last executing test programs:

2m59.755498256s ago: executing program 2 (id=14):
r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
setreuid$auto(0x40000000003, 0xdf36)
shmget$auto(0x7, 0x9, 0x6)
ioctl$auto_RTC_SET_TIME(r0, 0x4024700a, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x4, 0x7)
userfaultfd$auto(0x2)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
socket(0x2, 0x3, 0xa)
socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r1 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bond0\x00', <r3=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1ff, r1, @relative_id=0x13, 0xe600}, 0xf)
socketpair$auto(0x1, 0x3, 0x8000000000000000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0)
ioctl$auto_TIOCVHANGUP2(r5, 0x5437, 0x0)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r4, 0x0, 0x3}, 0xc)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0xd5b, 0xc, 0x37, 0x948a, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000600, 0x40080000001, 0x7, 0x6d3c, 0x5, 0x9]}, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x932, 0x2, 0x8000)
setsockopt$auto(0x4, 0x0, 0x80, 0x0, 0x78)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
userfaultfd$auto(0x1)

2m59.334597102s ago: executing program 2 (id=16):
r0 = fcntl$auto_F_GETOWNER_UIDS(0xffffffffffffffff, 0x11, 0xffffffffffffffff)
bpf$auto(0x3, &(0x7f0000000000)=@test={<r1=>r0, 0x8, 0x10000, 0x5, 0x100000000, 0x8, 0x4, 0x5c88, 0x2, 0xe, 0xb, 0x40, 0x5, 0x8001, 0x6}, 0x9)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x6c8302, 0x0)
ioctl$auto_UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000100)={{0xf9, 0x8, 0xd63, 0x9}, "a4fe825f8f1169fc45479887e9c7a0e59ca89513cfbd514b18f459de5e2a615486d26840a51652dfe42c745a1dbbe20dd582704edf0f1957c92cf1d15bbfcaa72d3090a8c558e2003e5e51b0c6a05214", 0x7})
madvise$auto(0xff, 0x3, 0x9)
r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000001c0), r1)
sendmsg$auto_L2TP_CMD_TUNNEL_GET(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x30, r2, 0x4, 0x70bd2d, 0x25dfdbfb, {}, [@L2TP_ATTR_IFNAME={0x14, 0x8, 'geneve1\x00'}, @L2TP_ATTR_USING_IPSEC={0x5, 0x15, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0xc000}, 0x844)
r3 = semctl$auto_IPC_STAT(0x0, 0x7, 0x2, 0x6)
shmctl$auto_SHM_STAT(0x7, 0xd, &(0x7f0000000400)={{0x4, <r4=>0x0, 0xee00, 0x3, 0x0, 0xd077, 0xff81}, 0x4, 0x1, 0xf236, 0x81, @inferred=0xffffffffffffffff, @raw=0x3, 0x0, 0x0, &(0x7f00000002c0)="ce076eb0d20edd4997b870dca518", &(0x7f0000000300)="3c8cac261f111ee2ef6b1c65c0f96025f470ba76d9933d6d54656fa4a24c12c08b7b71ba4a327afb6a352de0c48e54b42759365a00ce1e43b36e209b2bd7d1540fd02851b38e593a6716b628dac49ea2cc5fe5a040e8ccc8c7fbabaa2c2d10d6260779d06b5145a3bfed7611bf904ebad0b389431d2bdeb5d4a63f42c0b0784817fb29e1d5835030aa4e1cb3315c8ad08999ba71941737f688764b814c00b7242274894d1f118e1d0614d64855359f7c60c61378155f05258c8743dbd0a68930579c6487215ab59b7568a78cc95672313680c8d4"})
rt_sigqueueinfo$auto(0x0, 0x2, &(0x7f0000000480)={@siginfo_0_0={0x2, 0x174a9352, 0x5814, @_sigchld={r3, <r5=>r4, 0x8, 0x2, 0x2}}})
read$auto_kmsg_fops_printk(r0, &(0x7f0000000500)=""/133, 0x85)
mmap$auto(0x8d16, 0x4, 0x1, 0x3bc, r0, 0x3)
madvise$auto(0x6, 0x2, 0x0)
r6 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/bus/usb/002/001\x00', 0x1, 0x0)
r7 = socket(0x1d, 0x5, 0x10001)
write$auto(r0, &(0x7f0000000600)='\xa7\x00', 0x7fff)
r8 = getsockopt$auto_SO_RCVBUF(r7, 0xffff, 0x8, &(0x7f0000000640)='\x00', &(0x7f0000000680)=0x8)
ioctl$auto(r6, 0x4, r8)
r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000700), r0)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x38, r9, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_SPLIT_WIPHY_DUMP={0x4}, @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9e49}, @NL80211_ATTR_FILS_KEK={0x13, 0xf2, "07b070dc09810731070e55a784a64a"}]}, 0x38}, 0x1, 0x0, 0x0, 0x20008000}, 0x800)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/platform/dummy_udc.3/udc/dummy_udc.3/function\x00', 0x24401, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000840), r10)
r12 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000008c0), r10)
sendmsg$auto_MACSEC_CMD_UPD_TXSA(r10, &(0x7f0000001f80)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001f40)={&(0x7f0000000900)={0x1638, r12, 0x300, 0x70bd29, 0x25dfdbfd, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x32c, 0x2, 0x0, 0x1, [@nested={0x205, 0x120, 0x0, 0x1, [@generic="bce3bee3a9ae4919e307d05d3882b6818c7bf356c45878ca2ea785379cef262c7ec3732b3395faf3cb65d896a4267a2332005f5dde8bd8323cebeb3acbb1320acbcd1e4e572b520e23dd9a2fa550a00ae70a60c8c77049a75c0b0cf4e79c09e706fb45cbae6ac6a58dd124564edbb5c37a213c1846f2e8bd96d7", @generic="7b161e68fe96ccf306f34b6b976a39fddf3417dd277897cbf26066ecf39b30b51ce8072581f86daf9d42d76f3bc6a7c8f739c36345eddd0177e6af6f94b244febf78f3e9036d029a96ff482ecef6460911861f54c1b17b2302ae8a2942c104e58a3107a4a6aebc117dc64ea00fed01c75ab18b13b8a4c02e4d067e999c25fd27a80656b815b0d549c7bc9e8a0fed88ef3e83e5b410a4f2", @generic="4783b1aa69ad2bad50931690b6561e2a0eb4422654be04dacfc0f5e927d7b283d6913c0dfb99694113ce8b9bf79d17ae187cc5e2172db22fa974480628f423fd995305a3629af562209307a1d77b034a3c053971a01945fc89a7c20d3f9ac964d86e524ef91de3b37abbc1489f17b49032dc72be4afbb97a1a75baab18f3d418fabf93c3e96eb6809bb8b878d721e2ffb0a22c50f51c72442e784aef2173a4b2cbe4cb60c08708202a552d6f2c956284ed60df71bcc605f180013fabf2a8e54a7290f343885a0e", @nested={0x4, 0x81}, @typed={0x14, 0x4b, 0x0, 0x0, @ipv6=@private2}, @generic="90dd874a69fa5dd21007f332c6d75e5e27"]}, @generic="d94e1e82cb2e98cd98dcaa320a88b35cb7c8f04847706819d5f85dd74e74b36d5e14d31779a2c1ec257fb9294964866c3b6045bd407c8f685152f49d49337dbabe93bbf92deb8c332bafd73e3de0a12362dce55176ef9b865e6630f3ce78e48a700e903f717b4d1bed41d594bc2f3e46e8f21f9706e57a1a", @typed={0x8, 0x83, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x42}}, @nested={0x98, 0x6a, 0x0, 0x1, [@nested={0x4, 0x82}, @nested={0x4, 0x88}, @generic="3a4a409d0821af9b3ccb9b4b9146b61f7d1f1bc59be90937dc24597f970b9ff89c30b609fb2d40678f253fb70970834de6bb3b1862c49b81bf94d00e6df7c20e711ad30b84533c5453f36ba1ef661208c337b9feada1d0d080e61cca4460f8bd451117ba69bee260a5a120f04949bcdf59bc34cb74609d532250ec1616d5e7762426ee83a06e266f84a28c5a"]}, @nested={0x8, 0xd9, 0x0, 0x1, [@nested={0x4, 0x4f}]}]}, @MACSEC_ATTR_SA_CONFIG={0x30, 0x3, 0x0, 0x1, [@nested={0x28, 0x10d, 0x0, 0x1, [@typed={0x14, 0x28, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x23}}, @typed={0x8, 0x42, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x4, 0x20, 0x0, 0x0, @binary}, @nested={0x4, 0x23}]}, @typed={0x4, 0xf5}]}, @MACSEC_ATTR_SA_CONFIG={0x1180, 0x3, 0x0, 0x1, [@typed={0x5, 0x4d, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x15, 0x0, 0x0, @ipv4=@local}, @typed={0x4, 0x12a}, @typed={0x14, 0x61, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x1d}}, @nested={0x1153, 0x4, 0x0, 0x1, [@generic="757d4899101cfb758cb19899706967d6c101e85b753609dd08b7a20bfdf219f0c13432f8a7a4cf102d7e83c8b1d93629feafc47629870429daf4e39af7fd875677e0a514", @typed={0x14, 0x54, 0x0, 0x0, @ipv6=@loopback}, @generic="56ef668463039daf4d1cb862309e6d76b0950dd08b0027381c4a147c584f020923db249b8cd2cfb5ef191fb1468b0dd11e97b6fbef3dbcf1bba8ac87409cdd3b3dc268075a880d851d50949bd36a17646cb99d933b64228058a357a2aed48ccadacdad20f0120a8a1a063bdf7bee0afd1dfb78d145242051fe7bde21d7993532a27cbb5c4d527ccec43a0de11387f6df2e1c2ef444554c6e4a0b361fabb74fcff5787029fbf0a9530b89a0e807681017ca319c1aa4b001da07c01ae1181010c9dadfc73b7995a777338379a044fa1a808067152ea60ebec19e383e5aa81501ec3b692bf1b6cb6896e58c4d", @typed={0x8, 0xa1, 0x0, 0x0, @fd=r1}, @generic="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", @nested={0x4, 0x34}]}]}, @MACSEC_ATTR_RXSC_CONFIG={0x148, 0x2, 0x0, 0x1, [@generic="d66e68e7bfd33f84ef6a70099d88a2f9", @generic="5b51a174b56e40ba8901ccb28f460fb2ba7e99103a2f71d66a0ee4ccf3971eae6a0863825156f8c6a068c63df9c6cf99271c3ce176d9a77446fe37acf70094f14d75a5c0a608fa0388f614484de1333308b92b56d17b6003bda3badbdceb07923958b8d6d7bb40b22214d2faf152c01a8c90509205f2867370ca9785bd833a6e064f5f290df851e60ee7bf0712ebf9a567bfa8521ce3b679791f57d0afb939b18300d946a6bab619e0de5e947ca87d5f695b916e74918e7e89055379965f4e7f3c278c17baf4c65f38ad9f48c850bb6b079084dbbc020197f77f61ddf819e90a96f125fd9e74a5cbbfca5527", @generic="4280be98dd2e7b2034463cc6ec03d00b311d69228c70020e8de551a0e292a97215728b5b7ae3cb45fbece0a3e8b926e4ee84f5a47a729e", @typed={0x8, 0x103, 0x0, 0x0, @uid=r5}, @generic="41d9d176f1a1d01616", @generic]}]}, 0x1638}, 0x1, 0x0, 0x0, 0x80}, 0x0)
madvise$auto(0x8, 0x1, 0xfffffffb)
sendmsg$auto_MAC802154_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000002240)={&(0x7f0000001fc0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000002200)={&(0x7f0000002000)={0x1c4, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@MAC802154_HWSIM_ATTR_RADIO_ID={0x8, 0x1, 0x3}, @MAC802154_HWSIM_ATTR_RADIO_ID={0x8, 0x1, 0x3}, @MAC802154_HWSIM_ATTR_RADIO_EDGES={0x1a0, 0x3, 0x0, 0x1, [@nested={0x19a, 0x6d, 0x0, 0x1, [@generic="d0ad0d9a38a02dd92b69354fa5fb48ca38c9f39e63df4f02dd30225f027efc0d7243762e67f9bff73a7b448ddafdda933ae5ff5bff18445eb71ddf10a7f1ee975724e081d275f6b16f5da50eae19c3f0b33548c8ae6cdf8ef4aa8d6b1aa6772a449d3a8ea344a2b7a29f5f1361d04b7d2e5e2034347f55d0feaee1f51a7e72373ab8f4d90f953bb258d58d314442808f2a730f2d900cf519eb941d9f2a539e60253401ff4ef303a1bd1b3b78813383b1b8f6ad5d48970dbf48e6ccecdbb14cbbc7508dff890a8e5d95398010bd7c85f85d8b7c874765192b1eff25020951c9c339aa32912191e09ccafd", @generic="85bc41979ab52cae6851a45091b320f6ccbcaebe1f6aa316016964da06868fe8fc3a0581556a90d5a6a77d3954772ea08c0a2f8940dcde9708470eab2f4d05167bf71c6442", @generic="197dc0d18021ff44f4ddb9f1cf61a7d95f819fef2691719e267bf3ead1ba3fd051b21e3d86189ad40d527190fcfe99831a737013cf66906cb29ef78c22955378addb94dda03dd3b92c8f16d255c4396c77ff1369dbdd5c154ec4affd27bbc4e541b3a4d4e5458f"]}]}]}, 0x1c4}, 0x1, 0x0, 0x0, 0x80}, 0xc000)
io_uring_enter$auto(r10, 0x3b, 0x7, 0x3, &(0x7f0000002280)="4ad19ecbf2ba537b8f2466d7135287ae1e550e74fd9c200fb03a9450e9be1868a94a35f1e973db43b5eb9d130d79e1e85ae6fb5dc49ecf654db51ee6739fcb48cecf41f7d8db0a565ac16e111c8ecee222198a0908de5d8c1fe5fc3364c56e6db06b143a2e3bb67aa8ed5af715cf04b458b6f5a5e9c848b3b1379c36363c99dee0023243244785ade9f5208c881a3ada104ba1f86cf3dffe2bdd8873d5be961cd88b3a839a6178d31c50a0352f680e69bf103b0250fd4d37a5150f222e18d093c0c9fbd2b1c452b0d5b73148eb844d03e51cd3dda88d3adcf322027af3f4a902c2db0678d5b4257f34732b02d292905d50841c", 0xba)
sendmsg$auto_HWSIM_CMD_FRAME(r1, &(0x7f0000002440)={&(0x7f0000002380)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000002400)={&(0x7f00000023c0)={0x24, r11, 0x420, 0x70bd25, 0x25dfdbfb, {}, [@HWSIM_ATTR_TX_INFO={0x6, 0x7, [{0xaf, 0x2d}]}, @HWSIM_ATTR_FREQ={0x8, 0x13, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x20040000)
ioctl$auto_MEMLOCK(0xffffffffffffffff, 0x40084d05, &(0x7f00000024c0)={0x3, 0x6})

2m58.903088417s ago: executing program 2 (id=18):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x60742, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x200, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
r0 = socket(0x2b, 0x1, 0x1)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r0, 0x0, 0x20000001)
r1 = socket(0x1d, 0x2, 0x7)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x3ff)
socket(0x2b, 0x1, 0x1)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x800)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, 0x0, 0x55)
mmap$auto(0x7fff, 0x4020009, 0x6, 0xeb1, r1, 0x7ffc)
ioctl$auto_TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0)
pwritev2$auto(0x40, 0x0, 0x7, 0x8000000000000001, 0x9, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r2, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="14b0c500", @ANYRES16=r3, @ANYBLOB="cf5728bd7000ffdbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8000)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, 0x0, 0x220480d0)
read$auto(r2, 0x0, 0x3)
unlink$auto(0x0)
remap_file_pages$auto(0x6a27, 0x2001000, 0x0, 0xdc, 0x100000)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x6a)

2m57.508821099s ago: executing program 2 (id=24):
r0 = socket(0x22, 0x1, 0x80000000)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x600, 0x0)
sendfile$auto(r0, 0x3, 0x0, 0x74c)
unshare$auto(0x40000080)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3b87, 0xa)
mmap$auto(0x100000001, 0x400008, 0x7f, 0x1c, r0, 0x80000000008001)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = socket(0xa, 0x2, 0x88)
setsockopt$auto(r1, 0x29, 0x10, 0x0, 0x1)
openat$dir(0xffffffffffffff9c, 0x0, 0x280000, 0x100)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000700), r2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000740)={'wlan1\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_SET_CHANNEL(r2, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010027bd7000fddbdf255100000008000300", @ANYRES32=r4], 0x1c}, 0x1, 0x0, 0x0, 0x4080}, 0x20000000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_NET_GET(r5, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x20000000)
r6 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0)
ioctl$auto(r6, 0xc0285629, r6)
io_uring_register$auto(r1, 0x3, &(0x7f0000000280)="f2474796bcd5be6a2bcec8aa654899ed35eed0241a3a0d541e102fd40317025c176c51305f5cb6a66ae009a9a97287fc5848c8eb4b67ac613ecf7627df43c3952a638bbdc8c875184e81c274b59bdfecdadb1c497e6d19b120c4aa9132d312b85105341dbe5c96862ab00b803d6e7f0a9df8243b6ef6879c67212122f1d4925ac68463305d4a3df527be657739cdf6f135c9ae35bde3522c9e2a81b561f6d4f8eb11b56de68ae63abaab4b2ac5a3c5", 0x6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_register$auto(0x2, 0x9, 0x0, 0x0)
ioctl$auto_BCH_IOCTL_QUERY_ACCOUNTING(r0, 0x4020bc15, &(0x7f0000000140)={0xe5f9, 0x7f, 0x0, 0x5, 0xc, [{@k={0x3, 0x8, 0x0, 0x4, 0x0, {0x80, 0x1}, 0x10, {0xc91, 0xa00, 0x31}}}]})
r7 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0xe4900, 0x0)
ioctl$auto(r7, 0x4, 0xffffffffffffffff)

2m55.199670476s ago: executing program 2 (id=35):
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x82042, 0x0) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000dbdbdf25020000000800030000000000050004"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x10, 0x70bd2c, 0x25dfdbfd, {0xa, 0x0, 0xa00}}, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090) (async)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)

2m54.274830467s ago: executing program 2 (id=39):
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000e40), 0x80d02, 0x0) (async)
sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(0xffffffffffffffff, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x28040}, 0x24004054) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3) (async)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) (async)
socket$nl_generic(0x10, 0x3, 0x10)
mbind$auto(0x5, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mlockall$auto(0x7)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) (async, rerun: 64)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x6, 0x4000000000df, 0x14, 0x401, 0x9) (async, rerun: 32)
move_pages$auto(0x0, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (rerun: 32)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0) (async)
ioctl$auto(0x3, 0x400454ca, 0x38) (async)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0xc1d, 0x9, 0x0) (async)
mmap$auto(0x0, 0x4000000000020009, 0x4000000000e1, 0x400ebf, r0, 0x7)
unshare$auto(0x40800080) (async)
mmap$auto(0x0, 0x400005, 0x2, 0x15, 0xffffffffffffffff, 0x62) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0xd0800, 0x0)
write$auto_fuse_dev_operations_fuse_i(r1, &(0x7f0000000440)="19000003d30000", 0x7) (async)
socket(0x2, 0x5, 0xfff) (async, rerun: 64)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async, rerun: 64)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='\x00'/12, 0xa3d9) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x80000000000000d, 0x1, 0x948d, 0x6, 0x15f4da0a, 0x1, 0x8, 0x1000000, 0xfffffffffffffffd, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0) (async)
writev$auto(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x7a100ac}, 0x6) (async)
unshare$auto(0x40000080)

2m38.572786412s ago: executing program 32 (id=39):
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000e40), 0x80d02, 0x0) (async)
sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(0xffffffffffffffff, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x28040}, 0x24004054) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3) (async)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) (async)
socket$nl_generic(0x10, 0x3, 0x10)
mbind$auto(0x5, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mlockall$auto(0x7)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) (async, rerun: 64)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x6, 0x4000000000df, 0x14, 0x401, 0x9) (async, rerun: 32)
move_pages$auto(0x0, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (rerun: 32)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0) (async)
ioctl$auto(0x3, 0x400454ca, 0x38) (async)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0xc1d, 0x9, 0x0) (async)
mmap$auto(0x0, 0x4000000000020009, 0x4000000000e1, 0x400ebf, r0, 0x7)
unshare$auto(0x40800080) (async)
mmap$auto(0x0, 0x400005, 0x2, 0x15, 0xffffffffffffffff, 0x62) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0xd0800, 0x0)
write$auto_fuse_dev_operations_fuse_i(r1, &(0x7f0000000440)="19000003d30000", 0x7) (async)
socket(0x2, 0x5, 0xfff) (async, rerun: 64)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async, rerun: 64)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='\x00'/12, 0xa3d9) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x80000000000000d, 0x1, 0x948d, 0x6, 0x15f4da0a, 0x1, 0x8, 0x1000000, 0xfffffffffffffffd, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0) (async)
writev$auto(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x7a100ac}, 0x6) (async)
unshare$auto(0x40000080)

12.38710207s ago: executing program 0 (id=625):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x22, 0x5, 0xb87)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
connect$auto(r0, &(0x7f0000000280)=@vsock={0x28, 0x0, 0xffffffff, @hyper}, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
socket(0x11, 0x3, 0xfffffff1)
adjtimex$auto(&(0x7f00000004c0)={0xf322b6e, 0x0, 0x0, 0xfffffffffffffffd, 0x9e50, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x2100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x84, 0xffffffffffff628e, 0x5, 0xdeb1, 0x800})
socket(0x2b, 0x1, 0x1)
mmap$auto(0xfffffffffffffffd, 0x20008, 0x1ff, 0x4eb0, 0x8000000000000024, 0x172)
r1 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
getdents64$auto(r1, 0x0, 0x400)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x1f, 0x2, 0x88)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'team0\x00', <r4=>0x0})
bpf$auto(0x100000, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x4, 0x1, r2, @relative_id=0x13, 0xe600}, 0xf)
r5 = open(0x0, 0x261c2, 0x84)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r5, 0x0, 0x3}, 0xc)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r6, &(0x7f0000000180)='@dev/\\uWaudio1\x00', 0xa3d9)
unshare$auto(0x40000080)
mmap$auto(0x8483, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r7 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop9\x00', 0x0, 0x0)
ioctl$auto_BLKSSZGET(r7, 0x1268, 0x0)
mmap$auto(0x9, 0x2, 0x4000000000db, 0x40eb1, 0x401, 0x0)

11.114005747s ago: executing program 0 (id=629):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x1, 0x801, 0x84)
socket(0x2, 0x3, 0x1)
setsockopt$auto(0x3, 0x0, 0x3, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'veth1_to_bridge\x00'})
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r4=>0x0})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r5 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x8400, 0x0)
pread64$auto(r5, 0x0, 0x7fffffff, 0x0)
sendmsg$auto_BATADV_CMD_SET_MESH(r1, &(0x7f0000000040)={0x0, 0xfffffffffffffefd, &(0x7f0000000080)={&(0x7f0000000000)={0x24, r2, 0x1, 0x4070bd27, 0x25dfdbf9, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}, @BATADV_ATTR_DAT_CACHE_IP4ADDRESS={0x8, 0x23, @multicast2}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x20044000)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mount$auto(0x0, &(0x7f0000000100), 0x0, 0x2000000000100000, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r8=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r7, &(0x7f0000000080)={0x0, 0xf000, &(0x7f0000000040)={&(0x7f0000000240)={0x24, r6, 0x13, 0x70bd26, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r8}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x20040894)
set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x200000007b, 0x4)
syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB="d5e364b8821e248a050027cd1635e444ad5019031c4f0be5f948afda29f59e8a78f2b92b90d9", @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
r9 = socket(0x10, 0x2, 0x0)
sendmsg$auto_IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0xa0, 0x0, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LBT_ENABLED={0x5}, @IEEE802154_ATTR_CHANNEL_PAGE_LIST={0x84, 0x1e, "54f05375a3b48a6434dcc132b4b40315ed8afe35a545da7a517bd6d413f86d097e5696b8bdda5fd7f907942cdfd8ed00cffa4b0c775088da61c4bad8426fe0e659112d383d1ce11f7e70c1fb7a3fdb1f18b22abe68d8e0b05c31d6a33dbb79493a3f30e1fb64b63988f2358cf93d728602b8291af30659e688f86f18d1f5fd56"}]}, 0xa0}, 0x1, 0x0, 0x0, 0x4000}, 0x4004000)
sendmsg$auto_NL80211_CMD_GET_REG(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4044044)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)

7.361484935s ago: executing program 1 (id=641):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYRES8=r0, @ANYRES32], 0x18}}, 0x80)
mmap$auto(0x400000000000, 0x2000b, 0x1, 0xeb2, 0x401, 0x8000)
listxattrat$auto(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x1000, 0x0, 0x9)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r3=>0x0})
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=<r4=>r3, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x4, 0x9}, 0x92)
ioctl$auto_UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000380)={0xffffffffffffffff, 0x5, 0x7, 0x2000000000000})
openat$auto_lowpan_control_fops_6lowpan(0xffffffffffffff9c, &(0x7f00000003c0), 0x800, 0x0)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000400)='/proc/thread-self/fail-nth\x00', 0x20040, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_1={r5, 0xfb27, @value=0x93, 0x122}, 0x800)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000)
close_range$auto(0x2, 0x8, 0x0)
r6 = socket(0x2, 0x80002, 0x73)
r7 = socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(r7, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r8 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x20000804)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
r9 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC0\x00', 0x101082, 0x0)
ioctl$auto(r9, 0xc0045543, 0xffffffffffffffff)
write$auto(0x3, 0x0, 0xfdef)
r10 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f00000000c0), r6)
sendmsg$auto_OVS_METER_CMD_SET(r7, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, r10, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@OVS_METER_ATTR_USED={0xc, 0x5, 0x100000000}, @OVS_METER_ATTR_KBPS={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x4005)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001740)=ANY=[@ANYRESHEX=r4, @ANYBLOB="12", @ANYRESHEX=r3, @ANYRES16=r8, @ANYBLOB="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"], 0x1ac}}, 0x40000)
read$auto(0x4, 0x0, 0xfdef)

