last executing test programs:

24.37717091s ago: executing program 2 (id=2522):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_GET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000480)={0x20, r3, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@OVS_METER_ATTR_CLEAR={0x4}, @OVS_METER_ATTR_ID={0x8, 0x1, 0xc}]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x44800)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x9, 0xffc, 0x7, 0xfffffffd, <r4=>0x0, 0xee01, 0x0, 0x6, 0x1, 0x5, 0xc0f, 0x2, 0x7ff, 0x92bc, 0xffffffff, 0x6, 0x3})
r5 = getuid()
setreuid$auto(r4, r5)
sendmsg$auto_OVS_METER_CMD_SET(r1, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000400)={&(0x7f00000006c0)={0x3f8, r3, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@OVS_METER_ATTR_CLEAR={0x4}, @OVS_METER_ATTR_BANDS={0x3b8, 0x4, 0x0, 0x1, [@nested={0x3b3, 0xac, 0x0, 0x1, [@nested={0x228, 0xf6, 0x0, 0x1, [@nested={0xb8, 0x11f, 0x0, 0x1, [@typed={0x8, 0x36, 0x0, 0x0, @uid=r5}, @typed={0x8, 0x135, 0x0, 0x0, @uid}, @typed={0x9a, 0x123, 0x0, 0x0, @binary="e66f4ae4cc8f9159cb21c9deb8cdc974f0df66d9661e54956f5ff97b98e826d5a04991f75025c08d084cfc616601470dd37310e19470fb0f2f6d7f859dbd87a0e2075924989f877f8ee094fdb2e0e518672bacdba753b33c2879fd7ed5b85664c0b9f7542d42ae8affd1ad1e06fc6c8ba11af14bf01fa0d13253b4675abc45ae85362cc7b90efe071c01b36aca9b70fb065e8762b5ef"}, @typed={0x8, 0xa4, 0x0, 0x0, @u32=0x9}]}, @typed={0x8, 0x21, 0x0, 0x0, @uid}, @typed={0x8, 0xe4, 0x0, 0x0, @u32=0x5}, @nested={0x90, 0x6, 0x0, 0x1, [@nested={0x4, 0x1}, @nested={0x4, 0x93}, @typed={0x8, 0x30, 0x0, 0x0, @fd=r0}, @typed={0x78, 0x12, 0x0, 0x0, @binary="f562cbb7fd0ecd07baf130213966df8e434de7ddd4fe666cee962fbce1da97b5794314fd64570b28e7a65f6269606a69f880d1760bb46adc01916fa56fee03ebc1b4f8a62bce59b3237b950cc461c30f7a06b29f461ad3832a0a33cc93e39771887be2e0761197a8e49b02eece02fb790b5d19fc"}, @nested={0x4, 0x133}]}, @nested={0xcc, 0x68, 0x0, 0x1, [@typed={0x9b, 0x43, 0x0, 0x0, @binary="d9aeaf8208c0ca6d130f4c1de9b6d02547d53964e33d109882897291f8f040e6335b22110a07d649af3eecbf9cc3cb8d91de64cff75b3c588ad5ddae6734436bfe5dc2e6f3f1110b336a82a8e65551a653e9d753046993247ace2fdb2400030dbccf6dbae00afe4bc12373093822d9fae2e27d471231186e2a27454846696f497d00b4fc4d9a12297503dce6a5f60cfe1b26765c5e3f03"}, @typed={0x10, 0x125, 0x0, 0x0, @str='/dev/uinput\x00'}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0xd}, @nested={0x4}, @typed={0xc, 0x9a, 0x0, 0x0, @str='^*\xef,-\xc9%\x00'}]}]}, @generic="7fcd18ace4e3f62967c5cf7f364200728590b3274d6fc4594cdeef52489e4dea1068ac7df83f1d6d7180efd2f750e5a81263badb996d53de9780d88e7f2e7ac30d46b57e6d563930232da132050fd2c0627db71caa16354359fa28ba9b7b1f37baeb8dc693eabd15ec4ed2b7338c802ec198e570f883d2733b526f142b74704664a0cd7d22d98e5ce2e5a8cc37ca3d2b2dc63c04f5b904c1db2b59aa003269b29ff6bf", @generic="5948bd564f2db5889b2e31fb5ec036c36d74517495db4b0b9ff8dc1456eb1a0383629ed91d382dc63833575f797991b5b2425c3d1c3b44cbddd9a0e6238e90731381abb8f99160ebf23f1a00a6618717f3e34b45b925e5848e3e0fd382bb1d375694d57508260de3095cfd2947e2108cf0fc29b4dd061e533e161e59c8b2f5ad20106735f294bd34e0877f8080f508b384a16598be05617532308d6d926e96e9002477649f07162308cd9d7dbbae35e7f0ac14c8b25deebbe7baf2283f5f728217303981702f7e63c35999bd690e261710af4d9e0d5f62e47ef47f5150ba50ec7fb9dfc0"]}]}, @OVS_METER_ATTR_ID={0x8}, @OVS_METER_ATTR_STATS={0x14, 0x3, {0x3, 0x8000000000000000}}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x101}, @OVS_METER_ATTR_KBPS={0x4}]}, 0x3f8}, 0x1, 0x0, 0x0, 0x44034}, 0x84)

23.47241418s ago: executing program 2 (id=2524):
open(&(0x7f0000000000)='./file0\x00', 0xa41c2, 0x84)
r0 = socket(0x2, 0x801, 0x100)
pipe$auto(&(0x7f0000000080)=<r1=>0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000002c80), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r2, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002cc0)={0x28, r3, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@SEG6_ATTR_DST={0x14}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x4812)
sendmsg$auto_SEG6_CMD_DUMPHMAC(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r3, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0xff}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x7f}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000004}, 0x4c001)
fcntl$auto(0x3, 0x4, 0xa553) (async)
fcntl$auto(0x3, 0x4, 0xa553)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) (async)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
sendfile$auto(0x6, 0x3, 0x0, 0xfffffdef) (async)
sendfile$auto(0x6, 0x3, 0x0, 0xfffffdef)
connect$auto(r0, &(0x7f0000000180)=@nl=@kern={0x10, 0x0, 0x0, 0x1000000}, 0x0)
close_range$auto(0x2, 0x8000, 0x0) (async)
close_range$auto(0x2, 0x8000, 0x0)

22.173136847s ago: executing program 2 (id=2527):
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
read$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffffff, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x11, 0x80003, 0x300)
openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, 0x0, 0x68000, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000040)=0x5)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x4000)

20.473596106s ago: executing program 2 (id=2531):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001180), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x894}, 0x4)

10.685540808s ago: executing program 2 (id=2590):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
select$auto(0x3, 0x0, &(0x7f0000000040)={[0x9, 0x200, 0x0, 0x7, 0x7, 0x3, 0x6, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x6, 0x6]}, 0x0, 0x0)
mmap$auto(0x1, 0x7ff, 0x100000000, 0x11, 0xfffffffffffffff1, 0x8000)
socket(0xa, 0x2, 0x88)
select$auto(0x6d0c, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x800000000000008, 0xc, 0x9, 0x3, 0x6, 0x1, 0x40009, 0x5e582972, 0x4000000000000000, 0x14, 0x93, 0x8, 0x8, 0x6]}, 0x0, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x14, 0x940, 0x1ffe0, 0x3, 0x6, 0x6, 0x7, 0x5, 0x2, 0x9, 0x6, 0x9, 0x2, 0x3, 0x2, 0x80, 0x0, 0x0, 0xd5, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0x7)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
connect$auto(0x3, &(0x7f0000000140), 0x55)
socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
prctl$auto(0x59616d61, 0xdaffffffffffffff, 0x7ff, 0xffffffffffffffff, 0x8)
ptrace$auto(0x10, 0x10000000000001, 0xffffffffffffff56, 0x868f)

5.189587101s ago: executing program 2 (id=2637):
socket(0xa, 0x4, 0x0)
mlockall$auto(0x7)
set_mempolicy$auto(0x2005, &(0x7f0000000080)=0x87e, 0x4)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x80800, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000)
sendfile$auto(0x6, 0x3, 0x0, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
munmap$auto(0x20001000, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0xfffffffffffffffe, 0x8, 0x8003, 0xeb3, 0xfffffffffffffff9, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
timer_settime$auto(0x0, 0xffff8000, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x8c3a, 0x2, 0xf)
socket(0x2, 0xa, 0xa)
lsm_list_modules$auto(0x0, &(0x7f0000000100)=0xbefc, 0x0)
ioctl$auto(0x1, 0x89a0, 0x8)
read$auto(0x3, 0x0, 0x400000)
socket(0xa, 0x3, 0x6)
socket(0x10, 0x2, 0x0)

2.514042819s ago: executing program 1 (id=2652):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
get_mempolicy$auto(0x0, 0x0, 0x7f, 0x41ff, 0x3)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r3=>0x0})
sendmsg$auto_NET_DM_CMD_START(r0, 0x0, 0x800)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
clone$auto(0x20003b4a, 0x2, 0x0, 0x0, 0x2)
pidfd_getfd$auto(0x3, 0x1, 0x100000000)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r3, r2, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x6}, 0xc)
write$auto(0x3, 0x0, 0x7fffffff)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x400008, 0xdd, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)

2.30089115s ago: executing program 1 (id=2653):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
r0 = socket(0x10, 0x2, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rB\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeep\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="14000000", @ANYBLOB="4687eb"], 0x14}, 0x1, 0x0, 0x0, 0x4004080}, 0x0)
recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x801}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0x2)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x82840, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x80805, 0x0)
socket(0x2, 0x1, 0x84)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x405, 0x8000)
r1 = socket(0xa, 0x5, 0x84)
sendto$auto(r1, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @loopback}, 0x1c)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r2 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x181502, 0x0)
r3 = open(&(0x7f0000000140)='./file0\x00', 0x484a42, 0xe1d2b27bdc14aabc)
utimensat$auto(r3, 0x0, 0x0, 0x5)
ioctl$auto_SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000100)=0x7)
write$auto(r2, 0x0, 0xc3)

1.529388364s ago: executing program 3 (id=2655):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.7/usb8/power/wakeup_active\x00', 0x40000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000100)=""/51, 0x33)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0xa, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
close_range$auto(0x2, 0xa, 0x0)
open(0x0, 0xa240, 0x15e)
open(0x0, 0x161342, 0x100)
mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000)

1.479747249s ago: executing program 0 (id=2656):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000006c0)={'batadv0\x00', <r3=>0x0})
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=ANY=[@ANYBLOB="2400f0ff", @ANYRES16=r2, @ANYBLOB="110b27bd7000fbdbdf250900000008000300", @ANYRES32=r3, @ANYBLOB="08000600", @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x4001}, 0x9800)

1.424579093s ago: executing program 3 (id=2657):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000500)='/dev/video0\x00', 0x40000000, 0x0)

1.13729384s ago: executing program 3 (id=2658):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001180), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="010026bd7000ffdbdf2504"], 0x14}, 0x1, 0x0, 0x0, 0x894}, 0x4)

1.113612237s ago: executing program 0 (id=2659):
adjtimex$auto(&(0x7f0000000280)={0xffffffff, 0x0, 0x7, 0xb76, 0x3, 0x8, 0x5, 0x0, 0xfffffffffffffffa, 0x7, 0xffff, {0x30000, 0x3}, 0x2, 0xffffffffffffffff, 0x9, 0xfffffff8, 0x0, 0x6, 0x2, 0xfdda, 0xbb9a, 0x20060b5, 0x7})
r0 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/uid_map\x00', 0x3, 0x0)
io_uring_setup$auto(0x3, &(0x7f0000000080)={0x7, 0xf, 0x2, 0x8, 0xffffffff, 0x7, r0, [0x2, 0x8001, 0x1], {0xc79d, 0x2328, 0x9, 0x0, 0x40eebe90, 0x4, 0x2, 0xa8d, 0xfffffffffffffffa}, {0x636, 0x8, 0x9, 0x1, 0xff, 0x1aba, 0x7, 0x9, 0x50000000000000}})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/meminfo\x00', 0x0, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB="17000000", @ANYBLOB='h\x005'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r2 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000040), 0x2881, 0x0)
mlockall$auto(0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
write$auto_ecryptfs_miscdev_fops_miscdev(r2, &(0x7f0000000140)="390d00a741ee", 0x6)
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/kernel/config/target/dbroot\x00', 0x40100, 0x0)
mmap$auto(0x80, 0x2, 0x2, 0x18, 0x5, 0x1)
io_uring_setup$auto(0x6, &(0x7f0000000180)={0x9, 0x3, 0x0, 0x75c, 0xd, 0xd, r0, [0xfffffffb, 0x24, 0x5], {0x7, 0x566, 0x4, 0x54132938, 0x0, 0x4, 0x100, 0x9, 0x5}, {0x0, 0x3, 0xeb6, 0x1, 0x0, 0x3, 0xff, 0x1, 0xd724}})

1.072735461s ago: executing program 1 (id=2660):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_GET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x44800)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x9, 0xffc, 0x7, 0xfffffffd, <r2=>0x0, 0xee01, 0x0, 0x6, 0x1, 0x5, 0xc0f, 0x2, 0x7ff, 0x92bc, 0xffffffff, 0x6, 0x3})
r3 = getuid()
setreuid$auto(r2, r3)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000400)={&(0x7f00000006c0)={0x3f8, r1, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@OVS_METER_ATTR_CLEAR={0x4}, @OVS_METER_ATTR_BANDS={0x3b8, 0x4, 0x0, 0x1, [@nested={0x3b3, 0xac, 0x0, 0x1, [@nested={0x228, 0xf6, 0x0, 0x1, [@nested={0xb8, 0x11f, 0x0, 0x1, [@typed={0x8, 0x36, 0x0, 0x0, @uid=r3}, @typed={0x8, 0x135, 0x0, 0x0, @uid}, @typed={0x9a, 0x123, 0x0, 0x0, @binary="e66f4ae4cc8f9159cb21c9deb8cdc974f0df66d9661e54956f5ff97b98e826d5a04991f75025c08d084cfc616601470dd37310e19470fb0f2f6d7f859dbd87a0e2075924989f877f8ee094fdb2e0e518672bacdba753b33c2879fd7ed5b85664c0b9f7542d42ae8affd1ad1e06fc6c8ba11af14bf01fa0d13253b4675abc45ae85362cc7b90efe071c01b36aca9b70fb065e8762b5ef"}, @typed={0x8, 0xa4, 0x0, 0x0, @u32=0x9}]}, @typed={0x8, 0x21, 0x0, 0x0, @uid}, @typed={0x8, 0xe4, 0x0, 0x0, @u32=0x5}, @nested={0x90, 0x6, 0x0, 0x1, [@nested={0x4, 0x1}, @nested={0x4, 0x93}, @typed={0x8, 0x30, 0x0, 0x0, @fd}, @typed={0x78, 0x12, 0x0, 0x0, @binary="f562cbb7fd0ecd07baf130213966df8e434de7ddd4fe666cee962fbce1da97b5794314fd64570b28e7a65f6269606a69f880d1760bb46adc01916fa56fee03ebc1b4f8a62bce59b3237b950cc461c30f7a06b29f461ad3832a0a33cc93e39771887be2e0761197a8e49b02eece02fb790b5d19fc"}, @nested={0x4, 0x133}]}, @nested={0xcc, 0x68, 0x0, 0x1, [@typed={0x9b, 0x43, 0x0, 0x0, @binary="d9aeaf8208c0ca6d130f4c1de9b6d02547d53964e33d109882897291f8f040e6335b22110a07d649af3eecbf9cc3cb8d91de64cff75b3c588ad5ddae6734436bfe5dc2e6f3f1110b336a82a8e65551a653e9d753046993247ace2fdb2400030dbccf6dbae00afe4bc12373093822d9fae2e27d471231186e2a27454846696f497d00b4fc4d9a12297503dce6a5f60cfe1b26765c5e3f03"}, @typed={0x10, 0x125, 0x0, 0x0, @str='/dev/uinput\x00'}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0xd}, @nested={0x4}, @typed={0xc, 0x9a, 0x0, 0x0, @str='^*\xef,-\xc9%\x00'}]}]}, @generic="7fcd18ace4e3f62967c5cf7f364200728590b3274d6fc4594cdeef52489e4dea1068ac7df83f1d6d7180efd2f750e5a81263badb996d53de9780d88e7f2e7ac30d46b57e6d563930232da132050fd2c0627db71caa16354359fa28ba9b7b1f37baeb8dc693eabd15ec4ed2b7338c802ec198e570f883d2733b526f142b74704664a0cd7d22d98e5ce2e5a8cc37ca3d2b2dc63c04f5b904c1db2b59aa003269b29ff6bf", @generic="5948bd564f2db5889b2e31fb5ec036c36d74517495db4b0b9ff8dc1456eb1a0383629ed91d382dc63833575f797991b5b2425c3d1c3b44cbddd9a0e6238e90731381abb8f99160ebf23f1a00a6618717f3e34b45b925e5848e3e0fd382bb1d375694d57508260de3095cfd2947e2108cf0fc29b4dd061e533e161e59c8b2f5ad20106735f294bd34e0877f8080f508b384a16598be05617532308d6d926e96e9002477649f07162308cd9d7dbbae35e7f0ac14c8b25deebbe7baf2283f5f728217303981702f7e63c35999bd690e261710af4d9e0d5f62e47ef47f5150ba50ec7fb9dfc0"]}]}, @OVS_METER_ATTR_ID={0x8}, @OVS_METER_ATTR_STATS={0x14, 0x3, {0x3, 0x8000000000000000}}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x101}, @OVS_METER_ATTR_KBPS={0x4}]}, 0x3f8}, 0x1, 0x0, 0x0, 0x44034}, 0x84)

