last executing test programs:

8m50.611527431s ago: executing program 1 (id=905):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x2020009, 0x40000000000, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
geteuid()
fsconfig$auto(0x6, 0x5, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x5)

8m46.93220738s ago: executing program 1 (id=920):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000b80), r0)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r0, &(0x7f0000003e40)={0x0, 0xfffc, &(0x7f0000003e00)={&(0x7f0000000bc0)={0x44, r1, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x2c, 0x1, 0x0, 0x1, [@nested={0x28, 0x13c, 0x0, 0x1, [@typed={0x23, 0x59, 0x0, 0x0, @binary="3bb8fa0898a322489921eae95ac58d5832747fbf500b49ef3b7d9ac8466129"}]}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0x20040080)

8m45.623988771s ago: executing program 1 (id=928):
mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000)
memfd_create$auto(0xfffffffffffffffd, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
pidfd_open$auto(0x1, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x3c, r2, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x58}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x11e789c}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x5}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
sendmsg$auto_GTP_CMD_GETPDP(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x44, 0x0, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@GTPA_PEER_ADDR6={0x14, 0xb, {@u6_addr32=[0x6, 0x3, 0x2a9a8ac9, 0xfffffffa]}}, @GTPA_MS_ADDR6={0x14, 0xc, {@u6_addr32=[0x6, 0x2, 0x8, 0x7]}}, @GTPA_FAMILY={0x5, 0xd, 0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r3 = socket(0x840000000002, 0x3, 0xff)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
timer_create$auto(0x0, &(0x7f0000000140)={@sival_ptr=0x0, 0xfffffffd, 0x1}, &(0x7f0000000200)=0x1000004)
timer_settime$auto(0x0, 0xc, &(0x7f0000000040)={{0xfffffffffffffffd, 0xd3}, {0x1000}}, &(0x7f0000000100)={{0xa01, 0x5}, {0x9000, 0x7ff}})
sendmsg$auto_NBD_CMD_CONNECT(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="05000000", @ANYRES16=0x0, @ANYBLOB="f4fbae"], 0x20}, 0x1, 0x0, 0x0, 0x890}, 0x20040b00)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x8880)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
syz_genetlink_get_family_id$auto_802_15_4_MAC(0x0, 0xffffffffffffffff)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, 0x0, 0x80c0)
socket(0x1d, 0x2, 0x2)
fanotify_init$auto(0x2, 0x2)
sendfile$auto(r4, r5, 0x0, 0x10000c04)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
syslog$auto(0x3, &(0x7f0000000040)='V/\x00', 0x7ff)

8m45.41033543s ago: executing program 1 (id=930):
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041)
socket(0x2, 0x1, 0x0)
syz_clone(0xcc81455747ec94b6, 0x0, 0x0, 0x0, 0x0, 0x0)
bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5)
r0 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000003240)={0x0, 0x0, &(0x7f0000003200)={&(0x7f0000000380)={0x2c, r0, 0x159198c6007aa95d, 0x70bd28, 0x25dfdbfc, {}, [@OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_BANDS={0xc, 0x4, 0x0, 0x1, [@nested={0x4, 0xf9}, @nested={0x4, 0x48}]}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0xc0}, 0x40)
write$auto(0x3, 0x0, 0xfffffdef)
setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x6, 0x19, 0x0, 0xfb3)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x200c88c0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x10000000000002d, 0x0)
sendmsg$auto_NBD_CMD_RECONFIGURE(0xffffffffffffffff, 0x0, 0x800)
mprotect$auto(0x1ffff000, 0x7fffffff, 0x0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0xffffffffffff0001, 0x17)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000)
connect$auto(0x4, 0x0, 0x10)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
futex$auto(0x0, 0xfffffffb, 0x10000, 0x0, &(0x7f0000000140)=0x80000001, 0x7fff)
mmap$auto(0x0, 0x400008, 0xdf, 0xd6, 0x2, 0x8000)

8m44.196617112s ago: executing program 1 (id=936):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x5) (rerun: 32)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async, rerun: 32)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (rerun: 32)
tkill$auto(0x1, 0x7)
pidfd_open$auto(0x1, 0x0) (async)
getgid() (async)
r0 = socket(0x11, 0xa, 0x300) (async)
socket(0x2, 0x80002, 0x73) (async)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000)
nanosleep$auto(&(0x7f0000000000)={0xffffffffffff8001, 0x5f5}, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async, rerun: 64)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async, rerun: 64)
sendto$auto(0x3, 0x0, 0x8, 0xe, &(0x7f0000000000)={0x2, @sockaddr_1_1}, 0x1c) (async, rerun: 64)
socket(0x2, 0x80002, 0x73) (rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mprotect$auto(0x1ffff000, 0x8000000000000002, 0x5) (async)
socketpair$auto(0x3, 0x5, 0x7, 0x0) (async)
setsockopt$auto(0x3, 0x0, 0x13, 0x0, 0x9) (async)
sendto$auto(0x3, 0x0, 0xf, 0xe, &(0x7f0000000100)={0x2, @sa_data_min="c449e72204736b00"}, 0x19)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, 0x0, 0xc811) (async, rerun: 32)
recvfrom$auto(0xffffffffffffffff, 0x0, 0xe, 0x1, 0x0, 0x0) (rerun: 32)

8m43.188680695s ago: executing program 1 (id=939):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
close_range$auto(0x2, 0xfffffffffffff000, 0x2)
clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x21, 0x0, 0x1ff)
sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001400)={&(0x7f0000000540)=ANY=[@ANYRESOCT, @ANYRESDEC=0x0, @ANYRES64, @ANYBLOB="58f0ba87bbf468004faf341d60a19452ce431cece4c991099ae064c78b621cfcaa934bb7415d00773caff517f2559aeb42ec59833298c3930d6e0fbbe2a2a5ac2335586237af6053894a9e48a1939599e5dee770178e4e3e20b17d600a2849277d0f25f38aecde9bf09f1f9c904ce6ce17ab288ed3da1d1bd01ca967c1b430bcd041f5aa77bb0825aed77ad4ff9d4654efca933f71b765d818", @ANYRES8, @ANYRESDEC, @ANYBLOB="8ac885df30e3ff6b6423dc98f01c81f7f5c9b73db6156141afbf4b1137e362c6019052702b44d3ec7f532b4968efb77f16abd685bdd093cd689f19c88543e916442026f869bc487a174c3703f0bb001159fe2b9cfc5059e78fa387682ee20c71356b02f5a1a4034697f66a1333c31274491cee2b5b2dd6e2e0582c7c068ca022cb614f2c53e2cb16d52040be79", @ANYRES16, @ANYRES64=0x0, @ANYRESHEX, @ANYRES8], 0x1354}}, 0x40001)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x801, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
recvmmsg$auto(0x4, &(0x7f0000000200)={{0x0, 0x4, &(0x7f0000000140)={0x0, 0x4da}, 0x4, 0x0, 0x8, 0x800}, 0x1000}, 0xffffffff, 0x0, 0x0)
connect$auto(0xffffffffffffffff, 0x0, 0x58)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
open(0x0, 0x406242, 0xe1d2b27bdc14aabc)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket(0x10, 0x3, 0xf)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
bpf$auto(0xa, &(0x7f0000000e40)=@test={0xffffffffffffffff, 0x3, 0x5, 0xc, 0x5, 0x7ff, 0x8b0, 0x1010000, 0x5cf8, 0x1, 0x2, 0x80000000, 0x40, 0x1, 0x6}, 0x400)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x10, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x2008, 0x3ff, 0xffffffffffffffff, @relative_fd, 0x1}, 0x8)

8m42.770792674s ago: executing program 32 (id=939):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
close_range$auto(0x2, 0xfffffffffffff000, 0x2)
clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x21, 0x0, 0x1ff)
sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001400)={&(0x7f0000000540)=ANY=[@ANYRESOCT, @ANYRESDEC=0x0, @ANYRES64, @ANYBLOB="58f0ba87bbf468004faf341d60a19452ce431cece4c991099ae064c78b621cfcaa934bb7415d00773caff517f2559aeb42ec59833298c3930d6e0fbbe2a2a5ac2335586237af6053894a9e48a1939599e5dee770178e4e3e20b17d600a2849277d0f25f38aecde9bf09f1f9c904ce6ce17ab288ed3da1d1bd01ca967c1b430bcd041f5aa77bb0825aed77ad4ff9d4654efca933f71b765d818", @ANYRES8, @ANYRESDEC, @ANYBLOB="8ac885df30e3ff6b6423dc98f01c81f7f5c9b73db6156141afbf4b1137e362c6019052702b44d3ec7f532b4968efb77f16abd685bdd093cd689f19c88543e916442026f869bc487a174c3703f0bb001159fe2b9cfc5059e78fa387682ee20c71356b02f5a1a4034697f66a1333c31274491cee2b5b2dd6e2e0582c7c068ca022cb614f2c53e2cb16d52040be79", @ANYRES16, @ANYRES64=0x0, @ANYRESHEX, @ANYRES8], 0x1354}}, 0x40001)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x801, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
recvmmsg$auto(0x4, &(0x7f0000000200)={{0x0, 0x4, &(0x7f0000000140)={0x0, 0x4da}, 0x4, 0x0, 0x8, 0x800}, 0x1000}, 0xffffffff, 0x0, 0x0)
connect$auto(0xffffffffffffffff, 0x0, 0x58)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
open(0x0, 0x406242, 0xe1d2b27bdc14aabc)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket(0x10, 0x3, 0xf)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
bpf$auto(0xa, &(0x7f0000000e40)=@test={0xffffffffffffffff, 0x3, 0x5, 0xc, 0x5, 0x7ff, 0x8b0, 0x1010000, 0x5cf8, 0x1, 0x2, 0x80000000, 0x40, 0x1, 0x6}, 0x400)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x10, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x2008, 0x3ff, 0xffffffffffffffff, @relative_fd, 0x1}, 0x8)

4m6.523492799s ago: executing program 2 (id=2369):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYRES8], 0x24}, 0x1, 0x0, 0x0, 0x20040010}, 0x20000084)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket(0x2, 0x80002, 0x73)
r0 = socket(0x80000000000000a, 0x2, 0x0)
bpf$auto(0x10, &(0x7f0000000380)=@test={r0, 0xe2f, 0x9, 0xffff, 0x6, 0x0, 0x9, 0x5, 0xd6, 0x0, 0x5, 0x5, 0x203, 0x8}, 0x5)
bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)

4m5.550760975s ago: executing program 2 (id=2372):
mmap$auto(0x0, 0x402000b, 0x6, 0xeb1, 0x401, 0x10000000008000)
r0 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r0, 0x107, 0x14, 0x0, 0x4)

4m5.13693169s ago: executing program 2 (id=2375):
msgctl$auto(0x0, 0x2, 0x0)

3m54.96353449s ago: executing program 2 (id=2376):
r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PLCA_GET_CFG(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x3c, 0x0, 0x100, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_PLCA_HEADER={0x8, 0x1, 0x10}, @ETHTOOL_A_PLCA_HEADER={0x8, 0x1, 0x3}, @ETHTOOL_A_PLCA_HEADER={0x8, 0x1, 0x3}, @ETHTOOL_A_PLCA_HEADER={0x8, 0x1, 0x7}, @ETHTOOL_A_PLCA_HEADER={0x8, 0x1, 0x694}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000080}, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x11, 0x80003, 0x10300)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x23, 0x2, 0x0)
ioctl$auto(0x8000000000000001, 0x89ee, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c000b8008000700", @ANYRES32=0x0, @ANYBLOB="12000100898771f1c19f17790485908288470000040002"], 0x4c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
read$auto(0x3, 0x0, 0x7)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x8)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x6, 0x4, 0x200, 0x2, 0x8, 0xc, 0x66b, 0x0, 0x1}, 0x6f4)
ioctl$auto(0x3, 0x8906, 0xd)
mincore$auto(0x1000, 0x6, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, r0, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x16, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800)

3m53.86833531s ago: executing program 2 (id=2389):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000640), r0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000380)={0x1c, r1, 0x1, 0x70bd25, 0x25dfdbfd, {0x4, 0x0, 0x2800}, [@HWSIM_ATTR_PMSR_SUPPORT={0x8, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0x4}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000904}, 0x200580d4)

3m53.68425723s ago: executing program 2 (id=2391):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
msync$auto(0x1ffff000, 0x80100000000002, 0x400000004)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r0 = socket(0xa, 0x2, 0x88)
setsockopt$auto(r0, 0x88, 0xb, &(0x7f0000000000)='!/*:(*\'\x00', 0xe)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pipe$auto(0x0)
write$auto(0x3, 0x0, 0x81)
write$auto(0x3, 0x0, 0xfdef)
socket$nl_generic(0x10, 0x3, 0x10)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
uname$auto(0x0)
preadv$auto(0x7, 0x0, 0x6, 0x8, 0x1)
move_pages$auto(0x0, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)

3m38.493081593s ago: executing program 33 (id=2391):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
msync$auto(0x1ffff000, 0x80100000000002, 0x400000004)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r0 = socket(0xa, 0x2, 0x88)
setsockopt$auto(r0, 0x88, 0xb, &(0x7f0000000000)='!/*:(*\'\x00', 0xe)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pipe$auto(0x0)
write$auto(0x3, 0x0, 0x81)
write$auto(0x3, 0x0, 0xfdef)
socket$nl_generic(0x10, 0x3, 0x10)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
uname$auto(0x0)
preadv$auto(0x7, 0x0, 0x6, 0x8, 0x1)
move_pages$auto(0x0, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)

3m9.157573246s ago: executing program 5 (id=2477):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x8, 0x99, 0x3, 0x10010, 0xd, 0x7)
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$auto(r0, 0x29, 0xca, 0x0, 0x563)
mmap$auto(0x0, 0x4020009, 0x9, 0xeb1, 0x40, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000200), r1)
r2 = socket(0x9, 0x804, 0x84)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_3={0x8, 0xb, 0x18c, 0x6a, 0x0, 0x8, 0x3, 0x9, 0xfffffff8, "63acf0e05b2d32ebc15774e816ef77cf", 0x0, 0x541, 0x4, 0x7, 0x3, 0x3800000, 0x200, 0x8a, 0xe, 0x5, @attach_prog_fd=r2, 0x166, 0x7ff, 0x100000001, 0x6, 0x48000000, 0xa7c2}, 0x7)
connect$auto(0x3, &(0x7f0000000000)={0x2, @sockaddr_1_1={"d9ef7f"}}, 0x55)
accept$auto(0x3, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
mmap$auto(0x0, 0x45, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socket(0x11, 0x80003, 0x300)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
sendmsg$auto_NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, 0x0, 0x20008010)
mmap$auto(0x0, 0x400008, 0xdf, 0x7fffffff, 0x2, 0x8000)
socket(0xa, 0x801, 0x84)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(r3, 0x8, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)

3m6.738456412s ago: executing program 5 (id=2484):
mknod$auto(&(0x7f0000000b00)='X))\x00', 0x63c1, 0x7ff)
swapon$auto(&(0x7f0000000000)='X))\x00', 0x5259) (async)
swapon$auto(&(0x7f0000000000)='X))\x00', 0x5259)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
open(&(0x7f0000000000)='./file1\x00', 0x106f7d, 0x37e5c9853cd1b999)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async)
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0x2000040080000004, 0xe) (async)
madvise$auto(0x0, 0x2000040080000004, 0xe)
open(&(0x7f0000004080)='./file0\x00', 0x0, 0x0) (async)
open(&(0x7f0000004080)='./file0\x00', 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x10000, 0x0)
madvise$auto(0x1ffff000, 0x5510, 0x8)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x24, r0, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r3}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, 0x200040}]}, 0x24}, 0x1, 0x0, 0x0, 0x20040010}, 0x20000084)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
socket(0x10, 0x2, 0xc)
socket(0x2, 0x2, 0x8)
socket(0x2, 0x3, 0x6)
timerfd_create$auto(0x537, 0x9e1b)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
socket(0x2, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x7)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
sendfile$auto(0x6, 0x3, 0x0, 0xc01)
io_uring_setup$auto(0x1, 0x0) (async)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x6, 0x0, 0x0, 0x9) (async)
futex$auto(0x0, 0x6, 0x6, 0x0, 0x0, 0x9)
getsockopt$auto(0x6, 0x0, 0x480, 0xfffffffffffffffe, 0x0) (async)
getsockopt$auto(0x6, 0x0, 0x480, 0xfffffffffffffffe, 0x0)

3m5.208145177s ago: executing program 5 (id=2487):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
select$auto(0xff, &(0x7f0000000080)={[0x9, 0xfffffffffffffffc, 0x4, 0xe, 0xc, 0x6, 0x3, 0x1ffe000, 0xcad, 0x2, 0x9, 0xf, 0xa654, 0x202, 0x9, 0x1]}, 0x0, 0x0, 0x0)
kcmp$auto(0x1, 0x1, 0x40400000000000, 0x4, 0x92)
setresgid$auto(0x9, 0x8, 0x400)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mq_open$auto(&(0x7f0000000200)='.)-\\&[}\x00', 0xde8, 0xb, 0x0)
socket(0x29, 0x5, 0x0)
semctl$auto(0x1ff, 0x2, 0x13, 0x4)
read$auto(0x3, 0x0, 0xf34)
read$auto(0x3, 0x0, 0x7)
socket(0x10, 0x3, 0x6)
setreuid$auto(0x8000, 0x1008)
bind$auto(0x3, &(0x7f0000002000)={0x10, @sockaddr_1_1={"be299638191f5f"}}, 0xf)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa)
set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4)
set_mempolicy$auto(0xd, 0x0, 0x2f)
mmap$auto(0x0, 0x4, 0x8a, 0xfff, 0x402, 0x2ffffffffffe)
execve$auto(&(0x7f0000000040)=':,\x00', &(0x7f00000000c0)=&(0x7f0000000080)='$+[-+\x98%(,\x00', 0x0)

2m54.500405794s ago: executing program 5 (id=2488):
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
fanotify_init$auto(0x5, 0x2000000000002)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000340)='ns/user\x00')
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1a, 0xa, 0x106)
getsockopt$auto(0x4, 0x6, 0x1b, 0xfffffffffffffffc, 0x0)
fanotify_mark$auto(0x1000000000000, 0x65, 0x9, 0x1, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/time_for_children\x00')
keyctl$auto(0x11, 0xfffffffffffffffa, 0x0, 0x4, 0x3)

2m54.074250939s ago: executing program 5 (id=2492):
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000080)={&(0x7f0000000440)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x881}, 0x20018010)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3)
r1 = socket(0xa, 0x2, 0x88)
mknod$auto(&(0x7f0000000000)='./cgroup/../file0\x00', 0x1007, 0x100)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x1000, @old_prog_fd=r0}, 0xa3)
open(0x0, 0x22240, 0x155)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
shutdown$auto(0x200000003, 0x2)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
capget$auto(&(0x7f0000000000)={0x20071026, 0xffffffffffffffff}, 0x0)

2m52.779841854s ago: executing program 5 (id=2497):
mmap$auto(0x0, 0x800004, 0x3ff57696, 0xffffffffffffffd0, 0x6, 0x5)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x10)
mmap$auto(0xfffffffffffffffd, 0x40000a, 0x9, 0x8011, 0x2, 0x7f)
r1 = socket(0x1d, 0x80000, 0x106)
listen$auto(r0, 0x16)
shutdown$auto(0x200000003, 0xfffffffd)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)
set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x7b, 0x4)
mmap$auto(0xa, 0x6, 0xdf, 0x9b72, 0xcf, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x20009, 0xfffffffffffffff8, 0x12, 0x405, 0x7fff)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0xa, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)={0x2, @sa_data_min="915ba9fec23ea3df94bb303b2f9d"}, 0x55)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'veth1_to_bond\x00', <r3=>0x0})
mmap$auto(0x0, 0x40009, 0xdf, 0xf99c, 0x100006, 0x28000)
io_uring_setup$auto(0x6, 0x0)
setpgid$auto(0x0, 0x4000000779)
setsockopt$auto(r1, 0xfffffff8, 0xe, 0x0, 0xd)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000140)=ANY=[@ANYRES64=r3, @ANYBLOB="e2dda6fbbbf16e395ae0745d1fa055b5c1cc440d26a63a46f5dffaa9d66f24f1be9c9171a457d4d38a9641582ec6a43fd648620c6bf1c7ed087fccb386b481aa58956f4387b2dd068f9223ff0a1711c76d882b2b56c4d80747d051a21ba071bf87864d21a9c677", @ANYRES32=r2], 0x2c}, 0x1, 0x0, 0x0, 0x4000100}, 0x4008884)
setrlimit$auto(0x1000000007, 0x0)
io_uring_setup$auto(0x9, 0x0)
msync$auto(0x1ffff000, 0x80100000000005, 0x400000004)
stat$auto(&(0x7f0000000080)='./file0\x00', 0x0)

2m37.244898683s ago: executing program 34 (id=2497):
mmap$auto(0x0, 0x800004, 0x3ff57696, 0xffffffffffffffd0, 0x6, 0x5)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x10)
mmap$auto(0xfffffffffffffffd, 0x40000a, 0x9, 0x8011, 0x2, 0x7f)
r1 = socket(0x1d, 0x80000, 0x106)
listen$auto(r0, 0x16)
shutdown$auto(0x200000003, 0xfffffffd)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)
set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x7b, 0x4)
mmap$auto(0xa, 0x6, 0xdf, 0x9b72, 0xcf, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x20009, 0xfffffffffffffff8, 0x12, 0x405, 0x7fff)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0xa, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)={0x2, @sa_data_min="915ba9fec23ea3df94bb303b2f9d"}, 0x55)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'veth1_to_bond\x00', <r3=>0x0})
mmap$auto(0x0, 0x40009, 0xdf, 0xf99c, 0x100006, 0x28000)
io_uring_setup$auto(0x6, 0x0)
setpgid$auto(0x0, 0x4000000779)
setsockopt$auto(r1, 0xfffffff8, 0xe, 0x0, 0xd)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000140)=ANY=[@ANYRES64=r3, @ANYBLOB="e2dda6fbbbf16e395ae0745d1fa055b5c1cc440d26a63a46f5dffaa9d66f24f1be9c9171a457d4d38a9641582ec6a43fd648620c6bf1c7ed087fccb386b481aa58956f4387b2dd068f9223ff0a1711c76d882b2b56c4d80747d051a21ba071bf87864d21a9c677", @ANYRES32=r2], 0x2c}, 0x1, 0x0, 0x0, 0x4000100}, 0x4008884)
setrlimit$auto(0x1000000007, 0x0)
io_uring_setup$auto(0x9, 0x0)
msync$auto(0x1ffff000, 0x80100000000005, 0x400000004)
stat$auto(&(0x7f0000000080)='./file0\x00', 0x0)

1m52.336905551s ago: executing program 4 (id=2617):
connect$auto(0x3, &(0x7f0000000140)={0xa}, 0x55)

1m52.118151959s ago: executing program 4 (id=2612):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffb, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
socket(0xa, 0x801, 0x84)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x60044061}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x9, 0x801, 0x84)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c40900448dc7fe8000"}, 0x55)
listen$auto(0x3, 0x81)
accept$auto(0x3, 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getsockopt$auto(r0, 0x84, 0x85, 0x0, &(0x7f00000000c0)=0x10000)
mlockall$auto(0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x10001, 0x100000003)

1m51.417697168s ago: executing program 0 (id=2616):
r0 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r0, 0x0, 0xd, &(0x7f0000000200)='\x99\x93', &(0x7f0000000000)=0x7f)
getdents64$auto(r0, &(0x7f0000000000)={0xfffffffffffffffb, 0x8, 0x6038, 0x0, "5b9fe9fc53fc34741bf7d1db18c7dc80b3ecc05f3ed6a1636072f10709261fd85dd473610f38d5fc5dbf35a30f6b00"}, 0x2fa)
msgctl$auto(0xa5ba1ce5, 0x2, 0x0)

1m51.196380461s ago: executing program 0 (id=2618):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x840000000002, 0x3, 0xff)
inotify_init1$auto(0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x2, 0x5, 0x18, 0x6, 0x8000)
io_uring_setup$auto(0x6, 0x0)
clock_nanosleep$auto(0x9, 0x0, 0x0, 0xffffffffffffffff)
socket(0xa, 0x5, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
close_range$auto(0x2, 0x8000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x801, 0x84)
getsockopt$auto(0x6, 0x0, 0x62, 0xfffffffffffffffe, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
pselect6$auto(0x8000000000002, 0xffffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffffe, 0xfffffffffffffffc, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
fcntl$auto(0x3, 0x4, 0xa553)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
select$auto(0x7, 0x0, 0x0, 0x0, 0x0)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0x8000, 0x0)

1m50.653747901s ago: executing program 4 (id=2621):
connect$auto(0x3, &(0x7f0000000140)={0xa}, 0x55)

1m50.464087726s ago: executing program 4 (id=2622):
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0xffffffffffffff31, 0x0, 0x1, 0x0, 0x0, 0x40094}, 0x400c085)
mmap$auto(0xfffffffffffffffe, 0x400007, 0xdf, 0x19b76, 0x2, 0x8000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r0 = open(&(0x7f0000000100)='./file0/file0\x00', 0x183002, 0x1d8)
close_range$auto(0xffffffffffffffff, r0, 0xc97)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x1b, &(0x7f0000000000), 0x1)
fanotify_init$auto(0x5, 0x2)
futex_waitv$auto(&(0x7f0000000000)={0x100000000, 0x5d94, 0x80000001, 0x4}, 0x77, 0x0, 0x0, 0x62bd)
mmap$auto(0x7, 0x20009, 0xdf, 0xeb1, 0x10000000000, 0x8000)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x4, 0x0, 0x3, &(0x7f0000000000)='!/*:(*\'\x00', 0x800000e)
prctl$auto(0x1000000003b, 0x1, 0x20000000004, 0x5, 0x7)
setresuid$auto(0x909b, 0x1, 0x0)
ioctl$auto(0xc8, 0xffffffff800454dd, 0x8)
mlockall$auto(0x7)
socketpair$auto(0x7ff, 0x4, 0x40, &(0x7f0000000080)=0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2a, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000080)={0x11, @sockaddr_1_1}, 0x6b)
bind$auto(0x3, &(0x7f0000000080)={0x11, @sockaddr_1_1}, 0x2006b)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000140), 0xffffffffffffffff)
io_uring_setup$auto(0x40005, &(0x7f0000000000)={0x4, 0x1, 0x400, 0x6, 0x1005, 0x7, 0x7, [0x200, 0x10000, 0x8], {0x0, 0x1, 0x5, 0x7, 0x5, 0x5, 0x2000001, 0xfffffffc}, {0x2003, 0x1004ffb, 0xffff7fff, 0x3, 0xa, 0x7, 0x6, 0x0, 0x3}})

1m50.40768223s ago: executing program 0 (id=2623):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001100)={0x28, r1, 0x301, 0x70bd29, 0x25dfdbff, {}, [@CTRL_ATTR_OP={0x8, 0xa, 0x7}, @CTRL_ATTR_FAMILY_NAME={0xb, 0x2, 'TIPCv2\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0xe0db2389416cc6ce}, 0xc040810)

1m50.221723701s ago: executing program 0 (id=2624):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xfffffffffffff000, 0x2)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000001080), 0xffffffffffffffff)
socket(0xa, 0x3, 0x84)
mmap$auto(0xfff, 0x40009, 0xe2, 0x9b72, 0xb, 0x28000)
mbind$auto(0x3, 0x8, 0x5, 0x0, 0x1, 0x8)
prctl$auto(0x1000000001c, 0x4, 0x4007, 0x3, 0x80001)
setreuid$auto(0x8c4a, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x1, 0x0)
unshare$auto(0x200)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/mnt\x00')
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
setns(r1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000080), r2)
sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x804}, 0x20008840)
umount2$auto(&(0x7f0000000080)='.\x00', 0x3)
setns(r0, 0x0)
open(0x0, 0x22240, 0x155)
bind$auto(0x3, &(0x7f0000000040)={0x2, @sockaddr_1_1={"90927f"}}, 0x68)
setsockopt$auto(0x5, 0x1, 0x1, &(0x7f0000000080)='\x10\x81\x90\xcb\x91\x1b[?\fF\xf6\x15\x83i\xe5\xd2\xd3\x14\x96md\x9f4\xbaD\xfe\x8e^\xc0O\xd0\xc5\xe2\xa2\x88\"\t\xf1\x8c\xee\xf6\xcc\x8dFW\x91\xce\xf7nW\'Q\x9e\xde)\x8b\xe9\xe2\x89\x03\xc3\xf4\x12\xde\x1a\xbaQ\xaf\xd7\vA]\xb9\x84T\xbd\x1d\xb0\xbb\r\x7f\xce\xd4[H\xce\xb0\x05\x00\x00*\xd6\x12!\xbb}r\x93|\'\x81\xa0QM\x01\xfa|[\xd8\xa2|\xd9n\xaf\x00'/129, 0x9)
symlink$auto(&(0x7f0000000080)='\xe6\'\xd4\v{T+\xac', &(0x7f0000000000)='\'--[[\x14+\\\x00')
mprotect$auto(0x1fffeffd, 0x8000000000000405, 0x10)
open(&(0x7f0000000180)='\xe6\'\xd4\v{T+\xac\x00', 0x4242, 0xe1d2b27bdc14aabc)
open(&(0x7f0000000000)='./file1\x00', 0x10677d, 0x37e5c9853cd1b999)
sendmsg$auto(0xffffffffffffffff, 0x0, 0xfffffffc)
read$auto(0x3, 0x0, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)

1m49.904887986s ago: executing program 3 (id=2626):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x7b, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_WG_CMD_SET_DEVICE(r0, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000000)={0x30, r1, 0x21, 0x70bd26, 0x25dfdbfe, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e20}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x80)
recvmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000000)=[0x0, 0x420, 0x2, 0xfff, 0x8, 0x0, 0x5, 0x7f, 0xd, 0xffffffffffffff7b], 0x3, &(0x7f00000000c0)={&(0x7f0000000080)=[0x1, 0x5], 0xd4}, 0x0, &(0x7f0000000100)=[0xffffffffffffffff, 0xd281, 0x4, 0x5, 0x9], 0xc6, 0x10001}, 0x7fffffff}, 0x1, 0xfffffff9, &(0x7f0000000180)={0x3, 0x9d8a})
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)

1m39.350349762s ago: executing program 4 (id=2628):
socket(0xa, 0x801, 0x84)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe80000000000b00"}, 0x55)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
shutdown$auto(0x200000003, 0x2)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
pipe$auto(&(0x7f0000000000)=0xae8)
tee$auto(0x2000000000000, 0x3, 0x3ff, 0x9)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0x8)
write$auto(0x3, 0x0, 0xffd8)
write$auto(0x3, 0x0, 0xfdef)