5.938069217s ago: executing program 1 (id=643):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r1 = semctl$auto_GETNCNT(0x1, 0x9, 0xe, 0x0)
prctl$auto_PR_SYS_DISPATCH_ON(0xff, 0x1, r1, 0x200, 0xfffffffffffffffb)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001840), r2)
sendmsg$auto_NL802154_CMD_GET_SEC_DEVKEY(r2, &(0x7f00000019c0)={0x0, 0x0, &(0x7f0000001980)={&(0x7f0000001880)={0x14, r3, 0xf09, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r4 = getpid()
process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
r5 = semctl$auto_IPC_SET(0x6, 0xfffffffd, 0x1, 0x6)
ioctl$auto_BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={"f4013c197762e394dd0a011b200c75aad6ede623f21a567ffbd31c42b81d4e3a", 0x3ff, 0xfffffff4, 0x6, 0x9, 0x6, <r6=>0xffffffffffffffff})
r7 = geteuid()
setreuid$auto(r7, 0x0)
statx$auto(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x4, 0x2, &(0x7f0000000480)={0x5, 0xf, 0x7, 0x7, r7, 0xffffffffffffffff, 0x7, 0xa1c9, 0x8, 0x1ff, 0x2, 0x6, {0x9, 0x80}, {0x2, 0x1}, {0x9, 0xfffffc00}, {0x5, 0x2}, 0x11, 0xdfa, 0x7, 0x2, 0x4, 0x855a, 0x7f, 0xfffffffffffffff8, 0x4, 0x0, 0x87, 0x5, [0x8, 0x2d52, 0x8, 0x9, 0x0, 0x9, 0xfffffffffffffffc, 0x3, 0x3391]})
msgctl$auto_IPC_SET(0x9, 0x1, &(0x7f0000000180)={{0xf, <r8=>0xee01, 0xee00, 0x40ae, 0x7, 0x1, 0xfff}, &(0x7f0000000100)=0x8, &(0x7f0000000140)=0x40, 0x1, 0x8, 0xdb2, 0x0, 0x100000000, 0x67c0, 0x7, 0x6, @inferred=0xffffffffffffffff, @raw=0x9})
sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000200)={0x8a8, r3, 0x200, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_OUT_KEY_ID={0x27c, 0x2b, 0x0, 0x1, [@nested={0x233, 0x4e, 0x0, 0x1, [@generic="6bd53be18e86d7791336011df47b2eef5698bde3376bb48afbe7c780389d96cea8abdab46b8e42dd084b1af875c9e909dcdf71aa28dc89ce384cfacb06dd3d8775aa14b83c13121ae461a5da79f490ae4628971d97a99f65f8915d3485b246ecc8dc7514a32e9cba8154342ab513c1ecbaa487297817c5a7d57a0e3074639fbb8805cad58ac4e27c404fd14f70e143ca9346869952e64fc7ee1bfafe01613065c20d0e77df33926c8ce8a6bf816d3b924ce10e3472aee8be972c9893a5cb0877d60d7eebce91480570011c9e57c4c6ca40401b5261905ee07a636d6724c0bb96efc4130bd91a3138e351560354abce399634af34b9", @generic="595341027156a3eef8bfd5ac34f5ad4555ad45463b185aae9259d8aa6ae5aabcf644c8c7d5d69f934e06968867a719a1097096504c7f4d6675666e0973ecbe327e4bafb385f5c4863b5594302b79cc7939165000d3c20d249a05259508f37f36c00a0ad24dd8e3f16434818952ebec463967c07c9274c22291bfa22dccbe5ee6608c814e8fb45bdd0b46def99bee619a840acd20e51b3ddd08196a7702db9ee2504d5fd96218fb6046bb7f36a6c917d26b4afdb39cc39ade7570f7c61989b5a720d96ce68f0136c71e738d9de6eba17fbd731e269070dc3c320706983c9d35d231b7a466179c7d9aa9b4d5b4c2bfca7d95e48eec47a5d7c054", @generic="523ee5cee356af76c07d904cfac12431b20c76abaaaa9e6ccd4a701dee33863d48b66c4d8f2809050168b62b58ccbac7fbc32221f3d2235a6d32c3bf44", @nested={0x4, 0x7d}, @generic]}, @typed={0x8, 0x4e, 0x0, 0x0, @pid=r4}, @nested={0x20, 0xe1, 0x0, 0x1, [@nested={0x4, 0x4}, @typed={0x14, 0x13c, 0x0, 0x0, @ipv6=@private0}, @nested={0x4, 0x113}]}, @nested={0x10, 0x90, 0x0, 0x1, [@nested={0x4, 0x1}, @typed={0x8, 0x134, 0x0, 0x0, @pid=0xffffffffffffffff}]}, @typed={0xc, 0xc8, 0x0, 0x0, @u64=0x2}]}, @NL802154_ATTR_SEC_LEVEL={0xaf, 0x2d, 0x0, 0x1, [@generic="b7c9812c83e4872387f630883c9e98cc2d270b574510b900e6e3346bac33c6fa648d8ecf44106cb3e38dd1b20f6fcf2feb8c94acb3ce710c7c091dc0bd9bc21cc188cc0571acb444305f94f2193a7022913b712176959d1c03eed5492238e2689735a1c700d3dcefba2e82c8453921233859fc6ed3276b12e40d645c68166afe7d29b79cac8ab4e036af583d1ff643bda0a6b7372dec06597173ea1723661766d0d6957a412b935b547a7e"]}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0xc}, @NL802154_ATTR_PID={0x8, 0x1c, r5}, @NL802154_ATTR_SCAN_TYPE={0x5, 0x1f, 0x40}, @NL802154_ATTR_WPAN_PHY_CAPS={0x230, 0x18, 0x0, 0x1, [@nested={0x200, 0x13a, 0x0, 0x1, [@typed={0x8, 0x57, 0x0, 0x0, @u32=0x7}, @nested={0x4, 0xd}, @typed={0x4, 0xb6}, @generic="543d0d88f67ad35069508acfdcc8ceb3f0f010a8165005746e4d4ef41c46a874407f4f2f1832cbcc08273fe6645173023fd1d6b3729528125614d7010a3a1879f539bf377dd0bbfa64440b7d0676b72719", @typed={0x8, 0x130, 0x0, 0x0, @pid=r6}, @generic="6896b4f2bfcdba74a78e3d548e809015494945e1e12c59c4673af9f99988a0d56fe6bc18de1555a081587cff318f07da7ca05c6733798cd44e7a0254a352250152bfba2e66da289e8b999aa21d54b3d45bebfeeb0aeed8de67f66beb9c8cdd4dd3ef507aeb3d7d01d90ed2617248633b1e06ef94539e411dd72aa35f7702687789ffbb08b793a94c70617c53c2bd5dad781e7581893c5f2705efca4a13a77abe0edd582e8e1fa09d7d30efc0ba6f54c7916b17d54b877128ff833320f016752e6b5fe9f10314d16937bc93ceeec5c43128a60c0e96634e167e253ecc3345990aa8abbe20", @generic="174ca24c106875096e3af0d1e9bd0d6f3d25a94e27e9ce929d135639b1afec9984f29a79cca7b225411dc29222c6e638cc58b5f299bca5eb8e927200e28e6be039fb1692361890cc5d76159df445cb1bae12f543932397a76eab5335d7a95f0de729c8f911c52983a9c4767ff5e922ab47b4980c169c3281100bf9815cf812bbf4fb84cecb320ca67c8c1edec8fb73d8bf6bd53d1c2faaab2e03f0b625db77a16603ca213c7700e89769b7d0cff2b0"]}, @typed={0x8, 0x112, 0x0, 0x0, @uid=r7}, @typed={0x8, 0x6b, 0x0, 0x0, @uid=r8}, @nested={0x18, 0x109, 0x0, 0x1, [@nested={0x4, 0x27}, @typed={0x8, 0x85, 0x0, 0x0, @fd=r0}, @typed={0x8, 0xab, 0x0, 0x0, @ipv4=@broadcast}]}, @typed={0x4}]}, @NL802154_ATTR_SEC_KEY={0x31d, 0x30, 0x0, 0x1, [@generic="779091ef9f04c169ba05e8b5915a34f67b29e6ffb70a69b4d1cf28855519a649a491319a0f3521ae49e7786b587a207dbcec2a856313d438dfc3f5180e3d56c93405258f3f354d33cd1c391b9d8e8e474bbbae88aeb7089e428aba3af129a9bfc4f26cdc33a6790021d92fb6b2", @typed={0x4, 0xc1}, @generic="27f9f01f774ecc4d39d4f9c2deb0def03680a2a8cec6ebe0bfac31e27ce932b0bc5e72b4af92874081ce2da40aeabe8a9d2028a7d115dbb5251b6da7233f543657de850bda51d1fd34bdb2249c953705890ac0d0c948ab1578d6c6b4586d28a9827450dbd383ba58aba7c2adf071bcd3cecdfb5838ea16e445d6bea54797ad5b85644169eb195e7646bab0084c4edfd119a7fa29fc83f5b06497447d9a0c2abebb6187d76edea77c5da55e606d29d14ee75fb82852", @generic="ed223e3d11649f5790d676e7ffec", @typed={0xc, 0x69, 0x0, 0x0, @u64=0x7}, @typed={0xc, 0x1c, 0x0, 0x0, @u64=0x5}, @nested={0x12b, 0x9, 0x0, 0x1, [@nested={0x4, 0x112}, @generic="fc49ddfdecdc1a162c9ed21afa3d78ef2ba2f9b8e0e366941a9184ce18fd98e18153c7607d95fc0811534b2968ae247d3de604475f8a39e8777cb934c7fa25712775ca3f0093e31ec6f221d394fee906e47311cdd94eb73bd32a2a1774e2fbc85097f2624b30f9ec4e4a33a666838984d98c1328b95b8c212f7edac2680ee443474e3349f60329176966044fd3b37df1ac3bba321282b3cbe554adea8fd487ff4636e8ec868b53ebf794030a42093ba23e670df0573e6bd74141b090869b9b808291ca30a1c121a4dba0bb37a3c9511fbd54badf", @generic="977c3307403a19c5cb6912e907d858e738148916275dadb5ba5fab0a9d2279ac93510aeba604bc0425e09907c971b1397489b6ad55c14dcbd4f57905c927713f2eeb657e960f134cb645f5d7fedd6f"]}, @generic="08349b2770c99f820f0644b411af96d6e4a39f4d27fdabf7b43bbddf61789d93637ead48108d1787d0fea840ef075c8635ef8f9f2dde643145271a0574a824edf625c1ecfed13a9a31111bdaacfa7c16224fb63a4037fec7d84ce2cca2fdac7ecc52cd6fe06876da1a0cdfdf3d85d3ab721308b4488bc1c60c6353b100a207d287250c8c8950f7b8b5cf376864cd5bb863b031e424b3b8e9c3daf9c482e8045e81"]}]}, 0x8a8}, 0x1, 0x0, 0x0, 0x40}, 0x20040810)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
write$auto(0x3, 0x0, 0x100082)

5.026929862s ago: executing program 3 (id=647):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x1, 0x0)
bpf$auto(0x5, 0x0, 0x171)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = prctl$auto_PR_SET_MM_ARG_END(0xc, 0x9, 0x0, 0x4, 0xffff)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xebf, 0x401, 0x8000)
setrlimit$auto(0x10000686, 0x0)
mmap$auto(0x0, 0x4020009, 0x2000000000006, 0xeb1, 0x401, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r4=>0x0})
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r4, r3, 0x8, 0x8, 0x1, @relative_id=0x5, 0x2}, 0x92)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r6=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x1, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r6, r5, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mq_open$auto(0xffffffffffffffff, 0x200, 0x663c5371, 0x0)
unshare$auto(0x8000400)

4.917479979s ago: executing program 1 (id=648):
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x52da40, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mincore$auto(0x1000, 0x8001, 0x0)
r0 = socket(0x11, 0x80003, 0x300)
mmap$auto(0x10, 0x20009, 0x1, 0xeb1, 0xffffffffffffffff, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1e, 0x5, 0x3, 0x0)
r1 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYBLOB="01", @ANYRES16], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x4000000)
setsockopt$auto(r0, 0x107, 0x12, 0x0, 0x4)
mmap$auto(0x0, 0x20009, 0x12, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x0)
socket(0x2, 0x6, 0x0)
epoll_create$auto(0x4)
socket$nl_generic(0x10, 0x3, 0x10)
userfaultfd$auto(0x1)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', 0x8000, 0x0)
epoll_ctl$auto(r0, 0xfffffffd, r3, 0x0)
capset$auto(0x0, 0xfffffffffffffffe)
epoll_ctl$auto(0x5, 0x3, r2, 0x0)
pwrite64$auto(0xc8, 0x0, 0xfdef, 0x2)
mmap$auto(0x100000000003, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
futex_waitv$auto(&(0x7f0000000180)={0x3fb, 0x6, 0x2, 0xfff}, 0x3, 0xbffffffc, 0x0, 0x81)
bpf$auto(0x5, &(0x7f0000000100)=@task_fd_query={0x2, 0x2, 0x4, 0x0, 0x85, 0x7, 0x9, 0x6, 0x8001}, 0x101)

3.903000386s ago: executing program 3 (id=650):
ioperm$auto(0x4, 0x8, 0x3)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
sysfs$auto(0x2, 0x100001000000032, 0x0)
r0 = fsopen$auto(0x0, 0x1)
r1 = socket(0x2, 0x5, 0x0)
lsm_list_modules$auto(&(0x7f0000000300)=0x4, &(0x7f0000000340)=0x8001, 0x9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffeffb, 0x2, 0x8e0, 0x300, 0x50b301a, 0xe4, 0x2c, 0x1, 0x5})
bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
r3 = socket(0xf, 0x5, 0x0)
clone$auto(0x8d, 0x9, &(0x7f0000000380)=0x5c394688, &(0x7f00000003c0)=0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0xb101, 0x0)
ustat$auto(0x801, 0x0)
sendmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
getcwd$auto(0x0, 0xffffffffffffffff)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x40, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
ioctl$auto_BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={"8b22331ec524913cadc064eec21e022383c9510dfefc623f41c400e6237a6afc", 0x3, 0x1, 0xd787, 0x6, 0x7, <r4=>0xffffffffffffffff})
fcntl$auto_F_DUPFD_QUERY(r0, 0x403, r4)
close_range$auto(0x2, 0x8000, 0x0)
mkdir$auto(&(0x7f0000004440)='./file0\x00', 0x1)
write$auto(r0, &(0x7f00000002c0)='nl80211\x00', 0xffffffff)
mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x8)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1/file0\x00', 0x840, 0xc)
rename$auto(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./file1\x00')
arch_prctl$auto(0x5003, 0x5)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r1)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r5, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r6, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
sendmsg$auto_NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000500)={0x6a4, r6, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x7}, @NL80211_ATTR_COLOR_CHANGE_COLOR={0x5, 0x130, 0x1}, @NL80211_ATTR_REG_ALPHA2={0xb8, 0x21, "ba5f2fc86c58c93ae6ac85a8b93241791c4a70d319f78c71313868f2bbf794fdb24f4418f6b72909241fafdc48d6a85fafbf1d96ea837c680b660ababcf5aaeae58661cd0c2713f42b2f365301e43aafd5b0fcaff9a21fb79b2742b892772cea34a9c03d678d911d60b6d2dddf53b93114b040253a4991dac03ee69c8ed3dfbb7649f5c54660ce3d3fca1f298664905cc8c99f5dcf9f62e38cf1a071ae5d4982148161e76642beb880f69df43357cabc99ba6d45"}, @NL80211_ATTR_IE_ASSOC_RESP={0x5b5, 0x80, "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"}, @NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x52}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x2}]}, 0x6a4}, 0x1, 0x0, 0x0, 0x4001}, 0x11)

3.41603172s ago: executing program 1 (id=652):
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0xeb1, 0xffffffffffffffff, 0x8000)
ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR64(0xffffffffffffffff, 0xc0884123, 0x0) (async)
ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR64(0xffffffffffffffff, 0xc0884123, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0x4020ae76, 0x38)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
mmap$auto(0x0, 0x80000400008, 0xdf, 0x13, 0x2, 0x48ff)
socket(0x29, 0x5, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
remap_file_pages$auto(0x6a25, 0x1000, 0x0, 0x3, 0x0) (async)
remap_file_pages$auto(0x6a25, 0x1000, 0x0, 0x3, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x5) (async)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3ec0)
sendmmsg$auto(0x3, 0x0, 0x9a5, 0x47ffff7a) (async)
sendmmsg$auto(0x3, 0x0, 0x9a5, 0x47ffff7a)
connect$auto(0x3, 0x0, 0x55) (async)
connect$auto(0x3, 0x0, 0x55)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)

3.236316511s ago: executing program 3 (id=653):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0xa, 0x800, 0x400038)
setresuid$auto(0x2, 0x7, 0x8080)
ioctl$auto_FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, r0)
setsockopt$auto(r0, 0x6, 0x1f, 0x0, 0x3d)
io_uring_setup$auto(0x4, &(0x7f0000000000)={0x30, 0x338f, 0x100, 0x3, 0x1, 0x6, r0, [0x5, 0x25, 0x3], {0x97, 0x9, 0x7fffffff, 0x9, 0xfffffff7, 0x5d3, 0x3, 0x8, 0x7fffffffffffffff}, {0xb, 0x0, 0x8, 0x9, 0x0, 0x4, 0x3, 0x5, 0x3}})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
socket(0xa, 0x800, 0x400038) (async)
setresuid$auto(0x2, 0x7, 0x8080) (async)
ioctl$auto_FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, r0) (async)
setsockopt$auto(r0, 0x6, 0x1f, 0x0, 0x3d) (async)
io_uring_setup$auto(0x4, &(0x7f0000000000)={0x30, 0x338f, 0x100, 0x3, 0x1, 0x6, r0, [0x5, 0x25, 0x3], {0x97, 0x9, 0x7fffffff, 0x9, 0xfffffff7, 0x5d3, 0x3, 0x8, 0x7fffffffffffffff}, {0xb, 0x0, 0x8, 0x9, 0x0, 0x4, 0x3, 0x5, 0x3}}) (async)

2.926209871s ago: executing program 4 (id=654):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x11, 0xffffffffffffffff, 0x62)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000340)='/dev/cuse\x00', 0x200, 0x0)
r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/meminfo\x00', 0x0, 0x0)
ppoll$auto(&(0x7f00000000c0)={<r1=>r0, 0xf81, 0x27f}, 0x3, 0x0, 0x0, 0x8)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv6/conf/ip6gre0/ignore_routes_with_linkdown\x00', 0x202, 0x0)
sendfile$auto(r2, r1, 0x0, 0x401)
write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000440)="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", 0x152)
r3 = socket(0x2, 0x1, 0x0)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
madvise$auto(0x8e, 0x3, 0x7fff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop8/events\x00', 0x100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000003080)=""/4102, 0x1006)
futex$auto(0x0, 0x6, 0x9, &(0x7f0000000a00)={0xfff, 0xffffffffffffffd4}, 0x0, 0xffffffff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0xfffffffffffffffe, 0x3, 0x1000000, 0x6, 0x7, 0x6d3c, 0x80000005, 0x40002]}, 0x0)
futex$auto(&(0x7f0000000080)=0x1000003, 0x3, 0x1, 0x0, 0x0, 0xfbfffffa)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000140)='/proc/devices\x00', 0x800, 0x0)
read$auto_proc_mountinfo_operations_mnt_namespace(r1, &(0x7f0000000a40)=""/4086, 0xff6)
ioctl$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffffff, 0x1, &(0x7f0000000280))
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r1)
sendmsg$auto_NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYRES8=r4, @ANYRES64=r3, @ANYRESHEX=r2], 0x50}, 0x1, 0x0, 0x0, 0x4010}, 0x20040841)
ioctl$auto(0x3, 0x80000541b, 0x38)
sendmsg$auto_NL80211_CMD_REGISTER_BEACONS(r1, &(0x7f0000000200)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x60000000}, 0x20000000)
r6 = socket(0x10, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYRES16=r6, @ANYBLOB="0186"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810)

2.650912927s ago: executing program 3 (id=655):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) (async)
r0 = socket(0x1f, 0x801, 0x106)
connect$auto(0x3, &(0x7f0000000240), 0x6) (async)
io_uring_setup$auto(0x6, 0x0) (async)
getsockopt$auto(r0, 0x11c, 0x1, 0x0, 0x0)
socket(0x2, 0x6, 0x0) (async)
bind$auto(0x3, 0x0, 0x6b) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x343403, 0x0) (async, rerun: 64)
ftruncate$auto(0x3, 0x700) (rerun: 64)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r2=>0x0}) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0) (async)
socket(0xa, 0x3, 0x6) (async)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r3 = bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r2, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
ioctl$auto_AUTOFS_IOC_SETTIMEOUT(r3, 0xc0089364, &(0x7f0000000100)=0x7fff) (async)
r4 = open(0x0, 0x261c2, 0x84)
bpf$auto(0x0, &(0x7f00000001c0)=@raw_tracepoint={0x2, r4, 0x0, 0x4}, 0x6)
connect$auto(0x3, 0x0, 0x55) (async, rerun: 32)
connect$auto(0x3, 0x0, 0x55) (async, rerun: 32)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
r5 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r5, 0x84, 0x73, 0x0, 0x0) (async, rerun: 64)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video34\x00', 0x123000, 0x0) (rerun: 64)
ioctl$auto_v4l2_fops_v4l2_dev(0xffffffffffffffff, 0x816b, 0x0)

1.935313646s ago: executing program 0 (id=656):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vhci_hcd.7/usb23/23-0:1.0/usb23-port5/over_current_count\x00', 0x80302, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x0, @rand_addr=0x2}, 0x52)
arch_prctl$auto(0x1025, 0x12)
shutdown$auto(0x200000003, 0x2)
sendfile$auto(r0, r0, 0x0, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vhci_hcd.7/usb23/23-0:1.0/usb23-port5/over_current_count\x00', 0x80302, 0x0) (async)
socket(0xa, 0x1, 0x84) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) (async)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x0, @rand_addr=0x2}, 0x52) (async)
arch_prctl$auto(0x1025, 0x12) (async)
shutdown$auto(0x200000003, 0x2) (async)
sendfile$auto(r0, r0, 0x0, 0x3) (async)

1.897681482s ago: executing program 4 (id=657):
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001f00), 0xffffffffffffffff) (async)
sendmsg$auto_NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f00000023c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40004}, 0x4008050) (async, rerun: 32)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) (rerun: 32)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
socket(0xa, 0x6, 0x0) (async, rerun: 64)
adjtimex$auto(&(0x7f0000000100)={0x7fff, 0x0, 0x6, 0x6, 0x7fffffffffffffff, 0x1, 0x5, 0x0, 0x81, 0xc26, 0x5, {0x3, 0x401}, 0x8000000000000001, 0x5, 0xe6a, 0x8000, 0x0, 0x0, 0x6, 0x40, 0xb, 0x8000, 0x81}) (async, rerun: 32)
ioctl$auto(0x3, 0x890b, 0x91) (async, rerun: 32)
unshare$auto(0x40000080) (async)
madvise$auto(0x0, 0x20200, 0x15)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000300)={{0x0, 0x2, 0x0, 0xc, 0x0, 0x406, 0x8}, 0x5a57}, 0x80000, 0x1, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg1\x00', 0x40042, 0x0)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0x80040, 0x0) (async, rerun: 64)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/006/001\x00', 0xa901, 0x0) (rerun: 64)
poll$auto(&(0x7f0000000380)={r1, 0x6, 0x7}, 0x80, 0xf) (async)
linkat$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x400)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x0, 0x0)
ioctl$auto(r2, 0x4b45, r0) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim0/del_port\x00', 0xa001, 0x0)
ioctl$auto(r4, 0x9, r3) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20800, 0x0)
mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
ioctl$auto(0x3, 0x890c, 0x38)

1.666915491s ago: executing program 3 (id=658):
mmap$auto(0x0, 0x400005, 0x9, 0x9b7f, 0x2, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/system/clocksource/clocksource0/available_clocksource\x00', 0x42400, 0x0)
r1 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/bluetooth/hci1/rfkill6/power\x00', 0x10041, 0x0)
ioctl$auto_BTRFS_IOC_SEND_32(r1, 0x40449426, &(0x7f0000000240)={@raw=0x100000000, 0x5, 0xff, 0x3, 0x9, 0x0, "a987f38321bbf7bdfcfd85fd37074c78d491cc940c6bbaa5a5928b14"})
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000001c0)=""/125, 0x7d)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x2020008, 0x4, 0xeb1, 0xfffffffffffffffa, 0x8002)
socketpair$auto(0x1e, 0xf, 0x208, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0xa, 0x0)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
fanotify_init$auto(0x5, 0x2000000000002)
r2 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000001d40), 0x40a40, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_udc.7/driver_override\x00', 0x182, 0x0)
sendfile$auto(r3, r3, 0x0, 0x3)
ioctl$auto(r2, 0x541b, r0)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NFSD_CMD_THREADS_SET(r4, 0x0, 0x8810)
r5 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0)
sync_file_range$auto(r5, 0x7, 0x4f5, 0xfffffffd)
r6 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/kcore\x00', 0x0, 0x0)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/msr/msr0/uevent\x00', 0x400, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000000140)=""/123, 0x7b)
read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000000000)=""/14, 0xe)
pread64$auto(r6, &(0x7f0000000040)='/dev/kvm\x00', 0x6, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xf, 0x800, 0x100088)
socket(0x2, 0x6, 0x0)