883.375301ms ago: executing program 3 (id=2661):
r0 = open(0x0, 0x22240, 0x155)
mmap$auto(0x0, 0x400008, 0xdf, 0x19, 0x2, 0x400000007ffe)
r1 = socket(0x15, 0x5, 0x0)
r2 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'team_slave_0\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000001a80)={'wg2\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r4, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000001ac0)={0x2c, r5, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_CABLE_TEST_TDR_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_CABLE_TEST_TDR_CFG={0xc, 0x2, 0x0, 0x1, [@typed={0x8, 0x10c, 0x0, 0x0, @pid}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24040000}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'syzkaller0\x00', <r7=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'pimreg1\x00', <r8=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'vlan1\x00', <r9=>0x0})
sendmsg$auto_OVS_VPORT_CMD_DEL(r1, &(0x7f0000001680)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001640)={&(0x7f0000000180)={0x14a0, r2, 0x300, 0x70bd28, 0x25dfdbff, {}, [@OVS_VPORT_ATTR_UPCALL_PID={0xca, 0x5, "686427fb88909c66a6248067b6aca02d2ea27d7b84fa1cd1437c70c4e42cefb40d42b369cafff22fd6313565a6af9b225f40c2cdfe8ee3fee947d47c4427c301db3b4e8666f642938d8d572100c4779be729a8ca240283ed2b8c7f588026717e8337910b61d5577cbd04a814a413f2081782201045b9d8bc0913405c154ae6aaec457465972c06f13a49625aac48960319b1bebe6751392e674eaf998c9635fa8a25e6ed86b804304be46217ead35dd5e618525025ec5c8a1baf4b3c7cfe4f076e456a4ef42b"}, @OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r3}, @OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r6}, @OVS_VPORT_ATTR_OPTIONS={0x1295, 0x4, 0x0, 0x1, [@generic="437d9c2b62a84dabdb2d7d130d07432995fa58b9368adb9d60320bb463bd9c65d975636adb2fead144da65e83ff02ff16b434ee520980f1a0954b72cee8c97886fafd9c21760f4647c0921ea3010f5fbe3d3ce58e61ff01184be7d9d47c73d9805ac4b74b82b28b0a9a68eda4a38034e408ce1f96375ab81632f5c07eaa7471a7ab3dfebf52c8cf629d3c8f36d748314751377bb71a88b5b6736d127e885f99b59072a22c334a27d0a7b8e5231568c0a03cda7441c8382ca73ac2e8993a59b2e3fd0115cb0bb780d6b083152a524f5c76f59185a949944e4513a2ed59aa0fb2a8aa85b87159cf78875f9d8af70f4c4e18a487e03c64dda7a13939988e73ee5c8adf8201095bb6da3aaeb6246b961941e24ca7e8d80062fd91af0bfafeea08fac6555109340a25a56f844d29a85f1a47c3669c7b50b581c8989a5398cc4e9350c018a9cf945a8c7de7d5461a26253f0a91ade3a5d1e02b893343a9655a89a78b0a9cbf798f75aa1960613877410a65bc23eb60ea649cc7a0a183d581fa79562be1bf5c2310aad2063332da78a26ffe4f19f748d0ae9465c549245547fc4aae1b54e29d66718dc2bc742596c45ce5f6fb304d04e7e648d9b028e945de366fae47a51eea479e9eb51473609f69d1a3b6c5e3f858db6d49447e58180af4393e3e08e2a3db749949f25035a9f0d722ffec43f54705b9603167ada8c42f309b1bdaef2bc399ba0f9f136e10ca8ba22cd1b425d317f48db49318da6095de4674f2856fd52631b019ebc7fea53cf9fd0032297d31e08660b72ecb907c8ada2c04ecfe0d3a28a343d594810cbc4ac63294cc61378323b6c09736a4be24fcac28752ed413327b60a9d056cad93c0b24da35debc40daa01852e22d2f802c911c7ea32ac0b3537a120e9d6339ebee57e269810d686ce026adbe3ca1ac829b7ea5a9517bd8754a07837a46addabd85db330848fbaa6c5891c81bd8709eeaf85c0f7b30c0bf7745f4f4406aa8c3d44a91c6fa81c6949240732e807ef946cb5779210e1446256e7121f7182e3608a70b849731cb717f756a1a2f829f11ffa8c3a2cc6f5f729991d467f931ecaa59484561a94255f3ec7b2bf647eb7247bbbaa8e3b324ec76949812e43dbf997c23ef9ae3baf8a8c44f0c6576bbeb09ae3a1d12481a53970ff4d227c79907ca76a752e00a05d13b412b16b1b208dfb8a34c3235e5e354b67318fc171534b02c5e10df5ceb1117ce8e60b65fda6448aa33545c8837f613b44ed982963bb95c5d07d29f0469bac4ddbd629419fff562c42f2bd28631f0bea8146e388599e63218c92f9457e188cbce90767a232dbd655a72270e013f309d81f086a4f9080b57818299ff4c30c35075968cd362b6ef68ed324975582013c163d7e28651aca64f2b50ff7a0e31e1d36e02854f55c9f295ac93fb41cb60dc938c798cd467f780a11061de73de6a671955567dc9eee94fef7ab66a82219b4fdfa2043b919a063de67a376c3f2b384d84c8934c78907bcfab08ddea7c0795e7e436d6cd21b030eb4524fc0e6fb7031f3d538353ea293d710939321440270f4aa0ed062056da4b6c186ecc115d0cc18800367aa8fc040b92f953353881753b21960a53fe45dc918a7e346221f98982350655edcc1b632cac707b28984f19ee85cfa1cbca9cbccd33caf7452be81d5c74857b195bf16c3c6a8d78bd774481041a0dfaa2a3a8f583c79dcc254b63192609766c4e316155115aed74b102b68068bf767b3659d05d74b58ccc272e27dd4a9994cedc44d2acff6ad2f0d7d39af8a3db434f4677df46e93449337751812d0e69158f26e5d56630036911af4cc6cfddd597ea04cdb3cee329ba884e8aa513e885c19646968c04c886bcdfb102b3b84c3651cafe01cdaa8783ede10174f6009ec7b355b65c274bdfb38a572494d20283727ebfed253842126f6db3927a69b1c04190a4d9814c4d2226ee502a86ba40bfe66486cb12bbe041cb2c658724c3752033da5a595053bc987c842c6e7f3441a3d5dc064abfe3d30c2466e7128b78592fbfb110dcd28c4ec59cfc7e437751ce00a12b089405630690ec86db899cd42fa21bd89c5b69037359dc71d11071c39b0f39cdc545c0d79d1e6db7e5575017104b3d8d33edda73c052e789abf7f9a469cdf941b92d04da6c9321739c107c3b7c817fa9d3b5c0ab0d044e9ebb6a8552b06d9beb0615dbeeed618794ebab9e9907932e4b3e76e8307aae4c06fcc1c3e2d537a9e9a988dce838bb17b20ddf3b00e59a2fa464503d5787ad1d3081dc533066dd32542ce28ab41edc70c3ec35a8633c69acc7c52da704119201da141e249bf4f1aff3a4e06b2b528b089125cc59a1e28e44bf07c333a337afecc40a5ff32c595d047aa1277b1094a7dda1803ade364750e1295f6a24d91154056d990b62a28793c0acc74133bcc7baee0bc89f9074235610d7a5a190196ea99a4fbc041b120f5148162c8a9145950dd800d4031a0b45d0059fab815123f4398ee8e08d9669f5a61adf48fe7a8731042deecec7d01700de43745b051e7106c710aa3113550d4f968f6a5c775eb63ec4a21ab406cd9e78c9d40829477720f0384f0c45ee522ef1b709a981884745a5203b182e1af9912d7ecc78c5fe6b79d7a38e0899e16a23b4c0dd6efaec3f8440bbe650b7d36d803ecff2b17b02b7e0f412359273290c6841120186dc92e175f73b4c8a28aec348847ac3464a3b7c7fe3d937e842287001fe28e01fad0980ee2acb9dddd57f5603cb21006a20fd4ec6e0482234d6151cd0b9b9dfa106749276fb70b1c90013751472c9347576589d70defea94e264f49e12419ca97a2b86d805b39d5ffc6d0d78032432ba26f8cee5dde1192046f53475bbf2bac1bda6b75343028a075fb6c05ef99b5672bbc1b7ac95cce00ac223629ae17a2094c1860781501f35dfc33ddf784af5b6f1bc5b57ad2000b46732b35da68adb287a94dfa1f143f5df0345395f5727a2f343d875bfc17989cb9d70027cf535f26b08595dac8d81d09172a19062ce6b5246aa124bb873c889f5aa1bb3d262deddabb08d746e1a5527bb7113e01c203fb7f5d3ffdc4c35c243342395bec81a8703e646cdf1713a52afb8b45b77d3955ac1ddd547fda61188b47fc1faa28bfbce0fd753d4cabb15d93611c0e6a7e88594a6681a4debd88a408fd5ad5d724af6a1612ccd955e173e00be79fcf0a8ff13c6f78c8c26ae66b952047fdd05fca0d20ed46bddcc9ea9d72f5bbb3123f3d898ebca0450b760f448698459639816e1e8d835a522e6cefd842743ac9c93bc2aa5cf42889befdb879e6ceac330a004ee006e5f7719ba656fb1fefd80c1a8645412038b342332aaf2e135dce36d0b1fa0ffb18850e7d3c01e32d1bb68b78aed04ec031a29b1b9ab44bdfaf3db3483d7e036c7d449eb7287361b6013aaa1eb878dbaee7c1e2d4405e77d1dda1880cff9030b3bb0518deb8450a788c5f4b7054458dbf174ca72a6b3a90fb48b8f4152721a0ee26898cc830af5ea1d46198a3f317a8fe7ce3bef030049ca57fc8f38f3766e6d96b5bfd5e47c0237fef558783749a7d33d4d9690704c26167c933cfe1f77a81ef655f9875dbfbc48650ce15c34fa5ddc851fda0deda08a18dcb17e099375c1e43389c414b80088630074a0e964cf6828156b7dfd8870a60a7411d78f00875a3de66bec02c675b38d51094ac09ead7df224a1199e11884b4d92181dc7b7dcd91004be4df2cae9fd35e3bfe34324cc7e999a07fa0ca98a6cb4ffb1c52adaec87e56724afeb37c02d95dc2fd29e72634f2b2c7ec50547ca35561b147bdd55482d179517f6b20ce5f62b73fddd5eba2f502bae2ef32a03ab45ca31536264ba813a8dcd5c7c24cf53402ae046fd31d2b54186612813aa183b7dbe7312f1353e1293596c937ec863721a9ef2126ea3190f97ae258c88beb131b1c57b3319ed37ff642ed624946382e28779c534479876f20d03e0d42a408504d044fde5cedcffbff62beb5d72afd8a9b6644eed7265b17cfa568a9ba411ff908bc9f3d622fd5cafc5098a4138125ba0aea6c8ed0ec837ff9b213573f813b02c2e0692d1e64fbc3f808bc68f7ee63dba5f7aa84e4941bb9074c5da080e0453be3267b93c237b5a05b456cf3f2ae1dba60f94f7ab4e58e705915728efbf9ec6bf5e997fa06073a26063be8aa397806bb77c34549cd62341aa5b31a3c93b295dfec62c07576ae97d5a2e02b3ff16c6ea21dd1785990bec52be6e3ea8f70d35d013103b1dbb7b8108b3eb095aab1485324e57ddd21eb3dcbccbcc82d58ac0c3cd4af038790b933e9d1d1bd25e7719744302d93a8a6feb1e328fdb55a2a1963a172bf13b0455769a0a9001ef6b78a1ad4a7befed8b17700d0e7a4edefa264c76af21740e61de2665db1fea910b4971898d01c889be4b4f59470382035720d2a95e82b62a3a05eb2d3fe01e92762efa56d26d759412742d1b4a1a1b06aaa19c6c87c7d33b2c2658ddb67d74a84e9f1cc605db2233db5926884ac22ec9c14c3cb25182b183a5cf3b4ee0414377c215f28614794db0a2c960ff211f53875fa441a808b6040f4c71638dff1bba5feff0bc06135b34aaebea9b8eb5fcf4c809ae0cc05156d5dcc94bc3e5d9daa4d56358e245f6fda8ec6af059ede558de178720b15c5067a573f14dfb0925eae3619acc3dcda8c476643556694d6dee48ca0152a11d1f89cc0a8eedd4a5a06d1da9b11fc5668d5856d1820286484f4b1663187f22b9e9c83a62007d4cae20a2d3bb7178efafe8c9c06721cf81407572cd0f1d940823ba3fc743bcd7398659ab325927eb84548be6fb7c5f819d611f4de3fe66a06e805aa3b17379e0512dda404607631c5075153e2c21299f8b095ab0d3ff44f3b11c5790a41509fe5783370fccb90bfa5f985200287a70b397724e7c6378ebbb28a3b3437fdf8189181d3ea2ab1916de8b7e636731ac5e96b31f1d74e09568fef40fc545c2ede70f66f5946a52c4083390e86761ebcd8817a4aaeb6b31ccc523f7a9045597278dca63fc4e481669ba1fa01c13cc9cf90fc7703cb3801c862bd6f59acc6ff17dbb9f40e7a89cf0fcca17188c3efca152a399da27630fabc5a1bf55967a9e93738cfd848ffb3a54700e2d04540741a50c80b459097aec24a946323cbdfad9023972b40e1e5e90452c8637084c25947a51b3a7f66c153400d5fabe259c7f7c2200d1d61ba7f2213d4f77074eb9fb49913d8aeaee5fa8291f402daf930096894c8dff500467294441df49b57c3f1e1f1a636158579f86ba1323dadda3be1b092b637f5ce1d7536d0ed9a6e511fb1029d79254afa4633759a855bbb34a124636a35ed3b674699c921c2f3485c4faebe7789e470e97b0b8c334141145e6e26a18e4909dc36684ec2ee3f4e2b8a90b2251053af1eec9851ba1cf750efcc8a8d317dbe86b73546f576ee00b76e7dc08f5001add68572ef6e39c65f9aad6d86ae314d96a9d677fb40107e40e1e84044b93228bfd64e6ea69e7da52dc90bf8955bcacb497597cbd7ff45e4ebf7683ffe482713d3790dc017c0ca65a467e275427d5f29e093f884c96d932deb2f4c024b3f4d64ea403581f6bf3088455ce99c0388135ac91bad7980f027be590b81c5f7cc957f06d5d819079daf6535e7352d9377fe563d63b9bdfb04ab8133a0f5e312ea416858ae41dbd0025366b757a15656c9fc29c5173a6dd7fa47d600c720b285f507358ccfd5fc0ce1970916123e5a11c8a90fd829c9f91cfc0857c3f0e70dd39e293935544", @generic="014fa7ceaf0b5b5d4ea23187c3090b0727c6bbe654997b2b1004c4397e1e9272e3380349096bf7a14eb7ee01eccf4dc26136616d2d3abe3fcbcee1628241126b1f33d4aa32152d09a02b4a18c8c8e238b1fd430dfb31dc9d2158a6c45fc9b8710010e47a966b1ecc5473eef9d7d1c3a918fda3245e97b39324764442a31ab0b0a685f87f7249569f518749dba187e71ba548799283d3eec87927422d4514e013fb26252bc2f5da5a55cc9163216ba0ee0a2023da96", @nested={0x1d9, 0x146, 0x0, 0x1, [@generic="e54b8e0ef935fab1abc617576100c4af226286e27cc9ce61b63000273b620685a9c3bd8ebc050bbfe99c00581c01c7e9135b4fdb179f25bf3ba4f35edbf33e178ad4a9561cb22ff9420ef612b1250c89220f294db3c1066c8726358536686d4361d01c769a9eabc262b46298f0f2872f04006838cfce65e389c656361083800585954b73b2141c2957b05f7f25e9c6ff990227b662db204f5aa5653b06914dfdd981735209c3daafb5fd411137b43910dfe11c5b62727414cd6e50575005c8a7467df64dfb360197a7fde1e1a923ceb2b88a9416037794eac1dc85aec18bf1cef5f8250a520c28aa752dbe9ba90393d5714ae69b", @generic="5ccb9303213f23e7ad956467a101eaa274f06a03769fcbc8e127c3fe82ce1de8ef87f96a1aaf806bb8b8a6b8557c3d01509662c2bafed47108018e5476ab1b81d517da0a5ed9ad7ba2e067bac32ef0d7a4a59f7b2ef9baa489d09d0eb8b44ee0d310c799db2f6f2632c08d85a363192da62f2378a82c13e811c1c2dc8e82c2fefc35bb8160f7b0c1a1a096618b1e70eaf0738649f2d6a153418b01d559e3904dffbdea05a3b45c9ec74e40d1d6c2be396ff28c2c2945129974c49567c7eb84efeab47937bf2fca261d48e22a26c65914c2ccbc703d279ec829", @typed={0x8, 0x7f, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x36}}]}]}, @OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r7}, @OVS_VPORT_ATTR_UPCALL_STATS={0xf5, 0xa, 0x0, 0x1, [@generic="1d65627494e556c47c07cd8f2ecfba8ddaf303cd00aa3889c539b57dc7eb34aca690507c6e66204371cc24bc3a76d1d50ca2979b110031393b296a057a77d89008cedfe86c2e26ba176b8575d7a1a83d2cca799c85c20341503ecdeea29ddcb6fa6000af8ad55eab07edafff8b9a271efadbf41e48944770016c327ae3d62f4bb40a329891d47f5099948d82e89936139e62bf99d4fdef71782b4330269567e424e514b9dd153458f10b13898f0db3fdb7c9c1e5c0d7788e8598c82bc09627126392b255fa45e10b01669746529e171227b2b7fa2a1eb11bf9f42c3d9d8822f380c0a7a44ebe291b9e38a5e3cd7ec40885"]}, @OVS_VPORT_ATTR_NAME={0x8, 0x3, '@$\xda\x00'}, @OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r8}, @OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r9}]}, 0x14a0}, 0x1, 0x0, 0x0, 0x4000}, 0xc000)
getsockopt$auto(r1, 0x114, 0x2714, 0xfffffffffffffffc, 0x0)

769.313479ms ago: executing program 3 (id=2662):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r0, 0xc0109207, 0x0)
read$auto(r0, 0x0, 0x80)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bus/usb/031/001\x00', 0x80, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
rt_sigqueueinfo$auto(0x0, 0x0, 0x0)
getuid()
poll$auto(&(0x7f0000000240)={r1, 0x40, 0xfff8}, 0x8, 0x3)
sendmsg$auto_NL802154_CMD_GET_SEC_KEY(0xffffffffffffffff, &(0x7f0000005940)={0x0, 0x0, &(0x7f0000005900)={0x0, 0x590c}, 0x1, 0x0, 0x0, 0x20040080}, 0x4000054)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4040000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mlockall$auto(0x8000000000000001)

765.635626ms ago: executing program 1 (id=2663):
ioprio_get$auto(0x1, 0x0)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r1 = socket(0x2, 0x801, 0x106)
getsockopt$auto(r1, 0x11c, 0x2, 0x0, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0)
ioctl$auto(r2, 0x4b41, 0x0)
ppoll$auto(&(0x7f0000000000)={<r3=>r0, 0x40}, 0x2, 0x0, 0x0, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84)
socket(0x11, 0x2, 0x1)
r4 = socket(0x2, 0x801, 0x100)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000005c0)={'veth0_to_bond\x00', <r5=>0x0})
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_ifindex=r5, r4, 0x0, 0x0, 0x1, @relative_fd, 0x5}, 0x96)
ioctl$auto_SOUND_PCM_READ_CHANNELS(r3, 0x80045006, &(0x7f0000000340)=0x2)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
socket$auto(0x8, 0x9, 0x6)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
setresuid$auto(0xf5, 0x8000, 0x67)
ioctl$auto(0x3, 0x4b49, 0x38)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r7=>0x0})
sendmsg$auto_NL80211_CMD_SET_NOACK_MAP(r3, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000380)={&(0x7f0000000540)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="05000200050000000a00c7008c1cd96e86ac000008006900d000000005df6424f524c30e"], 0x1c8}, 0x1, 0x0, 0x0, 0x24000080}, 0x20002014)
ioctl$auto_TIOCGDEV2(r6, 0x5429, 0x0)
ioctl$auto(0x3, 0x41045508, 0x1)

611.983606ms ago: executing program 0 (id=2664):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
set_mempolicy$auto(0x1, &(0x7f0000000000)=0xdfaf, 0x5)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1, 0x2, 0x0)
setsockopt$auto(0x1, 0x1, 0x48, &(0x7f0000000000)='\x00', 0x4)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/pci/00/04.0\x00', 0xc8841, 0x0)
write$auto(r1, 0x0, 0x1)
mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
write$auto_snd_pcm_oss_f_reg_pcm_oss(r0, &(0x7f0000000280)="c2", 0x1)

489.322711ms ago: executing program 0 (id=2665):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socket(0x1, 0x1, 0x1)
socket(0x10, 0x2, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bond0\x00'})
clone3$auto(0x0, 0x3f)

489.142538ms ago: executing program 1 (id=2666):
r0 = openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000008140)='/sys/kernel/debug/tracing/per_cpu/cpu0/buffer_size_kb\x00', 0x80182, 0x0)
read$auto_tracing_entries_fops_trace(r0, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents64$auto(0x0, 0x0, 0x18)
getdents$auto(0x0, 0x0, 0x700)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000100)='.\x00', 0x5d5481, 0x0)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x5, 0x84)
sendto$auto(r1, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
socket(0x18, 0x4, 0x1)
setsockopt$auto(0x7, 0x111, 0x100006, 0xfffffffffffffffd, 0x1)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
socket(0x3, 0x5, 0x5)
kill$auto(0x0, 0x11)
mlockall$auto(0x7)
madvise$auto(0x2000, 0xffffffffffff0001, 0x9)

415.012969ms ago: executing program 0 (id=2667):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
kexec_load$auto(0xff, 0x2, &(0x7f0000000080)={@buf=0x0, 0x9, 0x6, 0x3000}, 0x4)

126.723882ms ago: executing program 0 (id=2668):
openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/cmdline\x00', 0x151002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x101120, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
ioctl$auto_TUNSETSNDBUF(r0, 0x400454d4, 0x0)

610.084µs ago: executing program 1 (id=2669):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x80502, 0x0)
write$auto_tty_fops_tty_io(r0, &(0x7f0000000340)='*', 0x1)
ioctl$auto_TIOCMGET2(r0, 0x5415, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x8002, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x101080, 0x0)
read$auto_snd_rawmidi_f_ops_rawmidi(r1, &(0x7f0000000080)=""/45, 0x2d)
close_range$auto(0x2, 0x8, 0x0)
socket(0x11, 0x80003, 0x300)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/udp6\x00', 0x20440, 0x0)
pread64$auto(r2, 0x0, 0xa0, 0xf86)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000040)=0x5)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0xa240, 0x15e)

0s ago: executing program 3 (id=2670):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r3=>0x0})
sendmsg$auto_NET_DM_CMD_START(r0, 0x0, 0x800)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x4, 0x0)
clone$auto(0x20003b4a, 0x2, 0x0, 0x0, 0x2)
pidfd_getfd$auto(0x3, 0x1, 0x100000000)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r3, r2, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x6}, 0xc)
statmount$auto(&(0x7f0000000000)={0x7e, 0x0, 0xfffffffffffffffb, 0x6, 0x2}, 0x0, 0x4, 0x0)
socket(0x2, 0x3, 0x106)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/afs/addr_prefs\x00', 0x48041, 0x0)
write$auto(r4, 0x0, 0x6)

kernel console output (not intermixed with test programs):

