0xaa0
[  174.174225][ T7963]  do_user_addr_fault+0x7a3/0x13f0
[  174.179373][ T7963]  exc_page_fault+0x5c/0xc0
[  174.183912][ T7963]  asm_exc_page_fault+0x26/0x30
[  174.188793][ T7963] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  174.194650][ T7963] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  174.214301][ T7963] RSP: 0018:ffffc9000ca7fbb0 EFLAGS: 00050206
[  174.220440][ T7963] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000001000
[  174.228452][ T7963] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888061ef8000
[  174.236460][ T7963] RBP: ffffc9000ca7fda0 R08: 0000000000000001 R09: ffffed100c3df1ff
[  174.244467][ T7963] R10: ffff888061ef8fff R11: 0000000000000000 R12: 0000000000001000
[  174.252462][ T7963] R13: 00007ffffffff000 R14: ffff888061ef8000 R15: 0000000000001000
[  174.260487][ T7963]  _copy_from_iter+0x384/0x1400
[  174.265392][ T7963]  ? trace_lock_acquire+0x14e/0x1f0
[  174.270655][ T7963]  ? __pfx__copy_from_iter+0x10/0x10
[  174.276071][ T7963]  ? __virt_addr_valid+0x1a4/0x590
[  174.281249][ T7963]  ? __virt_addr_valid+0x5e/0x590
[  174.286321][ T7963]  ? __phys_addr_symbol+0x30/0x80
[  174.291376][ T7963]  ? __check_object_size+0x488/0x710
[  174.296705][ T7963]  kernfs_fop_write_iter+0x19d/0x500
[  174.302056][ T7963]  vfs_write+0x5ae/0x1150
[  174.306428][ T7963]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  174.312271][ T7963]  ? __pfx___mutex_lock+0x10/0x10
[  174.317342][ T7963]  ? __pfx_vfs_write+0x10/0x10
[  174.322172][ T7963]  ksys_write+0x12b/0x250
[  174.326543][ T7963]  ? __pfx_ksys_write+0x10/0x10
[  174.331453][ T7963]  do_syscall_64+0xcd/0x250
[  174.336008][ T7963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.341941][ T7963] RIP: 0033:0x7f3e07385d29
[  174.346396][ T7963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.366039][ T7963] RSP: 002b:00007f3e0826c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  174.374495][ T7963] RAX: ffffffffffffffda RBX: 00007f3e07575fa0 RCX: 00007f3e07385d29
[  174.382506][ T7963] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[  174.390560][ T7963] RBP: 00007f3e0826c090 R08: 0000000000000000 R09: 0000000000000000
[  174.398574][ T7963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  174.406582][ T7963] R13: 0000000000000000 R14: 00007f3e07575fa0 R15: 00007ffd258aa6e8
[  174.414609][ T7963]  </TASK>
[  178.184063][ T7971] vivid-013: =================  START STATUS  =================
[  178.336709][ T7971] vivid-013: Generate PTS: true
[  178.341653][ T7971] vivid-013: Generate SCR: true
[  178.472597][ T7971] tpg source WxH: 640x360 (Y'CbCr)
[  178.504206][ T7971] tpg field: 1
[  178.507633][ T7971] tpg crop: 640x360@0x0
[  178.511805][ T7971] tpg compose: 640x360@0x0
[  178.594118][ T7971] tpg colorspace: 8
[  178.599255][ T7971] tpg transfer function: 0/0
[  178.682922][ T7971] tpg Y'CbCr encoding: 0/0
[  178.774137][ T7971] tpg quantization: 0/0
[  178.778537][ T7971] tpg RGB range: 0/2
[  178.782544][ T7971] vivid-013: ==================  END STATUS  ==================
[  181.827383][ T8021] netlink: 28 bytes leftover after parsing attributes in process `syz.1.471'.
[  181.962369][ T8021] hsr_slave_0: left promiscuous mode
[  182.139647][ T8021] hsr_slave_1: left promiscuous mode
[  184.354437][ T8059] netlink: 28 bytes leftover after parsing attributes in process `syz.0.480'.
[  184.481841][ T8063] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  184.703664][ T8070] Process accounting paused
[  185.074318][ T8074] sd 0:0:1:0: PR command failed: 1026
[  185.086263][ T8074] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  185.103217][ T8074] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  186.055817][ T8036] syz.2.475 (8036) used greatest stack depth: 20128 bytes left
[  187.301425][ T8107] netlink: 342 bytes leftover after parsing attributes in process `syz.1.494'.
[  188.261236][ T8130] tipc: Started in network mode
[  188.272673][ T8130] tipc: Node identity ee00, cluster identity 4711
[  188.288785][ T8130] tipc: Node number set to 60928
[  188.377390][ T8136] vivid-013: =================  START STATUS  =================
[  188.385346][ T8136] vivid-013: Generate PTS: true
[  188.390265][ T8136] vivid-013: Generate SCR: true
[  188.395359][ T8136] tpg source WxH: 640x360 (Y'CbCr)
[  188.400570][ T8136] tpg field: 1
[  188.404125][ T8136] tpg crop: 640x360@0x0
[  188.408434][ T8136] tpg compose: 640x360@0x0
[  188.412884][ T8136] tpg colorspace: 8
[  188.416796][ T8136] tpg transfer function: 0/0
[  188.421494][ T8136] tpg Y'CbCr encoding: 0/0
[  188.426572][ T8136] tpg quantization: 0/0
[  188.431615][ T8136] tpg RGB range: 0/2
[  188.435708][ T8136] vivid-013: ==================  END STATUS  ==================
[  191.213453][   T29] audit: type=1800 audit(1734641635.510:5): pid=8159 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.507" name="lu_gp_id" dev="configfs" ino=17050 res=0 errno=0
[  191.714419][ T8159] __vm_enough_memory: pid: 8159, comm: syz.1.507, bytes: 4503599627366400 not enough memory for the allocation
[  192.181865][ T7894] syz.3.432 (7894) used greatest stack depth: 19328 bytes left
[  194.303747][ T8213] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  194.333622][   T29] audit: type=1800 audit(1734641638.660:6): pid=8216 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.522" name="lu_gp_id" dev="configfs" ino=17122 res=0 errno=0
[  194.708303][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  194.714971][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  194.727254][ T7696] syz.3.387 (7696) used greatest stack depth: 19312 bytes left
[  195.234822][ T8216] __vm_enough_memory: pid: 8216, comm: syz.0.522, bytes: 4503599627366400 not enough memory for the allocation
[  196.743259][ T8244] netlink: 28 bytes leftover after parsing attributes in process `syz.2.530'.
[  196.767678][ T5147] Bluetooth: hci3: command 0x0406 tx timeout
[  196.773779][ T5147] Bluetooth: hci1: command 0x0406 tx timeout
[  196.774062][ T5840] Bluetooth: hci2: command 0x0406 tx timeout
[  196.816840][ T8244] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[  196.990882][ T8244] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode
[  197.724922][ T8260] netlink: 12 bytes leftover after parsing attributes in process `syz.2.534'.
[  197.822884][ T8259] netlink: 12 bytes leftover after parsing attributes in process `syz.2.534'.
[  198.579760][ T8278] Process accounting resumed
[  201.865711][ T8317] netlink: 8 bytes leftover after parsing attributes in process `syz.3.550'.
[  202.494850][ T8334] sock: sock_set_timeout: `syz.0.555' (pid 8334) tries to set negative timeout
[  202.554063][ T8338] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  204.151151][ T8358] Process accounting resumed
[  204.375649][ T8373] netlink: 330 bytes leftover after parsing attributes in process `syz.0.564'.
[  206.895883][ T8441] cifs: Unknown parameter 'ΰ'
[  207.105160][ T8444] mtrr: base(0x100000) is not aligned on a size(0x2e001800000) boundary
[  207.690227][   T29] audit: type=1800 audit(1734641652.020:7): pid=8463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.587" name="dummy_udc" dev="gadgetfs" ino=6506 res=0 errno=0
[  209.599481][ T8491] netlink: 28 bytes leftover after parsing attributes in process `syz.3.596'.
[  209.624581][ T8492] netlink: 28 bytes leftover after parsing attributes in process `syz.3.596'.
[  210.602881][ T8519] netlink: 8 bytes leftover after parsing attributes in process `syz.1.599'.
[  212.715879][ T8562] netlink: 28 bytes leftover after parsing attributes in process `syz.3.610'.
[  213.013444][ T8567] Process accounting resumed
[  213.271328][ T8542] kexec: Could not allocate control_code_buffer
[  214.431349][ T8601] netlink: 28 bytes leftover after parsing attributes in process `syz.3.618'.
[  214.511942][ T8601] bridge_slave_1: left allmulticast mode
[  214.531152][ T8601] bridge_slave_1: left promiscuous mode
[  214.563408][ T8601] bridge0: port 2(bridge_slave_1) entered disabled state
[  214.654745][ T8601] bridge_slave_0: left allmulticast mode
[  214.703874][ T8601] bridge_slave_0: left promiscuous mode
[  214.709678][ T8601] bridge0: port 1(bridge_slave_0) entered disabled state
[  214.879108][ T8591] Process accounting resumed
[  216.734143][   T29] audit: type=1807 audit(1734641661.060:8): UNKNOWN=$ res=0
[  216.754189][   T29] audit: type=1802 audit(1734641661.060:9): pid=8677 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.637" res=0 errno=0
[  216.811858][ T8678] IPVS: length: 1937339183 != 24
[  216.985451][ T8676] ima: policy update failed
[  216.990377][   T29] audit: type=1802 audit(1734641661.320:10): pid=8676 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.637" res=0 errno=0
[  217.061090][ T8686] HfR: entered promiscuous mode
[  217.092261][ T8686] openvswitch: HfR: Dropping previously announced user features
[  217.114353][ T8686] netlink: 4 bytes leftover after parsing attributes in process `syz.3.640'.

getty: ttyS0: read error: Resource temporarily unavailable
[  217.801467][ T8700] dlm: non-version read from control device 0
[  218.252159][ T8709] netlink: 342 bytes leftover after parsing attributes in process `syz.0.648'.
[  218.855525][ T8729] netlink: 4 bytes leftover after parsing attributes in process `syz.0.652'.
[  218.944066][ T8729] netlink: 4 bytes leftover after parsing attributes in process `syz.0.652'.
[  219.488924][ T8751] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  219.534010][ T8751] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  219.567454][ T8753] netlink: 192 bytes leftover after parsing attributes in process `syz.1.660'.
[  219.693021][ T8758] netlink: 20 bytes leftover after parsing attributes in process `syz.0.662'.
[  221.521245][ T8800] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  223.822101][ T8852] Process accounting resumed
[  225.791480][ T8903] Process accounting resumed
[  226.043180][ T8909] Process accounting resumed
[  227.454773][ T8933] netlink: 28 bytes leftover after parsing attributes in process `syz.1.704'.
[  227.566381][ T8933] netdevsim netdevsim1 netdevsim2: entered allmulticast mode
[  228.780830][ T8982] netlink: 4 bytes leftover after parsing attributes in process `syz.3.717'.

syzkaller
syzkaller login: [  228.989547][ T8977] netlink: 28 bytes leftover after parsing attributes in process `syz.2.716'.
[  229.230101][ T8988] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  229.242330][ T8990] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  229.299185][ T8988] File: /dev/ram7 PID: 8988 Comm: syz.3.718
[  229.353890][ T8990] File: /dev/ram7 PID: 8990 Comm: syz.3.718
[  230.066834][ T8977] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  230.174656][ T8977] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  230.260081][ T8977] bond0 (unregistering): Released all slaves
[  231.323286][ T9020] netlink: 4 bytes leftover after parsing attributes in process `syz.1.724'.
[  231.759441][ T9035] lo: entered allmulticast mode
[  231.775171][ T9035] netlink: 28 bytes leftover after parsing attributes in process `syz.1.729'.
[  232.263159][ T9034] lo: left allmulticast mode
[  233.179632][ T9072] netlink: 334 bytes leftover after parsing attributes in process `syz.1.739'.
[  235.414746][ T9123] netlink: 4 bytes leftover after parsing attributes in process `syz.1.753'.
[  235.572268][ T9123] netlink: 4 bytes leftover after parsing attributes in process `syz.1.753'.
[  235.794089][ T9133] netlink: 28 bytes leftover after parsing attributes in process `syz.2.757'.
[  236.799580][ T9146] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  237.583271][ T9185] netlink: 28 bytes leftover after parsing attributes in process `syz.1.770'.
