last executing test programs:

5m3.909136469s ago: executing program 2 (id=1388):
ioperm$auto(0x7, 0x6, 0x2)
socket(0x2c, 0x3, 0x73)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb2, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioprio_set$auto(0x4000001, 0x4, 0x0)
bpf$auto(0x5, 0x0, 0x5)
ioperm$auto(0xa0d, 0xb098, 0x9e)
socket(0xa, 0x3, 0x6)
ioctl$auto(0x3, 0x8918, 0x91)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00')
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
rename$auto(&(0x7f0000000080)='}[,&*}\x00', &(0x7f00000000c0)='/\\\x00')

5m3.401245415s ago: executing program 2 (id=1390):
r0 = socket(0xa, 0x801, 0x84)
select$auto(0xf, &(0x7f0000000180)={[0x3, 0x4, 0x29de, 0x151e1b5c, 0x612c, 0xffffffffffffff3d, 0x6, 0x6, 0x101, 0x6, 0xb, 0x7, 0x7fffffffffffffff, 0x6, 0x5, 0x2]}, &(0x7f0000000200)={[0x400, 0x100, 0xa18, 0x9, 0x34, 0x0, 0x7, 0xbb9, 0x7, 0x2, 0x2b67ab18, 0x10, 0xced7, 0x47, 0x3, 0x8]}, &(0x7f0000000280)={[0x48b, 0x34, 0xfffffffffffffff8, 0x2, 0x8, 0x99e7, 0x80, 0x80, 0xdb, 0x7fff, 0x3, 0x7, 0xfffffffffffffffa, 0xfffffffffffffff7, 0x57]}, &(0x7f0000000300)={0x2, 0xf})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
remap_file_pages$auto(0x6a27, 0x2001000, 0x0, 0xdc, 0x100000)
mmap$auto(0x0, 0xb, 0x6, 0xeb1, 0x3ff, 0x8000)
setpriority$auto(0x2, 0x8000000000000000, 0x4)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
io_cancel$auto(0x401, 0x0, &(0x7f0000000080)={0x80, 0x7, 0x2, 0x7})
mprotect$auto(0x1ffff000, 0xb, 0x3)
lsm_get_self_attr$auto(0x3, &(0x7f0000000340)={0x427b7269, 0x400000000000000, 0x3, 0x61, "a9bc4815a650d115d27e472d7d021207acacfb198fef8cfb350bdeed0f571faedad4d2894cb2f572a3d883d6626170e04787c08186d8537cac2bb173de78b7debe636b4368fbd340ad95be08fa61aae950fcbd0b0430f3dc63a8e7622afb50113c"}, &(0x7f0000000000)=0x645c6b85, 0xfffffffd)
setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27)
close_range$auto(0x2, 0x8000, 0x0)
accept4$auto(r0, &(0x7f0000000100)={0x7, @sa_data_min="cc4b1591a0b49bfffaddc957904b"}, &(0x7f0000000140)=0x6, 0x80)
socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x1e, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4)
mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x200, 0x2010000000000)
socket(0x26, 0x80805, 0x0)
open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98)
memfd_create$auto(0x0, 0x7)
fanotify_mark$auto(0x0, 0x1, 0x4, 0x3, 0x0)
readv$auto(0x3, 0x0, 0x400)

5m3.109606709s ago: executing program 2 (id=1392):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0x81000005, 0x2, 0xfffffffffffffffd, 0xffffffffffffffff, 0x7ffffffd)
sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000001440)={0x0, 0x0, &(0x7f0000001400)={&(0x7f0000000080)=ANY=[@ANYBLOB="071300", @ANYBLOB="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"], 0x1354}}, 0x40001)
open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x121342, 0x40)
prctl$auto(0x1000000001e, 0x80004, 0xff, 0xc, 0x7fffffffffffffff)
acct$auto(&(0x7f0000000f40)='#\x00')
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
statmount$auto(&(0x7f0000000000)={0x2, 0x8, 0x5, 0xffffffff, 0xfffffffffffffff4}, 0x0, 0x800, 0x2)
madvise$auto(0x1ffff000, 0x5510, 0x8)

5m2.150945707s ago: executing program 2 (id=1399):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x7f, 0x8000)
pipe$auto(0x0)
pipe$auto(0x0)
tee$auto(0x2000000000000, 0x3, 0x3ff, 0x9)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0)
process_vm_writev$auto(r0, &(0x7f0000002980)={0x0, 0x4}, 0x3, &(0x7f0000002a40)={0x0, 0x7}, 0x4, 0x0)
io_setup$auto(0x80000000, &(0x7f0000000440))
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x5, 0x0)
getsockopt$auto(0x6, 0x40000000029, 0x19, 0xfffffffffffffffe, 0x0)

5m1.550400338s ago: executing program 2 (id=1403):
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x400000000000003, 0x29, 0xcc, 0x0, 0x3)
ioperm$auto(0x2, 0x5, 0xd)
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x10000, 0x4d)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
fcntl$auto(r0, 0x3, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
io_uring_setup$auto(0x6, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
socket(0x10, 0x2, 0x0)

5m0.377741362s ago: executing program 2 (id=1411):
mlockall$auto(0x7)
set_mempolicy$auto(0x2005, &(0x7f0000000080)=0x87e, 0x4)
memfd_create$auto(&(0x7f0000000040)='\xc4--:\xdd:,./-${\x00', 0x5)
socket(0x27, 0x6, 0x5)
r0 = socket(0x18, 0x2, 0x0)
memfd_create$auto(&(0x7f0000000140)='\xc4--:\xdd:,./-${\x00', 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mknod$auto(&(0x7f0000000000)='}[,&*}\x00', 0x1, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x5}, 0x7ffd, 0x0, 0xff)
move_pages$auto(0x1, 0x20000f54, 0x0, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x6)
setsockopt$auto(0x3, 0x2, 0x14, 0xfffffffffffffffe, 0xfffffffffffffffe)
mmap$auto(0xffdffffffffffff7, 0x1, 0xe3, 0x100000eb0, 0x40000000000a1, 0x8000)
socket(0x2, 0x6, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
setsockopt$auto(r0, 0x0, 0x80011, 0x0, 0x17)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_ADDR_LEGACY_GET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000b", @ANYRES16=r2, @ANYBLOB="01002abd7000ffdbdf2519000000"], 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x4800)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xebf, 0x4, 0x20000000009010)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
read$auto(r0, 0x0, 0xfdef)
rename$auto(&(0x7f0000000080)='}[,&*}\x00', &(0x7f00000000c0)='/\\\x00')
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

4m45.331366028s ago: executing program 32 (id=1411):
mlockall$auto(0x7)
set_mempolicy$auto(0x2005, &(0x7f0000000080)=0x87e, 0x4)
memfd_create$auto(&(0x7f0000000040)='\xc4--:\xdd:,./-${\x00', 0x5)
socket(0x27, 0x6, 0x5)
r0 = socket(0x18, 0x2, 0x0)
memfd_create$auto(&(0x7f0000000140)='\xc4--:\xdd:,./-${\x00', 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mknod$auto(&(0x7f0000000000)='}[,&*}\x00', 0x1, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x5}, 0x7ffd, 0x0, 0xff)
move_pages$auto(0x1, 0x20000f54, 0x0, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x6)
setsockopt$auto(0x3, 0x2, 0x14, 0xfffffffffffffffe, 0xfffffffffffffffe)
mmap$auto(0xffdffffffffffff7, 0x1, 0xe3, 0x100000eb0, 0x40000000000a1, 0x8000)
socket(0x2, 0x6, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
setsockopt$auto(r0, 0x0, 0x80011, 0x0, 0x17)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_ADDR_LEGACY_GET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000b", @ANYRES16=r2, @ANYBLOB="01002abd7000ffdbdf2519000000"], 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x4800)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xebf, 0x4, 0x20000000009010)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
read$auto(r0, 0x0, 0xfdef)
rename$auto(&(0x7f0000000080)='}[,&*}\x00', &(0x7f00000000c0)='/\\\x00')
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

3m38.424430971s ago: executing program 4 (id=1908):
socket(0xa, 0x801, 0x84)
ioperm$auto(0x5, 0x9, 0x3)
umask$auto(0x6)
fanotify_init$auto(0x1308, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x801, 0x84)
listen$auto(0x3, 0x81)
accept$auto(0x3, 0x0, 0x0)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
connect$auto(0x3, &(0x7f0000000040)={0x2, @sa_data_min="d1b9735c9faefa79bf4170f67833"}, 0x55)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f0000000040)={0x0, 0x34000}, 0x4, 0x0, 0x1}, 0xed7138c}, 0x2, 0x9)

3m37.839330465s ago: executing program 4 (id=1912):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
close_range$auto(0x2, 0x8000, 0x0) (async, rerun: 64)
io_uring_setup$auto(0x3ff, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0xbb0c, 0x329, 0x10011, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
madvise$auto(0x0, 0x10, 0xc) (async, rerun: 32)
clone$auto(0x7, 0xd7b0, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x1000004000008)

3m37.434014527s ago: executing program 4 (id=1915):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001e80), r0)
fcntl$auto(0x3, 0x4, 0xa553)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
semctl$auto(0x7, 0xfffffffffffffffa, 0x3, 0x6)
bpf$auto(0x9, &(0x7f00000000c0)=@batch={0xc, 0x37, 0x2, 0x5, 0x7, 0x1, 0x6, 0x584e}, 0x9)
madvise$auto(0x0, 0x3, 0x15)
madvise$auto(0x8000200, 0x2000040080000004, 0xc)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone$auto(0x80000, 0x9, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x5)

3m36.400037396s ago: executing program 4 (id=1922):
fsconfig$auto(0x0, 0x5, 0x0, 0xffffffffffffffff, 0x4)
mprotect$auto(0x1ffff000, 0x7ffffffffffffffe, 0x4)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
ioperm$auto(0x7, 0x6, 0x5)
mmap$auto(0x6, 0x6, 0x3, 0x13, 0x40, 0x0)
close_range$auto(0x2, 0x8, 0x0)
capget$auto(&(0x7f0000000000)={0x401, <r0=>0xffffffffffffffff}, &(0x7f0000000080)={0x5c1, 0x8, 0x5})
move_pages$auto(r0, 0xcf, 0x0, 0x0, 0x0, 0x1)
fchmodat2$auto(0x1, 0x0, 0x2, 0x1000)
ioperm$auto(0x7, 0x6, 0x2)
madvise$auto(0x1, 0xffffffffffff0005, 0x800015)
unlinkat$auto(0xffffffffffffffff, 0x0, 0x8)
syslog$auto(0x3, &(0x7f0000000040)='V/\x00', 0x7fc)

3m36.216126875s ago: executing program 4 (id=1925):
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8002, 0x0, 0x6)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
tkill$auto(0x1, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x801, 0x84)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x1f53, 0x2000000000002)
fanotify_init$auto(0x2b, 0x2010000000000)
r0 = gettid()
syz_open_procfs$namespace(r0, &(0x7f0000000100)='ns/mnt\x00')
pidfd_open$auto(r0, 0x4)
r1 = open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98)
open(&(0x7f0000000000)='./file1\x00', 0x10677d, 0x37e5c9853cd1b999)
fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0)
mmap$auto(0x8000000000000000, 0x8000, 0xfffffffffffffff1, 0x210, 0x4, 0x6)
r2 = socket(0x10, 0x2, 0x14)
r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETFAMILY(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="7ed7f5e04ec6030100dbdfff01000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000001}, 0x400c0)
dup2$auto(0x0, r1)
read$auto(0x3, 0x0, 0x208)

3m35.454508336s ago: executing program 4 (id=1929):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x7ff)
getrandom$auto(0x0, 0x6000000, 0x3)
migrate_pages$auto(0x0, 0x1ff, &(0x7f0000000040)=0xffffffffffffff7f, &(0x7f00000010c0)=0x1)
mlockall$auto(0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x14, 0x0)
fsopen$auto(0x0, 0x1)
mmap$auto(0x1, 0x2020009, 0x3, 0x17, 0x7, 0x1005)
symlink$auto(&(0x7f0000000000)='\xe4\'+@\\+%\x00', 0x0)
mlockall$auto(0x4)
r0 = socket(0x2c, 0x80003, 0x0)
fallocate$auto(0xffffffffffffffff, 0x0, 0xf, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
memfd_create$auto(&(0x7f0000000000)='!\x00', 0x16)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x3)
ioperm$auto(0x6, 0x6, 0xfffffffd)
mmap$auto(0x4000000000000007, 0x3, 0xdf, 0x9b7e, 0x2, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
memfd_secret$auto(0x0)
personality$auto(0x40004010410ffc)
mmap$auto(0x0, 0x7, 0xffb, 0x8000000008011, 0x3, 0x8000)
io_uring_setup$auto(0x3, &(0x7f00000001c0)={0x0, 0x0, 0x9284, 0x3, 0x7fff, 0x0, <r2=>r0, [0x4, 0x8, 0x3ff], {0x31, 0x9, 0x0, 0x3, 0x9, 0xc, 0x90, 0xffffffff, 0x1}, {0x7, 0xffffffb6, 0x9, 0xfffffffa, 0x7ff, 0x1, 0x3, 0x887e, 0x35}})
fchmod$auto(r2, 0x40d7)
getdents64$auto(0x0, &(0x7f0000000440)={0x6, 0x4, 0x5, 0x1}, 0x18)
syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000640), r1)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYRES64, @ANYRES8=r1, @ANYBLOB="0859fe0c1b5d6214f8f94356f259cd5f041df88ef1aab93799fc33e926b321be7584bd4ba7b0f9328d4e8780dfcbd1194a68fa16d5a1a1e116c5e04b27e6ae464df313b6286b1241c5a31eeff3d020072dda8d1c3015f740e617e029c278a46b3d8a117f2e4011f351007f01ec0de6ac"], 0x18}, 0x1, 0x0, 0x0, 0x40000}, 0x48000)
writev$auto(0x5, &(0x7f0000000540)={&(0x7f0000000500)=[0x3d88], 0xfffffffffffffffd}, 0x7)

3m35.17516839s ago: executing program 33 (id=1929):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x7ff)
getrandom$auto(0x0, 0x6000000, 0x3)
migrate_pages$auto(0x0, 0x1ff, &(0x7f0000000040)=0xffffffffffffff7f, &(0x7f00000010c0)=0x1)
mlockall$auto(0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x14, 0x0)
fsopen$auto(0x0, 0x1)
mmap$auto(0x1, 0x2020009, 0x3, 0x17, 0x7, 0x1005)
symlink$auto(&(0x7f0000000000)='\xe4\'+@\\+%\x00', 0x0)
mlockall$auto(0x4)
r0 = socket(0x2c, 0x80003, 0x0)
fallocate$auto(0xffffffffffffffff, 0x0, 0xf, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
memfd_create$auto(&(0x7f0000000000)='!\x00', 0x16)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x3)
ioperm$auto(0x6, 0x6, 0xfffffffd)
mmap$auto(0x4000000000000007, 0x3, 0xdf, 0x9b7e, 0x2, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
memfd_secret$auto(0x0)
personality$auto(0x40004010410ffc)
mmap$auto(0x0, 0x7, 0xffb, 0x8000000008011, 0x3, 0x8000)
io_uring_setup$auto(0x3, &(0x7f00000001c0)={0x0, 0x0, 0x9284, 0x3, 0x7fff, 0x0, <r2=>r0, [0x4, 0x8, 0x3ff], {0x31, 0x9, 0x0, 0x3, 0x9, 0xc, 0x90, 0xffffffff, 0x1}, {0x7, 0xffffffb6, 0x9, 0xfffffffa, 0x7ff, 0x1, 0x3, 0x887e, 0x35}})
fchmod$auto(r2, 0x40d7)
getdents64$auto(0x0, &(0x7f0000000440)={0x6, 0x4, 0x5, 0x1}, 0x18)
syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000640), r1)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYRES64, @ANYRES8=r1, @ANYBLOB="0859fe0c1b5d6214f8f94356f259cd5f041df88ef1aab93799fc33e926b321be7584bd4ba7b0f9328d4e8780dfcbd1194a68fa16d5a1a1e116c5e04b27e6ae464df313b6286b1241c5a31eeff3d020072dda8d1c3015f740e617e029c278a46b3d8a117f2e4011f351007f01ec0de6ac"], 0x18}, 0x1, 0x0, 0x0, 0x40000}, 0x48000)
writev$auto(0x5, &(0x7f0000000540)={&(0x7f0000000500)=[0x3d88], 0xfffffffffffffffd}, 0x7)

3m8.939184503s ago: executing program 3 (id=2039):
socket(0xa, 0x3, 0x6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, 0x0, 0x0, 0x5)
futex$auto(&(0x7f0000000000)=0xf0fe, 0x5, 0x4, 0x0, &(0x7f0000000080)=0x9, 0x4000000)
sendmsg$auto_L2TP_CMD_NOOP(0xffffffffffffffff, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000040)={0x14, 0x0, 0x8, 0x70bd2d, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4042}, 0x8000)
bpf$auto(0x1d, &(0x7f0000000000)=@info={0x2800, 0x1ff, 0x2}, 0xcf)
mremap$auto(0x4000, 0xbee0, 0x3fd6, 0x3, 0x0)
memfd_create$auto(&(0x7f0000000000)='[\x00', 0xd8)
syz_clone(0x1810891, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x1c, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
symlinkat$auto(0xfffffffffffffffe, 0x8, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mkdir$auto(0x0, 0x40)
socket$nl_generic(0x10, 0x3, 0x10)
inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(0x4, 0x0, 0x100400a)
mmap$auto(0x2000, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
madvise$auto(0x9, 0x83a2, 0xb)
keyctl$auto(0x1, 0xa109, 0x9, 0x14, 0x3)

3m8.221544677s ago: executing program 3 (id=2042):
r0 = socket(0x2, 0x2, 0x88)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x20008000)
bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b)
recvfrom$auto(r0, 0x0, 0xb0d, 0x8, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
futex$auto(0x0, 0x6, 0x100, 0x0, 0x0, 0x80000001)
setsockopt$auto(0x3, 0x0, 0x6, 0x0, 0x28)
setsockopt$auto(0x3, 0x0, 0x17, 0x0, 0x28)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00)

3m7.768769076s ago: executing program 3 (id=2043):
sendmsg$auto_OVS_VPORT_CMD_GET(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000040)={0x14, 0x0, 0x1, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x1200c801}, 0x80)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
io_uring_setup$auto(0x5, &(0x7f0000000000)={0xbf62, 0x3, 0x400, 0x7, 0x3, 0x6, 0x7, [0x4, 0x2e9, 0x8], {0x0, 0x1, 0x7, 0x7, 0x5, 0x5, 0x1, 0xfffffffc, 0x7}, {0x4, 0xfffff654, 0xffff7fff, 0x2, 0x8, 0x200, 0x3, 0x0, 0x3}})
clone$auto(0x10000000000, 0x6, 0x0, 0x0, 0x100000001)

3m7.610188368s ago: executing program 3 (id=2044):
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x20018010)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0)
r0 = socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="f6caffffd55038d8b0bdc331937cde2273bf6e5980bb87e5e1e1199f76ecff590eb690898fcb0237aba6000000000000dc0fca330e1b3131435dceabff7d6229c2de7e9ec0992cbfb84f86bb31dfe7ebeb8aa28aac0f7d598996223af19c6c3c6f73e4f49b8b6c7637e6c6e17d8e20d8fe2d39662b2b843602e57979b172b7ac1d0fab", @ANYRES16=0x0, @ANYBLOB="010028bd7000ffdbdf2505000000"], 0x14}, 0x1, 0x0, 0x0, 0x4048000}, 0x4000000)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
write$auto(0x3, 0x0, 0xfdef)
r1 = syz_genetlink_get_family_id$auto_nl80211(0x0, r0)
r2 = gettid()
move_pages$auto(r2, 0x4, &(0x7f0000000040)=&(0x7f0000000000)=[0xbe96, 0x0, 0x80000000, 0x8], &(0x7f0000000140)=0x4, &(0x7f0000000240)=0x800, 0xffffff91)
socket(0x1e, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x3a)
mmap$auto(0x0, 0x8, 0x9, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x1, 0x106)
setsockopt$auto(0x9, 0x1, 0xf, 0x0, 0x9)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="000400"/14], 0x14}, 0x1, 0x0, 0x0, 0x40c80}, 0x4000800)
sendmsg$auto_IPVS_CMD_SET_DEST(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)={0x14, 0x0, 0x400, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0xc8c0)

3m7.397085357s ago: executing program 3 (id=2045):
ioperm$auto(0xde, 0x9, 0x100402)
socket(0xa, 0x3, 0xff)
connect$auto(0x3, 0x0, 0x55)
execve$auto(0x0, 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xffffffc4, @_sigpoll={0x52, 0x7}}})
setresgid$auto(0x0, 0x0, 0x0)

3m5.327891612s ago: executing program 3 (id=2051):
socket(0xa, 0x2, 0x73)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="00000000f5ffffffffffffff00"}, 0x55)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
sendto$auto(0x3, 0x0, 0xf, 0x10, &(0x7f0000000140)={0x4, @sockaddr_1_1}, 0x19)
prctl$auto(0x80000000, 0x7, 0xd5b0, 0x7fffffffffffffff, 0x1212)

3m5.190131565s ago: executing program 34 (id=2051):
socket(0xa, 0x2, 0x73)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="00000000f5ffffffffffffff00"}, 0x55)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
sendto$auto(0x3, 0x0, 0xf, 0x10, &(0x7f0000000140)={0x4, @sockaddr_1_1}, 0x19)
prctl$auto(0x80000000, 0x7, 0xd5b0, 0x7fffffffffffffff, 0x1212)