1m39.329960362s ago: executing program 0 (id=2629):
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
eventfd$auto(0x2)
mmap$auto(0x0, 0x8020009, 0xe2, 0xcb1, 0x401, 0x8040001008000)
read$auto(0x3, 0x0, 0x80)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
pipe2$auto(&(0x7f0000000000)=<r1=>0xffffffffffffffff, 0x7)
close_range$auto(r0, r1, 0x3ff)
munmap$auto(0x20001000, 0x2000000c)
mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000)
clone$auto(0x2, 0x4, 0xfffffffffffffffe, 0xfffffffffffffffc, 0x7)
r2 = gettid()
iopl$auto(0x3)
iopl$auto(0x2)
process_vm_readv$auto(r2, &(0x7f0000000040)={0x0, 0x8}, 0x4, &(0x7f00000000c0)={0x0, 0x2}, 0x2, 0x0)

1m39.278320644s ago: executing program 3 (id=2631):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffb, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
socket(0xa, 0x801, 0x84)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x60044061}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x9, 0x801, 0x84)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c40900448dc7fe8000"}, 0x55)
listen$auto(0x3, 0x81)
accept$auto(0x3, 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getsockopt$auto(r0, 0x84, 0x85, 0x0, &(0x7f00000000c0)=0x10000)
mlockall$auto(0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x10001, 0x100000003)

1m36.293460192s ago: executing program 4 (id=2633):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_IOAM6(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000040)={0x20, r1, 0x1, 0x70bd27, 0x25dfdbff, {}, [@IOAM6_ATTR_SC_DATA={0x4}, @IOAM6_ATTR_SC_ID={0x8}]}, 0x20}, 0x1, 0x60, 0x0, 0x40}, 0x8800)

1m36.262559198s ago: executing program 0 (id=2634):
close_range$auto(0x2, 0xfffffffffffff000, 0x2)
ioctl$auto(0xc8, 0x541b, 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ila(&(0x7f0000000000), r0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
r1 = socket(0xa, 0x801, 0x106)
bpf$auto(0x10, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex, r1, 0x2008, 0x3ff, 0xffffffffffffffff, @relative_fd, 0x1}, 0x8)

1m36.156230947s ago: executing program 3 (id=2635):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
mknod$auto(0x0, 0xc9, 0xfffffffa)
r3 = socket(0xa, 0x2, 0x88)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b75, 0x1, 0x8002)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
dup2$auto(0x0, 0x4)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
shutdown$auto(0x200000003, 0x2)
recvmmsg$auto(r3, 0x0, 0x10000, 0x300, 0x0)
statmount$auto(0x0, &(0x7f0000000040)={0x1, 0x0, 0x36, 0x828, 0x9, 0x8000000000000000, 0x9f, 0x7, 0x9, 0x8, 0x2, 0x9, 0x9f70, 0x7, 0x0, 0x200000000000f, 0x100, 0x1, 0x10001, 0x2cf8, [0x9, 0x7f, 0x40, 0x1, 0x10001, 0x2, 0x600, 0x3, 0x7ffffffc, 0x8, 0x395e, 0xfffffffffffffff9, 0x10, 0x3, 0x35c4, 0x0, 0x6, 0x0, 0xea8, 0xc, 0xd9, 0x48, 0x5, 0x1, 0x0, 0x7fffffffffffffdf, 0x16, 0x11, 0x2, 0x8000000000000000, 0x2ab, 0x8, 0x800, 0x1, 0x1, 0x4003, 0xffffffffffff0000, 0x6a, 0xfffffffffffffff9, 0x4, 0x2b7, 0x4, 0x10, 0xffffffffffffff26, 0x9, 0x7, 0x6, 0x7a, 0xdc]}, 0xe3c, 0x0)
socket(0x11, 0x3, 0x2)
r4 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="2c00000014"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
read$auto(0x4, 0x0, 0x80)
r5 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r5, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(r2, 0x29, 0x21, 0x0, 0x2)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x2c, r1, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80)

1m21.0994479s ago: executing program 35 (id=2634):
close_range$auto(0x2, 0xfffffffffffff000, 0x2)
ioctl$auto(0xc8, 0x541b, 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ila(&(0x7f0000000000), r0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
r1 = socket(0xa, 0x801, 0x106)
bpf$auto(0x10, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex, r1, 0x2008, 0x3ff, 0xffffffffffffffff, @relative_fd, 0x1}, 0x8)

1m21.036290049s ago: executing program 36 (id=2633):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_IOAM6(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000040)={0x20, r1, 0x1, 0x70bd27, 0x25dfdbff, {}, [@IOAM6_ATTR_SC_DATA={0x4}, @IOAM6_ATTR_SC_ID={0x8}]}, 0x20}, 0x1, 0x60, 0x0, 0x40}, 0x8800)

1m21.021639812s ago: executing program 3 (id=2639):
r0 = socket(0x11, 0x80003, 0x300) (async, rerun: 64)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) (async, rerun: 64)
writev$auto(0xca, &(0x7f0000000040)={&(0x7f00000000c0)=[0x404], 0x3}, 0x7e) (async)
process_vm_writev$auto(0x0, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x4, 0x0) (async)
capget$auto(&(0x7f0000000000)={0x6}, &(0x7f0000000080)={0xd, 0x48, 0x4}) (async, rerun: 32)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
io_submit$auto(0x2, 0x13, &(0x7f0000000280)=&(0x7f0000000240)={0x9, 0x4, 0xf7f, 0x1, 0x0, <r1=>r0, 0x5ac268bd, 0x9, 0x0, 0x0, 0x8, r0})
statx$auto(r1, &(0x7f00000002c0)='./file0\x00', 0xa5, 0x2, &(0x7f0000000300)={0x4, 0x7, 0x9, 0x194, 0xee00, 0xee01, 0x5, 0x7, 0x3ef, 0x6, 0x7, 0xf800000000000000, {0x8, 0x80000001}, {0x3, 0x60}, {0x6, 0x8}, {0x9, 0x2}, 0x9, 0x5, 0x8, 0x40, 0x2f0000000, 0x2, 0x6, 0x0, 0x2, 0x54, 0x6, 0xf3, [0xfffffffffffffffa, 0xf9d2, 0x5, 0x3, 0x100000001, 0x3, 0x4, 0x6, 0x36df]}) (async)
mmap$auto(0x0, 0x400008, 0x4, 0x9b72, 0x2, 0x800008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async, rerun: 64)
linkat$auto(0xae62, 0x0, 0x4, 0x0, 0x10001) (async, rerun: 64)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_IPVS(&(0x7f0000002100), r2) (async)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
open(&(0x7f00000001c0)='./file0\x00', 0x20000, 0x100) (async, rerun: 64)
socket(0x10, 0x2, 0x0) (async)
sendmsg$auto_IPVS_CMD_DEL_DAEMON(r2, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010027a5f19c60cf3139420971ef35d8f9b8b48c702be27005bd7000ffdbdf250a0000000800"], 0x24}, 0x1, 0x0, 0x0, 0x4000054}, 0x4000870) (async)
r4 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8905, &(0x7f0000000200)={'ip6tnl0\x00'})
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

1m20.908241046s ago: executing program 3 (id=2640):
socket(0xa, 0x2, 0x73)
bind$auto(0x3, &(0x7f0000000040)={0xa, @sa_data_min="001000"}, 0x69)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
select$auto(0x6d0c, 0x0, &(0x7f0000000100)={[0x0, 0x1ff, 0x800000000000008, 0xc, 0x9, 0xfffffffffffffff9, 0x6, 0x1, 0x400040009, 0x5e582972, 0x4000000000000000, 0x14, 0x93, 0xffffffffffffff17, 0x8, 0x8]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c40900448dc7fe8000"}, 0x55)
sendmmsg$auto(0x15, &(0x7f0000000100)={{0x0, 0x6, 0x0, 0x7f, 0x0, 0x8000, 0x2}, 0x7}, 0x3, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa}, 0x55)

1m20.862701202s ago: executing program 3 (id=2641):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
recvfrom$auto(0x3, 0x0, 0x80000000002, 0x6, 0x0, 0x0)
select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x7, 0x5, 0x1000, 0x100000001, 0xc, 0xf, 0xffffffffffffffff, 0x40, 0x5, 0xd59, 0x101, 0xff, 0x3, 0x8007ffff]}, 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x9}}, 0x0)
ioperm$auto(0xbe82, 0xa, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x26, 0x80805, 0x0)
mmap$auto(0x0, 0x400008, 0xdb, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
msync$auto(0x1ffff000, 0x80100000000002, 0x400000004)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x18, 0x2, 0x1)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0x8000, 0x8)
mmap$auto(0xfffffffffffffffe, 0x20400008, 0xdf, 0x9b76, 0x6, 0x8000)
socket(0xa, 0x6, 0x0)
uname$auto(0x0)
move_pages$auto(0x0, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x5, 0x0)
setresuid$auto(0x0, 0x8, 0x8000)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
setsockopt$auto(0x3, 0x0, 0x13, 0x0, 0x9)
poll$auto(0x0, 0x1, 0x3)

1m5.54629468s ago: executing program 37 (id=2641):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
recvfrom$auto(0x3, 0x0, 0x80000000002, 0x6, 0x0, 0x0)
select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x7, 0x5, 0x1000, 0x100000001, 0xc, 0xf, 0xffffffffffffffff, 0x40, 0x5, 0xd59, 0x101, 0xff, 0x3, 0x8007ffff]}, 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x9}}, 0x0)
ioperm$auto(0xbe82, 0xa, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x26, 0x80805, 0x0)
mmap$auto(0x0, 0x400008, 0xdb, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
msync$auto(0x1ffff000, 0x80100000000002, 0x400000004)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x18, 0x2, 0x1)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0x8000, 0x8)
mmap$auto(0xfffffffffffffffe, 0x20400008, 0xdf, 0x9b76, 0x6, 0x8000)
socket(0xa, 0x6, 0x0)
uname$auto(0x0)
move_pages$auto(0x0, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x5, 0x0)
setresuid$auto(0x0, 0x8, 0x8000)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
setsockopt$auto(0x3, 0x0, 0x13, 0x0, 0x9)
poll$auto(0x0, 0x1, 0x3)

20.07527096s ago: executing program 9 (id=2729):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x100000, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x2) (async)
r0 = socket(0xa, 0x2, 0x88)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001500), 0xffffffffffffffff) (async)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r2, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0xfffffbff}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x810)
select$auto(0x6d0c, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x800000000000008, 0xc, 0x9, 0x3, 0x6, 0x1, 0x40009, 0x5e582972, 0x936, 0x14, 0x8f, 0x8, 0x8, 0x4]}, 0x0, 0x0) (async)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
connect$auto(0x3, &(0x7f0000000140)={0x2, @sa_data_min="09ae0300"}, 0x55)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x24004141) (rerun: 64)
sendmmsg$auto(r0, &(0x7f0000000000)={{0x0, 0x8, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xc57138c}, 0x9a6, 0xe000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) (async)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) (async)
clone$auto(0x9, 0x3, 0x0, 0x0, 0x7)

18.731349665s ago: executing program 9 (id=2735):
r0 = socket(0xa, 0x801, 0x84)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="010028b37000fedbd72500000000"], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0xa, 0x2, 0x88)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000180), 0xffffffffffffffff)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000)
shutdown$auto(r0, 0x86)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
clone$auto(0x6, 0x1005, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
clone$auto(0x0, 0x6, &(0x7f0000000000)=0x5, &(0x7f0000000240)=0x2, 0x7)
io_uring_setup$auto(0x6, 0x0)
open(&(0x7f0000000200)='./file0\x00', 0x107000, 0xb9)
read$auto(0x3, 0x0, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0xa, 0x5, 0xc)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_DEL_PMK(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYRES8=r1, @ANYBLOB="ccdefaeab0dc4120eace7843d9c806b2eadd333fcadeb12e13053c200916ba7a07837c97f339ae253448f1a2cb94910ffdffbe655d8a3d5440ec23824a3f6da7e3b3bedb3bd48b7b9bd03b6d4203fe8fe1e6585cd1b15640d4acc27ddb8b29f457b9753c3b318c343f8179230a75580e6529ae40b10f60e40b1673d0000b61"], 0x80}, 0x1, 0x0, 0x0, 0x4001}, 0x40000)
read$auto(0x3, 0x0, 0xf34)
mmap$auto(0x4, 0x2000c, 0x200000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00"], 0x1ac}}, 0x4040000)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYRESDEC, @ANYRESHEX=0x0], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)

15.559164557s ago: executing program 9 (id=2754):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
madvise$auto(0x0, 0x3, 0x15)

5.033987155s ago: executing program 9 (id=2756):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
madvise$auto(0x0, 0x3, 0x15)

4.859987371s ago: executing program 9 (id=2758):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syslog$auto(0x1, &(0x7f0000000080)='\x0f\xe96W\x11_\"S\x9b\x96\xe9W\xa1~\n\x8e\xc5\xd6\xee{\xf7c\xb6\x1ao\xab\xc1i\x1b\xbb&\x17\x87\x96\x97cw@\xfb\xde\xc7#?\xae\xa3\xab\xbb\x8b\xc6\x91\'\x96\xec_\xabZ\xe6\xde*\x13\xd7^d*\xb7\xcd\x97\n}k\xa4\x17z2A\x13\x18\x0f\xc96Z<\x97.\xdd\x01\xe0\x05\xf9\x00\x00', 0x9)
socket(0x2, 0x1, 0x106)
listen$auto(0x3, 0x81)
shutdown$auto(0x200000003, 0x2)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041)
bind$auto(0x3, &(0x7f0000000080)={0x2, @sockaddr_1_1}, 0x6b)
mount$auto(0x0, 0x0, 0x0, 0xdad, 0x0)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
poll$auto(&(0x7f0000000d40)={0x3, 0x1, 0xa}, 0x5, 0x400)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0xfffffdef)
shutdown$auto(0x200000003, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_ct_limit(0x0, r0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x400c000)
socket(0xa, 0x2, 0x0)
r1 = socket(0xa, 0x806, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4ff0700"}, 0x55)
recvfrom$auto(r1, 0x0, 0x800000000f, 0xfd, 0x0, 0xfffffffffffffffd)
read$auto(0x3, 0x0, 0x80)
r2 = socket(0x10, 0x2, 0xc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000", @ANYBLOB="0100df"], 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x40)
socket(0x2, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r2, @ANYRESOCT=r3], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x84)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)

3.586370088s ago: executing program 9 (id=2765):
execve$auto(&(0x7f00000001c0)=':,\x00\a\x8c\\zt\x0f\xdct\xa7\xd1R\x81\x06\x8a\x1b\x1c\xdd\x99\xb6\x9e\xce\x94\xf0a\xb5\x05\xf3\bn\xb7\xae\v\xc8zp\xdc\xb7\xd8\xea\xf3\xdb\x19?\xce\xdd\xd4K\xf1\xae\xfd[y\xe4\xe5B\x96\n\xa2\xef\x8c\x18\xa7\xa9\x11\x89\xf8[\x90\x81\xf1B\x03\xd8 \xc7\xc9Y\xf3\x9c?\xb9Qg*k\xdfH\xcad\xf8/\t\x9aEk\x9c\xaa\f\xba\x16\xe3U!\xfe\xee\xacK\x1ce\n\xc2-a\x17=q\xc1v\xe9\x96\x19|\x83\x84\xdf\xc7\xde\xb6\x80\x95\'\x98yG\xda\x9fO\x1a\xcc\x1b\xef\x11\"Vd}\t\xf9\xa4\xddU\t\x83\b\f\xce4\xe9U\x02<\x89C\xff\a\xee\x05\f\xcaS\x0e\xff\xab\x17\xceQ\x90\xff\xfd\xf5\xda\x90;o\xcb\x10v<\x1e\xf0\x92\xcd\xe8l\xe4\xabl\xbc\x8f\x06d=\xf2\v\x7f\x1e\x88\ft\xb7\x82\r\xaf\x8e\xcd[W*\x90\x1e\x9f\x06\xb2j?\n\xe0\x01\xf5\xcdo3\x1a\x91h\x9c\xcdtS\x89p\xe8+MKd5i7\x13\x9b{\xf7\xa0\xcc\x96G\xf6\xdbeB\xa1\x16y\xd1\x9ad\x9eJ\xe1\xd2X\xb6\x9a\x01\x97!\x05\x7f\x0f\xc9r\xcd\x87\a\xd2\x12\xdd\x8bh\x80\xc3\xfeW\xd2FSf\xb6\xf6\xa6\xcb\xd6dMre\xd5*\xd1\xa2\xcb\x92\x7f\xe46L\xa1\xaf\x8f\xc2jK\vQH\x92vn\xb2\xd6|p\xdcs\xdcN\"\xa1v&\t\x0f{Sld%6O\xc7=h3\xf4\x1c\xf71f\x99\xd1y\x87\x1e\x95\x82\x05\xec\xefuu\x9b\x06)\xdf\xd2\xc6\x83\x02Q8\xffB2\x8c\xefcp\xfa\x14\xa7mW\xa6\xcf9a\x90u\xc7\x92\xbf\x90e\x1f\xfa\x1c\xdb\xceq\xc3\x12\xddR\x01A\x98\x89C\x16\'\x93$\x1f\x0e\xb4y\x16\xc4\xb0/^)\xb6j\xd8\xea\x93D\x8c\xba\x03\xe9\x89?\xb9^\x17dx\xd8\\\x13:\xc8>\x98\xbcz^\x83\xfao\xae#\xa3m\x0e\xece<\xce\xad\xccaK\xa4\xa6\xf67\x1f\xd2\xdf\xaa\xb38\v\xe1\x10\'D\xf0H\x04c\x92\xab[If\xa4\x18\xd3\xc9\x13MR,\a\xdfc\xed\xcc\xc8\x87\xa7\x00'/539, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0xc)
socket(0x0, 0x801, 0x100)
r0 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="18000000", @ANYBLOB="01", @ANYRES8=r0, @ANYRES8], 0x18}}, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffb, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x4, 0x3, 0x7, 0x111, 0x1, 0x10001)
mmap$auto(0xffffffffffffff01, 0x8, 0x3, 0x10, 0x8, 0x7)
mlockall$auto(0x7)
madvise$auto(0x0, 0x2000040080000004, 0xe)
munmap$auto(0x1000000, 0x2000000c)
madvise$auto(0x0, 0xffffffffffff0001, 0x9)
mlockall$auto(0x3)
mlockall$auto(0x7)
mbind$auto(0x0, 0x8000000000000001, 0x100000000, 0x0, 0x1, 0x2)
socket(0x15, 0x5, 0x0)
ioctl$auto(r0, 0x7, 0x4)
mmap$auto(0x0, 0x500008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x23, 0x1, 0x484)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x600420f4}, 0x8004)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
connect$auto(0xffffffffffffffff, &(0x7f0000000000)={0xa, @sa_data_min="40fd284b12f238788ea9b949be4f"}, 0x55)
select$auto(0xa, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x5, 0x3, 0x5, 0x2000000000000002, 0x9, 0x8, 0xff, 0xa, 0x4, 0xaab, 0x5, 0x4006]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
shutdown$auto(0x200000003, 0x2)

3.464590285s ago: executing program 8 (id=2766):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/time\x00')
ioctl$NS_GET_PARENT(r0, 0xb701, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
setreuid$auto(0x40000000003, 0xdf36)
timerfd_create$auto(0x9, 0x0)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r2, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010b27bd70002cfa539f1183d46a08001701"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4000080)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000340)={0x23c, r3, 0x100, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_FRAME_MATCH={0xb, 0x5b, "5dff51d059812f"}, @NL80211_ATTR_WIPHY_ANTENNA_RX={0x8, 0x6a, 0x9}, @NL80211_ATTR_MLO_TTLM_ULINK={0xcf, 0x149, "2508aa2fc2e5cb902874be0f8c0106d9420deb20d34dc03c985d50000d62364d0f0ad1c3700f0000000000005919397372969021f4921289fc5ad692904bd0474e6121a186002f4fbb7ce986dbc0aa6cb3c285c2a370389ccae2bfffe8b8dbe467819f156df8f6da301ca3827bd49c538a935a788d2e07c490c7dcad7a42599de8c15f16d0ec9387abe1962319502c2feae2cc8e38ccc14dfacfb83d7f3f27a3c298262f467d5403415dffc978ea093c814a7c973b113d11e884fa192bfc9d74f7fecfdeec28fe93e241eb"}, @NL80211_ATTR_FTM_RESPONDER={0x74, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_LCI={0x6d, 0x2, "fbf2b3e161899adf6811af3c5b20698d1170447b2fd73cd89be6d888bfac3b0d90be43438a28ce591d2a66067050f9fd454ab0b2e14c89ee3e682d406cde7729756cbd867a6728f9cfb48cca1f01227976d96b0f0bdd622d7903ceb30618dc8ad169ab6238e40df35a"}]}, @NL80211_ATTR_VHT_CAPABILITY={0xd0, 0x9d, "131b8459e2fa8769ca49569d0524a6fb596bd80d007aaf495950e70925dbbca5c8a95f87373cf837c2b3265ddd032009c923f324d77638c97b4eaba94386b658579997470088b180c80aab3276aead74763a17ed956e5530e9292874fd67b5ed0a91a860f742bcce59ad71d56991eb0c571e9a82c83d6f5bd0d3047037fbe8ac0cd8a65e170fc39328533e4385a4c8aa76099aa3041002fc0f4050bc4ebe331c9018592830912ddfa27600e9c24889d494cbb6950429b46d36e8c4c51f013c0494b0851a4e3a29bae2b84105"}]}, 0x23c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/time\x00') (async)
ioctl$NS_GET_PARENT(r0, 0xb701, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async)
setreuid$auto(0x40000000003, 0xdf36) (async)
timerfd_create$auto(0x9, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r2, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010b27bd70002cfa539f1183d46a08001701"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4000080) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000340)={0x23c, r3, 0x100, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_FRAME_MATCH={0xb, 0x5b, "5dff51d059812f"}, @NL80211_ATTR_WIPHY_ANTENNA_RX={0x8, 0x6a, 0x9}, @NL80211_ATTR_MLO_TTLM_ULINK={0xcf, 0x149, "2508aa2fc2e5cb902874be0f8c0106d9420deb20d34dc03c985d50000d62364d0f0ad1c3700f0000000000005919397372969021f4921289fc5ad692904bd0474e6121a186002f4fbb7ce986dbc0aa6cb3c285c2a370389ccae2bfffe8b8dbe467819f156df8f6da301ca3827bd49c538a935a788d2e07c490c7dcad7a42599de8c15f16d0ec9387abe1962319502c2feae2cc8e38ccc14dfacfb83d7f3f27a3c298262f467d5403415dffc978ea093c814a7c973b113d11e884fa192bfc9d74f7fecfdeec28fe93e241eb"}, @NL80211_ATTR_FTM_RESPONDER={0x74, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_LCI={0x6d, 0x2, "fbf2b3e161899adf6811af3c5b20698d1170447b2fd73cd89be6d888bfac3b0d90be43438a28ce591d2a66067050f9fd454ab0b2e14c89ee3e682d406cde7729756cbd867a6728f9cfb48cca1f01227976d96b0f0bdd622d7903ceb30618dc8ad169ab6238e40df35a"}]}, @NL80211_ATTR_VHT_CAPABILITY={0xd0, 0x9d, "131b8459e2fa8769ca49569d0524a6fb596bd80d007aaf495950e70925dbbca5c8a95f87373cf837c2b3265ddd032009c923f324d77638c97b4eaba94386b658579997470088b180c80aab3276aead74763a17ed956e5530e9292874fd67b5ed0a91a860f742bcce59ad71d56991eb0c571e9a82c83d6f5bd0d3047037fbe8ac0cd8a65e170fc39328533e4385a4c8aa76099aa3041002fc0f4050bc4ebe331c9018592830912ddfa27600e9c24889d494cbb6950429b46d36e8c4c51f013c0494b0851a4e3a29bae2b84105"}]}, 0x23c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) (async)

3.208061426s ago: executing program 8 (id=2771):
mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r0 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
bind$auto(0x3, 0xfffffffffffffffd, 0x0)
mmap$auto(0x0, 0xe983, 0xde, 0xeb1, 0x401, 0x8000)
sendto$auto(0x4, 0x0, 0xff, 0x6, 0x0, 0xe)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$auto_SMC_GEN_NETLINK(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_REMOVE_UEID(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x24, r2, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@SMC_NLA_EID_TABLE_ENTRY={0xf, 0x1, '@\'(-}]-=\\[%'}]}, 0x24}}, 0x4000)
sendto$auto(r3, &(0x7f0000000000)=[0x112, 0x100000000], 0x81, 0x6, &(0x7f0000000040)={0x1, @sa_data_min="ee006c5e1e7bf1c28c4ae586ce50"}, 0x10000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_SET_CQM(r4, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f00000017c0)={0x1c, r1, 0x181, 0x70bd25, 0x25dfdbfb, {}, [@NL80211_ATTR_BEACON_HEAD={0x7, 0xe, "8bfa17"}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4c815}, 0x40000)
socketpair$auto(0xfffffffb, 0x69c, 0x623f, &(0x7f0000000000)=0x3)
socket(0x2, 0x1, 0x0)
socket(0x2b, 0x1, 0x1)
socket(0x1d, 0x2, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket(0xa, 0x2, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
setsockopt$auto(0x4, 0x88, 0x68, &(0x7f0000000000)='!/*:(*\'\x00', 0xe)
setsockopt$auto(r5, 0x88, 0x64, &(0x7f0000000080)='\xd1\x01fN\f\xeb\x95\xe8', 0xe)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xffb, 0x80000000000df, 0x9b72, 0x200, 0x8000)

2.859137936s ago: executing program 8 (id=2773):
mlockall$auto(0x7)
madvise$auto(0x3, 0x8, 0x3)
set_mempolicy$auto(0x2005, &(0x7f0000000080)=0x87e, 0x4)
mmap$auto(0xffefff1f00000000, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000)

2.706309798s ago: executing program 8 (id=2775):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_3={0x8, 0x9067, 0x18c, 0x4, 0x2, 0x8, 0x4, 0x57b8, 0xfffffff8, "63acf0e05b2d33ebc15774e816ef77cf", 0x0, 0x543, 0x4, 0x207, 0x3, 0x4, 0x4, 0x2, 0xe, 0xa, @attach_btf_obj_fd=<r0=>0x3, 0x166, 0x7fb, 0x80000200006, 0xa, 0x48000000, <r1=>0xa7c2}, 0x102)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r2 = syz_genetlink_get_family_id$auto_NCSI(&(0x7f0000000100), r0)
sendmsg$auto_NCSI_CMD_CLEAR_INTERFACE(r1, &(0x7f0000001300)={&(0x7f00000000c0), 0xc, &(0x7f00000012c0)={&(0x7f0000000140)={0x1150, r2, 0x800, 0x70bd29, 0x25dfdbfe, {}, [@NCSI_ATTR_PACKAGE_LIST={0x112b, 0x2, 0x0, 0x1, [@typed={0x14, 0xea, 0x0, 0x0, @ipv6=@empty}, @generic="ac1a725c345f036e768e980fee637edc7c7bdc3a8cc37315f487d45a74ecdfe5c4cb60b34d044a6dc2973f72f59c9c65b6e5d61fd970563faea69443fc9c00c0631a8d59ddebc324660006f4a5654b127ceb1b37ba0cab2fda91302d7c9a558f750617759eb4b3f24568aa04b5108053f1324b750b4b8516fe4712590a53aec08c2a39f645dabf07239b0a898b1fdfe3d0fe5946a03d849fe1c77e7a04fecf41e2858d9fabe76a3962bc", @typed={0x8, 0xbd, 0x0, 0x0, @ipv4=@loopback}, @generic="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", @generic="b6fc80c9b2e192acec3048d36a9daeafc1a4123152b15cfbcb8d937a2a9027290738781eaf50", @generic="d967a3dbcd6c936f200a0ff8799dc9163b65834a5e58aa0b144090165dd257e1e296ef5242470bebce70f11404b3fc44a6b7f60573a69b2dfe9652"]}, @NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0x1}, @NCSI_ATTR_PACKAGE_ID={0x8, 0x3, 0x5}]}, 0x1150}, 0x1, 0x0, 0x0, 0x40090}, 0xc840)
r3 = socket(0xa, 0x801, 0x84)
recvmmsg$auto(r3, &(0x7f00000014c0)={{&(0x7f0000001340)=[0x9, 0x8000000000000000, 0x7], 0x24e4, &(0x7f0000001400)={&(0x7f0000001380)=[0x9, 0x401, 0x3, 0x6, 0x7, 0x7fffffff, 0x8, 0x7, 0x7f, 0x2], 0x5}, 0x6, &(0x7f0000001440)=[0x2, 0x4, 0x2, 0x7fff, 0x9, 0xff, 0x8000000000000001, 0xb65f, 0x7, 0x2], 0x8, 0x2}, 0xffff}, 0x918, 0x7, &(0x7f0000001500)={0x3, 0xacd})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0xc, 0x0, 0x4)
listen$auto(0x3, 0x81)
io_uring_register$auto(0x2, 0x14, &(0x7f0000000040)=[0x0, 0x2], 0x3)

2.559452942s ago: executing program 7 (id=2777):
ioperm$auto(0x7, 0x71, 0x863)
io_submit$auto(0x5, 0x9177, 0x0)

2.450109984s ago: executing program 7 (id=2778):
sendmsg$auto_TCP_METRICS_CMD_DEL(0xffffffffffffffff, 0x0, 0x40000c0)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400c811}, 0x20008000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_RSS_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="14ffffff", @ANYRES16=r1, @ANYBLOB="01032bbd7000ffdbdf2724"], 0x14}, 0x1, 0x0, 0x0, 0x7}, 0x4010)

2.425346085s ago: executing program 8 (id=2779):
r0 = socket(0x2, 0x3, 0xa)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'sit0\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$auto_ETHTOOL_MSG_PHY_GET(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x78, r1, 0x10, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_PHY_HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
close_range$auto(0x2, 0xfffffffffffff000, 0x2)
clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x21, 0x0, 0x1ff)
connect$auto(0xffffffffffffffff, 0x0, 0x58)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
open(0x0, 0x4242, 0xe1d2b27bdc14aabc)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
clone$auto(0x7, 0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x1)
mlock$auto(0xfbe8, 0x4)
mlock$auto(0x81, 0xffff)
socket(0x2, 0x3, 0xa) (async)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x10) (async)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'sit0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00'}) (async)
sendmsg$auto_ETHTOOL_MSG_PHY_GET(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x78, r1, 0x10, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_PHY_HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
close_range$auto(0x2, 0xfffffffffffff000, 0x2) (async)
clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0) (async)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x21, 0x0, 0x1ff) (async)
connect$auto(0xffffffffffffffff, 0x0, 0x58) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
open(0x0, 0x4242, 0xe1d2b27bdc14aabc) (async)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async)
clone$auto(0x7, 0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) (async)
mlock$auto(0xfbe8, 0x4) (async)
mlock$auto(0x81, 0xffff) (async)

2.27042802s ago: executing program 7 (id=2780):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_IOAM6(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000040)={0x20, r1, 0x1, 0x70bd27, 0x25dfdbff, {}, [@IOAM6_ATTR_SC_DATA={0x4}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x4000000}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x8800)

