last executing test programs:

17m14.647553462s ago: executing program 3 (id=224):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x100000, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ifb0/queues/tx-0/tx_maxrate\x00', 0xa000, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='X\xb5[h\xcd\xaf\x06\x01\x00')
acct$auto(0x0)
clone$auto(0x9, 0x3, 0x0, 0x0, 0x7)
mmap$auto(0x0, 0x40009, 0x20000000df, 0x9b72, 0x7, 0x28000)
r1 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r1, 0x65, 0x4, 0xffffffffffffffff, 0x0)
syz_clone(0xa0008000, &(0x7f0000000180)="dfa77d829ed6ed300cba8e94860a0b4dde43d98f73b20503767d5f5e443751496a43ea33ebec029988d4df2df240d7d3ead2bcba200a3363270b58cba9906b4078e3bc8f021fc4d0d0f6162172090edf79c42bcd73977260bbf99821ef2f5c2070e88889ec9a512f3cbd92b414bf77d8e3e590f3dd654f45", 0x78, 0x0, &(0x7f0000000240), &(0x7f0000000280)="042c0c242cc1069a46025b811afeb7b09313320e321f6d1828e8e7dff42de854ae0d4b1db864a07b364453cbdbdf70a5a7f5f3e8954dfbb9b8f2c86316c5c6c3d6f31c85183d9031efccea5d76e607581ad831e26e5f29440b166d51df400e78a0ae21771da20d4dd4d947f7b3c82d497e00f3bab8bc3cc059a8de5a5029e920f4fd2d4821b7eeaa084d6a189266ad95e379398400a18b079aae37d7a48e293874905285a21209e23b32b68561ccca64c8e0ff")
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x20000010)
recvmmsg$auto(0x3, 0x0, 0x80000001, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r2 = fanotify_init$auto(0x5, 0x2000000000002)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r0)
sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0004255bfa32002be8e922000000d3d41dbcd5a4449893ce16dddeea08006f4fb782de6df035b870aac4aa06a3d99933870317eb9cd925d8cca8d96f10624d7ee3e5a5eb84c4d9b3b3aeae3badc75e3201debf3deb27505d2f7348db69dc31c8da05935aa1c5859592bc040a4b235f2f4658", @ANYRES32=r0], 0x24}}, 0x4082)

17m10.234209567s ago: executing program 3 (id=228):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
futex$auto(0x0, 0x8d, 0x0, 0x0, 0x0, 0x100)
r1 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs1\x00', 0x2, 0x0)
poll$auto(&(0x7f0000000100)={<r2=>r1, 0x2, 0x1}, 0x1, 0xfffffffb)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/sctp/remaddr\x00', 0xb00, 0x0)
pread64$auto(r3, 0x0, 0xf469, 0xbc3ab41)
write$auto_vcs_fops_vc_screen(r1, &(0x7f0000000040)="fb86", 0x2)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001900), 0xffffffffffffffff)
statx$auto(r2, &(0x7f0000000080)='./file0\x00', 0x2abf0d18, 0x8, &(0x7f0000000140)={0x1, 0x5, 0x4, 0x6, 0x0, 0xee00, 0x40, 0x5, 0x6, 0x1, 0xac2c, 0x4, {0xffffffffffffffff, 0x944}, {0x496e99b2, 0x3d}, {0x9409}, {0x1620002, 0x3}, 0x1ff, 0x101, 0xa86, 0x1, 0x3, 0x7, 0x8, 0x0, 0x0, 0x2, 0x6, 0x0, [0x6, 0xdcd, 0x0, 0x5, 0x3, 0x5, 0x0, 0x3000000, 0x6000000000]})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000b00), r0)
sendmsg$auto_NL80211_CMD_UPDATE_OWE_INFO(r0, &(0x7f0000000c00)={&(0x7f0000000ac0), 0xc, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x58, r5, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x7c2}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x3}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_FILS_ERP_RRK={0x22, 0xfc, "2474fbe9146af5ff062368b4e0190d39dce8338be9716a2260e32f0364fc"}, @NL80211_ATTR_TIMED_OUT={0x4}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x2}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000804}, 0x2400c095)
r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000003c0), r4)
sendmsg$auto_ETHTOOL_MSG_PLCA_GET_CFG(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000c80)=ANY=[@ANYBLOB="085473a7d216667aa06dcc77d7e0a662ab9ed9d0a97811d8f93950fa6486cf2d35321d3cc07e88cb1301725165d8afe2b3b05a729a111868af52b1fbf2cd5229bf285d518ce9834ef6d21eb996c25d261cf30461d16b4f17069f99d8b2fc26e1a6b3898def9798e6167f727b054d086e656659806cd901c86abeee599472335b2dda425e681a077373c844e0a9cd21d04f0faff9476989f36674fba7393cfd66b7135484f0ea1d56b44ce04d8ba996e8b1eb6870ea4d68f0d57e81705a6481012c0f48e8f9a170c5a63d5a005960daff6aeb279e39a6ea70e40863cbcaabe4ed2bbe996f54", @ANYRES16=r6, @ANYBLOB="010028bd7000fbdbdf25270000002000018008000400050000001400020076657468315f766972745f7769666900"], 0x34}, 0x1, 0x0, 0x0, 0x885}, 0x40)
r7 = gettid()
kill$auto(r7, 0x11)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'vlan0\x00'})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd6c00fbdbdf250200000008000300000000000800010047c7e2"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002cbd7000fddbdf251c"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000002480), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_MON_GET(r8, &(0x7f00000083c0)={0x0, 0x0, &(0x7f0000008380)={&(0x7f0000003680)=ANY=[@ANYBLOB="140000f2", @ANYRES16=r9, @ANYBLOB="2f032abd7000ffdbdf2512000000"], 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x8080)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0xe, 0x991, 0x3ff, 0x5932, r0, 0x4)
connect$auto(r4, &(0x7f0000000c40)=@vsock={0x28, 0x0, 0x2710, @host}, 0x1)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmmsg$auto(r0, &(0x7f0000000400)={{&(0x7f0000000500)="72e97625afaa963a66e93573409d8d1a6b9232ab40c7d1aa3522123b9190decdd592305513f6cb46a79920288959314433ec9609f7867c01a0d9b427db2cedb62ac7f45b0a1f1e7d3aa894cdea3fabf1025b82e912167c2402d2da09a87c07c959614c60871989220a8c8b3bc89afaa5aeb712c3de331395056db3440100201a48ef76dbdfd129500dae57d632fd425fb088ea3630de94e5571911fc35fdb79765ec602c11bb78e9470c42ab0e2f0545eeaeb4c1939b536468d8bfcc593a9ea2da86cd19f1a69b3d7366da700c01cbbb9f4ed938c1ff5888006151f56eb5e5730306198155d8932be94c5800528f04eb75380d11ad0be0ba5199b7d905cf3f", 0x9, &(0x7f0000000300)={&(0x7f0000000280)="dc79fc76f430fee4cae5d296aff254bbb2d33ae45efb65b391", 0x55}, 0x80000000, &(0x7f0000000340)="4b3b4a28888c21a521aed46768048a5d604b2e3938296983159ec0c777933c93eaead4a0533567c8550ab1ec17d512d2f353e9db12e557fe610fec26e81f353a3414e3", 0x6, 0xd}, 0x10000}, 0x2, 0x3)

17m8.156930798s ago: executing program 3 (id=234):
r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0)
ioctl$auto_PROCMAP_QUERY(r0, 0xc0686611, &(0x7f0000000340)={0x18, 0x0, 0x4, 0x1, 0x8, 0x1, 0x0, 0x6, 0x5, 0x200, 0xffff7ffe, 0x80000000, 0x7ff, 0x7, 0x9})

17m7.888715196s ago: executing program 3 (id=235):
socket(0x2, 0x2, 0x0)
socket(0x11, 0x800, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mprotect$auto(0xa5b0, 0x400, 0xba2b)
open(&(0x7f0000000800)='./file0\x00', 0x2240, 0x154)
fsopen$auto(0x0, 0x1)
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x1, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

17m7.648648813s ago: executing program 3 (id=236):
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0xa, 0x2, 0x3a)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000100)={0x30, r1, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x890)
fcntl$getown(0xffffffffffffffff, 0x9)
unshare$auto(0x40000080)
unshare$auto(0x3)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
clone3$auto(0x0, 0x40)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
getsockopt$auto(0x4, 0x6, 0x5, 0xfffffffffffffffd, 0x0)

17m5.061257874s ago: executing program 3 (id=237):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x40084)
mmap$auto(0xfffffffffffffffc, 0x400008, 0xdb, 0x9b72, 0x2, 0x5)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x106)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
signalfd$auto(0xffffffff, 0x0, 0x8)
fremovexattr$auto(0x3, &(0x7f0000000080)='\\-\x00')
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
read$auto(0x3, 0x0, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
writev$auto(0xe, &(0x7f0000000140)={&(0x7f0000000040), 0x8}, 0xe)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x40}}, 0x4000000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_SET(r2, &(0x7f0000003240)={0x0, 0x0, &(0x7f0000003200)={&(0x7f0000000000)={0x28, r3, 0x159198c6007aa95d, 0x70bd26, 0x25dfdbfc, {}, [@OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_BANDS={0x4}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x5}, @OVS_METER_ATTR_CLEAR={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0xc0}, 0x40)
sendmsg$auto_OVS_METER_CMD_SET(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x48, r3, 0x400, 0x70bd26, 0x25dfdbfd, {}, [@OVS_METER_ATTR_ID={0x8, 0x1, 0x3}, @OVS_METER_ATTR_ID={0x8, 0x1, 0xf461}, @OVS_METER_ATTR_STATS={0x14, 0x3, {0x6b, 0xffff}}, @OVS_METER_ATTR_CLEAR={0x4}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_MAX_METERS={0x8, 0x7, 0x4}]}, 0x48}, 0x1, 0x0, 0x0, 0x2404c045}, 0x4881)
r4 = syz_genetlink_get_family_id$auto_hsr(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x28, r4, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@HSR_A_NODE_ADDR={0xa, 0x1, @broadcast}, @HSR_A_IFINDEX={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000080}, 0x800)

16m49.83215435s ago: executing program 32 (id=237):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x40084)
mmap$auto(0xfffffffffffffffc, 0x400008, 0xdb, 0x9b72, 0x2, 0x5)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x106)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
signalfd$auto(0xffffffff, 0x0, 0x8)
fremovexattr$auto(0x3, &(0x7f0000000080)='\\-\x00')
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
read$auto(0x3, 0x0, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
writev$auto(0xe, &(0x7f0000000140)={&(0x7f0000000040), 0x8}, 0xe)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x40}}, 0x4000000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_SET(r2, &(0x7f0000003240)={0x0, 0x0, &(0x7f0000003200)={&(0x7f0000000000)={0x28, r3, 0x159198c6007aa95d, 0x70bd26, 0x25dfdbfc, {}, [@OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_BANDS={0x4}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x5}, @OVS_METER_ATTR_CLEAR={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0xc0}, 0x40)
sendmsg$auto_OVS_METER_CMD_SET(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x48, r3, 0x400, 0x70bd26, 0x25dfdbfd, {}, [@OVS_METER_ATTR_ID={0x8, 0x1, 0x3}, @OVS_METER_ATTR_ID={0x8, 0x1, 0xf461}, @OVS_METER_ATTR_STATS={0x14, 0x3, {0x6b, 0xffff}}, @OVS_METER_ATTR_CLEAR={0x4}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_MAX_METERS={0x8, 0x7, 0x4}]}, 0x48}, 0x1, 0x0, 0x0, 0x2404c045}, 0x4881)
r4 = syz_genetlink_get_family_id$auto_hsr(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x28, r4, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@HSR_A_NODE_ADDR={0xa, 0x1, @broadcast}, @HSR_A_IFINDEX={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000080}, 0x800)

16m28.022636105s ago: executing program 1 (id=288):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS2\x00', 0x0, 0x0)
ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0)

16m19.643212269s ago: executing program 1 (id=305):
socket(0x2, 0x2, 0x0)
socket(0x11, 0x800, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000800)='./file0\x00', 0x2240, 0x154)
sysfs$auto(0x2, 0x0, 0x0)
fsopen$auto(0x0, 0x1)
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x1, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

16m19.412710888s ago: executing program 1 (id=306):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x100000, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ifb0/queues/tx-0/tx_maxrate\x00', 0xa000, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='X\xb5[h\xcd\xaf\x06\x01\x00')
acct$auto(0x0)
clone$auto(0x9, 0x3, 0x0, 0x0, 0x7)
mmap$auto(0x0, 0x40009, 0x20000000df, 0x9b72, 0x7, 0x28000)
r1 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r1, 0x65, 0x4, 0xffffffffffffffff, 0x0)
syz_clone(0xa0008000, &(0x7f0000000180)="dfa77d829ed6ed300cba8e94860a0b4dde43d98f73b20503767d5f5e443751496a43ea33ebec029988d4df2df240d7d3ead2bcba200a3363270b58cba9906b4078e3bc8f021fc4d0d0f6162172090edf79c42bcd73977260bbf99821ef2f5c2070e88889ec9a512f3cbd92b414bf77d8e3e590f3dd654f45", 0x78, &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280)="042c0c242cc1069a46025b811afeb7b09313320e321f6d1828e8e7dff42de854ae0d4b1db864a07b364453cbdbdf70a5a7f5f3e8954dfbb9b8f2c86316c5c6c3d6f31c85183d9031efccea5d76e607581ad831e26e5f29440b166d51df400e78a0ae21771da20d4dd4d947f7b3c82d497e00f3bab8bc3cc059a8de5a5029e920f4fd2d4821b7eeaa084d6a189266ad95e379398400a18b079aae37d7a4")
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x20000010)
recvmmsg$auto(0x3, 0x0, 0x80000001, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r2 = fanotify_init$auto(0x5, 0x2000000000002)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r0)
sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0004255bfa32002be8e922000000d3d41dbcd5a4449893ce16dddeea08006f4fb782de6df035b870aac4aa06a3d99933870317eb9cd925d8cca8d96f10624d7ee3e5a5eb84c4d9b3b3aeae3badc75e3201debf3deb27505d2f7348db69dc31c8da05935aa1c5859592bc040a4b235f2f4658", @ANYRES32=r0], 0x24}}, 0x4082)

16m14.556183859s ago: executing program 1 (id=313):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS2\x00', 0x0, 0x0)
ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0)

16m11.184482733s ago: executing program 1 (id=316):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getpid()
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
write$auto_tomoyo_operations_securityfs_if(r1, &(0x7f0000000100)="0a1b9a3c2b00006e163bb154d7886d8ea5c2574c58e9867ecec3371cadb848770dc8f745d1c76eedba12b9f694dabdbcf3401910bb713aca465c9bbc23b5d40a", 0x40)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000)
ioctl$auto_PROCMAP_QUERY(0xffffffffffffffff, 0xc0686611, &(0x7f0000000340)={0x18, 0x0, 0x4, 0x1, 0x8, 0x1, 0x0, 0x6, 0x5, 0x200, 0xffff7ffe, 0x80000000, 0x7ff, 0x7, 0x9})

16m6.80482472s ago: executing program 1 (id=320):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x100000, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ifb0/queues/tx-0/tx_maxrate\x00', 0xa000, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='X\xb5[h\xcd\xaf\x06\x01\x00')
acct$auto(0x0)
clone$auto(0x9, 0x3, 0x0, 0x0, 0x7)
mmap$auto(0x0, 0x40009, 0x20000000df, 0x9b72, 0x7, 0x28000)
r1 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r1, 0x65, 0x4, 0xffffffffffffffff, 0x0)
syz_clone(0xa0008000, &(0x7f0000000180)="dfa77d829ed6ed300cba8e94860a0b4dde43d98f73b20503767d5f5e443751496a43ea33ebec029988d4df2df240d7d3ead2bcba200a3363270b58cba9906b4078e3bc8f021fc4d0d0f6162172090edf79c42bcd73977260bbf99821ef2f5c2070e88889ec9a512f3cbd92b414bf77d8e3e590f3dd654f45", 0x78, &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280)="042c0c242cc1069a46025b811afeb7b09313320e321f6d1828e8e7dff42de854ae0d4b1db864a07b364453cbdbdf70a5a7f5f3e8954dfbb9b8f2c86316c5c6c3d6f31c85183d9031efccea5d76e607581ad831e26e5f29440b166d51df400e78a0ae21771da20d4dd4d947f7b3c82d497e00f3bab8bc3cc059a8de5a5029e920f4fd2d4821b7eeaa084d6a189266ad95e379398400a18b079aae37d7a48e293874905285a21209e23b32b68561cc")
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x20000010)
recvmmsg$auto(0x3, 0x0, 0x80000001, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r2 = fanotify_init$auto(0x5, 0x2000000000002)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r0)
sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0004255bfa32002be8e922000000d3d41dbcd5a4449893ce16dddeea08006f4fb782de6df035b870aac4aa06a3d99933870317eb9cd925d8cca8d96f10624d7ee3e5a5eb84c4d9b3b3aeae3badc75e3201debf3deb27505d2f7348db69dc31c8da05935aa1c5859592bc040a4b235f2f4658", @ANYRES32=r0], 0x24}}, 0x4082)

15m51.481091338s ago: executing program 33 (id=320):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x100000, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ifb0/queues/tx-0/tx_maxrate\x00', 0xa000, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='X\xb5[h\xcd\xaf\x06\x01\x00')
acct$auto(0x0)
clone$auto(0x9, 0x3, 0x0, 0x0, 0x7)
mmap$auto(0x0, 0x40009, 0x20000000df, 0x9b72, 0x7, 0x28000)
r1 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r1, 0x65, 0x4, 0xffffffffffffffff, 0x0)
syz_clone(0xa0008000, &(0x7f0000000180)="dfa77d829ed6ed300cba8e94860a0b4dde43d98f73b20503767d5f5e443751496a43ea33ebec029988d4df2df240d7d3ead2bcba200a3363270b58cba9906b4078e3bc8f021fc4d0d0f6162172090edf79c42bcd73977260bbf99821ef2f5c2070e88889ec9a512f3cbd92b414bf77d8e3e590f3dd654f45", 0x78, &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280)="042c0c242cc1069a46025b811afeb7b09313320e321f6d1828e8e7dff42de854ae0d4b1db864a07b364453cbdbdf70a5a7f5f3e8954dfbb9b8f2c86316c5c6c3d6f31c85183d9031efccea5d76e607581ad831e26e5f29440b166d51df400e78a0ae21771da20d4dd4d947f7b3c82d497e00f3bab8bc3cc059a8de5a5029e920f4fd2d4821b7eeaa084d6a189266ad95e379398400a18b079aae37d7a48e293874905285a21209e23b32b68561cc")
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x20000010)
recvmmsg$auto(0x3, 0x0, 0x80000001, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r2 = fanotify_init$auto(0x5, 0x2000000000002)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r0)
sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0004255bfa32002be8e922000000d3d41dbcd5a4449893ce16dddeea08006f4fb782de6df035b870aac4aa06a3d99933870317eb9cd925d8cca8d96f10624d7ee3e5a5eb84c4d9b3b3aeae3badc75e3201debf3deb27505d2f7348db69dc31c8da05935aa1c5859592bc040a4b235f2f4658", @ANYRES32=r0], 0x24}}, 0x4082)

15m50.736563172s ago: executing program 2 (id=355):
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r0 = socket(0x27, 0x1, 0x40000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
poll$auto(&(0x7f0000000480)={r0, 0x8000, 0xff81}, 0x7, 0x54b)
mmap$auto(0xaa9, 0x2020009, 0x2, 0x100000010, r0, 0x8003)
write$auto(0x3, 0x0, 0xfdef)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
socket(0x10, 0x2, 0x0)
socketpair$auto(0xf, 0x7, 0x8, 0x0)
r1 = socket(0x10, 0x3, 0xb)
setsockopt$auto(r1, 0x104000000000010e, 0x1, 0x0, 0x16)

15m48.991078125s ago: executing program 2 (id=359):
socket(0x2, 0x2, 0x0)
socket(0x11, 0x800, 0x3)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000800)='./file0\x00', 0x2240, 0x154)
sysfs$auto(0x2, 0x0, 0x0)
fsopen$auto(0x0, 0x1)
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x1, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

15m47.880155634s ago: executing program 2 (id=361):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r0 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bond0\x00', <r2=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r2, r1, 0x4, 0x1ff, r0, @relative_id=0x13, 0xe600}, 0xf)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
timerfd_create$auto(0x9, 0x0)
socket(0x1, 0x2, 0x0)
connect$auto(0x4, &(0x7f0000000000), 0x7f)
socketpair$auto(0x1, 0x3, 0x8000000000000000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r3, 0x0, 0x9}, 0xc)

15m45.489641436s ago: executing program 2 (id=366):
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r0 = socket(0x27, 0x1, 0x40000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
poll$auto(&(0x7f0000000480)={r0, 0x8000, 0xff81}, 0x7, 0x54b)
mmap$auto(0xaa9, 0x2020009, 0x2, 0x100000010, r0, 0x8003)
write$auto(0x3, 0x0, 0xfdef)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
socket(0x10, 0x2, 0x0)
socketpair$auto(0xf, 0x7, 0x8, 0x0)
r1 = socket(0x10, 0x3, 0xb)
setsockopt$auto(r1, 0x104000000000010e, 0x1, 0x0, 0x16)

15m44.00010815s ago: executing program 2 (id=372):
r0 = socket$nl_generic(0x11, 0x3, 0x10)
mmap$auto(0x0, 0x800, 0x2000000df, 0xeb0, 0x401, 0x7ffe)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
prctl$auto(0x23, 0x7, 0x7fffffffefff, 0x0, 0x0)
brk$auto(0x7fffffffafff)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
r1 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/debug/block/nbd8/pm_only\x00', 0x8080, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r1, &(0x7f0000000380)=""/193, 0xc1)
mmap$auto(0x0, 0x6, 0x202, 0xeb1, 0x401, 0x8000)
socket(0x1d, 0x2, 0x2)
connect$auto(r0, 0x0, 0x55)
socket(0xf, 0xa, 0x6)
socketpair$auto(0x8, 0xb, 0x4, 0x0)
write$auto(0x3, 0x0, 0x5c8)
syslog$auto(0x4, &(0x7f0000000040)='/sys/kernel/debug/block/nbd8/pm_only\x00', 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r2, 0xfffffffffffff000, 0x0)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x1, 0x3fc, 0x7}, 0x9, 0x0)
landlock_restrict_self$auto(r0, 0x2)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x4, 0x20009, 0x6, 0xeb1, 0x401, 0x8003)
landlock_restrict_self$auto(0xffffffffffffffff, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
truncate$auto(0x0, 0x5)

15m42.90073416s ago: executing program 2 (id=374):
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
madvise$auto(0x0, 0x2000040080000004, 0xe)
syz_open_procfs$namespace(0x0, &(0x7f00000022c0)='ns/uts\x00')
madvise$auto(0x1ffff000, 0x5510, 0x14)
bind$auto(0x3, 0x0, 0x6b)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, 0x0, 0x40)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket(0x2, 0x2, 0x1)
ioctl$auto(0x1, 0x8917, 0x8)
unshare$auto(0x40000080)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)

15m27.679392699s ago: executing program 34 (id=374):
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
madvise$auto(0x0, 0x2000040080000004, 0xe)
syz_open_procfs$namespace(0x0, &(0x7f00000022c0)='ns/uts\x00')
madvise$auto(0x1ffff000, 0x5510, 0x14)
bind$auto(0x3, 0x0, 0x6b)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, 0x0, 0x40)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket(0x2, 0x2, 0x1)
ioctl$auto(0x1, 0x8917, 0x8)
unshare$auto(0x40000080)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)