2m49.526036742s ago: executing program 5 (id=2119):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0xa, 0x6, 0x0)
setsockopt$auto(0x4, 0x1, 0xf, &(0x7f00000002c0)='\x05\x00\x06J\xd4~&\xe3a\xe9\x14\x01\xdc\x85\r\x00\x00\x00\x00\x00\xee\xcc8\xe2\x7fi\x01\xaf\x06E\xff\xff\xff\xff\xff\xff\xff\xff\tL\xb9\x8dv\xf2\x93\x7f\xe18\b\x00\x00\x00\x00\x00\x00\x00\xbd\x94\x06\xc3\xac\xc0\xd9\xa1J2_\xe3\xae\x00\x00\x00\x00a\x93d$\x05\x8a\a\x00R\b\x0e\xfd\x06\xca`\xf6\xfc\x91 g\xa5m\x1a9H\x14\x14\x97\xc1\xc5\x94\x91 \x968C\xc1v!w\x0f\xcc\xf5\xb5!F$\xa4\x9e\xf7\x98~\x98\x88\x06\x14@N\xddM*\xfd\x85R\xb6koe\xe8\xfaF\xf0\\\x9c\x85\xc7+\x81\xa4+\x9f-\x00\xedS\xeb\x1c2\xffy\xaa\x14n#\x1f\xde\x02\xd4\x87I\xb5V(\x00\xa9E\x14\xe3\xf8*\xfd\xcc\x0e\xe4\xbc\xa0\nv\xd9n\xf3\xf9\xed\xc5\x95\fT\xe4\xd6\xfa\x99I\x81\xb4\xb2\xff\xa2\xb3BL\xc1\x9c\x80U\x88\xdb\xcap\xcf\v\x00\x00\x00\x00\x00\x9f\xcf\xa4?\x86\x8d\x10\\\xc7\xb6\x93\t\x98\x8f\xb9B\xdb\x11\xae\xef/\xd5f7ok\x84\xcbddf\xe3\x9c\x1b\x13\xf3\xbdv\x83\xa3\x95o@\xe6\xb8B\x06k\x83\xd4\xad\'\x8b\xa9\xb2\xd38\xe3\xb6\xfb\xa0x\x06\xc7B4\x9e12\\\xd6\xecD\x8bV7D\x8a\x97\xa5\x17\xf6HC\xe0\x03\x00\x00\x00\"S\xc9\x01&\xb0S+\xa0\xf4\xb07o\x12{Q\xe5\xeb\x9b\x9d\xc2\xee0\xa7Y\x12\x1d\xcd\xfb', 0xd)
syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f00000000c0), r0)
listen$auto(r0, 0x26da)
mmap$auto(0x0, 0x4020009, 0x2000000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
mknod$auto(&(0x7f0000000100)='\x05\x00\x06J\xd4~&\xe3a\xe9\x14\x01\xdc\x85\r\x00\x00\x00\x00\x00\xee\xcc8\xe2\x7fi\x01\xaf\x06E\xff\xff\xff\xff\xff\xff\xff\xff\tL\xb9\x8dv\xf2\x93\x7f\xe18\b\x00\x00\x00\x00\x00\x00\x00\xbd\x94\x06\xc3\xac\xc0\xd9\xa1J2_\xe3\xae\x00\x00\x00\x00a\x93d$\x05\x8a\a\x00R\b\x0e\xfd\x06\xca`\xf6\xfc\x91 g\xa5m\x1a9H\x14\x14\x97\xc1\xc5\x94\x91 \x968C\xc1v!w\x0f\xcc\xf5\xb5!F$\xa4\x9e\xf7\x98~\x98\x88\x06\x14@N\xddM*\xfd\x85R\xb6koe\xe8\xfaF\xf0\\\x9c\x85\xc7+\x81\xa4+\x9f-\x00\xedS\xeb\x1c2\xffy\xaa\x14n#\x1f\xde\x02\xd4\x87I\xb5V(\x00\xa9E\x14\xe3\xf8*\xfd\xcc\x0e\xe4\xbc\xa0\nv\xd9n\xf3\xf9\xed\xc5\x95\fT\xe4\xd6\xfa\x99I\x81\xb4\xb2\xff\xa2\xb3BL\xc1\x9c\x80U\x88\xdb\xcap\xcf\v\x00\x00\x00\x00\x00\x9f\xcf\xa4?\x86\x8d\x10\\\xc7\xb6\x93\t\x98\x8f\xb9B\xdb\x11\xae\xef/\xd5f7ok\x84\xcbddf\xe3\x9c\x1b\x13\xf3\xbdv\x83\xa3\x95o@\xe6\xb8B\x06k\x83\xd4\xad\'\x8b\xa9\xb2\xd38\xe3\xb6\xfb\xa0x\x06\xc7B4\x9e12\\\xd6\xecD\x8bV7D\x8a\x97\xa5\x17\xf6HC\xe0\x03\x00\x00\x00\"S\xc9\x01&\xb0S+\xa0\xf4\xb07o\x12{Q\xe5\xeb\x9b\x9d\xc2\xee0\xa7Y\x12\x1d\xcd\xfb', 0x9, 0x3)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)

2m49.274817825s ago: executing program 5 (id=2122):
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008810}, 0x20008000)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa)
madvise$auto(0x0, 0x2000040080000004, 0xe)
socket(0xa, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x80805, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xebd, 0x403, 0x7fff)
select$auto(0x7, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x8000000, 0xfffffffffffffff6, 0x7, 0xfffffffffffdffff, 0xdffffffffffffff8, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x1, 0x9]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
mmap$auto(0x9, 0x1fa1d036, 0x2, 0x18, 0x9ec1, 0x1)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xff00)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
socket(0xa, 0x801, 0x106)
setsockopt$auto(0x3, 0x1, 0x45, 0x0, 0x9)
write$auto(0x3, 0x0, 0xffef)
sendmsg$auto_BATADV_CMD_GET_HARDIF(0xffffffffffffffff, 0x0, 0x4010)
mmap$auto(0x0, 0x80000000008, 0xdf, 0x100000009b72, 0x2, 0x8000)
socket(0x2, 0x2, 0x88)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
write$auto(0x3, 0x0, 0xffd8)

2m49.070259114s ago: executing program 5 (id=2125):
socket(0xa, 0x801, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x2, 0x88)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'vlan0\x00', <r1=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, 0x0, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24048080}, 0x80)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
connect$auto(0x3, &(0x7f0000000000)={0x2, @sockaddr_1_1}, 0x55)

2m48.563244257s ago: executing program 5 (id=2129):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
keyctl$auto(0xe, 0x2, 0x16efae4c, 0x8000005092, 0x61f93bdb)
keyctl$auto(0x10, 0x4, 0x5cd, 0x6, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(0x8000000000000001, 0x26, 0x8)
fcntl$auto(r0, 0x7, 0x4)
kexec_load$auto(0x5, 0x80000000000007, 0x0, 0x5)
mmap$auto(0x1, 0x8, 0x6, 0x12, 0xd8, 0x1)

2m47.524941644s ago: executing program 5 (id=2140):
r0 = socket(0x2, 0x3, 0x6) (async)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) (async)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x24, r1, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r4}, @NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x20040010}, 0x20000084)
migrate_pages$auto(0x1, 0x9, 0x0, &(0x7f0000000840)=0x2) (async)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) (async)
lsm_list_modules$auto(0x0, 0x0, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0xa, 0x5, 0x0) (async)
open(0x0, 0x22240, 0x154)
ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0)
newfstatat$auto(0xffffffffffffff9c, 0x0, 0x0, 0x1000)

2m46.894387887s ago: executing program 5 (id=2146):
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008810}, 0x20008000)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa)
madvise$auto(0x0, 0x2000040080000004, 0xe)
socket(0xa, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x80805, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xebd, 0x403, 0x7fff)
select$auto(0x7, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x8000000, 0xfffffffffffffff6, 0x7, 0xfffffffffffdffff, 0xdffffffffffffff8, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x1, 0x9]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
mmap$auto(0x9, 0x1fa1d036, 0x2, 0x18, 0x9ec1, 0x1)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xff00)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
socket(0xa, 0x801, 0x106)
setsockopt$auto(0x3, 0x1, 0x45, 0x0, 0x9)
write$auto(0x3, 0x0, 0xffef)
sendmsg$auto_BATADV_CMD_GET_HARDIF(0xffffffffffffffff, 0x0, 0x4010)
mmap$auto(0x0, 0x80000000008, 0xdf, 0x100000009b72, 0x2, 0x8000)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
write$auto(0x3, 0x0, 0xffd8)

2m46.52741907s ago: executing program 35 (id=2146):
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008810}, 0x20008000)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa)
madvise$auto(0x0, 0x2000040080000004, 0xe)
socket(0xa, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x80805, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xebd, 0x403, 0x7fff)
select$auto(0x7, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x8000000, 0xfffffffffffffff6, 0x7, 0xfffffffffffdffff, 0xdffffffffffffff8, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x1, 0x9]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
mmap$auto(0x9, 0x1fa1d036, 0x2, 0x18, 0x9ec1, 0x1)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xff00)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
socket(0xa, 0x801, 0x106)
setsockopt$auto(0x3, 0x1, 0x45, 0x0, 0x9)
write$auto(0x3, 0x0, 0xffef)
sendmsg$auto_BATADV_CMD_GET_HARDIF(0xffffffffffffffff, 0x0, 0x4010)
mmap$auto(0x0, 0x80000000008, 0xdf, 0x100000009b72, 0x2, 0x8000)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
write$auto(0x3, 0x0, 0xffd8)

8.824032692s ago: executing program 7 (id=2889):
socket(0x2, 0x3, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x621f, 0x10004)
socket(0x2b, 0x3, 0x2f)
landlock_restrict_self$auto(0xffffffffffffffff, 0x121)
inotify_init1$auto(0x3000000000000)
ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r0)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r3, 0x1, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x0)
ioprio_set$auto(0x1, 0x0, 0x0)
inotify_init1$auto(0x2)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
getsockopt$auto(r1, 0x800011c, 0x6, 0xfffffffffffffffe, 0x0)
swapoff$auto(0x0)
setitimer$auto(0xfffffffb, &(0x7f0000000000)={{0x56, 0xfffffffffffffffa}, {0xd44b, 0x5}}, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
statmount$auto(&(0x7f0000000000)={0x81, 0x8, 0x5, 0xffffffff, 0xfffffffffffffff2}, 0x0, 0x800, 0x0)

8.507126757s ago: executing program 7 (id=2894):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_IPVS(0x0, r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(r1, &(0x7f0000003240)={0x0, 0x0, &(0x7f0000003200)={&(0x7f0000000840)=ANY=[@ANYBLOB="f4030000c81d7e231379a46ebb6782cd8aef99dbd04b6267fac1536c9c0eecbafaf656f1b0c189c4b2a22d1a2c602d26939d4e05d9bc3f470f90be4d9f1683c1cbafbd69b5548fd64b5ee874ba95877771ef90f13d3b73e525327b8c5f31c895b789bf086998e5546b2608abebfa81d3405a837c4a4581145dded1ea6407e70000d03cf32dab2605e5b438e6af1c72caca9f214c11d9e871967ff2f33112b6ca71acd18f1abfcf33a1cb9f58ad9cb76a8ba2f61e12b6fd93cee2bd70ae94e9e5b41f2e8b0c71b9859589c597", @ANYRES16=r2, @ANYBLOB="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"], 0x3e0}, 0x1, 0x0, 0x0, 0x24000051}, 0x20008c0)
socket(0x1, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x8, 0xc0d, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
times$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
fallocate$auto(0x3, 0x3, 0xe, 0x7)
socket(0x15, 0x80001, 0x4)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
move_mount$auto(0x0, 0x0, 0x4, 0x0, 0x77)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x780)
setsockopt$auto(0xffffffffffffffff, 0x104000000000010e, 0x2, 0x0, 0x400)
madvise$auto(0x6, 0x4000000000, 0xe)
madvise$auto(0x2000000040000, 0x7, 0xa)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
sched_setaffinity$auto(0x0, 0x5, &(0x7f00000013c0)=0xffffffffffffffff)
sched_setaffinity$auto(0x0, 0x7, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x8044)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)

7.994687597s ago: executing program 0 (id=2897):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
mknod$auto(&(0x7f0000000040)='\x00\x00\x00\x00g\xe8\xc0y\xcd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x01M\xe5\xb7\xb4\xb0\xe1\x05\xba\xce!p\xa0]\xd4k\xe18\xe1\x8e\xb7X\f', 0x2d, 0x8)
truncate$auto(&(0x7f0000000440)='\xb2{(\\)[{[\x00', 0xe9)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)

7.758388651s ago: executing program 0 (id=2899):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x8000000000000020, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x8, &(0x7f0000000100)=@task_fd_query={0x9, 0x21e9, 0x7ff, 0x3, 0x100000000, 0xb, 0x2e, 0x0, 0x3}, 0x6f4)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf)

7.502189809s ago: executing program 0 (id=2900):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r0)
sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x4000880)
unshare$auto(0x40000080)
socket(0xa, 0x3, 0x33)
connect$auto(0x3, 0x0, 0x55)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x10001, 0x8000)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c00"], 0x1ac}, 0x1, 0x0, 0x0, 0x4044000}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x6)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x3f00, 0x9}, 0x7}, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'veth1\x00'})
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r1, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f00000015c0)={0x2c, r2, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@NETDEV_A_QUEUE_TYPE={0x8}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0xfffffffa}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0xfff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004050}, 0x4810)

7.091371047s ago: executing program 0 (id=2901):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb0, 0xfffffffffffffff8, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
uname$auto(&(0x7f0000000340)={"062773e46122b4fc01ede17cd0e941f213cfcdf93166cde161c263a2ff44b32af89dcd2b4d06a8d6d60ad63c175083ca2335aa32a23d867f7ade1889617b80629f", "9fa2ac5359ce161cd4b6795bf84c72094d2ea4575e5c417ac107992d36da6fe7040c997933273346445a72c0f06d9e0c92a5c590c8ce4a4b57c2ec0fad0f7355fc", "bd120040cf0a3f3400cde06fdf038e91f7e9d7fa0a371c8132a7c6c24ad23afd5fbc7c80eb0d45762c77152c1052199a8a52add3e0af8ba312ea98fa34b217171c", "e23939038240e5a1aa8f94e2dc4481ddbe6604d6f2b5d52f29207d1c14a37db28e02f61fd3b2631d2ffcf61c2cd71b92243ee446dbab885dde2a32182d7a8630ef", "2050722fcd1963b19d9245600352e02daa499f0d4898261d3fc98d396f9cfb7c2db33d6b0376d05e7e0836f177151699ac109fe4132f10ce18e25edc010cc47e66", "559796b9d723a7b09c75b08f8daebb02a0c2a98ec985a3d0a11fab73ad8ac901ca75b82d0974f94883c8af14a1e8118456406e00d818f37a0fbb6b214c1a3e1f61"})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$auto(0x1, 0x541b, 0x8)
io_uring_setup$auto(0x6, 0x0)
io_uring_setup$auto(0x6, 0x0)

6.588177537s ago: executing program 7 (id=2902):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x3, 0x3a)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0x24, 0x0, 0x40020000)

6.109273543s ago: executing program 7 (id=2905):
rseq$auto(&(0x7f0000000000)={0xe, 0x405, 0x0, 0x6, 0xffffffff, 0x2}, 0x7ffe, 0x0, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
write$auto(0x4, 0x0, 0x100082)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
sendmmsg$auto(0x3, 0x0, 0x7, 0x1f)
setsockopt$auto(0x200000000000003, 0x1, 0x29, 0x0, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000002100), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_UPD_RXSA(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f00000000c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000fbdbdf25090000000400020008000100", @ANYRES32=0x0, @ANYBLOB="01004adc831eead4019fcbeb96cf80ee85f23a8258c63e66aeb63f3bb1e062cb3989ae"], 0x20}, 0x1, 0x0, 0x0, 0x4004000}, 0x20004090)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
madvise$auto(0x200, 0x8, 0xac)
madvise$auto(0x0, 0x3, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
pidfd_send_signal$auto(0x101, 0x6, 0x0, 0xfff)
lsm_list_modules$auto(&(0x7f0000000040)=0x81, &(0x7f0000000080)=0x798, 0xf)

5.797712291s ago: executing program 0 (id=2908):
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
mknod$auto(&(0x7f0000000000)='\x00\x00\x00\x00\x00\x00\x00', 0x1001, 0x4)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) (async)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
open(&(0x7f0000000000)='./file0\x00', 0xa2a41, 0xea)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x28, 0x3, 0xa)
poll$auto(&(0x7f0000000100)={r0, 0x0, 0x4d3}, 0x107, 0x7)
socket(0xa, 0x801, 0x84)
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r3=>0x0})
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r3, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, <r4=>0xffff, 0x0, 0x7}, 0xc)
shutdown$auto(r1, 0x8) (async)
shutdown$auto(r1, 0x8)
timerfd_create$auto(0x1000, 0x4) (async)
timerfd_create$auto(0x1000, 0x4)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) (async)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000b80), r5)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r5, &(0x7f0000003e40)={0x0, 0x0, &(0x7f0000003e00)={&(0x7f0000000400)=ANY=[@ANYBLOB="78010000", @ANYRES16=r6, @ANYBLOB="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"], 0x178}, 0x1, 0x0, 0x0, 0x20000000}, 0x20040080)
fstatfs$auto(0x3, 0x0)
shutdown$auto(0x200000003, 0x3) (async)
shutdown$auto(0x200000003, 0x3)
setsockopt$auto(0x3, 0x10000000084, 0x7d, 0x0, 0x632b491c)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
fcntl$auto(r4, 0x8, 0x5) (async)
fcntl$auto(r4, 0x8, 0x5)
setreuid$auto(0x9, 0x1)
getpriority$auto(0x2, 0x9) (async)
getpriority$auto(0x2, 0x9)

4.458382196s ago: executing program 0 (id=2912):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0xb5, 0x20009, 0x4000000000db, 0x17, 0x401, 0x8000)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9f72, 0x5, 0x8000)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x10001, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x80003, 0x300)
io_uring_setup$auto(0x6, 0x0)
open(0x0, 0xa240, 0x15e)
socket(0xa, 0x3, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
pipe2$auto(&(0x7f0000000140)=0x2, 0x800)
sendto$auto(0x3, 0x0, 0x18, 0x101, &(0x7f0000000140)={0x2, @sockaddr_1_1}, 0x1c)

3.814031362s ago: executing program 1 (id=2913):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
inotify_rm_watch$auto(0x0, 0x9)
socket(0xa, 0x1, 0xfd)
socket(0x25, 0x1, 0x0)
select$auto(0x6d0c, 0x0, 0x0, 0x0, 0x0)
sysfs$auto(0x2, 0x9, 0x0)
socket(0xa, 0x801, 0x100)
mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000)
semctl$auto(0x0, 0xfffffffffffffffa, 0x100000001, 0x95cc)
sysfs$auto(0x1, 0x97, 0x10000060d)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x48, 0x0)
fsopen$auto(0x0, 0x1)
sysfs$auto(0xa00000, 0x9, 0xd0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
bpf$auto(0x0, &(0x7f0000000000)=@link_update={0xa, @new_map_fd=0x29d, 0x7, @old_map_fd=0x3ff}, 0xa3)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)

3.699615528s ago: executing program 6 (id=2914):
mknod$auto(&(0x7f0000000140)='\x00\x00\x00\x00', 0xc9, 0xffffffba)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfsd(0x0, r0)
read$auto(r0, &(0x7f0000000040)='\\-\x00', 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)
umount2$auto(&(0x7f0000000040)='.\x00', 0x4)
close_range$auto(0x0, 0x1c94, 0x2)
socket(0x2, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), r1)
sendmsg$auto_WG_CMD_SET_DEVICE(r1, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYRESDEC, @ANYRES32=0x0, @ANYBLOB="f6ffff0005000000"], 0x24}, 0x1, 0x0, 0x0, 0x841}, 0x48d4)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
getcwd$auto(0x0, 0xffffffffffffffff)
inotify_init1$auto(0x4)
inotify_add_watch$auto(0x4, 0x0, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x801, 0x100)
socket(0x11, 0x3, 0x2)
mmap$auto(0x7, 0x8276, 0x4007, 0x14, 0x5, 0x8000000000008000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x3, 0xe, 0x3, 0xeb1, 0x100000001, 0x31bd)
socket(0xa, 0x5, 0x0)
setsockopt$auto(0x3, 0x4007, 0x1, 0x0, 0x94b)
setsockopt$auto(0x3, 0x1, 0x1d, 0x0, 0x9)
socketpair$auto(0x5, 0x5, 0x8007, &(0x7f0000000180)=0x9)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)

2.964038282s ago: executing program 6 (id=2915):
r0 = socket(0x11, 0x80003, 0x300)
copy_file_range$auto(r0, &(0x7f0000000000)=0x100, r0, &(0x7f0000000080)=0x2, 0xe3, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
mmap$auto(0x0, 0x40009, 0x2, 0x9b72, 0x0, 0x28000) (async, rerun: 64)
setreuid$auto(0x0, 0x20000000004) (async, rerun: 64)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r2, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) (async)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) (async)
setsockopt$auto(r0, 0x107, 0xe, 0x0, 0x4)

2.639258225s ago: executing program 7 (id=2916):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r0)
sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x4000880)
unshare$auto(0x40000080)
socket(0xa, 0x3, 0x33)
connect$auto(0x3, 0x0, 0x55)
mmap$auto(0x0, 0x20007, 0x1c, 0xeb1, 0x10001, 0x8000)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c00"], 0x1ac}, 0x1, 0x0, 0x0, 0x4044000}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x6)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'veth1\x00'})
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r1, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f00000015c0)={0x2c, r2, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@NETDEV_A_QUEUE_TYPE={0x8}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0xfffffffa}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0xfff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004050}, 0x4810)

1.842364635s ago: executing program 6 (id=2917):
r0 = socket(0xa, 0x806, 0x0)
arch_prctl$auto(0x9, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4ff0700"}, 0x55)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x10000000000000a, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(r0, 0x1000000c, 0x0)

1.721968223s ago: executing program 1 (id=2918):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)={0x24, r1, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x7fffffff}, @NFSD_A_SERVER_GRACETIME={0x8, 0x2, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000001}, 0x8004)

1.658033153s ago: executing program 6 (id=2919):
sendmsg$auto_OVS_VPORT_CMD_GET(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000040)={0x14, 0x0, 0x1, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x1200c801}, 0x80)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
io_uring_setup$auto(0x5, &(0x7f0000000000)={0xbf62, 0x3, 0x400, 0x7, 0x3, 0x6, 0x7, [0x4, 0x2e9, 0x8], {0x0, 0x1, 0x7, 0x7, 0x5, 0x5, 0x1, 0xfffffffc, 0x7}, {0x4, 0xfffff654, 0xffff7fff, 0x2, 0x8, 0x200, 0x3, 0x0, 0x3}})
clone$auto(0xf400000000000000, 0x6, 0x0, 0x0, 0x100000001)

