last executing test programs:

3m23.62120855s ago: executing program 3 (id=1471):
ioctl$auto(0x3, 0x401070ca, 0xa742)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(r0, 0xf, 0x0)
openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ubifs/chk_orphans\x00', 0x20000, 0x0)
socket(0x37, 0x1, 0x74c1)
bind$auto(0x3, &(0x7f0000000080)=@isdn={0x22, 0x7, 0x8, 0x81, 0xf9}, 0x6e)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
mmap$auto(0x3, 0x20009, 0x4400000000df, 0x16, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup/io.pressure\x00', 0x80000, 0x0)
select$auto(0x5, &(0x7f0000000200)={[0xeb, 0x3, 0x4, 0xd5, 0xb, 0x1001ff, 0x500000, 0x10000, 0x7fffffffffffffff, 0x5, 0x105, 0x10001, 0x0, 0x800, 0x2, 0x7]}, 0x0, 0x0, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event2\x00', 0x161200, 0x0)
io_uring_setup$auto(0x6, 0x0)
read$auto(0x3, 0x0, 0x80)
openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/trigger\x00', 0x280100, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x18, 0x6, 0x80000000)
timerfd_create$auto(0x7, 0x0)
r2 = getsockopt$auto(r1, 0x10d, 0xc, 0x0, 0x0)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x8a002, 0x0)
rseq$auto(&(0x7f0000000300)={0xb, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x8)
ioctl$auto_IOCTL_VMCI_QUEUEPAIR_SETVA(r2, 0x7a4, 0x0)
mmap$auto(0x80000000000, 0x400008, 0xe0, 0x9b72, 0x2, 0x8000)
epoll_create$auto(0x2)
sendmsg$auto_TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="010029bd7000ffdbdf250cfaff0004000580"], 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x20000048)
ioctl$auto(r3, 0x2287, r3)
close_range$auto(0x2, 0x8000, 0x0)
r4 = socket(0x2, 0x1, 0x0)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
close_range$auto(0x2, r4, 0x1)
socket(0x1d, 0x3, 0xa)

3m20.935496347s ago: executing program 3 (id=1482):
setresuid$auto(0xd, 0x0, 0x221)
timerfd_gettime$auto(0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x0, 0x1, 0x9, 0x7, 0x3b, 0x7fffffffffffffff, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x2000003, 0x6, 0x4, 0xb4, 0x9, 0x2, 0x10000, 0x80, 0x7, 0x14, 0x7, 0x2000, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x0, 0x100, 0xa, 0x70624ce7, 0x0, 0x6, 0xb, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffffd, 0x7, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x804, 0x0, 0x7, 0xffffffffffffffff, 0x5, 0x8000000000008, 0xfffffffffffffffc, 0x3, 0xa38, 0x4, 0x4000000000000, 0xfffffffffffffffc, 0x2, 0x3fffffffff, 0x0, 0x2, 0xffff]}, 0x202, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_ETHTOOL_MSG_STATS_GET(0xffffffffffffffff, &(0x7f0000002100)={0x0, 0x0, &(0x7f00000020c0)={&(0x7f0000002140)={0x1c, 0x0, 0x70d, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_STATS_GROUPS={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x42}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2000}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa503}, 0x800}, 0x7, 0x4008)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
futex$auto(&(0x7f0000000000)=0x6000, 0x3, 0x3, &(0x7f0000000040)={0xa, 0x81}, &(0x7f00000000c0)=0x1, 0x2)
r1 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000)
recvmmsg$auto(r2, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)
write$auto_proc_clear_refs_operations_internal(r1, 0x0, 0xffffff4b)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x877, 0x0)

3m19.882824862s ago: executing program 3 (id=1487):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
poll$auto(&(0x7f0000003640)={<r1=>r0, 0x7, 0x6}, 0x6, 0x100000)
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003900), r0)
mmap$auto(0x2, 0x5, 0x384cd590, 0x15, r1, 0x6)
read$auto(r0, &(0x7f0000000100)='netdev\x00', 0x80000001)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/misc/hw_random/rng_current\x00', 0x0, 0x0)
lseek$auto(r3, 0x10000, 0x4)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r1, &(0x7f00000039c0)={0x0, 0x0, &(0x7f0000003980)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000a10e03015a9dcd4d37aa18f67d375bbc399062cfb8afcac5de473f5f9d47bfbd71611af0ef3508201123d5fe87aa9e462a09899c2618f008c100daf37e07718f4d491ef0d8b1e1a7104e26d8c5240fed54477af26e94d152f04f7035dd63ed4f45d009ce89ce48d95a42b3de2928dfc634b059db5ac30c282ee83577723ba1b599f12f51a499b286a688b850a64c6c2cebc060acf7469b7b5f308d2072f310c887d075ddcbfd818ec534195e6652bd6c", @ANYRES16=r2, @ANYBLOB="01032ebd7000fddbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0xc4)
r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000140), r1)
mmap$auto(0x2, 0xfe, 0x10, 0x1c, r4, 0x3)

3m19.640235688s ago: executing program 3 (id=1490):
r0 = syz_clone(0x52002000, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x4206, r0, 0x3, 0x5)
syz_open_procfs$namespace(r0, &(0x7f0000000000)='ns/ipc\x00')
syz_open_procfs$namespace(r0, &(0x7f0000000040)='ns/time_for_children\x00')

3m19.411631691s ago: executing program 3 (id=1493):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001980)={0x4c, r1, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x1c, 0x3, 0x0, 0x1, [@nested={0x8, 0x14, 0x0, 0x1, [@nested={0x4, 0x7}]}, @typed={0xf, 0xd, 0x0, 0x0, @str='ovs_packet\x00'}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "89870ff1c59f1779048590828847"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r2 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0)
ioctl$auto_LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) (fail_nth: 4)

3m18.665598974s ago: executing program 3 (id=1495):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
socket(0x2, 0x2, 0x1)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc045}, 0x4)
r0 = socket(0x10, 0x2, 0x0)
r1 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/state\x00', 0x2000, 0x0)
lseek$auto(r1, 0x9, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000fc0), r2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'gre0\x00'})
flistxattr$auto(0x2, 0xfffffffffffffffd, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000000)={0x24, r3, 0x1, 0x70bd2d, 0x25dfdbf9, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x1000}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x95a}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000021}, 0x4c840)
openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000080), 0x181000, 0x0)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
setsockopt$auto(r2, 0x1, 0x4, 0x0, 0x10001)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mbind$auto(0x2000, 0x1fd, 0xfffffffd, 0x0, 0x6, 0x82)
mprotect$auto(0x0, 0x8000000000000001, 0x6)

3m3.641337846s ago: executing program 32 (id=1495):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
socket(0x2, 0x2, 0x1)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc045}, 0x4)
r0 = socket(0x10, 0x2, 0x0)
r1 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/state\x00', 0x2000, 0x0)
lseek$auto(r1, 0x9, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000fc0), r2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'gre0\x00'})
flistxattr$auto(0x2, 0xfffffffffffffffd, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000000)={0x24, r3, 0x1, 0x70bd2d, 0x25dfdbf9, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x1000}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x95a}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000021}, 0x4c840)
openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000080), 0x181000, 0x0)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
setsockopt$auto(r2, 0x1, 0x4, 0x0, 0x10001)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mbind$auto(0x2000, 0x1fd, 0xfffffffd, 0x0, 0x6, 0x82)
mprotect$auto(0x0, 0x8000000000000001, 0x6)

2m43.146219303s ago: executing program 4 (id=1648):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
madvise$auto(0x0, 0x8, 0x15) (async)
epoll_create1$auto(0x0) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89b1, &(0x7f0000000900)={'bond0\x00'}) (async)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) (async)
madvise$auto(0x0, 0x3, 0x67)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x68140, 0x0) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) (async, rerun: 32)
connect$auto(0x4, 0x0, 0x10) (async, rerun: 32)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) (async, rerun: 64)
select$auto(0x5, 0x0, &(0x7f0000000100)={[0x9, 0x200, 0x0, 0x8000000000000201, 0x9, 0x3, 0x6, 0x7, 0xd886, 0x5e58296b, 0x341, 0x41, 0x7, 0x200, 0x8, 0xc]}, 0x0, 0x0) (async, rerun: 64)
ioctl$auto(r1, 0x5457, 0xd8) (async, rerun: 32)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r2) (rerun: 32)
sendmsg$auto_NL80211_CMD_UPDATE_FT_IES(r2, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000940)={0x13f0, r3, 0x20, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0xc4b6}, @NL80211_ATTR_4ADDR={0x5, 0x53, 0x2}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x8}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x139e, 0x84, 0x0, 0x1, [@nested={0x1228, 0xd, 0x0, 0x1, [@generic="d69179e59f405d1c9d09b46a95beec2c4188cb16cbcac047404b45e69db0752dea9df53c1e444a8ab4a5f87c681f8f52f9f565a91a5648ae452f39dc806faec79a814233086da548f046fbe805f429debff0be953a4805132d486e73c97bbf67ff058ee49869e851ff67ae620d73b55bab82d11a5de24b1ecdc8622877d0722b27c27505fb1cf294dbd429378a236f083db5e68fbea8095163354fc24bb8c7c54d920a66b7e45b03bfcb647dd882b2a8067757243e719b068158997fbf53633aa82c75c404f50d101e457748", @generic="fcaae0db960bb238d499dac4e8b1e38ecf1950343c7c4d8b308f545ad03b38f6842e8d5715793c2b3c805c0267e6a7224ea63eeeafa8de1f8eb62d5abd525f84a23b9b6f64dc8c4b7a70d42067935fed9771e72575fe6838dc8d96138c342fd41f1dc7f8c7db83d3f918ae04c6db604675bafd5dad1510243d7c8cac9b5e3540b7a71c6536ca92475a23e0b5546e6b159a8214ff72fe8435326a07c04cdb76676663be0a3d7f87c27843484317a0d26ce9ac79772377693ed77a576f9bf560a7ac7a3862", @generic="c0df4746b0fb800d134b0454c18739d4d393dd940d8dd921c1b31e34f1193ca063997b562f7c8d3e96c95107af953fdb829e1bfd9c0176e955414cb904c87542be665a6ec771c24c144c2b0f7594782b11e2468f5fce9d62df6811cc6226d181b82aec7963447851a890e38e4c2a3630ff2c4a1c50b26b93f57c13e267f2b14bde6d3be69b15180da172005f740c8d44b67b6ccf", @generic="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"]}, @nested={0xe0, 0x129, 0x0, 0x1, [@typed={0xd9, 0x69, 0x0, 0x0, @binary="5f5d05968fb277d3ef8b6421a440f87a16d39732e74cfcc5c911566e83405a986498c9e7472007065053b1d04deb7349afeb943c870859190a3f903e4206d75fbe57eb6bd133d56eeb7863b9965a35e83a597bf8c206058545067d60a3cc5bea6b7efc3177a15478cc658c96f83f1bf207f34b612f0868623d9f2c17df55b0aa3d7f564848e788dca1562c8d398e76c3451d9cf51dea98b5b02803ff942a6bcc06b4ad18a59e7fbbf9b36e22a67f916d807d9ce6d3a57545f576aad1fd917c3c62d3e5c60f58bda211093ac7582625d57741396e12"}]}, @generic='e', @generic="5a9ac2ea3ceec8129d2c0f4d6108321d8b866c8234325d9ef4f0f3e7fa2a0e0d3117e3e606afdd38ae1a25814aa91d54c071455dd22059352b447fba3ab218c2e58f43b4e0510843dcdc49cfd077a961f74df584c5c2ad8fcad5342a36a9afe0aa9083f0e5b817de4b86141bf26d838884c7857f79fd6da695046de1dac201a938e82eb58f8dc01a0e13cc7427df4562fa"]}, @NL80211_ATTR_HW_TIMESTAMP_ENABLED={0x4}, @NL80211_ATTR_TIMEOUT_REASON={0x8, 0xf8, 0xffffffff}, @NL80211_ATTR_MBSSID_CONFIG={0x18, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xa}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0x2}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}]}]}, 0x13f0}, 0x1, 0x0, 0x0, 0x404c891}, 0x800)

2m42.996960395s ago: executing program 0 (id=1650):
ioprio_set$auto(0x2, 0x800000000, 0x8)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd9/queue/io_poll\x00', 0x80302, 0x0)
sendfile$auto(r0, r0, 0x0, 0x3) (fail_nth: 6)

2m42.319648924s ago: executing program 0 (id=1652):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
r1 = clone3$auto(&(0x7f0000000000)={0x0, 0xffff, 0x7, 0x9, 0x1, 0x20000000000, 0x9, 0x3d, 0x5, 0xed, 0xe681}, 0x1)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
pwrite64$auto(0xc8, 0x0, 0xfdef, 0x3)
ioctl$auto(0x3, 0x227d, 0x3b)
close_range$auto(0x2, 0x8, 0x0)
r2 = memfd_create$auto(0x0, 0xe)
r3 = socket(0x2, 0x1, 0x106)
r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r4, 0x40045569, r4)
setsockopt$auto(r3, 0x1, 0x21, 0x0, 0x9)
write$auto_msr_fops_msr(r2, 0x0, 0x0)
bind$auto(0x3, 0x0, 0x6a)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x7}, 0x6}, 0x5, 0x20000000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r7=>0x0})
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000380)={0x28, r6, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_COALESCE_TX_AGGR_MAX_BYTES={0x8, 0x1a, 0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x0)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
socket(0x2, 0x1, 0x0)
sendmmsg$auto(r3, 0x0, 0x5, 0x2)
write$auto(0x3, 0x0, 0xfffffdef)
r8 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000001580)='/dev/dsp1\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SETFMT(r8, 0xc0045005, &(0x7f00000015c0)=0x4)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000500), r9)
sendmsg$auto_IPVS_CMD_SET_CONFIG(r9, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000c00)={0x1c, r10, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x14ae4701}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x40008000)
migrate_pages$auto(r1, 0x100, &(0x7f00000000c0)=0x7fff, &(0x7f0000000100)=0x7)
write$auto_console_fops_tty_io(r0, &(0x7f0000000140)="2a1d264add69b6443126ac8caf6ebbff950e1a647d6a08a1b55dde72409b46", 0x1f)

2m42.215467632s ago: executing program 4 (id=1654):
r0 = bpf$auto(0x0, &(0x7f00000000c0)=@link_update={<r1=>0xa, @new_map_fd=0x5, 0x4007, @old_map_fd}, 0xa3)
r2 = openat$auto_lockdown_ops_lockdown(0xffffffffffffff9c, &(0x7f0000003980), 0x2ab00, 0x0)
readv$auto(r2, &(0x7f0000003ac0)={&(0x7f00000039c0), 0x52d}, 0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001f00), r3)
sendmsg$auto_SMC_PNETID_ADD(r1, &(0x7f0000002000)={0x0, 0x0, &(0x7f0000001fc0)={&(0x7f0000000040)=ANY=[@ANYRESOCT, @ANYRES16=r4, @ANYBLOB="01002abd7000fbd3df25020000000b000100746c6570c9090000"], 0x20}, 0x1, 0x0, 0x0, 0x48000}, 0x8000)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
recvmmsg$auto(r5, &(0x7f0000000300)={{0x0, 0x6, 0x0, 0x9, 0x0, 0x406, 0x8}, 0x5a57}, 0x80000, 0x0, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x1)
mknod$auto(0x0, 0xc9, 0xc8)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20800, 0x0)
r6 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/console\x00', 0x48600, 0x0)
r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
ppoll$auto(&(0x7f0000000080)={r6, 0x1, 0x400}, 0x5, 0x0, 0x0, 0x8)
ioctl$auto_TIOCVHANGUP2(r7, 0x5437, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f00000006c0)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x80, 0x0)
unshare$auto(0x40000080)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x4f6500, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x500, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ptmx\x00', 0x189000, 0x0)
read$auto_dev_fops_plock(r0, &(0x7f0000000180)=""/186, 0xba)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/LookupCacheEnabled\x00', 0x48041, 0x0)

2m42.063529212s ago: executing program 0 (id=1655):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
capset$auto(0x0, 0x0) (async)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffffff, &(0x7f0000000280)=""/81, 0x8f) (async)
r0 = openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000000), 0x8202, 0x0)
write$auto_safesetid_gid_file_fops_securityfs(r0, 0x0, 0x0) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) (async)
r1 = socket(0x10, 0x2, 0x4) (async)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram1/queue/read_ahead_kb\x00', 0x181482, 0x0)
bind$auto(r3, &(0x7f0000000140)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x3) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000002c0)={'erspan0\x00', <r6=>0x0})
sendmsg$auto_NL802154_CMD_SET_WPAN_PHY_NETNS(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r5, @ANYBLOB, @ANYRES32=r6, @ANYBLOB="8f7753faa2a69fd5f7a57df9a7caf37e6a3b0401c4984fb3e4f7e0b51d3066415e97b2f17993ef318e117dfef2fce62d409500006a9a07e35d00"/71], 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x804) (async)
sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r1, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)={0x50, r5, 0x4, 0x70bd29, 0x25dfdbfb, {}, [@NL802154_ATTR_SCAN_DONE_REASON={0x5, 0x25, 0x4}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0xfffffffffffffffe}, @NL802154_ATTR_WPAN_PHY_NAME={0xf, 0x2, '/dev/tty12\x00'}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x9}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000840}, 0x4000804) (async)
unshare$auto(0x40000080) (async)
write$auto(0x3, 0x0, 0xfdef)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r2, @ANYBLOB="01002d16d307db6de33ed0cba6cef9b25b1abd7000fedbdf2505000000da0203800800457b0e", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100005800c00c50003000000000000000c02368008027a8087010c800800e800", @ANYRES32=r1, @ANYBLOB="0800fb"], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
bind$auto(0xffffffffffffffff, &(0x7f0000000080)=@in={0x2, 0x4001, @local}, 0x10001) (async)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0) (async)
r7 = socket(0x2, 0x1, 0x106)
connect$auto(r7, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
write$auto(0x3, 0x0, 0xfffffdef) (async)
ioctl$auto(0x3, 0x800005411, 0x38) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r8 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r8, 0xae01, 0x0)

2m41.551625843s ago: executing program 0 (id=1657):
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto_def_blk_fops_fs(r0, 0x127a, &(0x7f00000000c0))
readv$auto(0x3, &(0x7f0000000000)={0x0, 0x3}, 0x7)

2m41.404763203s ago: executing program 0 (id=1658):
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
bind$auto(0x3, 0x0, 0x6b)
r0 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
read$auto_l2cap_debugfs_fops_(r0, &(0x7f0000000240)=""/177, 0xb1)
timer_create$auto(0x8, 0x0, 0x0)
timer_settime$auto(0x0, 0x9, &(0x7f00000000c0)={{0x7fff, 0x30d}, {0x7, 0x4}}, 0x0)
rt_sigaction$auto(0xe, &(0x7f0000000580)={&(0x7f00000004c0)=0x0, 0x100000001, 0x0, {0x7}}, 0x0, 0x8)

2m40.854687353s ago: executing program 4 (id=1661):
r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_PHY_GET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, r0, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x400c0)

2m40.475680297s ago: executing program 4 (id=1663):
msgget$auto(0x4, 0x9)
msgget$auto(0xf, 0xfffffffd)
msgget$auto(0x8, 0x1)
msgget$auto(0xfffffffc, 0xd)
r0 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, 0x0, 0x100, 0x0)
write$auto_event_trigger_fops_trace(r0, &(0x7f0000000080)="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", 0x1000)
msgget$auto(0x9, 0x0)
r1 = io_uring_setup$auto(0x5, &(0x7f0000001080)={0x2, 0x7fff, 0x9, 0xffff, 0x8, 0xf, <r2=>r0, [0x2, 0x8000, 0x4d5], {0x7, 0x4e, 0x7fffffff, 0xa9, 0x3ff, 0xff, 0x5, 0xc, 0x5}, {0x3ff, 0x6, 0x5, 0x264, 0x6, 0x6, 0x40000000, 0x9, 0x7f}})
statx$auto(r2, &(0x7f0000001100)='./file0\x00', 0xfff, 0x9, &(0x7f0000001140)={0xffff, 0xd, 0x400, 0xfffffff8, <r3=>0xee01, <r4=>0xee01, 0x6, 0x10, 0x4, 0xdd, 0x8, 0x10, {0x0, 0x3}, {0x9, 0x3}, {0xa9af, 0x7}, {0x5, 0x8}, 0x7ff, 0x0, 0x6, 0xfffffb18, 0x2, 0xffd, 0x9, 0x6, 0xd, 0x7, 0x10001, 0x5, [0x8000000000000000, 0x6, 0x8700, 0x7fff, 0x2, 0x5, 0x0, 0x7fff, 0x9]})
newfstatat$auto(r2, &(0x7f0000001240)='./file0\x00', &(0x7f0000001280)={0xfffffffffffffff1, 0x5f, 0x7, 0xb7f9, 0xffffffffffffffff, <r5=>0xee01, 0x0, 0x5, 0x5, 0x7, 0x0, 0x7724, 0x62, 0x4fc5, 0x7, 0x4, 0x7}, 0x2e565517)
syz_clone3(&(0x7f0000001640)={0x200000, &(0x7f00000013c0)=<r6=>0xffffffffffffffff, &(0x7f0000001400)=<r7=>0x0, &(0x7f0000001440), {0xe}, &(0x7f0000001480)=""/173, 0xad, &(0x7f0000001540)=""/144, &(0x7f0000001600)=[0x0, 0xffffffffffffffff, 0x0], 0x3, {r1}}, 0x58)
r8 = getpgid$auto(0x0)
msgctl$auto(0x0, 0x40, &(0x7f00000016c0)={{0x2, <r9=>r3, <r10=>r5, 0x6, 0x5, 0x5, 0x4}, &(0x7f0000001340)=0x93, &(0x7f0000001380)=0x80, 0xce3, 0x5, 0x1ff, 0x1, 0xb0, 0xb, 0x81, 0x8b3, @inferred=r7, @inferred=r8})
ioctl$auto_TIOCMBIS2(r1, 0x5416, 0x0)
listen$auto(r1, 0x2)
read$auto(r2, &(0x7f0000001740)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/trigger\x00', 0x6)
shmctl$auto(0x100, 0x80, &(0x7f0000001940)={{0xf, <r11=>r9, r4, 0x7ff, 0x2, 0x2, 0x9}, 0x9, 0x0, 0x2, 0x2, @raw=0xc7, @inferred=r8, 0x8, 0x0, &(0x7f0000001800)="f518d874e207abe0488ef16d368ace93ecc19a83940f3b75f509fff2ab7bcc5435e9dc62a317668fdb7c3b822850e873f2b0383a5ac2de868be4d1c6ccec9e68b79b79c99b264bade4ccdc50d16318110418b28d3242c6558d0bb08860742783d1247a8ca3077cbcf6d9b1c4e156c0331ada0a6f25cb880c05e884c0df588ac6cf28c6c6e09df7c950bd871b7567c27b60fd9c96fe168838b2aecdf2b4e848ba6a69fd5f67236a379137243fd034dd90f1e57c337417ae7d0900bf1b12e01ff97a925a37773ba51e6af186e6b07d1a31ea8a5736e431cf418637b9ba0b5e15929b303e0bb8c2a5ca5954add3417e0b3bd03a20d37e7dfe", &(0x7f0000001900)="121d71d968300a72ecb01fbfb478a97489c3cb31dea9131444a09c7ab7b80d47d9dc8c142cea2bf25d8df89461eef5dd3ceafde49f9cf75ad0e6"})
stat$auto(&(0x7f00000017c0)='./file0\x00', &(0x7f00000019c0)={0x532, 0x0, 0xe, 0x200, r11, r10, 0x0, 0x6, 0x200, 0x2, 0x3ff, 0x8f, 0xfffffffffffffffa, 0x4, 0x4, 0x8000000000000000})
r12 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/snd/pcmC1D0p\x00', 0x103480, 0x0)
ioctl$auto(r12, 0x5, r6)
r13 = socket(0x2c, 0x3, 0x4)
read$auto_proc_page_owner_operations_page_owner(r1, &(0x7f0000001ac0)=""/4096, 0x1000)
r14 = getsockopt$auto(r2, 0x8, 0xb5c, &(0x7f0000002ac0)='\x00', &(0x7f0000002b00)=0xac85)
pipe$auto(&(0x7f0000002b40)=<r15=>r14)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000002b80)='/sys/kernel/debug/extfrag/unusable_index\x00', 0x4040, 0x0)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002bc0)='/sys/kernel/debug/tracing/set_event_notrace_pid\x00', 0x0, 0x0)
msgget$auto(0x8, 0xffffffff)
shutdown$auto(r15, 0x80)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000002c00), 0x2e680, 0x0)
mmap$auto(0x10, 0x7fffffff, 0xa86, 0x17, r13, 0x608)