16.550806686s ago: executing program 4 (id=4955):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_DEAUTHENTICATE(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x7c, 0x0, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@NL80211_ATTR_SCAN_FREQ_KHZ={0x5c, 0x124, 0x0, 0x1, [@nested={0x55, 0x117, 0x0, 0x1, [@generic="308e1847b3092d6412a26515573dbb0527ee53adbb5d65e160080bad66e9864691067fa821f9b5fee206b3f12c1dc2cc25601be6ccb2d776411928560808b813c767645de5ab09e6da323b2c9e52cb7018"]}]}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x6}, @NL80211_ATTR_MLO_SUPPORT={0x4}]}, 0x7c}, 0x1, 0x0, 0x0, 0x40000}, 0x10) (async)
r1 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000180), r0)
sendmsg$auto_GTP_CMD_ECHOREQ(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, r1, 0x100, 0x70bd2b, 0x25dfdbff, {}, [@GTPA_PEER_ADDRESS={0x8, 0x4, @initdev={0xac, 0x1e, 0x1, 0x0}}, @GTPA_FLOW={0x6, 0x6, 0x6}, @GTPA_MS_ADDRESS={0x8, 0x5, @rand_addr=0x64010102}, @GTPA_I_TEI={0x8, 0x8, 0x8c}, @GTPA_FAMILY={0x5, 0xd, 0x2}, @GTPA_O_TEI={0x8, 0x9, 0x8}, @GTPA_LINK={0x8, 0x1, 0x9}]}, 0x4c}}, 0x40801) (async)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000300), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'ip6erspan0\x00', <r3=>0x0})
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x20, r2, 0x200, 0x70bd29, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x20004000}, 0x40040)
stat$auto(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x1, 0x8, 0x4, 0x0, <r4=>0xee01, 0xee00, 0x0, 0x2d, 0xfffffffffffffff7, 0x3, 0x96, 0x9, 0x6, 0x4, 0x101, 0x5c, 0x5}) (async, rerun: 64)
newfstatat$auto(r0, &(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000640)={0xfffffffffffffff8, 0x3ef, 0x2, 0x9, 0xffffffffffffffff, <r5=>0xee01, 0x0, 0x8001, 0xffffffffffffffc0, 0x3, 0x2, 0x3f, 0x6, 0x8000000000000000, 0x2f, 0x14, 0x3}, 0x8) (rerun: 64)
shmctl$auto(0x9caee4, 0x7f, &(0x7f0000000800)={{0xffff, r4, <r6=>r5, 0x80, 0xe34, 0x2, 0x11ac}, 0xaf2a, 0x7, 0x1, 0xaf80, @raw=0x7ff, @raw=0xffffc538, 0xe1a, 0x0, &(0x7f0000000700)="f60ad1bcef7b1f3d5b4ab163cec9c592c3f8db1a3f896121586d6fbed980f5a7285f475fd6e15799e9a76bcee7ac2b548f58be0b0155e63ed947619ed658c1c8d9b3a670ee96ba5476301d6fca6c3ee4229b3272c428e7b24a4e4d55327d7e16c7fc6fb26c0c9f6ce62286", &(0x7f0000000780)="25705e2b0edd0c4dbd779893de270c4e5afb192498f5e0c74304824e21b510d64a6e867fdf009f271d00b6443352dd4de7aa3e17d5d6e702edd7193989eb37bd236e46551b34a305ea4f47ff5402"})
statx$auto(0xffffffffffffffff, &(0x7f0000000880)='./file0\x00', 0x1, 0x7fff, &(0x7f00000008c0)={0x1f, 0x6, 0x8000000000000001, 0x7f, r4, r6, 0x4, 0x4, 0x7f, 0x3, 0x9, 0x9, {0x9, 0x5}, {0x80, 0x2}, {0x4, 0x9e2f}, {0x4, 0x800}, 0x4, 0x3, 0x6, 0x5, 0x8dc1, 0xb, 0xcb, 0x2, 0x3, 0x81, 0x0, 0xfffffffe, [0x41, 0x4, 0x40a, 0x2, 0x7fffffffffffffff, 0xfffffffffffffffd, 0x8, 0xfffffffffffffffb, 0x3]}) (async)
ppoll$auto(&(0x7f00000009c0)={<r7=>r0, 0x0, 0x3ff}, 0x7, &(0x7f0000000a00)={0x42a0, 0x20da}, &(0x7f0000000a40)={0x4}, 0x8)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000ac0), r7)
sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(r7, &(0x7f0000000b80)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x24, r8, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x6}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000000) (async)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000bc0), r0)
msync$auto(0xfffffffffffff000, 0x24000000000000, 0x2) (async)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000c00)='/dev/v4l-subdev1\x00', 0x80, 0x0)
add_key$auto(&(0x7f0000000c40)='{$\x00', &(0x7f0000000c80)='\'\x00', &(0x7f0000000cc0)="c5fc2961a2679478e763724a7c930ed36fd5d86f1af9a439ff2828d14e045366d12c545fd6b70cd26c866e4d7bc01c33ae294dea5faebb5453af8a9511d78d75bb26e55a37ee3fa28b50c27d00c4", 0x8, 0x80000001)
clone$auto(0xd, 0x2, &(0x7f0000000d40)=0x8, &(0x7f0000000d80)=0x6, 0x1) (async)
r9 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000e00), r0)
sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r7, &(0x7f0000000ec0)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x1c, r9, 0x300, 0x70bd2b, 0x25dfdbfd, {}, [@NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0xfff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0xc4084)
r10 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_GET_TUNSRC(r0, &(0x7f0000001140)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001100)={&(0x7f0000000f80)={0x150, r10, 0x300, 0x70bd2a, 0x25dfdbff, {}, [@SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x2f3}, @SEG6_ATTR_ALGID={0x5, 0x6, 0xab}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x9}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x6542}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x7}, @SEG6_ATTR_SECRET={0xfa, 0x4, "74353a4a3f4f9e69d6da905c1a8bd651d21f5a396850a874dced7f2f380f977e0e9435f48de44a14ac637add33bb59fa7ad37ba7edb602d028342e8d7e6310e305080cb331859fe3aa702e2eb3c2a938e0347f0b887d61d8c6de1ffa979547cb6f01d7c317bc94d432dfe675f5eee8c27a2af0a882af6c97920904dfbe48b9a81b6f1a6facedc959331be84dffefdd912e90c9a870ccd0004fc25f1dcbb5acfd8acdfeea45ad1f9544941f38289d53bb2aefeca712c8f79bdc0092527b9130dd3ecb6a090fb4c3cdf1191ba00f419ec9556175867b9315475bad7a4c985591f15c9b928d33c4adbb8c798f5a51eacbeed6d2518c6725"}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x9}, @SEG6_ATTR_ALGID={0x5, 0x6, 0xff}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x1}]}, 0x150}, 0x1, 0x0, 0x0, 0x20000080}, 0x1) (async, rerun: 32)
close_range$auto(r7, r0, 0x200) (async, rerun: 32)
connect$auto(r0, &(0x7f0000001180)=@hci={0x1f, 0xffffffffffffffff, 0x1}, 0x6) (async)
sendmsg$auto_NL80211_CMD_SET_MULTICAST_TO_UNICAST(r7, &(0x7f0000001340)={&(0x7f00000011c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001300)={&(0x7f0000001200)={0x100, r8, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_USE_MFP={0x8, 0x42, 0x5}, @NL80211_ATTR_OBSS_COLOR_BITMAP={0xc}, @NL80211_ATTR_RADAR_BACKGROUND={0x4}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}, @NL80211_ATTR_EHT_CAPABILITY={0xc1, 0x136, "39b785634a7611704cbcbdd47223272876b05a3945abb772035e601f8545c51e8cb14e0d1c30968234880f01281fe4e5e6354eae239d9e1b9ec23014c9670deab7bb50ab771a0f33da1eb84edee81d1247c2dd52b3b41d5379fb878e304d6a2ca63098a28f2e60cac4d6ef08fbf46b7059ad9df0b8ebf6e0a5dfb5ac430ff999a058c3cfca9916825149977c20c204685610c4b79f8ec69ac31e14583e4ed1e6da21f3d5db1509b77ac45b202c9a72d7f1cd937d764d07870d58202171"}]}, 0x100}, 0x1, 0x0, 0x0, 0x4090}, 0x0) (async)
r11 = syz_genetlink_get_family_id$auto_thermal(&(0x7f00000013c0), r0)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(r7, &(0x7f0000001840)={&(0x7f0000001380), 0xc, &(0x7f0000001800)={&(0x7f0000001400)={0x3c4, r11, 0x8, 0x70bd25, 0x25dfdbfd, {}, [@THERMAL_GENL_ATTR_CDEV={0x299, 0xf, 0x0, 0x1, [@nested={0xe9, 0xd0, 0x0, 0x1, [@nested={0x4, 0x12d}, @generic="ec564614e1ecce1ac3c92e2050327354ae47b4297a056d774b7758c90a8a6a43dcc003eaea490ecc3ca8f74eff4427c702a1b60f2b6262ed93517e73b4ef8202214694c5da207c30f8201fbd66566322cda9b0f8e9e807efda83daccb3f76c1dd1749c23e45555a86d47320cfbe0d6a2947a83969de491595ee04f39a2072dcd6d665c56b758eb4f188fbca88eed8467b5d1a2bc6beb20303cf4320157bec1c3d8a3101d30fd29ee154bf5a8864ae6bb415f0625a4893a01819fc2d66472391d263219133b42541d603f28b5dd3787e9bc", @typed={0x8, 0x81, 0x0, 0x0, @ipv4=@broadcast}, @nested={0x4, 0xa7}, @nested={0x4, 0x1b}]}, @typed={0x14, 0x4, 0x0, 0x0, @ipv6=@mcast1}, @typed={0xe, 0x10e, 0x0, 0x0, @str='}\\\\!)q&.(\x00'}, @generic="a170ad59424d19430abd1999eb2aca2cbf869ca7984bc481d1150f0848e6642177282e99608ea3544576588c42b28f962e38962b8c799e798fe40b3685", @typed={0x14, 0x46, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @nested={0x18, 0x14c, 0x0, 0x1, [@typed={0x14, 0x12a, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}]}, @nested={0xdf, 0xc3, 0x0, 0x1, [@generic="d81c32d5d8e10d6a04d2d23cb176f3cdf4872bce46f21ec6077d45c85d356941da90473986f578ca776cf818f3342e172f3369f7a2793957b4842ef8e4d50144d1a6b540f566eb14f8320d293b2dd83bbc2f90ffdc048b1b5183d9bc5420b5abccf044dbada7512b26bf8c61d959eae14fedb6c0ee12c9f99a836b3a7e0d6093d4652592834de5d3cfa469f47ba7b1273a3eddd6ac6786636abca22a447b38b4585d6279faaa3626dcd569850e8bbde0c6cad530c64ed7e6fb5e8ffb460e4642f1628faff487b9ca07d4f7dc0a9c9cb0e1a2e543a903f927e8f789"]}, @generic="75b9ca7a51537b315741c1b82dbb68ca968cefe8b8b72cb7a4b09e6d24037ff39b9d36c0d8e3a0c32a0b192be371f8b65cf6ff88cf4e2a3c796ff621"]}, @THERMAL_GENL_ATTR_THRESHOLD_TEMP={0x8, 0x1a, 0x5}, @THERMAL_GENL_ATTR_CPU_CAPABILITY={0x10c, 0x15, 0x0, 0x1, [@nested={0x105, 0x30, 0x0, 0x1, [@nested={0x4, 0x10d}, @nested={0x4, 0x8f}, @generic="63cff53281c6d9b697b328afed9c432b593957c6500724398527eb475db18aff61dd5bb62c6bb21a3f1fe06e5158d89f9c1bad08428f156c9e2699b3b6ba7772a84568b9418c4e335d76d43b3624013d0f845ddb1a0531ec0a9bf55f1f98fc59f73ecef40699b1bf5e67aedc309928bd914782de4dcb393d0200c26b972c59a9b8b5a43d7de488e1d0fa2a7b3fbf46320ee0c5fdf9359fcd969fa6574ea275c66bbb4b4744898ffdd5376bed675b216e813eca6301155a0ec0fdc7c0759e09d21696529cdf823ff27c36306fe376b9a24764799c8530fb6f8e6cdb84b01cd8c3d55606985eb6b7c7637e55", @generic="0ecb34e0770cd01ceea8b5052380"]}]}]}, 0x3c4}, 0x1, 0x0, 0x0, 0x4000}, 0x4080000) (async)
openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000001880)='/proc/thread-self/clear_refs\x00', 0x0, 0x0) (async)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000001a00)={&(0x7f00000018c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000019c0)={&(0x7f0000001900)={0xb0, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x4}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x6}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x1}, @ETHTOOL_A_CHANNELS_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xd68}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0xe}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0xe}, @ETHTOOL_A_CHANNELS_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}]}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0xfffffffb}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x4}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x4146c882}]}, 0xb0}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)

16.286474955s ago: executing program 4 (id=4956):
r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000700)='/dev/binderfs/binder0\x00', 0x0, 0x0)
socket(0xa, 0x3, 0x32)
setsockopt$auto(0x400000000000003, 0x69, 0xc9, 0x0, 0x0)
r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioctl$auto_TUNGETIFF(r1, 0x800454d2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x6, 0x1f, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x400200000000001, 0xb4, 0x9, 0x8, 0x10007, 0x80, 0x7, 0x0, 0xa, 0x21fff, 0x200, 0x0, 0x83, [0x2, 0x0, 0x0, 0x2, 0x0, 0x2000, 0x0, 0xe, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x8, 0x0, 0x6, 0x0, 0xfffffffffffbfffd, 0x2000000000000004, 0x10000000000001, 0x10000000000, 0xffffffffffffffff, 0x4, 0xfffffffffffffe00, 0x0, 0x0, 0x5, 0x400000000005b8, 0xffff, 0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x7, 0xa38, 0xffffffffffffffff, 0x3, 0xfffffffffffffffc, 0x2, 0x1, 0x7, 0xc567]}, 0x1fe, 0xd)
r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd11, &(0x7f00000001c0))
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x20001, 0x0)
pwritev$auto(0x5, &(0x7f0000000080)={&(0x7f0000000040), 0x19}, 0x2, 0x9, 0x8)
mkdir$auto(&(0x7f00000001c0)='}[,&*}\x00', 0xc001)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
open(&(0x7f0000000100)='.\x00', 0x0, 0x47a)
lseek$auto(0x0, 0x3, 0x1)
mmap$auto_binder_fops_binder_internal(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x12, r0, 0x100000000)

15.217638897s ago: executing program 4 (id=4960):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec28\x00', 0x88900, 0x0)
poll$auto(&(0x7f0000000d40)={0x3, 0x1, 0xa}, 0x6, 0x2)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000000)='\xa0\x8b\x82\xb4\xa0O\xc9\xed_Q\xd1X2\xd9\xcd\x01W146F\xf7\xf4u\xbf\xce\xad)\xa5/\xa9\xc9\xe6Gn+\x11u\x1e\x8e\x8f\x89\x19C\xdf\xc1*\xcb\x10\b\xf9\xed\xeak\xb0\xea\t\xddx\xf5w\xaeu\xd1WL!\x98W\x1f\xf1\x97$\xdb\x9f\x97\xbc\xa80ro\x16\xc4\x8c\xd1\xf8\xc16h0\xa03\xb4vr~\x824\xed9\xe0$a\xad\xd3\x16+\xc5b\xb5,A\xba\xd6\xee\x9b\xdf2\x03;$R*\xd9iy\x0e\xbe\xe32\xfd\x1d\x94\x8bC\xe9\x8b7\x83;\xa1H\xe1\xbd\x8eW\xb5\xf9\x98\xcf\xef\xf4m\x96S\xcf\xdb\xe8[\xff\xa6?^1B\xda*\xc4\t$`V\xdc\x03&\xd1\xcf\xe9}\x859wKR\xf9\x1e\xbfH\\\x0ev\x891\xd0\xfe\xfb_\xa4\x87\xf7\x1c\x8a0\x1f\xbd\x8fq\x80BJ\xad6{\x93%\xc8\x81l\x17\bk\xf8\xa4\xb1\xdd\xd0\xde\xfdJS\xbf\a{o7\xc0\xe7i|\xab\a\xa8\xf1\xacmU\x98^\x12\x1b\xc7\xa6@\x1d\x8d4S\x06\xa6]\x9d{4\xf5\xf2\t\xb7\xc9\x06\xb6\xd0\x89\x8a\xdf\xb5\x06vb6\n^\xd8DZG \xbbR#\xb5p\xe6]r\x06\x8f\nV\xed\x04\xf8\xce\xca6\xdfwf\xfeJ\bryV', 0x5)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a0080"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='J'], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

7.212856942s ago: executing program 5 (id=4993):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x0) (async)
sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x28, 0x0, 0x1, 0x70bd29, 0x25dfdbff, {}, [@OVS_DP_ATTR_NAME={0x11, 0x1, 'ovs_datapath\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040c04}, 0xc0804) (async)
r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/block/loop9/rqos/wbt/unknown_cnt\x00', 0x300, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mlock$auto(0xfbe8, 0x3) (async)
mlock$auto(0x7c88, 0x7fff)
socket(0x2, 0x2, 0x88) (async)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/afs/cells\x00', 0x48041, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32)
capset$auto(0x0, 0xfffffffffffffffe) (async, rerun: 32)
write$auto(r1, 0x0, 0x6) (async)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
socket$nl_generic(0x10, 0x3, 0x10)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x34, 0x65f, 0x1ffde, 0x7, 0x3, 0x20000002, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0, 0x1, 0x3, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x200000000001, 0x0, 0xffffffffefffffff, 0x200000000000004, 0x0, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x4, 0x6, 0xffffffffffffffff, 0x890, 0x8000000000008, 0xfffffffffffffffc, 0x1000, 0xa38, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x4000000000, 0x10006]}, 0x1fe, 0xd) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x3, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xe}}, 0x6, 0x4008) (async)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r0, &(0x7f0000000180)=""/209, 0xd1) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a"], 0x1ac}}, 0x40000) (rerun: 64)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

5.546559288s ago: executing program 5 (id=5002):
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041)
r0 = socket(0x2a, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000140))
connect$auto(r0, &(0x7f0000000040)=@can, 0x8)
recvfrom$auto(r0, 0x0, 0x4, 0x100, 0x0, 0xfffffffffffffffd)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5)
write$auto(0x3, 0x0, 0xfffffdef)
unshare$auto(0x40000080)
socket(0xa, 0x3, 0x3a)
epoll_wait$auto(r0, &(0x7f0000000000)={0x7, 0x800000000000009}, 0x7ff, 0x6)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x567)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x10000000000002d, 0x0)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
gettid()
sendfile$auto(0x6, r0, 0x0, 0x8000)
socket(0xa, 0x801, 0x84)
shutdown$auto(0x200000003, 0x2)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r1 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/smaps\x00', 0x20000, 0x0)
read$auto_proc_pid_smaps_operations_internal(r1, &(0x7f0000000040)=""/121, 0x79)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)

4.702901664s ago: executing program 0 (id=4996):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(r0, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000080)={&(0x7f0000000540)={0x4f0, 0x0, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_UNSPEC={0x101, 0x0, "f6611a9cf6fa9596689242366f4254db3975c67c600ea85b918d702299166762e27321e9593da849753fc2b1b23cf754540bd17ed83d47d65d3fe091db1b57ea611097b0692b27ff50b52f9a98ac339d68c34bcd899a870f76ef7034197e6ebd5aa204d60e83e9248b05c33b32a50e2856b1a27df4f880d7295d98f0d30a0c3f6baac767376109ac1f703ae9d4ecaf2f2e20c173b41199eb5bfb28c059a8b50936508d087220397cb1533944fc2e342d90036158ae5fae833739692a925adc93e921af9e963371789498d2a7fffa0611b02b2cc96f12a36be415ede36b0dfcada887ba5583f821db38e6ccecff3cfe7591eb26a4e9ff4d0be48b0f3da4"}, @TIPC_NLA_MON={0x265, 0x9, 0x0, 0x1, [@nested={0x152, 0x14, 0x0, 0x1, [@generic="f62eb2e7f40120e98a97f50aee06085a12e4a1633cf66f0fc9deb78699", @typed={0x2c, 0x55, 0x0, 0x0, @str='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'}, @generic="302ab0aecdc07ce995d374f2e1346cad136f545e87dd71a2cc47380d0c2ba158c0e212187bfd3a5227b89972f40c0b635faa96ccf5e3ccadbc443f04e753ec149ce2dc6bb5282b14c689993c8eb4474415a0bfa48588f95da65d", @nested={0x4, 0x17}, @generic="ebbc862cb91abf819432274599f594bc00a6742bd61d8b5ece83a86003ede877cb49fd854690a70957002d891a4853be592194ac9d39cd8aa7875be16efab8f247fed6536c842d2d8eeb4b8b440748843df2a0500531eaf01faa0d2fa9f125c439a8467af42eb2d5a0616abfe54865f470e6224f1f608f30512a96eae0ce48c40f83e1131226599281975c40345cf0428d088c3910131048ac1757d5504847147a6e49e15a935b"]}, @generic="6b1306c657276b6e2caba5ebb118b656500609de487974599cdde69be5d4220dff74763a5862d557f28fedab09752011be9053759da60cad47eaf4ac7a56b2b726768074f86a3487d4471b788a2ca26a9894e11e05fa662c5ccd138d1c0b5429766c9d0fc469785513f4d6f76465a2fd07d4add97c7beea3417133b363dc17adfc9c5e0f8fbb31af00d8eee710b0d0c2bb4424b4320aac10f8fba622081a", @generic="7e0dd0bf0ac926ccff6ada58d553a85edfb8893c821de0eac3005a8df6714e0e0d8d140227d9bee9d1c3c8308a8131e806612f6403e2f3b532d10dea84c4e2856e37223679b85f4c6d4a314a365646c7e3ca2261eb266ba0b56e1933b22c742715e50e61baacbc", @typed={0x8, 0x148, 0x0, 0x0, @fd=r0}]}, @TIPC_NLA_PUBL={0x16f, 0x3, 0x0, 0x1, [@generic="693d45082ac8d3116a648ae3eff6f8b9c4713b6ae54a21418ddd8be0431ec004dd894347434b79c27c96324525d62a058078a35f15476c5d15bb40f52ee7df8a2a480a37ae65", @nested={0xf4, 0xae, 0x0, 0x1, [@generic="27b1bfc5c75ddc6d621f5736a1fa3298e1d481691ebb80d6f72d86d0954048cdd627b0249928f7bf64481d0388d055564bb4a2ca117be20b8e929ff77f98d620a80e69c957ecc3e4e64e949c029d6e493c1be05ffd67583a6b49928402eef95e3686d8d711876e6966f328c4f6baa5ca84a75f83c311a11bc040d95869cbf2bf9b78b635f98ae53d8d79fc357dd57a5e8f4c21bcc3b1f0585690d41926625b1d99eb4e8d55dcafdb6fd53738c99ca19425e011eb8e40644c9caf6f1d3ff48814b201548c0bdbe538c3f60b7b4b362d15", @typed={0x8, 0x23, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x4, 0x1f}, @generic, @typed={0x14, 0x32, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, @nested={0x8, 0x5, 0x0, 0x1, [@nested={0x4, 0x21}]}, @generic="34491e102a69c7c0ecd9002648f76f43569ca98fcdafcc077fc0a82f2b3aeeea2dd2a8c478a83ed9a1"]}]}, 0x4f0}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r1 = socket(0x18, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
execveat$auto(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)=0x0, 0x76000000)
memfd_create$auto(&(0x7f0000000000)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00', 0x10)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
mknod$auto(&(0x7f0000000000)='\x00\x00\x00\x00\x00\x00\x00', 0x1001, 0x4)
open(&(0x7f0000000000)='./file1\x00', 0x1, 0x180)
open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0xeb)
setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x4)

4.580995699s ago: executing program 5 (id=4997):
r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000700)='/dev/binderfs/binder0\x00', 0x0, 0x0)
setsockopt$auto(0x400000000000003, 0x69, 0xc9, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioctl$auto_TUNGETIFF(r1, 0x800454d2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x6, 0x1f, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x400200000000001, 0xb4, 0x9, 0x8, 0x10007, 0x80, 0x7, 0x0, 0xa, 0x21fff, 0x200, 0x0, 0x83, [0x2, 0x0, 0x0, 0x2, 0x0, 0x2000, 0x0, 0xe, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x8, 0x0, 0x6, 0x0, 0xfffffffffffbfffd, 0x2000000000000004, 0x10000000000001, 0x10000000000, 0xffffffffffffffff, 0x4, 0xfffffffffffffe00, 0x0, 0x0, 0x5, 0x400000000005b8, 0xffff, 0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x7, 0xa38, 0xffffffffffffffff, 0x3, 0xfffffffffffffffc, 0x2, 0x1, 0x7, 0xc567]}, 0x1fe, 0xd)
r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd11, &(0x7f00000001c0))
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x20001, 0x0)
pwritev$auto(0x5, &(0x7f0000000080)={&(0x7f0000000040), 0x19}, 0x2, 0x9, 0x8)
mkdir$auto(&(0x7f00000001c0)='}[,&*}\x00', 0xc001)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
open(&(0x7f0000000100)='.\x00', 0x0, 0x47a)
lseek$auto(0x0, 0x3, 0x1)
mmap$auto_binder_fops_binder_internal(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x12, r0, 0x100000000)