s an invalid length.
[  362.096157][T12501] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2178'.
[  362.202638][T12501] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[12501]
[  362.441401][T12516] FAULT_INJECTION: forcing a failure.
[  362.441401][T12516] name failslab, interval 1, probability 0, space 0, times 0
[  362.474908][T12516] CPU: 1 UID: 0 PID: 12516 Comm: syz.2.2184 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  362.485753][T12516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  362.495861][T12516] Call Trace:
[  362.499153][T12516]  <TASK>
[  362.502097][T12516]  dump_stack_lvl+0x16c/0x1f0
[  362.506820][T12516]  should_fail_ex+0x497/0x5b0
[  362.511557][T12516]  ? fs_reclaim_acquire+0xae/0x150
[  362.516777][T12516]  should_failslab+0xc2/0x120
[  362.521553][T12516]  __kmalloc_noprof+0xce/0x4f0
[  362.526374][T12516]  ? tomoyo_realpath_from_path+0xbf/0x710
[  362.532153][T12516]  ? rcu_is_watching+0x12/0xc0
[  362.536984][T12516]  tomoyo_realpath_from_path+0xbf/0x710
[  362.542583][T12516]  tomoyo_check_open_permission+0x2ad/0x3c0
[  362.548543][T12516]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  362.555049][T12516]  ? do_raw_spin_unlock+0x172/0x230
[  362.560322][T12516]  ? __pfx_hook_file_open+0x10/0x10
[  362.565562][T12516]  ? lock_acquire+0x2f/0xb0
[  362.570317][T12516]  tomoyo_file_open+0x6b/0x90
[  362.575044][T12516]  security_file_open+0x84/0x1e0
[  362.580007][T12516]  do_dentry_open+0x57e/0x1ea0
[  362.584802][T12516]  ? inode_permission+0xdd/0x5f0
[  362.589772][T12516]  vfs_open+0x82/0x3f0
[  362.593877][T12516]  ? may_open+0x1f2/0x400
[  362.598236][T12516]  path_openat+0x1e6a/0x2d60
[  362.602842][T12516]  ? __pfx_path_openat+0x10/0x10
[  362.607800][T12516]  do_filp_open+0x20c/0x470
[  362.612317][T12516]  ? __pfx_do_filp_open+0x10/0x10
[  362.617374][T12516]  ? __pfx_kfree_link+0x10/0x10
[  362.622265][T12516]  ? alloc_fd+0x41f/0x760
[  362.626708][T12516]  do_sys_openat2+0x17a/0x1e0
[  362.631420][T12516]  ? __pfx_do_sys_openat2+0x10/0x10
[  362.636654][T12516]  ? __fget_files+0x206/0x3a0
[  362.641359][T12516]  __x64_sys_openat+0x175/0x210
[  362.646245][T12516]  ? __pfx___x64_sys_openat+0x10/0x10
[  362.651655][T12516]  ? ksys_write+0x1ba/0x250
[  362.656182][T12516]  ? rcu_is_watching+0x12/0xc0
[  362.660972][T12516]  ? rcu_is_watching+0x12/0xc0
[  362.665764][T12516]  do_syscall_64+0xcd/0x250
[  362.670317][T12516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.676248][T12516] RIP: 0033:0x7f40bf785d19
[  362.680685][T12516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.700313][T12516] RSP: 002b:00007f40c0589038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  362.708747][T12516] RAX: ffffffffffffffda RBX: 00007f40bf975fa0 RCX: 00007f40bf785d19
[  362.716734][T12516] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c
[  362.724755][T12516] RBP: 00007f40c0589090 R08: 0000000000000000 R09: 0000000000000000
[  362.732765][T12516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  362.740766][T12516] R13: 0000000000000001 R14: 00007f40bf975fa0 R15: 00007ffc471d2268
[  362.748766][T12516]  </TASK>
[  362.751901][    C1] vkms_vblank_simulate: vblank timer overrun
[  362.798701][T12516] ERROR: Out of memory at tomoyo_realpath_from_path.
[  363.179985][T12525] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2189'.
[  363.221179][T12530] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2191'.
[  363.273745][T12530] ptrace attach of "./syz-executor exec"[5827] was attempted by "./syz-executor exec"[12530]
[  363.487768][T12534] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2201'.
[  363.605723][T12534] ptrace attach of "./syz-executor exec"[5827] was attempted by "./syz-executor exec"[12534]
[  365.376484][T12590] kafs: addr_prefs: Invalid Command
[  366.388379][T12612] FAULT_INJECTION: forcing a failure.
[  366.388379][T12612] name failslab, interval 1, probability 0, space 0, times 0
[  366.419294][T12612] CPU: 1 UID: 0 PID: 12612 Comm: syz.3.2220 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  366.430296][T12612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  366.440433][T12612] Call Trace:
[  366.443773][T12612]  <TASK>
[  366.446744][T12612]  dump_stack_lvl+0x16c/0x1f0
[  366.451475][T12612]  should_fail_ex+0x497/0x5b0
[  366.456207][T12612]  should_failslab+0xc2/0x120
[  366.460946][T12612]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  366.466380][T12612]  ? skb_clone+0x190/0x3f0
[  366.470848][T12612]  skb_clone+0x190/0x3f0
[  366.475115][T12612]  netlink_deliver_tap+0xafd/0xca0
[  366.480268][T12612]  netlink_unicast+0x5e1/0x7f0
[  366.485139][T12612]  ? __pfx_netlink_unicast+0x10/0x10
[  366.490458][T12612]  ? __phys_addr_symbol+0x30/0x80
[  366.495529][T12612]  ? __check_object_size+0x488/0x710
[  366.500863][T12612]  netlink_sendmsg+0x8b8/0xd70
[  366.505707][T12612]  ? __pfx_netlink_sendmsg+0x10/0x10
[  366.511025][T12612]  ____sys_sendmsg+0x9ae/0xb40
[  366.515813][T12612]  ? copy_msghdr_from_user+0x10b/0x160
[  366.521303][T12612]  ? __pfx_____sys_sendmsg+0x10/0x10
[  366.526627][T12612]  ? rcu_is_watching+0x12/0xc0
[  366.531401][T12612]  ? lock_release+0x4e2/0x6f0
[  366.536086][T12612]  ? get_pid_task+0xfc/0x250
[  366.540709][T12612]  ___sys_sendmsg+0x135/0x1e0
[  366.545421][T12612]  ? get_pid_task+0x35/0x250
[  366.550062][T12612]  ? __pfx____sys_sendmsg+0x10/0x10
[  366.555296][T12612]  ? lock_release+0x4e2/0x6f0
[  366.559997][T12612]  ? __pfx_lock_release+0x10/0x10
[  366.565042][T12612]  ? trace_lock_acquire+0x14e/0x1f0
[  366.570278][T12612]  ? __fget_files+0x206/0x3a0
[  366.574982][T12612]  __sys_sendmsg+0x16e/0x220
[  366.579599][T12612]  ? __pfx___sys_sendmsg+0x10/0x10
[  366.584737][T12612]  ? rcu_is_watching+0x12/0xc0
[  366.589540][T12612]  ? rcu_is_watching+0x12/0xc0
[  366.594336][T12612]  do_syscall_64+0xcd/0x250
[  366.598887][T12612]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.604850][T12612] RIP: 0033:0x7f9fc6d85d19
[  366.609280][T12612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.628907][T12612] RSP: 002b:00007f9fc7c2f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  366.637342][T12612] RAX: ffffffffffffffda RBX: 00007f9fc6f76080 RCX: 00007f9fc6d85d19
[  366.645428][T12612] RDX: 0000000000009800 RSI: 00000000200007c0 RDI: 0000000000000003
[  366.653420][T12612] RBP: 00007f9fc7c2f090 R08: 0000000000000000 R09: 0000000000000000
[  366.661406][T12612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.669391][T12612] R13: 0000000000000001 R14: 00007f9fc6f76080 R15: 00007ffc420f5248
[  366.677378][T12612]  </TASK>
[  366.939314][T12631] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2230'.
[  366.988704][T12633] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2231'.
[  367.030508][T12631] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[12631]
[  367.210591][T12641] FAULT_INJECTION: forcing a failure.
[  367.210591][T12641] name failslab, interval 1, probability 0, space 0, times 0
[  367.226656][T12633] ptrace attach of "./syz-executor exec"[5827] was attempted by "./syz-executor exec"[12633]
[  367.236942][T12641] CPU: 0 UID: 0 PID: 12641 Comm: syz.1.2233 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  367.247737][T12641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  367.257817][T12641] Call Trace:
[  367.261110][T12641]  <TASK>
[  367.264062][T12641]  dump_stack_lvl+0x16c/0x1f0
[  367.268782][T12641]  should_fail_ex+0x497/0x5b0
[  367.273503][T12641]  ? fs_reclaim_acquire+0xae/0x150
[  367.278655][T12641]  should_failslab+0xc2/0x120
[  367.283373][T12641]  __kmalloc_node_noprof+0xd1/0x520
[  367.288617][T12641]  ? get_pid_task+0xfc/0x250
[  367.293247][T12641]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  367.298739][T12641]  __kvmalloc_node_noprof+0xad/0x1a0
[  367.304049][T12641]  do_semtimedop+0x219/0x310
[  367.308678][T12641]  ? __pfx_do_semtimedop+0x10/0x10
[  367.313836][T12641]  ? ksys_write+0x12b/0x250
[  367.318375][T12641]  ? __fget_files+0x206/0x3a0
[  367.323066][T12641]  __x64_sys_semtimedop+0x1b8/0x1f0
[  367.328292][T12641]  ? __pfx___x64_sys_semtimedop+0x10/0x10
[  367.334037][T12641]  ? rcu_is_watching+0x12/0xc0
[  367.338828][T12641]  ? rcu_is_watching+0x12/0xc0
[  367.343614][T12641]  do_syscall_64+0xcd/0x250
[  367.348146][T12641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.354063][T12641] RIP: 0033:0x7f6d43185d19
[  367.358493][T12641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.378115][T12641] RSP: 002b:00007f6d44036038 EFLAGS: 00000246 ORIG_RAX: 00000000000000dc
[  367.386550][T12641] RAX: ffffffffffffffda RBX: 00007f6d43375fa0 RCX: 00007f6d43185d19
[  367.394556][T12641] RDX: 00000000000000ff RSI: 0000000020000040 RDI: 0000000000008001
[  367.402536][T12641] RBP: 00007f6d44036090 R08: 0000000000000000 R09: 0000000000000000
[  367.410513][T12641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  367.418491][T12641] R13: 0000000000000001 R14: 00007f6d43375fa0 R15: 00007ffc28ae09b8
[  367.426474][T12641]  </TASK>
[  368.028736][T12666] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2240'.
[  368.116503][T12666] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[12666]
[  368.191998][T12671] FAULT_INJECTION: forcing a failure.
[  368.191998][T12671] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  368.217893][T12671] CPU: 1 UID: 0 PID: 12671 Comm: syz.3.2242 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  368.228835][T12671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  368.238936][T12671] Call Trace:
[  368.242243][T12671]  <TASK>
[  368.245202][T12671]  dump_stack_lvl+0x16c/0x1f0
[  368.249935][T12671]  should_fail_ex+0x497/0x5b0
[  368.254667][T12671]  _copy_to_user+0x32/0xd0
[  368.259152][T12671]  simple_read_from_buffer+0xd0/0x160
[  368.264763][T12671]  proc_fail_nth_read+0x198/0x270
[  368.269853][T12671]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  368.275494][T12671]  ? bpf_lsm_file_permission+0x9/0x10
[  368.280961][T12671]  ? security_file_permission+0x71/0x210
[  368.286765][T12671]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  368.292436][T12671]  vfs_read+0x1df/0xbe0
[  368.296650][T12671]  ? __fget_files+0x1fc/0x3a0
[  368.301376][T12671]  ? __pfx___mutex_lock+0x10/0x10
[  368.306451][T12671]  ? __pfx_vfs_read+0x10/0x10
[  368.311176][T12671]  ? __fget_files+0x206/0x3a0
[  368.315886][T12671]  ksys_read+0x12b/0x250
[  368.320183][T12671]  ? __pfx_ksys_read+0x10/0x10
[  368.324979][T12671]  ? rcu_is_watching+0x12/0xc0
[  368.329878][T12671]  ? rcu_is_watching+0x12/0xc0
[  368.334826][T12671]  do_syscall_64+0xcd/0x250
[  368.339370][T12671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.345299][T12671] RIP: 0033:0x7f9fc6d8472c
[  368.349741][T12671] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  368.369372][T12671] RSP: 002b:00007f9fc7c50030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  368.377810][T12671] RAX: ffffffffffffffda RBX: 00007f9fc6f75fa0 RCX: 00007f9fc6d8472c
[  368.385806][T12671] RDX: 000000000000000f RSI: 00007f9fc7c500a0 RDI: 0000000000000003
[  368.393796][T12671] RBP: 00007f9fc7c50090 R08: 0000000000000000 R09: 0000000000000000
[  368.401787][T12671] R10: ffffffff81000000 R11: 0000000000000246 R12: 0000000000000001
[  368.409772][T12671] R13: 0000000000000001 R14: 00007f9fc6f75fa0 R15: 00007ffc420f5248
[  368.417759][T12671]  ? 0xffffffff81000000
[  368.421916][T12671]  </TASK>
[  368.866583][T12683] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2245'.
[  369.027677][T12683] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[12683]
[  369.308679][T12706] kafs: addr_prefs: Invalid Command
[  369.421495][T12712] FAULT_INJECTION: forcing a failure.
[  369.421495][T12712] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  369.449337][T12712] CPU: 1 UID: 0 PID: 12712 Comm: syz.3.2257 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  369.460145][T12712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  369.470221][T12712] Call Trace:
[  369.473525][T12712]  <TASK>
[  369.476485][T12712]  dump_stack_lvl+0x16c/0x1f0
[  369.481198][T12712]  should_fail_ex+0x497/0x5b0
[  369.485921][T12712]  _copy_to_iter+0x4a5/0x1400
[  369.490649][T12712]  ? __pfx__copy_to_iter+0x10/0x10
[  369.495804][T12712]  ? __virt_addr_valid+0x1a4/0x590
[  369.500960][T12712]  ? __virt_addr_valid+0x5e/0x590
[  369.506034][T12712]  ? __phys_addr_symbol+0x30/0x80
[  369.511092][T12712]  ? __check_object_size+0x488/0x710
[  369.516446][T12712]  seq_read_iter+0x725/0x12b0
[  369.521165][T12712]  ? __pfx_kstrtouint+0x10/0x10
[  369.526051][T12712]  seq_read+0x39f/0x4e0
[  369.530233][T12712]  ? lock_release+0x4e2/0x6f0
[  369.535528][T12712]  ? __pfx_seq_read+0x10/0x10
[  369.540249][T12712]  ? trace_lock_acquire+0x14e/0x1f0
[  369.545497][T12712]  ? lock_acquire+0x2f/0xb0
[  369.550034][T12712]  ? apparmor_file_permission+0x251/0x400
[  369.555800][T12712]  ? __pfx_seq_read+0x10/0x10
[  369.560504][T12712]  proc_reg_read+0x23d/0x330
[  369.565472][T12712]  ? __pfx_proc_reg_read+0x10/0x10
[  369.570623][T12712]  vfs_read+0x1df/0xbe0
[  369.574808][T12712]  ? __fget_files+0x1fc/0x3a0
[  369.579512][T12712]  ? __pfx_lock_release+0x10/0x10
[  369.584566][T12712]  ? __pfx_vfs_read+0x10/0x10
[  369.589299][T12712]  ? __fget_files+0x40/0x3a0
[  369.593977][T12712]  ? lock_acquire+0x2f/0xb0
[  369.598508][T12712]  ? __fget_files+0x40/0x3a0
[  369.603150][T12712]  ? __fget_files+0x206/0x3a0
[  369.607869][T12712]  __x64_sys_pread64+0x1f6/0x250
[  369.612862][T12712]  ? __pfx___x64_sys_pread64+0x10/0x10
[  369.618346][T12712]  ? rcu_is_watching+0x12/0xc0
[  369.623140][T12712]  ? rcu_is_watching+0x12/0xc0
[  369.627942][T12712]  do_syscall_64+0xcd/0x250
[  369.632476][T12712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.638388][T12712] RIP: 0033:0x7f9fc6d85d19
[  369.642822][T12712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.662459][T12712] RSP: 002b:00007f9fc7c50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  369.670898][T12712] RAX: ffffffffffffffda RBX: 00007f9fc6f75fa0 RCX: 00007f9fc6d85d19
[  369.678890][T12712] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000003
[  369.686876][T12712] RBP: 00007f9fc7c50090 R08: 0000000000000000 R09: 0000000000000000
[  369.694856][T12712] R10: 00000000000003ff R11: 0000000000000246 R12: 0000000000000001
[  369.702843][T12712] R13: 0000000000000000 R14: 00007f9fc6f75fa0 R15: 00007ffc420f5248
[  369.710843][T12712]  </TASK>
[  370.803128][T12743] FAULT_INJECTION: forcing a failure.
[  370.803128][T12743] name failslab, interval 1, probability 0, space 0, times 0
[  370.828706][T12743] CPU: 1 UID: 0 PID: 12743 Comm: syz.3.2265 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  370.839633][T12743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  370.849727][T12743] Call Trace:
[  370.853149][T12743]  <TASK>
[  370.856129][T12743]  dump_stack_lvl+0x16c/0x1f0
[  370.860864][T12743]  should_fail_ex+0x497/0x5b0
[  370.865604][T12743]  ? fs_reclaim_acquire+0xae/0x150
[  370.870769][T12743]  should_failslab+0xc2/0x120
[  370.875503][T12743]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  370.880939][T12743]  ? vma_merge_new_range+0x3f0/0xb70
[  370.886287][T12743]  ? vm_area_alloc+0x1f/0x1c0
[  370.891022][T12743]  vm_area_alloc+0x1f/0x1c0
[  370.895585][T12743]  __mmap_region+0x101b/0x2670
[  370.900448][T12743]  ? kernel_text_address+0x8d/0x100
[  370.905713][T12743]  ? __kernel_text_address+0xd/0x40
[  370.910957][T12743]  ? __pfx___mmap_region+0x10/0x10
[  370.916143][T12743]  ? arch_stack_walk+0xa7/0x100
[  370.921061][T12743]  ? __pfx__kstrtoull+0x10/0x10
[  370.925952][T12743]  ? lock_release+0x4e2/0x6f0
[  370.930679][T12743]  ? mm_get_unmapped_area+0x95/0xe0
[  370.935924][T12743]  ? shmem_get_unmapped_area+0x183/0xa20
[  370.941629][T12743]  ? cap_mmap_addr+0x53/0x320
[  370.946395][T12743]  mmap_region+0x127/0x320
[  370.950873][T12743]  do_mmap+0xc00/0xfc0
[  370.955013][T12743]  vm_mmap_pgoff+0x1ba/0x360
[  370.959702][T12743]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  370.964876][T12743]  ? __fget_files+0x206/0x3a0
[  370.969609][T12743]  ksys_mmap_pgoff+0x7d/0x5c0
[  370.974331][T12743]  ? __pfx_ksys_write+0x10/0x10
[  370.979230][T12743]  __x64_sys_mmap+0x125/0x190
[  370.983952][T12743]  do_syscall_64+0xcd/0x250
[  370.988506][T12743]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.994457][T12743] RIP: 0033:0x7f9fc6d85d19
[  370.998913][T12743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.018586][T12743] RSP: 002b:00007f9fc7c50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  371.027046][T12743] RAX: ffffffffffffffda RBX: 00007f9fc6f75fa0 RCX: 00007f9fc6d85d19
[  371.035053][T12743] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  371.043062][T12743] RBP: 00007f9fc7c50090 R08: fffffffffffffffa R09: 0000000000008000
[  371.051101][T12743] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001
[  371.059183][T12743] R13: 0000000000000000 R14: 00007f9fc6f75fa0 R15: 00007ffc420f5248
[  371.067202][T12743]  </TASK>
[  371.329182][T12753] FAULT_INJECTION: forcing a failure.
[  371.329182][T12753] name failslab, interval 1, probability 0, space 0, times 0
[  371.368667][T12753] CPU: 0 UID: 0 PID: 12753 Comm: syz.3.2268 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  371.379551][T12753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  371.389622][T12753] Call Trace:
[  371.392915][T12753]  <TASK>
[  371.395866][T12753]  dump_stack_lvl+0x16c/0x1f0
[  371.400580][T12753]  should_fail_ex+0x497/0x5b0
[  371.405294][T12753]  ? fs_reclaim_acquire+0xae/0x150
[  371.410435][T12753]  should_failslab+0xc2/0x120
[  371.415151][T12753]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  371.420561][T12753]  ? getname_flags.part.0+0x4c/0x550
[  371.425868][T12753]  ? vfs_write+0x306/0x1150
[  371.430384][T12753]  getname_flags.part.0+0x4c/0x550
[  371.435523][T12753]  getname+0x8d/0xe0
[  371.439429][T12753]  do_sys_openat2+0x104/0x1e0
[  371.444132][T12753]  ? __pfx_do_sys_openat2+0x10/0x10
[  371.449367][T12753]  ? __fget_files+0x206/0x3a0
[  371.454071][T12753]  __x64_sys_openat+0x175/0x210
[  371.458953][T12753]  ? __pfx___x64_sys_openat+0x10/0x10
[  371.464349][T12753]  ? ksys_write+0x1ba/0x250
[  371.468874][T12753]  ? rcu_is_watching+0x12/0xc0
[  371.473666][T12753]  ? rcu_is_watching+0x12/0xc0
[  371.478459][T12753]  do_syscall_64+0xcd/0x250
[  371.482978][T12753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.488882][T12753] RIP: 0033:0x7f9fc6d85d19
[  371.493305][T12753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.513039][T12753] RSP: 002b:00007f9fc7c50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  371.521462][T12753] RAX: ffffffffffffffda RBX: 00007f9fc6f75fa0 RCX: 00007f9fc6d85d19
[  371.529440][T12753] RDX: 0000000000004001 RSI: 0000000020000040 RDI: ffffffffffffff9c
[  371.537416][T12753] RBP: 00007f9fc7c50090 R08: 0000000000000000 R09: 0000000000000000
[  371.545401][T12753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.553381][T12753] R13: 0000000000000001 R14: 00007f9fc6f75fa0 R15: 00007ffc420f5248
[  371.561372][T12753]  </TASK>
[  371.733962][T12765] kafs: addr_prefs: Invalid Command
[  372.139825][T12773] FAULT_INJECTION: forcing a failure.
[  372.139825][T12773] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  372.188724][T12773] CPU: 0 UID: 0 PID: 12773 Comm: syz.3.2275 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  372.199569][T12773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  372.209715][T12773] Call Trace:
[  372.213063][T12773]  <TASK>
[  372.216032][T12773]  dump_stack_lvl+0x16c/0x1f0
[  372.220794][T12773]  should_fail_ex+0x497/0x5b0
[  372.225542][T12773]  _copy_from_user+0x2e/0xd0
[  372.230194][T12773]  copy_msghdr_from_user+0x99/0x160
[  372.235468][T12773]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  372.241350][T12773]  ? rcu_is_watching+0x12/0xc0
[  372.246184][T12773]  ? lock_release+0x4e2/0x6f0
[  372.250930][T12773]  ? get_pid_task+0xfc/0x250
[  372.255608][T12773]  ___sys_sendmsg+0xff/0x1e0
[  372.260314][T12773]  ? get_pid_task+0x35/0x250
[  372.265005][T12773]  ? __pfx____sys_sendmsg+0x10/0x10
[  372.270302][T12773]  ? lock_release+0x4e2/0x6f0
[  372.275033][T12773]  ? __pfx_lock_release+0x10/0x10
[  372.280104][T12773]  ? trace_lock_acquire+0x14e/0x1f0
[  372.285370][T12773]  ? __fget_files+0x206/0x3a0
[  372.290104][T12773]  __sys_sendmsg+0x16e/0x220
[  372.293369][T12775] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2274'.
[  372.294720][T12773]  ? __pfx___sys_sendmsg+0x10/0x10
[  372.308924][T12773]  ? rcu_is_watching+0x12/0xc0
[  372.313757][T12773]  ? rcu_is_watching+0x12/0xc0
[  372.318673][T12773]  do_syscall_64+0xcd/0x250
[  372.323427][T12773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.329379][T12773] RIP: 0033:0x7f9fc6d85d19
[  372.333836][T12773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.353557][T12773] RSP: 002b:00007f9fc7c2f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  372.362060][T12773] RAX: ffffffffffffffda RBX: 00007f9fc6f76080 RCX: 00007f9fc6d85d19
[  372.370082][T12773] RDX: 0000000000009800 RSI: 00000000200007c0 RDI: 0000000000000003
[  372.378098][T12773] RBP: 00007f9fc7c2f090 R08: 0000000000000000 R09: 0000000000000000
[  372.386106][T12773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  372.394108][T12773] R13: 0000000000000001 R14: 00007f9fc6f76080 R15: 00007ffc420f5248
[  372.402165][T12773]  </TASK>