1.666113796s ago: executing program 0 (id=659):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async, rerun: 64)
mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) (async, rerun: 64)
connect$auto(0x4, 0x0, 0x10) (async)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000080)={0x1f4, r1, 0x300, 0x70bd2a, 0x25dfdbfc, {}, [@NL80211_ATTR_FILS_ERP_REALM={0xd4, 0xfa, "6cd4660c0d50476970534cc86e01c02602f182a10b86315855a93a30c5ea8a99117e697a508b316d146867cedf5993faf92830fe63d7e9dea2a055ec6224df5de763a85659de8359d05130004870092cc194b2ab0f5e37652621d8e28e5c3a654036af5a9da5707c98cd1bd923c5885167b38037d8d4b17c7a7a0adf3a7ff0cfced42d612d3271a48a3181f27b9174a21a02068dc0737cad2caaf20171f315ef504c152e8c83130c9dd89273b914540c62dfd8dd9ac3faaafd742bcfadfb6f179f7f43e52cf4252532b28da5218f7ac9"}, @NL80211_ATTR_TDLS_SUPPORT={0x4}, @NL80211_ATTR_FILS_NONCES={0xa0, 0xf3, "3aabf29ad193f71b8e0d8e29aa3fbe97aa710ca9d3e4e7449918ff17a3251a27604c9f9998c82837431d900ba8573123845e281a2c562aa68e9971886959111b0c422d0e0cfbf338290e88e6ebe1606d498d7478c1195ac5a2af0c6283fad3e254510abc980a2211d238e4649a5f5044d011a9cd658c876ed99929d15e359c19e050a2bc872a3dcebc2d9a6fdc734e8b781948e237333388e5571cce"}, @NL80211_ATTR_PMKR0_NAME={0x63, 0x102, "e6f878b4f3c0ad24d1e23db82dbe995b47996eed5aa0caf5515f8ed9692703f52af7a51c3d247b3e17eda90938c6ab0ffb44aebab69533e626b7e739c3415796e48aa551974b79b244573bed19371d5e1928321bce003f3569280049b07448"}, @NL80211_ATTR_DISABLE_HE={0x4}]}, 0x1f4}, 0x1, 0x0, 0x0, 0x40010}, 0x4)

1.238132666s ago: executing program 4 (id=660):
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf250200001808003c0002000009050019"], 0x24}, 0x1, 0x0, 0x0, 0xc005}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
r0 = socket(0x10, 0x2, 0x0)
read$auto_buffer_subbuf_size_fops_trace(0xffffffffffffffff, &(0x7f0000000140)=""/78, 0x4e)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa507}, 0x800}, 0x7, 0x8)

1.007991424s ago: executing program 4 (id=661):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/rxrpc/stats\x00', 0x401, 0x0)
write$auto(r0, &(0x7f0000000100)='\x00', 0x1)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
socket(0xa, 0x3, 0xff)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x3ff, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
io_uring_register$auto(0x2, 0xf, 0x0, 0x20)
r1 = socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, 0x0, 0x54)
madvise$auto(0x110c230000, 0x8031ca, 0x9)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
open(&(0x7f0000000000)='./file0\x00', 0x123142, 0x0)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0xe9, 0xffffffff, 0x800002}, 0x8000, 0x0, 0x6)
msync$auto(0x1ffff000, 0x180000000000000, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
lseek$auto(0x3, 0x805b8e6b43, 0x0)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
madvise$auto(0x0, 0x20499d, 0x9)
syz_genetlink_get_family_id$auto_nl802154(0x0, r1)
sendmsg$auto_NL802154_CMD_SET_TX_POWER(r1, 0x0, 0x810)
madvise$auto(0x108000, 0x800034, 0x4)

962.928145ms ago: executing program 1 (id=662):
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_XFS_IOC_ALLOCSP64(0xffffffffffffffff, 0x40305824, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
get_robust_list$auto(0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = open(0x0, 0x261c2, 0x84)
close_range$auto(0x2, 0x8000, 0x0)
r2 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'dummy0\x00', <r4=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x4, 0x1ff, r2, @relative_fd=r1, 0xe600}, 0xf)
bpf$auto(0x4, &(0x7f00000002c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0xc)
r5 = memfd_secret$auto(0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/module/nfs/parameters/delay_retrans\x00', 0x82001, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/pci0000:00/0000:00:01.1/ata2/host1/target1:0:0/1:0:0:0/evt_mode_parameter_change_reported\x00', 0xe8b43, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000040)="de91b83a075c", 0x6)
mmap$auto(0x0, 0x20009, 0xfffffffffffffffe, 0xeb2, 0x401, 0x8000008000)
openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000000100), 0x400040, 0x0)
fcntl$auto_F_UNLCK(r5, 0x8, 0x2)
r7 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000006900)='/sys/kernel/config/target/dbroot\x00', 0x189002, 0x0)
write$auto_configfs_file_operations_configfs_internal(r7, &(0x7f00000000c0)="9b", 0x1)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0xffffffd7)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0x4, 0x300, 0x0)

735.745777ms ago: executing program 0 (id=663):
socket(0x1, 0x803, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
socket(0x1d, 0x2, 0x2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
open$dir(&(0x7f0000000000)='./file0\x00', 0x42, 0x20)
pipe$auto(0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
eventfd$auto(0x3)
socketpair$auto(0x9, 0x2, 0xb, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyd9\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioperm$auto(0x7, 0x6, 0x10)
setpriority$auto_PRIO_USER(0x2, 0x0, 0x9)
r2 = socket(0x29, 0x2, 0x0)
ioctl$auto(r2, 0x8bf0, 0x24)
ioctl$auto(0x3, 0x80047456, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
pipe$auto(&(0x7f0000000000)=<r3=>0xffffffffffffffff)
splice$auto(r3, 0x0, 0x2, 0x0, 0x9, 0x8)
socket(0x15, 0x5, 0x0)
r4 = socket(0x10, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NLBL_MGMT_C_ADDDEF(r4, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRESOCT=r0, @ANYBLOB="00020004000400"/22], 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x40800)

549.413607ms ago: executing program 4 (id=664):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003ec, 0x14)
madvise$auto(0x27a7, 0x0, 0xa44)

525.581527ms ago: executing program 3 (id=665):
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000100)={"fda25684", 0xffff, 0x6, 0x3, 0x9b4, 0x9, "c625aa3f222ce10e00", '\x00', "0400e6ad", '\x00', ["22dfffffffefffff480400", "f8ffffffffffffff00e10001", "b06f8ca10c66eebcbd6f17c8", "5fe10eedab2c4b353c392a92"]})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, r2, 0x1, 0x70bd2d, 0x25dfdbfc, {0x11, 0x0, 0xfcff}, [@ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000080}, 0x20080000)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
statmount$auto(0x0, 0x0, 0x1fe, 0xd)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa503}, 0x800}, 0x4, 0x4008)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/nr12/address\x00', 0x101800, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000080)=""/27, 0x1b)
r4 = socket(0x29, 0x2, 0x0)
r5 = socket(0x10, 0x2, 0x0)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/nfsd.export/channel\x00', 0x8f3b7a51b8162d21, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000a40), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000a80)={'nicvf0\x00', <r11=>0x0})
sendmsg$auto_OVS_DP_CMD_DEL(r8, &(0x7f0000000b80)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x84040000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000ac0)={0x4c, r10, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r9}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x4}, @OVS_DP_ATTR_NAME={0x5, 0x1, '\x00'}, @OVS_DP_ATTR_IFINDEX={0x8, 0x9, r9}, @OVS_DP_ATTR_IFINDEX={0x8, 0x9, r9}, @OVS_DP_ATTR_IFINDEX={0x8, 0x9, r11}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x80000000}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x4010)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)={0x2c, r7, 0x13, 0x70bd2c, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r9}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0x1}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x7ffffffc}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894)
r12 = semctl$auto_IPC_INFO(0x3, 0x2, 0x3, 0xd)
sendmsg$auto_NL80211_CMD_SET_COALESCE(r5, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f00000003c0)={0x67c, r7, 0x1, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_HE_BSS_COLOR={0x8, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}]}, @NL80211_ATTR_CSA_IES={0x2ce, 0xb9, 0x0, 0x1, [@typed={0x4, 0x29}, @nested={0xfc, 0x114, 0x0, 0x1, [@typed={0x4, 0x60}, @generic="77a8e9f19685842413bf1f8625c42587c253d50b240d185a16c36e681e985916f9c6eebd1a4e77c07b7cbda4963453499a1140a19a86f43b0407893d36611dee8e1756d46e4891530266df205fe9ccbb258fc88d6518a73c273a9cd783cbb2b4af1a82da3237b8dfc44085226c36ac4a3d56f0425dd5d0fed431968b3ba407ddac7246f82b8ac39a773243c9fbc2b2f41bc4d5300a390c975107d29477aafb41a0790331402746bf7382e2f94c925b40e47e4c4d1b37ce3e507a987899ca6b51109924f0e0c63dea3b041042eeac3c62a013997f35206668bef7afd5ffa2de5931509a5ca97621cfa6c3b5742bd639c9aff2a4fb"]}, @nested={0x14, 0x1b, 0x0, 0x1, [@typed={0x8, 0x7f, 0x0, 0x0, @pid=r12}, @typed={0x8, 0x83, 0x0, 0x0, @ipv4=@loopback}]}, @generic="d9ef3913cb31dce20e2d526464dd6370f84cdbbfc7caa3a9f63f5fbd606253f662bdc1f071c9ec7fdf2679a9aed4291bc928a89d8319f8e323b316f14ea8323e5ecd83bbf3e9c4bb473b9e2a7a1e06e9e9ba3c46b2f066a94cf6e44669fe5c75f022764d607f9f368d8bce0dfbea79ca2ff3c2e79e4f32a95ece4b0051299e82456ef0b3cd5e827e4d4b95bc0bf6145fbb64a7c2119b288b13ab8de8c5238ebdace469c667fe3b6d9d3ac5555d41817cb82e98fc7e611c43c718f098859455535ed6bf", @generic="857863621723d1ead515969612c0c089de2760e1f63d28a05341e4b0ae6082e6fd51025313034cb6600bd7a5870dab929686d1ea6250680742c0dd3654b45be86505003a04e18a81974fbb7e77d87cdfb25875a3d528a6387f00a627927498bc6eb19e6ee849aef6e8d71a767ce076978d1106a2794eb4d2e24276e0ec1706a2b151f91d7904af69f6aaffda4941608a1e1804e24cdecc15a5fb24eec1c683e9518498da0e3b1bd747edc8f388556ebf696cf1b31a969b60032107572d5ebf221ae55e0ee9ceda836157610aae76d63a942fc98ba286ff68cce45d90963d4d4c402f69bf1dd4e1f0ae52572317ac9062c1ee62"]}, @NL80211_ATTR_BEACON_TAIL={0x38e, 0xf, "1409366a90f60c18856891f3cac6bb9b12d158a251c486e1b947e16371ed22a454e710ab395a544978717a1b2d0867912c1fb4bfa3709239b4a266ac8382d6c773969d37e3aa3475e0033bfdac127d638f84f90a2987bf9fceb02ca8dde6d2caa99f6d055b520c767cd6def7a5ac36293fc9c0decd3650f2e324e64754791c3c31f60124c41df4d9e880eb9d9c2b65e8aac572b750166b724267588d8e0f2dcf9939ee14733c6c2c465747b1bb2f859d4800ad8990269247c4f7976e9e6ecda9ab89e3fa1e5a3e48926a5cc86bc47ccc4aaff4b178b7053e9974ff38760dc2c024e5c5a2609af5dc6a67b51da40651b59e9ad6492eb4f68c264e0686d23d659e74ce71772c30984f7930c5fa85ff32aa81d6f1d5b9c3a06ae7d068e21d6948010a03842500d443d42c4e04ec5a854cde09fca9214661e567f5065a3f3ebcc6137595e61bbedfde307479f7c4ee04ff8ff60b921b98ffeefc8dd09cc1920265dc394fdc71fdafff2201e6d4fd93b3fb6860bc5f2e8f3a7a6d5772140798f9ee1ad9ed2942c4ca875345f72832fdb584f3e2b804acb65ba4c6c44bd054a4deeb431ffe79ce9fb61c6cac4649e30e265fe94e11116bf42694e2d01b80ede93b302bc5da754545ffd831b5ac4046658645e81f286a5a91ac6c45eb0cb9119a4d07f3ac36c7fb532908ff5c1279aea16db7c29b6d27262c7fb2fabfb6468132490176a360605a327f388e663489215e192b2e92fc24e037969c8a0294c7605b89213901ae35b0f8d4a9fe78d09e43667ec0aa0bb97a5a5f95030c5fcfd403542669aa6e9f3af76e86914f2712db3c30ec0e1e368c42767e7fcd41e873147d2c699213992d762312a51773641fc366874d9d77ad91f22e358390b86ae24a45eab557505071679888e384f3ded18e4210ff8a1a3a8eadcdb257033bf5aba4abb5d47df8897ff0e857ebd084c900487d6622417bc81908a3555f55ea1cd9ef26c9e0f00888bb166cbe009c10b8ae13269a1f646ff585b9427b96f2bc569cf495bf81c376df204c2f78868654c5d6aa553d0036b1b81fee1712be9c4b67b49f08bece3d50fb8a819b6299abf851066702b1b8e7497651e9f180c5c7fc85fea227902cc3d6b775f6423b76de2ff55f5c3225d8556be9f65fad68fe13427378081550293ee490d15bdaf555726d7415ec790aa6dc084545e968ab6413b89d2e99ad7a968b83eca8046ea716ce4671ae6e997d5e1413ea8b032fe6b20ffe44cc01e1d0d04fa87b32b7f2027958bd066f"}]}, 0x67c}}, 0x800)
write$auto_proc_reg_file_ops_compat_inode(r6, &(0x7f0000000040)="5c7820d1027e0dc0023af10e9bfa1babfa3a3753ca9aee370a", 0x19)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r5, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r4, 0x89f0, 0x24)

150.487147ms ago: executing program 0 (id=666):
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x3ff)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x4000000)
unshare$auto(0x40000080)
socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
mbind$auto(0x0, 0x2, 0x2, &(0x7f0000002100)=0x4, 0x7, 0x0)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x800)
readv$auto(0x3, 0x0, 0x1)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = prctl$auto(0x1, 0x6, 0x0, 0x7, 0x4)
r2 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000040), r1)
sendmsg$auto_GTP_CMD_GETPDP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010423bd7000fedbdf2502000000080002008f030000080001000700000008000700", @ANYRES32, @ANYBLOB="168059fc33c7a36328b8a3797f5b59cc114724fd38b7219e1ca68cb7892dd7b619e8b05f105468f03eb7d7a20349290129243ba4cf2ca7017dbe3e73c7826558b7b23e159981776475437b305e1e15f0089443e261e422c2360f1ca71a6cdd25f0f289afe27949586bff351100a841d42df2003b1b885a"], 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8014)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
ioctl$auto_IOCTL_VMCI_QUEUEPAIR_SETPAGEFILE(r1, 0x7a9, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.7/usb8/bMaxPower\x00', 0x8a00, 0x0)
pread64$auto(r5, 0x0, 0x4, 0xc)
io_uring_setup$auto(0x0, &(0x7f0000000200)={0x98, 0x4a, 0xfffffffd, 0x5, 0x81, 0x0, r5, [0x4, 0x5, 0x1], {0x9, 0x0, 0x7, 0x5, 0x9, 0x8, 0x1000, 0x2, 0x2}, {0x6, 0x3, 0x3, 0x4, 0x5a, 0x7, 0x8d6, 0x4, 0x803}})
sendmsg$auto_HWSIM_CMD_GET_RADIO(r3, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="00001d00", @ANYRES16=r4, @ANYBLOB="cf5728bd7000ffdbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8000)
r6 = openat$auto_msft_opcode_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci0/msft_opcode\x00', 0x0, 0x0)
read$auto(r6, &(0x7f0000006740)='^%-[)>\'\xdf\x00', 0xffff)
socket$nl_generic(0x10, 0x3, 0x10)
read$auto(r3, 0x0, 0x3)
sendmsg$auto_ETHTOOL_MSG_RSS_GET(r1, &(0x7f0000000100)={0x0, 0xfffffffffffffe35, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x8086}, 0x4010)
unlink$auto(0x0)

28.950165ms ago: executing program 1 (id=667):
r0 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r0, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
bind$auto(0x3, 0x0, 0x6a)
connect$auto(0x3, 0x0, 0x54)
unshare$auto(0x40000080)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000080), r1)
r3 = geteuid()
setreuid$auto(r3, 0x0)
sendmsg$auto_NFC_CMD_GET_DEVICE(r1, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000003c0)={&(0x7f00000000c0)={0x2f4, r2, 0x208, 0x70bd2d, 0x25dfdbfc, {}, [@NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x6729}, @NFC_ATTR_DEVICE_POWERED={0x5, 0xc, 0xb}, @NFC_ATTR_LLC_SDP={0x30, 0x13, 0x0, 0x1, [@typed={0x8, 0x41, 0x0, 0x0, @uid=r3}, @typed={0x14, 0xd2, 0x0, 0x0, @ipv6=@local}, @nested={0x4, 0x38}, @typed={0x4, 0x6b}, @typed={0x8, 0xbd, 0x0, 0x0, @fd=r1}]}, @NFC_ATTR_COMM_MODE={0x5}, @NFC_ATTR_LLC_SDP={0x297, 0x13, 0x0, 0x1, [@generic="573b81b511a4db32379064b3a8195013475d40ad126a558312918d29a1c88b3e386418233a5bab", @generic="1ad4cb16bc0b093b83521cd7139075260b08d86bc829d62a1d83ac2a941d703b02ac8afdc55c82c741467958a5d9272b99e5ac7b06b77c3f6839a40b210261b6172c3363aa57a79f175c6985c9f7816d7f586ba9c867db48b1c27f0a527796c7f8ebeb690c3cc2a0f79277c1fc069c8aec5fce0e279e52f4930fe56832568fc087f6901af3db4a6eb1a6da3c472ed1f9557ecb403dae658c1b06d9ee53ca528c58de35a90eb2aca03bf5ae1d9f19e0ff4cc88fadff01895d44585f8eba04a2c9c3e47e240d045d0a32", @typed={0xc7, 0x129, 0x0, 0x0, @binary="3751064ac28734a979676cece0eb9b35bbee832e42142d7affdbf4ebf37483f54d9bd2f291eaa74bf97632debb8bd027e4a556e99e3912900ec2be3175a3d455ff96520e5cecf601aa85d101e09f702be3722454318cf6eefbb8e750301c455dcc8fe638167ef75e76a84f1c479576f2e546ce7490497c1a966a82e3162b0dc2f18e6b60f89af1cac42a0288bd34c9527229a4e14534fb5fe21a6aa72b590505c47844d6040ebf57d4b83036fe1a4c5b3b905b393db8a750965531ccd77a4a0d1669a3"}, @generic, @generic="f1fd9dad36edf1429419ea921c8783f95102dcd7c8655732f8c7142f83b7f3287e0981dc8364de11bef22fca8bef2505a47b74cad4119caf546d7cfec1189dc043b8f1c29d3acc9577d75bcadb8649cf0bbece78aac5b319899f284929607b1846042bfa156d9f18631d8ae8ee92b6cea99a42bd2616c3e9d500338815fba543c37913b8211963544ef0bf4d9e3f19ff2d97ed97831ef3da65d56829258c1c9bf84a6d58a529d0934a80d47a70073578be1020b42a495ff1afebf47e895f8456ae2de818cc2c11be7cd0ad8240eb360b6028fc", @typed={0x8, 0xd1, 0x0, 0x0, @fd=r1}]}]}, 0x2f4}, 0x1, 0x0, 0x0, 0x40885}, 0x1)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PHY_GET(r1, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000000)={0x14, r4, 0x301, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x2404c012}, 0x80)

0s ago: executing program 4 (id=668):
mmap$auto(0x6, 0x400003, 0x1e0e, 0x9b72, 0xffffffffffffffff, 0x8000000000000001)
timer_create$auto(0xfffffffd, 0x0, 0x0)
timer_settime$auto(0x4, 0xffff8000, &(0x7f00000000c0)={{0x10080c, 0x18006}, {0x8}}, 0x0)
timer_gettime$auto(0x0, 0x0)
r0 = io_uring_setup$auto(0x3ff, 0x0)
close_range$auto(0x0, r0, 0x5)
r1 = inotify_init1$auto(0x3000000000000)
socket$nl_generic(0x11, 0x3, 0x10)
r2 = socket(0x28, 0x3, 0x8a)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x2, 0x1)
bpf$auto(0x9, &(0x7f0000000300)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x2, 0x0, r2, @relative_fd=<r3=>0xffffffffffffffff, 0x4}, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram5/queue/max_segment_size\x00', 0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0xb1a9)
mmap$auto(0x0, 0x400008, 0xdf, 0x410, r3, 0x8000)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22)
utimensat$auto(r4, &(0x7f0000001c80)='\x00', &(0x7f0000001cc0)={0x23, 0x3fffffff}, 0x1000)
fcntl$auto(0x8000000000000001, 0x5, 0xffffffffffffffff)
clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
setns(0xffffffffffffffff, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x24000485}, 0x4000080)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/route\x00', 0x0, 0x0)
timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6)
mmap$auto(0xfffffffffffffffc, 0x88, 0x8000000000bd47, 0x11, r1, 0x5)
mmap$auto(0x0, 0x8, 0x3, 0xeb1, r0, 0x8000)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0)
write$auto(r5, 0x0, 0xeffd)
mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/pagemap\x00', 0x121800, 0x0)

kernel console output (not intermixed with test programs):