1.577293525s ago: executing program 1 (id=2920):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
munmap$auto(0xfffffffffffffffd, 0x4)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
timer_create$auto(0x8, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1, 0x1, 0x1)
bind$auto(0x3, &(0x7f0000000140)={0x1, @sa_data_min="af7af2952a203b6cdd8c8f51372e"}, 0xd)
listen$auto(0x3, 0xfffffffa)
select$auto(0x7, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x0, 0xfffffffffffffff6, 0x7, 0xfffffffffffdffff, 0xdffffffffffffff8, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x1, 0x9]}, 0x0, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/ipc\x00')
bpf$auto(0x14, &(0x7f00000000c0)=@link_detach={0x1}, 0xcf)
mmap$auto(0x3, 0x40009, 0xdf, 0x9b72, 0x7, 0x10028001)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x6, 0xfffffffffffffffc, 0x4, 0x9, 0xffffffffffffffff)
add_key$auto(&(0x7f00000019c0)='!*\x00', 0x0, 0x0, 0xf9f9, 0x8001)
r1 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000000), r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x1d, 0x2, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
pidfd_open$auto(0x1, 0x0)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL802154_CMD_DEL_SEC_DEV(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB='?\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000329bd7000fcdbdf251b000000050012000500000008000b000d00000006000a0001000000"], 0x2c}, 0x1, 0x0, 0x0, 0x48000}, 0x1)
r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYRES64], 0x38}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000dfd1944b82a4f765f178e54d63dd1b24fcb6ed67c7682c08fd1dc45243441c11c89d25691cb8baea25a18e65036b5e3c69045549bcdeaa01fd6d972e9a6e13f10f77134664724d058596bc4fcc6f519297c02455c60a38e088462ab0116451cbc91d45c39ec41600000000000000", @ANYRES16=r1, @ANYBLOB="010327bd7000fbdbdf250b000000"], 0x14}}, 0x0)

1.29132039s ago: executing program 6 (id=2921):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x5, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
io_uring_setup$auto(0x1, 0x0)
connect$auto(0x3, &(0x7f0000000180)={0xa, @sockaddr_1_1={"79187eae67fbcc"}}, 0x55)
setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8)
mmap$auto(0x0, 0x44e, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
ioperm$auto(0x7, 0x6, 0x2)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
adjtimex$auto(&(0x7f0000002280)={0xfffffffd, 0x0, 0x8902, 0x8000, 0x8, 0x1, 0x6, 0x0, 0x401, 0x81, 0x4, {0x3, 0x3b9ac9ff}, 0xfffffffffffffc00, 0x2, 0x9, 0x6, 0x0, 0x5, 0x7fffffffffffffff, 0x7fff, 0x8000000000000000, 0x1, 0x12})
r0 = socket(0xa, 0x801, 0x100)
setsockopt$auto(r0, 0x6, 0x5, 0x0, 0xfb3)
clock_adjtime$auto(0x0, 0x0)

454.029348ms ago: executing program 1 (id=2922):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r3=>0x0})
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYRES8, @ANYRES32=r3, @ANYBLOB="08000600", @ANYRES16], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x1000)

210.421647ms ago: executing program 1 (id=2923):
socket(0x2, 0x5, 0x0)
sendto$auto(0x3, 0x0, 0xe70, 0x3, &(0x7f0000000200)={0xf800, @sa_data_min="0a439a757131d9019806fd86f272"}, 0xfffffffc)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x6)
r1 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000f80), 0xffffffffffffffff)
sendmsg$auto_WG_CMD_SET_DEVICE(r0, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000000)={0x14, r1, 0x1, 0x70bd26, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x20040812)

82.123648ms ago: executing program 6 (id=2924):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_ADD_RXSC(r0, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01ee24bd7000fedbdf259800000008000200c2d250350400090008000100", @ANYRES32=0x0, @ANYBLOB], 0x28}, 0x1, 0x0, 0x0, 0x40b4ff743f26f506}, 0x0)
set_mempolicy$auto(0x0, &(0x7f0000000080)=0x7e, 0x4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
move_pages$auto(0x0, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
keyctl$auto(0xa, 0x3, 0x0, 0x802000, 0xe)
sendmsg$auto_NFC_CMD_ENABLE_SE(0xffffffffffffffff, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={&(0x7f00000001c0)=ANY=[@ANYRES16=r0, @ANYRES16, @ANYRES32=r1, @ANYRESHEX=r0], 0xbf4}}, 0x80)
mount$auto(0x0, &(0x7f00000002c0)='/\x00', &(0x7f0000000300)='cifs\x00', 0x7, &(0x7f0000000340))
prctl$auto(0x1000000003b, 0x4000000000004, 0x4, 0x0, 0x8)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x106)
bpf$auto(0x22, &(0x7f0000000100)=@bpf_attr_4={0x8, 0xffffffffffffffff, 0x5, <r2=>0xffffffffffffffff}, 0x101)
socket(0xa, 0x2, 0x88)
setsockopt$auto(0x3, 0x0, 0x40, 0x0, 0x10001)
mremap$auto(0x3ffe, 0x80000000083a, 0x3fd6, 0x4, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_WG_CMD_GET_DEVICE(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8d1}, 0x0)
syz_genetlink_get_family_id$auto_SMC_GEN_NETLINK(&(0x7f0000000000), r5)
r6 = syz_genetlink_get_family_id$auto_MAC802154_HWSIM(&(0x7f0000000340), r5)
sendmsg$auto_MAC802154_HWSIM_CMD_SET_EDGE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="8f632d00000000dbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x40)
prctl$auto(0x9, 0x4, 0x3f, 0x800, 0x4)
sendmsg$auto_MAC802154_HWSIM_CMD_NEW_EDGE(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010026bd7000fddbdf2508000000", @ANYRES32=r2], 0x14}, 0x1, 0x0, 0x0, 0x8020081}, 0x4004080)
socket(0x2, 0x5, 0x0)

17.493081ms ago: executing program 1 (id=2925):
ioperm$auto(0xde, 0x9, 0x100402)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001340)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="010028bd7000fbdbdf251402000004000700"], 0x18}, 0x1, 0x0, 0x0, 0x1}, 0x40)
statfs$auto(&(0x7f0000002880)='/\x00', &(0x7f00000028c0)={0x5, 0x9, 0x240000000000, 0xffffffffffff83f4, 0xfffffffeffffffff, 0x1, 0x19, {[0x4, 0x18000]}, 0x6, 0x7, 0x0, [0x817d, 0x1, 0x4, 0x7]})
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_802_15_4_MAC(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket(0xa, 0x3, 0xff)
select$auto(0xfffffffd, 0x0, &(0x7f0000000100)={[0x7, 0x207, 0x7, 0xc, 0x9, 0x9, 0x9fb, 0x2800000000000002, 0x5, 0xde582971, 0xff, 0x9, 0x4, 0x1ff, 0x8, 0xb]}, 0x0, 0x0)
connect$auto(0x3, 0x0, 0x55)
clock_adjtime$auto(0x400003, &(0x7f0000000000)={0x8000, 0x2, 0x80000001, 0x2, 0x5, 0x9d89, 0x5, 0x4, 0xffff8c97, {0xffffffff, 0x2}, 0x4, 0x2, 0x4, 0x2, 0x3, 0x6, 0x9, 0x3, 0x9})
sendmsg$auto_IPVS_CMD_SET_CONFIG(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000640)=ANY=[], 0x5d}, 0x1, 0x0, 0x0, 0x4000042}, 0x4049880)
sendmsg$auto_IEEE802154_LLSEC_DEL_DEV(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f00000002c0)={0x40, r3, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEST_SHORT_ADDR={0x6, 0xe, 0x6}, @IEEE802154_ATTR_LLSEC_SECLEVEL={0x5, 0x2a, 0xfa}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, 0x4}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x102}, @IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0x3}]}, 0x40}, 0x1, 0x0, 0x0, 0x4044815}, 0x240440c0)
mknod$auto(&(0x7f00000003c0)=':,\x00\xb0\xea\xc5\xb5\xbe_\xeb\x140i4\xcd\xec\x14*\x1b\xad!Y\xb1M\x8f\xdbMZZ \xef\xa6\xe6\x14\x89\xde\xc5\xef\xdf\xc3\xaf\x98\xf7\x95\xae\xd5\xdbP\xe9\x89{\xf1{\x18\xdc\x8d\xb3\xdf\x82\xda\xf5\xed/\xc5`~\x80\xde\xaeC\x14\x16\x87\x94b\xa0\xfep\xe4{\xe2\x1eTl\nS\"\xd1\x95\x01\x0e\xa7<d\xc5\x82\x04\"%\x06\x1d\xa2!\xc7\xa7\xcd\xda1\x7f\xbd~\xcaS\xff\xef|\xb8\x97.\xe3\xc8V\x0f\xc0\xcakGK\xf7Ml\xe56\xc7\x03\xde\x16`\x04\x0f0(\xe3\xeej\b\xd4\xa7_J\xdd\xd8\xcc\x81\x80oY\x82E/M\xbdRN\xdfG\x9e\xb4\xf3\xd2', 0xc6, 0xfffffffa)
mmap$auto(0x0, 0x402000b, 0xdf, 0x10000000000eb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'dummy0\x00'})
arch_prctl$auto(0x5005, 0x9)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mkdir$auto(&(0x7f0000000480)='d[,&H\xe1r\xdd_\xfd|s\xf4B2\xf2\xbe\xe7\xd9\xf9\x1dy,r\xa0*K\xbb+\xdcj(\x81o%D\r\xb0CY\xd7\xd4N\x9b!\b\xa2\x85\x8c\xdf\xa7F\x9b\xae\xea\xae\xf3yO\x9e:1y\xf1\xb6\x1a[\n\xe3Du\xeaM\x11\xa9qS\x8c|\x9f#\xbf\xbd#\x80\xe3\xc9-3?\xf2`\xfbW\xc2&\xd1\xed$\xac/\x96\xe8\x95\xb1(I\xc6\xd8\xca\xee\xcal3\xbd\x0e\xc3N\xbd\xbe-\x00\x1f\xa9\xc9E\xaf\xe0\x02=[\xc3\xf7\xd0\x1b\xa8h\xf84\xab\xa2\xde\x97  \x89\xf0\x13\xef\x83RA\xbb\xe4Z\xba\xdc{&\xa6\xdfG\x03o\x11\x11\xac\xf4\x8d\xc8Z\xedJ\x822\xe0\xcc\xcf1\xc1\xbe\x94\x8f\x96\xc2\x9a0\xdb}i\xb0\xde\x14\xb1HS\xc0z\b\x00\x00\x00\x00\x00\x00\x00N\b\xa9\xfa\xf0%\x8c\xff{\x05,\x8d\x8cm\xb4z\xc6\x80\xae\x02\xca+#\xf2S\xccs\x93\xf3A\xb3\xa6\xb6r\xcd\xd8\xbf\xa7C\xdfW\xd1\xad\x85\xe4!\x10\xca?+\v\xae\x05\xf0EJF`>\x12]T\x003\x1b\x97\x87\xb6\xcbe\x04\xe4O\xc9\x85$\xbfb\x1c\xb2\x1aQ\xdf\x91\x18\xb0o\x06\x8a\x1b\xa9\xd8\xb1\xcd\x19+\xfe\x15\x12\xdd\\\xef\xb1[#\x8e\'\a\xb5\x0e\xa3\xd5b\xfekN\xe0\x91\x98\xe2_\xd8kn\xad=o\x85(d\\\x8f\xfc\xdd\xc9\x9c\xb3x\xf7\x8b\xb9\x0f\xcb\x82\xec\xf1\xb7\x93\xe8 \x00\xc55\r7\xb0\x05\xc6f\xf5\f\xaf\xcc\x9f\xd5O\xa5\xfe\x8a\xea\xa7\x00'/399, 0x8001)
ioperm$auto(0x8, 0xfe, 0x2)
gettimeofday$auto(0x0, 0x0)
mount$auto(0x0, &(0x7f0000000000)='}[,&*}\x00\x0e\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04@Q\x90\'\xf2\x00\x00\x00', &(0x7f0000000240)='nfsd\x00', 0x810001, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
socket(0x2, 0x1, 0x106)
keyctl$auto(0xb, 0xfffffffffffffffd, 0x0, 0x401, 0x200073)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x4000000000002)
cachestat$auto(0x1, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x5)
setresgid$auto(0x0, 0x0, 0x0)

0s ago: executing program 7 (id=2926):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb2, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x5d9)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4040014)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0xa, 0x801, 0x106)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r3=>0x0})
sendmsg$auto_BATADV_CMD_SET_MESH(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)={0x2c, r0, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x140000e4)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x1, 0x4000000000df, 0x44eb2, 0x3, 0x300000000000)
mq_getsetattr$auto(0x1, 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
pidfd_open$auto(0x1, 0x0)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x1, 0x1)
getsockopt$auto(0x6, 0x11e, 0x1, 0xfffffffffffffffe, 0x0)
setsockopt$auto(0x1, 0x1, 0x43, &(0x7f0000000000)='\x00', 0xbb)
getrandom$auto(&(0x7f0000000040)='\'\x00', 0x9, 0x4)

kernel console output (not intermixed with test programs):