4.228338535s ago: executing program 4 (id=4962):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x1d, 0x80000, 0x10000001)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x2)
socket(0x1d, 0x2, 0x407)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdd, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mtdblock0\x00', 0x10d441, 0x0)
write$auto(r0, 0x0, 0xfffffffc)

3.956023911s ago: executing program 4 (id=5000):
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000180), 0x2200, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r0 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r0, 0x107, 0x1, 0x0, 0x8004)
r1 = socket(0x10, 0x2, 0x4)
io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x401, 0x8, 0xfe, 0x6fb3, 0x8a, 0x40000009, 0xffffffffffffffff, [0x100, 0x9, 0x7f], {0x2, 0x7, 0x3032, 0xe, 0xf, 0x5, 0x5, 0xfffffff9, 0xf08a2b3}, {0x0, 0xfc, 0x6, 0x1, 0x0, 0xf89, 0x9, 0x837, 0x8}})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'dummy0\x00'})
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/user\x00')
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x2404c000)
write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/transparent_hugepage/khugepaged/defrag\x00', 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = socket(0x2b, 0x1, 0x0)
ppoll$auto(&(0x7f0000000000)={r3, 0x8, 0x6}, 0x7, 0x0, 0x0, 0x8)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x104000000000010e, 0xb, 0x0, 0x400)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0)
read$auto_proc_page_owner_operations_page_owner(r4, 0x0, 0xffb8)
mmap$auto(0x7, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x800)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
read$auto(r5, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)

3.519317504s ago: executing program 5 (id=5003):
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041)
r0 = socket(0x2a, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000140))
connect$auto(r0, &(0x7f0000000040)=@can, 0x8)
recvfrom$auto(r0, 0x0, 0x4, 0x100, 0x0, 0xfffffffffffffffd)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5)
write$auto(0x3, 0x0, 0xfffffdef)
unshare$auto(0x40000080)
socket(0xa, 0x3, 0x3a)
epoll_wait$auto(r0, &(0x7f0000000000)={0x7, 0x800000000000009}, 0x7ff, 0x6)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x567)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x10000000000002d, 0x0)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
gettid()
connect$auto(0xffffffffffffffff, 0x0, 0x55)
sendfile$auto(0x6, r0, 0x0, 0x8000)
socket(0xa, 0x801, 0x84)
shutdown$auto(0x200000003, 0x2)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r1 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/smaps\x00', 0x20000, 0x0)
read$auto_proc_pid_smaps_operations_internal(r1, &(0x7f0000000040)=""/121, 0x79)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)

3.445468429s ago: executing program 0 (id=5005):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b75, 0x800, 0x28000)
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x9, 0x11, r0, 0x0)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages$auto(r1, 0x1002, 0x0, 0x0, 0x0, 0x2)
ioperm$auto(0x7, 0x6, 0x3)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x40000000000, 0x202000c, 0x3, 0xeb0, 0xfffffffffffffffb, 0x8000)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
socket(0x4c, 0x80002, 0x73)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
socketpair$auto(0x1e, 0x101, 0x8000000000000000, 0x0)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
read$auto(0x3, 0x0, 0x7ffffffff000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x5, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140), 0x55)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
socket(0x11, 0x3, 0x2)
mmap$auto(0x0, 0xe30d, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x5, 0x8000)

2.789294964s ago: executing program 4 (id=5007):
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x227c, 0x3b)
ioctl$auto_FUSE_DEV_IOC_BACKING_OPEN(0xffffffffffffffff, 0x4010e501, &(0x7f0000000000)={<r0=>0xffffffffffffffff, 0x6b13})
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/net/bond0/queues/tx-10/xps_cpus\x00', 0x8080, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x18, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001100)='/sys/devices/system/cpu/cpu1/cache/index0/coherency_line_size\x00', 0x20a700, 0x0)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/028/001\x00', 0xa901, 0x0)
socket(0x10, 0x2, 0x0)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001200)=ANY=[@ANYBLOB="c4120000", @ANYRES16=0x0, @ANYBLOB="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"/4694, @ANYRES32=0x0, @ANYBLOB="4f0035803a308a48491350a43bbfd1e465e97435f56511af160414d40fcc9d38979ae4db0ca45059b241f1601d7f84a3938851bc96d609f42937763d53c9a74d2fd094810be42ea30084b1d11529f3000c00d30007000000000000000500420000000000"], 0x12c4}, 0x1, 0x0, 0x0, 0x4004080}, 0x10)
ioctl$auto(r1, 0xc0105500, r1)

2.778216256s ago: executing program 6 (id=5008):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/028/001\x00', 0xa901, 0x0)
ioctl$auto(r0, 0xc0105500, r0)

2.61252115s ago: executing program 6 (id=5009):
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xd, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x4048)
close_range$auto(0x2, 0xa, 0x0)
r0 = socket(0x18, 0xa, 0x1)
mmap$auto(0x0, 0x4, 0xfffffffffffffff9, 0x40eb1, r0, 0x300000000000)
read$auto_bm_entry_operations_binfmt_misc(0xffffffffffffffff, &(0x7f0000000100)=""/34, 0x22)
r1 = socket(0x29, 0x2, 0x3)
ioctl$auto(r1, 0x89e2, 0x38)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = open(0x0, 0x261c2, 0x84)
close_range$auto(0x2, 0x8000, 0x0)
r4 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000280)={'dummy0\x00', <r6=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r6, r5, 0x4, 0x1ff, r4, @relative_fd=r3, 0xe600}, 0xf)
bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, r3, 0x0, 0x3}, 0xc)

2.228443737s ago: executing program 6 (id=5010):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/usb/drivers/ni6501/uevent\x00', 0x600044, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='/sys/devices/platform/i8042/serio1/resync_time\x00')
acct$auto(0x0)

2.025328582s ago: executing program 5 (id=5011):
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041)
r0 = socket(0x2a, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000140))
connect$auto(r0, &(0x7f0000000040)=@can, 0x8)
recvfrom$auto(r0, 0x0, 0x4, 0x100, 0x0, 0xfffffffffffffffd)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5)
write$auto(0x3, 0x0, 0xfffffdef)
unshare$auto(0x40000080)
socket(0xa, 0x3, 0x3a)
epoll_wait$auto(r0, &(0x7f0000000000)={0x7, 0x800000000000009}, 0x7ff, 0x6)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x567)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x10000000000002d, 0x0)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
gettid()
connect$auto(0xffffffffffffffff, 0x0, 0x55)
sendfile$auto(0x6, r0, 0x0, 0x8000)
socket(0xa, 0x801, 0x84)
shutdown$auto(0x200000003, 0x2)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r1 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/smaps\x00', 0x20000, 0x0)
read$auto_proc_pid_smaps_operations_internal(r1, &(0x7f0000000040)=""/121, 0x79)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)

2.02488145s ago: executing program 6 (id=5012):
r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000700)='/dev/binderfs/binder0\x00', 0x0, 0x0)
setsockopt$auto(0x400000000000003, 0x69, 0xc9, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioctl$auto_TUNGETIFF(r1, 0x800454d2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x6, 0x1f, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x400200000000001, 0xb4, 0x9, 0x8, 0x10007, 0x80, 0x7, 0x0, 0xa, 0x21fff, 0x200, 0x0, 0x83, [0x2, 0x0, 0x0, 0x2, 0x0, 0x2000, 0x0, 0xe, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x8, 0x0, 0x6, 0x0, 0xfffffffffffbfffd, 0x2000000000000004, 0x10000000000001, 0x10000000000, 0xffffffffffffffff, 0x4, 0xfffffffffffffe00, 0x0, 0x0, 0x5, 0x400000000005b8, 0xffff, 0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x7, 0xa38, 0xffffffffffffffff, 0x3, 0xfffffffffffffffc, 0x2, 0x1, 0x7, 0xc567]}, 0x1fe, 0xd)
r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd11, &(0x7f00000001c0))
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x20001, 0x0)
pwritev$auto(0x5, &(0x7f0000000080)={&(0x7f0000000040), 0x19}, 0x2, 0x9, 0x8)
mkdir$auto(&(0x7f00000001c0)='}[,&*}\x00', 0xc001)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
open(&(0x7f0000000100)='.\x00', 0x0, 0x47a)
lseek$auto(0x0, 0x3, 0x1)
mmap$auto_binder_fops_binder_internal(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x12, r0, 0x100000000)

1.813243879s ago: executing program 0 (id=5013):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(0x4, 0x0, 0xe69)
mprotect$auto(0x0, 0x4, 0x4)
read$auto(0x4, 0x0, 0xfdef)
open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x0)

1.411112159s ago: executing program 0 (id=5014):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x1d, 0x80000, 0x10000001)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x2)
socket(0x1d, 0x2, 0x407)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdd, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mtdblock0\x00', 0x10d441, 0x0)
write$auto(r0, 0x0, 0xfffffffc)

966.292547ms ago: executing program 0 (id=5015):
mmap$auto(0xfffffffffffffffe, 0x400005, 0xfffffffffffffffe, 0x14, 0xffffffffffffffff, 0x1)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
sendto$auto(0xffffffffffffffff, &(0x7f0000000200), 0xb, 0x5, &(0x7f0000000240), 0xc8e)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
fcntl$auto(0xffffffffffffffff, 0x3078, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ovs_meter(0x0, 0xffffffffffffffff)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r0 = socket(0x15, 0x5, 0x0)
bind$auto(r0, &(0x7f0000000300), 0x68)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000003240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40)
r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r1, 0x1, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x8040)
write$auto(0x3, 0x0, 0xfffffdef)
setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0xdf, 0x91, 0xfff, 0x8001)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0xffffffffffff0001, 0x17)
socket(0x26, 0xa, 0x0)
process_mrelease$auto(0x24d, 0xd)
mmap$auto(0x0, 0x1, 0x4000000000df, 0x44eb2, 0x3, 0x300000000000)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000)
mmap$auto(0x6, 0x100, 0xdf, 0x9b7e, 0x2, 0x7ffd)
r2 = socket(0x11, 0x80003, 0x300)
mincore$auto(0x1000, 0x8001, 0x0)
setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)

807.983834ms ago: executing program 6 (id=5016):
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000180), 0x2200, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r0 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r0, 0x107, 0x1, 0x0, 0x8004)
r1 = socket(0x10, 0x2, 0x4)
io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x401, 0x8, 0xfe, 0x6fb3, 0x8a, 0x40000009, 0xffffffffffffffff, [0x100, 0x9, 0x7f], {0x2, 0x7, 0x3032, 0xe, 0xf, 0x5, 0x5, 0xfffffff9, 0xf08a2b3}, {0x0, 0xfc, 0x6, 0x1, 0x0, 0xf89, 0x9, 0x837, 0x8}})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'dummy0\x00'})
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/user\x00')
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x2404c000)
write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/transparent_hugepage/khugepaged/defrag\x00', 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = socket(0x2b, 0x1, 0x0)
ppoll$auto(&(0x7f0000000000)={r3, 0x8, 0x6}, 0x7, 0x0, 0x0, 0x8)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x104000000000010e, 0xb, 0x0, 0x400)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0)
read$auto_proc_page_owner_operations_page_owner(r4, 0x0, 0xffb8)
mmap$auto(0x7, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x800)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
read$auto(r5, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)

383.240213ms ago: executing program 5 (id=5017):
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041)
r0 = socket(0x2a, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000140))
connect$auto(r0, &(0x7f0000000040)=@can, 0x8)
recvfrom$auto(r0, 0x0, 0x4, 0x100, 0x0, 0xfffffffffffffffd)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5)
write$auto(0x3, 0x0, 0xfffffdef)
unshare$auto(0x40000080)
socket(0xa, 0x3, 0x3a)
epoll_wait$auto(r0, &(0x7f0000000000)={0x7, 0x800000000000009}, 0x7ff, 0x6)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x567)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x10000000000002d, 0x0)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
gettid()
sendfile$auto(0x6, r0, 0x0, 0x8000)
socket(0xa, 0x801, 0x84)
shutdown$auto(0x200000003, 0x2)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r1 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/smaps\x00', 0x20000, 0x0)
read$auto_proc_pid_smaps_operations_internal(r1, &(0x7f0000000040)=""/121, 0x79)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)

50.146203ms ago: executing program 6 (id=5018):
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0x3, 0x0, 0x2a, 0x0, 0x10001)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), r0)
sendmsg$auto_WG_CMD_SET_DEVICE(r0, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)={0x28, r1, 0x21, 0x70bd26, 0x25dfdbfa, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'veth0_to_hsr\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x841}, 0x80)

0s ago: executing program 0 (id=5019):
ioctl$auto(0xffffffffffffffff, 0xc0105500, 0xffffffffffffffff)

kernel console output (not intermixed with test programs):

