last executing test programs:

9m45.087890707s ago: executing program 3 (id=188):
recvmmsg$auto(0x3, 0x0, 0x10000, 0x1a000, 0x0)

9m44.753542503s ago: executing program 3 (id=189):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
futex_wait$auto(0x0, 0x2, 0x7, 0x2, &(0x7f0000000080)={0x80000000005, 0x7fff}, 0x1)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000002500), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffc)
shmctl$auto(0x0, 0x1, &(0x7f0000000280)={{0x2, 0xffffffffffffffff, 0x0, 0x9, 0x8, 0x3, 0x5}, 0x4, 0x4, 0x2, 0x8000000000000001, 0x7f, 0x806, 0x4, 0x0, 0x0, 0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x2c, r3, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80)
r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_ZERO(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000180)={0x60, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xc}, @IPVS_CMD_ATTR_DAEMON={0x44, 0x3, "866cadf0526bf37c1120341932affc94aefadc95ec13be2cf23e59e1c943b94ade2cd3ea556c0a03498ead29e3998b651ff80b0f2519a32d165dd6ccb2262610"}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000001}, 0x4000001)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_DP_CMD_DEL(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01602abd7000fedbdf2502"], 0x38}, 0x1, 0x0, 0x0, 0x20040011}, 0x20000000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000500)={'gretap0\x00', <r7=>0x0})
socket(0xa, 0x23af690fef30229, 0x9)
sendmsg$auto_OVS_DP_CMD_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x28, r1, 0x5, 0x70bd29, 0x25dfdbfc, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r7}, @OVS_DP_ATTR_NAME={0xb, 0x1, '.\x02:\xb6-$\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000c000}, 0x4000024)

9m43.748864594s ago: executing program 3 (id=193):
io_submit$auto(0x9, 0x8, &(0x7f0000000040)=&(0x7f0000000080)={0x0, 0x15e6, 0x2, 0x3c, 0x10, 0x25c, 0x0, 0x7, 0x5, 0x0, 0x8})
mmap$auto(0x100000, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x3, 0x6)
ioctl$auto(0x3, 0x8936, 0x91)

9m43.555581584s ago: executing program 3 (id=194):
mmap$auto(0x0, 0x10000020006, 0x10000000000df, 0xeb1, 0x10000003fc, 0x7)
socket(0x2a, 0x2, 0x6)
connect$auto(0x3, &(0x7f0000000180)={0x2a, @sa_data_min="70690c8d0608863beb44b518f1f3"}, 0x54)
io_uring_setup$auto(0x6, 0x0)
read$auto(0x3, 0x0, 0x80)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000000c0), r0)
sendmsg$auto_OVS_DP_CMD_DEL(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x28, r1, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x4}, @OVS_DP_ATTR_NAME={0xa, 0x1, ']MO\xe7\xdc\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x40040000}, 0x8810)
mincore$auto(0x0, 0x8000000000005a, 0x0)
bpf$auto(0x10, 0x0, 0x9)
mmap$auto(0x0, 0x8, 0x3, 0xeb0, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0xffffffffffffffff, 0x40009, 0x3, 0x9b72, 0x7, 0x7)
io_uring_setup$auto(0x6, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x6)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0xa22c0, 0x155)
open(0x0, 0xa240, 0x1de)

9m42.207437953s ago: executing program 3 (id=199):
mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0x80000000, @_sigpoll={0x52, 0x7}}})
mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000)
setitimer$auto(0x9, &(0x7f0000001e80)={{0xfffffffffffffffb, 0x4}, {0xfffffffffffffffe, 0xff}}, 0x0)
r0 = socket(0x10, 0x3, 0x6)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYRESOCT=r1, @ANYRESOCT=r1, @ANYBLOB="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"], 0x138}, 0x1, 0x0, 0x0, 0x4000094}, 0x400c810)
r2 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x404000, 0x2, 0x15}, 0x18)
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
ioctl$auto(0x1, 0x5421, 0xa)
close_range$auto(r0, r2, 0x7ff)
mremap$auto(0xfffffffffffffffc, 0x7, 0x5, 0x1ff, 0xffffffff)
tee$auto(0xc9, 0x0, 0x3, 0x4)
mremap$auto(0x9, 0x9, 0x6, 0x0, 0x9)

9m38.622381236s ago: executing program 3 (id=203):
r0 = socket(0x11, 0x3, 0x2)
r1 = socket(0x2, 0x2, 0x88)
setsockopt$auto(r1, 0x88, 0x68, &(0x7f0000000000)='!/*:(*\'\x00', 0xe)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x20008000)
socket(0x2, 0x801, 0x84)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
stat$auto(&(0x7f0000000000)='..\x00\x00', 0x0)
poll$auto(0x0, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x10000000084, 0x84, 0x0, 0x90)
bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
open(&(0x7f0000000200)='./cgroup\x00', 0xe180, 0x181)
sendmmsg$auto(0x3, 0x0, 0x7, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sysfs$auto(0x2, 0x4, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0x2, @sa_data_min="09ae0300"}, 0x55)
semctl$auto(0x1ff, 0x2, 0x13, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000bc0), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_MON_SET(r2, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000c00)={0x14, r3, 0x1, 0x70bd27, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0x8000)
sendmsg$auto_TIPC_NL_MON_GET(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r3, 0x20, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x531985243ce13814}, 0xc1)
sendto$auto(0x3, 0x0, 0x18, 0x101, &(0x7f0000000140)={0x2, @sockaddr_1_1}, 0x1c)

9m38.239888846s ago: executing program 32 (id=203):
r0 = socket(0x11, 0x3, 0x2)
r1 = socket(0x2, 0x2, 0x88)
setsockopt$auto(r1, 0x88, 0x68, &(0x7f0000000000)='!/*:(*\'\x00', 0xe)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x20008000)
socket(0x2, 0x801, 0x84)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
stat$auto(&(0x7f0000000000)='..\x00\x00', 0x0)
poll$auto(0x0, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x10000000084, 0x84, 0x0, 0x90)
bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
open(&(0x7f0000000200)='./cgroup\x00', 0xe180, 0x181)
sendmmsg$auto(0x3, 0x0, 0x7, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sysfs$auto(0x2, 0x4, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0x2, @sa_data_min="09ae0300"}, 0x55)
semctl$auto(0x1ff, 0x2, 0x13, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000bc0), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_MON_SET(r2, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000c00)={0x14, r3, 0x1, 0x70bd27, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0x8000)
sendmsg$auto_TIPC_NL_MON_GET(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r3, 0x20, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x531985243ce13814}, 0xc1)
sendto$auto(0x3, 0x0, 0x18, 0x101, &(0x7f0000000140)={0x2, @sockaddr_1_1}, 0x1c)

8m39.434638945s ago: executing program 2 (id=379):
mmap$auto(0x600, 0x40008, 0x7, 0x10, 0x7, 0x4000000028000)
socket(0xa, 0x2, 0x73)
socket(0xa, 0x801, 0x84)
setreuid$auto(0x3, 0x7)
move_pages$auto(0x1, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x2)
bind$auto(0x4, 0x0, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0xc8, 0x400454de, 0x5c8d)

8m39.079413427s ago: executing program 2 (id=381):
r0 = socket(0xa, 0x5, 0x0) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
bpf$auto(0x5, &(0x7f0000000000)=@iter_create={<r1=>0x1c, 0x5}, 0x7) (async)
shutdown$auto(0x200000003, 0x2) (async)
socket(0xa, 0x2, 0x0)
select$auto(0x6d0c, 0x0, &(0x7f0000000180)={[0xd, 0x200, 0x800000000000008, 0xc, 0x9, 0x3, 0x6, 0x1, 0x40009, 0xcd16, 0x4000000000000000, 0x14, 0x93, 0x8, 0x8, 0x6]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
connect$auto(0x3, &(0x7f00000018c0)={0x2, @sa_data_min="915bac14140ba3df94bb303b2f9d"}, 0x55) (async)
mmap$auto(0x4, 0x7, 0x1, 0xf0f7, 0x2, 0xee0d) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r2 = socket(0x11, 0x80003, 0x300) (async)
write$auto(0x3, 0x0, 0xfdef)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async)
connect$auto(0x3, &(0x7f0000000000)={0x2, @sockaddr_1_1}, 0x55) (async)
shmat$auto(0xb2e, &(0x7f0000000100)='\\\x99\x00', 0x200)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000ec0), 0xffffffffffffffff) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) (async)
dup2$auto(0x0, 0x4) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0)
sendmsg$auto_NBD_CMD_DISCONNECT(r1, 0x0, 0x4000040)
dup2$auto(r3, r0)
ioperm$auto(0x7, 0x5, 0xa) (async)
quotactl_fd$auto(r2, 0x0, 0x3, &(0x7f00000000c0)=[0x972d, 0x1, 0xc]) (async)
kcmp$auto(0x1, 0x1, 0x0, 0x100000004, 0x100000001)

8m38.047832904s ago: executing program 2 (id=385):
bpf$auto(0x8000000000000020, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff)
r1 = socket(0x22, 0x2, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1)
fanotify_init$auto(0x2, 0x400000400)
r3 = socket(0x2, 0x3, 0xa)
socket(0x2, 0x3, 0xa)
dup2$auto(r0, 0x4)
shutdown$auto(0x5, 0x2)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x1000, 0xf)
sendmsg$auto_IEEE802154_LLSEC_ADD_SECLEVEL(r3, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x84000428}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x34, 0x0, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x40}, @IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0x6}, @IEEE802154_ATTR_DEST_SHORT_ADDR={0x6, 0xe, 0x6}, @IEEE802154_ATTR_DURATION={0x5, 0x15, 0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x845}, 0x20040004)
sendmsg$auto_NL80211_CMD_SET_FILS_AAD(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="90010000", @ANYRES16=r2, @ANYBLOB="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"], 0x190}, 0x1, 0x0, 0x0, 0x4}, 0x8800)
socket(0x15, 0x5, 0x0)
setsockopt$auto(0x7, 0x114, 0x3, 0xffffffffffffffff, 0xa0)
close_range$auto(0x0, 0xffffffffffffffff, 0x0)
bpf$auto(0x8000000000000020, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff) (async)
socket(0x22, 0x2, 0x2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1) (async)
fanotify_init$auto(0x2, 0x400000400) (async)
socket(0x2, 0x3, 0xa) (async)
socket(0x2, 0x3, 0xa) (async)
dup2$auto(r0, 0x4) (async)
shutdown$auto(0x5, 0x2) (async)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x1000, 0xf) (async)
sendmsg$auto_IEEE802154_LLSEC_ADD_SECLEVEL(r3, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x84000428}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x34, 0x0, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x40}, @IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0x6}, @IEEE802154_ATTR_DEST_SHORT_ADDR={0x6, 0xe, 0x6}, @IEEE802154_ATTR_DURATION={0x5, 0x15, 0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x845}, 0x20040004) (async)
sendmsg$auto_NL80211_CMD_SET_FILS_AAD(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="90010000", @ANYRES16=r2, @ANYBLOB="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"], 0x190}, 0x1, 0x0, 0x0, 0x4}, 0x8800) (async)
socket(0x15, 0x5, 0x0) (async)
setsockopt$auto(0x7, 0x114, 0x3, 0xffffffffffffffff, 0xa0) (async)
close_range$auto(0x0, 0xffffffffffffffff, 0x0) (async)

8m37.587851387s ago: executing program 2 (id=388):
socket(0x15, 0x5, 0xe)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x5, 0x3, 0x8b72, 0x6, 0x8000)
exit$auto(0x7)
unshare$auto(0x40000080)
mmap$auto(0x959, 0x400008, 0xdf, 0x9b72, 0x10000000000002, 0x8000)
clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
bpf$auto(0x0, 0x0, 0x6f4)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
io_uring_setup$auto(0x6, 0x0)
clock_nanosleep$auto(0x9, 0x0, 0x0, 0xffffffffffffffff)
socket(0xa, 0x5, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
io_uring_setup$auto(0x6, 0x0)
futex_waitv$auto(&(0x7f0000000000)={0xdc0, 0x6, 0x30000000}, 0x1, 0x9, &(0x7f0000000080)={0x73af, 0x26}, 0x2)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x400c000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
bpf$auto(0x12, &(0x7f0000000000)=@info={0x2800, 0x1ff, 0x2}, 0xcf)
socketpair$auto(0x3, 0x5, 0x7, 0x0)

8m36.262321204s ago: executing program 2 (id=391):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) (async)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x44000)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
open(0x0, 0x22240, 0x155) (rerun: 64)
r0 = socket(0x2b, 0x1, 0x0) (async)
sendmsg$auto_IPVS_CMD_GET_DEST(0xffffffffffffffff, 0x0, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000040), 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r1) (async, rerun: 64)
r2 = socket(0xa, 0x2, 0x3a) (rerun: 64)
setsockopt$auto(r2, 0x29, 0x49, &(0x7f0000000040)='!\x00', 0x1ff) (async)
mq_unlink$auto(0x0) (async)
mremap$auto(0x5, 0x9, 0x9, 0x19df, 0x6)
sendmsg$auto_WG_CMD_SET_DEVICE(r0, 0x0, 0x20008880) (async)
socket(0x18, 0xa, 0xc)
tkill$auto(0x80000000000001, 0x7) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r4 = syz_genetlink_get_family_id$auto_TASKSTATS(&(0x7f0000000040), 0xffffffffffffffff) (rerun: 32)
sendmsg$auto_TASKSTATS_CMD_GET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x1c, r4, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@TASKSTATS_CMD_ATTR_PID={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8001}, 0x20011030) (async)
bind$auto(0x3, &(0x7f0000000000)={0x10, @sa_data_min="d059b8a5b5bce4bdf082c36111fd"}, 0xf) (async, rerun: 64)
close_range$auto(0x2, 0x8000, 0x0) (async, rerun: 64)
setreuid$auto(0xffffffffffffffff, 0x0) (async)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2482c1, 0x16e)
r6 = open(&(0x7f0000000040)='./file0\x00', 0x109501, 0x0) (async)
poll$auto(&(0x7f00000000c0)={<r7=>r5, 0xd, 0x9}, 0x10, 0x2)
read$auto(r7, &(0x7f0000000100)='+*\x00', 0x5)
lseek$auto(r6, 0x1000, 0x72) (async)
setresuid$auto(0xd, 0x0, 0x221) (async)
setrlimit$auto(0x6, &(0x7f0000000140)={0x0, 0x6})

8m33.796464632s ago: executing program 2 (id=404):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x1a000, 0x0)

8m33.368215134s ago: executing program 33 (id=404):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x1a000, 0x0)

5m19.261735166s ago: executing program 4 (id=1101):
mmap$auto(0x0, 0x8020009, 0xe2, 0xcb1, 0x401, 0x8040001008000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x20018010)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x20008000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
open(0x0, 0x22242, 0x155)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
sendmsg$auto_IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0)
sendmsg$auto_OVS_METER_CMD_GET(r1, 0x0, 0x44800)
syz_genetlink_get_family_id$auto_TASKSTATS(0x0, r0)
rmdir$auto(0x0)
recvfrom$auto(r0, 0x0, 0x10000, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0x10001)

5m18.210180647s ago: executing program 4 (id=1104):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x5, 0x3, 0x8b72, 0x6, 0x8000)
exit$auto(0x7)
unshare$auto(0x40000080)
mmap$auto(0x959, 0x400008, 0xdf, 0x9b72, 0x10000000000002, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
clock_nanosleep$auto(0x9, 0x0, 0x0, 0xffffffffffffffff)
socket(0xa, 0x5, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
io_uring_setup$auto(0x6, 0x0)
futex_waitv$auto(&(0x7f0000000000)={0xdc0, 0x6, 0x30000000}, 0x1, 0x9, &(0x7f0000000080)={0x73af, 0x26}, 0x2)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55) (fail_nth: 2)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x400c000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
bpf$auto(0x12, 0x0, 0xcf)
socketpair$auto(0x3, 0x5, 0x7, 0x0)

5m16.368018981s ago: executing program 4 (id=1110):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x25, 0x1, 0x3)
close_range$auto(0x2, 0x8, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002d94a4203a2f8e2d18195b0008000300", @ANYRES32=r4], 0x24}, 0x1, 0x0, 0x0, 0x803}, 0x80)
sendmsg$auto_NL80211_CMD_DEL_TX_TS(r0, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000004c0)={0x0}, 0x1, 0x0, 0x0, 0x81}, 0x4000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002440)={0xff4, r6, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x5}, @NL80211_ATTR_STA_FLAGS2={0xe6, 0x43, "68df388e427e6e2ce6dfe8aa4da013d7ed33941db4f0d7881224b8404148ae030f5d5a991478ed874fa7059b630f457df018b9bb6fb1f910602e24980af64860c4854d2a183972c8ad83521a3da8d69b41fb596a92f45fddfca3171e2557617072ee111f180638882409dc363a908e37ecf8cf183b28fb389d252978c6b5bd5d800d1071235de03e76f342fb72037e37ac4cf500f4ccbd6faf648f990da4eb2a97923a16bb5986a368b2d4f1dab3e859ad814506d5b98177c40ca3def591bb84755d050f933db2c89ebcfdd89ae8a416fd2052dab3d1f460f491f41cc23cc899da27"}, @NL80211_ATTR_AP_SETTINGS_FLAGS={0x8, 0x135, 0x9}, @NL80211_ATTR_SCAN_FREQ_KHZ={0xee5, 0x124, "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"}]}, 0xff4}, 0x1, 0x0, 0x0, 0x4c004}, 0x881)
r7 = socket(0x26, 0x80805, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(0x3, 0x400, 0x1)
fremovexattr$auto(0x3, &(0x7f0000000080)='\\-\x00')
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000001c0), r8)
syz_genetlink_get_family_id$auto_SMC_GEN_NETLINK(&(0x7f0000000040), r7)
r9 = syz_genetlink_get_family_id$auto_TASKSTATS(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TASKSTATS_CMD_GET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x1c, r9, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@TASKSTATS_CMD_ATTR_PID={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8001}, 0x20011030)

5m15.417609672s ago: executing program 4 (id=1112):
r0 = socket(0xa, 0x801, 0x106)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c40400"}, 0x55)
sendmsg$auto_BATADV_CMD_SET_HARDIF(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x80d5}, 0x24000800)
mmap$auto(0x0, 0x400008, 0xe2, 0x10, 0xfffffffffffffff7, 0x8000)
newfstatat$auto(0x0, 0xfffffffffffffffd, 0xfffffffffffffffe, 0xfffffffffffffff7)
lgetxattr$auto(&(0x7f00000002c0)='\'&:/V\x00', &(0x7f0000000300)='IOAM6\x00', &(0x7f0000000340)=[0x4, 0x27f, 0xc7a, 0x5af], 0x7fff)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x101000, 0x140)
bpf$auto(0x0, &(0x7f0000000040)=@link_update={r0, @new_prog_fd=r0, 0x7, @old_map_fd=r1}, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mremap$auto(0x1, 0x8000000000000008, 0x3fd6, 0x3, 0x0)
kcmp$auto(0x1, 0xffffffff, 0x7, 0x4, 0xe)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_IOAM6(&(0x7f0000000ec0), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x14, 0x0, 0x4, 0x6, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x800)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r4)
r5 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000005c0), r4)
sendmsg$auto_MACSEC_CMD_ADD_RXSC(r4, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000600)={0x1c, r5, 0x8ff972b65c311bf5, 0x72bd26, 0x25dfdbfe, {}, [@MACSEC_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8090}, 0x4000)
sendmsg$auto_NL80211_CMD_SET_MCAST_RATE(r4, &(0x7f00000005c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000580)={&(0x7f00000003c0)={0x188, 0x0, 0x800, 0x70bd29, 0x25dfdbfc, {}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0xf830}, @NL80211_ATTR_STA_PLINK_ACTION={0x5, 0x19, 0x8}, @NL80211_ATTR_FILS_ERP_REALM={0xf1, 0xfa, "e38fcacac897152759a00f90e9fb16eef9d37da144b11058ba33723b4d1ec9b04640c355c409048002acbd7ca24852502301c1aca1c12b67c47036a48a0eaf317811dd55565d1f5815f7a96a0f191e7934acfd9fb870f22d4a2baf06f4fdc6115bc6c1773ee4a6c5c02cfed6716e3516df6384b9b89302404c720977d60f6ec1624a656e1255e8e1df419fab0871e650ef1f58f63a5edc5cf1c256be32925b6a0861f9aa0d16eda23177a742d402fd26fe71d56f4d1fb4c30d423b5604d048df76c8bb0ee86f8c3985058a481e3c4377d30690847a3eb4e15e2552ed54220b9d5b0ac1ef3f24e5a113ed37806a"}, @NL80211_ATTR_MAC_HINT={0x6c, 0xc8, "f045c213b758ae97f18efeb7293ddce3d144016a34721a6067a5a441c615f5a2d97f4777d2205caf826c9cc145082aa6bb0f69c281e406fa83ceee967f307459ac40ae36c67cbadd925e3f0cde13fa816435909f5b952044794b0c95c8ca5765c1bc4a0d1677dea6"}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}]}, 0x188}, 0x1, 0x0, 0x0, 0x4000000}, 0x40000)
sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(r2, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000f00)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="01002dbd7000fcdbdf250200"], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)
sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x30, r3, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@IOAM6_ATTR_NS_DATA={0x8, 0x2, 0x2}, @IOAM6_ATTR_NS_DATA={0x8, 0x2, 0x40}, @IOAM6_ATTR_NS_DATA_WIDE={0xc, 0x3, 0x87fb}]}, 0x30}}, 0x40000)
socket(0x1f, 0xa, 0x5)

5m14.611795731s ago: executing program 4 (id=1115):
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x20000000003, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setgroups$auto(0xe32, &(0x7f0000000040)=0x9)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r0)
socket(0x18, 0xa, 0xc)
tkill$auto(0x80000000000001, 0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_TASKSTATS(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TASKSTATS_CMD_GET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="01002abd7000fcdbdf250100000008000100", @ANYRES32=0x1, @ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x8001}, 0x20011030)
bind$auto(0x3, &(0x7f0000000000)={0x10, @sa_data_min="d059b8a5b5bce4bdf082c36111fd"}, 0xf)
close_range$auto(0x2, 0x8000, 0x0)
setreuid$auto(0xffffffffffffffff, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x280, 0x100)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x84c1, 0x0)
poll$auto(&(0x7f00000000c0)={<r5=>r3, 0xd, 0x9}, 0x10, 0x2)
read$auto(r5, &(0x7f0000000100)='+*\x00', 0x5)
lseek$auto(r4, 0x1000, 0x72)
setresuid$auto(0xd, 0x0, 0x221)
setrlimit$auto(0x6, &(0x7f0000000140)={0x0, 0x6})
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sendmsg$auto_OVS_FLOW_CMD_DEL(0xffffffffffffffff, 0x0, 0x800)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
sched_getscheduler$auto(0x1)
setresuid$auto(0x0, 0x8, 0x8000)
setrlimit$auto(0x8, 0x0)
mlock$auto(0xfbe8, 0x4)
clone$auto(0xc8, 0x7, 0xfffffffffffffffe, 0x0, 0xd)