[  373.758677][T12812] kafs: addr_prefs: Invalid Command
[  376.809617][ T5836] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  376.816949][ T5836] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  376.824916][ T5836] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  376.838180][ T5836] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  376.845884][ T5836] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  376.856121][ T5836] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  377.207084][ T6978] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.287523][T12891] chnl_net:caif_netlink_parms(): no params data found
[  377.370303][T12905] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2310'.
[  377.393751][ T6978] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.437624][T12903] HfR: entered promiscuous mode
[  377.460272][T12905] HfR: left promiscuous mode
[  377.509746][ T6978] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.584489][ T6978] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.612468][T12891] bridge0: port 1(bridge_slave_0) entered blocking state
[  377.626582][T12891] bridge0: port 1(bridge_slave_0) entered disabled state
[  377.646338][T12891] bridge_slave_0: entered allmulticast mode
[  377.660720][T12891] bridge_slave_0: entered promiscuous mode
[  377.695955][T12891] bridge0: port 2(bridge_slave_1) entered blocking state
[  377.707747][T12891] bridge0: port 2(bridge_slave_1) entered disabled state
[  377.721135][T12891] bridge_slave_1: entered allmulticast mode
[  377.728000][T12891] bridge_slave_1: entered promiscuous mode
[  377.801920][ T6978] bridge_slave_1: left allmulticast mode
[  377.814446][ T6978] bridge_slave_1: left promiscuous mode
[  377.825647][ T6978] bridge0: port 2(bridge_slave_1) entered disabled state
[  377.844044][ T6978] bridge_slave_0: left allmulticast mode
[  377.856601][ T6978] bridge_slave_0: left promiscuous mode
[  377.869037][ T6978] bridge0: port 1(bridge_slave_0) entered disabled state
[  378.011507][ T6978] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  378.021549][ T6978] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  378.031057][ T6978] bond0 (unregistering): Released all slaves
[  378.042329][T12891] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  378.073017][T12891] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  378.105446][T12891] team0: Port device team_slave_0 added
[  378.112795][T12891] team0: Port device team_slave_1 added
[  378.158227][T12891] batman_adv: batadv0: Adding interface: batadv_slave_0
[  378.166164][T12891] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  378.194703][T12891] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  378.221584][T12929] FAULT_INJECTION: forcing a failure.
[  378.221584][T12929] name failslab, interval 1, probability 0, space 0, times 0
[  378.235840][T12891] batman_adv: batadv0: Adding interface: batadv_slave_1
[  378.258689][T12891] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  378.260229][T12929] CPU: 1 UID: 0 PID: 12929 Comm: syz.0.2315 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  378.295638][T12929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  378.305744][T12929] Call Trace:
[  378.305866][T12891] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  378.309031][T12929]  <TASK>
[  378.309044][T12929]  dump_stack_lvl+0x16c/0x1f0
[  378.309088][T12929]  should_fail_ex+0x497/0x5b0
[  378.309130][T12929]  should_failslab+0xc2/0x120
[  378.336642][T12929]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  378.342070][T12929]  ? skb_clone+0x190/0x3f0
[  378.346527][T12929]  skb_clone+0x190/0x3f0
[  378.350811][T12929]  netlink_deliver_tap+0xafd/0xca0
[  378.355969][T12929]  netlink_dump+0xb60/0xd00
[  378.360493][T12929]  ? __pfx_netlink_dump+0x10/0x10
[  378.365544][T12929]  ? kasan_save_track+0x14/0x30
[  378.370424][T12929]  ? __kasan_kmalloc+0xaa/0xb0
[  378.375211][T12929]  ? genl_start+0x67d/0x960
[  378.379727][T12929]  __netlink_dump_start+0x6d9/0x980
[  378.384941][T12929]  genl_family_rcv_msg_dumpit+0x1e1/0x2e0
[  378.390694][T12929]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  378.396974][T12929]  ? genl_op_from_small+0x25/0x440
[  378.402130][T12929]  ? __pfx_genl_start+0x10/0x10
[  378.407007][T12929]  ? __pfx_genl_dumpit+0x10/0x10
[  378.411977][T12929]  ? __pfx_genl_done+0x10/0x10
[  378.416770][T12929]  ? bpf_lsm_capable+0x9/0x10
[  378.421471][T12929]  ? security_capable+0x7e/0x260
[  378.426438][T12929]  ? ns_capable+0xd7/0x110
[  378.430875][T12929]  genl_rcv_msg+0x470/0x800
[  378.435388][T12929]  ? __pfx_genl_rcv_msg+0x10/0x10
[  378.440425][T12929]  ? __pfx_batadv_hardif_neigh_dump+0x10/0x10
[  378.446524][T12929]  netlink_rcv_skb+0x165/0x410
[  378.451324][T12929]  ? __pfx_genl_rcv_msg+0x10/0x10
[  378.456398][T12929]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  378.461752][T12929]  ? down_read+0xc9/0x330
[  378.466124][T12929]  ? __pfx_down_read+0x10/0x10
[  378.470921][T12929]  ? netlink_deliver_tap+0x1ae/0xca0
[  378.476249][T12929]  genl_rcv+0x28/0x40
[  378.480262][T12929]  netlink_unicast+0x53c/0x7f0
[  378.485049][T12929]  ? __pfx_netlink_unicast+0x10/0x10
[  378.490351][T12929]  ? __phys_addr_symbol+0x30/0x80
[  378.495395][T12929]  ? __check_object_size+0x488/0x710
[  378.500738][T12929]  netlink_sendmsg+0x8b8/0xd70
[  378.505531][T12929]  ? __pfx_netlink_sendmsg+0x10/0x10
[  378.510842][T12929]  ____sys_sendmsg+0x9ae/0xb40
[  378.515634][T12929]  ? copy_msghdr_from_user+0x10b/0x160
[  378.521124][T12929]  ? __pfx_____sys_sendmsg+0x10/0x10
[  378.526431][T12929]  ? rcu_is_watching+0x12/0xc0
[  378.531219][T12929]  ? lock_release+0x4e2/0x6f0
[  378.535912][T12929]  ? get_pid_task+0xfc/0x250
[  378.540537][T12929]  ___sys_sendmsg+0x135/0x1e0
[  378.545242][T12929]  ? get_pid_task+0x35/0x250
[  378.549854][T12929]  ? __pfx____sys_sendmsg+0x10/0x10
[  378.555093][T12929]  ? lock_release+0x4e2/0x6f0
[  378.559801][T12929]  ? __pfx_lock_release+0x10/0x10
[  378.564848][T12929]  ? trace_lock_acquire+0x14e/0x1f0
[  378.570094][T12929]  ? __fget_files+0x206/0x3a0
[  378.574814][T12929]  __sys_sendmsg+0x16e/0x220
[  378.579443][T12929]  ? __pfx___sys_sendmsg+0x10/0x10
[  378.584596][T12929]  ? rcu_is_watching+0x12/0xc0
[  378.589389][T12929]  ? rcu_is_watching+0x12/0xc0
[  378.594179][T12929]  do_syscall_64+0xcd/0x250
[  378.598722][T12929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.604695][T12929] RIP: 0033:0x7fc0ef385d19
[  378.609127][T12929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  378.628843][T12929] RSP: 002b:00007fc0f0162038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  378.637275][T12929] RAX: ffffffffffffffda RBX: 00007fc0ef576080 RCX: 00007fc0ef385d19
[  378.645258][T12929] RDX: 0000000000009800 RSI: 00000000200007c0 RDI: 0000000000000003
[  378.653238][T12929] RBP: 00007fc0f0162090 R08: 0000000000000000 R09: 0000000000000000
[  378.661225][T12929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  378.669214][T12929] R13: 0000000000000001 R14: 00007fc0ef576080 R15: 00007fff538a40e8
[  378.677214][T12929]  </TASK>
[  378.792094][T12891] hsr_slave_0: entered promiscuous mode
[  378.798404][T12891] hsr_slave_1: entered promiscuous mode
[  378.832996][T12891] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  378.857436][T12891] Cannot create hsr debugfs directory
[  378.899193][ T5836] Bluetooth: hci4: command tx timeout
[  379.118198][ T6978] hsr_slave_0: left promiscuous mode
[  379.130857][ T6978] hsr_slave_1: left promiscuous mode
[  379.144648][ T6978] veth1_macvtap: left promiscuous mode
[  379.157058][ T6978] veth0_macvtap: left promiscuous mode
[  379.326078][ T6978] team0 (unregistering): Port device team_slave_1 removed
[  379.347020][ T6978] team0 (unregistering): Port device team_slave_0 removed
[  379.683651][T12971] FAULT_INJECTION: forcing a failure.
[  379.683651][T12971] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  379.696919][T12971] CPU: 1 UID: 0 PID: 12971 Comm: syz.2.2322 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  379.707748][T12971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  379.717830][T12971] Call Trace:
[  379.721123][T12971]  <TASK>
[  379.724065][T12971]  dump_stack_lvl+0x16c/0x1f0
[  379.728773][T12971]  should_fail_ex+0x497/0x5b0
[  379.733496][T12971]  _copy_from_iter+0x29b/0x1400
[  379.738376][T12971]  ? trace_lock_acquire+0x14e/0x1f0
[  379.743594][T12971]  ? __virt_addr_valid+0x1a4/0x590
[  379.748729][T12971]  ? __pfx__copy_from_iter+0x10/0x10
[  379.754031][T12971]  ? __virt_addr_valid+0x1a4/0x590
[  379.759167][T12971]  ? __virt_addr_valid+0x5e/0x590
[  379.764206][T12971]  ? __phys_addr_symbol+0x30/0x80
[  379.769250][T12971]  ? __check_object_size+0x488/0x710
[  379.774553][T12971]  proc_sys_call_handler+0x361/0x5d0
[  379.779848][T12971]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  379.785667][T12971]  ? apparmor_file_permission+0x251/0x400
[  379.791405][T12971]  ? lock_acquire+0x2f/0xb0
[  379.795910][T12971]  ? ksys_write+0x12b/0x250
[  379.800429][T12971]  vfs_write+0x5ae/0x1150
[  379.804772][T12971]  ? __pfx_proc_sys_write+0x10/0x10
[  379.809988][T12971]  ? __pfx___mutex_lock+0x10/0x10
[  379.815027][T12971]  ? __pfx_vfs_write+0x10/0x10
[  379.819808][T12971]  ksys_write+0x12b/0x250
[  379.824150][T12971]  ? __pfx_ksys_write+0x10/0x10
[  379.829018][T12971]  ? rcu_is_watching+0x12/0xc0
[  379.833797][T12971]  ? rcu_is_watching+0x12/0xc0
[  379.838587][T12971]  do_syscall_64+0xcd/0x250
[  379.843105][T12971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.849015][T12971] RIP: 0033:0x7f40bf785d19
[  379.853435][T12971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  379.873066][T12971] RSP: 002b:00007f40c0589038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  379.881484][T12971] RAX: ffffffffffffffda RBX: 00007f40bf975fa0 RCX: 00007f40bf785d19
[  379.889458][T12971] RDX: 0000000000000003 RSI: 0000000020001140 RDI: 0000000000000003
[  379.897430][T12971] RBP: 00007f40c0589090 R08: 0000000000000000 R09: 0000000000000000
[  379.905404][T12971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  379.913382][T12971] R13: 0000000000000000 R14: 00007f40bf975fa0 R15: 00007ffc471d2268
[  379.921368][T12971]  </TASK>
[  379.969169][T12966] bdi 31:0: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead.
[  380.047950][T12977] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2323'.
[  380.289654][T12891] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  380.316772][T12891] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  380.328118][T12891] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  380.338008][T12891] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  380.490392][T12891] 8021q: adding VLAN 0 to HW filter on device bond0
[  380.529572][T12891] 8021q: adding VLAN 0 to HW filter on device team0
[  380.553843][ T6970] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.561210][ T6970] bridge0: port 1(bridge_slave_0) entered forwarding state
[  380.587366][ T6971] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.594497][ T6971] bridge0: port 2(bridge_slave_1) entered forwarding state
[  380.672412][T12891] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  380.977057][T12891] 8021q: adding VLAN 0 to HW filter on device batadv0
[  381.006119][T12891] veth0_vlan: entered promiscuous mode
[  381.010029][ T5836] Bluetooth: hci4: command tx timeout
[  381.017367][T12891] veth1_vlan: entered promiscuous mode
[  381.169643][T12891] veth0_macvtap: entered promiscuous mode
[  381.225981][T12891] veth1_macvtap: entered promiscuous mode
[  381.262665][T12891] batman_adv: batadv0: Interface activated: batadv_slave_0
[  381.285212][T13031] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2332'.
[  381.302925][T12891] batman_adv: batadv0: Interface activated: batadv_slave_1
[  381.346309][T12891] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  381.390240][T12891] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  381.413598][T12891] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  381.448791][T12891] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  381.551431][T13034] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2333'.
[  381.553671][T13031] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec"[13031]
[  381.639643][   T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  381.648166][   T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  381.690107][ T6970] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  381.705286][ T6970] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  381.799444][T13047] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2341'.
[  381.929821][T13058] ptrace attach of "./syz-executor exec"[5824] was attempted by "./syz-executor exec"[13058]
[  382.596212][ T5834] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  382.603534][ T5834] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  382.611374][ T5834] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  382.623023][ T5834] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  382.630877][ T5834] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  382.638165][ T5834] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  382.928086][ T6978] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  383.073904][ T6978] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  383.086238][ T5836] Bluetooth: hci4: command tx timeout
[  383.163896][T13084] chnl_net:caif_netlink_parms(): no params data found
[  383.202930][T13114] FAULT_INJECTION: forcing a failure.
[  383.202930][T13114] name failslab, interval 1, probability 0, space 0, times 0
[  383.248617][T13114] CPU: 1 UID: 0 PID: 13114 Comm: syz.2.2343 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  383.259466][T13114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  383.269564][T13114] Call Trace:
[  383.272952][T13114]  <TASK>
[  383.275931][T13114]  dump_stack_lvl+0x16c/0x1f0
[  383.280689][T13114]  should_fail_ex+0x497/0x5b0
[  383.285453][T13114]  ? fs_reclaim_acquire+0xae/0x150
[  383.290624][T13114]  should_failslab+0xc2/0x120
[  383.295382][T13114]  __kmalloc_noprof+0xce/0x4f0
[  383.300199][T13114]  ? __pfx___mutex_trylock_common+0x10/0x10
[  383.306132][T13114]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  383.313466][T13114]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  383.320654][T13114]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  383.326203][T13114]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  383.332359][T13114]  ? genl_get_cmd+0x195/0x580
[  383.337098][T13114]  ? bpf_lsm_capable+0x9/0x10
[  383.341829][T13114]  ? security_capable+0x7e/0x260
[  383.346830][T13114]  ? ns_capable+0xd7/0x110
[  383.351287][T13114]  genl_rcv_msg+0x565/0x800
[  383.355817][T13114]  ? __pfx_genl_rcv_msg+0x10/0x10
[  383.360853][T13114]  ? __pfx_l2tp_nl_cmd_session_get+0x10/0x10
[  383.366967][T13114]  netlink_rcv_skb+0x165/0x410
[  383.371760][T13114]  ? __pfx_genl_rcv_msg+0x10/0x10
[  383.376830][T13114]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  383.382168][T13114]  ? down_read+0xc9/0x330
[  383.386550][T13114]  ? __pfx_down_read+0x10/0x10
[  383.391367][T13114]  ? netlink_deliver_tap+0x1ae/0xca0
[  383.396698][T13114]  genl_rcv+0x28/0x40
[  383.400704][T13114]  netlink_unicast+0x53c/0x7f0
[  383.405490][T13114]  ? __pfx_netlink_unicast+0x10/0x10
[  383.410795][T13114]  ? __phys_addr_symbol+0x30/0x80
[  383.416027][T13114]  ? __check_object_size+0x488/0x710
[  383.421350][T13114]  netlink_sendmsg+0x8b8/0xd70
[  383.426211][T13114]  ? __pfx_netlink_sendmsg+0x10/0x10
[  383.431639][T13114]  ____sys_sendmsg+0x9ae/0xb40
[  383.436444][T13114]  ? copy_msghdr_from_user+0x10b/0x160
[  383.442033][T13114]  ? __pfx_____sys_sendmsg+0x10/0x10
[  383.447360][T13114]  ? rcu_is_watching+0x12/0xc0
[  383.452155][T13114]  ? lock_release+0x4e2/0x6f0
[  383.456851][T13114]  ? get_pid_task+0xfc/0x250
[  383.461470][T13114]  ___sys_sendmsg+0x135/0x1e0
[  383.466160][T13114]  ? get_pid_task+0x35/0x250
[  383.470767][T13114]  ? __pfx____sys_sendmsg+0x10/0x10
[  383.475988][T13114]  ? lock_release+0x4e2/0x6f0
[  383.480683][T13114]  ? __pfx_lock_release+0x10/0x10
[  383.485755][T13114]  ? trace_lock_acquire+0x14e/0x1f0
[  383.491005][T13114]  ? __fget_files+0x206/0x3a0
[  383.495772][T13114]  __sys_sendmsg+0x16e/0x220
[  383.500510][T13114]  ? __pfx___sys_sendmsg+0x10/0x10
[  383.505678][T13114]  ? rcu_is_watching+0x12/0xc0
[  383.510483][T13114]  ? rcu_is_watching+0x12/0xc0
[  383.515281][T13114]  do_syscall_64+0xcd/0x250
[  383.519815][T13114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.525736][T13114] RIP: 0033:0x7f40bf785d19
[  383.530158][T13114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.549797][T13114] RSP: 002b:00007f40c0589038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  383.558240][T13114] RAX: ffffffffffffffda RBX: 00007f40bf975fa0 RCX: 00007f40bf785d19
[  383.566235][T13114] RDX: 0000000020000044 RSI: 0000000020000240 RDI: 0000000000000003
[  383.574251][T13114] RBP: 00007f40c0589090 R08: 0000000000000000 R09: 0000000000000000
[  383.582257][T13114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  383.590264][T13114] R13: 0000000000000000 R14: 00007f40bf975fa0 R15: 00007ffc471d2268
[  383.598278][T13114]  </TASK>
[  383.720060][ T6978] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  383.864017][ T6978] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  383.908968][T13084] bridge0: port 1(bridge_slave_0) entered blocking state
[  383.926429][T13084] bridge0: port 1(bridge_slave_0) entered disabled state
[  383.943035][T13084] bridge_slave_0: entered allmulticast mode
[  383.943106][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  383.955680][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  383.962108][T13084] bridge_slave_0: entered promiscuous mode
[  383.970037][T13084] bridge0: port 2(bridge_slave_1) entered blocking state
[  383.989006][T13084] bridge0: port 2(bridge_slave_1) entered disabled state
[  384.008819][T13084] bridge_slave_1: entered allmulticast mode
[  384.025465][T13084] bridge_slave_1: entered promiscuous mode
[  384.174305][T13084] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  384.201884][T13084] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  384.309573][T13084] team0: Port device team_slave_0 added
[  384.320072][T13084] team0: Port device team_slave_1 added
[  384.385983][T13084] batman_adv: batadv0: Adding interface: batadv_slave_0
[  384.403118][T13084] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  384.429062][    C1] vkms_vblank_simulate: vblank timer overrun
[  384.468675][T13084] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  384.483323][T13084] batman_adv: batadv0: Adding interface: batadv_slave_1
[  384.493732][T13084] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  384.519652][    C1] vkms_vblank_simulate: vblank timer overrun
[  384.559838][T13084] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  384.580003][ T6978] bridge_slave_1: left allmulticast mode
[  384.585741][ T6978] bridge_slave_1: left promiscuous mode
[  384.591722][ T6978] bridge0: port 2(bridge_slave_1) entered disabled state
[  384.602393][ T6978] bridge_slave_0: left allmulticast mode
[  384.612447][ T6978] bridge_slave_0: left promiscuous mode
[  384.623509][ T6978] bridge0: port 1(bridge_slave_0) entered disabled state
[  384.659226][ T5836] Bluetooth: hci1: command tx timeout
[  384.985927][ T6978] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  384.999086][T13155] FAULT_INJECTION: forcing a failure.
[  384.999086][T13155] name failslab, interval 1, probability 0, space 0, times 0
[  385.030198][T13155] CPU: 0 UID: 0 PID: 13155 Comm: syz.2.2353 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  385.041159][T13155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  385.051283][T13155] Call Trace:
[  385.054594][T13155]  <TASK>
[  385.057558][T13155]  dump_stack_lvl+0x16c/0x1f0
[  385.062292][T13155]  should_fail_ex+0x497/0x5b0
[  385.067022][T13155]  ? fs_reclaim_acquire+0xae/0x150
[  385.072186][T13155]  should_failslab+0xc2/0x120
[  385.076925][T13155]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  385.082778][T13155]  ? __alloc_skb+0x2b3/0x380
[  385.087437][T13155]  __alloc_skb+0x2b3/0x380
[  385.093061][T13155]  ? __pfx___alloc_skb+0x10/0x10
[  385.098174][T13155]  ? lock_acquire+0x2f/0xb0
[  385.102738][T13155]  netlink_alloc_large_skb+0x69/0x130
[  385.108164][T13155]  netlink_sendmsg+0x689/0xd70
[  385.113170][T13155]  ? __pfx_netlink_sendmsg+0x10/0x10
[  385.118509][T13155]  ____sys_sendmsg+0x9ae/0xb40
[  385.123325][T13155]  ? copy_msghdr_from_user+0x10b/0x160
[  385.128860][T13155]  ? __pfx_____sys_sendmsg+0x10/0x10
[  385.134206][T13155]  ? rcu_is_watching+0x12/0xc0
[  385.139031][T13155]  ? lock_release+0x4e2/0x6f0
[  385.143761][T13155]  ? get_pid_task+0xfc/0x250
[  385.148420][T13155]  ___sys_sendmsg+0x135/0x1e0
[  385.153173][T13155]  ? get_pid_task+0x35/0x250
[  385.157855][T13155]  ? __pfx____sys_sendmsg+0x10/0x10
[  385.163115][T13155]  ? lock_release+0x4e2/0x6f0
[  385.167848][T13155]  ? __pfx_lock_release+0x10/0x10
[  385.173014][T13155]  ? trace_lock_acquire+0x14e/0x1f0
[  385.178285][T13155]  ? __fget_files+0x206/0x3a0
[  385.183025][T13155]  __sys_sendmsg+0x16e/0x220
[  385.187688][T13155]  ? __pfx___sys_sendmsg+0x10/0x10
[  385.192917][T13155]  ? rcu_is_watching+0x12/0xc0
[  385.197760][T13155]  ? rcu_is_watching+0x12/0xc0