ll Trace:
[  927.135096][T17462]  <TASK>
[  927.138029][T17462]  dump_stack_lvl+0x116/0x1f0
[  927.142720][T17462]  should_fail_ex+0x497/0x5b0
[  927.147411][T17462]  should_failslab+0xc2/0x120
[  927.152095][T17462]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  927.157475][T17462]  ? __send_signal_locked+0x159/0x11a0
[  927.162946][T17462]  ? sig_get_ucounts+0x1c0/0x5b0
[  927.167899][T17462]  __send_signal_locked+0x159/0x11a0
[  927.173199][T17462]  ? __lock_task_sighand+0x146/0x340
[  927.178499][T17462]  group_send_sig_info+0x2aa/0x300
[  927.183620][T17462]  ? __pfx_group_send_sig_info+0x10/0x10
[  927.189262][T17462]  ? trace_lock_acquire+0x14e/0x1f0
[  927.194468][T17462]  ? __pfx_lock_release+0x10/0x10
[  927.199496][T17462]  ? kill_something_info+0x5b/0x310
[  927.204732][T17462]  __kill_pgrp_info+0x8f/0x110
[  927.209519][T17462]  kill_something_info+0xf9/0x310
[  927.214575][T17462]  ? __task_pid_nr_ns+0x186/0x500
[  927.219643][T17462]  __x64_sys_kill+0xdc/0x140
[  927.224256][T17462]  ? __pfx___x64_sys_kill+0x10/0x10
[  927.229463][T17462]  ? __pfx_native_tss_update_io_bitmap+0x10/0x10
[  927.235797][T17462]  ? ksys_write+0x1ba/0x250
[  927.240318][T17462]  do_syscall_64+0xcd/0x250
[  927.244920][T17462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  927.250824][T17462] RIP: 0033:0x7fd457785d29
[  927.255249][T17462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  927.274867][T17462] RSP: 002b:00007fd45855a038 EFLAGS: 00000246 ORIG_RAX: 000000000000003e
[  927.283287][T17462] RAX: ffffffffffffffda RBX: 00007fd457975fa0 RCX: 00007fd457785d29
[  927.291299][T17462] RDX: 0000000000000000 RSI: 0000000000000021 RDI: 0000000000000000
[  927.299272][T17462] RBP: 00007fd45855a090 R08: 0000000000000000 R09: 0000000000000000
[  927.307251][T17462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  927.315226][T17462] R13: 0000000000000000 R14: 00007fd457975fa0 R15: 00007ffe13e49cc8
[  927.323213][T17462]  </TASK>
[  930.183780][T17510] FAULT_INJECTION: forcing a failure.
[  930.183780][T17510] name failslab, interval 1, probability 0, space 0, times 0
[  930.216385][T17510] CPU: 1 UID: 0 PID: 17510 Comm: syz.4.3519 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  930.227216][T17510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  930.237302][T17510] Call Trace:
[  930.240614][T17510]  <TASK>
[  930.243580][T17510]  dump_stack_lvl+0x16c/0x1f0
[  930.248321][T17510]  should_fail_ex+0x497/0x5b0
[  930.253039][T17510]  ? fs_reclaim_acquire+0xae/0x150
[  930.258198][T17510]  should_failslab+0xc2/0x120
[  930.262945][T17510]  __kmalloc_cache_node_noprof+0x6f/0x3f0
[  930.268689][T17510]  ? __get_vm_area_node+0x101/0x2f0
[  930.273929][T17510]  __get_vm_area_node+0x101/0x2f0
[  930.278990][T17510]  ? vb2_fop_write+0x202/0x3e0
[  930.283795][T17510]  __vmalloc_node_range_noprof+0x26a/0x1530
[  930.289732][T17510]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  930.294984][T17510]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  930.300224][T17510]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  930.306602][T17510]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  930.311747][T17510]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  930.317224][T17510]  vmalloc_user_noprof+0x6b/0x90
[  930.322175][T17510]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  930.327301][T17510]  vb2_vmalloc_alloc+0x11e/0x3d0
[  930.332257][T17510]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  930.337729][T17510]  __vb2_queue_alloc+0x896/0x1230
[  930.342783][T17510]  vb2_core_reqbufs+0xa73/0xfb0
[  930.347656][T17510]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  930.353067][T17510]  __vb2_init_fileio+0x3f3/0x1110
[  930.358135][T17510]  ? __mutex_lock+0x1cc/0xa60
[  930.362860][T17510]  ? vb2_fop_write+0xe3/0x3e0
[  930.367569][T17510]  __vb2_perform_fileio+0x9de/0x1620
[  930.372884][T17510]  ? __pfx___vb2_perform_fileio+0x10/0x10
[  930.378626][T17510]  vb2_fop_write+0x202/0x3e0
[  930.383235][T17510]  v4l2_write+0x226/0x360
[  930.387634][T17510]  ? __pfx_v4l2_write+0x10/0x10
[  930.392511][T17510]  vfs_write+0x24c/0x1150
[  930.396947][T17510]  ? __fget_files+0x1fc/0x3a0
[  930.401637][T17510]  ? __pfx_lock_release+0x10/0x10
[  930.406667][T17510]  ? __pfx_vfs_write+0x10/0x10
[  930.411443][T17510]  ? lock_acquire+0x2f/0xb0
[  930.415951][T17510]  ? __fget_files+0x40/0x3a0
[  930.420563][T17510]  ? __fget_files+0x206/0x3a0
[  930.425274][T17510]  ksys_write+0x12b/0x250
[  930.429618][T17510]  ? __pfx_ksys_write+0x10/0x10
[  930.434486][T17510]  do_syscall_64+0xcd/0x250
[  930.439005][T17510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  930.444909][T17510] RIP: 0033:0x7f0393985d29
[  930.449351][T17510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  930.469191][T17510] RSP: 002b:00007f03947ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  930.477702][T17510] RAX: ffffffffffffffda RBX: 00007f0393b75fa0 RCX: 00007f0393985d29
[  930.485680][T17510] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  930.493668][T17510] RBP: 00007f03947ca090 R08: 0000000000000000 R09: 0000000000000000
[  930.501646][T17510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  930.509628][T17510] R13: 0000000000000000 R14: 00007f0393b75fa0 R15: 00007ffd2ff403d8
[  930.517619][T17510]  </TASK>
[  930.536548][T17510] syz.4.3519: vmalloc error: size 831488, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  930.584042][T17510] CPU: 0 UID: 0 PID: 17510 Comm: syz.4.3519 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  930.594866][T17510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  930.604934][T17510] Call Trace:
[  930.608225][T17510]  <TASK>
[  930.611158][T17510]  dump_stack_lvl+0x16c/0x1f0
[  930.615849][T17510]  warn_alloc+0x24d/0x3a0
[  930.620194][T17510]  ? __pfx_warn_alloc+0x10/0x10
[  930.625119][T17510]  ? __kmalloc_cache_node_noprof+0x245/0x3f0
[  930.631117][T17510]  ? __kasan_kmalloc+0x8a/0xb0
[  930.635902][T17510]  ? __get_vm_area_node+0x1dc/0x2f0
[  930.641141][T17510]  __vmalloc_node_range_noprof+0xd27/0x1530
[  930.647076][T17510]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  930.652329][T17510]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  930.658873][T17510]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  930.664026][T17510]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  930.669543][T17510]  vmalloc_user_noprof+0x6b/0x90
[  930.674528][T17510]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  930.679690][T17510]  vb2_vmalloc_alloc+0x11e/0x3d0
[  930.684665][T17510]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  930.690147][T17510]  __vb2_queue_alloc+0x896/0x1230
[  930.695225][T17510]  vb2_core_reqbufs+0xa73/0xfb0
[  930.700124][T17510]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  930.705542][T17510]  __vb2_init_fileio+0x3f3/0x1110
[  930.710644][T17510]  ? __mutex_lock+0x1cc/0xa60
[  930.715345][T17510]  ? vb2_fop_write+0xe3/0x3e0
[  930.720043][T17510]  __vb2_perform_fileio+0x9de/0x1620
[  930.725351][T17510]  ? __pfx___vb2_perform_fileio+0x10/0x10
[  930.731116][T17510]  vb2_fop_write+0x202/0x3e0
[  930.735746][T17510]  v4l2_write+0x226/0x360
[  930.740094][T17510]  ? __pfx_v4l2_write+0x10/0x10
[  930.745037][T17510]  vfs_write+0x24c/0x1150
[  930.749412][T17510]  ? __fget_files+0x1fc/0x3a0
[  930.754118][T17510]  ? __pfx_lock_release+0x10/0x10
[  930.759179][T17510]  ? __pfx_vfs_write+0x10/0x10
[  930.763963][T17510]  ? lock_acquire+0x2f/0xb0
[  930.768477][T17510]  ? __fget_files+0x40/0x3a0
[  930.773093][T17510]  ? __fget_files+0x206/0x3a0
[  930.777793][T17510]  ksys_write+0x12b/0x250
[  930.782140][T17510]  ? __pfx_ksys_write+0x10/0x10
[  930.787006][T17510]  do_syscall_64+0xcd/0x250
[  930.791523][T17510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  930.797430][T17510] RIP: 0033:0x7f0393985d29
[  930.801853][T17510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  930.821474][T17510] RSP: 002b:00007f03947ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  930.829991][T17510] RAX: ffffffffffffffda RBX: 00007f0393b75fa0 RCX: 00007f0393985d29
[  930.837970][T17510] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  930.845951][T17510] RBP: 00007f03947ca090 R08: 0000000000000000 R09: 0000000000000000
[  930.853929][T17510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  930.861901][T17510] R13: 0000000000000000 R14: 00007f0393b75fa0 R15: 00007ffd2ff403d8
[  930.869978][T17510]  </TASK>
[  930.886202][T17510] Mem-Info:
[  930.889379][T17510] active_anon:12174 inactive_anon:0 isolated_anon:0
[  930.889379][T17510]  active_file:3508 inactive_file:56114 isolated_file:0
[  930.889379][T17510]  unevictable:768 dirty:646 writeback:0
[  930.889379][T17510]  slab_reclaimable:11314 slab_unreclaimable:112524
[  930.889379][T17510]  mapped:24585 shmem:1468 pagetables:804
[  930.889379][T17510]  sec_pagetables:0 bounce:0
[  930.889379][T17510]  kernel_misc_reclaimable:0
[  930.889379][T17510]  free:1309283 free_pcp:679 free_cma:0
[  930.967715][T17510] Node 0 active_anon:49896kB inactive_anon:0kB active_file:14032kB inactive_file:224388kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:98340kB dirty:2580kB writeback:0kB shmem:4236kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11036kB pagetables:3116kB sec_pagetables:0kB all_unreclaimable? no
[  931.008983][T17510] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:68kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  931.040085][T17510] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  931.068183][T17510] lowmem_reserve[]: 0 2465 2466 0 0
[  931.074070][T17510] Node 0 DMA32 free:1315720kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:49260kB inactive_anon:0kB active_file:14032kB inactive_file:223556kB unevictable:1536kB writepending:2580kB present:3129332kB managed:2551336kB mlocked:0kB bounce:0kB free_pcp:3956kB local_pcp:2680kB free_cma:0kB
[  931.110650][T17510] lowmem_reserve[]: 0 0 0 0 0
[  931.115652][T17510] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:832kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  931.163785][T17510] lowmem_reserve[]: 0 0 0 0 0
[  931.169275][T17510] Node 1 Normal free:3904784kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:68kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  931.200111][T17510] lowmem_reserve[]: 0 0 0 0 0
[  931.207170][T17510] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  931.227092][T17510] Node 0 DMA32: 5724*4kB (UM) 6393*8kB (UME) 5725*16kB (UME) 4549*32kB (UME) 3302*64kB (UME) 1976*128kB (UME) 982*256kB (UME) 265*512kB (UM) 65*1024kB (UME) 9*2048kB (UME) 17*4096kB (UME) = 1317160kB
[  931.248306][T17510] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  931.274278][T17510] Node 1 Normal: 254*4kB (UME) 67*8kB (UME) 48*16kB (UME) 248*32kB (UME) 102*64kB (UME) 25*128kB (UME) 17*256kB (UME) 3*512kB (UM) 4*1024kB (UME) 2*2048kB (UE) 945*4096kB (M) = 3904784kB
[  931.311316][T17510] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  931.321790][T17510] Node 0 hugepages_total=3 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  931.341914][T17510] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  931.357547][T17510] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  931.393123][T17510] 61062 total pagecache pages
[  931.421531][T17510] 2 pages in swap cache
[  931.425748][T17510] Free swap  = 124600kB
[  931.440537][T17510] Total swap = 124996kB
[  931.444754][T17510] 2097051 pages RAM
[  931.455597][T17510] 0 pages HighMem/MovableOnly
[  931.465860][T17510] 427367 pages reserved
[  931.471306][T17510] 0 pages cma reserved
[  931.938219][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  931.944709][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  932.698232][T17551] FAULT_INJECTION: forcing a failure.
[  932.698232][T17551] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  932.711771][T17551] CPU: 0 UID: 0 PID: 17551 Comm: syz.4.3531 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  932.722565][T17551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  932.732643][T17551] Call Trace:
[  932.735917][T17551]  <TASK>
[  932.738846][T17551]  dump_stack_lvl+0x16c/0x1f0
[  932.743536][T17551]  should_fail_ex+0x497/0x5b0
[  932.748229][T17551]  _copy_from_user+0x2e/0xd0
[  932.752839][T17551]  kstrtouint_from_user+0xd7/0x1c0
[  932.757956][T17551]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  932.763725][T17551]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  932.769392][T17551]  proc_fail_nth_write+0x84/0x250
[  932.774461][T17551]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  932.780122][T17551]  ? ksys_write+0x12b/0x250
[  932.784631][T17551]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  932.790269][T17551]  vfs_write+0x24c/0x1150
[  932.794612][T17551]  ? __pfx_vfs_write+0x10/0x10
[  932.799373][T17551]  ? do_sys_openat2+0xb1/0x1e0
[  932.804145][T17551]  ? __pfx_do_sys_openat2+0x10/0x10
[  932.809356][T17551]  ksys_write+0x12b/0x250
[  932.813697][T17551]  ? __pfx_ksys_write+0x10/0x10
[  932.818594][T17551]  do_syscall_64+0xcd/0x250
[  932.823134][T17551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  932.829051][T17551] RIP: 0033:0x7f03939847df
[  932.833464][T17551] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  932.853076][T17551] RSP: 002b:00007f03947ca030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  932.861496][T17551] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f03939847df
[  932.869488][T17551] RDX: 0000000000000001 RSI: 00007f03947ca0a0 RDI: 0000000000000004
[  932.877495][T17551] RBP: 00007f03947ca090 R08: 0000000000000000 R09: 0000000000000000
[  932.885487][T17551] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  932.893474][T17551] R13: 0000000000000000 R14: 00007f0393b75fa0 R15: 00007ffd2ff403d8
[  932.901468][T17551]  </TASK>
[  935.217231][T17577] netlink: 350 bytes leftover after parsing attributes in process `syz.0.3539'.
[  935.453058][T17580] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  935.480235][T17580] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  935.810491][T17599] ALSA: mixer_oss: invalid OSS volume ' '
[  936.743150][T17628] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  936.969723][T17640] __vm_enough_memory: pid: 17640, comm: syz.5.3560, bytes: 4503599627366400 not enough memory for the allocation
[  937.024247][T17639] Invalid ELF header magic: != ELF
[  937.031860][T17638] Invalid ELF header magic: != ELF
[  938.183169][T17666] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  939.079030][T17694] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  939.431321][T17690] ALSA: mixer_oss: invalid OSS volume ' '
[  939.818506][T17712] __vm_enough_memory: pid: 17712, comm: syz.5.3582, bytes: 4503599627366400 not enough memory for the allocation
[  939.842598][T17718] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3586'.
[  941.465673][T17743] ALSA: mixer_oss: invalid OSS volume ' '
[  944.668247][T17796] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3607'.
[  944.733755][T17794] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3607'.
[  947.064890][T17834] FAULT_INJECTION: forcing a failure.
[  947.064890][T17834] name failslab, interval 1, probability 0, space 0, times 0
[  947.080049][T17834] CPU: 1 UID: 0 PID: 17834 Comm: syz.5.3618 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  947.090852][T17834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  947.101093][T17834] Call Trace:
[  947.104380][T17834]  <TASK>
[  947.107313][T17834]  dump_stack_lvl+0x16c/0x1f0
[  947.112015][T17834]  should_fail_ex+0x497/0x5b0
[  947.116704][T17834]  ? fs_reclaim_acquire+0xae/0x150
[  947.121839][T17834]  should_failslab+0xc2/0x120
[  947.126530][T17834]  __kmalloc_noprof+0xce/0x4f0
[  947.131305][T17834]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  947.138775][T17834]  ? lockdep_hardirqs_on+0x7c/0x110
[  947.144004][T17834]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  947.151152][T17834]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  947.156640][T17834]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  947.162725][T17834]  ? genl_get_cmd+0x195/0x580
[  947.167423][T17834]  ? bpf_lsm_capable+0x9/0x10
[  947.172111][T17834]  ? security_capable+0x7e/0x260
[  947.177073][T17834]  genl_rcv_msg+0x565/0x800
[  947.181591][T17834]  ? __pfx_genl_rcv_msg+0x10/0x10
[  947.186645][T17834]  ? __pfx_ila_xlat_nl_cmd_add_mapping+0x10/0x10
[  947.193005][T17834]  netlink_rcv_skb+0x165/0x410
[  947.197788][T17834]  ? __pfx_genl_rcv_msg+0x10/0x10
[  947.202826][T17834]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  947.208128][T17834]  ? down_read+0xc9/0x330
[  947.212467][T17834]  ? __pfx_down_read+0x10/0x10
[  947.217242][T17834]  ? netlink_deliver_tap+0x1ae/0xca0
[  947.222537][T17834]  genl_rcv+0x28/0x40
[  947.226525][T17834]  netlink_unicast+0x53c/0x7f0
[  947.231301][T17834]  ? __pfx_netlink_unicast+0x10/0x10
[  947.236602][T17834]  ? __phys_addr_symbol+0x30/0x80
[  947.241636][T17834]  ? __check_object_size+0x488/0x710
[  947.246937][T17834]  netlink_sendmsg+0x8b8/0xd70
[  947.251711][T17834]  ? __pfx_netlink_sendmsg+0x10/0x10
[  947.257014][T17834]  ____sys_sendmsg+0x9ae/0xb40
[  947.261796][T17834]  ? copy_msghdr_from_user+0x10b/0x160
[  947.267268][T17834]  ? __pfx_____sys_sendmsg+0x10/0x10
[  947.272657][T17834]  ___sys_sendmsg+0x135/0x1e0
[  947.277347][T17834]  ? __pfx____sys_sendmsg+0x10/0x10
[  947.282570][T17834]  ? __pfx_lock_release+0x10/0x10
[  947.287612][T17834]  ? trace_lock_acquire+0x14e/0x1f0
[  947.292832][T17834]  ? __fget_files+0x206/0x3a0
[  947.297529][T17834]  __sys_sendmsg+0x16e/0x220
[  947.302147][T17834]  ? __pfx___sys_sendmsg+0x10/0x10
[  947.307290][T17834]  do_syscall_64+0xcd/0x250
[  947.311813][T17834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  947.317720][T17834] RIP: 0033:0x7f81cf385d29
[  947.322143][T17834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  947.341761][T17834] RSP: 002b:00007f81d029d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  947.350183][T17834] RAX: ffffffffffffffda RBX: 00007f81cf575fa0 RCX: 00007f81cf385d29
[  947.358166][T17834] RDX: 0000000000000004 RSI: 0000000020000340 RDI: 0000000000000003
[  947.366145][T17834] RBP: 00007f81d029d090 R08: 0000000000000000 R09: 0000000000000000
[  947.374128][T17834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  947.382102][T17834] R13: 0000000000000000 R14: 00007f81cf575fa0 R15: 00007fff7a0e5558
[  947.390096][T17834]  </TASK>
[  947.851536][T17843] netlink: 338 bytes leftover after parsing attributes in process `syz.6.3621'.
[  947.862357][T17843] netlink: 338 bytes leftover after parsing attributes in process `syz.6.3621'.
[  949.668387][T17875] netlink: 338 bytes leftover after parsing attributes in process `syz.0.3632'.
[  949.679503][T17875] netlink: 338 bytes leftover after parsing attributes in process `syz.0.3632'.
[  950.197478][T17892] smc: net device syz_tun applied user defined pnetid ETHTOOL
[  950.259236][T17889] FAULT_INJECTION: forcing a failure.
[  950.259236][T17889] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  950.286616][T17889] CPU: 0 UID: 0 PID: 17889 Comm: syz.4.3637 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  950.297452][T17889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  950.307546][T17889] Call Trace:
[  950.310844][T17889]  <TASK>
[  950.313802][T17889]  dump_stack_lvl+0x16c/0x1f0
[  950.318525][T17889]  should_fail_ex+0x497/0x5b0
[  950.323242][T17889]  ? fs_reclaim_acquire+0xae/0x150
[  950.328399][T17889]  should_fail_alloc_page+0xe7/0x130
[  950.333736][T17889]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  950.339934][T17889]  ? __page_table_check_zero+0x2d7/0x360
[  950.345621][T17889]  __alloc_pages_noprof+0x190/0x25b0
[  950.350951][T17889]  ? post_alloc_hook+0x2c0/0x350
[  950.355911][T17889]  ? get_page_from_freelist+0xfce/0x2f80
[  950.361567][T17889]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  950.367310][T17889]  ? __pfx___might_resched+0x10/0x10
[  950.372602][T17889]  ? fs_reclaim_acquire+0xae/0x150
[  950.377722][T17889]  ? prepare_alloc_pages.constprop.0+0x16f/0x560
[  950.384074][T17889]  ? rcu_is_watching+0x12/0xc0
[  950.388864][T17889]  ? __alloc_pages_noprof+0x402/0x25b0
[  950.394347][T17889]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  950.400268][T17889]  ? policy_nodemask+0xea/0x4e0
[  950.405139][T17889]  alloc_pages_mpol_noprof+0x2c9/0x610
[  950.410614][T17889]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  950.416609][T17889]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  950.422356][T17889]  ? __pfx_alloc_pgt_page+0x10/0x10
[  950.427577][T17889]  kimage_alloc_pages+0x75/0x300
[  950.432536][T17889]  ? __pfx_alloc_pgt_page+0x10/0x10
[  950.437755][T17889]  kimage_alloc_control_pages+0x148/0x8e0
[  950.443494][T17889]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[  950.449741][T17889]  ? alloc_pages_mpol_noprof+0x315/0x610
[  950.455399][T17889]  ? __pfx_alloc_pgt_page+0x10/0x10
[  950.460621][T17889]  alloc_pgt_page+0x17/0x60
[  950.465136][T17889]  kernel_ident_mapping_init+0x1ee/0x390
[  950.470791][T17889]  machine_kexec_prepare+0x27e/0xcc0
[  950.476090][T17889]  ? __pfx_machine_kexec_prepare+0x10/0x10
[  950.481909][T17889]  ? __pfx_alloc_pgt_page+0x10/0x10
[  950.487214][T17889]  do_kexec_load+0x703/0x8c0
[  950.491814][T17889]  ? __might_fault+0xe3/0x190
[  950.496506][T17889]  ? __pfx_do_kexec_load+0x10/0x10
[  950.501636][T17889]  ? _copy_from_user+0x59/0xd0
[  950.506415][T17889]  __x64_sys_kexec_load+0x1bf/0x230
[  950.511627][T17889]  do_syscall_64+0xcd/0x250
[  950.516166][T17889]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  950.522111][T17889] RIP: 0033:0x7f0393985d29
[  950.526544][T17889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  950.546178][T17889] RSP: 002b:00007f03947ca038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[  950.554603][T17889] RAX: ffffffffffffffda RBX: 00007f0393b75fa0 RCX: 00007f0393985d29
[  950.562582][T17889] RDX: 0000000020000040 RSI: 0000000000000002 RDI: 0000000000000005
[  950.570564][T17889] RBP: 00007f03947ca090 R08: 0000000000000000 R09: 0000000000000000
[  950.578538][T17889] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[  950.586520][T17889] R13: 0000000000000000 R14: 00007f0393b75fa0 R15: 00007ffd2ff403d8
[  950.594509][T17889]  </TASK>
[  953.076281][T17940] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3655'.
[  953.234342][T17945] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3656'.
[  954.283302][T17962] ptrace attach of "./syz-executor exec"[14365] was attempted by "./syz-executor exec"[17962]
[  955.100285][T17983] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3669'.
[  955.747274][T17998] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3676'.
[  956.418097][T18006] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  957.998738][T18046] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  960.158764][T18078] smc: net device syz_tun applied user defined pnetid ETHTOOL
[  960.546758][T18085] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3707'.
[  961.002043][T18099] Invalid ELF header magic: != ELF
[  962.768569][T18138] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3723'.
[  965.638491][T18188] netlink: 306 bytes leftover after parsing attributes in process `syz.6.3737'.
[  965.845502][T18192] Invalid ELF header magic: != ELF
[  968.168186][T18223] netlink: 306 bytes leftover after parsing attributes in process `syz.5.3749'.
[  970.045697][T18265] netlink: 306 bytes leftover after parsing attributes in process `syz.0.3766'.
[  970.245444][T18272] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3768'.
[  970.493394][T18279] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  970.541346][T18279] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  971.330465][T18307] netlink: 306 bytes leftover after parsing attributes in process `syz.0.3778'.
[  972.142148][T18299] kexec: Could not allocate control_code_buffer
[  972.586872][T18333] Invalid ELF header magic: != ELF
[  973.170739][T18343] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3788'.
[  974.908307][T18367] netlink: 217 bytes leftover after parsing attributes in process `syz.5.3794'.
[  975.054025][T18373] Invalid ELF header magic: != ELF
[  975.945664][T18396] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3802'.
[  976.671442][T18407] netlink: 217 bytes leftover after parsing attributes in process `syz.0.3806'.
[  978.170320][T18441] netlink: 217 bytes leftover after parsing attributes in process `syz.6.3817'.
[  978.757944][T18456] Invalid ELF header magic: != ELF
[  978.778350][T18452] netlink: 338 bytes leftover after parsing attributes in process `syz.6.3828'.
[  980.665323][T18490] Invalid ELF header magic: != ELF
[  980.675660][T18490] netlink: 338 bytes leftover after parsing attributes in process `syz.0.3831'.
[  981.299001][T18508] Invalid ELF header magic: != ELF
[  981.309467][T18508] netlink: 338 bytes leftover after parsing attributes in process `syz.0.3837'.
[  985.824040][T18610] Invalid ELF header magic: != ELF
[  985.847205][T18610] netlink: 346 bytes leftover after parsing attributes in process `syz.6.3866'.
[  986.928187][T18621] Invalid ELF header magic: != ELF
[  987.098245][T18621] netlink: 346 bytes leftover after parsing attributes in process `syz.0.3871'.
[  990.473340][T18669] Invalid ELF header magic: != ELF
[  990.580717][T18666] netlink: 346 bytes leftover after parsing attributes in process `syz.6.3883'.
[  993.444300][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  993.450962][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  994.744900][T18724] FAULT_INJECTION: forcing a failure.
[  994.744900][T18724] name failslab, interval 1, probability 0, space 0, times 0
[  994.824941][T18724] CPU: 1 UID: 0 PID: 18724 Comm: syz.5.3897 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[  994.835775][T18724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  994.845861][T18724] Call Trace:
[  994.849163][T18724]  <TASK>
[  994.852113][T18724]  dump_stack_lvl+0x16c/0x1f0
[  994.856833][T18724]  should_fail_ex+0x497/0x5b0
[  994.861546][T18724]  ? fs_reclaim_acquire+0xae/0x150
[  994.866693][T18724]  should_failslab+0xc2/0x120
[  994.871406][T18724]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  994.877252][T18724]  ? __alloc_skb+0x2b3/0x380
[  994.881879][T18724]  __alloc_skb+0x2b3/0x380
[  994.886326][T18724]  ? __pfx___alloc_skb+0x10/0x10
[  994.891303][T18724]  netlink_alloc_large_skb+0x69/0x130
[  994.896705][T18724]  netlink_sendmsg+0x689/0xd70
[  994.901512][T18724]  ? __pfx_netlink_sendmsg+0x10/0x10
[  994.906837][T18724]  ____sys_sendmsg+0x9ae/0xb40
[  994.911639][T18724]  ? copy_msghdr_from_user+0x10b/0x160
[  994.917140][T18724]  ? __pfx_____sys_sendmsg+0x10/0x10
[  994.922450][T18724]  ? __lock_acquire+0xcc5/0x3c40
[  994.927511][T18724]  ? hlock_class+0x4e/0x130
[  994.932044][T18724]  ? __lock_acquire+0x15a9/0x3c40
[  994.937119][T18724]  ___sys_sendmsg+0x135/0x1e0
[  994.941850][T18724]  ? __pfx____sys_sendmsg+0x10/0x10
[  994.947091][T18724]  ? __pfx___lock_acquire+0x10/0x10
[  994.952370][T18724]  ? __pfx___might_resched+0x10/0x10
[  994.957698][T18724]  ? __might_fault+0xe3/0x190
[  994.962507][T18724]  __sys_sendmmsg+0x201/0x420
[  994.967235][T18724]  ? __pfx___sys_sendmmsg+0x10/0x10
[  994.972480][T18724]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  994.978507][T18724]  ? fput+0x67/0x440
[  994.982440][T18724]  ? ksys_write+0x1ba/0x250
[  994.986994][T18724]  ? __pfx_ksys_write+0x10/0x10
[  994.991874][T18724]  __x64_sys_sendmmsg+0x9c/0x100
[  994.996850][T18724]  ? lockdep_hardirqs_on+0x7c/0x110
[  995.002092][T18724]  do_syscall_64+0xcd/0x250
[  995.006637][T18724]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  995.012567][T18724] RIP: 0033:0x7f81cf385d29
[  995.017018][T18724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  995.036660][T18724] RSP: 002b:00007f81d029d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  995.045101][T18724] RAX: ffffffffffffffda RBX: 00007f81cf575fa0 RCX: 00007f81cf385d29
[  995.053101][T18724] RDX: 0000000000000003 RSI: 0000000020000080 RDI: 0000000000000003
[  995.061096][T18724] RBP: 00007f81d029d090 R08: 0000000000000000 R09: 0000000000000000
[  995.069098][T18724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  995.077099][T18724] R13: 0000000000000000 R14: 00007f81cf575fa0 R15: 00007fff7a0e5558
[  995.085116][T18724]  </TASK>
[  999.987125][T18768] kexec: Could not allocate control_code_buffer
[ 1003.295757][T18821] kAFS: bad VL server IP address
[ 1017.500339][T19028] netlink: 'syz.4.3975': attribute type 1 has an invalid length.
[ 1021.634354][T19079] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3989'.
[ 1021.706411][T19079] ipvlan0: entered allmulticast mode
[ 1021.711766][T19079] veth0_vlan: entered allmulticast mode
[ 1023.496201][T19121] program syz.0.3999 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1023.756190][T19120] netlink: 'syz.6.3997': attribute type 1 has an invalid length.
[ 1025.348367][T19147] FAULT_INJECTION: forcing a failure.
[ 1025.348367][T19147] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1025.376522][T19147] CPU: 0 UID: 0 PID: 19147 Comm: syz.0.4006 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1025.387358][T19147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1025.397445][T19147] Call Trace:
[ 1025.400747][T19147]  <TASK>
[ 1025.403700][T19147]  dump_stack_lvl+0x16c/0x1f0
[ 1025.408416][T19147]  should_fail_ex+0x497/0x5b0
[ 1025.413129][T19147]  ? fs_reclaim_acquire+0xae/0x150
[ 1025.418275][T19147]  should_fail_alloc_page+0xe7/0x130
[ 1025.423603][T19147]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1025.429804][T19147]  __alloc_pages_noprof+0x190/0x25b0
[ 1025.435147][T19147]  ? hlock_class+0x4e/0x130
[ 1025.439696][T19147]  ? mark_lock+0xb5/0xc60
[ 1025.444075][T19147]  ? __pfx_mark_lock+0x10/0x10
[ 1025.448888][T19147]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1025.454650][T19147]  ? hlock_class+0x4e/0x130
[ 1025.459199][T19147]  ? mark_lock+0xb5/0xc60
[ 1025.463575][T19147]  ? hlock_class+0x4e/0x130
[ 1025.468119][T19147]  ? mark_lock+0xb5/0xc60
[ 1025.472496][T19147]  ? __pfx_mark_lock+0x10/0x10
[ 1025.477301][T19147]  ? __pfx_mark_lock+0x10/0x10
[ 1025.482107][T19147]  ? hlock_class+0x4e/0x130
[ 1025.486655][T19147]  ? __lock_acquire+0xcc5/0x3c40
[ 1025.491634][T19147]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1025.497570][T19147]  ? policy_nodemask+0xea/0x4e0
[ 1025.502481][T19147]  alloc_pages_mpol_noprof+0x2c9/0x610
[ 1025.507991][T19147]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1025.514016][T19147]  ? __lock_acquire+0xcc5/0x3c40
[ 1025.519018][T19147]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1025.524355][T19147]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1025.529673][T19147]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1025.535602][T19147]  ? find_held_lock+0x2d/0x110
[ 1025.540414][T19147]  do_pte_missing+0x2017/0x3e00
[ 1025.545320][T19147]  __handle_mm_fault+0x103c/0x2a40