2.064059657s ago: executing program 7 (id=2783):
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f00000019c0), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_RECONFIGURE(r0, &(0x7f0000001b40)={0x0, 0x0, &(0x7f0000001b00)={&(0x7f0000001a00)={0x1c, r1, 0x1, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0xfffffffc}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x40010)
syz_genetlink_get_family_id$auto_IPVS(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x53, 0x9)
fstatfs$auto(0x3, 0x0)
close_range$auto(0x0, 0xfffff004, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x23, 0x0, 0x8)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clone$auto(0x81000005, 0x6, 0xfffffffffffffffd, 0xffffffffffffffff, 0x80000001)
clone$auto(0x4, 0x6, &(0x7f0000000000)=0xe, 0x0, 0x0)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0)
mount$auto(0x0, &(0x7f0000000740)='}[,&*}\x00', 0x0, 0xfffe, 0x0)
memfd_create$auto(&(0x7f00000002c0)='IPVS\x00', 0x1)
mount$auto(0x0, &(0x7f0000000240)='}[,&*}\x00', 0x0, 0x7f, &(0x7f00000002c0))
r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000200), r0)
sendmsg$auto_MACSEC_CMD_UPD_RXSC(r0, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)={0xf4, r2, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@MACSEC_ATTR_RXSC_CONFIG={0xe0}]}, 0xf4}, 0x1, 0x0, 0x0, 0x20000001}, 0x20040000)
ioperm$auto(0x3, 0xe, 0x2000000000000149)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getcwd$auto(0x0, 0xffffffffffffffff)
chmod$auto(0x0, 0x4)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
prctl$auto(0x10000000016, 0x1, 0x4, 0x5, 0x0)

1.895488411s ago: executing program 6 (id=2784):
syz_genetlink_get_family_id$auto_MAC80211_HWSIM(0x0, 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x801, 0x106)
syz_genetlink_get_family_id$auto_SEG6(&(0x7f0000000dc0), r0)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r0, 0x0, 0x800)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_MCAST_FLAGS_PRIV={0x8, 0x27, 0x8000}, @BATADV_ATTR_NEIGH_ADDRESS={0xa, 0x18, "cb08bd3315c9"}]}, 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x4)
syz_genetlink_get_family_id$auto_thermal(0x0, r1)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="7201f0ff", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)

1.785637553s ago: executing program 6 (id=2785):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
madvise$auto(0x0, 0x3, 0x15)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r0, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x200039)

1.225813493s ago: executing program 6 (id=2786):
socket(0xa, 0x2, 0x73)
bind$auto(0x3, 0x0, 0x69)
select$auto(0x6d0c, 0x0, &(0x7f0000000100)={[0x0, 0x1ff, 0x800000000000008, 0xc, 0x9, 0xfffffffffffffff9, 0x6, 0x1, 0x400040009, 0x5e582972, 0x4000000000000000, 0x14, 0x93, 0xffffffffffffff17, 0x8, 0x8]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c40900448dc7fe8000"}, 0x55)
connect$auto(0x3, &(0x7f0000000140)={0xa}, 0x55)

924.022611ms ago: executing program 7 (id=2787):
ioperm$auto(0x7, 0x6, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_NEW_KEY(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001500)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="13042bbd7000ffdbdf252100000008000300", @ANYRES32=r3], 0x20}, 0x1, 0x0, 0x0, 0x4804}, 0x80)

859.397214ms ago: executing program 6 (id=2788):
socket(0x2, 0x801, 0x84)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_3={0x8, 0xffffffef, 0x18c, 0x6a, 0x0, 0x8, 0x3, 0x9, 0xfffffff8, "63acf0e05b2d33ebc15774e816ef77cf", 0x0, 0x541, <r0=>0x4, 0x7, 0x6d, 0x1008, 0x4, 0x2, 0xe, 0x5, @attach_btf_obj_fd=0x3, 0x166, 0x7ff, 0x6, 0x6, 0x48000000, 0xa7c2}, 0x7)
connect$auto(0x3, &(0x7f0000000000)={0x2, @sockaddr_1_1={"d9ef7f"}}, 0x55)
connect$auto(r0, &(0x7f0000000100)={0x1000, @sockaddr_1_1={"e9cd0dd8c902f03ed036d6cd63be9c66ad6654f756c84b94ed11a6a5135fe95e90ffde5db302bce548bf2ef16abc69e240daf5d1e59a81f1543cf7d85da36ca25422fcb2b511cf4070df0de1c5e05eb712127242c5768a27d63e"}}, 0x10001)
listen$auto(r0, 0x10000a)
accept$auto(0x3, 0x0, 0x0)
timer_create$auto(0xfffffff8, 0x0, &(0x7f0000000040)=0x1)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4044}, 0x10)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
timer_settime$auto(0x0, 0xffff8003, &(0x7f00000000c0)={{0x7, 0x10007}, {0x9}}, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x404, 0x300000000000)
listen$auto(0x3, 0x0)
connect$auto(0x3, &(0x7f0000000000)={0x2, @sockaddr_1_1}, 0x55)
socket(0x2, 0x801, 0x84) (async)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_3={0x8, 0xffffffef, 0x18c, 0x6a, 0x0, 0x8, 0x3, 0x9, 0xfffffff8, "63acf0e05b2d33ebc15774e816ef77cf", 0x0, 0x541, 0x4, 0x7, 0x6d, 0x1008, 0x4, 0x2, 0xe, 0x5, @attach_btf_obj_fd=0x3, 0x166, 0x7ff, 0x6, 0x6, 0x48000000, 0xa7c2}, 0x7) (async)
connect$auto(0x3, &(0x7f0000000000)={0x2, @sockaddr_1_1={"d9ef7f"}}, 0x55) (async)
connect$auto(r0, &(0x7f0000000100)={0x1000, @sockaddr_1_1={"e9cd0dd8c902f03ed036d6cd63be9c66ad6654f756c84b94ed11a6a5135fe95e90ffde5db302bce548bf2ef16abc69e240daf5d1e59a81f1543cf7d85da36ca25422fcb2b511cf4070df0de1c5e05eb712127242c5768a27d63e"}}, 0x10001) (async)
listen$auto(r0, 0x10000a) (async)
accept$auto(0x3, 0x0, 0x0) (async)
timer_create$auto(0xfffffff8, 0x0, &(0x7f0000000040)=0x1) (async)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4044}, 0x10) (async)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) (async)
timer_settime$auto(0x0, 0xffff8003, &(0x7f00000000c0)={{0x7, 0x10007}, {0x9}}, 0x0) (async)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x404, 0x300000000000) (async)
listen$auto(0x3, 0x0) (async)
connect$auto(0x3, &(0x7f0000000000)={0x2, @sockaddr_1_1}, 0x55) (async)

424.221063ms ago: executing program 6 (id=2789):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
timer_create$auto(0x2, 0x0, 0x0)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8044}, 0x10)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x9}}, 0x0)
timer_gettime$auto(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
mmap$auto(0x20000000000000, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)

232.893608ms ago: executing program 6 (id=2790):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0x3, 0x15)

151.699492ms ago: executing program 7 (id=2791):
msgctl$auto(0xfffffffe, 0x2, 0x0)

0s ago: executing program 8 (id=2792):
bind$auto(0x2, 0xfffffffffffffffe, 0x2)
syz_open_procfs$namespace(0x0, 0x0)
r0 = socket(0xa, 0x3, 0x3a)
r1 = socket(0x10, 0x3, 0xec)
r2 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000040), r0)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000001240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x484100}, 0xc, &(0x7f0000001200)={&(0x7f0000000080)={0x1170, r2, 0x100, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x115a, 0x1, 0x0, 0x1, [@generic="635f7b941204820f56281d20d8923a57d0e0a54eaec6d9940482c6ca33703b6e22263cfc5132794f1803960affaa5d7e9fb7b57e58545d83d98abd58f12b5c8f09651124fdf2d22421976ce9342251e91eba624909cbee9dc5782816b5c057eb83f52ecb6d71e0aeef672e5aabdeded899704c9ac1f7", @generic="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", @generic="dd254fc04971c506da050599b2d9f3b783b8fa868b4c22c4d9b47a6103ee0f7360f4166272ec30a16d3a4a7e9fb4288c66c18c9a6d7efa08a6ee676012f75fad50e58cdba2d49a6b1fec6b76d111e4ced5092de716ba7eb246237281ea49ed080fc1407a15b4213cdff7ca3b5b5f2e2334288908bdde7ec61bba513bf8bc08d17556471d7fd2bb63b2c719fd75aea4f4f01f38c8e9bef1acdcc3c2b0c876c753aec02b3aed251904e193484763c74b0e48e31a07a9da8ebba2eac7755eecfe8d7a8867a07672b3d14df4541cacd2480245aa1935275af368d2b412dceaf62183"]}]}, 0x1170}, 0x1, 0x0, 0x0, 0x4005}, 0x8000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socket(0xa, 0x2, 0x0)
select$auto(0xfffffffd, 0x0, &(0x7f0000000100)={[0x7, 0x207, 0x7, 0x7, 0x9, 0x0, 0x8000000000000001, 0x2800000000000002, 0x9, 0xde582974, 0xff, 0xa, 0x4, 0x7, 0x8, 0xb]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
flock$auto(0x1, 0x6)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x20040010}, 0x40040c0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
r4 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f00000012c0), r3)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x9, 0xffc, 0x7, 0xfffffffd, <r5=>0x0, 0xee01, 0x0, 0x6, 0x1, 0x5, 0xc0f, 0x2, 0x7ff, 0x92bc, 0xffffffff, 0x6, 0x3})
r6 = getuid()
setreuid$auto(r5, r6)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x9, 0xffc, 0x7, 0xfffffffd, <r7=>0x0, 0xee01, 0x0, 0x6, 0x1, 0x5, 0xc0f, 0x2, 0x7ff, 0x92bc, 0xffffffff, 0x6, 0x3})
r8 = getuid()
setreuid$auto(r7, r8)
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(r1, &(0x7f00000018c0)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001880)={&(0x7f0000001300)={0x57c, r4, 0x300, 0x70bd28, 0x25dfdbfc, {}, [@TIPC_NLA_MON={0x3da, 0x9, 0x0, 0x1, [@nested={0x1f, 0x49, 0x0, 0x1, [@typed={0xc, 0x12d, 0x0, 0x0, @u64=0x8ec}, @generic="8fce0c711871b0c9a4af7ca914f627"]}, @generic="9ea31aad22fafd992ef2b4507f7c994c38bc5e5bc4a640f9cd61844a8a2637f9011d66e3c1b5e2eb6214150e3566771ff9c1b67c3d1fedfa5d5f537b8046a69910df0c550c63cf431ae9a95edf7871bdc33465a53b8e9736880a61eb0718e308efbc96aec388eed40c2740bbc62aedf1787b0997a9dca2bb469b8cf9923a00ec887b5f9497637f07131d35b95cb53d19983664d028798a7f21cc89e10b3b02331db452debf6b1b6db4b5fe3d7c6a0a93bf0ab98b41360f8742831b74400959bef5fae354d96e3124d08954bbe70abc2d6adf8973bf64f4e7ebfdacdc7409839269cc39136cd9d6c5d722ffd4d3a537", @typed={0x8, 0x5b, 0x0, 0x0, @uid=0xffffffffffffffff}, @generic="4406b26ab887561b266cfa968b910bdd652bc1ae262694b440ebecfa9354deaac6bcd69e9fa71e4711252dfbd2652009d25a93c6c6b9381e42f64c20f6d140e528fe2869db026c2094f695fbc7d6f0d6d79067c3fd674f1133669d57f083deefb6e0334a", @typed={0x8, 0x59, 0x0, 0x0, @uid=r6}, @typed={0x58, 0xd4, 0x0, 0x0, @binary="00f512355ff00f64cac129706642be5461d63926a34c20f6c0830392c103bb82cc7fc3e581804a484cc83165f7d5edc51b850adde52de62f4de17e911a02d2610705b87af2715aa0594de5adadcbe8fce6f30c26"}, @nested={0xd1, 0x1c, 0x0, 0x1, [@generic="b635c1eaada7c942be627b3e1d8d40566bc82bae217bc5ff7655e677c735f909ae021396e9fc0a5d33c3a85dbb2a0ab7680d43b33d46676629a3e2c43af0cfd44b7af7e3773d2dd92b8dda7b846b37e16de21e860e2f450fb04362502d0e5d3e5b9b3552b16bf9afe5b99da6bd4ba3fe8bd0799f04d5e0e19cc6eeb7510bcd7a805704b2d48992a32f1ea98ade8145f16ebb2658a50bb2cc6ecc3b1c9a812c7581cd62e8d29f4b9a8bd528ffceed87a0270ac192401b871c3d88d063f521d1c83ce27f2b21bc4108db00101533"]}, @generic="0e5d60f577238a6420081de2c3936af81fbe94b963934444355c689710e74286c5671b91f06120d07ceab3f930ecb2688d3905b7baed25086a36cf278d2f3b4fd6f45242e24ea6c2dba9c58c69885d21ed5752e99cbfe1c4a5f8dc69f75a286e278132f50750f57269bd789f9af459634b84d2", @nested={0xac, 0x10c, 0x0, 0x1, [@generic="ac785c07c307592eaf8a2a300cd6f9dfb79d7d0e658b14e86f547d187af1dc8031933a30e38f499ebdd4c71e5ef2bd2fda3f822c1cd2a1e44c0bc19a25c086067ffb07a15d8008e115f887865ca28e36782fce8c97ca0e4f715021a1a416dac921169ed4d4c795b97bd6e022df7729ba1607b4adbf6458d8a9f43d88cbf23105fbfc4f3f6ef7d23f20a4d9c16fe228564b5917202e1d3946a797d188dfa4e2ca1f8bcdba39b72e46"]}, @typed={0x8, 0xaf, 0x0, 0x0, @uid=r8}]}, @TIPC_NLA_PUBL={0xd1, 0x3, 0x0, 0x1, [@generic="e2021e212048fa169f30d3fdd591280e13bb09eba4c0e0d5d0ecb5edd8e289e803aac76a8a804131831de4ce8a23ed6470352966c842b3df239ea0f0278ac089cb1611a422acc61aaf2ebec111da452e538a575e7b0fa81694cc256ad647e096c0e9a2e567416e4ec0621f05ad92617779ec4bec551a5a96eedfa49f44b31dac6885f323b92bf0db38e004912e5f1c472d788096ca84e9c88db8233153d7b72c98da22178a25c378d064d03ab86bbc394a2f6d9b91ac985ef5fd31e73e5eee1fd3", @typed={0xb, 0x115, 0x0, 0x0, @str='TIPCv2\x00'}]}, @TIPC_NLA_UNSPEC={0x4f, 0x0, "63e0c8885d644b1638a79cf9322139f88cf34e8112540d941fd7fe86446bed17886c28010eb0b3ddf63cf9ed71283bc50e545f0942b8af81e54062d49aa86fb7b6460ba87fd8199ebd7a40"}, @TIPC_NLA_NAME_TABLE={0x67, 0x8, 0x0, 0x1, [@generic="1fc0d428512867e0b93abb430c4a4ac53896ec8641ec988b058c334dbdebb845d778fd85beb14b6468c9e35874c5ca6f6aa0888f8fee04bb748e08ea904524644b77674cd1ab75bc4458d8e03abb814e26f8928f4e90f35a7672e137914f44feb99eba"]}]}, 0x57c}}, 0x880)
setsockopt$auto(0x3, 0x1, 0x19, 0xffffffffffffffff, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0xd4, 0x0, 0x4)

kernel console output (not intermixed with test programs):