5m12.878108739s ago: executing program 4 (id=1123):
mmap$auto(0x0, 0x100000000400005, 0xe0, 0x9b71, 0x8000000000000003, 0x7ffd)
stat$auto(&(0x7f0000000000)='..\x00\x00', 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
socket(0xa, 0x2, 0x88)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
connect$auto(0x3, &(0x7f0000000000)={0x2, @sa_data_min="0800e00000000000c1728d2af766"}, 0x55)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
kcmp$auto(0x1, 0x1, 0x7, 0x4, 0xe)

5m12.503106098s ago: executing program 34 (id=1123):
mmap$auto(0x0, 0x100000000400005, 0xe0, 0x9b71, 0x8000000000000003, 0x7ffd)
stat$auto(&(0x7f0000000000)='..\x00\x00', 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
socket(0xa, 0x2, 0x88)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
connect$auto(0x3, &(0x7f0000000000)={0x2, @sa_data_min="0800e00000000000c1728d2af766"}, 0x55)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
kcmp$auto(0x1, 0x1, 0x7, 0x4, 0xe)

2m38.826408655s ago: executing program 5 (id=1801):
socket(0x2b, 0x1, 0x3)
socket(0x26, 0x4, 0x7c)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001ac0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001b40)={'batadv0\x00'})
sendmsg$auto_BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000001c40)={0x0, 0x0, &(0x7f0000001c00)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x40080}, 0x20008800)
close_range$auto(0x2, 0x8000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socket(0x10, 0x2, 0x15)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x60000004}, 0xc801)
mprotect$auto(0x1ffff000, 0x8000000000000002, 0x5)
sendmsg$auto_CTRL_CMD_GETFAMILY(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000051}, 0x20008080)
setsockopt$auto(0x3, 0x6, 0x1, 0x0, 0x4)

2m38.380161244s ago: executing program 5 (id=1803):
setresgid$auto(0x81, 0x800000a0, 0x8)
socket(0x2, 0x2, 0x1)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
exit$auto(0x7)
unshare$auto(0x40000080)
exit$auto(0x1)
mmap$auto(0x9, 0x400008, 0xdf, 0x9b72, 0x3, 0x8000)
clone$auto(0x400000000d0, 0x7, 0xffffffffffffffff, 0xfffffffffffffffc, 0x9)
acct$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
open(0x0, 0x305202, 0x84)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0xfff, 0x21eb, 0x7fe, 0x6, 0x8, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
bind$auto(0x7, &(0x7f0000000000)={0x2, @sa_data_min="590eac1414349774a263b19050fe"}, 0x6f)
getsockopt$auto(0x3, 0xff, 0x99, 0xfffffffffffffffe, 0xfffffffffffffffd)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x7, 0x1, 0x4, 0x0, 0x9)
socket(0x22, 0x2, 0x2)
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
inotify_rm_watch$auto(0x0, 0x9)
pwritev2$auto(0x3ff, &(0x7f0000000080)={&(0x7f0000000040)=[0x8, 0x81, 0x1000, 0x5], 0x44}, 0x6, 0xaae5, 0x3, 0x101)
madvise$auto(0x0, 0x7ffffffffffffffc, 0xc)
madvise$auto(0x0, 0x8000000000000002, 0xd)
close_range$auto(0x1e81, 0x1c003, 0x3)
open(0x0, 0x22240, 0x155)

2m37.219287552s ago: executing program 5 (id=1807):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
socket(0x11, 0x2, 0x73) (async)
socket(0x11, 0x2, 0x73)
mmap$auto(0x70a, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x70a, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
io_uring_setup$auto(0x5, &(0x7f0000000000)={0x6, 0x6, 0x400, 0x7, 0x5, 0x6, 0x7, [0x4, 0x9, 0x8], {0x1, 0x1, 0x7, 0x7, 0x5, 0x5, 0x1, 0xfffffffc, 0x7}, {0x4, 0xfffff654, 0xffff7fff, 0x2, 0x8, 0x200, 0x38c1, 0x0, 0x3}})
madvise$auto(0x0, 0x53, 0x9) (async)
madvise$auto(0x0, 0x53, 0x9)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000080), r0)
sendmsg$auto_TIPC_NL_BEARER_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="2b0325bd7000fddbdf2506"], 0x14}, 0x1, 0x0, 0x0, 0x865ae20e8bc42f4a}, 0x20000000)
readv$auto(0x4, &(0x7f0000000100)={0x0, 0x8}, 0x1ff)
madvise$auto(0x0, 0x3, 0x15)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x6, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xa) (async)
socket(0x2, 0x3, 0xa)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={0x5, @new_map_fd=0xb62, 0x3, @old_prog_fd=0x4}, 0xd)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0x3, 0x0, 0x3}, 0x4)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x7}, 0xc)

2m34.195961257s ago: executing program 5 (id=1814):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x25, 0x1, 0x3)
close_range$auto(0x2, 0x8, 0xfffff000)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002d94a4203a2f8e2d18195b0008000300", @ANYRES32=r4], 0x24}, 0x1, 0x0, 0x0, 0x803}, 0x80)
sendmsg$auto_NL80211_CMD_DEL_TX_TS(r0, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000004c0)={0x0}, 0x1, 0x0, 0x0, 0x81}, 0x4000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002440)={0xffc, r6, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x5}, @NL80211_ATTR_STA_FLAGS2={0xed, 0x43, "68df388e427e6e2ce6dfe8aa4da013d7ed33941db4f0d7881224b8404148ae030f5d5a991478ed874fa7059b630f457df018b9bb6fb1f910602e24980af64860c4854d2a183972c8ad83521a3da8d69b41fb596a92f45fddfca3171e2557617072ee111f180638882409dc363a908e37ecf8cf183b28fb389d252978c6b5bd5d800d1071235de03e76f342fb72037e37ac4cf500f4ccbd6faf648f990da4eb2a97923a16bb5986a368b2d4f1dab3e859ad814506d5b98177c40ca3def591bb84755d050f933db2c89ebcfdd89ae8a416fd2052dab3d1f460f491f41cc23cc899da2718a50e1f1a2dcb"}, @NL80211_ATTR_AP_SETTINGS_FLAGS={0x8, 0x135, 0x9}, @NL80211_ATTR_SCAN_FREQ_KHZ={0xee5, 0x124, "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"}]}, 0xffc}, 0x1, 0x0, 0x0, 0x4c004}, 0x881)
r7 = socket(0x26, 0x80805, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(0x3, 0x400, 0x1)
fremovexattr$auto(0x3, &(0x7f0000000080)='\\-\x00')
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000001c0), r8)
syz_genetlink_get_family_id$auto_SMC_GEN_NETLINK(&(0x7f0000000040), r7)
r9 = syz_genetlink_get_family_id$auto_TASKSTATS(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TASKSTATS_CMD_GET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x1c, r9, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@TASKSTATS_CMD_ATTR_PID={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8001}, 0x20011030)

2m33.544662313s ago: executing program 5 (id=1817):
mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x4, 0x6, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x800)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r0)
r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000005c0), r0)
sendmsg$auto_MACSEC_CMD_ADD_RXSC(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000600)={0x14, r1, 0x8ff972b65c311bf5, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8090}, 0x4000)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000000), r0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
poll$auto(0x0, 0x48, 0x1)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00')
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/net\x00')
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffe, @_sigpoll={0x52, 0x7}}})
socket$nl_generic(0x10, 0x3, 0x10)
pidfd_open$auto(0x1, 0x0)
ioctl$NS_GET_PARENT(r2, 0xff04, 0x0)
clone3$auto(0x0, 0x1000)

2m32.967724204s ago: executing program 5 (id=1821):
connect$auto(0x3, &(0x7f0000000000)={0x2, @sa_data_min="0800e00000000000c1728d2af766"}, 0x55)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_WG_CMD_GET_DEVICE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYBLOB="012dbd"], 0x14}, 0x1, 0x0, 0x0, 0x20040104}, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r1)
sendmsg$auto_MAC802154_HWSIM_CMD_SET_EDGE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000c40)={0x14, 0x0, 0x50ed0a908d8e638f, 0x70bd2d, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x40)

2m32.680504964s ago: executing program 35 (id=1821):
connect$auto(0x3, &(0x7f0000000000)={0x2, @sa_data_min="0800e00000000000c1728d2af766"}, 0x55)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_WG_CMD_GET_DEVICE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYBLOB="012dbd"], 0x14}, 0x1, 0x0, 0x0, 0x20040104}, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r1)
sendmsg$auto_MAC802154_HWSIM_CMD_SET_EDGE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000c40)={0x14, 0x0, 0x50ed0a908d8e638f, 0x70bd2d, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x40)

1m4.265551126s ago: executing program 7 (id=2148):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000580), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f00000005c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0108000000000000002503000000050009000400000004000800"], 0x20}, 0x1, 0x0, 0x0, 0x4000004}, 0x51b41aab316a9d76)
fcntl$auto(r2, 0x1, 0x1) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000300), r4)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
lsm_list_modules$auto(&(0x7f0000000280)=0x4, &(0x7f00000002c0)=0x82b9, 0x5) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
getrandom$auto(0x0, 0x6000000, 0x3)
memfd_create$auto(0x0, 0x4)
mlockall$auto(0x7)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x2, 0x801, 0x100)
socket(0x11, 0x3, 0x2) (async)
mmap$auto(0x9, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getsockopt$auto(0x6, 0x107, 0x13, 0x0, 0x0) (async)
r6 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000002100), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_UPD_RXSA(r5, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000540)={0x1c, r6, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@MACSEC_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004040}, 0x20004090)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000340), 0xffffffffffffffff) (async)
write$auto(r7, &(0x7f0000000000)='MAC80211_HWSIM\x00', 0xfffffffffffffaf6)
r8 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000180), r0)
sendmsg$auto_NETDEV_CMD_BIND_RX(r4, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x480402}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r8, 0x100, 0x70bd2c, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x95}, 0x20000000)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x2c, r1, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_COALESCE_TX_AGGR_TIME_USECS={0x8, 0x1c, 0x3}, @ETHTOOL_A_COALESCE_STATS_BLOCK_USECS={0x8, 0xa, 0x2}, @ETHTOOL_A_COALESCE_TX_AGGR_MAX_FRAMES={0x8, 0x1b, 0x40}]}, 0x2c}, 0x1, 0x0, 0x0, 0x84}, 0x8080)
fcntl$auto(0x0, 0x2000400, 0x2080000001)

1m2.391953021s ago: executing program 7 (id=2155):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
ioperm$auto(0x3, 0x6, 0x2)
sched_getattr$auto(0x0, &(0x7f0000000100)={0x80000001, 0x8, 0x2, 0x7, 0x4e22, 0xd340, 0x200, 0x2, 0x8}, 0x101, 0x0)
socket(0xa, 0x3, 0x1)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40040021}, 0x8011)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
mq_notify$auto(0x5cf5, &(0x7f00000006c0)={@sival_ptr=&(0x7f0000000540), 0x3, 0x2, @_sigev_thread={0x0, 0x0}})
write$auto(0x3, 0x0, 0xfdef)
mremap$auto(0x0, 0x8000000000000008, 0x3fd9, 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0xa, 0x2, 0x0)
select$auto(0x6d0c, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x800000000000008, 0xc, 0x9, 0x3, 0x6, 0x1, 0x40009, 0x5e582972, 0x4000000000000000, 0x14, 0x93, 0x8, 0x8, 0x6]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
connect$auto(0x3, &(0x7f0000000000)={0x2, @sa_data_min="0800e00000000000c1728d2af766"}, 0x55)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x2, 0x697b}, 0xed7138c}, 0x9a6, 0x0)

1m2.197954296s ago: executing program 7 (id=2157):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
accept4$auto(0xffffffffffffffff, &(0x7f0000000100)={0xd7, @sockaddr_1_1={"44cd8228c6fc8deabac2bbb9d8ab2d611d40fd61f92ba8d82c66bdec7e9f3f2fbce5adf434398b225e53016a8780f829a156c92fdaadc6cd6c7452f8ef1b8a5f8f965b61e13eaf7b8a45dfa1a28f796c5bc44af10cb9b14a0c3e062f85e94a16d9ae3d1eb767ba3851971f31606d99a256392c7e68c18221a4bec2b6b42843e618b2dd993fb26d49fb7838dd637f1c725993d895ad56b127366666d7e3ea36070ac8fb4934667ca19a836f5b5a0fcc3d1b0f20c98a8372e16f2c9821cda8df8a130b6b56a4074c672c3f481c4ecb1c17272a18e45b58df6bb135a33aa3a50be918e3a6099b781739f87b56a98d5a5ac78fb5"}}, &(0x7f0000000200)=0xd, 0x200)
socket(0xa, 0x2, 0x73)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket(0x2, 0x80002, 0x73)
bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b)
socket(0x2, 0x3, 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_setup$auto(0x1, 0x0)
setsockopt$auto(0x3, 0x0, 0x7, 0x0, 0x26)
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mkdir$auto(&(0x7f00000001c0)='}[,&*}\x00', 0xc001)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)

1m1.505800075s ago: executing program 7 (id=2161):
mmap$auto(0x0, 0x6, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x3, 0x8, 0xfffffffffffffffe, 0xfffffffffffffffd, 0xfffffffffffffffe, 0x3)
socket(0x2b, 0x1, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
time$auto(0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x0, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@IOAM6_ATTR_NS_ID={0x6, 0x1, 0x41f}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc80c1}, 0x48000)
msgrcv$auto(0x2, 0x0, 0x8000000000000000, 0x1, 0xd2b9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
r1 = socket(0xa, 0x2, 0x3a)
arch_prctl$auto(0x5005, 0x8000000000000009)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sockaddr_1_1}, 0x55)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sendmsg$auto_NL80211_CMD_DEL_PMK(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="80"], 0x80}, 0x1, 0x0, 0x0, 0x4001}, 0x40044)
move_pages$auto(0x0, 0xd0, &(0x7f0000001100)=0x0, &(0x7f0000001140), 0x0, 0x1002)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mincore$auto(0x0, 0x8000000000005a, 0x0)
mincore$auto(0x2, 0x7, &(0x7f0000000000)='&@-\')}[@(,*\x00')
setsockopt$auto(0x3, 0x0, 0x60, 0x0, 0x1010151)

1m0.048929843s ago: executing program 7 (id=2166):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x65, 0x2)
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
tkill$auto(0x80000000000001, 0x7)
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
getrandom$auto(0x0, 0x6000000, 0x3)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0x23, 0x0, 0x568)
socket(0x2, 0x3, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x48, 0x0)
getsockopt$auto(r0, 0x6, 0x0, &(0x7f0000000040)='\x00', &(0x7f00000000c0)=0x2)
dup3$auto(0x8000000000000001, 0x5, 0x800000000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r1)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x1c, r2, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)

59.149046369s ago: executing program 7 (id=2171):
sendmsg$auto_VDPA_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="84000000", @ANYRES16=0x0, @ANYBLOB="000426bd7000fcdbdf25050000006f000a0060f27a4e732576e2747fd5eec5f78a453bafe7d67440c4f2f8b8f190b6c55dfacb8a25bb0bbaab66fb532bb5a82bfefc34fd5c0c6747f90efe3205d4aa90931a7d6f808ed7ed064ecc727c31b62ba583179106bb704ac9d5b2e806075eb794000000000000008079e59ef705"], 0x16}, 0x1, 0x0, 0x0, 0x8000}, 0x24000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x5, 0x3, 0x8b72, 0x6, 0x8000)
io_uring_setup$auto(0x6, 0x0)
clock_nanosleep$auto(0x9, 0x0, 0x0, 0xffffffffffffffff)
socket(0xa, 0x5, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
io_uring_setup$auto(0x6, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x15, 0x5, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x400c000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = gettid()
r1 = syz_open_procfs$namespace(r0, &(0x7f0000000000)='ns/pid\x00')
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/cgroup\x00')
mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
read$auto(0x4, 0x0, 0xfdef)
write$auto(0x3, 0x0, 0x10001)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x7141, 0xf)
fcntl$auto(r1, 0x9, 0x2)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002d94a4203a2f8e2d18195b0018000300", @ANYRES32=r5], 0x24}, 0x1, 0x0, 0x0, 0x803}, 0x80)
r6 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/net\x00')
ioctl$NS_GET_PARENT(r6, 0xb701, 0x0)

58.772188191s ago: executing program 36 (id=2171):
sendmsg$auto_VDPA_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="84000000", @ANYRES16=0x0, @ANYBLOB="000426bd7000fcdbdf25050000006f000a0060f27a4e732576e2747fd5eec5f78a453bafe7d67440c4f2f8b8f190b6c55dfacb8a25bb0bbaab66fb532bb5a82bfefc34fd5c0c6747f90efe3205d4aa90931a7d6f808ed7ed064ecc727c31b62ba583179106bb704ac9d5b2e806075eb794000000000000008079e59ef705"], 0x16}, 0x1, 0x0, 0x0, 0x8000}, 0x24000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x5, 0x3, 0x8b72, 0x6, 0x8000)
io_uring_setup$auto(0x6, 0x0)
clock_nanosleep$auto(0x9, 0x0, 0x0, 0xffffffffffffffff)
socket(0xa, 0x5, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
io_uring_setup$auto(0x6, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x15, 0x5, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x400c000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = gettid()
r1 = syz_open_procfs$namespace(r0, &(0x7f0000000000)='ns/pid\x00')
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/cgroup\x00')
mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
read$auto(0x4, 0x0, 0xfdef)
write$auto(0x3, 0x0, 0x10001)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x7141, 0xf)
fcntl$auto(r1, 0x9, 0x2)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002d94a4203a2f8e2d18195b0018000300", @ANYRES32=r5], 0x24}, 0x1, 0x0, 0x0, 0x803}, 0x80)
r6 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/net\x00')
ioctl$NS_GET_PARENT(r6, 0xb701, 0x0)

16.419268349s ago: executing program 8 (id=2283):
rseq$auto(0x0, 0x7ffe, 0x0, 0x6)
mmap$auto(0x0, 0x402000b, 0xdf, 0x10000000000eb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x12004)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
open(0x0, 0x161342, 0x100)
madvise$auto(0x3, 0x400, 0x6eb653de)
sendfile$auto(0x6, 0x3, 0x0, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)

13.751172485s ago: executing program 8 (id=2289):
r0 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64)
r1 = socket(0xa, 0x801, 0x84)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
select$auto(0xa, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x5, 0x3, 0x5, 0x2000000000000002, 0x9, 0x8, 0xff, 0xa, 0x4, 0xaab, 0x5, 0x4006]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
shutdown$auto(0x200000003, 0x2)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0x8)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x14, 0x0, 0x4, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x48891}, 0x20)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r2)
mq_notify$auto(0x5cf5, &(0x7f00000006c0)={@sival_ptr=0x0, 0x3, 0x2, @_sigev_thread={0x0, 0x0}})
close_range$auto(0x2, 0x8, 0x0)
lseek$auto(r1, 0x3, 0x9)
syz_genetlink_get_family_id$auto_802_15_4_MAC(&(0x7f0000000040), r0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_MAC802154_HWSIM(&(0x7f0000000080), r3)
fchdir$auto(r0)
mkdir$auto(&(0x7f0000000140)='MAC80211_HWSIM\x00', 0x1)
rmdir$auto(&(0x7f0000000340)='MAC80211_HWSIM\x00')

11.516564241s ago: executing program 8 (id=2293):
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
r0 = socket(0x2, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000002c0)={'wlan1\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010029bd50009ddbdf251100000008000300", @ANYRES32=r4], 0x1c}, 0x1, 0x0, 0x0, 0x20018048}, 0x0)
execveat$auto(r0, &(0x7f0000000040)='+$\x00', &(0x7f00000000c0)=&(0x7f0000000080)='[!*)\x00', &(0x7f0000000140)=&(0x7f0000000100)='[!*)\x00', 0x1)
socket(0x25, 0x5, 0x3)
socket(0x10, 0x2, 0x0)
memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
r5 = socket(0x3, 0x2, 0x8)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_PROTOCOL_FEATURES(r7, &(0x7f0000002280)={0x0, 0x0, &(0x7f0000002240)={&(0x7f0000002200)={0x14, r6, 0x1, 0x70bd2c, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x48800}, 0x4)
sendmsg$auto_NL80211_CMD_STOP_SCHED_SCAN(r5, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, r6, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@NL80211_ATTR_WIPHY_DYN_ACK={0x4}, @NL80211_ATTR_KEY_DATA={0xe, 0x7, "2f91101837c216049ecc"}, @NL80211_ATTR_CONTROL_PORT_NO_PREAUTH={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8084)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8000, 0x0)
keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0xe)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
setuid$auto(0x81)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8932, &(0x7f0000000780)={'bond0\x00'})
io_uring_setup$auto(0x6, 0x0)
lsetxattr$auto(0x0, &(0x7f0000005500)='[!*)\x00', &(0x7f0000005540), 0xd843, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f00000002c0)=[0x2, 0x9a6, 0x1, 0x7, 0x81, 0x3], 0x3)
mmap$auto(0x8000000, 0x8, 0xb, 0x13, 0x3, 0x180000000)

9.633532809s ago: executing program 8 (id=2298):
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
dup2$auto(0x0, 0x4)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0)
r0 = socket(0xa, 0x3, 0xff)
select$auto(0xfffffffd, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x9, 0x3, 0x1, 0x2800000000000002, 0x9, 0x5e582971, 0xff, 0x2c, 0x4, 0xffff, 0x74, 0xb]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
timer_create$auto(0xfffffff8, 0x0, &(0x7f0000000040)=0x1)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8044}, 0x10)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
timer_settime$auto(0x0, 0xffff8003, &(0x7f00000000c0)={{0x7, 0x10007}, {0x9}}, 0x0)
unlink$auto(&(0x7f0000000300)=')s:\x00')
mincore$auto(0x10000000, 0x8000000000005a, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x200, 0x2010000000000)
fanotify_mark$auto(0x0, 0x1, 0x8000, 0x4, 0x0)
sendmsg$auto_IPVS_CMD_SET_CONFIG(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)={0x1c, 0x0, 0x300, 0x70b525, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x0, 0x4, 0x2}]}, 0x5d}, 0x1, 0x0, 0x0, 0x4000}, 0x880)