[ 1025.550486][T19147]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1025.555980][T19147]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1025.561661][T19147]  ? find_vma+0xc0/0x140
[ 1025.565951][T19147]  ? __pfx_find_vma+0x10/0x10
[ 1025.570664][T19147]  handle_mm_fault+0x3fa/0xaa0
[ 1025.575473][T19147]  do_user_addr_fault+0x7a3/0x13f0
[ 1025.580630][T19147]  exc_page_fault+0x5c/0xc0
[ 1025.585172][T19147]  asm_exc_page_fault+0x26/0x30
[ 1025.590070][T19147] RIP: 0010:__put_user_8+0x11/0x20
[ 1025.595221][T19147] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <48> 89 01 31 c9 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 1025.614870][T19147] RSP: 0018:ffffc900030b7c98 EFLAGS: 00050206
[ 1025.620983][T19147] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000020002000
[ 1025.628982][T19147] RDX: ffff88802f9e5a00 RSI: ffffffff8237d7d1 RDI: ffffffff8bb16ec0
[ 1025.637153][T19147] RBP: 00000000011ffa80 R08: 0000000000000000 R09: fffffbfff2039c42
[ 1025.645147][T19147] R10: ffffffff901ce217 R11: 0000000000000001 R12: 0000000020002000
[ 1025.653146][T19147] R13: 00000000000000b0 R14: dffffc0000000000 R15: 0000000000000000
[ 1025.661153][T19147]  ? kpagecount_read+0x211/0x570
[ 1025.666141][T19147]  kpagecount_read+0x21c/0x570
[ 1025.670942][T19147]  ? __pfx_kpagecount_read+0x10/0x10
[ 1025.676269][T19147]  proc_reg_read+0x11d/0x330
[ 1025.680896][T19147]  ? rw_verify_area+0xd0/0x700
[ 1025.685688][T19147]  ? __pfx_proc_reg_read+0x10/0x10
[ 1025.690833][T19147]  vfs_read+0x1df/0xbe0
[ 1025.695027][T19147]  ? __fget_files+0x1fc/0x3a0
[ 1025.699736][T19147]  ? __pfx___mutex_lock+0x10/0x10
[ 1025.704789][T19147]  ? __pfx_vfs_read+0x10/0x10
[ 1025.709505][T19147]  ? __fget_files+0x206/0x3a0
[ 1025.714221][T19147]  ksys_read+0x12b/0x250
[ 1025.718489][T19147]  ? __pfx_ksys_read+0x10/0x10
[ 1025.723292][T19147]  do_syscall_64+0xcd/0x250
[ 1025.727829][T19147]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1025.733761][T19147] RIP: 0033:0x7fd457785d29
[ 1025.738196][T19147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1025.757836][T19147] RSP: 002b:00007fd45855a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1025.766291][T19147] RAX: ffffffffffffffda RBX: 00007fd457975fa0 RCX: 00007fd457785d29
[ 1025.774290][T19147] RDX: 00000000fffffea1 RSI: 0000000020001a80 RDI: 0000000000000006
[ 1025.782285][T19147] RBP: 00007fd45855a090 R08: 0000000000000000 R09: 0000000000000000
[ 1025.790280][T19147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1025.798274][T19147] R13: 0000000000000000 R14: 00007fd457975fa0 R15: 00007ffe13e49cc8
[ 1025.806290][T19147]  </TASK>
[ 1030.040629][T19215] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4027'.
[ 1030.566876][T19222] netlink: 330 bytes leftover after parsing attributes in process `syz.6.4030'.
[ 1030.596469][T19222] net veth1_virt_wifi ›: renamed from virt_wifi0
[ 1031.187856][T19243] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4037'.
[ 1031.230255][T19243] veth1_macvtap: left promiscuous mode
[ 1033.238011][T19288] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4052'.
[ 1034.465460][T19317] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4062'.
[ 1034.993209][T19335] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4068'.
[ 1035.019844][T19335] veth1_macvtap: left promiscuous mode
[ 1042.129273][T19521] FAULT_INJECTION: forcing a failure.
[ 1042.129273][T19521] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1042.147668][T19519] Process accounting resumed
[ 1042.190291][T19519] Process accounting resumed
[ 1042.190849][T19521] CPU: 1 UID: 0 PID: 19521 Comm: syz.4.4125 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1042.205680][T19521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1042.215761][T19521] Call Trace:
[ 1042.219064][T19521]  <TASK>
[ 1042.222015][T19521]  dump_stack_lvl+0x16c/0x1f0
[ 1042.226730][T19521]  should_fail_ex+0x497/0x5b0
[ 1042.231446][T19521]  _copy_to_user+0x32/0xd0
[ 1042.235902][T19521]  simple_read_from_buffer+0xd0/0x160
[ 1042.241310][T19521]  proc_fail_nth_read+0x198/0x270
[ 1042.246375][T19521]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1042.251962][T19521]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1042.257548][T19521]  vfs_read+0x1df/0xbe0
[ 1042.261731][T19521]  ? __fget_files+0x1fc/0x3a0
[ 1042.266437][T19521]  ? __pfx___mutex_lock+0x10/0x10
[ 1042.271505][T19521]  ? __pfx_vfs_read+0x10/0x10
[ 1042.276227][T19521]  ? __fget_files+0x206/0x3a0
[ 1042.280944][T19521]  ksys_read+0x12b/0x250
[ 1042.285223][T19521]  ? __pfx_ksys_read+0x10/0x10
[ 1042.290031][T19521]  do_syscall_64+0xcd/0x250
[ 1042.294574][T19521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1042.300506][T19521] RIP: 0033:0x7f039398473c
[ 1042.304943][T19521] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1042.324584][T19521] RSP: 002b:00007f03947ca030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1042.333040][T19521] RAX: ffffffffffffffda RBX: 00007f0393b75fa0 RCX: 00007f039398473c
[ 1042.341044][T19521] RDX: 000000000000000f RSI: 00007f03947ca0a0 RDI: 0000000000000003
[ 1042.349051][T19521] RBP: 00007f03947ca090 R08: 0000000000000000 R09: 0000000000000000
[ 1042.357059][T19521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1042.365058][T19521] R13: 0000000000000000 R14: 00007f0393b75fa0 R15: 00007ffd2ff403d8
[ 1042.373073][T19521]  </TASK>
[ 1042.376242][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1043.515282][T19552] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4136'.
[ 1044.606506][T19562] delete_channel: no stack
[ 1045.599537][T19593] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4148'.
[ 1045.726449][T19593] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4148'.
[ 1048.206528][T19649] netlink: 'syz.6.4168': attribute type 4 has an invalid length.
[ 1048.221623][T19649] netlink: 314 bytes leftover after parsing attributes in process `syz.6.4168'.
[ 1048.438502][T19659] FAULT_INJECTION: forcing a failure.
[ 1048.438502][T19659] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1048.451867][T19659] CPU: 0 UID: 0 PID: 19659 Comm: syz.4.4171 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1048.462650][T19659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1048.472735][T19659] Call Trace:
[ 1048.476018][T19659]  <TASK>
[ 1048.478954][T19659]  dump_stack_lvl+0x16c/0x1f0
[ 1048.483643][T19659]  should_fail_ex+0x497/0x5b0
[ 1048.488327][T19659]  ? fs_reclaim_acquire+0xae/0x150
[ 1048.493444][T19659]  should_fail_alloc_page+0xe7/0x130
[ 1048.498742][T19659]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1048.504908][T19659]  __alloc_pages_noprof+0x190/0x25b0
[ 1048.510203][T19659]  ? stack_trace_save+0x95/0xd0
[ 1048.515065][T19659]  ? __pfx_stack_trace_save+0x10/0x10
[ 1048.520444][T19659]  ? stack_depot_save_flags+0x28/0x9e0
[ 1048.525917][T19659]  ? kasan_save_stack+0x42/0x60
[ 1048.530779][T19659]  ? kasan_save_stack+0x33/0x60
[ 1048.535642][T19659]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1048.541372][T19659]  ? rds_cong_get_maps+0x21/0xe0
[ 1048.546322][T19659]  ? rds_conn_create_outgoing+0x44/0x60
[ 1048.551874][T19659]  ? ____sys_sendmsg+0x9ae/0xb40
[ 1048.556820][T19659]  ? ___sys_sendmsg+0x135/0x1e0
[ 1048.561683][T19659]  ? __sys_sendmsg+0x16e/0x220
[ 1048.566454][T19659]  ? do_syscall_64+0xcd/0x250
[ 1048.571136][T19659]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1048.577223][T19659]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1048.583127][T19659]  ? policy_nodemask+0xea/0x4e0
[ 1048.587992][T19659]  alloc_pages_mpol_noprof+0x2c9/0x610
[ 1048.593464][T19659]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1048.599458][T19659]  ? lockdep_init_map_type+0x16d/0x7d0
[ 1048.604930][T19659]  get_zeroed_page_noprof+0x14/0x50
[ 1048.610132][T19659]  rds_cong_from_addr+0x15b/0x540
[ 1048.615175][T19659]  ? __kmalloc_noprof+0x23b/0x4f0
[ 1048.620221][T19659]  rds_cong_get_maps+0x21/0xe0
[ 1048.624996][T19659]  ? __ipv6_addr_type+0x225/0x300
[ 1048.630031][T19659]  __rds_conn_create+0xb02/0x2310
[ 1048.635071][T19659]  ? __pfx___rds_conn_create+0x10/0x10
[ 1048.640543][T19659]  ? lockdep_init_map_type+0x16d/0x7d0
[ 1048.646013][T19659]  ? rcu_is_watching+0x12/0xc0
[ 1048.650792][T19659]  rds_conn_create_outgoing+0x44/0x60
[ 1048.656174][T19659]  rds_sendmsg+0x136c/0x33b0
[ 1048.660789][T19659]  ? __pfx_rds_sendmsg+0x10/0x10
[ 1048.665745][T19659]  ? aa_sk_perm+0x2f5/0xb20
[ 1048.670264][T19659]  ? __pfx_lock_release+0x10/0x10
[ 1048.675293][T19659]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1048.680168][T19659]  ? ____sys_sendmsg+0x9ae/0xb40
[ 1048.685111][T19659]  ____sys_sendmsg+0x9ae/0xb40
[ 1048.689884][T19659]  ? copy_msghdr_from_user+0x10b/0x160
[ 1048.695352][T19659]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1048.700651][T19659]  ___sys_sendmsg+0x135/0x1e0
[ 1048.705341][T19659]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1048.710564][T19659]  ? __pfx_lock_release+0x10/0x10
[ 1048.715591][T19659]  ? trace_lock_acquire+0x14e/0x1f0
[ 1048.720808][T19659]  ? __fget_files+0x206/0x3a0
[ 1048.725498][T19659]  __sys_sendmsg+0x16e/0x220
[ 1048.730103][T19659]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1048.735242][T19659]  do_syscall_64+0xcd/0x250
[ 1048.739759][T19659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1048.745666][T19659] RIP: 0033:0x7f0393985d29
[ 1048.750082][T19659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1048.769783][T19659] RSP: 002b:00007f03947ca038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1048.778207][T19659] RAX: ffffffffffffffda RBX: 00007f0393b75fa0 RCX: 00007f0393985d29
[ 1048.786182][T19659] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1048.794153][T19659] RBP: 00007f03947ca090 R08: 0000000000000000 R09: 0000000000000000
[ 1048.802131][T19659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1048.810102][T19659] R13: 0000000000000000 R14: 00007f0393b75fa0 R15: 00007ffd2ff403d8
[ 1048.818088][T19659]  </TASK>
[ 1054.338710][T19725] FAULT_INJECTION: forcing a failure.
[ 1054.338710][T19725] name failslab, interval 1, probability 0, space 0, times 0
[ 1054.392697][T19725] CPU: 0 UID: 0 PID: 19725 Comm: syz.6.4192 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1054.403527][T19725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1054.413617][T19725] Call Trace:
[ 1054.416919][T19725]  <TASK>
[ 1054.419877][T19725]  dump_stack_lvl+0x16c/0x1f0
[ 1054.424595][T19725]  should_fail_ex+0x497/0x5b0
[ 1054.429316][T19725]  ? fs_reclaim_acquire+0xae/0x150
[ 1054.434482][T19725]  should_failslab+0xc2/0x120
[ 1054.439201][T19725]  __kmalloc_cache_noprof+0x68/0x420
[ 1054.444530][T19725]  ? kasan_save_track+0x14/0x30
[ 1054.446809][T19729] lo: entered allmulticast mode
[ 1054.449404][T19725]  kvm_arch_vcpu_create+0x36a/0xae0
[ 1054.449452][T19725]  kvm_vm_ioctl+0xf93/0x3df0
[ 1054.464108][T19725]  ? security_file_ioctl+0x9b/0x240
[ 1054.469344][T19725]  ? mark_lock+0xb5/0xc60
[ 1054.473715][T19725]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[ 1054.477252][T19729] lo: left allmulticast mode
[ 1054.478753][T19725]  ? __pfx_mark_lock+0x10/0x10
[ 1054.488144][T19725]  ? find_held_lock+0x2d/0x110
[ 1054.492949][T19725]  ? tomoyo_path_number_perm+0x298/0x5b0
[ 1054.498638][T19725]  ? __pfx_lock_release+0x10/0x10
[ 1054.503703][T19725]  ? tomoyo_path_number_perm+0x46d/0x5b0
[ 1054.509383][T19725]  ? tomoyo_path_number_perm+0x190/0x5b0
[ 1054.515062][T19725]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1054.521086][T19725]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1054.527003][T19725]  ? do_vfs_ioctl+0x513/0x1950
[ 1054.531775][T19725]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1054.536834][T19725]  ? __pfx_lock_release+0x10/0x10
[ 1054.541885][T19725]  ? trace_lock_acquire+0x14e/0x1f0
[ 1054.547134][T19725]  ? __fget_files+0x206/0x3a0
[ 1054.551858][T19725]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[ 1054.556901][T19725]  __x64_sys_ioctl+0x190/0x200
[ 1054.561697][T19725]  do_syscall_64+0xcd/0x250
[ 1054.566230][T19725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1054.572165][T19725] RIP: 0033:0x7fb098b85d29
[ 1054.576624][T19725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1054.596355][T19725] RSP: 002b:00007fb0999a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1054.603815][T19733] lo: entered allmulticast mode
[ 1054.604819][T19725] RAX: ffffffffffffffda RBX: 00007fb098d75fa0 RCX: 00007fb098b85d29
[ 1054.604842][T19725] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 1054.604859][T19725] RBP: 00007fb0999a0090 R08: 0000000000000000 R09: 0000000000000000
[ 1054.610616][T19733] lo: left allmulticast mode
[ 1054.617651][T19725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1054.617671][T19725] R13: 0000000000000000 R14: 00007fb098d75fa0 R15: 00007fffbc5b6af8
[ 1054.617703][T19725]  </TASK>
[ 1054.818529][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.825840][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.092562][T19753] FAULT_INJECTION: forcing a failure.
[ 1055.092562][T19753] name failslab, interval 1, probability 0, space 0, times 0
[ 1055.105470][T19753] CPU: 0 UID: 0 PID: 19753 Comm: syz.5.4202 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1055.116612][T19753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1055.126672][T19753] Call Trace:
[ 1055.129983][T19753]  <TASK>
[ 1055.132922][T19753]  dump_stack_lvl+0x16c/0x1f0
[ 1055.137618][T19753]  should_fail_ex+0x497/0x5b0
[ 1055.142307][T19753]  ? fs_reclaim_acquire+0xae/0x150
[ 1055.147425][T19753]  should_failslab+0xc2/0x120
[ 1055.152123][T19753]  __kmalloc_noprof+0xce/0x4f0
[ 1055.156896][T19753]  ? d_absolute_path+0x137/0x1b0
[ 1055.162285][T19753]  ? tomoyo_encode2+0x100/0x3e0
[ 1055.167148][T19753]  tomoyo_encode2+0x100/0x3e0
[ 1055.171836][T19753]  tomoyo_realpath_from_path+0x1a7/0x710
[ 1055.177487][T19753]  tomoyo_path_number_perm+0x248/0x5b0
[ 1055.182966][T19753]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1055.188623][T19753]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1055.194648][T19753]  ? __pfx_lock_release+0x10/0x10
[ 1055.199682][T19753]  ? trace_lock_acquire+0x14e/0x1f0
[ 1055.204893][T19753]  ? lock_acquire+0x2f/0xb0
[ 1055.209403][T19753]  ? __fget_files+0x40/0x3a0
[ 1055.214005][T19753]  ? __fget_files+0x206/0x3a0
[ 1055.218700][T19753]  security_file_ioctl+0x9b/0x240
[ 1055.223736][T19753]  __x64_sys_ioctl+0xb7/0x200
[ 1055.228421][T19753]  do_syscall_64+0xcd/0x250
[ 1055.233036][T19753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1055.238941][T19753] RIP: 0033:0x7f81cf385d29
[ 1055.243359][T19753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1055.262975][T19753] RSP: 002b:00007f81d027c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1055.271397][T19753] RAX: ffffffffffffffda RBX: 00007f81cf576080 RCX: 00007f81cf385d29
[ 1055.279373][T19753] RDX: 0000000000000000 RSI: 0000000080044940 RDI: 0000000000000003
[ 1055.287360][T19753] RBP: 00007f81d027c090 R08: 0000000000000000 R09: 0000000000000000
[ 1055.295346][T19753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1055.303416][T19753] R13: 0000000000000001 R14: 00007f81cf576080 R15: 00007fff7a0e5558
[ 1055.311842][T19753]  </TASK>
[ 1055.333867][T19753] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1056.898951][T19791] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4218'.
[ 1057.032211][T19799] FAULT_INJECTION: forcing a failure.
[ 1057.032211][T19799] name failslab, interval 1, probability 0, space 0, times 0
[ 1057.100883][T19799] CPU: 0 UID: 0 PID: 19799 Comm: syz.4.4221 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1057.111905][T19799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1057.122000][T19799] Call Trace:
[ 1057.125311][T19799]  <TASK>
[ 1057.128270][T19799]  dump_stack_lvl+0x16c/0x1f0
[ 1057.132993][T19799]  should_fail_ex+0x497/0x5b0
[ 1057.137722][T19799]  ? fs_reclaim_acquire+0xae/0x150
[ 1057.142871][T19799]  should_failslab+0xc2/0x120
[ 1057.147594][T19799]  __kmalloc_noprof+0xce/0x4f0
[ 1057.152398][T19799]  ? d_absolute_path+0x137/0x1b0
[ 1057.157381][T19799]  ? tomoyo_encode2+0x100/0x3e0
[ 1057.162276][T19799]  tomoyo_encode2+0x100/0x3e0
[ 1057.167001][T19799]  tomoyo_realpath_from_path+0x1a7/0x710
[ 1057.172695][T19799]  tomoyo_path_number_perm+0x248/0x5b0
[ 1057.178199][T19799]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1057.183883][T19799]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1057.189970][T19799]  ? __pfx_lock_release+0x10/0x10
[ 1057.195041][T19799]  ? trace_lock_acquire+0x14e/0x1f0
[ 1057.200284][T19799]  ? lock_acquire+0x2f/0xb0
[ 1057.204815][T19799]  ? __fget_files+0x40/0x3a0
[ 1057.209445][T19799]  ? __fget_files+0x206/0x3a0
[ 1057.214166][T19799]  security_file_ioctl+0x9b/0x240
[ 1057.219225][T19799]  __x64_sys_ioctl+0xb7/0x200
[ 1057.223937][T19799]  do_syscall_64+0xcd/0x250
[ 1057.228485][T19799]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1057.234425][T19799] RIP: 0033:0x7f0393985d29
[ 1057.238871][T19799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1057.258518][T19799] RSP: 002b:00007f03947ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1057.266968][T19799] RAX: ffffffffffffffda RBX: 00007f0393b75fa0 RCX: 00007f0393985d29
[ 1057.275066][T19799] RDX: 0000000000000d4e RSI: 00000000401870cc RDI: 0000000000000003
[ 1057.283249][T19799] RBP: 00007f03947ca090 R08: 0000000000000000 R09: 0000000000000000
[ 1057.291251][T19799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1057.299261][T19799] R13: 0000000000000000 R14: 00007f0393b75fa0 R15: 00007ffd2ff403d8
[ 1057.307283][T19799]  </TASK>
[ 1057.397938][T19799] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1058.483384][T19827] FAULT_INJECTION: forcing a failure.
[ 1058.483384][T19827] name failslab, interval 1, probability 0, space 0, times 0
[ 1058.523429][T19827] CPU: 0 UID: 0 PID: 19827 Comm: syz.6.4233 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1058.534261][T19827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1058.544352][T19827] Call Trace:
[ 1058.547658][T19827]  <TASK>
[ 1058.550614][T19827]  dump_stack_lvl+0x16c/0x1f0
[ 1058.555332][T19827]  should_fail_ex+0x497/0x5b0
[ 1058.560050][T19827]  ? fs_reclaim_acquire+0xae/0x150
[ 1058.565200][T19827]  should_failslab+0xc2/0x120
[ 1058.569920][T19827]  __kmalloc_node_noprof+0xd1/0x520
[ 1058.575165][T19827]  ? __kvmalloc_node_noprof+0xad/0x1a0
[ 1058.580669][T19827]  __kvmalloc_node_noprof+0xad/0x1a0
[ 1058.586079][T19827]  seq_read_iter+0x82a/0x12b0
[ 1058.590797][T19827]  ? __pfx_aa_file_perm+0x10/0x10
[ 1058.595864][T19827]  seq_read+0x39f/0x4e0
[ 1058.600055][T19827]  ? __pfx_seq_read+0x10/0x10
[ 1058.604785][T19827]  ? __pfx_seq_read+0x10/0x10
[ 1058.609494][T19827]  vfs_read+0x1df/0xbe0
[ 1058.613706][T19827]  ? __fget_files+0x1fc/0x3a0
[ 1058.618418][T19827]  ? __pfx___mutex_lock+0x10/0x10
[ 1058.623480][T19827]  ? __pfx_vfs_read+0x10/0x10
[ 1058.628221][T19827]  ? __fget_files+0x206/0x3a0
[ 1058.632948][T19827]  ksys_read+0x12b/0x250
[ 1058.637226][T19827]  ? __pfx_ksys_read+0x10/0x10
[ 1058.642034][T19827]  do_syscall_64+0xcd/0x250
[ 1058.646590][T19827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1058.652521][T19827] RIP: 0033:0x7fb098b85d29
[ 1058.656973][T19827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1058.676617][T19827] RSP: 002b:00007fb0999a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1058.685067][T19827] RAX: ffffffffffffffda RBX: 00007fb098d75fa0 RCX: 00007fb098b85d29
[ 1058.693073][T19827] RDX: 0000000000000089 RSI: 0000000020000040 RDI: 0000000000000003
[ 1058.701073][T19827] RBP: 00007fb0999a0090 R08: 0000000000000000 R09: 0000000000000000
[ 1058.709073][T19827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1058.717072][T19827] R13: 0000000000000000 R14: 00007fb098d75fa0 R15: 00007fffbc5b6af8
[ 1058.725097][T19827]  </TASK>
[ 1060.151618][T19863] lo: entered allmulticast mode
[ 1060.250673][T19862] lo: left allmulticast mode
[ 1061.175757][T19883] Process accounting resumed
[ 1062.524035][T19930] nfsd: Unknown parameter 'nfsd'
[ 1064.469831][T19984] FAULT_INJECTION: forcing a failure.
[ 1064.469831][T19984] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1064.532419][T19984] CPU: 1 UID: 0 PID: 19984 Comm: syz.6.4287 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1064.543265][T19984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1064.553357][T19984] Call Trace:
[ 1064.556660][T19984]  <TASK>
[ 1064.559617][T19984]  dump_stack_lvl+0x16c/0x1f0
[ 1064.564338][T19984]  should_fail_ex+0x497/0x5b0
[ 1064.569054][T19984]  _copy_to_user+0x32/0xd0
[ 1064.573479][T19984]  simple_read_from_buffer+0xd0/0x160
[ 1064.578877][T19984]  proc_fail_nth_read+0x198/0x270
[ 1064.583948][T19984]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1064.589536][T19984]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1064.595111][T19984]  vfs_read+0x1df/0xbe0
[ 1064.599268][T19984]  ? __fget_files+0x1fc/0x3a0
[ 1064.603947][T19984]  ? __pfx___mutex_lock+0x10/0x10
[ 1064.608981][T19984]  ? __pfx_vfs_read+0x10/0x10
[ 1064.613685][T19984]  ? __fget_files+0x206/0x3a0
[ 1064.618368][T19984]  ksys_read+0x12b/0x250
[ 1064.622622][T19984]  ? __pfx_ksys_read+0x10/0x10
[ 1064.627409][T19984]  do_syscall_64+0xcd/0x250
[ 1064.631953][T19984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1064.637905][T19984] RIP: 0033:0x7fb098b8473c
[ 1064.642361][T19984] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1064.662278][T19984] RSP: 002b:00007fb0999a0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1064.670735][T19984] RAX: ffffffffffffffda RBX: 00007fb098d75fa0 RCX: 00007fb098b8473c
[ 1064.678740][T19984] RDX: 000000000000000f RSI: 00007fb0999a00a0 RDI: 0000000000000003
[ 1064.686741][T19984] RBP: 00007fb0999a0090 R08: 0000000000000000 R09: 0000000000000000
[ 1064.694745][T19984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1064.702747][T19984] R13: 0000000000000001 R14: 00007fb098d75fa0 R15: 00007fffbc5b6af8
[ 1064.710773][T19984]  </TASK>
[ 1065.013561][T20000] FAULT_INJECTION: forcing a failure.
[ 1065.013561][T20000] name failslab, interval 1, probability 0, space 0, times 0
[ 1065.027862][T20000] CPU: 1 UID: 0 PID: 20000 Comm: syz.5.4293 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1065.038651][T20000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1065.048736][T20000] Call Trace:
[ 1065.052030][T20000]  <TASK>
[ 1065.054962][T20000]  dump_stack_lvl+0x16c/0x1f0
[ 1065.059654][T20000]  should_fail_ex+0x497/0x5b0
[ 1065.064354][T20000]  ? fs_reclaim_acquire+0xae/0x150
[ 1065.069484][T20000]  should_failslab+0xc2/0x120
[ 1065.074178][T20000]  __kmalloc_noprof+0xce/0x4f0
[ 1065.079062][T20000]  ? ima_write_template_field_data+0xe9/0x1c0
[ 1065.085169][T20000]  ima_write_template_field_data+0xe9/0x1c0
[ 1065.091106][T20000]  ima_eventname_init_common.isra.0+0x113/0x1f0
[ 1065.097380][T20000]  ? __pfx_ima_eventname_init_common.isra.0+0x10/0x10
[ 1065.104434][T20000]  ? trace_kmalloc+0x2d/0xd0
[ 1065.109038][T20000]  ? __kmalloc_noprof+0x23b/0x4f0
[ 1065.114093][T20000]  ? ima_alloc_init_template+0x195/0x720
[ 1065.119749][T20000]  ima_alloc_init_template+0x399/0x720
[ 1065.125491][T20000]  ima_store_measurement+0x1ea/0x5c0
[ 1065.130802][T20000]  ? __pfx_ima_store_measurement+0x10/0x10
[ 1065.136635][T20000]  ? __pfx_ima_get_hash_algo+0x10/0x10
[ 1065.142116][T20000]  process_measurement+0x1bcb/0x2370
[ 1065.147432][T20000]  ? __pfx_process_measurement+0x10/0x10
[ 1065.153078][T20000]  ? local_lock_release+0x99/0x140
[ 1065.158203][T20000]  ? local_lock_acquire+0x10/0x150
[ 1065.163330][T20000]  ? mark_held_locks+0x9f/0xe0
[ 1065.168110][T20000]  ? mod_objcg_state+0x4c4/0x8d0
[ 1065.173058][T20000]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1065.178286][T20000]  ? debug_mutex_init+0x37/0x70
[ 1065.183144][T20000]  ? inode_to_bdi+0x9e/0x160
[ 1065.187759][T20000]  ima_file_check+0xc6/0x110
[ 1065.192359][T20000]  ? __pfx_ima_file_check+0x10/0x10
[ 1065.197572][T20000]  security_file_post_open+0x8e/0x210
[ 1065.202957][T20000]  path_openat+0x1419/0x2d60
[ 1065.207575][T20000]  ? __pfx_path_openat+0x10/0x10
[ 1065.212522][T20000]  ? __pfx___lock_acquire+0x10/0x10
[ 1065.217750][T20000]  ? lock_acquire.part.0+0x11b/0x380
[ 1065.223038][T20000]  ? find_held_lock+0x2d/0x110
[ 1065.227817][T20000]  do_filp_open+0x20c/0x470
[ 1065.232331][T20000]  ? __pfx_do_filp_open+0x10/0x10
[ 1065.237367][T20000]  ? find_held_lock+0x2d/0x110
[ 1065.242158][T20000]  ? alloc_fd+0x41f/0x760
[ 1065.246506][T20000]  do_sys_openat2+0x17a/0x1e0
[ 1065.251221][T20000]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1065.256438][T20000]  ? __fget_files+0x206/0x3a0
[ 1065.261129][T20000]  __x64_sys_openat+0x175/0x210
[ 1065.265997][T20000]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1065.271385][T20000]  ? ksys_write+0x1ba/0x250
[ 1065.275908][T20000]  do_syscall_64+0xcd/0x250
[ 1065.280427][T20000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1065.286332][T20000] RIP: 0033:0x7f81cf385d29
[ 1065.290751][T20000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1065.310368][T20000] RSP: 002b:00007f81d029d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1065.318787][T20000] RAX: ffffffffffffffda RBX: 00007f81cf575fa0 RCX: 00007f81cf385d29
[ 1065.326765][T20000] RDX: 0000000000080202 RSI: 0000000020000040 RDI: ffffffffffffff9c
[ 1065.334742][T20000] RBP: 00007f81d029d090 R08: 0000000000000000 R09: 0000000000000000
[ 1065.342741][T20000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1065.350729][T20000] R13: 0000000000000000 R14: 00007f81cf575fa0 R15: 00007fff7a0e5558
[ 1065.358727][T20000]  </TASK>
[ 1065.406943][   T29] audit: type=1804 audit(4294967829.552:20): pid=20000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.5.4293" name="/newroot/sys/kernel/tracing/dynamic_events" dev="tracefs" ino=1067 res=0 errno=0
[ 1065.430773][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1065.636295][T20010] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4296'.
[ 1066.086147][T20024] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4298'.
[ 1066.801353][T20048] lo: entered allmulticast mode
[ 1066.821998][T20048] lo: left allmulticast mode
[ 1067.315671][T20068] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4312'.
[ 1067.361022][T20071] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4312'.
[ 1067.387339][T20071] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4312'.
[ 1067.596149][T20079] FAULT_INJECTION: forcing a failure.
[ 1067.596149][T20079] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1067.661072][T20079] CPU: 1 UID: 0 PID: 20079 Comm: syz.6.4315 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1067.671896][T20079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1067.681990][T20079] Call Trace:
[ 1067.685295][T20079]  <TASK>
[ 1067.688244][T20079]  dump_stack_lvl+0x16c/0x1f0
[ 1067.692965][T20079]  should_fail_ex+0x497/0x5b0
[ 1067.697713][T20079]  _copy_to_iter+0x29b/0x1400
[ 1067.702429][T20079]  ? trace_lock_acquire+0x14e/0x1f0
[ 1067.707669][T20079]  ? __pfx_lock_release+0x10/0x10
[ 1067.712736][T20079]  ? __pfx__copy_to_iter+0x10/0x10
[ 1067.717884][T20079]  ? __virt_addr_valid+0x1a4/0x590
[ 1067.723047][T20079]  ? __virt_addr_valid+0x5e/0x590
[ 1067.728112][T20079]  ? __phys_addr_symbol+0x30/0x80
[ 1067.733169][T20079]  ? __check_object_size+0x488/0x710
[ 1067.738497][T20079]  seq_read_iter+0xd00/0x12b0
[ 1067.743215][T20079]  kernfs_fop_read_iter+0x414/0x580
[ 1067.748449][T20079]  ? rw_verify_area+0xd0/0x700
[ 1067.753243][T20079]  vfs_read+0x87f/0xbe0
[ 1067.757440][T20079]  ? __pfx_vfs_read+0x10/0x10
[ 1067.762173][T20079]  ksys_read+0x12b/0x250
[ 1067.766454][T20079]  ? __pfx_ksys_read+0x10/0x10
[ 1067.771261][T20079]  do_syscall_64+0xcd/0x250
[ 1067.775801][T20079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1067.781730][T20079] RIP: 0033:0x7fb098b85d29
[ 1067.786171][T20079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1067.805812][T20079] RSP: 002b:00007fb0999a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1067.814262][T20079] RAX: ffffffffffffffda RBX: 00007fb098d75fa0 RCX: 00007fb098b85d29
[ 1067.822265][T20079] RDX: 000000000000f6c1 RSI: 0000000000000000 RDI: 0000000000000003
[ 1067.830264][T20079] RBP: 00007fb0999a0090 R08: 0000000000000000 R09: 0000000000000000
[ 1067.838263][T20079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1067.846262][T20079] R13: 0000000000000000 R14: 00007fb098d75fa0 R15: 00007fffbc5b6af8
[ 1067.854284][T20079]  </TASK>
[ 1069.171344][T20125] ptp ptp0: only physical clock in use now
[ 1073.850684][T20237] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4364'.
[ 1074.190704][T20242] netlink: 'syz.5.4366': attribute type 1 has an invalid length.
[ 1074.416499][T20247] openvswitch: netlink: VXLAN extension 0 has unexpected len 1 expected 0
[ 1075.248799][T20268] netlink: 'syz.5.4375': attribute type 1 has an invalid length.
[ 1075.270244][T20268] ecryptfs_miscdev_write: Invalid packet size [174]
[ 1076.179465][T20273] netlink: 330 bytes leftover after parsing attributes in process `syz.5.4377'.
[ 1077.643774][T20305] Process accounting resumed
[ 1080.866991][T20363] netlink: 'syz.0.4402': attribute type 1 has an invalid length.
[ 1080.912278][T20363] ecryptfs_miscdev_write: Invalid packet size [174]
[ 1081.067541][T20367] netlink: 330 bytes leftover after parsing attributes in process `syz.4.4405'.
[ 1081.979302][T20388] FAULT_INJECTION: forcing a failure.
[ 1081.979302][T20388] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1082.017285][T20388] CPU: 0 UID: 0 PID: 20388 Comm: syz.4.4411 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1082.028110][T20388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1082.038192][T20388] Call Trace:
[ 1082.041485][T20388]  <TASK>
[ 1082.044416][T20388]  dump_stack_lvl+0x16c/0x1f0
[ 1082.049109][T20388]  should_fail_ex+0x497/0x5b0
[ 1082.053802][T20388]  _copy_to_user+0x32/0xd0
[ 1082.058235][T20388]  simple_read_from_buffer+0xd0/0x160
[ 1082.063624][T20388]  proc_fail_nth_read+0x198/0x270
[ 1082.068663][T20388]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1082.074224][T20388]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1082.079782][T20388]  vfs_read+0x1df/0xbe0
[ 1082.083945][T20388]  ? __fget_files+0x1fc/0x3a0
[ 1082.088626][T20388]  ? __pfx___mutex_lock+0x10/0x10
[ 1082.093656][T20388]  ? __pfx_vfs_read+0x10/0x10
[ 1082.098346][T20388]  ? __fget_files+0x206/0x3a0
[ 1082.103042][T20388]  ksys_read+0x12b/0x250
[ 1082.107331][T20388]  ? __pfx_ksys_read+0x10/0x10
[ 1082.112119][T20388]  do_syscall_64+0xcd/0x250
[ 1082.116644][T20388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1082.122558][T20388] RIP: 0033:0x7f039398473c
[ 1082.126981][T20388] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1082.146685][T20388] RSP: 002b:00007f03947ca030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1082.155110][T20388] RAX: ffffffffffffffda RBX: 00007f0393b75fa0 RCX: 00007f039398473c
[ 1082.163081][T20388] RDX: 000000000000000f RSI: 00007f03947ca0a0 RDI: 0000000000000004
[ 1082.171059][T20388] RBP: 00007f03947ca090 R08: 0000000000000000 R09: 0000000000000000
[ 1082.179087][T20388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1082.187083][T20388] R13: 0000000000000000 R14: 00007f0393b75fa0 R15: 00007ffd2ff403d8
[ 1082.195083][T20388]  </TASK>
	