 > 1
[   68.192510][ T5845] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   68.206273][ T5845] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   68.206755][ T5846] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   68.221652][ T5846] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   68.229273][ T5846] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   68.236532][ T5846] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   68.245401][ T5845] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   68.245628][ T5846] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   68.255117][ T5848] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   68.267869][ T5846] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   68.267873][ T5845] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   68.268489][ T5848] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   68.276078][ T5846] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   68.282205][ T5845] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   68.291319][ T5848] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   68.297860][ T5845] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   68.304002][ T5847] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   68.325502][ T5848] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   68.334388][ T5847] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   68.342089][ T5848] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   68.349537][ T5847] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   68.717818][ T5837] chnl_net:caif_netlink_parms(): no params data found
[   68.742983][ T5835] chnl_net:caif_netlink_parms(): no params data found
[   68.817253][ T5834] chnl_net:caif_netlink_parms(): no params data found
[   68.835426][ T5836] chnl_net:caif_netlink_parms(): no params data found
[   68.903322][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.910952][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.918660][ T5837] bridge_slave_0: entered allmulticast mode
[   68.925687][ T5837] bridge_slave_0: entered promiscuous mode
[   68.934224][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.941353][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.948813][ T5835] bridge_slave_0: entered allmulticast mode
[   68.955548][ T5835] bridge_slave_0: entered promiscuous mode
[   68.983491][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.990613][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.998655][ T5837] bridge_slave_1: entered allmulticast mode
[   69.005875][ T5837] bridge_slave_1: entered promiscuous mode
[   69.019722][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.026952][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.034520][ T5835] bridge_slave_1: entered allmulticast mode
[   69.041467][ T5835] bridge_slave_1: entered promiscuous mode
[   69.080004][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.110691][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.121805][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.135116][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.172826][ T5834] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.179981][ T5834] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.187509][ T5834] bridge_slave_0: entered allmulticast mode
[   69.194441][ T5834] bridge_slave_0: entered promiscuous mode
[   69.223785][ T5834] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.230973][ T5834] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.239109][ T5834] bridge_slave_1: entered allmulticast mode
[   69.246688][ T5834] bridge_slave_1: entered promiscuous mode
[   69.264104][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.271208][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.281427][ T5836] bridge_slave_0: entered allmulticast mode
[   69.288113][ T5836] bridge_slave_0: entered promiscuous mode
[   69.296357][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.303681][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.310837][ T5836] bridge_slave_1: entered allmulticast mode
[   69.317732][ T5836] bridge_slave_1: entered promiscuous mode
[   69.326903][ T5837] team0: Port device team_slave_0 added
[   69.335075][ T5837] team0: Port device team_slave_1 added
[   69.343313][ T5835] team0: Port device team_slave_0 added
[   69.371664][ T5835] team0: Port device team_slave_1 added
[   69.382873][ T5834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.407242][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0
[   69.414311][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.440559][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   69.474156][ T5834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.491516][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.502009][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1
[   69.509307][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.535544][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   69.547293][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0
[   69.554322][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.580387][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   69.600600][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.622614][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1
[   69.629611][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.655971][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   69.669665][ T5834] team0: Port device team_slave_0 added
[   69.678992][ T5834] team0: Port device team_slave_1 added
[   69.725582][ T5836] team0: Port device team_slave_0 added
[   69.749722][ T5836] team0: Port device team_slave_1 added
[   69.757537][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_0
[   69.764939][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.791401][ T5834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   69.813769][ T5837] hsr_slave_0: entered promiscuous mode
[   69.820002][ T5837] hsr_slave_1: entered promiscuous mode
[   69.849357][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_1
[   69.856380][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.885274][ T5834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   69.908347][ T5835] hsr_slave_0: entered promiscuous mode
[   69.914655][ T5835] hsr_slave_1: entered promiscuous mode
[   69.920659][ T5835] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   69.928681][ T5835] Cannot create hsr debugfs directory
[   69.965636][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0
[   69.973157][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.999464][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.026638][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.033838][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.060178][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.108394][ T5834] hsr_slave_0: entered promiscuous mode
[   70.114781][ T5834] hsr_slave_1: entered promiscuous mode
[   70.120894][ T5834] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.128799][ T5834] Cannot create hsr debugfs directory
[   70.220570][ T5836] hsr_slave_0: entered promiscuous mode
[   70.226739][ T5836] hsr_slave_1: entered promiscuous mode
[   70.233039][ T5836] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.240622][ T5836] Cannot create hsr debugfs directory
[   70.393643][ T5146] Bluetooth: hci0: command tx timeout
[   70.399425][ T5146] Bluetooth: hci2: command tx timeout
[   70.405304][ T5839] Bluetooth: hci1: command tx timeout
[   70.411093][ T5847] Bluetooth: hci3: command tx timeout
[   70.418230][ T5835] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   70.429778][ T5835] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   70.451592][ T5835] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   70.477456][ T5835] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   70.511457][ T5834] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   70.520409][ T5834] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   70.535247][ T5834] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   70.544989][ T5834] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   70.609597][ T5837] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   70.627643][ T5837] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   70.652198][ T5837] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   70.663100][ T5837] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   70.735801][ T5836] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   70.758206][ T5836] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   70.786186][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.800646][ T5836] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   70.810434][ T5836] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   70.851533][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.867384][ T5834] 8021q: adding VLAN 0 to HW filter on device team0
[   70.885342][ T1035] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.892631][ T1035] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.903723][ T1035] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.910833][ T1035] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.947339][ T5835] 8021q: adding VLAN 0 to HW filter on device team0
[   70.992330][ T1035] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.999450][ T1035] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.009291][ T1035] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.016369][ T1035] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.055622][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.141698][ T5837] 8021q: adding VLAN 0 to HW filter on device team0
[   71.180159][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.198103][ T3511] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.205317][ T3511] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.229540][ T5836] 8021q: adding VLAN 0 to HW filter on device team0
[   71.246313][ T3511] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.253488][ T3511] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.279604][ T3511] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.286781][ T3511] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.305925][ T3511] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.313080][ T3511] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.409823][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0
[   71.430726][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0
[   71.551024][ T5834] veth0_vlan: entered promiscuous mode
[   71.589935][ T5835] veth0_vlan: entered promiscuous mode
[   71.610673][ T5834] veth1_vlan: entered promiscuous mode
[   71.628326][ T5835] veth1_vlan: entered promiscuous mode
[   71.686422][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0
[   71.727157][ T5834] veth0_macvtap: entered promiscuous mode
[   71.739048][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0
[   71.756073][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[   71.762658][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[   71.783713][ T5834] veth1_macvtap: entered promiscuous mode
[   71.800720][ T5837] veth0_vlan: entered promiscuous mode
[   71.822041][ T5835] veth0_macvtap: entered promiscuous mode
[   71.831231][ T5837] veth1_vlan: entered promiscuous mode
[   71.850003][ T5835] veth1_macvtap: entered promiscuous mode
[   71.863365][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.888412][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.899435][ T5834] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.909185][ T5834] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.919977][ T5834] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.928897][ T5834] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.944205][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.957683][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.969562][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.987641][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.998468][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.013096][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.034029][ T5835] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.043630][ T5835] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.052335][ T5835] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.061365][ T5835] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.075063][ T5836] veth0_vlan: entered promiscuous mode
[   72.103777][ T5837] veth0_macvtap: entered promiscuous mode
[   72.114399][ T5837] veth1_macvtap: entered promiscuous mode
[   72.135832][ T5836] veth1_vlan: entered promiscuous mode
[   72.149696][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.161651][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.171872][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.183662][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.194614][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.252069][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.266357][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.276952][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.287968][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.299018][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.341586][ T5837] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.351299][ T5837] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.360816][ T5837] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.370602][ T5837] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.397049][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.415026][ T3511] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.415907][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.436429][ T3511] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.474148][ T5847] Bluetooth: hci2: command tx timeout
[   72.474169][ T5146] Bluetooth: hci3: command tx timeout
[   72.479581][ T5848] Bluetooth: hci0: command tx timeout
[   72.490478][ T5839] Bluetooth: hci1: command tx timeout
[   72.512051][ T5836] veth0_macvtap: entered promiscuous mode
[   72.526450][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.542606][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.547508][ T5836] veth1_macvtap: entered promiscuous mode
[   72.616867][ T3552] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.626134][ T3552] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.638767][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.657975][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.669396][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.682962][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.693663][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.704471][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.716817][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.734907][ T5834] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   72.755180][ T3511] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.764457][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.770175][ T3511] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.787936][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.798111][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.809103][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.819168][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.830963][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.844136][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.887418][ T5836] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.900554][ T5836] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.920168][ T5836] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.945933][ T5836] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.014974][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.044067][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.151754][ T3511] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.179709][ T3511] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.225992][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.244961][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.546924][ T5896] smpboot: CPU 0 is now offline
[   73.626279][ T5915] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   74.368660][ T5934] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   74.554293][ T5839] Bluetooth: hci3: command tx timeout
[   74.559731][ T5848] Bluetooth: hci1: command tx timeout
[   74.565283][ T5839] Bluetooth: hci0: command tx timeout
[   74.571562][ T5839] Bluetooth: hci2: command tx timeout
[   75.029824][ T5936] Zero length message leads to an empty skb
[   75.438790][ T5938] vivid-003: =================  START STATUS  =================
[   75.499472][ T5938] vivid-003: Radio HW Seek Mode: Bounded
[   75.614570][ T5938] vivid-003: Radio Programmable HW Seek: false
[   75.620754][ T5938] vivid-003: RDS Rx I/O Mode: Block I/O
[   76.038302][ T5938] vivid-003: Generate RBDS Instead of RDS: false
[   76.085054][ T5938] vivid-003: RDS Reception: true
[   76.104188][ T5938] vivid-003: RDS Program Type: 0 inactive
[   76.158512][ T5938] vivid-003: RDS PS Name:  inactive
[   76.195812][ T5938] vivid-003: RDS Radio Text:  inactive
[   76.201317][ T5938] vivid-003: RDS Traffic Announcement: false inactive
[   76.283555][ T5938] vivid-003: RDS Traffic Program: false inactive
[   76.348337][ T5938] vivid-003: RDS Music: false inactive
[   76.372732][ T5938] vivid-003: ==================  END STATUS  ==================
[   76.635867][ T5839] Bluetooth: hci2: command tx timeout
[   76.641310][ T5839] Bluetooth: hci1: command tx timeout
[   76.647027][ T5848] Bluetooth: hci0: command tx timeout
[   76.652903][ T5146] Bluetooth: hci3: command tx timeout
[   77.043354][ T5975] netlink: 342 bytes leftover after parsing attributes in process `syz.3.20'.
[   77.053588][ T5980] mmap: syz.2.18 (5980) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   77.325733][ T5972] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   78.259654][ T6006] FAULT_INJECTION: forcing a failure.
[   78.259654][ T6006] name failslab, interval 1, probability 0, space 0, times 1
[   78.322562][ T6006] CPU: 1 UID: 0 PID: 6006 Comm: syz.3.28 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[   78.322584][ T6006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   78.322593][ T6006] Call Trace:
[   78.322597][ T6006]  <TASK>
[   78.322606][ T6006]  dump_stack_lvl+0x16c/0x1f0
[   78.322632][ T6006]  should_fail_ex+0x50a/0x650
[   78.322653][ T6006]  ? fs_reclaim_acquire+0xae/0x150
[   78.322672][ T6006]  should_failslab+0xc2/0x120
[   78.322685][ T6006]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[   78.322705][ T6006]  ? __d_alloc+0x31/0xaa0
[   78.322721][ T6006]  __d_alloc+0x31/0xaa0
[   78.322735][ T6006]  d_alloc+0x4a/0x1e0
[   78.322748][ T6006]  d_alloc_parallel+0xe7/0x12b0
[   78.322764][ T6006]  ? __pfx_lock_release+0x10/0x10
[   78.322782][ T6006]  ? trace_lock_acquire+0x14e/0x1f0
[   78.322801][ T6006]  ? __pfx_d_alloc_parallel+0x10/0x10
[   78.322817][ T6006]  ? lockdep_init_map_type+0x16d/0x7d0
[   78.322836][ T6006]  ? lockdep_init_map_type+0x16d/0x7d0
[   78.322859][ T6006]  proc_fill_cache+0x2eb/0x470
[   78.322878][ T6006]  ? __pfx_proc_pident_instantiate+0x10/0x10
[   78.322897][ T6006]  ? __pfx_proc_fill_cache+0x10/0x10
[   78.322921][ T6006]  ? d_parent_ino+0x177/0x440
[   78.322935][ T6006]  ? __pfx_lock_release+0x10/0x10
[   78.322961][ T6006]  proc_pident_readdir+0x1b6/0x560
[   78.322983][ T6006]  iterate_dir+0x293/0xab0
[   78.323002][ T6006]  __x64_sys_getdents64+0x148/0x2c0
[   78.323034][ T6006]  ? __x64_sys_futex+0x1e1/0x4c0
[   78.323050][ T6006]  ? __x64_sys_futex+0x1ea/0x4c0
[   78.323066][ T6006]  ? __pfx___x64_sys_getdents64+0x10/0x10
[   78.323083][ T6006]  ? xfd_validate_state+0x5d/0x180
[   78.323101][ T6006]  ? __pfx_filldir64+0x10/0x10
[   78.323123][ T6006]  do_syscall_64+0xcd/0x250
[   78.323142][ T6006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.323160][ T6006] RIP: 0033:0x7fc3caf8d169
[   78.323172][ T6006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.323184][ T6006] RSP: 002b:00007fc3cbdd7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[   78.323197][ T6006] RAX: ffffffffffffffda RBX: 00007fc3cb1a5fa0 RCX: 00007fc3caf8d169
[   78.323205][ T6006] RDX: 0000000000000327 RSI: 0000000000000000 RDI: 0000000000000007
[   78.323212][ T6006] RBP: 00007fc3cb00e2a0 R08: 0000000000000000 R09: 0000000000000000
[   78.323220][ T6006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   78.323227][ T6006] R13: 0000000000000000 R14: 00007fc3cb1a5fa0 R15: 00007fff367a6448
[   78.323244][ T6006]  </TASK>
[   80.059877][ T6040] netlink: 'syz.2.35': attribute type 4 has an invalid length.
[   80.092845][ T6041] netlink: 'syz.1.36': attribute type 21 has an invalid length.
[   80.133731][ T6041] netlink: 326 bytes leftover after parsing attributes in process `syz.1.36'.
[   82.650517][    T9] cfg80211: failed to load regulatory.db
[   84.154167][ T6123] netlink: 20 bytes leftover after parsing attributes in process `syz.0.53'.
[   84.283868][ T6123] netlink: 28 bytes leftover after parsing attributes in process `syz.0.53'.
[   84.362853][ T6128] netlink: 8 bytes leftover after parsing attributes in process `syz.0.53'.
[   85.267008][ T6122] ima: policy update failed
[   85.276534][   T29] audit: type=1802 audit(6036087016.998:2): pid=6122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.53" res=0 errno=0
[   85.963147][ T6145] netlink: 93 bytes leftover after parsing attributes in process `syz.0.57'.
[   86.068427][ T6156] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8)
[   87.845381][   T29] audit: type=1326 audit(6036087019.578:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6186 comm="syz.0.67" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3f4078d169 code=0x0
[   88.821879][ T6204] process 'syz.3.69' launched '/dev/fd/3' with NULL argv: empty string added
[   88.991813][   T29] audit: type=1800 audit(6036087020.718:4): pid=6207 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.70" name="dbroot" dev="configfs" ino=9709 res=0 errno=0
[   89.108087][   T29] audit: type=1804 audit(6036087020.768:5): pid=6207 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.70" name="/newroot/sys/kernel/config/target/dbroot" dev="configfs" ino=9709 res=1 errno=0
[   90.636161][ T6249] netlink: 330 bytes leftover after parsing attributes in process `syz.1.77'.
[   90.770162][ T6249] �: renamed from hsr0 (while UP)
[   91.308460][ T6252] zswap: compressor  not available
[   93.567451][ T6293] netlink: 93 bytes leftover after parsing attributes in process `syz.3.88'.
[   94.215287][ T6302] netlink: 28 bytes leftover after parsing attributes in process `syz.3.91'.
[   95.024571][ T6320] netlink: 4 bytes leftover after parsing attributes in process `syz.1.94'.
[   95.184416][   T29] audit: type=1107 audit(6036087026.918:6): pid=6313 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[   95.248464][   T29] audit: type=1107 audit(6036087026.918:7): pid=6313 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[   97.362626][ T5847] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   97.371868][ T5847] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   97.383679][ T5847] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   97.393117][ T5847] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   97.400610][ T5847] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   97.409407][ T5847] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   97.917490][ T6354] chnl_net:caif_netlink_parms(): no params data found
[   99.116163][ T6354] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.152603][ T6354] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.159772][ T6354] bridge_slave_0: entered allmulticast mode
[   99.226774][ T6354] bridge_slave_0: entered promiscuous mode
[   99.272188][ T6354] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.332515][ T6354] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.375703][ T6354] bridge_slave_1: entered allmulticast mode
[   99.425692][ T6354] bridge_slave_1: entered promiscuous mode
[   99.448151][ T5839] Bluetooth: hci4: command tx timeout
[  100.128818][ T6354] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  100.190391][ T6354] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  100.446029][ T6382] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  100.496857][ T6382] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  100.816259][ T6382] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  101.085036][ T6382] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  101.172585][ T6382] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  101.367470][ T6382] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  101.466618][ T6354] team0: Port device team_slave_0 added
[  101.512637][ T5839] Bluetooth: hci4: command tx timeout
[  101.523525][ T6354] team0: Port device team_slave_1 added
[  101.569135][ T6382] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  101.646620][ T6382] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  101.859143][ T6382] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  102.136033][ T6382] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  102.141986][ T6382] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  102.475302][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout
[  102.508606][ T6382] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  102.591024][ T6354] batman_adv: batadv0: Adding interface: batadv_slave_0
[  102.615069][ T6354] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.716827][ T6382] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  102.723944][ T6382] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  102.784182][ T6354] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  102.848877][ T6354] batman_adv: batadv0: Adding interface: batadv_slave_1
[  102.858832][ T6391] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  102.897667][ T6354] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.993038][ T6382] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  103.073037][ T6382] CPU0 is offline.
[  103.085926][ T6354] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  103.114518][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout
[  103.536133][ T6354] hsr_slave_0: entered promiscuous mode
[  103.573390][ T6354] hsr_slave_1: entered promiscuous mode
[  103.592822][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout
[  103.610840][ T6354] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  103.651512][ T6354] Cannot create hsr debugfs directory
[  104.159142][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout
[  104.206709][ T6400] FAULT_INJECTION: forcing a failure.
[  104.206709][ T6400] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  104.307710][ T6400] CPU: 1 UID: 0 PID: 6400 Comm: syz.3.106 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  104.307732][ T6400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  104.307740][ T6400] Call Trace:
[  104.307744][ T6400]  <TASK>
[  104.307750][ T6400]  dump_stack_lvl+0x16c/0x1f0
[  104.307773][ T6400]  should_fail_ex+0x50a/0x650
[  104.307794][ T6400]  ? __pfx___might_resched+0x10/0x10
[  104.307818][ T6400]  should_fail_alloc_page+0xe7/0x130
[  104.307832][ T6400]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  104.307854][ T6400]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  104.307874][ T6400]  ? mark_lock+0xb5/0xc60