[  385.202593][T13155]  do_syscall_64+0xcd/0x250
[  385.207152][T13155]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.213109][T13155] RIP: 0033:0x7f40bf785d19
[  385.217592][T13155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  385.237404][T13155] RSP: 002b:00007f40c0589038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  385.246016][T13155] RAX: ffffffffffffffda RBX: 00007f40bf975fa0 RCX: 00007f40bf785d19
[  385.254478][T13155] RDX: 0000000000000004 RSI: 0000000020005200 RDI: 0000000000000003
[  385.262508][T13155] RBP: 00007f40c0589090 R08: 0000000000000000 R09: 0000000000000000
[  385.270516][T13155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  385.278524][T13155] R13: 0000000000000000 R14: 00007f40bf975fa0 R15: 00007ffc471d2268
[  385.286644][T13155]  </TASK>
[  385.294174][ T5836] Bluetooth: hci4: command tx timeout
[  385.296018][ T6978] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  385.371324][ T6978] bond0 (unregistering): Released all slaves
[  385.540598][T13084] hsr_slave_0: entered promiscuous mode
[  385.558909][T13084] hsr_slave_1: entered promiscuous mode
[  385.569035][T13084] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  385.577340][T13084] Cannot create hsr debugfs directory
[  385.658872][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  385.850120][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  386.037154][ T6978] hsr_slave_0: left promiscuous mode
[  386.071946][ T6978] hsr_slave_1: left promiscuous mode
[  386.078864][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  386.087475][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  386.096055][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  386.112244][ T6978] veth1_macvtap: left promiscuous mode
[  386.126935][ T6978] veth0_macvtap: left promiscuous mode
[  386.142820][ T6978] veth1_vlan: left promiscuous mode
[  386.167805][ T6978] veth0_vlan: left promiscuous mode
[  386.201037][    T0] NOHZ tick-stop error: local softirq work is pending, handler #246!!!
[  386.248822][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  386.260016][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[  386.269093][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  386.278028][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  386.740199][ T5836] Bluetooth: hci1: command tx timeout
[  387.001740][T13197] FAULT_INJECTION: forcing a failure.
[  387.001740][T13197] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  387.095512][T13197] CPU: 0 UID: 0 PID: 13197 Comm: syz.2.2360 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  387.106405][T13197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  387.116489][T13197] Call Trace:
[  387.119759][T13197]  <TASK>
[  387.122686][T13197]  dump_stack_lvl+0x16c/0x1f0
[  387.127394][T13197]  should_fail_ex+0x497/0x5b0
[  387.132082][T13197]  _copy_to_user+0x32/0xd0
[  387.136504][T13197]  simple_read_from_buffer+0xd0/0x160
[  387.141904][T13197]  proc_fail_nth_read+0x198/0x270
[  387.146936][T13197]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  387.152497][T13197]  ? bpf_lsm_file_permission+0x9/0x10
[  387.157902][T13197]  ? security_file_permission+0x71/0x210
[  387.163565][T13197]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  387.169160][T13197]  vfs_read+0x1df/0xbe0
[  387.173332][T13197]  ? __fget_files+0x1fc/0x3a0
[  387.178031][T13197]  ? __pfx___mutex_lock+0x10/0x10
[  387.183072][T13197]  ? __pfx_vfs_read+0x10/0x10
[  387.187765][T13197]  ? __fget_files+0x206/0x3a0
[  387.192456][T13197]  ksys_read+0x12b/0x250
[  387.196708][T13197]  ? __pfx_ksys_read+0x10/0x10
[  387.201501][T13197]  ? rcu_is_watching+0x12/0xc0
[  387.206276][T13197]  ? rcu_is_watching+0x12/0xc0
[  387.211051][T13197]  do_syscall_64+0xcd/0x250
[  387.215566][T13197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.221474][T13197] RIP: 0033:0x7f40bf78472c
[  387.225887][T13197] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  387.245519][T13197] RSP: 002b:00007f40c0568030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  387.253944][T13197] RAX: ffffffffffffffda RBX: 00007f40bf976080 RCX: 00007f40bf78472c
[  387.262015][T13197] RDX: 000000000000000f RSI: 00007f40c05680a0 RDI: 0000000000000012
[  387.269990][T13197] RBP: 00007f40c0568090 R08: 0000000000000000 R09: 0000000000000000
[  387.277964][T13197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  387.285940][T13197] R13: 0000000000000000 R14: 00007f40bf976080 R15: 00007ffc471d2268
[  387.293937][T13197]  </TASK>
[  387.490918][ T6978] team0 (unregistering): Port device team_slave_1 removed
[  387.505801][ T6978] team0 (unregistering): Port device team_slave_0 removed
[  388.134322][T13084] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  388.189212][T13084] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  388.267091][T13084] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  388.289542][T13084] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  388.499996][T13084] 8021q: adding VLAN 0 to HW filter on device bond0
[  388.531834][T13084] 8021q: adding VLAN 0 to HW filter on device team0
[  388.573322][T13223] kafs: addr_prefs: Invalid Command
[  388.573642][ T6971] bridge0: port 1(bridge_slave_0) entered blocking state
[  388.585750][ T6971] bridge0: port 1(bridge_slave_0) entered forwarding state
[  388.627853][ T6971] bridge0: port 2(bridge_slave_1) entered blocking state
[  388.635093][ T6971] bridge0: port 2(bridge_slave_1) entered forwarding state
[  388.818837][ T5836] Bluetooth: hci1: command tx timeout
[  389.025624][T13084] 8021q: adding VLAN 0 to HW filter on device batadv0
[  389.104225][T13084] veth0_vlan: entered promiscuous mode
[  389.125107][T13084] veth1_vlan: entered promiscuous mode
[  389.138342][T13240] netlink: 14880 bytes leftover after parsing attributes in process `syz.1.2367'.
[  389.178788][T13084] veth0_macvtap: entered promiscuous mode
[  389.195709][T13084] veth1_macvtap: entered promiscuous mode
[  389.224002][T13084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  389.266821][T13084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  389.300807][T13084] batman_adv: batadv0: Interface activated: batadv_slave_0
[  389.331508][T13084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  389.354236][T13084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  389.374845][T13084] batman_adv: batadv0: Interface activated: batadv_slave_1
[  389.415713][T13084] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  389.435421][T13084] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  389.460403][T13084] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  389.469844][T13084] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  389.649680][   T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  389.684179][   T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  389.740019][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  389.748007][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  390.129541][T13276] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2373'.
[  390.272821][T13288] netlink: 14880 bytes leftover after parsing attributes in process `syz.0.2375'.
[  390.410894][T13284] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec"[13284]
[  390.899584][ T5836] Bluetooth: hci1: command tx timeout
[  391.212469][T13315] FAULT_INJECTION: forcing a failure.
[  391.212469][T13315] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  391.277617][T13315] CPU: 1 UID: 0 PID: 13315 Comm: syz.2.2379 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  391.288444][T13315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  391.298767][T13315] Call Trace:
[  391.302090][T13315]  <TASK>
[  391.305063][T13315]  dump_stack_lvl+0x16c/0x1f0
[  391.309906][T13315]  should_fail_ex+0x497/0x5b0
[  391.314896][T13315]  _copy_from_iter+0x29b/0x1400
[  391.319797][T13315]  ? trace_lock_acquire+0x14e/0x1f0
[  391.325054][T13315]  ? __alloc_skb+0x200/0x380
[  391.329762][T13315]  ? __virt_addr_valid+0x1a4/0x590
[  391.334908][T13315]  ? __pfx__copy_from_iter+0x10/0x10
[  391.340221][T13315]  ? __virt_addr_valid+0x1a4/0x590
[  391.345346][T13315]  ? __virt_addr_valid+0x5e/0x590
[  391.350395][T13315]  ? __phys_addr_symbol+0x30/0x80
[  391.355460][T13315]  ? __check_object_size+0x488/0x710
[  391.360789][T13315]  netlink_sendmsg+0x813/0xd70
[  391.365585][T13315]  ? __pfx_netlink_sendmsg+0x10/0x10
[  391.370902][T13315]  ____sys_sendmsg+0x9ae/0xb40
[  391.375703][T13315]  ? copy_msghdr_from_user+0x10b/0x160
[  391.381210][T13315]  ? __pfx_____sys_sendmsg+0x10/0x10
[  391.386524][T13315]  ? rcu_is_watching+0x12/0xc0
[  391.391316][T13315]  ? lock_release+0x4e2/0x6f0
[  391.396026][T13315]  ? get_pid_task+0xfc/0x250
[  391.400709][T13315]  ___sys_sendmsg+0x135/0x1e0
[  391.405436][T13315]  ? get_pid_task+0x35/0x250
[  391.410073][T13315]  ? __pfx____sys_sendmsg+0x10/0x10
[  391.415320][T13315]  ? lock_release+0x4e2/0x6f0
[  391.420023][T13315]  ? __pfx_lock_release+0x10/0x10
[  391.425073][T13315]  ? trace_lock_acquire+0x14e/0x1f0
[  391.430308][T13315]  ? __fget_files+0x206/0x3a0
[  391.435028][T13315]  __sys_sendmsg+0x16e/0x220
[  391.439661][T13315]  ? __pfx___sys_sendmsg+0x10/0x10
[  391.444810][T13315]  ? rcu_is_watching+0x12/0xc0
[  391.449593][T13315]  ? rcu_is_watching+0x12/0xc0
[  391.454373][T13315]  do_syscall_64+0xcd/0x250
[  391.458893][T13315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.464828][T13315] RIP: 0033:0x7f40bf785d19
[  391.469271][T13315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  391.489008][T13315] RSP: 002b:00007f40c0589038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  391.497470][T13315] RAX: ffffffffffffffda RBX: 00007f40bf975fa0 RCX: 00007f40bf785d19
[  391.505477][T13315] RDX: 0000000000000080 RSI: 00000000200006c0 RDI: 0000000000000003
[  391.513483][T13315] RBP: 00007f40c0589090 R08: 0000000000000000 R09: 0000000000000000
[  391.521478][T13315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  391.529464][T13315] R13: 0000000000000000 R14: 00007f40bf975fa0 R15: 00007ffc471d2268
[  391.537475][T13315]  </TASK>
[  391.775673][T13326] FAULT_INJECTION: forcing a failure.
[  391.775673][T13326] name failslab, interval 1, probability 0, space 0, times 0
[  391.806844][T13326] CPU: 0 UID: 0 PID: 13326 Comm: syz.1.2392 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  391.817855][T13326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  391.827952][T13326] Call Trace:
[  391.831261][T13326]  <TASK>
[  391.834224][T13326]  dump_stack_lvl+0x16c/0x1f0
[  391.838970][T13326]  should_fail_ex+0x497/0x5b0
[  391.843698][T13326]  ? fs_reclaim_acquire+0xae/0x150
[  391.848859][T13326]  should_failslab+0xc2/0x120
[  391.852782][T13328] netlink: 14880 bytes leftover after parsing attributes in process `syz.0.2384'.
[  391.853607][T13326]  __kmalloc_node_noprof+0xd1/0x520
[  391.868108][T13326]  ? security_capable+0x7e/0x260
[  391.873110][T13326]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  391.878628][T13326]  ? ns_capable_noaudit+0xda/0x110
[  391.883785][T13326]  __kvmalloc_node_noprof+0xad/0x1a0
[  391.889127][T13326]  proc_sys_call_handler+0x2f6/0x5d0
[  391.894488][T13326]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  391.900383][T13326]  ? apparmor_file_permission+0x251/0x400
[  391.906167][T13326]  ? lock_acquire+0x2f/0xb0
[  391.910716][T13326]  ? ksys_write+0x12b/0x250
[  391.915262][T13326]  vfs_write+0x5ae/0x1150
[  391.919618][T13326]  ? __pfx_proc_sys_write+0x10/0x10
[  391.924845][T13326]  ? __pfx___mutex_lock+0x10/0x10
[  391.929907][T13326]  ? __pfx_vfs_write+0x10/0x10
[  391.934697][T13326]  ksys_write+0x12b/0x250
[  391.939040][T13326]  ? __pfx_ksys_write+0x10/0x10
[  391.944013][T13326]  ? rcu_is_watching+0x12/0xc0
[  391.948813][T13326]  ? rcu_is_watching+0x12/0xc0
[  391.953613][T13326]  do_syscall_64+0xcd/0x250
[  391.958149][T13326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.964101][T13326] RIP: 0033:0x7f6d43185d19
[  391.968533][T13326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  391.988169][T13326] RSP: 002b:00007f6d44036038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  391.996623][T13326] RAX: ffffffffffffffda RBX: 00007f6d43375fa0 RCX: 00007f6d43185d19
[  392.004629][T13326] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  392.012631][T13326] RBP: 00007f6d44036090 R08: 0000000000000000 R09: 0000000000000000
[  392.020632][T13326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  392.028621][T13326] R13: 0000000000000000 R14: 00007f6d43375fa0 R15: 00007ffc28ae09b8
[  392.036617][T13326]  </TASK>
[  392.449154][T13338] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2388'.
[  392.591574][T13338] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[13338]
[  393.866465][T13366] netlink: 14848 bytes leftover after parsing attributes in process `syz.0.2395'.
[  394.353963][T13381] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2399'.
[  394.354324][T13373] kafs: addr_prefs: Invalid Command
[  394.403704][T13381] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  394.429156][T13381] batman_adv: batadv0: Removing interface: batadv_slave_0
[  394.484748][T13381] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  394.520811][T13381] batman_adv: batadv0: Removing interface: batadv_slave_1
[  394.596068][T13386] ptrace attach of "./syz-executor exec"[12891] was attempted by "./syz-executor exec"[13386]
[  395.588989][T13401] kafs: addr_prefs: Invalid Command
[  396.651213][T13413] netlink: 14848 bytes leftover after parsing attributes in process `syz.1.2406'.
[  396.804646][T13419] FAULT_INJECTION: forcing a failure.
[  396.804646][T13419] name failslab, interval 1, probability 0, space 0, times 0
[  396.821626][T13419] CPU: 0 UID: 0 PID: 13419 Comm: syz.1.2410 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  396.832480][T13419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  396.842564][T13419] Call Trace:
[  396.845867][T13419]  <TASK>
[  396.848815][T13419]  dump_stack_lvl+0x16c/0x1f0
[  396.853543][T13419]  should_fail_ex+0x497/0x5b0
[  396.858266][T13419]  ? __pfx_lock_release+0x10/0x10
[  396.863328][T13419]  should_failslab+0xc2/0x120
[  396.868077][T13419]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  396.873977][T13419]  ? percpu_ref_put_many.constprop.0+0x2e/0x2a0
[  396.880303][T13419]  ? zswap_store+0x85e/0x25d0
[  396.885038][T13419]  zswap_store+0x85e/0x25d0
[  396.889570][T13419]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  396.894971][T13419]  ? swap_swapcount+0x18e/0x220
[  396.899857][T13419]  ? __pfx_zswap_store+0x10/0x10
[  396.904811][T13419]  ? _raw_spin_unlock+0x28/0x50
[  396.909677][T13419]  ? swap_swapcount+0x13c/0x220
[  396.914550][T13419]  ? __pfx_swap_swapcount+0x10/0x10
[  396.919792][T13419]  ? swp_swap_info+0xcf/0x130
[  396.924515][T13419]  ? __pfx_swp_swap_info+0x10/0x10
[  396.929672][T13419]  swap_writepage+0x3b6/0x1120
[  396.934461][T13419]  ? folio_clear_dirty_for_io+0x112/0x800
[  396.940227][T13419]  pageout+0x3b2/0xaa0
[  396.944320][T13419]  ? __pfx_pageout+0x10/0x10
[  396.948949][T13419]  ? __pfx_try_to_unmap_one+0x10/0x10
[  396.954350][T13419]  ? __pfx_folio_not_mapped+0x10/0x10
[  396.959746][T13419]  ? __pfx_folio_lock_anon_vma_read+0x10/0x10
[  396.965831][T13419]  ? folio_mark_dirty+0xd8/0x150
[  396.970785][T13419]  shrink_folio_list+0x3025/0x42d0
[  396.975908][T13419]  ? __pfx_shrink_folio_list+0x10/0x10
[  396.981382][T13419]  ? rcu_is_watching+0x12/0xc0
[  396.986168][T13419]  ? finish_task_switch.isra.0+0x160/0xcc0
[  396.991982][T13419]  ? rcu_is_watching+0x12/0xc0
[  396.996759][T13419]  ? trace_irq_enable.constprop.0+0xea/0x140
[  397.002747][T13419]  reclaim_folio_list+0xd8/0x5e0
[  397.007693][T13419]  ? __schedule+0xe60/0x5ad0
[  397.012293][T13419]  ? __pfx_reclaim_folio_list+0x10/0x10
[  397.017866][T13419]  ? lru_gen_update_size+0x539/0xde0
[  397.023172][T13419]  ? lock_release+0x4e2/0x6f0
[  397.027872][T13419]  ? folio_isolate_lru+0x577/0x8e0
[  397.032994][T13419]  reclaim_pages+0x481/0x650
[  397.037595][T13419]  ? __pfx_reclaim_pages+0x10/0x10
[  397.042719][T13419]  madvise_cold_or_pageout_pte_range+0x13ae/0x20d0
[  397.049248][T13419]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  397.056116][T13419]  ? __pfx_lock_release+0x10/0x10
[  397.061142][T13419]  ? lock_acquire+0x2f/0xb0
[  397.065651][T13419]  ? process_measurement+0x39c/0x2370
[  397.071037][T13419]  ? rcu_is_watching+0x12/0xc0
[  397.075811][T13419]  ? lock_release+0x4e2/0x6f0
[  397.080502][T13419]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  397.087371][T13419]  walk_pgd_range+0xc7b/0x1a70
[  397.092158][T13419]  ? mt_find+0x4c8/0xa20
[  397.096420][T13419]  ? __pfx_walk_pgd_range+0x10/0x10
[  397.101643][T13419]  __walk_page_range+0x161/0x820
[  397.106605][T13419]  ? find_vma+0xc0/0x140
[  397.110869][T13419]  ? __pfx_find_vma+0x10/0x10
[  397.115557][T13419]  ? trace_irq_enable.constprop.0+0xea/0x140
[  397.121546][T13419]  ? walk_page_test+0x9b/0x180
[  397.126328][T13419]  walk_page_range_mm+0x55a/0x940
[  397.131376][T13419]  ? __pfx_walk_page_range_mm+0x10/0x10
[  397.136951][T13419]  ? mlock_drain_local+0x22d/0x4f0
[  397.142091][T13419]  ? mlock_drain_local+0x6f/0x4f0
[  397.147134][T13419]  ? lock_acquire+0x2f/0xb0
[  397.151642][T13419]  ? mlock_drain_local+0x6f/0x4f0
[  397.156689][T13419]  walk_page_range+0x63/0x90
[  397.161378][T13419]  madvise_pageout+0x326/0x820
[  397.166169][T13419]  ? __pfx_madvise_pageout+0x10/0x10
[  397.171474][T13419]  ? mt_find+0x366/0xa20
[  397.175735][T13419]  ? __pfx_lock_release+0x10/0x10
[  397.180773][T13419]  ? mt_find+0x4c8/0xa20
[  397.185043][T13419]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  397.190953][T13419]  madvise_vma_behavior+0x44a/0x1da0
[  397.196266][T13419]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  397.202004][T13419]  ? find_vma_prev+0xdb/0x160
[  397.206688][T13419]  ? __pfx_find_vma_prev+0x10/0x10
[  397.211832][T13419]  ? rcu_is_watching+0x12/0xc0
[  397.216612][T13419]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  397.222351][T13419]  ? find_vma+0xc0/0x140
[  397.226604][T13419]  ? __pfx_find_vma+0x10/0x10
[  397.231287][T13419]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  397.236846][T13419]  ? lock_release+0x4e2/0x6f0
[  397.241530][T13419]  ? do_madvise+0x25b/0x770
[  397.246056][T13419]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  397.251799][T13419]  madvise_walk_vmas+0x1cf/0x2c0
[  397.256753][T13419]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  397.262232][T13419]  ? __mutex_unlock_slowpath+0x164/0x690
[  397.267879][T13419]  do_madvise+0x30e/0x770
[  397.272231][T13419]  ? __pfx_do_madvise+0x10/0x10
[  397.277106][T13419]  ? ksys_write+0x1ba/0x250
[  397.281619][T13419]  ? __pfx_ksys_write+0x10/0x10
[  397.286480][T13419]  ? rcu_is_watching+0x12/0xc0
[  397.291257][T13419]  __x64_sys_madvise+0xa9/0x110
[  397.296128][T13419]  do_syscall_64+0xcd/0x250
[  397.300647][T13419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  397.306559][T13419] RIP: 0033:0x7f6d43185d19
[  397.310976][T13419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.330593][T13419] RSP: 002b:00007f6d44036038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  397.339036][T13419] RAX: ffffffffffffffda RBX: 00007f6d43375fa0 RCX: 00007f6d43185d19
[  397.347012][T13419] RDX: 0000000000000015 RSI: ffffffffffff0001 RDI: 0000000000000000
[  397.354988][T13419] RBP: 00007f6d44036090 R08: 0000000000000000 R09: 0000000000000000
[  397.362963][T13419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  397.370938][T13419] R13: 0000000000000001 R14: 00007f6d43375fa0 R15: 00007ffc28ae09b8
[  397.378921][T13419]  </TASK>
[  397.625268][T13428] FAULT_INJECTION: forcing a failure.
[  397.625268][T13428] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  397.667436][T13428] CPU: 0 UID: 0 PID: 13428 Comm: syz.1.2415 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  397.678320][T13428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  397.688531][T13428] Call Trace:
[  397.691836][T13428]  <TASK>
[  397.694794][T13428]  dump_stack_lvl+0x16c/0x1f0
[  397.699523][T13428]  should_fail_ex+0x497/0x5b0
[  397.704253][T13428]  _copy_from_iter+0x29b/0x1400
[  397.709177][T13428]  ? trace_lock_acquire+0x14e/0x1f0
[  397.714410][T13428]  ? __alloc_skb+0x200/0x380
[  397.719043][T13428]  ? __virt_addr_valid+0x1a4/0x590
[  397.724194][T13428]  ? __pfx__copy_from_iter+0x10/0x10
[  397.729517][T13428]  ? __virt_addr_valid+0x1a4/0x590
[  397.734713][T13428]  ? __virt_addr_valid+0x5e/0x590
[  397.739820][T13428]  ? __phys_addr_symbol+0x30/0x80
[  397.744877][T13428]  ? __check_object_size+0x488/0x710
[  397.750196][T13428]  netlink_sendmsg+0x813/0xd70
[  397.754989][T13428]  ? __pfx_netlink_sendmsg+0x10/0x10
[  397.760304][T13428]  ____sys_sendmsg+0x9ae/0xb40
[  397.765087][T13428]  ? copy_msghdr_from_user+0x10b/0x160
[  397.770568][T13428]  ? __pfx_____sys_sendmsg+0x10/0x10
[  397.775884][T13428]  ? rcu_is_watching+0x12/0xc0
[  397.780679][T13428]  ? lock_release+0x4e2/0x6f0
[  397.785381][T13428]  ? get_pid_task+0xfc/0x250
[  397.790019][T13428]  ___sys_sendmsg+0x135/0x1e0
[  397.794731][T13428]  ? get_pid_task+0x35/0x250
[  397.799357][T13428]  ? __pfx____sys_sendmsg+0x10/0x10
[  397.804588][T13428]  ? lock_release+0x4e2/0x6f0
[  397.809287][T13428]  ? __pfx_lock_release+0x10/0x10