2130][T10066] 8021q: adding VLAN 0 to HW filter on device batadv0
[  317.529994][T10066] veth0_vlan: entered promiscuous mode
[  317.541866][T10066] veth1_vlan: entered promiscuous mode
[  317.568288][T10066] veth0_macvtap: entered promiscuous mode
[  317.578145][T10066] veth1_macvtap: entered promiscuous mode
[  317.595697][T10066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  317.606320][T10066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.616550][T10066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  317.627437][T10066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.637596][T10066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  317.648340][T10066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.661443][T10066] batman_adv: batadv0: Interface activated: batadv_slave_0
[  317.717671][T10066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  317.734247][T10066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.758513][T10066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  317.800586][T10066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.830534][T10066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  317.854551][T10066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.887188][T10066] batman_adv: batadv0: Interface activated: batadv_slave_1
[  317.926987][T10066] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  317.964702][T10066] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  317.995423][T10066] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  318.004244][T10066] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  318.162800][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  318.170769][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  318.214378][ T3540] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  318.223134][ T3540] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  318.971715][T10275] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1181'.
[  319.004014][T10275] team0: entered promiscuous mode
[  319.009472][T10275] team_slave_0: entered promiscuous mode
[  319.016132][T10275] team_slave_1: entered promiscuous mode
[  319.040128][T10276] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1181'.
[  321.551779][T10348] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1198'.
[  321.564419][T10348] team0: entered promiscuous mode
[  321.585421][T10348] team_slave_0: entered promiscuous mode
[  321.591289][T10348] team_slave_1: entered promiscuous mode
[  322.510157][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  322.516593][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  324.522061][T10413] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1213'.
[  324.570413][T10413] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1213'.
[  325.375510][T10433] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1218'.
[  325.417069][T10433] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1218'.
[  326.792852][T10462] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  326.852003][T10462] svc: failed to register nfsdv3 RPC service (errno 111).
[  326.869021][T10462] svc: failed to register nfsaclv3 RPC service (errno 111).
[  327.002741][T10466] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1228'.
[  327.014159][T10466] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1228'.
[  328.531605][T10511] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1239'.
[  329.389847][T10542] FAULT_INJECTION: forcing a failure.
[  329.389847][T10542] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  329.425765][T10542] CPU: 0 UID: 0 PID: 10542 Comm: syz.1.1247 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  329.436724][T10542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  329.446836][T10542] Call Trace:
[  329.450342][T10542]  <TASK>
[  329.453345][T10542]  dump_stack_lvl+0x16c/0x1f0
[  329.458091][T10542]  should_fail_ex+0x497/0x5b0
[  329.462852][T10542]  _copy_to_user+0x32/0xd0
[  329.467353][T10542]  simple_read_from_buffer+0xd0/0x160
[  329.472808][T10542]  proc_fail_nth_read+0x198/0x270
[  329.477913][T10542]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  329.483540][T10542]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  329.489155][T10542]  vfs_read+0x1df/0xbe0
[  329.493443][T10542]  ? __fget_files+0x23a/0x3f0
[  329.498155][T10542]  ? fdget_pos+0x24c/0x360
[  329.502601][T10542]  ? __pfx_lock_release+0x10/0x10
[  329.507669][T10542]  ? trace_lock_acquire+0x14a/0x1d0
[  329.512926][T10542]  ? __pfx_vfs_read+0x10/0x10
[  329.517751][T10542]  ? __pfx___mutex_lock+0x10/0x10
[  329.522835][T10542]  ? __fget_files+0x244/0x3f0
[  329.527561][T10542]  ksys_read+0x12f/0x260
[  329.531841][T10542]  ? __pfx_ksys_read+0x10/0x10
[  329.536673][T10542]  do_syscall_64+0xcd/0x250
[  329.541215][T10542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.547158][T10542] RIP: 0033:0x7f93d8f7d15c
[  329.551605][T10542] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  329.571246][T10542] RSP: 002b:00007f93d8df9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  329.579819][T10542] RAX: ffffffffffffffda RBX: 00007f93d9135f80 RCX: 00007f93d8f7d15c
[  329.587824][T10542] RDX: 000000000000000f RSI: 00007f93d8df90a0 RDI: 0000000000000003
[  329.595826][T10542] RBP: 00007f93d8df9090 R08: 0000000000000000 R09: 0000000000000000
[  329.603826][T10542] R10: 000000000000003c R11: 0000000000000246 R12: 0000000000000001
[  329.611823][T10542] R13: 0000000000000000 R14: 00007f93d9135f80 R15: 00007fff5bd44ec8
[  329.619840][T10542]  </TASK>
[  330.112165][T10528] kexec: Could not allocate control_code_buffer
[  333.322586][T10668] can: request_module (can-proto-0) failed.
[  334.775711][T10687] netlink: 'syz.1.1281': attribute type 11 has an invalid length.
[  334.834536][T10687] netlink: 'syz.1.1281': attribute type 11 has an invalid length.
[  337.122798][T10760] svc: failed to register nfsdv3 RPC service (errno 111).
[  337.160884][T10760] svc: failed to register nfsaclv3 RPC service (errno 111).
[  337.646774][T10766] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1309'.
[  339.781682][T10809] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1320'.
[  341.787966][T10848] FAULT_INJECTION: forcing a failure.
[  341.787966][T10848] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  341.824232][T10848] CPU: 1 UID: 0 PID: 10848 Comm: syz.2.1331 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  341.835100][T10848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  341.845219][T10848] Call Trace:
[  341.848542][T10848]  <TASK>
[  341.851519][T10848]  dump_stack_lvl+0x16c/0x1f0
[  341.856262][T10848]  should_fail_ex+0x497/0x5b0
[  341.860994][T10848]  _copy_to_user+0x32/0xd0
[  341.865468][T10848]  simple_read_from_buffer+0xd0/0x160
[  341.870893][T10848]  proc_fail_nth_read+0x198/0x270
[  341.875954][T10848]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  341.881537][T10848]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  341.887118][T10848]  vfs_read+0x1df/0xbe0
[  341.891308][T10848]  ? __fget_files+0x23a/0x3f0
[  341.896121][T10848]  ? fdget_pos+0x24c/0x360
[  341.900567][T10848]  ? __pfx_lock_release+0x10/0x10
[  341.905631][T10848]  ? trace_lock_acquire+0x14a/0x1d0
[  341.910865][T10848]  ? __pfx_vfs_read+0x10/0x10
[  341.915574][T10848]  ? __pfx___mutex_lock+0x10/0x10
[  341.920638][T10848]  ? __fget_files+0x244/0x3f0
[  341.925373][T10848]  ksys_read+0x12f/0x260
[  341.929674][T10848]  ? __pfx_ksys_read+0x10/0x10
[  341.934496][T10848]  do_syscall_64+0xcd/0x250
[  341.939064][T10848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.945015][T10848] RIP: 0033:0x7f3f9657d15c
[  341.949533][T10848] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  341.969287][T10848] RSP: 002b:00007f3f97314030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  341.977733][T10848] RAX: ffffffffffffffda RBX: 00007f3f96735f80 RCX: 00007f3f9657d15c
[  341.985726][T10848] RDX: 000000000000000f RSI: 00007f3f973140a0 RDI: 0000000000000004
[  341.993742][T10848] RBP: 00007f3f97314090 R08: 0000000000000000 R09: 0000000000000000
[  342.001919][T10848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.009922][T10848] R13: 0000000000000000 R14: 00007f3f96735f80 R15: 00007ffe872b9d48
[  342.017947][T10848]  </TASK>
[  345.471013][T10925] FAULT_INJECTION: forcing a failure.
[  345.471013][T10925] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  345.556268][T10925] CPU: 1 UID: 0 PID: 10925 Comm: syz.3.1355 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  345.567143][T10925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  345.577254][T10925] Call Trace:
[  345.580583][T10925]  <TASK>
[  345.583563][T10925]  dump_stack_lvl+0x16c/0x1f0
[  345.588311][T10925]  should_fail_ex+0x497/0x5b0
[  345.593056][T10925]  _copy_to_user+0x32/0xd0
[  345.597543][T10925]  simple_read_from_buffer+0xd0/0x160
[  345.602995][T10925]  proc_fail_nth_read+0x198/0x270
[  345.608091][T10925]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  345.613711][T10925]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  345.619330][T10925]  vfs_read+0x1df/0xbe0
[  345.623553][T10925]  ? __fget_files+0x23a/0x3f0
[  345.628291][T10925]  ? fdget_pos+0x24c/0x360
[  345.632780][T10925]  ? __pfx_lock_release+0x10/0x10
[  345.634898][T10928] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1356'.
[  345.637849][T10925]  ? trace_lock_acquire+0x14a/0x1d0
[  345.637905][T10925]  ? __pfx_vfs_read+0x10/0x10
[  345.637942][T10925]  ? __pfx___mutex_lock+0x10/0x10
[  345.661888][T10925]  ? __fget_files+0x244/0x3f0
[  345.666635][T10925]  ksys_read+0x12f/0x260
[  345.670936][T10925]  ? __pfx_ksys_read+0x10/0x10
[  345.675783][T10925]  do_syscall_64+0xcd/0x250
[  345.680357][T10925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.686326][T10925] RIP: 0033:0x7f776d77d15c
[  345.690798][T10925] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  345.710465][T10925] RSP: 002b:00007f776e53c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  345.718940][T10925] RAX: ffffffffffffffda RBX: 00007f776d935f80 RCX: 00007f776d77d15c
[  345.726968][T10925] RDX: 000000000000000f RSI: 00007f776e53c0a0 RDI: 0000000000000003
[  345.734991][T10925] RBP: 00007f776e53c090 R08: 0000000000000000 R09: 0000000000000000
[  345.743031][T10925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  345.751066][T10925] R13: 0000000000000000 R14: 00007f776d935f80 R15: 00007ffdddb33588
[  345.759121][T10925]  </TASK>
[  345.905701][T10927] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1356'.
[  346.103871][   T29] audit: type=1326 audit(4294967473.700:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10931 comm="syz.2.1357" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3f9657e719 code=0x0
[  346.889082][T10949] FAULT_INJECTION: forcing a failure.
[  346.889082][T10949] name failslab, interval 1, probability 0, space 0, times 0
[  346.992692][T10949] CPU: 1 UID: 0 PID: 10949 Comm: syz.3.1363 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  347.003564][T10949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  347.013686][T10949] Call Trace:
[  347.017015][T10949]  <TASK>
[  347.020000][T10949]  dump_stack_lvl+0x16c/0x1f0
[  347.024756][T10949]  should_fail_ex+0x497/0x5b0
[  347.029500][T10949]  ? fs_reclaim_acquire+0xae/0x150
[  347.034700][T10949]  should_failslab+0xc2/0x120
[  347.039458][T10949]  kmem_cache_alloc_node_noprof+0x71/0x310
[  347.045339][T10949]  ? copy_process+0x49c/0x6ee0
[  347.050172][T10949]  ? _raw_spin_unlock_irq+0x23/0x50
[  347.055452][T10949]  copy_process+0x49c/0x6ee0
[  347.060110][T10949]  ? get_pid_task+0xfc/0x250
[  347.064774][T10949]  ? __pfx_lock_release+0x10/0x10
[  347.069880][T10949]  ? trace_lock_acquire+0x14a/0x1d0
[  347.075165][T10949]  ? __pfx_copy_process+0x10/0x10
[  347.080258][T10949]  ? find_held_lock+0x2d/0x110
[  347.085091][T10949]  kernel_clone+0xfd/0x960
[  347.089577][T10949]  ? __pfx_kernel_clone+0x10/0x10
[  347.094686][T10949]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  347.100722][T10949]  ? 0xffffffff81000000
[  347.104906][T10949]  __do_sys_clone+0xba/0x100
[  347.109539][T10949]  ? __pfx___do_sys_clone+0x10/0x10
[  347.114776][T10949]  ? 0xffffffff81000000
[  347.118972][T10949]  do_syscall_64+0xcd/0x250
[  347.123537][T10949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.129475][T10949] RIP: 0033:0x7f776d77e719
[  347.134002][T10949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  347.153640][T10949] RSP: 002b:00007f776e53c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  347.162091][T10949] RAX: ffffffffffffffda RBX: 00007f776d935f80 RCX: 00007f776d77e719
[  347.170140][T10949] RDX: 9999999999999999 RSI: 0000000000000009 RDI: 0000000000000021
[  347.178141][T10949] RBP: 00007f776e53c090 R08: 0000000000000006 R09: 0000000000000000
[  347.186138][T10949] R10: ffffffff81000000 R11: 0000000000000246 R12: 0000000000000001
[  347.194134][T10949] R13: 0000000000000000 R14: 00007f776d935f80 R15: 00007ffdddb33588
[  347.202138][T10949]  ? 0xffffffff81000000
[  347.206325][T10949]  </TASK>
[  347.678525][T10959] FAULT_INJECTION: forcing a failure.
[  347.678525][T10959] name failslab, interval 1, probability 0, space 0, times 0
[  347.767670][T10959] CPU: 0 UID: 0 PID: 10959 Comm: syz.3.1367 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  347.778582][T10959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  347.788783][T10959] Call Trace:
[  347.792136][T10959]  <TASK>
[  347.795131][T10959]  dump_stack_lvl+0x16c/0x1f0
[  347.799887][T10959]  should_fail_ex+0x497/0x5b0
[  347.804635][T10959]  ? fs_reclaim_acquire+0xae/0x150
[  347.809824][T10959]  should_failslab+0xc2/0x120
[  347.814584][T10959]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  347.820031][T10959]  ? process_measurement+0x521/0x2370
[  347.825469][T10959]  ? ptlock_alloc+0x1f/0x70
[  347.830051][T10959]  ? __pfx_filemap_map_pages+0x10/0x10
[  347.835589][T10959]  ptlock_alloc+0x1f/0x70
[  347.839996][T10959]  pte_alloc_one+0x74/0x390
[  347.844562][T10959]  __do_fault+0x320/0x490
[  347.848961][T10959]  ? __pfx_filemap_map_pages+0x10/0x10
[  347.854495][T10959]  do_pte_missing+0x1a8/0x3e70
[  347.859353][T10959]  __handle_mm_fault+0x100a/0x2a10
[  347.864555][T10959]  ? __pfx_mt_find+0x10/0x10
[  347.869210][T10959]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  347.874979][T10959]  ? __pfx___handle_mm_fault+0x10/0x10
[  347.880527][T10959]  ? find_vma+0xc0/0x140
[  347.884822][T10959]  ? __pfx_find_vma+0x10/0x10
[  347.889547][T10959]  handle_mm_fault+0x3fa/0xaa0
[  347.894364][T10959]  do_user_addr_fault+0x7a3/0x13f0
[  347.899529][T10959]  exc_page_fault+0x5c/0xc0
[  347.904081][T10959]  asm_exc_page_fault+0x26/0x30
[  347.908982][T10959] RIP: 0010:rep_movs_alternative+0x33/0x70
[  347.914830][T10959] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
[  347.934474][T10959] RSP: 0018:ffffc90003cf7ac0 EFLAGS: 00050202
[  347.940591][T10959] RAX: 0018000300000060 RBX: 0000000000000018 RCX: 0000000000000018
[  347.948678][T10959] RDX: fffff5200079ef8c RSI: ffffc90003cf7c48 RDI: 0000000000000000
[  347.956687][T10959] RBP: 0000000000000000 R08: 0000000000000000 R09: fffff5200079ef8b
[  347.964715][T10959] R10: ffffc90003cf7c5f R11: 0000000000000000 R12: ffffc90003cf7c48
[  347.972716][T10959] R13: 0000000000000018 R14: 00007fffffffefff R15: 0000000000000000
[  347.980755][T10959]  _copy_to_user+0xbb/0xd0
[  347.985215][T10959]  fanotify_read+0x66f/0x2400
[  347.989948][T10959]  ? __pfx_aa_file_perm+0x10/0x10
[  347.995005][T10959]  ? __pfx_fanotify_read+0x10/0x10
[  348.000150][T10959]  ? __pfx_lock_release+0x10/0x10
[  348.005219][T10959]  ? trace_lock_acquire+0x14a/0x1d0
[  348.010468][T10959]  ? find_held_lock+0x2d/0x110
[  348.015293][T10959]  ? ksys_write+0x12f/0x260
[  348.019834][T10959]  ? __pfx_woken_wake_function+0x10/0x10
[  348.025514][T10959]  ? bpf_lsm_file_permission+0x9/0x10
[  348.030950][T10959]  ? security_file_permission+0x71/0x210
[  348.036667][T10959]  ? __pfx_fanotify_read+0x10/0x10
[  348.041920][T10959]  vfs_read+0x1df/0xbe0
[  348.046125][T10959]  ? __pfx_vfs_read+0x10/0x10
[  348.050848][T10959]  ? do_sys_openat2+0xb1/0x1e0
[  348.055657][T10959]  ? __pfx_do_sys_openat2+0x10/0x10
[  348.060902][T10959]  ? __pfx___might_resched+0x10/0x10
[  348.066233][T10959]  ksys_read+0x12f/0x260
[  348.070508][T10959]  ? __pfx_ksys_read+0x10/0x10
[  348.075319][T10959]  do_syscall_64+0xcd/0x250
[  348.079855][T10959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.085804][T10959] RIP: 0033:0x7f776d77e719
[  348.090247][T10959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.109894][T10959] RSP: 002b:00007f776e53c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  348.118352][T10959] RAX: ffffffffffffffda RBX: 00007f776d935f80 RCX: 00007f776d77e719
[  348.126364][T10959] RDX: 0000000000000208 RSI: 0000000000000000 RDI: 0000000000000003
[  348.134387][T10959] RBP: 00007f776e53c090 R08: 0000000000000000 R09: 0000000000000000
[  348.142399][T10959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  348.150399][T10959] R13: 0000000000000000 R14: 00007f776d935f80 R15: 00007ffdddb33588
[  348.158413][T10959]  </TASK>
[  348.857665][T10974] kexec: Could not allocate control_code_buffer
[  349.191303][T10984] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1374'.
[  352.305252][T11011] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  352.397844][T11011] svc: failed to register nfsdv3 RPC service (errno 111).
[  352.432435][T11011] svc: failed to register nfsaclv3 RPC service (errno 111).
[  353.761399][T11033] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1385'.
[  355.182030][T11066] syz.3.1396(11066): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  356.723043][T11106] netlink: 350 bytes leftover after parsing attributes in process `syz.0.1409'.
[  357.674216][T11127] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1414'.
[  359.961018][T11176] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1428'.
[  360.082049][T11178] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1429'.
[  362.921315][T11234] FAULT_INJECTION: forcing a failure.
[  362.921315][T11234] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  362.962639][T11234] CPU: 1 UID: 0 PID: 11234 Comm: syz.3.1443 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  362.973502][T11234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  362.983619][T11234] Call Trace:
[  362.986943][T11234]  <TASK>
[  362.990010][T11234]  dump_stack_lvl+0x16c/0x1f0
[  362.994747][T11234]  should_fail_ex+0x497/0x5b0
[  362.999485][T11234]  _copy_to_user+0x32/0xd0
[  363.003969][T11234]  simple_read_from_buffer+0xd0/0x160
[  363.009413][T11234]  proc_fail_nth_read+0x198/0x270
[  363.014506][T11234]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.020134][T11234]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.025745][T11234]  vfs_read+0x1df/0xbe0
[  363.029964][T11234]  ? kasan_quarantine_put+0x10a/0x240
[  363.035403][T11234]  ? __pfx_vfs_read+0x10/0x10
[  363.040142][T11234]  ? kmem_cache_free+0x152/0x4b0
[  363.045157][T11234]  ? putname+0x12e/0x170
[  363.049483][T11234]  ? putname+0x12e/0x170
[  363.053819][T11234]  ksys_read+0x12f/0x260
[  363.058127][T11234]  ? __pfx_ksys_read+0x10/0x10
[  363.062972][T11234]  do_syscall_64+0xcd/0x250
[  363.067539][T11234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.073514][T11234] RIP: 0033:0x7f776d77d15c
[  363.077984][T11234] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  363.097650][T11234] RSP: 002b:00007f776e4fa030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  363.106120][T11234] RAX: ffffffffffffffda RBX: 00007f776d936130 RCX: 00007f776d77d15c
[  363.114139][T11234] RDX: 000000000000000f RSI: 00007f776e4fa0a0 RDI: 0000000000000003
[  363.122157][T11234] RBP: 00007f776e4fa090 R08: 0000000000000000 R09: 0000000000000000
[  363.130182][T11234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.138210][T11234] R13: 0000000000000000 R14: 00007f776d936130 R15: 00007ffdddb33588
[  363.146254][T11234]  </TASK>
[  364.003382][T11248] can: request_module (can-proto-5) failed.
[  365.962798][   T29] audit: type=1800 audit(4294967493.560:7): pid=11263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1450" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  368.473165][T11293] net_ratelimit: 8 callbacks suppressed
[  368.473193][T11293] sock: sock_set_timeout: `syz.3.1458' (pid 11293) tries to set negative timeout
[  370.664377][T11314] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1465'.
[  372.565941][   T54] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  372.576280][   T54] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  372.586073][   T54] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  372.594188][   T54] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  372.603585][   T54] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  372.611159][   T54] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  373.779136][T11362] chnl_net:caif_netlink_parms(): no params data found
[  373.945630][T11385] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1483'.
[  374.385691][T11362] bridge0: port 1(bridge_slave_0) entered blocking state
[  374.393208][T11362] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.401449][T11362] bridge_slave_0: entered allmulticast mode
[  374.409413][T11362] bridge_slave_0: entered promiscuous mode
[  374.418773][T11362] bridge0: port 2(bridge_slave_1) entered blocking state
[  374.426571][T11362] bridge0: port 2(bridge_slave_1) entered disabled state
[  374.433845][T11362] bridge_slave_1: entered allmulticast mode
[  374.441226][T11362] bridge_slave_1: entered promiscuous mode
[  374.609723][T11362] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  374.669418][ T5846] Bluetooth: hci4: command tx timeout
[  374.755841][ T3496] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.777619][T11362] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  374.890156][ T3496] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.923261][T11362] team0: Port device team_slave_0 added
[  374.932147][T11362] team0: Port device team_slave_1 added
[  375.001503][ T3496] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.042750][T11362] batman_adv: batadv0: Adding interface: batadv_slave_0
[  375.055368][T11362] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  375.100924][T11362] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  375.144132][ T3496] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.198511][T11362] batman_adv: batadv0: Adding interface: batadv_slave_1
[  375.215320][T11362] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  375.263045][T11362] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  375.489955][T11362] hsr_slave_0: entered promiscuous mode
[  375.520555][T11362] hsr_slave_1: entered promiscuous mode
[  375.538277][T11362] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  375.551016][T11362] Cannot create hsr debugfs directory
[  375.849923][ T3496] bridge_slave_1: left allmulticast mode
[  375.868900][ T3496] bridge_slave_1: left promiscuous mode
[  375.874708][ T3496] bridge0: port 2(bridge_slave_1) entered disabled state
[  375.951352][ T3496] bridge_slave_0: left allmulticast mode
[  375.985355][ T3496] bridge_slave_0: left promiscuous mode
[  376.005689][ T3496] bridge0: port 1(bridge_slave_0) entered disabled state
[  376.271408][T11431] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1491'.
[  376.762715][ T5846] Bluetooth: hci4: command tx timeout
[  377.070287][ T3496] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  377.089949][ T3496] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  377.102407][ T3496] bond0 (unregistering): Released all slaves
[  377.129016][T11427] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1491'.
[  377.694286][T11362] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  377.943357][ T3496] hsr_slave_0: left promiscuous mode
[  378.045056][ T3496] hsr_slave_1: left promiscuous mode
[  378.085094][ T3496] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  378.103916][ T3496] batman_adv: batadv0: Removing interface: batadv_slave_0
[  378.126395][ T3496] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  378.144128][ T3496] batman_adv: batadv0: Removing interface: batadv_slave_1
[  378.255435][ T3496] veth1_macvtap: left promiscuous mode
[  378.261064][ T3496] veth0_macvtap: left promiscuous mode
[  378.286790][ T3496] veth1_vlan: left promiscuous mode
[  378.292886][ T3496] veth0_vlan: left promiscuous mode
[  378.826762][ T5846] Bluetooth: hci4: command tx timeout
[  378.926756][ T3496] team_slave_1 (unregistering): left promiscuous mode
[  378.938668][ T3496] team0 (unregistering): Port device team_slave_1 removed
[  379.014961][ T3496] team_slave_0 (unregistering): left promiscuous mode
[  379.027634][T11492] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1501'.
[  379.037722][ T3496] team0 (unregistering): Port device team_slave_0 removed
[  379.499289][T11362] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  379.574977][T11362] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  379.630228][T11362] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  379.960156][T11362] 8021q: adding VLAN 0 to HW filter on device bond0
[  380.035038][T11362] 8021q: adding VLAN 0 to HW filter on device team0
[  380.094274][   T75] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.102021][   T75] bridge0: port 1(bridge_slave_0) entered forwarding state
[  380.170520][   T75] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.177732][   T75] bridge0: port 2(bridge_slave_1) entered forwarding state
[  380.603963][T11362] 8021q: adding VLAN 0 to HW filter on device batadv0
[  380.634650][T11520] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1507'.
[  380.909478][ T5846] Bluetooth: hci4: command tx timeout