8.043464182s ago: executing program 8 (id=2307):
mmap$auto(0x0, 0x202000b, 0x9, 0xeb1, 0xfffffffffffffffa, 0x8000)
bpf$auto(0x8, &(0x7f0000000040)=@link_create={@map_fd, @target_fd, 0x6, 0x8, @target_btf_id=0xffff}, 0x8a3)
getrandom$auto(0x0, 0x6000000, 0x3)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x4)
fallocate$auto(0x3, 0x0, 0xe, 0x8ec5)
rename$auto(&(0x7f0000000000)=')!\'\\\x00', &(0x7f0000000040)='vcan0\x00')
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
socket(0xa, 0x801, 0x84)
connect$auto(0x3, &(0x7f0000000040)={0x2, @sa_data_min="d1b9735c9faefa79bf4170f67833"}, 0x55)
shutdown$auto(0x200000003, 0x2)
shutdown$auto(0x200000003, 0x2)
open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mlockall$auto(0x7)
madvise$auto(0x0, 0x80000001, 0x9)
mlockall$auto(0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$auto_NL802154_CMD_SEND_BEACONS(0xffffffffffffffff, 0x0, 0x8080)
fsetxattr$auto(0x0, &(0x7f0000003c40)='%\x00', 0x0, 0x20000000001, 0x2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x6, 0x4, 0x7fb, 0x3, 0x401, 0x8, 0x2e, 0x2, 0x3}, 0x6f0)
io_uring_setup$auto(0x8, 0x0)
bpf$auto(0x0, &(0x7f0000000080)=@enable_stats={0xb}, 0x2)

6.738933554s ago: executing program 6 (id=2312):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
pidfd_open$auto(0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x0, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x7fe000000000, 0x2, 0x9b72, 0x5, 0x0)
prctl$auto(0x1000000001f, 0xa, 0x150, 0x1ec8, 0xc314)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
mmap$auto(0x6f, 0x400008, 0x200, 0x9b72, 0x2, 0xfffffffffffffffc)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000)
fanotify_init$auto(0x5, 0x2000000000002)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0xfffffffffffffffb, 0x7, 0x10011, 0x4, 0x4)
madvise$auto(0x0, 0x2000040080000004, 0xe)
writev$auto(0x2, 0x0, 0x3ff)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
clone$auto(0x7, 0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x1)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
clone$auto(0x81000005, 0x6, 0xfffffffffffffffd, 0xffffffffffffffff, 0x80000001)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x24, r1, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NFSD_A_SERVER_GRACETIME={0xffffffffffffffb2, 0x2, 0xd}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000021}, 0x4086)

5.842092465s ago: executing program 8 (id=2314):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x801, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
open(0x0, 0x2240, 0x100)
fsopen$auto(0x0, 0x1)
epoll_create$auto(0x4)
epoll_ctl$auto(0x5, 0x1, r0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r1, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x53, 0x9)
madvise$auto(0x10000, 0x5, 0x9)

5.015535749s ago: executing program 6 (id=2319):
socket(0xf, 0x3, 0x2)
r0 = getpid()
syz_open_procfs$namespace(r0, &(0x7f0000000000)='ns/cgroup\x00')
syz_open_procfs$namespace(r0, &(0x7f0000001100)='ns/ipc\x00')
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x1, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

4.672979672s ago: executing program 6 (id=2320):
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
clone$auto(0x7, 0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x1)
madvise$auto(0x0, 0x4, 0x15)

3.644985768s ago: executing program 6 (id=2323):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
lsm_get_self_attr$auto(0x3, &(0x7f0000000080)={0x427b7269, 0x0, 0x2}, &(0x7f0000000000)=0x645c6b85, 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r1)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYRES8=r2, @ANYRESDEC=0x0, @ANYRES32=r0], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1800) (async)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x9, 0x21e9, 0x7ff, 0x3, 0x100000000, 0xb, 0x2e, 0x0, 0x3}, 0x6f4) (async)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)
umount2$auto(&(0x7f0000000200)='.\x00', 0x9) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
geteuid()
bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)

2.431916254s ago: executing program 6 (id=2325):
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
futex$auto(0x0, 0x5, 0x8, 0x0, 0x0, 0x80000001)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0)
socket(0xa, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x10, 0x3, 0x3)
getrandom$auto(&(0x7f0000000080)='nf\xdc\xa1WE\xdc\xb2\xbd]\xd8\xd5X\x94sd\x00', 0x10000, 0x800108)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, 0x0, 0x40)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000180), r0)
ioperm$auto(0x7, 0x6, 0x2)
mmap$auto(0x0, 0x7, 0x2, 0xeb1, 0xfffffffffffffffa, 0x0)
r1 = open(&(0x7f00000000c0)='./cgroup.cpu/cpuset.cpus\x00', 0x103, 0x1)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
ioctl$auto(0x1, 0x541b, 0x8)
io_submit$auto(0xfffffffffffffffa, 0x100000001, 0x0)
close_range$auto(r1, r1, 0x80000000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)

2.181696955s ago: executing program 1 (id=2326):
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x23, 0x2, 0x0)
ioctl$auto(0x8000000000000001, 0x89ee, 0x9)
socket(0x2, 0x80002, 0x73)
mmap$auto(0x0, 0x8, 0xdf, 0x9b73, 0xd, 0xff)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
io_uring_setup$auto(0x6, 0x0)
sendmsg$auto_IEEE802154_ASSOCIATE_REQ(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x80}, 0x1, 0x0, 0x0, 0x4000}, 0x8800)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x2, 0x8000)
set_mempolicy$auto(0x4005, &(0x7f0000000000)=0x1, 0x4)
socket(0x23, 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x1e, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2c, 0x3, 0x0)
mmap$auto(0x0, 0x8, 0x1000000004, 0x13, 0x3, 0x8000)
remap_file_pages$auto(0x6a27, 0x1000, 0x1, 0xfc, 0x100000)
mmap$auto(0x67, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000002)
clone$auto(0x8000000000000000, 0x104, 0xfffffffffffffffc, 0x0, 0x100000000)
socket(0x2b, 0x4, 0x1)
listen$auto(0x3, 0x83)
socket(0x2, 0x2, 0x1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)

1.925850545s ago: executing program 1 (id=2327):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_GET(r0, &(0x7f0000001300)={0x0, 0x0, &(0x7f00000012c0)={&(0x7f0000000140)={0x28, r1, 0x301, 0x70bd27, 0x25dfdbf9, {}, [@OVS_FLOW_ATTR_ACTIONS={0x14, 0x2, "19056ba14b31278e119d6718fc7b17e0"}]}, 0x28}, 0x1, 0x0, 0x0, 0x4080}, 0x0)
sendmsg$auto_NL80211_CMD_STOP_SCHED_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x48}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x20, 0x70bd28, 0x25dfdbfd, {}, [@NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x1}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x40)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r2)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000700)={0x1c, r3, 0xb11, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1000)
sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x38, r3, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@BATADV_ATTR_ACTIVE={0x4}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_TT_FLAGS={0x8, 0x15, 0x41}, @BATADV_ATTR_VERSION={0xd, 0x1, 'ovs_flow\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x41}, 0x20000044)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000000c0), 0xffffffffffffffff) (async)
sendmsg$auto_OVS_FLOW_CMD_GET(r0, &(0x7f0000001300)={0x0, 0x0, &(0x7f00000012c0)={&(0x7f0000000140)={0x28, r1, 0x301, 0x70bd27, 0x25dfdbf9, {}, [@OVS_FLOW_ATTR_ACTIONS={0x14, 0x2, "19056ba14b31278e119d6718fc7b17e0"}]}, 0x28}, 0x1, 0x0, 0x0, 0x4080}, 0x0) (async)
sendmsg$auto_NL80211_CMD_STOP_SCHED_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x48}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x20, 0x70bd28, 0x25dfdbfd, {}, [@NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x1}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x40) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r2) (async)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000700)={0x1c, r3, 0xb11, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1000) (async)
sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x38, r3, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@BATADV_ATTR_ACTIVE={0x4}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_TT_FLAGS={0x8, 0x15, 0x41}, @BATADV_ATTR_VERSION={0xd, 0x1, 'ovs_flow\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x41}, 0x20000044) (async)

1.895127949s ago: executing program 0 (id=2328):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r1 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000040), 0xffffffffffffffff) (rerun: 32)
sendmsg$auto_TIPC_NL_PUBL_GET(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="10000000", @ANYRES16=r1, @ANYBLOB="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"], 0x140}, 0x1, 0x0, 0x0, 0x8010}, 0x4) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) (async)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x9fe)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async, rerun: 64)
r3 = socket(0x2, 0x3, 0x6) (rerun: 64)
r4 = socket(0x2, 0x5, 0x0)
setsockopt$auto(r4, 0x10000000084, 0x3, 0x0, 0x0)
setsockopt$auto(r4, 0xfffffffa, 0x5, &(0x7f0000000640)='^^,\x00', 0xd) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x401c5820, 0x0) (async, rerun: 64)
r5 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000480), r0) (async, rerun: 64)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000004c0)={'team_slave_0\x00', <r6=>0x0}) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000500)={'veth1_to_hsr\x00', <r7=>0x0})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000700), r8) (async)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000740)={'wlan1\x00', <r10=>0x0})
sendmsg$auto_NL80211_CMD_SET_CHANNEL(r8, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000780)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="010023660b0824de32807500000008000300", @ANYRES32=r10], 0x1c}, 0x1, 0x0, 0x0, 0x4080}, 0x20000000) (async)
recvfrom$auto(r3, &(0x7f0000000680)=[0x6, 0x11d8, 0xb5], 0x400000000, 0x7, &(0x7f00000006c0)={0xdf66, @sa_data_min="865fb2b33d0cb4ed18d085363442"}, &(0x7f00000007c0)=0x10000) (async, rerun: 64)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000540)={'virt_wifi0\x00', <r11=>0x0}) (rerun: 64)
sendmsg$auto_NETDEV_CMD_DEV_GET(r3, &(0x7f0000000600)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x34, r5, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@NETDEV_A_DEV_IFINDEX={0x8, 0x1, r6}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r7}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r10}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r11}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x2000a020) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r12 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f00000000c0), r2)
sendmsg$auto_TIPC_NL_MON_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2001820c}, 0xc, &(0x7f0000000100)={&(0x7f0000000380)={0xf4, r12, 0x8, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_PUBL={0xdd, 0x3, "0beea0cc8cbf89b3330f8dbeec42edc37fe398be37d3755d62150f857d8b55313cf5a4963ce05b8401b951a078f4d5af4c8e8489f38ccf53e3842c05fb56b2449c830af58ea60e0c10bec4d0df0f33f759f26874ce52a3f30aee8749cc1fe4e1aec0541aa166ca266ee66cffde385b19855ae0d922c21b0fff9afe904199a0ae2df1e1ff7fa6109b46a26ade93b73159f8dbbb385cebb3689faf14cee00f034e469fdc669fa8c11059929e85ababf95be55e628b672ddcd8cc051327e8b8fcecc5c06497354c430e2be5aa3f76149535d3f582cc741a13ab9f"}]}, 0xf4}, 0x1, 0x0, 0x0, 0x40004}, 0x0) (async, rerun: 32)
getsockopt$auto(0x3, 0x200000000001, 0x23, 0xfffffffffffffffe, 0x0) (async, rerun: 32)
mmap$auto(0x9, 0x0, 0x89, 0x1010, 0xb, 0x389)

1.611951616s ago: executing program 1 (id=2329):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd)
mprotect$auto(0x2, 0x6, 0x100)
r0 = open$dir(&(0x7f0000000200)='./file0\x00', 0x143000, 0x0)
io_uring_setup$auto(0x5, &(0x7f0000000000)={0xbf62, 0x3, 0x400, 0x7, 0x3, 0x806, r0, [0x4, 0x2ea, 0x6], {0x0, 0x0, 0xff, 0x7, 0x6, 0x5, 0x1, 0xfffffffc, 0x3}, {0x4, 0xfffff654, 0xffff7ffb, 0x2, 0x8, 0x200, 0x3, 0x80, 0x3}})
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x800000000, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8002, 0x0, 0x6)
umount2$auto(&(0x7f0000000080)='.\x00', 0x3)
mbind$auto(0xfffffffffffffffd, 0xff, 0x0, &(0x7f0000000000)=0x78a, 0x101, 0x4)
open(&(0x7f0000000800)='./file0\x00', 0x103c40, 0x50)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x1, 0x4020009, 0x3, 0x12, 0x401, 0x1)
memfd_secret$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x200003, 0x20009, 0x4020000000df, 0xeb1, 0x4, 0x8000)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
ioctl$sock_SIOCGIFINDEX(r1, 0xc0189436, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
getsockopt$auto(0x100000006, 0x11, 0x31, 0xfffffffffffffffe, 0x0)
getsockopt$auto(0x4, 0x1, 0xf, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
mmap$auto(0x0, 0x2020009, 0x6, 0x16, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)

1.593512075s ago: executing program 0 (id=2330):
mmap$auto(0x0, 0x7ff, 0xde, 0xeb1, 0x401, 0x403)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
fanotify_init$auto(0x5, 0x2000000000002)
socket(0x26, 0x80805, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/ipc\x00')
open(&(0x7f0000000040)='./cgroup\x00', 0x745240, 0x40)
fanotify_init$auto(0x4, 0x2000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0xc)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x5, 0x21ea, 0x7ff, 0x3, 0x1, 0x80000001, 0x800002e}, 0x6f4)
bpf$auto(0x800000000000001b, 0x0, 0x0)
socket(0x11, 0x3, 0x4)
bind$auto(0x7, &(0x7f0000000080)={0x11, @sockaddr_1_1={"648301"}}, 0x3e)
close_range$auto(0x0, 0xfffffefffffff004, 0x80000000000002)

1.206811704s ago: executing program 0 (id=2331):
mmap$auto(0xffffffffffffffff, 0x20009, 0xdf, 0x16, 0x9, 0x9)
prctl$auto(0x1000000003b, 0x101, 0x4, 0x9, 0xee1)
unshare$auto(0x200)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
setns(r0, 0x0)

986.639645ms ago: executing program 0 (id=2332):
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
munmap$auto(0x20001000, 0x7)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, &(0x7f0000000180))

772.178737ms ago: executing program 0 (id=2333):
setsockopt$auto(0x4, 0x0, 0x20, 0xfffffffffffffffe, 0x0) (async)
setsockopt$auto(0x4, 0x0, 0x20, 0xfffffffffffffffe, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000)
clone$auto(0x7, 0x2, 0xffffffffffffffff, 0x0, 0x1) (async)
clone$auto(0x7, 0x2, 0xffffffffffffffff, 0x0, 0x1)
mlock$auto(0xfbe8, 0x4)
socket(0xa, 0x3, 0x73)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000040)={{0x0, 0x2, &(0x7f0000000080)={0x0, 0x1}, 0x10a, 0x0, 0x0, 0x3ff}, 0xed7138c}, 0x200, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x801, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
open(0x0, 0x2240, 0x100)
fsopen$auto(0x0, 0x1) (async)
fsopen$auto(0x0, 0x1)
epoll_create$auto(0x4)
epoll_ctl$auto(0x5, 0x1, r0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r1, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
bind$auto(0x3, &(0x7f0000000040)={0xa, @sa_data_min="001000"}, 0x69)
mlock$auto(0x4, 0x0) (async)
mlock$auto(0x4, 0x0)
mlock$auto(0x7c88, 0x7fff) (async)
mlock$auto(0x7c88, 0x7fff)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)

680.939955ms ago: executing program 1 (id=2334):
r0 = socket(0x27, 0x3, 0x80000001) (async)
select$auto(0x3, 0x0, &(0x7f0000000100)={[0xb, 0x200, 0x0, 0x9, 0x9, 0x3, 0x6, 0x2, 0x9, 0x5e58296f, 0x4000000000000000, 0x6, 0x3, 0x200, 0x8, 0x6]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55) (async)
connect$auto(0x3, &(0x7f0000000040)={0x2, @sa_data_min="9057130be82ba522e95cf480395e"}, 0x55) (async)
connect$auto(0x3, &(0x7f0000000200)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55) (async)
io_uring_setup$auto(0x5, &(0x7f0000000080)={0x1000, 0x72b, 0x10, 0x5, 0x4456, 0xff, r0, [0xfffffffd, 0x3, 0xfffffffc], {0x0, 0x4c3f, 0xfff, 0xfff, 0x8, 0x7, 0x7, 0x71d8, 0x1}, {0x400, 0x8, 0x10001, 0x5, 0xf6, 0x5, 0x2, 0x4, 0xffffffff}})

491.859422ms ago: executing program 1 (id=2335):
socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
fsconfig$auto(0x0, 0x5, 0x0, 0xffffffffffffffff, 0x4)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(r0, 0x403, 0x9ec0000000000000)
r1 = socket(0x18, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x80047437, 0x0)
tkill$auto(0x1, 0x0)
semctl$auto(0x2, 0x5, 0x13, 0x9)
setsockopt$auto(0x3, 0x10000000084, 0xa, 0x0, 0x20)
r2 = socket(0xa, 0x2, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'team_slave_0\x00'})
eventfd2$auto(0xf1, 0x1)
readv$auto(0x3, &(0x7f0000000600)={&(0x7f0000000540), 0xc}, 0x1da)

268.047572ms ago: executing program 1 (id=2336):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
semctl$auto(0x1ff, 0x2, 0x13, 0x1)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x25, 0x1, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
open(0x0, 0x2240, 0x154)
sysfs$auto(0x2, 0x0, 0x0)
fsopen$auto(0x0, 0x1)
epoll_create$auto(0x107342)
epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0)
writev$auto(0x0, 0x0, 0x9)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
write$auto(0xc8, 0x0, 0x40f6)
mq_open$auto(0x0, 0x99e4, 0x2, 0x0)
getpriority$auto(0x0, 0x1)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
munmap$auto(0xfffffffffffffffd, 0x4)

51.762454ms ago: executing program 6 (id=2337):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/net\x00')
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x3)
landlock_restrict_self$auto(r0, 0x3)
socket(0x2, 0x1, 0x0)
socket(0x29, 0x2, 0x0)
setsockopt$auto(0x1, 0x1, 0x2e, 0x0, 0xbb)
syz_genetlink_get_family_id$auto_802_15_4_MAC(0x0, r1)

0s ago: executing program 0 (id=2338):
futex$auto(0x0, 0xb, 0x5, &(0x7f00000000c0)={0x1, 0x9}, &(0x7f0000000100)=0x6, 0x7ff)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
open(&(0x7f0000000080)='./file0\x00', 0x22000, 0x50)
mmap$auto(0x0, 0x5, 0x4000000000df, 0x15, 0x3ae400, 0x8000)
sendfile$auto(0x6, 0x3, 0x0, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
write$auto(0x3, 0x0, 0x20000000007d)
setns(0xffffffffffffffff, 0x0)
unshare$auto(0x40000080)
clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
socket(0x2b, 0x1, 0x1)
setsockopt$auto(0x3, 0x11e, 0x80000000000001, 0x0, 0x2)
open(&(0x7f0000000040)='./file0/file0\x00', 0x30c02, 0xa1)
socket(0x23, 0x5, 0x0)
listen$auto(0x3, 0x81)
ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
madvise$auto(0x0, 0x20200, 0x15)
socket(0x2, 0x5, 0x0)
fcntl$auto(0x0, 0x407, 0x100000)

kernel console output (not intermixed with test programs):