14fc523 #0
[  518.598941][T13686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  518.609034][T13686] Call Trace:
[  518.612338][T13686]  <TASK>
[  518.615307][T13686]  dump_stack_lvl+0x16c/0x1f0
[  518.620043][T13686]  sysfs_warn_dup+0x7f/0xa0
[  518.624598][T13686]  sysfs_do_create_link_sd+0x124/0x140
[  518.630110][T13686]  sysfs_create_link+0x61/0xc0
[  518.634919][T13686]  device_add+0x62e/0x1a70
[  518.639391][T13686]  ? __pfx_device_add+0x10/0x10
[  518.644295][T13686]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  518.650247][T13686]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  518.656279][T13686]  wiphy_register+0x20d7/0x2d30
[  518.661198][T13686]  ? __pfx_wiphy_register+0x10/0x10
[  518.666460][T13686]  ieee80211_register_hw+0x2959/0x3fb0
[  518.671981][T13686]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  518.677827][T13686]  ? net_generic+0xea/0x2a0
[  518.682389][T13686]  ? rcu_is_watching+0x12/0xc0
[  518.687198][T13686]  ? trace_hrtimer_init+0x19d/0x220
[  518.692446][T13686]  ? __hrtimer_init+0x106/0x2c0
[  518.697353][T13686]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  518.703155][T13686]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  518.709279][T13686]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  518.715910][T13686]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  518.721256][T13686]  hwsim_new_radio_nl+0xb42/0x12b0
[  518.726422][T13686]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  518.732032][T13686]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  518.739457][T13686]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  518.746883][T13686]  genl_family_rcv_msg_doit+0x202/0x2f0
[  518.752481][T13686]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  518.758609][T13686]  ? bpf_lsm_capable+0x9/0x10
[  518.763349][T13686]  ? security_capable+0x7e/0x260
[  518.768356][T13686]  ? ns_capable+0xd7/0x110
[  518.772823][T13686]  genl_rcv_msg+0x565/0x800
[  518.777383][T13686]  ? __pfx_genl_rcv_msg+0x10/0x10
[  518.782458][T13686]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  518.788063][T13686]  netlink_rcv_skb+0x165/0x410
[  518.792871][T13686]  ? __pfx_genl_rcv_msg+0x10/0x10
[  518.797944][T13686]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  518.803281][T13686]  ? down_read+0xc9/0x330
[  518.807642][T13686]  ? __pfx_down_read+0x10/0x10
[  518.812457][T13686]  ? netlink_deliver_tap+0x1ae/0xcf0
[  518.817797][T13686]  genl_rcv+0x28/0x40
[  518.821821][T13686]  netlink_unicast+0x53c/0x7f0
[  518.826631][T13686]  ? __pfx_netlink_unicast+0x10/0x10
[  518.831958][T13686]  ? __phys_addr_symbol+0x30/0x80
[  518.837021][T13686]  ? __check_object_size+0x488/0x710
[  518.842371][T13686]  netlink_sendmsg+0x8b8/0xd70
[  518.847196][T13686]  ? __pfx_netlink_sendmsg+0x10/0x10
[  518.852539][T13686]  ____sys_sendmsg+0x9ae/0xb40
[  518.857340][T13686]  ? copy_msghdr_from_user+0x10b/0x160
[  518.862834][T13686]  ? __pfx_____sys_sendmsg+0x10/0x10
[  518.868184][T13686]  ___sys_sendmsg+0x135/0x1e0
[  518.872900][T13686]  ? __pfx____sys_sendmsg+0x10/0x10
[  518.878149][T13686]  ? __pfx_lock_release+0x10/0x10
[  518.883221][T13686]  ? trace_lock_acquire+0x14a/0x1d0
[  518.888475][T13686]  ? __fget_files+0x206/0x3a0
[  518.893203][T13686]  __sys_sendmsg+0x16e/0x220
[  518.897822][T13686]  ? __pfx___sys_sendmsg+0x10/0x10
[  518.902960][T13686]  ? __x64_sys_futex+0x1e1/0x4c0
[  518.907960][T13686]  do_syscall_64+0xcd/0x250
[  518.912502][T13686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  518.918439][T13686] RIP: 0033:0x7fe962d7e819
[  518.922882][T13686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  518.942536][T13686] RSP: 002b:00007fe963bbd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  518.951000][T13686] RAX: ffffffffffffffda RBX: 00007fe962f35fa0 RCX: 00007fe962d7e819
[  518.959005][T13686] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003
[  518.967010][T13686] RBP: 00007fe962df175e R08: 0000000000000000 R09: 0000000000000000
[  518.975012][T13686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  518.983010][T13686] R13: 0000000000000000 R14: 00007fe962f35fa0 R15: 00007ffc2176fe18
[  518.991051][T13686]  </TASK>
[  519.113757][T13693] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2259'.
[  519.787317][T13714] netlink: zone id is out of range
[  519.792494][T13714] netlink: zone id is out of range
[  519.837704][T13714] netlink: zone id is out of range
[  519.850808][T13714] netlink: zone id is out of range
[  519.870628][T13717] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2267'.
[  519.875413][T13718] kAFS: unparsable volume name
[  519.895097][T13714] netlink: zone id is out of range
[  519.912014][T13714] netlink: zone id is out of range
[  519.936492][T13714] netlink: zone id is out of range
[  519.956475][T13714] netlink: zone id is out of range
[  519.987027][T13714] netlink: zone id is out of range
[  520.018021][T13714] netlink: zone id is out of range
[  520.904026][T13742] netlink: 168 bytes leftover after parsing attributes in process `syz.0.2271'.
[  521.298386][T13757] sysfs: cannot create duplicate filename '/class/ieee80211/��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��'
[  521.326550][T13757] CPU: 0 UID: 0 PID: 13757 Comm: syz.3.2279 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  521.337049][T13757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  521.347154][T13757] Call Trace:
[  521.350461][T13757]  <TASK>
[  521.353421][T13757]  dump_stack_lvl+0x16c/0x1f0
[  521.358156][T13757]  sysfs_warn_dup+0x7f/0xa0
[  521.362701][T13757]  sysfs_do_create_link_sd+0x124/0x140
[  521.368466][T13757]  sysfs_create_link+0x61/0xc0
[  521.373269][T13757]  device_add+0x62e/0x1a70
[  521.377757][T13757]  ? __pfx_device_add+0x10/0x10
[  521.382661][T13757]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  521.388611][T13757]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  521.394641][T13757]  wiphy_register+0x20d7/0x2d30
[  521.399546][T13757]  ? __pfx_wiphy_register+0x10/0x10
[  521.404784][T13757]  ieee80211_register_hw+0x2959/0x3fb0
[  521.410274][T13757]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  521.416099][T13757]  ? net_generic+0xea/0x2a0
[  521.420632][T13757]  ? rcu_is_watching+0x12/0xc0
[  521.425415][T13757]  ? trace_hrtimer_init+0x19d/0x220
[  521.430645][T13757]  ? __hrtimer_init+0x106/0x2c0
[  521.435531][T13757]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  521.441394][T13757]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  521.447488][T13757]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  521.454102][T13757]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  521.459420][T13757]  hwsim_new_radio_nl+0xb42/0x12b0
[  521.464572][T13757]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  521.470152][T13757]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  521.477555][T13757]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  521.484957][T13757]  genl_family_rcv_msg_doit+0x202/0x2f0
[  521.490534][T13757]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  521.496636][T13757]  ? bpf_lsm_capable+0x9/0x10
[  521.501335][T13757]  ? security_capable+0x7e/0x260
[  521.506302][T13757]  ? ns_capable+0xd7/0x110
[  521.510741][T13757]  genl_rcv_msg+0x565/0x800
[  521.515273][T13757]  ? __pfx_genl_rcv_msg+0x10/0x10
[  521.520323][T13757]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  521.525902][T13757]  netlink_rcv_skb+0x165/0x410
[  521.530686][T13757]  ? __pfx_genl_rcv_msg+0x10/0x10
[  521.535735][T13757]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  521.541057][T13757]  ? down_read+0xc9/0x330
[  521.545404][T13757]  ? __pfx_down_read+0x10/0x10
[  521.550180][T13757]  ? netlink_deliver_tap+0x1ae/0xcf0
[  521.555486][T13757]  genl_rcv+0x28/0x40
[  521.559483][T13757]  netlink_unicast+0x53c/0x7f0
[  521.564265][T13757]  ? __pfx_netlink_unicast+0x10/0x10
[  521.569563][T13757]  ? __phys_addr_symbol+0x30/0x80
[  521.574601][T13757]  ? __check_object_size+0x488/0x710
[  521.579916][T13757]  netlink_sendmsg+0x8b8/0xd70
[  521.584700][T13757]  ? __pfx_netlink_sendmsg+0x10/0x10
[  521.590015][T13757]  ____sys_sendmsg+0x9ae/0xb40
[  521.594803][T13757]  ? copy_msghdr_from_user+0x10b/0x160
[  521.600277][T13757]  ? __pfx_____sys_sendmsg+0x10/0x10
[  521.605592][T13757]  ___sys_sendmsg+0x135/0x1e0
[  521.610282][T13757]  ? __pfx____sys_sendmsg+0x10/0x10
[  521.615506][T13757]  ? __pfx_lock_release+0x10/0x10
[  521.620551][T13757]  ? trace_lock_acquire+0x14a/0x1d0
[  521.625777][T13757]  ? __fget_files+0x206/0x3a0
[  521.630493][T13757]  __sys_sendmsg+0x16e/0x220
[  521.635096][T13757]  ? __pfx___sys_sendmsg+0x10/0x10
[  521.640223][T13757]  ? __x64_sys_futex+0x1e1/0x4c0
[  521.645199][T13757]  do_syscall_64+0xcd/0x250
[  521.649715][T13757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  521.655630][T13757] RIP: 0033:0x7f7118f7e819
[  521.660059][T13757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  521.679677][T13757] RSP: 002b:00007f7119df7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  521.688103][T13757] RAX: ffffffffffffffda RBX: 00007f7119135fa0 RCX: 00007f7118f7e819
[  521.696083][T13757] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003
[  521.704065][T13757] RBP: 00007f7118ff175e R08: 0000000000000000 R09: 0000000000000000
[  521.712044][T13757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  521.720027][T13757] R13: 0000000000000000 R14: 00007f7119135fa0 R15: 00007ffc41004b48
[  521.728035][T13757]  </TASK>
[  522.623771][T13777] netlink: 168 bytes leftover after parsing attributes in process `syz.3.2286'.
[  523.744120][T13795] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2292'.
[  524.274803][T13810] FAULT_INJECTION: forcing a failure.
[  524.274803][T13810] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  524.336664][T13810] CPU: 1 UID: 0 PID: 13810 Comm: syz.2.2296 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  524.347145][T13810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  524.357233][T13810] Call Trace:
[  524.360532][T13810]  <TASK>
[  524.363503][T13810]  dump_stack_lvl+0x16c/0x1f0
[  524.368239][T13810]  should_fail_ex+0x497/0x5b0
[  524.372961][T13810]  _copy_to_user+0x32/0xd0
[  524.377425][T13810]  simple_read_from_buffer+0xd0/0x160
[  524.382833][T13810]  proc_fail_nth_read+0x198/0x270
[  524.387894][T13810]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  524.393483][T13810]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  524.399076][T13810]  vfs_read+0x1df/0xbe0
[  524.403270][T13810]  ? __fget_files+0x1fc/0x3a0
[  524.407983][T13810]  ? __pfx___mutex_lock+0x10/0x10
[  524.413030][T13810]  ? __pfx_vfs_read+0x10/0x10
[  524.417734][T13810]  ? __fget_files+0x206/0x3a0
[  524.422435][T13810]  ksys_read+0x12b/0x250
[  524.426695][T13810]  ? __pfx_ksys_read+0x10/0x10
[  524.431487][T13810]  do_syscall_64+0xcd/0x250
[  524.436012][T13810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  524.441923][T13810] RIP: 0033:0x7f53a7b7d25c
[  524.446348][T13810] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  524.465974][T13810] RSP: 002b:00007f53a888e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  524.474402][T13810] RAX: ffffffffffffffda RBX: 00007f53a7d35fa0 RCX: 00007f53a7b7d25c
[  524.482384][T13810] RDX: 000000000000000f RSI: 00007f53a888e0a0 RDI: 0000000000000003
[  524.490364][T13810] RBP: 00007f53a888e090 R08: 0000000000000000 R09: 0000000000000000
[  524.498339][T13810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  524.506315][T13810] R13: 0000000000000001 R14: 00007f53a7d35fa0 R15: 00007ffd1a887218
[  524.514329][T13810]  </TASK>
[  525.521700][T13823] netlink: 168 bytes leftover after parsing attributes in process `syz.4.2297'.
[  526.612509][T13850] net_ratelimit: 391 callbacks suppressed
[  526.612533][T13850] netlink: zone id is out of range
[  526.708212][T13850] netlink: zone id is out of range
[  526.732817][T13850] netlink: zone id is out of range
[  526.759729][T13850] netlink: get zone limit has 4 unknown bytes
[  530.102382][T13917] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  530.112187][T13917] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  530.121002][T13917] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  530.136996][T13917] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  530.150083][T13917] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  530.167706][T13917] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  530.459587][T13915] chnl_net:caif_netlink_parms(): no params data found
[  531.195690][T13915] bridge0: port 1(bridge_slave_0) entered blocking state
[  531.216682][T13915] bridge0: port 1(bridge_slave_0) entered disabled state
[  531.241113][T13915] bridge_slave_0: entered allmulticast mode
[  531.260586][T13915] bridge_slave_0: entered promiscuous mode
[  531.282243][T13915] bridge0: port 2(bridge_slave_1) entered blocking state
[  531.296528][T13915] bridge0: port 2(bridge_slave_1) entered disabled state
[  531.326776][T13915] bridge_slave_1: entered allmulticast mode
[  531.333886][T13915] bridge_slave_1: entered promiscuous mode
[  531.741744][ T8187] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  531.880755][T13915] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  531.919485][T13915] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  532.117462][ T8187] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  532.246070][T13915] team0: Port device team_slave_0 added
[  532.256900][ T5839] Bluetooth: hci4: command tx timeout
[  532.283603][T13915] team0: Port device team_slave_1 added
[  532.498565][ T8187] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  532.734345][ T8187] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  532.793242][T13915] batman_adv: batadv0: Adding interface: batadv_slave_0
[  532.826685][T13915] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  532.893460][T13915] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  532.942968][T13915] batman_adv: batadv0: Adding interface: batadv_slave_1
[  532.961013][T13915] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  533.036465][T13915] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  533.687382][T13950] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2333'.
[  533.724393][T13915] hsr_slave_0: entered promiscuous mode
[  534.173689][T13915] hsr_slave_1: entered promiscuous mode
[  534.326867][ T5839] Bluetooth: hci4: command tx timeout
[  534.623411][ T8187] bridge_slave_1: left allmulticast mode
[  534.640784][ T8187] bridge_slave_1: left promiscuous mode
[  534.659937][ T8187] bridge0: port 2(bridge_slave_1) entered disabled state
[  534.807660][ T8187] bridge_slave_0: left allmulticast mode
[  534.813404][ T8187] bridge_slave_0: left promiscuous mode
[  534.856678][ T8187] bridge0: port 1(bridge_slave_0) entered disabled state
[  536.406645][ T5839] Bluetooth: hci4: command tx timeout
[  536.478325][T14000] sysfs: cannot create duplicate filename '/class/ieee80211/��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��'
[  536.499522][T14000] CPU: 0 UID: 0 PID: 14000 Comm: syz.0.2342 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  536.510023][T14000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  536.520114][T14000] Call Trace:
[  536.523443][T14000]  <TASK>
[  536.526432][T14000]  dump_stack_lvl+0x16c/0x1f0
[  536.531190][T14000]  sysfs_warn_dup+0x7f/0xa0
[  536.535749][T14000]  sysfs_do_create_link_sd+0x124/0x140
[  536.541270][T14000]  sysfs_create_link+0x61/0xc0
[  536.546101][T14000]  device_add+0x62e/0x1a70
[  536.550610][T14000]  ? __pfx_device_add+0x10/0x10
[  536.555522][T14000]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  536.561511][T14000]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  536.567560][T14000]  wiphy_register+0x20d7/0x2d30
[  536.572505][T14000]  ? __pfx_wiphy_register+0x10/0x10
[  536.577777][T14000]  ieee80211_register_hw+0x2959/0x3fb0
[  536.583294][T14000]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  536.589145][T14000]  ? net_generic+0xea/0x2a0
[  536.593704][T14000]  ? rcu_is_watching+0x12/0xc0
[  536.598513][T14000]  ? trace_hrtimer_init+0x19d/0x220
[  536.603776][T14000]  ? __hrtimer_init+0x106/0x2c0
[  536.608680][T14000]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  536.614499][T14000]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  536.620656][T14000]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  536.627314][T14000]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  536.632676][T14000]  hwsim_new_radio_nl+0xb42/0x12b0
[  536.637860][T14000]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  536.643483][T14000]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  536.650921][T14000]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  536.658354][T14000]  genl_family_rcv_msg_doit+0x202/0x2f0
[  536.663947][T14000]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  536.670052][T14000]  ? bpf_lsm_capable+0x9/0x10
[  536.674759][T14000]  ? security_capable+0x7e/0x260
[  536.679720][T14000]  ? ns_capable+0xd7/0x110
[  536.684155][T14000]  genl_rcv_msg+0x565/0x800
[  536.688694][T14000]  ? __pfx_genl_rcv_msg+0x10/0x10
[  536.693756][T14000]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  536.699346][T14000]  netlink_rcv_skb+0x165/0x410
[  536.704134][T14000]  ? __pfx_genl_rcv_msg+0x10/0x10
[  536.709183][T14000]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  536.714500][T14000]  ? down_read+0xc9/0x330
[  536.718846][T14000]  ? __pfx_down_read+0x10/0x10
[  536.723624][T14000]  ? netlink_deliver_tap+0x1ae/0xcf0
[  536.728945][T14000]  genl_rcv+0x28/0x40
[  536.732946][T14000]  netlink_unicast+0x53c/0x7f0
[  536.737732][T14000]  ? __pfx_netlink_unicast+0x10/0x10
[  536.743035][T14000]  ? __phys_addr_symbol+0x30/0x80
[  536.748085][T14000]  ? __check_object_size+0x488/0x710
[  536.753408][T14000]  netlink_sendmsg+0x8b8/0xd70
[  536.758193][T14000]  ? __pfx_netlink_sendmsg+0x10/0x10
[  536.763511][T14000]  ____sys_sendmsg+0x9ae/0xb40
[  536.768298][T14000]  ? copy_msghdr_from_user+0x10b/0x160
[  536.773770][T14000]  ? __pfx_____sys_sendmsg+0x10/0x10
[  536.779087][T14000]  ___sys_sendmsg+0x135/0x1e0
[  536.783782][T14000]  ? __pfx____sys_sendmsg+0x10/0x10
[  536.789007][T14000]  ? __pfx_lock_release+0x10/0x10
[  536.794059][T14000]  ? trace_lock_acquire+0x14a/0x1d0
[  536.799287][T14000]  ? __fget_files+0x206/0x3a0
[  536.803996][T14000]  __sys_sendmsg+0x16e/0x220
[  536.808606][T14000]  ? __pfx___sys_sendmsg+0x10/0x10
[  536.813800][T14000]  ? __x64_sys_futex+0x1e1/0x4c0
[  536.818810][T14000]  do_syscall_64+0xcd/0x250
[  536.823343][T14000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.829284][T14000] RIP: 0033:0x7fe962d7e819
[  536.833738][T14000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  536.853377][T14000] RSP: 002b:00007fe963bbd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  536.861807][T14000] RAX: ffffffffffffffda RBX: 00007fe962f35fa0 RCX: 00007fe962d7e819
[  536.869811][T14000] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003
[  536.877801][T14000] RBP: 00007fe962df175e R08: 0000000000000000 R09: 0000000000000000
[  536.885786][T14000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  536.893772][T14000] R13: 0000000000000000 R14: 00007fe962f35fa0 R15: 00007ffc2176fe18
[  536.901781][T14000]  </TASK>
[  537.599255][T14011] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2346'.
[  538.487413][ T5839] Bluetooth: hci4: command tx timeout
[  539.721506][T13915] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  539.821038][T13915] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  539.862877][T13915] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  540.116934][T13915] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  540.464298][T13915] 8021q: adding VLAN 0 to HW filter on device bond0
[  540.495126][T13915] 8021q: adding VLAN 0 to HW filter on device team0
[  540.540668][T13915] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  540.551453][T13915] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  540.574293][ T8189] bridge0: port 1(bridge_slave_0) entered blocking state
[  540.581525][ T8189] bridge0: port 1(bridge_slave_0) entered forwarding state
[  540.598173][ T8189] bridge0: port 2(bridge_slave_1) entered blocking state
[  540.605339][ T8189] bridge0: port 2(bridge_slave_1) entered forwarding state
[  541.603275][T13915] 8021q: adding VLAN 0 to HW filter on device batadv0
[  541.754048][T13915] veth0_vlan: entered promiscuous mode
[  541.804868][T13915] veth1_vlan: entered promiscuous mode
[  541.885069][T13915] veth0_macvtap: entered promiscuous mode
[  541.921398][T13915] veth1_macvtap: entered promiscuous mode
[  541.988958][T13915] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  542.026512][T13915] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.056586][T13915] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  542.077087][T13915] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.106488][T13915] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  542.136294][T13915] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.146281][T13915] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  542.192929][T13915] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.237126][T13915] batman_adv: batadv0: Interface activated: batadv_slave_0
[  542.298551][T13915] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  542.322731][T13915] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.353606][T13915] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  542.364371][T13915] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.374367][T13915] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  542.384949][T13915] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.400892][T13915] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  542.427821][T13915] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.445079][T13915] batman_adv: batadv0: Interface activated: batadv_slave_1
[  542.482693][T13915] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  542.498927][T13915] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  542.511307][T13915] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  542.524361][T13915] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  542.749697][ T8192] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  542.764281][ T8192] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  542.832461][ T8187] hsr_slave_0: left promiscuous mode
[  542.840503][ T8187] hsr_slave_1: left promiscuous mode
[  542.852986][ T8187] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  542.862813][ T8187] batman_adv: batadv0: Removing interface: batadv_slave_0
[  542.876109][ T8187] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  542.885278][ T8187] batman_adv: batadv0: Removing interface: batadv_slave_1
[  542.922387][ T8187] veth1_macvtap: left promiscuous mode
[  542.930476][ T8187] veth0_macvtap: left promiscuous mode
[  542.936300][ T8187] veth1_vlan: left promiscuous mode
[  542.946376][ T8187] veth0_vlan: left promiscuous mode
[  543.476500][ T8187] team0 (unregistering): Port device team_slave_1 removed
[  543.519615][ T8187] team0 (unregistering): Port device team_slave_0 removed
[  543.967789][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  543.975700][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  544.152002][T14098] sysfs: cannot create duplicate filename '/class/ieee80211/��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��'
[  544.192232][T14098] CPU: 0 UID: 0 PID: 14098 Comm: syz.3.2357 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  544.202730][T14098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  544.212834][T14098] Call Trace:
[  544.216149][T14098]  <TASK>
[  544.219113][T14098]  dump_stack_lvl+0x16c/0x1f0
[  544.223854][T14098]  sysfs_warn_dup+0x7f/0xa0
[  544.228407][T14098]  sysfs_do_create_link_sd+0x124/0x140
[  544.233920][T14098]  sysfs_create_link+0x61/0xc0
[  544.238730][T14098]  device_add+0x62e/0x1a70
[  544.243208][T14098]  ? __pfx_device_add+0x10/0x10
[  544.248113][T14098]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  544.254074][T14098]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  544.260116][T14098]  wiphy_register+0x20d7/0x2d30
[  544.265046][T14098]  ? __pfx_wiphy_register+0x10/0x10
[  544.270326][T14098]  ieee80211_register_hw+0x2959/0x3fb0
[  544.275860][T14098]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  544.281713][T14098]  ? net_generic+0xea/0x2a0
[  544.286276][T14098]  ? rcu_is_watching+0x12/0xc0
[  544.291091][T14098]  ? trace_hrtimer_init+0x19d/0x220
[  544.296353][T14098]  ? __hrtimer_init+0x106/0x2c0
[  544.301261][T14098]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  544.307065][T14098]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  544.313186][T14098]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  544.319826][T14098]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  544.325182][T14098]  hwsim_new_radio_nl+0xb42/0x12b0
[  544.330366][T14098]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  544.335984][T14098]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  544.343416][T14098]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  544.350867][T14098]  genl_family_rcv_msg_doit+0x202/0x2f0
[  544.356476][T14098]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  544.362601][T14098]  ? bpf_lsm_capable+0x9/0x10
[  544.367328][T14098]  ? security_capable+0x7e/0x260
[  544.372321][T14098]  ? ns_capable+0xd7/0x110
[  544.376785][T14098]  genl_rcv_msg+0x565/0x800
[  544.381362][T14098]  ? __pfx_genl_rcv_msg+0x10/0x10
[  544.386444][T14098]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  544.392066][T14098]  netlink_rcv_skb+0x165/0x410
[  544.396884][T14098]  ? __pfx_genl_rcv_msg+0x10/0x10
[  544.401968][T14098]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  544.407319][T14098]  ? down_read+0xc9/0x330
[  544.411695][T14098]  ? __pfx_down_read+0x10/0x10
[  544.416507][T14098]  ? netlink_deliver_tap+0x1ae/0xcf0
[  544.421856][T14098]  genl_rcv+0x28/0x40
[  544.425896][T14098]  netlink_unicast+0x53c/0x7f0
[  544.430717][T14098]  ? __pfx_netlink_unicast+0x10/0x10
[  544.436061][T14098]  ? __phys_addr_symbol+0x30/0x80
[  544.441135][T14098]  ? __check_object_size+0x488/0x710
[  544.446486][T14098]  netlink_sendmsg+0x8b8/0xd70
[  544.451311][T14098]  ? __pfx_netlink_sendmsg+0x10/0x10
[  544.456662][T14098]  ____sys_sendmsg+0x9ae/0xb40
[  544.461483][T14098]  ? copy_msghdr_from_user+0x10b/0x160
[  544.466993][T14098]  ? __pfx_____sys_sendmsg+0x10/0x10
[  544.472342][T14098]  ___sys_sendmsg+0x135/0x1e0
[  544.477070][T14098]  ? __pfx____sys_sendmsg+0x10/0x10
[  544.482332][T14098]  ? __pfx_lock_release+0x10/0x10
[  544.487409][T14098]  ? trace_lock_acquire+0x14a/0x1d0
[  544.492669][T14098]  ? __fget_files+0x206/0x3a0
[  544.497406][T14098]  __sys_sendmsg+0x16e/0x220
[  544.502037][T14098]  ? __pfx___sys_sendmsg+0x10/0x10
[  544.507151][T14098]  ? __x64_sys_futex+0x1e1/0x4c0
[  544.512112][T14098]  do_syscall_64+0xcd/0x250
[  544.516625][T14098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.522530][T14098] RIP: 0033:0x7f7118f7e819
[  544.526950][T14098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  544.546579][T14098] RSP: 002b:00007f7119df7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  544.555044][T14098] RAX: ffffffffffffffda RBX: 00007f7119135fa0 RCX: 00007f7118f7e819
[  544.563052][T14098] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003
[  544.571060][T14098] RBP: 00007f7118ff175e R08: 0000000000000000 R09: 0000000000000000
[  544.579071][T14098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  544.587082][T14098] R13: 0000000000000000 R14: 00007f7119135fa0 R15: 00007ffc41004b48
[  544.595133][T14098]  </TASK>
[  545.382081][T13917] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  545.399942][T13917] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  545.545737][T13917] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  545.558302][T13917] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  545.566477][T13917] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  545.573851][T13917] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  545.846882][T14130] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2359'.
[  546.274125][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  546.365157][T14123] chnl_net:caif_netlink_parms(): no params data found
[  546.458326][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  546.625356][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  546.831318][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  546.932079][T14123] bridge0: port 1(bridge_slave_0) entered blocking state
[  546.964297][T14123] bridge0: port 1(bridge_slave_0) entered disabled state
[  546.990904][T14123] bridge_slave_0: entered allmulticast mode
[  547.004361][T14123] bridge_slave_0: entered promiscuous mode
[  547.049447][T14123] bridge0: port 2(bridge_slave_1) entered blocking state
[  547.079782][T14123] bridge0: port 2(bridge_slave_1) entered disabled state
[  547.116757][T14123] bridge_slave_1: entered allmulticast mode
[  547.138283][T14123] bridge_slave_1: entered promiscuous mode
[  547.331280][T14123] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  547.402274][T14123] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  547.426857][   T12] bridge_slave_1: left allmulticast mode
[  547.446545][   T12] bridge_slave_1: left promiscuous mode
[  547.453151][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  547.497916][   T12] bridge_slave_0: left allmulticast mode
[  547.503880][   T12] bridge_slave_0: left promiscuous mode
[  547.510006][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  547.519005][T14166] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2367'.
[  547.607396][ T5839] Bluetooth: hci1: command tx timeout
[  548.499964][T14123] team0: Port device team_slave_0 added
[  548.568394][T14123] team0: Port device team_slave_1 added
[  548.737400][T14123] batman_adv: batadv0: Adding interface: batadv_slave_0
[  548.753603][T14123] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  548.790523][T14123] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  548.814602][T14123] batman_adv: batadv0: Adding interface: batadv_slave_1
[  548.853386][T14123] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  548.921158][T14123] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  549.136026][T14123] hsr_slave_0: entered promiscuous mode
[  549.149725][T14123] hsr_slave_1: entered promiscuous mode
[  549.178847][T14123] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  549.199951][T14123] Cannot create hsr debugfs directory
[  549.686670][ T5839] Bluetooth: hci1: command tx timeout
[  550.156678][T14123] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  550.192880][T14123] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  550.220316][T14123] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  550.252815][T14123] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  550.651281][   T12] hsr_slave_0: left promiscuous mode
[  550.661968][   T12] hsr_slave_1: left promiscuous mode
[  550.677430][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  550.696540][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  550.725240][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  550.742532][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  550.784697][   T12] veth1_macvtap: left promiscuous mode
[  550.792522][   T12] veth0_macvtap: left promiscuous mode
[  550.802455][   T12] veth1_vlan: left promiscuous mode
[  550.810594][   T12] veth0_vlan: left promiscuous mode
[  551.773886][ T5839] Bluetooth: hci1: command tx timeout
[  551.884286][   T12] team0 (unregistering): Port device team_slave_1 removed
[  551.936136][   T12] team0 (unregistering): Port device team_slave_0 removed
[  552.360568][T14123] 8021q: adding VLAN 0 to HW filter on device bond0
[  552.380574][T14123] 8021q: adding VLAN 0 to HW filter on device team0
[  552.398613][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  552.405746][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  552.415053][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  552.422190][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  552.614034][T14123] 8021q: adding VLAN 0 to HW filter on device batadv0
[  552.659109][T14123] veth0_vlan: entered promiscuous mode
[  552.678322][T14123] veth1_vlan: entered promiscuous mode
[  552.704217][T14123] veth0_macvtap: entered promiscuous mode
[  552.714329][T14123] veth1_macvtap: entered promiscuous mode
[  552.732306][T14123] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  552.743037][T14123] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  552.753352][T14123] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  552.764738][T14123] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  552.774929][T14123] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  552.788018][T14123] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  552.800072][T14123] batman_adv: batadv0: Interface activated: batadv_slave_0
[  552.810423][T14123] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  552.821072][T14123] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  552.831770][T14123] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  552.842627][T14123] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  552.852872][T14123] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  552.864522][T14123] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  552.876608][T14123] batman_adv: batadv0: Interface activated: batadv_slave_1
[  552.890605][T14123] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  552.900158][T14123] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  552.909045][T14123] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  552.919483][T14123] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  552.987603][ T8192] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  552.995471][ T8192] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  553.020994][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  553.030432][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  553.846498][ T5839] Bluetooth: hci1: command tx timeout
[  559.388690][T14264] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2376'.
[  559.459783][T14269] openvswitch: netlink: ct_state flags 03001eac unsupported
[  559.500177][T14280] netlink: zone id is out of range
[  559.505479][T14280] netlink: zone id is out of range
[  559.510989][T14280] netlink: zone id is out of range