[  104.307891][ T6400]  ? __pfx_mark_lock+0x10/0x10
[  104.307909][ T6400]  ? __pfx_mark_lock+0x10/0x10
[  104.307924][ T6400]  ? __pfx_stack_trace_save+0x10/0x10
[  104.307939][ T6400]  ? stack_depot_save_flags+0x28/0x9c0
[  104.307959][ T6400]  ? rcu_is_watching+0x12/0xc0
[  104.307973][ T6400]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  104.307994][ T6400]  ? kasan_save_stack+0x42/0x60
[  104.308019][ T6400]  ? kasan_save_stack+0x33/0x60
[  104.308036][ T6400]  ? kasan_save_track+0x14/0x30
[  104.308058][ T6400]  ? hlock_class+0x4e/0x130
[  104.308072][ T6400]  ? __lock_acquire+0x15a9/0x3c40
[  104.308092][ T6400]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  104.308113][ T6400]  ? policy_nodemask+0xea/0x4e0
[  104.308163][ T6400]  alloc_pages_mpol+0x1fc/0x540
[  104.308177][ T6400]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  104.308192][ T6400]  ? lock_acquire.part.0+0x11b/0x380
[  104.308212][ T6400]  ? __pfx_filemap_map_pages+0x10/0x10
[  104.308228][ T6400]  alloc_pages_noprof+0x131/0x390
[  104.308241][ T6400]  pte_alloc_one+0x20/0x390
[  104.308260][ T6400]  __do_fault+0x320/0x490
[  104.308275][ T6400]  ? __pfx_filemap_map_pages+0x10/0x10
[  104.308290][ T6400]  do_pte_missing+0x1a8/0x3e10
[  104.308309][ T6400]  ? do_raw_spin_unlock+0x172/0x230
[  104.308323][ T6400]  ? __pmd_alloc+0x3c2/0x870
[  104.308340][ T6400]  __handle_mm_fault+0x1166/0x2c60
[  104.308364][ T6400]  ? __pfx___handle_mm_fault+0x10/0x10
[  104.308382][ T6400]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  104.308409][ T6400]  ? find_vma+0xc0/0x140
[  104.308424][ T6400]  ? __pfx_find_vma+0x10/0x10
[  104.308441][ T6400]  handle_mm_fault+0x3fa/0xaa0
[  104.308463][ T6400]  do_user_addr_fault+0x7a3/0x13f0
[  104.308484][ T6400]  exc_page_fault+0x5c/0xc0
[  104.308501][ T6400]  asm_exc_page_fault+0x26/0x30
[  104.308518][ T6400] RIP: 0010:rep_movs_alternative+0x33/0x70
[  104.308533][ T6400] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
[  104.308545][ T6400] RSP: 0018:ffffc90004b1fce0 EFLAGS: 00050202
[  104.308556][ T6400] RAX: 000004003d090000 RBX: 0000000000000028 RCX: 0000000000000028
[  104.308564][ T6400] RDX: fffff52000963fb0 RSI: ffffc90004b1fd58 RDI: 0000000000000000
[  104.308573][ T6400] RBP: 0000000000000000 R08: 0000000000000000 R09: fffff52000963faf
[  104.308581][ T6400] R10: ffffc90004b1fd7f R11: 0000000000000000 R12: ffffc90004b1fd58
[  104.308589][ T6400] R13: 0000000000000028 R14: 00007ffffffff000 R15: 0000000000000000
[  104.308606][ T6400]  _copy_to_user+0xbb/0xd0
[  104.308622][ T6400]  semctl_info.constprop.0+0x33a/0x460
[  104.308637][ T6400]  ? __pfx_semctl_info.constprop.0+0x10/0x10
[  104.308653][ T6400]  ? do_futex+0x123/0x350
[  104.308669][ T6400]  ? __pfx_do_futex+0x10/0x10
[  104.308686][ T6400]  ksys_semctl.constprop.0+0x148/0x2e0
[  104.308701][ T6400]  ? __pfx_ksys_semctl.constprop.0+0x10/0x10
[  104.308715][ T6400]  ? __x64_sys_futex+0x1e1/0x4c0
[  104.308745][ T6400]  do_syscall_64+0xcd/0x250
[  104.308763][ T6400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.308780][ T6400] RIP: 0033:0x7fc3caf8d169
[  104.308790][ T6400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.308802][ T6400] RSP: 002b:00007fc3cbdd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000042
[  104.308813][ T6400] RAX: ffffffffffffffda RBX: 00007fc3cb1a5fa0 RCX: 00007fc3caf8d169
[  104.308821][ T6400] RDX: 0000000000000013 RSI: 0000000000000bdb RDI: 0000000000000004
[  104.308829][ T6400] RBP: 00007fc3cb00e2a0 R08: 0000000000000000 R09: 0000000000000000
[  104.308836][ T6400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  104.308843][ T6400] R13: 0000000000000000 R14: 00007fc3cb1a5fa0 R15: 00007fff367a6448
[  104.308860][ T6400]  </TASK>
[  105.307616][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout
[  105.314450][ T5839] Bluetooth: hci4: command 0x0419 tx timeout
[  105.320474][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout
[  105.836112][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout
[  106.004435][ T6354] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  106.086029][ T6354] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  106.169431][ T6354] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  106.231746][ T6354] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  106.254497][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  106.496407][ T6354] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.609310][ T6354] 8021q: adding VLAN 0 to HW filter on device team0
[  106.677920][ T1035] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.685045][ T1035] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.743900][ T1035] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.751032][ T1035] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.236259][ T6415] netlink: 16 bytes leftover after parsing attributes in process `syz.3.110'.
[  107.353758][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout
[  107.359783][ T5847] Bluetooth: hci4: command 0x0419 tx timeout
[  107.368997][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout
[  107.496920][ T6354] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  107.629380][ T6354] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  107.912635][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout
[  108.319140][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  108.398043][ T6354] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.432335][ T6354] veth0_vlan: entered promiscuous mode
[  109.438625][ T5847] Bluetooth: hci4: command 0x0419 tx timeout
[  109.526927][ T6354] veth1_vlan: entered promiscuous mode
[  109.800660][ T6464] netlink: 342 bytes leftover after parsing attributes in process `syz.0.118'.
[  109.873827][ T6354] veth0_macvtap: entered promiscuous mode
[  109.881367][ T6354] veth1_macvtap: entered promiscuous mode
[  110.024651][ T6354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  110.097737][ T6354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  110.154577][ T6354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  110.240626][ T6354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  110.299431][ T6354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  110.326884][ T6471] sd 0:0:1:0: PR command failed: 1026
[  110.332303][ T6471] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  110.382562][ T6354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  110.412587][ T6471] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  110.438650][ T6354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  110.523817][ T6354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  110.637204][ T6354] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.889219][ T6354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  110.966017][ T6354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.031336][ T6354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  111.079017][ T6354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.112036][ T6354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  111.179584][ T6354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.242627][ T6354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  111.298732][ T6354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.349980][ T6354] batman_adv: batadv0: Interface activated: batadv_slave_1
[  111.439104][ T6354] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  111.503603][ T6354] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  111.513019][ T5847] Bluetooth: hci4: command 0x0419 tx timeout
[  111.556188][ T6354] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  111.609504][ T6354] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  112.068351][ T6508] netlink: 338 bytes leftover after parsing attributes in process `syz.1.127'.
[  112.153095][ T6511] netlink: 350 bytes leftover after parsing attributes in process `syz.3.128'.
[  112.263207][ T6208] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  112.271045][ T6208] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.446959][ T6208] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  112.553079][ T6208] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  113.426572][ T6533] netlink: zone id is out of range
[  113.507202][ T6533] netlink: zone id is out of range
[  113.642108][ T6533] netlink: zone id is out of range
[  113.755606][ T6533] netlink: zone id is out of range
[  113.859141][ T6533] netlink: zone id is out of range
[  113.962574][ T6533] netlink: zone id is out of range
[  114.115126][ T6533] netlink: zone id is out of range
[  114.120297][ T6533] netlink: zone id is out of range
[  114.312859][ T6533] netlink: zone id is out of range
[  114.484362][ T6533] netlink: zone id is out of range
[  115.130642][ T6556] netlink: 452 bytes leftover after parsing attributes in process `syz.0.137'.
[  115.280294][ T6561] netlink: 452 bytes leftover after parsing attributes in process `syz.0.137'.
[  115.532825][ T6559] ptrace attach of "./syz-executor exec"[6354] was attempted by "./syz-executor exec"[6559]
[  116.549324][ T6585] netlink: 222 bytes leftover after parsing attributes in process `syz.0.143'.
[  118.315249][ T6602] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.884419][ T6619] FAULT_INJECTION: forcing a failure.
[  118.884419][ T6619] name failslab, interval 1, probability 0, space 0, times 0
[  118.959375][ T6602] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.017312][ T6619] CPU: 1 UID: 0 PID: 6619 Comm: syz.4.151 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  119.017335][ T6619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  119.017351][ T6619] Call Trace:
[  119.017356][ T6619]  <TASK>
[  119.017364][ T6619]  dump_stack_lvl+0x16c/0x1f0
[  119.017397][ T6619]  should_fail_ex+0x50a/0x650
[  119.017417][ T6619]  ? fs_reclaim_acquire+0xae/0x150
[  119.017436][ T6619]  should_failslab+0xc2/0x120
[  119.017450][ T6619]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  119.017472][ T6619]  ? sysctl_route_net_init+0x42/0x2c0
[  119.017491][ T6619]  ? register_net_sysctl_sz+0x228/0x3e0
[  119.017508][ T6619]  ? __pfx_sysctl_route_net_init+0x10/0x10
[  119.017527][ T6619]  kmemdup_noprof+0x29/0x60
[  119.017543][ T6619]  sysctl_route_net_init+0x42/0x2c0
[  119.017562][ T6619]  ? __pfx_sysctl_route_net_init+0x10/0x10
[  119.017588][ T6619]  ops_init+0x1df/0x5f0
[  119.017611][ T6619]  setup_net+0x21f/0x860
[  119.017632][ T6619]  ? __pfx_setup_net+0x10/0x10
[  119.017651][ T6619]  ? down_read_killable+0xcc/0x380
[  119.017670][ T6619]  ? __pfx_down_read_killable+0x10/0x10
[  119.017687][ T6619]  ? __raw_spin_lock_init+0x3a/0x110
[  119.017709][ T6619]  ? debug_mutex_init+0x37/0x70
[  119.017725][ T6619]  copy_net_ns+0x2a6/0x5f0
[  119.017740][ T6619]  create_new_namespaces+0x3ea/0xad0
[  119.017764][ T6619]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  119.017786][ T6619]  ksys_unshare+0x45d/0xa40
[  119.017800][ T6619]  ? __pfx_ksys_unshare+0x10/0x10
[  119.017812][ T6619]  ? xfd_validate_state+0x5d/0x180
[  119.017836][ T6619]  __x64_sys_unshare+0x31/0x40
[  119.017849][ T6619]  do_syscall_64+0xcd/0x250
[  119.017867][ T6619]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.017885][ T6619] RIP: 0033:0x7fc5b1b8d169
[  119.017900][ T6619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.017912][ T6619] RSP: 002b:00007fc5b29c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  119.017924][ T6619] RAX: ffffffffffffffda RBX: 00007fc5b1da5fa0 RCX: 00007fc5b1b8d169
[  119.017933][ T6619] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  119.017941][ T6619] RBP: 00007fc5b1c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  119.017949][ T6619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  119.017956][ T6619] R13: 0000000000000000 R14: 00007fc5b1da5fa0 R15: 00007ffd2281edb8
[  119.017973][ T6619]  </TASK>
[  120.462368][ T6602] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.028773][ T6602] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.848991][ T6647] FAULT_INJECTION: forcing a failure.
[  121.848991][ T6647] name failslab, interval 1, probability 0, space 0, times 0
[  121.957627][ T6647] CPU: 1 UID: 0 PID: 6647 Comm: syz.0.157 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  121.957650][ T6647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  121.957658][ T6647] Call Trace:
[  121.957663][ T6647]  <TASK>
[  121.957668][ T6647]  dump_stack_lvl+0x16c/0x1f0
[  121.957691][ T6647]  should_fail_ex+0x50a/0x650
[  121.957713][ T6647]  ? fs_reclaim_acquire+0xae/0x150
[  121.957732][ T6647]  ? police_init_net+0x56/0x270
[  121.957746][ T6647]  should_failslab+0xc2/0x120
[  121.957760][ T6647]  __kmalloc_cache_noprof+0x68/0x410
[  121.957780][ T6647]  ? __pfx_police_init_net+0x10/0x10
[  121.957794][ T6647]  police_init_net+0x56/0x270
[  121.957808][ T6647]  ops_init+0x1df/0x5f0
[  121.957830][ T6647]  setup_net+0x21f/0x860
[  121.957850][ T6647]  ? __pfx_setup_net+0x10/0x10
[  121.957868][ T6647]  ? down_read_killable+0xcc/0x380
[  121.957887][ T6647]  ? __pfx_down_read_killable+0x10/0x10
[  121.957913][ T6647]  ? __raw_spin_lock_init+0x3a/0x110
[  121.957937][ T6647]  ? debug_mutex_init+0x37/0x70
[  121.957953][ T6647]  copy_net_ns+0x2a6/0x5f0
[  121.957968][ T6647]  create_new_namespaces+0x3ea/0xad0
[  121.957993][ T6647]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  121.958015][ T6647]  ksys_unshare+0x45d/0xa40
[  121.958029][ T6647]  ? __pfx_ksys_unshare+0x10/0x10
[  121.958041][ T6647]  ? xfd_validate_state+0x5d/0x180
[  121.958065][ T6647]  __x64_sys_unshare+0x31/0x40
[  121.958078][ T6647]  do_syscall_64+0xcd/0x250
[  121.958096][ T6647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.958114][ T6647] RIP: 0033:0x7f3f4078d169
[  121.958124][ T6647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.958136][ T6647] RSP: 002b:00007f3f4152e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  121.958149][ T6647] RAX: ffffffffffffffda RBX: 00007f3f409a6160 RCX: 00007f3f4078d169
[  121.958160][ T6647] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  121.958167][ T6647] RBP: 00007f3f4080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  121.958175][ T6647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  121.958182][ T6647] R13: 0000000000000000 R14: 00007f3f409a6160 R15: 00007fffeb844c68
[  121.958198][ T6647]  </TASK>
[  126.122241][ T6708] netlink: 'syz.0.175': attribute type 1 has an invalid length.
[  126.160996][ T6708] FAULT_INJECTION: forcing a failure.
[  126.160996][ T6708] name failslab, interval 1, probability 0, space 0, times 0
[  126.242581][ T6708] CPU: 1 UID: 0 PID: 6708 Comm: syz.0.175 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  126.242603][ T6708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  126.242612][ T6708] Call Trace:
[  126.242616][ T6708]  <TASK>
[  126.242622][ T6708]  dump_stack_lvl+0x16c/0x1f0
[  126.242645][ T6708]  should_fail_ex+0x50a/0x650
[  126.242667][ T6708]  ? fs_reclaim_acquire+0xae/0x150
[  126.242692][ T6708]  should_failslab+0xc2/0x120
[  126.242705][ T6708]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  126.242726][ T6708]  ? alloc_empty_file+0x73/0x1e0
[  126.242742][ T6708]  alloc_empty_file+0x73/0x1e0
[  126.242756][ T6708]  path_openat+0xe1/0x2d80
[  126.242773][ T6708]  ? hlock_class+0x4e/0x130
[  126.242787][ T6708]  ? __lock_acquire+0x15a9/0x3c40
[  126.242809][ T6708]  ? __pfx_path_openat+0x10/0x10
[  126.242827][ T6708]  ? __pfx___lock_acquire+0x10/0x10
[  126.242844][ T6708]  ? lock_acquire.part.0+0x11b/0x380
[  126.242861][ T6708]  ? find_held_lock+0x2d/0x110
[  126.242880][ T6708]  do_filp_open+0x20c/0x470
[  126.242898][ T6708]  ? __pfx_do_filp_open+0x10/0x10
[  126.242915][ T6708]  ? find_held_lock+0x2d/0x110
[  126.242939][ T6708]  ? alloc_fd+0x41f/0x760
[  126.242962][ T6708]  do_sys_openat2+0x17a/0x1e0
[  126.242975][ T6708]  ? __pfx_do_sys_openat2+0x10/0x10
[  126.242990][ T6708]  ? __pfx___might_resched+0x10/0x10
[  126.243014][ T6708]  __x64_sys_openat+0x175/0x210
[  126.243027][ T6708]  ? __pfx___x64_sys_openat+0x10/0x10
[  126.243047][ T6708]  do_syscall_64+0xcd/0x250
[  126.243066][ T6708]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.243084][ T6708] RIP: 0033:0x7f3f4078d169
[  126.243095][ T6708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.243107][ T6708] RSP: 002b:00007f3f41570038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  126.243120][ T6708] RAX: ffffffffffffffda RBX: 00007f3f409a5fa0 RCX: 00007f3f4078d169
[  126.243129][ T6708] RDX: 000000000002aa00 RSI: 0000400000000140 RDI: ffffffffffffff9c
[  126.243138][ T6708] RBP: 00007f3f4080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  126.243145][ T6708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  126.243152][ T6708] R13: 0000000000000000 R14: 00007f3f409a5fa0 R15: 00007fffeb844c68
[  126.243168][ T6708]  </TASK>
[  128.525357][ T6746] netlink: 8 bytes leftover after parsing attributes in process `syz.3.183'.
[  129.553019][ T6780] input: f�
 as /devices/virtual/input/input7
[  130.255935][ T6793] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(320.16384.104), cmd(3)
[  132.944727][ T6834] ovs���9��: entered promiscuous mode
[  133.202944][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  133.209237][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  133.594800][ T6217] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.307381][ T6217] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.631749][ T6217] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.024985][ T6217] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.210698][ T6858] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  135.245610][ T6858] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  135.308111][ T6858] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  135.415804][ T6858] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  135.421774][ T6858] CPU0 is offline.
[  135.576567][ T6217] bridge_slave_1: left allmulticast mode
[  135.630744][ T6217] bridge_slave_1: left promiscuous mode
[  135.673792][ T6217] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.054630][ T6217] bridge_slave_0: left allmulticast mode
[  136.121584][ T6217] bridge_slave_0: left promiscuous mode
[  136.151456][ T6217] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.633490][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout
[  136.729514][ T6897] futex_wake_op: syz.0.211 tries to shift op by 64; fix this program
[  137.006547][ T6899] netlink: 12 bytes leftover after parsing attributes in process `syz.3.217'.
[  137.272742][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout
[  137.354627][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  137.450625][ T5847] Bluetooth: hci4: command 0x0419 tx timeout
[  138.585970][ T6217] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  138.652917][ T6217] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  138.712954][ T6217] bond0 (unregistering): Released all slaves
[  140.129543][ T6969] Invalid ELF header magic: != ELF
[  140.537487][ T6217] hsr_slave_0: left promiscuous mode
[  140.595827][ T6217] hsr_slave_1: left promiscuous mode
[  140.619262][ T6217] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  140.685788][ T6217] batman_adv: batadv0: Removing interface: batadv_slave_0
[  140.720313][ T6996] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  140.735341][ T6996] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  140.772679][ T6996] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  140.789076][ T6996] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  140.812840][ T6996] CPU0 is offline.
[  140.827430][ T6217] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  140.866500][ T6217] batman_adv: batadv0: Removing interface: batadv_slave_1
[  141.012562][ T6217] veth1_macvtap: left promiscuous mode
[  141.041701][ T6217] veth0_macvtap: left promiscuous mode
[  141.073378][ T6217] veth1_vlan: left promiscuous mode
[  141.099393][ T6217] veth0_vlan: left promiscuous mode
[  142.073805][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout
[  142.305910][ T6217] team0 (unregistering): Port device team_slave_1 removed
[  142.389866][ T6217] team0 (unregistering): Port device team_slave_0 removed
[  142.796645][ T5847] Bluetooth: hci4: command 0x0419 tx timeout
[  142.802967][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout
[  142.808967][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout
[  142.989854][ T6992] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  143.126133][ T6992] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  143.132133][ T6992] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  143.254672][ T6992] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  143.317435][ T6992] CPU0 is offline.
[  143.454050][ T7032] netlink: 20 bytes leftover after parsing attributes in process `syz.4.231'.
[  143.625989][ T7056] syz.1.233 uses obsolete (PF_INET,SOCK_PACKET)
[  145.032587][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout
[  145.192705][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  145.198753][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout
[  145.272597][ T5847] Bluetooth: hci4: command 0x0419 tx timeout
[  145.410939][ T7089] Invalid ELF header magic: != ELF
[  145.912985][ T7136] program syz.4.244 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  146.056029][ T7136] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  146.438634][ T7150] netlink: 4 bytes leftover after parsing attributes in process `syz.1.247'.
[  146.620797][ T7152] =======================================================
[  146.620797][ T7152] WARNING: The mand mount option has been deprecated and
[  146.620797][ T7152]          and is ignored by this kernel. Remove the mand
[  146.620797][ T7152]          option from the mount to silence this warning.
[  146.620797][ T7152] =======================================================
[  146.788307][ T7156] netlink: 24 bytes leftover after parsing attributes in process `syz.1.250'.
[  147.905405][ T7176] netlink: 8 bytes leftover after parsing attributes in process `syz.1.253'.
[  149.527164][   T25] Process accounting resumed
[  150.036458][ T7251] netlink: 32 bytes leftover after parsing attributes in process `syz.3.268'.
[  150.327772][   T29] audit: type=1800 audit(6036087082.058:8): pid=7263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.269" name="features" dev="configfs" ino=15072 res=0 errno=0
[  151.505941][ T7274] netlink: 28 bytes leftover after parsing attributes in process `syz.1.272'.
[  151.552902][ T7284] netlink: 186 bytes leftover after parsing attributes in process `syz.4.276'.
[  151.668415][ T7285] netlink: 186 bytes leftover after parsing attributes in process `syz.4.276'.
[  151.974244][ T7297] netlink: 280 bytes leftover after parsing attributes in process `syz.3.277'.
[  152.712305][ T7310] FAULT_INJECTION: forcing a failure.
[  152.712305][ T7310] name failslab, interval 1, probability 0, space 0, times 0
[  152.808079][ T7310] CPU: 1 UID: 0 PID: 7310 Comm: syz.0.279 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  152.808101][ T7310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  152.808109][ T7310] Call Trace:
[  152.808114][ T7310]  <TASK>
[  152.808119][ T7310]  dump_stack_lvl+0x16c/0x1f0
[  152.808142][ T7310]  should_fail_ex+0x50a/0x650
[  152.808162][ T7310]  ? fs_reclaim_acquire+0xae/0x150
[  152.808181][ T7310]  should_failslab+0xc2/0x120
[  152.808194][ T7310]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  152.808213][ T7310]  ? copy_sighand+0x43/0x2c0
[  152.808234][ T7310]  copy_sighand+0x43/0x2c0
[  152.808252][ T7310]  copy_process+0x272c/0x8c50
[  152.808264][ T7310]  ? plist_add+0x458/0x600
[  152.808277][ T7310]  ? lock_acquire+0x2f/0xb0
[  152.808294][ T7310]  ? schedule+0x1fd/0x350
[  152.808310][ T7310]  ? futex_wake_op+0xd00/0xd30
[  152.808334][ T7310]  ? __pfx_copy_process+0x10/0x10
[  152.808345][ T7310]  ? __pfx___futex_wait+0x10/0x10
[  152.808366][ T7310]  ? __pfx_futex_wake_mark+0x10/0x10
[  152.808392][ T7310]  kernel_clone+0xfd/0x960
[  152.808405][ T7310]  ? __pfx_kernel_clone+0x10/0x10
[  152.808426][ T7310]  __do_sys_clone+0xcf/0x120
[  152.808437][ T7310]  ? __pfx___do_sys_clone+0x10/0x10
[  152.808457][ T7310]  ? rcu_is_watching+0x12/0xc0
[  152.808475][ T7310]  do_syscall_64+0xcd/0x250
[  152.808493][ T7310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.808511][ T7310] RIP: 0033:0x7f3f4078d169
[  152.808521][ T7310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.808533][ T7310] RSP: 002b:00007f3f4156ffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  152.808546][ T7310] RAX: ffffffffffffffda RBX: 00007f3f409a5fa0 RCX: 00007f3f4078d169
[  152.808554][ T7310] RDX: 0000000000000000 RSI: 0000000000000040 RDI: 0000000000000000
[  152.808562][ T7310] RBP: 00007f3f4080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  152.808569][ T7310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  152.808576][ T7310] R13: 0000000000000000 R14: 00007f3f409a5fa0 R15: 00007fffeb844c68
[  152.808592][ T7310]  </TASK>
[  153.019542][    C1] vkms_vblank_simulate: vblank timer overrun
[  154.667482][ T7371] usb usb15: usbfs: process 7371 (syz.4.291) did not claim interface 0 before use
[  155.975452][ T5847] Bluetooth: hci1: Unable to find connection for big 0xd2
[  156.100053][ T7416] netlink: 146 bytes leftover after parsing attributes in process `syz.4.300'.
[  156.813191][ T7413] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  156.830276][ T7413] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  156.863890][ T7413] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  156.893017][ T7413] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  156.899998][ T7413] CPU0 is offline.
[  156.948779][ T7436] FAULT_INJECTION: forcing a failure.
[  156.948779][ T7436] name failslab, interval 1, probability 0, space 0, times 0
[  157.208041][ T7436] CPU: 1 UID: 0 PID: 7436 Comm: syz.3.303 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  157.208068][ T7436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  157.208077][ T7436] Call Trace:
[  157.208081][ T7436]  <TASK>
[  157.208087][ T7436]  dump_stack_lvl+0x16c/0x1f0
[  157.208111][ T7436]  should_fail_ex+0x50a/0x650
[  157.208132][ T7436]  ? fs_reclaim_acquire+0xae/0x150
[  157.208152][ T7436]  ? single_open+0x4d/0x1f0
[  157.208165][ T7436]  should_failslab+0xc2/0x120
[  157.208178][ T7436]  __kmalloc_cache_noprof+0x68/0x410
[  157.208196][ T7436]  ? __pfx_hook_file_open+0x10/0x10
[  157.208214][ T7436]  ? __pfx_tracing_clock_show+0x10/0x10
[  157.208227][ T7436]  single_open+0x4d/0x1f0
[  157.208241][ T7436]  tracing_clock_open+0xa7/0x100
[  157.208260][ T7436]  do_dentry_open+0x735/0x1c40
[  157.208290][ T7436]  ? __pfx_tracing_clock_open+0x10/0x10
[  157.208309][ T7436]  ? inode_permission+0xdd/0x5f0
[  157.208326][ T7436]  vfs_open+0x82/0x3f0
[  157.208338][ T7436]  ? may_open+0x1f2/0x400
[  157.208354][ T7436]  path_openat+0x1e88/0x2d80
[  157.208378][ T7436]  ? __pfx_path_openat+0x10/0x10
[  157.208396][ T7436]  ? __pfx___lock_acquire+0x10/0x10
[  157.208413][ T7436]  ? lock_acquire.part.0+0x11b/0x380
[  157.208430][ T7436]  ? find_held_lock+0x2d/0x110
[  157.208446][ T7436]  do_filp_open+0x20c/0x470
[  157.208477][ T7436]  ? __pfx_do_filp_open+0x10/0x10
[  157.208496][ T7436]  ? find_held_lock+0x2d/0x110
[  157.208521][ T7436]  ? alloc_fd+0x41f/0x760
[  157.208544][ T7436]  do_sys_openat2+0x17a/0x1e0