call_64+0xcd/0x250
[  172.014864][ T6935]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.020898][ T6935] RIP: 0033:0x7f46a837e719
[  172.025384][ T6935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.045079][ T6935] RSP: 002b:00007f46a7dff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002d
[  172.053655][ T6935] RAX: ffffffffffffffda RBX: 00007f46a8535f80 RCX: 00007f46a837e719
[  172.061691][ T6935] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  172.069806][ T6935] RBP: 00007f46a7dff090 R08: 0000000000000000 R09: ffffffff81000000
[  172.077835][ T6935] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001
[  172.085869][ T6935] R13: 0000000000000000 R14: 00007f46a8535f80 R15: 00007ffe12646838
[  172.093906][ T6935]  ? 0xffffffff81000000
[  172.098126][ T6935]  </TASK>
[  172.139710][ T6740] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  172.169831][ T6740] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  172.232673][ T6740] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  172.287780][ T6740] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  172.346065][ T6646] veth0_vlan: entered promiscuous mode
[  172.405365][ T6646] veth1_vlan: entered promiscuous mode
[  172.646570][ T6646] veth0_macvtap: entered promiscuous mode
[  172.702106][ T6646] veth1_macvtap: entered promiscuous mode
[  172.769396][ T6945] netlink: 350 bytes leftover after parsing attributes in process `syz.1.237'.
[  172.798224][ T6740] 8021q: adding VLAN 0 to HW filter on device bond0
[  172.882832][ T6646] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.940307][ T6646] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.953793][ T6646] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.977594][ T6646] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  173.006003][ T6646] batman_adv: batadv0: Interface activated: batadv_slave_0
[  173.051139][ T6646] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  173.074141][ T6646] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  173.092442][ T6646] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  173.124389][ T6646] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  173.165027][ T6646] batman_adv: batadv0: Interface activated: batadv_slave_1
[  173.187101][ T6740] 8021q: adding VLAN 0 to HW filter on device team0
[  173.235858][   T62] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.243046][   T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[  173.283716][ T6646] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  173.306060][ T6646] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  173.337168][ T6646] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  173.359184][ T6646] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  173.427741][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.435033][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  173.573341][ T6740] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  173.583840][ T6740] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  173.816704][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  173.850612][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  173.907058][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  173.944155][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  174.151135][ T6740] 8021q: adding VLAN 0 to HW filter on device batadv0
[  175.031086][ T6740] veth0_vlan: entered promiscuous mode
[  175.051297][ T6740] veth1_vlan: entered promiscuous mode
[  175.078379][ T6740] veth0_macvtap: entered promiscuous mode
[  175.088015][ T6740] veth1_macvtap: entered promiscuous mode
[  175.107711][ T6740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.118311][ T6740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.128256][ T6740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.138849][ T6740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.148815][ T6740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.159759][ T6740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.172389][ T6740] batman_adv: batadv0: Interface activated: batadv_slave_0
[  175.182450][ T6740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  175.193195][ T6740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.203142][ T6740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  175.214021][ T6740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.224316][ T6740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  175.234907][ T6740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.246188][ T6740] batman_adv: batadv0: Interface activated: batadv_slave_1
[  175.256647][ T6740] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  175.266104][ T6740] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  175.275551][ T6740] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  175.284461][ T6740] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  175.875618][ T2959] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  175.883529][ T2959] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  175.911456][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  175.929677][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  176.326263][ T7056] netlink: 350 bytes leftover after parsing attributes in process `syz.0.253'.
[  179.322950][ T7134] netlink: 350 bytes leftover after parsing attributes in process `syz.2.265'.
[  184.589349][   T29] audit: type=1107 audit(1730122919.451:2): pid=7246 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  186.584989][ T7271] netlink: 342 bytes leftover after parsing attributes in process `syz.1.290'.
[  188.304644][ T7293] netlink: 4 bytes leftover after parsing attributes in process `syz.2.298'.
[  190.705998][ T7325] syz.4.305(7325): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  192.205201][ T7362] netlink: 350 bytes leftover after parsing attributes in process `syz.0.313'.
[  194.609487][ T7411] netlink: 334 bytes leftover after parsing attributes in process `syz.1.320'.
[  195.237531][ T7409] netlink: 342 bytes leftover after parsing attributes in process `syz.1.320'.
[  198.581216][ T7510] HfR: entered promiscuous mode
[  198.721746][ T7510] netlink: 32 bytes leftover after parsing attributes in process `syz.0.335'.
[  199.748837][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  199.755451][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  208.444198][   T29] audit: type=1326 audit(4294967302.660:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7663 comm="syz.0.355" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1f2637e719 code=0x0
[  209.704192][ T7674] netlink: 12 bytes leftover after parsing attributes in process `syz.0.357'.
[  210.494205][ T7686] netlink: 350 bytes leftover after parsing attributes in process `syz.2.359'.
[  212.074799][ T5852] Bluetooth: hci1: command 0x0406 tx timeout
[  212.074851][ T5858] Bluetooth: hci0: command 0x0406 tx timeout
[  216.709114][ T7757] )zV: entered promiscuous mode
[  217.482647][ T7756] kexec: Could not allocate control_code_buffer
[  218.504165][ T7802] can: request_module (can-proto-0) failed.
[  218.824822][ T7797] netlink: 4 bytes leftover after parsing attributes in process `syz.1.389'.
[  222.130936][   T62] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.474587][   T62] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.772013][   T62] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.816121][ T5849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  222.829484][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  222.838222][ T5849] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  222.861483][ T5849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  222.869895][ T5849] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  222.891603][ T5849] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  223.004672][   T62] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.597322][ T7902] chnl_net:caif_netlink_parms(): no params data found
[  223.792932][   T62] bridge_slave_1: left allmulticast mode
[  223.813071][   T62] bridge_slave_1: left promiscuous mode
[  223.852875][   T62] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.996964][   T62] bridge_slave_0: left allmulticast mode
[  224.002711][   T62] bridge_slave_0: left promiscuous mode
[  224.030944][   T62] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.968034][ T5152] Bluetooth: hci1: command tx timeout
[  226.605859][   T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  226.626654][ T7995] netlink: 272 bytes leftover after parsing attributes in process `syz.0.420'.
[  226.644787][   T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  226.666798][   T62] bond0 (unregistering): Released all slaves
[  226.745376][ T7995] net_ratelimit: 8 callbacks suppressed
[  226.745399][ T7995] openvswitch: netlink: ufid size 88 bytes exceeds the range (1, 16)
[  226.914423][ T7995] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  226.961852][   T62] HfR: left promiscuous mode
[  227.033622][ T5152] Bluetooth: hci1: command tx timeout
[  227.155917][ T7902] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.173818][ T7902] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.182982][ T8003] netlink: 24 bytes leftover after parsing attributes in process `syz.4.421'.
[  227.198553][ T7902] bridge_slave_0: entered allmulticast mode
[  227.227674][ T7902] bridge_slave_0: entered promiscuous mode
[  227.361561][ T7902] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.392225][ T7902] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.408314][ T7902] bridge_slave_1: entered allmulticast mode
[  227.425591][ T7902] bridge_slave_1: entered promiscuous mode
[  227.929314][ T7902] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  227.966650][ T7902] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  228.271054][   T62] hsr_slave_0: left promiscuous mode
[  228.302442][   T62] hsr_slave_1: left promiscuous mode
[  228.312057][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  228.331848][   T62] batman_adv: batadv0: Removing interface: batadv_slave_0
[  228.350241][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  228.364260][   T62] batman_adv: batadv0: Removing interface: batadv_slave_1
[  228.398882][   T62] veth1_macvtap: left promiscuous mode
[  228.405083][   T62] veth1_vlan: left promiscuous mode
[  228.410446][   T62] veth0_vlan: left promiscuous mode
[  229.124107][ T5152] Bluetooth: hci1: command tx timeout
[  229.133643][   T62] team0 (unregistering): Port device team_slave_1 removed
[  229.221981][   T62] team0 (unregistering): Port device team_slave_0 removed
[  229.704321][ T7902] team0: Port device team_slave_0 added
[  229.759445][ T7902] team0: Port device team_slave_1 added
[  229.832341][ T7902] batman_adv: batadv0: Adding interface: batadv_slave_0
[  229.840426][ T7902] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  229.867732][ T7902] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  229.886308][ T7902] batman_adv: batadv0: Adding interface: batadv_slave_1
[  229.893579][ T7902] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  229.920733][ T7902] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  229.996695][ T7902] hsr_slave_0: entered promiscuous mode
[  230.012833][ T7902] hsr_slave_1: entered promiscuous mode
[  230.512632][ T7902] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  230.650008][ T7902] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  230.662978][ T7902] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  230.689095][ T7902] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  231.184757][ T5152] Bluetooth: hci1: command tx timeout
[  231.258547][ T7902] 8021q: adding VLAN 0 to HW filter on device bond0
[  231.388586][ T7902] 8021q: adding VLAN 0 to HW filter on device team0
[  231.462109][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  231.469381][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  231.500862][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  231.509013][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  232.178801][ T7902] 8021q: adding VLAN 0 to HW filter on device batadv0
[  233.048467][ T7902] veth0_vlan: entered promiscuous mode
[  233.141159][ T7902] veth1_vlan: entered promiscuous mode
[  233.372735][ T7902] veth0_macvtap: entered promiscuous mode
[  233.410628][ T7902] veth1_macvtap: entered promiscuous mode
[  233.461260][ T7902] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  233.498372][ T7902] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.524294][ T7902] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  233.545490][ T7902] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.574182][ T7902] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  233.610219][ T7902] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.642542][ T7902] batman_adv: batadv0: Interface activated: batadv_slave_0
[  233.816085][ T7902] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  233.854162][ T7902] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.884197][ T7902] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  233.914137][ T7902] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.934420][ T7902] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  233.982093][ T7902] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.004978][ T7902] batman_adv: batadv0: Interface activated: batadv_slave_1
[  234.047048][ T7902] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  234.079202][ T7902] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  234.103751][ T7902] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  234.117707][ T7902] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  234.374263][ T7975] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  234.382159][ T7975] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  234.451490][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  234.462651][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  235.335978][ T8144] netlink: 20 bytes leftover after parsing attributes in process `syz.5.438'.
[  235.926386][ T8167] Invalid ELF header magic: != ELF
[  237.610793][ T8208] Invalid ELF header magic: != ELF
[  240.622928][ T8283] nbd: socks must be embedded in a SOCK_ITEM attr
[  240.937551][ T8291] HfR: entered promiscuous mode
[  241.031293][ T8291] netlink: 32 bytes leftover after parsing attributes in process `syz.4.463'.
[  241.548329][ T8313] netlink: 229 bytes leftover after parsing attributes in process `syz.5.471'.
[  243.863140][ T8369] delete_channel: no stack
[  249.493486][ T8470] nbd: must specify an index to disconnect
[  252.206588][ T8531] netlink: 'syz.5.511': attribute type 11 has an invalid length.
[  252.259933][ T8531] netlink: 'syz.5.511': attribute type 11 has an invalid length.
[  254.688580][ T8609] netlink: 'syz.5.521': attribute type 11 has an invalid length.
[  254.960050][ T8616] netlink: 12 bytes leftover after parsing attributes in process `syz.5.523'.
[  255.119770][ T8621] openvswitch: HfR: Dropping previously announced user features
[  255.254421][ T8621] netlink: 32 bytes leftover after parsing attributes in process `syz.4.524'.
[  258.247972][ T8685] HfR: entered promiscuous mode
[  258.301549][ T8685] netlink: 32 bytes leftover after parsing attributes in process `syz.5.535'.
[  261.187412][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  261.195860][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  262.453921][ T8775] openvswitch: HfR: Dropping previously announced user features
[  262.642478][ T8787] netlink: 32 bytes leftover after parsing attributes in process `syz.5.555'.
[  262.672665][ T8784] openvswitch: HfR: Dropping previously announced user features
[  262.758520][ T8775] netlink: 32 bytes leftover after parsing attributes in process `syz.1.550'.
[  263.585060][ T8800] netlink: 4 bytes leftover after parsing attributes in process `syz.1.558'.
[  263.671430][ T8800] team0: entered promiscuous mode
[  263.697002][ T8800] team_slave_0: entered promiscuous mode
[  263.703201][ T8800] team_slave_1: entered promiscuous mode
[  263.762978][ T8804] netlink: 12 bytes leftover after parsing attributes in process `syz.1.558'.
[  266.762205][ T8833] netlink: 4 bytes leftover after parsing attributes in process `syz.1.565'.
[  267.485072][ T8859] netlink: 4 bytes leftover after parsing attributes in process `syz.0.576'.
[  267.529966][ T8859] team0: entered promiscuous mode
[  267.539874][ T8859] team_slave_0: entered promiscuous mode
[  267.573217][ T8860] netlink: 12 bytes leftover after parsing attributes in process `syz.0.576'.
[  267.574250][ T8859] team_slave_1: entered promiscuous mode
[  268.585455][ T8882] netlink: 24 bytes leftover after parsing attributes in process `syz.5.579'.
[  270.856728][ T8929] workqueue: name exceeds WQ_NAME_LEN. Truncating to: ��������-�侞6y�ռ���
k��a;�
[  271.748100][ T8951] openvswitch: HfR: Dropping previously announced user features
[  271.793478][ T8951] netlink: 32 bytes leftover after parsing attributes in process `syz.0.598'.
[  273.584299][ T5849] Bluetooth: hci2: command 0x0406 tx timeout
[  273.961548][ T8977] nbd: socks must be embedded in a SOCK_ITEM attr
[  275.282617][ T9000] netlink: 4 bytes leftover after parsing attributes in process `syz.5.611'.
[  279.007829][ T9042] netlink: 32 bytes leftover after parsing attributes in process `syz.4.620'.
[  279.072210][ T9039] openvswitch: HfR: Dropping previously announced user features
[  279.637925][ T9056] Invalid ELF header magic: != ELF
[  280.235032][ T9070] mmap: syz.4.630 (9070): VmData 37470208 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data.
[  280.354420][ T9058] netlink: 334 bytes leftover after parsing attributes in process `syz.1.626'.
[  283.744926][ T5849] Bluetooth: hci3: command 0x0406 tx timeout
[  286.625731][ T9192] netlink: 32 bytes leftover after parsing attributes in process `syz.5.655'.
[  286.914654][ T9190] openvswitch: HfR: Dropping previously announced user features
[  289.072896][ T9221] openvswitch: HfR: Dropping previously announced user features
[  289.135862][ T9222] netlink: 32 bytes leftover after parsing attributes in process `syz.0.664'.
[  289.417638][ T9226] netlink: 4 bytes leftover after parsing attributes in process `syz.5.666'.
[  297.734150][ T9341] netlink: 32 bytes leftover after parsing attributes in process `syz.0.691'.
[  297.886492][ T9338] openvswitch: HfR: Dropping previously announced user features
[  302.990238][ T9393] openvswitch: HfR: Dropping previously announced user features
[  303.193070][ T9393] netlink: 32 bytes leftover after parsing attributes in process `syz.0.708'.
[  306.153155][ T9449] openvswitch: HfR: Dropping previously announced user features
[  306.177415][ T9449] netlink: 32 bytes leftover after parsing attributes in process `syz.1.725'.
[  308.978427][ T1138] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.241562][ T1138] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.282859][ T9502] netlink: 32 bytes leftover after parsing attributes in process `syz.4.736'.
[  309.330092][ T9500] openvswitch: HfR: Dropping previously announced user features
[  309.432569][ T5849] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  309.446347][ T5849] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  309.457785][ T5849] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  309.466232][ T5849] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  309.490278][ T5849] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  309.497896][ T5849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  309.619783][ T1138] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.941828][ T1138] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.123638][ T9518] can: request_module (can-proto-4) failed.
[  310.347586][ T9054] syz.0.624 (9054) used greatest stack depth: 19440 bytes left
[  310.516046][ T1138] bridge_slave_1: left allmulticast mode
[  310.522460][ T1138] bridge_slave_1: left promiscuous mode
[  310.535353][ T1138] bridge0: port 2(bridge_slave_1) entered disabled state
[  310.557840][ T1138] bridge_slave_0: left allmulticast mode
[  310.563770][ T1138] bridge_slave_0: left promiscuous mode
[  310.586845][ T1138] bridge0: port 1(bridge_slave_0) entered disabled state
[  311.587043][ T5849] Bluetooth: hci0: command tx timeout
[  311.808545][ T9535] netlink: 350 bytes leftover after parsing attributes in process `syz.0.742'.
[  311.864658][ T1138] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  311.894407][ T1138] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  311.940320][ T1138] bond0 (unregistering): Released all slaves
[  312.038969][ T1138] HfR: left promiscuous mode
[  312.380245][ T1138] HSR: left promiscuous mode
[  312.470513][ T9503] chnl_net:caif_netlink_parms(): no params data found
[  313.345600][ T9503] bridge0: port 1(bridge_slave_0) entered blocking state
[  313.363348][ T9503] bridge0: port 1(bridge_slave_0) entered disabled state
[  313.385989][ T9503] bridge_slave_0: entered allmulticast mode
[  313.416081][ T9503] bridge_slave_0: entered promiscuous mode
[  313.529531][ T1138] hsr_slave_0: left promiscuous mode
[  313.535916][ T1138] hsr_slave_1: left promiscuous mode
[  313.542283][ T1138] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  313.551375][ T1138] batman_adv: batadv0: Removing interface: batadv_slave_0
[  313.559892][ T1138] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  313.568277][ T1138] batman_adv: batadv0: Removing interface: batadv_slave_1
[  313.579523][ T9574] netlink: 32 bytes leftover after parsing attributes in process `syz.0.747'.
[  313.610377][ T1138] veth1_macvtap: left promiscuous mode
[  313.616183][ T1138] veth0_macvtap: left promiscuous mode
[  313.621900][ T1138] veth1_vlan: left promiscuous mode
[  313.627352][ T1138] veth0_vlan: left promiscuous mode
[  313.720053][ T9576] netlink: 16 bytes leftover after parsing attributes in process `syz.0.747'.
[  313.729758][ T5849] Bluetooth: hci0: command tx timeout
[  314.359525][ T1138] team_slave_1 (unregistering): left promiscuous mode
[  314.375237][ T1138] team0 (unregistering): Port device team_slave_1 removed
[  314.433476][ T1138] team_slave_0 (unregistering): left promiscuous mode
[  314.450064][ T1138] team0 (unregistering): Port device team_slave_0 removed
[  315.174299][ T9503] bridge0: port 2(bridge_slave_1) entered blocking state
[  315.186734][ T9503] bridge0: port 2(bridge_slave_1) entered disabled state
[  315.204847][ T9503] bridge_slave_1: entered allmulticast mode
[  315.213159][ T9503] bridge_slave_1: entered promiscuous mode
[  315.260877][ T9573] openvswitch: HfR: Dropping previously announced user features
[  315.298986][ T9503] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  315.320792][ T9503] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  315.589772][ T9503] team0: Port device team_slave_0 added
[  315.606383][ T9503] team0: Port device team_slave_1 added
[  315.726659][ T9584] FAULT_INJECTION: forcing a failure.
[  315.726659][ T9584] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  315.744973][ T5849] Bluetooth: hci0: command tx timeout
[  315.764628][ T9584] CPU: 0 UID: 0 PID: 9584 Comm: syz.5.750 Not tainted 6.12.0-rc5-syzkaller #0
[  315.773659][ T9584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  315.783797][ T9584] Call Trace:
[  315.787144][ T9584]  <TASK>
[  315.790136][ T9584]  dump_stack_lvl+0x16c/0x1f0
[  315.794910][ T9584]  should_fail_ex+0x497/0x5b0
[  315.799663][ T9584]  _copy_to_user+0x32/0xd0
[  315.804151][ T9584]  simple_read_from_buffer+0xd0/0x160
[  315.809626][ T9584]  proc_fail_nth_read+0x198/0x270
[  315.814820][ T9584]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  315.820454][ T9584]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  315.826612][ T9584]  vfs_read+0x1df/0xbe0
[  315.830847][ T9584]  ? __fget_files+0x23a/0x3f0
[  315.835604][ T9584]  ? fdget_pos+0x24c/0x360
[  315.840082][ T9584]  ? __pfx_lock_release+0x10/0x10
[  315.845158][ T9584]  ? trace_lock_acquire+0x14a/0x1d0
[  315.850411][ T9584]  ? __pfx_vfs_read+0x10/0x10
[  315.855205][ T9584]  ? __pfx___mutex_lock+0x10/0x10
[  315.860301][ T9584]  ? __fget_files+0x244/0x3f0
[  315.865046][ T9584]  ksys_read+0x12f/0x260
[  315.869329][ T9584]  ? __pfx_ksys_read+0x10/0x10
[  315.874193][ T9584]  do_syscall_64+0xcd/0x250
[  315.878747][ T9584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.884781][ T9584] RIP: 0033:0x7f3ad937d15c