	
		

syzkaller
syzkaller login: [ 1088.206702][T20461] netlink: 330 bytes leftover after parsing attributes in process `syz.6.4429'.
[ 1090.677034][   T29] audit: type=1800 audit(4294967854.812:21): pid=20506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4444" name="members" dev="configfs" ino=74848 res=0 errno=0
[ 1092.423344][T20546] FAULT_INJECTION: forcing a failure.
[ 1092.423344][T20546] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1092.486235][T20546] CPU: 0 UID: 0 PID: 20546 Comm: syz.5.4457 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1092.497070][T20546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1092.507156][T20546] Call Trace:
[ 1092.510454][T20546]  <TASK>
[ 1092.513409][T20546]  dump_stack_lvl+0x16c/0x1f0
[ 1092.518130][T20546]  should_fail_ex+0x497/0x5b0
[ 1092.522863][T20546]  _copy_to_iter+0x29b/0x1400
[ 1092.527608][T20546]  ? trace_lock_acquire+0x14e/0x1f0
[ 1092.532846][T20546]  ? __pfx_lock_release+0x10/0x10
[ 1092.537991][T20546]  ? __pfx__copy_to_iter+0x10/0x10
[ 1092.543142][T20546]  ? __virt_addr_valid+0x1a4/0x590
[ 1092.548324][T20546]  ? __virt_addr_valid+0x5e/0x590
[ 1092.553385][T20546]  ? __phys_addr_symbol+0x30/0x80
[ 1092.558439][T20546]  ? __check_object_size+0x488/0x710
[ 1092.563773][T20546]  seq_read_iter+0xd00/0x12b0
[ 1092.568494][T20546]  kernfs_fop_read_iter+0x414/0x580
[ 1092.573725][T20546]  ? rw_verify_area+0xd0/0x700
[ 1092.578527][T20546]  vfs_read+0x87f/0xbe0
[ 1092.582719][T20546]  ? __pfx_vfs_read+0x10/0x10
[ 1092.587451][T20546]  ksys_read+0x12b/0x250
[ 1092.591731][T20546]  ? __pfx_ksys_read+0x10/0x10
[ 1092.596535][T20546]  do_syscall_64+0xcd/0x250
[ 1092.601070][T20546]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1092.606994][T20546] RIP: 0033:0x7f81cf385d29
[ 1092.611438][T20546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1092.631080][T20546] RSP: 002b:00007f81d029d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1092.639536][T20546] RAX: ffffffffffffffda RBX: 00007f81cf575fa0 RCX: 00007f81cf385d29
[ 1092.647541][T20546] RDX: 0000000000000036 RSI: 0000000020000040 RDI: 0000000000000003
[ 1092.655543][T20546] RBP: 00007f81d029d090 R08: 0000000000000000 R09: 0000000000000000
[ 1092.663549][T20546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1092.671560][T20546] R13: 0000000000000000 R14: 00007f81cf575fa0 R15: 00007fff7a0e5558
[ 1092.679582][T20546]  </TASK>
[ 1093.031005][T20553] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(17)
[ 1093.822519][T20571] FAULT_INJECTION: forcing a failure.
[ 1093.822519][T20571] name failslab, interval 1, probability 0, space 0, times 0
[ 1093.843425][T20571] CPU: 1 UID: 0 PID: 20571 Comm: syz.6.4463 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1093.854223][T20571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1093.864296][T20571] Call Trace:
[ 1093.867574][T20571]  <TASK>
[ 1093.870508][T20571]  dump_stack_lvl+0x16c/0x1f0
[ 1093.875208][T20571]  should_fail_ex+0x497/0x5b0
[ 1093.879922][T20571]  ? fs_reclaim_acquire+0xae/0x150
[ 1093.885055][T20571]  should_failslab+0xc2/0x120
[ 1093.889762][T20571]  __kmalloc_noprof+0xce/0x4f0
[ 1093.894569][T20571]  ? __pfx_d_absolute_path+0x10/0x10
[ 1093.899873][T20571]  ? tomoyo_encode2+0x100/0x3e0
[ 1093.904749][T20571]  tomoyo_encode2+0x100/0x3e0
[ 1093.909431][T20571]  ? trace_lock_acquire+0x14e/0x1f0
[ 1093.914654][T20571]  tomoyo_realpath_from_path+0x1a7/0x710
[ 1093.920295][T20571]  tomoyo_get_exe+0x63/0xa0
[ 1093.924809][T20571]  tomoyo_write_control+0x5ad/0x13d0
[ 1093.930105][T20571]  ? rcu_is_watching+0x12/0xc0
[ 1093.934882][T20571]  ? __pfx_tomoyo_write_control+0x10/0x10
[ 1093.940613][T20571]  ? ksys_write+0x12b/0x250
[ 1093.945140][T20571]  ? __pfx_tomoyo_write+0x10/0x10
[ 1093.950205][T20571]  vfs_write+0x24c/0x1150
[ 1093.954575][T20571]  ? __fget_files+0x1fc/0x3a0
[ 1093.959272][T20571]  ? __pfx___mutex_lock+0x10/0x10
[ 1093.964326][T20571]  ? __pfx_vfs_write+0x10/0x10
[ 1093.969112][T20571]  ? __fget_files+0x206/0x3a0
[ 1093.973824][T20571]  ksys_write+0x12b/0x250
[ 1093.978155][T20571]  ? __pfx_ksys_write+0x10/0x10
[ 1093.983026][T20571]  do_syscall_64+0xcd/0x250
[ 1093.987550][T20571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1093.993479][T20571] RIP: 0033:0x7fb098b85d29
[ 1093.997931][T20571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1094.017556][T20571] RSP: 002b:00007fb0999a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1094.025973][T20571] RAX: ffffffffffffffda RBX: 00007fb098d75fa0 RCX: 00007fb098b85d29
[ 1094.033983][T20571] RDX: 0000000000000040 RSI: 0000000020000100 RDI: 0000000000000003
[ 1094.041967][T20571] RBP: 00007fb0999a0090 R08: 0000000000000000 R09: 0000000000000000
[ 1094.049935][T20571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1094.057913][T20571] R13: 0000000000000000 R14: 00007fb098d75fa0 R15: 00007fffbc5b6af8
[ 1094.065929][T20571]  </TASK>
[ 1094.076232][T20571] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1094.413287][T20583] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(17)
[ 1094.556635][T20587] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(17)
[ 1096.282401][T20610] FAULT_INJECTION: forcing a failure.
[ 1096.282401][T20610] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1096.351957][T20610] CPU: 1 UID: 0 PID: 20610 Comm: syz.4.4477 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1096.362897][T20610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1096.372997][T20610] Call Trace:
[ 1096.376303][T20610]  <TASK>
[ 1096.379261][T20610]  dump_stack_lvl+0x16c/0x1f0
[ 1096.383977][T20610]  should_fail_ex+0x497/0x5b0
[ 1096.388694][T20610]  _copy_to_user+0x32/0xd0
[ 1096.393153][T20610]  simple_read_from_buffer+0xd0/0x160
[ 1096.398567][T20610]  proc_fail_nth_read+0x198/0x270
[ 1096.403644][T20610]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1096.409233][T20610]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1096.414805][T20610]  vfs_read+0x1df/0xbe0
[ 1096.418970][T20610]  ? __pfx_poll_select_finish+0x10/0x10
[ 1096.424520][T20610]  ? __pfx_vfs_read+0x10/0x10
[ 1096.429201][T20610]  ? do_sys_openat2+0xb1/0x1e0
[ 1096.433975][T20610]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1096.439183][T20610]  ? put_files_struct+0x3b/0x370
[ 1096.444132][T20610]  ? kern_select+0x176/0x1e0
[ 1096.448728][T20610]  ksys_read+0x12b/0x250
[ 1096.452981][T20610]  ? __pfx_ksys_read+0x10/0x10
[ 1096.457758][T20610]  do_syscall_64+0xcd/0x250
[ 1096.462273][T20610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1096.468171][T20610] RIP: 0033:0x7f039398473c
[ 1096.472586][T20610] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1096.492200][T20610] RSP: 002b:00007f03947ca030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1096.500619][T20610] RAX: ffffffffffffffda RBX: 00007f0393b75fa0 RCX: 00007f039398473c
[ 1096.508590][T20610] RDX: 000000000000000f RSI: 00007f03947ca0a0 RDI: 0000000000000006
[ 1096.516562][T20610] RBP: 00007f03947ca090 R08: 0000000000000000 R09: 0000000000000000
[ 1096.524534][T20610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1096.532502][T20610] R13: 0000000000000000 R14: 00007f0393b75fa0 R15: 00007ffd2ff403d8
[ 1096.540484][T20610]  </TASK>
[ 1100.569648][T20658] netlink: 342 bytes leftover after parsing attributes in process `syz.6.4492'.
[ 1103.601968][T20708] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4510'.
[ 1104.572824][T20720] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4513'.
[ 1104.593223][T20720] ipvlan1: entered allmulticast mode
[ 1104.603052][T20720] veth0_vlan: entered allmulticast mode
[ 1105.425544][T20738] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4528'.
[ 1105.756686][T20753] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4524'.
[ 1105.781372][T20757] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4524'.
[ 1106.884663][T20786] mmap: syz.6.4531 (20786): VmData 37470208 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data.
[ 1106.943648][T20785] ima: policy update failed
[ 1106.950738][   T29] audit: type=1802 audit(4294967871.092:22): pid=20785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.6.4531" res=0 errno=0
[ 1107.147178][T20790] openvswitch: netlink: Flow key attr not present in new flow.
[ 1108.669810][T20820] HfR: entered promiscuous mode