[  237.764045][ T5832] Bluetooth: hci0: command 0x0406 tx timeout
[  238.189868][ T9198] netlink: 4 bytes leftover after parsing attributes in process `syz.3.774'.
[  238.228952][ T9198] netlink: 4 bytes leftover after parsing attributes in process `syz.3.774'.
[  238.395420][ T9186] Invalid ELF header magic: != ELF
[  238.424100][ T9187] Invalid ELF header magic: != ELF
[  238.503596][ T9196] netlink: 8 bytes leftover after parsing attributes in process `syz.2.771'.
[  240.773956][ T9268] netlink: 28 bytes leftover after parsing attributes in process `syz.0.789'.
[  240.904806][ T9268] veth1_macvtap: left promiscuous mode
[  241.283683][ T9258] netlink: 28 bytes leftover after parsing attributes in process `syz.1.783'.
[  242.266726][ T9306] netlink: 36 bytes leftover after parsing attributes in process `syz.0.795'.
[  242.876410][ T9323] Process accounting resumed
[  243.087085][   T29] audit: type=1800 audit(1734641687.420:11): pid=9325 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.800" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0
[  244.960182][ T9365] can: request_module (can-proto-0) failed.
[  245.621648][ T9383] netlink: 28 bytes leftover after parsing attributes in process `syz.1.813'.
[  248.943364][ T9428] netlink: 8 bytes leftover after parsing attributes in process `syz.2.825'.
[  251.439344][ T9471] netlink: 252 bytes leftover after parsing attributes in process `syz.2.835'.
[  253.332484][ T9488] netlink: 4 bytes leftover after parsing attributes in process `syz.1.840'.
[  253.479047][ T9493] Process accounting resumed
[  253.752767][ T9495] netlink: 326 bytes leftover after parsing attributes in process `syz.0.842'.
[  255.078487][ T9518] netlink: 330 bytes leftover after parsing attributes in process `syz.3.850'.
[  255.877756][ T9552] netlink: 330 bytes leftover after parsing attributes in process `syz.2.859'.
[  256.129355][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  256.136276][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  256.357587][ T9565] capability: warning: `syz.0.864' uses 32-bit capabilities (legacy support in use)
[  257.545018][ T9593] netlink: 28 bytes leftover after parsing attributes in process `syz.0.870'.
[  257.611017][ T9593] team0: left allmulticast mode
[  257.621153][ T9593] team_slave_0: left allmulticast mode
[  257.632389][ T9593] team_slave_1: left allmulticast mode
[  257.643604][ T9593] team0: left promiscuous mode
[  257.655948][ T9593] team_slave_0: left promiscuous mode
[  257.667298][ T9593] team_slave_1: left promiscuous mode
[  257.683364][ T9593] bridge0: port 3(team0) entered disabled state
[  257.775428][ T9593] bridge_slave_1: left allmulticast mode
[  257.787888][ T9593] bridge_slave_1: left promiscuous mode
[  257.800328][ T9593] bridge0: port 2(bridge_slave_1) entered disabled state
[  258.267839][ T9593] bridge_slave_0: left allmulticast mode
[  258.273550][ T9593] bridge_slave_0: left promiscuous mode
[  258.286563][ T9593] bridge0: port 1(bridge_slave_0) entered disabled state
[  260.367790][ T9626] bridge0: port 3(bond0) entered blocking state
[  260.384062][ T9626] bridge0: port 3(bond0) entered disabled state
[  260.431597][ T9626] bond0: entered allmulticast mode
[  260.486455][ T9626] bond_slave_0: entered allmulticast mode
[  260.492262][ T9626] bond_slave_1: entered allmulticast mode
[  260.517997][ T9626] bond0: entered promiscuous mode
[  260.535685][ T9626] bond_slave_0: entered promiscuous mode
[  260.558720][ T9626] bond_slave_1: entered promiscuous mode
[  260.575566][ T9626] bridge0: port 3(bond0) entered blocking state
[  260.581956][ T9626] bridge0: port 3(bond0) entered forwarding state
[  261.510506][ T9665] netlink: 28 bytes leftover after parsing attributes in process `syz.0.887'.
[  261.510636][ T9665] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode
[  261.510714][ T9665] mac80211_hwsim hwsim8 wlan0: entered allmulticast mode
[  262.007287][ T9682] netlink: 334 bytes leftover after parsing attributes in process `syz.2.891'.
[  263.177626][ T9705] netlink: 28 bytes leftover after parsing attributes in process `syz.0.896'.
[  263.209029][ T9705] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  263.233476][ T9705] batman_adv: batadv0: Removing interface: batadv_slave_0
[  263.258697][ T9705] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  263.283936][ T9705] batman_adv: batadv0: Removing interface: batadv_slave_1
[  265.878981][ T9733] netlink: 342 bytes leftover after parsing attributes in process `syz.1.901'.
[  266.309749][ T9728] kexec: Could not allocate control_code_buffer
[  267.125664][ T9757] netlink: 326 bytes leftover after parsing attributes in process `syz.2.910'.
[  267.497382][ T9770] sp0: Synchronizing with TNC
[  267.505952][ T9759] netlink: 28 bytes leftover after parsing attributes in process `syz.1.911'.
[  269.430706][ T9814] netlink: 28 bytes leftover after parsing attributes in process `syz.0.922'.
[  271.161842][ T9863] synth uevent: /bus/memstick: unknown uevent action string
[  271.382175][ T9833] Process accounting resumed
[  272.839783][ T9912] sd 0:0:1:0: PR command failed: 1026
[  272.854718][ T9912] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  272.889186][ T9912] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  274.348847][ T9912] kexec: Could not allocate control_code_buffer
[  274.787465][ T9974] netlink: 28 bytes leftover after parsing attributes in process `syz.1.960'.
[  275.117494][ T9979] netlink: 4 bytes leftover after parsing attributes in process `syz.3.963'.
[  275.156801][ T9979] netlink: 28 bytes leftover after parsing attributes in process `syz.3.963'.
[  275.176945][ T9979] netlink: 8 bytes leftover after parsing attributes in process `syz.3.963'.
[  276.374508][T10026] vivid-009: =================  START STATUS  =================
[  276.397466][T10026] vivid-009: Enable Output Cropping: true grabbed
[  276.416226][T10026] vivid-009: Enable Output Composing: true grabbed
[  276.427645][T10026] vivid-009: Enable Output Scaler: true grabbed
[  276.443981][T10026] vivid-009: Tx RGB Quantization Range: Automatic grabbed
[  276.462001][T10026] vivid-009: Transmit Mode: HDMI grabbed
[  276.479180][T10026] vivid-009: Hotplug Present: 0x00000000
[  276.494949][T10026] vivid-009: RxSense Present: 0x00000000
[  276.511073][T10026] vivid-009: EDID Present: 0x00000000
[  276.521205][T10026] vivid-009: ==================  END STATUS  ==================
[  279.961824][ T5834] Bluetooth: hci0: ACL packet too small
[  280.255647][T10079] MTRR 1 not used
[  280.803289][T10126] netlink: 8 bytes leftover after parsing attributes in process `syz.0.993'.
[  281.247942][T10142] netlink: 28 bytes leftover after parsing attributes in process `syz.3.997'.
[  281.376330][T10149] FAULT_INJECTION: forcing a failure.
[  281.376330][T10149] name failslab, interval 1, probability 0, space 0, times 0
[  281.404120][T10149] CPU: 1 UID: 0 PID: 10149 Comm: syz.2.999 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  281.414860][T10149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  281.424923][T10149] Call Trace:
[  281.428238][T10149]  <TASK>
[  281.431214][T10149]  dump_stack_lvl+0x16c/0x1f0
[  281.435910][T10149]  should_fail_ex+0x497/0x5b0
[  281.440606][T10149]  ? fs_reclaim_acquire+0xae/0x150
[  281.445753][T10149]  should_failslab+0xc2/0x120
[  281.450451][T10149]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  281.456286][T10149]  ? __alloc_skb+0x2b3/0x380
[  281.460914][T10149]  __alloc_skb+0x2b3/0x380
[  281.465347][T10149]  ? __pfx___alloc_skb+0x10/0x10
[  281.470293][T10149]  ? __lock_acquire+0xcc5/0x3c40
[  281.475254][T10149]  alloc_skb_with_frags+0xe4/0x850
[  281.480397][T10149]  ? __pfx___lock_acquire+0x10/0x10
[  281.485628][T10149]  ? __pfx_mark_lock+0x10/0x10
[  281.490451][T10149]  ? find_held_lock+0x2d/0x110
[  281.495234][T10149]  sock_alloc_send_pskb+0x7f1/0x980
[  281.500447][T10149]  ? ref_tracker_alloc+0x2ef/0x5b0
[  281.505578][T10149]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  281.511426][T10149]  packet_sendmsg+0x1f70/0x5660
[  281.516306][T10149]  ? __pfx_lock_release+0x10/0x10
[  281.521345][T10149]  ? __pfx___might_resched+0x10/0x10
[  281.526643][T10149]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  281.532549][T10149]  ? __pfx_packet_sendmsg+0x10/0x10
[  281.537765][T10149]  ? aa_file_perm+0x4d5/0xfe0
[  281.542452][T10149]  ? aa_pivotroot+0xbe0/0x10a0
[  281.547237][T10149]  sock_write_iter+0x4fe/0x5b0
[  281.552104][T10149]  ? __pfx_sock_write_iter+0x10/0x10
[  281.557427][T10149]  ? bpf_lsm_file_permission+0x9/0x10
[  281.562828][T10149]  ? security_file_permission+0x71/0x210
[  281.568479][T10149]  vfs_write+0x5ae/0x1150
[  281.572846][T10149]  ? __pfx_sock_write_iter+0x10/0x10
[  281.578166][T10149]  ? __pfx_vfs_write+0x10/0x10
[  281.582965][T10149]  ? __pfx_do_sys_openat2+0x10/0x10
[  281.588197][T10149]  ksys_write+0x207/0x250
[  281.592538][T10149]  ? __pfx_ksys_write+0x10/0x10
[  281.597405][T10149]  do_syscall_64+0xcd/0x250
[  281.601924][T10149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.607833][T10149] RIP: 0033:0x7f9281585d29
[  281.612255][T10149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.632336][T10149] RSP: 002b:00007f9282468038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  281.640765][T10149] RAX: ffffffffffffffda RBX: 00007f9281775fa0 RCX: 00007f9281585d29
[  281.648743][T10149] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000003
[  281.656724][T10149] RBP: 00007f9282468090 R08: 0000000000000000 R09: 0000000000000000
[  281.664719][T10149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  281.672712][T10149] R13: 0000000000000000 R14: 00007f9281775fa0 R15: 00007ffc33f83788
[  281.680797][T10149]  </TASK>
[  281.703073][T10142] team0: Port device team_slave_0 removed
[  282.579477][T10157] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1002'.
[  282.642174][T10157] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  283.770451][T10199] smc: net device syz_tun applied user defined pnetid ETHTOOL
[  284.503150][T10223] FAULT_INJECTION: forcing a failure.