[  315.889231][ T9584] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  315.908882][ T9584] RSP: 002b:00007f3ada225030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  315.917347][ T9584] RAX: ffffffffffffffda RBX: 00007f3ad9535f80 RCX: 00007f3ad937d15c
[  315.925535][ T9584] RDX: 000000000000000f RSI: 00007f3ada2250a0 RDI: 0000000000000004
[  315.933712][ T9584] RBP: 00007f3ada225090 R08: 0000000000000000 R09: 0000000000000000
[  315.941723][ T9584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.949933][ T9584] R13: 0000000000000000 R14: 00007f3ad9535f80 R15: 00007ffcf0379c98
[  315.958339][ T9584]  </TASK>
[  315.999109][ T9503] batman_adv: batadv0: Adding interface: batadv_slave_0
[  316.006498][ T9503] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.104118][ T9503] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  316.138176][ T9503] batman_adv: batadv0: Adding interface: batadv_slave_1
[  316.174387][ T9503] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.261168][ T9503] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  316.548045][ T9503] hsr_slave_0: entered promiscuous mode
[  316.578715][ T9503] hsr_slave_1: entered promiscuous mode
[  316.595704][ T9503] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  316.614672][ T9503] Cannot create hsr debugfs directory
[  317.422597][ T9605] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  317.825386][ T5849] Bluetooth: hci0: command tx timeout
[  318.056278][ T9503] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  318.093834][ T9503] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  318.138671][ T9503] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  318.187425][ T9503] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  318.502417][ T9503] 8021q: adding VLAN 0 to HW filter on device bond0
[  318.601744][ T9503] 8021q: adding VLAN 0 to HW filter on device team0
[  318.649055][ T7953] bridge0: port 1(bridge_slave_0) entered blocking state
[  318.656336][ T7953] bridge0: port 1(bridge_slave_0) entered forwarding state
[  318.693892][ T7958] bridge0: port 2(bridge_slave_1) entered blocking state
[  318.701131][ T7958] bridge0: port 2(bridge_slave_1) entered forwarding state
[  319.503528][ T9503] 8021q: adding VLAN 0 to HW filter on device batadv0
[  319.521298][ T9685] netlink: 32 bytes leftover after parsing attributes in process `syz.5.768'.
[  319.544951][ T9682] openvswitch: HfR: Dropping previously announced user features
[  319.769470][ T9503] veth0_vlan: entered promiscuous mode
[  319.825135][ T9503] veth1_vlan: entered promiscuous mode
[  319.948648][ T9503] veth0_macvtap: entered promiscuous mode
[  319.997801][ T9503] veth1_macvtap: entered promiscuous mode
[  320.056549][ T9503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  320.094735][ T9503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.117506][ T9503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  320.164856][ T9503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.193927][ T9503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  320.215750][ T9503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.263439][ T9503] batman_adv: batadv0: Interface activated: batadv_slave_0
[  320.280499][ T9503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  320.291293][ T9503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.301398][ T9503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  320.312281][ T9503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.322331][ T9503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  320.333272][ T9503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.347454][ T9503] batman_adv: batadv0: Interface activated: batadv_slave_1
[  320.404907][ T9503] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  320.413706][ T9503] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  320.444214][ T9503] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  320.472976][ T9503] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  320.943450][ T7948] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  320.984680][ T7948] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  321.052774][ T7948] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  321.078443][ T7948] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  322.627025][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  322.633489][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  323.626241][ T9775] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  323.687157][ T9775] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  324.014989][ T9783] netlink: 28 bytes leftover after parsing attributes in process `syz.5.784'.
[  324.296833][   T29] audit: type=1326 audit(4294967329.770:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9791 comm="syz.5.787" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3ad937e719 code=0x0
[  324.723463][ T9798] openvswitch: HfR: Dropping previously announced user features
[  324.800497][ T9798] netlink: 32 bytes leftover after parsing attributes in process `syz.4.789'.
[  334.420359][ T9942] openvswitch: HfR: Dropping previously announced user features
[  334.486439][ T9942] netlink: 32 bytes leftover after parsing attributes in process `syz.5.821'.
[  336.078769][ T9971] HfR: entered promiscuous mode
[  336.160232][ T9971] netlink: 32 bytes leftover after parsing attributes in process `syz.1.830'.
[  336.557665][ T9976] can: request_module (can-proto-4) failed.
[  336.874485][ T9983] netlink: 20 bytes leftover after parsing attributes in process `syz.5.833'.
[  338.051975][ T9999] FAULT_INJECTION: forcing a failure.
[  338.051975][ T9999] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  338.100827][ T9999] CPU: 0 UID: 0 PID: 9999 Comm: syz.1.837 Not tainted 6.12.0-rc5-syzkaller #0
[  338.109785][ T9999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  338.120090][ T9999] Call Trace:
[  338.123429][ T9999]  <TASK>
[  338.126424][ T9999]  dump_stack_lvl+0x16c/0x1f0
[  338.131168][ T9999]  should_fail_ex+0x497/0x5b0
[  338.135941][ T9999]  _copy_from_user+0x32/0x100
[  338.140692][ T9999]  memdup_user+0x71/0xd0
[  338.145009][ T9999]  strndup_user+0x78/0xe0
[  338.149406][ T9999]  __x64_sys_fsopen+0x9c/0x240
[  338.154242][ T9999]  do_syscall_64+0xcd/0x250
[  338.158817][ T9999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.164804][ T9999] RIP: 0033:0x7fa1a9f7e719
[  338.169279][ T9999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.189129][ T9999] RSP: 002b:00007fa1a99ff038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[  338.198142][ T9999] RAX: ffffffffffffffda RBX: 00007fa1aa135f80 RCX: 00007fa1a9f7e719
[  338.206216][ T9999] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  338.214265][ T9999] RBP: 00007fa1a99ff090 R08: 0000000000000000 R09: 0000000000000000
[  338.222378][ T9999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  338.230422][ T9999] R13: 0000000000000000 R14: 00007fa1aa135f80 R15: 00007ffc1891c5a8
[  338.238504][ T9999]  </TASK>
[  338.535589][T10004] netlink: 342 bytes leftover after parsing attributes in process `syz.5.839'.
[  338.850566][   T29] audit: type=1107 audit(4294967344.320:5): pid=10007 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  339.057232][T10012] could not allocate digest TFM handle 
[  339.927811][T10031] svc: failed to register nfsdv3 RPC service (errno 512).
[  339.954398][T10031] svc: failed to register nfsaclv3 RPC service (errno 512).
[  340.852835][T10054] netlink: 8 bytes leftover after parsing attributes in process `syz.4.852'.
[  341.806730][T10073] openvswitch: HfR: Dropping previously announced user features
[  341.825102][T10073] netlink: 32 bytes leftover after parsing attributes in process `syz.4.857'.
[  342.119225][T10084] FAULT_INJECTION: forcing a failure.
[  342.119225][T10084] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  342.162985][T10084] CPU: 0 UID: 0 PID: 10084 Comm: syz.4.861 Not tainted 6.12.0-rc5-syzkaller #0
[  342.172217][T10084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  342.182336][T10084] Call Trace:
[  342.185663][T10084]  <TASK>
[  342.188645][T10084]  dump_stack_lvl+0x16c/0x1f0
[  342.193395][T10084]  should_fail_ex+0x497/0x5b0
[  342.198152][T10084]  _copy_from_user+0x32/0x100
[  342.202901][T10084]  __do_sys_kcmp+0x849/0xd90
[  342.207559][T10084]  ? __pfx___do_sys_kcmp+0x10/0x10
[  342.212744][T10084]  do_syscall_64+0xcd/0x250
[  342.217314][T10084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.223308][T10084] RIP: 0033:0x7fbc9517e719
[  342.227776][T10084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.247647][T10084] RSP: 002b:00007fbc95f15038 EFLAGS: 00000246 ORIG_RAX: 0000000000000138
[  342.256111][T10084] RAX: ffffffffffffffda RBX: 00007fbc95336058 RCX: 00007fbc9517e719
[  342.264205][T10084] RDX: 0000000000000007 RSI: 0000000000000001 RDI: 0000000000000001
[  342.272275][T10084] RBP: 00007fbc95f15090 R08: 000000000000000e R09: 0000000000000000
[  342.280635][T10084] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[  342.288653][T10084] R13: 0000000000000001 R14: 00007fbc95336058 R15: 00007ffde1964b68
[  342.296683][T10084]  </TASK>
[  345.202005][ T5152] Bluetooth: hci1: command 0x0406 tx timeout
[  350.407956][T10212] FAULT_INJECTION: forcing a failure.
[  350.407956][T10212] name failslab, interval 1, probability 0, space 0, times 0
[  350.492918][T10212] CPU: 1 UID: 0 PID: 10212 Comm: syz.5.891 Not tainted 6.12.0-rc5-syzkaller #0
[  350.501962][T10212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  350.512081][T10212] Call Trace:
[  350.515412][T10212]  <TASK>
[  350.518494][T10212]  dump_stack_lvl+0x16c/0x1f0
[  350.523240][T10212]  should_fail_ex+0x497/0x5b0
[  350.528071][T10212]  ? fs_reclaim_acquire+0xae/0x150
[  350.533268][T10212]  should_failslab+0xc2/0x120
[  350.538123][T10212]  kmem_cache_alloc_node_noprof+0x71/0x310
[  350.544370][T10212]  ? copy_process+0x49c/0x6ee0
[  350.549227][T10212]  ? _raw_spin_unlock_irq+0x23/0x50
[  350.554538][T10212]  copy_process+0x49c/0x6ee0
[  350.559217][T10212]  ? get_pid_task+0xfc/0x250
[  350.563986][T10212]  ? __pfx_lock_release+0x10/0x10
[  350.569228][T10212]  ? trace_lock_acquire+0x14a/0x1d0
[  350.574520][T10212]  ? __pfx_copy_process+0x10/0x10
[  350.579657][T10212]  ? find_held_lock+0x2d/0x110
[  350.584657][T10212]  kernel_clone+0xfd/0x960
[  350.589174][T10212]  ? __pfx_kernel_clone+0x10/0x10
[  350.594486][T10212]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  350.600692][T10212]  __do_sys_clone+0xba/0x100
[  350.605360][T10212]  ? __pfx___do_sys_clone+0x10/0x10
[  350.610696][T10212]  do_syscall_64+0xcd/0x250
[  350.615283][T10212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.621333][T10212] RIP: 0033:0x7f3ad937e719
[  350.625818][T10212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  350.645965][T10212] RSP: 002b:00007f3ada225038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  350.654540][T10212] RAX: ffffffffffffffda RBX: 00007f3ad9535f80 RCX: 00007f3ad937e719
[  350.662578][T10212] RDX: 0000000000000000 RSI: fffffffffffffff8 RDI: 0000000000000000
[  350.670617][T10212] RBP: 00007f3ada225090 R08: 0000000000000001 R09: 0000000000000000
[  350.678749][T10212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  350.686870][T10212] R13: 0000000000000000 R14: 00007f3ad9535f80 R15: 00007ffcf0379c98
[  350.694937][T10212]  </TASK>
[  354.365168][T10290] FAULT_INJECTION: forcing a failure.
[  354.365168][T10290] name failslab, interval 1, probability 0, space 0, times 0
[  354.461873][T10290] CPU: 1 UID: 0 PID: 10290 Comm: syz.0.909 Not tainted 6.12.0-rc5-syzkaller #0
[  354.471021][T10290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  354.481152][T10290] Call Trace:
[  354.484459][T10290]  <TASK>
[  354.487424][T10290]  dump_stack_lvl+0x16c/0x1f0
[  354.492143][T10290]  should_fail_ex+0x497/0x5b0
[  354.496867][T10290]  ? fs_reclaim_acquire+0xae/0x150
[  354.502066][T10290]  should_failslab+0xc2/0x120
[  354.506823][T10290]  __kmalloc_cache_noprof+0x6b/0x310
[  354.512156][T10290]  ? fscontext_alloc_log+0x4a/0x1b0
[  354.517434][T10290]  fscontext_alloc_log+0x4a/0x1b0
[  354.522506][T10290]  __x64_sys_fsopen+0x157/0x240
[  354.527517][T10290]  do_syscall_64+0xcd/0x250
[  354.532106][T10290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  354.538071][T10290] RIP: 0033:0x7f1f2637e719
[  354.542550][T10290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  354.562324][T10290] RSP: 002b:00007f1f270ef038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[  354.570796][T10290] RAX: ffffffffffffffda RBX: 00007f1f26535f80 RCX: 00007f1f2637e719
[  354.579041][T10290] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  354.587062][T10290] RBP: 00007f1f270ef090 R08: 0000000000000000 R09: 0000000000000000
[  354.595255][T10290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  354.603548][T10290] R13: 0000000000000000 R14: 00007f1f26535f80 R15: 00007fff8c0d4fa8
[  354.611606][T10290]  </TASK>
[  357.474455][T10342] nbd: must specify at least one socket
[  358.366244][T10358] FAULT_INJECTION: forcing a failure.
[  358.366244][T10358] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  358.454183][T10358] CPU: 1 UID: 0 PID: 10358 Comm: syz.5.923 Not tainted 6.12.0-rc5-syzkaller #0
[  358.463495][T10358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  358.474937][T10358] Call Trace:
[  358.478274][T10358]  <TASK>
[  358.481554][T10358]  dump_stack_lvl+0x16c/0x1f0
[  358.486317][T10358]  should_fail_ex+0x497/0x5b0
[  358.491169][T10358]  _copy_to_user+0x32/0xd0
[  358.495782][T10358]  simple_read_from_buffer+0xd0/0x160
[  358.501260][T10358]  proc_fail_nth_read+0x198/0x270
[  358.506378][T10358]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  358.513075][T10358]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  358.518776][T10358]  vfs_read+0x1df/0xbe0
[  358.523503][T10358]  ? __fget_files+0x23a/0x3f0
[  358.528334][T10358]  ? fdget_pos+0x24c/0x360
[  358.532964][T10358]  ? __pfx_lock_release+0x10/0x10
[  358.538136][T10358]  ? trace_lock_acquire+0x14a/0x1d0
[  358.543645][T10358]  ? __pfx_vfs_read+0x10/0x10
[  358.548364][T10358]  ? __pfx___mutex_lock+0x10/0x10
[  358.554074][T10358]  ? __fget_files+0x244/0x3f0
[  358.558947][T10358]  ksys_read+0x12f/0x260
[  358.563235][T10358]  ? __pfx_ksys_read+0x10/0x10
[  358.568125][T10358]  ? syscall_user_dispatch+0x77/0x140
[  358.573649][T10358]  do_syscall_64+0xcd/0x250
[  358.578303][T10358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.584688][T10358] RIP: 0033:0x7f3ad937d15c
[  358.589235][T10358] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  358.609529][T10358] RSP: 002b:00007f3ada225030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  358.618076][T10358] RAX: ffffffffffffffda RBX: 00007f3ad9535f80 RCX: 00007f3ad937d15c
[  358.626083][T10358] RDX: 000000000000000f RSI: 00007f3ada2250a0 RDI: 0000000000000003
[  358.634092][T10358] RBP: 00007f3ada225090 R08: 0000000000000000 R09: 0000000000000000
[  358.642234][T10358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.650271][T10358] R13: 0000000000000000 R14: 00007f3ad9535f80 R15: 00007ffcf0379c98
[  358.658334][T10358]  </TASK>
[  360.672424][T10378] netlink: 4 bytes leftover after parsing attributes in process `syz.4.928'.
[  368.124919][T10455] openvswitch: HfR: Dropping previously announced user features
[  368.542471][T10455] netlink: 16 bytes leftover after parsing attributes in process `syz.5.950'.
[  379.209702][T10580] openvswitch: HfR: Dropping previously announced user features
[  379.249762][T10580] netlink: 32 bytes leftover after parsing attributes in process `syz.1.976'.
[  380.720756][T10603] cifs: Unknown parameter 'n'
[  384.067036][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  384.073526][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  388.025793][T10732] FAULT_INJECTION: forcing a failure.
[  388.025793][T10732] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  388.121947][T10732] CPU: 1 UID: 0 PID: 10732 Comm: syz.1.1016 Not tainted 6.12.0-rc5-syzkaller #0
[  388.131082][T10732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  388.141200][T10732] Call Trace:
[  388.144529][T10732]  <TASK>
[  388.147506][T10732]  dump_stack_lvl+0x16c/0x1f0
[  388.152256][T10732]  should_fail_ex+0x497/0x5b0
[  388.157012][T10732]  _copy_to_user+0x32/0xd0
[  388.161504][T10732]  simple_read_from_buffer+0xd0/0x160
[  388.167578][T10732]  proc_fail_nth_read+0x198/0x270
[  388.172764][T10732]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  388.178402][T10732]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  388.184063][T10732]  vfs_read+0x1df/0xbe0
[  388.188332][T10732]  ? __fget_files+0x23a/0x3f0
[  388.193075][T10732]  ? fdget_pos+0x24c/0x360
[  388.197560][T10732]  ? __pfx_lock_release+0x10/0x10
[  388.202666][T10732]  ? trace_lock_acquire+0x14a/0x1d0
[  388.207941][T10732]  ? __pfx_vfs_read+0x10/0x10
[  388.212681][T10732]  ? __pfx___mutex_lock+0x10/0x10
[  388.217800][T10732]  ? __fget_files+0x244/0x3f0
[  388.222638][T10732]  ksys_read+0x12f/0x260
[  388.226981][T10732]  ? __pfx_ksys_read+0x10/0x10
[  388.232087][T10732]  ? syscall_user_dispatch+0x77/0x140
[  388.238295][T10732]  do_syscall_64+0xcd/0x250
[  388.242868][T10732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.248881][T10732] RIP: 0033:0x7fa1a9f7d15c
[  388.253371][T10732] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  388.273045][T10732] RSP: 002b:00007fa1a99ff030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  388.281542][T10732] RAX: ffffffffffffffda RBX: 00007fa1aa135f80 RCX: 00007fa1a9f7d15c
[  388.289581][T10732] RDX: 000000000000000f RSI: 00007fa1a99ff0a0 RDI: 0000000000000003
[  388.297611][T10732] RBP: 00007fa1a99ff090 R08: 0000000000000000 R09: 0000000000000000
[  388.305643][T10732] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  388.313705][T10732] R13: 0000000000000000 R14: 00007fa1aa135f80 R15: 00007ffc1891c5a8
[  388.321765][T10732]  </TASK>
[  391.440872][T10767] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1028'.
[  396.492633][T10856] openvswitch: HfR: Dropping previously announced user features
[  396.532732][T10856] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1047'.
[  411.011362][T11017] openvswitch: HfR: Dropping previously announced user features
[  411.065782][T11017] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1085'.
[  418.555128][T11101] FAULT_INJECTION: forcing a failure.
[  418.555128][T11101] name failslab, interval 1, probability 0, space 0, times 0
[  418.568243][T11101] CPU: 1 UID: 0 PID: 11101 Comm: syz.4.1104 Not tainted 6.12.0-rc5-syzkaller #0
[  418.577351][T11101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  418.587462][T11101] Call Trace:
[  418.590789][T11101]  <TASK>
[  418.593768][T11101]  dump_stack_lvl+0x16c/0x1f0
[  418.598513][T11101]  should_fail_ex+0x497/0x5b0
[  418.603258][T11101]  should_failslab+0xc2/0x120
[  418.608103][T11101]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  418.613563][T11101]  ? sctp_get_port_local+0xba4/0x1650
[  418.619012][T11101]  sctp_get_port_local+0xba4/0x1650
[  418.624287][T11101]  ? __pfx_sctp_get_port_local+0x10/0x10
[  418.629984][T11101]  ? lock_acquire+0x2f/0xb0
[  418.634569][T11101]  ? sctp_bind_addr_match+0x43/0x300
[  418.640022][T11101]  ? sctp_bind_addr_match+0x19d/0x300
[  418.645468][T11101]  sctp_do_bind+0x223/0x700
[  418.650051][T11101]  sctp_connect_new_asoc+0x5ff/0x790
[  418.655502][T11101]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  418.661391][T11101]  ? lock_acquire+0x2f/0xb0
[  418.665972][T11101]  ? sctp_inet6_send_verify+0x119/0x390
[  418.671608][T11101]  __sctp_connect+0x3f5/0xc60
[  418.676363][T11101]  ? sctp_inet_connect+0xac/0x200
[  418.681455][T11101]  ? __pfx___sctp_connect+0x10/0x10
[  418.686722][T11101]  ? __pfx_sctp_inet_connect+0x10/0x10
[  418.692257][T11101]  ? sctp_inet_connect+0xac/0x200
[  418.697351][T11101]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  418.703322][T11101]  ? __pfx_sctp_inet_connect+0x10/0x10
[  418.708856][T11101]  sctp_inet_connect+0x15f/0x200
[  418.713889][T11101]  __sys_connect_file+0x14d/0x190
[  418.719014][T11101]  __sys_connect+0x147/0x180
[  418.723680][T11101]  ? __pfx___sys_connect+0x10/0x10
[  418.728886][T11101]  ? __pfx_ksys_write+0x10/0x10
[  418.733824][T11101]  __x64_sys_connect+0x72/0xb0
[  418.738671][T11101]  ? lockdep_hardirqs_on+0x7c/0x110
[  418.743965][T11101]  do_syscall_64+0xcd/0x250
[  418.748532][T11101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  418.754510][T11101] RIP: 0033:0x7fbc9517e719
[  418.758984][T11101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  418.778669][T11101] RSP: 002b:00007fbc95ef4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  418.787154][T11101] RAX: ffffffffffffffda RBX: 00007fbc95336130 RCX: 00007fbc9517e719
[  418.795184][T11101] RDX: 0000000000000055 RSI: 0000000020000140 RDI: 0000000000000003
[  418.803239][T11101] RBP: 00007fbc95ef4090 R08: 0000000000000000 R09: 0000000000000000
[  418.811279][T11101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  418.819310][T11101] R13: 0000000000000000 R14: 00007fbc95336130 R15: 00007ffde1964b68
[  418.827368][T11101]  </TASK>
[  420.778405][T11135] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1112'.
[  423.138859][ T7948] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.536334][ T7948] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.791776][ T5152] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  423.806948][ T5152] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  423.820616][ T5152] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  423.830746][ T5152] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  423.839114][ T5152] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  423.847945][ T5152] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  423.986908][ T7948] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  424.246514][ T7948] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  424.749427][T11196] chnl_net:caif_netlink_parms(): no params data found
[  425.132345][ T7948] bridge_slave_1: left allmulticast mode
[  425.144115][ T7948] bridge_slave_1: left promiscuous mode
[  425.154724][ T7948] bridge0: port 2(bridge_slave_1) entered disabled state
[  425.212988][ T7948] bridge_slave_0: left allmulticast mode
[  425.219227][ T7948] bridge_slave_0: left promiscuous mode
[  425.234622][ T7948] bridge0: port 1(bridge_slave_0) entered disabled state
[  425.888572][T11235] can: request_module (can-proto-3) failed.
[  425.904183][ T5849] Bluetooth: hci3: command tx timeout
[  427.233277][ T7948] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  427.352085][ T7948] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  427.367081][ T7948] bond0 (unregistering): Released all slaves
[  427.657115][ T7948] )zV: left promiscuous mode
[  427.815323][ T7948] HfR: left promiscuous mode
[  428.006548][ T5849] Bluetooth: hci3: command tx timeout
[  428.288813][T11196] bridge0: port 1(bridge_slave_0) entered blocking state
[  428.314361][T11196] bridge0: port 1(bridge_slave_0) entered disabled state
[  428.344633][T11196] bridge_slave_0: entered allmulticast mode
[  428.365744][T11196] bridge_slave_0: entered promiscuous mode
[  428.415589][T11196] bridge0: port 2(bridge_slave_1) entered blocking state
[  428.422852][T11196] bridge0: port 2(bridge_slave_1) entered disabled state
[  428.454338][T11196] bridge_slave_1: entered allmulticast mode
[  428.462207][T11196] bridge_slave_1: entered promiscuous mode
[  429.235743][T11196] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  429.470288][T11196] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  429.640873][T11196] team0: Port device team_slave_0 added
[  429.659951][T11196] team0: Port device team_slave_1 added
[  429.699783][ T7948] hsr_slave_0: left promiscuous mode
[  429.765770][ T7948] hsr_slave_1: left promiscuous mode
[  429.775954][ T7948] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  429.790139][ T7948] batman_adv: batadv0: Removing interface: batadv_slave_0
[  429.800035][ T7948] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  429.811590][ T7948] batman_adv: batadv0: Removing interface: batadv_slave_1
[  429.841916][ T7948] veth1_macvtap: left promiscuous mode
[  429.854519][ T7948] veth0_macvtap: left promiscuous mode
[  429.864285][ T7948] veth1_vlan: left promiscuous mode
[  429.869701][ T7948] veth0_vlan: left promiscuous mode
[  430.065843][ T5849] Bluetooth: hci3: command tx timeout