[  157.208558][ T7436]  ? __pfx_do_sys_openat2+0x10/0x10
[  157.208579][ T7436]  __x64_sys_openat+0x175/0x210
[  157.208593][ T7436]  ? __pfx___x64_sys_openat+0x10/0x10
[  157.208613][ T7436]  do_syscall_64+0xcd/0x250
[  157.208632][ T7436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.208650][ T7436] RIP: 0033:0x7fc3caf8d169
[  157.208661][ T7436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.208674][ T7436] RSP: 002b:00007fc3cbdd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  157.208687][ T7436] RAX: ffffffffffffffda RBX: 00007fc3cb1a5fa0 RCX: 00007fc3caf8d169
[  157.208696][ T7436] RDX: 0000000000022500 RSI: 0000400000000080 RDI: ffffffffffffff9c
[  157.208703][ T7436] RBP: 00007fc3cb00e2a0 R08: 0000000000000000 R09: 0000000000000000
[  157.208711][ T7436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  157.208718][ T7436] R13: 0000000000000000 R14: 00007fc3cb1a5fa0 R15: 00007fff367a6448
[  157.208734][ T7436]  </TASK>
[  157.458760][    C1] vkms_vblank_simulate: vblank timer overrun
[  157.935084][ T7450] FAULT_INJECTION: forcing a failure.
[  157.935084][ T7450] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  158.011797][ T7450] CPU: 1 UID: 0 PID: 7450 Comm: syz.1.306 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  158.011820][ T7450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  158.011828][ T7450] Call Trace:
[  158.011832][ T7450]  <TASK>
[  158.011837][ T7450]  dump_stack_lvl+0x16c/0x1f0
[  158.011861][ T7450]  should_fail_ex+0x50a/0x650
[  158.011881][ T7450]  ? __pfx___might_resched+0x10/0x10
[  158.011903][ T7450]  should_fail_alloc_page+0xe7/0x130
[  158.011917][ T7450]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  158.011935][ T7450]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  158.011953][ T7450]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  158.011973][ T7450]  ? unwind_get_return_address+0x59/0xa0
[  158.011993][ T7450]  ? arch_stack_walk+0xa7/0x100
[  158.012009][ T7450]  ? hlock_class+0x4e/0x130
[  158.012022][ T7450]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  158.012048][ T7450]  ? __pfx___lock_acquire+0x10/0x10
[  158.012064][ T7450]  ? kasan_save_stack+0x42/0x60
[  158.012081][ T7450]  ? kasan_save_stack+0x33/0x60
[  158.012097][ T7450]  ? kasan_save_track+0x14/0x30
[  158.012114][ T7450]  ? __kasan_slab_alloc+0x89/0x90
[  158.012131][ T7450]  ? kmem_cache_alloc_node_noprof+0x223/0x3c0
[  158.012149][ T7450]  ? alloc_vmap_area+0x636/0x2a60
[  158.012163][ T7450]  ? __get_vm_area_node+0x19e/0x2f0
[  158.012177][ T7450]  ? __vmalloc_node_range_noprof+0x26a/0x1530
[  158.012194][ T7450]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  158.012214][ T7450]  ? policy_nodemask+0xea/0x4e0
[  158.012236][ T7450]  alloc_pages_mpol+0x1fc/0x540
[  158.012248][ T7450]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  158.012259][ T7450]  ? __page_table_check_ptes_set+0x16b/0x3e0
[  158.012279][ T7450]  ? do_raw_spin_lock+0x12d/0x2c0
[  158.012291][ T7450]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  158.012305][ T7450]  alloc_pages_noprof+0x131/0x390
[  158.012316][ T7450]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  158.012334][ T7450]  get_free_pages_noprof+0xc/0x40
[  158.012347][ T7450]  kasan_populate_vmalloc_pte+0x2d/0x160
[  158.012364][ T7450]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  158.012381][ T7450]  __apply_to_page_range+0x5fd/0xd30
[  158.012399][ T7450]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  158.012428][ T7450]  ? __pfx___apply_to_page_range+0x10/0x10
[  158.012446][ T7450]  ? insert_vmap_area+0x2ef/0x4d0
[  158.012462][ T7450]  alloc_vmap_area+0x93e/0x2a60
[  158.012483][ T7450]  ? __pfx_alloc_vmap_area+0x10/0x10
[  158.012502][ T7450]  __get_vm_area_node+0x19e/0x2f0
[  158.012521][ T7450]  __vmalloc_node_range_noprof+0x26a/0x1530
[  158.012538][ T7450]  ? htab_map_alloc+0x93f/0x17b0
[  158.012559][ T7450]  ? find_held_lock+0x2d/0x110
[  158.012572][ T7450]  ? htab_map_alloc+0x93f/0x17b0
[  158.012589][ T7450]  ? __percpu_counter_init_many+0x2c1/0x3b0
[  158.012609][ T7450]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  158.012629][ T7450]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  158.012647][ T7450]  ? htab_map_alloc+0x93f/0x17b0
[  158.012662][ T7450]  __bpf_map_area_alloc+0xea/0x190
[  158.012675][ T7450]  ? htab_map_alloc+0x93f/0x17b0
[  158.012692][ T7450]  htab_map_alloc+0x93f/0x17b0
[  158.012714][ T7450]  ? ns_capable+0xd7/0x110
[  158.012733][ T7450]  map_create+0x5c5/0x1d20
[  158.012752][ T7450]  ? __pfx_lock_release+0x10/0x10
[  158.012769][ T7450]  ? trace_lock_acquire+0x14e/0x1f0
[  158.012783][ T7450]  ? __pfx_map_create+0x10/0x10
[  158.012800][ T7450]  ? lock_acquire+0x2f/0xb0
[  158.012815][ T7450]  ? __might_fault+0xe3/0x190
[  158.012828][ T7450]  ? __might_fault+0xe3/0x190
[  158.012844][ T7450]  __sys_bpf+0x4391/0x49c0
[  158.012861][ T7450]  ? __pfx_futex_wake+0x10/0x10
[  158.012880][ T7450]  ? __pfx___sys_bpf+0x10/0x10
[  158.012898][ T7450]  ? vfs_write+0x306/0x1150
[  158.012915][ T7450]  ? fdget_pos+0x267/0x390
[  158.012936][ T7450]  ? do_futex+0x123/0x350
[  158.012951][ T7450]  ? __pfx_do_futex+0x10/0x10
[  158.012972][ T7450]  ? xfd_validate_state+0x5d/0x180
[  158.012990][ T7450]  ? rcu_is_watching+0x12/0xc0
[  158.013006][ T7450]  __x64_sys_bpf+0x78/0xc0
[  158.013017][ T7450]  ? lockdep_hardirqs_on+0x7c/0x110
[  158.013033][ T7450]  do_syscall_64+0xcd/0x250
[  158.013050][ T7450]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.013068][ T7450] RIP: 0033:0x7f8345b8d169
[  158.013078][ T7450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.013090][ T7450] RSP: 002b:00007f83439f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  158.013102][ T7450] RAX: ffffffffffffffda RBX: 00007f8345da5fa0 RCX: 00007f8345b8d169
[  158.013111][ T7450] RDX: 00000000000006f3 RSI: 00004000000011c0 RDI: 0000000000000000
[  158.013118][ T7450] RBP: 00007f8345c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  158.013125][ T7450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  158.013132][ T7450] R13: 0000000000000000 R14: 00007f8345da5fa0 R15: 00007fff2ebae138
[  158.013148][ T7450]  </TASK>
[  158.480729][    C1] vkms_vblank_simulate: vblank timer overrun
[  159.011544][ T5848] Bluetooth: hci1: command 0x0c1a tx timeout
[  159.018234][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout
[  159.025120][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout
[  159.031138][ T5848] Bluetooth: hci4: command 0x0419 tx timeout
[  159.412692][   T29] audit: type=1800 audit(6036087091.058:9): pid=7464 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.309" name="discovery_nqn" dev="configfs" ino=16084 res=0 errno=0
[  163.481942][ T7530] netlink: 12 bytes leftover after parsing attributes in process `syz.4.321'.
[  165.560135][ T7599] net_ratelimit: 2 callbacks suppressed
[  165.560149][ T7599] Dead loop on virtual device ip6_vti0, fix it urgently!
[  166.244356][ T7599] Dead loop on virtual device ip6_vti0, fix it urgently!
[  166.340807][ T7606] Dead loop on virtual device ip6_vti0, fix it urgently!
[  166.406008][ T7599] Dead loop on virtual device ip6_vti0, fix it urgently!
[  166.542754][ T7606] Dead loop on virtual device ip6_vti0, fix it urgently!
[  166.550035][ T7606] Dead loop on virtual device ip6_vti0, fix it urgently!
[  166.759883][ T7606] Dead loop on virtual device ip6_vti0, fix it urgently!
[  166.832547][ T7606] Dead loop on virtual device ip6_vti0, fix it urgently!
[  166.942843][ T7606] Dead loop on virtual device ip6_vti0, fix it urgently!
[  167.102853][ T7606] Dead loop on virtual device ip6_vti0, fix it urgently!
[  167.153881][ T7635] Invalid ELF header magic: != ELF
[  167.379104][ T7640] capability: warning: `syz.3.337' uses 32-bit capabilities (legacy support in use)
[  168.315778][ T7662] sp0: Synchronizing with TNC
[  169.035020][ T7688] bond0: option num_grat_arp: invalid value ()
[  169.041393][ T7688] bond0: option num_grat_arp: allowed values 0 - 255
[  169.582601][ T7688] bond0: option num_grat_arp: invalid value ()
[  169.683691][ T7688] bond0: option num_grat_arp: allowed values 0 - 255
[  169.772750][ T7688] bond0: option num_grat_arp: invalid value ()
[  169.833862][ T7688] bond0: option num_grat_arp: allowed values 0 - 255
[  170.610373][ T7740] netlink: 28 bytes leftover after parsing attributes in process `syz.4.350'.
[  170.830541][ T7740] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  171.550588][ T7740] batman_adv: batadv0: Removing interface: batadv_slave_0
[  173.700519][ T5847] Bluetooth: hci0: unexpected event 0x32 length: 10 > 9
[  173.956370][ T7818] Invalid ELF header magic: != ELF
[  174.380030][ T7818] syz.1.362 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  174.644207][ T7842] FAULT_INJECTION: forcing a failure.
[  174.644207][ T7842] name failslab, interval 1, probability 0, space 0, times 0
[  174.773781][ T7842] CPU: 1 UID: 0 PID: 7842 Comm: syz.3.365 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  174.773802][ T7842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  174.773811][ T7842] Call Trace:
[  174.773816][ T7842]  <TASK>
[  174.773822][ T7842]  dump_stack_lvl+0x16c/0x1f0
[  174.773846][ T7842]  should_fail_ex+0x50a/0x650
[  174.773867][ T7842]  ? fs_reclaim_acquire+0xae/0x150
[  174.773886][ T7842]  should_failslab+0xc2/0x120
[  174.773899][ T7842]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  174.773918][ T7842]  ? do_raw_spin_unlock+0x172/0x230
[  174.773932][ T7842]  ? prepare_kernel_cred+0x37/0x6b0
[  174.773951][ T7842]  prepare_kernel_cred+0x37/0x6b0
[  174.773969][ T7842]  _request_firmware+0x3b0/0x1470
[  174.773993][ T7842]  ? __rtnl_unlock+0x68/0xf0
[  174.774014][ T7842]  ? netdev_run_todo+0x877/0x1320
[  174.774035][ T7842]  ? __pfx__request_firmware+0x10/0x10
[  174.774055][ T7842]  ? __pfx_netdev_run_todo+0x10/0x10
[  174.774075][ T7842]  ? __pfx___mutex_lock+0x10/0x10
[  174.774099][ T7842]  request_firmware+0x35/0x50
[  174.774120][ T7842]  reg_reload_regdb+0x8a/0x460
[  174.774140][ T7842]  ? __pfx_reg_reload_regdb+0x10/0x10
[  174.774160][ T7842]  ? nl80211_pre_doit+0x1b0/0xb10
[  174.774177][ T7842]  genl_family_rcv_msg_doit+0x202/0x2f0
[  174.774199][ T7842]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  174.774219][ T7842]  ? trace_cap_capable+0x1a2/0x210
[  174.774238][ T7842]  ? bpf_lsm_capable+0x9/0x10
[  174.774251][ T7842]  ? security_capable+0x7e/0x260
[  174.774267][ T7842]  genl_rcv_msg+0x565/0x800
[  174.774289][ T7842]  ? __pfx_genl_rcv_msg+0x10/0x10
[  174.774309][ T7842]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  174.774322][ T7842]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[  174.774349][ T7842]  ? __pfx_nl80211_post_doit+0x10/0x10
[  174.774376][ T7842]  netlink_rcv_skb+0x16b/0x440
[  174.774394][ T7842]  ? __pfx_genl_rcv_msg+0x10/0x10
[  174.774415][ T7842]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  174.774441][ T7842]  ? down_read+0xc9/0x330
[  174.774459][ T7842]  ? __pfx_down_read+0x10/0x10
[  174.774477][ T7842]  ? netlink_deliver_tap+0x1ae/0xd30
[  174.774496][ T7842]  genl_rcv+0x28/0x40
[  174.774513][ T7842]  netlink_unicast+0x53c/0x7f0
[  174.774533][ T7842]  ? __pfx_netlink_unicast+0x10/0x10
[  174.774551][ T7842]  ? __phys_addr_symbol+0x30/0x80
[  174.774564][ T7842]  ? __check_object_size+0x488/0x710
[  174.774580][ T7842]  netlink_sendmsg+0x8b8/0xd70
[  174.774600][ T7842]  ? __pfx_netlink_sendmsg+0x10/0x10
[  174.774624][ T7842]  ____sys_sendmsg+0xaaf/0xc90
[  174.774639][ T7842]  ? copy_msghdr_from_user+0x10b/0x160
[  174.774658][ T7842]  ? __pfx_____sys_sendmsg+0x10/0x10
[  174.774675][ T7842]  ? try_to_wake_up+0x158/0x1490
[  174.774696][ T7842]  ___sys_sendmsg+0x135/0x1e0
[  174.774716][ T7842]  ? __pfx____sys_sendmsg+0x10/0x10
[  174.774750][ T7842]  ? do_futex+0x123/0x350
[  174.774770][ T7842]  __sys_sendmsg+0x16e/0x220
[  174.774789][ T7842]  ? __pfx___sys_sendmsg+0x10/0x10
[  174.774807][ T7842]  ? native_tss_update_io_bitmap+0x3cc/0x730
[  174.774836][ T7842]  do_syscall_64+0xcd/0x250
[  174.774855][ T7842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.774873][ T7842] RIP: 0033:0x7fc3caf8d169
[  174.774885][ T7842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.774897][ T7842] RSP: 002b:00007fc3cbdb6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  174.774910][ T7842] RAX: ffffffffffffffda RBX: 00007fc3cb1a6080 RCX: 00007fc3caf8d169
[  174.774919][ T7842] RDX: 0000000000000000 RSI: 0000400000000580 RDI: 0000000000000008
[  174.774927][ T7842] RBP: 00007fc3cb00e2a0 R08: 0000000000000000 R09: 0000000000000000
[  174.774935][ T7842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  174.774942][ T7842] R13: 0000000000000000 R14: 00007fc3cb1a6080 R15: 00007fff367a6448
[  174.774959][ T7842]  </TASK>
[  175.757823][ T7853] usb usb28: usbfs: process 7853 (syz.0.367) did not claim interface 1 before use
[  177.763241][ T7893] netlink: 350 bytes leftover after parsing attributes in process `syz.4.373'.
[  178.410512][ T7912] netlink: 326 bytes leftover after parsing attributes in process `syz.4.380'.
[  178.540444][ T7923] syz.0.381: vmalloc error: size 32768, failed to allocate pages, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  178.772194][ T7923] CPU: 1 UID: 0 PID: 7923 Comm: syz.0.381 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  178.772217][ T7923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  178.772226][ T7923] Call Trace:
[  178.772230][ T7923]  <TASK>
[  178.772236][ T7923]  dump_stack_lvl+0x16c/0x1f0
[  178.772259][ T7923]  warn_alloc+0x24d/0x3a0
[  178.772280][ T7923]  ? __pfx_warn_alloc+0x10/0x10
[  178.772301][ T7923]  ? __pfx_lock_release+0x10/0x10
[  178.772320][ T7923]  ? rcu_is_watching+0x12/0xc0
[  178.772335][ T7923]  ? __mod_memcg_state+0x419/0x5d0
[  178.772358][ T7923]  __vmalloc_node_range_noprof+0x12bd/0x1530
[  178.772381][ T7923]  ? kvm_dev_ioctl+0x151/0x1a90
[  178.772404][ T7923]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  178.772422][ T7923]  ? __pfx_snprintf+0x10/0x10
[  178.772442][ T7923]  ? _raw_spin_unlock+0x28/0x50
[  178.772456][ T7923]  ? alloc_fd+0x41f/0x760
[  178.772474][ T7923]  ? kvm_dev_ioctl+0x151/0x1a90
[  178.772495][ T7923]  __vmalloc_noprof+0x6d/0x90
[  178.772512][ T7923]  ? kvm_dev_ioctl+0x151/0x1a90
[  178.772531][ T7923]  kvm_dev_ioctl+0x151/0x1a90
[  178.772552][ T7923]  ? __pfx_lock_release+0x10/0x10
[  178.772568][ T7923]  ? trace_lock_acquire+0x14e/0x1f0
[  178.772583][ T7923]  ? __pfx___might_resched+0x10/0x10
[  178.772603][ T7923]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  178.772625][ T7923]  ? __fget_files+0x206/0x3a0
[  178.772644][ T7923]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  178.772665][ T7923]  __x64_sys_ioctl+0x190/0x200
[  178.772681][ T7923]  do_syscall_64+0xcd/0x250
[  178.772699][ T7923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.772717][ T7923] RIP: 0033:0x7f3f4078d169
[  178.772728][ T7923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.772741][ T7923] RSP: 002b:00007f3f41570038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  178.772753][ T7923] RAX: ffffffffffffffda RBX: 00007f3f409a5fa0 RCX: 00007f3f4078d169
[  178.772762][ T7923] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008
[  178.772769][ T7923] RBP: 00007f3f4080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  178.772776][ T7923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  178.772783][ T7923] R13: 0000000000000000 R14: 00007f3f409a5fa0 R15: 00007fffeb844c68
[  178.772799][ T7923]  </TASK>
[  180.025167][ T7941] net_ratelimit: 6 callbacks suppressed
[  180.025180][ T7941] openvswitch: netlink: Flow key attribute not present in set flow.
[  180.553868][ T7932] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  180.642837][ T7932] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  180.752611][ T7932] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  180.817124][ T7932] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  180.857802][ T7932] CPU0 is offline.
[  181.321661][ T7964] bridge0: port 3(hsr0) entered blocking state
[  181.382037][ T7964] bridge0: port 3(hsr0) entered disabled state
[  181.403680][ T7923] Mem-Info:
[  181.406836][ T7923] active_anon:92243 inactive_anon:0 isolated_anon:0
[  181.406836][ T7923]  active_file:6781 inactive_file:51523 isolated_file:0
[  181.406836][ T7923]  unevictable:768 dirty:554 writeback:0
[  181.406836][ T7923]  slab_reclaimable:10668 slab_unreclaimable:96398
[  181.406836][ T7923]  mapped:42751 shmem:83715 pagetables:1102
[  181.406836][ T7923]  sec_pagetables:0 bounce:0
[  181.406836][ T7923]  kernel_misc_reclaimable:0
[  181.406836][ T7923]  free:1240695 free_pcp:3419 free_cma:0
[  181.479256][ T7964] hsr0: entered allmulticast mode
[  181.524874][ T7964] hsr_slave_0: entered allmulticast mode
[  181.564315][ T7964] hsr_slave_1: entered allmulticast mode
[  181.616178][ T7964] hsr0: entered promiscuous mode
[  181.657987][ T7964] bridge0: port 3(hsr0) entered blocking state
[  181.664517][ T7964] bridge0: port 3(hsr0) entered forwarding state
[  181.910878][ T7923] Node 0 active_anon:380100kB inactive_anon:0kB active_file:27124kB inactive_file:206020kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:173864kB dirty:2212kB writeback:0kB shmem:345752kB shmem_thp:2048kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12848kB pagetables:4512kB sec_pagetables:0kB all_unreclaimable? no
[  181.970399][   T29] audit: type=1800 audit(6036087113.698:10): pid=7968 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.388" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0
[  182.152597][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout
[  182.220129][ T7923] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  182.518835][ T7923] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  182.641374][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout
[  182.712576][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  182.792668][ T5847] Bluetooth: hci4: command 0x0419 tx timeout
[  182.826299][ T7923] lowmem_reserve[]: 0 2487 2487 0 0
[  182.866608][ T7923] Node 0 DMA32 free:1041052kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB active_anon:379736kB inactive_anon:0kB active_file:27124kB inactive_file:205936kB unevictable:1536kB writepending:2220kB present:3129332kB managed:2547528kB mlocked:0kB bounce:0kB free_pcp:2240kB local_pcp:2240kB free_cma:0kB
[  183.181249][ T7923] lowmem_reserve[]: 0 0 0 0 0
[  183.232607][ T7923] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:96kB unevictable:0kB writepending:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB
[  183.504303][ T7923] lowmem_reserve[]: 0 0 0 0 0
[  183.556405][ T7923] Node 1 Normal free:3901464kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:6888kB local_pcp:6888kB free_cma:0kB
[  183.912601][ T7923] lowmem_reserve[]: 0 0 0 0 0
[  183.953088][ T7994] netlink: 198 bytes leftover after parsing attributes in process `syz.4.395'.
[  183.976361][ T7923] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  184.012203][ T7994] FAULT_INJECTION: forcing a failure.
[  184.012203][ T7994] name fail_futex, interval 1, probability 0, space 0, times 1
[  184.075468][ T7994] CPU: 1 UID: 0 PID: 7994 Comm: syz.4.395 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  184.075489][ T7994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  184.075498][ T7994] Call Trace:
[  184.075502][ T7994]  <TASK>
[  184.075507][ T7994]  dump_stack_lvl+0x16c/0x1f0
[  184.075530][ T7994]  should_fail_ex+0x50a/0x650
[  184.075554][ T7994]  get_futex_key+0x4a3/0x1000
[  184.075572][ T7994]  ? __pfx_get_futex_key+0x10/0x10
[  184.075588][ T7994]  ? __pfx_folios_put_refs+0x10/0x10
[  184.075606][ T7994]  ? __pfx___lock_acquire+0x10/0x10
[  184.075625][ T7994]  futex_wait_setup+0x78/0x290
[  184.075652][ T7994]  __futex_wait+0x267/0x3c0
[  184.075672][ T7994]  ? __pfx___futex_wait+0x10/0x10
[  184.075703][ T7994]  ? __pfx_futex_wake_mark+0x10/0x10
[  184.075725][ T7994]  ? __up_read+0x1fb/0x760
[  184.075749][ T7994]  futex_wait+0xe9/0x380
[  184.075767][ T7994]  ? __pfx_futex_wait+0x10/0x10
[  184.075790][ T7994]  ? __pfx___mm_populate+0x10/0x10
[  184.075815][ T7994]  do_futex+0x22b/0x350
[  184.075830][ T7994]  ? __pfx_do_futex+0x10/0x10
[  184.075846][ T7994]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  184.075866][ T7994]  __x64_sys_futex+0x1e1/0x4c0
[  184.075884][ T7994]  ? __pfx___x64_sys_futex+0x10/0x10
[  184.075898][ T7994]  ? ksys_mmap_pgoff+0x85/0x5c0
[  184.075914][ T7994]  ? rcu_is_watching+0x12/0xc0
[  184.075933][ T7994]  do_syscall_64+0xcd/0x250
[  184.075951][ T7994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.075969][ T7994] RIP: 0033:0x7fc5b1b8d169
[  184.075980][ T7994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.075993][ T7994] RSP: 002b:00007fc5b29c00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  184.076006][ T7994] RAX: ffffffffffffffda RBX: 00007fc5b1da5fa8 RCX: 00007fc5b1b8d169
[  184.076015][ T7994] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc5b1da5fa8
[  184.076022][ T7994] RBP: 00007fc5b1da5fa0 R08: 0000000000000000 R09: 0000000000000000
[  184.076030][ T7994] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc5b1da5fac
[  184.076038][ T7994] R13: 0000000000000000 R14: 00007ffd2281ecd0 R15: 00007ffd2281edb8
[  184.076053][ T7994]  </TASK>
[  184.390398][ T7923] Node 0 DMA32: 3829*4kB (UME) 920*8kB (UM) 337*16kB (UM) 260*32kB (UME) 271*64kB (UME) 121*128kB (UM) 73*256kB (UM) 40*512kB (UME) 13*1024kB (UME) 2*2048kB (UM) 233*4096kB (M) = 1080164kB
[  184.411134][ T7923] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  184.422732][ T7923] Node 1 Normal: 176*4kB (UME) 49*8kB (UM) 43*16kB (UM) 191*32kB (UME) 101*64kB (UME) 30*128kB (UME) 11*256kB (UME) 7*512kB (UM) 4*1024kB (UME) 1*2048kB (E) 945*4096kB (M) = 3901464kB
[  184.441876][ T7923] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  184.451519][ T7923] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  184.460883][ T7923] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  184.470518][ T7923] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  184.479883][ T7923] 127268 total pagecache pages
[  184.484669][ T7923] 0 pages in swap cache
[  184.488804][ T7923] Free swap  = 124836kB
[  184.493009][ T7923] Total swap = 124996kB
[  184.497147][ T7923] 2097051 pages RAM
[  184.500932][ T7923] 0 pages HighMem/MovableOnly
[  184.505629][ T7923] 428511 pages reserved
[  184.509765][ T7923] 0 pages cma reserved
[  186.690303][ T8035] FAULT_INJECTION: forcing a failure.
[  186.690303][ T8035] name failslab, interval 1, probability 0, space 0, times 0
[  186.748956][ T8035] CPU: 1 UID: 0 PID: 8035 Comm: syz.0.403 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  186.748980][ T8035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  186.748988][ T8035] Call Trace:
[  186.748992][ T8035]  <TASK>
[  186.748998][ T8035]  dump_stack_lvl+0x16c/0x1f0
[  186.749021][ T8035]  should_fail_ex+0x50a/0x650
[  186.749043][ T8035]  ? fs_reclaim_acquire+0xae/0x150
[  186.749061][ T8035]  ? constrain_params_by_rules+0x176/0xca0
[  186.749077][ T8035]  should_failslab+0xc2/0x120
[  186.749090][ T8035]  __kmalloc_noprof+0xcb/0x510
[  186.749109][ T8035]  ? hlock_class+0x4e/0x130
[  186.749123][ T8035]  ? mark_lock+0xb5/0xc60
[  186.749142][ T8035]  constrain_params_by_rules+0x176/0xca0
[  186.749165][ T8035]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  186.749180][ T8035]  ? lock_acquire.part.0+0x11b/0x380
[  186.749207][ T8035]  ? hlock_class+0x4e/0x130
[  186.749220][ T8035]  ? mark_lock+0xb5/0xc60
[  186.749236][ T8035]  ? snd_interval_refine+0x2fa/0x580
[  186.749256][ T8035]  snd_pcm_hw_refine+0x7e8/0xad0
[  186.749275][ T8035]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  186.749293][ T8035]  ? __pfx_lock_release+0x10/0x10
[  186.749312][ T8035]  ? mark_held_locks+0x9f/0xe0
[  186.749333][ T8035]  snd_pcm_hw_params+0x3e6/0x1b20
[  186.749350][ T8035]  ? kfree+0x2c4/0x4d0
[  186.749364][ T8035]  ? snd_pcm_hw_param_first+0x301/0x6e0
[  186.749378][ T8035]  ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0
[  186.749395][ T8035]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  186.749413][ T8035]  ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0
[  186.749437][ T8035]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  186.749456][ T8035]  snd_pcm_kernel_ioctl+0x147/0x2e0
[  186.749475][ T8035]  snd_pcm_oss_change_params_locked+0x1406/0x3a60
[  186.749499][ T8035]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  186.749531][ T8035]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  186.749550][ T8035]  snd_pcm_oss_ioctl+0x21d5/0x3780
[  186.749572][ T8035]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  186.749589][ T8035]  ? __fget_files+0x206/0x3a0
[  186.749610][ T8035]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  186.749626][ T8035]  __x64_sys_ioctl+0x190/0x200
[  186.749643][ T8035]  do_syscall_64+0xcd/0x250
[  186.749662][ T8035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.749680][ T8035] RIP: 0033:0x7f3f4078d169
[  186.749692][ T8035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.749704][ T8035] RSP: 002b:00007f3f41570038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  186.749716][ T8035] RAX: ffffffffffffffda RBX: 00007f3f409a5fa0 RCX: 00007f3f4078d169
[  186.749724][ T8035] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000009
[  186.749732][ T8035] RBP: 00007f3f4080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  186.749740][ T8035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  186.749748][ T8035] R13: 0000000000000000 R14: 00007f3f409a5fa0 R15: 00007fffeb844c68
[  186.749765][ T8035]  </TASK>
[  187.244621][ T7717] syz.1.348 (7717) used greatest stack depth: 20576 bytes left
[  188.918795][ T7884] syz.1.369 (7884) used greatest stack depth: 18592 bytes left
[  189.260729][ T8059] netlink: 4 bytes leftover after parsing attributes in process `syz.0.411'.
[  189.775450][ T8065] netlink: 342 bytes leftover after parsing attributes in process `syz.4.412'.
[  191.370607][ T8099] svc: failed to register nfsdv3 RPC service (errno 101).
[  191.447295][ T8099] svc: failed to register nfsaclv3 RPC service (errno 101).
[  192.125819][ T8131] netlink: 74 bytes leftover after parsing attributes in process `syz.3.427'.
[  193.775133][ T8168] netlink: 28 bytes leftover after parsing attributes in process `syz.0.438'.
[  194.643535][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  194.649833][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  195.146771][ T8195] netlink: 20 bytes leftover after parsing attributes in process `syz.3.443'.
[  196.452148][ T8210] Invalid ELF header magic: != ELF
[  197.582877][ T8241] serio: Serial port ptm0
[  197.686966][ T8240] can: request_module (can-proto-0) failed.
[  197.933655][ T8249] could not allocate digest TFM handle 
[  198.173644][ T5848] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  198.183202][ T5848] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  198.198974][ T5848] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  198.207086][ T5848] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  198.217060][ T5848] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  198.224361][ T5848] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  198.255279][ T8238] ima: policy update failed
[  198.284856][ T8261] FAULT_INJECTION: forcing a failure.
[  198.284856][ T8261] name failslab, interval 1, probability 0, space 0, times 0