[  559.516248][T14280] netlink: get zone limit has 4 unknown bytes
[  560.268191][T13917] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  560.282346][T13917] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  560.308118][T13917] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  560.316216][T13917] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  560.325040][T13917] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  560.334604][T13917] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  560.692303][T14303] chnl_net:caif_netlink_parms(): no params data found
[  560.904976][T14303] bridge0: port 1(bridge_slave_0) entered blocking state
[  560.916136][T14303] bridge0: port 1(bridge_slave_0) entered disabled state
[  560.941844][T14303] bridge_slave_0: entered allmulticast mode
[  560.949647][T14303] bridge_slave_0: entered promiscuous mode
[  560.957697][T14303] bridge0: port 2(bridge_slave_1) entered blocking state
[  560.965137][T14303] bridge0: port 2(bridge_slave_1) entered disabled state
[  560.972440][T14303] bridge_slave_1: entered allmulticast mode
[  560.979603][T14303] bridge_slave_1: entered promiscuous mode
[  561.017107][T14303] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  561.039807][T14303] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  561.094812][T14303] team0: Port device team_slave_0 added
[  561.122736][T14303] team0: Port device team_slave_1 added
[  561.162911][T14303] batman_adv: batadv0: Adding interface: batadv_slave_0
[  561.186512][T14303] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  561.218002][T14303] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  561.231905][T14303] batman_adv: batadv0: Adding interface: batadv_slave_1
[  561.239176][T14303] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  561.277633][T14303] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  561.321806][T14303] hsr_slave_0: entered promiscuous mode
[  561.328443][T14303] hsr_slave_1: entered promiscuous mode
[  561.334906][T14303] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  561.343461][T14303] Cannot create hsr debugfs directory
[  561.503724][T14303] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  561.573325][T14303] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  561.644721][T14303] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  561.737488][T14303] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  561.907802][T14303] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  561.919717][T14303] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  561.939164][T14303] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  561.955722][T14303] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  562.045542][T14303] 8021q: adding VLAN 0 to HW filter on device bond0
[  562.081323][T14303] 8021q: adding VLAN 0 to HW filter on device team0
[  562.099459][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  562.106630][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  562.137672][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  562.144822][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  562.415087][T13917] Bluetooth: hci2: command tx timeout
[  562.455238][T14303] 8021q: adding VLAN 0 to HW filter on device batadv0
[  562.480821][T14359] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  562.571548][T14360] ptrace attach of "./syz-executor exec"[14123] was attempted by "./syz-executor exec"[14360]
[  562.583718][T14303] veth0_vlan: entered promiscuous mode
[  562.595955][T14303] veth1_vlan: entered promiscuous mode
[  562.626085][T14303] veth0_macvtap: entered promiscuous mode
[  562.639487][T14362] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2404'.
[  562.646784][T14303] veth1_macvtap: entered promiscuous mode
[  562.667101][T14303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  562.677803][T14303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  562.688171][T14303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  562.700569][T14303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  562.711283][T14303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  562.722035][T14303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  562.732724][T14303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  562.743461][T14303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  562.755514][T14303] batman_adv: batadv0: Interface activated: batadv_slave_0
[  562.770605][T14303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  562.781237][T14303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  562.791433][T14303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  562.802437][T14303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  562.812599][T14303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  562.823379][T14303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  562.833309][T14303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  562.843928][T14303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  562.854902][T14303] batman_adv: batadv0: Interface activated: batadv_slave_1
[  562.867370][T14303] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  562.876109][T14303] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  562.885173][T14303] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  562.894022][T14303] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  562.963293][T10955] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  562.993647][T10955] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  563.022485][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  563.043353][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  563.209627][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  563.215969][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  564.487923][T13917] Bluetooth: hci2: command tx timeout
[  566.566566][T13917] Bluetooth: hci2: command tx timeout
[  568.646572][T13917] Bluetooth: hci2: command tx timeout
[  574.450826][T14398] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2413'.
[  575.049089][T14426] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2423'.
[  575.745909][T14435] FAULT_INJECTION: forcing a failure.
[  575.745909][T14435] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  575.786568][T14435] CPU: 1 UID: 0 PID: 14435 Comm: syz.3.2428 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  575.797143][T14435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  575.807232][T14435] Call Trace:
[  575.810625][T14435]  <TASK>
[  575.813581][T14435]  dump_stack_lvl+0x16c/0x1f0
[  575.818311][T14435]  should_fail_ex+0x497/0x5b0
[  575.823039][T14435]  _copy_to_user+0x32/0xd0
[  575.827501][T14435]  simple_read_from_buffer+0xd0/0x160
[  575.832905][T14435]  proc_fail_nth_read+0x198/0x270
[  575.837969][T14435]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  575.843563][T14435]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  575.849158][T14435]  vfs_read+0x1df/0xbe0
[  575.853360][T14435]  ? __fget_files+0x1fc/0x3a0
[  575.858077][T14435]  ? __pfx___mutex_lock+0x10/0x10
[  575.863153][T14435]  ? __pfx_vfs_read+0x10/0x10
[  575.867883][T14435]  ? __fget_files+0x206/0x3a0
[  575.872617][T14435]  ksys_read+0x12b/0x250
[  575.876902][T14435]  ? __pfx_ksys_read+0x10/0x10
[  575.881711][T14435]  do_syscall_64+0xcd/0x250
[  575.886251][T14435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  575.892190][T14435] RIP: 0033:0x7f8aeb97d25c
[  575.896630][T14435] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  575.916281][T14435] RSP: 002b:00007f8ae97f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  575.924743][T14435] RAX: ffffffffffffffda RBX: 00007f8aebb35fa0 RCX: 00007f8aeb97d25c
[  575.932748][T14435] RDX: 000000000000000f RSI: 00007f8ae97f60a0 RDI: 0000000000000003
[  575.940757][T14435] RBP: 00007f8ae97f6090 R08: 0000000000000000 R09: 0000000000000000
[  575.948757][T14435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  575.956763][T14435] R13: 0000000000000000 R14: 00007f8aebb35fa0 R15: 00007ffd1821a038
[  575.964786][T14435]  </TASK>
[  575.977313][ T5839] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  575.995677][ T5839] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  576.004307][ T5839] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  576.031617][ T5839] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  576.047449][ T5839] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  576.056181][ T5839] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  576.205395][T14437] chnl_net:caif_netlink_parms(): no params data found
[  576.255937][T14437] bridge0: port 1(bridge_slave_0) entered blocking state
[  576.263171][T14437] bridge0: port 1(bridge_slave_0) entered disabled state
[  576.270815][T14437] bridge_slave_0: entered allmulticast mode
[  576.280188][T14437] bridge_slave_0: entered promiscuous mode
[  576.290276][T14437] bridge0: port 2(bridge_slave_1) entered blocking state
[  576.299097][T14437] bridge0: port 2(bridge_slave_1) entered disabled state
[  576.306405][T14437] bridge_slave_1: entered allmulticast mode
[  576.313246][T14437] bridge_slave_1: entered promiscuous mode
[  576.340048][T14437] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  576.351621][T14437] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  576.381179][T14437] team0: Port device team_slave_0 added
[  576.390833][T14437] team0: Port device team_slave_1 added
[  576.413328][T14437] batman_adv: batadv0: Adding interface: batadv_slave_0
[  576.421675][T14437] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  576.448228][T14437] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  576.460978][T14437] batman_adv: batadv0: Adding interface: batadv_slave_1
[  576.468077][T14437] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  576.495191][T14437] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  576.535191][T14437] hsr_slave_0: entered promiscuous mode
[  576.542764][T14437] hsr_slave_1: entered promiscuous mode
[  576.549796][T14437] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  576.557452][T14437] Cannot create hsr debugfs directory
[  576.669456][T14437] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  576.682575][T14437] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  576.692294][T14437] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  576.702426][T14437] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  576.729218][T14437] bridge0: port 2(bridge_slave_1) entered blocking state
[  576.736666][T14437] bridge0: port 2(bridge_slave_1) entered forwarding state
[  576.744074][T14437] bridge0: port 1(bridge_slave_0) entered blocking state
[  576.752498][T14437] bridge0: port 1(bridge_slave_0) entered forwarding state
[  576.809805][T14437] 8021q: adding VLAN 0 to HW filter on device bond0
[  576.831981][T10946] bridge0: port 1(bridge_slave_0) entered disabled state
[  576.841562][T10946] bridge0: port 2(bridge_slave_1) entered disabled state
[  576.865487][T14437] 8021q: adding VLAN 0 to HW filter on device team0
[  576.884265][T10946] bridge0: port 1(bridge_slave_0) entered blocking state
[  576.891411][T10946] bridge0: port 1(bridge_slave_0) entered forwarding state
[  576.904950][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  576.912110][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  576.953972][T14437] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  576.964868][T14437] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  577.099588][T14437] 8021q: adding VLAN 0 to HW filter on device batadv0
[  577.278195][T14437] veth0_vlan: entered promiscuous mode
[  577.290256][T14437] veth1_vlan: entered promiscuous mode
[  577.323939][T14437] veth0_macvtap: entered promiscuous mode
[  577.334879][T14437] veth1_macvtap: entered promiscuous mode
[  577.353176][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  577.366483][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.377510][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  577.388454][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.399459][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  577.410141][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.420050][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  577.432513][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.443046][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  577.455003][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.466752][T14437] batman_adv: batadv0: Interface activated: batadv_slave_0
[  577.481680][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.492426][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.503793][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.514766][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.525090][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.535947][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.546483][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.557416][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.567766][T14437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.579632][T14437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.591371][T14437] batman_adv: batadv0: Interface activated: batadv_slave_1
[  577.604599][T14437] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  577.616690][T14437] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  577.625446][T14437] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  577.634332][T14437] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  577.712049][T10946] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  577.734409][T10946] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  577.761594][ T8192] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  577.772494][ T8192] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  577.900432][T14461] sysfs: cannot create duplicate filename '/class/ieee80211/��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��'
[  577.960098][T14461] CPU: 0 UID: 0 PID: 14461 Comm: syz.0.2436 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  577.970706][T14461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  577.980804][T14461] Call Trace:
[  577.984132][T14461]  <TASK>
[  577.987106][T14461]  dump_stack_lvl+0x16c/0x1f0
[  577.991853][T14461]  sysfs_warn_dup+0x7f/0xa0
[  577.996406][T14461]  sysfs_do_create_link_sd+0x124/0x140
[  578.001927][T14461]  sysfs_create_link+0x61/0xc0
[  578.006746][T14461]  device_add+0x62e/0x1a70
[  578.011238][T14461]  ? __pfx_device_add+0x10/0x10
[  578.016159][T14461]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  578.022155][T14461]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  578.028310][T14461]  wiphy_register+0x20d7/0x2d30
[  578.033257][T14461]  ? __pfx_wiphy_register+0x10/0x10
[  578.038539][T14461]  ieee80211_register_hw+0x2959/0x3fb0
[  578.044079][T14461]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  578.049959][T14461]  ? net_generic+0xea/0x2a0
[  578.054556][T14461]  ? rcu_is_watching+0x12/0xc0
[  578.059390][T14461]  ? trace_hrtimer_init+0x19d/0x220
[  578.064673][T14461]  ? __hrtimer_init+0x106/0x2c0
[  578.069614][T14461]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  578.075440][T14461]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  578.081585][T14461]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  578.088206][T14461]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  578.093535][T14461]  hwsim_new_radio_nl+0xb42/0x12b0
[  578.098695][T14461]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  578.104279][T14461]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  578.111687][T14461]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  578.119114][T14461]  genl_family_rcv_msg_doit+0x202/0x2f0
[  578.124713][T14461]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  578.130827][T14461]  ? bpf_lsm_capable+0x9/0x10
[  578.135547][T14461]  ? security_capable+0x7e/0x260
[  578.140527][T14461]  ? ns_capable+0xd7/0x110
[  578.144985][T14461]  genl_rcv_msg+0x565/0x800
[  578.149554][T14461]  ? __pfx_genl_rcv_msg+0x10/0x10
[  578.154629][T14461]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  578.160253][T14461]  netlink_rcv_skb+0x165/0x410
[  578.165064][T14461]  ? __pfx_genl_rcv_msg+0x10/0x10
[  578.170128][T14461]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  578.175485][T14461]  ? down_read+0xc9/0x330
[  578.179844][T14461]  ? __pfx_down_read+0x10/0x10
[  578.184629][T14461]  ? netlink_deliver_tap+0x1ae/0xcf0
[  578.189953][T14461]  genl_rcv+0x28/0x40
[  578.193968][T14461]  netlink_unicast+0x53c/0x7f0
[  578.198765][T14461]  ? __pfx_netlink_unicast+0x10/0x10
[  578.204075][T14461]  ? __phys_addr_symbol+0x30/0x80
[  578.209127][T14461]  ? __check_object_size+0x488/0x710
[  578.214448][T14461]  netlink_sendmsg+0x8b8/0xd70
[  578.219252][T14461]  ? __pfx_netlink_sendmsg+0x10/0x10
[  578.224579][T14461]  ____sys_sendmsg+0x9ae/0xb40
[  578.229368][T14461]  ? copy_msghdr_from_user+0x10b/0x160
[  578.234845][T14461]  ? __pfx_____sys_sendmsg+0x10/0x10
[  578.240184][T14461]  ___sys_sendmsg+0x135/0x1e0
[  578.244906][T14461]  ? __pfx____sys_sendmsg+0x10/0x10
[  578.250153][T14461]  ? __pfx_lock_release+0x10/0x10
[  578.255213][T14461]  ? trace_lock_acquire+0x14a/0x1d0
[  578.260455][T14461]  ? __fget_files+0x206/0x3a0
[  578.265181][T14461]  __sys_sendmsg+0x16e/0x220
[  578.269799][T14461]  ? __pfx___sys_sendmsg+0x10/0x10
[  578.274931][T14461]  ? __x64_sys_futex+0x1e1/0x4c0
[  578.279916][T14461]  do_syscall_64+0xcd/0x250
[  578.284442][T14461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  578.290369][T14461] RIP: 0033:0x7f37ef17e819
[  578.294805][T14461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  578.314440][T14461] RSP: 002b:00007f37f001b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  578.322973][T14461] RAX: ffffffffffffffda RBX: 00007f37ef335fa0 RCX: 00007f37ef17e819
[  578.330969][T14461] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003
[  578.338963][T14461] RBP: 00007f37ef1f175e R08: 0000000000000000 R09: 0000000000000000
[  578.346954][T14461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  578.354945][T14461] R13: 0000000000000000 R14: 00007f37ef335fa0 R15: 00007ffc5dde3478
[  578.362960][T14461]  </TASK>
[  578.385686][ T5839] Bluetooth: hci5: command tx timeout
[  578.897532][T14470] sysfs: cannot create duplicate filename '/class/ieee80211/��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��'
[  578.918960][T14470] CPU: 0 UID: 0 PID: 14470 Comm: syz.4.2430 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  578.929462][T14470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  578.939568][T14470] Call Trace:
[  578.942878][T14470]  <TASK>
[  578.945840][T14470]  dump_stack_lvl+0x16c/0x1f0
[  578.950584][T14470]  sysfs_warn_dup+0x7f/0xa0
[  578.955151][T14470]  sysfs_do_create_link_sd+0x124/0x140
[  578.960669][T14470]  sysfs_create_link+0x61/0xc0
[  578.965489][T14470]  device_add+0x62e/0x1a70
[  578.969971][T14470]  ? __pfx_device_add+0x10/0x10
[  578.974877][T14470]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  578.980855][T14470]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  578.986898][T14470]  wiphy_register+0x20d7/0x2d30
[  578.991807][T14470]  ? __pfx_wiphy_register+0x10/0x10
[  578.997057][T14470]  ieee80211_register_hw+0x2959/0x3fb0
[  579.002572][T14470]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  579.008408][T14470]  ? net_generic+0xea/0x2a0
[  579.012981][T14470]  ? rcu_is_watching+0x12/0xc0
[  579.017780][T14470]  ? trace_hrtimer_init+0x19d/0x220
[  579.023020][T14470]  ? __hrtimer_init+0x106/0x2c0
[  579.027916][T14470]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  579.033701][T14470]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  579.039812][T14470]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  579.046438][T14470]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  579.051772][T14470]  hwsim_new_radio_nl+0xb42/0x12b0
[  579.056925][T14470]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  579.062517][T14470]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  579.069930][T14470]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  579.077362][T14470]  genl_family_rcv_msg_doit+0x202/0x2f0
[  579.082958][T14470]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  579.089082][T14470]  ? bpf_lsm_capable+0x9/0x10
[  579.093798][T14470]  ? security_capable+0x7e/0x260
[  579.098766][T14470]  ? ns_capable+0xd7/0x110
[  579.103206][T14470]  genl_rcv_msg+0x565/0x800
[  579.107745][T14470]  ? __pfx_genl_rcv_msg+0x10/0x10
[  579.112795][T14470]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  579.118379][T14470]  netlink_rcv_skb+0x165/0x410
[  579.123168][T14470]  ? __pfx_genl_rcv_msg+0x10/0x10
[  579.128222][T14470]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  579.133545][T14470]  ? down_read+0xc9/0x330
[  579.137891][T14470]  ? __pfx_down_read+0x10/0x10
[  579.142674][T14470]  ? netlink_deliver_tap+0x1ae/0xcf0
[  579.147988][T14470]  genl_rcv+0x28/0x40
[  579.151996][T14470]  netlink_unicast+0x53c/0x7f0
[  579.156789][T14470]  ? __pfx_netlink_unicast+0x10/0x10
[  579.162106][T14470]  ? __phys_addr_symbol+0x30/0x80
[  579.167160][T14470]  ? __check_object_size+0x488/0x710
[  579.172515][T14470]  netlink_sendmsg+0x8b8/0xd70
[  579.177323][T14470]  ? __pfx_netlink_sendmsg+0x10/0x10
[  579.182649][T14470]  ____sys_sendmsg+0x9ae/0xb40
[  579.187445][T14470]  ? copy_msghdr_from_user+0x10b/0x160
[  579.192937][T14470]  ? __pfx_____sys_sendmsg+0x10/0x10
[  579.198272][T14470]  ___sys_sendmsg+0x135/0x1e0
[  579.202973][T14470]  ? __pfx____sys_sendmsg+0x10/0x10
[  579.208239][T14470]  ? __pfx_lock_release+0x10/0x10
[  579.213302][T14470]  ? trace_lock_acquire+0x14a/0x1d0
[  579.218540][T14470]  ? __fget_files+0x206/0x3a0
[  579.223254][T14470]  __sys_sendmsg+0x16e/0x220
[  579.227889][T14470]  ? __pfx___sys_sendmsg+0x10/0x10
[  579.233023][T14470]  ? __x64_sys_futex+0x1e1/0x4c0
[  579.238002][T14470]  do_syscall_64+0xcd/0x250
[  579.242533][T14470]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  579.248456][T14470] RIP: 0033:0x7feb6e77e819
[  579.252931][T14470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  579.272566][T14470] RSP: 002b:00007feb6f630038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  579.281004][T14470] RAX: ffffffffffffffda RBX: 00007feb6e935fa0 RCX: 00007feb6e77e819
[  579.288998][T14470] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003
[  579.296990][T14470] RBP: 00007feb6e7f175e R08: 0000000000000000 R09: 0000000000000000
[  579.304987][T14470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  579.312987][T14470] R13: 0000000000000000 R14: 00007feb6e935fa0 R15: 00007ffc6da1ca18
[  579.320996][T14470]  </TASK>
[  580.406803][ T5839] Bluetooth: hci5: command tx timeout
[  582.494221][ T5839] Bluetooth: hci5: command tx timeout
[  584.577962][ T5839] Bluetooth: hci5: command tx timeout
[  590.696838][T10946] bridge_slave_1: left allmulticast mode
[  590.702545][T10946] bridge_slave_1: left promiscuous mode
[  590.736402][T10946] bridge0: port 2(bridge_slave_1) entered disabled state
[  590.829877][T10946] bridge_slave_0: left allmulticast mode
[  590.835593][T10946] bridge_slave_0: left promiscuous mode
[  590.841580][T10946] bridge0: port 1(bridge_slave_0) entered disabled state
[  591.222965][T14527] Invalid ELF header magic: != ELF
[  591.446071][T14521] debugfs: Directory '��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��' with parent 'ieee80211' already present!
[  591.505377][T10946] HfR: left promiscuous mode
[  591.735479][T14530] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2453'.
[  593.607400][T14576] netlink: zone id is out of range
[  593.612673][T14576] netlink: zone id is out of range
[  593.767341][T14576] netlink: zone id is out of range
[  593.772532][T14576] netlink: get zone limit has 4 unknown bytes
[  594.542082][T10946] hsr_slave_0: left promiscuous mode
[  594.548248][T10946] hsr_slave_1: left promiscuous mode
[  594.554200][T10946] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  594.561940][T10946] batman_adv: batadv0: Removing interface: batadv_slave_0
[  594.572251][T10946] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  594.580241][T10946] batman_adv: batadv0: Removing interface: batadv_slave_1
[  594.595928][T10946] veth1_macvtap: left promiscuous mode
[  594.602469][T10946] veth0_macvtap: left promiscuous mode
[  594.608262][T10946] veth1_vlan: left promiscuous mode
[  594.613536][T10946] veth0_vlan: left promiscuous mode
[  595.160947][T10946] team0 (unregistering): Port device team_slave_1 removed
[  595.213156][T10946] team0 (unregistering): Port device team_slave_0 removed
[  610.532843][   T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  610.776750][   T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  611.182229][   T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  611.338565][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  611.566819][   T11] bridge_slave_1: left allmulticast mode
[  611.572520][   T11] bridge_slave_1: left promiscuous mode
[  611.586617][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  611.597706][   T11] bridge_slave_0: left allmulticast mode
[  611.604385][   T11] bridge_slave_0: left promiscuous mode
[  611.625316][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  612.623140][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  612.637531][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  612.657487][   T11] bond0 (unregistering): Released all slaves
[  613.300394][   T11] hsr_slave_0: left promiscuous mode
[  613.346256][   T11] hsr_slave_1: left promiscuous mode
[  613.360328][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  613.369164][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  613.389996][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  613.397604][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  613.433322][   T11] veth1_macvtap: left promiscuous mode
[  613.440439][   T11] veth0_macvtap: left promiscuous mode
[  613.456807][   T11] veth1_vlan: left promiscuous mode
[  613.462233][   T11] veth0_vlan: left promiscuous mode
[  614.397779][   T11] team0 (unregistering): Port device team_slave_1 removed
[  614.465404][   T11] team0 (unregistering): Port device team_slave_0 removed
[  620.077037][T14797] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2489'.
[  623.858947][T14832] sysfs: cannot create duplicate filename '/class/ieee80211/��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��'
[  624.046525][T14832] CPU: 0 UID: 0 PID: 14832 Comm: syz.4.2499 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  624.057021][T14832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  624.067115][T14832] Call Trace:
[  624.070414][T14832]  <TASK>
[  624.073365][T14832]  dump_stack_lvl+0x16c/0x1f0
[  624.078095][T14832]  sysfs_warn_dup+0x7f/0xa0
[  624.082633][T14832]  sysfs_do_create_link_sd+0x124/0x140
[  624.088139][T14832]  sysfs_create_link+0x61/0xc0
[  624.092944][T14832]  device_add+0x62e/0x1a70
[  624.097420][T14832]  ? __pfx_device_add+0x10/0x10
[  624.102322][T14832]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  624.108277][T14832]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  624.114306][T14832]  wiphy_register+0x20d7/0x2d30
[  624.119217][T14832]  ? __pfx_wiphy_register+0x10/0x10
[  624.124476][T14832]  ieee80211_register_hw+0x2959/0x3fb0
[  624.129991][T14832]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  624.135835][T14832]  ? net_generic+0xea/0x2a0
[  624.140490][T14832]  ? rcu_is_watching+0x12/0xc0
[  624.145306][T14832]  ? trace_hrtimer_init+0x19d/0x220
[  624.150573][T14832]  ? __hrtimer_init+0x106/0x2c0
[  624.155484][T14832]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  624.161295][T14832]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  624.167515][T14832]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  624.174150][T14832]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  624.179497][T14832]  hwsim_new_radio_nl+0xb42/0x12b0
[  624.184663][T14832]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  624.190277][T14832]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  624.197705][T14832]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  624.205146][T14832]  genl_family_rcv_msg_doit+0x202/0x2f0
[  624.210754][T14832]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  624.216879][T14832]  ? bpf_lsm_capable+0x9/0x10
[  624.221599][T14832]  ? security_capable+0x7e/0x260
[  624.226579][T14832]  ? ns_capable+0xd7/0x110
[  624.231032][T14832]  genl_rcv_msg+0x565/0x800
[  624.235598][T14832]  ? __pfx_genl_rcv_msg+0x10/0x10
[  624.240676][T14832]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  624.246290][T14832]  netlink_rcv_skb+0x165/0x410
[  624.251093][T14832]  ? __pfx_genl_rcv_msg+0x10/0x10
[  624.256164][T14832]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  624.261508][T14832]  ? down_read+0xc9/0x330
[  624.265873][T14832]  ? __pfx_down_read+0x10/0x10
[  624.270667][T14832]  ? netlink_deliver_tap+0x1ae/0xcf0
[  624.276004][T14832]  genl_rcv+0x28/0x40
[  624.280027][T14832]  netlink_unicast+0x53c/0x7f0
[  624.284830][T14832]  ? __pfx_netlink_unicast+0x10/0x10
[  624.290152][T14832]  ? __phys_addr_symbol+0x30/0x80
[  624.295210][T14832]  ? __check_object_size+0x488/0x710
[  624.300553][T14832]  netlink_sendmsg+0x8b8/0xd70
[  624.305361][T14832]  ? __pfx_netlink_sendmsg+0x10/0x10
[  624.310709][T14832]  ____sys_sendmsg+0x9ae/0xb40
[  624.315512][T14832]  ? copy_msghdr_from_user+0x10b/0x160
[  624.321024][T14832]  ? __pfx_____sys_sendmsg+0x10/0x10
[  624.326356][T14832]  ___sys_sendmsg+0x135/0x1e0
[  624.331073][T14832]  ? __pfx____sys_sendmsg+0x10/0x10
[  624.336313][T14832]  ? __pfx_lock_release+0x10/0x10
[  624.341374][T14832]  ? trace_lock_acquire+0x14a/0x1d0
[  624.346627][T14832]  ? __fget_files+0x206/0x3a0
[  624.351362][T14832]  __sys_sendmsg+0x16e/0x220
[  624.355983][T14832]  ? __pfx___sys_sendmsg+0x10/0x10
[  624.361127][T14832]  ? __x64_sys_futex+0x1e1/0x4c0
[  624.366130][T14832]  do_syscall_64+0xcd/0x250
[  624.370681][T14832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  624.376624][T14832] RIP: 0033:0x7feb6e77e819
[  624.381075][T14832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  624.400727][T14832] RSP: 002b:00007feb6f630038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  624.409188][T14832] RAX: ffffffffffffffda RBX: 00007feb6e935fa0 RCX: 00007feb6e77e819
[  624.417199][T14832] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003
[  624.425198][T14832] RBP: 00007feb6e7f175e R08: 0000000000000000 R09: 0000000000000000
[  624.433204][T14832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  624.441217][T14832] R13: 0000000000000000 R14: 00007feb6e935fa0 R15: 00007ffc6da1ca18
[  624.449250][T14832]  </TASK>
[  624.661657][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  624.668108][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  635.243649][T14974] sysfs: cannot create duplicate filename '/class/ieee80211/��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��'
[  635.257442][T14974] CPU: 1 UID: 0 PID: 14974 Comm: syz.0.2509 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  635.267911][T14974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  635.277993][T14974] Call Trace:
[  635.281290][T14974]  <TASK>
[  635.284243][T14974]  dump_stack_lvl+0x16c/0x1f0
[  635.288972][T14974]  sysfs_warn_dup+0x7f/0xa0
[  635.293509][T14974]  sysfs_do_create_link_sd+0x124/0x140
[  635.299001][T14974]  sysfs_create_link+0x61/0xc0
[  635.303797][T14974]  device_add+0x62e/0x1a70
[  635.308263][T14974]  ? __pfx_device_add+0x10/0x10
[  635.313158][T14974]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  635.319099][T14974]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  635.325123][T14974]  wiphy_register+0x20d7/0x2d30
[  635.330029][T14974]  ? __pfx_wiphy_register+0x10/0x10
[  635.335309][T14974]  ieee80211_register_hw+0x2959/0x3fb0
[  635.340838][T14974]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  635.346697][T14974]  ? net_generic+0xea/0x2a0
[  635.351262][T14974]  ? rcu_is_watching+0x12/0xc0
[  635.356067][T14974]  ? trace_hrtimer_init+0x19d/0x220
[  635.361322][T14974]  ? __hrtimer_init+0x106/0x2c0
[  635.366240][T14974]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  635.372037][T14974]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  635.378159][T14974]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  635.384800][T14974]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  635.390143][T14974]  hwsim_new_radio_nl+0xb42/0x12b0
[  635.395301][T14974]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  635.400903][T14974]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  635.408325][T14974]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  635.415774][T14974]  genl_family_rcv_msg_doit+0x202/0x2f0
[  635.421388][T14974]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  635.427523][T14974]  ? bpf_lsm_capable+0x9/0x10
[  635.432279][T14974]  ? security_capable+0x7e/0x260
[  635.437277][T14974]  ? ns_capable+0xd7/0x110
[  635.441754][T14974]  genl_rcv_msg+0x565/0x800
[  635.446318][T14974]  ? __pfx_genl_rcv_msg+0x10/0x10
[  635.451392][T14974]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  635.456993][T14974]  netlink_rcv_skb+0x165/0x410
[  635.461804][T14974]  ? __pfx_genl_rcv_msg+0x10/0x10
[  635.466888][T14974]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  635.472332][T14974]  ? down_read+0xc9/0x330
[  635.476709][T14974]  ? __pfx_down_read+0x10/0x10
[  635.481521][T14974]  ? netlink_deliver_tap+0x1ae/0xcf0
[  635.486873][T14974]  genl_rcv+0x28/0x40
[  635.490896][T14974]  netlink_unicast+0x53c/0x7f0
[  635.495711][T14974]  ? __pfx_netlink_unicast+0x10/0x10
[  635.501053][T14974]  ? __phys_addr_symbol+0x30/0x80
[  635.506124][T14974]  ? __check_object_size+0x488/0x710
[  635.511479][T14974]  netlink_sendmsg+0x8b8/0xd70
[  635.516308][T14974]  ? __pfx_netlink_sendmsg+0x10/0x10
[  635.521660][T14974]  ____sys_sendmsg+0x9ae/0xb40
[  635.526474][T14974]  ? copy_msghdr_from_user+0x10b/0x160
[  635.531996][T14974]  ? __pfx_____sys_sendmsg+0x10/0x10
[  635.537359][T14974]  ___sys_sendmsg+0x135/0x1e0
[  635.542099][T14974]  ? __pfx____sys_sendmsg+0x10/0x10
[  635.547369][T14974]  ? __pfx_lock_release+0x10/0x10
[  635.552450][T14974]  ? trace_lock_acquire+0x14a/0x1d0
[  635.557719][T14974]  ? __fget_files+0x206/0x3a0
[  635.562557][T14974]  __sys_sendmsg+0x16e/0x220
[  635.567220][T14974]  ? __pfx___sys_sendmsg+0x10/0x10