[  284.503150][T10223] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  284.520949][T10223] CPU: 0 UID: 0 PID: 10223 Comm: syz.3.1023 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  284.531787][T10223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  284.541965][T10223] Call Trace:
[  284.545288][T10223]  <TASK>
[  284.548244][T10223]  dump_stack_lvl+0x16c/0x1f0
[  284.553059][T10223]  should_fail_ex+0x497/0x5b0
[  284.557797][T10223]  _copy_from_iter+0x29b/0x1400
[  284.562707][T10223]  ? trace_lock_acquire+0x14e/0x1f0
[  284.567963][T10223]  ? __pfx__copy_from_iter+0x10/0x10
[  284.573299][T10223]  ? __virt_addr_valid+0x1a4/0x590
[  284.578503][T10223]  ? __virt_addr_valid+0x5e/0x590
[  284.583844][T10223]  ? __phys_addr_symbol+0x30/0x80
[  284.588919][T10223]  ? __check_object_size+0x488/0x710
[  284.594262][T10223]  skb_copy_datagram_from_iter+0x124/0x710
[  284.600134][T10223]  packet_sendmsg+0x21ac/0x5660
[  284.605051][T10223]  ? __pfx_lock_release+0x10/0x10
[  284.610125][T10223]  ? __pfx___might_resched+0x10/0x10
[  284.615455][T10223]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  284.621495][T10223]  ? __pfx_packet_sendmsg+0x10/0x10
[  284.626745][T10223]  ? aa_file_perm+0x4d5/0xfe0
[  284.631472][T10223]  ? aa_pivotroot+0xbe0/0x10a0
[  284.636298][T10223]  sock_write_iter+0x4fe/0x5b0
[  284.641100][T10223]  ? __pfx_sock_write_iter+0x10/0x10
[  284.646442][T10223]  ? bpf_lsm_file_permission+0x9/0x10
[  284.651869][T10223]  ? security_file_permission+0x71/0x210
[  284.657561][T10223]  vfs_write+0x5ae/0x1150
[  284.661948][T10223]  ? __pfx_sock_write_iter+0x10/0x10
[  284.667282][T10223]  ? __pfx_vfs_write+0x10/0x10
[  284.672178][T10223]  ? __pfx_do_sys_openat2+0x10/0x10
[  284.677440][T10223]  ksys_write+0x207/0x250
[  284.681820][T10223]  ? __pfx_ksys_write+0x10/0x10
[  284.686801][T10223]  do_syscall_64+0xcd/0x250
[  284.691354][T10223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.697550][T10223] RIP: 0033:0x7f3e07385d29
[  284.702070][T10223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.721698][T10223] RSP: 002b:00007f3e0826c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  284.730221][T10223] RAX: ffffffffffffffda RBX: 00007f3e07575fa0 RCX: 00007f3e07385d29
[  284.738294][T10223] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000003
[  284.746457][T10223] RBP: 00007f3e0826c090 R08: 0000000000000000 R09: 0000000000000000
[  284.754521][T10223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.762566][T10223] R13: 0000000000000000 R14: 00007f3e07575fa0 R15: 00007ffd258aa6e8
[  284.770676][T10223]  </TASK>
[  284.947053][T10234] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1026'.
[  285.338867][T10238] openvswitch: netlink: Invalid MD length 0 for MD type 0
[  286.766801][T10278] FAULT_INJECTION: forcing a failure.
[  286.766801][T10278] name failslab, interval 1, probability 0, space 0, times 0
[  286.779983][T10278] CPU: 1 UID: 0 PID: 10278 Comm: syz.2.1035 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  286.790793][T10278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  286.801016][T10278] Call Trace:
[  286.804342][T10278]  <TASK>
[  286.807317][T10278]  dump_stack_lvl+0x16c/0x1f0
[  286.812049][T10278]  should_fail_ex+0x497/0x5b0
[  286.816787][T10278]  should_failslab+0xc2/0x120
[  286.821533][T10278]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  286.826964][T10278]  ? trace_lock_acquire+0x14e/0x1f0
[  286.832213][T10278]  ? skb_clone+0x190/0x3f0
[  286.836686][T10278]  skb_clone+0x190/0x3f0
[  286.840986][T10278]  dev_queue_xmit_nit+0x38f/0xbc0
[  286.846083][T10278]  dev_hard_start_xmit+0x283/0x7b0
[  286.851263][T10278]  __dev_queue_xmit+0x7f0/0x43e0
[  286.856256][T10278]  ? __pfx_lock_release+0x10/0x10
[  286.861327][T10278]  ? trace_lock_acquire+0x14e/0x1f0
[  286.866595][T10278]  ? __pfx___dev_queue_xmit+0x10/0x10
[  286.872020][T10278]  ? pfn_swap_entry_to_page+0x610/0x610
[  286.877632][T10278]  ? _copy_from_iter+0x159/0x1400
[  286.882804][T10278]  ? trace_lock_acquire+0x14e/0x1f0
[  286.888324][T10278]  ? packet_parse_headers+0x787/0xaf0
[  286.893749][T10278]  ? packet_parse_headers+0x793/0xaf0
[  286.899178][T10278]  ? packet_parse_headers+0x201/0xaf0
[  286.904609][T10278]  ? __phys_addr_symbol+0x30/0x80
[  286.909684][T10278]  ? __check_object_size+0x488/0x710
[  286.915033][T10278]  ? __pfx_packet_parse_headers+0x10/0x10
[  286.920807][T10278]  ? skb_copy_datagram_from_iter+0x4ce/0x710
[  286.926856][T10278]  packet_xmit+0x23e/0x360
[  286.931418][T10278]  packet_sendmsg+0x2700/0x5660
[  286.936335][T10278]  ? __pfx_lock_release+0x10/0x10
[  286.941390][T10278]  ? __pfx___might_resched+0x10/0x10
[  286.946800][T10278]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  286.952755][T10278]  ? __pfx_packet_sendmsg+0x10/0x10
[  286.957999][T10278]  ? aa_file_perm+0x4d5/0xfe0
[  286.962726][T10278]  ? aa_pivotroot+0xbe0/0x10a0
[  286.967561][T10278]  sock_write_iter+0x4fe/0x5b0
[  286.972388][T10278]  ? __pfx_sock_write_iter+0x10/0x10
[  286.977732][T10278]  ? bpf_lsm_file_permission+0x9/0x10
[  286.983176][T10278]  ? security_file_permission+0x71/0x210
[  286.989043][T10278]  vfs_write+0x5ae/0x1150
[  286.993515][T10278]  ? __pfx_sock_write_iter+0x10/0x10
[  286.998862][T10278]  ? __pfx_vfs_write+0x10/0x10
[  287.003681][T10278]  ? __pfx_do_sys_openat2+0x10/0x10
[  287.008954][T10278]  ksys_write+0x207/0x250
[  287.013334][T10278]  ? __pfx_ksys_write+0x10/0x10
[  287.018245][T10278]  do_syscall_64+0xcd/0x250
[  287.022801][T10278]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.028748][T10278] RIP: 0033:0x7f9281585d29
[  287.033205][T10278] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  287.052857][T10278] RSP: 002b:00007f9282468038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  287.061321][T10278] RAX: ffffffffffffffda RBX: 00007f9281775fa0 RCX: 00007f9281585d29
[  287.069332][T10278] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000003
[  287.077364][T10278] RBP: 00007f9282468090 R08: 0000000000000000 R09: 0000000000000000
[  287.085468][T10278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  287.093742][T10278] R13: 0000000000000000 R14: 00007f9281775fa0 R15: 00007ffc33f83788
[  287.101766][T10278]  </TASK>
[  287.253589][T10281] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1036'.
[  287.354660][   T29] audit: type=1800 audit(1734641731.690:12): pid=10289 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1039" name="version" dev="configfs" ino=26121 res=0 errno=0
[  289.393593][T10348] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  289.508985][T10350] netlink: 306 bytes leftover after parsing attributes in process `syz.3.1052'.
[  290.604698][T10406] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  291.254044][T10426] netlink: 354 bytes leftover after parsing attributes in process `syz.0.1069'.
[  291.488827][T10430] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1070'.
[  291.549034][T10430] block nbd0: not configured, cannot reconfigure
[  291.574584][T10430] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1070'.
[  291.601190][T10430] veth0_macvtap: left promiscuous mode
[  291.735455][T10421] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1067'.
[  293.435722][T10458] ima: policy update failed
[  293.440609][   T29] audit: type=1802 audit(1734641737.770:13): pid=10458 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1078" res=0 errno=0
[  293.830407][   T29] audit: type=1326 audit(1734641738.160:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10477 comm="syz.3.1082" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3e07385d29 code=0x0
[  294.147517][T10482] Invalid ELF header magic: != ELF
[  294.245013][T10479] netlink: 'syz.2.1083': attribute type 9 has an invalid length.
[  303.839686][T10620] netlink: 'syz.1.1116': attribute type 17 has an invalid length.
[  303.864108][T10620] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1116'.
[  307.831855][T10663] Process accounting resumed
[  309.184665][T10686] netlink: 'syz.0.1129': attribute type 11 has an invalid length.
[  309.755912][T10699] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1133'.
[  309.822913][T10700] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1133'.
[  310.785858][T10722] i2c i2c-0: Invalid block write size 128
[  311.066126][T10726] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1140'.
[  312.305201][ T5832] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  312.319246][ T5832] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  312.328422][ T5832] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  312.337037][ T5832] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  312.345872][ T5832] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  312.355028][ T5832] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  313.007406][T10747] chnl_net:caif_netlink_parms(): no params data found
[  313.195659][T10747] bridge0: port 1(bridge_slave_0) entered blocking state
[  313.202812][T10747] bridge0: port 1(bridge_slave_0) entered disabled state
[  313.210283][T10747] bridge_slave_0: entered allmulticast mode
[  313.217853][T10747] bridge_slave_0: entered promiscuous mode
[  313.225973][T10747] bridge0: port 2(bridge_slave_1) entered blocking state
[  313.244919][T10747] bridge0: port 2(bridge_slave_1) entered disabled state
[  313.252692][T10747] bridge_slave_1: entered allmulticast mode
[  313.290300][T10747] bridge_slave_1: entered promiscuous mode
[  313.620026][T10747] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  313.659274][T10747] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  313.869957][T10747] team0: Port device team_slave_0 added
[  313.915996][T10747] team0: Port device team_slave_1 added
[  314.055599][T10747] batman_adv: batadv0: Adding interface: batadv_slave_0
[  314.086406][T10747] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  314.144032][T10747] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  314.175988][T10747] batman_adv: batadv0: Adding interface: batadv_slave_1
[  314.183909][T10747] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  314.223660][T10747] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  314.327588][T10747] hsr_slave_0: entered promiscuous mode
[  314.384306][T10747] hsr_slave_1: entered promiscuous mode
[  314.444827][ T5834] Bluetooth: hci4: command tx timeout
[  314.857140][T10747] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  314.900464][T10747] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  314.927683][T10747] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  314.989255][T10747] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  315.497817][T10747] 8021q: adding VLAN 0 to HW filter on device bond0
[  315.551556][T10747] 8021q: adding VLAN 0 to HW filter on device team0
[  315.569238][ T3609] bridge0: port 1(bridge_slave_0) entered blocking state
[  315.576530][ T3609] bridge0: port 1(bridge_slave_0) entered forwarding state
[  315.607840][ T3609] bridge0: port 2(bridge_slave_1) entered blocking state
[  315.615043][ T3609] bridge0: port 2(bridge_slave_1) entered forwarding state
[  315.659718][T10747] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  316.116147][T10747] 8021q: adding VLAN 0 to HW filter on device batadv0
[  316.525204][ T5834] Bluetooth: hci4: command tx timeout
[  316.807868][T10747] veth0_vlan: entered promiscuous mode
[  316.874269][T10747] veth1_vlan: entered promiscuous mode
[  316.940019][T10747] veth0_macvtap: entered promiscuous mode
[  316.951469][T10747] veth1_macvtap: entered promiscuous mode
[  317.013290][T10747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  317.034584][T10747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.044949][T10747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  317.055905][T10747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.066444][T10747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  317.077018][T10747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.095984][T10747] batman_adv: batadv0: Interface activated: batadv_slave_0
[  317.108187][T10747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  317.130062][T10747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.153870][T10747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  317.174156][T10747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.187607][T10747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  317.198167][T10747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.209114][T10747] batman_adv: batadv0: Interface activated: batadv_slave_1
[  317.246485][T10747] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  317.262646][T10747] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  317.289329][T10747] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  317.332314][T10747] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  317.502601][ T3609] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  317.520286][ T3609] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  317.570674][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  317.577386][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  317.592006][ T8424] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  317.612017][ T8424] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  318.553607][T10843] nfs: Unknown parameter 'DΕGz
έωλΠΈ€†iΔFΟ’†Ž&MjoC΄ρ#ˆ„τΒ�™ΕoΈΪXoδͺ\΄ήFBψƒΛnj“Ί>./file0'
[  318.604829][ T5834] Bluetooth: hci4: command tx timeout
[  318.614102][   T29] audit: type=1800 audit(1734641762.910:15): pid=10831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1146" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  318.682447][T10843] netlink: 'syz.1.1167': attribute type 22 has an invalid length.
[  320.416229][T10902] nbd: must specify at least one socket
[  320.699210][ T5834] Bluetooth: hci4: command tx timeout
[  321.097468][T10911] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  321.497235][T10919] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1183'.
[  321.514158][T10925] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1185'.
[  321.545124][T10926] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1185'.
[  321.614263][T10925] veth0_macvtap: left promiscuous mode
[  321.674405][T10925] macvtap0: entered allmulticast mode
[  322.056771][T10936] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1187'.