[  381.469658][T11362] veth0_vlan: entered promiscuous mode
[  381.510473][T11362] veth1_vlan: entered promiscuous mode
[  381.571250][T11362] veth0_macvtap: entered promiscuous mode
[  381.581053][T11362] veth1_macvtap: entered promiscuous mode
[  381.598384][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  381.608979][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  381.618968][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  381.629576][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  381.639513][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  381.650078][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  381.661806][T11362] batman_adv: batadv0: Interface activated: batadv_slave_0
[  381.680055][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  381.690734][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  381.735426][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  381.757072][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  381.795369][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  381.815445][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  381.846804][T11362] batman_adv: batadv0: Interface activated: batadv_slave_1
[  381.942868][T11362] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  381.955622][T11362] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  381.964460][T11362] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  381.973318][T11362] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  382.293443][ T3540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  382.326139][ T3540] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  382.367592][ T3426] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  382.375887][ T3426] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  382.801249][T11602] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  382.915552][T11602] svc: failed to register nfsdv3 RPC service (errno 111).
[  382.934457][T11602] svc: failed to register nfsaclv3 RPC service (errno 111).
[  382.998176][T11607] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1518'.
[  383.949412][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  383.955889][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  383.972530][T11642] ptrace attach of "./syz-executor exec"[5848] was attempted by ""[11642]
[  385.727623][T11676] Invalid ELF header magic: != ELF
[  387.844569][T11770] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1545'.
[  388.553567][   T29] audit: type=1326 audit(4294967516.140:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11779 comm="syz.3.1547" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f776d77e719 code=0x0
[  389.637238][T11785] kexec: Could not allocate control_code_buffer
[  390.877512][T11820] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1556'.
[  390.942198][T11820] nbd: must specify at least one socket
[  391.662491][T11843] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1563'.
[  392.384500][T11858] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1567'.
[  396.536874][T11965] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1594'.
[  397.233148][T11977] svc: failed to register nfsdv3 RPC service (errno 111).
[  397.283947][T11977] svc: failed to register nfsaclv3 RPC service (errno 111).
[  398.859257][T12020] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  398.991081][T12020] svc: failed to register nfsdv3 RPC service (errno 111).
[  399.079001][T12020] svc: failed to register nfsaclv3 RPC service (errno 111).
[  402.873808][T12125] FAULT_INJECTION: forcing a failure.
[  402.873808][T12125] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  402.967969][T12125] CPU: 1 UID: 0 PID: 12125 Comm: syz.3.1622 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  402.978863][T12125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  402.988979][T12125] Call Trace:
[  402.992311][T12125]  <TASK>
[  402.995278][T12125]  dump_stack_lvl+0x16c/0x1f0
[  403.000031][T12125]  should_fail_ex+0x497/0x5b0
[  403.004772][T12125]  ? fs_reclaim_acquire+0xae/0x150
[  403.009956][T12125]  should_fail_alloc_page+0xe7/0x130
[  403.015318][T12125]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  403.021984][T12125]  __alloc_pages_noprof+0x190/0x25a0
[  403.027359][T12125]  ? stack_depot_save_flags+0x28/0x900
[  403.032899][T12125]  ? kasan_save_stack+0x42/0x60
[  403.037828][T12125]  ? kasan_save_stack+0x33/0x60
[  403.042749][T12125]  ? kasan_save_track+0x14/0x30
[  403.047677][T12125]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  403.053474][T12125]  ? unshare_nsproxy_namespaces+0xc0/0x1f0
[  403.059345][T12125]  ? __x64_sys_unshare+0x31/0x40
[  403.064350][T12125]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.070515][T12125]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  403.076487][T12125]  ? policy_nodemask+0xea/0x4e0
[  403.081424][T12125]  alloc_pages_mpol_noprof+0x2c9/0x610
[  403.086973][T12125]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  403.093056][T12125]  copy_time_ns+0x155/0x580
[  403.097620][T12125]  ? copy_cgroup_ns+0xa4/0x6f0
[  403.102448][T12125]  create_new_namespaces+0x48a/0xad0
[  403.107805][T12125]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  403.113506][T12125]  ksys_unshare+0x45d/0xa40
[  403.118088][T12125]  ? __pfx_ksys_unshare+0x10/0x10
[  403.123214][T12125]  ? ksys_write+0x1ad/0x260
[  403.127795][T12125]  __x64_sys_unshare+0x31/0x40
[  403.132802][T12125]  do_syscall_64+0xcd/0x250
[  403.137370][T12125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.143431][T12125] RIP: 0033:0x7f776d77e719
[  403.147900][T12125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  403.167566][T12125] RSP: 002b:00007f776e53c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  403.176047][T12125] RAX: ffffffffffffffda RBX: 00007f776d935f80 RCX: 00007f776d77e719
[  403.184090][T12125] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000080
[  403.192125][T12125] RBP: 00007f776e53c090 R08: 0000000000000000 R09: 0000000000000000
[  403.200157][T12125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  403.208198][T12125] R13: 0000000000000000 R14: 00007f776d935f80 R15: 00007ffdddb33588
[  403.216252][T12125]  </TASK>
[  403.560913][T12140] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1626'.
[  404.732081][T12145] Invalid ELF header magic: != ELF
[  405.674486][T12204] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1638'.
[  407.448377][T12273] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1654'.
[  407.533336][T12280] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1656'.
[  408.121625][T12299] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1662'.
[  408.217659][T12303] HSR: entered promiscuous mode
[  408.588642][T12311] netlink: 'syz.0.1664': attribute type 11 has an invalid length.
[  408.608754][T12311] netlink: 'syz.0.1664': attribute type 11 has an invalid length.
[  410.738511][T12380] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1684'.
[  411.674793][T12420] netlink: 'syz.3.1696': attribute type 11 has an invalid length.
[  411.695916][T12420] netlink: 'syz.3.1696': attribute type 11 has an invalid length.
[  412.287009][T12429] svc: failed to register nfsdv3 RPC service (errno 111).
[  412.323324][T12429] svc: failed to register nfsaclv3 RPC service (errno 111).
[  413.025748][T12461] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1710'.
[  416.608692][T12564] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1738'.
[  416.648309][T12564] team0: entered promiscuous mode
[  416.653439][T12564] team_slave_0: entered promiscuous mode
[  416.665815][T12564] team_slave_1: entered promiscuous mode
[  417.091137][   T29] audit: type=1326 audit(4294967544.690:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12566 comm="syz.4.1739" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff32eb7e719 code=0x0
[  417.623299][T12580] netlink: 'syz.0.1742': attribute type 11 has an invalid length.
[  417.664790][T12580] netlink: 'syz.0.1742': attribute type 11 has an invalid length.
[  418.259575][T12594] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1746'.
[  418.295519][T12594] team0: left promiscuous mode
[  418.300395][T12594] team_slave_0: left promiscuous mode
[  418.345731][T12594] team_slave_1: left promiscuous mode
[  418.380145][T12594] 8021q: adding VLAN 0 to HW filter on device team0
[  418.613452][T12599] svc: failed to register nfsdv3 RPC service (errno 111).
[  418.638557][T12599] svc: failed to register nfsaclv3 RPC service (errno 111).
[  418.684337][T12601] FAULT_INJECTION: forcing a failure.
[  418.684337][T12601] name failslab, interval 1, probability 0, space 0, times 0
[  418.723846][T12601] CPU: 0 UID: 0 PID: 12601 Comm: syz.3.1749 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  418.734729][T12601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  418.744838][T12601] Call Trace:
[  418.748174][T12601]  <TASK>
[  418.751151][T12601]  dump_stack_lvl+0x16c/0x1f0
[  418.755901][T12601]  should_fail_ex+0x497/0x5b0
[  418.760635][T12601]  ? fs_reclaim_acquire+0xae/0x150
[  418.765822][T12601]  should_failslab+0xc2/0x120
[  418.770585][T12601]  kmem_cache_alloc_node_noprof+0x71/0x310
[  418.776465][T12601]  ? __alloc_skb+0x2b3/0x380
[  418.781105][T12601]  __alloc_skb+0x2b3/0x380
[  418.785570][T12601]  ? __pfx___alloc_skb+0x10/0x10
[  418.790569][T12601]  netlink_alloc_large_skb+0x69/0x130
[  418.795999][T12601]  netlink_sendmsg+0x689/0xd70
[  418.800821][T12601]  ? __pfx_netlink_sendmsg+0x10/0x10
[  418.806161][T12601]  ____sys_sendmsg+0x9ae/0xb40
[  418.810974][T12601]  ? copy_msghdr_from_user+0x10b/0x160
[  418.816496][T12601]  ? __pfx_____sys_sendmsg+0x10/0x10
[  418.821842][T12601]  ? __pfx___lock_acquire+0x10/0x10
[  418.827196][T12601]  ___sys_sendmsg+0x135/0x1e0
[  418.831927][T12601]  ? __pfx____sys_sendmsg+0x10/0x10
[  418.837173][T12601]  ? lock_acquire+0x2f/0xb0
[  418.841719][T12601]  ? __fget_files+0x40/0x3f0
[  418.846443][T12601]  ? fdget+0x176/0x210
[  418.850544][T12601]  __sys_sendmsg+0x117/0x1f0
[  418.855194][T12601]  ? __pfx___sys_sendmsg+0x10/0x10
[  418.860341][T12601]  ? __fget_files+0x244/0x3f0
[  418.865073][T12601]  do_syscall_64+0xcd/0x250
[  418.869611][T12601]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  418.875650][T12601] RIP: 0033:0x7f776d77e719
[  418.880098][T12601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  418.900010][T12601] RSP: 002b:00007f776e53c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  418.908545][T12601] RAX: ffffffffffffffda RBX: 00007f776d935f80 RCX: 00007f776d77e719
[  418.916558][T12601] RDX: 0000000004000880 RSI: 0000000020000180 RDI: 0000000000000003
[  418.924559][T12601] RBP: 00007f776e53c090 R08: 0000000000000000 R09: 0000000000000000
[  418.932563][T12601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  418.940566][T12601] R13: 0000000000000000 R14: 00007f776d935f80 R15: 00007ffdddb33588
[  418.948592][T12601]  </TASK>
[  420.209512][T12639] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1763'.
[  420.233532][T12639] team0: left promiscuous mode
[  420.252840][T12639] team_slave_0: left promiscuous mode
[  420.268618][T12639] team_slave_1: left promiscuous mode
[  420.287475][T12639] 8021q: adding VLAN 0 to HW filter on device team0
[  420.306726][T12642] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1762'.
[  421.649402][   T29] audit: type=1326 audit(4294967549.250:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12678 comm="syz.0.1775" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f803217e719 code=0x0
[  421.968402][T12672] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1772'.
[  422.052045][T12672] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1772'.
[  422.105567][T12672] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1772'.
[  422.145868][T12672] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1772'.
[  422.201620][T12672] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1772'.
[  422.226468][T12672] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1772'.
[  422.285668][T12672] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1772'.
[  422.335776][T12672] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1772'.
[  422.345138][T12672] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1772'.
[  422.421352][T12672] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1772'.
[  427.965935][T12840] __nla_validate_parse: 11 callbacks suppressed
[  427.965997][T12840] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1831'.
[  428.107187][T12843] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1830'.
[  428.253208][T12851] netlink: 'syz.0.1834': attribute type 11 has an invalid length.
[  428.273840][T12851] netlink: 322 bytes leftover after parsing attributes in process `syz.0.1834'.
[  429.112026][T12885] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1845'.
[  429.675791][T12899] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1849'.
[  429.807106][T12901] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  429.906182][T12901] svc: failed to register nfsdv3 RPC service (errno 111).
[  429.941267][T12901] svc: failed to register nfsaclv3 RPC service (errno 111).
[  431.704248][T12933] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1860'.
[  436.747377][T13025] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1891'.
[  437.108509][T13036] netlink: 350 bytes leftover after parsing attributes in process `syz.4.1889'.
[  437.121941][T13035] netlink: 306 bytes leftover after parsing attributes in process `syz.3.1892'.
[  438.939650][T13085] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  438.991159][T13085] svc: failed to register nfsdv3 RPC service (errno 111).
[  439.012650][T13085] svc: failed to register nfsaclv3 RPC service (errno 111).
[  439.176410][T13087] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1907'.
[  439.943227][T13101] workqueue: name exceeds WQ_NAME_LEN. Truncating to: ýÿÿÿÿÿÿÿ-œä¾ž6y“Õ¼Ÿ¦÷
k†Áa;«
[  441.280680][T13147] FAULT_INJECTION: forcing a failure.
[  441.280680][T13147] name failslab, interval 1, probability 0, space 0, times 0
[  441.301597][T13147] CPU: 0 UID: 0 PID: 13147 Comm: syz.3.1926 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  441.312454][T13147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  441.322563][T13147] Call Trace:
[  441.325890][T13147]  <TASK>
[  441.328868][T13147]  dump_stack_lvl+0x16c/0x1f0
[  441.333607][T13147]  should_fail_ex+0x497/0x5b0
[  441.338344][T13147]  ? fs_reclaim_acquire+0xae/0x150
[  441.343526][T13147]  should_failslab+0xc2/0x120
[  441.348280][T13147]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  441.353725][T13147]  ? security_file_alloc+0x34/0x2b0
[  441.358988][T13147]  ? rcu_is_watching+0x12/0xc0
[  441.363820][T13147]  security_file_alloc+0x34/0x2b0
[  441.368904][T13147]  init_file+0x93/0x230
[  441.373134][T13147]  alloc_empty_file+0x91/0x1e0
[  441.377974][T13147]  path_openat+0xe1/0x2d60
[  441.382459][T13147]  ? hlock_class+0x4e/0x130
[  441.387025][T13147]  ? __lock_acquire+0x163e/0x3ce0
[  441.392132][T13147]  ? __pfx_path_openat+0x10/0x10
[  441.397142][T13147]  ? __pfx___lock_acquire+0x10/0x10
[  441.402423][T13147]  do_filp_open+0x1dc/0x430
[  441.406994][T13147]  ? __pfx_do_filp_open+0x10/0x10
[  441.412070][T13147]  ? find_held_lock+0x2d/0x110
[  441.416890][T13147]  ? _raw_spin_unlock+0x28/0x50
[  441.421784][T13147]  ? alloc_fd+0x2d7/0x6c0
[  441.426160][T13147]  do_sys_openat2+0x17a/0x1e0
[  441.430917][T13147]  ? __pfx_do_sys_openat2+0x10/0x10
[  441.436162][T13147]  ? __fget_files+0x244/0x3f0
[  441.440894][T13147]  __x64_sys_openat+0x175/0x210
[  441.445792][T13147]  ? __pfx___x64_sys_openat+0x10/0x10
[  441.451215][T13147]  do_syscall_64+0xcd/0x250
[  441.455762][T13147]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.461709][T13147] RIP: 0033:0x7f776d77d0b0
[  441.466148][T13147] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[  441.485876][T13147] RSP: 002b:00007f776e53bf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  441.494317][T13147] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f776d77d0b0
[  441.502312][T13147] RDX: 0000000000000000 RSI: 00007f776e53bfa0 RDI: 00000000ffffff9c
[  441.510310][T13147] RBP: 00007f776e53bfa0 R08: 0000000000000000 R09: 0000000000000000
[  441.518305][T13147] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  441.526299][T13147] R13: 0000000000000000 R14: 00007f776d935f80 R15: 00007ffdddb33588
[  441.534312][T13147]  </TASK>
[  441.879224][   T52] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  442.198159][T13159] svc: failed to register nfsdv3 RPC service (errno 111).
[  442.224423][T13159] svc: failed to register nfsaclv3 RPC service (errno 111).
[  442.359184][   T52] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  442.513840][   T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  442.523474][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  442.534107][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  442.534947][   T52] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  442.580053][   T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  442.605300][   T54] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  442.615624][   T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  442.797633][   T52] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  443.386681][T13165] chnl_net:caif_netlink_parms(): no params data found
[  443.582291][   T52] bridge_slave_1: left allmulticast mode
[  443.588131][   T52] bridge_slave_1: left promiscuous mode
[  443.593920][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[  443.696218][   T52] bridge_slave_0: left allmulticast mode
[  443.701971][   T52] bridge_slave_0: left promiscuous mode
[  443.754398][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[  444.593075][   T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  444.610089][   T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  444.627608][   T52] bond0 (unregistering): Released all slaves
[  444.665800][ T5846] Bluetooth: hci1: command tx timeout
[  445.231129][T13165] bridge0: port 1(bridge_slave_0) entered blocking state
[  445.241915][T13165] bridge0: port 1(bridge_slave_0) entered disabled state
[  445.263002][T13165] bridge_slave_0: entered allmulticast mode
[  445.286617][T13165] bridge_slave_0: entered promiscuous mode
[  445.313550][T13165] bridge0: port 2(bridge_slave_1) entered blocking state
[  445.343485][T13165] bridge0: port 2(bridge_slave_1) entered disabled state
[  445.351303][T13165] bridge_slave_1: entered allmulticast mode
[  445.379564][T13165] bridge_slave_1: entered promiscuous mode
[  445.406842][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  445.413224][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  445.691240][T13165] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  445.732703][T13165] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  445.771118][T13222] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1947'.
[  446.075068][T13165] team0: Port device team_slave_0 added
[  446.095457][T13232] nbd: must specify at least one socket
[  446.128692][T13165] team0: Port device team_slave_1 added
[  446.677032][T13165] batman_adv: batadv0: Adding interface: batadv_slave_0
[  446.694289][T13165] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  446.744584][T13165] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  446.774092][ T5846] Bluetooth: hci1: command tx timeout
[  446.877622][T13165] batman_adv: batadv0: Adding interface: batadv_slave_1
[  446.884644][T13165] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  446.955296][T13165] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  447.079026][T13251] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  447.152686][T13251] svc: failed to register nfsdv3 RPC service (errno 111).
[  447.164893][T13251] svc: failed to register nfsaclv3 RPC service (errno 111).
[  447.306756][   T52] hsr_slave_0: left promiscuous mode
[  447.338484][   T52] hsr_slave_1: left promiscuous mode
[  447.357315][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  447.364829][   T52] batman_adv: batadv0: Removing interface: batadv_slave_0
[  447.398865][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  447.406415][   T52] batman_adv: batadv0: Removing interface: batadv_slave_1
[  447.479950][   T52] veth1_macvtap: left promiscuous mode
[  447.495665][   T52] veth0_macvtap: left promiscuous mode
[  447.501373][   T52] veth1_vlan: left promiscuous mode
[  447.525749][   T52] veth0_vlan: left promiscuous mode
[  448.700972][   T52] team0 (unregistering): Port device team_slave_1 removed
[  448.817032][   T52] team0 (unregistering): Port device team_slave_0 removed
[  448.826931][ T5846] Bluetooth: hci1: command tx timeout
[  449.882145][T13165] hsr_slave_0: entered promiscuous mode
[  449.893678][T13165] hsr_slave_1: entered promiscuous mode
[  449.914275][T13165] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  449.924780][T13165] Cannot create hsr debugfs directory
[  450.595532][T13165] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  450.614007][T13165] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  450.674932][T13165] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  450.733918][T13165] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  450.909526][ T5846] Bluetooth: hci1: command tx timeout
[  450.931814][T13165] 8021q: adding VLAN 0 to HW filter on device bond0
[  450.952335][T13165] 8021q: adding VLAN 0 to HW filter on device team0
[  451.058799][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  451.066017][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  451.079640][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  451.086852][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  451.132591][T13165] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  451.599050][T13165] 8021q: adding VLAN 0 to HW filter on device batadv0
[  452.337661][T13165] veth0_vlan: entered promiscuous mode
[  452.409974][T13165] veth1_vlan: entered promiscuous mode
[  452.493732][T13165] veth0_macvtap: entered promiscuous mode
[  452.531361][T13165] veth1_macvtap: entered promiscuous mode
[  452.594432][T13165] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  452.627193][T13165] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  452.660921][T13165] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  452.695588][T13165] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  452.715295][T13165] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  452.745580][T13165] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  452.767502][T13165] batman_adv: batadv0: Interface activated: batadv_slave_0
[  452.795071][T13165] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  452.830329][T13165] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  452.851278][T13165] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  452.871712][T13165] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  452.903412][T13165] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  452.925808][T13165] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  452.956421][T13165] batman_adv: batadv0: Interface activated: batadv_slave_1
[  453.017972][T13165] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  453.029101][T13165] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  453.038019][T13165] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  453.048104][T13165] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  453.275546][T13108] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  453.283442][T13108] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  453.400176][ T3540] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  453.411449][ T3540] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  453.481173][T13360] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1973'.
[  455.256959][T13420] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1986'.
[  455.312849][T13424] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1986'.
[  455.377100][T13420] team0: entered promiscuous mode
[  455.382232][T13420] team_slave_0: entered promiscuous mode
[  455.455802][T13420] team_slave_1: entered promiscuous mode
[  459.168199][T13505] svc: failed to register nfsdv3 RPC service (errno 111).
[  459.228217][T13505] svc: failed to register nfsaclv3 RPC service (errno 111).
[  460.638067][T13547] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2005'.
[  462.875405][T13582] netlink: 'syz.3.2010': attribute type 11 has an invalid length.
[  462.951687][T13582] netlink: 'syz.3.2010': attribute type 11 has an invalid length.
[  464.782693][T13606] netlink: 350 bytes leftover after parsing attributes in process `syz.3.2016'.
[  465.537703][T13622] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2021'.
[  465.561071][T13622] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2021'.
[  468.103482][T13686] kernel read not supported for file /#)-\&[} (pid: 13686 comm: syz.0.2036)
[  468.122739][   T29] audit: type=1800 audit(4294967307.200:11): pid=13686 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2036" name="#)-\&[}" dev="mqueue" ino=6882 res=0 errno=0
[  469.716379][T13509] svc: failed to register nfsdv3 RPC service (errno 512).
[  469.723988][T13509] svc: failed to register nfsaclv3 RPC service (errno 512).
[  469.942717][T13631] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  469.985544][T13631] svc: failed to register nfsdv3 RPC service (errno 512).
[  470.003298][T13631] svc: failed to register nfsaclv3 RPC service (errno 512).
[  470.624053][ T3540] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.663296][T13737] kernel read not supported for file /#)-\&[} (pid: 13737 comm: syz.5.2048)