[  635.572381][T14974]  ? __x64_sys_futex+0x1e1/0x4c0
[  635.577400][T14974]  do_syscall_64+0xcd/0x250
[  635.581949][T14974]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  635.587901][T14974] RIP: 0033:0x7f37ef17e819
[  635.592356][T14974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  635.612017][T14974] RSP: 002b:00007f37f001b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  635.620481][T14974] RAX: ffffffffffffffda RBX: 00007f37ef335fa0 RCX: 00007f37ef17e819
[  635.628498][T14974] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003
[  635.636521][T14974] RBP: 00007f37ef1f175e R08: 0000000000000000 R09: 0000000000000000
[  635.644536][T14974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  635.652551][T14974] R13: 0000000000000000 R14: 00007f37ef335fa0 R15: 00007ffc5dde3478
[  635.660586][T14974]  </TASK>
[  637.169932][T13917] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  637.179437][T13917] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  637.189711][T13917] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  637.201575][T13917] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  637.210072][T13917] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  637.218751][T13917] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  637.539828][T14990] chnl_net:caif_netlink_parms(): no params data found
[  637.576499][T15007] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2521'.
[  637.689248][T14990] bridge0: port 1(bridge_slave_0) entered blocking state
[  637.706451][T14990] bridge0: port 1(bridge_slave_0) entered disabled state
[  637.722535][T14990] bridge_slave_0: entered allmulticast mode
[  637.731364][T14990] bridge_slave_0: entered promiscuous mode
[  637.744360][T14990] bridge0: port 2(bridge_slave_1) entered blocking state
[  637.751860][T14990] bridge0: port 2(bridge_slave_1) entered disabled state
[  637.759792][T14990] bridge_slave_1: entered allmulticast mode
[  637.766929][T14990] bridge_slave_1: entered promiscuous mode
[  637.772975][T15017] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2525'.
[  637.903533][T14990] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  637.939296][T14990] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  638.091413][T14990] team0: Port device team_slave_0 added
[  638.128815][T14990] team0: Port device team_slave_1 added
[  638.213070][T14990] batman_adv: batadv0: Adding interface: batadv_slave_0
[  638.222915][T14990] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  638.280820][T14990] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  638.314749][T14990] batman_adv: batadv0: Adding interface: batadv_slave_1
[  638.332141][T14990] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  638.394261][T14990] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  638.587714][T14990] hsr_slave_0: entered promiscuous mode
[  638.617523][T14990] hsr_slave_1: entered promiscuous mode
[  639.060926][T14990] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  639.070839][T14990] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  639.081046][T14990] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  639.092650][T14990] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  639.161042][T14990] 8021q: adding VLAN 0 to HW filter on device bond0
[  639.183022][T14990] 8021q: adding VLAN 0 to HW filter on device team0
[  639.194649][ T8192] bridge0: port 1(bridge_slave_0) entered blocking state
[  639.201797][ T8192] bridge0: port 1(bridge_slave_0) entered forwarding state
[  639.215959][T10955] bridge0: port 2(bridge_slave_1) entered blocking state
[  639.223122][T10955] bridge0: port 2(bridge_slave_1) entered forwarding state
[  639.286727][ T5839] Bluetooth: hci3: command tx timeout
[  639.382490][T14990] 8021q: adding VLAN 0 to HW filter on device batadv0
[  639.541666][T14990] veth0_vlan: entered promiscuous mode
[  639.556501][T14990] veth1_vlan: entered promiscuous mode
[  639.579705][T14990] veth0_macvtap: entered promiscuous mode
[  639.595265][T14990] veth1_macvtap: entered promiscuous mode
[  639.615090][T14990] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  639.625975][T14990] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  639.636223][T14990] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  639.647006][T14990] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  639.656905][T14990] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  639.668223][T14990] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  639.678236][T14990] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  639.688865][T14990] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  639.700437][T14990] batman_adv: batadv0: Interface activated: batadv_slave_0
[  639.712810][T14990] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  639.723458][T14990] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  639.733520][T14990] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  639.745062][T14990] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  639.767715][T14990] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  639.784645][T14990] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  639.798202][T14990] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  639.815500][T14990] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  639.826810][T14990] batman_adv: batadv0: Interface activated: batadv_slave_1
[  639.841102][T14990] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  639.850482][T14990] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  639.859673][T14990] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  639.869413][T14990] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  639.935524][ T8187] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  639.949279][ T8187] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  639.971951][ T8191] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  639.980192][ T8191] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  641.366818][ T5839] Bluetooth: hci3: command tx timeout
[  643.446768][ T5839] Bluetooth: hci3: command tx timeout
[  645.526693][ T5839] Bluetooth: hci3: command tx timeout
[  650.263486][T15084] netlink: zone id is out of range
[  650.284339][T15084] netlink: zone id is out of range
[  650.298235][T15084] netlink: zone id is out of range
[  650.303429][T15084] netlink: get zone limit has 4 unknown bytes
[  653.212823][T15145] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2559'.
[  654.266008][T15162] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  665.369672][T15184] ptrace attach of "./syz-executor exec"[14990] was attempted by "./syz-executor exec"[15184]
[  666.085001][T15195] sysfs: cannot create duplicate filename '/class/ieee80211/��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��'
[  666.132271][T15195] CPU: 1 UID: 0 PID: 15195 Comm: syz.4.2573 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  666.142771][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  666.152930][T15195] Call Trace:
[  666.156268][T15195]  <TASK>
[  666.159237][T15195]  dump_stack_lvl+0x16c/0x1f0
[  666.163965][T15195]  sysfs_warn_dup+0x7f/0xa0
[  666.168500][T15195]  sysfs_do_create_link_sd+0x124/0x140
[  666.173984][T15195]  sysfs_create_link+0x61/0xc0
[  666.178778][T15195]  device_add+0x62e/0x1a70
[  666.183244][T15195]  ? __pfx_device_add+0x10/0x10
[  666.188124][T15195]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  666.194053][T15195]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  666.200054][T15195]  wiphy_register+0x20d7/0x2d30
[  666.204963][T15195]  ? __pfx_wiphy_register+0x10/0x10
[  666.210224][T15195]  ieee80211_register_hw+0x2959/0x3fb0
[  666.215722][T15195]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  666.221545][T15195]  ? net_generic+0xea/0x2a0
[  666.226073][T15195]  ? rcu_is_watching+0x12/0xc0
[  666.230861][T15195]  ? trace_hrtimer_init+0x19d/0x220
[  666.236084][T15195]  ? __hrtimer_init+0x106/0x2c0
[  666.241136][T15195]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  666.246904][T15195]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  666.252996][T15195]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  666.259605][T15195]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  666.264926][T15195]  hwsim_new_radio_nl+0xb42/0x12b0
[  666.270063][T15195]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  666.275643][T15195]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  666.283044][T15195]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  666.290459][T15195]  genl_family_rcv_msg_doit+0x202/0x2f0
[  666.296047][T15195]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  666.302150][T15195]  ? bpf_lsm_capable+0x9/0x10
[  666.306869][T15195]  ? security_capable+0x7e/0x260
[  666.311872][T15195]  ? ns_capable+0xd7/0x110
[  666.316319][T15195]  genl_rcv_msg+0x565/0x800
[  666.320867][T15195]  ? __pfx_genl_rcv_msg+0x10/0x10
[  666.325999][T15195]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  666.331585][T15195]  netlink_rcv_skb+0x165/0x410
[  666.336387][T15195]  ? __pfx_genl_rcv_msg+0x10/0x10
[  666.341465][T15195]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  666.346790][T15195]  ? down_read+0xc9/0x330
[  666.351137][T15195]  ? __pfx_down_read+0x10/0x10
[  666.355913][T15195]  ? netlink_deliver_tap+0x1ae/0xcf0
[  666.361221][T15195]  genl_rcv+0x28/0x40
[  666.365227][T15195]  netlink_unicast+0x53c/0x7f0
[  666.370013][T15195]  ? __pfx_netlink_unicast+0x10/0x10
[  666.375317][T15195]  ? __phys_addr_symbol+0x30/0x80
[  666.380361][T15195]  ? __check_object_size+0x488/0x710
[  666.385685][T15195]  netlink_sendmsg+0x8b8/0xd70
[  666.390482][T15195]  ? __pfx_netlink_sendmsg+0x10/0x10
[  666.395802][T15195]  ____sys_sendmsg+0x9ae/0xb40
[  666.400593][T15195]  ? copy_msghdr_from_user+0x10b/0x160
[  666.406078][T15195]  ? __pfx_____sys_sendmsg+0x10/0x10
[  666.411420][T15195]  ___sys_sendmsg+0x135/0x1e0
[  666.416122][T15195]  ? __pfx____sys_sendmsg+0x10/0x10
[  666.421438][T15195]  ? __pfx_lock_release+0x10/0x10
[  666.426490][T15195]  ? trace_lock_acquire+0x14a/0x1d0
[  666.431726][T15195]  ? fput+0x67/0x440
[  666.435662][T15195]  ? __fget_files+0x206/0x3a0
[  666.440376][T15195]  __sys_sendmsg+0x16e/0x220
[  666.444985][T15195]  ? __pfx___sys_sendmsg+0x10/0x10
[  666.450114][T15195]  ? __x64_sys_futex+0x1e1/0x4c0
[  666.455102][T15195]  do_syscall_64+0xcd/0x250
[  666.459622][T15195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  666.465544][T15195] RIP: 0033:0x7feb6e77e819
[  666.469971][T15195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  666.489596][T15195] RSP: 002b:00007feb6f630038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  666.498044][T15195] RAX: ffffffffffffffda RBX: 00007feb6e935fa0 RCX: 00007feb6e77e819
[  666.506031][T15195] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003
[  666.514038][T15195] RBP: 00007feb6e7f175e R08: 0000000000000000 R09: 0000000000000000
[  666.522028][T15195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  666.530014][T15195] R13: 0000000000000000 R14: 00007feb6e935fa0 R15: 00007ffc6da1ca18
[  666.538016][T15195]  </TASK>
[  666.876983][T15210] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2581'.
[  667.298912][T15219] sysfs: cannot create duplicate filename '/class/ieee80211/��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��'
[  667.332253][T15219] CPU: 1 UID: 0 PID: 15219 Comm: syz.0.2584 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  667.342766][T15219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  667.352870][T15219] Call Trace:
[  667.356187][T15219]  <TASK>
[  667.359155][T15219]  dump_stack_lvl+0x16c/0x1f0
[  667.363913][T15219]  sysfs_warn_dup+0x7f/0xa0
[  667.368466][T15219]  sysfs_do_create_link_sd+0x124/0x140
[  667.373986][T15219]  sysfs_create_link+0x61/0xc0
[  667.378806][T15219]  device_add+0x62e/0x1a70
[  667.383291][T15219]  ? __pfx_device_add+0x10/0x10
[  667.388219][T15219]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  667.394178][T15219]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  667.400222][T15219]  wiphy_register+0x20d7/0x2d30
[  667.405154][T15219]  ? __pfx_wiphy_register+0x10/0x10
[  667.410437][T15219]  ieee80211_register_hw+0x2959/0x3fb0
[  667.415972][T15219]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  667.421844][T15219]  ? net_generic+0xea/0x2a0
[  667.426393][T15219]  ? rcu_is_watching+0x12/0xc0
[  667.431185][T15219]  ? trace_hrtimer_init+0x19d/0x220
[  667.436417][T15219]  ? __hrtimer_init+0x106/0x2c0
[  667.441307][T15219]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  667.447077][T15219]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  667.453165][T15219]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  667.459791][T15219]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  667.465143][T15219]  hwsim_new_radio_nl+0xb42/0x12b0
[  667.470301][T15219]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  667.475893][T15219]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  667.483292][T15219]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  667.490790][T15219]  genl_family_rcv_msg_doit+0x202/0x2f0
[  667.496454][T15219]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  667.502552][T15219]  ? bpf_lsm_capable+0x9/0x10
[  667.507254][T15219]  ? security_capable+0x7e/0x260
[  667.512256][T15219]  ? ns_capable+0xd7/0x110
[  667.516729][T15219]  genl_rcv_msg+0x565/0x800
[  667.521295][T15219]  ? __pfx_genl_rcv_msg+0x10/0x10
[  667.526362][T15219]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  667.531980][T15219]  netlink_rcv_skb+0x165/0x410
[  667.536764][T15219]  ? __pfx_genl_rcv_msg+0x10/0x10
[  667.541814][T15219]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  667.547129][T15219]  ? down_read+0xc9/0x330
[  667.551473][T15219]  ? __pfx_down_read+0x10/0x10
[  667.556247][T15219]  ? netlink_deliver_tap+0x1ae/0xcf0
[  667.561561][T15219]  genl_rcv+0x28/0x40
[  667.565566][T15219]  netlink_unicast+0x53c/0x7f0
[  667.570381][T15219]  ? __pfx_netlink_unicast+0x10/0x10
[  667.575687][T15219]  ? __phys_addr_symbol+0x30/0x80
[  667.580728][T15219]  ? __check_object_size+0x488/0x710
[  667.586037][T15219]  netlink_sendmsg+0x8b8/0xd70
[  667.590854][T15219]  ? __pfx_netlink_sendmsg+0x10/0x10
[  667.596168][T15219]  ____sys_sendmsg+0x9ae/0xb40
[  667.600951][T15219]  ? copy_msghdr_from_user+0x10b/0x160
[  667.606425][T15219]  ? __pfx_____sys_sendmsg+0x10/0x10
[  667.611787][T15219]  ___sys_sendmsg+0x135/0x1e0
[  667.616502][T15219]  ? __pfx____sys_sendmsg+0x10/0x10
[  667.621795][T15219]  ? __pfx_lock_release+0x10/0x10
[  667.626867][T15219]  ? trace_lock_acquire+0x14a/0x1d0
[  667.632098][T15219]  ? __fget_files+0x206/0x3a0
[  667.636801][T15219]  __sys_sendmsg+0x16e/0x220
[  667.641413][T15219]  ? __pfx___sys_sendmsg+0x10/0x10
[  667.646971][T15219]  ? __x64_sys_futex+0x1e1/0x4c0
[  667.651946][T15219]  do_syscall_64+0xcd/0x250
[  667.656465][T15219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.662382][T15219] RIP: 0033:0x7f37ef17e819
[  667.666811][T15219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  667.686437][T15219] RSP: 002b:00007f37f001b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  667.694867][T15219] RAX: ffffffffffffffda RBX: 00007f37ef335fa0 RCX: 00007f37ef17e819
[  667.702850][T15219] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003
[  667.710833][T15219] RBP: 00007f37ef1f175e R08: 0000000000000000 R09: 0000000000000000
[  667.718824][T15219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  667.726807][T15219] R13: 0000000000000000 R14: 00007f37ef335fa0 R15: 00007ffc5dde3478
[  667.734810][T15219]  </TASK>
[  667.794516][ T5839] Bluetooth: hci1: command 0x0406 tx timeout
[  667.929428][T15224] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2586'.
[  679.773669][T15259] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2600'.
[  679.792905][T15265] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2602'.
[  683.206700][T13917] Bluetooth: hci2: command 0x0406 tx timeout
[  683.441354][T15325] netlink: zone id is out of range
[  683.472438][T15325] netlink: zone id is out of range
[  683.527189][T15325] netlink: zone id is out of range
[  683.572112][T15325] netlink: get zone limit has 4 unknown bytes
[  686.107080][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  686.113553][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  686.370126][ T8191] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  686.533922][ T8191] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  686.738891][ T8191] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  686.882547][ T8191] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  687.285173][ T8191] bridge_slave_1: left allmulticast mode
[  687.292146][ T8191] bridge_slave_1: left promiscuous mode
[  687.298002][ T8191] bridge0: port 2(bridge_slave_1) entered disabled state
[  687.374336][ T8191] bridge_slave_0: left allmulticast mode
[  687.381567][ T8191] bridge_slave_0: left promiscuous mode
[  687.388107][ T8191] bridge0: port 1(bridge_slave_0) entered disabled state
[  688.128396][ T8191] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  688.145927][ T8191] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  688.165755][ T8191] bond0 (unregistering): Released all slaves
[  688.675195][ T8191] hsr_slave_0: left promiscuous mode
[  688.690856][ T8191] hsr_slave_1: left promiscuous mode
[  688.736832][ T8191] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  688.746967][ T8191] batman_adv: batadv0: Removing interface: batadv_slave_0
[  688.770833][ T8191] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  688.787621][ T8191] batman_adv: batadv0: Removing interface: batadv_slave_1
[  688.825235][ T8191] veth1_macvtap: left promiscuous mode
[  688.831186][ T8191] veth0_macvtap: left promiscuous mode
[  688.836958][ T8191] veth1_vlan: left promiscuous mode
[  688.842348][ T8191] veth0_vlan: left promiscuous mode
[  689.810475][ T8191] team0 (unregistering): Port device team_slave_1 removed
[  689.883953][ T8191] team0 (unregistering): Port device team_slave_0 removed
[  699.898702][T15503] HfR: entered promiscuous mode
[  713.853203][   T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  713.872420][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  713.877190][T15633] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2638'.
[  713.989792][   T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  714.001649][   T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  714.013163][   T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  714.026499][   T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  714.182042][   T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  714.193242][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  714.210002][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  714.218878][   T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  714.228588][   T54] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  714.246742][   T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  714.260137][T10955] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  714.385709][T10955] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  714.500785][T10955] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  714.592396][T10955] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  714.779135][T15643] chnl_net:caif_netlink_parms(): no params data found
[  714.882275][T10955] bridge_slave_1: left allmulticast mode
[  714.899419][T10955] bridge_slave_1: left promiscuous mode
[  714.910411][T10955] bridge0: port 2(bridge_slave_1) entered disabled state
[  714.930065][T10955] bridge_slave_0: left allmulticast mode
[  714.935771][T10955] bridge_slave_0: left promiscuous mode
[  714.947926][T10955] bridge0: port 1(bridge_slave_0) entered disabled state
[  715.399058][T15640] chnl_net:caif_netlink_parms(): no params data found
[  715.524907][T15643] bridge0: port 1(bridge_slave_0) entered blocking state
[  715.536681][T15643] bridge0: port 1(bridge_slave_0) entered disabled state
[  715.543932][T15643] bridge_slave_0: entered allmulticast mode
[  715.551150][T15643] bridge_slave_0: entered promiscuous mode
[  715.583426][T15643] bridge0: port 2(bridge_slave_1) entered blocking state
[  715.590837][T15643] bridge0: port 2(bridge_slave_1) entered disabled state
[  715.598861][T15643] bridge_slave_1: entered allmulticast mode
[  715.605958][T15643] bridge_slave_1: entered promiscuous mode
[  715.684373][T15643] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  715.723570][T15640] bridge0: port 1(bridge_slave_0) entered blocking state
[  715.732416][T15640] bridge0: port 1(bridge_slave_0) entered disabled state
[  715.748060][T15640] bridge_slave_0: entered allmulticast mode
[  715.755238][T15640] bridge_slave_0: entered promiscuous mode
[  715.763638][T15640] bridge0: port 2(bridge_slave_1) entered blocking state
[  715.771172][T15640] bridge0: port 2(bridge_slave_1) entered disabled state
[  715.778527][T15640] bridge_slave_1: entered allmulticast mode
[  715.785619][T15640] bridge_slave_1: entered promiscuous mode
[  715.811296][T15643] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  715.956761][T15643] team0: Port device team_slave_0 added
[  715.980182][T15643] team0: Port device team_slave_1 added
[  716.029428][T15640] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  716.041553][T15640] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  716.086440][T13917] Bluetooth: hci0: command tx timeout
[  716.151720][T15643] batman_adv: batadv0: Adding interface: batadv_slave_0
[  716.159837][T15643] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  716.186656][T15643] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  716.222328][T15640] team0: Port device team_slave_0 added
[  716.229271][T15643] batman_adv: batadv0: Adding interface: batadv_slave_1
[  716.237845][T15643] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  716.266969][T15643] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  716.288317][T15640] team0: Port device team_slave_1 added
[  716.327503][T13917] Bluetooth: hci1: command tx timeout
[  716.360660][T15640] batman_adv: batadv0: Adding interface: batadv_slave_0
[  716.367881][T15640] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  716.396000][T15640] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  716.443759][T15640] batman_adv: batadv0: Adding interface: batadv_slave_1
[  716.451374][T15640] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  716.481437][T15640] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  716.495981][T15643] hsr_slave_0: entered promiscuous mode
[  716.509744][T15643] hsr_slave_1: entered promiscuous mode
[  716.519944][T15643] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  716.536599][T15643] Cannot create hsr debugfs directory
[  716.640587][T15640] hsr_slave_0: entered promiscuous mode
[  716.648000][T15640] hsr_slave_1: entered promiscuous mode
[  716.654071][T15640] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  716.663342][T15640] Cannot create hsr debugfs directory
[  717.075844][T15643] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  717.097058][T15643] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  717.141443][T10955] hsr_slave_0: left promiscuous mode
[  717.157090][T10955] hsr_slave_1: left promiscuous mode
[  717.163154][T10955] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  717.173489][T10955] batman_adv: batadv0: Removing interface: batadv_slave_0
[  717.182833][T10955] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  717.190698][T10955] batman_adv: batadv0: Removing interface: batadv_slave_1
[  717.215111][T10955] veth1_macvtap: left promiscuous mode
[  717.220957][T10955] veth0_macvtap: left promiscuous mode
[  717.228107][T10955] veth1_vlan: left promiscuous mode
[  717.233461][T10955] veth0_vlan: left promiscuous mode
[  717.771668][T10955] team0 (unregistering): Port device team_slave_1 removed
[  717.823393][T10955] team0 (unregistering): Port device team_slave_0 removed
[  718.185200][T13917] Bluetooth: hci0: command tx timeout
[  718.351486][T15643] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  718.385070][T15643] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  718.406571][T13917] Bluetooth: hci1: command tx timeout
[  718.484254][T15640] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  718.507461][T15640] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  718.520165][T15640] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  718.541525][T15640] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  718.624848][T15643] 8021q: adding VLAN 0 to HW filter on device bond0
[  718.688589][T15643] 8021q: adding VLAN 0 to HW filter on device team0
[  718.701793][ T8189] bridge0: port 1(bridge_slave_0) entered blocking state
[  718.708958][ T8189] bridge0: port 1(bridge_slave_0) entered forwarding state
[  718.731575][T10946] bridge0: port 2(bridge_slave_1) entered blocking state
[  718.738763][T10946] bridge0: port 2(bridge_slave_1) entered forwarding state
[  718.854845][T15640] 8021q: adding VLAN 0 to HW filter on device bond0
[  718.901851][T15640] 8021q: adding VLAN 0 to HW filter on device team0
[  718.974166][T10946] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  719.031263][T10951] bridge0: port 1(bridge_slave_0) entered blocking state
[  719.038468][T10951] bridge0: port 1(bridge_slave_0) entered forwarding state
[  719.128257][T10946] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  719.154731][T10955] bridge0: port 2(bridge_slave_1) entered blocking state
[  719.161974][T10955] bridge0: port 2(bridge_slave_1) entered forwarding state
[  719.213726][T10946] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  719.303760][T10946] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  719.328412][T15643] 8021q: adding VLAN 0 to HW filter on device batadv0
[  719.566796][T10946] bridge_slave_1: left allmulticast mode
[  719.573024][T10946] bridge_slave_1: left promiscuous mode
[  719.608923][T10946] bridge0: port 2(bridge_slave_1) entered disabled state
[  719.625555][T10946] bridge_slave_0: left allmulticast mode
[  719.633937][T10946] bridge_slave_0: left promiscuous mode
[  719.645816][T10946] bridge0: port 1(bridge_slave_0) entered disabled state
[  720.173655][T10946] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  720.185756][T10946] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  720.201499][T10946] bond0 (unregistering): Released all slaves
[  720.246802][T13917] Bluetooth: hci0: command tx timeout
[  720.367878][T15640] 8021q: adding VLAN 0 to HW filter on device batadv0
[  720.475789][T15643] veth0_vlan: entered promiscuous mode
[  720.487524][T13917] Bluetooth: hci1: command tx timeout
[  720.538612][T15643] veth1_vlan: entered promiscuous mode
[  720.700643][T15643] veth0_macvtap: entered promiscuous mode
[  720.717015][T15643] veth1_macvtap: entered promiscuous mode
[  720.833318][T15643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  720.860060][T15643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  720.876666][T15643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  720.892719][T15643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  720.904560][T15643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  720.922744][T15643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  720.934610][T15643] batman_adv: batadv0: Interface activated: batadv_slave_0
[  720.975492][T15643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  720.992682][T15643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  721.002663][T15643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  721.013795][T15643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  721.025269][T15643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  721.036821][T15643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  721.049191][T15643] batman_adv: batadv0: Interface activated: batadv_slave_1
[  721.072049][T10946] hsr_slave_0: left promiscuous mode
[  721.085172][T10946] hsr_slave_1: left promiscuous mode
[  721.097254][T10946] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  721.104727][T10946] batman_adv: batadv0: Removing interface: batadv_slave_0
[  721.117664][T10946] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  721.125163][T10946] batman_adv: batadv0: Removing interface: batadv_slave_1
[  721.157478][T10946] veth1_macvtap: left promiscuous mode
[  721.163045][T10946] veth0_macvtap: left promiscuous mode
[  721.169138][T10946] veth1_vlan: left promiscuous mode
[  721.174455][T10946] veth0_vlan: left promiscuous mode
[  721.653653][T10946] team0 (unregistering): Port device team_slave_1 removed
[  721.705169][T10946] team0 (unregistering): Port device team_slave_0 removed
[  722.255112][T15643] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  722.265202][T15643] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  722.274482][T15643] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  722.283591][T15643] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  722.314278][T15640] veth0_vlan: entered promiscuous mode
[  722.326740][T13917] Bluetooth: hci0: command tx timeout
[  722.363542][T15640] veth1_vlan: entered promiscuous mode
[  722.460306][T15640] veth0_macvtap: entered promiscuous mode
[  722.479436][T15640] veth1_macvtap: entered promiscuous mode
[  722.496597][ T8191] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  722.504954][ T8191] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  722.566739][T13917] Bluetooth: hci1: command tx timeout
[  722.581382][T15640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  722.592250][T15640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  722.603241][T15640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  722.614049][T15640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  722.624048][T15640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  722.634650][T15640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  722.646072][T15640] batman_adv: batadv0: Interface activated: batadv_slave_0
[  722.664980][T10955] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  722.679017][T10955] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  722.680394][T15640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  722.699605][T15640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  722.713614][T15640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  722.724891][T15640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  722.735330][T15640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  722.746143][T15640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  722.758795][T15640] batman_adv: batadv0: Interface activated: batadv_slave_1
[  722.774051][T15640] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  722.783547][T15640] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  722.794896][T15640] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  722.805257][T15640] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  722.913733][ T8189] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  722.931663][ T8189] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  722.957885][T10955] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  722.966904][T10955] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  729.010035][ T5839] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  729.020762][ T5839] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  729.029681][ T5839] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  729.047162][ T5839] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  729.055512][ T5839] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  729.066090][ T5839] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  729.231923][T15955] ptrace attach of "./syz-executor exec"[15643] was attempted by "./syz-executor exec ASAN_OPTIONS=handle_segv=0 allow_user_segv_handler=1 detect_leaks=0 GLIBC_TUNABLES=glibc.pthread.rseq=0 ./syz-executor"[15955]
[  729.352464][T15956] chnl_net:caif_netlink_parms(): no params data found
[  729.690622][T15956] bridge0: port 1(bridge_slave_0) entered blocking state
[  729.716514][T15956] bridge0: port 1(bridge_slave_0) entered disabled state
[  729.724565][T15956] bridge_slave_0: entered allmulticast mode
[  729.732505][T15956] bridge_slave_0: entered promiscuous mode
[  729.740937][T15956] bridge0: port 2(bridge_slave_1) entered blocking state
[  729.748335][T15956] bridge0: port 2(bridge_slave_1) entered disabled state
[  729.755707][T15956] bridge_slave_1: entered allmulticast mode
[  729.762929][T15956] bridge_slave_1: entered promiscuous mode
[  729.865423][T15956] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  729.895723][T15956] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  729.968575][T15956] team0: Port device team_slave_0 added
[  729.988783][T15956] team0: Port device team_slave_1 added
[  730.106951][T15956] batman_adv: batadv0: Adding interface: batadv_slave_0
[  730.116995][T15956] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  730.144943][T15956] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  730.159842][T15956] batman_adv: batadv0: Adding interface: batadv_slave_1
[  730.176469][T15956] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  730.244446][T15956] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  730.467378][T15956] hsr_slave_0: entered promiscuous mode
[  730.548747][T15956] hsr_slave_1: entered promiscuous mode
[  730.555467][T15956] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  730.580781][T15956] Cannot create hsr debugfs directory
[  730.836672][T15988] ptrace attach of "./syz-executor exec"[14990] was attempted by "./syz-executor exec"[15988]
[  730.956200][T15956] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  731.005380][T15956] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  731.023833][T15956] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  731.071289][T15956] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  731.126561][T13917] Bluetooth: hci4: command tx timeout
[  731.345486][T15956] 8021q: adding VLAN 0 to HW filter on device bond0
[  731.411285][T15956] 8021q: adding VLAN 0 to HW filter on device team0
[  731.461968][ T8191] bridge0: port 1(bridge_slave_0) entered blocking state
[  731.469217][ T8191] bridge0: port 1(bridge_slave_0) entered forwarding state
[  731.522703][T10946] bridge0: port 2(bridge_slave_1) entered blocking state
[  731.529930][T10946] bridge0: port 2(bridge_slave_1) entered forwarding state