[  397.814348][T13428]  ? trace_lock_acquire+0x14e/0x1f0
[  397.819566][T13428]  ? __fget_files+0x206/0x3a0
[  397.824263][T13428]  __sys_sendmsg+0x16e/0x220
[  397.828895][T13428]  ? __pfx___sys_sendmsg+0x10/0x10
[  397.834064][T13428]  ? rcu_is_watching+0x12/0xc0
[  397.838864][T13428]  ? rcu_is_watching+0x12/0xc0
[  397.843661][T13428]  do_syscall_64+0xcd/0x250
[  397.848195][T13428]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  397.854117][T13428] RIP: 0033:0x7f6d43185d19
[  397.858548][T13428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.878177][T13428] RSP: 002b:00007f6d44036038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  397.886597][T13428] RAX: ffffffffffffffda RBX: 00007f6d43375fa0 RCX: 00007f6d43185d19
[  397.894584][T13428] RDX: 0000000020000000 RSI: 0000000020000140 RDI: 0000000000000003
[  397.902579][T13428] RBP: 00007f6d44036090 R08: 0000000000000000 R09: 0000000000000000
[  397.910572][T13428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  397.918571][T13428] R13: 0000000000000000 R14: 00007f6d43375fa0 R15: 00007ffc28ae09b8
[  397.926574][T13428]  </TASK>
[  398.092830][T13434] kafs: addr_prefs: Invalid Command
[  398.219752][T13441] kafs: addr_prefs: Invalid Command
[  398.290245][T13443] netlink: 14848 bytes leftover after parsing attributes in process `syz.2.2419'.
[  398.997800][T13466] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2424'.
[  399.245096][T13466] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[13466]
[  399.800579][T13482] kafs: addr_prefs: Invalid Command
[  400.558138][T13509] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2439'.
[  400.689008][T13509] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec"[13509]
[  401.436365][ T5834] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  401.446756][ T5834] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  401.459038][ T5834] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  401.477120][ T5834] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  401.486768][ T5834] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  401.494118][ T5834] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  401.975029][   T65] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  402.213250][   T65] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  402.265923][T13538] chnl_net:caif_netlink_parms(): no params data found
[  402.349921][   T65] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  402.422916][T13552] FAULT_INJECTION: forcing a failure.
[  402.422916][T13552] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  402.467221][T13552] CPU: 0 UID: 0 PID: 13552 Comm: syz.1.2451 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  402.478150][T13552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  402.488254][T13552] Call Trace:
[  402.491563][T13552]  <TASK>
[  402.494536][T13552]  dump_stack_lvl+0x16c/0x1f0
[  402.499280][T13552]  should_fail_ex+0x497/0x5b0
[  402.504089][T13552]  strncpy_from_user+0x3b/0x2d0
[  402.509001][T13552]  getname_flags.part.0+0x8f/0x550
[  402.514176][T13552]  getname+0x8d/0xe0
[  402.518124][T13552]  do_sys_openat2+0x104/0x1e0
[  402.522868][T13552]  ? __pfx_do_sys_openat2+0x10/0x10
[  402.528150][T13552]  ? __fget_files+0x206/0x3a0
[  402.532911][T13552]  __x64_sys_openat+0x175/0x210
[  402.537830][T13552]  ? __pfx___x64_sys_openat+0x10/0x10
[  402.543263][T13552]  ? ksys_write+0x1ba/0x250
[  402.547821][T13552]  ? rcu_is_watching+0x12/0xc0
[  402.552644][T13552]  ? rcu_is_watching+0x12/0xc0
[  402.557460][T13552]  do_syscall_64+0xcd/0x250
[  402.562017][T13552]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  402.567956][T13552] RIP: 0033:0x7f6d43185d19
[  402.572401][T13552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  402.592065][T13552] RSP: 002b:00007f6d44036038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  402.600504][T13552] RAX: ffffffffffffffda RBX: 00007f6d43375fa0 RCX: 00007f6d43185d19
[  402.608494][T13552] RDX: 0000000000004001 RSI: 0000000020000040 RDI: ffffffffffffff9c
[  402.616479][T13552] RBP: 00007f6d44036090 R08: 0000000000000000 R09: 0000000000000000
[  402.624453][T13552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  402.632432][T13552] R13: 0000000000000001 R14: 00007f6d43375fa0 R15: 00007ffc28ae09b8
[  402.640434][T13552]  </TASK>
[  402.662048][   T65] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  402.745946][T13538] bridge0: port 1(bridge_slave_0) entered blocking state
[  402.755748][T13538] bridge0: port 1(bridge_slave_0) entered disabled state
[  402.783041][T13538] bridge_slave_0: entered allmulticast mode
[  402.790136][T13538] bridge_slave_0: entered promiscuous mode
[  402.854170][T13567] FAULT_INJECTION: forcing a failure.
[  402.854170][T13567] name failslab, interval 1, probability 0, space 0, times 0
[  402.876714][T13538] bridge0: port 2(bridge_slave_1) entered blocking state
[  402.884160][T13567] CPU: 0 UID: 0 PID: 13567 Comm: syz.3.2454 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  402.891238][T13538] bridge0: port 2(bridge_slave_1) entered disabled state
[  402.895088][T13567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  402.895111][T13567] Call Trace:
[  402.895122][T13567]  <TASK>
[  402.903186][T13538] bridge_slave_1: entered allmulticast mode
[  402.912182][T13567]  dump_stack_lvl+0x16c/0x1f0
[  402.912227][T13567]  should_fail_ex+0x497/0x5b0
[  402.916811][T13538] bridge_slave_1: entered promiscuous mode
[  402.918423][T13567]  ? fs_reclaim_acquire+0xae/0x150
[  402.925308][   T65] bridge_slave_1: left allmulticast mode
[  402.928997][T13567]  should_failslab+0xc2/0x120
[  402.929041][T13567]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  402.934371][   T65] bridge_slave_1: left promiscuous mode
[  402.939526][T13567]  ? __alloc_skb+0x2b3/0x380
[  402.939575][T13567]  __alloc_skb+0x2b3/0x380
[  402.939619][T13567]  ? __pfx___alloc_skb+0x10/0x10
[  402.939662][T13567]  ? lock_acquire+0x2f/0xb0
[  402.939699][T13567]  netlink_alloc_large_skb+0x69/0x130
[  402.939737][T13567]  netlink_sendmsg+0x689/0xd70
[  402.939772][T13567]  ? __pfx_netlink_sendmsg+0x10/0x10
[  402.947739][   T65] bridge0: port 2(bridge_slave_1) entered disabled state
[  402.950500][T13567]  ____sys_sendmsg+0x9ae/0xb40
[  402.950540][T13567]  ? copy_msghdr_from_user+0x10b/0x160
[  403.017774][T13567]  ? __pfx_____sys_sendmsg+0x10/0x10
[  403.023097][T13567]  ? rcu_is_watching+0x12/0xc0
[  403.027893][T13567]  ? lock_release+0x4e2/0x6f0
[  403.032588][T13567]  ? get_pid_task+0xfc/0x250
[  403.037206][T13567]  ___sys_sendmsg+0x135/0x1e0
[  403.041906][T13567]  ? get_pid_task+0x35/0x250
[  403.046539][T13567]  ? __pfx____sys_sendmsg+0x10/0x10
[  403.051819][T13567]  ? lock_release+0x4e2/0x6f0
[  403.056532][T13567]  ? __pfx_lock_release+0x10/0x10
[  403.061587][T13567]  ? trace_lock_acquire+0x14e/0x1f0
[  403.066824][T13567]  ? __fget_files+0x206/0x3a0
[  403.071530][T13567]  __sys_sendmsg+0x16e/0x220
[  403.076153][T13567]  ? __pfx___sys_sendmsg+0x10/0x10
[  403.081302][T13567]  ? rcu_is_watching+0x12/0xc0
[  403.086095][T13567]  ? rcu_is_watching+0x12/0xc0
[  403.090871][T13567]  do_syscall_64+0xcd/0x250
[  403.095391][T13567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.101300][T13567] RIP: 0033:0x7ff149f85d19
[  403.105719][T13567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  403.125333][T13567] RSP: 002b:00007ff14add5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  403.133757][T13567] RAX: ffffffffffffffda RBX: 00007ff14a176080 RCX: 00007ff149f85d19
[  403.141746][T13567] RDX: 0000000000009800 RSI: 00000000200007c0 RDI: 0000000000000003
[  403.149727][T13567] RBP: 00007ff14add5090 R08: 0000000000000000 R09: 0000000000000000
[  403.157703][T13567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  403.165680][T13567] R13: 0000000000000001 R14: 00007ff14a176080 R15: 00007ffc3502f428
[  403.173670][T13567]  </TASK>
[  403.180781][   T65] bridge_slave_0: left allmulticast mode
[  403.186452][   T65] bridge_slave_0: left promiscuous mode
[  403.196031][   T65] bridge0: port 1(bridge_slave_0) entered disabled state
[  403.323918][   T65] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  403.339584][   T65] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  403.354485][   T65] bond0 (unregistering): Released all slaves
[  403.410830][T13538] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  403.422909][T13538] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  403.505011][T13538] team0: Port device team_slave_0 added
[  403.538601][ T5836] Bluetooth: hci0: command tx timeout
[  403.544858][T13538] team0: Port device team_slave_1 added
[  403.583803][T13538] batman_adv: batadv0: Adding interface: batadv_slave_0
[  403.599847][T13538] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  403.667566][T13538] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  403.716043][   T65] hsr_slave_0: left promiscuous mode
[  403.732309][   T65] hsr_slave_1: left promiscuous mode
[  403.756076][   T65] veth1_macvtap: left promiscuous mode
[  403.761836][   T65] veth0_macvtap: left promiscuous mode
[  403.775507][   T65] veth1_vlan: left promiscuous mode
[  403.788804][   T65] veth0_vlan: left promiscuous mode
[  404.156703][   T65] team0 (unregistering): Port device team_slave_1 removed
[  404.211959][   T65] team0 (unregistering): Port device team_slave_0 removed
[  404.378426][T13538] batman_adv: batadv0: Adding interface: batadv_slave_1
[  404.396347][T13538] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  404.458677][T13538] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  404.560195][T13538] hsr_slave_0: entered promiscuous mode
[  404.610659][T13538] hsr_slave_1: entered promiscuous mode
[  404.628644][T13538] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  404.639586][T13538] Cannot create hsr debugfs directory
[  405.242387][T13635] FAULT_INJECTION: forcing a failure.
[  405.242387][T13635] name failslab, interval 1, probability 0, space 0, times 0
[  405.257543][T13538] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  405.272043][T13538] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  405.278947][T13635] CPU: 0 UID: 0 PID: 13635 Comm: syz.1.2469 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  405.289741][T13635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  405.299844][T13635] Call Trace:
[  405.303136][T13635]  <TASK>
[  405.306082][T13635]  dump_stack_lvl+0x16c/0x1f0
[  405.310794][T13635]  should_fail_ex+0x497/0x5b0
[  405.315507][T13635]  ? fs_reclaim_acquire+0xae/0x150
[  405.320651][T13635]  should_failslab+0xc2/0x120
[  405.325368][T13635]  __kmalloc_noprof+0xce/0x4f0
[  405.330164][T13635]  ? tomoyo_realpath_from_path+0xbf/0x710
[  405.335923][T13635]  tomoyo_realpath_from_path+0xbf/0x710
[  405.341503][T13635]  ? tomoyo_path_number_perm+0x235/0x5b0
[  405.347181][T13635]  tomoyo_path_number_perm+0x248/0x5b0
[  405.352681][T13635]  ? tomoyo_path_number_perm+0x235/0x5b0
[  405.358356][T13635]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  405.364403][T13635]  ? rcu_is_watching+0x12/0xc0
[  405.369201][T13635]  ? preempt_count_add+0x76/0x150
[  405.374283][T13635]  ? __pfx_lock_release+0x10/0x10
[  405.379352][T13635]  ? trace_lock_acquire+0x14e/0x1f0
[  405.384583][T13635]  ? __fget_files+0x40/0x3a0
[  405.389205][T13635]  ? lock_acquire+0x2f/0xb0
[  405.393740][T13635]  ? __fget_files+0x40/0x3a0
[  405.398371][T13635]  ? __fget_files+0x206/0x3a0
[  405.403083][T13635]  security_file_ioctl+0x9b/0x240
[  405.408142][T13635]  __x64_sys_ioctl+0xb7/0x200
[  405.412867][T13635]  do_syscall_64+0xcd/0x250
[  405.414853][T13637] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  405.417396][T13635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.431701][T13635] RIP: 0033:0x7f6d43185d19
[  405.436138][T13635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  405.455772][T13635] RSP: 002b:00007f6d44036038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  405.464222][T13635] RAX: ffffffffffffffda RBX: 00007f6d43375fa0 RCX: 00007f6d43185d19
[  405.472226][T13635] RDX: 0000000000000008 RSI: 000000000000542e RDI: 0000000000000003
[  405.480219][T13635] RBP: 00007f6d44036090 R08: 0000000000000000 R09: 0000000000000000
[  405.488212][T13635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  405.496206][T13635] R13: 0000000000000000 R14: 00007f6d43375fa0 R15: 00007ffc28ae09b8
[  405.504217][T13635]  </TASK>
[  405.511903][T13635] ERROR: Out of memory at tomoyo_realpath_from_path.
[  405.559629][T13538] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  405.574613][T13538] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  405.618758][ T5836] Bluetooth: hci0: command tx timeout
[  405.668377][T13642] unsupported nla_type 32969
[  405.681612][T13538] 8021q: adding VLAN 0 to HW filter on device bond0
[  405.722128][T13538] 8021q: adding VLAN 0 to HW filter on device team0
[  405.759993][ T6970] bridge0: port 1(bridge_slave_0) entered blocking state
[  405.767191][ T6970] bridge0: port 1(bridge_slave_0) entered forwarding state
[  405.805231][   T65] bridge0: port 2(bridge_slave_1) entered blocking state
[  405.812508][   T65] bridge0: port 2(bridge_slave_1) entered forwarding state
[  406.048252][T13664] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2476'.
[  406.451865][T13664] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  406.471034][T13664] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  406.490264][T13664] bond0 (unregistering): Released all slaves
[  406.538165][T13538] 8021q: adding VLAN 0 to HW filter on device batadv0
[  406.637892][T13538] veth0_vlan: entered promiscuous mode
[  406.652995][T13538] veth1_vlan: entered promiscuous mode
[  406.672984][T13538] veth0_macvtap: entered promiscuous mode
[  406.682434][T13538] veth1_macvtap: entered promiscuous mode
[  406.696878][T13538] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  406.707535][T13538] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  406.719068][T13538] batman_adv: batadv0: Interface activated: batadv_slave_0
[  406.730080][T13538] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  406.741227][T13538] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  406.753427][T13538] batman_adv: batadv0: Interface activated: batadv_slave_1
[  406.756703][T13687] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2479'.
[  406.776682][T13538] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  406.791164][T13538] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  406.809789][T13538] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  406.828600][T13538] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  406.890672][T13687] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  406.908355][T13687] batman_adv: batadv0: Removing interface: batadv_slave_0
[  406.963471][T13687] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  407.008684][T13687] batman_adv: batadv0: Removing interface: batadv_slave_1
[  407.070317][T13686] ptrace attach of "./syz-executor exec"[13084] was attempted by "./syz-executor exec"[13686]
[  407.120392][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  407.128387][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  407.190615][T12493] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  407.202660][T12493] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  407.273551][T13721] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2446'.
[  407.284069][T13721] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2446'.
[  407.288274][T13717] FAULT_INJECTION: forcing a failure.
[  407.288274][T13717] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  407.294633][T13723] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2446'.
[  407.306549][T13717] CPU: 1 UID: 0 PID: 13717 Comm: syz.0.2486 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  407.326031][T13717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  407.336126][T13717] Call Trace:
[  407.339432][T13717]  <TASK>
[  407.342390][T13717]  dump_stack_lvl+0x16c/0x1f0
[  407.347119][T13717]  should_fail_ex+0x497/0x5b0
[  407.351938][T13717]  _copy_to_user+0x32/0xd0
[  407.356466][T13717]  simple_read_from_buffer+0xd0/0x160
[  407.361913][T13717]  proc_fail_nth_read+0x198/0x270
[  407.367013][T13717]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  407.372637][T13717]  ? bpf_lsm_file_permission+0x9/0x10
[  407.378079][T13717]  ? security_file_permission+0x71/0x210
[  407.383775][T13717]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  407.389385][T13717]  vfs_read+0x1df/0xbe0
[  407.393602][T13717]  ? __fget_files+0x1fc/0x3a0
[  407.398333][T13717]  ? __pfx___mutex_lock+0x10/0x10
[  407.403411][T13717]  ? __pfx_vfs_read+0x10/0x10
[  407.408148][T13717]  ? __fget_files+0x206/0x3a0
[  407.412903][T13717]  ksys_read+0x12b/0x250
[  407.417216][T13717]  ? __pfx_ksys_read+0x10/0x10
[  407.422040][T13717]  ? rcu_is_watching+0x12/0xc0
[  407.426871][T13717]  ? rcu_is_watching+0x12/0xc0
[  407.431698][T13717]  do_syscall_64+0xcd/0x250
[  407.436267][T13717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.442217][T13717] RIP: 0033:0x7f593b78472c
[  407.446670][T13717] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  407.466342][T13717] RSP: 002b:00007f593c617030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  407.474811][T13717] RAX: ffffffffffffffda RBX: 00007f593b975fa0 RCX: 00007f593b78472c
[  407.482825][T13717] RDX: 000000000000000f RSI: 00007f593c6170a0 RDI: 0000000000000005
[  407.490828][T13717] RBP: 00007f593c617090 R08: 0000000000000000 R09: 0000000000000000
[  407.498820][T13717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  407.506810][T13717] R13: 0000000000000000 R14: 00007f593b975fa0 R15: 00007ffe87e2e898
[  407.514810][T13717]  </TASK>
[  407.517898][    C1] vkms_vblank_simulate: vblank timer overrun
[  407.698805][ T5836] Bluetooth: hci0: command tx timeout
[  407.729771][T13734] FAULT_INJECTION: forcing a failure.
[  407.729771][T13734] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  407.768582][T13734] CPU: 0 UID: 0 PID: 13734 Comm: syz.0.2489 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  407.779387][T13734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  407.789463][T13734] Call Trace:
[  407.792755][T13734]  <TASK>
[  407.795706][T13734]  dump_stack_lvl+0x16c/0x1f0
[  407.800413][T13734]  should_fail_ex+0x497/0x5b0
[  407.805125][T13734]  _copy_to_user+0x32/0xd0
[  407.809576][T13734]  simple_read_from_buffer+0xd0/0x160
[  407.814992][T13734]  proc_fail_nth_read+0x198/0x270
[  407.820056][T13734]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  407.825642][T13734]  ? bpf_lsm_file_permission+0x9/0x10
[  407.831054][T13734]  ? security_file_permission+0x71/0x210
[  407.836717][T13734]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  407.842306][T13734]  vfs_read+0x1df/0xbe0
[  407.846491][T13734]  ? __fget_files+0x1fc/0x3a0
[  407.851272][T13734]  ? __pfx___mutex_lock+0x10/0x10
[  407.856368][T13734]  ? __pfx_vfs_read+0x10/0x10
[  407.861117][T13734]  ? __fget_files+0x206/0x3a0
[  407.865847][T13734]  ksys_read+0x12b/0x250
[  407.870141][T13734]  ? __pfx_ksys_read+0x10/0x10
[  407.874945][T13734]  ? rcu_is_watching+0x12/0xc0
[  407.879738][T13734]  ? rcu_is_watching+0x12/0xc0
[  407.884538][T13734]  do_syscall_64+0xcd/0x250
[  407.889072][T13734]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.894992][T13734] RIP: 0033:0x7f593b78472c
[  407.899410][T13734] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  407.919043][T13734] RSP: 002b:00007f593c617030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  407.927483][T13734] RAX: ffffffffffffffda RBX: 00007f593b975fa0 RCX: 00007f593b78472c
[  407.935473][T13734] RDX: 000000000000000f RSI: 00007f593c6170a0 RDI: 0000000000000004
[  407.943460][T13734] RBP: 00007f593c617090 R08: 0000000000000000 R09: 0000000000000000
[  407.951448][T13734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  407.959440][T13734] R13: 0000000000000000 R14: 00007f593b975fa0 R15: 00007ffe87e2e898
[  407.967438][T13734]  </TASK>
[  408.363518][T13753] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2496'.
[  408.374024][ T5834] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  408.384966][ T5834] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  408.395382][ T5834] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  408.406460][ T5834] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  408.414062][ T5834] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  408.422653][ T5834] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  408.704118][T13749] chnl_net:caif_netlink_parms(): no params data found
[  408.879656][   T35] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.902570][T13749] bridge0: port 1(bridge_slave_0) entered blocking state
[  408.914128][T13749] bridge0: port 1(bridge_slave_0) entered disabled state
[  408.924850][T13773] kafs: addr_prefs: Invalid Command
[  408.931618][T13749] bridge_slave_0: entered allmulticast mode
[  408.949757][T13749] bridge_slave_0: entered promiscuous mode
[  408.981205][   T35] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.023085][T13749] bridge0: port 2(bridge_slave_1) entered blocking state
[  409.040462][T13749] bridge0: port 2(bridge_slave_1) entered disabled state
[  409.058974][T13749] bridge_slave_1: entered allmulticast mode
[  409.075187][T13749] bridge_slave_1: entered promiscuous mode