2m40.315163698s ago: executing program 0 (id=1665):
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/dri/0000:00:02.0/Virtual-2/edid_override\x00', 0x4181, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/032/001\x00', 0x202, 0x0)
mmap$auto(0x800000000001, 0xe985, 0x20003, 0x200000eb1, r0, 0x8005)
r1 = getsockopt$auto(r0, 0xf9a5, 0x4, 0x0, &(0x7f00000000c0)=0x60000)
r2 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
sendmmsg$auto(r2, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f0000000040)="4a67d2", 0x14}, 0x6, &(0x7f0000000180), 0x8000000000000001, 0x1001}, 0x5}, 0x2, 0x100)
r3 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/16t\x00', 0x82000, 0x0)
read$auto_mon_fops_text_t_mon_text(r3, 0x0, 0x60)
close_range$auto(r2, r0, 0x4)
socket(0x2, 0x1, 0x106)
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x400000008000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_seg6(0x0, r1)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1, 0x1, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r4)
sendmsg$auto_NFSD_CMD_VERSION_SET(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)={0x28, r5, 0x1, 0x70bd05, 0x25dfdbfb, {}, [@NFSD_A_SERVER_PROTO_VERSION={0x14, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_MAJOR={0x8, 0x1, 0x2}, @NFSD_A_VERSION_MINOR={0x8}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x24000001}, 0x4010)
read$auto_mon_fops_text_t_mon_text(r4, &(0x7f0000000000)=""/148, 0x94)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x15)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)

2m39.568741778s ago: executing program 4 (id=1668):
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x27, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x40}}, 0xf)
socket(0x10, 0x2, 0x0)
socket(0x8, 0x2, 0x4)
socket(0x2, 0x5, 0x0)
openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
bpf$auto(0x12, &(0x7f0000000000)=@info={0x2800, 0x1ff, 0x2}, 0xcf)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
socket(0x21, 0x2, 0x0)
mount$auto(0x0, 0x0, 0x0, 0x1000, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x40002, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(r0, 0x0, 0x0)
mmap$auto(0x7fffffffffffffff, 0x6dcf, 0x3, 0x4000000000eb0, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6)
tkill$auto(0x1, 0x7)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000200), 0xe0080, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)

2m38.079750537s ago: executing program 4 (id=1676):
msgget$auto(0x8, 0x1)
msgsnd$auto(0x3716, &(0x7f0000000000)={0x0, 0xd}, 0x7, 0x6)
msgget$auto(0xfffffffc, 0xd)

2m37.627758368s ago: executing program 33 (id=1676):
msgget$auto(0x8, 0x1)
msgsnd$auto(0x3716, &(0x7f0000000000)={0x0, 0xd}, 0x7, 0x6)
msgget$auto(0xfffffffc, 0xd)

2m24.588506514s ago: executing program 34 (id=1665):
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/dri/0000:00:02.0/Virtual-2/edid_override\x00', 0x4181, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/032/001\x00', 0x202, 0x0)
mmap$auto(0x800000000001, 0xe985, 0x20003, 0x200000eb1, r0, 0x8005)
r1 = getsockopt$auto(r0, 0xf9a5, 0x4, 0x0, &(0x7f00000000c0)=0x60000)
r2 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
sendmmsg$auto(r2, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f0000000040)="4a67d2", 0x14}, 0x6, &(0x7f0000000180), 0x8000000000000001, 0x1001}, 0x5}, 0x2, 0x100)
r3 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/16t\x00', 0x82000, 0x0)
read$auto_mon_fops_text_t_mon_text(r3, 0x0, 0x60)
close_range$auto(r2, r0, 0x4)
socket(0x2, 0x1, 0x106)
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x400000008000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_seg6(0x0, r1)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1, 0x1, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r4)
sendmsg$auto_NFSD_CMD_VERSION_SET(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)={0x28, r5, 0x1, 0x70bd05, 0x25dfdbfb, {}, [@NFSD_A_SERVER_PROTO_VERSION={0x14, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_MAJOR={0x8, 0x1, 0x2}, @NFSD_A_VERSION_MINOR={0x8}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x24000001}, 0x4010)
read$auto_mon_fops_text_t_mon_text(r4, &(0x7f0000000000)=""/148, 0x94)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x15)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)

1m58.554390453s ago: executing program 2 (id=1776):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
ioctl$auto(r0, 0x400c4d03, 0x83)
setreuid$auto(0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
socket(0xa, 0x2, 0x0)
socketpair$auto(0x1e, 0x1, 0x0, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)
ioctl$auto(r1, 0x89f1, 0x38)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x2dc08f24db163610, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40d81, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000100), 0x0)
socket(0xa, 0x801, 0x84)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000002f80), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_NAPI_GET2(0xffffffffffffffff, &(0x7f0000003080)={0x0, 0x0, &(0x7f0000003040)={&(0x7f0000003000)={0x1c, r4, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@NETDEV_A_NAPI_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x840}, 0x4)
r5 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000600), r3)
sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(r3, &(0x7f0000000000)={0x0, 0xb, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="09002cbd7000fbd0df250200000006000100ff00000087eb303f87fc7916f8b9b9eb9d228ababe615f76054ad34cffcf44d6002effa70685a94a381b55ebf15e942a48836985b45e7972aade212f1dab6d36983c25cf80f97b15f223d38238b3ba7aaac4a15a451f6281862fd37d7deb2048a41684c38a5319da80b7b57b98f34d421c3c89c59be4750a6a3b8557dc1ac3447b24e187c24c6f809c1a994b782aaeedc09f01cc6d859ba13aef179428d966e600bd3400f9580729133377629892a2a84f6647fd398d911f423e3d81e9cea8eaac7194e216f2d98876e63c35c1499696"], 0x1c}, 0x1, 0x0, 0x0, 0x40004}, 0x808)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
clone$auto(0x3, 0x7, 0x0, 0x0, 0xdd6)
getpriority$auto(0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x100000000, 0x5, 0x1d, 0x940, 0x1ffde, 0x3, 0x2000000000000006, 0x2, 0x9, 0x5, 0x2, 0x8, 0xae, 0x9, 0x2, 0x7, 0x5, 0x7, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, [0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x400000, 0x0, 0x80000000000, 0x400000000000000, 0x0, 0x8000000000000000, 0x80000000000000, 0x0, 0xfffffffffffffffd, 0x0, 0xfffffffffffffbfe, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x8, 0xfffffffffffffffe, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)

1m56.523228559s ago: executing program 2 (id=1784):
mmap$auto(0x0, 0x4, 0x8000000000000000, 0x40eb2, 0x402, 0x300000000000)
mlock$auto(0xfbe8, 0x4) (async)
r0 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0)
ioctl$auto(r0, 0x3b84, 0x38) (async)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0) (async)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x8000)

1m55.891676862s ago: executing program 2 (id=1785):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x15, 0x5, 0x0)
socket(0x2, 0x3, 0xa)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20000, 0x0)
sendmsg$auto_NL80211_CMD_STOP_AP(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0xc}, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x17, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x5000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)

1m55.119718801s ago: executing program 2 (id=1788):
process_mrelease$auto(0xffffffffffffffff, 0x6)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000440), 0x244003, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/etherd/err\x00', 0x2, 0x0)
read$auto_aoe_fops_aoechr(r1, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

1m54.05034328s ago: executing program 2 (id=1790):
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', 0x0, 0xfffd, 0x0)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', 0x0, 0xfffd, 0x0) (fail_nth: 5)

1m52.891567266s ago: executing program 2 (id=1794):
fsopen$auto(0x0, 0x1)
move_pages$auto(0x0, 0x0, 0x0, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r0, 0x541c, 0x1)

1m37.554686773s ago: executing program 35 (id=1794):
fsopen$auto(0x0, 0x1)
move_pages$auto(0x0, 0x0, 0x0, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r0, 0x541c, 0x1)

7.759693942s ago: executing program 5 (id=2118):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x2c, r1, 0x39, 0x70bd26, 0x25dfdbfc, {0x1, 0x0, 0x3f}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, '\x01\x00R\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000800}, 0x80)

7.445796728s ago: executing program 5 (id=2121):
msgget$auto(0x4, 0x9)
msgget$auto(0xf, 0xfffffffd)
msgget$auto(0x8, 0x1)
msgget$auto(0xfffffffc, 0xd)
r0 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/trigger\x00', 0x100, 0x0)
write$auto_event_trigger_fops_trace(r0, &(0x7f0000000080)="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", 0x1000)
msgget$auto(0x9, 0x0)
r1 = io_uring_setup$auto(0x5, &(0x7f0000001080)={0x2, 0x7fff, 0x9, 0xffff, 0x8, 0xf, <r2=>r0, [0x2, 0x8000, 0x4d5], {0x7, 0x4e, 0x7fffffff, 0xa9, 0x3ff, 0xff, 0x5, 0xc, 0x5}, {0x3ff, 0x6, 0x5, 0x264, 0x6, 0x6, 0x40000000, 0x9, 0x7f}})
statx$auto(r2, &(0x7f0000001100)='./file0\x00', 0xfff, 0x9, 0x0)
newfstatat$auto(r2, &(0x7f0000001240)='./file0\x00', &(0x7f0000001280)={0xfffffffffffffff1, 0x5f, 0x7, 0xb7f9, 0xffffffffffffffff, <r3=>0xee01, 0x0, 0x5, 0x5, 0x7, 0x0, 0x7724, 0x62, 0x4fc5, 0x7, 0x4, 0x7}, 0x2e565517)
syz_clone3(&(0x7f0000001640)={0x200000, &(0x7f00000013c0)=<r4=>0xffffffffffffffff, &(0x7f0000001400)=<r5=>0x0, &(0x7f0000001440), {0xe}, &(0x7f0000001480)=""/173, 0xad, &(0x7f0000001540)=""/144, &(0x7f0000001600)=[0x0, 0xffffffffffffffff, 0x0], 0x3, {r1}}, 0x58)
r6 = getpgid$auto(0x0)
msgctl$auto(0x0, 0x40, &(0x7f00000016c0)={{0x2, <r7=>0x0, <r8=>r3, 0x6, 0x5, 0x5, 0x4}, &(0x7f0000001340)=0x93, &(0x7f0000001380)=0x80, 0xce3, 0x5, 0x1ff, 0x1, 0xb0, 0xb, 0x81, 0x8b3, @inferred=r5, @inferred=r6})
ioctl$auto_TIOCMBIS2(r1, 0x5416, 0x0)
listen$auto(r1, 0x2)
read$auto(r2, &(0x7f0000001740)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/trigger\x00', 0x6)
shmctl$auto(0x100, 0x80, &(0x7f0000001940)={{0xf, <r9=>r7, 0x0, 0x7ff, 0x2, 0x2, 0x9}, 0x9, 0x0, 0x2, 0x2, @raw=0xc7, @inferred=r6, 0x8, 0x0, &(0x7f0000001800)="f518d874e207abe0488ef16d368ace93ecc19a83940f3b75f509fff2ab7bcc5435e9dc62a317668fdb7c3b822850e873f2b0383a5ac2de868be4d1c6ccec9e68b79b79c99b264bade4ccdc50d16318110418b28d3242c6558d0bb08860742783d1247a8ca3077cbcf6d9b1c4e156c0331ada0a6f25cb880c05e884c0df588ac6cf28c6c6e09df7c950bd871b7567c27b60fd9c96fe168838b2aecdf2b4e848ba6a69fd5f67236a379137243fd034dd90f1e57c337417ae7d0900bf1b12e01ff97a925a37773ba51e6af186e6b07d1a31ea8a5736e431cf418637b9ba0b5e15929b303e0bb8c2a5ca5954add3417e0b3bd03a20d37e7dfe", &(0x7f0000001900)="121d71d968300a72ecb01fbfb478a97489c3cb31dea9131444a09c7ab7b80d47d9dc8c142cea2bf25d8df89461eef5dd3ceafde49f9cf75ad0e6"})
stat$auto(&(0x7f00000017c0)='./file0\x00', &(0x7f00000019c0)={0x532, 0x0, 0xe, 0x200, r9, r8, 0x0, 0x6, 0x200, 0x2, 0x3ff, 0x8f, 0xfffffffffffffffa, 0x4, 0x4, 0x8000000000000000})
r10 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/snd/pcmC1D0p\x00', 0x103480, 0x0)
ioctl$auto(r10, 0x5, r4)
r11 = socket(0x2c, 0x3, 0x4)
read$auto_proc_page_owner_operations_page_owner(r1, &(0x7f0000001ac0)=""/4096, 0x1000)
r12 = getsockopt$auto(r2, 0x8, 0xb5c, &(0x7f0000002ac0)='\x00', &(0x7f0000002b00)=0xac85)
pipe$auto(&(0x7f0000002b40)=<r13=>r12)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000002b80)='/sys/kernel/debug/extfrag/unusable_index\x00', 0x4040, 0x0)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002bc0)='/sys/kernel/debug/tracing/set_event_notrace_pid\x00', 0x0, 0x0)
msgget$auto(0x8, 0xffffffff)
shutdown$auto(r13, 0x80)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000002c00), 0x2e680, 0x0)
mmap$auto(0x10, 0x7fffffff, 0xa86, 0x17, r11, 0x608)

7.039869251s ago: executing program 5 (id=2122):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r0)
sendmsg$auto_TASKSTATS_CMD_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010a2bbd7000fbdbdf07010000000e0004004e2c534b5354415453000000b8e8bbc7e6eb893bd005ae9e1fdb7d1827d91df725bc6d9acbd18b7c8be764bff07977f46cd98702e491439679d12b81cd2add9c847c9367becabf491607174178e1d29a6e2a8dbd7c9696cb1344b77b0524448f03e51b75fcccb9e4a7b52ab5c7b109b65a9ab70cdf9e877d6d64dc4ebf045446d4dc750087551e2bd55aee902df1a54b4b971d5f930cb2a54ad3405d14000000"], 0x24}, 0x1, 0x0, 0x0, 0x4001}, 0x20000000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x29, 0x0, 0x0, 0x0, 0x0)
r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x200000, 0x0)
mmap$auto(0x0, 0xffffffffffffffff, 0x3, 0xeb1, r2, 0x9)
madvise$auto(0x200, 0xffffffffffff0005, 0xfffffff9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0)
pread64$auto(r3, 0x0, 0x8, 0xffff)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x4, 0x8000000000000000, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
socketpair$auto(0x4, 0x1, 0x20000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xc, 0x998, 0x1ffde, 0x3, 0x2, 0x2, 0x9, 0x5, 0x0, 0x7, 0xb2, 0x800000000000009, 0x0, 0x3, 0x5, 0x7, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x61b1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10002, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xeffffffffffffffc, 0x0, 0xc73, 0x1]}, 0x7, 0x3)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)

6.950210782s ago: executing program 6 (id=2123):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.1/usb2/product\x00', 0x181040, 0x0)
r0 = socket(0x25, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0xa, 0x801, 0x84)
r2 = getsockopt$auto(r1, 0x84, 0x75, 0x0, &(0x7f0000000000)=0x9000c)
r3 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0)
ioctl$auto_DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, 0x0)
ioctl$auto_DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, &(0x7f0000000080)={0x5, r2, r0})
poll$auto(&(0x7f0000000040)={r0, 0x21f, 0x7}, 0x1, 0x1)

6.35489418s ago: executing program 6 (id=2126):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, 0x0, 0x682, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x200000, 0x0)
r2 = socket(0x18, 0x3, 0x1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x10, 0x2, 0x0)
r5 = socket(0x21, 0x2, 0x2)
keyctl$auto(0x20000000000001c, 0xffffffffffffffff, 0x363, 0xa, 0x8000000000000007)
socket(0x2, 0x80002, 0x73)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_RSS_GET(r6, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000780)={0x2c, 0x0, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@ETHTOOL_A_RSS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x50)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', <r9=>0x0})
sendmsg$auto_OVS_DP_CMD_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000140)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01002bbd7000ffdbdf250100000008000900", @ANYRES32=r9, @ANYBLOB="0800040006000000110001006f76735f1200"/28, @ANYRES32=0x0, @ANYBLOB], 0x40}, 0x1, 0x0, 0x0, 0x20000800}, 0x2000000)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'veth1_virt_wifi\x00', <r10=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syzkaller0\x00', <r11=>0x0})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'veth0_to_batadv\x00', <r12=>0x0})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000280)={'batadv_slave_0\x00', <r13=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'hsr0\x00', <r14=>0x0})
sendmsg$auto_ETHTOOL_MSG_DEBUG_GET(r1, &(0x7f0000000480)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x128, 0x0, 0x800, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_DEBUG_HEADER={0xa8, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}]}, @ETHTOOL_A_DEBUG_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}]}, @ETHTOOL_A_DEBUG_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}]}]}, 0x128}, 0x1, 0x0, 0x0, 0x4040004}, 0x20008000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyua\x00', 0x20804, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000031c0)='/dev/ttyua\x00', 0x109000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000031c0)='/dev/ttyua\x00', 0x109000, 0x0)
ioctl$auto_UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000080)={0x9, 0x5, [{r5, 0x0, 0x4, 0x6}, {r3, 0x0, 0x6, 0x8001}, {<r15=>r5, 0x0, 0x2, 0x10}]})
close_range$auto(r15, r2, 0x5)
r16 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto(r16, 0xc1485544, 0xffffffffffffffff)

5.814121358s ago: executing program 5 (id=2127):
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7)

5.479689018s ago: executing program 5 (id=2128):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
ioctl$auto(r0, 0x400c4d03, 0x83)
setreuid$auto(0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
socket(0xa, 0x2, 0x0)
socketpair$auto(0x1e, 0x1, 0x0, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x2dc08f24db163610, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40d81, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000100), 0x0)
socket(0xa, 0x801, 0x84)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000002f80), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_NAPI_GET2(r4, &(0x7f0000003080)={0x0, 0x0, &(0x7f0000003040)={&(0x7f0000003000)={0x1c, r5, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@NETDEV_A_NAPI_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x840}, 0x4)
r6 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000600), r3)
sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(r3, &(0x7f0000000000)={0x0, 0xb, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="09002cbd7000fbd0df250200000006000100ff00000087eb303f87fc7916f8b9b9eb9d228ababe615f76054ad34cffcf44d6002effa70685a94a381b55ebf15e942a48836985b45e7972aade212f1dab6d36983c25cf80f97b15f223d38238b3ba7aaac4a15a451f6281862fd37d7deb2048a41684c38a5319da80b7b57b98f34d421c3c89c59be4750a6a3b8557dc1ac3447b24e187c24c6f809c1a994b782aaeedc09f01cc6d859ba13aef179428d966e600bd3400f9580729133377629892a2a84f6647fd398d911f423e3d81e9cea8eaac7194e216f2d98876e63c35c1499696"], 0x1c}, 0x1, 0x0, 0x0, 0x40004}, 0x808)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
clone$auto(0x3, 0x7, 0x0, 0x0, 0xdd6)
getpriority$auto(0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x100000000, 0x5, 0x1d, 0x940, 0x1ffde, 0x3, 0x2000000000000006, 0x2, 0x9, 0x5, 0x2, 0x8, 0xae, 0x9, 0x2, 0x7, 0x5, 0x7, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, [0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x400000, 0x0, 0x80000000000, 0x400000000000000, 0x0, 0x8000000000000000, 0x80000000000000, 0x0, 0xfffffffffffffffd, 0x0, 0xfffffffffffffbfe, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x8, 0xfffffffffffffffe, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)

4.22655382s ago: executing program 6 (id=2133):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptye8\x00', 0x187e01, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mknod$auto(0x0, 0x1, 0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYRESDEC], 0x14}}, 0x4000040)
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, r0, 0x5c8)
symlink$auto(&(0x7f00000001c0)='-\x00', &(0x7f0000000280)=')s:\x00')
unlink$auto(&(0x7f0000000300)=')s:\x00')
open(&(0x7f0000000000)='.\x00', 0x240340, 0x50)
open(&(0x7f0000000040)=')s:\x00', 0x101440, 0x6)
getdents64$auto(0x0, &(0x7f0000000440)={0x6, 0x4, 0x5, 0x1}, 0x2000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x106)
adjtimex$auto(0x0)
readv$auto(0x3, 0x0, 0x6)
pidfd_open$auto(0x1, 0x0)
mmap$auto(0x0, 0x8, 0xde, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x4c40e2, 0x0)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x280, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x4605, 0x0)

3.744845421s ago: executing program 6 (id=2134):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
msync$auto(0x4, 0x401, 0x6)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0x200, 0x160)
r1 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0xa000, 0x2b, 0x11}, 0x18)
linkat$auto(r0, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000180)='./file0\x00', 0x3ff)
openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC0\x00', 0x220a00, 0x0)
memfd_secret$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
ioctl$auto_TCFLSH2(r2, 0x541b, 0x1000000000000)

3.642028042s ago: executing program 5 (id=2136):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffff7ffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
setpriority$auto(0x4000000001, 0x100000001, 0x6)
mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x100000000002, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
rseq$auto(&(0x7f0000000300)={0xe, 0xc01, 0x0, 0x6, 0xffffffff, 0x2}, 0x8004, 0x0, 0x6)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
setgroups$auto(0xe32, 0x0)

3.191107961s ago: executing program 6 (id=2137):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r0)
sendmsg$auto_TASKSTATS_CMD_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010a2bbd7000fbdbdf07010000000e0004004e2c534b5354415453000000b8e8bbc7e6eb893bd005ae9e1fdb7d1827d91df725bc6d9acbd18b7c8be764bff07977f46cd98702e491439679d12b81cd2add9c847c9367becabf491607174178e1d29a6e2a8dbd7c9696cb1344b77b0524448f03e51b75fcccb9e4a7b52ab5c7b109b65a9ab70cdf9e877d6d64dc4ebf045446d4dc750087551e2bd55aee902df1a54b4b971d5f930cb2a54ad3405d14000000"], 0x24}, 0x1, 0x0, 0x0, 0x4001}, 0x20000000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x29, 0x0, 0x0, 0x0, 0x0)
r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x200000, 0x0)
mmap$auto(0x0, 0xffffffffffffffff, 0x3, 0xeb1, r2, 0x9)
madvise$auto(0x200, 0xffffffffffff0005, 0xfffffff9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0)
pread64$auto(r3, 0x0, 0x8, 0xffff)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x4, 0x8000000000000000, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
socketpair$auto(0x4, 0x1, 0x20000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xc, 0x998, 0x1ffde, 0x3, 0x2, 0x2, 0x9, 0x5, 0x0, 0x7, 0xb2, 0x800000000000009, 0x0, 0x3, 0x5, 0x7, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x61b1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10002, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xeffffffffffffffc, 0x0, 0xc73, 0x1]}, 0x7, 0x3)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)

3.190989415s ago: executing program 7 (id=2138):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
inotify_init1$auto(0x3000000000000)
io_uring_setup$auto(0x2, 0x0)
socket(0xa, 0x801, 0x84)
ioctl$auto(0x3, 0x400c4d01, 0xffffffffffffffff)

2.928779321s ago: executing program 7 (id=2140):
r0 = bpf$auto(0x0, &(0x7f00000000c0)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_map_fd}, 0xa3)
openat$auto_lockdown_ops_lockdown(0xffffffffffffff9c, &(0x7f0000003980), 0x2ab00, 0x0)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
mknod$auto(0x0, 0xc9, 0xc8)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20800, 0x0)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/console\x00', 0x48600, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
ppoll$auto(&(0x7f0000000080)={r1, 0x1, 0x400}, 0x5, 0x0, 0x0, 0x8)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f00000006c0)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x80, 0x0)
unshare$auto(0x40000080)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x4f6500, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x500, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ptmx\x00', 0x189000, 0x0)
read$auto_dev_fops_plock(r0, &(0x7f0000000180)=""/186, 0xba)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/LookupCacheEnabled\x00', 0x48041, 0x0)

2.004881539s ago: executing program 1 (id=2143):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x2a000, 0x0)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000f9dbdf250100000006000200000000000500070010000000080009009c781e2108000a000800050014001f0000000000000000000000ffff0000000014002003ff010000000000000000000000000001"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x400c004)

1.955685184s ago: executing program 7 (id=2144):
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000100), 0x101000, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_fops_bool_file(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/netdevsim/netdevsim2/ports/3/bpf_map_accept\x00', 0x2881, 0x0)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@buf=0x0, 0x800c040, 0x40000000, 0x800c000}, 0x4)
openat2$auto(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0xf6)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/ram1/queue/max_integrity_segments\x00', 0xc0, 0x0)
ioctl$auto(0x3, 0x80811501, 0xfffffffffffff4e0)
socket(0x21, 0x2, 0x2)
listen$auto(0x3, 0x85)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x20006, 0x3, 0xe72, 0x401, 0x8000)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x4604, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20540, 0x0)
ioctl$auto(0x3, 0x5420, 0x38)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r0, 0x0, 0x4)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001100)=""/4105, 0x1009)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
fanotify_init$auto(0x5, 0x2)
open(&(0x7f0000000000)='./file0\x00', 0x7ffd, 0x10c)
pwritev2$auto(0x4, 0x0, 0x4, 0x4, 0x9f4, 0x22)