[  470.706726][   T29] audit: type=1800 audit(4294967309.790:12): pid=13737 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2048" name="#)-\&[}" dev="mqueue" ino=40608 res=0 errno=0
[  470.837146][ T3540] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.038626][ T3540] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.252204][ T3540] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.803731][ T3540] bridge_slave_1: left allmulticast mode
[  471.811014][ T3540] bridge_slave_1: left promiscuous mode
[  471.851150][ T3540] bridge0: port 2(bridge_slave_1) entered disabled state
[  472.068024][ T3540] bridge_slave_0: left allmulticast mode
[  472.073769][ T3540] bridge_slave_0: left promiscuous mode
[  472.106440][ T3540] bridge0: port 1(bridge_slave_0) entered disabled state
[  472.811702][   T54] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  472.825934][   T54] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  472.834552][   T54] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  472.844785][   T54] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  472.865655][   T54] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  472.873132][   T54] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  473.243004][ T3540] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  473.260152][ T3540] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  473.272394][ T3540] bond0 (unregistering): Released all slaves
[  473.354027][ T3540] HfR: left promiscuous mode
[  473.415841][T13772] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2057'.
[  474.276830][T13765] chnl_net:caif_netlink_parms(): no params data found
[  474.377568][T13799] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  474.454616][T13799] svc: failed to register nfsdv3 RPC service (errno 111).
[  474.473565][T13799] svc: failed to register nfsaclv3 RPC service (errno 111).
[  474.586975][T13803] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2060'.
[  474.729841][T13765] bridge0: port 1(bridge_slave_0) entered blocking state
[  474.744238][T13765] bridge0: port 1(bridge_slave_0) entered disabled state
[  474.762009][T13765] bridge_slave_0: entered allmulticast mode
[  474.770882][T13765] bridge_slave_0: entered promiscuous mode
[  474.891427][T13765] bridge0: port 2(bridge_slave_1) entered blocking state
[  474.905604][T13765] bridge0: port 2(bridge_slave_1) entered disabled state
[  474.912926][T13765] bridge_slave_1: entered allmulticast mode
[  474.935875][T13765] bridge_slave_1: entered promiscuous mode
[  474.985573][ T5846] Bluetooth: hci3: command tx timeout
[  475.181000][T13765] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  475.460590][T13765] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  475.623738][T13765] team0: Port device team_slave_0 added
[  475.673434][T13765] team0: Port device team_slave_1 added
[  475.806405][T13765] batman_adv: batadv0: Adding interface: batadv_slave_0
[  475.825553][T13765] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  475.896226][T13765] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  475.970123][T13765] batman_adv: batadv0: Adding interface: batadv_slave_1
[  476.000750][T13765] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  476.080621][T13765] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  476.590427][T13765] hsr_slave_0: entered promiscuous mode
[  476.626641][T13765] hsr_slave_1: entered promiscuous mode
[  476.645905][T13765] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  476.675719][T13765] Cannot create hsr debugfs directory
[  477.071364][ T5846] Bluetooth: hci3: command tx timeout
[  477.455602][ T3540] hsr_slave_0: left promiscuous mode
[  477.475956][ T3540] hsr_slave_1: left promiscuous mode
[  477.540379][ T3540] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  477.565415][ T3540] batman_adv: batadv0: Removing interface: batadv_slave_0
[  477.607417][ T3540] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  477.614920][ T3540] batman_adv: batadv0: Removing interface: batadv_slave_1
[  477.722411][ T3540] veth1_macvtap: left promiscuous mode
[  477.742298][ T3540] veth0_macvtap: left promiscuous mode
[  477.766358][ T3540] veth1_vlan: left promiscuous mode
[  477.771761][ T3540] veth0_vlan: left promiscuous mode
[  478.235180][T13857] kexec: Could not allocate control_code_buffer
[  479.146177][ T5846] Bluetooth: hci3: command tx timeout
[  479.300777][ T3540] team_slave_1 (unregistering): left promiscuous mode
[  479.312498][ T3540] team0 (unregistering): Port device team_slave_1 removed
[  479.411562][ T3540] team_slave_0 (unregistering): left promiscuous mode
[  479.453958][ T3540] team0 (unregistering): Port device team_slave_0 removed
[  480.699218][T13765] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  480.751673][T13765] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  480.858742][T13765] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  480.954287][T13765] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  481.191777][T13765] 8021q: adding VLAN 0 to HW filter on device bond0
[  481.228685][ T5846] Bluetooth: hci3: command tx timeout
[  481.300944][T13765] 8021q: adding VLAN 0 to HW filter on device team0
[  481.334704][ T3496] bridge0: port 1(bridge_slave_0) entered blocking state
[  481.341922][ T3496] bridge0: port 1(bridge_slave_0) entered forwarding state
[  481.415890][ T3496] bridge0: port 2(bridge_slave_1) entered blocking state
[  481.423113][ T3496] bridge0: port 2(bridge_slave_1) entered forwarding state
[  482.104586][T13765] 8021q: adding VLAN 0 to HW filter on device batadv0
[  482.820574][T13765] veth0_vlan: entered promiscuous mode
[  482.833661][T13765] veth1_vlan: entered promiscuous mode
[  482.894228][T13765] veth0_macvtap: entered promiscuous mode
[  482.904175][T13765] veth1_macvtap: entered promiscuous mode
[  482.922688][T13765] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  482.933278][T13765] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  482.943702][T13765] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  482.954676][T13765] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  482.964657][T13765] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  482.975529][T13765] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  482.987943][T13765] batman_adv: batadv0: Interface activated: batadv_slave_0
[  482.999958][T13765] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  483.010880][T13765] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.020903][T13765] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  483.031496][T13765] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.041462][T13765] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  483.052438][T13765] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.065060][T13765] batman_adv: batadv0: Interface activated: batadv_slave_1
[  483.077156][T13765] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  483.086106][T13765] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  483.094855][T13765] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  483.103706][T13765] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  483.269740][ T3540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  483.277953][ T3540] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  483.284235][T13105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  483.338907][T13105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  486.075759][T14061] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2107'.
[  486.745013][T14076] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  486.784458][T14076] svc: failed to register nfsdv3 RPC service (errno 111).
[  486.840923][T14076] svc: failed to register nfsaclv3 RPC service (errno 111).
[  487.659131][T14110] ptrace attach of "./syz-executor exec"[5844] was attempted by ""[14110]
[  487.686299][T14110] HSR: entered promiscuous mode
[  489.613324][T14177] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2136'.
[  490.455050][ T3496] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  490.647571][ T3496] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  490.873797][ T3496] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  491.108055][   T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  491.125104][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  491.155904][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  491.171008][   T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  491.173568][ T3496] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  491.198366][   T54] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  491.211770][   T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  491.569116][ T3496] bridge_slave_1: left allmulticast mode
[  491.574874][ T3496] bridge_slave_1: left promiscuous mode
[  491.629290][ T3496] bridge0: port 2(bridge_slave_1) entered disabled state
[  491.764089][ T3496] bridge_slave_0: left allmulticast mode
[  491.771924][ T3496] bridge_slave_0: left promiscuous mode
[  491.782716][ T3496] bridge0: port 1(bridge_slave_0) entered disabled state
[  492.261669][ T3496] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  492.274047][ T3496] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  492.287736][ T3496] bond0 (unregistering): Released all slaves
[  492.617870][T14232] chnl_net:caif_netlink_parms(): no params data found
[  492.917069][T14282] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2160'.
[  493.202739][T14232] bridge0: port 1(bridge_slave_0) entered blocking state
[  493.223389][T14232] bridge0: port 1(bridge_slave_0) entered disabled state
[  493.239339][T14232] bridge_slave_0: entered allmulticast mode
[  493.256519][T14232] bridge_slave_0: entered promiscuous mode
[  493.304795][T14232] bridge0: port 2(bridge_slave_1) entered blocking state
[  493.315515][   T54] Bluetooth: hci1: command tx timeout
[  493.369606][T14232] bridge0: port 2(bridge_slave_1) entered disabled state
[  493.408349][T14232] bridge_slave_1: entered allmulticast mode
[  493.433984][T14232] bridge_slave_1: entered promiscuous mode
[  493.491567][ T3496] hsr_slave_0: left promiscuous mode
[  493.507993][ T3496] hsr_slave_1: left promiscuous mode
[  493.530545][ T3496] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  493.542028][ T3496] batman_adv: batadv0: Removing interface: batadv_slave_0
[  493.560767][ T3496] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  493.582221][ T3496] batman_adv: batadv0: Removing interface: batadv_slave_1
[  493.622239][ T3496] veth1_macvtap: left promiscuous mode
[  493.637256][ T3496] veth0_macvtap: left promiscuous mode
[  493.643024][ T3496] veth1_vlan: left promiscuous mode
[  493.654775][ T3496] veth0_vlan: left promiscuous mode
[  494.603351][ T3496] team0 (unregistering): Port device team_slave_1 removed
[  494.747667][ T3496] team0 (unregistering): Port device team_slave_0 removed
[  495.391402][   T54] Bluetooth: hci1: command tx timeout
[  495.694983][T14232] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  495.740637][T14232] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  495.818475][T14337] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  495.901767][T14337] svc: failed to register nfsdv3 RPC service (errno 111).
[  495.919524][T14337] svc: failed to register nfsaclv3 RPC service (errno 111).
[  495.990736][T14232] team0: Port device team_slave_0 added
[  496.014246][T14232] team0: Port device team_slave_1 added
[  496.176178][T14232] batman_adv: batadv0: Adding interface: batadv_slave_0
[  496.207487][T14232] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  496.266111][T14232] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  496.294167][T14232] batman_adv: batadv0: Adding interface: batadv_slave_1
[  496.313325][T14232] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  496.372069][T14232] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  496.663083][T14232] hsr_slave_0: entered promiscuous mode
[  496.680214][T14232] hsr_slave_1: entered promiscuous mode
[  496.706751][T14232] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  496.716007][T14232] Cannot create hsr debugfs directory
[  497.465451][   T54] Bluetooth: hci1: command tx timeout
[  497.499552][T14232] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  497.599962][T14232] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  497.652078][T14232] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  497.689290][T14232] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  498.141799][T14232] 8021q: adding VLAN 0 to HW filter on device bond0
[  498.204049][T14232] 8021q: adding VLAN 0 to HW filter on device team0
[  498.235097][ T3496] bridge0: port 1(bridge_slave_0) entered blocking state
[  498.242424][ T3496] bridge0: port 1(bridge_slave_0) entered forwarding state
[  498.329917][T13107] bridge0: port 2(bridge_slave_1) entered blocking state
[  498.337141][T13107] bridge0: port 2(bridge_slave_1) entered forwarding state
[  498.649870][T14380] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2180'.
[  499.070672][T14232] 8021q: adding VLAN 0 to HW filter on device batadv0
[  499.547937][   T54] Bluetooth: hci1: command tx timeout
[  499.659002][T14232] veth0_vlan: entered promiscuous mode
[  499.673428][T14232] veth1_vlan: entered promiscuous mode
[  499.698192][T14232] veth0_macvtap: entered promiscuous mode
[  499.748857][T14232] veth1_macvtap: entered promiscuous mode
[  499.776076][T14232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  499.786735][T14232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  499.815307][T14232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  499.826027][T14232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  499.835982][T14232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  499.846947][T14232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  499.858871][T14232] batman_adv: batadv0: Interface activated: batadv_slave_0
[  499.929209][T14232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  499.948182][T14232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  499.958161][T14232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  499.969319][T14232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  499.981172][T14232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  499.993347][T14232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.004741][T14232] batman_adv: batadv0: Interface activated: batadv_slave_1
[  500.015984][T14232] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  500.024766][T14232] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  500.036106][T14232] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  500.045858][T14232] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  500.333129][ T1338] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  500.372480][ T1338] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  500.464186][T13106] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  500.477527][T13106] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  501.823475][ T5846] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  501.835485][ T5846] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  501.844929][ T5846] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  501.855433][ T5846] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  501.875580][ T5846] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  501.883111][ T5846] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  502.465654][T14443] chnl_net:caif_netlink_parms(): no params data found
[  503.030756][T14477] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2193'.
[  503.194213][T14481] FAULT_INJECTION: forcing a failure.
[  503.194213][T14481] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  503.260722][T14481] CPU: 0 UID: 0 PID: 14481 Comm: syz.6.2194 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  503.271589][T14481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  503.281700][T14481] Call Trace:
[  503.285026][T14481]  <TASK>
[  503.288004][T14481]  dump_stack_lvl+0x16c/0x1f0
[  503.292747][T14481]  should_fail_ex+0x497/0x5b0
[  503.297491][T14481]  _copy_from_user+0x2e/0xd0
[  503.302155][T14481]  __sys_bpf+0x215/0x5780
[  503.306565][T14481]  ? __pfx___sys_bpf+0x10/0x10
[  503.311394][T14481]  ? vfs_write+0x306/0x1150
[  503.315969][T14481]  ? __pfx_vfs_write+0x10/0x10
[  503.320790][T14481]  ? do_sys_openat2+0xb1/0x1e0
[  503.325672][T14481]  ? ksys_write+0x1ad/0x260
[  503.330236][T14481]  ? __pfx_ksys_write+0x10/0x10
[  503.335155][T14481]  __x64_sys_bpf+0x78/0xc0
[  503.339643][T14481]  ? lockdep_hardirqs_on+0x7c/0x110
[  503.344922][T14481]  do_syscall_64+0xcd/0x250
[  503.349488][T14481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  503.355456][T14481] RIP: 0033:0x7f9e6af7e719
[  503.359922][T14481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  503.379590][T14481] RSP: 002b:00007f9e6bd9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  503.388164][T14481] RAX: ffffffffffffffda RBX: 00007f9e6b135f80 RCX: 00007f9e6af7e719
[  503.396191][T14481] RDX: 000000000000000f RSI: 00000000200001c0 RDI: 0000000000000002
[  503.404300][T14481] RBP: 00007f9e6bd9e090 R08: 0000000000000000 R09: 0000000000000000
[  503.412671][T14481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  503.420701][T14481] R13: 0000000000000000 R14: 00007f9e6b135f80 R15: 00007ffd6d1f3318
[  503.428737][T14481]  </TASK>
[  503.594359][T14487] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2195'.
[  503.817077][ T3540] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  503.881360][T14443] bridge0: port 1(bridge_slave_0) entered blocking state
[  503.890735][T14443] bridge0: port 1(bridge_slave_0) entered disabled state
[  503.898197][T14443] bridge_slave_0: entered allmulticast mode
[  503.906162][T14443] bridge_slave_0: entered promiscuous mode
[  503.915407][T14443] bridge0: port 2(bridge_slave_1) entered blocking state
[  503.922574][T14443] bridge0: port 2(bridge_slave_1) entered disabled state
[  503.929908][T14443] bridge_slave_1: entered allmulticast mode
[  503.937530][T14443] bridge_slave_1: entered promiscuous mode
[  503.957932][   T54] Bluetooth: hci4: command tx timeout
[  504.083444][ T3540] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  504.160344][T14443] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  504.226064][T14443] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  504.402430][ T3540] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  504.469577][T14443] team0: Port device team_slave_0 added
[  504.478438][T14443] team0: Port device team_slave_1 added
[  504.630407][ T3540] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  504.723134][T14443] batman_adv: batadv0: Adding interface: batadv_slave_0
[  504.730608][T14443] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  504.785327][T14443] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  504.820437][T14443] batman_adv: batadv0: Adding interface: batadv_slave_1
[  504.840925][T14443] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  504.910004][T14443] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  505.038745][T14443] hsr_slave_0: entered promiscuous mode
[  505.119143][T14443] hsr_slave_1: entered promiscuous mode
[  505.126369][T14443] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  505.134531][T14443] Cannot create hsr debugfs directory
[  505.568587][ T3540] bridge_slave_1: left allmulticast mode
[  505.574789][ T3540] bridge_slave_1: left promiscuous mode
[  505.601156][ T3540] bridge0: port 2(bridge_slave_1) entered disabled state
[  505.653131][ T3540] bridge_slave_0: left allmulticast mode
[  505.665018][ T3540] bridge_slave_0: left promiscuous mode
[  505.694129][ T3540] bridge0: port 1(bridge_slave_0) entered disabled state
[  506.033407][   T54] Bluetooth: hci4: command tx timeout
[  506.833644][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  506.840365][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  506.859312][ T3540] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  506.913755][ T3540] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  506.942070][ T3540] bond0 (unregistering): Released all slaves
[  507.083777][T14544] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2207'.
[  507.184469][ T3540] HSR: left promiscuous mode
[  507.395380][T14564] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2210'.
[  507.442388][T14564] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2210'.
[  507.647556][T14572] netlink: 350 bytes leftover after parsing attributes in process `syz.1.2212'.
[  508.105810][   T54] Bluetooth: hci4: command tx timeout
[  508.838448][T14443] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  508.893984][T14443] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  509.000959][T14443] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  509.126136][T14443] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  509.415317][T14443] 8021q: adding VLAN 0 to HW filter on device bond0
[  509.567973][T14443] 8021q: adding VLAN 0 to HW filter on device team0
[  509.698740][ T1338] bridge0: port 1(bridge_slave_0) entered blocking state
[  509.706003][ T1338] bridge0: port 1(bridge_slave_0) entered forwarding state
[  509.724539][ T1338] bridge0: port 2(bridge_slave_1) entered blocking state
[  509.731714][ T1338] bridge0: port 2(bridge_slave_1) entered forwarding state
[  510.279188][   T54] Bluetooth: hci4: command tx timeout
[  510.870082][T14646] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  510.961234][T14646] svc: failed to register nfsdv3 RPC service (errno 111).
[  510.975085][T14646] svc: failed to register nfsaclv3 RPC service (errno 111).
[  511.041152][T14443] 8021q: adding VLAN 0 to HW filter on device batadv0
[  511.122933][T14443] veth0_vlan: entered promiscuous mode
[  511.136877][T14443] veth1_vlan: entered promiscuous mode
[  511.162693][T14443] veth0_macvtap: entered promiscuous mode
[  511.203609][T14443] veth1_macvtap: entered promiscuous mode
[  511.226211][T14443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  511.246520][T14443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  511.265410][T14443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  511.277702][T14443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  511.302527][T14443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  511.324631][T14443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  511.344408][T14443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  511.399521][T14443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  511.445158][T14443] batman_adv: batadv0: Interface activated: batadv_slave_0
[  511.536110][T14443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  511.554817][T14443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  511.565581][T14443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  511.591363][T14443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  511.617946][T14443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  511.641757][T14443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  511.666989][T14443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  511.689185][T14443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  511.713630][T14443] batman_adv: batadv0: Interface activated: batadv_slave_1
[  511.735712][T14443] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  511.769657][T14443] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  511.785152][T14443] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  511.793953][T14443] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  512.868508][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  512.888466][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  513.194158][T13108] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  513.225560][T13108] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  514.517781][ T3540] hsr_slave_0: left promiscuous mode
[  514.809830][ T3540] hsr_slave_1: left promiscuous mode
[  514.929342][ T3540] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  514.946478][ T3540] batman_adv: batadv0: Removing interface: batadv_slave_0
[  515.117194][ T3540] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  515.135503][ T3540] batman_adv: batadv0: Removing interface: batadv_slave_1
[  515.194998][ T3540] veth1_macvtap: left promiscuous mode
[  515.251394][ T3540] veth0_macvtap: left promiscuous mode
[  515.280110][ T3540] veth1_vlan: left promiscuous mode
[  515.299216][ T3540] veth0_vlan: left promiscuous mode
[  515.363529][T14753] FAULT_INJECTION: forcing a failure.
[  515.363529][T14753] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  515.437394][T14753] CPU: 0 UID: 0 PID: 14753 Comm: syz.7.2241 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  515.448264][T14753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  515.458375][T14753] Call Trace:
[  515.461718][T14753]  <TASK>
[  515.464701][T14753]  dump_stack_lvl+0x16c/0x1f0
[  515.469443][T14753]  should_fail_ex+0x497/0x5b0
[  515.474187][T14753]  _copy_from_user+0x2e/0xd0
[  515.478845][T14753]  do_sock_getsockopt+0x319/0x870
[  515.483949][T14753]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  515.489584][T14753]  ? 0xffffffffff600000
[  515.493796][T14753]  ? __pfx_vfs_write+0x10/0x10
[  515.498627][T14753]  ? do_sys_openat2+0xb1/0x1e0
[  515.503482][T14753]  ? 0xffffffffff600000
[  515.507704][T14753]  __sys_getsockopt+0x1a1/0x270
[  515.512635][T14753]  ? __pfx___sys_getsockopt+0x10/0x10
[  515.518112][T14753]  ? ksys_write+0x1ad/0x260
[  515.522690][T14753]  ? __pfx_ksys_write+0x10/0x10
[  515.527622][T14753]  __x64_sys_getsockopt+0xbd/0x160
[  515.532817][T14753]  ? do_syscall_64+0x91/0x250
[  515.537562][T14753]  ? lockdep_hardirqs_on+0x7c/0x110
[  515.542848][T14753]  do_syscall_64+0xcd/0x250