[  324.754557][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  324.845208][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  324.914036][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  324.923433][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.072369][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.125884][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.182912][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.270634][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.337610][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.525521][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.584021][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.593421][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.764012][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.842232][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.884292][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.914140][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.923725][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  326.046379][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  326.144021][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  326.223985][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  326.377998][T10966] program syz.4.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  326.785258][T10982] netlink: 74 bytes leftover after parsing attributes in process `syz.1.1199'.
[  326.790437][T10987] netlink: 'syz.4.1200': attribute type 39 has an invalid length.
[  326.813928][T10987] netlink: 'syz.4.1200': attribute type 40 has an invalid length.
[  326.822106][T10987] netlink: 'syz.4.1200': attribute type 41 has an invalid length.
[  326.855145][T10987] netlink: 'syz.4.1200': attribute type 44 has an invalid length.
[  326.879828][T10987] netlink: 'syz.4.1200': attribute type 46 has an invalid length.
[  326.913935][T10987] netlink: 'syz.4.1200': attribute type 47 has an invalid length.
[  326.950605][T10987] netlink: 'syz.4.1200': attribute type 48 has an invalid length.
[  326.982115][T10987] netlink: 'syz.4.1200': attribute type 49 has an invalid length.
[  327.006032][T10987] netlink: 'syz.4.1200': attribute type 50 has an invalid length.
[  327.027858][T10987] netlink: 6 bytes leftover after parsing attributes in process `syz.4.1200'.
[  327.308450][T11004] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1202'.
[  327.625578][T11006] nbd: socks must be embedded in a SOCK_ITEM attr
[  327.633506][T11006] block nbd0: shutting down sockets
[  330.648659][T11039] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  333.192079][T11059] Process accounting resumed
[  334.967094][T11078] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1222'.
[  336.107642][T11111] ptrace attach of "./syz-executor exec"[5837] was attempted by "./syz-executor exec"[11111]
[  336.969423][T11123] Invalid ELF header magic: != ELF
[  337.319330][T11117] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1232'.
[  337.350919][T11117] bridge_slave_1: left allmulticast mode
[  337.373872][T11117] bridge_slave_1: left promiscuous mode
[  337.408695][T11117] bridge0: port 2(bridge_slave_1) entered disabled state
[  337.505982][T11117] bridge_slave_0: left allmulticast mode
[  337.511697][T11117] bridge_slave_0: left promiscuous mode
[  337.582395][T11117] bridge0: port 1(bridge_slave_0) entered disabled state
[  339.112931][T11137] raw_sendmsg: syz.1.1238 forgot to set AF_INET. Fix it!
[  339.306864][T11137] Malformed UNC in devname
[  339.306864][T11137] 
[  339.344142][T11137] CIFS: VFS: Malformed UNC in devname
[  341.066489][T11187] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1244'.
[  341.135095][T11186] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1244'.
[  341.201612][T11188] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1244'.
[  341.491656][T11186] team0: Port device team_slave_0 removed
[  346.342759][T11283] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1267'.
[  346.397107][T11283] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  346.428725][T11283] batman_adv: batadv0: Removing interface: batadv_slave_0
[  346.555252][T11283] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  346.593984][T11283] batman_adv: batadv0: Removing interface: batadv_slave_1
[  348.845441][T11301] netlink: 322 bytes leftover after parsing attributes in process `syz.4.1270'.
[  348.855235][T11300] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1269'.
[  348.862838][T11302] netlink: 322 bytes leftover after parsing attributes in process `syz.4.1270'.
[  348.957536][T11301] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1270'.
[  351.974095][T11349] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1278'.
[  353.788963][T11382] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1284'.
[  357.105031][T11458] netlink: 350 bytes leftover after parsing attributes in process `syz.0.1303'.
[  357.387425][T11467] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1304'.
[  358.894238][T10519] syz.3.1090 (10519) used greatest stack depth: 19248 bytes left
[  359.386729][T11489] delete_channel: no stack
[  359.877323][T10533] syz.3.1090 (10533) used greatest stack depth: 18768 bytes left
[  360.592630][T10446] syz.3.1067 (10446) used greatest stack depth: 18624 bytes left
[  361.060632][T11528] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1316'.
[  361.482659][T11529] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1316'.
[  363.948658][T11550] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  364.014149][T11550] CIFS mount error: No usable UNC path provided in device string!
[  364.014149][T11550] 
[  364.034131][T11550] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  364.130323][T11565] dlm: non-version read from control device 0
[  365.323448][T11617] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1342'.
[  366.213283][T11654] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  366.538147][T11654] smc: removing net device syz_tun with user defined pnetid ETHTOOL
[  367.261280][ T5832] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  367.270755][ T5832] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  367.279431][ T5832] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  367.288971][ T5832] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  367.296791][ T5832] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  367.305353][ T5832] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  367.634562][T11647] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1348'.
[  367.856053][T11678] chnl_net:caif_netlink_parms(): no params data found
[  368.210831][T11678] bridge0: port 1(bridge_slave_0) entered blocking state
[  368.255142][T11678] bridge0: port 1(bridge_slave_0) entered disabled state
[  368.262415][T11678] bridge_slave_0: entered allmulticast mode
[  368.270095][T11678] bridge_slave_0: entered promiscuous mode
[  368.285634][T11678] bridge0: port 2(bridge_slave_1) entered blocking state
[  368.293255][T11678] bridge0: port 2(bridge_slave_1) entered disabled state
[  368.312584][T11678] bridge_slave_1: entered allmulticast mode
[  368.325477][T11678] bridge_slave_1: entered promiscuous mode
[  368.416871][T11678] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  368.442783][T11678] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  368.528351][T11678] team0: Port device team_slave_0 added
[  368.559786][T11678] team0: Port device team_slave_1 added
[  368.668563][T11678] batman_adv: batadv0: Adding interface: batadv_slave_0
[  368.694234][T11678] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  368.724608][T11678] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  368.742727][T11678] batman_adv: batadv0: Adding interface: batadv_slave_1
[  368.770846][T11678] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  368.788802][T11729] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1365'.
[  368.800220][T11726] Process accounting resumed
[  368.837566][T11678] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  368.840710][T11729] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1365'.
[  369.007723][T11740] RDS: rds_bind could not find a transport for ::ffff:100.1.1.2, load rds_tcp or rds_rdma?
[  369.041792][T11678] hsr_slave_0: entered promiscuous mode
[  369.067077][T11678] hsr_slave_1: entered promiscuous mode
[  369.093430][T11678] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  369.101258][T11678] Cannot create hsr debugfs directory
[  369.445264][T11678] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  369.477876][T11678] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  369.485202][ T5834] Bluetooth: hci1: command tx timeout
[  369.495081][T11678] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  369.504863][T11678] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  369.588148][T11678] 8021q: adding VLAN 0 to HW filter on device bond0
[  369.629321][T11678] 8021q: adding VLAN 0 to HW filter on device team0
[  369.645590][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  369.652829][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  369.681987][T11154] bridge0: port 2(bridge_slave_1) entered blocking state
[  369.689183][T11154] bridge0: port 2(bridge_slave_1) entered forwarding state
[  370.293506][T11678] 8021q: adding VLAN 0 to HW filter on device batadv0
[  370.466845][T11777] HfR: entered promiscuous mode
[  370.519055][T11777] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1374'.
[  370.564686][T11777] HfR: left promiscuous mode
[  370.689981][T11790] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1376'.
[  370.990960][T11678] veth0_vlan: entered promiscuous mode
[  371.028951][T11678] veth1_vlan: entered promiscuous mode
[  371.318208][T11678] veth0_macvtap: entered promiscuous mode
[  371.349398][T11678] veth1_macvtap: entered promiscuous mode
[  371.411451][T11678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  371.433844][T11678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  371.463906][T11678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  371.483927][T11678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  371.514109][T11678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  371.534039][T11678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  371.555651][T11678] batman_adv: batadv0: Interface activated: batadv_slave_0
[  371.564826][ T5834] Bluetooth: hci1: command tx timeout
[  371.626285][T11678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  371.684010][T11678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  371.704718][T11678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  371.725992][T11678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  371.745047][T11678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  371.764017][T11678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  371.784492][T11678] batman_adv: batadv0: Interface activated: batadv_slave_1
[  371.832212][T11678] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  371.856316][T11678] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  371.873906][T11678] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  371.892934][T11678] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  372.085465][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  372.093354][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  372.362320][T11160] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  372.426715][T11160] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  372.627040][T11834] random: crng reseeded on system resumption
[  373.643993][ T5832] Bluetooth: hci1: command tx timeout
[  373.977283][T11863] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1388'.
[  374.048412][T11863] vxcan1: entered promiscuous mode
[  374.873263][T11868] kexec: Could not allocate control_code_buffer
[  375.219657][T11906] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1399'.
[  375.728146][ T5832] Bluetooth: hci1: command tx timeout
[  375.769430][T11912] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1400'.
[  376.893547][T11938] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1406'.
[  377.179992][T11948] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1411'.
[  377.197297][T11948] vcan0: entered promiscuous mode
[  377.934265][T11966] netlink: 354 bytes leftover after parsing attributes in process `syz.1.1415'.
[  378.307440][T11953] Process accounting resumed
[  378.714261][T11969] Invalid ELF header magic: != ELF
[  378.883907][T11969] Invalid ELF header magic: != ELF
[  378.972993][T11969] Invalid ELF header magic: != ELF
[  379.008843][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  379.016318][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  379.392700][T11969] Invalid ELF header magic: != ELF
[  379.432425][T11969] Invalid ELF header magic: != ELF
[  379.554183][T11969] Invalid ELF header magic: != ELF
[  380.644114][T11999] netlink: 'syz.5.1423': attribute type 1 has an invalid length.
[  382.117373][T12032] Process accounting resumed

getty: ttyS0: read error: Resource temporarily unavailable
[  383.601498][T12062] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1438'.
[  383.797519][T12074] sd 0:0:1:0: PR command failed: 1026
[  383.803067][T12074] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  383.812352][T12074] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  383.840665][T12071] HfR: entered promiscuous mode
[  385.331780][T12112] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1453'.
[  385.685754][T12094] kexec: Could not allocate control_code_buffer
[  386.025030][T12125] sg_read: process 70 (syz.5.1459) changed security contexts after opening file descriptor, this is not allowed.
[  386.396845][T12142] Invalid ELF header magic: != ELF
[  386.543389][   T29] audit: type=1800 audit(6029609126.867:16): pid=12147 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1463" name="dbroot" dev="configfs" ino=36084 res=0 errno=0
[  386.734567][   T29] audit: type=1326 audit(6029609127.057:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12154 comm="syz.0.1466" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa41a985d29 code=0x0
[  386.761184][T12160] db_root: cannot open: ›
[  386.804024][T12148] db_root: cannot open: 
[  386.820953][T12148] db_root: cannot open: 
[  386.866315][T12160] db_root: cannot open: ›
[  386.870908][T12160] db_root: cannot open: ›
[  386.918888][T12160] db_root: cannot open: ›
[  386.965242][T12160] db_root: cannot open: ›
[  386.990897][T12160] db_root: cannot open: ›
[  387.002871][T12160] db_root: cannot open: ›
[  387.014107][T12160] db_root: cannot open: ›
[  387.024472][T12160] db_root: cannot open: ›
[  387.032493][T12160] db_root: cannot open: ›
[  387.047856][T12160] db_root: cannot open: ›
[  387.066628][T12160] db_root: cannot open: ›
[  387.077918][T12160] db_root: cannot open: ›
[  387.091355][T12160] db_root: cannot open: ›
[  387.107803][T12160] db_root: cannot open: ›
[  387.112999][T12160] db_root: cannot open: ›
[  387.118559][T12160] db_root: cannot open: ›
[  387.123206][T12160] db_root: cannot open: ›
[  387.128787][T12160] db_root: cannot open: ›
[  387.133430][T12160] db_root: cannot open: ›
[  387.139168][T12160] db_root: cannot open: ›
[  387.144409][T12160] db_root: cannot open: ›
[  387.149442][T12160] db_root: cannot open: ›
[  387.154801][T12160] db_root: cannot open: ›
[  387.159596][T12160] db_root: cannot open: ›
[  387.165891][T12160] db_root: cannot open: ›
[  387.171046][T12160] db_root: cannot open: ›
[  387.177953][T12160] db_root: cannot open: ›
[  387.182837][T12160] db_root: cannot open: ›
[  387.188440][T12160] db_root: cannot open: ›
[  387.194357][T12160] db_root: cannot open: ›
[  387.199017][T12160] db_root: cannot open: ›
[  387.204368][T12160] db_root: cannot open: ›
[  387.924302][T12193] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1474'.