1.647678127s ago: executing program 1 (id=2145):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptye8\x00', 0x187e01, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mknod$auto(0x0, 0x1, 0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYRESDEC], 0x14}}, 0x4000040)
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, r0, 0x5c8)
symlink$auto(&(0x7f00000001c0)='-\x00', &(0x7f0000000280)=')s:\x00')
unlink$auto(&(0x7f0000000300)=')s:\x00')
open(&(0x7f0000000000)='.\x00', 0x240340, 0x50)
open(&(0x7f0000000040)=')s:\x00', 0x101440, 0x6)
getdents64$auto(0x0, &(0x7f0000000440)={0x6, 0x4, 0x5, 0x1}, 0x2000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x106)
adjtimex$auto(0x0)
readv$auto(0x3, 0x0, 0x6)
pidfd_open$auto(0x1, 0x0)
mmap$auto(0x0, 0x8, 0xde, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x40, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x4605, 0x0)

1.446268243s ago: executing program 1 (id=2146):
setitimer$auto(0x1, &(0x7f0000000000)={{0x2, 0x4}, {0x5, 0x6}}, 0x0)
r0 = socket(0x18, 0x800, 0x1)
connect$auto(r0, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) (fail_nth: 5)

806.565522ms ago: executing program 1 (id=2147):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_NAPI_SET(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x40, r1, 0x200, 0x70bd29, 0x25dfdbff, {}, [@NETDEV_A_NAPI_IRQ_SUSPEND_TIMEOUT={0xc, 0x7, 0x17d3}, @NETDEV_A_NAPI_ID={0x8, 0x2, 0xc}, @NETDEV_A_NAPI_GRO_FLUSH_TIMEOUT={0xc, 0x6, 0x7fffffff}, @NETDEV_A_NAPI_IRQ_SUSPEND_TIMEOUT={0xc, 0x7, 0xfffffffffffffc00}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000180), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'netdevsim0\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'lo\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'ipvlan0\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'ip6gre0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'ip6gre0\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'dummy0\x00', <r7=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'tunl0\x00', <r8=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'geneve1\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'geneve1\x00', <r9=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'syzkaller0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r10=>0x0})
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r0, &(0x7f00000005c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000580)={&(0x7f00000003c0)={0x190, r2, 0x800, 0x70bd2c, 0x25dfdbfc, {}, [@ETHTOOL_A_TUNNEL_INFO_HEADER={0x4}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x80}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x46}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x100000}]}]}, 0x190}, 0x1, 0x0, 0x0, 0x2400c805}, 0x800) (async)
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r0, &(0x7f00000005c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000580)={&(0x7f00000003c0)={0x190, r2, 0x800, 0x70bd2c, 0x25dfdbfc, {}, [@ETHTOOL_A_TUNNEL_INFO_HEADER={0x4}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x80}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x46}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x100000}]}]}, 0x190}, 0x1, 0x0, 0x0, 0x2400c805}, 0x800)
r11 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000640), r0)
sendmsg$auto_NET_SHAPER_CMD_SET(r0, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x20000401}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x74, r11, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@NET_SHAPER_A_BW_MIN={0xc, 0x3, 0x85}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r6}, @NET_SHAPER_A_BURST={0xc, 0x5, 0x4}, @NET_SHAPER_A_WEIGHT={0x8, 0x7, 0x3e}, @NET_SHAPER_A_HANDLE={0x14, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x4}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0xd}]}, @NET_SHAPER_A_METRIC={0x8, 0x2, 0xfffffffa}, @NET_SHAPER_A_WEIGHT={0x8, 0x7, 0x8e}, @NET_SHAPER_A_BURST={0xc, 0x5, 0x2}, @NET_SHAPER_A_PRIORITY={0x8, 0x6, 0xfffffffa}]}, 0x74}, 0x1, 0x0, 0x0, 0x48000}, 0x4)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000940)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x40400000}, 0xc, &(0x7f0000000900)={&(0x7f00000007c0)={0x118, r2, 0x20, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x7}, @ETHTOOL_A_COALESCE_RX_PROFILE={0xd4, 0x1d, 0x0, 0x1, [@ETHTOOL_A_PROFILE_IRQ_MODERATION={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_IRQ_MODERATION_PKTS={0x8, 0x2, 0x4}, @ETHTOOL_A_IRQ_MODERATION_USEC={0x8}, @ETHTOOL_A_IRQ_MODERATION_PKTS={0x8, 0x2, 0x7fff}]}, @ETHTOOL_A_PROFILE_IRQ_MODERATION={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_IRQ_MODERATION_PKTS={0x8, 0x2, 0xffffffff}, @ETHTOOL_A_IRQ_MODERATION_COMPS={0x8, 0x3, 0x40}, @ETHTOOL_A_IRQ_MODERATION_COMPS={0x8, 0x3, 0x8}, @ETHTOOL_A_IRQ_MODERATION_USEC={0x8, 0x1, 0xffff0000}, @ETHTOOL_A_IRQ_MODERATION_COMPS={0x8, 0x3, 0x3}, @ETHTOOL_A_IRQ_MODERATION_USEC={0x8, 0x1, 0x5}, @ETHTOOL_A_IRQ_MODERATION_COMPS={0x8, 0x3, 0xf}]}, @ETHTOOL_A_PROFILE_IRQ_MODERATION={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_IRQ_MODERATION_PKTS={0x8, 0x2, 0x33c}, @ETHTOOL_A_IRQ_MODERATION_COMPS={0x8, 0x3, 0x3}, @ETHTOOL_A_IRQ_MODERATION_USEC={0x8, 0x1, 0xdf2}, @ETHTOOL_A_IRQ_MODERATION_USEC={0x8, 0x1, 0x2}]}, @ETHTOOL_A_PROFILE_IRQ_MODERATION={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_IRQ_MODERATION_COMPS={0x8, 0x3, 0x8001}, @ETHTOOL_A_IRQ_MODERATION_COMPS={0x8, 0x3, 0xc800}, @ETHTOOL_A_IRQ_MODERATION_PKTS={0x8, 0x2, 0x76}]}, @ETHTOOL_A_PROFILE_IRQ_MODERATION={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_IRQ_MODERATION_USEC={0x8, 0x1, 0xff}, @ETHTOOL_A_IRQ_MODERATION_COMPS={0x8, 0x3, 0x4dc}]}, @ETHTOOL_A_PROFILE_IRQ_MODERATION={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_IRQ_MODERATION_PKTS={0x8}, @ETHTOOL_A_IRQ_MODERATION_COMPS={0x8, 0x3, 0xfff}, @ETHTOOL_A_IRQ_MODERATION_USEC={0x8, 0x1, 0x3}, @ETHTOOL_A_IRQ_MODERATION_USEC={0x8}]}]}, @ETHTOOL_A_COALESCE_TX_USECS={0x8, 0x6, 0x5}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_LOW={0x8, 0x11, 0x3}, @ETHTOOL_A_COALESCE_RX_USECS={0x8, 0x2, 0xb}, @ETHTOOL_A_COALESCE_PKT_RATE_LOW={0x8, 0xd, 0x7}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_TX={0x5, 0x18, 0xc}]}, 0x118}, 0x1, 0x0, 0x0, 0x40}, 0x140)
r12 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000980), 0x20001, 0x0)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r0, &(0x7f0000000bc0)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000b80)={&(0x7f0000000a00)={0x154, r2, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x57ae}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x101}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x4}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xa41d}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x9}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x80000000}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0xffffffff}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x1000}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}]}]}, 0x154}, 0x1, 0x0, 0x0, 0xc0}, 0x8044) (async)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r0, &(0x7f0000000bc0)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000b80)={&(0x7f0000000a00)={0x154, r2, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x57ae}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x101}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x4}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xa41d}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x9}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x80000000}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0xffffffff}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}]}, @ETHTOOL_A_CABLE_TEST_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x1000}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}]}]}, 0x154}, 0x1, 0x0, 0x0, 0xc0}, 0x8044)
r13 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000c40), r0)
sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000d40)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000d00)={&(0x7f0000000c80)={0x44, r13, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0x5e}, @NL802154_ATTR_SCAN_DONE_REASON={0x5, 0x25, 0x5}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x1ff}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0x1}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x1a}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000040}, 0x0)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000d80)='/dev/cuse\x00', 0x40c0c0, 0x0) (async)
r14 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000d80)='/dev/cuse\x00', 0x40c0c0, 0x0)
adjtimex$auto(&(0x7f0000000dc0)={0x9, 0x0, 0x1, 0x0, 0xa6, 0xa, 0x8, 0x0, 0x5, 0x7, 0x100000001, {0x5, 0x8}, 0x4, 0x401, 0x100000000, 0x5, 0x0, 0xa4fb, 0x8, 0x629, 0x9, 0x0, 0x7})
readahead$auto(r12, 0xe, 0x100000001) (async)
readahead$auto(r12, 0xe, 0x100000001)
fremovexattr$auto(r12, &(0x7f0000000ec0)='geneve1\x00') (async)
fremovexattr$auto(r12, &(0x7f0000000ec0)='geneve1\x00')
mprotect$auto(0x2, 0x3ff, 0xffffffffffffffff) (async)
mprotect$auto(0x2, 0x3ff, 0xffffffffffffffff)
r15 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000f40), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000f80)={'bond0\x00', <r16=>0x0})
sendmsg$auto_ETHTOOL_MSG_LINKSTATE_GET(r0, &(0x7f0000001200)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000011c0)={&(0x7f0000000fc0)={0x1f4, r15, 0x200, 0x70bd28, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKSTATE_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}, @ETHTOOL_A_LINKSTATE_HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xfffffffd}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}]}, @ETHTOOL_A_LINKSTATE_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x25e2eb1b}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_LINKSTATE_HEADER={0xa8, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x10000}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @ETHTOOL_A_LINKSTATE_HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r16}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x1f4}, 0x1, 0x0, 0x0, 0x48040}, 0xc000)
io_cancel$auto(0x66, &(0x7f0000001240)={0x5, 0x8000, 0x1000, 0xd6bb, 0xece2, r14, 0xffffffffffffff80, 0xb1d, 0x8, 0x0, 0x28}, &(0x7f0000001280)={0x100000000, 0x1, 0x7, 0x7}) (async)
io_cancel$auto(0x66, &(0x7f0000001240)={0x5, 0x8000, 0x1000, 0xd6bb, 0xece2, <r17=>r14, 0xffffffffffffff80, 0xb1d, 0x8, 0x0, 0x28}, &(0x7f0000001280)={0x100000000, 0x1, 0x7, 0x7})
ioctl$auto_SNDRV_RAWMIDI_IOCTL_DROP(r17, 0x40045730, &(0x7f00000012c0)=0x9)

595.731642ms ago: executing program 7 (id=2148):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
inotify_init1$auto(0x3000000000000)
io_uring_setup$auto(0x2, 0x0)
socket(0xa, 0x801, 0x84)
ioctl$auto(0x3, 0x400c4d01, 0xffffffffffffffff)

558.270963ms ago: executing program 6 (id=2149):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x9, 0x0, 0x2, 0xb}, 0x800009}, 0x5, 0x20000000)
read$auto(0x3, 0x0, 0x7)
r0 = open(0x0, 0x62240, 0x154)
bind$auto(0x3, 0x0, 0x6a)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/system/node/node1/compact\x00', 0x101800, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000100)='./cgroup/cgroup.subtree_control\x00')
acct$auto(0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r1 = open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2)
r2 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/sg/version\x00', 0x8080, 0x0)
lseek$auto(r2, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
setrlimit$auto(0x1000000007, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
sendmsg$auto_NL80211_CMD_SET_QOS_MAP(r1, &(0x7f0000000480)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f0000000280)={0x1a8, 0x0, 0x4, 0x70bd29, 0x25dfdbff, {}, [@NL80211_ATTR_MLO_TTLM_DLINK={0xe8, 0x148, "f062ac61d262e74db159bbbd6795c6132164c6361b6e24b34b7e80a232bac4302dd541030c1f63cd1f33ab2dabc9d7ebf6c22aba0d1c672e1640eeeac2ae4553eec1e01d2044970af4c07ae281ffe397ff170f00189e360efbaa37dfd2dd5e0e5c04f11a8a4af611556a3481d27b5c90ecbca55c9e726bca387b0ddc9b04db6178b90807eebb1f9a6e1a5505c3daf7c31c1cb5dfe5d415b11e4424069286914dab52bf4f6c0f2f850aff4076a061c0ede83764de8e4d5cc6eccf27a969a773dc4fda38e46f3932828b9af84d98c6cf47c7e22165694f5fbdb377d479a848668082d3acd3"}, @NL80211_ATTR_SUPPORT_MESH_AUTH={0x4}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x2}, @NL80211_ATTR_BSS_DUMP_INCLUDE_USE_DATA={0x4}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x95, 0xbe, "a111130bc49474e0ff3060fdbd473c5a5d731f5d88896c3bb910ddd46603fecb01d413c10bdd6245b6cf686cd26c352a9abd74f14adbd6b36fd3cc0277c3ee6f89d4e1834d0d260080ca3202d13ee5674d784766cf860e6f39d26207b945d16c3d8618b6bfeab23ceed682ee17447a8ab51fa49b7c5c9664a77bb14b44df4a15a1adfab27cf6ce92ef51d6ee2fcb4e39f5"}]}, 0x1a8}, 0x1, 0x0, 0x0, 0x20000853}, 0x40)
r3 = getuid()
sendmsg$auto_TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000080)={&(0x7f00000005c0)={0x760, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_PUBL={0x1cb, 0x3, 0x0, 0x1, [@nested={0x17b, 0x17, 0x0, 0x1, [@typed={0x8, 0x98, 0x0, 0x0, @ipv4=@remote}, @typed={0x8, 0x3b, 0x0, 0x0, @u32=0x5}, @generic="e4c4b09ab45f9dcee67ec332cd58cedc2bf5374807dd3457d13aa1c08e840af710d0d49a3afe2636dfe07f7af462df89fb98a3dc67a0cb47b6e90dea992e395501d9b42d7ce46196ebbca6873e03add841ed63b3f64efad0523f3004daaeac295576cb2aa75e20e6769b70eccc4cda98339fb2484229c8063a3192f8e334159ab95c9c98a147c60f370479d14121eb736a3ca7189b80bdf18a671ef4b4d4b2d98d50de48ccc4c0308ef2c66a9b476f3f42e4dd212f52535ad13df1292dc2910f0968f6bfd610f67c9a2ea315c9d25b891c108630d9fcc6d7f2e81b543935b70df1c12a4d5d", @generic="905a02589b17029eeb6233573d1df339216e9c29c2548b33131279f2033968c4bfaed91ff170b282afc1eed337acd00ee8760efd576eb9c26f2b88e1003cddf9612a7e234c04a2658098d15c352c6295228435854d042ada567247ee4421f7cebbcc16c00383d73238a2e4851f21c9db0923", @typed={0xc, 0x3d, 0x0, 0x0, @u64=0x3}, @nested={0x4, 0x7}]}, @typed={0x8, 0x87, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0xaf, 0x0, 0x0, @uid=r3}, @generic="e462600bd7d6090093197ecd4560cfcd234dbf60c1f63020cb98386973f1e9744786dbc7e3b3f8c7a59499784acce45d07431d30765fb6dcafd399"]}, @TIPC_NLA_NET={0x45d, 0x7, 0x0, 0x1, [@generic="438048b64f07899ab986a6128c4d8b945b6d06ad51a89cbfd6a4fdaf44ec4f23455afd8cd9154aef589ff4d53efd3e6fc5893fffda5c295875c6c0a19260dd34ef6c5a18bf5b313a4ee0362308107d8241cba028", @typed={0x14, 0xd4, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @typed={0x8, 0x1f, 0x0, 0x0, @uid=0xee01}, @typed={0x5f, 0x105, 0x0, 0x0, @binary="cf5c748bea2792aed2a6fc8f181647c44f4ce025001f8a283d90d575e38710ff7f7063c7b8f98779e7829134854cbf3699895fda91f540d6fcb82d3ef626f786f37cd2c6130226d0da52d24a82a7f40cf9229a18e9071f16179766"}, @generic="a7e73923090c7bfe02d626925b7fe17f1763e0b5d2be25c614b44d6bc1e4caee44d2056cde0105a7d96ea88e6e5b59eb199d6add2832c7dddf9b632a72ec6def86d02d4575ad50e6ab523c18866185e44765352e9b9a367b758acc6e3f981c2aaf716464c96821efb2444d8f8815ee31f9d2a7cf9ffdd59b8ebf984822d4a333a8", @typed={0x4, 0xbe}, @generic="d7d4f9dd3bd3cfd604c21477f759187ce5bd7345b5cbd72668caaca7591e3f87fc6ceb6470a733d07ab3651bea29d0e4b182364cedbe60140afa308c3bd9d5e3aab5fd1b", @nested={0x24d, 0xc, 0x0, 0x1, [@generic="2c445fb01609b206db998683192905471ef27a8d7cfb93c8aa5a0d3dff2f1c49887fa5ec0ed00b0c00f9b6442c3695a4837920d1a9d823249c89b790a00768a57add3c29388a965d829b4144dc1faf51a5dddd42e80198c1583ceeee3d287d39d9fd2bd3585292761805d71b5b60b575629710f86d74f57a44cb86e56bbf8d286496ab8d5276e54f0e0a8f4cbb72b28903b4e4ac7fb729794cfdd4369aa13bbd8e2e15d54d4f7e384e963d46d2189082cbd072dbc7d786af9ee06080614465d175096014f9b798fc274cca83b50a58374d6c", @nested={0x4, 0xaa}, @generic="c9c80d1462d53d23583854f9d8120f56e293ff61d906e2c2ddbbd78f7f6d37b7d94d880c2aa6734571ae3a60385160bb68dd446d05b90cd331d326dee8857ad2091a0d3c4fa28f57c37055014f7bfc6e899e2f144b61e081e381c744aca6f86b3c73a74b905bb55821d676c63a91c8800bd27d003442c39b78c239cbd09c8117b9df0413c2536b0bdae3e2fa364b1752c3054bea6feaf87f3c3b98e6dd079cae85a11d746c76cca1d72606c6ead7f1091a6869b3188a999c7acb7417aab6848e6f", @generic="27919721db6c2f8f85bbd8276c56479c2b2f1a9c790829b3c19f60b01046202cae82d9ebb667c205468bcb06a4a5fb4a742d22c9968b639fdfb9ca9cb136ba397cb7544ba1fd5def01a93c429068c6e2aff095d66c7b0cf82c809e27351e9171c6888da34d69c1402286b10f8cd32ac4dff97c7707862632ba51ce4579dc22fa39dddf749ddd7b80fd270d773ff57e7de482730a0a298c3f2b1f60aef1bfeb1dd3ab76ea7c140d021d8289a221398e279333"]}, @nested={0x6d, 0x89, 0x0, 0x1, [@generic="22fbdb63d117bb7492465c00a68bfec51918e3121780d496f7af131cf57ceaf2358168ce7c828b16cf574bf6979113555967c60d2f9052ce4644a1f449750d35debfa894c6fb5c616cb27be74be8e9d40fc9aa580cbe94d6523fae9a2f", @nested={0x4, 0x89}, @typed={0x6, 0x112, 0x0, 0x0, @str='\'\x00'}]}]}, @TIPC_NLA_MEDIA={0x11f, 0x5, 0x0, 0x1, [@nested={0x23, 0x123, 0x0, 0x1, [@generic="d797ff2bbe386a5866b61561e83f2b13b24d2588af4b6f9a11e569f876266e"]}, @generic="fcbb70a0cce25cdc21c8428b3b308af29e3b969069280a37f054bd9ead2bea98e8d63f4c09e15221a6cb425f2364523b764341f021c423b56d53a654a48d6f553a63f0aa45b9ce07781c0c880adf5e90c826e9252aef40be0e4f3048dac3e84beac48e9f83aba236e3c1366e19338e13ef5d3527c45f7ed6fece73fcc5157574edc78977a2db514ce9352cd02e019ef7115ea1c344d5360d1185f7188a78304813154171c53e3ab6f4c4b7f2c4e1a4231057db9e291e842820835a0c7b419106e6879ade7d200beecb9ecb7862bd5984780bcb1be60ffcc961b6f8cdfaf18cd5f72b126611dd03fb17dfbf4e671dba04e5a4c0", @typed={0x4, 0x21}]}]}, 0x760}}, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mlockall$auto(0x7)
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffe)
syz_clone3(&(0x7f0000000200)={0x383281180, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58)
r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x100, 0x0)
ioctl$auto(r4, 0x64c8, 0x1e2)
openat$auto_minstrel_ht_stat_fops_rc80211_minstrel_ht_debugfs(0xffffffffffffff9c, &(0x7f0000002580)='/sys/kernel/debug/ieee80211/phy12/netdev:wlan0/stations/08:02:11:00:00:01/rc_stats\x00', 0x40000, 0x0)

504.287243ms ago: executing program 1 (id=2150):
mmap$auto(0x7, 0x400008, 0xdf, 0x18, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000040))
fcntl$auto(r1, 0x402, 0x8000007fffffdf)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000)
r3 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r3, 0x65, 0x1, 0xffffffffffffffff, 0x0)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x101800, 0x100)
ppoll$auto(&(0x7f0000000180)={r4, 0x9, 0x7}, 0x6, 0x0, 0x0, 0x8)
open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x0)
r5 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010026bd7020f8dbdf250100000008000200", @ANYRES32=0x4, @ANYBLOB="080001004866520008000200", @ANYRES32=0x9, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x0)
r6 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_DP_CMD_DEL(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002abd7000fedbdf2502"], 0x38}, 0x1, 0x0, 0x0, 0x20040011}, 0x20000000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
quotactl$auto(0x100, &(0x7f0000000140)='/dev/ram7\x00', 0x0, 0x0)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, 0x0, 0x40)
write$auto(0x3, 0x0, 0xfffffdef)
preadv2$auto(r7, &(0x7f00000001c0)={&(0x7f00000000c0)="bdd222", 0x2}, 0x5, 0x5, 0x6, 0x0)
openat$auto_vrr_range_fops_(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/dri/vkms/Virtual-1/vrr_range\x00', 0x101, 0x0)
unshare$auto(0x40000080)

299.559455ms ago: executing program 7 (id=2151):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptye8\x00', 0x187e01, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mknod$auto(0x0, 0x1, 0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYRESDEC], 0x14}}, 0x4000040)
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, r0, 0x5c8)
symlink$auto(&(0x7f00000001c0)='-\x00', &(0x7f0000000280)=')s:\x00')
unlink$auto(&(0x7f0000000300)=')s:\x00')
open(&(0x7f0000000000)='.\x00', 0x240340, 0x50)
open(&(0x7f0000000040)=')s:\x00', 0x101440, 0x6)
getdents64$auto(0x0, &(0x7f0000000440)={0x6, 0x4, 0x5, 0x1}, 0x2000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x106)
adjtimex$auto(0x0)
readv$auto(0x3, 0x0, 0x6)
pidfd_open$auto(0x1, 0x0)
mmap$auto(0x0, 0x8, 0xde, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x4c40e2, 0x0)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x280, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x40, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x4605, 0x0)

64.819522ms ago: executing program 1 (id=2152):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000002c4d696c4f2d0879492b887358a51bb13cc99653e02354d3fb1222f9b4d8e7", @ANYBLOB], 0x14}}, 0x4000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x106)
openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000180), 0x28400, 0x0)
pidfd_open$auto(0x1, 0x0)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x7fffffffffffffff, 0x80000006, 0xfffffffffffffffd, 0x7, 0x0, 0x0, 0x0, 0xfffffffeffffff91, 0xfd3, 0x2, 0x8000000ec, 0xfffffffffffffffd, 0x81, 0x100000000, 0x6, 0xfffffffffffffff7, 0x17fffffff})
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x7, 0x4a})
sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000040), 0x49}, 0x4, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x100)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
openat$auto_page_owner_stack_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1f, 0x3, 0x300000000000001, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2, 0x300000000000000]}, 0x0)

0s ago: executing program 7 (id=2153):
socket(0x10, 0x2, 0x4)
socket(0x11, 0x3, 0x2)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto_def_blk_fops_fs(r0, 0x1277, &(0x7f0000000000))
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f00000000c0), 0x80, 0x0)
openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)
r1 = openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000040), 0x2001, 0x0)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, r1, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
write$auto(0x3, 0x0, 0xfffffdef)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x806, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x7bf, 0x7bd6, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
ioctl$auto(r3, 0xc0045543, 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(r4, 0x10e, 0x3, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x20000000001ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3a, 0x5, 0x2]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)

kernel console output (not intermixed with test programs):

	

	
		
	

	

			
	











	

	




	









		





	







		












	

	














		




				
	

	
		
				
	

	
		