[  732.249733][T15956] 8021q: adding VLAN 0 to HW filter on device batadv0
[  733.208749][T13917] Bluetooth: hci4: command tx timeout
[  733.545160][T15956] veth0_vlan: entered promiscuous mode
[  733.591298][T15956] veth1_vlan: entered promiscuous mode
[  733.662171][T15956] veth0_macvtap: entered promiscuous mode
[  733.683944][T15956] veth1_macvtap: entered promiscuous mode
[  733.702407][T15956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  733.736415][T15956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  733.766586][T15956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  733.792621][T15956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  733.826339][T15956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  733.856969][T15956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  733.887678][T15956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  733.933674][T15956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  733.969668][T15956] batman_adv: batadv0: Interface activated: batadv_slave_0
[  734.030926][T15956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.085154][T15956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.104469][T15956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.115039][T15956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.125152][T15956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.135709][T15956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.145636][T15956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  734.156232][T15956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  734.169068][T15956] batman_adv: batadv0: Interface activated: batadv_slave_1
[  734.190728][T15956] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  734.200955][T15956] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  734.209793][T15956] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  734.218704][T15956] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  734.580352][T10946] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  734.596837][T10946] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  734.673121][T10955] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  734.735870][T10955] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  735.286756][T13917] Bluetooth: hci4: command tx timeout
[  737.373408][T13917] Bluetooth: hci4: command tx timeout
[  745.000517][T16329] debugfs: Directory '��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��' with parent 'ieee80211' already present!
[  745.217634][T16331] nbd: must specify a size in bytes for the device
[  745.382453][T16336] netlink: 342 bytes leftover after parsing attributes in process `syz.8.2678'.
[  745.521794][T16342] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2682'.
[  747.419867][T16382] debugfs: Directory '��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��' with parent 'ieee80211' already present!
[  747.532206][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  747.538788][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  759.047507][T16423] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2698'.
[  759.087870][T16422] netlink: 50 bytes leftover after parsing attributes in process `syz.9.2700'.
[  759.478146][T16430] debugfs: Directory '��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��' with parent 'ieee80211' already present!
[  759.806041][T16437] netlink: zone id is out of range
[  759.816578][T16437] netlink: zone id is out of range
[  759.821760][T16437] netlink: zone id is out of range
[  759.846675][ T5839] Bluetooth: hci3: command 0x0406 tx timeout
[  759.854102][T16437] netlink: get zone limit has 4 unknown bytes
[  774.382997][T16515] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2729'.
[  775.433282][T16536] openvswitch: netlink: nsh attr 1 has unexpected len 14 expected 8
[  776.977363][T16566] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2742'.
[  777.360596][T16570] ptrace attach of "./syz-executor exec"[15640] was attempted by "./syz-executor exec"[16570]
[  784.364742][ T8191] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  784.446759][ T8191] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  784.514698][ T8191] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  784.593287][ T8191] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  784.716533][ T8191] bridge_slave_1: left allmulticast mode
[  784.722252][ T8191] bridge_slave_1: left promiscuous mode
[  784.728702][ T8191] bridge0: port 2(bridge_slave_1) entered disabled state
[  784.747118][ T8191] bridge_slave_0: left allmulticast mode
[  784.752851][ T8191] bridge_slave_0: left promiscuous mode
[  784.759968][ T8191] bridge0: port 1(bridge_slave_0) entered disabled state
[  785.162249][ T8191] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  785.175167][ T8191] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  785.186131][ T8191] bond0 (unregistering): Released all slaves
[  785.236787][ T8191] HfR: left promiscuous mode
[  785.549261][ T8191] hsr_slave_0: left promiscuous mode
[  785.555389][ T8191] hsr_slave_1: left promiscuous mode
[  785.567391][ T8191] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  785.574874][ T8191] batman_adv: batadv0: Removing interface: batadv_slave_0
[  785.591406][ T8191] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  785.599057][ T8191] batman_adv: batadv0: Removing interface: batadv_slave_1
[  785.635718][ T8191] veth1_macvtap: left promiscuous mode
[  785.642463][ T8191] veth0_macvtap: left promiscuous mode
[  785.651436][ T8191] veth1_vlan: left promiscuous mode
[  785.657341][ T8191] veth0_vlan: left promiscuous mode
[  786.164595][ T8191] team0 (unregistering): Port device team_slave_1 removed
[  786.221937][ T8191] team0 (unregistering): Port device team_slave_0 removed
[  789.379355][T16723] sysfs: cannot create duplicate filename '/class/ieee80211/��������-�侞6y�ռ���
k��a;��+��1�)p;!X�+�@��'
[  789.436580][T16723] CPU: 1 UID: 0 PID: 16723 Comm: syz.7.2767 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  789.447177][T16723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  789.457278][T16723] Call Trace:
[  789.460593][T16723]  <TASK>
[  789.463564][T16723]  dump_stack_lvl+0x16c/0x1f0
[  789.468313][T16723]  sysfs_warn_dup+0x7f/0xa0
[  789.472874][T16723]  sysfs_do_create_link_sd+0x124/0x140
[  789.478397][T16723]  sysfs_create_link+0x61/0xc0
[  789.483228][T16723]  device_add+0x62e/0x1a70
[  789.487711][T16723]  ? __pfx_device_add+0x10/0x10
[  789.492619][T16723]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  789.498583][T16723]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  789.504634][T16723]  wiphy_register+0x20d7/0x2d30
[  789.509570][T16723]  ? __pfx_wiphy_register+0x10/0x10
[  789.514850][T16723]  ieee80211_register_hw+0x2959/0x3fb0
[  789.520388][T16723]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  789.526249][T16723]  ? net_generic+0xea/0x2a0
[  789.530808][T16723]  ? rcu_is_watching+0x12/0xc0
[  789.535603][T16723]  ? trace_hrtimer_init+0x19d/0x220
[  789.540838][T16723]  ? __hrtimer_init+0x106/0x2c0
[  789.545728][T16723]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  789.551508][T16723]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  789.557608][T16723]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  789.564226][T16723]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  789.569553][T16723]  hwsim_new_radio_nl+0xb42/0x12b0
[  789.574705][T16723]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  789.580304][T16723]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  789.587711][T16723]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  789.595119][T16723]  genl_family_rcv_msg_doit+0x202/0x2f0
[  789.600696][T16723]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  789.606801][T16723]  ? bpf_lsm_capable+0x9/0x10
[  789.611514][T16723]  ? security_capable+0x7e/0x260
[  789.616492][T16723]  ? ns_capable+0xd7/0x110
[  789.620931][T16723]  genl_rcv_msg+0x565/0x800
[  789.625473][T16723]  ? __pfx_genl_rcv_msg+0x10/0x10
[  789.630539][T16723]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  789.636123][T16723]  netlink_rcv_skb+0x165/0x410
[  789.640914][T16723]  ? __pfx_genl_rcv_msg+0x10/0x10
[  789.645969][T16723]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  789.651287][T16723]  ? down_read+0xc9/0x330
[  789.655637][T16723]  ? __pfx_down_read+0x10/0x10
[  789.660418][T16723]  ? netlink_deliver_tap+0x1ae/0xcf0
[  789.665739][T16723]  genl_rcv+0x28/0x40
[  789.669745][T16723]  netlink_unicast+0x53c/0x7f0
[  789.674537][T16723]  ? __pfx_netlink_unicast+0x10/0x10
[  789.679866][T16723]  ? __phys_addr_symbol+0x30/0x80
[  789.684926][T16723]  ? __check_object_size+0x488/0x710
[  789.690245][T16723]  netlink_sendmsg+0x8b8/0xd70
[  789.695038][T16723]  ? __pfx_netlink_sendmsg+0x10/0x10
[  789.700357][T16723]  ____sys_sendmsg+0x9ae/0xb40
[  789.705263][T16723]  ? copy_msghdr_from_user+0x10b/0x160
[  789.710748][T16723]  ? __pfx_____sys_sendmsg+0x10/0x10
[  789.716086][T16723]  ___sys_sendmsg+0x135/0x1e0
[  789.720794][T16723]  ? __pfx____sys_sendmsg+0x10/0x10
[  789.726039][T16723]  ? __pfx_lock_release+0x10/0x10
[  789.731095][T16723]  ? trace_lock_acquire+0x14a/0x1d0
[  789.736334][T16723]  ? __fget_files+0x206/0x3a0
[  789.741049][T16723]  __sys_sendmsg+0x16e/0x220
[  789.745662][T16723]  ? __pfx___sys_sendmsg+0x10/0x10
[  789.750788][T16723]  ? __x64_sys_futex+0x1e1/0x4c0
[  789.755770][T16723]  do_syscall_64+0xcd/0x250
[  789.760293][T16723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  789.766225][T16723] RIP: 0033:0x7f6de837e819
[  789.770663][T16723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  789.790318][T16723] RSP: 002b:00007f6de9189038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  789.798759][T16723] RAX: ffffffffffffffda RBX: 00007f6de8535fa0 RCX: 00007f6de837e819
[  789.806839][T16723] RDX: 0000000024000054 RSI: 0000000020000000 RDI: 0000000000000003
[  789.814834][T16723] RBP: 00007f6de83f175e R08: 0000000000000000 R09: 0000000000000000
[  789.822828][T16723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  789.830814][T16723] R13: 0000000000000000 R14: 00007f6de8535fa0 R15: 00007fff6b0c0e88
[  789.838819][T16723]  </TASK>
[  790.802192][T16767] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2765'.
[  792.097835][T16805] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2782'.
[  792.127245][T16807] nbd: couldn't find a device at index -4
[  792.595463][T16807] nfsd: Unknown parameter 'IPVS'
[  792.743432][   T29] audit: type=1326 audit(11577.019:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16806 comm="syz.7.2783" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6de837e819 code=0x0
[  793.694639][T16832] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2787'.
[  808.969096][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  808.975470][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  836.646673][   T54] Bluetooth: hci1: command 0x0406 tx timeout
[  836.657111][   T54] Bluetooth: hci0: command 0x0406 tx timeout
[  852.006464][T13917] Bluetooth: hci4: command 0x0406 tx timeout
[  870.410331][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  870.417079][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  931.848965][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  931.855316][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  946.566538][   T30] INFO: task kworker/u8:0:11 blocked for more than 143 seconds.
[  946.574229][   T30]       Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  946.582021][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  946.590995][   T30] task:kworker/u8:0    state:D stack:23904 pid:11    tgid:11    ppid:2      flags:0x00004000
[  946.601446][   T30] Workqueue: ext4-rsv-conversion ext4_end_io_rsv_work
[  946.608439][   T30] Call Trace:
[  946.611778][   T30]  <TASK>
[  946.614709][   T30]  __schedule+0xe5a/0x5ae0
[  946.619334][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  946.624592][   T30]  ? hlock_class+0x4e/0x130
[  946.629273][   T30]  ? mark_lock+0xb5/0xc60
[  946.633651][   T30]  ? __pfx___schedule+0x10/0x10
[  946.638621][   T30]  ? schedule+0x298/0x350
[  946.642987][   T30]  ? __pfx_lock_release+0x10/0x10
[  946.648160][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  946.654115][   T30]  ? lock_acquire+0x2f/0xb0
[  946.658746][   T30]  ? schedule+0x1fd/0x350
[  946.663109][   T30]  schedule+0xe7/0x350
[  946.667444][   T30]  io_schedule+0xbf/0x130
[  946.671833][   T30]  bit_wait_io+0x15/0xe0
[  946.676140][   T30]  __wait_on_bit+0x62/0x180
[  946.680769][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  946.685769][   T30]  out_of_line_wait_on_bit+0xda/0x110
[  946.691384][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  946.697517][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  946.703012][   T30]  do_get_write_access+0x933/0x1270
[  946.708596][   T30]  jbd2_journal_get_write_access+0x1d6/0x280
[  946.714622][   T30]  __ext4_journal_get_write_access+0x6a/0x390
[  946.720800][   T30]  ext4_ext_get_access+0x87/0x120
[  946.725866][   T30]  ext4_ext_map_blocks+0x2526/0x5a30
[  946.731383][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  946.736698][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  946.741938][   T30]  ? hlock_class+0x4e/0x130
[  946.746613][   T30]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  946.752286][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  946.758832][   T30]  ? rcu_is_watching+0x12/0xc0
[  946.763648][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  946.769001][   T30]  ? ext4_map_blocks+0x352/0x1370
[  946.774157][   T30]  ? lock_acquire+0x2f/0xb0
[  946.778820][   T30]  ? ext4_map_blocks+0x352/0x1370
[  946.783889][   T30]  ? __pfx_down_write+0x10/0x10
[  946.788926][   T30]  ext4_map_blocks+0x457/0x1370
[  946.793874][   T30]  ? __pfx_ext4_map_blocks+0x10/0x10
[  946.799383][   T30]  ? start_this_handle+0xd00/0x1430
[  946.804666][   T30]  ? __pfx_start_this_handle+0x10/0x10
[  946.810337][   T30]  ext4_convert_unwritten_extents+0x2b7/0x4c0
[  946.816787][   T30]  ? trace_jbd2_handle_start+0x1b4/0x240
[  946.822460][   T30]  ? __pfx_ext4_convert_unwritten_extents+0x10/0x10
[  946.829229][   T30]  ? __ext4_journal_start_reserved+0x24b/0x530
[  946.835418][   T30]  ? ext4_convert_unwritten_io_end_vec+0x3d/0x280
[  946.841947][   T30]  ext4_convert_unwritten_io_end_vec+0x127/0x280
[  946.848469][   T30]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  946.854320][   T30]  ext4_end_io_rsv_work+0x2ca/0x690
[  946.860507][   T30]  ? rcu_is_watching+0x12/0xc0
[  946.865467][   T30]  ? __pfx_ext4_end_io_rsv_work+0x10/0x10
[  946.871374][   T30]  ? lock_acquire+0x2f/0xb0
[  946.875948][   T30]  ? process_one_work+0x8bb/0x1b30
[  946.881185][   T30]  process_one_work+0x958/0x1b30
[  946.886443][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  946.892249][   T30]  ? __pfx_process_one_work+0x10/0x10
[  946.897756][   T30]  ? assign_work+0x1a0/0x250
[  946.902383][   T30]  worker_thread+0x6c8/0xf00
[  946.907227][   T30]  ? __pfx_worker_thread+0x10/0x10
[  946.912381][   T30]  kthread+0x2c1/0x3a0
[  946.916546][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  946.921806][   T30]  ? __pfx_kthread+0x10/0x10
[  946.926803][   T30]  ret_from_fork+0x45/0x80
[  946.931260][   T30]  ? __pfx_kthread+0x10/0x10
[  946.935888][   T30]  ret_from_fork_asm+0x1a/0x30
[  946.940776][   T30]  </TASK>
[  946.943921][   T30] INFO: task jbd2/sda1-8:5179 blocked for more than 143 seconds.
[  946.951854][   T30]       Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  946.960027][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  946.968896][   T30] task:jbd2/sda1-8     state:D stack:26432 pid:5179  tgid:5179  ppid:2      flags:0x00004000
[  946.979266][   T30] Call Trace:
[  946.982566][   T30]  <TASK>
[  946.985505][   T30]  __schedule+0xe5a/0x5ae0
[  946.990121][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  946.995371][   T30]  ? __pfx___schedule+0x10/0x10
[  947.000321][   T30]  ? schedule+0x298/0x350
[  947.004688][   T30]  ? __pfx_lock_release+0x10/0x10
[  947.009913][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  947.015153][   T30]  ? lock_acquire+0x2f/0xb0
[  947.019815][   T30]  ? schedule+0x1fd/0x350
[  947.024186][   T30]  schedule+0xe7/0x350
[  947.028407][   T30]  io_schedule+0xbf/0x130
[  947.032773][   T30]  bit_wait_io+0x15/0xe0
[  947.037389][   T30]  __wait_on_bit+0x62/0x180
[  947.041947][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  947.047136][   T30]  out_of_line_wait_on_bit+0xda/0x110
[  947.052563][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  947.058664][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  947.065042][   T30]  ? __pfx___might_resched+0x10/0x10
[  947.071764][   T30]  ? jbd2_journal_commit_transaction+0x313b/0x6ac0
[  947.078512][   T30]  __wait_on_buffer+0x64/0x70
[  947.083256][   T30]  jbd2_journal_commit_transaction+0x3bf0/0x6ac0
[  947.090030][   T30]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[  947.096873][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  947.102212][   T30]  ? __try_to_del_timer_sync+0x116/0x170
[  947.108022][   T30]  ? __pfx_lock_release+0x10/0x10
[  947.113093][   T30]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  947.119020][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  947.124267][   T30]  kjournald2+0x1f8/0x760
[  947.129020][   T30]  ? __kthread_parkme+0xb7/0x220
[  947.134011][   T30]  ? __pfx_kjournald2+0x10/0x10
[  947.139057][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  947.145253][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  947.150830][   T30]  ? __kthread_parkme+0x148/0x220
[  947.155888][   T30]  ? __pfx_kjournald2+0x10/0x10
[  947.160839][   T30]  kthread+0x2c1/0x3a0
[  947.165638][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  947.171051][   T30]  ? __pfx_kthread+0x10/0x10
[  947.175684][   T30]  ret_from_fork+0x45/0x80
[  947.180216][   T30]  ? __pfx_kthread+0x10/0x10
[  947.184874][   T30]  ret_from_fork_asm+0x1a/0x30
[  947.189842][   T30]  </TASK>
[  947.192973][   T30] INFO: task kworker/u8:14:8189 blocked for more than 143 seconds.
[  947.201065][   T30]       Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  947.210819][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  947.221244][   T30] task:kworker/u8:14   state:D stack:23072 pid:8189  tgid:8189  ppid:2      flags:0x00004000
[  947.231610][   T30] Workqueue: writeback wb_workfn (flush-8:0)
[  947.237704][   T30] Call Trace:
[  947.241005][   T30]  <TASK>
[  947.243942][   T30]  __schedule+0xe5a/0x5ae0
[  947.249081][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  947.254348][   T30]  ? __pfx___schedule+0x10/0x10
[  947.259353][   T30]  ? schedule+0x298/0x350
[  947.263721][   T30]  ? __pfx_lock_release+0x10/0x10
[  947.269394][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  947.274642][   T30]  ? lock_acquire+0x2f/0xb0
[  947.279370][   T30]  ? schedule+0x1fd/0x350
[  947.283754][   T30]  schedule+0xe7/0x350
[  947.287961][   T30]  io_schedule+0xbf/0x130
[  947.292333][   T30]  bit_wait_io+0x15/0xe0
[  947.296651][   T30]  __wait_on_bit+0x62/0x180
[  947.301194][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  947.306205][   T30]  out_of_line_wait_on_bit+0xda/0x110
[  947.311611][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  947.317695][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  947.323210][   T30]  do_get_write_access+0x933/0x1270
[  947.328540][   T30]  jbd2_journal_get_write_access+0x1d6/0x280
[  947.334577][   T30]  __ext4_journal_get_write_access+0x6a/0x390
[  947.341110][   T30]  ext4_mb_mark_context+0x176/0xdb0
[  947.346666][   T30]  ? __pfx_lock_release+0x10/0x10
[  947.351749][   T30]  ? __pfx_ext4_mb_mark_context+0x10/0x10
[  947.357629][   T30]  ext4_mb_mark_diskspace_used+0x467/0x8c0
[  947.363499][   T30]  ? ext4_mb_use_preallocated.constprop.0+0xd2/0x1520
[  947.371913][   T30]  ? __pfx_ext4_mb_mark_diskspace_used+0x10/0x10
[  947.378871][   T30]  ? kmem_cache_alloc_noprof+0x174/0x2f0
[  947.384571][   T30]  ? ext4_mb_new_blocks+0x951/0x4e80
[  947.391461][   T30]  ext4_mb_new_blocks+0xa33/0x4e80
[  947.397514][   T30]  ? bh_uptodate_or_lock+0x3c/0x140
[  947.402762][   T30]  ? __read_extent_tree_block+0x2ca/0x630
[  947.408846][   T30]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[  947.414437][   T30]  ? ext4_ext_search_right+0x2c7/0xb80
[  947.420097][   T30]  ext4_ext_map_blocks+0x1bca/0x5a30
[  947.425421][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  947.430705][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  947.435968][   T30]  ? stack_depot_save_flags+0x28/0x900
[  947.441553][   T30]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  947.447327][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  947.453010][   T30]  ? rcu_is_watching+0x12/0xc0
[  947.458208][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  947.463481][   T30]  ? ext4_map_blocks+0x352/0x1370
[  947.469743][   T30]  ? lock_acquire+0x2f/0xb0
[  947.474953][   T30]  ? ext4_map_blocks+0x352/0x1370
[  947.480478][   T30]  ? __pfx_down_write+0x10/0x10
[  947.485372][   T30]  ext4_map_blocks+0x457/0x1370
[  947.490481][   T30]  ? __pfx_ext4_map_blocks+0x10/0x10
[  947.495802][   T30]  ? rcu_is_watching+0x12/0xc0
[  947.500667][   T30]  ? trace_kmem_cache_alloc+0x2d/0xe0
[  947.506087][   T30]  ext4_do_writepages+0x198c/0x32f0
[  947.511469][   T30]  ? __pfx_ext4_do_writepages+0x10/0x10
[  947.517127][   T30]  ? do_writepages+0x1b3/0x820
[  947.521930][   T30]  ? ext4_writepages+0x303/0x730
[  947.527055][   T30]  ext4_writepages+0x303/0x730
[  947.531851][   T30]  ? __pfx_ext4_writepages+0x10/0x10
[  947.537244][   T30]  ? __pfx_mark_lock+0x10/0x10
[  947.542056][   T30]  ? __pfx_ext4_writepages+0x10/0x10
[  947.547557][   T30]  do_writepages+0x1b3/0x820
[  947.552202][   T30]  ? __pfx_do_writepages+0x10/0x10
[  947.557425][   T30]  ? writeback_sb_inodes+0x3a6/0xfa0
[  947.562738][   T30]  ? reacquire_held_locks+0x20b/0x4c0
[  947.568335][   T30]  ? writeback_sb_inodes+0x3a6/0xfa0
[  947.574513][   T30]  ? find_held_lock+0x2d/0x110
[  947.579450][   T30]  ? wbc_attach_and_unlock_inode+0xee/0x110
[  947.585429][   T30]  __writeback_single_inode+0x166/0xfa0
[  947.591410][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  947.596935][   T30]  ? __pfx___writeback_single_inode+0x10/0x10
[  947.603080][   T30]  ? do_raw_spin_unlock+0x172/0x230
[  947.608500][   T30]  writeback_sb_inodes+0x603/0xfa0
[  947.613667][   T30]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  947.619471][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  947.624809][   T30]  __writeback_inodes_wb+0xff/0x2e0
[  947.630169][   T30]  ? __pfx___writeback_inodes_wb+0x10/0x10
[  947.636006][   T30]  ? wb_writeback+0x3f8/0xb60
[  947.640797][   T30]  wb_writeback+0x72d/0xb60
[  947.645330][   T30]  ? __pfx_wb_writeback+0x10/0x10
[  947.650505][   T30]  ? get_nr_dirty_inodes+0x171/0x1e0
[  947.655825][   T30]  wb_workfn+0x8c3/0xbc0
[  947.660189][   T30]  ? __pfx_wb_workfn+0x10/0x10
[  947.664980][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  947.670839][   T30]  ? lock_acquire+0x2f/0xb0
[  947.675385][   T30]  ? process_one_work+0x8bb/0x1b30
[  947.681478][   T30]  process_one_work+0x958/0x1b30
[  947.686750][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  947.692434][   T30]  ? __pfx_process_one_work+0x10/0x10
[  947.698200][   T30]  ? assign_work+0x1a0/0x250
[  947.702836][   T30]  worker_thread+0x6c8/0xf00
[  947.707586][   T30]  ? __pfx_worker_thread+0x10/0x10
[  947.712742][   T30]  kthread+0x2c1/0x3a0
[  947.716948][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  947.722185][   T30]  ? __pfx_kthread+0x10/0x10
[  947.726953][   T30]  ret_from_fork+0x45/0x80
[  947.731420][   T30]  ? __pfx_kthread+0x10/0x10
[  947.736088][   T30]  ret_from_fork_asm+0x1a/0x30
[  947.741031][   T30]  </TASK>
[  947.744164][   T30] INFO: task syz.9.2765:16755 blocked for more than 144 seconds.
[  947.752508][   T30]       Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  947.759931][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  947.768790][   T30] task:syz.9.2765      state:D stack:25808 pid:16755 tgid:16755 ppid:15956  flags:0x00000004
[  947.779993][   T30] Call Trace:
[  947.783302][   T30]  <TASK>
[  947.786432][   T30]  __schedule+0xe5a/0x5ae0
[  947.790892][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  947.796268][   T30]  ? hlock_class+0x4e/0x130
[  947.800788][   T30]  ? mark_lock+0xb5/0xc60
[  947.805139][   T30]  ? __pfx___schedule+0x10/0x10
[  947.810420][   T30]  ? schedule+0x298/0x350
[  947.814811][   T30]  ? __pfx_lock_release+0x10/0x10
[  947.819965][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  947.825203][   T30]  ? lock_acquire+0x2f/0xb0
[  947.829878][   T30]  ? schedule+0x1fd/0x350
[  947.834244][   T30]  schedule+0xe7/0x350
[  947.838435][   T30]  io_schedule+0xbf/0x130
[  947.842802][   T30]  bit_wait_io+0x15/0xe0
[  947.847199][   T30]  __wait_on_bit+0x62/0x180
[  947.851742][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  947.856789][   T30]  out_of_line_wait_on_bit+0xda/0x110
[  947.862221][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  947.868545][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  947.874055][   T30]  do_get_write_access+0x933/0x1270
[  947.879441][   T30]  jbd2_journal_get_write_access+0x1d6/0x280
[  947.886293][   T30]  __ext4_journal_get_write_access+0x6a/0x390
[  947.892442][   T30]  ext4_reserve_inode_write+0x13b/0x270
[  947.898167][   T30]  __ext4_mark_inode_dirty+0x1a6/0x890
[  947.903661][   T30]  ? ext4_dirty_inode+0xd9/0x130
[  947.908753][   T30]  ? rcu_is_watching+0x12/0xc0
[  947.913550][   T30]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  947.919880][   T30]  ? rcu_is_watching+0x12/0xc0
[  947.924683][   T30]  ? trace_jbd2_handle_start+0x1b4/0x240
[  947.930466][   T30]  ? jbd2__journal_start+0xf6/0x6a0
[  947.935706][   T30]  ? __ext4_journal_start_sb+0x358/0x660
[  947.941531][   T30]  ? __ext4_journal_start_sb+0x206/0x660
[  947.947346][   T30]  ? ext4_dirty_inode+0xa1/0x130
[  947.952322][   T30]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  947.957833][   T30]  ext4_dirty_inode+0xd9/0x130
[  947.962637][   T30]  ? rcu_is_watching+0x12/0xc0
[  947.967610][   T30]  __mark_inode_dirty+0x1f6/0xe60
[  947.972694][   T30]  generic_update_time+0xcf/0xf0
[  947.977774][   T30]  file_update_time+0x17d/0x1c0
[  947.982681][   T30]  ext4_page_mkwrite+0x368/0x1760
[  947.988815][   T30]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  947.994339][   T30]  ? lock_acquire+0x2f/0xb0
[  947.998966][   T30]  ? __pte_offset_map+0x42/0x540
[  948.003954][   T30]  do_page_mkwrite+0x177/0x380
[  948.008970][   T30]  do_pte_missing+0x29e/0x3e70
[  948.013787][   T30]  ? lock_vma_under_rcu+0x13e/0x980
[  948.019129][   T30]  __handle_mm_fault+0x100a/0x2a10
[  948.024286][   T30]  ? __pfx_lock_release+0x10/0x10
[  948.029704][   T30]  ? lock_vma_under_rcu+0x13e/0x980
[  948.034943][   T30]  ? __pfx___handle_mm_fault+0x10/0x10
[  948.040933][   T30]  handle_mm_fault+0x3fa/0xaa0
[  948.045749][   T30]  do_user_addr_fault+0x60d/0x13f0
[  948.051052][   T30]  exc_page_fault+0x5c/0xc0
[  948.055594][   T30]  asm_exc_page_fault+0x26/0x30
[  948.060576][   T30] RIP: 0033:0x7f496965d536
[  948.065018][   T30] RSP: 002b:00007ffeba3cb250 EFLAGS: 00010202
[  948.071285][   T30] RAX: 000000000005b008 RBX: 00007f496a465720 RCX: 0000000000000000
[  948.079356][   T30] RDX: 0000001b308c5000 RSI: 0000000000000008 RDI: 00007f496a465720
[  948.088492][   T30] RBP: ffffffff8155c827 R08: 00007f49671f6050 R09: 00007f4969922000
[  948.096593][   T30] R10: 00007f49671f6008 R11: 0000000000000013 R12: 000000000000021e
[  948.104595][   T30] R13: 00007f49699362d8 R14: 000000000000003d R15: fffffffffffa5000
[  948.112847][   T30]  ? touch_wq_lockdep_map+0x47/0x1c0
[  948.118350][   T30]  </TASK>
[  948.121398][   T30] INFO: task syz.8.2779:16809 blocked for more than 144 seconds.
[  948.129297][   T30]       Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  948.136922][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  948.145610][   T30] task:syz.8.2779      state:D stack:24624 pid:16809 tgid:16809 ppid:15643  flags:0x00004002
[  948.155960][   T30] Call Trace:
[  948.159361][   T30]  <TASK>
[  948.162314][   T30]  __schedule+0xe5a/0x5ae0
[  948.167145][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  948.172402][   T30]  ? hlock_class+0x4e/0x130
[  948.177083][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  948.182336][   T30]  ? __pfx___schedule+0x10/0x10
[  948.187362][   T30]  ? schedule+0x298/0x350
[  948.192419][   T30]  ? __pfx_lock_release+0x10/0x10
[  948.197603][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  948.202842][   T30]  ? lock_acquire+0x2f/0xb0
[  948.207529][   T30]  ? schedule+0x1fd/0x350
[  948.211892][   T30]  schedule+0xe7/0x350
[  948.215967][   T30]  io_schedule+0xbf/0x130
[  948.220398][   T30]  folio_wait_bit_common+0x3d8/0x9b0
[  948.225727][   T30]  ? folio_wait_bit_common+0x13c/0x9b0
[  948.231404][   T30]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  948.237348][   T30]  ? __pfx_wake_page_function+0x10/0x10
[  948.242936][   T30]  ? __filemap_get_folio+0x2a5/0xaf0
[  948.248651][   T30]  filemap_fault+0xd7a/0x2820
[  948.253377][   T30]  ? __pfx_filemap_fault+0x10/0x10
[  948.258579][   T30]  ? do_pte_missing+0xddf/0x3e70
[  948.263562][   T30]  ? __pfx_lock_release+0x10/0x10
[  948.268757][   T30]  __do_fault+0x10a/0x490
[  948.273127][   T30]  do_pte_missing+0xec5/0x3e70
[  948.278008][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  948.283703][   T30]  ? rcu_is_watching+0x12/0xc0
[  948.288652][   T30]  __handle_mm_fault+0x100a/0x2a10
[  948.294726][   T30]  ? __pfx___handle_mm_fault+0x10/0x10
[  948.300313][   T30]  ? __pfx_lock_release+0x10/0x10
[  948.305384][   T30]  ? follow_page_pte+0x50d/0x1eb0
[  948.310588][   T30]  handle_mm_fault+0x3fa/0xaa0
[  948.315411][   T30]  __get_user_pages+0x8d9/0x3b50
[  948.320588][   T30]  ? __pfx___get_user_pages+0x10/0x10
[  948.326005][   T30]  ? down_read_killable+0xcc/0x380
[  948.331503][   T30]  ? __pfx_down_read_killable+0x10/0x10
[  948.337451][   T30]  ? shmem_file_write_iter+0xcf/0x140
[  948.342870][   T30]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  948.348847][   T30]  ? __kernel_write_iter+0x59f/0xa80
[  948.354198][   T30]  get_dump_page+0xfb/0x220
[  948.358932][   T30]  ? __pfx_get_dump_page+0x10/0x10
[  948.364081][   T30]  ? __pfx___might_resched+0x10/0x10
[  948.369675][   T30]  dump_user_range+0x135/0x8c0
[  948.374491][   T30]  ? __pfx_dump_user_range+0x10/0x10
[  948.379905][   T30]  ? elf_coredump_extra_notes_write+0xbe/0x430
[  948.386093][   T30]  ? __pfx_writenote+0x10/0x10
[  948.391044][   T30]  elf_core_dump+0x2766/0x3840
[  948.396764][   T30]  ? __pfx_elf_core_dump+0x10/0x10
[  948.402367][   T30]  ? kasan_save_stack+0x42/0x60
[  948.407520][   T30]  ? kasan_save_stack+0x33/0x60
[  948.412427][   T30]  ? __kasan_kmalloc+0xaa/0xb0
[  948.417298][   T30]  ? __kmalloc_node_noprof+0x211/0x440
[  948.422776][   T30]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  948.428406][   T30]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  948.434341][   T30]  ? asm_exc_page_fault+0x26/0x30
[  948.439524][   T30]  ? rcu_is_watching+0x12/0xc0
[  948.444323][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  948.449735][   T30]  ? get_signal+0x23f3/0x2610
[  948.454445][   T30]  ? do_coredump+0x2c42/0x4160
[  948.459309][   T30]  do_coredump+0x2c42/0x4160
[  948.463929][   T30]  ? __pfx_do_coredump+0x10/0x10
[  948.469033][   T30]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  948.475174][   T30]  get_signal+0x23f3/0x2610
[  948.479994][   T30]  ? force_sig_fault+0xad/0xf0
[  948.484809][   T30]  ? __pfx_get_signal+0x10/0x10
[  948.490163][   T30]  arch_do_signal_or_restart+0x90/0x7e0
[  948.496676][   T30]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  948.502883][   T30]  ? __bad_area_nosemaphore+0x334/0x6a0
[  948.508614][   T30]  ? do_user_addr_fault+0x920/0x13f0
[  948.513946][   T30]  irqentry_exit_to_user_mode+0x13f/0x280
[  948.519771][   T30]  asm_exc_page_fault+0x26/0x30
[  948.524660][   T30] RIP: 0033:0x401000
[  948.528750][   T30] RSP: 002b:000000000000000a EFLAGS: 00010257
[  948.534844][   T30] RAX: 0000000000000002 RBX: 00007f6249335fa0 RCX: 00007f624917e819
[  948.542966][   T30] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46
[  948.551803][   T30] RBP: 00007f62491f175e R08: 0000000000000002 R09: 0000000000000000
[  948.559987][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  948.568138][   T30] R13: 0000000000000000 R14: 00007f6249335fa0 R15: 00007ffe124e3a58
[  948.576617][   T30]  </TASK>
[  948.579752][   T30] INFO: task syz.8.2779:16813 blocked for more than 145 seconds.
[  948.587889][   T30]       Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  948.595208][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  948.604749][   T30] task:syz.8.2779      state:D stack:23536 pid:16813 tgid:16813 ppid:15643  flags:0x00004002
[  948.615140][   T30] Call Trace:
[  948.618489][   T30]  <TASK>
[  948.621423][   T30]  __schedule+0xe5a/0x5ae0
[  948.625855][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  948.631229][   T30]  ? hlock_class+0x4e/0x130
[  948.635775][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  948.641079][   T30]  ? __pfx___schedule+0x10/0x10
[  948.645964][   T30]  ? schedule+0x298/0x350
[  948.650463][   T30]  ? __pfx_lock_release+0x10/0x10
[  948.655523][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  948.660846][   T30]  ? lock_acquire+0x2f/0xb0
[  948.665389][   T30]  ? schedule+0x1fd/0x350
[  948.669964][   T30]  schedule+0xe7/0x350
[  948.674159][   T30]  io_schedule+0xbf/0x130
[  948.678638][   T30]  folio_wait_bit_common+0x3d8/0x9b0
[  948.683969][   T30]  ? folio_wait_bit_common+0x13c/0x9b0
[  948.689644][   T30]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  948.695521][   T30]  ? __pfx_wake_page_function+0x10/0x10
[  948.702207][   T30]  ? __filemap_get_folio+0x2a5/0xaf0
[  948.707722][   T30]  filemap_fault+0xd7a/0x2820
[  948.712446][   T30]  ? __pfx_filemap_fault+0x10/0x10
[  948.717657][   T30]  ? do_pte_missing+0xddf/0x3e70
[  948.722628][   T30]  ? __pfx_lock_release+0x10/0x10
[  948.727931][   T30]  __do_fault+0x10a/0x490
[  948.732306][   T30]  do_pte_missing+0xec5/0x3e70
[  948.737175][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  948.742851][   T30]  ? rcu_is_watching+0x12/0xc0