syzkaller
syzkaller login: [ 1109.664888][T20843] kernel read not supported for file /#)-\&[} (pid: 20843 comm: syz.4.4547)
[ 1109.689892][   T29] audit: type=1800 audit(4294967873.832:23): pid=20843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4547" name="#)-\&[}" dev="mqueue" ino=56808 res=0 errno=0
[ 1109.793669][T20845] netlink: 346 bytes leftover after parsing attributes in process `syz.0.4548'.
[ 1111.234526][T20866] vivid-013: =================  START STATUS  =================
[ 1111.242488][T20866] vivid-013: Generate PTS: true
[ 1111.248854][T20866] vivid-013: Generate SCR: true
[ 1111.253888][T20866] tpg source WxH: 640x360 (Y'CbCr)
[ 1111.264697][T20866] tpg field: 1
[ 1111.268805][T20866] tpg crop: 640x360@0x0
[ 1111.273001][T20866] tpg compose: 640x360@0x0
[ 1111.279344][T20866] tpg colorspace: 8
[ 1111.283179][T20866] tpg transfer function: 0/0
[ 1111.288448][T20866] tpg Y'CbCr encoding: 0/0
[ 1111.293102][T20866] tpg quantization: 0/0
[ 1111.313462][T20866] tpg RGB range: 0/2
[ 1111.336061][T20866] vivid-013: ==================  END STATUS  ==================
[ 1111.697369][T20882] netlink: 346 bytes leftover after parsing attributes in process `syz.5.4558'.
[ 1111.932648][T20887] HfR: entered promiscuous mode
[ 1111.998472][T20887] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4561'.
[ 1112.007640][T20887] HfR: left promiscuous mode
[ 1113.672527][T20919] netlink: 346 bytes leftover after parsing attributes in process `syz.6.4570'.
[ 1113.954733][T20921] HfR: entered promiscuous mode
[ 1114.640510][T20932] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4573'.
[ 1114.650061][T20932] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1114.749495][T20932] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1116.258683][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.265134][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 1117.140607][T20968] HfR: entered promiscuous mode
[ 1117.602069][T20977] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4584'.
[ 1117.698088][T20980] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4585'.
[ 1117.723413][T20979] HfR: entered promiscuous mode
[ 1117.730458][T20977] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1117.798317][T20977] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1117.850805][T20983] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4586'.
[ 1117.865283][T20980] HfR: left promiscuous mode
[ 1117.874622][T20982] lo: entered allmulticast mode
[ 1118.199013][T20981] lo: left allmulticast mode
[ 1118.874010][T20999] erspan0: entered allmulticast mode
[ 1118.951300][T21003] FAULT_INJECTION: forcing a failure.
[ 1118.951300][T21003] name failslab, interval 1, probability 0, space 0, times 0
[ 1118.964687][T21003] CPU: 0 UID: 0 PID: 21003 Comm: syz.6.4592 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1118.975668][T21003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1118.985755][T21003] Call Trace:
[ 1118.989065][T21003]  <TASK>
[ 1118.992020][T21003]  dump_stack_lvl+0x116/0x1f0
[ 1118.996739][T21003]  should_fail_ex+0x497/0x5b0
[ 1119.001463][T21003]  should_failslab+0xc2/0x120
[ 1119.006182][T21003]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[ 1119.012556][T21003]  ? trace_lock_acquire+0x14e/0x1f0
[ 1119.017796][T21003]  ? netlink_realloc_groups+0x1a8/0x2a0
[ 1119.023383][T21003]  krealloc_noprof+0x1fb/0x360
[ 1119.028194][T21003]  netlink_realloc_groups+0x1a8/0x2a0
[ 1119.033610][T21003]  netlink_setsockopt+0x515/0x8f0
[ 1119.038670][T21003]  ? __pfx_netlink_setsockopt+0x10/0x10
[ 1119.044264][T21003]  ? __pfx_netlink_setsockopt+0x10/0x10
[ 1119.049844][T21003]  do_sock_setsockopt+0x222/0x480
[ 1119.054901][T21003]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1119.060486][T21003]  ? lock_acquire+0x2f/0xb0
[ 1119.065034][T21003]  __sys_setsockopt+0x1a0/0x230
[ 1119.069943][T21003]  __x64_sys_setsockopt+0xbd/0x160
[ 1119.075095][T21003]  ? do_syscall_64+0x91/0x250
[ 1119.079812][T21003]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1119.085146][T21003]  do_syscall_64+0xcd/0x250
[ 1119.089691][T21003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1119.095659][T21003] RIP: 0033:0x7fb098b85d29
[ 1119.100278][T21003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1119.119916][T21003] RSP: 002b:00007fb0999a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1119.128346][T21003] RAX: ffffffffffffffda RBX: 00007fb098d75fa0 RCX: 00007fb098b85d29
[ 1119.136318][T21003] RDX: 0000000000000001 RSI: 104000000000010e RDI: 0000000000000004
[ 1119.144289][T21003] RBP: 00007fb0999a0090 R08: 0000000000000016 R09: 0000000000000000
[ 1119.152284][T21003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1119.160282][T21003] R13: 0000000000000000 R14: 00007fb098d75fa0 R15: 00007fffbc5b6af8
[ 1119.168311][T21003]  </TASK>
[ 1120.629088][T21031] openvswitch: HfR: Dropping previously announced user features
[ 1120.661796][T21031] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4598'.
[ 1120.694646][T21031] HfR: left promiscuous mode
[ 1121.051784][T21045] netlink: 346 bytes leftover after parsing attributes in process `syz.5.4603'.
[ 1121.727453][T21063] ubi0: attaching mtd0
[ 1121.773679][T21063] ubi0: scanning is finished
[ 1121.789537][T21063] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1121.964939][T21063] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1122.158731][T21070] lo: entered allmulticast mode
[ 1122.165389][T21070] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4609'.
[ 1122.469957][T21073] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4610'.
[ 1122.488400][T21073] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1122.749133][T21073] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1122.889606][T21069] lo: left allmulticast mode
[ 1124.388203][T21079] nbd: socks must be embedded in a SOCK_ITEM attr
[ 1124.433860][T21085] openvswitch: HfR: Dropping previously announced user features
[ 1124.489951][T21085] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4611'.
[ 1124.509824][T21085] HfR: left promiscuous mode
[ 1124.536722][T21087] netlink: 346 bytes leftover after parsing attributes in process `syz.6.4615'.
[ 1126.654427][T21129] netlink: 346 bytes leftover after parsing attributes in process `syz.0.4626'.
[ 1126.789483][T21132] sg_read: process 1332 (syz.5.4627) changed security contexts after opening file descriptor, this is not allowed.
[ 1128.291883][T21162] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4633'.
[ 1129.381030][T21171] netlink: 346 bytes leftover after parsing attributes in process `syz.5.4638'.
[ 1132.240941][T21219] netlink: 346 bytes leftover after parsing attributes in process `syz.6.4649'.
[ 1132.307525][T21210] erspan0: entered allmulticast mode
[ 1134.174805][T21246] FAULT_INJECTION: forcing a failure.
[ 1134.174805][T21246] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1134.204604][T21246] CPU: 1 UID: 0 PID: 21246 Comm: syz.6.4655 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1134.215456][T21246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1134.225634][T21246] Call Trace:
[ 1134.228939][T21246]  <TASK>
[ 1134.231895][T21246]  dump_stack_lvl+0x16c/0x1f0
[ 1134.236620][T21246]  should_fail_ex+0x497/0x5b0
[ 1134.241347][T21246]  ? fs_reclaim_acquire+0xae/0x150
[ 1134.246501][T21246]  should_fail_alloc_page+0xe7/0x130
[ 1134.251830][T21246]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1134.258035][T21246]  ? hlock_class+0x4e/0x130
[ 1134.262665][T21246]  __alloc_pages_noprof+0x190/0x25b0
[ 1134.267998][T21246]  ? hlock_class+0x4e/0x130
[ 1134.272549][T21246]  ? mark_lock+0xb5/0xc60
[ 1134.277021][T21246]  ? __pfx_mark_lock+0x10/0x10
[ 1134.281822][T21246]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1134.287557][T21246]  ? hlock_class+0x4e/0x130
[ 1134.292070][T21246]  ? hlock_class+0x4e/0x130
[ 1134.296605][T21246]  ? mark_lock+0xb5/0xc60
[ 1134.300949][T21246]  ? hlock_class+0x4e/0x130
[ 1134.305465][T21246]  ? __pfx_mark_lock+0x10/0x10
[ 1134.310247][T21246]  ? hlock_class+0x4e/0x130
[ 1134.314845][T21246]  ? __lock_acquire+0xcc5/0x3c40
[ 1134.320836][T21246]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1134.326742][T21246]  ? policy_nodemask+0xea/0x4e0
[ 1134.331607][T21246]  alloc_pages_mpol_noprof+0x2c9/0x610
[ 1134.337092][T21246]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1134.343092][T21246]  ? __lock_acquire+0xcc5/0x3c40
[ 1134.348058][T21246]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1134.353367][T21246]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1134.358673][T21246]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1134.364572][T21246]  ? find_held_lock+0x2d/0x110
[ 1134.369353][T21246]  do_pte_missing+0x2017/0x3e00
[ 1134.374227][T21246]  __handle_mm_fault+0x103c/0x2a40
[ 1134.379363][T21246]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1134.384834][T21246]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1134.390491][T21246]  ? find_vma+0xc0/0x140
[ 1134.394736][T21246]  ? __pfx_find_vma+0x10/0x10
[ 1134.399430][T21246]  handle_mm_fault+0x3fa/0xaa0
[ 1134.404301][T21246]  do_user_addr_fault+0x7a3/0x13f0
[ 1134.409425][T21246]  exc_page_fault+0x5c/0xc0
[ 1134.413937][T21246]  asm_exc_page_fault+0x26/0x30
[ 1134.418804][T21246] RIP: 0010:rep_movs_alternative+0x4a/0x70
[ 1134.424628][T21246] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[ 1134.444242][T21246] RSP: 0018:ffffc900034779c8 EFLAGS: 00050206
[ 1134.450321][T21246] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00000000000000aa
[ 1134.458300][T21246] RDX: ffffed10161afc16 RSI: ffff8880b0d7e000 RDI: 00000000200010c0
[ 1134.466274][T21246] RBP: ffffc90003477bd8 R08: 0000000000000000 R09: ffffed10161afc15
[ 1134.474261][T21246] R10: ffff8880b0d7e0a9 R11: 0000000000000000 R12: 00000000000000aa
[ 1134.482238][T21246] R13: ffff8880b0d7e000 R14: 00000000200010c0 R15: 00000000000000aa
[ 1134.490323][T21246]  _copy_to_iter+0x52f/0x1400
[ 1134.495022][T21246]  ? __pfx__copy_to_iter+0x10/0x10
[ 1134.500151][T21246]  ? __virt_addr_valid+0x1a4/0x590
[ 1134.505363][T21246]  ? __virt_addr_valid+0x5e/0x590
[ 1134.510413][T21246]  ? __phys_addr_symbol+0x30/0x80
[ 1134.515446][T21246]  ? __check_object_size+0x488/0x710
[ 1134.520745][T21246]  seq_read_iter+0xd00/0x12b0
[ 1134.525439][T21246]  seq_read+0x39f/0x4e0
[ 1134.529607][T21246]  ? __pfx_seq_read+0x10/0x10
[ 1134.534307][T21246]  ? __pfx_seq_read+0x10/0x10
[ 1134.538988][T21246]  proc_reg_read+0x11d/0x330
[ 1134.543586][T21246]  ? rw_verify_area+0xd0/0x700
[ 1134.548356][T21246]  ? __pfx_proc_reg_read+0x10/0x10
[ 1134.553480][T21246]  vfs_read+0x1df/0xbe0
[ 1134.557644][T21246]  ? __fget_files+0x1fc/0x3a0
[ 1134.562334][T21246]  ? __pfx___mutex_lock+0x10/0x10
[ 1134.567369][T21246]  ? __pfx_vfs_read+0x10/0x10
[ 1134.572081][T21246]  ? __fget_files+0x206/0x3a0
[ 1134.576778][T21246]  ksys_read+0x12b/0x250
[ 1134.581029][T21246]  ? __pfx_ksys_read+0x10/0x10
[ 1134.585807][T21246]  do_syscall_64+0xcd/0x250
[ 1134.590329][T21246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1134.596233][T21246] RIP: 0033:0x7fb098b85d29
[ 1134.600739][T21246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1134.620358][T21246] RSP: 002b:00007fb0999a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1134.628778][T21246] RAX: ffffffffffffffda RBX: 00007fb098d75fa0 RCX: 00007fb098b85d29
[ 1134.636759][T21246] RDX: 0000000000001000 RSI: 00000000200010c0 RDI: 0000000000000003
[ 1134.644731][T21246] RBP: 00007fb0999a0090 R08: 0000000000000000 R09: 0000000000000000
[ 1134.652711][T21246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1134.660688][T21246] R13: 0000000000000000 R14: 00007fb098d75fa0 R15: 00007fffbc5b6af8
[ 1134.668686][T21246]  </TASK>
[ 1135.039532][   T29] audit: type=1804 audit(4294967911.173:24): pid=21257 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.4658" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[ 1135.333355][   T29] audit: type=1804 audit(4294967923.325:25): pid=21260 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.4657" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[ 1136.528019][T21269] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4661'.
[ 1137.436882][T21292] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4670'.
[ 1139.977497][T21354] netlink: 330 bytes leftover after parsing attributes in process `syz.4.4687'.
[ 1139.996211][T21354] mac80211_hwsim hwsim24 ›: renamed from wlan0 (while UP)
[ 1140.052970][T21354] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4687'.
[ 1142.430071][T21374] ima: policy update failed
[ 1142.446653][   T29] audit: type=1802 audit(4294967942.583:26): pid=21374 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.4695" res=0 errno=0
[ 1142.677215][T21381] netlink: 346 bytes leftover after parsing attributes in process `syz.5.4697'.
[ 1143.257198][T21394] erspan0: entered allmulticast mode
[ 1143.592437][T21398] erspan0: entered allmulticast mode
[ 1145.851476][T21450] netlink: 330 bytes leftover after parsing attributes in process `syz.5.4715'.
[ 1145.885944][T21447] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4715'.
[ 1147.716483][T21480] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4720'.
[ 1147.732010][T21480] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4720'.
[ 1147.744249][T21482] netlink: 346 bytes leftover after parsing attributes in process `syz.5.4722'.
[ 1148.098370][T21490] netlink: 330 bytes leftover after parsing attributes in process `syz.6.4725'.
[ 1148.156658][T21490] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4725'.
[ 1148.702637][T21509] FAULT_INJECTION: forcing a failure.
[ 1148.702637][T21509] name failslab, interval 1, probability 0, space 0, times 0
[ 1148.718809][T21509] CPU: 1 UID: 0 PID: 21509 Comm: syz.6.4731 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1148.729625][T21509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1148.739696][T21509] Call Trace:
[ 1148.742978][T21509]  <TASK>
[ 1148.745911][T21509]  dump_stack_lvl+0x16c/0x1f0
[ 1148.750683][T21509]  should_fail_ex+0x497/0x5b0
[ 1148.755372][T21509]  ? fs_reclaim_acquire+0xae/0x150
[ 1148.760495][T21509]  should_failslab+0xc2/0x120
[ 1148.765183][T21509]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[ 1148.771610][T21509]  ? rcu_is_watching+0x12/0xc0
[ 1148.776391][T21509]  ? subsystem_filter_write+0x6a/0x120
[ 1148.781871][T21509]  memdup_user_nul+0x2b/0x110
[ 1148.786565][T21509]  subsystem_filter_write+0x6a/0x120
[ 1148.791865][T21509]  ? __pfx_subsystem_filter_write+0x10/0x10
[ 1148.797770][T21509]  vfs_write+0x24c/0x1150
[ 1148.802108][T21509]  ? __fget_files+0x1fc/0x3a0
[ 1148.806798][T21509]  ? __pfx___mutex_lock+0x10/0x10
[ 1148.811834][T21509]  ? __pfx_vfs_write+0x10/0x10
[ 1148.816617][T21509]  ? __fget_files+0x206/0x3a0
[ 1148.821316][T21509]  ksys_write+0x12b/0x250
[ 1148.825668][T21509]  ? __pfx_ksys_write+0x10/0x10
[ 1148.830537][T21509]  do_syscall_64+0xcd/0x250
[ 1148.835056][T21509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1148.840967][T21509] RIP: 0033:0x7fb098b85d29
[ 1148.845475][T21509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1148.865089][T21509] RSP: 002b:00007fb0999a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1148.873605][T21509] RAX: ffffffffffffffda RBX: 00007fb098d75fa0 RCX: 00007fb098b85d29
[ 1148.881583][T21509] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 0000000000000004
[ 1148.889558][T21509] RBP: 00007fb0999a0090 R08: 0000000000000000 R09: 0000000000000000
[ 1148.897538][T21509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1148.905515][T21509] R13: 0000000000000000 R14: 00007fb098d75fa0 R15: 00007fffbc5b6af8
[ 1148.913507][T21509]  </TASK>
[ 1148.918051][T21508] netlink: 346 bytes leftover after parsing attributes in process `syz.4.4732'.
[ 1149.786382][T21524] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4735'.
[ 1149.819554][T21524] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4735'.
[ 1156.568079][T21624] FAULT_INJECTION: forcing a failure.
[ 1156.568079][T21624] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1156.596122][T21624] CPU: 1 UID: 0 PID: 21624 Comm: syz.5.4760 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1156.606984][T21624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1156.617070][T21624] Call Trace:
[ 1156.620370][T21624]  <TASK>
[ 1156.623331][T21624]  dump_stack_lvl+0x16c/0x1f0
[ 1156.628052][T21624]  should_fail_ex+0x497/0x5b0
[ 1156.632767][T21624]  ? fs_reclaim_acquire+0xae/0x150
[ 1156.637911][T21624]  should_fail_alloc_page+0xe7/0x130
[ 1156.643245][T21624]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1156.649432][T21624]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1156.655628][T21624]  __alloc_pages_noprof+0x190/0x25b0
[ 1156.660960][T21624]  ? arch_stack_walk+0xa7/0x100
[ 1156.665834][T21624]  ? hlock_class+0x4e/0x130
[ 1156.670443][T21624]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1156.676184][T21624]  ? __pfx___lock_acquire+0x10/0x10
[ 1156.681396][T21624]  ? kasan_save_stack+0x42/0x60
[ 1156.686343][T21624]  ? kasan_save_stack+0x33/0x60
[ 1156.691202][T21624]  ? kasan_save_track+0x14/0x30
[ 1156.696065][T21624]  ? __kasan_slab_alloc+0x89/0x90
[ 1156.701108][T21624]  ? kmem_cache_alloc_node_noprof+0x1ca/0x3b0
[ 1156.707187][T21624]  ? alloc_vmap_area+0x636/0x2a70
[ 1156.712244][T21624]  ? __get_vm_area_node+0x19e/0x2f0
[ 1156.717466][T21624]  ? __vmalloc_node_range_noprof+0x26a/0x1530
[ 1156.723566][T21624]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1156.729507][T21624]  ? policy_nodemask+0xea/0x4e0
[ 1156.734387][T21624]  alloc_pages_mpol_noprof+0x2c9/0x610
[ 1156.739899][T21624]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1156.745911][T21624]  ? do_raw_spin_lock+0x12d/0x2c0
[ 1156.750953][T21624]  ? lock_acquire+0x2f/0xb0
[ 1156.755459][T21624]  ? kasan_populate_vmalloc_pte+0xfb/0x160
[ 1156.761280][T21624]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1156.767720][T21624]  get_free_pages_noprof+0xc/0x40
[ 1156.772768][T21624]  kasan_populate_vmalloc_pte+0x2d/0x160
[ 1156.778411][T21624]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1156.784660][T21624]  __apply_to_page_range+0x5fd/0xd30
[ 1156.789958][T21624]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1156.796303][T21624]  ? __pfx___apply_to_page_range+0x10/0x10
[ 1156.802120][T21624]  ? insert_vmap_area+0x2ef/0x4d0
[ 1156.807165][T21624]  alloc_vmap_area+0x93e/0x2a70
[ 1156.812033][T21624]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 1156.817334][T21624]  __get_vm_area_node+0x19e/0x2f0
[ 1156.822376][T21624]  __vmalloc_node_range_noprof+0x26a/0x1530
[ 1156.828283][T21624]  ? htab_map_alloc+0x3e0/0x17b0
[ 1156.833238][T21624]  ? htab_map_alloc+0x3e0/0x17b0
[ 1156.838187][T21624]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1156.844000][T21624]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1156.850340][T21624]  ? pcpu_alloc_noprof+0x126/0x1650
[ 1156.855716][T21624]  ? bpf_map_alloc_percpu+0x9a/0x4b0
[ 1156.861021][T21624]  ? htab_map_alloc+0x3e0/0x17b0
[ 1156.865973][T21624]  __bpf_map_area_alloc+0xea/0x190
[ 1156.871356][T21624]  ? htab_map_alloc+0x3e0/0x17b0
[ 1156.876319][T21624]  htab_map_alloc+0x3e0/0x17b0
[ 1156.881102][T21624]  ? ns_capable+0xd7/0x110
[ 1156.885526][T21624]  map_create+0x5c5/0x1f20
[ 1156.889961][T21624]  ? __pfx_lock_release+0x10/0x10
[ 1156.894991][T21624]  ? trace_lock_acquire+0x14e/0x1f0
[ 1156.900204][T21624]  ? __pfx_map_create+0x10/0x10
[ 1156.905105][T21624]  ? lock_acquire+0x2f/0xb0
[ 1156.909694][T21624]  ? __might_fault+0xe3/0x190
[ 1156.914402][T21624]  ? __might_fault+0xe3/0x190
[ 1156.919110][T21624]  __sys_bpf+0x4f58/0x57a0
[ 1156.923637][T21624]  ? __pfx___sys_bpf+0x10/0x10
[ 1156.928770][T21624]  ? vfs_write+0x306/0x1150
[ 1156.933309][T21624]  ? __pfx_vfs_write+0x10/0x10
[ 1156.938095][T21624]  ? do_sys_openat2+0xb1/0x1e0
[ 1156.942894][T21624]  ? ksys_write+0x1ba/0x250
[ 1156.947412][T21624]  ? __pfx_ksys_write+0x10/0x10
[ 1156.952276][T21624]  __x64_sys_bpf+0x78/0xc0
[ 1156.956703][T21624]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1156.961909][T21624]  do_syscall_64+0xcd/0x250
[ 1156.966424][T21624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1156.972325][T21624] RIP: 0033:0x7f81cf385d29
[ 1156.976745][T21624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1156.996373][T21624] RSP: 002b:00007f81d029d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1157.004791][T21624] RAX: ffffffffffffffda RBX: 00007f81cf575fa0 RCX: 00007f81cf385d29
[ 1157.012768][T21624] RDX: 00000000000000a3 RSI: 0000000020000000 RDI: 0000000000000000
[ 1157.020746][T21624] RBP: 00007f81d029d090 R08: 0000000000000000 R09: 0000000000000000
[ 1157.028727][T21624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1157.036697][T21624] R13: 0000000000000000 R14: 00007f81cf575fa0 R15: 00007fff7a0e5558
[ 1157.044704][T21624]  </TASK>
[ 1157.329218][T21637] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4762'.
[ 1157.485568][T21639] Process accounting resumed
[ 1160.746514][T21671] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 1160.767841][T21671] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1161.158555][T21686] netlink: 346 bytes leftover after parsing attributes in process `syz.5.4774'.
[ 1162.756830][T21715] FAULT_INJECTION: forcing a failure.
[ 1162.756830][T21715] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1162.803012][T21715] CPU: 1 UID: 0 PID: 21715 Comm: syz.6.4784 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1162.813851][T21715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1162.823944][T21715] Call Trace:
[ 1162.827291][T21715]  <TASK>
[ 1162.830271][T21715]  dump_stack_lvl+0x16c/0x1f0
[ 1162.835009][T21715]  should_fail_ex+0x497/0x5b0
[ 1162.839736][T21715]  ? fs_reclaim_acquire+0xae/0x150
[ 1162.844887][T21715]  should_fail_alloc_page+0xe7/0x130
[ 1162.850217][T21715]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1162.856418][T21715]  __alloc_pages_noprof+0x190/0x25b0
[ 1162.861734][T21715]  ? cgroup_rstat_updated+0x2a/0xb20
[ 1162.867117][T21715]  ? __pfx_mark_lock+0x10/0x10
[ 1162.871895][T21715]  ? hlock_class+0x4e/0x130
[ 1162.876409][T21715]  ? mark_lock+0xb5/0xc60
[ 1162.880837][T21715]  ? __mod_memcg_lruvec_state+0x53c/0x750
[ 1162.886568][T21715]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1162.892311][T21715]  ? hlock_class+0x4e/0x130
[ 1162.896824][T21715]  ? hlock_class+0x4e/0x130
[ 1162.901334][T21715]  ? __lock_acquire+0xcc5/0x3c40
[ 1162.906315][T21715]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1162.912230][T21715]  ? policy_nodemask+0xea/0x4e0
[ 1162.917102][T21715]  alloc_pages_mpol_noprof+0x2c9/0x610
[ 1162.922580][T21715]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1162.928580][T21715]  ? find_held_lock+0x2d/0x110
[ 1162.933355][T21715]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1162.938657][T21715]  shmem_alloc_folio+0x135/0x160
[ 1162.943623][T21715]  shmem_alloc_and_add_folio+0x48b/0xc00
[ 1162.949268][T21715]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1162.955171][T21715]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1162.961328][T21715]  ? shmem_huge_global_enabled+0x176/0x250
[ 1162.967147][T21715]  ? shmem_allowable_huge_orders+0xcd/0x3e0
[ 1162.973049][T21715]  shmem_get_folio_gfp+0x689/0x1530
[ 1162.978257][T21715]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1162.983899][T21715]  ? filemap_map_pages+0xf92/0x16b0
[ 1162.989107][T21715]  shmem_fault+0x200/0xae0
[ 1162.993530][T21715]  ? __pfx_shmem_fault+0x10/0x10
[ 1162.998478][T21715]  ? do_pte_missing+0xdd7/0x3e00
[ 1163.003522][T21715]  ? __pfx_lock_release+0x10/0x10
[ 1163.008559][T21715]  __do_fault+0x10a/0x490
[ 1163.012910][T21715]  do_pte_missing+0xebd/0x3e00
[ 1163.017696][T21715]  __handle_mm_fault+0x103c/0x2a40
[ 1163.022825][T21715]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1163.028295][T21715]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1163.033943][T21715]  ? find_vma+0xc0/0x140
[ 1163.038196][T21715]  ? __pfx_find_vma+0x10/0x10
[ 1163.042879][T21715]  handle_mm_fault+0x3fa/0xaa0
[ 1163.047660][T21715]  do_user_addr_fault+0x7a3/0x13f0
[ 1163.052779][T21715]  exc_page_fault+0x5c/0xc0
[ 1163.057319][T21715]  asm_exc_page_fault+0x26/0x30
[ 1163.062203][T21715] RIP: 0010:rep_movs_alternative+0x30/0x70
[ 1163.068039][T21715] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08
[ 1163.087747][T21715] RSP: 0018:ffffc90003a0fca0 EFLAGS: 00050202
[ 1163.093826][T21715] RAX: 0000000000000001 RBX: 000000000000ffff RCX: 000000000000000a
[ 1163.101975][T21715] RDX: ffffed10051ec5cd RSI: 000000000000ffff RDI: ffff888028f62e60
[ 1163.109951][T21715] RBP: 000000000000000a R08: 0000000000000001 R09: ffffed10051ec5cd
[ 1163.117939][T21715] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[ 1163.125934][T21715] R13: ffff888028f62e60 R14: ffff888028f62e60 R15: ffff888033708a80
[ 1163.133932][T21715]  _copy_from_user+0x9a/0xd0
[ 1163.138545][T21715]  __sys_bpf+0x4266/0x57a0
[ 1163.142995][T21715]  ? __pfx___sys_bpf+0x10/0x10
[ 1163.147784][T21715]  ? vfs_write+0x306/0x1150
[ 1163.152304][T21715]  ? __mutex_unlock_slowpath+0x164/0x690
[ 1163.157964][T21715]  ? fput+0x67/0x440
[ 1163.161872][T21715]  ? ksys_write+0x1ba/0x250
[ 1163.166379][T21715]  ? __pfx_ksys_write+0x10/0x10
[ 1163.171252][T21715]  __x64_sys_bpf+0x78/0xc0
[ 1163.175675][T21715]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1163.180879][T21715]  do_syscall_64+0xcd/0x250
[ 1163.185393][T21715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1163.191295][T21715] RIP: 0033:0x7fb098b85d29
[ 1163.195714][T21715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1163.215336][T21715] RSP: 002b:00007fb0999a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1163.223764][T21715] RAX: ffffffffffffffda RBX: 00007fb098d75fa0 RCX: 00007fb098b85d29
[ 1163.231745][T21715] RDX: 000000000000000c RSI: 00000000200001c0 RDI: 0000000000000003
[ 1163.239722][T21715] RBP: 00007fb0999a0090 R08: 0000000000000000 R09: 0000000000000000
[ 1163.247703][T21715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1163.255681][T21715] R13: 0000000000000000 R14: 00007fb098d75fa0 R15: 00007fffbc5b6af8
[ 1163.263669][T21715]  </TASK>
[ 1164.554413][T21733] Line length is too long: Should be less than 4094
[ 1169.109903][T21797] Line length is too long: Should be less than 4094
[ 1169.194872][T21798] netlink: 146 bytes leftover after parsing attributes in process `syz.5.4803'.
[ 1169.786813][T21808] erspan0: entered allmulticast mode
[ 1170.335103][   T62] erspan0 (unregistering): left allmulticast mode
[ 1171.568889][T21835] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4815'.
[ 1173.486352][T21887] Process accounting resumed
[ 1173.534224][T21887] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4835'.
[ 1173.551639][T21885] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 1173.572173][T21885] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1173.586431][T21887] mac80211_hwsim hwsim26 wlan0: entered promiscuous mode
[ 1173.652469][T21887] mac80211_hwsim hwsim26 wlan0: entered allmulticast mode
[ 1176.165874][T21936] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(17)
[ 1177.726599][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.733455][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.379932][T21981] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(17)
[ 1179.127811][T21994] netlink: 'syz.0.4857': attribute type 33 has an invalid length.
[ 1179.135778][T21994] netlink: 322 bytes leftover after parsing attributes in process `syz.0.4857'.
[ 1179.505923][T22012] netlink: 338 bytes leftover after parsing attributes in process `syz.5.4861'.
[ 1182.819013][T22058] netlink: 342 bytes leftover after parsing attributes in process `syz.6.4878'.
[ 1183.385832][T14469] smc: removing net device syz_tun with user defined pnetid ETHTOOL
[ 1183.598004][T22068] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1183.610229][T22068] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1183.619284][T22068] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1183.628252][T22068] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1183.635931][T22068] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1183.643752][T22068] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1183.983169][T22067] chnl_net:caif_netlink_parms(): no params data found
[ 1184.167352][T22067] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1184.174637][T22067] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1184.182563][T22067] bridge_slave_0: entered allmulticast mode