	


syzkaller
syzkaller login: [  405.019084][T10138] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1163'.
[  408.185717][T10185] Process accounting resumed
[  408.221439][T10185] kernel write not supported for file /294/mem (pid: 10185 comm: syz.3.1178)
[  409.139175][T10215] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1187'.
[  409.170732][T10215] tc_dump_action: action bad kind
[  409.178927][T10196] kernel write not supported for file /294/mem (pid: 10196 comm: syz.3.1181)
[  409.401821][T10219] kernel write not supported for file /294/mem (pid: 10219 comm: syz.3.1189)
[  409.753640][T10229] device-mapper: ioctl: Unable to rename non-existent device,  to uuid �
[  409.928504][T10228] kernel write not supported for file /294/mem (pid: 10228 comm: syz.3.1191)
[  410.034403][T10232] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1192'.
[  410.065892][T10232] vxcan1: entered promiscuous mode
[  410.185697][T10232] kernel write not supported for file /294/mem (pid: 10232 comm: syz.3.1192)
[  410.670645][T10251] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1200'.
[  410.685002][T10251] tc_dump_action: action bad kind
[  411.008392][T10258] openvswitch: netlink: Key type 149 is out of range max 32
[  411.361556][T10236] kernel write not supported for file /294/mem (pid: 10236 comm: syz.3.1195)
[  411.757038][T10266] bridge0: port 3(team0) entered blocking state
[  411.904744][T10266] bridge0: port 3(team0) entered disabled state
[  412.044352][T10266] team0: entered allmulticast mode
[  412.138985][T10266] team_slave_0: entered allmulticast mode
[  412.261375][T10266] team_slave_1: entered allmulticast mode
[  412.348812][T10266] team0: entered promiscuous mode
[  412.419211][T10266] team_slave_0: entered promiscuous mode
[  412.427267][T10266] team_slave_1: entered promiscuous mode
[  412.434998][T10266] bridge0: port 3(team0) entered blocking state
[  412.443124][T10266] bridge0: port 3(team0) entered forwarding state
[  413.080711][T10279] openvswitch: ovs_: Dropping previously announced user features
[  413.223620][T10264] kernel write not supported for file /294/mem (pid: 10264 comm: syz.3.1204)
[  413.787307][T10290] kernel write not supported for file /294/mem (pid: 10290 comm: syz.3.1210)
[  414.096582][T10303] kernel write not supported for file /294/mem (pid: 10303 comm: syz.3.1213)
[  414.633773][T10314] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1218'.
[  415.158698][T10312] kernel write not supported for file /294/mem (pid: 10312 comm: syz.3.1216)
[  415.552226][T10330] openvswitch: ovs_: Dropping previously announced user features
[  416.124839][T10338] kernel write not supported for file /294/mem (pid: 10338 comm: syz.3.1224)

syzkaller
syzkaller login: [  417.218278][T10355] kernel write not supported for file /294/mem (pid: 10355 comm: syz.3.1229)
[  417.473637][T10374] kernel write not supported for file /294/mem (pid: 10374 comm: syz.3.1234)
[  417.684571][T10382] kernel write not supported for file /294/mem (pid: 10382 comm: syz.3.1236)
[  417.735074][T10381] openvswitch: ovs_: Dropping previously announced user features
[  417.920895][T10389] FAULT_INJECTION: forcing a failure.
[  417.920895][T10389] name failslab, interval 1, probability 0, space 0, times 0
[  417.958896][T10389] CPU: 0 UID: 0 PID: 10389 Comm: syz.3.1237 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  417.971906][T10389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  417.984013][T10389] Call Trace:
[  417.987986][T10389]  <TASK>
[  417.991526][T10389]  dump_stack_lvl+0x16c/0x1f0
[  417.997186][T10389]  should_fail_ex+0x497/0x5b0
[  418.002885][T10389]  ? fs_reclaim_acquire+0xae/0x150
[  418.009074][T10389]  should_failslab+0xc2/0x120
[  418.015180][T10389]  __kmalloc_noprof+0xce/0x4f0
[  418.020988][T10389]  ? is_bpf_text_address+0x8a/0x1a0
[  418.027293][T10389]  ? tomoyo_encode2+0x100/0x3e0
[  418.033169][T10389]  tomoyo_encode2+0x100/0x3e0
[  418.038846][T10389]  ? bpf_ksym_find+0x124/0x1c0
[  418.044630][T10389]  tomoyo_encode+0x2c/0x40
[  418.049978][T10389]  tomoyo_mount_acl+0x145/0x880
[  418.055849][T10389]  ? hlock_class+0x4e/0x130
[  418.061301][T10389]  ? __lock_acquire+0x15a9/0x3c40
[  418.067381][T10389]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  418.067430][T10389]  ? __pfx___lock_acquire+0x10/0x10
[  418.067464][T10389]  ? stack_trace_save+0x95/0xd0
[  418.086208][T10389]  ? __pfx_lock_release+0x10/0x10
[  418.092308][T10389]  ? trace_lock_acquire+0x14e/0x1f0
[  418.098611][T10389]  ? tomoyo_mount_permission+0x149/0x420
[  418.105423][T10389]  ? lock_acquire+0x2f/0xb0
[  418.110868][T10389]  ? tomoyo_mount_permission+0x149/0x420
[  418.117789][T10389]  tomoyo_mount_permission+0x16e/0x420
[  418.124418][T10389]  ? tomoyo_mount_permission+0x149/0x420
[  418.131260][T10389]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  418.138535][T10389]  ? get_current_fs_domain+0x184/0x1f0
[  418.145194][T10389]  security_sb_mount+0x9b/0x260
[  418.151096][T10389]  path_mount+0x129/0x1f00
[  418.156459][T10389]  ? kmem_cache_free+0x152/0x4c0
[  418.162441][T10389]  ? __pfx_path_mount+0x10/0x10
[  418.168340][T10389]  ? putname+0x13c/0x180
[  418.173532][T10389]  __x64_sys_mount+0x294/0x320
[  418.179309][T10389]  ? __pfx___x64_sys_mount+0x10/0x10
[  418.185720][T10389]  do_syscall_64+0xcd/0x250
[  418.191187][T10389]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  418.198317][T10389] RIP: 0033:0x7fdc7a985d29
[  418.203683][T10389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  418.227261][T10389] RSP: 002b:00007fdc7b878038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  418.237398][T10389] RAX: ffffffffffffffda RBX: 00007fdc7ab75fa0 RCX: 00007fdc7a985d29
[  418.246979][T10389] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000000
[  418.256555][T10389] RBP: 00007fdc7b878090 R08: 0000000000000000 R09: 0000000000000000
[  418.266139][T10389] R10: 000000000000fffd R11: 0000000000000246 R12: 0000000000000001
[  418.275724][T10389] R13: 0000000000000000 R14: 00007fdc7ab75fa0 R15: 00007ffd7125cdd8
[  418.285321][T10389]  </TASK>
[  418.458563][T10392] kernel write not supported for file /294/mem (pid: 10392 comm: syz.3.1237)
[  419.597115][T10412] Invalid ELF header magic: != ELF
[  419.680985][T10404] kernel write not supported for file /294/mem (pid: 10404 comm: syz.3.1241)

syzkaller
syzkaller login: [  420.904818][T10422] kernel write not supported for file /294/mem (pid: 10422 comm: syz.3.1246)
[  421.185621][T10448] openvswitch: netlink: Key type 149 is out of range max 32
[  421.515532][T10442] openvswitch: ovs_: Dropping previously announced user features

syzkaller
syzkaller login: [  421.904139][T10448] kernel write not supported for file /294/mem (pid: 10448 comm: syz.3.1254)
[  422.423857][T10467] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1258'.
[  423.592096][T10463] kernel write not supported for file /294/mem (pid: 10463 comm: syz.3.1257)
[  423.735318][T10479] ubi0: attaching mtd0
[  423.824245][T10479] ubi0: scanning is finished
[  423.871042][T10479] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  424.268733][T10479] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  424.434975][T10495] openvswitch: netlink: Key type 149 is out of range max 32
[  424.676147][T10478] kernel write not supported for file /294/mem (pid: 10478 comm: syz.3.1263)

syzkaller
syzkaller login: [  425.304748][T10517] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1273'.
[  425.715296][T10501] kernel write not supported for file /294/mem (pid: 10501 comm: syz.3.1268)
[  426.067407][T10526] kernel write not supported for file /294/mem (pid: 10526 comm: syz.3.1277)
[  426.150871][T10529] openvswitch: ovs_: Dropping previously announced user features
[  426.670617][T10543] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1283'.
[  426.683401][T10536] kernel write not supported for file /294/mem (pid: 10536 comm: syz.3.1280)

syzkaller
syzkaller login: [  427.966474][T10553] kernel write not supported for file /294/mem (pid: 10553 comm: syz.3.1285)
[  428.972833][T10585] kernel write not supported for file /294/mem (pid: 10585 comm: syz.3.1293)
[  429.470022][T10607] kernel write not supported for file /294/mem (pid: 10607 comm: syz.3.1295)
[  429.907776][T10616] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1297'.
[  429.966188][T10617] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1298'.
[  430.535836][T10622] kernel write not supported for file /294/mem (pid: 10622 comm: syz.3.1297)
[  432.745849][T10650] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1310'.
[  433.613758][T10649] Process accounting resumed
[  433.637358][T10649] kernel write not supported for file /83/mem (pid: 10649 comm: syz.0.1310)
[  434.049946][T10655] kernel write not supported for file /83/mem (pid: 10655 comm: syz.0.1311)
[  434.352787][T10661] ICMPv6: process `syz.0.1313' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  434.762099][T10658] kernel write not supported for file /83/mem (pid: 10658 comm: syz.0.1313)
[  434.982841][T10538] kernel write not supported for file /294/mem (pid: 10538 comm: syz.3.1280)
[  435.166487][T10670] kernel write not supported for file /83/mem (pid: 10670 comm: syz.0.1316)
[  435.527113][T10673] kernel write not supported for file /83/mem (pid: 10673 comm: syz.0.1317)
[  435.754194][T10686] kernel write not supported for file /83/mem (pid: 10686 comm: syz.0.1318)
[  436.042508][T10693] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1319'.
[  436.284629][T10629] kernel write not supported for file /294/mem (pid: 10629 comm: syz.3.1302)
[  436.667433][T10696] kernel write not supported for file /294/mem (pid: 10696 comm: syz.3.1320)
[  436.981662][T10697] kernel write not supported for file /83/mem (pid: 10697 comm: syz.0.1319)
[  437.889568][T10723] kernel write not supported for file /294/mem (pid: 10723 comm: syz.3.1323)

syzkaller
syzkaller login: [  438.512257][T10751] Process accounting paused
[  438.750465][T10761] FAULT_INJECTION: forcing a failure.
[  438.750465][T10761] name failslab, interval 1, probability 0, space 0, times 0
[  438.774934][T10761] CPU: 1 UID: 0 PID: 10761 Comm: syz.3.1331 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  438.787922][T10761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  438.800037][T10761] Call Trace:
[  438.804006][T10761]  <TASK>
[  438.807562][T10761]  dump_stack_lvl+0x16c/0x1f0
[  438.813225][T10761]  should_fail_ex+0x497/0x5b0
[  438.818890][T10761]  ? fs_reclaim_acquire+0xae/0x150
[  438.825094][T10761]  should_failslab+0xc2/0x120
[  438.830783][T10761]  __kmalloc_noprof+0xce/0x4f0
[  438.836562][T10761]  ? d_absolute_path+0x137/0x1b0
[  438.842547][T10761]  ? tomoyo_encode2+0x100/0x3e0
[  438.848448][T10761]  tomoyo_encode2+0x100/0x3e0
[  438.854119][T10761]  tomoyo_realpath_from_path+0x1a7/0x710
[  438.860937][T10761]  tomoyo_path_number_perm+0x248/0x5b0
[  438.867550][T10761]  ? tomoyo_path_number_perm+0x235/0x5b0
[  438.874382][T10761]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  438.881658][T10761]  ? __pfx_lock_release+0x10/0x10
[  438.887721][T10761]  ? trace_lock_acquire+0x14e/0x1f0
[  438.893994][T10761]  ? lock_acquire+0x2f/0xb0
[  438.899412][T10761]  ? __fget_files+0x40/0x3a0
[  438.904957][T10761]  ? __fget_files+0x206/0x3a0
[  438.910594][T10761]  security_file_ioctl+0x9b/0x240
[  438.916647][T10761]  __x64_sys_ioctl+0xb7/0x200
[  438.922287][T10761]  do_syscall_64+0xcd/0x250
[  438.927723][T10761]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.934820][T10761] RIP: 0033:0x7fdc7a985d29
[  438.940135][T10761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  438.963995][T10761] RSP: 002b:00007fdc7b878038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  438.974111][T10761] RAX: ffffffffffffffda RBX: 00007fdc7ab75fa0 RCX: 00007fdc7a985d29
[  438.983687][T10761] RDX: 0000000000000000 RSI: 00000000800454df RDI: 0000000000000003
[  438.993260][T10761] RBP: 00007fdc7b878090 R08: 0000000000000000 R09: 0000000000000000
[  439.003045][T10761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  439.012619][T10761] R13: 0000000000000000 R14: 00007fdc7ab75fa0 R15: 00007ffd7125cdd8
[  439.022213][T10761]  </TASK>
[  439.031392][T10761] ERROR: Out of memory at tomoyo_realpath_from_path.
[  439.146534][T10757] warn_unsupported: 2 callbacks suppressed
[  439.146559][T10757] kernel write not supported for file /83/mem (pid: 10757 comm: syz.0.1330)
[  439.906524][T10775] Process accounting resumed
[  440.194189][T10767] kernel write not supported for file /83/mem (pid: 10767 comm: syz.0.1332)
[  440.296083][T10786] kernel write not supported for file /83/mem (pid: 10786 comm: syz.0.1338)
[  440.937715][T10804] sctp: [Deprecated]: syz.3.1343 (pid 10804) Use of struct sctp_assoc_value in delayed_ack socket option.
[  440.937715][T10804] Use struct sctp_sack_info instead
[  441.215372][T10790] kernel write not supported for file /83/mem (pid: 10790 comm: syz.0.1339)
[  442.406212][T10820] kernel write not supported for file /83/mem (pid: 10820 comm: syz.0.1346)
[  444.782241][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  444.790318][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  444.958224][T10885] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1364'.
[  444.989367][T10885] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1364'.
[  447.530260][T10921] Invalid ELF header magic: != ELF
[  448.521252][T10853] kernel write not supported for file /83/mem (pid: 10853 comm: syz.0.1355)
[  448.611604][T10925] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1372'.
[  448.701709][T10938] kernel write not supported for file /83/mem (pid: 10938 comm: syz.0.1378)
[  449.006516][   T29] audit: type=1800 audit(6032034715.904:6): pid=10941 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1379" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  450.431022][T10968] openvswitch: ovs_: Dropping previously announced user features
[  452.588937][T11009] openvswitch: ovs_: Dropping previously announced user features
[  454.645068][T11064] openvswitch: ovs_: Dropping previously announced user features
[  457.426153][T11123] openvswitch: ovs_: Dropping previously announced user features

syzkaller
syzkaller login: [  459.527582][T11149] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1426'.
[  459.702580][T11151] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1425'.
[  461.015537][T11171] openvswitch: ovs_: Dropping previously announced user features

syzkaller
syzkaller login: [  463.368334][T11207] openvswitch: ovs_: Dropping previously announced user features
[  464.023831][T11217] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1443'.
[  464.169556][T11221] FAULT_INJECTION: forcing a failure.
[  464.169556][T11221] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  464.217124][T11221] CPU: 1 UID: 0 PID: 11221 Comm: syz.0.1445 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  464.230118][T11221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  464.242228][T11221] Call Trace:
[  464.246188][T11221]  <TASK>
[  464.249743][T11221]  dump_stack_lvl+0x16c/0x1f0
[  464.255410][T11221]  should_fail_ex+0x497/0x5b0
[  464.261084][T11221]  _copy_from_iter+0x29b/0x1400
[  464.266974][T11221]  ? trace_lock_acquire+0x14e/0x1f0
[  464.273263][T11221]  ? __alloc_skb+0x200/0x380
[  464.278827][T11221]  ? __pfx__copy_from_iter+0x10/0x10
[  464.285257][T11221]  ? __virt_addr_valid+0x1a4/0x590
[  464.291447][T11221]  ? __virt_addr_valid+0x5e/0x590
[  464.297530][T11221]  ? __phys_addr_symbol+0x30/0x80
[  464.303621][T11221]  ? __check_object_size+0x488/0x710
[  464.310028][T11221]  netlink_sendmsg+0x813/0xd70
[  464.315844][T11221]  ? __pfx_netlink_sendmsg+0x10/0x10
[  464.322255][T11221]  ____sys_sendmsg+0x9ae/0xb40
[  464.328139][T11221]  ? copy_msghdr_from_user+0x10b/0x160
[  464.334755][T11221]  ? __pfx_____sys_sendmsg+0x10/0x10
[  464.341164][T11221]  ___sys_sendmsg+0x135/0x1e0
[  464.346851][T11221]  ? __pfx____sys_sendmsg+0x10/0x10
[  464.355390][T11221]  ? __pfx_lock_release+0x10/0x10
[  464.355434][T11221]  ? trace_lock_acquire+0x14e/0x1f0
[  464.355495][T11221]  ? __fget_files+0x206/0x3a0
[  464.355549][T11221]  __sys_sendmsg+0x16e/0x220
[  464.355602][T11221]  ? __pfx___sys_sendmsg+0x10/0x10
[  464.355676][T11221]  do_syscall_64+0xcd/0x250
[  464.355725][T11221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  464.355773][T11221] RIP: 0033:0x7f63a9985d29
[  464.355801][T11221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  464.355836][T11221] RSP: 002b:00007f63aa7eb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  464.355871][T11221] RAX: ffffffffffffffda RBX: 00007f63a9b75fa0 RCX: 00007f63a9985d29
[  464.355895][T11221] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 0000000000000003
[  464.355919][T11221] RBP: 00007f63aa7eb090 R08: 0000000000000000 R09: 0000000000000000
[  464.355942][T11221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  464.355964][T11221] R13: 0000000000000000 R14: 00007f63a9b75fa0 R15: 00007ffcf3566ef8
[  464.356007][T11221]  </TASK>
[  465.894389][T11246] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1450'.
[  466.599722][T11248] openvswitch: ovs_: Dropping previously announced user features
[  467.420649][T11275] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1457'.
[  469.655282][T11328] openvswitch: ovs_: Dropping previously announced user features

syzkaller
syzkaller login: [  471.691838][T11370] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1470'.
[  472.880139][T11384] openvswitch: ovs_: Dropping previously announced user features
[  473.853239][T11401] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1480'.
[  474.968603][T11424] openvswitch: ovs_: Dropping previously announced user features
[  475.014854][T11427] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1482'.
[  475.957173][T11457] FAULT_INJECTION: forcing a failure.
[  475.957173][T11457] name failslab, interval 1, probability 0, space 0, times 0
[  475.976087][T11457] CPU: 0 UID: 0 PID: 11457 Comm: syz.3.1493 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  475.989071][T11457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  476.001180][T11457] Call Trace:
[  476.005141][T11457]  <TASK>
[  476.008693][T11457]  dump_stack_lvl+0x16c/0x1f0
[  476.014355][T11457]  should_fail_ex+0x497/0x5b0
[  476.020010][T11457]  ? fs_reclaim_acquire+0xae/0x150
[  476.026190][T11457]  should_failslab+0xc2/0x120
[  476.031856][T11457]  __kmalloc_noprof+0xce/0x4f0
[  476.037621][T11457]  ? kobject_get_path+0xcb/0x230
[  476.043601][T11457]  kobject_get_path+0xcb/0x230
[  476.049371][T11457]  kobject_uevent_env+0x289/0x1670
[  476.055562][T11457]  ? __pfx_dev_uevent_name+0x10/0x10
[  476.061955][T11457]  ? bus_to_subsys+0x12d/0x160
[  476.067713][T11457]  device_del+0x623/0x9f0
[  476.072960][T11457]  ? __pfx_device_del+0x10/0x10
[  476.078833][T11457]  ? simple_release_fs+0x21/0xc0
[  476.084799][T11457]  device_unregister+0x1d/0xc0
[  476.090565][T11457]  bdi_unregister+0x452/0x640
[  476.096227][T11457]  ? __pfx_bdi_unregister+0x10/0x10
[  476.102621][T11457]  ? up_write+0x1b2/0x520
[  476.107985][T11457]  del_gendisk+0x91c/0xad0
[  476.113325][T11457]  ? __pfx_del_gendisk+0x10/0x10
[  476.119284][T11457]  ? __radix_tree_lookup+0x21f/0x2c0
[  476.125693][T11457]  loop_control_ioctl+0x4f8/0x640
[  476.131898][T11457]  ? __pfx_loop_control_ioctl+0x10/0x10
[  476.138623][T11457]  ? __fget_files+0x206/0x3a0
[  476.144322][T11457]  ? __pfx_loop_control_ioctl+0x10/0x10
[  476.151037][T11457]  __x64_sys_ioctl+0x190/0x200
[  476.156795][T11457]  do_syscall_64+0xcd/0x250
[  476.162248][T11457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.169367][T11457] RIP: 0033:0x7fdc7a985d29
[  476.174693][T11457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  476.198261][T11457] RSP: 002b:00007fdc7b878038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  476.208401][T11457] RAX: ffffffffffffffda RBX: 00007fdc7ab75fa0 RCX: 00007fdc7a985d29
[  476.217999][T11457] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000004
[  476.227594][T11457] RBP: 00007fdc7b878090 R08: 0000000000000000 R09: 0000000000000000
[  476.237187][T11457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  476.246778][T11457] R13: 0000000000000000 R14: 00007fdc7ab75fa0 R15: 00007ffd7125cdd8
[  476.256385][T11457]  </TASK>
[  477.079681][T11471] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1496'.
[  477.448707][T11475] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1495'.
[  478.676080][T11487] openvswitch: ovs_: Dropping previously announced user features
[  479.436920][T11504] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1506'.
[  480.719610][T11520] openvswitch: ovs_: Dropping previously announced user features
[  482.598692][T11561] FAULT_INJECTION: forcing a failure.
[  482.598692][T11561] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  482.621904][T11561] CPU: 0 UID: 0 PID: 11561 Comm: syz.0.1521 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  482.634893][T11561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  482.647007][T11561] Call Trace:
[  482.650973][T11561]  <TASK>
[  482.654519][T11561]  dump_stack_lvl+0x16c/0x1f0
[  482.660203][T11561]  should_fail_ex+0x497/0x5b0
[  482.665881][T11561]  _copy_to_user+0x32/0xd0
[  482.671244][T11561]  simple_read_from_buffer+0xd0/0x160
[  482.677756][T11561]  proc_fail_nth_read+0x198/0x270
[  482.683850][T11561]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  482.690622][T11561]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  482.697378][T11561]  vfs_read+0x1df/0xbe0
[  482.702426][T11561]  ? __fget_files+0x1fc/0x3a0
[  482.708091][T11561]  ? __pfx___mutex_lock+0x10/0x10
[  482.714178][T11561]  ? __pfx_vfs_read+0x10/0x10
[  482.719850][T11561]  ? __fget_files+0x206/0x3a0
[  482.725532][T11561]  ksys_read+0x12b/0x250
[  482.730676][T11561]  ? __pfx_ksys_read+0x10/0x10
[  482.736446][T11561]  do_syscall_64+0xcd/0x250
[  482.741907][T11561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.749038][T11561] RIP: 0033:0x7f63a998473c
[  482.754384][T11561] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  482.777964][T11561] RSP: 002b:00007f63aa7eb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  482.788113][T11561] RAX: ffffffffffffffda RBX: 00007f63a9b75fa0 RCX: 00007f63a998473c
[  482.797722][T11561] RDX: 000000000000000f RSI: 00007f63aa7eb0a0 RDI: 0000000000000005
[  482.807330][T11561] RBP: 00007f63aa7eb090 R08: 0000000000000000 R09: 0000000000000000
[  482.816942][T11561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  482.826555][T11561] R13: 0000000000000000 R14: 00007f63a9b75fa0 R15: 00007ffcf3566ef8
[  482.836202][T11561]  </TASK>
[  483.078301][T11565] openvswitch: ovs_: Dropping previously announced user features
[  483.474527][T11580] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1527'.