[  515.547423][T14753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.553398][T14753] RIP: 0033:0x7f2fa9f7e719
[  515.557848][T14753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  515.577496][T14753] RSP: 002b:00007f2faad34038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  515.585944][T14753] RAX: ffffffffffffffda RBX: 00007f2faa135f80 RCX: 00007f2fa9f7e719
[  515.593941][T14753] RDX: 0000000000002715 RSI: 0000000000000114 RDI: 0000000000000000
[  515.601938][T14753] RBP: 00007f2faad34090 R08: 0000000000000000 R09: 0000000000000000
[  515.609947][T14753] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000001
[  515.617950][T14753] R13: 0000000000000000 R14: 00007f2faa135f80 R15: 00007fffe16a31a8
[  515.625956][T14753]  ? 0xffffffffff600000
[  515.630143][T14753]  </TASK>
[  515.996989][T14739] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2238'.
[  516.336568][T14770] FAULT_INJECTION: forcing a failure.
[  516.336568][T14770] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  516.387429][T14770] CPU: 0 UID: 0 PID: 14770 Comm: syz.7.2246 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  516.398342][T14770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  516.408457][T14770] Call Trace:
[  516.411781][T14770]  <TASK>
[  516.414760][T14770]  dump_stack_lvl+0x16c/0x1f0
[  516.419505][T14770]  should_fail_ex+0x497/0x5b0
[  516.424256][T14770]  _copy_to_iter+0x4a5/0x1400
[  516.429007][T14770]  ? _raw_spin_unlock+0x28/0x50
[  516.433943][T14770]  ? __pfx__copy_to_iter+0x10/0x10
[  516.439114][T14770]  ? __pfx___mutex_trylock_common+0x10/0x10
[  516.445080][T14770]  ? pipe_lock+0x64/0x80
[  516.449391][T14770]  ? __folio_put+0x312/0x3d0
[  516.454055][T14770]  ? __pfx___folio_put+0x10/0x10
[  516.459082][T14770]  copy_page_to_iter+0xf1/0x180
[  516.464006][T14770]  pipe_to_user+0xb0/0x170
[  516.468495][T14770]  ? anon_pipe_buf_release+0x11a/0x240
[  516.474045][T14770]  __splice_from_pipe+0x3a0/0x810
[  516.479143][T14770]  ? __pfx_pipe_to_user+0x10/0x10
[  516.484247][T14770]  __do_sys_vmsplice+0xa0f/0xef0
[  516.489259][T14770]  ? get_pid_task+0xfc/0x250
[  516.493912][T14770]  ? __pfx_lock_release+0x10/0x10
[  516.499012][T14770]  ? trace_lock_acquire+0x14a/0x1d0
[  516.504290][T14770]  ? __pfx___do_sys_vmsplice+0x10/0x10
[  516.509931][T14770]  ? ksys_write+0x12f/0x260
[  516.514497][T14770]  ? ksys_write+0x21e/0x260
[  516.519044][T14770]  ? __pfx_lock_release+0x10/0x10
[  516.524137][T14770]  ? __fget_files+0x244/0x3f0
[  516.528849][T14770]  ? fput+0x30/0x390
[  516.532784][T14770]  ? ksys_write+0x1ad/0x260
[  516.537321][T14770]  ? __pfx_ksys_write+0x10/0x10
[  516.542213][T14770]  ? do_syscall_64+0xcd/0x250
[  516.546932][T14770]  do_syscall_64+0xcd/0x250
[  516.551470][T14770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  516.557416][T14770] RIP: 0033:0x7f2fa9f7e719
[  516.561858][T14770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  516.581500][T14770] RSP: 002b:00007f2faad13038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[  516.589958][T14770] RAX: ffffffffffffffda RBX: 00007f2faa136058 RCX: 00007f2fa9f7e719
[  516.597959][T14770] RDX: 0000000000000003 RSI: 0000000020000040 RDI: 0000000000000004
[  516.605958][T14770] RBP: 00007f2faad13090 R08: 0000000000000000 R09: 0000000000000000
[  516.613987][T14770] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[  516.622004][T14770] R13: 0000000000000001 R14: 00007f2faa136058 R15: 00007fffe16a31a8
[  516.630028][T14770]  </TASK>
[  518.542181][ T3540] team_slave_1 (unregistering): left promiscuous mode
[  518.574593][ T3540] team0 (unregistering): Port device team_slave_1 removed
[  518.702506][ T3540] team_slave_0 (unregistering): left promiscuous mode
[  518.737652][ T3540] team0 (unregistering): Port device team_slave_0 removed
[  523.412770][T14869] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2268'.
[  523.459570][T14869] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2268'.
[  526.013977][T14937] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2281'.
[  526.856564][T14925] kexec: Could not allocate control_code_buffer
[  527.151598][T14969] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2291'.
[  527.450430][T14959] netlink: 'syz.6.2288': attribute type 2 has an invalid length.
[  527.607897][T14988] FAULT_INJECTION: forcing a failure.
[  527.607897][T14988] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  527.650704][T14988] CPU: 1 UID: 0 PID: 14988 Comm: syz.0.2295 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  527.661572][T14988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  527.671947][T14988] Call Trace:
[  527.675367][T14988]  <TASK>
[  527.678347][T14988]  dump_stack_lvl+0x16c/0x1f0
[  527.683091][T14988]  should_fail_ex+0x497/0x5b0
[  527.687842][T14988]  _copy_to_iter+0x4a5/0x1400
[  527.692582][T14988]  ? _raw_spin_unlock+0x28/0x50
[  527.697482][T14988]  ? __pfx__copy_to_iter+0x10/0x10
[  527.702656][T14988]  ? __folio_put+0x312/0x3d0
[  527.707335][T14988]  ? __pfx___folio_put+0x10/0x10
[  527.712511][T14988]  copy_page_to_iter+0xf1/0x180
[  527.717414][T14988]  pipe_to_user+0xb0/0x170
[  527.721880][T14988]  ? anon_pipe_buf_release+0x11a/0x240
[  527.727385][T14988]  __splice_from_pipe+0x3a0/0x810
[  527.732461][T14988]  ? __pfx_pipe_to_user+0x10/0x10
[  527.737539][T14988]  __do_sys_vmsplice+0xa0f/0xef0
[  527.742532][T14988]  ? get_pid_task+0xfc/0x250
[  527.747159][T14988]  ? __pfx_lock_release+0x10/0x10
[  527.752228][T14988]  ? trace_lock_acquire+0x14a/0x1d0
[  527.757471][T14988]  ? __pfx___do_sys_vmsplice+0x10/0x10
[  527.762986][T14988]  ? ksys_write+0x12f/0x260
[  527.767530][T14988]  ? ksys_write+0x21e/0x260
[  527.772066][T14988]  ? __pfx_lock_release+0x10/0x10
[  527.777163][T14988]  ? __fget_files+0x244/0x3f0
[  527.781898][T14988]  ? fput+0x30/0x390
[  527.785849][T14988]  ? ksys_write+0x1ad/0x260
[  527.790408][T14988]  ? __pfx_ksys_write+0x10/0x10
[  527.795303][T14988]  ? do_syscall_64+0xcd/0x250
[  527.800008][T14988]  do_syscall_64+0xcd/0x250
[  527.804551][T14988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  527.810497][T14988] RIP: 0033:0x7fad30d7e719
[  527.814946][T14988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  527.834686][T14988] RSP: 002b:00007fad31bd0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[  527.843149][T14988] RAX: ffffffffffffffda RBX: 00007fad30f36058 RCX: 00007fad30d7e719
[  527.851147][T14988] RDX: 0000000000000003 RSI: 0000000020000040 RDI: 0000000000000004
[  527.859157][T14988] RBP: 00007fad31bd0090 R08: 0000000000000000 R09: 0000000000000000
[  527.867152][T14988] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[  527.875146][T14988] R13: 0000000000000001 R14: 00007fad30f36058 R15: 00007ffcce1ce1b8
[  527.883161][T14988]  </TASK>
[  529.611460][T15039] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2310'.
[  529.625454][T15039] delete_channel: no stack
[  531.106093][T15066] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2320'.
[  531.287651][T15086] netlink: 'syz.6.2323': attribute type 1 has an invalid length.
[  539.871135][T15302] netlink: 'syz.1.2366': attribute type 6 has an invalid length.
[  539.960884][T15302] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2366'.
[  546.838067][T15457] netlink: 'syz.7.2389': attribute type 3 has an invalid length.
[  547.566446][T15481] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2394'.
[  549.324134][   T29] audit: type=1326 audit(8277292067.459:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15522 comm="syz.0.2401" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fad30d7e719 code=0x0
[  549.976108][T15542] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2403'.
[  550.143627][T15541] netlink: 'syz.6.2402': attribute type 11 has an invalid length.
[  561.385289][T15717] kexec: Could not allocate control_code_buffer
[  561.698634][T15742] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  561.715353][T15742] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  561.724071][T15742] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  561.769747][T15744] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  561.789775][T15744] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  561.798971][T15744] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  562.558385][T15741] chnl_net:caif_netlink_parms(): no params data found
[  562.657960][ T3540] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  562.929535][ T3540] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  563.182499][ T3540] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  563.469131][ T3540] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  563.542383][T15741] bridge0: port 1(bridge_slave_0) entered blocking state
[  563.603210][T15741] bridge0: port 1(bridge_slave_0) entered disabled state
[  563.610517][T15741] bridge_slave_0: entered allmulticast mode
[  563.651418][T15741] bridge_slave_0: entered promiscuous mode
[  563.683049][T15741] bridge0: port 2(bridge_slave_1) entered blocking state
[  563.690644][T15741] bridge0: port 2(bridge_slave_1) entered disabled state
[  563.698240][T15741] bridge_slave_1: entered allmulticast mode
[  563.711404][T15741] bridge_slave_1: entered promiscuous mode
[  563.748946][T15785] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2458'.
[  563.789962][T15741] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  563.810198][T15785] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2458'.
[  563.838354][T15741] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  564.015211][ T3540] bridge_slave_1: left allmulticast mode
[  564.031182][ T3540] bridge_slave_1: left promiscuous mode
[  564.038095][   T54] Bluetooth: hci2: command tx timeout
[  564.048156][ T3540] bridge0: port 2(bridge_slave_1) entered disabled state
[  564.072236][ T3540] bridge_slave_0: left allmulticast mode
[  564.078077][ T3540] bridge_slave_0: left promiscuous mode
[  564.086116][ T3540] bridge0: port 1(bridge_slave_0) entered disabled state
[  564.696271][ T3540] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  564.711528][ T3540] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  564.728831][ T3540] bond0 (unregistering): Released all slaves
[  564.771908][T15741] team0: Port device team_slave_0 added
[  564.901442][T15741] team0: Port device team_slave_1 added
[  564.931129][ T3540] &SR: left promiscuous mode
[  564.955541][T15797] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2461'.
[  565.004508][T15741] batman_adv: batadv0: Adding interface: batadv_slave_0
[  565.015350][T15741] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  565.042035][T15741] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  565.054644][ T3540] HSR: left promiscuous mode
[  565.079600][T15741] batman_adv: batadv0: Adding interface: batadv_slave_1
[  565.088133][T15741] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  565.114794][T15741] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  565.313033][T15741] hsr_slave_0: entered promiscuous mode
[  565.331556][T15741] hsr_slave_1: entered promiscuous mode
[  566.307583][   T54] Bluetooth: hci2: command tx timeout
[  566.697389][T15741] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  566.717842][T15741] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  566.736129][T15741] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  566.802741][T15741] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  567.395184][T15741] 8021q: adding VLAN 0 to HW filter on device bond0
[  567.503975][T15741] 8021q: adding VLAN 0 to HW filter on device team0
[  567.572350][   T75] bridge0: port 1(bridge_slave_0) entered blocking state
[  567.579512][   T75] bridge0: port 1(bridge_slave_0) entered forwarding state
[  567.632555][   T75] bridge0: port 2(bridge_slave_1) entered blocking state
[  567.639760][   T75] bridge0: port 2(bridge_slave_1) entered forwarding state
[  568.582773][   T54] Bluetooth: hci2: command tx timeout
[  568.618184][T15741] 8021q: adding VLAN 0 to HW filter on device batadv0
[  568.709978][T15741] veth0_vlan: entered promiscuous mode
[  568.723218][T15741] veth1_vlan: entered promiscuous mode
[  568.749263][T15741] veth0_macvtap: entered promiscuous mode
[  568.759925][T15741] veth1_macvtap: entered promiscuous mode
[  568.784271][T15741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  568.794851][T15741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  568.804778][T15741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  568.815645][T15741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  568.826246][T15741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  568.836857][T15741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  568.846789][T15741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  568.857524][T15741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  568.869184][T15741] batman_adv: batadv0: Interface activated: batadv_slave_0
[  568.894624][T15741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  568.905552][T15741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  568.936437][T15741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  568.957896][T15741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  568.973731][T15741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  568.984916][T15741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  568.995264][T15741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  569.007329][T15741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  569.032289][T15741] batman_adv: batadv0: Interface activated: batadv_slave_1
[  569.216448][T15741] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  569.235287][T15741] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  569.258888][T15741] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  569.295349][T15741] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  569.705958][   T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  569.716877][   T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  569.726578][T15919] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2493'.
[  569.870212][T13107] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  569.903489][T13107] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  569.957057][T15925] svc: failed to register nfsdv3 RPC service (errno 111).
[  569.981660][T15925] svc: failed to register nfsaclv3 RPC service (errno 111).
[  570.127889][ T3540] hsr_slave_0: left promiscuous mode
[  570.158151][ T3540] hsr_slave_1: left promiscuous mode
[  570.180845][ T3540] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  570.219773][ T3540] batman_adv: batadv0: Removing interface: batadv_slave_0
[  570.305527][ T3540] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  570.338187][ T3540] batman_adv: batadv0: Removing interface: batadv_slave_1
[  570.499199][ T3540] veth1_macvtap: left promiscuous mode
[  570.505693][ T3540] veth0_macvtap: left promiscuous mode
[  570.524506][ T3540] veth1_vlan: left promiscuous mode
[  570.546454][ T3540] veth0_vlan: left promiscuous mode
[  571.725990][T15961] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2502'.
[  572.346542][ T3540] team_slave_1 (unregistering): left promiscuous mode
[  572.367865][ T3540] team0 (unregistering): Port device team_slave_1 removed
[  572.496688][ T3540] team_slave_0 (unregistering): left promiscuous mode
[  572.523456][ T3540] team0 (unregistering): Port device team_slave_0 removed
[  573.605891][T15958] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2502'.
[  573.652532][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  573.659395][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  574.459890][ T3540] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  574.820178][T15744] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  574.830058][T15744] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  574.844596][T15744] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  574.852994][T15744] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  574.865764][ T3540] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  574.880222][T15744] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  574.888824][T15744] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  574.970120][T15999] lo: entered promiscuous mode
[  575.107499][ T3540] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  575.216636][ T3540] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  575.256590][T15994] lo: left promiscuous mode
[  575.529064][ T3540] bridge_slave_1: left allmulticast mode
[  575.546233][ T3540] bridge_slave_1: left promiscuous mode
[  575.552085][ T3540] bridge0: port 2(bridge_slave_1) entered disabled state
[  575.690320][ T3540] bridge_slave_0: left allmulticast mode
[  575.696062][ T3540] bridge_slave_0: left promiscuous mode
[  575.702678][ T3540] bridge0: port 1(bridge_slave_0) entered disabled state
[  575.761598][T16020] netlink: 350 bytes leftover after parsing attributes in process `syz.7.2517'.
[  576.379151][ T3540] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  576.391178][ T3540] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  576.403853][ T3540] bond0 (unregistering): Released all slaves
[  576.633828][T15997] chnl_net:caif_netlink_parms(): no params data found
[  577.136958][   T54] Bluetooth: hci0: command tx timeout
[  577.200139][T15997] bridge0: port 1(bridge_slave_0) entered blocking state
[  577.210344][T15997] bridge0: port 1(bridge_slave_0) entered disabled state
[  577.243178][T15997] bridge_slave_0: entered allmulticast mode
[  577.258160][T15997] bridge_slave_0: entered promiscuous mode
[  577.330071][T15997] bridge0: port 2(bridge_slave_1) entered blocking state
[  577.340354][T15997] bridge0: port 2(bridge_slave_1) entered disabled state
[  577.350541][T15997] bridge_slave_1: entered allmulticast mode
[  577.365582][T15997] bridge_slave_1: entered promiscuous mode
[  577.484139][T15997] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  577.531249][ T3540] hsr_slave_0: left promiscuous mode
[  577.549204][ T3540] hsr_slave_1: left promiscuous mode
[  577.556346][ T3540] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  577.568698][ T3540] batman_adv: batadv0: Removing interface: batadv_slave_0
[  577.582719][ T3540] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  577.593233][ T3540] batman_adv: batadv0: Removing interface: batadv_slave_1
[  577.631746][ T3540] veth1_macvtap: left promiscuous mode
[  577.637374][ T3540] veth0_macvtap: left promiscuous mode
[  577.647431][ T3540] veth1_vlan: left promiscuous mode
[  577.655904][ T3540] veth0_vlan: left promiscuous mode
[  578.833612][ T3540] team0 (unregistering): Port device team_slave_1 removed
[  578.961259][ T3540] team0 (unregistering): Port device team_slave_0 removed
[  579.450298][   T54] Bluetooth: hci0: command tx timeout
[  580.078409][T15997] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  580.214753][T15997] team0: Port device team_slave_0 added
[  580.223932][T15997] team0: Port device team_slave_1 added
[  580.351734][T15997] batman_adv: batadv0: Adding interface: batadv_slave_0
[  580.366844][T15997] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  580.426794][T15997] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  580.468502][T15997] batman_adv: batadv0: Adding interface: batadv_slave_1
[  580.500128][T15997] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  580.551524][T15997] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  580.682274][T16092] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2530'.
[  580.733803][T16092] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2530'.
[  580.825615][T15997] hsr_slave_0: entered promiscuous mode
[  580.868611][T15997] hsr_slave_1: entered promiscuous mode
[  581.664982][   T54] Bluetooth: hci0: command tx timeout
[  581.921603][T15997] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  581.983599][T15997] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  582.011193][T15997] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  582.043515][T15997] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  582.337153][T15997] 8021q: adding VLAN 0 to HW filter on device bond0
[  582.389919][T15997] 8021q: adding VLAN 0 to HW filter on device team0
[  582.463792][ T1338] bridge0: port 1(bridge_slave_0) entered blocking state
[  582.471045][ T1338] bridge0: port 1(bridge_slave_0) entered forwarding state
[  582.499308][ T1338] bridge0: port 2(bridge_slave_1) entered blocking state
[  582.506606][ T1338] bridge0: port 2(bridge_slave_1) entered forwarding state
[  582.609924][T15997] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  582.657118][T15997] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  583.250589][T15997] 8021q: adding VLAN 0 to HW filter on device batadv0
[  583.292397][T15997] veth0_vlan: entered promiscuous mode
[  583.305541][T15997] veth1_vlan: entered promiscuous mode
[  583.339894][T15997] veth0_macvtap: entered promiscuous mode
[  583.350108][T15997] veth1_macvtap: entered promiscuous mode
[  583.369058][T15997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  583.380044][T15997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  583.390124][T15997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  583.400686][T15997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  583.411191][T15997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  583.422289][T15997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  583.433581][T15997] batman_adv: batadv0: Interface activated: batadv_slave_0
[  583.443738][T15997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  583.454308][T15997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  583.464267][T15997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  583.474745][T15997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  583.484857][T15997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  583.495585][T15997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  583.506948][T15997] batman_adv: batadv0: Interface activated: batadv_slave_1
[  583.518208][T15997] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  583.527192][T15997] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  583.536089][T15997] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  583.545081][T15997] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  583.820615][T13108] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  583.854030][T13108] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  583.940157][   T54] Bluetooth: hci0: command tx timeout
[  584.040926][T13108] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  584.061661][T13108] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  585.800852][T16243] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2558'.
[  586.237492][T16257] lo: entered promiscuous mode
[  586.477557][T16249] lo: left promiscuous mode
[  587.148250][T16285] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  587.232766][T16285] svc: failed to register nfsdv3 RPC service (errno 111).
[  587.269390][T16285] svc: failed to register nfsaclv3 RPC service (errno 111).
[  587.952763][T16299] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2566'.
[  590.365136][T16354] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2583'.
[  590.384912][T16353] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2582'.
[  590.412942][T16354] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2583'.
[  591.506286][T16375] FAULT_INJECTION: forcing a failure.
[  591.506286][T16375] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  591.546775][T16375] CPU: 1 UID: 0 PID: 16375 Comm: syz.1.2588 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  591.557897][T16375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  591.568004][T16375] Call Trace:
[  591.571313][T16375]  <TASK>
[  591.574269][T16375]  dump_stack_lvl+0x16c/0x1f0
[  591.578986][T16375]  should_fail_ex+0x497/0x5b0
[  591.583701][T16375]  _copy_from_user+0x2e/0xd0
[  591.588377][T16375]  memdup_user+0x71/0xd0
[  591.592692][T16375]  strndup_user+0x78/0xe0
[  591.597067][T16375]  __do_sys_keyctl+0x40b/0x590
[  591.601898][T16375]  do_syscall_64+0xcd/0x250
[  591.606494][T16375]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.612623][T16375] RIP: 0033:0x7f649cb7e719
[  591.617144][T16375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  591.636911][T16375] RSP: 002b:00007f649d925038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  591.645401][T16375] RAX: ffffffffffffffda RBX: 00007f649cd35f80 RCX: 00007f649cb7e719
[  591.653523][T16375] RDX: 0000000000000009 RSI: 000000000000a109 RDI: 0000000000000001
[  591.661549][T16375] RBP: 00007f649d925090 R08: 0000000000000003 R09: 0000000000000000
[  591.669615][T16375] R10: 0000000000000014 R11: 0000000000000246 R12: 0000000000000001
[  591.677628][T16375] R13: 0000000000000000 R14: 00007f649cd35f80 R15: 00007fffe10d8648
[  591.685655][T16375]  </TASK>
[  592.405238][   T29] audit: type=1326 audit(8277292106.946:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16388 comm="syz.0.2592" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fad30d7e719 code=0x0
[  593.327154][T16413] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2599'.
[  593.355849][T16413] 8021q: adding VLAN 0 to HW filter on device team0
[  593.390593][T16417] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2599'.
[  593.672928][T16424] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2601'.
[  593.741264][T16424] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2601'.
[  595.175355][T16451] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2610'.
[  595.224216][T16448] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2610'.
[  595.517051][T16454] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2611'.