[  431.209093][ T7948] team0 (unregistering): Port device team_slave_1 removed
[  431.311664][ T7948] team0 (unregistering): Port device team_slave_0 removed
[  432.144399][ T5152] Bluetooth: hci3: command tx timeout
[  432.228519][ T5152] Bluetooth: hci0: command 0x0406 tx timeout
[  432.793392][T11196] batman_adv: batadv0: Adding interface: batadv_slave_0
[  432.805143][T11196] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  432.862164][T11196] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  432.895454][T11196] batman_adv: batadv0: Adding interface: batadv_slave_1
[  432.902481][T11196] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  432.981627][T11196] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  433.298225][T11196] hsr_slave_0: entered promiscuous mode
[  433.354750][T11196] hsr_slave_1: entered promiscuous mode
[  433.420432][T11196] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  433.444067][T11196] Cannot create hsr debugfs directory
[  434.300866][T11196] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  434.346186][T11196] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  434.400713][T11196] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  434.450382][T11196] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  434.706030][T11196] 8021q: adding VLAN 0 to HW filter on device bond0
[  434.726779][T11196] 8021q: adding VLAN 0 to HW filter on device team0
[  434.739118][ T7971] bridge0: port 1(bridge_slave_0) entered blocking state
[  434.746354][ T7971] bridge0: port 1(bridge_slave_0) entered forwarding state
[  434.815965][ T7971] bridge0: port 2(bridge_slave_1) entered blocking state
[  434.824066][ T7971] bridge0: port 2(bridge_slave_1) entered forwarding state
[  435.563561][T11196] 8021q: adding VLAN 0 to HW filter on device batadv0
[  435.803902][T11379] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1157'.
[  436.260304][T11196] veth0_vlan: entered promiscuous mode
[  436.274268][T11196] veth1_vlan: entered promiscuous mode
[  436.340253][T11196] veth0_macvtap: entered promiscuous mode
[  436.352741][T11196] veth1_macvtap: entered promiscuous mode
[  436.382543][T11196] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  436.417923][T11196] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.442879][T11196] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  436.453914][T11196] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.465270][T11196] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  436.476600][T11196] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.490822][T11196] batman_adv: batadv0: Interface activated: batadv_slave_0
[  436.501275][T11196] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  436.511929][T11196] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.524431][T11196] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  436.535046][T11196] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.545346][T11196] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  436.556396][T11196] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.569081][T11196] batman_adv: batadv0: Interface activated: batadv_slave_1
[  436.580855][T11196] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  436.589933][T11196] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  436.599253][T11196] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  436.608182][T11196] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  436.862862][ T7948] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  436.877483][ T7948] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  436.988336][ T7948] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  437.000591][ T7948] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  437.288713][T11413] HfR: entered promiscuous mode
[  437.298787][T11413] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1124'.
[  438.439987][T11452] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1167'.
[  442.909382][T11598] openvswitch: HfR: Dropping previously announced user features
[  443.012741][T11602] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1193'.
[  445.318260][T11634] ptrace attach of "./syz-executor exec"[7902] was attempted by "./syz-executor exec"[11634]
[  445.512952][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  445.524054][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  447.711776][T11676] openvswitch: HfR: Dropping previously announced user features
[  447.845743][T11676] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1206'.
[  450.167270][T11717] kexec: Could not allocate control_code_buffer
[  450.393295][T11741] openvswitch: HfR: Dropping previously announced user features
[  454.718771][T11803] openvswitch: HfR: Dropping previously announced user features
[  454.959211][T11809] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1234'.
[  455.245136][T11817] FAULT_INJECTION: forcing a failure.
[  455.245136][T11817] name failslab, interval 1, probability 0, space 0, times 0
[  455.284926][T11817] CPU: 1 UID: 0 PID: 11817 Comm: syz.5.1236 Not tainted 6.12.0-rc5-syzkaller #0
[  455.294080][T11817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  455.304191][T11817] Call Trace:
[  455.307509][T11817]  <TASK>
[  455.310481][T11817]  dump_stack_lvl+0x16c/0x1f0
[  455.315221][T11817]  should_fail_ex+0x497/0x5b0
[  455.319965][T11817]  should_failslab+0xc2/0x120
[  455.324728][T11817]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  455.330174][T11817]  ? skb_clone+0x190/0x3f0
[  455.334666][T11817]  skb_clone+0x190/0x3f0
[  455.338978][T11817]  netlink_deliver_tap+0xb26/0xcf0
[  455.344161][T11817]  netlink_unicast+0x5e1/0x7f0
[  455.349001][T11817]  ? __pfx_netlink_unicast+0x10/0x10
[  455.354364][T11817]  ? __phys_addr_symbol+0x30/0x80
[  455.359460][T11817]  ? __check_object_size+0x488/0x710
[  455.364832][T11817]  netlink_sendmsg+0x8b8/0xd70
[  455.369680][T11817]  ? __pfx_netlink_sendmsg+0x10/0x10
[  455.375034][T11817]  ? lock_acquire+0x2f/0xb0
[  455.379620][T11817]  ? __might_fault+0xe3/0x190
[  455.384382][T11817]  ____sys_sendmsg+0x9ae/0xb40
[  455.389225][T11817]  ? copy_msghdr_from_user+0x10b/0x160
[  455.394765][T11817]  ? __pfx_____sys_sendmsg+0x10/0x10
[  455.400210][T11817]  ? find_held_lock+0x2d/0x110
[  455.405031][T11817]  ___sys_sendmsg+0x135/0x1e0
[  455.409749][T11817]  ? __pfx____sys_sendmsg+0x10/0x10
[  455.415011][T11817]  ? fdget+0x176/0x210
[  455.419122][T11817]  __sys_sendmsg+0x117/0x1f0
[  455.423751][T11817]  ? __pfx___sys_sendmsg+0x10/0x10
[  455.428921][T11817]  do_syscall_64+0xcd/0x250
[  455.433459][T11817]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  455.439401][T11817] RIP: 0033:0x7f3ad937e719
[  455.443848][T11817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  455.463584][T11817] RSP: 002b:00007f3ada225038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  455.472034][T11817] RAX: ffffffffffffffda RBX: 00007f3ad9535f80 RCX: 00007f3ad937e719
[  455.480037][T11817] RDX: 0000000020000000 RSI: 0000000020002380 RDI: 0000000000000006
[  455.488040][T11817] RBP: 00007f3ada225090 R08: 0000000000000000 R09: 0000000000000000
[  455.496042][T11817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  455.504047][T11817] R13: 0000000000000000 R14: 00007f3ad9535f80 R15: 00007ffcf0379c98
[  455.512076][T11817]  </TASK>
[  456.245667][T11827] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1239'.
[  457.430482][T11857] openvswitch: HfR: Dropping previously announced user features
[  459.786533][T11924] openvswitch: HfR: Dropping previously announced user features
[  462.274291][T11991] openvswitch: HfR: Dropping previously announced user features
[  464.488669][T12052] svc: failed to register nfsdv3 RPC service (errno 111).
[  464.509990][T12052] svc: failed to register nfsaclv3 RPC service (errno 111).
[  465.276798][T12060] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1274'.
[  465.357022][T12075] sctp: [Deprecated]: syz.1.1278 (pid 12075) Use of int in max_burst socket option deprecated.
[  465.357022][T12075] Use struct sctp_assoc_value instead
[  465.723318][T12083] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1274'.
[  466.947796][T12098] Process accounting resumed
[  467.634706][T12103] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1280'.
[  467.998314][T12111] Process accounting resumed
[  468.344112][T12096] kexec: Could not allocate control_code_buffer
[  470.225707][T12146] openvswitch: HfR: Dropping previously announced user features
[  471.219658][T12157] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  471.298430][T12157] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  471.404662][ T5849] Bluetooth: hci1: ACL packet for unknown connection handle 0
[  475.960742][T12236] openvswitch: HfR: Dropping previously announced user features
[  477.099512][T12264] delete_channel: no stack
[  480.653343][T12342] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1342'.
[  480.842043][T12346] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1344'.
[  484.806911][T12400] openvswitch: HfR: Dropping previously announced user features
[  485.353363][T12411] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1359'.
[  488.246283][T12458] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1369'.
[  488.891223][T12457] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1370'.
[  490.494220][T12496] svc: failed to register nfsdv3 RPC service (errno 111).
[  490.564629][T12496] svc: failed to register nfsaclv3 RPC service (errno 111).
[  491.646765][T12508] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1381'.
[  491.885526][T12511] openvswitch: HfR: Dropping previously announced user features
[  492.464233][T12519] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1385'.
[  493.361826][T12534] Invalid ELF header magic: != ELF
[  493.754214][T12534] could not allocate digest TFM handle 
[  494.249775][T12561] openvswitch: HfR: Dropping previously announced user features
[  499.094387][T12648] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1420'.
[  500.133876][T12661] openvswitch: HfR: Dropping previously announced user features
[  503.923794][T12674] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1429'.
[  504.321801][T12684] svc: failed to register nfsdv3 RPC service (errno 111).
[  504.382331][T12684] svc: failed to register nfsaclv3 RPC service (errno 111).
[  505.130682][T12704] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1437'.
[  505.791563][T12714] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1439'.
[  506.526711][T12736] FAULT_INJECTION: forcing a failure.
[  506.526711][T12736] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  506.545440][T12736] CPU: 0 UID: 0 PID: 12736 Comm: syz.5.1447 Not tainted 6.12.0-rc5-syzkaller #0
[  506.554571][T12736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  506.564768][T12736] Call Trace:
[  506.568097][T12736]  <TASK>
[  506.571077][T12736]  dump_stack_lvl+0x16c/0x1f0
[  506.575827][T12736]  should_fail_ex+0x497/0x5b0
[  506.580599][T12736]  ? fs_reclaim_acquire+0xae/0x150
[  506.585788][T12736]  should_fail_alloc_page+0xe7/0x130
[  506.591161][T12736]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  506.597397][T12736]  ? find_held_lock+0x2d/0x110
[  506.602240][T12736]  __alloc_pages_noprof+0x190/0x25a0
[  506.607622][T12736]  ? is_bpf_text_address+0x8a/0x1a0
[  506.612926][T12736]  ? __pfx_lock_release+0x10/0x10
[  506.618042][T12736]  ? __pfx_mark_lock+0x10/0x10
[  506.622894][T12736]  ? hlock_class+0x4e/0x130
[  506.627475][T12736]  ? mark_lock+0xb5/0xc60
[  506.631889][T12736]  ? __lock_acquire+0xbdd/0x3ce0
[  506.636913][T12736]  ? hlock_class+0x4e/0x130
[  506.641489][T12736]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  506.647325][T12736]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  506.653313][T12736]  ? policy_nodemask+0xea/0x4e0
[  506.658255][T12736]  alloc_pages_mpol_noprof+0x2c9/0x610
[  506.663806][T12736]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  506.669890][T12736]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  506.675620][T12736]  folio_alloc_mpol_noprof+0x36/0xd0
[  506.680998][T12736]  vma_alloc_folio_noprof+0xee/0x1b0
[  506.686383][T12736]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  506.692378][T12736]  ? find_held_lock+0x2d/0x110
[  506.697230][T12736]  do_pte_missing+0x2010/0x3e50
[  506.702174][T12736]  ? lock_vma_under_rcu+0x13e/0x980
[  506.707462][T12736]  __handle_mm_fault+0x100a/0x2a10
[  506.712679][T12736]  ? __pfx_lock_release+0x10/0x10
[  506.717790][T12736]  ? lock_vma_under_rcu+0x13e/0x980
[  506.723098][T12736]  ? __pfx___handle_mm_fault+0x10/0x10
[  506.728765][T12736]  handle_mm_fault+0x3fa/0xaa0
[  506.733649][T12736]  do_user_addr_fault+0x60d/0x13f0
[  506.738866][T12736]  exc_page_fault+0x5c/0xc0
[  506.743455][T12736]  asm_exc_page_fault+0x26/0x30
[  506.748401][T12736] RIP: 0033:0x7f3ad924942b
[  506.752877][T12736] Code: 00 00 00 48 8d 3d 05 38 19 00 48 89 c1 31 c0 e8 9b 5a ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d 39 38 19 00 48 89 34 24 48 8b 14 24 48 8b
[  506.772555][T12736] RSP: 002b:00007f3ada223fb0 EFLAGS: 00010202
[  506.778693][T12736] RAX: 0000000000000000 RBX: 00007f3ad9535f80 RCX: 0000000000000000
[  506.786818][T12736] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000020000200
[  506.794851][T12736] RBP: 00007f3ada225090 R08: 0000000000000000 R09: 0000000000000000
[  506.802975][T12736] R10: 0000000020000200 R11: 0000000000000000 R12: 0000000000000001
[  506.811030][T12736] R13: 0000000000000000 R14: 00007f3ad9535f80 R15: 00007ffcf0379c98
[  506.819093][T12736]  </TASK>
[  506.860795][T12736] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  506.947267][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  506.954420][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  508.100892][T12757] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1449'.
[  508.850526][T12782] FAULT_INJECTION: forcing a failure.
[  508.850526][T12782] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  509.111525][T12782] CPU: 0 UID: 0 PID: 12782 Comm: syz.5.1456 Not tainted 6.12.0-rc5-syzkaller #0
[  509.120662][T12782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  509.131039][T12782] Call Trace:
[  509.134365][T12782]  <TASK>
[  509.137339][T12782]  dump_stack_lvl+0x16c/0x1f0
[  509.142080][T12782]  should_fail_ex+0x497/0x5b0
[  509.146838][T12782]  _copy_from_user+0x32/0x100
[  509.151597][T12782]  move_addr_to_kernel+0x68/0x160
[  509.156708][T12782]  __sys_sendto+0x169/0x4d0
[  509.161310][T12782]  ? __pfx___sys_sendto+0x10/0x10
[  509.166431][T12782]  ? reacquire_held_locks+0x20b/0x4c0
[  509.171896][T12782]  ? do_user_addr_fault+0xdc7/0x13f0
[  509.177310][T12782]  __x64_sys_sendto+0xe0/0x1c0
[  509.182258][T12782]  ? do_syscall_64+0x91/0x250
[  509.187006][T12782]  ? lockdep_hardirqs_on+0x7c/0x110
[  509.192287][T12782]  do_syscall_64+0xcd/0x250
[  509.196857][T12782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  509.202846][T12782] RIP: 0033:0x7f3ad93805ac
[  509.207349][T12782] Code: 2a 5a 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5a 02 00 48 8b
[  509.227004][T12782] RSP: 002b:00007f3ada223ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  509.235456][T12782] RAX: ffffffffffffffda RBX: 00007f3ada223fc0 RCX: 00007f3ad93805ac
[  509.243503][T12782] RDX: 0000000000000024 RSI: 00007f3ada224010 RDI: 0000000000000001
[  509.251545][T12782] RBP: 0000000000000000 R08: 00007f3ada223f14 R09: 000000000000000c
[  509.259726][T12782] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  509.267730][T12782] R13: 00007f3ada223f68 R14: 00007f3ada224010 R15: 0000000000000000
[  509.275747][T12782]  </TASK>
[  509.464308][T12795] ptrace attach of "./syz-executor exec"[9503] was attempted by "./syz-executor exec"[12795]
[  509.465109][   T29] audit: type=1326 audit(8277292058.670:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12796 comm="syz.5.1461" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3ad937e719 code=0x0
[  510.680034][T12836] FAULT_INJECTION: forcing a failure.
[  510.680034][T12836] name failslab, interval 1, probability 0, space 0, times 0
[  510.727751][T12836] CPU: 1 UID: 0 PID: 12836 Comm: syz.6.1470 Not tainted 6.12.0-rc5-syzkaller #0
[  510.736878][T12836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  510.746994][T12836] Call Trace:
[  510.750321][T12836]  <TASK>
[  510.753315][T12836]  dump_stack_lvl+0x16c/0x1f0
[  510.758068][T12836]  should_fail_ex+0x497/0x5b0
[  510.762827][T12836]  ? fs_reclaim_acquire+0xae/0x150
[  510.768027][T12836]  should_failslab+0xc2/0x120
[  510.772811][T12836]  kmem_cache_alloc_node_noprof+0x71/0x310
[  510.778708][T12836]  ? __alloc_skb+0x2b3/0x380
[  510.783403][T12836]  __alloc_skb+0x2b3/0x380
[  510.787999][T12836]  ? __pfx___alloc_skb+0x10/0x10
[  510.793043][T12836]  ? lock_acquire+0x2f/0xb0
[  510.797713][T12836]  netlink_alloc_large_skb+0x69/0x130
[  510.803173][T12836]  netlink_sendmsg+0x689/0xd70
[  510.808039][T12836]  ? __pfx_netlink_sendmsg+0x10/0x10
[  510.813423][T12836]  __sys_sendto+0x479/0x4d0
[  510.818018][T12836]  ? __pfx___sys_sendto+0x10/0x10
[  510.823146][T12836]  ? reacquire_held_locks+0x20b/0x4c0
[  510.828618][T12836]  ? do_user_addr_fault+0xdc7/0x13f0
[  510.834033][T12836]  __x64_sys_sendto+0xe0/0x1c0
[  510.838888][T12836]  ? do_syscall_64+0x91/0x250
[  510.843634][T12836]  ? lockdep_hardirqs_on+0x7c/0x110
[  510.848895][T12836]  do_syscall_64+0xcd/0x250
[  510.853463][T12836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  510.859420][T12836] RIP: 0033:0x7feafd3805ac
[  510.863889][T12836] Code: 2a 5a 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5a 02 00 48 8b
[  510.883555][T12836] RSP: 002b:00007feafcdfdec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  510.892019][T12836] RAX: ffffffffffffffda RBX: 00007feafcdfdfc0 RCX: 00007feafd3805ac
[  510.900060][T12836] RDX: 0000000000000024 RSI: 00007feafcdfe010 RDI: 0000000000000001
[  510.908074][T12836] RBP: 0000000000000000 R08: 00007feafcdfdf14 R09: 000000000000000c
[  510.916080][T12836] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  510.924091][T12836] R13: 00007feafcdfdf68 R14: 00007feafcdfe010 R15: 0000000000000000
[  510.932129][T12836]  </TASK>
[  512.578513][T12877] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1481'.
[  513.186241][T12891] openvswitch: HfR: Dropping previously announced user features
[  513.932947][T12913] netlink: 'syz.6.1490': attribute type 11 has an invalid length.
[  513.958505][T12913] netlink: 'syz.6.1490': attribute type 11 has an invalid length.
[  514.545587][T12923] FAULT_INJECTION: forcing a failure.
[  514.545587][T12923] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  514.588505][T12923] CPU: 0 UID: 0 PID: 12923 Comm: syz.5.1493 Not tainted 6.12.0-rc5-syzkaller #0
[  514.597652][T12923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  514.607772][T12923] Call Trace:
[  514.611107][T12923]  <TASK>
[  514.614083][T12923]  dump_stack_lvl+0x16c/0x1f0
[  514.618834][T12923]  should_fail_ex+0x497/0x5b0
[  514.623575][T12923]  _copy_from_iter+0x29b/0x1400
[  514.628544][T12923]  ? __pfx__copy_from_iter+0x10/0x10
[  514.633991][T12923]  ? __virt_addr_valid+0x1a4/0x590
[  514.639185][T12923]  ? __virt_addr_valid+0x5e/0x590
[  514.644285][T12923]  ? __phys_addr_symbol+0x30/0x80
[  514.649380][T12923]  ? __check_object_size+0x488/0x710
[  514.654818][T12923]  netlink_sendmsg+0x813/0xd70
[  514.659675][T12923]  ? __pfx_netlink_sendmsg+0x10/0x10
[  514.665069][T12923]  __sys_sendto+0x479/0x4d0
[  514.669709][T12923]  ? __pfx___sys_sendto+0x10/0x10
[  514.674838][T12923]  ? reacquire_held_locks+0x20b/0x4c0
[  514.680312][T12923]  ? do_user_addr_fault+0xdc7/0x13f0
[  514.685732][T12923]  __x64_sys_sendto+0xe0/0x1c0
[  514.690590][T12923]  ? do_syscall_64+0x91/0x250
[  514.695337][T12923]  ? lockdep_hardirqs_on+0x7c/0x110
[  514.700626][T12923]  do_syscall_64+0xcd/0x250
[  514.705201][T12923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.711169][T12923] RIP: 0033:0x7f3ad93805ac
[  514.715636][T12923] Code: 2a 5a 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5a 02 00 48 8b
[  514.735312][T12923] RSP: 002b:00007f3ada223ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  514.743807][T12923] RAX: ffffffffffffffda RBX: 00007f3ada223fc0 RCX: 00007f3ad93805ac
[  514.751846][T12923] RDX: 0000000000000024 RSI: 00007f3ada224010 RDI: 0000000000000001
[  514.759889][T12923] RBP: 0000000000000000 R08: 00007f3ada223f14 R09: 000000000000000c
[  514.767925][T12923] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  514.775958][T12923] R13: 00007f3ada223f68 R14: 00007f3ada224010 R15: 0000000000000000
[  514.784038][T12923]  </TASK>
[  515.945369][T12943] netlink: 'syz.1.1499': attribute type 1 has an invalid length.
[  515.993291][T12943] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1499'.
[  517.716177][T12961] FAULT_INJECTION: forcing a failure.
[  517.716177][T12961] name failslab, interval 1, probability 0, space 0, times 0
[  517.729343][T12961] CPU: 1 UID: 0 PID: 12961 Comm: syz.6.1503 Not tainted 6.12.0-rc5-syzkaller #0
[  517.738446][T12961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  517.748570][T12961] Call Trace:
[  517.751896][T12961]  <TASK>
[  517.754933][T12961]  dump_stack_lvl+0x16c/0x1f0
[  517.759690][T12961]  should_fail_ex+0x497/0x5b0
[  517.764442][T12961]  should_failslab+0xc2/0x120
[  517.769198][T12961]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  517.774724][T12961]  ? skb_clone+0x190/0x3f0
[  517.779213][T12961]  skb_clone+0x190/0x3f0
[  517.783525][T12961]  netlink_deliver_tap+0xb26/0xcf0
[  517.788724][T12961]  netlink_unicast+0x5e1/0x7f0
[  517.793573][T12961]  ? __pfx_netlink_unicast+0x10/0x10
[  517.798931][T12961]  ? __phys_addr_symbol+0x30/0x80
[  517.804124][T12961]  ? __check_object_size+0x488/0x710
[  517.809499][T12961]  netlink_sendmsg+0x8b8/0xd70
[  517.814353][T12961]  ? __pfx_netlink_sendmsg+0x10/0x10
[  517.819735][T12961]  __sys_sendto+0x479/0x4d0
[  517.824339][T12961]  ? __pfx___sys_sendto+0x10/0x10
[  517.829441][T12961]  ? reacquire_held_locks+0x20b/0x4c0
[  517.834885][T12961]  ? do_user_addr_fault+0xdc7/0x13f0
[  517.840303][T12961]  __x64_sys_sendto+0xe0/0x1c0
[  517.845133][T12961]  ? do_syscall_64+0x91/0x250
[  517.849844][T12961]  ? lockdep_hardirqs_on+0x7c/0x110
[  517.855092][T12961]  do_syscall_64+0xcd/0x250
[  517.859634][T12961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  517.865580][T12961] RIP: 0033:0x7feafd3805ac
[  517.870025][T12961] Code: 2a 5a 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5a 02 00 48 8b
[  517.889675][T12961] RSP: 002b:00007feafcdfdec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  517.898132][T12961] RAX: ffffffffffffffda RBX: 00007feafcdfdfc0 RCX: 00007feafd3805ac
[  517.906134][T12961] RDX: 0000000000000024 RSI: 00007feafcdfe010 RDI: 0000000000000001
[  517.914139][T12961] RBP: 0000000000000000 R08: 00007feafcdfdf14 R09: 000000000000000c
[  517.922142][T12961] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  517.930143][T12961] R13: 00007feafcdfdf68 R14: 00007feafcdfe010 R15: 0000000000000000
[  517.938191][T12961]  </TASK>
[  518.291951][T12964] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1504'.
[  520.769643][T13029] openvswitch: HfR: Dropping previously announced user features
[  522.970798][T13078] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1534'.
[  524.212731][T13108] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1543'.
[  525.379872][T13140] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1548'.
[  526.153209][T13146] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1549'.
[  527.770542][T13177] openvswitch: HfR: Dropping previously announced user features
[  527.938515][T13182] sctp: [Deprecated]: syz.0.1560 (pid 13182) Use of struct sctp_assoc_value in delayed_ack socket option.
[  527.938515][T13182] Use struct sctp_sack_info instead
[  528.370647][T13193] openvswitch: HfR: Dropping previously announced user features
[  528.760688][T13202] RDS: rds_bind could not find a transport for 3e00::, load rds_tcp or rds_rdma?
[  529.946933][T13235] openvswitch: HfR: Dropping previously announced user features
[  530.177208][T13237] delete_channel: no stack
[  531.535949][T13272] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1586'.
[  532.035910][T13280] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1589'.
[  532.068693][T13284] delete_channel: no stack
[  536.664830][T13378] Process accounting resumed