[  387.935584][T12193] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1474'.
[  387.993792][   T29] audit: type=1326 audit(6029609128.317:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.5.1472" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f47d0985d29 code=0x0
[  388.143049][T12200] delete_channel: no stack
[  388.968946][   T29] audit: type=1326 audit(6029609129.297:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12219 comm="syz.1.1480" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f51bb585d29 code=0x0
[  389.520836][T12230] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1483'.
[  389.572683][T12230] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  389.654262][T12230] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1483'.
[  389.701660][T12230] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1483'.
[  389.729532][T12230] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1483'.
[  389.874193][T12230] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1483'.
[  389.943438][T12230] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1483'.
[  390.021395][T12230] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1483'.
[  390.247501][T12230] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1483'.
[  390.883184][T12259] netlink: 504 bytes leftover after parsing attributes in process `syz.4.1491'.
[  390.919202][T12259] netlink: 504 bytes leftover after parsing attributes in process `syz.4.1491'.

syzkaller
syzkaller login: [  394.599272][T12327] futex_wake_op: syz.4.1509 tries to shift op by 64; fix this program
[  395.281933][T12332] __nla_validate_parse: 3 callbacks suppressed
[  395.281954][T12332] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1510'.
[  395.308786][T12332] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  395.318710][T12341] netlink: 'syz.1.1513': attribute type 1 has an invalid length.
[  395.334001][T12341] netlink: 53 bytes leftover after parsing attributes in process `syz.1.1513'.
[  395.343176][T12332] batman_adv: batadv0: Removing interface: batadv_slave_0
[  395.352891][T12332] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  395.403988][T12332] batman_adv: batadv0: Removing interface: batadv_slave_1
[  395.633450][T12353] nbd: illegal input index -33554433
[  396.101301][   T29] audit: type=1804 audit(6029609136.407:20): pid=12374 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1522" name="/newroot/sys/kernel/tracing/free_buffer" dev="tracefs" ino=228 res=1 errno=0
[  396.759007][T12383] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1525'.
[  398.799868][T12444] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1537'.
[  399.246112][T12466] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1544'.
[  399.269610][T12466] ipvlan1: entered allmulticast mode
[  399.276389][T12466] veth0_vlan: entered allmulticast mode
[  399.908450][T12482] netlink: 'syz.4.1547': attribute type 64 has an invalid length.
[  399.920351][T12482] netlink: 74 bytes leftover after parsing attributes in process `syz.4.1547'.
[  400.018316][T12484] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  400.076614][T12484] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  400.142987][T12484] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  400.159528][T12484] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  400.206430][T12484] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  400.209586][T12492] FAULT_INJECTION: forcing a failure.
[  400.209586][T12492] name failslab, interval 1, probability 0, space 0, times 0
[  400.223986][T12484] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  400.248232][T12492] CPU: 0 UID: 0 PID: 12492 Comm: syz.4.1551 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  400.253385][T12484] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  400.259212][T12492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  400.259234][T12492] Call Trace:
[  400.259243][T12492]  <TASK>
[  400.259253][T12492]  dump_stack_lvl+0x16c/0x1f0
[  400.259325][T12492]  should_fail_ex+0x497/0x5b0
[  400.259353][T12492]  ? fs_reclaim_acquire+0xae/0x150
[  400.259379][T12492]  should_failslab+0xc2/0x120
[  400.259409][T12492]  __kmalloc_node_noprof+0xd1/0x520
[  400.259443][T12492]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  400.259476][T12492]  ? __pfx_lock_release+0x10/0x10
[  400.259504][T12492]  __kvmalloc_node_noprof+0xad/0x1a0
[  400.259538][T12492]  seq_read_iter+0x82a/0x12b0
[  400.259577][T12492]  seq_read+0x39f/0x4e0
[  400.331441][T12492]  ? __pfx_seq_read+0x10/0x10
[  400.336370][T12492]  full_proxy_read+0xfb/0x1b0
[  400.341117][T12492]  ? __pfx_full_proxy_read+0x10/0x10
[  400.346464][T12492]  vfs_read+0x1df/0xbe0
[  400.350666][T12492]  ? __fget_files+0x1fc/0x3a0
[  400.355387][T12492]  ? __pfx___mutex_lock+0x10/0x10
[  400.360545][T12492]  ? __pfx_vfs_read+0x10/0x10
[  400.365350][T12492]  ? __fget_files+0x206/0x3a0
[  400.370402][T12492]  ksys_read+0x12b/0x250
[  400.375028][T12492]  ? __pfx_ksys_read+0x10/0x10
[  400.379819][T12492]  do_syscall_64+0xcd/0x250
[  400.384919][T12492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  400.391144][T12492] RIP: 0033:0x7fb519185d29
[  400.395681][T12492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  400.416797][T12492] RSP: 002b:00007fb519f72038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  400.426239][T12492] RAX: ffffffffffffffda RBX: 00007fb519375fa0 RCX: 00007fb519185d29
[  400.434777][T12492] RDX: 0000000000000121 RSI: 0000000020000240 RDI: 0000000000000004
[  400.442768][T12492] RBP: 00007fb519f72090 R08: 0000000000000000 R09: 0000000000000000
[  400.450940][T12492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  400.459109][T12492] R13: 0000000000000000 R14: 00007fb519375fa0 R15: 00007fff63a71928
[  400.467739][T12492]  </TASK>
[  400.484180][T12484] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  400.490202][T12484] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  400.552330][T12484] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  402.045235][ T5832] Bluetooth: hci2: command 0x0406 tx timeout
[  402.203896][ T5832] Bluetooth: hci0: command 0x0406 tx timeout
[  402.243517][T12531] Process accounting resumed
[  402.284084][ T5832] Bluetooth: hci4: command 0x0c1a tx timeout
[  402.519465][T12551] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1566'.
[  402.528981][ T5832] Bluetooth: hci1: command 0x0c1a tx timeout
[  404.129533][ T5832] Bluetooth: hci2: command 0x0406 tx timeout
[  404.283970][ T5832] Bluetooth: hci0: command 0x0406 tx timeout
[  404.363907][ T5832] Bluetooth: hci4: command 0x0c1a tx timeout
[  404.604338][ T5832] Bluetooth: hci1: command 0x0c1a tx timeout
[  405.035845][T12623] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1585'.
[  405.595520][T12639] lo: entered promiscuous mode
[  405.712840][T12639] lo: left promiscuous mode
[  406.072249][T12649] Invalid ELF header magic: != ELF
[  406.448334][ T5832] Bluetooth: hci4: command 0x0c1a tx timeout
[  406.694250][ T5832] Bluetooth: hci1: command 0x0c1a tx timeout
[  407.645810][T12682] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1602'.
[  407.687090][T12682] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1602'.
[  409.121116][T12670] kexec: Could not allocate control_code_buffer
[  410.827714][T12749] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1619'.
[  410.873949][T12749] ›: renamed from veth0_vlan (while UP)
[  410.965150][T12757] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1621'.
[  411.067617][T12760] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1622'.
[  411.215650][T12765] netlink: 'syz.0.1624': attribute type 16 has an invalid length.
[  411.263986][T12765] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1624'.
[  413.530228][   T29] audit: type=1804 audit(6029609153.857:21): pid=12793 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1630" name="/newroot/sys/kernel/tracing/error_log" dev="tracefs" ino=264 res=1 errno=0
[  415.669031][T12837] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1635'.
[  415.919533][T12842] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1641'.
[  415.985514][T12842] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1641'.
[  416.193389][T12848] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1644'.
[  416.249206][T12848] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1644'.
[  417.041279][T12887] device-mapper: ioctl: Invalid ioctl structure: name , dev 1ff00010007
[  417.555576][T12906] scsi_dev_info_list_add_str: bad dev info string ';νΩ/&cŒΐ' '††­ί9δfΛWΟυ›' ''
[  419.707431][T12954] kAFS: Invalid Command on /proc/fs/afs/cells file
[  419.763065][T12955] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1675'.
[  419.827473][T12955] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1675'.
[  420.168670][T12965] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  420.178411][T12965] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  420.936687][T12984] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1683'.
[  425.122876][T13065] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1707'.
[  430.318686][T13215] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1745'.
[  430.438444][T13219] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1747'.
[  430.633810][   T29] audit: type=1800 audit(2052.640:22): pid=13218 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1746" name="lu_gp_id" dev="configfs" ino=40950 res=0 errno=0
[  432.292897][T13242] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1753'.
[  434.497969][   T29] audit: type=1804 audit(2056.510:23): pid=13311 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1759" name="/newroot/sys/kernel/tracing/events/vmalloc/enable" dev="tracefs" ino=19680823 res=1 errno=0
[  435.203883][T13420] Falling back ldisc for ttyS2.
[  436.119013][T13432] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1766'.
[  436.550819][T13432] team0: Port device team_slave_1 removed
[  438.020071][T13456] FAULT_INJECTION: forcing a failure.
[  438.020071][T13456] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  438.119765][T13456] CPU: 1 UID: 0 PID: 13456 Comm: syz.0.1772 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  438.131826][T13456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  438.142018][T13456] Call Trace:
[  438.145327][T13456]  <TASK>
[  438.148308][T13456]  dump_stack_lvl+0x16c/0x1f0
[  438.153037][T13456]  should_fail_ex+0x497/0x5b0
[  438.157762][T13456]  ? fs_reclaim_acquire+0xae/0x150
[  438.163009][T13456]  should_fail_alloc_page+0xe7/0x130
[  438.168436][T13456]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  438.174637][T13456]  ? __lock_acquire+0x15a9/0x3c40
[  438.179716][T13456]  __alloc_pages_noprof+0x190/0x25b0
[  438.185147][T13456]  ? kasan_save_stack+0x33/0x60
[  438.190022][T13456]  ? __pfx___lock_acquire+0x10/0x10
[  438.195337][T13456]  ? hlock_class+0x4e/0x130
[  438.199859][T13456]  ? mark_lock+0xb5/0xc60
[  438.204205][T13456]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  438.209942][T13456]  ? __pfx_mark_lock+0x10/0x10
[  438.214723][T13456]  ? hlock_class+0x4e/0x130
[  438.219254][T13456]  ? mark_lock+0xb5/0xc60
[  438.223635][T13456]  ? __pfx_mark_lock+0x10/0x10
[  438.228426][T13456]  ? mark_lock+0xb5/0xc60
[  438.232788][T13456]  ? process_measurement+0x521/0x2370
[  438.238206][T13456]  ? hlock_class+0x4e/0x130
[  438.242723][T13456]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  438.248676][T13456]  ? policy_nodemask+0xea/0x4e0
[  438.253554][T13456]  alloc_pages_mpol_noprof+0x2c9/0x610
[  438.259033][T13456]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  438.265119][T13456]  ? __pfx___lock_acquire+0x10/0x10
[  438.270338][T13456]  ? __pfx_filemap_map_pages+0x10/0x10
[  438.275815][T13456]  pte_alloc_one+0x20/0x390
[  438.280359][T13456]  __do_fault+0x320/0x490
[  438.285352][T13456]  ? __pfx_filemap_map_pages+0x10/0x10
[  438.291010][T13456]  do_pte_missing+0x1a8/0x3e00
[  438.295817][T13456]  __handle_mm_fault+0x103c/0x2a40
[  438.301001][T13456]  ? __pfx___handle_mm_fault+0x10/0x10
[  438.306529][T13456]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  438.312206][T13456]  ? find_vma+0xc0/0x140
[  438.316462][T13456]  ? __pfx_find_vma+0x10/0x10
[  438.321150][T13456]  handle_mm_fault+0x3fa/0xaa0
[  438.325961][T13456]  do_user_addr_fault+0x7a3/0x13f0
[  438.331085][T13456]  exc_page_fault+0x5c/0xc0
[  438.335603][T13456]  asm_exc_page_fault+0x26/0x30
[  438.340478][T13456] RIP: 0010:__put_user_8+0x11/0x20
[  438.345602][T13456] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <48> 89 01 31 c9 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[  438.365218][T13456] RSP: 0018:ffffc9000c7a7bf8 EFLAGS: 00050246
[  438.371295][T13456] RAX: 0000000000000400 RBX: 0000000000000000 RCX: 0000000000000000
[  438.379276][T13456] RDX: ffff88804a99bc00 RSI: ffffffff8237df79 RDI: 0000000000000007
[  438.387260][T13456] RBP: 0000000000000008 R08: 0000000000000007 R09: 0000000000020400
[  438.395247][T13456] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  438.403226][T13456] R13: ffffc9000c7a7eb0 R14: 0000000000000008 R15: 0000000000000200
[  438.411225][T13456]  ? stable_page_flags+0x439/0xbc0
[  438.416363][T13456]  kpageflags_read+0x14d/0x230
[  438.421158][T13456]  ? __pfx_kpageflags_read+0x10/0x10
[  438.426464][T13456]  proc_reg_read+0x11d/0x330
[  438.431063][T13456]  ? rw_verify_area+0xd0/0x700
[  438.435835][T13456]  ? __pfx_proc_reg_read+0x10/0x10
[  438.440952][T13456]  vfs_readv+0x6bf/0x890
[  438.445209][T13456]  ? fdget_pos+0x267/0x390
[  438.449642][T13456]  ? __pfx_vfs_readv+0x10/0x10
[  438.454409][T13456]  ? __mutex_lock+0x1cc/0xa60
[  438.459121][T13456]  ? find_held_lock+0x2d/0x110
[  438.463979][T13456]  ? __pfx___mutex_lock+0x10/0x10
[  438.469105][T13456]  ? trace_lock_acquire+0x14e/0x1f0
[  438.474341][T13456]  ? __fget_files+0x206/0x3a0
[  438.479039][T13456]  ? do_readv+0x133/0x340
[  438.483386][T13456]  do_readv+0x133/0x340
[  438.487557][T13456]  ? __pfx_do_readv+0x10/0x10
[  438.492258][T13456]  do_syscall_64+0xcd/0x250
[  438.496782][T13456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.502692][T13456] RIP: 0033:0x7fa41a985d29
[  438.507118][T13456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  438.526857][T13456] RSP: 002b:00007fa41b852038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  438.535478][T13456] RAX: ffffffffffffffda RBX: 00007fa41ab75fa0 RCX: 00007fa41a985d29
[  438.543465][T13456] RDX: 0000000000000008 RSI: 00000000200002c0 RDI: 0000000000000003
[  438.551458][T13456] RBP: 00007fa41b852090 R08: 0000000000000000 R09: 0000000000000000
[  438.559472][T13456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  438.567476][T13456] R13: 0000000000000000 R14: 00007fa41ab75fa0 R15: 00007ffd9c5b6d68
[  438.575562][T13456]  </TASK>
[  440.161964][T13488] netlink: 'syz.4.1779': attribute type 1 has an invalid length.