syzkaller
syzkaller login: [  485.836961][T11636] openvswitch: ovs_: Dropping previously announced user features
[  488.045725][T11684] openvswitch: ovs_: Dropping previously announced user features
[  488.327888][T11689] size and base must be multiples of 4 kiB
[  488.339122][T11689] CPU: 0 UID: 0 PID: 11689 Comm: syz.2.1546 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  488.352119][T11689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  488.364237][T11689] Call Trace:
[  488.368217][T11689]  <TASK>
[  488.371770][T11689]  dump_stack_lvl+0x16c/0x1f0
[  488.377457][T11689]  mtrr_add+0xdf/0x110
[  488.382411][T11689]  mtrr_ioctl+0x7cd/0xcd0
[  488.387697][T11689]  ? __pfx_mtrr_ioctl+0x10/0x10
[  488.393625][T11689]  ? __pfx_mtrr_ioctl+0x10/0x10
[  488.399572][T11689]  proc_reg_unlocked_ioctl+0x226/0x320
[  488.406191][T11689]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  488.413434][T11689]  __x64_sys_ioctl+0x190/0x200
[  488.419208][T11689]  do_syscall_64+0xcd/0x250
[  488.424687][T11689]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  488.431838][T11689] RIP: 0033:0x7fb8d5f85d29
[  488.437185][T11689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  488.460777][T11689] RSP: 002b:00007fb8d6d0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  488.471058][T11689] RAX: ffffffffffffffda RBX: 00007fb8d6175fa0 RCX: 00007fb8d5f85d29
[  488.480681][T11689] RDX: 0000000000000003 RSI: 00000000400c4d01 RDI: 0000000000000003
[  488.490300][T11689] RBP: 00007fb8d6001b08 R08: 0000000000000000 R09: 0000000000000000
[  488.499930][T11689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  488.509542][T11689] R13: 0000000000000000 R14: 00007fb8d6175fa0 R15: 00007ffd3db54808
[  488.519179][T11689]  </TASK>
[  488.827575][T11696] size and base must be multiples of 4 kiB
[  488.839346][T11696] CPU: 0 UID: 0 PID: 11696 Comm: syz.0.1549 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  488.852370][T11696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  488.864589][T11696] Call Trace:
[  488.868562][T11696]  <TASK>
[  488.872120][T11696]  dump_stack_lvl+0x16c/0x1f0
[  488.877808][T11696]  mtrr_del+0xd1/0x110
[  488.882792][T11696]  mtrr_ioctl+0x900/0xcd0
[  488.888059][T11696]  ? __pfx_mtrr_ioctl+0x10/0x10
[  488.893974][T11696]  ? __pfx_mtrr_ioctl+0x10/0x10
[  488.899871][T11696]  proc_reg_unlocked_ioctl+0x226/0x320
[  488.906479][T11696]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  488.913760][T11696]  __x64_sys_ioctl+0x190/0x200
[  488.919542][T11696]  do_syscall_64+0xcd/0x250
[  488.925032][T11696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  488.932170][T11696] RIP: 0033:0x7f63a9985d29
[  488.937506][T11696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  488.961189][T11696] RSP: 002b:00007f63aa7eb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  488.971351][T11696] RAX: ffffffffffffffda RBX: 00007f63a9b75fa0 RCX: 00007f63a9985d29
[  488.980971][T11696] RDX: 0000000000000003 RSI: 00000000400c4d04 RDI: 0000000000000003
[  488.990583][T11696] RBP: 00007f63a9a01b08 R08: 0000000000000000 R09: 0000000000000000
[  489.000198][T11696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  489.009825][T11696] R13: 0000000000000000 R14: 00007f63a9b75fa0 R15: 00007ffcf3566ef8
[  489.019462][T11696]  </TASK>

syzkaller
syzkaller login: [  492.031868][T11775] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1565'.
[  492.053987][T11770] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1563'.
[  492.154833][ T5844] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  492.231685][ T5844] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  492.251655][ T5844] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  492.308761][ T5844] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  492.328950][ T5844] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  492.338928][T11781] devtmpfs: Unknown parameter ':'
[  492.345475][ T5844] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  492.622167][T11778] chnl_net:caif_netlink_parms(): no params data found
[  492.920793][T11778] bridge0: port 1(bridge_slave_0) entered blocking state
[  492.931882][T11778] bridge0: port 1(bridge_slave_0) entered disabled state
[  492.961753][T11778] bridge_slave_0: entered allmulticast mode
[  492.981831][T11778] bridge_slave_0: entered promiscuous mode
[  493.006868][T11778] bridge0: port 2(bridge_slave_1) entered blocking state
[  493.025890][T11778] bridge0: port 2(bridge_slave_1) entered disabled state
[  493.046180][T11778] bridge_slave_1: entered allmulticast mode
[  493.063967][T11778] bridge_slave_1: entered promiscuous mode
[  493.135747][T11778] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  493.179882][T11778] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  493.203505][T11802] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1568'.
[  493.339911][T11778] team0: Port device team_slave_0 added
[  493.351270][T11778] team0: Port device team_slave_1 added
[  493.547556][T11778] batman_adv: batadv0: Adding interface: batadv_slave_0
[  493.564521][T11778] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  493.645695][T11778] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  493.699605][T11778] batman_adv: batadv0: Adding interface: batadv_slave_1
[  493.733564][T11778] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  493.823035][T11778] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  493.910166][T11778] hsr_slave_0: entered promiscuous mode
[  493.938106][T11778] hsr_slave_1: entered promiscuous mode
[  493.959251][T11778] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  493.989198][T11778] Cannot create hsr debugfs directory
[  494.292097][T11800] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  494.360944][T11800] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  494.403259][T11800] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  494.440593][T11800] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  494.470331][T11778] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  494.497194][T11800] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  494.512893][T11778] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  494.587576][T11778] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  494.598122][T11800] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  494.659919][T11778] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  494.889662][T11778] 8021q: adding VLAN 0 to HW filter on device bond0
[  494.931761][T11778] 8021q: adding VLAN 0 to HW filter on device team0
[  494.944797][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  494.953406][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  495.078030][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[  495.086639][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[  495.135907][T11778] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  495.149191][T11778] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  495.193650][T11825] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1574'.
[  495.236166][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout
[  495.970157][T11778] 8021q: adding VLAN 0 to HW filter on device batadv0
[  496.367088][T11778] veth0_vlan: entered promiscuous mode
[  496.381358][T11778] veth1_vlan: entered promiscuous mode
[  496.407243][T11778] veth0_macvtap: entered promiscuous mode
[  496.418285][T11778] veth1_macvtap: entered promiscuous mode
[  496.419595][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout
[  496.435891][T11778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  496.436866][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout
[  496.448505][T11778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  496.448574][T11778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  496.481354][T11778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  496.493494][T11778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  496.506480][T11778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  496.520157][T11778] batman_adv: batadv0: Interface activated: batadv_slave_0
[  496.529808][ T5844] Bluetooth: hci4: command 0x041b tx timeout
[  496.531710][T11778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  496.550138][T11778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  496.562015][T11778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  496.574943][T11778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  496.587057][T11778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  496.599699][T11778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  496.612893][T11778] batman_adv: batadv0: Interface activated: batadv_slave_1
[  496.625188][T11778] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  496.635910][T11778] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  496.646549][T11778] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  496.657173][T11778] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  497.083671][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  497.155746][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  497.365734][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  497.399675][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  498.484096][T11889] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1582'.
[  498.588490][   T54] Bluetooth: hci4: command 0x041b tx timeout
[  500.648152][   T54] Bluetooth: hci4: command 0x041b tx timeout

syzkaller
syzkaller login: [  501.186654][T11952] 
: entered promiscuous mode
[  502.470876][T11970] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1593'.
[  502.543106][T11985] can: request_module (can-proto-5) failed.
[  502.746879][   T54] Bluetooth: hci4: command 0x041b tx timeout

syzkaller
syzkaller login: [  504.338988][T12028] can0: slcan on ttyS2.
[  504.408598][T12027] can0 (unregistered): slcan off ttyS2.
[  504.804968][ T5844] Bluetooth: hci4: command 0x041b tx timeout
[  504.855165][T12043] netlink: 186 bytes leftover after parsing attributes in process `syz.4.1608'.
[  504.861281][T12045] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1616'.
[  505.903639][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  505.912699][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  506.100024][T12076] openvswitch: netlink: Message has 4 unknown bytes.
[  506.117710][T12076] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1618'.

syzkaller
syzkaller login: [  506.925147][ T5844] Bluetooth: hci4: command 0x041b tx timeout
[  507.368792][T12107] FAULT_INJECTION: forcing a failure.
[  507.368792][T12107] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  507.403491][T12107] CPU: 1 UID: 0 PID: 12107 Comm: syz.2.1625 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  507.416498][T12107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  507.428582][T12107] Call Trace:
[  507.432526][T12107]  <TASK>
[  507.436195][T12107]  dump_stack_lvl+0x16c/0x1f0
[  507.441836][T12107]  should_fail_ex+0x497/0x5b0
[  507.447625][T12107]  _copy_from_user+0x2e/0xd0
[  507.453169][T12107]  core_sys_select+0x34f/0xa10
[  507.458930][T12107]  ? __pfx_core_sys_select+0x10/0x10
[  507.465418][T12107]  ? find_held_lock+0x2d/0x110
[  507.471222][T12107]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  507.478444][T12107]  kern_select+0x15e/0x1e0
[  507.483774][T12107]  ? __pfx_kern_select+0x10/0x10
[  507.489742][T12107]  ? __pfx_ksys_write+0x10/0x10
[  507.495601][T12107]  __x64_sys_select+0xbd/0x160
[  507.501343][T12107]  ? do_syscall_64+0x91/0x250
[  507.507016][T12107]  ? lockdep_hardirqs_on+0x7c/0x110
[  507.513286][T12107]  do_syscall_64+0xcd/0x250
[  507.518726][T12107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.525931][T12107] RIP: 0033:0x7fb8d5f85d29
[  507.531242][T12107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  507.554891][T12107] RSP: 002b:00007fb8d6ced038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  507.565008][T12107] RAX: ffffffffffffffda RBX: 00007fb8d6176080 RCX: 00007fb8d5f85d29
[  507.574591][T12107] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  507.584180][T12107] RBP: 00007fb8d6ced090 R08: 0000000000000000 R09: 0000000000000000
[  507.593777][T12107] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000000001
[  507.603374][T12107] R13: 0000000000000000 R14: 00007fb8d6176080 R15: 00007ffd3db54808
[  507.613081][T12107]  </TASK>

syzkaller
syzkaller login: [  510.049775][T12160] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1638'.
[  512.278986][T12205] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1649'.
[  512.386940][T12208] FAULT_INJECTION: forcing a failure.
[  512.386940][T12208] name failslab, interval 1, probability 0, space 0, times 0
[  512.422950][T12208] CPU: 1 UID: 0 PID: 12208 Comm: syz.0.1650 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  512.435988][T12208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  512.448102][T12208] Call Trace:
[  512.452105][T12208]  <TASK>
[  512.455655][T12208]  dump_stack_lvl+0x16c/0x1f0
[  512.461462][T12208]  should_fail_ex+0x497/0x5b0
[  512.467129][T12208]  ? fs_reclaim_acquire+0xae/0x150
[  512.473320][T12208]  should_failslab+0xc2/0x120
[  512.479010][T12208]  __kmalloc_noprof+0xce/0x4f0
[  512.484784][T12208]  ? iter_file_splice_write+0x1cd/0x10b0
[  512.491609][T12208]  iter_file_splice_write+0x1cd/0x10b0
[  512.498227][T12208]  ? __pfx___lock_acquire+0x10/0x10
[  512.504511][T12208]  ? __pfx_iter_file_splice_write+0x10/0x10
[  512.511648][T12208]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  512.518461][T12208]  ? splice_direct_to_actor+0x346/0xa40
[  512.525287][T12208]  ? __pfx_iter_file_splice_write+0x10/0x10
[  512.532414][T12208]  direct_splice_actor+0x18f/0x6c0
[  512.538603][T12208]  splice_direct_to_actor+0x346/0xa40
[  512.545093][T12208]  ? __pfx_direct_splice_actor+0x10/0x10
[  512.551912][T12208]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  512.559042][T12208]  ? __fget_files+0x1fc/0x3a0
[  512.564718][T12208]  do_splice_direct+0x178/0x250
[  512.570584][T12208]  ? __pfx_do_splice_direct+0x10/0x10
[  512.577074][T12208]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  512.584196][T12208]  do_sendfile+0xaed/0xe30
[  512.589531][T12208]  ? __pfx_do_sendfile+0x10/0x10
[  512.595482][T12208]  ? __fget_files+0x206/0x3a0
[  512.601131][T12208]  __x64_sys_sendfile64+0x1da/0x220
[  512.607395][T12208]  ? ksys_write+0x1ba/0x250
[  512.612817][T12208]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  512.619731][T12208]  do_syscall_64+0xcd/0x250
[  512.625209][T12208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  512.632321][T12208] RIP: 0033:0x7f63a9985d29
[  512.637630][T12208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  512.661175][T12208] RSP: 002b:00007f63aa7eb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  512.671328][T12208] RAX: ffffffffffffffda RBX: 00007f63a9b75fa0 RCX: 00007f63a9985d29
[  512.680907][T12208] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  512.690479][T12208] RBP: 00007f63aa7eb090 R08: 0000000000000000 R09: 0000000000000000
[  512.700470][T12208] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  512.710046][T12208] R13: 0000000000000000 R14: 00007f63a9b75fa0 R15: 00007ffcf3566ef8
[  512.719664][T12208]  </TASK>

syzkaller
syzkaller login: [  515.100513][T12268] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1664'.
[  515.317561][T12278] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1666'.
[  515.355751][T12278] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1666'.
[  516.888697][   T11] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.184368][   T11] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.214312][T12325] FAULT_INJECTION: forcing a failure.
[  517.214312][T12325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  517.230499][T12325] CPU: 0 UID: 0 PID: 12325 Comm: syz.2.1675 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  517.243463][T12325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  517.255566][T12325] Call Trace:
[  517.259542][T12325]  <TASK>
[  517.263085][T12325]  dump_stack_lvl+0x16c/0x1f0
[  517.268750][T12325]  should_fail_ex+0x497/0x5b0
[  517.274415][T12325]  _copy_to_user+0x32/0xd0
[  517.279796][T12325]  simple_read_from_buffer+0xd0/0x160
[  517.286284][T12325]  proc_fail_nth_read+0x198/0x270
[  517.292365][T12325]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  517.299055][T12325]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  517.305741][T12325]  vfs_read+0x1df/0xbe0
[  517.310747][T12325]  ? __fget_files+0x1fc/0x3a0
[  517.316403][T12325]  ? __pfx___mutex_lock+0x10/0x10
[  517.322461][T12325]  ? __pfx_vfs_read+0x10/0x10
[  517.328099][T12325]  ? __fget_files+0x206/0x3a0
[  517.333741][T12325]  ksys_read+0x12b/0x250
[  517.338865][T12325]  ? __pfx_ksys_read+0x10/0x10
[  517.344608][T12325]  do_syscall_64+0xcd/0x250
[  517.350040][T12325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  517.357248][T12325] RIP: 0033:0x7fb8d5f8473c
[  517.362560][T12325] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  517.386109][T12325] RSP: 002b:00007fb8d6d0e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  517.396221][T12325] RAX: ffffffffffffffda RBX: 00007fb8d6175fa0 RCX: 00007fb8d5f8473c
[  517.405800][T12325] RDX: 000000000000000f RSI: 00007fb8d6d0e0a0 RDI: 0000000000000003
[  517.415376][T12325] RBP: 00007fb8d6d0e090 R08: 0000000000000000 R09: 0000000000000000
[  517.424960][T12325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  517.434542][T12325] R13: 0000000000000001 R14: 00007fb8d6175fa0 R15: 00007ffd3db54808
[  517.444159][T12325]  </TASK>
[  517.546985][   T11] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0

syzkaller
syzkaller login: [  517.645286][   T11] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.763729][T12333] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1678'.
[  517.933737][   T54] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  517.946706][   T54] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  517.959302][   T54] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  517.970269][   T54] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  517.979615][   T54] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  517.990938][   T54] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  518.117854][   T11] bridge_slave_1: left allmulticast mode
[  518.129612][   T11] bridge_slave_1: left promiscuous mode
[  518.165896][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  518.190902][   T11] bridge_slave_0: left allmulticast mode
[  518.202841][   T11] bridge_slave_0: left promiscuous mode
[  518.210184][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  519.161805][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  519.211480][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  519.237890][   T11] bond0 (unregistering): Released all slaves
[  520.076926][ T5844] Bluetooth: hci4: command tx timeout
[  520.125992][T12374] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1687'.
[  520.185732][T12334] chnl_net:caif_netlink_parms(): no params data found
[  520.464653][   T11] hsr_slave_0: left promiscuous mode
[  520.528457][   T11] hsr_slave_1: left promiscuous mode
[  520.569203][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  520.589048][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  520.610480][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  520.632185][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  520.681670][   T11] veth1_macvtap: left promiscuous mode
[  520.692930][   T11] veth0_macvtap: left promiscuous mode
[  520.702546][   T11] veth1_vlan: left promiscuous mode
[  520.717726][   T11] veth0_vlan: left promiscuous mode
[  522.133111][T12393] FAULT_INJECTION: forcing a failure.
[  522.133111][T12393] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  522.156135][ T5844] Bluetooth: hci4: command tx timeout
[  522.164674][T12393] CPU: 0 UID: 0 PID: 12393 Comm: syz.2.1691 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  522.177651][T12393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  522.189754][T12393] Call Trace:
[  522.193721][T12393]  <TASK>
[  522.197278][T12393]  dump_stack_lvl+0x16c/0x1f0
[  522.202957][T12393]  should_fail_ex+0x497/0x5b0
[  522.208633][T12393]  _copy_from_iter+0x29b/0x1400
[  522.214517][T12393]  ? trace_lock_acquire+0x14e/0x1f0
[  522.220809][T12393]  ? __alloc_skb+0x200/0x380
[  522.226378][T12393]  ? __pfx__copy_from_iter+0x10/0x10
[  522.232775][T12393]  ? __virt_addr_valid+0x1a4/0x590
[  522.238995][T12393]  ? __virt_addr_valid+0x5e/0x590
[  522.245076][T12393]  ? __phys_addr_symbol+0x30/0x80
[  522.251162][T12393]  ? __check_object_size+0x488/0x710
[  522.257572][T12393]  netlink_sendmsg+0x813/0xd70
[  522.263345][T12393]  ? __pfx_netlink_sendmsg+0x10/0x10
[  522.269759][T12393]  ____sys_sendmsg+0x9ae/0xb40
[  522.275520][T12393]  ? copy_msghdr_from_user+0x10b/0x160
[  522.282118][T12393]  ? __pfx_____sys_sendmsg+0x10/0x10
[  522.288496][T12393]  ___sys_sendmsg+0x135/0x1e0
[  522.294138][T12393]  ? __pfx____sys_sendmsg+0x10/0x10
[  522.300419][T12393]  ? __pfx_lock_release+0x10/0x10
[  522.306463][T12393]  ? trace_lock_acquire+0x14e/0x1f0
[  522.312852][T12393]  ? __fget_files+0x206/0x3a0
[  522.318494][T12393]  __sys_sendmsg+0x16e/0x220
[  522.324030][T12393]  ? __pfx___sys_sendmsg+0x10/0x10
[  522.330210][T12393]  do_syscall_64+0xcd/0x250
[  522.335640][T12393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  522.342741][T12393] RIP: 0033:0x7fb8d5f85d29
[  522.348051][T12393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  522.371599][T12393] RSP: 002b:00007fb8d6d0e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  522.381817][T12393] RAX: ffffffffffffffda RBX: 00007fb8d6175fa0 RCX: 00007fb8d5f85d29
[  522.391393][T12393] RDX: 0000000004000000 RSI: 00000000200002c0 RDI: 0000000000000008
[  522.400970][T12393] RBP: 00007fb8d6d0e090 R08: 0000000000000000 R09: 0000000000000000
[  522.410566][T12393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  522.420140][T12393] R13: 0000000000000000 R14: 00007fb8d6175fa0 R15: 00007ffd3db54808
[  522.429732][T12393]  </TASK>
[  523.022116][   T11] team0 (unregistering): Port device team_slave_1 removed
[  523.207868][   T11] team0 (unregistering): Port device team_slave_0 removed
[  524.205338][ T5844] Bluetooth: hci4: command tx timeout
[  526.053573][T12393] lo: entered promiscuous mode
[  526.059888][T12393] lo: left promiscuous mode
[  526.151575][T12334] bridge0: port 1(bridge_slave_0) entered blocking state
[  526.160539][T12334] bridge0: port 1(bridge_slave_0) entered disabled state
[  526.175340][T12334] bridge_slave_0: entered allmulticast mode
[  526.183756][T12334] bridge_slave_0: entered promiscuous mode
[  526.276310][ T5844] Bluetooth: hci4: command tx timeout
[  526.345661][T12334] bridge0: port 2(bridge_slave_1) entered blocking state
[  526.354312][T12334] bridge0: port 2(bridge_slave_1) entered disabled state
[  526.373220][T12334] bridge_slave_1: entered allmulticast mode
[  526.381743][T12334] bridge_slave_1: entered promiscuous mode
[  526.601077][T12334] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  526.813240][T12334] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  527.043628][T12334] team0: Port device team_slave_0 added
[  527.090654][T12334] team0: Port device team_slave_1 added
[  527.220792][T12334] batman_adv: batadv0: Adding interface: batadv_slave_0
[  527.229174][T12334] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  527.301659][T12334] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  527.331426][T12334] batman_adv: batadv0: Adding interface: batadv_slave_1
[  527.346955][T12334] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  527.398833][T12334] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  527.544129][T12334] hsr_slave_0: entered promiscuous mode
[  527.558141][T12334] hsr_slave_1: entered promiscuous mode

syzkaller
syzkaller login: [  527.577641][T12334] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  527.586898][T12334] Cannot create hsr debugfs directory
[  528.037574][T12334] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  528.089712][T12432] netlink: 'syz.1.1694': attribute type 11 has an invalid length.
[  528.157311][T12334] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  528.198980][T12334] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  528.219313][T12334] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  528.344098][T12334] 8021q: adding VLAN 0 to HW filter on device bond0
[  528.362986][T12334] 8021q: adding VLAN 0 to HW filter on device team0
[  528.377041][ T1053] bridge0: port 1(bridge_slave_0) entered blocking state
[  528.385597][ T1053] bridge0: port 1(bridge_slave_0) entered forwarding state
[  528.460789][T12445] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1696'.
[  528.488842][ T1053] bridge0: port 2(bridge_slave_1) entered blocking state
[  528.497444][ T1053] bridge0: port 2(bridge_slave_1) entered forwarding state
[  528.927081][T12334] 8021q: adding VLAN 0 to HW filter on device batadv0
[  529.471464][T12334] veth0_vlan: entered promiscuous mode
[  529.484753][T12334] veth1_vlan: entered promiscuous mode
[  529.516442][T12334] veth0_macvtap: entered promiscuous mode
[  529.526898][T12334] veth1_macvtap: entered promiscuous mode
[  529.551630][T12334] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  529.564282][T12334] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.576491][T12334] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  529.589481][T12334] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.601679][T12334] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  529.614570][T12334] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.628469][T12334] batman_adv: batadv0: Interface activated: batadv_slave_0
[  529.639881][T12334] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  529.652851][T12334] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.665167][T12334] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  529.678193][T12334] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.691094][T12334] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  529.716423][T12334] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.729735][T12334] batman_adv: batadv0: Interface activated: batadv_slave_1
[  529.763908][T12334] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  529.774858][T12334] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  529.792310][T12482] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1699'.
[  529.815992][T12334] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  529.835918][T12334] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  530.030282][T12485] __vm_enough_memory: pid: 12485, comm: syz.2.1699, bytes: 4503599627366400 not enough memory for the allocation
[  530.306058][T10326] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  530.363295][T10326] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  530.514782][T10326] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  530.602238][T10326] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  531.671490][   T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  531.685603][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  531.707864][   T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  531.719855][   T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  531.729842][   T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  531.740036][   T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2

syzkaller
syzkaller login: [  532.654828][T12515] chnl_net:caif_netlink_parms(): no params data found
[  533.167379][T12557] FAULT_INJECTION: forcing a failure.
[  533.167379][T12557] name failslab, interval 1, probability 0, space 0, times 0
[  533.205373][T12515] bridge0: port 1(bridge_slave_0) entered blocking state
[  533.214786][T12515] bridge0: port 1(bridge_slave_0) entered disabled state
[  533.226624][T12557] CPU: 0 UID: 0 PID: 12557 Comm: syz.2.1708 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  533.235070][T12515] bridge_slave_0: entered allmulticast mode
[  533.239571][T12557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  533.239594][T12557] Call Trace:
[  533.239604][T12557]  <TASK>
[  533.239618][T12557]  dump_stack_lvl+0x16c/0x1f0
[  533.249502][T12515] bridge_slave_0: entered promiscuous mode
[  533.258762][T12557]  should_fail_ex+0x497/0x5b0
[  533.258812][T12557]  ? fs_reclaim_acquire+0xae/0x150
[  533.258855][T12557]  should_failslab+0xc2/0x120
[  533.273041][T12515] bridge0: port 2(bridge_slave_1) entered blocking state
[  533.278896][T12557]  __kmalloc_noprof+0xce/0x4f0
[  533.278949][T12557]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  533.315303][T12515] bridge0: port 2(bridge_slave_1) entered disabled state
[  533.317293][T12557]  ? tomoyo_realpath_from_path+0xbf/0x710
[  533.332712][T12557]  tomoyo_realpath_from_path+0xbf/0x710
[  533.339634][T12557]  ? tomoyo_path_number_perm+0x235/0x5b0
[  533.346466][T12557]  tomoyo_path_number_perm+0x248/0x5b0
[  533.353091][T12557]  ? tomoyo_path_number_perm+0x235/0x5b0
[  533.357035][T12515] bridge_slave_1: entered allmulticast mode
[  533.359894][T12557]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  533.359957][T12557]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  533.378743][T12515] bridge_slave_1: entered promiscuous mode
[  533.381091][T12557]  security_file_ioctl+0x9b/0x240
[  533.394125][T12557]  __x64_sys_ioctl+0xb7/0x200
[  533.399791][T12557]  do_syscall_64+0xcd/0x250
[  533.405264][T12557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  533.412394][T12557] RIP: 0033:0x7fb8d5f85d29
[  533.417751][T12557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  533.441444][T12557] RSP: 002b:00007fb8d6d0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  533.451598][T12557] RAX: ffffffffffffffda RBX: 00007fb8d6175fa0 RCX: 00007fb8d5f85d29
[  533.461214][T12557] RDX: 0000000000000003 RSI: 00000000400c4d00 RDI: 0000000000000003
[  533.470838][T12557] RBP: 00007fb8d6d0e090 R08: 0000000000000000 R09: 0000000000000000
[  533.480444][T12557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  533.490047][T12557] R13: 0000000000000000 R14: 00007fb8d6175fa0 R15: 00007ffd3db54808
[  533.499673][T12557]  </TASK>
[  533.564395][T12557] ERROR: Out of memory at tomoyo_realpath_from_path.
[  533.766698][T12515] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  533.798067][T12515] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  533.835921][ T5844] Bluetooth: hci0: command tx timeout
[  533.927155][T12515] team0: Port device team_slave_0 added
[  533.937789][T12515] team0: Port device team_slave_1 added
[  534.018419][T12515] batman_adv: batadv0: Adding interface: batadv_slave_0
[  534.041279][T12515] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  534.113690][T12515] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  534.135775][T12515] batman_adv: batadv0: Adding interface: batadv_slave_1
[  534.144271][T12515] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  534.233323][T12515] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  534.397054][T12515] hsr_slave_0: entered promiscuous mode
[  534.427113][T12515] hsr_slave_1: entered promiscuous mode
[  534.446890][T12515] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  534.464574][T12515] Cannot create hsr debugfs directory