[  541.935872][T13452] can: request_module (can-proto-5) failed.
[  549.996332][T13541] Bluetooth: hci3: command 0x0406 tx timeout
[  550.392535][T13567] FAULT_INJECTION: forcing a failure.
[  550.392535][T13567] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  550.422448][T13567] CPU: 1 UID: 0 PID: 13567 Comm: syz.6.1664 Not tainted 6.12.0-rc5-syzkaller #0
[  550.431574][T13567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  550.441685][T13567] Call Trace:
[  550.445007][T13567]  <TASK>
[  550.447975][T13567]  dump_stack_lvl+0x16c/0x1f0
[  550.452707][T13567]  should_fail_ex+0x497/0x5b0
[  550.457453][T13567]  _copy_to_user+0x32/0xd0
[  550.461940][T13567]  simple_read_from_buffer+0xd0/0x160
[  550.467399][T13567]  proc_fail_nth_read+0x198/0x270
[  550.472523][T13567]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  550.478154][T13567]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  550.483776][T13567]  vfs_read+0x1df/0xbe0
[  550.487998][T13567]  ? __fget_files+0x23a/0x3f0
[  550.492780][T13567]  ? fdget_pos+0x24c/0x360
[  550.497258][T13567]  ? __pfx_lock_release+0x10/0x10
[  550.502401][T13567]  ? trace_lock_acquire+0x14a/0x1d0
[  550.507685][T13567]  ? __pfx_vfs_read+0x10/0x10
[  550.512432][T13567]  ? __pfx___mutex_lock+0x10/0x10
[  550.517565][T13567]  ? __fget_files+0x244/0x3f0
[  550.522315][T13567]  ksys_read+0x12f/0x260
[  550.526621][T13567]  ? __pfx_ksys_read+0x10/0x10
[  550.531470][T13567]  do_syscall_64+0xcd/0x250
[  550.536034][T13567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.542017][T13567] RIP: 0033:0x7feafd37d15c
[  550.546491][T13567] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  550.566342][T13567] RSP: 002b:00007feafcdff030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  550.574824][T13567] RAX: ffffffffffffffda RBX: 00007feafd535f80 RCX: 00007feafd37d15c
[  550.582850][T13567] RDX: 000000000000000f RSI: 00007feafcdff0a0 RDI: 0000000000000003
[  550.591054][T13567] RBP: 00007feafcdff090 R08: 0000000000000000 R09: 0000000008000006
[  550.599077][T13567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  550.607096][T13567] R13: 0000000000000001 R14: 00007feafd535f80 R15: 00007fffed045868
[  550.615164][T13567]  </TASK>
[  553.971117][T13638] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1680'.
[  554.172014][T13641] Invalid ELF header magic: != ELF
[  555.550725][T13673] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1688'.
[  556.052134][T13676] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1690'.
[  557.684761][T13713] openvswitch: HfR: Dropping previously announced user features
[  562.252392][T13735] svc: failed to register nfsdv3 RPC service (errno 512).
[  562.279665][T13735] svc: failed to register nfsaclv3 RPC service (errno 512).
[  562.350110][T13780] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1717'.
[  562.683250][T13788] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1718'.
[  563.230509][T13809] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1725'.
[  564.319307][T13840] openvswitch: HfR: Dropping previously announced user features
[  564.665568][T13847] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1731'.
[  564.727306][T13847] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1731'.
[  565.116978][T13863] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1736'.
[  565.371926][T13874] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1739'.
[  565.769474][T13885] openvswitch: HfR: Dropping previously announced user features
[  565.809479][T13885] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1742'.
[  566.464576][T13893] netlink: 342 bytes leftover after parsing attributes in process `syz.6.1744'.
[  566.479842][T13883] kexec: Could not allocate control_code_buffer
[  568.386353][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  568.392972][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  572.126140][T14015] svc: failed to register nfsdv3 RPC service (errno 111).
[  572.155645][T14015] svc: failed to register nfsaclv3 RPC service (errno 111).
[  574.735817][T14053] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1789'.
[  574.989582][T14062] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1792'.
[  575.240708][T14069] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1793'.
[  575.316864][T14066] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1791'.
[  575.466509][T14075] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1795'.
[  577.091794][T14107] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1801'.
[  582.198713][T14159] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1812'.
[  583.675386][T13541] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  583.694363][T13541] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  583.703819][T13541] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  583.713858][T13541] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  583.722781][T13541] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  583.738306][T13541] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  584.418256][T14184] chnl_net:caif_netlink_parms(): no params data found
[  584.726067][T14184] bridge0: port 1(bridge_slave_0) entered blocking state
[  584.764201][T14184] bridge0: port 1(bridge_slave_0) entered disabled state
[  584.771523][T14184] bridge_slave_0: entered allmulticast mode
[  584.817611][T14184] bridge_slave_0: entered promiscuous mode
[  584.833015][T14184] bridge0: port 2(bridge_slave_1) entered blocking state
[  584.844756][T14184] bridge0: port 2(bridge_slave_1) entered disabled state
[  584.897109][T14184] bridge_slave_1: entered allmulticast mode
[  584.914175][T14184] bridge_slave_1: entered promiscuous mode
[  585.028280][T14184] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  585.054736][T14218] openvswitch: HfR: Dropping previously announced user features
[  585.073531][T14184] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  585.232405][T14184] team0: Port device team_slave_0 added
[  585.269068][T14184] team0: Port device team_slave_1 added
[  585.790369][T14227] nbd: must specify an index to disconnect
[  585.832350][T14184] batman_adv: batadv0: Adding interface: batadv_slave_0
[  585.865296][T14184] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  585.904032][ T5849] Bluetooth: hci1: command tx timeout
[  585.942043][T14184] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  585.963027][T14184] batman_adv: batadv0: Adding interface: batadv_slave_1
[  585.970587][T14184] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  586.018576][T14184] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  586.282445][T14184] hsr_slave_0: entered promiscuous mode
[  586.335002][T14184] hsr_slave_1: entered promiscuous mode
[  586.364051][T14184] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  586.504173][T14184] Cannot create hsr debugfs directory
[  587.131596][T14184] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  587.144528][T14184] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  587.166794][T14184] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  587.186969][T14184] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  587.355730][T14258] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1840'.
[  587.382076][T14184] 8021q: adding VLAN 0 to HW filter on device bond0
[  587.425579][T14184] 8021q: adding VLAN 0 to HW filter on device team0
[  587.452230][T14104] bridge0: port 1(bridge_slave_0) entered blocking state
[  587.459461][T14104] bridge0: port 1(bridge_slave_0) entered forwarding state
[  587.487771][ T7973] bridge0: port 2(bridge_slave_1) entered blocking state
[  587.495019][ T7973] bridge0: port 2(bridge_slave_1) entered forwarding state
[  587.984743][ T5849] Bluetooth: hci1: command tx timeout
[  588.001655][T14184] 8021q: adding VLAN 0 to HW filter on device batadv0
[  588.667282][T14298] netlink: 342 bytes leftover after parsing attributes in process `syz.6.1849'.
[  588.886443][T14184] veth0_vlan: entered promiscuous mode
[  588.929709][T14184] veth1_vlan: entered promiscuous mode
[  589.030662][T14184] veth0_macvtap: entered promiscuous mode
[  589.057115][T14184] veth1_macvtap: entered promiscuous mode
[  589.181814][T14184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.221807][T14184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.246379][T14184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.266418][T14184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.280655][T14184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.294871][T14184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.312786][T14184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.332848][T14184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.385873][T14184] batman_adv: batadv0: Interface activated: batadv_slave_0
[  589.542882][T14184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.565233][T14184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.585679][T14184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.597980][T14184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.608462][T14184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.629843][T14184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.660730][T14184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.694201][T14184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.712540][T14184] batman_adv: batadv0: Interface activated: batadv_slave_1
[  589.750673][T14184] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  589.768350][T14184] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  589.794025][T14184] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  589.803272][T14184] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  590.064086][ T5849] Bluetooth: hci1: command tx timeout
[  590.199578][ T7973] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  590.436227][ T7973] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  590.670942][ T7973] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  590.713357][ T7955] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  590.744932][ T7955] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  590.823685][ T7973] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  590.903850][T14105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  590.911905][T14105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  591.153556][ T7973] bridge_slave_1: left allmulticast mode
[  591.186252][ T7973] bridge_slave_1: left promiscuous mode
[  591.192085][ T7973] bridge0: port 2(bridge_slave_1) entered disabled state
[  591.232262][ T7973] bridge_slave_0: left allmulticast mode
[  591.252501][ T7973] bridge_slave_0: left promiscuous mode
[  591.252868][T13541] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  591.259724][ T7973] bridge0: port 1(bridge_slave_0) entered disabled state
[  591.275763][T13541] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  591.284577][T13541] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  591.311704][T13541] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  591.321193][T13541] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  591.331841][T13541] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  592.149004][ T5849] Bluetooth: hci1: command tx timeout
[  592.489149][ T7973] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  592.527366][ T7973] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  592.551904][ T7973] bond0 (unregistering): Released all slaves
[  592.846252][ T7973] HfR: left promiscuous mode
[  593.434070][ T5849] Bluetooth: hci3: command tx timeout
[  594.207881][T14337] chnl_net:caif_netlink_parms(): no params data found
[  594.714289][T14337] bridge0: port 1(bridge_slave_0) entered blocking state
[  594.745983][T14337] bridge0: port 1(bridge_slave_0) entered disabled state
[  594.753795][T14337] bridge_slave_0: entered allmulticast mode
[  594.798420][T14337] bridge_slave_0: entered promiscuous mode
[  594.909754][T14337] bridge0: port 2(bridge_slave_1) entered blocking state
[  594.921677][T14337] bridge0: port 2(bridge_slave_1) entered disabled state
[  594.943314][T14337] bridge_slave_1: entered allmulticast mode
[  594.965789][T14337] bridge_slave_1: entered promiscuous mode
[  595.300712][T14337] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  595.426177][T14337] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  595.507883][ T5849] Bluetooth: hci3: command tx timeout
[  595.792749][T14337] team0: Port device team_slave_0 added
[  596.022422][ T7973] hsr_slave_0: left promiscuous mode
[  596.112989][ T7973] hsr_slave_1: left promiscuous mode
[  596.204190][ T7973] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  596.244047][ T7973] batman_adv: batadv0: Removing interface: batadv_slave_0
[  596.274909][ T7973] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  596.282965][ T7973] batman_adv: batadv0: Removing interface: batadv_slave_1
[  596.335172][ T7973] veth1_macvtap: left promiscuous mode
[  596.340793][ T7973] veth0_macvtap: left promiscuous mode
[  596.352375][ T7973] veth1_vlan: left promiscuous mode
[  596.364430][ T7973] veth0_vlan: left promiscuous mode
[  597.373239][ T7973] team0 (unregistering): Port device team_slave_1 removed
[  597.462815][ T7973] team0 (unregistering): Port device team_slave_0 removed
[  597.593627][ T5849] Bluetooth: hci3: command tx timeout
[  598.007336][T14337] team0: Port device team_slave_1 added
[  598.215983][T14337] batman_adv: batadv0: Adding interface: batadv_slave_0
[  598.223102][T14337] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  598.303519][T14337] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  598.341042][T14337] batman_adv: batadv0: Adding interface: batadv_slave_1
[  598.400005][T14337] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  598.450723][T14337] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  598.610746][T14337] hsr_slave_0: entered promiscuous mode
[  598.627286][T14337] hsr_slave_1: entered promiscuous mode
[  598.641718][T14337] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  598.656712][T14337] Cannot create hsr debugfs directory
[  599.235925][T14458] openvswitch: HfR: Dropping previously announced user features
[  599.274018][T14458] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1872'.
[  599.283151][T14458] HfR: left promiscuous mode
[  599.677431][ T5849] Bluetooth: hci3: command tx timeout
[  600.065084][T14469] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1876'.
[  600.361505][T14483] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1878'.
[  600.625461][T14337] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  600.670250][T14480] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1873'.
[  600.743113][T14337] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  600.796009][T14337] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  600.819295][T14337] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  600.898185][T14337] 8021q: adding VLAN 0 to HW filter on device bond0
[  600.916705][T14337] 8021q: adding VLAN 0 to HW filter on device team0
[  600.985495][T14103] bridge0: port 1(bridge_slave_0) entered blocking state
[  600.992688][T14103] bridge0: port 1(bridge_slave_0) entered forwarding state
[  601.075438][T14103] bridge0: port 2(bridge_slave_1) entered blocking state
[  601.082649][T14103] bridge0: port 2(bridge_slave_1) entered forwarding state
[  601.748100][T14337] 8021q: adding VLAN 0 to HW filter on device batadv0
[  602.142701][T14529] svc: failed to register nfsdv3 RPC service (errno 111).
[  602.194440][T14529] svc: failed to register nfsaclv3 RPC service (errno 111).
[  602.378090][T14337] veth0_vlan: entered promiscuous mode
[  602.418914][T14337] veth1_vlan: entered promiscuous mode
[  602.512000][T14337] veth0_macvtap: entered promiscuous mode
[  602.550008][T14337] veth1_macvtap: entered promiscuous mode
[  602.606354][T14337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  602.655468][T14337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  602.680078][T14337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  602.723814][T14337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  602.743966][T14337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  602.764231][T14337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  602.804393][T14337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  602.836207][T14337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  602.866071][T14337] batman_adv: batadv0: Interface activated: batadv_slave_0
[  602.898573][T14337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  602.923967][T14337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  602.963005][T14337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  603.006018][T14337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  603.051164][T14337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  603.088884][T14337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  603.121041][T14337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  603.151252][T14337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  603.175651][T14337] batman_adv: batadv0: Interface activated: batadv_slave_1
[  603.232356][T14337] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  603.277055][T14337] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  603.304051][T14337] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  603.323241][T14337] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  603.572931][T14105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  603.621387][T14105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  603.709890][ T7973] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  603.750137][ T7973] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  604.007554][T14573] FAULT_INJECTION: forcing a failure.
[  604.007554][T14573] name failslab, interval 1, probability 0, space 0, times 0
[  604.082346][T14573] CPU: 1 UID: 0 PID: 14573 Comm: syz.7.1891 Not tainted 6.12.0-rc5-syzkaller #0
[  604.091474][T14573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  604.101605][T14573] Call Trace:
[  604.104937][T14573]  <TASK>
[  604.107923][T14573]  dump_stack_lvl+0x16c/0x1f0
[  604.112678][T14573]  should_fail_ex+0x497/0x5b0
[  604.117436][T14573]  should_failslab+0xc2/0x120
[  604.122213][T14573]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  604.127676][T14573]  ? skb_clone+0x190/0x3f0
[  604.132174][T14573]  skb_clone+0x190/0x3f0
[  604.136506][T14573]  netlink_deliver_tap+0xb26/0xcf0
[  604.141713][T14573]  netlink_unicast+0x5e1/0x7f0
[  604.146577][T14573]  ? __pfx_netlink_unicast+0x10/0x10
[  604.151964][T14573]  ? __phys_addr_symbol+0x30/0x80
[  604.157097][T14573]  ? __check_object_size+0x488/0x710
[  604.162472][T14573]  netlink_sendmsg+0x8b8/0xd70
[  604.167417][T14573]  ? __pfx_netlink_sendmsg+0x10/0x10
[  604.172867][T14573]  ? lock_acquire+0x2f/0xb0
[  604.177460][T14573]  ? __might_fault+0xe3/0x190
[  604.182248][T14573]  ____sys_sendmsg+0x9ae/0xb40
[  604.187091][T14573]  ? copy_msghdr_from_user+0x10b/0x160
[  604.192631][T14573]  ? __pfx_____sys_sendmsg+0x10/0x10
[  604.198003][T14573]  ? __pfx___lock_acquire+0x10/0x10
[  604.203276][T14573]  ___sys_sendmsg+0x135/0x1e0
[  604.208021][T14573]  ? __pfx____sys_sendmsg+0x10/0x10
[  604.213303][T14573]  ? lock_acquire+0x2f/0xb0
[  604.217973][T14573]  ? __fget_files+0x40/0x3f0
[  604.222649][T14573]  ? fdget+0x176/0x210
[  604.226781][T14573]  __sys_sendmsg+0x117/0x1f0
[  604.231433][T14573]  ? __pfx___sys_sendmsg+0x10/0x10
[  604.236607][T14573]  ? __fget_files+0x244/0x3f0
[  604.241378][T14573]  do_syscall_64+0xcd/0x250
[  604.245951][T14573]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  604.251920][T14573] RIP: 0033:0x7fa22157e719
[  604.256390][T14573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  604.276071][T14573] RSP: 002b:00007fa2222cd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  604.284566][T14573] RAX: ffffffffffffffda RBX: 00007fa221735f80 RCX: 00007fa22157e719
[  604.292607][T14573] RDX: 000000000c040810 RSI: 00000000200011c0 RDI: 0000000000000003
[  604.300637][T14573] RBP: 00007fa2222cd090 R08: 0000000000000000 R09: 0000000000000000
[  604.308670][T14573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  604.316696][T14573] R13: 0000000000000000 R14: 00007fa221735f80 R15: 00007ffdcccea928
[  604.324751][T14573]  </TASK>
[  605.494772][T14595] delete_channel: no stack
[  609.939609][T14714] can: request_module (can-proto-0) failed.
[  611.708058][T14764] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1920'.
[  615.525462][T14835] FAULT_INJECTION: forcing a failure.
[  615.525462][T14835] name failslab, interval 1, probability 0, space 0, times 0
[  615.654615][T14835] CPU: 0 UID: 0 PID: 14835 Comm: syz.0.1938 Not tainted 6.12.0-rc5-syzkaller #0
[  615.663745][T14835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  615.673855][T14835] Call Trace:
[  615.677177][T14835]  <TASK>
[  615.680149][T14835]  dump_stack_lvl+0x16c/0x1f0
[  615.684880][T14835]  should_fail_ex+0x497/0x5b0
[  615.689606][T14835]  ? fs_reclaim_acquire+0xae/0x150
[  615.694791][T14835]  should_failslab+0xc2/0x120
[  615.699542][T14835]  __kmalloc_cache_noprof+0x6b/0x310
[  615.704892][T14835]  ? netlink_policy_dump_add_policy+0x3a1/0x4d0
[  615.711218][T14835]  netlink_policy_dump_add_policy+0x3a1/0x4d0
[  615.717376][T14835]  ? __pfx_netlink_policy_dump_add_policy+0x10/0x10
[  615.724065][T14835]  ctrl_dumppolicy_start+0x805/0xaa0
[  615.729440][T14835]  ? __pfx_ctrl_dumppolicy_start+0x10/0x10
[  615.735330][T14835]  ? rcu_is_watching+0x12/0xc0
[  615.740157][T14835]  ? trace_contention_end+0xea/0x140
[  615.745525][T14835]  ? __mutex_lock+0x1a6/0x9c0
[  615.750289][T14835]  ? genl_start+0x6a0/0x950
[  615.754869][T14835]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  615.760320][T14835]  ? __pfx_nl80211_get_wiphy+0x10/0x10
[  615.765827][T14835]  ? __pfx_nl80211_post_doit+0x10/0x10
[  615.771322][T14835]  ? __pfx_nl80211_dump_wiphy+0x10/0x10
[  615.776899][T14835]  ? __pfx_nl80211_dump_wiphy_done+0x10/0x10
[  615.782931][T14835]  ? __pfx_ctrl_dumppolicy_start+0x10/0x10
[  615.788786][T14835]  genl_start+0x5f4/0x950
[  615.793165][T14835]  __netlink_dump_start+0x615/0x980
[  615.798437][T14835]  genl_family_rcv_msg_dumpit+0x1e1/0x2e0
[  615.804208][T14835]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  615.810504][T14835]  ? __pfx_genl_get_cmd+0x10/0x10
[  615.815570][T14835]  ? __pfx_genl_start+0x10/0x10
[  615.820469][T14835]  ? __pfx_genl_dumpit+0x10/0x10
[  615.825445][T14835]  ? __pfx_genl_done+0x10/0x10
[  615.830256][T14835]  ? __radix_tree_lookup+0x21f/0x2c0
[  615.835593][T14835]  genl_rcv_msg+0x470/0x800
[  615.840149][T14835]  ? __pfx_genl_rcv_msg+0x10/0x10
[  615.845232][T14835]  ? __pfx_ctrl_dumppolicy_start+0x10/0x10
[  615.851114][T14835]  ? __pfx_ctrl_dumppolicy+0x10/0x10
[  615.856455][T14835]  ? __pfx_ctrl_dumppolicy_done+0x10/0x10
[  615.862242][T14835]  netlink_rcv_skb+0x165/0x410
[  615.867058][T14835]  ? __pfx_genl_rcv_msg+0x10/0x10
[  615.872136][T14835]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  615.877479][T14835]  ? down_read+0xc9/0x330
[  615.881841][T14835]  ? __pfx_down_read+0x10/0x10
[  615.886638][T14835]  ? netlink_deliver_tap+0x1ae/0xcf0
[  615.891967][T14835]  genl_rcv+0x28/0x40
[  615.895989][T14835]  netlink_unicast+0x53c/0x7f0
[  615.900887][T14835]  ? __pfx_netlink_unicast+0x10/0x10
[  615.906215][T14835]  ? __phys_addr_symbol+0x30/0x80
[  615.911344][T14835]  ? __check_object_size+0x488/0x710
[  615.916679][T14835]  netlink_sendmsg+0x8b8/0xd70
[  615.921493][T14835]  ? __pfx_netlink_sendmsg+0x10/0x10
[  615.926831][T14835]  ? lock_acquire+0x2f/0xb0
[  615.931378][T14835]  ? __might_fault+0xe3/0x190
[  615.936091][T14835]  ____sys_sendmsg+0x9ae/0xb40
[  615.940917][T14835]  ? copy_msghdr_from_user+0x10b/0x160
[  615.946415][T14835]  ? __pfx_____sys_sendmsg+0x10/0x10
[  615.951767][T14835]  ? __pfx___lock_acquire+0x10/0x10
[  615.957036][T14835]  ___sys_sendmsg+0x135/0x1e0
[  615.961748][T14835]  ? __pfx____sys_sendmsg+0x10/0x10
[  615.966996][T14835]  ? lock_acquire+0x2f/0xb0
[  615.971544][T14835]  ? __fget_files+0x40/0x3f0
[  615.976181][T14835]  ? fdget+0x176/0x210
[  615.980283][T14835]  __sys_sendmsg+0x117/0x1f0
[  615.984912][T14835]  ? __pfx___sys_sendmsg+0x10/0x10
[  615.990060][T14835]  ? __fget_files+0x244/0x3f0
[  615.994877][T14835]  do_syscall_64+0xcd/0x250