[  198.313543][   T29] audit: type=1802 audit(6036087130.038:11): pid=8238 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.455" res=0 errno=0
[  198.362584][ T8261] CPU: 1 UID: 0 PID: 8261 Comm: syz.0.459 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  198.362606][ T8261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  198.362614][ T8261] Call Trace:
[  198.362618][ T8261]  <TASK>
[  198.362624][ T8261]  dump_stack_lvl+0x16c/0x1f0
[  198.362647][ T8261]  should_fail_ex+0x50a/0x650
[  198.362669][ T8261]  ? fs_reclaim_acquire+0xae/0x150
[  198.362689][ T8261]  should_failslab+0xc2/0x120
[  198.362702][ T8261]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  198.362729][ T8261]  ? __xlate_proc_name+0x173/0x210
[  198.362751][ T8261]  ? __proc_create+0x2c0/0x8b0
[  198.362774][ T8261]  __proc_create+0x2c0/0x8b0
[  198.362795][ T8261]  ? __pfx___proc_create+0x10/0x10
[  198.362817][ T8261]  ? _raw_write_unlock+0x28/0x50
[  198.362832][ T8261]  ? proc_register+0x314/0x5f0
[  198.362846][ T8261]  proc_create_reg+0x7d/0x180
[  198.362860][ T8261]  proc_create_net_data+0x8f/0x1b0
[  198.362873][ T8261]  ? __pfx_proc_create_net_data+0x10/0x10
[  198.362891][ T8261]  tcp6_proc_init+0x57/0x80
[  198.362907][ T8261]  inet6_net_init+0x82e/0xb20
[  198.362923][ T8261]  ? __pfx_inet6_net_init+0x10/0x10
[  198.362936][ T8261]  ops_init+0x1df/0x5f0
[  198.362958][ T8261]  setup_net+0x21f/0x860
[  198.362979][ T8261]  ? __pfx_setup_net+0x10/0x10
[  198.362997][ T8261]  ? down_read_killable+0xcc/0x380
[  198.363015][ T8261]  ? __pfx_down_read_killable+0x10/0x10
[  198.363033][ T8261]  ? __raw_spin_lock_init+0x3a/0x110
[  198.363055][ T8261]  ? debug_mutex_init+0x37/0x70
[  198.363071][ T8261]  copy_net_ns+0x2a6/0x5f0
[  198.363086][ T8261]  create_new_namespaces+0x3ea/0xad0
[  198.363111][ T8261]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  198.363133][ T8261]  ksys_unshare+0x45d/0xa40
[  198.363147][ T8261]  ? __pfx_ksys_unshare+0x10/0x10
[  198.363159][ T8261]  ? xfd_validate_state+0x5d/0x180
[  198.363178][ T8261]  ? syscall_user_dispatch+0x7a/0x130
[  198.363202][ T8261]  __x64_sys_unshare+0x31/0x40
[  198.363215][ T8261]  do_syscall_64+0xcd/0x250
[  198.363233][ T8261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.363251][ T8261] RIP: 0033:0x7f3f4078d169
[  198.363262][ T8261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.363274][ T8261] RSP: 002b:00007f3f41570038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  198.363287][ T8261] RAX: ffffffffffffffda RBX: 00007f3f409a5fa0 RCX: 00007f3f4078d169
[  198.363295][ T8261] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  198.363303][ T8261] RBP: 00007f3f4080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  198.363310][ T8261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  198.363317][ T8261] R13: 0000000000000000 R14: 00007f3f409a5fa0 R15: 00007fffeb844c68
[  198.363334][ T8261]  </TASK>
[  199.810913][ T8260] chnl_net:caif_netlink_parms(): no params data found
[  200.093043][ T8260] bridge0: port 1(bridge_slave_0) entered blocking state
[  200.100136][ T8260] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.164432][ T8260] bridge_slave_0: entered allmulticast mode
[  200.226880][ T8260] bridge_slave_0: entered promiscuous mode
[  200.269219][ T8260] bridge0: port 2(bridge_slave_1) entered blocking state
[  200.308736][ T8260] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.322500][ T5848] Bluetooth: hci2: command tx timeout
[  200.375015][ T8260] bridge_slave_1: entered allmulticast mode
[  200.402576][ T8260] bridge_slave_1: entered promiscuous mode
[  200.524792][ T8305] netlink: 4 bytes leftover after parsing attributes in process `syz.4.467'.
[  200.569232][ T8260] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  200.651072][ T8260] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  200.810155][ T8260] team0: Port device team_slave_0 added
[  200.840176][ T8260] team0: Port device team_slave_1 added
[  200.927256][ T8260] batman_adv: batadv0: Adding interface: batadv_slave_0
[  200.957295][ T8260] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.054680][ T8260] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  201.177531][ T8260] batman_adv: batadv0: Adding interface: batadv_slave_1
[  201.208155][ T8260] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.307454][ T8260] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  201.674190][ T8260] hsr_slave_0: entered promiscuous mode
[  201.713011][ T8260] hsr_slave_1: entered promiscuous mode
[  201.742849][ T8260] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  201.763119][ T8325] netlink: 330 bytes leftover after parsing attributes in process `syz.1.473'.
[  201.784419][ T8260] Cannot create hsr debugfs directory
[  202.394390][ T5848] Bluetooth: hci2: command tx timeout
[  202.564171][ T8260] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.844305][ T8260] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.101662][ T8260] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.453812][ T8260] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.655814][ T8357] MTRR 1 not used
[  203.703254][ T8260] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  203.738974][ T8260] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  203.768196][ T8260] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  203.796724][ T8260] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  203.812926][ T8357] ptrace attach of "./syz-executor exec"[5835] was attempted by "./syz-executor exec"[8357]
[  203.999246][ T8260] 8021q: adding VLAN 0 to HW filter on device bond0
[  204.054277][ T8260] 8021q: adding VLAN 0 to HW filter on device team0
[  204.091640][ T6922] bridge0: port 1(bridge_slave_0) entered blocking state
[  204.098775][ T6922] bridge0: port 1(bridge_slave_0) entered forwarding state
[  204.150054][ T6922] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.158049][ T6922] bridge0: port 2(bridge_slave_1) entered forwarding state
[  204.472893][ T5848] Bluetooth: hci2: command tx timeout
[  204.714289][ T8260] 8021q: adding VLAN 0 to HW filter on device batadv0
[  204.818021][ T8260] veth0_vlan: entered promiscuous mode
[  204.885727][ T8260] veth1_vlan: entered promiscuous mode
[  204.968814][ T8260] veth0_macvtap: entered promiscuous mode
[  204.970490][ T8260] veth1_macvtap: entered promiscuous mode
[  205.055359][ T8260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  205.055408][ T8260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.055415][ T8260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  205.055425][ T8260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.055432][ T8260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  205.055441][ T8260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.056039][ T8260] batman_adv: batadv0: Interface activated: batadv_slave_0
[  205.057244][ T8260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  205.057258][ T8260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.057266][ T8260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  205.057275][ T8260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.057282][ T8260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  205.057291][ T8260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.057298][ T8260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  205.057308][ T8260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.057795][ T8260] batman_adv: batadv0: Interface activated: batadv_slave_1
[  205.059125][ T8260] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  205.059176][ T8260] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  205.059203][ T8260] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  205.059222][ T8260] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  205.423791][ T6211] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  205.423808][ T6211] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  205.478419][ T6926] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  205.478437][ T6926] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  205.488859][ T5848] Bluetooth: hci4: unexpected event 0x35 length: 13 > 6
[  206.436749][ T8405] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  206.453678][ T8405] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  206.553069][ T5848] Bluetooth: hci2: command tx timeout
[  207.177196][ T8413] FAULT_INJECTION: forcing a failure.
[  207.177196][ T8413] name failslab, interval 1, probability 0, space 0, times 0
[  207.177236][ T8413] CPU: 1 UID: 0 PID: 8413 Comm: syz.3.493 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  207.177254][ T8413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  207.177262][ T8413] Call Trace:
[  207.177266][ T8413]  <TASK>
[  207.177271][ T8413]  dump_stack_lvl+0x16c/0x1f0
[  207.177293][ T8413]  should_fail_ex+0x50a/0x650
[  207.177313][ T8413]  ? fs_reclaim_acquire+0xae/0x150
[  207.177333][ T8413]  should_failslab+0xc2/0x120
[  207.177346][ T8413]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  207.177368][ T8413]  ? lock_acquire.part.0+0x11b/0x380
[  207.177386][ T8413]  ? dccp_feat_clone_sp_val+0x96/0x130
[  207.177406][ T8413]  kmemdup_noprof+0x29/0x60
[  207.177422][ T8413]  dccp_feat_clone_sp_val+0x96/0x130
[  207.177438][ T8413]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  207.177459][ T8413]  __feat_register_sp+0x333/0x5a0
[  207.177485][ T8413]  ? __pfx___feat_register_sp+0x10/0x10
[  207.177505][ T8413]  ? __debug_object_init+0x2dd/0x3e0
[  207.177521][ T8413]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  207.177539][ T8413]  dccp_feat_init+0x2ae/0x800
[  207.177558][ T8413]  ? __pfx_dccp_feat_init+0x10/0x10
[  207.177576][ T8413]  ? lockdep_init_map_type+0xd0/0x7d0
[  207.177596][ T8413]  ? do_init_timer+0xc9/0x110
[  207.177610][ T8413]  ? __pfx_dccp_keepalive_timer+0x10/0x10
[  207.177624][ T8413]  ? __pfx_dccp_delack_timer+0x10/0x10
[  207.177640][ T8413]  dccp_init_sock+0x327/0x420
[  207.177654][ T8413]  dccp_v4_init_sock+0x1f/0xa0
[  207.177672][ T8413]  ? __pfx_dccp_v4_init_sock+0x10/0x10
[  207.177691][ T8413]  inet_create+0x94a/0x10a0
[  207.177717][ T8413]  ? inet_create+0x90/0x10a0
[  207.177740][ T8413]  __sock_create+0x335/0x8d0
[  207.177759][ T8413]  inet_ctl_sock_create+0x96/0x230
[  207.177779][ T8413]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[  207.177801][ T8413]  ? __pfx_dccp_v4_init_net+0x10/0x10
[  207.177820][ T8413]  dccp_v4_init_net+0x63/0x90
[  207.177839][ T8413]  ops_init+0x1df/0x5f0
[  207.177860][ T8413]  setup_net+0x21f/0x860
[  207.177881][ T8413]  ? __pfx_setup_net+0x10/0x10
[  207.177899][ T8413]  ? down_read_killable+0xcc/0x380
[  207.177917][ T8413]  ? __pfx_down_read_killable+0x10/0x10
[  207.177935][ T8413]  ? __raw_spin_lock_init+0x3a/0x110
[  207.177955][ T8413]  ? debug_mutex_init+0x37/0x70
[  207.177971][ T8413]  copy_net_ns+0x2a6/0x5f0
[  207.177985][ T8413]  create_new_namespaces+0x3ea/0xad0
[  207.178010][ T8413]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  207.178032][ T8413]  ksys_unshare+0x45d/0xa40
[  207.178046][ T8413]  ? __pfx_ksys_unshare+0x10/0x10
[  207.178058][ T8413]  ? xfd_validate_state+0x5d/0x180
[  207.178106][ T8413]  __x64_sys_unshare+0x31/0x40
[  207.178120][ T8413]  do_syscall_64+0xcd/0x250
[  207.178139][ T8413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.178158][ T8413] RIP: 0033:0x7f58f498d169
[  207.178169][ T8413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.178181][ T8413] RSP: 002b:00007f58f5896038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  207.178194][ T8413] RAX: ffffffffffffffda RBX: 00007f58f4ba5fa0 RCX: 00007f58f498d169
[  207.178203][ T8413] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  207.178211][ T8413] RBP: 00007f58f4a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  207.178219][ T8413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  207.178226][ T8413] R13: 0000000000000000 R14: 00007f58f4ba5fa0 R15: 00007ffd8ae72898
[  207.178243][ T8413]  </TASK>
[  209.559304][ T8381] tty tty30: ldisc open failed (-12), clearing slot 29
[  209.589244][ T8383] ttyprintk ttyprintk: ldisc open failed (-12), clearing slot 0
[  209.617926][ T8415] tty tty12: ldisc open failed (-12), clearing slot 11
[  209.636459][ T8416] tty tty12: ldisc open failed (-12), clearing slot 11
[  211.346285][ T8459] block2mtd: illegal erase size
[  211.567665][ T8466] netlink: 'syz.3.506': attribute type 4 has an invalid length.
[  211.623211][ T8466] netlink: 314 bytes leftover after parsing attributes in process `syz.3.506'.
[  211.694449][ T8466] IPv6: NLM_F_CREATE should be specified when creating new route
[  217.146892][ T8527] netlink: 342 bytes leftover after parsing attributes in process `syz.1.520'.
[  217.501401][ T8537] netlink: 330 bytes leftover after parsing attributes in process `syz.1.522'.
[  218.591948][ T8544] netlink: 'syz.3.519': attribute type 10 has an invalid length.
[  219.549066][ T8599] gretap0: entered allmulticast mode
[  219.638463][ T8604] netlink: 4 bytes leftover after parsing attributes in process `syz.0.534'.
[  220.722701][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  220.729112][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  221.898097][ T8651] FAULT_INJECTION: forcing a failure.
[  221.898097][ T8651] name failslab, interval 1, probability 0, space 0, times 0
[  222.526021][ T8651] CPU: 1 UID: 0 PID: 8651 Comm: syz.4.545 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  222.526044][ T8651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  222.526052][ T8651] Call Trace:
[  222.526056][ T8651]  <TASK>
[  222.526065][ T8651]  dump_stack_lvl+0x16c/0x1f0
[  222.526088][ T8651]  should_fail_ex+0x50a/0x650
[  222.526110][ T8651]  ? fs_reclaim_acquire+0xae/0x150
[  222.526129][ T8651]  ? tomoyo_realpath_from_path+0xb9/0x720
[  222.526147][ T8651]  should_failslab+0xc2/0x120
[  222.526160][ T8651]  __kmalloc_noprof+0xcb/0x510
[  222.526180][ T8651]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  222.526202][ T8651]  tomoyo_realpath_from_path+0xb9/0x720
[  222.526219][ T8651]  ? tomoyo_path_number_perm+0x235/0x590
[  222.526235][ T8651]  ? tomoyo_path_number_perm+0x235/0x590
[  222.526252][ T8651]  tomoyo_path_number_perm+0x248/0x590
[  222.526274][ T8651]  ? tomoyo_path_number_perm+0x235/0x590
[  222.526291][ T8651]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  222.526314][ T8651]  ? find_held_lock+0x2d/0x110
[  222.526340][ T8651]  ? do_raw_spin_unlock+0x172/0x230
[  222.526353][ T8651]  ? _raw_spin_unlock+0x28/0x50
[  222.526368][ T8651]  ? d_add+0x43c/0x730
[  222.526381][ T8651]  ? do_raw_spin_unlock+0x172/0x230
[  222.526395][ T8651]  ? simple_lookup+0x12c/0x180
[  222.526411][ T8651]  ? get_current_fs_domain+0x184/0x1f0
[  222.526428][ T8651]  tomoyo_path_mknod+0x10d/0x190
[  222.526447][ T8651]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  222.526468][ T8651]  ? lock_acquire+0x2f/0xb0
[  222.526483][ T8651]  ? __virt_addr_valid+0x1a4/0x590
[  222.526496][ T8651]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  222.526519][ T8651]  security_path_mknod+0x161/0x310
[  222.526537][ T8651]  do_mknodat+0x23d/0x5d0
[  222.526557][ T8651]  ? __pfx_do_mknodat+0x10/0x10
[  222.526574][ T8651]  ? getname_flags.part.0+0x1c5/0x550
[  222.526593][ T8651]  __x64_sys_mknod+0x87/0xb0
[  222.526612][ T8651]  do_syscall_64+0xcd/0x250
[  222.526630][ T8651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.526649][ T8651] RIP: 0033:0x7fc5b1b8d169
[  222.526660][ T8651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.526672][ T8651] RSP: 002b:00007fc5b29c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  222.526685][ T8651] RAX: ffffffffffffffda RBX: 00007fc5b1da5fa0 RCX: 00007fc5b1b8d169
[  222.526693][ T8651] RDX: 00000000000000cb RSI: 00000000000000c9 RDI: 0000000000000000
[  222.526701][ T8651] RBP: 00007fc5b1c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  222.526709][ T8651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  222.526716][ T8651] R13: 0000000000000000 R14: 00007fc5b1da5fa0 R15: 00007ffd2281edb8
[  222.526735][ T8651]  </TASK>
[  223.088317][ T8651] ERROR: Out of memory at tomoyo_realpath_from_path.
[  224.535796][ T8684] smc: net device syz_tun applied user defined pnetid ETHTOOL
[  224.651212][ T8683] ima: policy update failed
[  224.655819][   T29] audit: type=1802 audit(6036088179.380:12): pid=8683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.553" res=0 errno=0
[  225.079615][ T8688] bridge0: port 3(netdevsim2) entered blocking state
[  225.232379][ T8688] bridge0: port 3(netdevsim2) entered disabled state
[  225.323739][ T8688] netdevsim netdevsim1 netdevsim2: entered allmulticast mode
[  225.445055][ T8688] netdevsim netdevsim1 netdevsim2: entered promiscuous mode
[  225.539949][ T8688] bridge0: port 3(netdevsim2) entered blocking state
[  225.546704][ T8688] bridge0: port 3(netdevsim2) entered forwarding state
[  229.245582][ T8737] netlink: zone id is out of range
[  229.281492][ T8737] netlink: zone id is out of range
[  229.302144][ T8737] netlink: zone id is out of range
[  229.335872][ T8737] netlink: zone id is out of range
[  229.373076][ T8737] netlink: zone id is out of range
[  229.405113][ T8737] netlink: zone id is out of range
[  229.420390][ T8737] netlink: zone id is out of range
[  229.454037][ T8737] netlink: zone id is out of range
[  229.473908][ T8737] netlink: zone id is out of range
[  229.502233][ T8737] netlink: zone id is out of range
[  229.778707][ T8748] netlink: 4 bytes leftover after parsing attributes in process `syz.3.568'.
[  229.811113][ T8747] netlink: 342 bytes leftover after parsing attributes in process `syz.0.569'.
[  232.055385][ T8793] netlink: 28 bytes leftover after parsing attributes in process `syz.0.581'.
[  232.119845][ T8793] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  232.246795][ T8793] batman_adv: batadv0: Removing interface: batadv_slave_0
[  233.343800][ T8810] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  233.387749][ T8810] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  233.489519][ T8810] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  233.526562][ T8810] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  233.596646][ T8810] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  233.695253][ T8810] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  233.802324][ T8810] CPU0 is offline.
[  234.356056][ T8849] FAULT_INJECTION: forcing a failure.
[  234.356056][ T8849] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  234.585618][ T8849] CPU: 1 UID: 0 PID: 8849 Comm: syz.0.590 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  234.585641][ T8849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  234.585649][ T8849] Call Trace:
[  234.585653][ T8849]  <TASK>
[  234.585659][ T8849]  dump_stack_lvl+0x16c/0x1f0
[  234.585683][ T8849]  should_fail_ex+0x50a/0x650
[  234.585704][ T8849]  ? __pfx___might_resched+0x10/0x10
[  234.585727][ T8849]  should_fail_alloc_page+0xe7/0x130
[  234.585742][ T8849]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  234.585760][ T8849]  ? hlock_class+0x4e/0x130
[  234.585776][ T8849]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  234.585798][ T8849]  ? hlock_class+0x4e/0x130
[  234.585811][ T8849]  ? mark_lock+0xb5/0xc60
[  234.585830][ T8849]  ? __pfx_mark_lock+0x10/0x10
[  234.585848][ T8849]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  234.585869][ T8849]  ? hlock_class+0x4e/0x130
[  234.585882][ T8849]  ? mark_lock+0xb5/0xc60
[  234.585898][ T8849]  ? hlock_class+0x4e/0x130
[  234.585915][ T8849]  ? hlock_class+0x4e/0x130
[  234.585927][ T8849]  ? __lock_acquire+0xcc5/0x3c40
[  234.585945][ T8849]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  234.585966][ T8849]  ? policy_nodemask+0xea/0x4e0
[  234.585988][ T8849]  alloc_pages_mpol+0x1fc/0x540
[  234.586001][ T8849]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  234.586013][ T8849]  ? __lock_acquire+0x15a9/0x3c40
[  234.586034][ T8849]  folio_alloc_mpol_noprof+0x36/0x2f0
[  234.586050][ T8849]  vma_alloc_folio_noprof+0xee/0x1b0
[  234.586064][ T8849]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  234.586079][ T8849]  ? find_held_lock+0x2d/0x110
[  234.586096][ T8849]  do_pte_missing+0x202f/0x3e10
[  234.586121][ T8849]  __handle_mm_fault+0x1166/0x2c60
[  234.586177][ T8849]  ? __pfx___handle_mm_fault+0x10/0x10
[  234.586195][ T8849]  ? follow_page_pte+0x3ac/0x1490
[  234.586214][ T8849]  ? __pfx_lock_release+0x10/0x10
[  234.586246][ T8849]  handle_mm_fault+0x3fa/0xaa0
[  234.586268][ T8849]  __get_user_pages+0x773/0x36f0
[  234.586291][ T8849]  ? __pfx_mt_find+0x10/0x10
[  234.586308][ T8849]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  234.586326][ T8849]  ? __pfx___get_user_pages+0x10/0x10
[  234.586346][ T8849]  ? __mm_populate+0x21d/0x380
[  234.586367][ T8849]  populate_vma_page_range+0x27f/0x3a0
[  234.586388][ T8849]  ? __pfx_populate_vma_page_range+0x10/0x10
[  234.586406][ T8849]  ? __pfx_find_vma_intersection+0x10/0x10
[  234.586423][ T8849]  ? vm_mmap_pgoff+0x29b/0x3a0
[  234.586444][ T8849]  __mm_populate+0x1d6/0x380
[  234.586463][ T8849]  ? __pfx___mm_populate+0x10/0x10
[  234.586483][ T8849]  ? up_write+0x1b2/0x520
[  234.586504][ T8849]  vm_mmap_pgoff+0x2d3/0x3a0
[  234.586524][ T8849]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  234.586544][ T8849]  ? __x64_sys_futex+0x1e1/0x4c0
[  234.586559][ T8849]  ? __x64_sys_futex+0x1ea/0x4c0
[  234.586577][ T8849]  ksys_mmap_pgoff+0x7d/0x5c0
[  234.586592][ T8849]  ? rcu_is_watching+0x12/0xc0
[  234.586608][ T8849]  __x64_sys_mmap+0x125/0x190
[  234.586629][ T8849]  do_syscall_64+0xcd/0x250
[  234.586647][ T8849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.586665][ T8849] RIP: 0033:0x7f3f4078d169
[  234.586677][ T8849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.586689][ T8849] RSP: 002b:00007f3f4154f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  234.586702][ T8849] RAX: ffffffffffffffda RBX: 00007f3f409a6080 RCX: 00007f3f4078d169
[  234.586711][ T8849] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  234.586719][ T8849] RBP: 00007f3f4080e2a0 R08: 0000000000000002 R09: 0000000000008000
[  234.586727][ T8849] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  234.586735][ T8849] R13: 0000000000000000 R14: 00007f3f409a6080 R15: 00007fffeb844c68
[  234.586752][ T8849]  </TASK>
[  235.555891][ T5848] Bluetooth: hci1: command 0x0c1a tx timeout
[  235.561928][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout
[  235.568220][ T5848] Bluetooth: hci2: command 0x0c1a tx timeout
[  235.574231][ T5848] Bluetooth: hci4: command 0x0419 tx timeout
[  235.758832][ T8858] netlink: 28 bytes leftover after parsing attributes in process `syz.1.593'.
[  236.804688][ T8858] macvlan1: entered allmulticast mode
[  236.811938][ T8858] veth1_vlan: entered allmulticast mode
[  237.606446][ T5847] Bluetooth: hci2: command 0x0c1a tx timeout
[  237.634827][ T8880] netlink: 338 bytes leftover after parsing attributes in process `syz.4.599'.
[  238.446581][ T8905] kernel read not supported for file /P��r��	^�!��8���;�n�~Z�����J�p����-�����v<)�R�_�Wta���kG��6hmD�|v�Q (pid: 8905 comm: syz.3.603)
[  238.508782][   T29] audit: type=1800 audit(6036088193.223:13): pid=8905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.603" name=5002B9D50272BCD0095EC0217FC0DD38B080FA3B97056EF47E5A05F1EFD1F108D94A9B70DFE7CD1F842DBB05A5B8FCF7763C29DD5202D80D5F03E78E577461FABDAF066B47F7AA361C680B6D44FC7C76D451 dev="mqueue" ino=23317 res=0 errno=0
[  239.584676][ T8933] FAULT_INJECTION: forcing a failure.
[  239.584676][ T8933] name failslab, interval 1, probability 0, space 0, times 0
[  239.620028][ T8933] CPU: 1 UID: 0 PID: 8933 Comm: syz.3.609 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  239.620052][ T8933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  239.620061][ T8933] Call Trace:
[  239.620065][ T8933]  <TASK>
[  239.620071][ T8933]  dump_stack_lvl+0x16c/0x1f0
[  239.620095][ T8933]  should_fail_ex+0x50a/0x650
[  239.620116][ T8933]  ? fs_reclaim_acquire+0xae/0x150
[  239.620135][ T8933]  ? __register_sysctl_table+0xeaf/0x1910
[  239.620156][ T8933]  should_failslab+0xc2/0x120
[  239.620168][ T8933]  __kmalloc_noprof+0xcb/0x510
[  239.620192][ T8933]  __register_sysctl_table+0xeaf/0x1910
[  239.620216][ T8933]  ? __pfx___register_sysctl_table+0x10/0x10
[  239.620235][ T8933]  ? is_module_address+0x2a/0x50
[  239.620253][ T8933]  ? register_net_sysctl_sz+0x228/0x3e0
[  239.620274][ T8933]  __devinet_sysctl_register+0x1b5/0x360
[  239.620296][ T8933]  ? __pfx___devinet_sysctl_register+0x10/0x10
[  239.620313][ T8933]  ? trace_kmalloc+0x2d/0xd0
[  239.620328][ T8933]  ? devinet_init_net+0xeb/0x900
[  239.620345][ T8933]  ? __asan_memcpy+0x3c/0x60
[  239.620362][ T8933]  ? __pfx_devinet_init_net+0x10/0x10
[  239.620380][ T8933]  devinet_init_net+0x315/0x900
[  239.620398][ T8933]  ? __pfx_devinet_init_net+0x10/0x10
[  239.620415][ T8933]  ops_init+0x1df/0x5f0
[  239.620437][ T8933]  setup_net+0x21f/0x860
[  239.620458][ T8933]  ? __pfx_setup_net+0x10/0x10
[  239.620476][ T8933]  ? down_read_killable+0xcc/0x380
[  239.620495][ T8933]  ? __pfx_down_read_killable+0x10/0x10
[  239.620512][ T8933]  ? __raw_spin_lock_init+0x3a/0x110
[  239.620534][ T8933]  ? debug_mutex_init+0x37/0x70
[  239.620549][ T8933]  copy_net_ns+0x2a6/0x5f0
[  239.620564][ T8933]  create_new_namespaces+0x3ea/0xad0
[  239.620589][ T8933]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  239.620611][ T8933]  ksys_unshare+0x45d/0xa40
[  239.620625][ T8933]  ? __pfx_ksys_unshare+0x10/0x10
[  239.620637][ T8933]  ? xfd_validate_state+0x5d/0x180
[  239.620661][ T8933]  __x64_sys_unshare+0x31/0x40
[  239.620674][ T8933]  do_syscall_64+0xcd/0x250
[  239.620692][ T8933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.620710][ T8933] RIP: 0033:0x7f58f498d169
[  239.620721][ T8933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.620733][ T8933] RSP: 002b:00007f58f5896038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  239.620746][ T8933] RAX: ffffffffffffffda RBX: 00007f58f4ba5fa0 RCX: 00007f58f498d169
[  239.620755][ T8933] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  239.620762][ T8933] RBP: 00007f58f4a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  239.620770][ T8933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  239.620777][ T8933] R13: 0000000000000000 R14: 00007f58f4ba5fa0 R15: 00007ffd8ae72898
[  239.620795][ T8933]  </TASK>
[  239.620802][ T8933] sysctl could not get directory: /net/ipv4/conf/all -12
[  239.927794][ T5847] Bluetooth: hci2: command 0x0c1a tx timeout
[  240.460032][ T8942] HfR: entered promiscuous mode
[  240.681350][ T8944] Invalid ELF header magic: != ELF
[  241.508831][ T8975] netlink: 'syz.4.618': attribute type 11 has an invalid length.
[  242.447331][ T9001] ICMPv6: process `syz.4.620' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead
[  242.985466][ T9019] random: crng reseeded on system resumption
[  243.067632][ T9022] netlink: 146 bytes leftover after parsing attributes in process `syz.1.623'.
[  244.032187][ T9047] netlink: 16 bytes leftover after parsing attributes in process `syz.3.627'.
[  244.193709][ T9056] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26)
[  244.321882][ T9047] ima: policy update failed
[  244.505203][   T29] audit: type=1802 audit(6036088199.210:14): pid=9047 uid=2 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.627" res=0 errno=0
[  244.641106][ T9069] netlink: 342 bytes leftover after parsing attributes in process `syz.0.629'.