syzkaller
syzkaller login: [  535.780630][T12515] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  535.886692][T12515] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  535.915079][ T5844] Bluetooth: hci0: command tx timeout
[  535.996195][T12515] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  536.020105][T12596] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1717'.
[  536.083476][T12515] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  536.541369][T12515] 8021q: adding VLAN 0 to HW filter on device bond0
[  536.625174][T12515] 8021q: adding VLAN 0 to HW filter on device team0
[  536.684101][ T5070] bridge0: port 1(bridge_slave_0) entered blocking state
[  536.692756][ T5070] bridge0: port 1(bridge_slave_0) entered forwarding state
[  536.802224][ T5070] bridge0: port 2(bridge_slave_1) entered blocking state
[  536.810862][ T5070] bridge0: port 2(bridge_slave_1) entered forwarding state
[  537.579837][T12515] 8021q: adding VLAN 0 to HW filter on device batadv0
[  537.983791][ T5844] Bluetooth: hci0: command tx timeout
[  538.248887][T12515] veth0_vlan: entered promiscuous mode
[  538.287752][T12515] veth1_vlan: entered promiscuous mode
[  538.302316][T12651] FAULT_INJECTION: forcing a failure.
[  538.302316][T12651] name failslab, interval 1, probability 0, space 0, times 0
[  538.354998][T12651] CPU: 0 UID: 0 PID: 12651 Comm: syz.5.1725 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  538.367995][T12651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  538.380205][T12651] Call Trace:
[  538.384171][T12651]  <TASK>
[  538.387718][T12651]  dump_stack_lvl+0x16c/0x1f0
[  538.393393][T12651]  should_fail_ex+0x497/0x5b0
[  538.399060][T12651]  ? fs_reclaim_acquire+0xae/0x150
[  538.405350][T12651]  should_failslab+0xc2/0x120
[  538.411020][T12651]  __kmalloc_noprof+0xce/0x4f0
[  538.416838][T12651]  ? copy_splice_read+0x1a8/0xb90
[  538.422917][T12651]  copy_splice_read+0x1a8/0xb90
[  538.428789][T12651]  ? look_up_lock_class+0x6b/0x150
[  538.434986][T12651]  ? __pfx_copy_splice_read+0x10/0x10
[  538.441491][T12651]  ? __pfx_register_lock_class+0x10/0x10
[  538.448324][T12651]  ? __pfx_copy_splice_read+0x10/0x10
[  538.454820][T12651]  do_splice_read+0x282/0x370
[  538.460493][T12651]  splice_direct_to_actor+0x2a4/0xa40
[  538.466996][T12651]  ? __pfx_direct_splice_actor+0x10/0x10
[  538.473808][T12651]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  538.480938][T12651]  ? __fget_files+0x1fc/0x3a0
[  538.486614][T12651]  do_splice_direct+0x178/0x250
[  538.492488][T12651]  ? __pfx_do_splice_direct+0x10/0x10
[  538.499103][T12651]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  538.506240][T12651]  do_sendfile+0xaed/0xe30
[  538.511600][T12651]  ? __pfx_do_sendfile+0x10/0x10
[  538.517586][T12651]  ? __fget_files+0x206/0x3a0
[  538.523255][T12651]  __x64_sys_sendfile64+0x1da/0x220
[  538.529555][T12651]  ? ksys_write+0x1ba/0x250
[  538.535007][T12651]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  538.541941][T12651]  do_syscall_64+0xcd/0x250
[  538.547405][T12651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  538.554541][T12651] RIP: 0033:0x7ff1a7985d29
[  538.559880][T12651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  538.583452][T12651] RSP: 002b:00007ff1a8812038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  538.593610][T12651] RAX: ffffffffffffffda RBX: 00007ff1a7b75fa0 RCX: 00007ff1a7985d29
[  538.603229][T12651] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004
[  538.613165][T12651] RBP: 00007ff1a8812090 R08: 0000000000000000 R09: 0000000000000000
[  538.622777][T12651] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  538.632803][T12651] R13: 0000000000000000 R14: 00007ff1a7b75fa0 R15: 00007fff64454af8
[  538.642442][T12651]  </TASK>
[  538.722481][T12515] veth0_macvtap: entered promiscuous mode
[  538.758858][T12515] veth1_macvtap: entered promiscuous mode
[  538.876067][T12515] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  538.967014][T12515] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  539.015754][T12515] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  539.051826][T12515] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  539.078435][T12515] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  539.105626][T12515] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  539.117897][T12515] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  539.130771][T12515] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  539.146846][T12515] batman_adv: batadv0: Interface activated: batadv_slave_0
[  539.215229][T12515] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  539.237617][T12515] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  539.270049][T12515] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  539.285988][T12515] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  539.306016][T12515] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  539.337443][T12515] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  539.357899][T12515] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  539.380751][T12515] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  539.395390][T12515] batman_adv: batadv0: Interface activated: batadv_slave_1
[  539.444211][T12515] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  539.471130][T12515] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  539.500663][T12515] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  539.511821][T12515] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  539.892979][ T1053] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  539.924481][ T1053] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  540.030492][T10323] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  540.052699][ T5844] Bluetooth: hci0: command tx timeout
[  540.060668][T10323] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  540.602455][T12682] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  540.953307][T12684] netlink: 948 bytes leftover after parsing attributes in process `syz.6.1700'.
[  541.002661][T12684] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1700'.
[  542.011471][T12690] lo: entered promiscuous mode
[  542.024370][T12690] lo: left promiscuous mode
[  542.360672][T12697] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1732'.
[  542.409109][T12701] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1732'.
[  542.490834][T12703] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1732'.
[  543.519145][T12720] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1736'.
[  543.714312][T12725] __vm_enough_memory: pid: 12725, comm: syz.5.1736, bytes: 4503599627366400 not enough memory for the allocation
[  546.680920][T12771] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1749'.
[  546.986907][T12773] __vm_enough_memory: pid: 12773, comm: syz.6.1749, bytes: 4503599627366400 not enough memory for the allocation
[  548.095887][T12777] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1750'.
[  548.811915][T12793] FAULT_INJECTION: forcing a failure.
[  548.811915][T12793] name failslab, interval 1, probability 0, space 0, times 0
[  548.839348][T12793] CPU: 0 UID: 0 PID: 12793 Comm: syz.2.1755 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  548.852332][T12793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  548.864441][T12793] Call Trace:
[  548.868404][T12793]  <TASK>
[  548.871943][T12793]  dump_stack_lvl+0x16c/0x1f0
[  548.877608][T12793]  should_fail_ex+0x497/0x5b0
[  548.883285][T12793]  ? fs_reclaim_acquire+0xae/0x150
[  548.889467][T12793]  should_failslab+0xc2/0x120
[  548.895117][T12793]  __kmalloc_noprof+0xce/0x4f0
[  548.900868][T12793]  ? d_absolute_path+0x137/0x1b0
[  548.906847][T12793]  ? tomoyo_encode2+0x100/0x3e0
[  548.912724][T12793]  tomoyo_encode2+0x100/0x3e0
[  548.918466][T12793]  tomoyo_realpath_from_path+0x1a7/0x710
[  548.925254][T12793]  tomoyo_path_number_perm+0x248/0x5b0
[  548.931836][T12793]  ? tomoyo_path_number_perm+0x235/0x5b0
[  548.938642][T12793]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  548.945886][T12793]  ? __pfx_lock_release+0x10/0x10
[  548.951941][T12793]  ? trace_lock_acquire+0x14e/0x1f0
[  548.958206][T12793]  ? lock_acquire+0x2f/0xb0
[  548.963620][T12793]  ? __fget_files+0x40/0x3a0
[  548.969151][T12793]  ? __fget_files+0x206/0x3a0
[  548.974793][T12793]  security_file_ioctl+0x9b/0x240
[  548.980848][T12793]  __x64_sys_ioctl+0xb7/0x200
[  548.986506][T12793]  do_syscall_64+0xcd/0x250
[  548.991940][T12793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  548.999040][T12793] RIP: 0033:0x7fb8d5f85d29
[  549.004351][T12793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  549.027912][T12793] RSP: 002b:00007fb8d6d0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  549.038030][T12793] RAX: ffffffffffffffda RBX: 00007fb8d6175fa0 RCX: 00007fb8d5f85d29
[  549.047609][T12793] RDX: 0000000000000003 RSI: 00000000c0105512 RDI: 0000000000000003
[  549.057187][T12793] RBP: 00007fb8d6d0e090 R08: 0000000000000000 R09: 0000000000000000
[  549.066761][T12793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  549.076341][T12793] R13: 0000000000000000 R14: 00007fb8d6175fa0 R15: 00007ffd3db54808
[  549.085937][T12793]  </TASK>
[  549.097600][T12793] ERROR: Out of memory at tomoyo_realpath_from_path.
[  550.678387][T12826] FAULT_INJECTION: forcing a failure.
[  550.678387][T12826] name failslab, interval 1, probability 0, space 0, times 0
[  550.722144][T12826] CPU: 1 UID: 0 PID: 12826 Comm: syz.5.1761 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  550.735133][T12826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  550.747238][T12826] Call Trace:
[  550.751211][T12826]  <TASK>
[  550.754757][T12826]  dump_stack_lvl+0x16c/0x1f0
[  550.760427][T12826]  should_fail_ex+0x497/0x5b0
[  550.766092][T12826]  ? fs_reclaim_acquire+0xae/0x150
[  550.772264][T12826]  should_failslab+0xc2/0x120
[  550.777949][T12826]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  550.784436][T12826]  ? getname_flags.part.0+0x4c/0x550
[  550.790822][T12826]  getname_flags.part.0+0x4c/0x550
[  550.796983][T12826]  ? __might_fault+0x13b/0x190
[  550.802834][T12826]  getname+0x8d/0xe0
[  550.807637][T12826]  do_sys_openat2+0x104/0x1e0
[  550.813281][T12826]  ? __pfx_do_sys_openat2+0x10/0x10
[  550.819554][T12826]  ? __might_fault+0xe3/0x190
[  550.825200][T12826]  ? __might_fault+0xe3/0x190
[  550.830851][T12826]  __x64_sys_openat2+0x245/0x380
[  550.836805][T12826]  ? __pfx___x64_sys_openat2+0x10/0x10
[  550.843386][T12826]  ? ksys_write+0x1ba/0x250
[  550.848819][T12826]  do_syscall_64+0xcd/0x250
[  550.854251][T12826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.861361][T12826] RIP: 0033:0x7ff1a7985d29
[  550.866673][T12826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  550.890227][T12826] RSP: 002b:00007ff1a8812038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b5
[  550.900377][T12826] RAX: ffffffffffffffda RBX: 00007ff1a7b75fa0 RCX: 00007ff1a7985d29
[  550.909970][T12826] RDX: 0000000020000040 RSI: 0000000020000000 RDI: ffffffffffffff9c
[  550.919567][T12826] RBP: 00007ff1a8812090 R08: 0000000000000000 R09: 0000000000000000
[  550.929261][T12826] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001
[  550.938847][T12826] R13: 0000000000000001 R14: 00007ff1a7b75fa0 R15: 00007fff64454af8
[  550.948478][T12826]  </TASK>
[  550.952239][    C1] vkms_vblank_simulate: vblank timer overrun

syzkaller
syzkaller login: 
syzkaller
syzkaller login: [  558.269102][T12982] device-mapper: ioctl: Invalid ioctl structure: name X�q+, dev 900010006
[  561.563386][T13046] FAULT_INJECTION: forcing a failure.
[  561.563386][T13046] name failslab, interval 1, probability 0, space 0, times 0
[  561.628926][T13046] CPU: 1 UID: 0 PID: 13046 Comm: syz.2.1790 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  561.641920][T13046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  561.654041][T13046] Call Trace:
[  561.658003][T13046]  <TASK>
[  561.661548][T13046]  dump_stack_lvl+0x16c/0x1f0
[  561.667229][T13046]  should_fail_ex+0x497/0x5b0
[  561.672907][T13046]  ? fs_reclaim_acquire+0xae/0x150
[  561.679122][T13046]  should_failslab+0xc2/0x120
[  561.684796][T13046]  __kmalloc_noprof+0xce/0x4f0
[  561.690583][T13046]  ? rcu_is_watching+0x12/0xc0
[  561.696348][T13046]  ? tomoyo_encode2+0x100/0x3e0
[  561.702338][T13046]  tomoyo_encode2+0x100/0x3e0
[  561.708114][T13046]  tomoyo_realpath_from_path+0x1a7/0x710
[  561.714955][T13046]  ? tomoyo_fill_path_info+0x233/0x420
[  561.721595][T13046]  tomoyo_mount_acl+0x1af/0x880
[  561.727575][T13046]  ? hlock_class+0x4e/0x130
[  561.733036][T13046]  ? __lock_acquire+0x15a9/0x3c40
[  561.739099][T13046]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  561.745580][T13046]  ? __pfx___lock_acquire+0x10/0x10
[  561.751856][T13046]  ? stack_trace_save+0x95/0xd0
[  561.757721][T13046]  ? __pfx_lock_release+0x10/0x10
[  561.763798][T13046]  ? trace_lock_acquire+0x14e/0x1f0
[  561.770100][T13046]  ? tomoyo_mount_permission+0x149/0x420
[  561.776917][T13046]  ? lock_acquire+0x2f/0xb0
[  561.782348][T13046]  ? tomoyo_mount_permission+0x149/0x420
[  561.789150][T13046]  tomoyo_mount_permission+0x16e/0x420
[  561.795722][T13046]  ? tomoyo_mount_permission+0x149/0x420
[  561.802520][T13046]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  561.809731][T13046]  ? get_current_fs_domain+0x184/0x1f0
[  561.816332][T13046]  security_sb_mount+0x9b/0x260
[  561.822191][T13046]  path_mount+0x129/0x1f00
[  561.827522][T13046]  ? kmem_cache_free+0x152/0x4c0
[  561.833477][T13046]  ? __pfx_path_mount+0x10/0x10
[  561.839332][T13046]  ? putname+0x13c/0x180
[  561.844467][T13046]  __x64_sys_mount+0x294/0x320
[  561.850214][T13046]  ? __pfx___x64_sys_mount+0x10/0x10
[  561.856627][T13046]  do_syscall_64+0xcd/0x250
[  561.862063][T13046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  561.869273][T13046] RIP: 0033:0x7fb8d5f85d29
[  561.874587][T13046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  561.898152][T13046] RSP: 002b:00007fb8d6d0e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  561.908285][T13046] RAX: ffffffffffffffda RBX: 00007fb8d6175fa0 RCX: 00007fb8d5f85d29
[  561.917868][T13046] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000000
[  561.927449][T13046] RBP: 00007fb8d6d0e090 R08: 0000000000000000 R09: 0000000000000000
[  561.937036][T13046] R10: 000000000000fffd R11: 0000000000000246 R12: 0000000000000001
[  561.946622][T13046] R13: 0000000000000000 R14: 00007fb8d6175fa0 R15: 00007ffd3db54808
[  561.956225][T13046]  </TASK>
[  562.168397][T13046] ERROR: Out of memory at tomoyo_realpath_from_path.
[  563.278339][T13063] FAULT_INJECTION: forcing a failure.
[  563.278339][T13063] name failslab, interval 1, probability 0, space 0, times 0
[  563.343745][T13063] CPU: 0 UID: 0 PID: 13063 Comm: syz.6.1795 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  563.356740][T13063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  563.368848][T13063] Call Trace:
[  563.372810][T13063]  <TASK>
[  563.376355][T13063]  dump_stack_lvl+0x16c/0x1f0
[  563.382012][T13063]  should_fail_ex+0x497/0x5b0
[  563.387672][T13063]  ? fs_reclaim_acquire+0xae/0x150
[  563.393984][T13063]  should_failslab+0xc2/0x120
[  563.399654][T13063]  __kmalloc_noprof+0xce/0x4f0
[  563.405432][T13063]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  563.412233][T13063]  ? tomoyo_realpath_from_path+0xbf/0x710
[  563.419153][T13063]  tomoyo_realpath_from_path+0xbf/0x710
[  563.425856][T13063]  ? tomoyo_path_number_perm+0x235/0x5b0
[  563.432689][T13063]  tomoyo_path_number_perm+0x248/0x5b0
[  563.439304][T13063]  ? tomoyo_path_number_perm+0x235/0x5b0
[  563.446140][T13063]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  563.453427][T13063]  ? __pfx_lock_release+0x10/0x10
[  563.459503][T13063]  ? trace_lock_acquire+0x14e/0x1f0
[  563.465804][T13063]  ? lock_acquire+0x2f/0xb0
[  563.471244][T13063]  ? __fget_files+0x40/0x3a0
[  563.476808][T13063]  ? __fget_files+0x206/0x3a0
[  563.482490][T13063]  security_file_ioctl+0x9b/0x240
[  563.488578][T13063]  __x64_sys_ioctl+0xb7/0x200
[  563.494249][T13063]  do_syscall_64+0xcd/0x250
[  563.499717][T13063]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  563.506850][T13063] RIP: 0033:0x7f62f6585d29
[  563.512192][T13063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  563.535767][T13063] RSP: 002b:00007f62f746a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  563.545918][T13063] RAX: ffffffffffffffda RBX: 00007f62f6775fa0 RCX: 00007f62f6585d29
[  563.555527][T13063] RDX: 0000000000000001 RSI: 000000000000541c RDI: 0000000000000003
[  563.565264][T13063] RBP: 00007f62f746a090 R08: 0000000000000000 R09: 0000000000000000
[  563.574872][T13063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  563.584498][T13063] R13: 0000000000000000 R14: 00007f62f6775fa0 R15: 00007ffe048cc6e8
[  563.594134][T13063]  </TASK>
[  563.611255][T13063] ERROR: Out of memory at tomoyo_realpath_from_path.
[  564.100853][T13071] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1797'.

syzkaller
syzkaller login: [  567.028946][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  567.036732][ T1295] ieee802154 phy1 wpan1: encryption failed: -22

syzkaller
syzkaller login: 
syzkaller
syzkaller login: [  578.506836][   T54] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  578.519030][   T54] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  578.529051][   T54] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  578.592612][   T54] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  578.606701][   T54] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  578.617002][   T54] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  580.025771][T13232] chnl_net:caif_netlink_parms(): no params data found
[  580.711677][   T54] Bluetooth: hci5: command tx timeout
[  580.892105][T13232] bridge0: port 1(bridge_slave_0) entered blocking state
[  580.950230][T13232] bridge0: port 1(bridge_slave_0) entered disabled state
[  580.958977][T13232] bridge_slave_0: entered allmulticast mode
[  581.011139][T13232] bridge_slave_0: entered promiscuous mode
[  581.061168][T13232] bridge0: port 2(bridge_slave_1) entered blocking state
[  581.090046][T13232] bridge0: port 2(bridge_slave_1) entered disabled state
[  581.119677][T13232] bridge_slave_1: entered allmulticast mode
[  581.139886][T13232] bridge_slave_1: entered promiscuous mode
[  581.443195][T13232] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  581.488228][T13232] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  581.813169][T13232] team0: Port device team_slave_0 added
[  581.850646][T13232] team0: Port device team_slave_1 added
[  582.156002][T13232] batman_adv: batadv0: Adding interface: batadv_slave_0
[  582.173650][T13232] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  582.230238][T13232] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  582.651568][T13232] batman_adv: batadv0: Adding interface: batadv_slave_1
[  582.659967][T13232] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  582.807770][   T54] Bluetooth: hci5: command tx timeout
[  582.824552][T13232] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  583.773760][T13232] hsr_slave_0: entered promiscuous mode
[  583.835434][T13232] hsr_slave_1: entered promiscuous mode
[  583.884938][T13232] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  583.894170][T13232] Cannot create hsr debugfs directory
[  584.757045][T13232] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  584.842859][T13232] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  584.852413][   T54] Bluetooth: hci5: command tx timeout
[  584.977524][T13232] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  585.062933][T13232] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  585.352944][T13232] 8021q: adding VLAN 0 to HW filter on device bond0
[  585.420492][T13232] 8021q: adding VLAN 0 to HW filter on device team0
[  585.471553][ T3467] bridge0: port 1(bridge_slave_0) entered blocking state
[  585.480143][ T3467] bridge0: port 1(bridge_slave_0) entered forwarding state
[  585.539530][ T3467] bridge0: port 2(bridge_slave_1) entered blocking state
[  585.548125][ T3467] bridge0: port 2(bridge_slave_1) entered forwarding state
[  585.716774][T13232] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  586.082597][T13232] 8021q: adding VLAN 0 to HW filter on device batadv0
[  586.669657][T13232] veth0_vlan: entered promiscuous mode
[  586.744081][T13232] veth1_vlan: entered promiscuous mode
[  586.769938][T13232] veth0_macvtap: entered promiscuous mode
[  586.782932][T13232] veth1_macvtap: entered promiscuous mode
[  586.806422][T13232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  586.858146][T13232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  586.919151][   T54] Bluetooth: hci5: command tx timeout
[  586.928957][T13232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  586.976881][T13232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.014358][T13232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  587.052317][T13232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.098044][T13232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  587.131883][T13232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.168928][T13232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  587.207409][T13232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.243070][T13232] batman_adv: batadv0: Interface activated: batadv_slave_0
[  587.314299][T13232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  587.338742][T13232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.350749][T13232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  587.363340][T13232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.375246][T13232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  587.387962][T13232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.400260][T13232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  587.413112][T13232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.425155][T13232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  587.438266][T13232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.451904][T13232] batman_adv: batadv0: Interface activated: batadv_slave_1
[  587.661030][T13232] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  587.675213][T13232] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  587.715824][T13232] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  587.742657][T13232] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  588.108059][ T5070] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  588.152692][ T5070] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  588.267645][ T5070] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  588.314550][ T5070] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  591.616016][T13408] FAULT_INJECTION: forcing a failure.
[  591.616016][T13408] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  591.708926][T13408] CPU: 0 UID: 0 PID: 13408 Comm: syz.7.1850 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  591.711087][T13416] FAULT_INJECTION: forcing a failure.
[  591.711087][T13416] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  591.721949][T13408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  591.721972][T13408] Call Trace:
[  591.721982][T13408]  <TASK>
[  591.721995][T13408]  dump_stack_lvl+0x16c/0x1f0
[  591.722051][T13408]  should_fail_ex+0x497/0x5b0
[  591.722099][T13408]  _copy_from_user+0x2e/0xd0
[  591.722150][T13408]  copy_msghdr_from_user+0x99/0x160
[  591.722201][T13408]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  591.722263][T13408]  ? __pfx___lock_acquire+0x10/0x10
[  591.722302][T13408]  ___sys_recvmsg+0xdc/0x1a0
[  591.722355][T13408]  ? __pfx____sys_recvmsg+0x10/0x10
[  591.722404][T13408]  ? find_held_lock+0x2d/0x110
[  591.722466][T13408]  ? __pfx___might_resched+0x10/0x10
[  591.722503][T13408]  ? __might_fault+0xe3/0x190
[  591.722563][T13408]  do_recvmmsg+0x2f8/0x740
[  591.829329][T13408]  ? __pfx_do_recvmmsg+0x10/0x10
[  591.835289][T13408]  ? vfs_write+0x306/0x1150
[  591.840719][T13408]  ? __mutex_unlock_slowpath+0x164/0x690
[  591.847515][T13408]  ? __fget_files+0x206/0x3a0
[  591.853153][T13408]  __x64_sys_recvmmsg+0x239/0x290
[  591.859244][T13408]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  591.865948][T13408]  do_syscall_64+0xcd/0x250
[  591.871394][T13408]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.878495][T13408] RIP: 0033:0x7f032a585d29
[  591.883817][T13408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  591.907376][T13408] RSP: 002b:00007f032b438038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  591.917493][T13408] RAX: ffffffffffffffda RBX: 00007f032a775fa0 RCX: 00007f032a585d29
[  591.927072][T13408] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  591.936674][T13408] RBP: 00007f032b438090 R08: 0000000000000000 R09: 0000000000000000
[  591.946248][T13408] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000002
[  591.955831][T13408] R13: 0000000000000000 R14: 00007f032a775fa0 R15: 00007ffcc5f3b0f8
[  591.965435][T13408]  </TASK>
[  592.074436][T13416] CPU: 0 UID: 0 PID: 13416 Comm: syz.6.1851 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  592.087416][T13416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  592.099521][T13416] Call Trace:
[  592.103493][T13416]  <TASK>
[  592.107046][T13416]  dump_stack_lvl+0x16c/0x1f0
[  592.112731][T13416]  should_fail_ex+0x497/0x5b0
[  592.118401][T13416]  _copy_to_user+0x32/0xd0
[  592.123767][T13416]  simple_read_from_buffer+0xd0/0x160
[  592.130264][T13416]  proc_fail_nth_read+0x198/0x270
[  592.136362][T13416]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  592.143076][T13416]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  592.149781][T13416]  vfs_read+0x1df/0xbe0
[  592.154787][T13416]  ? __fget_files+0x1fc/0x3a0
[  592.160421][T13416]  ? __pfx___mutex_lock+0x10/0x10
[  592.166476][T13416]  ? __pfx_vfs_read+0x10/0x10
[  592.172121][T13416]  ? __fget_files+0x206/0x3a0
[  592.177974][T13416]  ksys_read+0x12b/0x250
[  592.183098][T13416]  ? __pfx_ksys_read+0x10/0x10
[  592.188841][T13416]  do_syscall_64+0xcd/0x250
[  592.194383][T13416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.201481][T13416] RIP: 0033:0x7f62f658473c
[  592.206791][T13416] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  592.230339][T13416] RSP: 002b:00007f62f7449030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  592.240564][T13416] RAX: ffffffffffffffda RBX: 00007f62f6776080 RCX: 00007f62f658473c
[  592.250152][T13416] RDX: 000000000000000f RSI: 00007f62f74490a0 RDI: 0000000000000003
[  592.259843][T13416] RBP: 00007f62f7449090 R08: 0000000000000000 R09: 0000000000000000
[  592.269533][T13416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  592.279110][T13416] R13: 0000000000000001 R14: 00007f62f6776080 R15: 00007ffe048cc6e8
[  592.288714][T13416]  </TASK>
[  593.120641][T13423] netlink: 266 bytes leftover after parsing attributes in process `syz.5.1854'.
[  593.194423][T13423] IPv6: NLM_F_CREATE should be specified when creating new route
[  594.079730][T13417] delete_channel: no stack
[  596.390400][T13490] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1862'.
[  596.444671][T13490] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  597.506941][T13507] sctp: [Deprecated]: syz.5.1862 (pid 13507) Use of struct sctp_assoc_value in delayed_ack socket option.
[  597.506941][T13507] Use struct sctp_sack_info instead