[  409.097168][   T35] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.145633][T13749] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  409.168099][   T35] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.193490][T13749] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  409.246847][T13749] team0: Port device team_slave_0 added
[  409.254434][T13749] team0: Port device team_slave_1 added
[  409.326063][T13749] batman_adv: batadv0: Adding interface: batadv_slave_0
[  409.339610][T13749] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  409.382333][T13749] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  409.420724][T13749] batman_adv: batadv0: Adding interface: batadv_slave_1
[  409.427732][T13749] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  409.453691][    C1] vkms_vblank_simulate: vblank timer overrun
[  409.500358][T13749] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  409.587394][   T35] bridge_slave_1: left allmulticast mode
[  409.593611][   T35] bridge_slave_1: left promiscuous mode
[  409.601599][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  409.620048][   T35] bridge_slave_0: left allmulticast mode
[  409.625994][   T35] bridge_slave_0: left promiscuous mode
[  409.639374][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  409.781589][ T5834] Bluetooth: hci0: command tx timeout
[  409.912490][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  409.926121][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  409.950342][   T35] bond0 (unregistering): Released all slaves
[  409.995550][T13749] hsr_slave_0: entered promiscuous mode
[  410.007667][T13749] hsr_slave_1: entered promiscuous mode
[  410.015633][T13749] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  410.028614][T13749] Cannot create hsr debugfs directory
[  410.112503][T13809] kafs: addr_prefs: Invalid Command
[  410.468756][   T35] hsr_slave_0: left promiscuous mode
[  410.488121][   T35] hsr_slave_1: left promiscuous mode
[  410.499121][ T5834] Bluetooth: hci3: command tx timeout
[  410.526628][   T35] veth1_macvtap: left promiscuous mode
[  410.547829][   T35] veth0_macvtap: left promiscuous mode
[  410.562388][   T35] veth1_vlan: left promiscuous mode
[  410.573279][   T35] veth0_vlan: left promiscuous mode
[  410.801804][T13828] cgroup: fork rejected by pids controller in /syz2
[  410.839961][T13833] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2516'.
[  411.054145][   T35] team0 (unregistering): Port device team_slave_1 removed
[  411.261579][   T35] team0 (unregistering): Port device team_slave_0 removed
[  412.588730][ T5834] Bluetooth: hci3: command tx timeout
[  413.037687][T13889] kafs: addr_prefs: Invalid Command
[  414.326876][T13897] FAULT_INJECTION: forcing a failure.
[  414.326876][T13897] name failslab, interval 1, probability 0, space 0, times 0
[  414.371567][T13749] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  414.388093][T13897] CPU: 0 UID: 0 PID: 13897 Comm: syz.3.2526 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  414.398964][T13897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  414.409044][T13897] Call Trace:
[  414.412339][T13897]  <TASK>
[  414.415283][T13897]  dump_stack_lvl+0x16c/0x1f0
[  414.419993][T13897]  should_fail_ex+0x497/0x5b0
[  414.424698][T13897]  ? fs_reclaim_acquire+0xae/0x150
[  414.429836][T13897]  should_failslab+0xc2/0x120
[  414.434550][T13897]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  414.439973][T13897]  ? vm_area_dup+0x53/0x300
[  414.444521][T13897]  vm_area_dup+0x53/0x300
[  414.448881][T13897]  __split_vma+0x181/0x1210
[  414.453416][T13897]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  414.459337][T13897]  ? __pfx___split_vma+0x10/0x10
[  414.464315][T13897]  vms_gather_munmap_vmas+0x38b/0x1730
[  414.469813][T13897]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  414.475755][T13897]  ? mas_walk+0x6a6/0x910
[  414.480113][T13897]  ? rcu_is_watching+0x12/0xc0
[  414.484891][T13897]  __mmap_region+0x31d/0x2670
[  414.489593][T13897]  ? __pfx_lock_release+0x10/0x10
[  414.494668][T13897]  ? __pfx_lock_release+0x10/0x10
[  414.499712][T13897]  ? page_ext_get+0x34/0x310
[  414.504331][T13897]  ? __pfx___mmap_region+0x10/0x10
[  414.509561][T13897]  ? lock_acquire+0x2f/0xb0
[  414.514100][T13897]  ? page_ext_get+0x34/0x310
[  414.518733][T13897]  ? rcu_is_watching+0x12/0xc0
[  414.523541][T13897]  ? lock_release+0x4e2/0x6f0
[  414.528235][T13897]  ? percpu_ref_put_many.constprop.0+0xc4/0x2a0
[  414.534502][T13897]  ? _parse_integer_limit+0x17f/0x1d0
[  414.539899][T13897]  ? rcu_is_watching+0x12/0xc0
[  414.544697][T13897]  ? _kstrtoull+0x146/0x200
[  414.549231][T13897]  ? __pfx__kstrtoull+0x10/0x10
[  414.554212][T13897]  ? lock_release+0x4e2/0x6f0
[  414.558930][T13897]  ? rcu_is_watching+0x12/0xc0
[  414.563810][T13897]  ? cap_mmap_addr+0x53/0x320
[  414.568521][T13897]  mmap_region+0x127/0x320
[  414.572969][T13897]  do_mmap+0xc00/0xfc0
[  414.577063][T13897]  vm_mmap_pgoff+0x1ba/0x360
[  414.581680][T13897]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  414.586805][T13897]  ? __fget_files+0x206/0x3a0
[  414.591540][T13897]  ksys_mmap_pgoff+0x7d/0x5c0
[  414.596242][T13897]  ? __pfx_ksys_write+0x10/0x10
[  414.601118][T13897]  __x64_sys_mmap+0x125/0x190
[  414.605995][T13897]  do_syscall_64+0xcd/0x250
[  414.610531][T13897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.616455][T13897] RIP: 0033:0x7ff149f85d19
[  414.620892][T13897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.640517][T13897] RSP: 002b:00007ff14add5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  414.648945][T13897] RAX: ffffffffffffffda RBX: 00007ff14a176080 RCX: 00007ff149f85d19
[  414.656937][T13897] RDX: 00000000000000df RSI: 0000000000400005 RDI: 0000000000000000
[  414.664934][T13897] RBP: 00007ff14add5090 R08: 0000000000000002 R09: 0000000000008000
[  414.672921][T13897] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001
[  414.680907][T13897] R13: 0000000000000000 R14: 00007ff14a176080 R15: 00007ffc3502f428
[  414.688906][T13897]  </TASK>
[  414.714796][ T5834] Bluetooth: hci3: command tx timeout
[  414.805702][T13749] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  414.815693][T13749] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  414.830708][T13749] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  415.149894][T13749] 8021q: adding VLAN 0 to HW filter on device bond0
[  415.167811][T13749] 8021q: adding VLAN 0 to HW filter on device team0
[  415.180561][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  415.187754][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  415.241137][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  415.248321][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  415.662508][T13749] 8021q: adding VLAN 0 to HW filter on device batadv0
[  415.741004][T13749] veth0_vlan: entered promiscuous mode
[  415.772566][T13749] veth1_vlan: entered promiscuous mode
[  415.792396][T13749] veth0_macvtap: entered promiscuous mode
[  415.803496][T13749] veth1_macvtap: entered promiscuous mode
[  415.817956][T13749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  415.828605][T13749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.839615][T13749] batman_adv: batadv0: Interface activated: batadv_slave_0
[  415.849822][T13749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  415.860418][T13749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.871167][T13749] batman_adv: batadv0: Interface activated: batadv_slave_1
[  415.882483][T13749] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  415.891297][T13749] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  415.900063][T13749] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  415.908832][T13749] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  416.015506][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  416.026325][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  416.057938][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  416.085498][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  416.187718][T13930] kafs: addr_prefs: Invalid Command
[  416.203576][T13932] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2493'.
[  416.238609][T13932] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  416.255758][T13932] batman_adv: batadv0: Removing interface: batadv_slave_0
[  416.379709][T13932] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  416.426613][T13937] ptrace attach of "./syz-executor exec"[13749] was attempted by "./syz-executor exec"[13937]
[  416.480069][T13932] batman_adv: batadv0: Removing interface: batadv_slave_1
[  416.587927][T13941] FAULT_INJECTION: forcing a failure.
[  416.587927][T13941] name failslab, interval 1, probability 0, space 0, times 0
[  416.630033][T13941] CPU: 0 UID: 0 PID: 13941 Comm: syz.0.2537 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  416.640886][T13941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  416.651047][T13941] Call Trace:
[  416.654367][T13941]  <TASK>
[  416.657337][T13941]  dump_stack_lvl+0x16c/0x1f0
[  416.662075][T13941]  should_fail_ex+0x497/0x5b0
[  416.666809][T13941]  ? fs_reclaim_acquire+0xae/0x150
[  416.671970][T13941]  should_failslab+0xc2/0x120
[  416.676703][T13941]  __kmalloc_node_noprof+0xd1/0x520
[  416.681954][T13941]  ? get_pid_task+0xfc/0x250
[  416.686589][T13941]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  416.692086][T13941]  __kvmalloc_node_noprof+0xad/0x1a0
[  416.697407][T13941]  do_semtimedop+0x219/0x310
[  416.702039][T13941]  ? __pfx_do_semtimedop+0x10/0x10
[  416.707197][T13941]  ? ksys_write+0x12b/0x250
[  416.711757][T13941]  ? __fget_files+0x206/0x3a0
[  416.716476][T13941]  __x64_sys_semtimedop+0x1b8/0x1f0
[  416.721731][T13941]  ? __pfx___x64_sys_semtimedop+0x10/0x10
[  416.727496][T13941]  ? rcu_is_watching+0x12/0xc0
[  416.732296][T13941]  ? rcu_is_watching+0x12/0xc0
[  416.737089][T13941]  do_syscall_64+0xcd/0x250
[  416.741648][T13941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  416.747609][T13941] RIP: 0033:0x7f593b785d19
[  416.752054][T13941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  416.771689][T13941] RSP: 002b:00007f593c617038 EFLAGS: 00000246 ORIG_RAX: 00000000000000dc
[  416.780128][T13941] RAX: ffffffffffffffda RBX: 00007f593b975fa0 RCX: 00007f593b785d19
[  416.788119][T13941] RDX: 00000000000000ff RSI: 0000000020000040 RDI: 0000000000008001
[  416.796101][T13941] RBP: 00007f593c617090 R08: 0000000000000000 R09: 0000000000000000
[  416.804082][T13941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  416.812072][T13941] R13: 0000000000000000 R14: 00007f593b975fa0 R15: 00007ffe87e2e898
[  416.820073][T13941]  </TASK>
[  416.850023][ T5834] Bluetooth: hci3: command tx timeout
[  417.313660][T13953] FAULT_INJECTION: forcing a failure.
[  417.313660][T13953] name failslab, interval 1, probability 0, space 0, times 0
[  417.341089][T13953] CPU: 1 UID: 0 PID: 13953 Comm: syz.0.2541 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  417.351950][T13953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  417.362153][T13953] Call Trace:
[  417.365463][T13953]  <TASK>
[  417.368435][T13953]  dump_stack_lvl+0x16c/0x1f0
[  417.373170][T13953]  should_fail_ex+0x497/0x5b0
[  417.377908][T13953]  ? fs_reclaim_acquire+0xae/0x150
[  417.383126][T13953]  should_failslab+0xc2/0x120
[  417.387896][T13953]  __kmalloc_noprof+0xce/0x4f0
[  417.392775][T13953]  ? d_absolute_path+0x137/0x1b0
[  417.397821][T13953]  ? tomoyo_encode2+0x100/0x3e0
[  417.402734][T13953]  tomoyo_encode2+0x100/0x3e0
[  417.407467][T13953]  tomoyo_realpath_from_path+0x1a7/0x710
[  417.413150][T13953]  tomoyo_path_number_perm+0x248/0x5b0
[  417.418673][T13953]  ? tomoyo_path_number_perm+0x235/0x5b0
[  417.424386][T13953]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  417.430454][T13953]  ? rcu_is_watching+0x12/0xc0
[  417.435458][T13953]  ? preempt_count_add+0x76/0x150
[  417.440578][T13953]  ? __pfx_lock_release+0x10/0x10
[  417.445661][T13953]  ? trace_lock_acquire+0x14e/0x1f0
[  417.450922][T13953]  ? __fget_files+0x40/0x3a0
[  417.455567][T13953]  ? lock_acquire+0x2f/0xb0
[  417.460099][T13953]  ? __fget_files+0x40/0x3a0
[  417.464717][T13953]  ? __fget_files+0x206/0x3a0
[  417.469422][T13953]  security_file_ioctl+0x9b/0x240
[  417.474465][T13953]  __x64_sys_ioctl+0xb7/0x200
[  417.479165][T13953]  do_syscall_64+0xcd/0x250
[  417.483700][T13953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.489632][T13953] RIP: 0033:0x7f593b785d19
[  417.494073][T13953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.513774][T13953] RSP: 002b:00007f593c617038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  417.522217][T13953] RAX: ffffffffffffffda RBX: 00007f593b975fa0 RCX: 00007f593b785d19
[  417.530211][T13953] RDX: 0000000000000000 RSI: 000000004004550a RDI: 0000000000000003
[  417.538285][T13953] RBP: 00007f593c617090 R08: 0000000000000000 R09: 0000000000000000
[  417.546274][T13953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  417.554265][T13953] R13: 0000000000000000 R14: 00007f593b975fa0 R15: 00007ffe87e2e898
[  417.562265][T13953]  </TASK>
[  417.616831][T13953] ERROR: Out of memory at tomoyo_realpath_from_path.
[  419.019877][T13966] FAULT_INJECTION: forcing a failure.
[  419.019877][T13966] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  419.065703][T13966] CPU: 0 UID: 0 PID: 13966 Comm: syz.0.2546 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  419.076551][T13966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  419.086650][T13966] Call Trace:
[  419.089970][T13966]  <TASK>
[  419.093478][T13966]  dump_stack_lvl+0x16c/0x1f0
[  419.098223][T13966]  should_fail_ex+0x497/0x5b0
[  419.102962][T13966]  _copy_to_user+0x32/0xd0
[  419.107438][T13966]  simple_read_from_buffer+0xd0/0x160
[  419.112875][T13966]  proc_fail_nth_read+0x198/0x270
[  419.118011][T13966]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  419.123657][T13966]  ? bpf_lsm_file_permission+0x9/0x10
[  419.129127][T13966]  ? security_file_permission+0x71/0x210
[  419.134813][T13966]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  419.140435][T13966]  vfs_read+0x1df/0xbe0
[  419.144638][T13966]  ? __fget_files+0x1fc/0x3a0
[  419.149416][T13966]  ? __pfx___mutex_lock+0x10/0x10
[  419.154496][T13966]  ? __pfx_vfs_read+0x10/0x10
[  419.159229][T13966]  ? __fget_files+0x206/0x3a0
[  419.163960][T13966]  ksys_read+0x12b/0x250
[  419.168269][T13966]  ? __pfx_ksys_read+0x10/0x10
[  419.173099][T13966]  ? rcu_is_watching+0x12/0xc0
[  419.177930][T13966]  ? rcu_is_watching+0x12/0xc0
[  419.182740][T13966]  do_syscall_64+0xcd/0x250
[  419.187293][T13966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  419.193749][T13966] RIP: 0033:0x7f593b78472c
[  419.198185][T13966] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  419.217824][T13966] RSP: 002b:00007f593c617030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  419.226280][T13966] RAX: ffffffffffffffda RBX: 00007f593b975fa0 RCX: 00007f593b78472c
[  419.234282][T13966] RDX: 000000000000000f RSI: 00007f593c6170a0 RDI: 0000000000000004
[  419.242303][T13966] RBP: 00007f593c617090 R08: 0000000000000000 R09: 0000000000000000
[  419.250296][T13966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  419.258284][T13966] R13: 0000000000000000 R14: 00007f593b975fa0 R15: 00007ffe87e2e898
[  419.266275][T13966]  </TASK>
[  419.656446][T13975] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2550'.
[  419.738019][T13975] ptrace attach of "./syz-executor exec"[13084] was attempted by "./syz-executor exec"[13975]
[  420.111034][T13986] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2554'.
[  420.321355][T13994] ptrace attach of "./syz-executor exec"[12891] was attempted by "./syz-executor exec"[13994]
[  420.963183][T14003] vivid-013: =================  START STATUS  =================
[  420.979904][T14003] vivid-013: Generate PTS: true
[  420.984951][T14003] vivid-013: Generate SCR: true
[  421.008797][T14003] tpg source WxH: 640x360 (Y'CbCr)
[  421.013964][T14003] tpg field: 1
[  421.019186][T14003] tpg crop: 640x360@0x0
[  421.023618][T14003] tpg compose: 640x360@0x0
[  421.028115][T14003] tpg colorspace: 8
[  421.048622][T14003] tpg transfer function: 0/0
[  421.053269][T14003] tpg Y'CbCr encoding: 0/0
[  421.056304][T14005] ptrace attach of "./syz-executor exec"[12891] was attempted by "./syz-executor exec"[14005]
[  421.057750][T14003] tpg quantization: 0/0
[  421.057768][T14003] tpg RGB range: 0/2
[  421.057785][T14003] vivid-013: ==================  END STATUS  ==================
[  422.641835][   T29] audit: type=1800 audit(4294967315.970:5): pid=14039 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2571" name="lu_gp_id" dev="configfs" ino=50324 res=0 errno=0
[  422.646526][T14040] ptrace attach of "./syz-executor exec"[13084] was attempted by "./syz-executor exec"[14040]
[  422.969115][T14049] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2574'.
[  423.112883][T14053] kafs: addr_prefs: Invalid Command
[  423.124168][T14057] FAULT_INJECTION: forcing a failure.
[  423.124168][T14057] name failslab, interval 1, probability 0, space 0, times 0
[  423.155660][T14057] CPU: 1 UID: 0 PID: 14057 Comm: syz.1.2576 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  423.166509][T14057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  423.176613][T14057] Call Trace:
[  423.179921][T14057]  <TASK>
[  423.182880][T14057]  dump_stack_lvl+0x16c/0x1f0
[  423.187611][T14057]  should_fail_ex+0x497/0x5b0
[  423.192338][T14057]  should_failslab+0xc2/0x120
[  423.197062][T14057]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  423.202472][T14057]  ? skb_clone+0x190/0x3f0
[  423.206938][T14057]  skb_clone+0x190/0x3f0
[  423.211246][T14057]  netlink_deliver_tap+0xafd/0xca0
[  423.216420][T14057]  netlink_unicast+0x5e1/0x7f0
[  423.221234][T14057]  ? __pfx_netlink_unicast+0x10/0x10
[  423.226821][T14057]  ? __phys_addr_symbol+0x30/0x80
[  423.231883][T14057]  ? __check_object_size+0x488/0x710
[  423.237219][T14057]  netlink_sendmsg+0x8b8/0xd70
[  423.242012][T14057]  ? __pfx_netlink_sendmsg+0x10/0x10
[  423.247335][T14057]  ____sys_sendmsg+0x9ae/0xb40
[  423.252127][T14057]  ? copy_msghdr_from_user+0x10b/0x160
[  423.257635][T14057]  ? __pfx_____sys_sendmsg+0x10/0x10
[  423.262949][T14057]  ? rcu_is_watching+0x12/0xc0
[  423.267751][T14057]  ? lock_release+0x4e2/0x6f0
[  423.272450][T14057]  ? get_pid_task+0xfc/0x250
[  423.277080][T14057]  ___sys_sendmsg+0x135/0x1e0
[  423.281798][T14057]  ? get_pid_task+0x35/0x250
[  423.286520][T14057]  ? __pfx____sys_sendmsg+0x10/0x10
[  423.291757][T14057]  ? lock_release+0x4e2/0x6f0
[  423.296458][T14057]  ? __pfx_lock_release+0x10/0x10
[  423.301497][T14057]  ? trace_lock_acquire+0x14e/0x1f0
[  423.306716][T14057]  ? __fget_files+0x206/0x3a0
[  423.311414][T14057]  __sys_sendmsg+0x16e/0x220
[  423.316032][T14057]  ? __pfx___sys_sendmsg+0x10/0x10
[  423.321178][T14057]  ? rcu_is_watching+0x12/0xc0
[  423.326000][T14057]  ? rcu_is_watching+0x12/0xc0
[  423.330814][T14057]  do_syscall_64+0xcd/0x250
[  423.335353][T14057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.341285][T14057] RIP: 0033:0x7f215fd85d19
[  423.345716][T14057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  423.365346][T14057] RSP: 002b:00007f2160b99038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  423.373911][T14057] RAX: ffffffffffffffda RBX: 00007f215ff75fa0 RCX: 00007f215fd85d19
[  423.382048][T14057] RDX: 0000000020000000 RSI: 0000000020000140 RDI: 0000000000000003
[  423.390056][T14057] RBP: 00007f2160b99090 R08: 0000000000000000 R09: 0000000000000000
[  423.398083][T14057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  423.406076][T14057] R13: 0000000000000000 R14: 00007f215ff75fa0 R15: 00007fff8a2ed4f8
[  423.414073][T14057]  </TASK>
[  425.011683][T14086] QAT: failed to copy from user.
[  425.294427][T14098] delete_channel: no stack
[  426.177226][T14124] FAULT_INJECTION: forcing a failure.
[  426.177226][T14124] name failslab, interval 1, probability 0, space 0, times 0
[  426.203081][T14124] CPU: 1 UID: 0 PID: 14124 Comm: syz.1.2597 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  426.213896][T14124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  426.223985][T14124] Call Trace:
[  426.227282][T14124]  <TASK>
[  426.230230][T14124]  dump_stack_lvl+0x16c/0x1f0
[  426.234940][T14124]  should_fail_ex+0x497/0x5b0
[  426.239648][T14124]  ? fs_reclaim_acquire+0xae/0x150
[  426.244776][T14124]  should_failslab+0xc2/0x120
[  426.249475][T14124]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  426.254871][T14124]  ? number+0x8d9/0xb80
[  426.259046][T14124]  ? ptlock_alloc+0x1f/0x70
[  426.263571][T14124]  ? __pfx_filemap_map_pages+0x10/0x10
[  426.269055][T14124]  ptlock_alloc+0x1f/0x70
[  426.273405][T14124]  pte_alloc_one+0x74/0x390
[  426.277937][T14124]  __do_fault+0x320/0x490
[  426.282288][T14124]  ? __pfx_filemap_map_pages+0x10/0x10
[  426.287789][T14124]  do_pte_missing+0x1a8/0x3e00
[  426.293014][T14124]  __handle_mm_fault+0x103c/0x2a40
[  426.298145][T14124]  ? __pfx___handle_mm_fault+0x10/0x10
[  426.303633][T14124]  ? find_vma+0xc0/0x140
[  426.307898][T14124]  ? __pfx_find_vma+0x10/0x10
[  426.312586][T14124]  ? dev_seq_printf_stats+0x44e/0x7b0
[  426.317982][T14124]  handle_mm_fault+0x3fa/0xaa0
[  426.322772][T14124]  do_user_addr_fault+0x7a3/0x13f0
[  426.327895][T14124]  exc_page_fault+0x5c/0xc0