[  440.448189][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  440.454868][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  441.455971][T13493] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  441.472729][T13493] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  441.484787][T13493] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  441.494985][T13493] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  441.522130][T13500] FAULT_INJECTION: forcing a failure.
[  441.522130][T13500] name failslab, interval 1, probability 0, space 0, times 0
[  441.534879][T13500] CPU: 0 UID: 0 PID: 13500 Comm: syz.0.1783 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  441.545693][T13500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  441.555879][T13500] Call Trace:
[  441.559185][T13500]  <TASK>
[  441.562143][T13500]  dump_stack_lvl+0x16c/0x1f0
[  441.566893][T13500]  should_fail_ex+0x497/0x5b0
[  441.571629][T13500]  ? fs_reclaim_acquire+0xae/0x150
[  441.576782][T13500]  should_failslab+0xc2/0x120
[  441.581514][T13500]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  441.587236][T13500]  ? ptlock_alloc+0x1f/0x70
[  441.591794][T13500]  ? __pfx_filemap_map_pages+0x10/0x10
[  441.597312][T13500]  ptlock_alloc+0x1f/0x70
[  441.601703][T13500]  pte_alloc_one+0x74/0x390
[  441.606256][T13500]  __do_fault+0x320/0x490
[  441.610647][T13500]  ? __pfx_filemap_map_pages+0x10/0x10
[  441.616287][T13500]  do_pte_missing+0x1a8/0x3e00
[  441.621086][T13500]  __handle_mm_fault+0x103c/0x2a40
[  441.626227][T13500]  ? __pfx___handle_mm_fault+0x10/0x10
[  441.631698][T13500]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  441.637350][T13500]  ? find_vma+0xc0/0x140
[  441.641609][T13500]  ? __pfx_find_vma+0x10/0x10
[  441.646305][T13500]  handle_mm_fault+0x3fa/0xaa0
[  441.651089][T13500]  do_user_addr_fault+0x7a3/0x13f0
[  441.656215][T13500]  exc_page_fault+0x5c/0xc0
[  441.660731][T13500]  asm_exc_page_fault+0x26/0x30
[  441.665686][T13500] RIP: 0010:__put_user_8+0x11/0x20
[  441.670814][T13500] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <48> 89 01 31 c9 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[  441.690797][T13500] RSP: 0018:ffffc9000cd37bf8 EFLAGS: 00050246
[  441.696974][T13500] RAX: 0000000000000400 RBX: 0000000000000000 RCX: 0000000000000000
[  441.705040][T13500] RDX: ffff888077708000 RSI: ffffffff8237df79 RDI: 0000000000000007
[  441.713020][T13500] RBP: 0000000000000008 R08: 0000000000000007 R09: 0000000000020400
[  441.721188][T13500] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  441.729192][T13500] R13: ffffc9000cd37eb0 R14: 0000000000000008 R15: 0000000000000200
[  441.737190][T13500]  ? stable_page_flags+0x439/0xbc0
[  441.742348][T13500]  kpageflags_read+0x14d/0x230
[  441.747148][T13500]  ? __pfx_kpageflags_read+0x10/0x10
[  441.752473][T13500]  proc_reg_read+0x11d/0x330
[  441.757082][T13500]  ? rw_verify_area+0xd0/0x700
[  441.761858][T13500]  ? __pfx_proc_reg_read+0x10/0x10
[  441.767001][T13500]  vfs_readv+0x6bf/0x890
[  441.771258][T13500]  ? fdget_pos+0x267/0x390
[  441.775696][T13500]  ? __pfx_vfs_readv+0x10/0x10
[  441.780464][T13500]  ? __mutex_lock+0x1cc/0xa60
[  441.785153][T13500]  ? find_held_lock+0x2d/0x110
[  441.789938][T13500]  ? __pfx___mutex_lock+0x10/0x10
[  441.794972][T13500]  ? trace_lock_acquire+0x14e/0x1f0
[  441.800277][T13500]  ? __fget_files+0x206/0x3a0
[  441.804968][T13500]  ? do_readv+0x133/0x340
[  441.809301][T13500]  do_readv+0x133/0x340
[  441.813467][T13500]  ? __pfx_do_readv+0x10/0x10
[  441.818158][T13500]  do_syscall_64+0xcd/0x250
[  441.822694][T13500]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.828687][T13500] RIP: 0033:0x7fa41a985d29
[  441.833108][T13500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  441.852735][T13500] RSP: 002b:00007fa41b852038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  441.861249][T13500] RAX: ffffffffffffffda RBX: 00007fa41ab75fa0 RCX: 00007fa41a985d29
[  441.869321][T13500] RDX: 0000000000000008 RSI: 00000000200002c0 RDI: 0000000000000003
[  441.877305][T13500] RBP: 00007fa41b852090 R08: 0000000000000000 R09: 0000000000000000
[  441.885283][T13500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  441.893256][T13500] R13: 0000000000000000 R14: 00007fa41ab75fa0 R15: 00007ffd9c5b6d68
[  441.901257][T13500]  </TASK>
[  442.148984][T13503] netlink: 968 bytes leftover after parsing attributes in process `syz.4.1784'.
[  442.212361][   T29] audit: type=1800 audit(2064.220:24): pid=13503 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1784" name="discovery_nqn" dev="configfs" ino=42402 res=0 errno=0
[  442.688052][T13507] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1785'.
[  443.247551][   T55] Bluetooth: hci2: command 0x0406 tx timeout
[  443.484204][   T55] Bluetooth: hci0: command 0x0406 tx timeout
[  443.572841][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  443.577458][ T5832] Bluetooth: hci4: command 0x0c1a tx timeout
[  443.608954][T13524] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1782'.
[  443.704467][T13524] mac80211_hwsim hwsim13 wlan0: entered promiscuous mode
[  443.773148][T13524] mac80211_hwsim hwsim13 wlan0: entered allmulticast mode
[  444.576950][T13545] FAULT_INJECTION: forcing a failure.
[  444.576950][T13545] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  444.629904][T13545] CPU: 1 UID: 0 PID: 13545 Comm: syz.5.1793 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  444.641006][T13545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  444.651184][T13545] Call Trace:
[  444.654497][T13545]  <TASK>
[  444.657481][T13545]  dump_stack_lvl+0x16c/0x1f0
[  444.662212][T13545]  should_fail_ex+0x497/0x5b0
[  444.666935][T13545]  ? fs_reclaim_acquire+0xae/0x150
[  444.672092][T13545]  should_fail_alloc_page+0xe7/0x130
[  444.677451][T13545]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  444.683662][T13545]  __alloc_pages_noprof+0x190/0x25b0
[  444.689013][T13545]  ? __pfx_mark_lock+0x10/0x10
[  444.693851][T13545]  ? __pfx___lock_acquire+0x10/0x10
[  444.699200][T13545]  ? mark_lock+0xb5/0xc60
[  444.703679][T13545]  ? hlock_class+0x4e/0x130
[  444.708236][T13545]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  444.714100][T13545]  ? find_held_lock+0x2d/0x110
[  444.718927][T13545]  ? hlock_class+0x4e/0x130
[  444.723480][T13545]  ? __lock_acquire+0xcc5/0x3c40
[  444.728475][T13545]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  444.734426][T13545]  ? policy_nodemask+0xea/0x4e0
[  444.739346][T13545]  alloc_pages_mpol_noprof+0x2c9/0x610
[  444.744878][T13545]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  444.750932][T13545]  ? find_held_lock+0x2d/0x110
[  444.755782][T13545]  folio_alloc_mpol_noprof+0x36/0xd0
[  444.761137][T13545]  shmem_alloc_folio+0x135/0x160
[  444.766222][T13545]  shmem_alloc_and_add_folio+0x48b/0xc00
[  444.772003][T13545]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  444.778393][T13545]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  444.784598][T13545]  ? shmem_huge_global_enabled+0x176/0x250
[  444.790654][T13545]  ? shmem_allowable_huge_orders+0xcd/0x3e0
[  444.796618][T13545]  shmem_get_folio_gfp+0x689/0x1530
[  444.802143][T13545]  ? mark_lock+0xb5/0xc60
[  444.806624][T13545]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  444.812406][T13545]  ? __pfx_mark_lock+0x10/0x10
[  444.817853][T13545]  shmem_fault+0x200/0xae0
[  444.822501][T13545]  ? __pfx_shmem_fault+0x10/0x10
[  444.827487][T13545]  ? __pfx_lock_release+0x10/0x10
[  444.832653][T13545]  ? __mod_memcg_lruvec_state+0x53c/0x750
[  444.838514][T13545]  ? __pfx_filemap_map_pages+0x10/0x10
[  444.844025][T13545]  ? mark_held_locks+0x9f/0xe0
[  444.848850][T13545]  ? pte_alloc_one+0x2a3/0x390
[  444.853668][T13545]  ? __pfx_filemap_map_pages+0x10/0x10
[  444.859297][T13545]  __do_fault+0x10a/0x490
[  444.863679][T13545]  ? __pfx_filemap_map_pages+0x10/0x10
[  444.869189][T13545]  do_pte_missing+0x1a8/0x3e00
[  444.874031][T13545]  __handle_mm_fault+0x103c/0x2a40
[  444.879211][T13545]  ? __pfx___handle_mm_fault+0x10/0x10
[  444.884719][T13545]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  444.890391][T13545]  ? find_vma+0xc0/0x140
[  444.894653][T13545]  ? __pfx_find_vma+0x10/0x10
[  444.899339][T13545]  handle_mm_fault+0x3fa/0xaa0
[  444.904128][T13545]  do_user_addr_fault+0x7a3/0x13f0
[  444.909512][T13545]  exc_page_fault+0x5c/0xc0
[  444.914034][T13545]  asm_exc_page_fault+0x26/0x30
[  444.918901][T13545] RIP: 0010:__put_user_8+0x11/0x20
[  444.924022][T13545] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <48> 89 01 31 c9 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[  444.943664][T13545] RSP: 0018:ffffc9000c8c7bf8 EFLAGS: 00050246
[  444.949840][T13545] RAX: 0000000000000400 RBX: 0000000000000000 RCX: 0000000000000000
[  444.957905][T13545] RDX: ffff88801c74bc00 RSI: ffffffff8237df79 RDI: 0000000000000007
[  444.965893][T13545] RBP: 0000000000000008 R08: 0000000000000007 R09: 0000000000020400
[  444.973875][T13545] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  444.981858][T13545] R13: ffffc9000c8c7eb0 R14: 0000000000000008 R15: 0000000000000200
[  444.989933][T13545]  ? stable_page_flags+0x439/0xbc0
[  444.995077][T13545]  kpageflags_read+0x14d/0x230
[  444.999860][T13545]  ? __pfx_kpageflags_read+0x10/0x10
[  445.005159][T13545]  proc_reg_read+0x11d/0x330
[  445.009763][T13545]  ? rw_verify_area+0xd0/0x700
[  445.014536][T13545]  ? __pfx_proc_reg_read+0x10/0x10
[  445.019657][T13545]  vfs_readv+0x6bf/0x890
[  445.023993][T13545]  ? fdget_pos+0x267/0x390
[  445.028428][T13545]  ? __pfx_vfs_readv+0x10/0x10
[  445.033208][T13545]  ? __mutex_lock+0x1cc/0xa60
[  445.037898][T13545]  ? find_held_lock+0x2d/0x110
[  445.042691][T13545]  ? __pfx___mutex_lock+0x10/0x10
[  445.047733][T13545]  ? trace_lock_acquire+0x14e/0x1f0
[  445.052959][T13545]  ? __fget_files+0x206/0x3a0
[  445.057655][T13545]  ? do_readv+0x133/0x340
[  445.061990][T13545]  do_readv+0x133/0x340
[  445.066155][T13545]  ? __pfx_do_readv+0x10/0x10
[  445.070850][T13545]  do_syscall_64+0xcd/0x250
[  445.075371][T13545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  445.081278][T13545] RIP: 0033:0x7f47d0985d29
[  445.085709][T13545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  445.105337][T13545] RSP: 002b:00007f47d07f9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  445.113859][T13545] RAX: ffffffffffffffda RBX: 00007f47d0b75fa0 RCX: 00007f47d0985d29
[  445.121876][T13545] RDX: 0000000000000008 RSI: 00000000200002c0 RDI: 0000000000000003
[  445.129950][T13545] RBP: 00007f47d07f9090 R08: 0000000000000000 R09: 0000000000000000
[  445.137929][T13545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  445.146087][T13545] R13: 0000000000000000 R14: 00007f47d0b75fa0 R15: 00007ffe5678d5b8
[  445.154694][T13545]  </TASK>
[  445.563632][T13554] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1796'.