[ 1184.190529][T22067] bridge_slave_0: entered promiscuous mode
[ 1184.198936][T22067] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1184.206482][T22067] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1184.214637][T22067] bridge_slave_1: entered allmulticast mode
[ 1184.221788][T22067] bridge_slave_1: entered promiscuous mode
[ 1184.274097][T22067] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1184.299406][T22067] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1184.387612][T22067] team0: Port device team_slave_0 added
[ 1184.407025][T22067] team0: Port device team_slave_1 added
[ 1184.460223][T22067] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1184.472126][T22067] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1184.523641][T22067] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1184.543585][T22067] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1184.564646][T22067] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1184.614201][T22067] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1184.724624][T22067] hsr_slave_0: entered promiscuous mode
[ 1184.742351][T22067] hsr_slave_1: entered promiscuous mode
[ 1184.757524][T22067] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1184.765137][T22067] Cannot create hsr debugfs directory
[ 1185.050013][T22067] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1185.170298][T22067] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1185.291613][T22067] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1185.421388][T22067] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1185.518018][T22093] netlink: 330 bytes leftover after parsing attributes in process `syz.4.4889'.
[ 1185.665070][T22093] : renamed from hsr_slave_0 (while UP)
[ 1185.697924][T22097] netlink: 342 bytes leftover after parsing attributes in process `syz.6.4887'.
[ 1185.706646][T22068] Bluetooth: hci3: command tx timeout
[ 1185.941301][T22067] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1185.959701][T22104] kAFS: Invalid Command on /proc/fs/afs/cells file
[ 1185.970668][T22104] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4893'.
[ 1185.972859][T22067] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1185.981404][T22104] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4893'.
[ 1186.016869][T22067] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1186.061536][T22067] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1187.783884][T22067] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1187.790980][T22068] Bluetooth: hci3: command tx timeout
[ 1187.893771][T22067] 8021q: adding VLAN 0 to HW filter on device team0
[ 1188.015821][   T62] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1188.023003][   T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1188.058762][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1188.065919][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1189.002161][T22067] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1189.178065][T22067] veth0_vlan: entered promiscuous mode
[ 1189.190138][T22067] veth1_vlan: entered promiscuous mode
[ 1189.215552][T22067] veth0_macvtap: entered promiscuous mode
[ 1189.228455][T22067] veth1_macvtap: entered promiscuous mode
[ 1189.274069][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1189.296487][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1189.309172][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1189.336203][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1189.356047][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1189.376673][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1189.406327][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1189.437008][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1189.458245][T22067] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1189.480604][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1189.516159][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1189.560103][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1189.596210][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1189.626700][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1189.666914][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1189.696508][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1189.736136][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1189.766295][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1189.796164][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1189.826087][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1189.837412][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1189.848976][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1189.861304][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1189.872358][ T5837] Bluetooth: hci3: command tx timeout
[ 1189.882317][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1189.894236][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1189.905534][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1189.916480][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1189.931055][T22067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1189.950642][T22067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1190.000628][T22067] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1190.061660][T22067] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1190.084220][T22067] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1190.106907][T22067] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1190.115671][T22067] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1190.534949][ T9257] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1190.548606][ T9257] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1190.709200][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1190.732465][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1191.310385][T22190] netlink: 330 bytes leftover after parsing attributes in process `syz.6.4912'.
[ 1191.343617][T22190] : renamed from hsr_slave_0 (while UP)
[ 1191.936402][ T5837] Bluetooth: hci3: command tx timeout
[ 1192.187721][T22210] FAULT_INJECTION: forcing a failure.
[ 1192.187721][T22210] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1192.231611][T22210] CPU: 1 UID: 0 PID: 22210 Comm: syz.6.4918 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1192.242412][T22210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1192.252487][T22210] Call Trace:
[ 1192.255850][T22210]  <TASK>
[ 1192.258777][T22210]  dump_stack_lvl+0x16c/0x1f0
[ 1192.263458][T22210]  should_fail_ex+0x497/0x5b0
[ 1192.268142][T22210]  _copy_to_user+0x32/0xd0
[ 1192.272656][T22210]  simple_read_from_buffer+0xd0/0x160
[ 1192.278035][T22210]  proc_fail_nth_read+0x198/0x270
[ 1192.283062][T22210]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1192.288629][T22210]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1192.294196][T22210]  vfs_read+0x1df/0xbe0
[ 1192.298362][T22210]  ? __fget_files+0x1fc/0x3a0
[ 1192.303051][T22210]  ? __pfx___mutex_lock+0x10/0x10
[ 1192.308085][T22210]  ? __pfx_vfs_read+0x10/0x10
[ 1192.312776][T22210]  ? __fget_files+0x206/0x3a0
[ 1192.317487][T22210]  ksys_read+0x12b/0x250
[ 1192.321754][T22210]  ? __pfx_ksys_read+0x10/0x10
[ 1192.326541][T22210]  do_syscall_64+0xcd/0x250
[ 1192.331065][T22210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1192.337070][T22210] RIP: 0033:0x7fb098b8473c
[ 1192.341500][T22210] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1192.361118][T22210] RSP: 002b:00007fb0999a0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1192.369539][T22210] RAX: ffffffffffffffda RBX: 00007fb098d75fa0 RCX: 00007fb098b8473c
[ 1192.377513][T22210] RDX: 000000000000000f RSI: 00007fb0999a00a0 RDI: 000000000000001a
[ 1192.385490][T22210] RBP: 00007fb0999a0090 R08: 0000000000000000 R09: 0000000000000000
[ 1192.393462][T22210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1192.401435][T22210] R13: 0000000000000000 R14: 00007fb098d75fa0 R15: 00007fffbc5b6af8
[ 1192.409423][T22210]  </TASK>
[ 1192.412592][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1196.000826][T22290] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4943'.
[ 1196.077453][T22291] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4943'.
[ 1196.116197][T22291] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4943'.
[ 1196.398224][T22298] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4946'.
[ 1198.407493][T22334] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4959'.
[ 1199.303520][T22068] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1199.318167][T22068] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1199.328597][T22068] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1199.337459][T22068] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1199.359194][T22068] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1199.368031][T22068] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1199.598962][T22345] chnl_net:caif_netlink_parms(): no params data found
[ 1200.173806][T22345] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1200.191616][T22345] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1200.206321][T22345] bridge_slave_0: entered allmulticast mode
[ 1200.220678][T22345] bridge_slave_0: entered promiscuous mode
[ 1200.233339][T22345] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1200.246449][T22345] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1200.258778][T22345] bridge_slave_1: entered allmulticast mode
[ 1200.267442][T22345] bridge_slave_1: entered promiscuous mode
[ 1200.449813][T22345] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1200.518601][T22345] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1200.643988][T22345] team0: Port device team_slave_0 added
[ 1200.687020][T22345] team0: Port device team_slave_1 added
[ 1201.456294][T22068] Bluetooth: hci2: command tx timeout
[ 1201.847098][T22385] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4972'.
[ 1202.333760][T22395] netlink: 310 bytes leftover after parsing attributes in process `syz.6.4976'.
[ 1203.546405][T22068] Bluetooth: hci2: command tx timeout
[ 1203.636896][T22345] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1203.671722][T22345] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1203.771970][T22345] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1203.811033][T22345] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1203.826090][T22345] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1203.914412][T22345] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1204.094804][T22345] hsr_slave_0: entered promiscuous mode
[ 1204.118230][T22345] hsr_slave_1: entered promiscuous mode
[ 1204.124617][T22345] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1204.145117][T22345] Cannot create hsr debugfs directory
[ 1204.528082][T22417] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4987'.
[ 1204.851706][T22345] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1205.030298][T22345] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1205.183768][T22345] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1205.328257][T22345] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1205.616265][T22068] Bluetooth: hci2: command tx timeout
[ 1205.671569][T22345] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1205.688625][T22345] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1205.823498][T22345] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1205.876728][T22345] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1206.117609][T22345] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1206.170317][T22345] 8021q: adding VLAN 0 to HW filter on device team0
[ 1206.240550][   T62] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1206.247734][   T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1206.314537][ T9256] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1206.321719][ T9256] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1206.439612][T22345] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1206.514004][T22452] kAFS: Invalid Command on /proc/fs/afs/cells file
[ 1206.843577][T22345] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1207.478284][T22345] veth0_vlan: entered promiscuous mode
[ 1207.518665][T22345] veth1_vlan: entered promiscuous mode
[ 1207.612647][T22345] veth0_macvtap: entered promiscuous mode
[ 1207.671266][T22345] veth1_macvtap: entered promiscuous mode
[ 1207.701354][T22068] Bluetooth: hci2: command tx timeout
[ 1207.785133][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1207.796471][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1207.832305][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1207.876575][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1207.904409][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1207.929350][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1207.946173][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1207.976105][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1207.992181][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1208.016391][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1208.048893][T22345] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1208.091395][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1208.126448][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1208.157243][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1208.176272][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1208.196829][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1208.226373][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1208.247012][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1208.266246][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1208.296397][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1208.316110][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1208.326661][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1208.342974][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1208.375238][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1208.388588][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1208.399592][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1208.417577][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1208.437437][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1208.459522][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1208.482962][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1208.506054][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1208.526476][T22345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1208.549313][T22345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1208.570647][T22345] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1208.617589][T22345] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1208.634467][T22345] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1208.646459][T22345] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1208.657434][T22345] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1209.107281][ T9251] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1209.115154][ T9251] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1209.258759][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1209.286682][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1210.219930][T22505] FAULT_INJECTION: forcing a failure.
[ 1210.219930][T22505] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1210.257047][T22505] CPU: 1 UID: 0 PID: 22505 Comm: syz.6.5004 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1210.267887][T22505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1210.277975][T22505] Call Trace:
[ 1210.281274][T22505]  <TASK>
[ 1210.284224][T22505]  dump_stack_lvl+0x16c/0x1f0
[ 1210.288939][T22505]  should_fail_ex+0x497/0x5b0
[ 1210.293658][T22505]  _copy_from_iter+0x29b/0x1400
[ 1210.298553][T22505]  ? trace_lock_acquire+0x14e/0x1f0
[ 1210.303796][T22505]  ? __alloc_skb+0x200/0x380
[ 1210.308437][T22505]  ? __pfx__copy_from_iter+0x10/0x10
[ 1210.313761][T22505]  ? __virt_addr_valid+0x1a4/0x590
[ 1210.318907][T22505]  ? __virt_addr_valid+0x5e/0x590
[ 1210.323947][T22505]  ? __phys_addr_symbol+0x30/0x80
[ 1210.328985][T22505]  ? __check_object_size+0x488/0x710
[ 1210.334284][T22505]  netlink_sendmsg+0x813/0xd70
[ 1210.339242][T22505]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1210.344540][T22505]  ____sys_sendmsg+0x9ae/0xb40
[ 1210.349402][T22505]  ? copy_msghdr_from_user+0x10b/0x160
[ 1210.354876][T22505]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1210.360175][T22505]  ? get_pid_task+0xfc/0x250
[ 1210.364780][T22505]  ___sys_sendmsg+0x135/0x1e0
[ 1210.369480][T22505]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1210.374721][T22505]  ? __pfx_vfs_write+0x10/0x10
[ 1210.379493][T22505]  ? do_sys_openat2+0xb1/0x1e0
[ 1210.384270][T22505]  __sys_sendmsg+0x16e/0x220
[ 1210.388874][T22505]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1210.394013][T22505]  do_syscall_64+0xcd/0x250
[ 1210.398532][T22505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1210.404438][T22505] RIP: 0033:0x7fb098b85d29
[ 1210.408859][T22505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1210.428478][T22505] RSP: 002b:00007fb0999a0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1210.436900][T22505] RAX: ffffffffffffffda RBX: 00007fb098d75fa0 RCX: 00007fb098b85d29
[ 1210.444873][T22505] RDX: 0000000000000000 RSI: 0000000020003700 RDI: 0000000000000002
[ 1210.452849][T22505] RBP: 00007fb0999a0090 R08: 0000000000000000 R09: 0000000000000000
[ 1210.460828][T22505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1210.468815][T22505] R13: 0000000000000000 R14: 00007fb098d75fa0 R15: 00007fffbc5b6af8
[ 1210.476806][T22505]  </TASK>
[ 1210.827328][T22516] netlink: 342 bytes leftover after parsing attributes in process `syz.6.5006'.
[ 1213.808967][T22563] 
[ 1213.811346][T22563] ======================================================
[ 1213.818377][T22563] WARNING: possible circular locking dependency detected
[ 1213.825410][T22563] 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0 Not tainted
[ 1213.832536][T22563] ------------------------------------------------------
[ 1213.839657][T22563] syz.6.5018/22563 is trying to acquire lock:
[ 1213.845734][T22563] ffff8880660e5a18 (sk_lock-AF_INET){+.+.}-{0:0}, at: sockopt_lock_sock+0x54/0x70
[ 1213.855020][T22563] 
[ 1213.855020][T22563] but task is already holding lock:
[ 1213.862396][T22563] ffffffff8fabfb08 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_setsockopt+0xf9/0x38c0
[ 1213.871326][T22563] 
[ 1213.871326][T22563] which lock already depends on the new lock.
[ 1213.871326][T22563] 
[ 1213.881753][T22563] 
[ 1213.881753][T22563] the existing dependency chain (in reverse order) is:
[ 1213.890783][T22563] 
[ 1213.890783][T22563] -> #2 (rtnl_mutex){+.+.}-{4:4}:
[ 1213.898039][T22563]        __mutex_lock+0x19b/0xa60
[ 1213.903100][T22563]        do_ipv6_setsockopt+0x1f4d/0x4660
[ 1213.908851][T22563]        ipv6_setsockopt+0xcb/0x170
[ 1213.914078][T22563]        tcp_setsockopt+0xa4/0x100
[ 1213.919216][T22563]        smc_setsockopt+0x1b4/0xc00
[ 1213.924456][T22563]        do_sock_setsockopt+0x222/0x480
[ 1213.930035][T22563]        __sys_setsockopt+0x1a0/0x230
[ 1213.935443][T22563]        __x64_sys_setsockopt+0xbd/0x160
[ 1213.941115][T22563]        do_syscall_64+0xcd/0x250
[ 1213.946186][T22563]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1213.952627][T22563] 
[ 1213.952627][T22563] -> #1 (&smc->clcsock_release_lock){+.+.}-{4:4}:
[ 1213.961260][T22563]        __mutex_lock+0x19b/0xa60
[ 1213.966312][T22563]        smc_switch_to_fallback+0x2d/0xa00
[ 1213.972150][T22563]        smc_sendmsg+0x13d/0x520
[ 1213.977134][T22563]        ____sys_sendmsg+0x9ae/0xb40
[ 1213.982450][T22563]        ___sys_sendmsg+0x135/0x1e0
[ 1213.987681][T22563]        __sys_sendmsg+0x16e/0x220
[ 1213.992826][T22563]        do_syscall_64+0xcd/0x250
[ 1213.998051][T22563]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1214.004507][T22563] 
[ 1214.004507][T22563] -> #0 (sk_lock-AF_INET){+.+.}-{0:0}:
[ 1214.012193][T22563]        __lock_acquire+0x249e/0x3c40
[ 1214.017610][T22563]        lock_acquire.part.0+0x11b/0x380
[ 1214.023262][T22563]        lock_sock_nested+0x3a/0xf0
[ 1214.028488][T22563]        sockopt_lock_sock+0x54/0x70
[ 1214.033793][T22563]        do_ip_setsockopt+0x101/0x38c0
[ 1214.039264][T22563]        ip_setsockopt+0x59/0xf0
[ 1214.044205][T22563]        raw_setsockopt+0xb8/0x290
[ 1214.049315][T22563]        do_sock_setsockopt+0x222/0x480
[ 1214.054857][T22563]        __sys_setsockopt+0x1a0/0x230
[ 1214.060235][T22563]        __x64_sys_setsockopt+0xbd/0x160
[ 1214.065868][T22563]        do_syscall_64+0xcd/0x250
[ 1214.070896][T22563]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1214.077314][T22563] 
[ 1214.077314][T22563] other info that might help us debug this:
[ 1214.077314][T22563] 
[ 1214.087532][T22563] Chain exists of:
[ 1214.087532][T22563]   sk_lock-AF_INET --> &smc->clcsock_release_lock --> rtnl_mutex
[ 1214.087532][T22563] 
[ 1214.101094][T22563]  Possible unsafe locking scenario:
[ 1214.101094][T22563] 
[ 1214.108537][T22563]        CPU0                    CPU1
[ 1214.113898][T22563]        ----                    ----
[ 1214.119346][T22563]   lock(rtnl_mutex);
[ 1214.123343][T22563]                                lock(&smc->clcsock_release_lock);
[ 1214.131250][T22563]                                lock(rtnl_mutex);
[ 1214.137758][T22563]   lock(sk_lock-AF_INET);
[ 1214.142190][T22563] 
[ 1214.142190][T22563]  *** DEADLOCK ***
[ 1214.142190][T22563] 
[ 1214.150342][T22563] 1 lock held by syz.6.5018/22563:
[ 1214.155459][T22563]  #0: ffffffff8fabfb08 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_setsockopt+0xf9/0x38c0
[ 1214.164795][T22563] 
[ 1214.164795][T22563] stack backtrace:
[ 1214.170678][T22563] CPU: 1 UID: 0 PID: 22563 Comm: syz.6.5018 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[ 1214.181439][T22563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1214.191495][T22563] Call Trace:
[ 1214.194769][T22563]  <TASK>
[ 1214.197706][T22563]  dump_stack_lvl+0x116/0x1f0
[ 1214.202390][T22563]  print_circular_bug+0x41c/0x610
[ 1214.207432][T22563]  check_noncircular+0x31a/0x400
[ 1214.212387][T22563]  ? __pfx_check_noncircular+0x10/0x10
[ 1214.217858][T22563]  ? hlock_class+0x4e/0x130
[ 1214.222375][T22563]  ? lockdep_lock+0xc6/0x200
[ 1214.226971][T22563]  ? __pfx_lockdep_lock+0x10/0x10
[ 1214.232000][T22563]  __lock_acquire+0x249e/0x3c40
[ 1214.236880][T22563]  ? __pfx___lock_acquire+0x10/0x10
[ 1214.242091][T22563]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1214.247916][T22563]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1214.253117][T22563]  lock_acquire.part.0+0x11b/0x380
[ 1214.258237][T22563]  ? sockopt_lock_sock+0x54/0x70
[ 1214.263188][T22563]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1214.268819][T22563]  ? rcu_is_watching+0x12/0xc0
[ 1214.273597][T22563]  ? trace_lock_acquire+0x14e/0x1f0
[ 1214.278814][T22563]  ? mark_lock+0xb5/0xc60
[ 1214.283163][T22563]  ? sockopt_lock_sock+0x54/0x70
[ 1214.288118][T22563]  ? lock_acquire+0x2f/0xb0
[ 1214.292725][T22563]  ? sockopt_lock_sock+0x54/0x70
[ 1214.297674][T22563]  lock_sock_nested+0x3a/0xf0
[ 1214.302362][T22563]  ? sockopt_lock_sock+0x54/0x70
[ 1214.307312][T22563]  sockopt_lock_sock+0x54/0x70
[ 1214.312084][T22563]  do_ip_setsockopt+0x101/0x38c0
[ 1214.317027][T22563]  ? __pfx___futex_wait+0x10/0x10
[ 1214.322056][T22563]  ? __pfx_do_ip_setsockopt+0x10/0x10
[ 1214.327457][T22563]  ip_setsockopt+0x59/0xf0
[ 1214.331874][T22563]  raw_setsockopt+0xb8/0x290
[ 1214.336500][T22563]  ? __pfx_raw_setsockopt+0x10/0x10
[ 1214.341702][T22563]  ? sock_common_setsockopt+0x2e/0xf0
[ 1214.347165][T22563]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1214.353150][T22563]  do_sock_setsockopt+0x222/0x480
[ 1214.358177][T22563]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1214.363724][T22563]  ? lock_acquire+0x2f/0xb0
[ 1214.368240][T22563]  __sys_setsockopt+0x1a0/0x230
[ 1214.373189][T22563]  __x64_sys_setsockopt+0xbd/0x160
[ 1214.378307][T22563]  ? do_syscall_64+0x91/0x250
[ 1214.382993][T22563]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1214.388410][T22563]  do_syscall_64+0xcd/0x250
[ 1214.392923][T22563]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1214.398824][T22563] RIP: 0033:0x7fb098b85d29
[ 1214.403345][T22563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1214.422966][T22563] RSP: 002b:00007fb0999a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1214.431387][T22563] RAX: ffffffffffffffda RBX: 00007fb098d75fa0 RCX: 00007fb098b85d29
[ 1214.439364][T22563] RDX: 000000000000002a RSI: 0000000000000000 RDI: 0000000000000003
[ 1214.447338][T22563] RBP: 00007fb098c01aa8 R08: 0000000000010001 R09: 0000000000000000
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1214.455315][T22563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1214.463307][T22563] R13: 0000000000000000 R14: 00007fb098d75fa0 R15: 00007fffbc5b6af8
[ 1214.471282][T22563]  </TASK>
[ 1215.673074][T22559] smc: removing net device syz_tun with user defined pnetid ETHTOOL
[ 1215.700054][ T9250] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1215.780270][ T9250] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1215.844533][ T9250] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1215.915960][ T9250] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1216.076839][ T9250] bridge_slave_1: left allmulticast mode
[ 1216.082817][ T9250] bridge_slave_1: left promiscuous mode
[ 1216.089260][ T9250] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1216.098674][ T9250] bridge_slave_0: left allmulticast mode
[ 1216.104335][ T9250] bridge_slave_0: left promiscuous mode
[ 1216.110729][ T9250] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1216.223834][ T9250] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1216.239165][ T9250] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1216.251980][ T9250] bond0 (unregistering): Released all slaves
[ 1216.472565][ T9250] hsr_slave_0: left promiscuous mode
[ 1216.483867][ T9250] hsr_slave_1: left promiscuous mode
[ 1216.502873][ T9250] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1216.516136][ T9250] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1216.530330][ T9250] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1216.557173][ T9250] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1216.580853][ T9250] veth1_macvtap: left promiscuous mode
[ 1216.586950][ T9250] veth0_macvtap: left promiscuous mode
[ 1216.592507][ T9250] veth1_vlan: left promiscuous mode
[ 1216.603883][ T9250] veth0_vlan: left promiscuous mode
[ 1216.869065][ T9250] team0 (unregistering): Port device team_slave_1 removed
[ 1216.919991][ T9250] team0 (unregistering): Port device team_slave_0 removed
[ 1219.004158][ T9250] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1219.072666][ T9250] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1219.151058][ T9250] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1219.219700][ T9250] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1219.282082][ T9250] bridge_slave_1: left allmulticast mode
[ 1219.289117][ T9250] bridge_slave_1: left promiscuous mode
[ 1219.295647][ T9250] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1219.306698][ T9250] bridge_slave_0: left allmulticast mode
[ 1219.312418][ T9250] bridge_slave_0: left promiscuous mode
[ 1219.318555][ T9250] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1219.416758][ T9250] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1219.428839][ T9250] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1219.439090][ T9250] bond0 (unregistering): Released all slaves
[ 1219.630251][ T9250] hsr_slave_0: left promiscuous mode
[ 1219.638773][ T9250] hsr_slave_1: left promiscuous mode
[ 1219.644742][ T9250] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1219.652657][ T9250] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1219.665467][ T9250] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1219.675804][ T9250] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1219.690296][ T9250] veth1_macvtap: left promiscuous mode
[ 1219.695830][ T9250] veth0_macvtap: left promiscuous mode
[ 1219.701925][ T9250] veth1_vlan: left promiscuous mode
[ 1219.707597][ T9250] veth0_vlan: left promiscuous mode
[ 1219.859335][ T9250] team0 (unregistering): Port device team_slave_1 removed
[ 1219.891903][ T9250] team0 (unregistering): Port device team_slave_0 removed