[  603.447449][T16597] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2654'.
[  603.833009][T15744] Bluetooth: hci3: command 0x0406 tx timeout
[  604.099309][T16605] mmap: syz.1.2656 (16605): VmData 37597184 exceed data ulimit 15. Update limits or use boot option ignore_rlimit_data.
[  605.393869][T16645] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2666'.
[  607.101454][T16677] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  607.183837][T16677] svc: failed to register nfsdv3 RPC service (errno 111).
[  607.243954][T16677] svc: failed to register nfsaclv3 RPC service (errno 111).
[  608.036473][T16693] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2681'.
[  608.587546][T16707] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2687'.
[  608.782620][T16711] netlink: 40 bytes leftover after parsing attributes in process `syz.7.2688'.
[  609.529534][T16723] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2691'.
[  613.298414][T16807] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2715'.
[  613.354596][T16807] team0: entered promiscuous mode
[  613.359726][T16807] team_slave_0: entered promiscuous mode
[  613.395545][T16807] team_slave_1: entered promiscuous mode
[  618.641305][T16893] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2742'.
[  620.319609][   T29] audit: type=1800 audit(8277292132.535:15): pid=16923 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2751" name="SYSV00000002" dev="hugetlbfs" ino=0 res=0 errno=0
[  626.167057][T15744] Bluetooth: hci1: command 0x0406 tx timeout
[  626.931149][T17031] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2779'.
[  633.606858][T17127] FAULT_INJECTION: forcing a failure.
[  633.606858][T17127] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  633.676428][T17127] CPU: 0 UID: 0 PID: 17127 Comm: syz.6.2806 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  633.687300][T17127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  633.697410][T17127] Call Trace:
[  633.700738][T17127]  <TASK>
[  633.703718][T17127]  dump_stack_lvl+0x16c/0x1f0
[  633.708465][T17127]  should_fail_ex+0x497/0x5b0
[  633.713222][T17127]  _copy_to_user+0x32/0xd0
[  633.717716][T17127]  simple_read_from_buffer+0xd0/0x160
[  633.723263][T17127]  proc_fail_nth_read+0x198/0x270
[  633.728360][T17127]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  633.733985][T17127]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  633.739612][T17127]  vfs_read+0x1df/0xbe0
[  633.743833][T17127]  ? __fget_files+0x23a/0x3f0
[  633.748584][T17127]  ? fdget_pos+0x24c/0x360
[  633.753068][T17127]  ? __pfx_lock_release+0x10/0x10
[  633.758170][T17127]  ? trace_lock_acquire+0x14a/0x1d0
[  633.763437][T17127]  ? __pfx_vfs_read+0x10/0x10
[  633.768176][T17127]  ? __pfx___mutex_lock+0x10/0x10
[  633.773268][T17127]  ? __fget_files+0x244/0x3f0
[  633.778013][T17127]  ksys_read+0x12f/0x260
[  633.782317][T17127]  ? __pfx_ksys_read+0x10/0x10
[  633.787156][T17127]  do_syscall_64+0xcd/0x250
[  633.791721][T17127]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  633.797690][T17127] RIP: 0033:0x7f9e6af7d15c
[  633.802191][T17127] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  633.821868][T17127] RSP: 002b:00007f9e6bd9e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  633.830347][T17127] RAX: ffffffffffffffda RBX: 00007f9e6b135f80 RCX: 00007f9e6af7d15c
[  633.838381][T17127] RDX: 000000000000000f RSI: 00007f9e6bd9e0a0 RDI: 0000000000000003
[  633.846410][T17127] RBP: 00007f9e6bd9e090 R08: 0000000000000000 R09: 0000000000000000
[  633.854444][T17127] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000001
[  633.862475][T17127] R13: 0000000000000001 R14: 00007f9e6b135f80 R15: 00007ffd6d1f3318
[  633.870553][T17127]  </TASK>
[  633.954421][T17126] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2807'.
[  635.506395][T17151] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  635.616711][T17151] svc: failed to register nfsdv3 RPC service (errno 111).
[  635.663547][T17159] netlink: 350 bytes leftover after parsing attributes in process `syz.1.2815'.
[  635.680237][T17151] svc: failed to register nfsaclv3 RPC service (errno 111).
[  635.821678][T17162] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2815'.
[  637.369548][T15744] Bluetooth: hci4: command 0x0406 tx timeout
[  637.675436][T17202] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2825'.
[  637.688944][T17202] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2825'.
[  639.803191][T17244] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2836'.
[  639.813323][T17244] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2836'.
[  639.822453][T17244] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2836'.
[  639.835811][T17244] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2836'.
[  639.877891][T17244] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2836'.
[  639.893245][T17244] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2836'.
[  639.960348][T17244] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2836'.
[  639.969795][T17244] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2836'.
[  639.979486][T17244] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2836'.
[  639.995408][T17244] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2836'.
[  640.659282][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  640.667783][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  644.115290][T17346] svc: failed to register nfsdv3 RPC service (errno 111).
[  644.133330][T17346] svc: failed to register nfsaclv3 RPC service (errno 111).
[  645.216745][T17369] netlink: 'syz.1.2869': attribute type 1 has an invalid length.
[  645.616046][T17379] __nla_validate_parse: 26 callbacks suppressed
[  645.616077][T17379] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2871'.
[  645.660549][T17379] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2871'.
[  647.901566][T17430] svc: failed to register nfsdv3 RPC service (errno 111).
[  647.925451][T17430] svc: failed to register nfsaclv3 RPC service (errno 111).
[  652.063784][T17514] syz.0.2908 (17514): attempted to duplicate a private mapping with mremap.  This is not supported.
[  652.883594][ T3540] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  653.058027][ T3540] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  653.292480][ T3540] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  653.628507][ T3540] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  653.833737][T15744] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  653.843394][T15744] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  653.852919][T15744] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  653.871238][T15744] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  653.883612][T15744] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  653.891357][T15744] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  654.290667][ T3540] bridge_slave_1: left allmulticast mode
[  654.296438][ T3540] bridge_slave_1: left promiscuous mode
[  654.307558][ T3540] bridge0: port 2(bridge_slave_1) entered disabled state
[  654.717866][ T3540] bridge_slave_0: left allmulticast mode
[  654.731937][ T3540] bridge_slave_0: left promiscuous mode
[  654.756743][ T3540] bridge0: port 1(bridge_slave_0) entered disabled state
[  655.035920][T17558] netlink: 350 bytes leftover after parsing attributes in process `syz.7.2916'.
[  655.599904][ T3540] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  655.629759][ T3540] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  655.653568][ T3540] bond0 (unregistering): Released all slaves
[  656.187395][T17540] chnl_net:caif_netlink_parms(): no params data found
[  656.195776][   T54] Bluetooth: hci2: command tx timeout
[  656.596486][T17540] bridge0: port 1(bridge_slave_0) entered blocking state
[  656.609067][T17540] bridge0: port 1(bridge_slave_0) entered disabled state
[  656.627485][T17540] bridge_slave_0: entered allmulticast mode
[  656.655275][T17540] bridge_slave_0: entered promiscuous mode
[  656.735998][T17540] bridge0: port 2(bridge_slave_1) entered blocking state
[  656.755371][T17540] bridge0: port 2(bridge_slave_1) entered disabled state
[  656.784576][T17540] bridge_slave_1: entered allmulticast mode
[  656.792498][T17540] bridge_slave_1: entered promiscuous mode
[  656.955624][T17540] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  656.983801][T17540] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  657.176153][T17540] team0: Port device team_slave_0 added
[  657.261995][T17540] team0: Port device team_slave_1 added
[  657.356776][T17540] batman_adv: batadv0: Adding interface: batadv_slave_0
[  657.387455][T17540] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  657.407525][    C0] ==================================================================
[  657.416609][    C1] ------------[ cut here ]------------
[  657.421460][    C0] BUG: KASAN: slab-use-after-free in __rhashtable_lookup.constprop.0+0x426/0x550
[  657.421521][    C0] Read of size 4 at addr ffff88803482e008 by task ksoftirqd/0/16
[  657.427192][    C1] UBSAN: shift-out-of-bounds in lib/rhashtable.c:1188:34
[  657.436277][    C0] 
[  657.436292][    C0] CPU: 0 UID: 0 PID: 16 Comm: ksoftirqd/0 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  657.436333][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  657.444081][    C1] shift exponent 4294936704 is too large for 32-bit type 'int'
[  657.451041][    C0] Call Trace:
[  657.451056][    C0]  <TASK>
[  657.451071][    C0]  dump_stack_lvl+0x116/0x1f0
[  657.492697][    C0]  print_report+0xc3/0x620
[  657.497161][    C0]  ? __virt_addr_valid+0x5e/0x590
[  657.502232][    C0]  ? __phys_addr+0xc6/0x150
[  657.506858][    C0]  kasan_report+0xd9/0x110
[  657.511318][    C0]  ? __rhashtable_lookup.constprop.0+0x426/0x550
[  657.517686][    C0]  ? __rhashtable_lookup.constprop.0+0x426/0x550
[  657.524147][    C0]  __rhashtable_lookup.constprop.0+0x426/0x550
[  657.530343][    C0]  ? lock_acquire+0x2f/0xb0
[  657.534890][    C0]  ? ila_nf_input+0x1bd/0x620
[  657.539604][    C0]  ila_nf_input+0x1ee/0x620
[  657.544185][    C0]  ? __pfx_ila_nf_input+0x10/0x10
[  657.549248][    C0]  nf_hook_slow+0xbb/0x200
[  657.553715][    C0]  nf_hook.constprop.0+0x42e/0x750
[  657.558852][    C0]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  657.564085][    C0]  ? __pfx_nf_hook.constprop.0+0x10/0x10
[  657.569774][    C0]  ? sock_wfree+0x46a/0x880
[  657.574310][    C0]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  657.579542][    C0]  ? __pfx_ipv6_rcv+0x10/0x10
[  657.584253][    C0]  ipv6_rcv+0xa4/0x680
[  657.588350][    C0]  ? __pfx_ipv6_rcv+0x10/0x10
[  657.593052][    C0]  __netif_receive_skb_one_core+0x12e/0x1e0
[  657.599018][    C0]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  657.605482][    C0]  ? trace_lock_acquire+0x14a/0x1d0
[  657.610805][    C0]  ? process_backlog+0x3f1/0x15f0
[  657.615874][    C0]  ? process_backlog+0x3f1/0x15f0
[  657.620940][    C0]  __netif_receive_skb+0x1d/0x160
[  657.626007][    C0]  process_backlog+0x443/0x15f0
[  657.630905][    C0]  __napi_poll.constprop.0+0xb7/0x550
[  657.636324][    C0]  net_rx_action+0xa92/0x1010
[  657.641046][    C0]  ? __pfx_net_rx_action+0x10/0x10
[  657.646205][    C0]  ? __switch_to+0x749/0x1180
[  657.650916][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  657.656158][    C0]  ? sched_clock+0x38/0x60
[  657.660616][    C0]  ? sched_clock_cpu+0x6d/0x4d0
[  657.665521][    C0]  handle_softirqs+0x213/0x8f0
[  657.670318][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  657.675630][    C0]  ? rcu_is_watching+0x12/0xc0
[  657.680424][    C0]  ? __pfx_run_ksoftirqd+0x10/0x10
[  657.685590][    C0]  ? smpboot_thread_fn+0x59d/0xa30
[  657.690731][    C0]  run_ksoftirqd+0x3a/0x60
[  657.695175][    C0]  smpboot_thread_fn+0x661/0xa30
[  657.700141][    C0]  ? __kthread_parkme+0x148/0x220
[  657.705195][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  657.710685][    C0]  kthread+0x2c1/0x3a0
[  657.714780][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  657.720022][    C0]  ? __pfx_kthread+0x10/0x10
[  657.724646][    C0]  ret_from_fork+0x45/0x80
[  657.729088][    C0]  ? __pfx_kthread+0x10/0x10
[  657.733713][    C0]  ret_from_fork_asm+0x1a/0x30
[  657.738571][    C0]  </TASK>
[  657.741614][    C0] 
[  657.741619][    C1] CPU: 1 UID: 0 PID: 25 Comm: kworker/1:0 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  657.743940][    C0] Allocated by task 51:
[  657.754628][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  657.758774][    C0]  kasan_save_stack+0x33/0x60
[  657.768825][    C1] Workqueue: events_power_efficient gc_worker
[  657.773502][    C0]  kasan_save_track+0x14/0x30
[  657.779579][    C1] 
[  657.779591][    C1] Call Trace:
[  657.784242][    C0]  __kasan_kmalloc+0xaa/0xb0
[  657.786568][    C1]  <IRQ>
[  657.789859][    C0]  __kmalloc_node_noprof+0x211/0x440
[  657.794444][    C1]  dump_stack_lvl+0x16c/0x1f0
[  657.797283][    C0]  __kvmalloc_node_noprof+0xad/0x1a0
[  657.802560][    C1]  __ubsan_handle_shift_out_of_bounds+0x2a5/0x480
[  657.807223][    C0]  bucket_table_alloc.isra.0+0x86/0x460
[  657.812528][    C1]  __rht_bucket_nested.cold+0x18/0x14a
[  657.818988][    C0]  rhashtable_rehash_alloc+0x68/0x120
[  657.824532][    C1]  rht_bucket_nested+0x1a/0x40
[  657.830091][    C0]  rht_deferred_worker+0x1882/0x1fd0
[  657.835457][    C1]  __rhashtable_lookup.constprop.0+0x419/0x550
[  657.840207][    C0]  process_one_work+0x958/0x1b30
[  657.845526][    C1]  ? lock_acquire+0x2f/0xb0
[  657.851660][    C0]  worker_thread+0x6c8/0xf00
[  657.856590][    C1]  ? ila_nf_input+0x1bd/0x620
[  657.861076][    C0]  kthread+0x2c1/0x3a0
[  657.865679][    C1]  ila_nf_input+0x1ee/0x620
[  657.870346][    C0]  ret_from_fork+0x45/0x80
[  657.874450][    C1]  ? __pfx_ila_nf_input+0x10/0x10
[  657.878947][    C0]  ret_from_fork_asm+0x1a/0x30
[  657.883358][    C1]  nf_hook_slow+0xbb/0x200
[  657.888457][    C0] 
[  657.888467][    C0] Freed by task 3540:
[  657.893314][    C1]  nf_hook.constprop.0+0x42e/0x750
[  657.897708][    C0]  kasan_save_stack+0x33/0x60
[  657.900064][    C1]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  657.904036][    C0]  kasan_save_track+0x14/0x30
[  657.909150][    C1]  ? __pfx_nf_hook.constprop.0+0x10/0x10
[  657.913809][    C0]  kasan_save_free_info+0x3b/0x60
[  657.919004][    C1]  ? sock_wfree+0x46a/0x880
[  657.923792][    C0]  __kasan_slab_free+0x51/0x70
[  657.929431][    C1]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  657.934436][    C0]  kfree+0x14f/0x4b0
[  657.938944][    C1]  ? __pfx_ipv6_rcv+0x10/0x10
[  657.943680][    C0]  kvfree+0x47/0x50
[  657.948868][    C1]  ipv6_rcv+0xa4/0x680
[  657.952748][    C0]  rhashtable_free_and_destroy+0x16c/0x990
[  657.957445][    C1]  ? __pfx_ipv6_rcv+0x10/0x10
[  657.961238][    C0]  ila_xlat_exit_net+0x59/0xa0
[  657.965300][    C1]  __netif_receive_skb_one_core+0x12e/0x1e0
[  657.971092][    C0]  ops_exit_list+0xb0/0x180
[  657.975765][    C1]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  657.980514][    C0]  cleanup_net+0x5b7/0xb40
[  657.986421][    C1]  ? trace_lock_acquire+0x14a/0x1d0
[  657.990907][    C0]  process_one_work+0x958/0x1b30
[  657.997315][    C1]  ? process_backlog+0x3f1/0x15f0
[  658.001726][    C0]  worker_thread+0x6c8/0xf00
[  658.006933][    C1]  ? process_backlog+0x3f1/0x15f0
[  658.011848][    C0]  kthread+0x2c1/0x3a0
[  658.016878][    C1]  __netif_receive_skb+0x1d/0x160
[  658.021454][    C0]  ret_from_fork+0x45/0x80
[  658.026483][    C1]  process_backlog+0x443/0x15f0
[  658.030562][    C0]  ret_from_fork_asm+0x1a/0x30
[  658.035594][    C1]  __napi_poll.constprop.0+0xb7/0x550
[  658.039991][    C0] 
[  658.040001][    C0] The buggy address belongs to the object at ffff88803482e000
[  658.040001][    C0]  which belongs to the cache kmalloc-4k of size 4096
[  658.044848][    C1]  net_rx_action+0xa92/0x1010
[  658.049590][    C0] The buggy address is located 8 bytes inside of
[  658.049590][    C0]  freed 4096-byte region [ffff88803482e000, ffff88803482f000)
[  658.054971][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  658.057275][    C0] 
[  658.057285][    C0] The buggy address belongs to the physical page:
[  658.071317][    C1]  ? __pfx_mark_lock+0x10/0x10
[  658.076011][    C0] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x34828
[  658.089692][    C1]  ? lock_acquire+0x2f/0xb0
[  658.094792][    C0] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  658.097119][    C1]  ? ktime_get+0xd9/0x1a0
[  658.103520][    C0] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  658.108276][    C1]  ? kvm_sched_clock_read+0x11/0x20
[  658.117014][    C0] page_type: f5(slab)
[  658.121505][    C1]  ? sched_clock+0x38/0x60
[  658.130014][    C0] raw: 00fff00000000040 ffff88801ac42140 ffffea0000ade400 dead000000000002
[  658.134309][    C1]  ? sched_clock_cpu+0x6d/0x4d0
[  658.141849][    C0] raw: 0000000000000000 0000000000040004 00000001f5000000 0000000000000000
[  658.147044][    C1]  ? mark_held_locks+0x9f/0xe0
[  658.151012][    C0] head: 00fff00000000040 ffff88801ac42140 ffffea0000ade400 dead000000000002
[  658.155412][    C1]  handle_softirqs+0x213/0x8f0
[  658.164010][    C0] head: 0000000000000000 0000000000040004 00000001f5000000 0000000000000000
[  658.168850][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  658.177420][    C0] head: 00fff00000000003 ffffea0000d20a01 ffffffffffffffff 0000000000000000
[  658.182174][    C1]  irq_exit_rcu+0xbb/0x120
[  658.190831][    C0] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  658.195577][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  658.204231][    C0] page dumped because: kasan: bad access detected
[  658.209509][    C1]  </IRQ>
[  658.218174][    C0] page_owner tracks the page as allocated
[  658.222570][    C1]  <TASK>
[  658.231226][    C0] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 14913, tgid 14913 (dhcpcd-run-hook), ts 525206344324, free_ts 525045990504
[  658.236850][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  658.243249][    C0]  post_alloc_hook+0x2d1/0x350
[  658.246196][    C1] RIP: 0010:lock_acquire.part.0+0x155/0x380
[  658.251900][    C0]  get_page_from_freelist+0xf7d/0x2d10
[  658.254835][    C1] Code: b8 ff ff ff ff 65 0f c1 05 d0 5b 98 7e 83 f8 01 0f 85 d0 01 00 00 9c 58 f6 c4 02 0f 85 e5 01 00 00 48 85 ed 0f 85 b6 01 00 00 <48> b8 00 00 00 00 00 fc ff df 48 01 c3 48 c7 03 00 00 00 00 48 c7
[  658.276000][    C0]  __alloc_pages_noprof+0x223/0x25a0
[  658.282003][    C1] RSP: 0018:ffffc900001f7ae8 EFLAGS: 00000206
[  658.286749][    C0]  alloc_pages_mpol_noprof+0x2c9/0x610
[  658.292633][    C1] 
[  658.292644][    C1] RAX: 0000000000000046 RBX: 1ffff9200003ef5e RCX: 0000000000000001
[  658.298084][    C0]  new_slab+0x2c9/0x410
[  658.317683][    C1] RDX: 0000000000000001 RSI: ffffffff8b4ccbe0 RDI: ffffffff8bb135a0
[  658.322955][    C0]  ___slab_alloc+0xd1d/0x16f0
[  658.329015][    C1] RBP: 0000000000000200 R08: 0000000000000000 R09: fffffbfff2d32988
[  658.334466][    C0]  __slab_alloc.constprop.0+0x56/0xb0
[  658.336793][    C1] R10: ffffffff96994c47 R11: 0000000000000000 R12: 0000000000000000
[  658.344786][    C0]  __kmalloc_noprof+0x379/0x410
[  658.348939][    C1] R13: ffffffff8ddb7800 R14: 0000000000000000 R15: 0000000000000000
[  658.356900][    C0]  tomoyo_realpath_from_path+0xbf/0x710
[  658.361601][    C1]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  658.369537][    C0]  tomoyo_path_perm+0x273/0x480
[  658.374901][    C1]  ? rcu_is_watching+0x12/0xc0
[  658.382863][    C0]  security_inode_getattr+0x116/0x290
[  658.387706][    C1]  ? trace_lock_acquire+0x14a/0x1d0
[  658.395665][    C0]  vfs_fstat+0x53/0xd0
[  658.401203][    C1]  ? gc_worker+0x247/0x1760
[  658.406821][    C0]  vfs_fstatat+0x146/0x160
[  658.411667][    C1]  ? lock_acquire+0x2f/0xb0
[  658.416410][    C0]  __do_sys_newfstatat+0xa2/0x130
[  658.421771][    C1]  ? gc_worker+0x247/0x1760
[  658.426976][    C0]  do_syscall_64+0xcd/0x250
[  658.431045][    C1]  gc_worker+0x24d/0x1760
[  658.435532][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  658.440375][    C1]  ? gc_worker+0x247/0x1760
[  658.444865][    C0] page last free pid 14910 tgid 14910 stack trace:
[  658.449885][    C1]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  658.454366][    C0]  free_unref_page+0x5f4/0xdc0
[  658.458874][    C1]  ? __pfx_gc_worker+0x10/0x10
[  658.463180][    C0]  __put_partials+0x14c/0x170
[  658.469067][    C1]  ? lock_acquire+0x2f/0xb0
[  658.473550][    C0]  qlist_free_all+0x4e/0x120
[  658.480040][    C1]  ? process_one_work+0x8bb/0x1b30
[  658.485660][    C0]  kasan_quarantine_reduce+0x192/0x1e0
[  658.490425][    C1]  process_one_work+0x958/0x1b30
[  658.495252][    C0]  __kasan_kmalloc+0x8a/0xb0
[  658.499937][    C1]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  658.504428][    C0]  copy_semundo+0x17d/0x2e0
[  658.509619][    C1]  ? __pfx_process_one_work+0x10/0x10
[  658.514717][    C0]  copy_process+0x2145/0x6ee0
[  658.520201][    C1]  ? assign_work+0x1a0/0x250
[  658.525118][    C0]  kernel_clone+0xfd/0x960
[  658.529708][    C1]  worker_thread+0x6c8/0xf00
[  658.535319][    C0]  __do_sys_clone3+0x1f9/0x270
[  658.539856][    C1]  ? __pfx_worker_thread+0x10/0x10
[  658.545219][    C0]  do_syscall_64+0xcd/0x250
[  658.549905][    C1]  kthread+0x2c1/0x3a0
[  658.554496][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  658.558904][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  658.563482][    C0] 
[  658.563490][    C0] Memory state around the buggy address:
[  658.568242][    C1]  ? __pfx_kthread+0x10/0x10
[  658.573383][    C0]  ffff88803482df00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  658.577898][    C1]  ret_from_fork+0x45/0x80
[  658.581969][    C0]  ffff88803482df80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  658.587843][    C1]  ? __pfx_kthread+0x10/0x10
[  658.593040][    C0] >ffff88803482e000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  658.595361][    C1]  ret_from_fork_asm+0x1a/0x30
[  658.600993][    C0]                       ^
[  658.601012][    C0]  ffff88803482e080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  658.605604][    C1]  </TASK>
[  658.613652][    C0]  ffff88803482e100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  658.619147][    C1] ---[ end trace ]---
[  658.626108][    C0] ==================================================================
[  658.626361][    C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  658.626381][    C0] CPU: 0 UID: 0 PID: 16 Comm: ksoftirqd/0 Not tainted 6.12.0-rc6-syzkaller-00077-g2e1b3cc9d7f7 #0
[  658.626424][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  658.626447][    C0] Call Trace:
[  658.626457][    C0]  <TASK>
[  658.626471][    C0]  dump_stack_lvl+0x3d/0x1f0
[  658.626512][    C0]  panic+0x71d/0x800
[  658.626561][    C0]  ? __pfx_panic+0x10/0x10
[  658.626608][    C0]  ? irqentry_exit+0x3b/0x90
[  658.626662][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  658.626721][    C0]  ? check_panic_on_warn+0x1f/0xb0
[  658.626767][    C0]  check_panic_on_warn+0xab/0xb0
[  658.626818][    C0]  end_report+0x117/0x180
[  658.626868][    C0]  kasan_report+0xe9/0x110
[  658.626917][    C0]  ? __rhashtable_lookup.constprop.0+0x426/0x550
[  658.626968][    C0]  ? __rhashtable_lookup.constprop.0+0x426/0x550
[  658.627029][    C0]  __rhashtable_lookup.constprop.0+0x426/0x550
[  658.627078][    C0]  ? lock_acquire+0x2f/0xb0
[  658.627129][    C0]  ? ila_nf_input+0x1bd/0x620
[  658.627176][    C0]  ila_nf_input+0x1ee/0x620
[  658.627220][    C0]  ? __pfx_ila_nf_input+0x10/0x10
[  658.627264][    C0]  nf_hook_slow+0xbb/0x200
[  658.627322][    C0]  nf_hook.constprop.0+0x42e/0x750
[  658.627356][    C0]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  658.627393][    C0]  ? __pfx_nf_hook.constprop.0+0x10/0x10
[  658.627427][    C0]  ? sock_wfree+0x46a/0x880
[  658.627467][    C0]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  658.627506][    C0]  ? __pfx_ipv6_rcv+0x10/0x10
[  658.627540][    C0]  ipv6_rcv+0xa4/0x680
[  658.627572][    C0]  ? __pfx_ipv6_rcv+0x10/0x10
[  658.627605][    C0]  __netif_receive_skb_one_core+0x12e/0x1e0
[  658.627662][    C0]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  658.627718][    C0]  ? trace_lock_acquire+0x14a/0x1d0
[  658.627760][    C0]  ? process_backlog+0x3f1/0x15f0
[  658.627813][    C0]  ? process_backlog+0x3f1/0x15f0
[  658.627863][    C0]  __netif_receive_skb+0x1d/0x160
[  658.627916][    C0]  process_backlog+0x443/0x15f0
[  658.627970][    C0]  __napi_poll.constprop.0+0xb7/0x550
[  658.628155][    C0]  net_rx_action+0xa92/0x1010
[  658.628257][    C0]  ? __pfx_net_rx_action+0x10/0x10
[  658.628311][    C0]  ? __switch_to+0x749/0x1180
[  658.628392][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  658.628463][    C0]  ? sched_clock+0x38/0x60
[  658.628548][    C0]  ? sched_clock_cpu+0x6d/0x4d0
[  658.628640][    C0]  handle_softirqs+0x213/0x8f0
[  658.628684][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  658.628747][    C0]  ? rcu_is_watching+0x12/0xc0
[  658.628785][    C0]  ? __pfx_run_ksoftirqd+0x10/0x10
[  658.628822][    C0]  ? smpboot_thread_fn+0x59d/0xa30
[  658.628882][    C0]  run_ksoftirqd+0x3a/0x60
[  658.628917][    C0]  smpboot_thread_fn+0x661/0xa30
[  658.628974][    C0]  ? __kthread_parkme+0x148/0x220
[  658.629041][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  658.629083][    C0]  kthread+0x2c1/0x3a0
[  658.629136][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  658.629187][    C0]  ? __pfx_kthread+0x10/0x10
[  658.629249][    C0]  ret_from_fork+0x45/0x80
[  658.629281][    C0]  ? __pfx_kthread+0x10/0x10
[  658.629344][    C0]  ret_from_fork_asm+0x1a/0x30
[  658.629432][    C0]  </TASK>
[  658.630975][    C0] Kernel Offset: disabled