[  426.332407][T14124]  asm_exc_page_fault+0x26/0x30
[  426.337270][T14124] RIP: 0010:rep_movs_alternative+0x33/0x70
[  426.343099][T14124] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
[  426.362716][T14124] RSP: 0018:ffffc900040b79c0 EFLAGS: 00050202
[  426.368792][T14124] RAX: 2032202020203020 RBX: 0000000000000000 RCX: 000000000000002b
[  426.376771][T14124] RDX: ffffed100c96a010 RSI: ffff888064b50052 RDI: 0000000000000000
[  426.384748][T14124] RBP: ffffc900040b7bd0 R08: 0000000000000000 R09: ffffed100c96a00f
[  426.393073][T14124] R10: ffff888064b5007c R11: 0000000000000000 R12: 000000000000002b
[  426.401050][T14124] R13: ffff888064b50052 R14: 0000000000000000 R15: 000000000000002b
[  426.409031][T14124]  _copy_to_iter+0x52f/0x1400
[  426.413734][T14124]  ? __pfx__copy_to_iter+0x10/0x10
[  426.418878][T14124]  ? __virt_addr_valid+0x1a4/0x590
[  426.424013][T14124]  ? __virt_addr_valid+0x5e/0x590
[  426.429062][T14124]  ? __phys_addr_symbol+0x30/0x80
[  426.434105][T14124]  ? __check_object_size+0x488/0x710
[  426.439421][T14124]  seq_read_iter+0x725/0x12b0
[  426.444305][T14124]  ? __pfx_kstrtouint+0x10/0x10
[  426.449196][T14124]  seq_read+0x39f/0x4e0
[  426.453366][T14124]  ? lock_release+0x4e2/0x6f0
[  426.458249][T14124]  ? __pfx_seq_read+0x10/0x10
[  426.462965][T14124]  ? trace_lock_acquire+0x14e/0x1f0
[  426.468215][T14124]  ? lock_acquire+0x2f/0xb0
[  426.472748][T14124]  ? apparmor_file_permission+0x251/0x400
[  426.478516][T14124]  ? __pfx_seq_read+0x10/0x10
[  426.483220][T14124]  proc_reg_read+0x23d/0x330
[  426.487838][T14124]  ? __pfx_proc_reg_read+0x10/0x10
[  426.493268][T14124]  vfs_read+0x1df/0xbe0
[  426.497449][T14124]  ? __fget_files+0x1fc/0x3a0
[  426.502157][T14124]  ? __pfx_lock_release+0x10/0x10
[  426.507212][T14124]  ? __pfx_vfs_read+0x10/0x10
[  426.512114][T14124]  ? __fget_files+0x40/0x3a0
[  426.516744][T14124]  ? lock_acquire+0x2f/0xb0
[  426.521283][T14124]  ? __fget_files+0x40/0x3a0
[  426.525926][T14124]  ? __fget_files+0x206/0x3a0
[  426.530637][T14124]  __x64_sys_pread64+0x1f6/0x250
[  426.535603][T14124]  ? __pfx___x64_sys_pread64+0x10/0x10
[  426.541089][T14124]  ? rcu_is_watching+0x12/0xc0
[  426.545883][T14124]  ? rcu_is_watching+0x12/0xc0
[  426.550677][T14124]  do_syscall_64+0xcd/0x250
[  426.555205][T14124]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.561120][T14124] RIP: 0033:0x7f215fd85d19
[  426.565562][T14124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.585191][T14124] RSP: 002b:00007f2160b99038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  426.593629][T14124] RAX: ffffffffffffffda RBX: 00007f215ff75fa0 RCX: 00007f215fd85d19
[  426.601617][T14124] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000003
[  426.609607][T14124] RBP: 00007f2160b99090 R08: 0000000000000000 R09: 0000000000000000
[  426.617604][T14124] R10: 00000000000003ff R11: 0000000000000246 R12: 0000000000000001
[  426.625605][T14124] R13: 0000000000000000 R14: 00007f215ff75fa0 R15: 00007fff8a2ed4f8
[  426.633613][T14124]  </TASK>
[  426.922038][T14130] FAULT_INJECTION: forcing a failure.
[  426.922038][T14130] name failslab, interval 1, probability 0, space 0, times 0
[  426.935485][T14130] CPU: 1 UID: 0 PID: 14130 Comm: syz.1.2600 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  426.946319][T14130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  426.956401][T14130] Call Trace:
[  426.959696][T14130]  <TASK>
[  426.962680][T14130]  dump_stack_lvl+0x16c/0x1f0
[  426.967414][T14130]  should_fail_ex+0x497/0x5b0
[  426.972167][T14130]  ? fs_reclaim_acquire+0xae/0x150
[  426.977331][T14130]  should_failslab+0xc2/0x120
[  426.982074][T14130]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[  426.987935][T14130]  ? shmem_alloc_inode+0x25/0x50
[  426.992925][T14130]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  426.998439][T14130]  shmem_alloc_inode+0x25/0x50
[  427.003275][T14130]  alloc_inode+0x5d/0x230
[  427.007639][T14130]  new_inode+0x22/0x210
[  427.011832][T14130]  shmem_get_inode+0x194/0xf00
[  427.016638][T14130]  ? __vm_enough_memory+0x184/0x3f0
[  427.021964][T14130]  __shmem_file_setup+0x16f/0x300
[  427.027034][T14130]  shmem_zero_setup+0x93/0x1b0
[  427.031829][T14130]  __mmap_region+0x1f5c/0x2670
[  427.036634][T14130]  ? kernel_text_address+0x8d/0x100
[  427.041959][T14130]  ? __kernel_text_address+0xd/0x40
[  427.047700][T14130]  ? __pfx___mmap_region+0x10/0x10
[  427.052842][T14130]  ? arch_stack_walk+0xa7/0x100
[  427.057710][T14130]  ? __pfx__kstrtoull+0x10/0x10
[  427.062571][T14130]  ? lock_release+0x4e2/0x6f0
[  427.067284][T14130]  ? mm_get_unmapped_area+0x95/0xe0
[  427.072512][T14130]  ? shmem_get_unmapped_area+0x183/0xa20
[  427.078184][T14130]  ? cap_mmap_addr+0x53/0x320
[  427.082899][T14130]  mmap_region+0x127/0x320
[  427.087344][T14130]  do_mmap+0xc00/0xfc0
[  427.091443][T14130]  vm_mmap_pgoff+0x1ba/0x360
[  427.096079][T14130]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  427.101223][T14130]  ? __fget_files+0x206/0x3a0
[  427.105926][T14130]  ksys_mmap_pgoff+0x7d/0x5c0
[  427.110626][T14130]  ? __pfx_ksys_write+0x10/0x10
[  427.115497][T14130]  __x64_sys_mmap+0x125/0x190
[  427.120181][T14130]  do_syscall_64+0xcd/0x250
[  427.124703][T14130]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.130635][T14130] RIP: 0033:0x7f215fd85d19
[  427.135083][T14130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  427.154716][T14130] RSP: 002b:00007f2160b99038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  427.163155][T14130] RAX: ffffffffffffffda RBX: 00007f215ff75fa0 RCX: 00007f215fd85d19
[  427.171146][T14130] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  427.179136][T14130] RBP: 00007f2160b99090 R08: fffffffffffffffa R09: 0000000000008000
[  427.187131][T14130] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001
[  427.195120][T14130] R13: 0000000000000000 R14: 00007f215ff75fa0 R15: 00007fff8a2ed4f8
[  427.203114][T14130]  </TASK>
[  427.315328][T14135] FAULT_INJECTION: forcing a failure.
[  427.315328][T14135] name failslab, interval 1, probability 0, space 0, times 0
[  427.371683][T14135] CPU: 1 UID: 0 PID: 14135 Comm: syz.0.2603 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  427.382519][T14135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  427.392610][T14135] Call Trace:
[  427.395922][T14135]  <TASK>
[  427.398905][T14135]  dump_stack_lvl+0x16c/0x1f0
[  427.403667][T14135]  should_fail_ex+0x497/0x5b0
[  427.408402][T14135]  ? fs_reclaim_acquire+0xae/0x150
[  427.413575][T14135]  should_failslab+0xc2/0x120
[  427.418309][T14135]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  427.423733][T14135]  ? rcu_is_watching+0x12/0xc0
[  427.428543][T14135]  ? alloc_empty_file+0x73/0x1e0
[  427.433553][T14135]  alloc_empty_file+0x73/0x1e0
[  427.438369][T14135]  path_openat+0xe1/0x2d60
[  427.442823][T14135]  ? __x64_sys_openat+0x175/0x210
[  427.448013][T14135]  ? do_syscall_64+0xcd/0x250
[  427.452818][T14135]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.458970][T14135]  ? __pfx_path_openat+0x10/0x10
[  427.463970][T14135]  do_filp_open+0x20c/0x470
[  427.468544][T14135]  ? __pfx_do_filp_open+0x10/0x10
[  427.473627][T14135]  ? alloc_fd+0x41f/0x760
[  427.478007][T14135]  do_sys_openat2+0x17a/0x1e0
[  427.482747][T14135]  ? __pfx_do_sys_openat2+0x10/0x10
[  427.488010][T14135]  ? __fget_files+0x206/0x3a0
[  427.492723][T14135]  __x64_sys_openat+0x175/0x210
[  427.497615][T14135]  ? __pfx___x64_sys_openat+0x10/0x10
[  427.503024][T14135]  ? ksys_write+0x1ba/0x250
[  427.507562][T14135]  ? rcu_is_watching+0x12/0xc0
[  427.512384][T14135]  ? rcu_is_watching+0x12/0xc0
[  427.517206][T14135]  do_syscall_64+0xcd/0x250
[  427.521783][T14135]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.527737][T14135] RIP: 0033:0x7f593b785d19
[  427.532211][T14135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  427.551876][T14135] RSP: 002b:00007f593c617038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  427.560329][T14135] RAX: ffffffffffffffda RBX: 00007f593b975fa0 RCX: 00007f593b785d19
[  427.568339][T14135] RDX: 0000000000004001 RSI: 0000000020000040 RDI: ffffffffffffff9c
[  427.576363][T14135] RBP: 00007f593c617090 R08: 0000000000000000 R09: 0000000000000000
[  427.584560][T14135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  427.592582][T14135] R13: 0000000000000001 R14: 00007f593b975fa0 R15: 00007ffe87e2e898
[  427.600690][T14135]  </TASK>
[  429.789288][T14200] FAULT_INJECTION: forcing a failure.
[  429.789288][T14200] name failslab, interval 1, probability 0, space 0, times 0
[  429.828606][T14200] CPU: 1 UID: 0 PID: 14200 Comm: syz.1.2627 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  429.839531][T14200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  429.849661][T14200] Call Trace:
[  429.852982][T14200]  <TASK>
[  429.855946][T14200]  dump_stack_lvl+0x16c/0x1f0
[  429.860679][T14200]  should_fail_ex+0x497/0x5b0
[  429.865412][T14200]  ? fs_reclaim_acquire+0xae/0x150
[  429.870577][T14200]  should_failslab+0xc2/0x120
[  429.875315][T14200]  __kmalloc_noprof+0xce/0x4f0
[  429.880131][T14200]  ? d_absolute_path+0x137/0x1b0
[  429.885107][T14200]  ? tomoyo_encode2+0x100/0x3e0
[  429.889999][T14200]  tomoyo_encode2+0x100/0x3e0
[  429.894740][T14200]  tomoyo_realpath_from_path+0x1a7/0x710
[  429.900446][T14200]  tomoyo_path_number_perm+0x248/0x5b0
[  429.905979][T14200]  ? tomoyo_path_number_perm+0x235/0x5b0
[  429.911690][T14200]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  429.917754][T14200]  ? rcu_is_watching+0x12/0xc0
[  429.922579][T14200]  ? preempt_count_add+0x76/0x150
[  429.927648][T14200]  ? __pfx_lock_release+0x10/0x10
[  429.932692][T14200]  ? trace_lock_acquire+0x14e/0x1f0
[  429.937922][T14200]  ? __fget_files+0x40/0x3a0
[  429.942533][T14200]  ? lock_acquire+0x2f/0xb0
[  429.947067][T14200]  ? __fget_files+0x40/0x3a0
[  429.951697][T14200]  ? __fget_files+0x206/0x3a0
[  429.956406][T14200]  security_file_ioctl+0x9b/0x240
[  429.961488][T14200]  __x64_sys_ioctl+0xb7/0x200
[  429.966217][T14200]  do_syscall_64+0xcd/0x250
[  429.970754][T14200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.976676][T14200] RIP: 0033:0x7f215fd85d19
[  429.981105][T14200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  430.000735][T14200] RSP: 002b:00007f2160b99038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  430.009178][T14200] RAX: ffffffffffffffda RBX: 00007f215ff75fa0 RCX: 00007f215fd85d19
[  430.017168][T14200] RDX: 0000000000000008 RSI: 000000000000542e RDI: 0000000000000003
[  430.025162][T14200] RBP: 00007f2160b99090 R08: 0000000000000000 R09: 0000000000000000
[  430.033154][T14200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  430.041142][T14200] R13: 0000000000000000 R14: 00007f215ff75fa0 R15: 00007fff8a2ed4f8
[  430.049235][T14200]  </TASK>
[  430.056388][T14200] ERROR: Out of memory at tomoyo_realpath_from_path.
[  430.218282][T14210] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2629'.
[  432.322790][T14266] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2646'.
[  432.641048][T14274] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2647'.
[  435.363122][T14308] ecryptfs_parse_packet_length: Error parsing packet length
[  435.384884][T14308] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[  435.411857][   T29] audit: type=1800 audit(4295163936.741:6): pid=14308 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2659" name="dbroot" dev="configfs" ino=51043 res=0 errno=0
[  436.230057][T14333] ==================================================================
[  436.238366][T14333] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x123b/0x14e0
[  436.247120][T14333] Read of size 1 at addr ffff88802fed2067 by task syz.3.2670/14333
[  436.255054][T14333] 
[  436.257393][T14333] CPU: 1 UID: 0 PID: 14333 Comm: syz.3.2670 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  436.268176][T14333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  436.278259][T14333] Call Trace:
[  436.281726][T14333]  <TASK>
[  436.284672][T14333]  dump_stack_lvl+0x116/0x1f0
[  436.289388][T14333]  print_report+0xc3/0x620
[  436.293840][T14333]  ? __virt_addr_valid+0x5e/0x590
[  436.298900][T14333]  ? __phys_addr+0xc6/0x150
[  436.303435][T14333]  kasan_report+0xd9/0x110
[  436.307888][T14333]  ? afs_proc_addr_prefs_write+0x123b/0x14e0
[  436.313896][T14333]  ? afs_proc_addr_prefs_write+0x123b/0x14e0
[  436.319904][T14333]  afs_proc_addr_prefs_write+0x123b/0x14e0
[  436.325736][T14333]  ? rcu_is_watching+0x12/0xc0
[  436.330538][T14333]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  436.336731][T14333]  ? __might_fault+0x13b/0x190
[  436.341543][T14333]  ? __pfx_lock_release+0x10/0x10
[  436.346592][T14333]  ? trace_lock_acquire+0x14e/0x1f0
[  436.351831][T14333]  ? __might_fault+0xe3/0x190
[  436.356549][T14333]  ? lock_acquire+0x2f/0xb0
[  436.361085][T14333]  ? proc_simple_write+0x114/0x1b0
[  436.366244][T14333]  proc_simple_write+0x114/0x1b0
[  436.371274][T14333]  ? __pfx_proc_simple_write+0x10/0x10
[  436.376789][T14333]  proc_reg_write+0x23d/0x330
[  436.381692][T14333]  ? __pfx_proc_reg_write+0x10/0x10
[  436.386925][T14333]  vfs_write+0x24c/0x1150
[  436.391287][T14333]  ? __pfx_vfs_write+0x10/0x10
[  436.396076][T14333]  ? do_futex+0x123/0x350
[  436.400449][T14333]  ? __pfx_do_futex+0x10/0x10
[  436.405165][T14333]  ? __x64_sys_futex+0x1e1/0x4c0
[  436.410142][T14333]  ? __x64_sys_futex+0x1ea/0x4c0
[  436.415115][T14333]  ksys_write+0x12b/0x250
[  436.419465][T14333]  ? __pfx_ksys_write+0x10/0x10
[  436.424360][T14333]  ? rcu_is_watching+0x12/0xc0
[  436.429161][T14333]  ? rcu_is_watching+0x12/0xc0
[  436.433958][T14333]  do_syscall_64+0xcd/0x250
[  436.438495][T14333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  436.444429][T14333] RIP: 0033:0x7ff149f85d19
[  436.448870][T14333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  436.468632][T14333] RSP: 002b:00007ff14adf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  436.477136][T14333] RAX: ffffffffffffffda RBX: 00007ff14a175fa0 RCX: 00007ff149f85d19
[  436.485148][T14333] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000005
[  436.493328][T14333] RBP: 00007ff14a001a20 R08: 0000000000000000 R09: 0000000000000000
[  436.501320][T14333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  436.509309][T14333] R13: 0000000000000000 R14: 00007ff14a175fa0 R15: 00007ffc3502f428
[  436.517350][T14333]  </TASK>
[  436.520393][T14333] 
[  436.522756][T14333] Allocated by task 14333:
[  436.527199][T14333]  kasan_save_stack+0x33/0x60
[  436.531925][T14333]  kasan_save_track+0x14/0x30
[  436.536684][T14333]  __kasan_kmalloc+0xaa/0xb0
[  436.541302][T14333]  __kmalloc_node_track_caller_noprof+0x21d/0x520
[  436.547749][T14333]  memdup_user_nul+0x2b/0x110
[  436.552456][T14333]  proc_simple_write+0xc7/0x1b0
[  436.557339][T14333]  proc_reg_write+0x23d/0x330
[  436.562036][T14333]  vfs_write+0x24c/0x1150
[  436.566376][T14333]  ksys_write+0x12b/0x250
[  436.570727][T14333]  do_syscall_64+0xcd/0x250
[  436.575349][T14333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  436.581279][T14333] 
[  436.583619][T14333] The buggy address belongs to the object at ffff88802fed2060
[  436.583619][T14333]  which belongs to the cache kmalloc-8 of size 8
[  436.597341][T14333] The buggy address is located 0 bytes to the right of
[  436.597341][T14333]  allocated 7-byte region [ffff88802fed2060, ffff88802fed2067)
[  436.611676][T14333] 
[  436.614011][T14333] The buggy address belongs to the physical page:
[  436.620437][T14333] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2fed2
[  436.629217][T14333] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  436.636342][T14333] page_type: f5(slab)
[  436.640358][T14333] raw: 00fff00000000000 ffff88801ac41500 ffffea0000a49fc0 dead000000000002
[  436.649053][T14333] raw: 0000000000000000 0000000080800080 00000001f5000000 0000000000000000
[  436.657647][T14333] page dumped because: kasan: bad access detected
[  436.664071][T14333] page_owner tracks the page as allocated
[  436.669808][T14333] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5825, tgid 5825 (syz-executor), ts 81589812799, free_ts 81589757754
[  436.689164][T14333]  post_alloc_hook+0x2d1/0x350
[  436.693984][T14333]  get_page_from_freelist+0xfce/0x2f80
[  436.699502][T14333]  __alloc_pages_noprof+0x223/0x25b0
[  436.704840][T14333]  alloc_pages_mpol_noprof+0x2c9/0x610
[  436.710784][T14333]  new_slab+0x2c9/0x410
[  436.714977][T14333]  ___slab_alloc+0xce2/0x1650
[  436.719690][T14333]  __slab_alloc.constprop.0+0x56/0xb0
[  436.725104][T14333]  __kmalloc_node_noprof+0x2f0/0x520
[  436.730421][T14333]  __vmalloc_node_range_noprof+0x3d8/0x1530
[  436.736355][T14333]  vzalloc_noprof+0x6b/0x90
[  436.740888][T14333]  do_ipt_get_ctl+0x6b8/0xaa0
[  436.745617][T14333]  nf_getsockopt+0x79/0xe0
[  436.750113][T14333]  ip_getsockopt+0x18e/0x1e0
[  436.754739][T14333]  tcp_getsockopt+0x9e/0x100
[  436.759360][T14333]  do_sock_getsockopt+0x3fe/0x870
[  436.764409][T14333]  __sys_getsockopt+0x12f/0x260
[  436.769290][T14333] page last free pid 5825 tgid 5825 stack trace:
[  436.775625][T14333]  free_unref_page+0x661/0x1080
[  436.780505][T14333]  vfree+0x17a/0x890
[  436.784418][T14333]  do_ipt_get_ctl+0x8b0/0xaa0
[  436.789123][T14333]  nf_getsockopt+0x79/0xe0
[  436.793566][T14333]  ip_getsockopt+0x18e/0x1e0
[  436.798168][T14333]  tcp_getsockopt+0x9e/0x100
[  436.802775][T14333]  do_sock_getsockopt+0x3fe/0x870
[  436.807857][T14333]  __sys_getsockopt+0x12f/0x260
[  436.812797][T14333]  __x64_sys_getsockopt+0xbd/0x160
[  436.817945][T14333]  do_syscall_64+0xcd/0x250
[  436.822479][T14333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  436.828401][T14333] 
[  436.830736][T14333] Memory state around the buggy address:
[  436.836376][T14333]  ffff88802fed1f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.844449][T14333]  ffff88802fed1f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.852535][T14333] >ffff88802fed2000: fa fc fc fc fa fc fc fc fa fc fc fc 07 fc fc fc
[  436.860631][T14333]                                                        ^
[  436.867838][T14333]  ffff88802fed2080: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[  436.875917][T14333]  ffff88802fed2100: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[  436.883998][T14333] ==================================================================
[  436.976918][T14333] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  436.984229][T14333] CPU: 0 UID: 0 PID: 14333 Comm: syz.3.2670 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0
[  436.995149][T14333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  437.005235][T14333] Call Trace:
[  437.008531][T14333]  <TASK>
[  437.011483][T14333]  dump_stack_lvl+0x3d/0x1f0
[  437.016116][T14333]  panic+0x71d/0x800
[  437.020061][T14333]  ? __pfx_panic+0x10/0x10
[  437.024548][T14333]  ? trace_irq_enable.constprop.0+0xea/0x140
[  437.030694][T14333]  ? preempt_schedule_thunk+0x1a/0x30
[  437.036215][T14333]  ? preempt_schedule_common+0x44/0xc0
[  437.041770][T14333]  check_panic_on_warn+0xab/0xb0
[  437.046791][T14333]  end_report+0x117/0x180
[  437.051197][T14333]  kasan_report+0xe9/0x110
[  437.055676][T14333]  ? afs_proc_addr_prefs_write+0x123b/0x14e0
[  437.061711][T14333]  ? afs_proc_addr_prefs_write+0x123b/0x14e0
[  437.067742][T14333]  afs_proc_addr_prefs_write+0x123b/0x14e0
[  437.073601][T14333]  ? rcu_is_watching+0x12/0xc0
[  437.078422][T14333]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  437.084623][T14333]  ? __might_fault+0x13b/0x190
[  437.089469][T14333]  ? __pfx_lock_release+0x10/0x10
[  437.094543][T14333]  ? trace_lock_acquire+0x14e/0x1f0
[  437.099834][T14333]  ? __might_fault+0xe3/0x190
[  437.104602][T14333]  ? lock_acquire+0x2f/0xb0
[  437.109186][T14333]  ? proc_simple_write+0x114/0x1b0
[  437.114362][T14333]  proc_simple_write+0x114/0x1b0
[  437.119364][T14333]  ? __pfx_proc_simple_write+0x10/0x10
[  437.124887][T14333]  proc_reg_write+0x23d/0x330
[  437.129614][T14333]  ? __pfx_proc_reg_write+0x10/0x10
[  437.134862][T14333]  vfs_write+0x24c/0x1150
[  437.139232][T14333]  ? __pfx_vfs_write+0x10/0x10
[  437.144041][T14333]  ? do_futex+0x123/0x350
[  437.148451][T14333]  ? __pfx_do_futex+0x10/0x10
[  437.153214][T14333]  ? __x64_sys_futex+0x1e1/0x4c0
[  437.158260][T14333]  ? __x64_sys_futex+0x1ea/0x4c0
[  437.163270][T14333]  ksys_write+0x12b/0x250
[  437.167669][T14333]  ? __pfx_ksys_write+0x10/0x10
[  437.172583][T14333]  ? rcu_is_watching+0x12/0xc0
[  437.177412][T14333]  ? rcu_is_watching+0x12/0xc0
[  437.182239][T14333]  do_syscall_64+0xcd/0x250
[  437.186846][T14333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.192829][T14333] RIP: 0033:0x7ff149f85d19
[  437.197297][T14333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  437.216971][T14333] RSP: 002b:00007ff14adf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  437.225444][T14333] RAX: ffffffffffffffda RBX: 00007ff14a175fa0 RCX: 00007ff149f85d19
[  437.233460][T14333] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000005
[  437.241499][T14333] RBP: 00007ff14a001a20 R08: 0000000000000000 R09: 0000000000000000
[  437.249521][T14333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  437.257572][T14333] R13: 0000000000000000 R14: 00007ff14a175fa0 R15: 00007ffc3502f428
[  437.265868][T14333]  </TASK>
[  437.269202][T14333] Kernel Offset: disabled
[  437.273536][T14333] Rebooting in 86400 seconds..