[  446.118703][T13560] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  447.740802][T13568] Process accounting resumed
[  447.783982][T13579] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1805'.
[  448.839827][T13592] binder: 13591:13592 ioctl c0306201 9 returned -14
[  448.971650][T13579] hsr_slave_0: left promiscuous mode
[  449.019098][T13579] hsr_slave_1: left promiscuous mode
[  449.485647][T13526] Process accounting resumed
[  451.674014][T13619] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1816'.
[  451.759363][T13620] openvswitch: netlink: IP tunnel attribute has 16 unknown bytes.
[  453.928067][T13653] sctp: [Deprecated]: syz.4.1826 (pid 13653) Use of int in maxseg socket option.
[  453.928067][T13653] Use struct sctp_assoc_value instead
[  454.022667][T13653] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(17)
alue for 'gid'
[  456.460666][T13681] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  456.489734][T13681] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  456.496850][T13681] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  456.503018][T13681] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  458.523958][ T5832] Bluetooth: hci0: command 0x0406 tx timeout
[  458.525103][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  458.530318][ T5832] Bluetooth: hci2: command 0x0406 tx timeout
[  458.536578][ T5840] Bluetooth: hci4: command 0x0c1a tx timeout
[  459.301097][T13730] netlink: 'syz.0.1845': attribute type 1 has an invalid length.
[  459.489128][T13735] FAULT_INJECTION: forcing a failure.
[  459.489128][T13735] name failslab, interval 1, probability 0, space 0, times 0
[  459.553783][T13735] CPU: 1 UID: 0 PID: 13735 Comm: syz.5.1847 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  459.564649][T13735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  459.574836][T13735] Call Trace:
[  459.578143][T13735]  <TASK>
[  459.581165][T13735]  dump_stack_lvl+0x16c/0x1f0
[  459.585893][T13735]  should_fail_ex+0x497/0x5b0
[  459.590751][T13735]  ? fs_reclaim_acquire+0xae/0x150
[  459.596093][T13735]  should_failslab+0xc2/0x120
[  459.601352][T13735]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  459.606781][T13735]  ? vma_merge_new_range+0x3f0/0xb70
[  459.612134][T13735]  ? vm_area_alloc+0xe0/0x1c0
[  459.616872][T13735]  vm_area_alloc+0xe0/0x1c0
[  459.621409][T13735]  __mmap_region+0x101b/0x2670
[  459.626199][T13735]  ? __pfx___mmap_region+0x10/0x10
[  459.631325][T13735]  ? hlock_class+0x4e/0x130
[  459.635842][T13735]  ? mark_lock+0xb5/0xc60
[  459.640239][T13735]  ? mm_get_unmapped_area+0x95/0xe0
[  459.645449][T13735]  ? shmem_get_unmapped_area+0x183/0xa20
[  459.651180][T13735]  ? cap_mmap_addr+0x53/0x320
[  459.655876][T13735]  mmap_region+0x127/0x320
[  459.660311][T13735]  do_mmap+0xc00/0xfc0
[  459.664417][T13735]  vm_mmap_pgoff+0x1ba/0x360
[  459.669052][T13735]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  459.674203][T13735]  ? __fget_files+0x206/0x3a0
[  459.678932][T13735]  ksys_mmap_pgoff+0x7d/0x5c0
[  459.683639][T13735]  ? __pfx_ksys_write+0x10/0x10
[  459.688514][T13735]  __x64_sys_mmap+0x125/0x190
[  459.693236][T13735]  do_syscall_64+0xcd/0x250
[  459.697782][T13735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.703701][T13735] RIP: 0033:0x7f47d0985d29
[  459.708214][T13735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  459.728744][T13735] RSP: 002b:00007f47d07f9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  459.737464][T13735] RAX: ffffffffffffffda RBX: 00007f47d0b75fa0 RCX: 00007f47d0985d29
[  459.745550][T13735] RDX: 00000000000000df RSI: 0000000000020009 RDI: 0000000000000000
[  459.753726][T13735] RBP: 00007f47d07f9090 R08: 00040000000000a5 R09: 0000000000008000
[  459.761739][T13735] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001
[  459.769747][T13735] R13: 0000000000000001 R14: 00007f47d0b75fa0 R15: 00007ffe5678d5b8
[  459.777771][T13735]  </TASK>
[  462.840133][T13746] syz.5.1849: vmalloc error: size 3411968, failed to allocated page array size 6664, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  462.878066][T13746] CPU: 0 UID: 0 PID: 13746 Comm: syz.5.1849 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  462.888911][T13746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  462.899022][T13746] Call Trace:
[  462.902336][T13746]  <TASK>
[  462.905308][T13746]  dump_stack_lvl+0x16c/0x1f0
[  462.910129][T13746]  warn_alloc+0x24d/0x3a0
[  462.914555][T13746]  ? __pfx_warn_alloc+0x10/0x10
[  462.919470][T13746]  ? __get_vm_area_node+0x1b0/0x2f0
[  462.924728][T13746]  ? __get_vm_area_node+0x1dc/0x2f0
[  462.930260][T13746]  __vmalloc_node_range_noprof+0x1105/0x1530
[  462.936341][T13746]  ? ip_set_sockfn_get+0x185/0xc50
[  462.941515][T13746]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  462.947904][T13746]  ? __get_vm_area_node+0x1b0/0x2f0
[  462.953158][T13746]  ? __get_vm_area_node+0x1dc/0x2f0
[  462.958414][T13746]  __vmalloc_node_range_noprof+0xd85/0x1530
[  462.964361][T13746]  ? ip_set_sockfn_get+0x185/0xc50
[  462.969557][T13746]  ? __pfx___lock_acquire+0x10/0x10
[  462.974881][T13746]  ? ip_set_sockfn_get+0x185/0xc50
[  462.980072][T13746]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  462.986479][T13746]  ? apparmor_capable+0x114/0x1d0
[  462.991566][T13746]  ? ip_set_sockfn_get+0x185/0xc50
[  462.996754][T13746]  vmalloc_noprof+0x6b/0x90
[  463.001313][T13746]  ? ip_set_sockfn_get+0x185/0xc50
[  463.006483][T13746]  ip_set_sockfn_get+0x185/0xc50
[  463.011487][T13746]  ? __pfx_lock_release+0x10/0x10
[  463.016559][T13746]  ? __pfx_ip_set_sockfn_get+0x10/0x10
[  463.022073][T13746]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  463.028133][T13746]  nf_getsockopt+0x79/0xe0
[  463.032604][T13746]  ip_getsockopt+0x18e/0x1e0
[  463.037248][T13746]  ? __pfx_ip_getsockopt+0x10/0x10
[  463.042414][T13746]  ? __schedule+0xe60/0x5ad0
[  463.047077][T13746]  ? __pfx___lock_acquire+0x10/0x10
[  463.052391][T13746]  ipv6_getsockopt+0x230/0x280
[  463.057227][T13746]  ? __pfx_ipv6_getsockopt+0x10/0x10
[  463.062566][T13746]  ? __pfx_mark_lock+0x10/0x10
[  463.067403][T13746]  sctp_getsockopt+0x1d2/0x7ae0
[  463.072315][T13746]  ? hlock_class+0x4e/0x130
[  463.076886][T13746]  ? mark_lock+0xb5/0xc60
[  463.081274][T13746]  ? aa_label_sk_perm+0x19d/0x5a0
[  463.086385][T13746]  ? __pfx_sctp_getsockopt+0x10/0x10
[  463.091753][T13746]  ? __lock_acquire+0x15a9/0x3c40
[  463.096865][T13746]  ? __pfx___lock_acquire+0x10/0x10
[  463.102232][T13746]  ? find_held_lock+0x2d/0x110
[  463.107175][T13746]  ? __might_fault+0x13b/0x190
[  463.112038][T13746]  ? __pfx_lock_release+0x10/0x10
[  463.117217][T13746]  ? trace_lock_acquire+0x14e/0x1f0
[  463.122482][T13746]  ? lock_acquire+0x2f/0xb0
[  463.127094][T13746]  ? __might_fault+0xe3/0x190
[  463.132634][T13746]  ? __might_fault+0xe3/0x190
[  463.137379][T13746]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  463.143326][T13746]  ? do_sock_getsockopt+0x3fe/0x870
[  463.148576][T13746]  do_sock_getsockopt+0x3fe/0x870
[  463.153660][T13746]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  463.159422][T13746]  ? lock_acquire+0x2f/0xb0
[  463.163981][T13746]  ? __fget_files+0x40/0x3a0
[  463.168647][T13746]  ? __fget_files+0x206/0x3a0
[  463.173456][T13746]  __sys_getsockopt+0x12f/0x260
[  463.178388][T13746]  __x64_sys_getsockopt+0xbd/0x160
[  463.183555][T13746]  ? do_syscall_64+0x91/0x250
[  463.188284][T13746]  ? lockdep_hardirqs_on+0x7c/0x110
[  463.193627][T13746]  do_syscall_64+0xcd/0x250
[  463.198198][T13746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  463.204165][T13746] RIP: 0033:0x7f47d0985d29
[  463.208677][T13746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  463.228429][T13746] RSP: 002b:00007f47d07d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  463.236926][T13746] RAX: ffffffffffffffda RBX: 00007f47d0b76080 RCX: 00007f47d0985d29
[  463.244945][T13746] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000000000008
[  463.253045][T13746] RBP: 00007f47d0a01aa8 R08: 0000000020000040 R09: 0000000000000000
[  463.261061][T13746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  463.269219][T13746] R13: 0000000000000000 R14: 00007f47d0b76080 R15: 00007ffe5678d5b8
[  463.277381][T13746]  </TASK>
[  463.330485][T13746] Mem-Info:
[  463.339660][T13746] active_anon:52423 inactive_anon:61263 isolated_anon:0
[  463.339660][T13746]  active_file:15487 inactive_file:43183 isolated_file:0
[  463.339660][T13746]  unevictable:769 dirty:532 writeback:0
[  463.339660][T13746]  slab_reclaimable:11557 slab_unreclaimable:103877
[  463.339660][T13746]  mapped:30224 shmem:104129 pagetables:816
[  463.339660][T13746]  sec_pagetables:0 bounce:0
[  463.339660][T13746]  kernel_misc_reclaimable:0
[  463.339660][T13746]  free:1148908 free_pcp:11076 free_cma:0
[  463.429687][T13746] Node 0 active_anon:214292kB inactive_anon:245052kB active_file:59136kB inactive_file:156964kB unevictable:1540kB isolated(anon):0kB isolated(file):0kB mapped:110060kB dirty:1916kB writeback:0kB shmem:419384kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12364kB pagetables:3264kB sec_pagetables:0kB all_unreclaimable? no
[  463.514096][T13746] Node 1 active_anon:0kB inactive_anon:0kB active_file:2812kB inactive_file:15768kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:12036kB dirty:212kB writeback:0kB shmem:1532kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  463.593485][T13746] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  463.644556][T13770] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1855'.