syzkaller
syzkaller login: [  248.435069][ T9139] FAULT_INJECTION: forcing a failure.
[  248.435069][ T9139] name failslab, interval 1, probability 0, space 0, times 0
[  248.494047][ T9139] CPU: 1 UID: 0 PID: 9139 Comm: syz.4.642 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  248.494071][ T9139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  248.494079][ T9139] Call Trace:
[  248.494083][ T9139]  <TASK>
[  248.494089][ T9139]  dump_stack_lvl+0x16c/0x1f0
[  248.494112][ T9139]  should_fail_ex+0x50a/0x650
[  248.494134][ T9139]  ? fs_reclaim_acquire+0xae/0x150
[  248.494153][ T9139]  ? single_open+0x4d/0x1f0
[  248.494166][ T9139]  should_failslab+0xc2/0x120
[  248.494179][ T9139]  __kmalloc_cache_noprof+0x68/0x410
[  248.494203][ T9139]  ? __pfx_hook_file_open+0x10/0x10
[  248.494221][ T9139]  ? __pfx_tracing_clock_show+0x10/0x10
[  248.494235][ T9139]  single_open+0x4d/0x1f0
[  248.494250][ T9139]  tracing_clock_open+0xa7/0x100
[  248.494270][ T9139]  do_dentry_open+0x735/0x1c40
[  248.494289][ T9139]  ? __pfx_tracing_clock_open+0x10/0x10
[  248.494307][ T9139]  ? inode_permission+0xdd/0x5f0
[  248.494323][ T9139]  vfs_open+0x82/0x3f0
[  248.494335][ T9139]  ? may_open+0x1f2/0x400
[  248.494350][ T9139]  path_openat+0x1e88/0x2d80
[  248.494375][ T9139]  ? __pfx_path_openat+0x10/0x10
[  248.494393][ T9139]  ? __pfx___lock_acquire+0x10/0x10
[  248.494409][ T9139]  ? lock_acquire.part.0+0x11b/0x380
[  248.494427][ T9139]  ? find_held_lock+0x2d/0x110
[  248.494442][ T9139]  do_filp_open+0x20c/0x470
[  248.494460][ T9139]  ? __pfx_do_filp_open+0x10/0x10
[  248.494477][ T9139]  ? find_held_lock+0x2d/0x110
[  248.494501][ T9139]  ? alloc_fd+0x41f/0x760
[  248.494523][ T9139]  do_sys_openat2+0x17a/0x1e0
[  248.494536][ T9139]  ? __pfx_do_sys_openat2+0x10/0x10
[  248.494556][ T9139]  __x64_sys_openat+0x175/0x210
[  248.494570][ T9139]  ? __pfx___x64_sys_openat+0x10/0x10
[  248.494591][ T9139]  do_syscall_64+0xcd/0x250
[  248.494609][ T9139]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.494627][ T9139] RIP: 0033:0x7fc5b1b8d169
[  248.494638][ T9139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.494650][ T9139] RSP: 002b:00007fc5b29c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  248.494663][ T9139] RAX: ffffffffffffffda RBX: 00007fc5b1da5fa0 RCX: 00007fc5b1b8d169
[  248.494671][ T9139] RDX: 0000000000022500 RSI: 0000400000000080 RDI: ffffffffffffff9c
[  248.494679][ T9139] RBP: 00007fc5b1c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  248.494687][ T9139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  248.494694][ T9139] R13: 0000000000000000 R14: 00007fc5b1da5fa0 R15: 00007ffd2281edb8
[  248.494711][ T9139]  </TASK>
[  249.824648][ T9151] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input12
[  250.312068][ T9157] FAULT_INJECTION: forcing a failure.
[  250.312068][ T9157] name failslab, interval 1, probability 0, space 0, times 0
[  250.497111][ T9157] CPU: 1 UID: 0 PID: 9157 Comm: syz.3.647 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  250.497135][ T9157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  250.497144][ T9157] Call Trace:
[  250.497148][ T9157]  <TASK>
[  250.497154][ T9157]  dump_stack_lvl+0x16c/0x1f0
[  250.497178][ T9157]  should_fail_ex+0x50a/0x650
[  250.497200][ T9157]  ? fs_reclaim_acquire+0xae/0x150
[  250.497220][ T9157]  should_failslab+0xc2/0x120
[  250.497233][ T9157]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  250.497253][ T9157]  ? security_file_alloc+0x34/0x2b0
[  250.497273][ T9157]  security_file_alloc+0x34/0x2b0
[  250.497289][ T9157]  init_file+0x93/0x4c0
[  250.497303][ T9157]  alloc_empty_file+0x91/0x1e0
[  250.497317][ T9157]  alloc_file_pseudo+0x13b/0x230
[  250.497331][ T9157]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  250.497346][ T9157]  ? do_raw_spin_unlock+0x172/0x230
[  250.497362][ T9157]  __anon_inode_getfile+0xf8/0x370
[  250.497383][ T9157]  anon_inode_getfd+0x52/0xb0
[  250.497401][ T9157]  map_create+0xbb4/0x1d20
[  250.497421][ T9157]  ? __pfx_lock_release+0x10/0x10
[  250.497438][ T9157]  ? trace_lock_acquire+0x14e/0x1f0
[  250.497453][ T9157]  ? __pfx_map_create+0x10/0x10
[  250.497471][ T9157]  ? lock_acquire+0x2f/0xb0
[  250.497487][ T9157]  ? __might_fault+0xe3/0x190
[  250.497502][ T9157]  ? __might_fault+0xe3/0x190
[  250.497518][ T9157]  __sys_bpf+0x4391/0x49c0
[  250.497539][ T9157]  ? __pfx___sys_bpf+0x10/0x10
[  250.497562][ T9157]  ? do_futex+0x123/0x350
[  250.497579][ T9157]  ? __pfx_do_futex+0x10/0x10
[  250.497601][ T9157]  ? xfd_validate_state+0x5d/0x180
[  250.497619][ T9157]  ? rcu_is_watching+0x12/0xc0
[  250.497636][ T9157]  __x64_sys_bpf+0x78/0xc0
[  250.497647][ T9157]  ? lockdep_hardirqs_on+0x7c/0x110
[  250.497664][ T9157]  do_syscall_64+0xcd/0x250
[  250.497682][ T9157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.497707][ T9157] RIP: 0033:0x7f58f498d169
[  250.497719][ T9157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.497733][ T9157] RSP: 002b:00007f58f5896038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  250.497746][ T9157] RAX: ffffffffffffffda RBX: 00007f58f4ba5fa0 RCX: 00007f58f498d169
[  250.497755][ T9157] RDX: 0000000000000092 RSI: 0000400000000040 RDI: 0000000000000000
[  250.497764][ T9157] RBP: 00007f58f4a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  250.497772][ T9157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  250.497780][ T9157] R13: 0000000000000000 R14: 00007f58f4ba5fa0 R15: 00007ffd8ae72898
[  250.497797][ T9157]  </TASK>
[  250.758244][ T9163] netlink: 4 bytes leftover after parsing attributes in process `syz.1.648'.
[  254.001305][ T9227] netlink: 334 bytes leftover after parsing attributes in process `syz.4.660'.
[  254.732888][   T29] audit: type=1800 audit(6036088209.445:15): pid=9234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.662" name="dbroot" dev="configfs" ino=24361 res=0 errno=0
[  254.764816][ T9234] db_root: cannot open: �
[  255.249090][ T9253] ==================================================================
[  255.257172][ T9253] BUG: KASAN: slab-use-after-free in msft_opcode_get+0x6d/0x80
[  255.264794][ T9253] Read of size 2 at addr ffff888027397232 by task syz.0.666/9253
[  255.272579][ T9253] 
[  255.274891][ T9253] CPU: 1 UID: 0 PID: 9253 Comm: syz.0.666 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  255.274909][ T9253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  255.274918][ T9253] Call Trace:
[  255.274925][ T9253]  <TASK>
[  255.274931][ T9253]  dump_stack_lvl+0x116/0x1f0
[  255.274953][ T9253]  print_report+0xc3/0x670
[  255.274973][ T9253]  ? __virt_addr_valid+0x5e/0x590
[  255.274987][ T9253]  ? __phys_addr+0xc6/0x150
[  255.275000][ T9253]  kasan_report+0xd9/0x110
[  255.275011][ T9253]  ? msft_opcode_get+0x6d/0x80
[  255.275027][ T9253]  ? msft_opcode_get+0x6d/0x80
[  255.275043][ T9253]  msft_opcode_get+0x6d/0x80
[  255.275057][ T9253]  ? __pfx_msft_opcode_get+0x10/0x10
[  255.275072][ T9253]  simple_attr_read+0x169/0x370
[  255.275088][ T9253]  ? __debugfs_file_get+0x1ff/0x850
[  255.275105][ T9253]  ? __pfx_simple_attr_read+0x10/0x10
[  255.275120][ T9253]  ? __debugfs_file_get+0x1ff/0x850
[  255.275136][ T9253]  ? __pfx___debugfs_file_get+0x10/0x10
[  255.275153][ T9253]  debugfs_attr_read+0x76/0xa0
[  255.275171][ T9253]  full_proxy_read+0x13c/0x200
[  255.275188][ T9253]  ? __pfx_full_proxy_read+0x10/0x10
[  255.275205][ T9253]  vfs_read+0x1df/0xbf0
[  255.275222][ T9253]  ? __fget_files+0x1fc/0x3a0
[  255.275239][ T9253]  ? __pfx___mutex_lock+0x10/0x10
[  255.275257][ T9253]  ? __pfx_vfs_read+0x10/0x10
[  255.275275][ T9253]  ? __fget_files+0x206/0x3a0
[  255.275294][ T9253]  ksys_read+0x12b/0x250
[  255.275310][ T9253]  ? __pfx_ksys_read+0x10/0x10
[  255.275329][ T9253]  do_syscall_64+0xcd/0x250
[  255.275346][ T9253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  255.275365][ T9253] RIP: 0033:0x7f3f4078d169
[  255.275376][ T9253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  255.275390][ T9253] RSP: 002b:00007f3f4154f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  255.275402][ T9253] RAX: ffffffffffffffda RBX: 00007f3f409a6080 RCX: 00007f3f4078d169
[  255.275411][ T9253] RDX: 000000000000ffff RSI: 0000400000006740 RDI: 0000000000000007
[  255.275420][ T9253] RBP: 00007f3f4080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  255.275428][ T9253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  255.275437][ T9253] R13: 0000000000000000 R14: 00007f3f409a6080 R15: 00007fffeb844c68
[  255.275449][ T9253]  </TASK>
[  255.275454][ T9253] 
[  255.505279][ T9253] Allocated by task 6922:
[  255.509587][ T9253]  kasan_save_stack+0x33/0x60
[  255.514338][ T9253]  kasan_save_track+0x14/0x30
[  255.519001][ T9253]  __kasan_kmalloc+0xaa/0xb0
[  255.523574][ T9253]  __kmalloc_noprof+0x21c/0x510
[  255.528585][ T9253]  ieee802_11_parse_elems_full+0xf2/0x18c0
[  255.534370][ T9253]  ieee80211_ibss_rx_queued_mgmt+0xc4f/0x2f50
[  255.540438][ T9253]  ieee80211_iface_work+0xc15/0xf50
[  255.545628][ T9253]  cfg80211_wiphy_work+0x3ed/0x570
[  255.550728][ T9253]  process_one_work+0x9c5/0x1ba0
[  255.555649][ T9253]  worker_thread+0x6c8/0xf00
[  255.560222][ T9253]  kthread+0x3af/0x750
[  255.564285][ T9253]  ret_from_fork+0x45/0x80
[  255.568684][ T9253]  ret_from_fork_asm+0x1a/0x30
[  255.573430][ T9253] 
[  255.575735][ T9253] Freed by task 6922:
[  255.579690][ T9253]  kasan_save_stack+0x33/0x60
[  255.584354][ T9253]  kasan_save_track+0x14/0x30
[  255.589013][ T9253]  kasan_save_free_info+0x3b/0x60
[  255.594020][ T9253]  __kasan_slab_free+0x51/0x70
[  255.598771][ T9253]  kfree+0x2c4/0x4d0
[  255.602663][ T9253]  ieee80211_ibss_rx_queued_mgmt+0x1a29/0x2f50
[  255.608805][ T9253]  ieee80211_iface_work+0xc15/0xf50
[  255.613981][ T9253]  cfg80211_wiphy_work+0x3ed/0x570
[  255.619080][ T9253]  process_one_work+0x9c5/0x1ba0
[  255.624005][ T9253]  worker_thread+0x6c8/0xf00
[  255.628581][ T9253]  kthread+0x3af/0x750
[  255.632636][ T9253]  ret_from_fork+0x45/0x80
[  255.637041][ T9253]  ret_from_fork_asm+0x1a/0x30
[  255.641961][ T9253] 
[  255.644268][ T9253] The buggy address belongs to the object at ffff888027397000
[  255.644268][ T9253]  which belongs to the cache kmalloc-1k of size 1024
[  255.658303][ T9253] The buggy address is located 562 bytes inside of
[  255.658303][ T9253]  freed 1024-byte region [ffff888027397000, ffff888027397400)
[  255.672185][ T9253] 
[  255.674494][ T9253] The buggy address belongs to the physical page:
[  255.680932][ T9253] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x27390
[  255.689865][ T9253] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  255.698353][ T9253] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  255.706329][ T9253] page_type: f5(slab)
[  255.710304][ T9253] raw: 00fff00000000040 ffff88801b041dc0 0000000000000000 dead000000000001
[  255.718876][ T9253] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  255.727443][ T9253] head: 00fff00000000040 ffff88801b041dc0 0000000000000000 dead000000000001
[  255.736094][ T9253] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  255.744850][ T9253] head: 00fff00000000003 ffffea00009ce401 ffffffffffffffff 0000000000000000
[  255.753523][ T9253] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  255.762176][ T9253] page dumped because: kasan: bad access detected
[  255.768601][ T9253] page_owner tracks the page as allocated
[  255.774304][ T9253] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 12, tgid 12 (kworker/u8:1), ts 8938207384, free_ts 0
[  255.792807][ T9253]  post_alloc_hook+0x181/0x1b0
[  255.797589][ T9253]  get_page_from_freelist+0xfce/0x2f80
[  255.803047][ T9253]  __alloc_frozen_pages_noprof+0x221/0x2470
[  255.808950][ T9253]  new_slab+0x94/0x330
[  255.813014][ T9253]  ___slab_alloc+0xc5d/0x1720
[  255.817784][ T9253]  __slab_alloc.constprop.0+0x56/0xb0
[  255.823148][ T9253]  __kmalloc_cache_node_noprof+0x101/0x420
[  255.829140][ T9253]  blk_mq_alloc_and_init_hctx+0x639/0x11b0
[  255.835109][ T9253]  blk_mq_realloc_hw_ctxs+0x8e0/0xbe0
[  255.840504][ T9253]  blk_mq_init_allocated_queue+0x39e/0x11f0
[  255.846384][ T9253]  blk_mq_alloc_queue+0x1c3/0x290
[  255.851394][ T9253]  scsi_alloc_sdev+0x890/0xd80
[  255.856146][ T9253]  scsi_probe_and_add_lun+0x789/0xda0
[  255.861501][ T9253]  __scsi_scan_target+0x1ea/0x580
[  255.866509][ T9253]  scsi_scan_channel+0x149/0x1e0
[  255.871439][ T9253]  scsi_scan_host_selected+0x302/0x400
[  255.876879][ T9253] page_owner free stack trace missing
[  255.882223][ T9253] 
[  255.884702][ T9253] Memory state around the buggy address:
[  255.890316][ T9253]  ffff888027397100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  255.898464][ T9253]  ffff888027397180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  255.906541][ T9253] >ffff888027397200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  255.914598][ T9253]                                      ^
[  255.920328][ T9253]  ffff888027397280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  255.928398][ T9253]  ffff888027397300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  255.936452][ T9253] ==================================================================
[  255.944593][    C1] vkms_vblank_simulate: vblank timer overrun
[  256.458315][ T9261] [U] 
[  256.461363][ T9261] [U] 
[  256.464043][ T9261] [U] 
[  256.466718][ T9261] [U] 
[  256.483398][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  256.489842][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  256.540264][ T9261] [U] 
[  256.542990][ T9261] [U] 
[  256.545681][ T9261] [U] 
[  256.548359][ T9261] [U] 
[  256.579712][ T9261] [U] 
[  256.582433][ T9261] [U] 
[  256.585118][ T9261] [U] 
[  256.587793][ T9261] [U] 
[  256.625219][ T9261] [U] 
[  256.627944][ T9261] [U] 
[  256.630638][ T9261] [U] 
[  256.633310][ T9261] [U] 
[  256.674063][ T9261] [U] 
[  256.676794][ T9261] [U] 
[  256.679469][ T9261] [U] 
[  256.682171][ T9261] [U] 
[  256.706214][ T9261] [U] 
[  256.708962][ T9261] [U] 
[  256.711650][ T9261] [U] 
[  256.714329][ T9261] [U] 
[  256.746357][ T9261] [U] 
[  256.749074][ T9261] [U] 
[  256.751759][ T9261] [U] 
[  256.754433][ T9261] [U] 
[  256.778562][ T9261] [U] 
[  256.781288][ T9261] [U] 
[  256.783964][ T9261] [U] 
[  256.786689][ T9261] [U] 
[  256.814590][ T9261] [U] 
[  256.817310][ T9261] [U] 
[  256.819983][ T9261] [U] 
[  256.822661][ T9261] [U] 
[  256.859749][ T9261] [U] 
[  256.862462][ T9261] [U] 
[  256.865135][ T9261] [U] 
[  256.867808][ T9261] [U] 
[  256.895301][ T9261] [U] 
[  256.898018][ T9261] [U] 
[  256.900690][ T9261] [U] 
[  256.903360][ T9261] [U] 
[  256.921666][ T9261] [U] 
[  256.924378][ T9261] [U] 
[  256.927048][ T9261] [U] 
[  256.929719][ T9261] [U] 
[  256.963893][ T9261] [U] 
[  256.966606][ T9261] [U] 
[  256.969279][ T9261] [U] 
[  256.971947][ T9261] [U] 
[  256.995094][ T9261] [U] 
[  256.997802][ T9261] [U] 
[  257.000473][ T9261] [U] 
[  257.003142][ T9261] [U] 
[  257.035406][ T9261] [U] 
[  257.038114][ T9261] [U] 
[  257.040786][ T9261] [U] 
[  257.043455][ T9261] [U] 
[  257.060383][ T9261] [U] 
[  257.063097][ T9261] [U] 
[  257.065797][ T9261] [U] 
[  257.068471][ T9261] [U] 
[  257.095522][ T9261] [U] 
[  257.098238][ T9261] [U] 
[  257.100912][ T9261] [U] 
[  257.103584][ T9261] [U] 
[  257.135589][ T9261] [U] 
[  257.138308][ T9261] [U] 
[  257.140980][ T9261] [U] 
[  257.143653][ T9261] [U] 
[  257.165471][ T9261] [U] 
[  257.168179][ T9261] [U] 
[  257.170850][ T9261] [U] 
[  257.173519][ T9261] [U] 
[  257.205594][ T9261] [U] 
[  257.208311][ T9261] [U] 
[  257.210980][ T9261] [U] 
[  257.213653][ T9261] [U] 
[  257.235462][ T9261] [U] 
[  257.238173][ T9261] [U] 
[  257.240842][ T9261] [U] 
[  257.243511][ T9261] [U] 
[  257.285944][ T9261] [U] 
[  257.288664][ T9261] [U] 
[  257.291334][ T9261] [U] 
[  257.294008][ T9261] [U] 
[  257.341991][ T9261] [U] 
[  257.344706][ T9261] [U] 
[  257.347376][ T9261] [U] 
[  257.350045][ T9261] [U] 
[  257.385573][ T9261] [U] 
[  257.388328][ T9261] [U] 
[  257.391003][ T9261] [U] 
[  257.393674][ T9261] [U] 
[  257.431105][ T9261] [U] 
[  257.433821][ T9261] [U] 
[  257.436493][ T9261] [U] 
[  257.439163][ T9261] [U] 
[  257.473887][ T9261] [U] 
[  257.476600][ T9261] [U] 
[  257.479309][ T9261] [U] 
[  257.481981][ T9261] [U] 
[  257.512008][ T9261] [U] 
[  257.514730][ T9261] [U] 
[  257.517401][ T9261] [U] 
[  257.520071][ T9261] [U] 
[  257.545654][ T9261] [U] 
[  257.548372][ T9261] [U] 
[  257.551045][ T9261] [U] 
[  257.553722][ T9261] [U] 
[  257.601845][ T9261] [U] 
[  257.604555][ T9261] [U] 
[  257.607236][ T9261] [U] 
[  257.609908][ T9261] [U] 
[  257.635676][ T9261] [U] 
[  257.638392][ T9261] [U] 
[  257.641109][ T9261] [U] 
[  257.643781][ T9261] [U] 
[  257.679071][ T9261] [U] 
[  258.042047][ T9253] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  258.049293][ T9253] CPU: 1 UID: 0 PID: 9253 Comm: syz.0.666 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[  258.059860][ T9253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  258.069901][ T9253] Call Trace:
[  258.073166][ T9253]  <TASK>
[  258.076081][ T9253]  dump_stack_lvl+0x3d/0x1f0
[  258.080665][ T9253]  panic+0x71d/0x800
[  258.084581][ T9253]  ? __pfx_panic+0x10/0x10
[  258.088983][ T9253]  ? preempt_schedule_thunk+0x1a/0x30
[  258.094345][ T9253]  ? preempt_schedule_common+0x44/0xc0
[  258.099787][ T9253]  check_panic_on_warn+0xab/0xb0
[  258.104706][ T9253]  end_report+0x117/0x180
[  258.109045][ T9253]  kasan_report+0xe9/0x110
[  258.113445][ T9253]  ? msft_opcode_get+0x6d/0x80
[  258.118196][ T9253]  ? msft_opcode_get+0x6d/0x80
[  258.122948][ T9253]  msft_opcode_get+0x6d/0x80
[  258.127521][ T9253]  ? __pfx_msft_opcode_get+0x10/0x10
[  258.132793][ T9253]  simple_attr_read+0x169/0x370
[  258.137626][ T9253]  ? __debugfs_file_get+0x1ff/0x850
[  258.142820][ T9253]  ? __pfx_simple_attr_read+0x10/0x10
[  258.148177][ T9253]  ? __debugfs_file_get+0x1ff/0x850
[  258.153357][ T9253]  ? __pfx___debugfs_file_get+0x10/0x10
[  258.158907][ T9253]  debugfs_attr_read+0x76/0xa0
[  258.163673][ T9253]  full_proxy_read+0x13c/0x200
[  258.168420][ T9253]  ? __pfx_full_proxy_read+0x10/0x10
[  258.173689][ T9253]  vfs_read+0x1df/0xbf0
[  258.177832][ T9253]  ? __fget_files+0x1fc/0x3a0
[  258.182497][ T9253]  ? __pfx___mutex_lock+0x10/0x10
[  258.187508][ T9253]  ? __pfx_vfs_read+0x10/0x10
[  258.192169][ T9253]  ? __fget_files+0x206/0x3a0
[  258.196831][ T9253]  ksys_read+0x12b/0x250
[  258.201060][ T9253]  ? __pfx_ksys_read+0x10/0x10
[  258.205827][ T9253]  do_syscall_64+0xcd/0x250
[  258.210324][ T9253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.216222][ T9253] RIP: 0033:0x7f3f4078d169
[  258.220621][ T9253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  258.240212][ T9253] RSP: 002b:00007f3f4154f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  258.248622][ T9253] RAX: ffffffffffffffda RBX: 00007f3f409a6080 RCX: 00007f3f4078d169
[  258.256587][ T9253] RDX: 000000000000ffff RSI: 0000400000006740 RDI: 0000000000000007
[  258.264572][ T9253] RBP: 00007f3f4080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  258.272530][ T9253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  258.280490][ T9253] R13: 0000000000000000 R14: 00007f3f409a6080 R15: 00007fffeb844c68
[  258.288537][ T9253]  </TASK>
[  258.291634][ T9253] Kernel Offset: disabled
[  258.295955][ T9253] Rebooting in 86400 seconds..