syzkaller
syzkaller login: 
syzkaller
syzkaller login: [  604.355379][T13606] Invalid ELF header magic: != ELF
[  604.460211][T13608] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1883'.
[  605.379960][T13624] Invalid ELF header magic: != ELF
[  608.269023][T13681] FAULT_INJECTION: forcing a failure.
[  608.269023][T13681] name failslab, interval 1, probability 0, space 0, times 0
[  608.354733][T13681] CPU: 0 UID: 0 PID: 13681 Comm: syz.5.1901 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  608.367727][T13681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  608.379873][T13681] Call Trace:
[  608.383844][T13681]  <TASK>
[  608.387439][T13681]  dump_stack_lvl+0x16c/0x1f0
[  608.393105][T13681]  should_fail_ex+0x497/0x5b0
[  608.398768][T13681]  ? fs_reclaim_acquire+0xae/0x150
[  608.404949][T13681]  should_failslab+0xc2/0x120
[  608.410620][T13681]  __kmalloc_noprof+0xce/0x4f0
[  608.416392][T13681]  ? tomoyo_encode2+0x100/0x3e0
[  608.422273][T13681]  tomoyo_encode2+0x100/0x3e0
[  608.427945][T13681]  tomoyo_realpath_from_path+0x1a7/0x710
[  608.434766][T13681]  ? tomoyo_path_number_perm+0x235/0x5b0
[  608.441603][T13681]  tomoyo_path_number_perm+0x248/0x5b0
[  608.448213][T13681]  ? tomoyo_path_number_perm+0x235/0x5b0
[  608.455078][T13681]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  608.462353][T13681]  ? __pfx_lock_release+0x10/0x10
[  608.468426][T13681]  ? trace_lock_acquire+0x14e/0x1f0
[  608.474721][T13681]  ? lock_acquire+0x2f/0xb0
[  608.480161][T13681]  ? __fget_files+0x40/0x3a0
[  608.485734][T13681]  ? __fget_files+0x206/0x3a0
[  608.491410][T13681]  security_file_ioctl+0x9b/0x240
[  608.497495][T13681]  __x64_sys_ioctl+0xb7/0x200
[  608.503173][T13681]  do_syscall_64+0xcd/0x250
[  608.508649][T13681]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  608.515779][T13681] RIP: 0033:0x7ff1a7985d29
[  608.521114][T13681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  608.544692][T13681] RSP: 002b:00007ff1a8812038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  608.554841][T13681] RAX: ffffffffffffffda RBX: 00007ff1a7b75fa0 RCX: 00007ff1a7985d29
[  608.564451][T13681] RDX: 0000000000000000 RSI: 000000000000aea3 RDI: 0000000000000003
[  608.574062][T13681] RBP: 00007ff1a8812090 R08: 0000000000000000 R09: 0000000000000000
[  608.583668][T13681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  608.593303][T13681] R13: 0000000000000000 R14: 00007ff1a7b75fa0 R15: 00007fff64454af8
[  608.602929][T13681]  </TASK>
[  608.838856][T13681] ERROR: Out of memory at tomoyo_realpath_from_path.
[  609.646190][T13697] mtrr: base(0x43894549000) is not aligned on a size(0x687fb2fb000) boundary
[  610.199633][T13708] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1908'.
[  610.247894][T13708] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  610.344662][T13710] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1909'.
[  610.685594][T13718] sctp: [Deprecated]: syz.7.1908 (pid 13718) Use of struct sctp_assoc_value in delayed_ack socket option.
[  610.685594][T13718] Use struct sctp_sack_info instead

syzkaller
syzkaller login: [  613.839338][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  615.379896][T13801] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1922'.

syzkaller
syzkaller login: [  618.241414][T13862] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1931'.

syzkaller
syzkaller login: [  619.076331][T13902] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1938'.
[  619.097788][T13902] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  619.668242][T13902] sctp: [Deprecated]: syz.7.1938 (pid 13902) Use of struct sctp_assoc_value in delayed_ack socket option.
[  619.668242][T13902] Use struct sctp_sack_info instead
[  621.922647][T13966] netlink: 161 bytes leftover after parsing attributes in process `syz.5.1953'.
[  622.790587][T13985] FAULT_INJECTION: forcing a failure.
[  622.790587][T13985] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  622.807339][T13985] CPU: 1 UID: 0 PID: 13985 Comm: syz.7.1959 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  622.820327][T13985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  622.832540][T13985] Call Trace:
[  622.836512][T13985]  <TASK>
[  622.840070][T13985]  dump_stack_lvl+0x16c/0x1f0
[  622.845744][T13985]  should_fail_ex+0x497/0x5b0
[  622.851433][T13985]  _copy_to_iter+0x29b/0x1400
[  622.857156][T13985]  ? pipe_read+0x13b/0x13f0
[  622.862615][T13985]  ? __pfx__copy_to_iter+0x10/0x10
[  622.868811][T13985]  ? __folio_put+0x32f/0x450
[  622.874373][T13985]  ? __pfx___folio_put+0x10/0x10
[  622.880375][T13985]  copy_page_to_iter+0xf1/0x180
[  622.886315][T13985]  pipe_read+0x53d/0x13f0
[  622.891592][T13985]  ? __pfx_pipe_read+0x10/0x10
[  622.897369][T13985]  ? apparmor_file_permission+0x251/0x400
[  622.904296][T13985]  ? bpf_lsm_file_permission+0x9/0x10
[  622.910795][T13985]  ? security_file_permission+0x71/0x210
[  622.917607][T13985]  vfs_read+0xa4c/0xbe0
[  622.922649][T13985]  ? __pfx_vfs_read+0x10/0x10
[  622.928315][T13985]  ? __fget_files+0x40/0x3a0
[  622.933897][T13985]  ksys_read+0x207/0x250
[  622.939036][T13985]  ? __pfx_ksys_read+0x10/0x10
[  622.944809][T13985]  do_syscall_64+0xcd/0x250
[  622.950271][T13985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  622.957415][T13985] RIP: 0033:0x7f032a585d29
[  622.962750][T13985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  622.987937][T13985] RSP: 002b:00007f032b417038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  622.998127][T13985] RAX: ffffffffffffffda RBX: 00007f032a776080 RCX: 00007f032a585d29
[  623.007736][T13985] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  623.017343][T13985] RBP: 00007f032b417090 R08: 0000000000000000 R09: 0000000000000000
[  623.026942][T13985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  623.036525][T13985] R13: 0000000000000000 R14: 00007f032a776080 R15: 00007ffcc5f3b0f8
[  623.046148][T13985]  </TASK>

syzkaller
syzkaller login: [  627.051054][T14033] netlink: 222 bytes leftover after parsing attributes in process `syz.7.1971'.
[  627.523701][T14091] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1987'.
[  627.578489][T14091] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.

syzkaller
syzkaller login: [  627.978608][T14099] sctp: [Deprecated]: syz.5.1987 (pid 14099) Use of struct sctp_assoc_value in delayed_ack socket option.
[  627.978608][T14099] Use struct sctp_sack_info instead
[  628.148633][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  628.157164][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  631.328614][T14145] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1999'.
[  631.385418][T14145] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  631.911085][T14149] sctp: [Deprecated]: syz.1.1999 (pid 14149) Use of struct sctp_assoc_value in delayed_ack socket option.
[  631.911085][T14149] Use struct sctp_sack_info instead
[  633.358034][T14173] FAULT_INJECTION: forcing a failure.
[  633.358034][T14173] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  633.503729][T14173] CPU: 1 UID: 0 PID: 14173 Comm: syz.7.2008 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  633.516826][T14173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  633.529039][T14173] Call Trace:
[  633.533003][T14173]  <TASK>
[  633.536553][T14173]  dump_stack_lvl+0x16c/0x1f0
[  633.542218][T14173]  should_fail_ex+0x497/0x5b0
[  633.547892][T14173]  _copy_from_user+0x2e/0xd0
[  633.553461][T14173]  copy_msghdr_from_user+0x99/0x160
[  633.559766][T14173]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  633.566813][T14173]  ___sys_sendmsg+0xff/0x1e0
[  633.572371][T14173]  ? __pfx____sys_sendmsg+0x10/0x10
[  633.578653][T14173]  ? __pfx_lock_release+0x10/0x10
[  633.584705][T14173]  ? trace_lock_acquire+0x14e/0x1f0
[  633.590992][T14173]  ? __fget_files+0x206/0x3a0
[  633.596648][T14173]  __sys_sendmsg+0x16e/0x220
[  633.602214][T14173]  ? __pfx___sys_sendmsg+0x10/0x10
[  633.608409][T14173]  do_syscall_64+0xcd/0x250
[  633.613850][T14173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  633.620958][T14173] RIP: 0033:0x7f032a585d29
[  633.626278][T14173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  633.649844][T14173] RSP: 002b:00007f032b438038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  633.659988][T14173] RAX: ffffffffffffffda RBX: 00007f032a775fa0 RCX: 00007f032a585d29
[  633.669567][T14173] RDX: 0000000024004080 RSI: 0000000020000c00 RDI: 0000000000000003
[  633.679195][T14173] RBP: 00007f032b438090 R08: 0000000000000000 R09: 0000000000000000
[  633.688777][T14173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  633.698391][T14173] R13: 0000000000000000 R14: 00007f032a775fa0 R15: 00007ffcc5f3b0f8
[  633.708008][T14173]  </TASK>
[  634.061477][T14186] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2013'.
[  634.103695][T14186] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  634.294876][T14191] size and base must be multiples of 4 kiB
[  634.342391][T14191] CPU: 1 UID: 0 PID: 14191 Comm: syz.7.2014 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  634.355388][T14191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  634.367495][T14191] Call Trace:
[  634.371444][T14191]  <TASK>
[  634.374978][T14191]  dump_stack_lvl+0x16c/0x1f0
[  634.380630][T14191]  mtrr_add+0xdf/0x110
[  634.385560][T14191]  mtrr_ioctl+0x7cd/0xcd0
[  634.390820][T14191]  ? __pfx_mtrr_ioctl+0x10/0x10
[  634.396708][T14191]  ? __pfx_mtrr_ioctl+0x10/0x10
[  634.402571][T14191]  proc_reg_unlocked_ioctl+0x226/0x320
[  634.409150][T14191]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  634.416363][T14191]  __x64_sys_ioctl+0x190/0x200
[  634.422191][T14191]  do_syscall_64+0xcd/0x250
[  634.427693][T14191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  634.434809][T14191] RIP: 0033:0x7f032a585d29
[  634.440129][T14191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  634.463795][T14191] RSP: 002b:00007f032b438038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  634.474027][T14191] RAX: ffffffffffffffda RBX: 00007f032a775fa0 RCX: 00007f032a585d29
[  634.483612][T14191] RDX: 0000000000000003 RSI: 00000000400c4d01 RDI: 0000000000000003
[  634.493190][T14191] RBP: 00007f032a601b08 R08: 0000000000000000 R09: 0000000000000000
[  634.502788][T14191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  634.512369][T14191] R13: 0000000000000000 R14: 00007f032a775fa0 R15: 00007ffcc5f3b0f8
[  634.521991][T14191]  </TASK>
[  634.612553][T14192] sctp: [Deprecated]: syz.1.2013 (pid 14192) Use of struct sctp_assoc_value in delayed_ack socket option.
[  634.612553][T14192] Use struct sctp_sack_info instead
[  636.218500][T14216] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2020'.

syzkaller
syzkaller login: [  636.660756][T14224] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2024'.
[  637.400978][T14238] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2026'.
[  637.526017][T14238] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  638.288754][T14239] sctp: [Deprecated]: syz.6.2026 (pid 14239) Use of struct sctp_assoc_value in delayed_ack socket option.
[  638.288754][T14239] Use struct sctp_sack_info instead
[  640.430742][ T5844] Bluetooth: hci4: command 0x0406 tx timeout
[  640.635288][T14289] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2042'.
[  640.679466][T14289] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  641.239896][T14297] sctp: [Deprecated]: syz.7.2042 (pid 14297) Use of struct sctp_assoc_value in delayed_ack socket option.
[  641.239896][T14297] Use struct sctp_sack_info instead
[  643.839439][T14334] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2055'.
[  643.930552][T14334] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  644.708496][T14346] sctp: [Deprecated]: syz.6.2055 (pid 14346) Use of struct sctp_assoc_value in delayed_ack socket option.
[  644.708496][T14346] Use struct sctp_sack_info instead
[  645.228176][T14352] futex_wake_op: syz.1.2059 tries to shift op by 64; fix this program

syzkaller
syzkaller login: [  648.336144][T14392] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2069'.
[  648.369573][T14392] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  649.903360][T14408] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2074'.
[  650.616711][T14375] netlink: 222 bytes leftover after parsing attributes in process `syz.6.2065'.
[  651.413185][T14428] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  651.469798][T14428] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db

syzkaller
syzkaller login: [  653.522934][T14469] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2087'.
[  653.582575][T14469] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  654.823987][T14486] size and base must be multiples of 4 kiB
[  654.885100][T14486] CPU: 0 UID: 0 PID: 14486 Comm: syz.6.2090 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  654.898095][T14486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  654.910315][T14486] Call Trace:
[  654.914280][T14486]  <TASK>
[  654.917873][T14486]  dump_stack_lvl+0x16c/0x1f0
[  654.923557][T14486]  mtrr_add+0xdf/0x110
[  654.928507][T14486]  mtrr_ioctl+0x7cd/0xcd0
[  654.933775][T14486]  ? __pfx_mtrr_ioctl+0x10/0x10
[  654.939799][T14486]  ? __pfx_mtrr_ioctl+0x10/0x10
[  654.945696][T14486]  proc_reg_unlocked_ioctl+0x226/0x320
[  654.952303][T14486]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  654.956971][T14489] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2089'.
[  654.959514][T14486]  __x64_sys_ioctl+0x190/0x200
[  654.976017][T14486]  do_syscall_64+0xcd/0x250
[  654.981516][T14486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  654.988713][T14486] RIP: 0033:0x7f62f6585d29
[  654.994060][T14486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  655.017650][T14486] RSP: 002b:00007f62f746a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  655.027808][T14486] RAX: ffffffffffffffda RBX: 00007f62f6775fa0 RCX: 00007f62f6585d29
[  655.037431][T14486] RDX: 0000000000000003 RSI: 00000000400c4d01 RDI: 0000000000000003
[  655.047143][T14486] RBP: 00007f62f6601b08 R08: 0000000000000000 R09: 0000000000000000
[  655.052736][T14489] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  655.056731][T14486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  655.056759][T14486] R13: 0000000000000000 R14: 00007f62f6775fa0 R15: 00007ffe048cc6e8
[  655.056802][T14486]  </TASK>
[  655.681456][ T5844] Bluetooth: hci0: command 0x0406 tx timeout
[  656.194123][T14497] scsi_dev_info_list_add_str: bad dev info string '�' '' ''
[  656.291150][T14496] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  656.371563][T14496] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  657.323585][T14509] device-mapper: ioctl: Invalid ioctl structure: name ��������, dev 400008000010006
[  657.684082][T14510] Process accounting resumed
[  659.223256][ T5844] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  659.242851][ T5844] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  659.259965][ T5844] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  659.291245][ T5844] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  659.306397][ T5844] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  659.315294][ T5844] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2

syzkaller
syzkaller login: [  660.667272][T14540] FAULT_INJECTION: forcing a failure.
[  660.667272][T14540] name failslab, interval 1, probability 0, space 0, times 0
[  660.777146][T14540] CPU: 0 UID: 0 PID: 14540 Comm: syz.7.2103 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  660.790154][T14540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  660.802265][T14540] Call Trace:
[  660.806300][T14540]  <TASK>
[  660.809863][T14540]  dump_stack_lvl+0x16c/0x1f0
[  660.815543][T14540]  should_fail_ex+0x497/0x5b0
[  660.821328][T14540]  ? fs_reclaim_acquire+0xae/0x150
[  660.827526][T14540]  should_failslab+0xc2/0x120
[  660.833214][T14540]  __kmalloc_noprof+0xce/0x4f0
[  660.838998][T14540]  ? lsm_blob_alloc+0x68/0x90
[  660.844811][T14540]  lsm_blob_alloc+0x68/0x90
[  660.850287][T14540]  security_sk_alloc+0x30/0x270
[  660.856152][T14540]  sk_prot_alloc+0xfb/0x2a0
[  660.861591][T14540]  sk_alloc+0x36/0xb90
[  660.866511][T14540]  inet_create+0x3a1/0x10a0
[  660.871937][T14540]  ? inet_create+0x90/0x10a0
[  660.877484][T14540]  __sock_create+0x335/0x8d0
[  660.883183][T14540]  __sys_socket+0x14f/0x260
[  660.888653][T14540]  ? __pfx___sys_socket+0x10/0x10
[  660.894736][T14540]  ? syscall_user_dispatch+0x77/0x140
[  660.901239][T14540]  __x64_sys_socket+0x72/0xb0
[  660.906887][T14540]  do_syscall_64+0xcd/0x250
[  660.912330][T14540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  660.919439][T14540] RIP: 0033:0x7f032a585d29
[  660.924753][T14540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  660.948308][T14540] RSP: 002b:00007f032b438038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  660.958442][T14540] RAX: ffffffffffffffda RBX: 00007f032a775fa0 RCX: 00007f032a585d29
[  660.968037][T14540] RDX: 000000000000000a RSI: 0000000000000003 RDI: 0000000000000002
[  660.977626][T14540] RBP: 00007f032a601b08 R08: 0000000000000000 R09: 0000000000000000
[  660.987218][T14540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  660.996807][T14540] R13: 0000000000000000 R14: 00007f032a775fa0 R15: 00007ffcc5f3b0f8
[  661.006408][T14540]  </TASK>
[  661.112284][T14529] chnl_net:caif_netlink_parms(): no params data found
[  661.411866][   T54] Bluetooth: hci3: command tx timeout
[  661.512475][T14548] netlink: 334 bytes leftover after parsing attributes in process `syz.7.2103'.
[  661.683886][T14529] bridge0: port 1(bridge_slave_0) entered blocking state
[  661.728217][T14529] bridge0: port 1(bridge_slave_0) entered disabled state
[  661.766782][T14529] bridge_slave_0: entered allmulticast mode
[  661.803726][T14529] bridge_slave_0: entered promiscuous mode
[  661.855228][T14529] bridge0: port 2(bridge_slave_1) entered blocking state
[  661.929272][T14529] bridge0: port 2(bridge_slave_1) entered disabled state
[  661.938297][T14529] bridge_slave_1: entered allmulticast mode
[  661.960116][T14529] bridge_slave_1: entered promiscuous mode
[  663.047234][T14529] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  663.107235][T14529] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  663.163236][T14558] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  663.192346][T14558] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  663.229250][T14529] team0: Port device team_slave_0 added
[  663.242429][T14559] scsi_dev_info_list_add_str: bad dev info string '�' '' ''
[  663.259625][T14529] team0: Port device team_slave_1 added
[  663.367105][T14529] batman_adv: batadv0: Adding interface: batadv_slave_0
[  663.411199][T14529] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  663.474219][T14529] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  663.492805][   T54] Bluetooth: hci3: command tx timeout
[  663.503981][T14529] batman_adv: batadv0: Adding interface: batadv_slave_1
[  663.513134][T14529] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  663.545797][T14529] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  663.739715][T14529] hsr_slave_0: entered promiscuous mode
[  663.767924][T14529] hsr_slave_1: entered promiscuous mode
[  663.809957][T14529] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  663.824181][T11467] svc: failed to register nfsdv3 RPC service (errno 512).
[  663.848966][T14529] Cannot create hsr debugfs directory
[  663.849134][T11467] svc: failed to register nfsaclv3 RPC service (errno 512).
[  664.553856][T14529] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  664.760375][T14529] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  664.927805][T14529] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  665.138048][T14529] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  665.550860][   T54] Bluetooth: hci3: command tx timeout
[  665.703002][T14582] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2113'.
[  665.753127][T14582] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  665.776274][T14582] batman_adv: batadv0: Removing interface: batadv_slave_0
[  665.842798][T14582] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  665.842844][T14582] batman_adv: batadv0: Removing interface: batadv_slave_1
[  666.044683][T14529] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  666.142515][T14529] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  666.219837][T14529] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  666.300762][T14529] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  667.086558][T14529] 8021q: adding VLAN 0 to HW filter on device bond0
[  667.123256][T14529] 8021q: adding VLAN 0 to HW filter on device team0
[  667.137376][T10323] bridge0: port 1(bridge_slave_0) entered blocking state
[  667.145991][T10323] bridge0: port 1(bridge_slave_0) entered forwarding state