[  463.657265][T13746] lowmem_reserve[]: 0 2465 2466 0 0
[  463.662616][T13746] Node 0 DMA32 free:719736kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:224556kB inactive_anon:244752kB active_file:59136kB inactive_file:156132kB unevictable:1540kB writepending:1916kB present:3129332kB managed:2551336kB mlocked:0kB bounce:0kB free_pcp:2248kB local_pcp:1188kB free_cma:0kB
[  463.724561][T13746] lowmem_reserve[]: 0 0 0 0 0
[  463.729403][T13746] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:832kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  463.776750][T13746] lowmem_reserve[]: 0 0 0 0 0
[  463.781986][T13746] Node 1 Normal free:3845560kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:2812kB inactive_file:15768kB unevictable:1536kB writepending:212kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:42536kB local_pcp:30628kB free_cma:0kB
[  463.863979][T13746] lowmem_reserve[]: 0 0 0 0 0
[  463.868800][T13746] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  463.908915][T13746] Node 0 DMA32: 5*4kB (ME) 18*8kB (UME) 31*16kB (UME) 35*32kB (UME) 31*64kB (UME) 221*128kB (UME) 341*256kB (UM) 128*512kB (UM) 35*1024kB (UM) 6*2048kB (UME) 116*4096kB (M) = 708148kB
[  463.955393][T13770] hsr_slave_1 (unregistering): left promiscuous mode
[  463.964085][T13746] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  463.994092][T13746] Node 1 Normal: 2082*4kB (UME) 74*8kB (UME) 174*16kB (UME) 482*32kB (UM) 323*64kB (UME) 210*128kB (UM) 84*256kB (UM) 55*512kB (UM) 24*1024kB (UM) 9*2048kB (UME) 898*4096kB (M) = 3845560kB
[  464.036134][T13746] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  464.073833][T13746] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  464.083668][T13746] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  464.103895][T13746] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  464.113228][T13746] 171748 total pagecache pages
[  464.123208][T13746] 98 pages in swap cache
[  464.137506][T13746] Free swap  = 86064kB
[  464.141661][T13746] Total swap = 124996kB
[  464.164012][T13746] 2097051 pages RAM
[  464.184071][T13746] 0 pages HighMem/MovableOnly
[  464.193799][T13746] 427367 pages reserved
[  464.198005][T13746] 0 pages cma reserved
[  464.932256][T13776] netlink: zone id is out of range
[  464.984822][T13776] netlink: set zone limit has 8 unknown bytes
[  467.564290][T13796] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1863'.
[  467.723911][T13803] netlink: 'syz.0.1863': attribute type 46 has an invalid length.
[  467.808382][T13796] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1863'.
[  467.849762][T13817] 
[  467.852234][T13817] ======================================================
[  467.855450][T13795] caif:caif_disconnect_client(): nothing to disconnect
[  467.859293][T13817] WARNING: possible circular locking dependency detected
[  467.873200][T13817] 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0 Not tainted
[  467.880338][T13817] ------------------------------------------------------
[  467.887466][T13817] syz.5.1867/13817 is trying to acquire lock:
[  467.893558][T13817] ffff88803644b198 (sk_lock-AF_INET){+.+.}-{0:0}, at: sockopt_lock_sock+0x54/0x70
[  467.902865][T13817] 
[  467.902865][T13817] but task is already holding lock:
[  467.910341][T13817] ffffffff8fabfb08 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_getsockopt+0x1e06/0x2bf0
[  467.919638][T13817] 
[  467.919638][T13817] which lock already depends on the new lock.
[  467.919638][T13817] 
[  467.930169][T13817] 
[  467.930169][T13817] the existing dependency chain (in reverse order) is:
[  467.939399][T13817] 
[  467.939399][T13817] -> #1 (rtnl_mutex){+.+.}-{4:4}:
[  467.946772][T13817]        __mutex_lock+0x19b/0xa60
[  467.951971][T13817]        smc_vlan_by_tcpsk+0x251/0x620
[  467.957478][T13817]        __smc_connect+0x466/0x4890
[  467.962715][T13817]        smc_connect_work+0x54f/0xae0
[  467.968120][T13817]        process_one_work+0x958/0x1b30
[  467.973622][T13817]        worker_thread+0x6c8/0xf00
[  467.978779][T13817]        kthread+0x2c1/0x3a0
[  467.983413][T13817]        ret_from_fork+0x45/0x80
[  467.988388][T13817]        ret_from_fork_asm+0x1a/0x30
[  467.993721][T13817] 
[  467.993721][T13817] -> #0 (sk_lock-AF_INET){+.+.}-{0:0}:
[  468.001406][T13817]        __lock_acquire+0x249e/0x3c40
[  468.006825][T13817]        lock_acquire.part.0+0x11b/0x380
[  468.012505][T13817]        lock_sock_nested+0x3a/0xf0
[  468.017750][T13817]        sockopt_lock_sock+0x54/0x70
[  468.023070][T13817]        do_ip_getsockopt+0x115c/0x2bf0
[  468.028650][T13817]        ip_getsockopt+0x9c/0x1e0
[  468.033706][T13817]        raw_getsockopt+0x4d/0x1e0
[  468.039291][T13817]        do_sock_getsockopt+0x3fe/0x870
[  468.044882][T13817]        __sys_getsockopt+0x12f/0x260
[  468.050297][T13817]        __x64_sys_getsockopt+0xbd/0x160
[  468.055969][T13817]        do_syscall_64+0xcd/0x250
[  468.061033][T13817]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  468.067573][T13817] 
[  468.067573][T13817] other info that might help us debug this:
[  468.067573][T13817] 
[  468.078169][T13817]  Possible unsafe locking scenario:
[  468.078169][T13817] 
[  468.085683][T13817]        CPU0                    CPU1
[  468.091332][T13817]        ----                    ----
[  468.096893][T13817]   lock(rtnl_mutex);
[  468.100938][T13817]                                lock(sk_lock-AF_INET);
[  468.107924][T13817]                                lock(rtnl_mutex);
[  468.114469][T13817]   lock(sk_lock-AF_INET);
[  468.118978][T13817] 
[  468.118978][T13817]  *** DEADLOCK ***
[  468.118978][T13817] 
[  468.127144][T13817] 1 lock held by syz.5.1867/13817:
[  468.132473][T13817]  #0: ffffffff8fabfb08 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_getsockopt+0x1e06/0x2bf0
[  468.142336][T13817] 
[  468.142336][T13817] stack backtrace:
[  468.148247][T13817] CPU: 0 UID: 0 PID: 13817 Comm: syz.5.1867 Not tainted 6.13.0-rc3-syzkaller-00073-geabcdba3ad40 #0
[  468.159394][T13817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  468.169663][T13817] Call Trace:
[  468.173135][T13817]  <TASK>
[  468.176095][T13817]  dump_stack_lvl+0x116/0x1f0
[  468.180992][T13817]  print_circular_bug+0x41c/0x610
[  468.186067][T13817]  check_noncircular+0x31a/0x400
[  468.191050][T13817]  ? __pfx_check_noncircular+0x10/0x10
[  468.196551][T13817]  ? register_lock_class+0xb1/0x1240
[  468.201874][T13817]  ? lockdep_lock+0xc6/0x200
[  468.206541][T13817]  ? __pfx_lockdep_lock+0x10/0x10
[  468.211608][T13817]  __lock_acquire+0x249e/0x3c40
[  468.216594][T13817]  ? __pfx___lock_acquire+0x10/0x10
[  468.221839][T13817]  ? do_ip_getsockopt+0x1e06/0x2bf0
[  468.227079][T13817]  ? rcu_is_watching+0x12/0xc0
[  468.232066][T13817]  lock_acquire.part.0+0x11b/0x380
[  468.237398][T13817]  ? sockopt_lock_sock+0x54/0x70
[  468.242399][T13817]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  468.248069][T13817]  ? rcu_is_watching+0x12/0xc0
[  468.252881][T13817]  ? trace_lock_acquire+0x14e/0x1f0
[  468.258119][T13817]  ? sockopt_lock_sock+0x54/0x70
[  468.263111][T13817]  ? lock_acquire+0x2f/0xb0
[  468.267656][T13817]  ? sockopt_lock_sock+0x54/0x70
[  468.272636][T13817]  lock_sock_nested+0x3a/0xf0
[  468.277356][T13817]  ? sockopt_lock_sock+0x54/0x70
[  468.282330][T13817]  sockopt_lock_sock+0x54/0x70
[  468.287139][T13817]  do_ip_getsockopt+0x115c/0x2bf0
[  468.292214][T13817]  ? __pfx_do_ip_getsockopt+0x10/0x10
[  468.297724][T13817]  ? plist_check_prev_next+0x12a/0x1a0
[  468.303235][T13817]  ? hlock_class+0x4e/0x130
[  468.307782][T13817]  ? mark_lock+0xb5/0xc60
[  468.312166][T13817]  ? aa_label_sk_perm+0x19d/0x5a0
[  468.317238][T13817]  ? __lock_acquire+0x15a9/0x3c40
[  468.322318][T13817]  ? __pfx___lock_acquire+0x10/0x10
[  468.327561][T13817]  ? find_held_lock+0x2d/0x110
[  468.332360][T13817]  ip_getsockopt+0x9c/0x1e0
[  468.336909][T13817]  ? __pfx_ip_getsockopt+0x10/0x10
[  468.342048][T13817]  ? lock_acquire+0x2f/0xb0
[  468.346666][T13817]  ? __might_fault+0xe3/0x190
[  468.351399][T13817]  ? __might_fault+0xe3/0x190
[  468.356124][T13817]  raw_getsockopt+0x4d/0x1e0
[  468.360746][T13817]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  468.366682][T13817]  do_sock_getsockopt+0x3fe/0x870
[  468.371787][T13817]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  468.377373][T13817]  ? lock_acquire+0x2f/0xb0
[  468.381923][T13817]  ? __fget_files+0x40/0x3a0
[  468.386556][T13817]  ? __fget_files+0x206/0x3a0
[  468.391366][T13817]  __sys_getsockopt+0x12f/0x260
[  468.396267][T13817]  __x64_sys_getsockopt+0xbd/0x160
[  468.401421][T13817]  ? do_syscall_64+0x91/0x250
[  468.406138][T13817]  ? lockdep_hardirqs_on+0x7c/0x110
[  468.411368][T13817]  do_syscall_64+0xcd/0x250
[  468.415907][T13817]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  468.421841][T13817] RIP: 0033:0x7f47d0985d29
[  468.426282][T13817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  468.446101][T13817] RSP: 002b:00007f47d07d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  468.454557][T13817] RAX: ffffffffffffffda RBX: 00007f47d0b76080 RCX: 00007f47d0985d29
[  468.462650][T13817] RDX: 0000000000000029 RSI: 0000000000000000 RDI: 0000000000000003
[  468.471276][T13817] RBP: 00007f47d0a01aa8 R08: 0000000020000040 R09: 0000000000000000
[  468.479285][T13817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  468.487380][T13817] R13: 0000000000000000 R14: 00007f47d0b76080 R15: 00007ffe5678d5b8
[  468.495399][T13817]  </TASK>
[  468.703323][T13812] Process accounting resumed