[  615.999414][T14835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  616.005355][T14835] RIP: 0033:0x7f1f2637e719
[  616.009794][T14835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  616.029439][T14835] RSP: 002b:00007f1f270ef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  616.037895][T14835] RAX: ffffffffffffffda RBX: 00007f1f26535f80 RCX: 00007f1f2637e719
[  616.045932][T14835] RDX: 000000000c040810 RSI: 00000000200011c0 RDI: 0000000000000003
[  616.053946][T14835] RBP: 00007f1f270ef090 R08: 0000000000000000 R09: 0000000000000000
[  616.061960][T14835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  616.069960][T14835] R13: 0000000000000000 R14: 00007f1f26535f80 R15: 00007fff8c0d4fa8
[  616.077978][T14835]  </TASK>
[  616.813771][T14844] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1940'.
[  618.157877][T14860] svc: failed to register nfsdv3 RPC service (errno 111).
[  618.228011][T14860] svc: failed to register nfsaclv3 RPC service (errno 111).
[  620.064806][T14891] nbd: must specify an index to disconnect
[  620.086830][T14884] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1948'.
[  620.951739][T14905] delete_channel: no stack
[  621.526318][T14909] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1954'.
[  624.284808][T14944] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1966'.
[  625.235351][T14948] netlink: 'syz.6.1968': attribute type 11 has an invalid length.
[  625.243262][T14948] netlink: 'syz.6.1968': attribute type 11 has an invalid length.
[  626.585115][T14951] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1967'.
[  628.604022][T14987] HfR: entered promiscuous mode
[  629.861047][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  629.870117][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  630.707128][T15026] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1988'.
[  631.416097][T15028] kexec: Could not allocate control_code_buffer
[  631.479946][T15039] Malformed UNC in devname
[  631.479946][T15039] 
[  631.504670][T15039] CIFS: VFS: Malformed UNC in devname
[  631.802664][T15051] HfR: entered promiscuous mode
[  634.685463][T15105] openvswitch: HfR: Dropping previously announced user features
[  634.749987][T15105] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2006'.
[  634.804076][T15105] HfR: left promiscuous mode
[  635.888253][T15136] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  637.491912][T15170] HfR: entered promiscuous mode
[  638.324408][T15181] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2020'.
[  643.637101][T15217] svc: failed to register nfsdv3 RPC service (errno 111).
[  643.679208][T15217] svc: failed to register nfsaclv3 RPC service (errno 111).
[  644.359357][T15234] delete_channel: no stack
[  644.783170][T15244] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2032'.
[  645.421920][T15245] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2035'.
[  645.465329][T15261] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2038'.
[  646.531029][T15264] netlink: 334 bytes leftover after parsing attributes in process `syz.6.2039'.
[  647.893398][T15293] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2048'.
[  648.732215][T15309] openvswitch: HfR: Dropping previously announced user features
[  648.762657][T15309] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2054'.
[  650.532770][T15340] svc: failed to register nfsdv3 RPC service (errno 111).
[  650.649048][T15340] svc: failed to register nfsaclv3 RPC service (errno 111).
[  651.190048][T15341] svc: failed to register nfsdv3 RPC service (errno 111).
[  651.219671][T15341] svc: failed to register nfsaclv3 RPC service (errno 512).
[  651.242787][T15357] openvswitch: netlink: Flow key attr not present in new flow.
[  653.711921][T15406] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2079'.
[  654.215151][T15418] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2080'.
[  655.730807][T15445] HfR: entered promiscuous mode
[  655.837558][T15446] netlink: 32 bytes leftover after parsing attributes in process `syz.7.2086'.
[  656.414411][T15461] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2090'.
[  658.616346][   T29] audit: type=1800 audit(8277292062.860:7): pid=15489 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2098" name="SYSV00010000" dev="hugetlbfs" ino=0 res=0 errno=0
[  660.172501][T15524] netlink: 'syz.1.2105': attribute type 11 has an invalid length.
[  660.200515][T15524] netlink: 'syz.1.2105': attribute type 11 has an invalid length.
[  663.124487][T15574] delete_channel: no stack
[  663.671427][T15576] raw_sendmsg: syz.6.2116 forgot to set AF_INET. Fix it!
[  666.084885][T15633] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2130'.
[  668.383744][T15670] openvswitch: HfR: Dropping previously announced user features
[  668.524812][T15672] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2139'.
[  671.394233][T15705] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2147'.
[  672.513295][T15712] nbd: must specify at least one socket
[  672.628032][T15729] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2152'.
[  676.277174][T15786] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2168'.
[  676.970838][ T7973] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  677.332897][ T7973] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  677.591007][T13541] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  677.600540][T13541] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  677.617078][T13541] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  677.627480][T13541] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  677.636745][T13541] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  677.644666][T13541] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  677.696085][ T7973] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  677.808301][T15804] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2174'.
[  677.817714][T15807] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2174'.
[  677.979271][ T7973] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  678.921589][ T7973] bridge_slave_1: left allmulticast mode
[  678.927783][ T7973] bridge_slave_1: left promiscuous mode
[  678.935163][ T7973] bridge0: port 2(bridge_slave_1) entered disabled state
[  679.030941][ T7973] bridge_slave_0: left allmulticast mode
[  679.049253][ T7973] bridge_slave_0: left promiscuous mode
[  679.081406][ T7973] bridge0: port 1(bridge_slave_0) entered disabled state
[  679.754373][ T5849] Bluetooth: hci1: command tx timeout
[  681.129980][ T7973] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  681.159080][ T7973] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  681.180001][ T7973] bond0 (unregistering): Released all slaves
[  681.299251][ T7973] HfR: left promiscuous mode
[  681.458036][T15805] chnl_net:caif_netlink_parms(): no params data found
[  681.823991][ T5849] Bluetooth: hci1: command tx timeout
[  682.604215][T15805] bridge0: port 1(bridge_slave_0) entered blocking state
[  682.611402][T15805] bridge0: port 1(bridge_slave_0) entered disabled state
[  682.620623][T15805] bridge_slave_0: entered allmulticast mode
[  682.649455][T15805] bridge_slave_0: entered promiscuous mode
[  682.685580][T15805] bridge0: port 2(bridge_slave_1) entered blocking state
[  682.692751][T15805] bridge0: port 2(bridge_slave_1) entered disabled state
[  682.711878][T15805] bridge_slave_1: entered allmulticast mode
[  682.728176][T15805] bridge_slave_1: entered promiscuous mode
[  682.989045][ T7973] hsr_slave_0: left promiscuous mode
[  683.078033][ T7973] hsr_slave_1: left promiscuous mode
[  683.162703][ T7973] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  683.187314][ T7973] batman_adv: batadv0: Removing interface: batadv_slave_0
[  683.256028][ T7973] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  683.265402][ T7973] batman_adv: batadv0: Removing interface: batadv_slave_1
[  683.338757][ T7973] veth1_macvtap: left promiscuous mode
[  683.354363][ T7973] veth0_macvtap: left promiscuous mode
[  683.360153][ T7973] veth1_vlan: left promiscuous mode
[  683.396154][ T7973] veth0_vlan: left promiscuous mode
[  683.904268][ T5849] Bluetooth: hci1: command tx timeout
[  684.762804][ T7973] team0 (unregistering): Port device team_slave_1 removed
[  684.844564][ T7973] team0 (unregistering): Port device team_slave_0 removed
[  685.456908][T15805] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  685.468685][T15880] netlink: 326 bytes leftover after parsing attributes in process `syz.6.2187'.
[  685.502036][T15805] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  685.588975][T15805] team0: Port device team_slave_0 added
[  685.623457][T15805] team0: Port device team_slave_1 added
[  685.696923][T15805] batman_adv: batadv0: Adding interface: batadv_slave_0
[  685.717773][T15805] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  685.808721][T15805] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  685.844646][T15805] batman_adv: batadv0: Adding interface: batadv_slave_1
[  685.852292][T15805] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  685.893212][T15805] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  685.984288][ T5849] Bluetooth: hci1: command tx timeout
[  686.159672][T15805] hsr_slave_0: entered promiscuous mode
[  686.167148][T15805] hsr_slave_1: entered promiscuous mode
[  686.185352][T15805] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  686.204041][T15805] Cannot create hsr debugfs directory
[  687.596001][T15805] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  687.658971][T15805] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  687.678298][T15805] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  687.877221][T15805] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  688.355708][T15805] 8021q: adding VLAN 0 to HW filter on device bond0
[  688.431164][T15805] 8021q: adding VLAN 0 to HW filter on device team0
[  688.483392][ T7973] bridge0: port 1(bridge_slave_0) entered blocking state
[  688.490641][ T7973] bridge0: port 1(bridge_slave_0) entered forwarding state
[  688.546367][ T7969] bridge0: port 2(bridge_slave_1) entered blocking state
[  688.553557][ T7969] bridge0: port 2(bridge_slave_1) entered forwarding state
[  689.295135][T15805] 8021q: adding VLAN 0 to HW filter on device batadv0
[  689.304835][T15950] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2199'.
[  689.458891][T15968] nfsd: Unknown parameter ':sw3��Ap�Z���\�c1���0����'
[  690.152687][T15805] veth0_vlan: entered promiscuous mode
[  690.183662][T15805] veth1_vlan: entered promiscuous mode
[  690.262454][T15805] veth0_macvtap: entered promiscuous mode
[  690.283271][T15805] veth1_macvtap: entered promiscuous mode
[  690.343646][T15805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  690.384627][T15805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  690.406385][T15805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  690.421169][T15805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  690.442559][T15805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  690.473921][T15805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  690.500263][T15805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  690.525498][T15805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  690.557135][T15805] batman_adv: batadv0: Interface activated: batadv_slave_0
[  690.601055][T15805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  690.627516][T15805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  690.653676][T15805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  690.703062][T15805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  690.744079][T15805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  690.756037][T15805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  690.777000][T15805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  690.814401][T15805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  690.853292][T15805] batman_adv: batadv0: Interface activated: batadv_slave_1
[  690.901001][T15805] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  690.920752][T15805] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  690.945380][T15805] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  690.969747][T15805] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  691.180435][ T7969] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  691.188743][ T7969] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  691.196505][ T7969] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  691.204486][ T7969] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  691.275743][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  691.282724][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  691.808194][T16016] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2207'.
[  691.837770][T16016] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2207'.
[  691.845680][T16018] nbd: must specify at least one socket
[  691.861857][T16016] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2207'.
[  698.796271][T16168] FAULT_INJECTION: forcing a failure.
[  698.796271][T16168] name failslab, interval 1, probability 0, space 0, times 0
[  698.823909][T16168] CPU: 0 UID: 0 PID: 16168 Comm: syz.1.2232 Not tainted 6.12.0-rc5-syzkaller #0
[  698.833076][T16168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  698.843197][T16168] Call Trace:
[  698.846514][T16168]  <TASK>
[  698.849531][T16168]  dump_stack_lvl+0x16c/0x1f0
[  698.854265][T16168]  should_fail_ex+0x497/0x5b0
[  698.858982][T16168]  ? fs_reclaim_acquire+0xae/0x150
[  698.864140][T16168]  should_failslab+0xc2/0x120
[  698.868872][T16168]  __kmalloc_noprof+0xcb/0x410
[  698.873769][T16168]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  698.879462][T16168]  tomoyo_realpath_from_path+0xbf/0x710
[  698.885052][T16168]  ? tomoyo_path_number_perm+0x232/0x5b0
[  698.890827][T16168]  tomoyo_path_number_perm+0x245/0x5b0
[  698.896359][T16168]  ? tomoyo_path_number_perm+0x232/0x5b0
[  698.902048][T16168]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  698.908111][T16168]  ? trace_lock_acquire+0x14a/0x1d0
[  698.913362][T16168]  ? lock_acquire+0x2f/0xb0
[  698.917918][T16168]  ? __fget_files+0x40/0x3f0
[  698.922549][T16168]  ? __fget_files+0x244/0x3f0
[  698.927275][T16168]  security_file_ioctl+0x9b/0x240
[  698.932354][T16168]  __x64_sys_ioctl+0xbb/0x220
[  698.937161][T16168]  do_syscall_64+0xcd/0x250
[  698.941711][T16168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  698.947661][T16168] RIP: 0033:0x7fa1a9f7e719
[  698.952303][T16168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  698.971965][T16168] RSP: 002b:00007fa1a99ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  698.980459][T16168] RAX: ffffffffffffffda RBX: 00007fa1aa135f80 RCX: 00007fa1a9f7e719
[  698.988471][T16168] RDX: 0000000020000040 RSI: 00000000000089fc RDI: 000000000000000a
[  698.996478][T16168] RBP: 00007fa1a99ff090 R08: 0000000000000000 R09: 0000000000000000
[  699.004482][T16168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  699.012570][T16168] R13: 0000000000000000 R14: 00007fa1aa135f80 R15: 00007ffc1891c5a8
[  699.020588][T16168]  </TASK>
[  699.145120][T16168] ERROR: Out of memory at tomoyo_realpath_from_path.
[  700.586332][T16189] netlink: 5 bytes leftover after parsing attributes in process `syz.8.2234'.
[  700.718321][T16189] nbd: must specify at least one socket
[  700.966231][T16164] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2231'.
[  704.847002][T16255] delete_channel: no stack
[  713.831326][ T5849] Bluetooth: hci3: command 0x0406 tx timeout
[  714.340083][T16378] openvswitch: HfR: Dropping previously announced user features
[  714.353241][T16378] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2261'.
[  715.236116][T16399] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2264'.
[  716.511600][T16434] openvswitch: HfR: Dropping previously announced user features
[  716.594486][T16434] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2271'.
[  719.236244][T16485] openvswitch: HfR: Dropping previously announced user features
[  720.604266][T16501] can: request_module (can-proto-4) failed.
[  722.134878][T16514] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  728.617433][T16605] can: request_module (can-proto-4) failed.
[  733.889321][T16685] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2327'.
[  736.093724][T16721] 
[  736.096130][T16721] ======================================================
[  736.103198][T16721] WARNING: possible circular locking dependency detected
[  736.110243][T16721] 6.12.0-rc5-syzkaller #0 Not tainted
[  736.115648][T16721] ------------------------------------------------------
[  736.122706][T16721] syz.0.2338/16721 is trying to acquire lock:
[  736.128820][T16721] ffff88801ac73118 (&mm->mmap_lock){++++}-{3:3}, at: lock_mm_and_find_vma+0x3a9/0x6a0
[  736.138507][T16721] 
[  736.138507][T16721] but task is already holding lock:
[  736.146320][T16721] ffff8880620fb708 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: shmem_file_write_iter+0x86/0x140
[  736.157603][T16721] 
[  736.157603][T16721] which lock already depends on the new lock.
[  736.157603][T16721] 
[  736.168050][T16721] 
[  736.168050][T16721] the existing dependency chain (in reverse order) is:
[  736.177517][T16721] 
[  736.177517][T16721] -> #1 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}:
[  736.186270][T16721]        down_write+0x93/0x200
[  736.191072][T16721]        process_measurement+0x39c/0x2370
[  736.196829][T16721]        ima_file_mmap+0x146/0x1d0
[  736.201967][T16721]        security_mmap_file+0x8bd/0x990
[  736.207537][T16721]        __do_sys_remap_file_pages+0x526/0x900
[  736.213731][T16721]        do_syscall_64+0xcd/0x250
[  736.218781][T16721]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  736.225236][T16721] 
[  736.225236][T16721] -> #0 (&mm->mmap_lock){++++}-{3:3}:
[  736.232890][T16721]        __lock_acquire+0x250b/0x3ce0
[  736.238311][T16721]        lock_acquire.part.0+0x11b/0x380
[  736.243992][T16721]        down_read_killable+0x9d/0x380
[  736.249492][T16721]        lock_mm_and_find_vma+0x3a9/0x6a0
[  736.255266][T16721]        do_user_addr_fault+0x2b5/0x13f0
[  736.260943][T16721]        exc_page_fault+0x5c/0xc0
[  736.266026][T16721]        asm_exc_page_fault+0x26/0x30
[  736.271437][T16721]        fault_in_readable+0x160/0x200
[  736.276952][T16721]        fault_in_iov_iter_readable+0x101/0x2c0
[  736.283231][T16721]        generic_perform_write+0x21b/0x920
[  736.289071][T16721]        shmem_file_write_iter+0x10e/0x140
[  736.294921][T16721]        vfs_write+0x5ae/0x1150
[  736.299805][T16721]        ksys_write+0x12f/0x260
[  736.304694][T16721]        do_syscall_64+0xcd/0x250
[  736.309743][T16721]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  736.316199][T16721] 
[  736.316199][T16721] other info that might help us debug this:
[  736.316199][T16721] 
[  736.326448][T16721]  Possible unsafe locking scenario:
[  736.326448][T16721] 
[  736.333912][T16721]        CPU0                    CPU1
[  736.339294][T16721]        ----                    ----
[  736.344675][T16721]   lock(&sb->s_type->i_mutex_key#12);
[  736.350176][T16721]                                lock(&mm->mmap_lock);
[  736.357055][T16721]                                lock(&sb->s_type->i_mutex_key#12);
[  736.365097][T16721]   rlock(&mm->mmap_lock);
[  736.369551][T16721] 
[  736.369551][T16721]  *** DEADLOCK ***
[  736.369551][T16721] 
[  736.377706][T16721] 3 locks held by syz.0.2338/16721:
[  736.382925][T16721]  #0: ffff88806ca36d38 (&f->f_pos_lock){+.+.}-{3:3}, at: fdget_pos+0x24c/0x360
[  736.392054][T16721]  #1: ffff88807c3c6420 (sb_writers#5){.+.+}-{0:0}, at: ksys_write+0x12f/0x260
[  736.401115][T16721]  #2: ffff8880620fb708 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: shmem_file_write_iter+0x86/0x140
[  736.412346][T16721] 
[  736.412346][T16721] stack backtrace:
[  736.418247][T16721] CPU: 1 UID: 0 PID: 16721 Comm: syz.0.2338 Not tainted 6.12.0-rc5-syzkaller #0
[  736.427300][T16721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  736.437380][T16721] Call Trace:
[  736.440678][T16721]  <TASK>
[  736.443630][T16721]  dump_stack_lvl+0x116/0x1f0
[  736.448351][T16721]  print_circular_bug+0x419/0x5d0
[  736.453426][T16721]  check_noncircular+0x31a/0x400
[  736.458403][T16721]  ? __pfx_check_noncircular+0x10/0x10
[  736.463901][T16721]  ? lock_acquire+0x2f/0xb0
[  736.468447][T16721]  ? lockdep_lock+0xc6/0x200
[  736.473080][T16721]  ? __pfx_lockdep_lock+0x10/0x10
[  736.478249][T16721]  __lock_acquire+0x250b/0x3ce0
[  736.483145][T16721]  ? __pfx___lock_acquire+0x10/0x10
[  736.488384][T16721]  ? try_to_wake_up+0x154/0x14f0
[  736.493383][T16721]  ? rwsem_wake.isra.0+0xbe/0x120
[  736.498461][T16721]  lock_acquire.part.0+0x11b/0x380
[  736.503622][T16721]  ? lock_mm_and_find_vma+0x3a9/0x6a0
[  736.509036][T16721]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  736.514730][T16721]  ? rcu_is_watching+0x12/0xc0
[  736.519621][T16721]  ? trace_lock_acquire+0x14a/0x1d0
[  736.524850][T16721]  ? lock_mm_and_find_vma+0x3a9/0x6a0
[  736.530262][T16721]  ? lock_acquire+0x2f/0xb0
[  736.534807][T16721]  ? lock_mm_and_find_vma+0x3a9/0x6a0
[  736.540217][T16721]  down_read_killable+0x9d/0x380
[  736.545186][T16721]  ? lock_mm_and_find_vma+0x3a9/0x6a0
[  736.550623][T16721]  ? __pfx_down_read_killable+0x10/0x10
[  736.556206][T16721]  ? __pfx_search_extable+0x10/0x10
[  736.561433][T16721]  ? fault_in_readable+0x160/0x200
[  736.566586][T16721]  lock_mm_and_find_vma+0x3a9/0x6a0
[  736.571830][T16721]  do_user_addr_fault+0x2b5/0x13f0
[  736.576988][T16721]  exc_page_fault+0x5c/0xc0
[  736.581531][T16721]  asm_exc_page_fault+0x26/0x30
[  736.586435][T16721] RIP: 0010:fault_in_readable+0x160/0x200
[  736.592201][T16721] Code: 42 e8 45 31 f6 e8 70 36 ba ff 48 39 eb 75 13 eb 2e e8 64 36 ba ff 48 81 c3 00 10 00 00 48 39 eb 74 1d e8 53 36 ba ff 45 89 f7 <8a> 03 31 ff 44 89 fe 88 44 24 28 e8 80 38 ba ff 45 85 ff 74 d2 e8
[  736.611843][T16721] RSP: 0018:ffffc9000ad1fb18 EFLAGS: 00050287
[  736.617940][T16721] RAX: 000000000001af4e RBX: 000000000003b000 RCX: ffffc90004401000
[  736.625955][T16721] RDX: 0000000000040000 RSI: ffffffff81d26f9d RDI: 0000000000000005
[  736.633974][T16721] RBP: 0000000000200000 R08: 0000000000000005 R09: 0000000000000000
[  736.641989][T16721] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000200000
[  736.650000][T16721] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  736.658009][T16721]  ? fault_in_readable+0x15d/0x200
[  736.663169][T16721]  ? fault_in_readable+0x15d/0x200
[  736.668315][T16721]  ? __pfx_fault_in_readable+0x10/0x10
[  736.673825][T16721]  ? find_held_lock+0x2d/0x110
[  736.678630][T16721]  ? inode_to_bdi+0x9e/0x160
[  736.683257][T16721]  fault_in_iov_iter_readable+0x101/0x2c0
[  736.689052][T16721]  generic_perform_write+0x21b/0x920
[  736.694384][T16721]  ? __mark_inode_dirty+0x6b0/0xe60
[  736.699627][T16721]  ? __pfx_generic_perform_write+0x10/0x10
[  736.705465][T16721]  ? __mark_inode_dirty+0x71a/0xe60
[  736.710705][T16721]  ? generic_update_time+0xcf/0xf0
[  736.715939][T16721]  ? mnt_put_write_access_file+0x45/0xf0
[  736.721628][T16721]  shmem_file_write_iter+0x10e/0x140
[  736.726959][T16721]  vfs_write+0x5ae/0x1150
[  736.731318][T16721]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  736.737168][T16721]  ? trace_lock_acquire+0x14a/0x1d0
[  736.742429][T16721]  ? __pfx_vfs_write+0x10/0x10
[  736.747228][T16721]  ? __pfx___mutex_lock+0x10/0x10
[  736.752331][T16721]  ksys_write+0x12f/0x260
[  736.756695][T16721]  ? __pfx_ksys_write+0x10/0x10
[  736.761580][T16721]  do_syscall_64+0xcd/0x250
[  736.766115][T16721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  736.772078][T16721] RIP: 0033:0x7f1f2637e719
[  736.776519][T16721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  736.796172][T16721] RSP: 002b:00007f1f270ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  736.804624][T16721] RAX: ffffffffffffffda RBX: 00007f1f26535f80 RCX: 00007f1f2637e719
[  736.812642][T16721] RDX: 000020000000007d RSI: 0000000000000000 RDI: 0000000000000003
[  736.820654][T16721] RBP: 00007f1f263f132e R08: 0000000000000000 R09: 0000000000000000
[  736.828662][T16721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  736.836661][T16721] R13: 0000000000000000 R14: 00007f1f26535f80 R15: 00007fff8c0d4fa8
[  736.844668][T16721]  </TASK>