syzkaller
syzkaller login: [  667.197062][ T3467] bridge0: port 2(bridge_slave_1) entered blocking state
[  667.205671][ T3467] bridge0: port 2(bridge_slave_1) entered forwarding state
[  667.363393][T14529] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  667.619868][   T54] Bluetooth: hci3: command tx timeout
[  667.642757][T14607] 
: entered promiscuous mode
[  667.851653][T14529] 8021q: adding VLAN 0 to HW filter on device batadv0
[  667.923826][T14614] FAULT_INJECTION: forcing a failure.
[  667.923826][T14614] name failslab, interval 1, probability 0, space 0, times 0
[  667.979983][T14529] veth0_vlan: entered promiscuous mode
[  668.006338][T14614] CPU: 0 UID: 0 PID: 14614 Comm: syz.6.2120 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  668.019440][T14614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  668.031552][T14614] Call Trace:
[  668.035517][T14614]  <TASK>
[  668.039062][T14614]  dump_stack_lvl+0x16c/0x1f0
[  668.044737][T14614]  should_fail_ex+0x497/0x5b0
[  668.050407][T14614]  ? fs_reclaim_acquire+0xae/0x150
[  668.056590][T14614]  should_failslab+0xc2/0x120
[  668.062264][T14614]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  668.068779][T14614]  ? create_new_namespaces+0x30/0xad0
[  668.075280][T14614]  create_new_namespaces+0x30/0xad0
[  668.081576][T14614]  ? lock_acquire+0x2f/0xb0
[  668.087017][T14614]  ? ksys_unshare+0x57f/0xa40
[  668.092693][T14614]  __do_sys_setns+0x22a/0x1920
[  668.098471][T14614]  ? __pfx___do_sys_setns+0x10/0x10
[  668.104759][T14614]  ? ksys_write+0x1ba/0x250
[  668.110225][T14614]  do_syscall_64+0xcd/0x250
[  668.115692][T14614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  668.122833][T14614] RIP: 0033:0x7f62f6585d29
[  668.128167][T14614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  668.151746][T14614] RSP: 002b:00007f62f746a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[  668.161895][T14614] RAX: ffffffffffffffda RBX: 00007f62f6775fa0 RCX: 00007f62f6585d29
[  668.171503][T14614] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  668.181109][T14614] RBP: 00007f62f746a090 R08: 0000000000000000 R09: 0000000000000000
[  668.190927][T14614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  668.200545][T14614] R13: 0000000000000000 R14: 00007f62f6775fa0 R15: 00007ffe048cc6e8
[  668.210195][T14614]  </TASK>
[  668.232398][T14529] veth1_vlan: entered promiscuous mode
[  668.322922][T14529] veth0_macvtap: entered promiscuous mode
[  668.349290][T14529] veth1_macvtap: entered promiscuous mode
[  668.414822][T14529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  668.435629][T14529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  668.487987][T14529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  668.518846][T14529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  668.534649][T14529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  668.564591][T14529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  668.584664][T14529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  668.625016][T14529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  668.649995][T14529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  668.673960][T14529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  668.710320][T14529] batman_adv: batadv0: Interface activated: batadv_slave_0
[  668.753841][T14529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  668.803188][T14529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  668.831482][T14529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  668.878152][T14529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  668.922719][T14529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  668.962645][T14529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  669.002089][T14529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  669.032088][T14529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  669.069080][T14529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  669.101710][T14529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  669.140895][T14529] batman_adv: batadv0: Interface activated: batadv_slave_1
[  669.172936][T14529] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  669.203160][T14529] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  669.224418][T14529] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  669.252305][T14529] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  669.501376][T10323] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  669.620554][T10323] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  669.707365][ T5070] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  669.745922][ T5070] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  669.897699][T14635] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2126'.
[  669.928668][T14646] size and base must be multiples of 4 kiB
[  669.935801][T14646] CPU: 1 UID: 0 PID: 14646 Comm: syz.1.2100 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  669.948760][T14646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  669.960891][T14646] Call Trace:
[  669.964864][T14646]  <TASK>
[  669.968447][T14646]  dump_stack_lvl+0x16c/0x1f0
[  669.974122][T14646]  mtrr_add+0xdf/0x110
[  669.979066][T14646]  mtrr_ioctl+0x7cd/0xcd0
[  669.984330][T14646]  ? __pfx_mtrr_ioctl+0x10/0x10
[  669.990280][T14646]  ? __pfx_mtrr_ioctl+0x10/0x10
[  669.996191][T14646]  proc_reg_unlocked_ioctl+0x226/0x320
[  670.002915][T14646]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  670.010148][T14646]  __x64_sys_ioctl+0x190/0x200
[  670.015925][T14646]  do_syscall_64+0xcd/0x250
[  670.021369][T14646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  670.028476][T14646] RIP: 0033:0x7f5890385d29
[  670.033788][T14646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  670.057342][T14646] RSP: 002b:00007f58910fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  670.067477][T14646] RAX: ffffffffffffffda RBX: 00007f5890575fa0 RCX: 00007f5890385d29
[  670.077074][T14646] RDX: 0000000000000003 RSI: 00000000400c4d01 RDI: 0000000000000003
[  670.086671][T14646] RBP: 00007f5890401b08 R08: 0000000000000000 R09: 0000000000000000
[  670.096260][T14646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  670.105865][T14646] R13: 0000000000000000 R14: 00007f5890575fa0 R15: 00007ffcaeef5458
[  670.115474][T14646]  </TASK>
[  670.469575][T14653] 
: entered promiscuous mode
[  671.261398][T14661] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2132'.
[  671.313411][T14659] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  671.499094][T14659] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  671.589428][T14677] ovs���9��: entered promiscuous mode

syzkaller
syzkaller login: [  673.951754][T14732] FAULT_INJECTION: forcing a failure.
[  673.951754][T14732] name failslab, interval 1, probability 0, space 0, times 0
[  673.967003][T14732] CPU: 1 UID: 0 PID: 14732 Comm: syz.1.2146 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  673.979975][T14732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  673.992093][T14732] Call Trace:
[  673.996059][T14732]  <TASK>
[  673.999605][T14732]  dump_stack_lvl+0x16c/0x1f0
[  674.005278][T14732]  should_fail_ex+0x497/0x5b0
[  674.010957][T14732]  should_failslab+0xc2/0x120
[  674.016640][T14732]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  674.023152][T14732]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  674.030903][T14732]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  674.038480][T14732]  idr_get_free+0x528/0xa40
[  674.043947][T14732]  idr_alloc_u32+0x191/0x2f0
[  674.049514][T14732]  ? __pfx_idr_alloc_u32+0x10/0x10
[  674.055689][T14732]  ? do_raw_spin_lock+0x12d/0x2c0
[  674.061764][T14732]  ? lock_acquire+0x2f/0xb0
[  674.067205][T14732]  ? l2tp_tunnel_register+0xdd/0xbe0
[  674.073700][T14732]  l2tp_tunnel_register+0xfd/0xbe0
[  674.079876][T14732]  ? __pfx___debug_object_init+0x10/0x10
[  674.086705][T14732]  ? sprintf+0xcd/0x110
[  674.091740][T14732]  ? __pfx_l2tp_tunnel_register+0x10/0x10
[  674.098654][T14732]  ? lockdep_init_map_type+0x16d/0x7d0
[  674.105251][T14732]  ? lockdep_init_map_type+0x16d/0x7d0
[  674.111846][T14732]  ? l2tp_tunnel_create+0x2c8/0x460
[  674.118148][T14732]  ? l2tp_tunnel_create+0x37d/0x460
[  674.124448][T14732]  pppol2tp_tunnel_get.constprop.0+0x3f2/0x540
[  674.131883][T14732]  ? __pfx_pppol2tp_tunnel_get.constprop.0+0x10/0x10
[  674.139982][T14732]  pppol2tp_connect+0xb1d/0x1ca0
[  674.145971][T14732]  ? __pfx___might_resched+0x10/0x10
[  674.152367][T14732]  ? find_held_lock+0x2d/0x110
[  674.158137][T14732]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  674.165267][T14732]  ? __pfx_pppol2tp_connect+0x10/0x10
[  674.171886][T14732]  ? aa_sk_perm+0x220/0xb20
[  674.177357][T14732]  ? __pfx_aa_sk_perm+0x10/0x10
[  674.183238][T14732]  ? __might_fault+0xe3/0x190
[  674.189037][T14732]  ? __pfx_pppol2tp_connect+0x10/0x10
[  674.195535][T14732]  __sys_connect_file+0x13e/0x1a0
[  674.201621][T14732]  __sys_connect+0x14f/0x170
[  674.207188][T14732]  ? __pfx___sys_connect+0x10/0x10
[  674.213391][T14732]  ? __pfx_ksys_write+0x10/0x10
[  674.219273][T14732]  __x64_sys_connect+0x72/0xb0
[  674.225047][T14732]  ? lockdep_hardirqs_on+0x7c/0x110
[  674.231347][T14732]  do_syscall_64+0xcd/0x250
[  674.236815][T14732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  674.243956][T14732] RIP: 0033:0x7f5890385d29
[  674.249403][T14732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  674.273003][T14732] RSP: 002b:00007f58910fb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  674.283150][T14732] RAX: ffffffffffffffda RBX: 00007f5890575fa0 RCX: 00007f5890385d29
[  674.292762][T14732] RDX: 000000000000003a RSI: 0000000020000000 RDI: 0000000000000003
[  674.302369][T14732] RBP: 00007f58910fb090 R08: 0000000000000000 R09: 0000000000000000
[  674.311978][T14732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  674.321593][T14732] R13: 0000000000000000 R14: 00007f5890575fa0 R15: 00007ffcaeef5458
[  674.331227][T14732]  </TASK>
[  674.981677][T14746] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2150'.
[  675.907190][   T30] INFO: task syz.0.1665:12282 blocked for more than 143 seconds.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  675.948364][T14748] Process accounting resumed
[  675.953984][   T30]       Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  676.021663][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  676.102021][   T30] task:syz.0.1665      state:D stack:27248 pid:12282 tgid:12267 ppid:5830   flags:0x00000004
[  676.193541][   T30] Call Trace:
[  676.213747][   T30]  <TASK>
[  676.230366][   T30]  __schedule+0xe58/0x5ad0
[  676.254389][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  676.281016][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  676.302602][   T30]  ? __pfx___schedule+0x10/0x10
[  676.329331][   T30]  ? schedule+0x298/0x350
[  676.350716][   T30]  ? __pfx_lock_release+0x10/0x10
[  676.371846][   T30]  ? __mutex_trylock_common+0x78/0x250
[  676.448276][   T30]  ? lock_acquire+0x2f/0xb0
[  676.478559][   T30]  ? schedule+0x1fd/0x350
[  676.542572][   T30]  schedule+0xe7/0x350
[  676.547677][   T30]  schedule_preempt_disabled+0x13/0x30
[  676.573497][   T30]  __mutex_lock+0x62b/0xa60
[  676.578999][   T30]  ? nfsd_nl_version_set_doit+0xc5/0x7a0
[  676.612579][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  676.619129][   T30]  ? __pfx___nla_validate_parse+0x10/0x10
[  676.658657][   T30]  ? nfsd_nl_version_set_doit+0xc5/0x7a0
[  676.682221][   T30]  nfsd_nl_version_set_doit+0xc5/0x7a0
[  676.688855][   T30]  ? __pfx_nfsd_nl_version_set_doit+0x10/0x10
[  676.731990][   T30]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  676.740966][   T30]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  676.777283][   T30]  genl_family_rcv_msg_doit+0x202/0x2f0
[  676.808718][   T30]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  676.836758][   T30]  ? __dev_queue_xmit+0x89b/0x43e0
[  676.889143][   T30]  ? genl_get_cmd+0x195/0x580
[  676.905588][   T30]  ? bpf_lsm_capable+0x9/0x10
[  676.926903][   T30]  ? security_capable+0x7e/0x260
[  676.950396][   T30]  genl_rcv_msg+0x565/0x800
[  676.956449][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  676.970957][   T30]  ? __pfx_nfsd_nl_version_set_doit+0x10/0x10
[  676.978323][   T30]  netlink_rcv_skb+0x165/0x410
[  676.986154][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  676.998693][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  677.005487][   T30]  ? down_read+0xc9/0x330
[  677.011151][   T30]  ? __pfx_down_read+0x10/0x10
[  677.016935][   T30]  ? netlink_deliver_tap+0x1ae/0xca0
[  677.024439][   T30]  genl_rcv+0x28/0x40
[  677.029271][   T30]  netlink_unicast+0x53c/0x7f0
[  677.035605][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  677.042374][   T30]  ? __phys_addr_symbol+0x30/0x80
[  677.048499][   T30]  ? __check_object_size+0x488/0x710
[  677.055384][   T30]  netlink_sendmsg+0x8b8/0xd70
[  677.061556][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  677.067975][   T30]  ____sys_sendmsg+0x9ae/0xb40
[  677.073878][   T30]  ? copy_msghdr_from_user+0x10b/0x160
[  677.080620][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  677.088316][   T30]  ___sys_sendmsg+0x135/0x1e0
[  677.094283][   T30]  ? __pfx____sys_sendmsg+0x10/0x10
[  677.104049][   T30]  ? __pfx_lock_release+0x10/0x10
[  677.110393][   T30]  ? trace_lock_acquire+0x14e/0x1f0
[  677.116702][   T30]  ? __fget_files+0x206/0x3a0
[  677.122567][   T30]  __sys_sendmsg+0x16e/0x220
[  677.128133][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  677.134475][   T30]  ? __x64_sys_futex+0x1e1/0x4c0
[  677.140585][   T30]  do_syscall_64+0xcd/0x250
[  677.146053][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  677.153225][   T30] RIP: 0033:0x7f63a9985d29
[  677.158559][   T30] RSP: 002b:00007f63aa788038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  677.168820][   T30] RAX: ffffffffffffffda RBX: 00007f63a9b76240 RCX: 00007f63a9985d29
[  677.178592][   T30] RDX: 0000000000004010 RSI: 00000000200004c0 RDI: 0000000000000004
[  677.189031][   T30] RBP: 00007f63a9a01b08 R08: 0000000000000000 R09: 0000000000000000
[  677.198684][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  677.208416][   T30] R13: 0000000000000000 R14: 00007f63a9b76240 R15: 00007ffcf3566ef8
[  677.219615][   T30]  </TASK>
[  677.223622][   T30] 
[  677.223622][   T30] Showing all locks held in the system:
[  677.246900][   T30] 3 locks held by kworker/0:1/9:
[  677.259821][   T30]  #0: ffff88801ac80948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30
[  677.273236][   T30]  #1: ffffc900000e7d80 (free_ipc_work){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30
[  677.287917][   T30]  #2: ffffffff8ddc6678 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a4/0x3b0
[  677.316357][   T30] 1 lock held by khungtaskd/30:
[  677.335847][   T30]  #0: ffffffff8ddbad40 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x7f/0x390
[  677.358959][   T30] 2 locks held by kworker/u8:7/3467:
[  677.365363][   T30] 2 locks held by syz-executor/5836:
[  677.388462][   T30]  #0: ffff888022ff60e0 (&type->s_umount_key#50){++++}-{4:4}, at: deactivate_super+0xd6/0x100
[  677.412754][   T30]  #1: ffffffff8e1bb548 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[  677.445979][   T30] 3 locks held by kworker/0:6/5873:
[  677.458102][   T30]  #0: ffff88801ac80948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30
[  677.487973][   T30]  #1: ffffc90003effd80 ((fqdir_free_work).work){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30
[  677.518136][   T30]  #2: ffffffff8ddc6540 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x48/0x700
[  677.537693][   T30] 3 locks held by kworker/u8:9/10323:
[  677.567665][   T30]  #0: ffff88801baed948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30
[  677.581860][   T30]  #1: ffffc90003757d80 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30
[  677.595118][   T30]  #2: ffffffff8faaa650 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xbb/0xbd0
[  677.607386][   T30] 2 locks held by syz.3.1495/11467:
[  677.613670][   T30]  #0: ffffffff8fb5f590 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  677.624433][   T30]  #1: ffffffff8e1bb548 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x694/0xbe0
[  677.636738][   T30] 2 locks held by syz.0.1665/12282:
[  677.644495][   T30]  #0: ffffffff8fb5f590 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  677.655290][   T30]  #1: ffffffff8e1bb548 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_version_set_doit+0xc5/0x7a0
[  677.667662][   T30] 3 locks held by syz.5.2128/14657:
[  677.673927][   T30]  #0: ffff88803357c0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_release+0x86/0x2a0
[  677.685771][   T30]  #1: ffff8880637150a0 (&tty->ldisc_sem/1){+.+.}-{0:0}, at: tty_ldisc_release+0xb0/0x2a0
[  677.698365][   T30]  #2: ffffffff8fac0648 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdev+0x12/0x30
[  677.709920][   T30] 2 locks held by syz.5.2136/14686:
[  677.716190][   T30]  #0: ffff888032724d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_dev_do_close+0x26/0x90
[  677.728153][   T30]  #1: ffff888032724078 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x34c/0x1250
[  677.739968][   T30] 2 locks held by getty/14726:
[  677.746082][   T30]  #0: ffff8880304e20a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  677.758546][   T30]  #1: ffffc9000bbfb2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0xfba/0x1480
[  677.770816][   T30] 2 locks held by syz.6.2149/14747:
[  677.777346][   T30]  #0: ffff88803241cd80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_dev_do_close+0x26/0x90
[  677.789059][   T30]  #1: ffff88803241c078 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x34c/0x1250
[  677.801078][   T30] 1 lock held by syz.1.2152/14758:
[  677.807619][   T30]  #0: ffffffff8ddc6678 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a4/0x3b0
[  677.820229][   T30] 2 locks held by syz.7.2153/14760:
[  677.827009][   T30]  #0: ffff88803a46cd80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_dev_do_close+0x26/0x90
[  677.838704][   T30]  #1: ffff88803a46c078 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x34c/0x1250
[  677.851494][   T30] 
[  677.903908][   T30] =============================================
[  677.903908][   T30] 
[  677.926750][   T30] NMI backtrace for cpu 1
[  677.931995][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  677.944639][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  677.956755][   T30] Call Trace:
[  677.960719][   T30]  <TASK>
[  677.964272][   T30]  dump_stack_lvl+0x116/0x1f0
[  677.969941][   T30]  nmi_cpu_backtrace+0x27b/0x390
[  677.975925][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  677.983286][   T30]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  677.990514][   T30]  watchdog+0xf14/0x1240
[  677.995671][   T30]  ? __pfx_watchdog+0x10/0x10
[  678.001325][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  678.007621][   T30]  ? __kthread_parkme+0x148/0x220
[  678.013749][   T30]  ? __pfx_watchdog+0x10/0x10
[  678.019405][   T30]  kthread+0x2c1/0x3a0
[  678.024332][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  678.030616][   T30]  ? __pfx_kthread+0x10/0x10
[  678.036190][   T30]  ret_from_fork+0x45/0x80
[  678.041540][   T30]  ? __pfx_kthread+0x10/0x10
[  678.047132][   T30]  ret_from_fork_asm+0x1a/0x30
[  678.052922][   T30]  </TASK>
[  678.057921][   T30] Sending NMI from CPU 1 to CPUs 0:
[  678.064211][    C0] NMI backtrace for cpu 0
[  678.064227][    C0] CPU: 0 UID: 0 PID: 14758 Comm: syz.1.2152 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  678.064260][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  678.064276][    C0] RIP: 0010:__lock_acquire+0x3a4/0x3c40
[  678.064307][    C0] Code: 7f 24 44 89 e0 8b 14 24 83 d8 ff c1 e5 0f c1 e0 0d c1 e1 10 0f b7 ed 09 e8 81 e1 00 00 03 00 c1 e2 12 81 e2 00 00 04 00 09 c8 <c1> e3 13 09 d0 8b 94 24 48 01 00 00 09 d8 c1 e2 14 09 d0 8b 94 24
[  678.064333][    C0] RSP: 0018:ffffc90017e0f728 EFLAGS: 00000006
[  678.064353][    C0] RAX: 0000000000020000 RBX: 0000000000000000 RCX: 0000000000020000
[  678.064370][    C0] RDX: 0000000000000000 RSI: ffff888025c064c4 RDI: ffff888025c06504
[  678.064388][    C0] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001
[  678.064404][    C0] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  678.064424][    C0] R13: ffff888025c05a00 R14: 0000000000000021 R15: ffff888025c064e0
[  678.064442][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  678.064467][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  678.064486][    C0] CR2: 000055a5ca582950 CR3: 00000000382e6000 CR4: 00000000003526f0
[  678.064503][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  678.064520][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  678.064537][    C0] Call Trace:
[  678.064544][    C0]  <NMI>
[  678.064553][    C0]  ? nmi_cpu_backtrace+0x1d8/0x390
[  678.064582][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  678.064630][    C0]  ? nmi_handle+0x1ac/0x5d0
[  678.064659][    C0]  ? __lock_acquire+0x3a4/0x3c40
[  678.064683][    C0]  ? default_do_nmi+0x6a/0x160
[  678.064707][    C0]  ? exc_nmi+0x170/0x1e0
[  678.064731][    C0]  ? end_repeat_nmi+0xf/0x53
[  678.064772][    C0]  ? __lock_acquire+0x3a4/0x3c40
[  678.064796][    C0]  ? __lock_acquire+0x3a4/0x3c40
[  678.064821][    C0]  ? __lock_acquire+0x3a4/0x3c40
[  678.064844][    C0]  </NMI>
[  678.064857][    C0]  <TASK>
[  678.064872][    C0]  ? __pfx___lock_acquire+0x10/0x10
[  678.064905][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  678.064946][    C0]  ? stack_depot_save_flags+0x28/0x9e0
[  678.064990][    C0]  lock_acquire.part.0+0x11b/0x380
[  678.065019][    C0]  ? page_ext_get+0x34/0x310
[  678.065076][    C0]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  678.065108][    C0]  ? rcu_is_watching+0x12/0xc0
[  678.065148][    C0]  ? trace_lock_acquire+0x14e/0x1f0
[  678.065189][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  678.065229][    C0]  ? page_ext_get+0x34/0x310
[  678.065262][    C0]  ? lock_acquire+0x2f/0xb0
[  678.065284][    C0]  ? page_ext_get+0x34/0x310
[  678.065319][    C0]  page_ext_get+0x3a/0x310
[  678.065351][    C0]  ? page_ext_get+0x34/0x310
[  678.065384][    C0]  __page_table_check_zero+0xbf/0x360
[  678.065424][    C0]  free_unref_page+0x6c8/0x1080
[  678.065461][    C0]  vfree+0x174/0x950
[  678.065492][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  678.065525][    C0]  ? __pfx_kcov_close+0x10/0x10
[  678.065550][    C0]  kcov_put+0x2a/0x40
[  678.065574][    C0]  kcov_close+0xd/0x20
[  678.065597][    C0]  __fput+0x3f8/0xb60
[  678.065635][    C0]  ? cleanup_mnt+0x266/0x450
[  678.065665][    C0]  task_work_run+0x14e/0x250
[  678.065706][    C0]  ? __pfx_task_work_run+0x10/0x10
[  678.065750][    C0]  do_exit+0xad8/0x2d70
[  678.065786][    C0]  ? get_signal+0x8f7/0x2610
[  678.065816][    C0]  ? __pfx_do_exit+0x10/0x10
[  678.065850][    C0]  ? do_raw_spin_lock+0x12d/0x2c0
[  678.065880][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  678.065932][    C0]  do_group_exit+0xd3/0x2a0
[  678.065968][    C0]  get_signal+0x2576/0x2610
[  678.066001][    C0]  ? poll_select_finish+0x378/0x6b0
[  678.066031][    C0]  ? __pfx_get_signal+0x10/0x10
[  678.066062][    C0]  ? __pfx_do_futex+0x10/0x10
[  678.066101][    C0]  arch_do_signal_or_restart+0x90/0x7e0
[  678.066138][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  678.066179][    C0]  ? rcu_is_watching+0x12/0xc0
[  678.066214][    C0]  syscall_exit_to_user_mode+0x150/0x2a0
[  678.066249][    C0]  do_syscall_64+0xda/0x250
[  678.066284][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  678.066320][    C0] RIP: 0033:0x7f5890385d29
[  678.066339][    C0] Code: Unable to access opcode bytes at 0x7f5890385cff.
[  678.066350][    C0] RSP: 002b:00007f58910da038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  678.066375][    C0] RAX: 0000000000000006 RBX: 00007f5890576080 RCX: 00007f5890385d29
[  678.066392][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  678.066408][    C0] RBP: 00007f5890401b08 R08: 0000000000000000 R09: 0000000000000000
[  678.066424][    C0] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000000000
[  678.066441][    C0] R13: 0000000000000000 R14: 00007f5890576080 R15: 00007ffcaeef5458
[  678.066466][    C0]  </TASK>
[  678.663934][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  678.672201][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[  678.684844][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  678.696950][   T30] Call Trace:
[  678.700907][   T30]  <TASK>
[  678.704452][   T30]  dump_stack_lvl+0x3d/0x1f0
[  678.710137][   T30]  panic+0x71d/0x800
[  678.714877][   T30]  ? __pfx_panic+0x10/0x10
[  678.720228][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  678.726829][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  678.734087][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  678.740570][   T30]  ? watchdog+0xd7e/0x1240
[  678.745907][   T30]  ? watchdog+0xd71/0x1240
[  678.751245][   T30]  watchdog+0xd8f/0x1240
[  678.756399][   T30]  ? __pfx_watchdog+0x10/0x10
[  678.762049][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  678.768328][   T30]  ? __kthread_parkme+0x148/0x220
[  678.774404][   T30]  ? __pfx_watchdog+0x10/0x10
[  678.780051][   T30]  kthread+0x2c1/0x3a0
[  678.784957][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  678.791211][   T30]  ? __pfx_kthread+0x10/0x10
[  678.796734][   T30]  ret_from_fork+0x45/0x80
[  678.802049][   T30]  ? __pfx_kthread+0x10/0x10
[  678.807609][   T30]  ret_from_fork_asm+0x1a/0x30
[  678.813374][   T30]  </TASK>
[  678.817324][   T30] Kernel Offset: disabled
[  678.822533][   T30] Rebooting in 86400 seconds..