[  948.747777][   T30]  __handle_mm_fault+0x100a/0x2a10
[  948.752934][   T30]  ? __pfx___handle_mm_fault+0x10/0x10
[  948.758514][   T30]  ? __pfx_lock_release+0x10/0x10
[  948.763627][   T30]  ? follow_page_pte+0x50d/0x1eb0
[  948.768831][   T30]  handle_mm_fault+0x3fa/0xaa0
[  948.773634][   T30]  __get_user_pages+0x8d9/0x3b50
[  948.778780][   T30]  ? __pfx___get_user_pages+0x10/0x10
[  948.784203][   T30]  ? down_read_killable+0xcc/0x380
[  948.789475][   T30]  ? __pfx_down_read_killable+0x10/0x10
[  948.795054][   T30]  ? shmem_file_write_iter+0xcf/0x140
[  948.800551][   T30]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  948.807683][   T30]  ? __kernel_write_iter+0x59f/0xa80
[  948.813028][   T30]  get_dump_page+0xfb/0x220
[  948.817645][   T30]  ? __pfx_get_dump_page+0x10/0x10
[  948.822784][   T30]  ? __pfx___might_resched+0x10/0x10
[  948.828257][   T30]  ? copy_mc_enhanced_fast_string+0xa/0x13
[  948.834114][   T30]  dump_user_range+0x135/0x8c0
[  948.839012][   T30]  ? __pfx_dump_user_range+0x10/0x10
[  948.844341][   T30]  ? elf_coredump_extra_notes_write+0xbe/0x430
[  948.850684][   T30]  ? __pfx_writenote+0x10/0x10
[  948.855486][   T30]  elf_core_dump+0x2766/0x3840
[  948.860361][   T30]  ? __pfx_elf_core_dump+0x10/0x10
[  948.865667][   T30]  ? kasan_save_stack+0x42/0x60
[  948.870711][   T30]  ? kasan_save_stack+0x33/0x60
[  948.875642][   T30]  ? __kasan_kmalloc+0xaa/0xb0
[  948.880532][   T30]  ? __kmalloc_node_noprof+0x211/0x440
[  948.886026][   T30]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  948.891696][   T30]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  948.897706][   T30]  ? asm_exc_stack_segment+0x26/0x30
[  948.903057][   T30]  ? rcu_is_watching+0x12/0xc0
[  948.908824][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  948.914070][   T30]  ? get_signal+0x23f3/0x2610
[  948.919099][   T30]  ? do_coredump+0x2c42/0x4160
[  948.923888][   T30]  do_coredump+0x2c42/0x4160
[  948.929009][   T30]  ? __pfx_do_coredump+0x10/0x10
[  948.934002][   T30]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  948.940089][   T30]  get_signal+0x23f3/0x2610
[  948.944650][   T30]  ? __pfx_get_signal+0x10/0x10
[  948.949691][   T30]  ? __pfx_force_sig+0x10/0x10
[  948.954521][   T30]  arch_do_signal_or_restart+0x90/0x7e0
[  948.960215][   T30]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  948.966569][   T30]  ? trace_irq_disable.constprop.0+0xe4/0x130
[  948.972693][   T30]  irqentry_exit_to_user_mode+0x13f/0x280
[  948.978663][   T30]  asm_exc_stack_segment+0x26/0x30
[  948.983914][   T30] RIP: 0033:0x7f624917e821
[  948.988513][   T30] RSP: 002b:7fffffffffffffff EFLAGS: 00010217
[  948.994617][   T30] RAX: 0000000000000000 RBX: 00007f6249335fa0 RCX: 00007f624917e819
[  949.002764][   T30] RDX: ffffffffffffffff RSI: 7fffffffffffffff RDI: 0000000000000007
[  949.011594][   T30] RBP: 00007f62491f175e R08: 0000000000000001 R09: 0000000000000000
[  949.019712][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  949.027933][   T30] R13: 0000000000000000 R14: 00007f6249335fa0 R15: 00007ffe124e3a58
[  949.035919][   T30]  </TASK>
[  949.039043][   T30] INFO: task syz.7.2783:16820 blocked for more than 145 seconds.
[  949.046947][   T30]       Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  949.054246][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  949.063004][   T30] task:syz.7.2783      state:D stack:24088 pid:16820 tgid:16820 ppid:15640  flags:0x00004002
[  949.073356][   T30] Call Trace:
[  949.076739][   T30]  <TASK>
[  949.079736][   T30]  __schedule+0xe5a/0x5ae0
[  949.084192][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  949.089591][   T30]  ? hlock_class+0x4e/0x130
[  949.094147][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  949.099519][   T30]  ? __pfx___schedule+0x10/0x10
[  949.104432][   T30]  ? schedule+0x298/0x350
[  949.108999][   T30]  ? __pfx_lock_release+0x10/0x10
[  949.114871][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  949.120249][   T30]  ? lock_acquire+0x2f/0xb0
[  949.124802][   T30]  ? schedule+0x1fd/0x350
[  949.129315][   T30]  schedule+0xe7/0x350
[  949.133422][   T30]  io_schedule+0xbf/0x130
[  949.138121][   T30]  folio_wait_bit_common+0x3d8/0x9b0
[  949.143457][   T30]  ? folio_wait_bit_common+0x13c/0x9b0
[  949.149123][   T30]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  949.154974][   T30]  ? __pfx_wake_page_function+0x10/0x10
[  949.160602][   T30]  ? __filemap_get_folio+0x2a5/0xaf0
[  949.165923][   T30]  filemap_fault+0xd7a/0x2820
[  949.170770][   T30]  ? __pfx_filemap_fault+0x10/0x10
[  949.175995][   T30]  ? do_pte_missing+0xddf/0x3e70
[  949.181064][   T30]  ? __pfx_lock_release+0x10/0x10
[  949.186132][   T30]  __do_fault+0x10a/0x490
[  949.190691][   T30]  do_pte_missing+0xec5/0x3e70
[  949.195486][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  949.201230][   T30]  ? rcu_is_watching+0x12/0xc0
[  949.206031][   T30]  __handle_mm_fault+0x100a/0x2a10
[  949.211550][   T30]  ? __pfx___handle_mm_fault+0x10/0x10
[  949.218169][   T30]  ? __pfx_lock_release+0x10/0x10
[  949.223308][   T30]  ? follow_page_pte+0x50d/0x1eb0
[  949.230223][   T30]  handle_mm_fault+0x3fa/0xaa0
[  949.235057][   T30]  __get_user_pages+0x8d9/0x3b50
[  949.240201][   T30]  ? __pfx___get_user_pages+0x10/0x10
[  949.245619][   T30]  ? down_read_killable+0xcc/0x380
[  949.251212][   T30]  ? __pfx_down_read_killable+0x10/0x10
[  949.256904][   T30]  ? shmem_file_write_iter+0xcf/0x140
[  949.262308][   T30]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  949.268257][   T30]  ? __kernel_write_iter+0x59f/0xa80
[  949.273588][   T30]  get_dump_page+0xfb/0x220
[  949.278227][   T30]  ? __pfx_get_dump_page+0x10/0x10
[  949.283385][   T30]  ? __pfx___might_resched+0x10/0x10
[  949.288854][   T30]  dump_user_range+0x135/0x8c0
[  949.293655][   T30]  ? __pfx_dump_user_range+0x10/0x10
[  949.299043][   T30]  ? elf_coredump_extra_notes_write+0xbe/0x430
[  949.305226][   T30]  ? __pfx_writenote+0x10/0x10
[  949.310208][   T30]  elf_core_dump+0x2766/0x3840
[  949.315890][   T30]  ? __pfx_elf_core_dump+0x10/0x10
[  949.321123][   T30]  ? kasan_save_stack+0x42/0x60
[  949.326010][   T30]  ? kasan_save_stack+0x33/0x60
[  949.331097][   T30]  ? __kasan_kmalloc+0xaa/0xb0
[  949.335902][   T30]  ? __kmalloc_node_noprof+0x211/0x440
[  949.341499][   T30]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  949.347151][   T30]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  949.353103][   T30]  ? asm_exc_page_fault+0x26/0x30
[  949.358519][   T30]  ? rcu_is_watching+0x12/0xc0
[  949.363348][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  949.368784][   T30]  ? get_signal+0x23f3/0x2610
[  949.373498][   T30]  ? do_coredump+0x2c42/0x4160
[  949.378385][   T30]  do_coredump+0x2c42/0x4160
[  949.383011][   T30]  ? __pfx_do_coredump+0x10/0x10
[  949.388103][   T30]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  949.394097][   T30]  get_signal+0x23f3/0x2610
[  949.398743][   T30]  ? force_sig_fault+0xad/0xf0
[  949.403547][   T30]  ? __pfx_get_signal+0x10/0x10
[  949.408558][   T30]  arch_do_signal_or_restart+0x90/0x7e0
[  949.414147][   T30]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  949.421293][   T30]  ? __bad_area_nosemaphore+0x334/0x6a0
[  949.427093][   T30]  ? do_user_addr_fault+0x920/0x13f0
[  949.432423][   T30]  irqentry_exit_to_user_mode+0x13f/0x280
[  949.438315][   T30]  asm_exc_page_fault+0x26/0x30
[  949.443214][   T30] RIP: 0033:0x10000000
[  949.447473][   T30] RSP: 002b:000000000000000e EFLAGS: 00010217
[  949.453563][   T30] RAX: 0000000000000000 RBX: 00007f6de8536080 RCX: 00007f6de837e819
[  949.461660][   T30] RDX: ffffffff81000000 RSI: 0000000000000006 RDI: 0000000081000005
[  949.469913][   T30] RBP: 00007f6de83f175e R08: 0000000080000001 R09: 0000000000000000
[  949.477983][   T30] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  949.485998][   T30] R13: 0000000000000001 R14: 00007f6de8536080 R15: 00007fff6b0c0e88
[  949.494177][   T30]  ? 0xffffffff81000000
[  949.498454][   T30]  </TASK>
[  949.501540][   T30] INFO: task syz.7.2783:16821 blocked for more than 146 seconds.
[  949.509432][   T30]       Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  949.516825][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  949.526470][   T30] task:syz.7.2783      state:D stack:24656 pid:16821 tgid:16821 ppid:15640  flags:0x00004002
[  949.536757][   T30] Call Trace:
[  949.540035][   T30]  <TASK>
[  949.542962][   T30]  __schedule+0xe5a/0x5ae0
[  949.547602][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  949.552845][   T30]  ? hlock_class+0x4e/0x130
[  949.557468][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  949.562713][   T30]  ? __pfx___schedule+0x10/0x10
[  949.567735][   T30]  ? schedule+0x298/0x350
[  949.572107][   T30]  ? __pfx_lock_release+0x10/0x10
[  949.577484][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  949.582725][   T30]  ? lock_acquire+0x2f/0xb0
[  949.587440][   T30]  ? schedule+0x1fd/0x350
[  949.591822][   T30]  schedule+0xe7/0x350
[  949.595921][   T30]  io_schedule+0xbf/0x130
[  949.600346][   T30]  folio_wait_bit_common+0x3d8/0x9b0
[  949.605667][   T30]  ? folio_wait_bit_common+0x13c/0x9b0
[  949.611538][   T30]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  949.617491][   T30]  ? __pfx_wake_page_function+0x10/0x10
[  949.623785][   T30]  ? __filemap_get_folio+0x2a5/0xaf0
[  949.629274][   T30]  filemap_fault+0xd7a/0x2820
[  949.633992][   T30]  ? __pfx_filemap_fault+0x10/0x10
[  949.639249][   T30]  ? do_pte_missing+0xddf/0x3e70
[  949.644233][   T30]  ? __pfx_lock_release+0x10/0x10
[  949.649486][   T30]  __do_fault+0x10a/0x490
[  949.653872][   T30]  do_pte_missing+0xec5/0x3e70
[  949.658769][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  949.664415][   T30]  ? rcu_is_watching+0x12/0xc0
[  949.669361][   T30]  __handle_mm_fault+0x100a/0x2a10
[  949.674536][   T30]  ? __pfx___handle_mm_fault+0x10/0x10
[  949.680112][   T30]  ? __pfx_lock_release+0x10/0x10
[  949.685212][   T30]  ? follow_page_pte+0x50d/0x1eb0
[  949.690655][   T30]  handle_mm_fault+0x3fa/0xaa0
[  949.695471][   T30]  __get_user_pages+0x8d9/0x3b50
[  949.700953][   T30]  ? __pfx___get_user_pages+0x10/0x10
[  949.706526][   T30]  ? down_read_killable+0xcc/0x380
[  949.711699][   T30]  ? __pfx_down_read_killable+0x10/0x10
[  949.717368][   T30]  ? shmem_file_write_iter+0xcf/0x140
[  949.722956][   T30]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  949.729873][   T30]  ? __kernel_write_iter+0x59f/0xa80
[  949.735255][   T30]  get_dump_page+0xfb/0x220
[  949.739879][   T30]  ? __pfx_get_dump_page+0x10/0x10
[  949.745013][   T30]  ? __pfx___might_resched+0x10/0x10
[  949.750526][   T30]  ? copy_mc_enhanced_fast_string+0xa/0x13
[  949.756452][   T30]  dump_user_range+0x135/0x8c0
[  949.761292][   T30]  ? __pfx_dump_user_range+0x10/0x10
[  949.766846][   T30]  ? elf_coredump_extra_notes_write+0xbe/0x430
[  949.773066][   T30]  ? __pfx_writenote+0x10/0x10
[  949.777955][   T30]  elf_core_dump+0x2766/0x3840
[  949.782789][   T30]  ? __pfx_elf_core_dump+0x10/0x10
[  949.788371][   T30]  ? kasan_save_stack+0x42/0x60
[  949.793307][   T30]  ? kasan_save_stack+0x33/0x60
[  949.798530][   T30]  ? __kasan_kmalloc+0xaa/0xb0
[  949.803344][   T30]  ? __kmalloc_node_noprof+0x211/0x440
[  949.808976][   T30]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  949.814467][   T30]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  949.820491][   T30]  ? asm_exc_page_fault+0x26/0x30
[  949.825578][   T30]  ? rcu_is_watching+0x12/0xc0
[  949.831224][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  949.836564][   T30]  ? get_signal+0x23f3/0x2610
[  949.841278][   T30]  ? do_coredump+0x2c42/0x4160
[  949.846056][   T30]  do_coredump+0x2c42/0x4160
[  949.850822][   T30]  ? __pfx_do_coredump+0x10/0x10
[  949.855788][   T30]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  949.861847][   T30]  get_signal+0x23f3/0x2610
[  949.866700][   T30]  ? force_sig_fault+0xad/0xf0
[  949.871495][   T30]  ? __pfx_get_signal+0x10/0x10
[  949.876495][   T30]  arch_do_signal_or_restart+0x90/0x7e0
[  949.882080][   T30]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  949.888392][   T30]  ? __bad_area_nosemaphore+0x334/0x6a0
[  949.893995][   T30]  ? do_user_addr_fault+0x920/0x13f0
[  949.899415][   T30]  irqentry_exit_to_user_mode+0x13f/0x280
[  949.905180][   T30]  asm_exc_page_fault+0x26/0x30
[  949.910492][   T30] RIP: 0033:0x10000000
[  949.914611][   T30] RSP: 002b:000000000000000e EFLAGS: 00010217
[  949.920836][   T30] RAX: 0000000000000000 RBX: 00007f6de8535fa0 RCX: 00007f6de837e819
[  949.929784][   T30] RDX: 0000000020000000 RSI: 0000000000000006 RDI: 0000000000000004
[  949.937869][   T30] RBP: 00007f6de83f175e R08: 0000000000000000 R09: 0000000000000000
[  949.945863][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  949.954023][   T30] R13: 0000000000000000 R14: 00007f6de8535fa0 R15: 00007fff6b0c0e88
[  949.962109][   T30]  </TASK>
[  949.965142][   T30] INFO: task syz.7.2791:16842 blocked for more than 146 seconds.
[  949.973075][   T30]       Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  949.980449][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  949.989296][   T30] task:syz.7.2791      state:D stack:28384 pid:16842 tgid:16842 ppid:15640  flags:0x00000004
[  949.999647][   T30] Call Trace:
[  950.002969][   T30]  <TASK>
[  950.005908][   T30]  __schedule+0xe5a/0x5ae0
[  950.010484][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  950.015738][   T30]  ? hlock_class+0x4e/0x130
[  950.020692][   T30]  ? mark_lock+0xb5/0xc60
[  950.025080][   T30]  ? __pfx___schedule+0x10/0x10
[  950.030133][   T30]  ? schedule+0x298/0x350
[  950.035223][   T30]  ? __pfx_lock_release+0x10/0x10
[  950.040413][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  950.045678][   T30]  ? lock_acquire+0x2f/0xb0
[  950.050371][   T30]  ? schedule+0x1fd/0x350
[  950.054745][   T30]  schedule+0xe7/0x350
[  950.058928][   T30]  io_schedule+0xbf/0x130
[  950.063291][   T30]  bit_wait_io+0x15/0xe0
[  950.067711][   T30]  __wait_on_bit+0x62/0x180
[  950.072259][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  950.077329][   T30]  out_of_line_wait_on_bit+0xda/0x110
[  950.082741][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  950.088930][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  950.094425][   T30]  do_get_write_access+0x933/0x1270
[  950.099842][   T30]  jbd2_journal_get_write_access+0x1d6/0x280
[  950.105896][   T30]  __ext4_journal_get_write_access+0x6a/0x390
[  950.112182][   T30]  ext4_reserve_inode_write+0x13b/0x270
[  950.117862][   T30]  __ext4_mark_inode_dirty+0x1a6/0x890
[  950.123366][   T30]  ? ext4_dirty_inode+0xd9/0x130
[  950.128862][   T30]  ? rcu_is_watching+0x12/0xc0
[  950.134633][   T30]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  950.140785][   T30]  ? rcu_is_watching+0x12/0xc0
[  950.145582][   T30]  ? trace_jbd2_handle_start+0x1b4/0x240
[  950.151398][   T30]  ? jbd2__journal_start+0xf6/0x6a0
[  950.156714][   T30]  ? __ext4_journal_start_sb+0x358/0x660
[  950.162378][   T30]  ? __ext4_journal_start_sb+0x206/0x660
[  950.168518][   T30]  ? ext4_dirty_inode+0xa1/0x130
[  950.173532][   T30]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  950.179056][   T30]  ext4_dirty_inode+0xd9/0x130
[  950.183872][   T30]  ? rcu_is_watching+0x12/0xc0
[  950.188867][   T30]  __mark_inode_dirty+0x1f6/0xe60
[  950.193953][   T30]  generic_update_time+0xcf/0xf0
[  950.199015][   T30]  file_update_time+0x17d/0x1c0
[  950.203911][   T30]  ext4_page_mkwrite+0x368/0x1760
[  950.209162][   T30]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  950.214856][   T30]  ? pte_alloc_one+0x2a3/0x390
[  950.219755][   T30]  do_page_mkwrite+0x177/0x380
[  950.224570][   T30]  do_pte_missing+0x29e/0x3e70
[  950.229506][   T30]  ? do_raw_spin_unlock+0x172/0x230
[  950.234743][   T30]  ? __pmd_alloc+0x380/0x860
[  950.240535][   T30]  __handle_mm_fault+0x100a/0x2a10
[  950.245700][   T30]  ? __pfx_lock_release+0x10/0x10
[  950.251110][   T30]  ? lock_vma_under_rcu+0x13e/0x980
[  950.256510][   T30]  ? __pfx___handle_mm_fault+0x10/0x10
[  950.262026][   T30]  handle_mm_fault+0x3fa/0xaa0
[  950.266990][   T30]  do_user_addr_fault+0x60d/0x13f0
[  950.272156][   T30]  exc_page_fault+0x5c/0xc0
[  950.276810][   T30]  asm_exc_page_fault+0x26/0x30
[  950.281724][   T30] RIP: 0033:0x7f6de8251c11
[  950.286369][   T30] RSP: 002b:00007fff6b0c0ff0 EFLAGS: 00010246
[  950.292490][   T30] RAX: 00000000003ffdf0 RBX: 0000000000000000 RCX: 0000000000000000
[  950.300587][   T30] RDX: 0000001b2c020000 RSI: 0000000000400000 RDI: 00007f6de8472290
[  950.308788][   T30] RBP: 00007fff6b0c124c R08: 0000000000000004 R09: 0000000000040000
[  950.316962][   T30] R10: 0000000000000011 R11: 0000000000000293 R12: 0000000000000032
[  950.324989][   T30] R13: 00000000000c1cd2 R14: 00000000000c1b60 R15: 00007fff6b0c12a0
[  950.333187][   T30]  </TASK>
[  950.336314][   T30] INFO: task syz.6.2790:16843 blocked for more than 147 seconds.
[  950.344787][   T30]       Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  950.352651][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  950.361448][   T30] task:syz.6.2790      state:D stack:28384 pid:16843 tgid:16843 ppid:14990  flags:0x00000004
[  950.371803][   T30] Call Trace:
[  950.375107][   T30]  <TASK>
[  950.378128][   T30]  __schedule+0xe5a/0x5ae0
[  950.382585][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  950.388007][   T30]  ? hlock_class+0x4e/0x130
[  950.392552][   T30]  ? mark_lock+0xb5/0xc60
[  950.397073][   T30]  ? __pfx___schedule+0x10/0x10
[  950.401983][   T30]  ? schedule+0x298/0x350
[  950.406921][   T30]  ? __pfx_lock_release+0x10/0x10
[  950.412029][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  950.417346][   T30]  ? lock_acquire+0x2f/0xb0
[  950.421868][   T30]  ? schedule+0x1fd/0x350
[  950.426438][   T30]  schedule+0xe7/0x350
[  950.430575][   T30]  io_schedule+0xbf/0x130
[  950.435010][   T30]  bit_wait_io+0x15/0xe0
[  950.439442][   T30]  __wait_on_bit+0x62/0x180
[  950.444992][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  950.450190][   T30]  out_of_line_wait_on_bit+0xda/0x110
[  950.455632][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  950.462008][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  950.467703][   T30]  do_get_write_access+0x933/0x1270
[  950.472988][   T30]  jbd2_journal_get_write_access+0x1d6/0x280
[  950.479098][   T30]  __ext4_journal_get_write_access+0x6a/0x390
[  950.485215][   T30]  ext4_reserve_inode_write+0x13b/0x270
[  950.491056][   T30]  __ext4_mark_inode_dirty+0x1a6/0x890
[  950.496811][   T30]  ? ext4_dirty_inode+0xd9/0x130
[  950.501824][   T30]  ? rcu_is_watching+0x12/0xc0
[  950.506898][   T30]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  950.512977][   T30]  ? rcu_is_watching+0x12/0xc0
[  950.517859][   T30]  ? trace_jbd2_handle_start+0x1b4/0x240
[  950.523546][   T30]  ? jbd2__journal_start+0xf6/0x6a0
[  950.528949][   T30]  ? __ext4_journal_start_sb+0x358/0x660
[  950.534624][   T30]  ? __ext4_journal_start_sb+0x206/0x660
[  950.540406][   T30]  ? ext4_dirty_inode+0xa1/0x130
[  950.546114][   T30]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  950.551687][   T30]  ext4_dirty_inode+0xd9/0x130
[  950.556570][   T30]  ? rcu_is_watching+0x12/0xc0
[  950.561400][   T30]  __mark_inode_dirty+0x1f6/0xe60
[  950.567144][   T30]  generic_update_time+0xcf/0xf0
[  950.572145][   T30]  file_update_time+0x17d/0x1c0
[  950.577135][   T30]  ext4_page_mkwrite+0x368/0x1760
[  950.582205][   T30]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  950.587936][   T30]  ? pte_alloc_one+0x2a3/0x390
[  950.593133][   T30]  do_page_mkwrite+0x177/0x380
[  950.598104][   T30]  do_pte_missing+0x29e/0x3e70
[  950.603022][   T30]  ? do_raw_spin_unlock+0x172/0x230
[  950.608430][   T30]  ? __pmd_alloc+0x380/0x860
[  950.613107][   T30]  __handle_mm_fault+0x100a/0x2a10
[  950.618344][   T30]  ? __pfx_lock_release+0x10/0x10
[  950.623410][   T30]  ? lock_vma_under_rcu+0x13e/0x980
[  950.628806][   T30]  ? __pfx___handle_mm_fault+0x10/0x10
[  950.634327][   T30]  handle_mm_fault+0x3fa/0xaa0
[  950.639200][   T30]  do_user_addr_fault+0x60d/0x13f0
[  950.644363][   T30]  exc_page_fault+0x5c/0xc0
[  950.650003][   T30]  asm_exc_page_fault+0x26/0x30
[  950.654921][   T30] RIP: 0033:0x7fc993e51c11
[  950.659434][   T30] RSP: 002b:00007ffcfa1afa70 EFLAGS: 00010246
[  950.665538][   T30] RAX: 00000000003ffdf0 RBX: 0000000000000000 RCX: 0000000000000000
[  950.673701][   T30] RDX: 0000001b2bf20000 RSI: 0000000000400000 RDI: 00007fc994072290
[  950.682259][   T30] RBP: 00007ffcfa1afccc R08: 0000000000000004 R09: 0000000000040000
[  950.690470][   T30] R10: 0000000000000011 R11: 0000000000000293 R12: 0000000000000032
[  950.698568][   T30] R13: 00000000000c1ca4 R14: 00000000000c1bec R15: 00007ffcfa1afd20
[  950.706763][   T30]  </TASK>
[  950.709829][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  950.719063][   T30] INFO: task syz.8.2792:16844 blocked for more than 147 seconds.
[  950.727064][   T30]       Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  950.734405][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  950.743208][   T30] task:syz.8.2792      state:D stack:28384 pid:16844 tgid:16844 ppid:15643  flags:0x00000004
[  950.754231][   T30] Call Trace:
[  950.757728][   T30]  <TASK>
[  950.760699][   T30]  __schedule+0xe5a/0x5ae0
[  950.765159][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  950.770557][   T30]  ? hlock_class+0x4e/0x130
[  950.775105][   T30]  ? mark_lock+0xb5/0xc60
[  950.779567][   T30]  ? __pfx___schedule+0x10/0x10
[  950.784467][   T30]  ? schedule+0x298/0x350
[  950.789331][   T30]  ? __pfx_lock_release+0x10/0x10
[  950.794408][   T30]  ? trace_lock_acquire+0x14a/0x1d0
[  950.799785][   T30]  ? lock_acquire+0x2f/0xb0
[  950.804342][   T30]  ? schedule+0x1fd/0x350
[  950.809002][   T30]  schedule+0xe7/0x350
[  950.813127][   T30]  io_schedule+0xbf/0x130
[  950.817563][   T30]  bit_wait_io+0x15/0xe0
[  950.821845][   T30]  __wait_on_bit+0x62/0x180
[  950.826545][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  950.831723][   T30]  out_of_line_wait_on_bit+0xda/0x110
[  950.837255][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  950.843297][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  950.848930][   T30]  do_get_write_access+0x933/0x1270
[  950.854908][   T30]  jbd2_journal_get_write_access+0x1d6/0x280
[  950.861100][   T30]  __ext4_journal_get_write_access+0x6a/0x390
[  950.867617][   T30]  ext4_reserve_inode_write+0x13b/0x270
[  950.873219][   T30]  __ext4_mark_inode_dirty+0x1a6/0x890
[  950.878856][   T30]  ? ext4_dirty_inode+0xd9/0x130
[  950.883867][   T30]  ? rcu_is_watching+0x12/0xc0
[  950.888878][   T30]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  950.894916][   T30]  ? rcu_is_watching+0x12/0xc0
[  950.900034][   T30]  ? trace_jbd2_handle_start+0x1b4/0x240
[  950.905728][   T30]  ? jbd2__journal_start+0xf6/0x6a0
[  950.911193][   T30]  ? __ext4_journal_start_sb+0x358/0x660
[  950.917021][   T30]  ? __ext4_journal_start_sb+0x206/0x660
[  950.922870][   T30]  ? ext4_dirty_inode+0xa1/0x130
[  950.928049][   T30]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  950.933576][   T30]  ext4_dirty_inode+0xd9/0x130
[  950.938542][   T30]  ? rcu_is_watching+0x12/0xc0
[  950.943354][   T30]  __mark_inode_dirty+0x1f6/0xe60
[  950.948601][   T30]  generic_update_time+0xcf/0xf0
[  950.954373][   T30]  file_update_time+0x17d/0x1c0
[  950.959420][   T30]  ext4_page_mkwrite+0x368/0x1760
[  950.964517][   T30]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  950.970178][   T30]  ? pte_alloc_one+0x2a3/0x390
[  950.974982][   T30]  do_page_mkwrite+0x177/0x380
[  950.979914][   T30]  do_pte_missing+0x29e/0x3e70
[  950.984719][   T30]  ? do_raw_spin_unlock+0x172/0x230
[  950.990104][   T30]  ? __pmd_alloc+0x380/0x860
[  950.994740][   T30]  __handle_mm_fault+0x100a/0x2a10
[  950.999973][   T30]  ? __pfx_lock_release+0x10/0x10
[  951.005038][   T30]  ? lock_vma_under_rcu+0x13e/0x980
[  951.010651][   T30]  ? __pfx___handle_mm_fault+0x10/0x10
[  951.016640][   T30]  handle_mm_fault+0x3fa/0xaa0
[  951.021474][   T30]  do_user_addr_fault+0x60d/0x13f0
[  951.026811][   T30]  exc_page_fault+0x5c/0xc0
[  951.031356][   T30]  asm_exc_page_fault+0x26/0x30
[  951.036396][   T30] RIP: 0033:0x7f6249051c11
[  951.040873][   T30] RSP: 002b:00007ffe124e3bc0 EFLAGS: 00010246
[  951.047499][   T30] RAX: 00000000003ffdf0 RBX: 0000000000000000 RCX: 0000000000000000
[  951.056482][   T30] RDX: 0000001b2c120000 RSI: 0000000000400000 RDI: 00007f6249272290
[  951.064750][   T30] RBP: 00007ffe124e3e1c R08: 0000000000000004 R09: 0000000000040000
[  951.073062][   T30] R10: 0000000000000011 R11: 0000000000000293 R12: 0000000000000032
[  951.081249][   T30] R13: 00000000000c1c78 R14: 00000000000c1477 R15: 00007ffe124e3e70
[  951.089872][   T30]  </TASK>
[  951.092974][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  951.102277][   T30] 
[  951.102277][   T30] Showing all locks held in the system:
[  951.110217][   T30] 4 locks held by kworker/u8:0/11:
[  951.115362][   T30]  #0: ffff88814e8ed148 ((wq_completion)ext4-rsv-conversion){+.+.}-{0:0}, at: process_one_work+0x1212/0x1b30
[  951.127441][   T30]  #1: ffffc90000107d80 ((work_completion)(&ei->i_rsv_conversion_work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30
[  951.140136][   T30]  #2: ffff88814ea50958 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xf6c/0x1430
[  951.150091][   T30]  #3: ffff88807c0fb410 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x352/0x1370
[  951.161069][   T30] 4 locks held by kworker/u8:1/12:
[  951.166417][   T30] 1 lock held by khungtaskd/30:
[  951.171291][   T30]  #0: ffffffff8ddba640 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x7f/0x390
[  951.181299][   T30] 2 locks held by getty/5599:
[  951.186003][   T30]  #0: ffff88814d37e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  951.196015][   T30]  #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0xfba/0x1480
[  951.206624][   T30] 3 locks held by syz-executor/5829:
[  951.211935][   T30]  #0: ffff888022f59808 (&vma->vm_lock->lock){++++}-{4:4}, at: lock_vma_under_rcu+0x13e/0x980
[  951.222346][   T30]  #1: ffff88814e954518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x177/0x380
[  951.232063][   T30]  #2: ffff88814ea50958 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xf6c/0x1430
[  951.242073][   T30] 6 locks held by kworker/u8:14/8189:
[  951.247630][   T30]  #0: ffff88801fec4148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x1212/0x1b30
[  951.258483][   T30]  #1: ffffc90018e97d80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30
[  951.272666][   T30]  #2: ffff88814e9540e0 (&type->s_umount_key#32){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0
[  951.283414][   T30]  #3: ffff88814e956b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b3/0x820
[  951.294031][   T30]  #4: ffff88814ea50958 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xf6c/0x1430
[  951.303888][   T30]  #5: ffff88807c018c70 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x352/0x1370
[  951.314107][   T30] 3 locks held by syz.9.2765/16755:
[  951.319521][   T30]  #0: ffff88803121a9b8 (&vma->vm_lock->lock){++++}-{4:4}, at: lock_vma_under_rcu+0x13e/0x980
[  951.330044][   T30]  #1: ffff88814e954518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x177/0x380
[  951.339684][   T30]  #2: ffff88814ea50958 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xf6c/0x1430
[  951.349767][   T30] 2 locks held by syz.8.2779/16809:
[  951.354983][   T30]  #0: ffff888094f1c420 (sb_writers#5){.+.+}-{0:0}, at: get_signal+0x23f3/0x2610
[  951.365073][   T30]  #1: ffff88807c574fe0 (&mm->mmap_lock){++++}-{4:4}, at: get_dump_page+0xb6/0x220
[  951.375020][   T30] 2 locks held by syz.8.2779/16813:
[  951.380504][   T30]  #0: ffff888094f1c420 (sb_writers#5){.+.+}-{0:0}, at: get_signal+0x23f3/0x2610
[  951.389863][   T30]  #1: ffff88807db69f20 (&mm->mmap_lock){++++}-{4:4}, at: get_dump_page+0xb6/0x220
[  951.399359][   T30] 2 locks held by syz.7.2783/16820:
[  951.404595][   T30]  #0: ffff88809033e420 (sb_writers#5){.+.+}-{0:0}, at: get_signal+0x23f3/0x2610
[  951.414103][   T30]  #1: ffff888032af6360 (&mm->mmap_lock){++++}-{4:4}, at: get_dump_page+0xb6/0x220
[  951.423622][   T30] 2 locks held by syz.7.2783/16821:
[  951.428998][   T30]  #0: ffff88809033e420 (sb_writers#5){.+.+}-{0:0}, at: get_signal+0x23f3/0x2610
[  951.438236][   T30]  #1: ffff888032af6d20 (&mm->mmap_lock){++++}-{4:4}, at: get_dump_page+0xb6/0x220
[  951.447768][   T30] 3 locks held by syz.7.2791/16842:
[  951.452986][   T30]  #0: ffff8880494fb9b8 (&vma->vm_lock->lock){++++}-{4:4}, at: lock_vma_under_rcu+0x13e/0x980
[  951.463596][   T30]  #1: ffff88814e954518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x177/0x380
[  951.474063][   T30]  #2: ffff88814ea50958 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xf6c/0x1430
[  951.483833][   T30] 3 locks held by syz.6.2790/16843:
[  951.489260][   T30]  #0: ffff888068839658 (&vma->vm_lock->lock){++++}-{4:4}, at: lock_vma_under_rcu+0x13e/0x980
[  951.499680][   T30]  #1: ffff88814e954518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x177/0x380
[  951.509550][   T30]  #2: ffff88814ea50958 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xf6c/0x1430
[  951.519605][   T30] 3 locks held by syz.8.2792/16844:
[  951.524847][   T30]  #0: ffff888065936a90 (&vma->vm_lock->lock){++++}-{4:4}, at: lock_vma_under_rcu+0x13e/0x980
[  951.535454][   T30]  #1: ffff88814e954518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x177/0x380
[  951.545172][   T30]  #2: ffff88814ea50958 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xf6c/0x1430
[  951.554978][   T30] 
[  951.557372][   T30] =============================================
[  951.557372][   T30] 
[  951.565848][   T30] NMI backtrace for cpu 0
[  951.570208][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  951.580377][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  951.590437][   T30] Call Trace:
[  951.593711][   T30]  <TASK>
[  951.596639][   T30]  dump_stack_lvl+0x116/0x1f0
[  951.601328][   T30]  nmi_cpu_backtrace+0x27b/0x390
[  951.606267][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  951.612249][   T30]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  951.618250][   T30]  watchdog+0xf0c/0x1240
[  951.622548][   T30]  ? __pfx_watchdog+0x10/0x10
[  951.627261][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  951.632496][   T30]  ? __kthread_parkme+0x148/0x220
[  951.637528][   T30]  ? __pfx_watchdog+0x10/0x10
[  951.642228][   T30]  kthread+0x2c1/0x3a0
[  951.646311][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  951.651528][   T30]  ? __pfx_kthread+0x10/0x10
[  951.656137][   T30]  ret_from_fork+0x45/0x80
[  951.660579][   T30]  ? __pfx_kthread+0x10/0x10
[  951.665177][   T30]  ret_from_fork_asm+0x1a/0x30
[  951.669999][   T30]  </TASK>
[  951.673995][   T30] Sending NMI from CPU 0 to CPUs 1:
[  951.679984][    C1] NMI backtrace for cpu 1
[  951.680018][    C1] CPU: 1 UID: 0 PID: 12 Comm: kworker/u8:1 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  951.680072][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  951.680089][    C1] Workqueue: events_unbound cfg80211_wiphy_work
[  951.680128][    C1] RIP: 0010:__sanitizer_cov_trace_pc+0x66/0x70
[  951.680172][    C1] Code: 82 f8 15 00 00 83 f8 02 75 20 48 8b 8a 00 16 00 00 8b 92 fc 15 00 00 48 8b 01 48 83 c0 01 48 39 d0 73 07 48 89 01 48 89 34 c1 <c3> cc cc cc cc 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90
[  951.680199][    C1] RSP: 0018:ffffc90000117958 EFLAGS: 00000293
[  951.680220][    C1] RAX: 0000000000000000 RBX: 000000000000000c RCX: ffffffff8a9387a8
[  951.680238][    C1] RDX: ffff88801bef5a00 RSI: ffffffff8a9388b7 RDI: 0000000000000006
[  951.680257][    C1] RBP: 000000000000000c R08: 0000000000000006 R09: 000000000000000c
[  951.680274][    C1] R10: 000000000000000c R11: 0000000000000004 R12: 0000000000000000
[  951.680291][    C1] R13: dffffc0000000000 R14: 000000000000000c R15: 0000000000000008
[  951.680308][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  951.680335][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  951.680355][    C1] CR2: 000055ffd0c94680 CR3: 000000000db7e000 CR4: 00000000003526f0
[  951.680373][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  951.680390][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  951.680407][    C1] Call Trace:
[  951.680416][    C1]  <NMI>
[  951.680427][    C1]  ? nmi_cpu_backtrace+0x1d8/0x390
[  951.680463][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  951.680504][    C1]  ? nmi_handle+0x1a9/0x5c0
[  951.680532][    C1]  ? __sanitizer_cov_trace_pc+0x66/0x70
[  951.680571][    C1]  ? default_do_nmi+0x6a/0x160
[  951.680603][    C1]  ? exc_nmi+0x170/0x1e0
[  951.680632][    C1]  ? end_repeat_nmi+0xf/0x53
[  951.680661][    C1]  ? ieee80211_sta_get_rates+0x2f8/0x650
[  951.680687][    C1]  ? ieee80211_sta_get_rates+0x407/0x650
[  951.680713][    C1]  ? __sanitizer_cov_trace_pc+0x66/0x70
[  951.680752][    C1]  ? __sanitizer_cov_trace_pc+0x66/0x70
[  951.680792][    C1]  ? __sanitizer_cov_trace_pc+0x66/0x70
[  951.680830][    C1]  </NMI>
[  951.680838][    C1]  <TASK>
[  951.680847][    C1]  ieee80211_sta_get_rates+0x407/0x650
[  951.680879][    C1]  ieee80211_ibss_rx_queued_mgmt+0x103e/0x3030
[  951.680914][    C1]  ? hlock_class+0x4e/0x130
[  951.680950][    C1]  ? __pfx_ieee80211_ibss_rx_queued_mgmt+0x10/0x10
[  951.680983][    C1]  ? lock_acquire.part.0+0x11b/0x380
[  951.681023][    C1]  ? find_held_lock+0x2d/0x110
[  951.681053][    C1]  ? find_held_lock+0x2d/0x110
[  951.681096][    C1]  ? kcov_remote_start+0x370/0x6e0
[  951.681138][    C1]  ? mark_held_locks+0x9f/0xe0
[  951.681177][    C1]  ? kcov_remote_start+0x3cf/0x6e0
[  951.681219][    C1]  ieee80211_iface_work+0xc0b/0xf00
[  951.681256][    C1]  cfg80211_wiphy_work+0x3d9/0x550
[  951.681289][    C1]  process_one_work+0x958/0x1b30
[  951.681334][    C1]  ? __pfx_cfg80211_wiphy_work+0x10/0x10
[  951.681366][    C1]  ? __pfx_process_one_work+0x10/0x10
[  951.681410][    C1]  ? assign_work+0x1a0/0x250
[  951.681449][    C1]  worker_thread+0x6c8/0xf00
[  951.681495][    C1]  ? __pfx_worker_thread+0x10/0x10
[  951.681535][    C1]  kthread+0x2c1/0x3a0
[  951.681564][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  951.681599][    C1]  ? __pfx_kthread+0x10/0x10
[  951.681630][    C1]  ret_from_fork+0x45/0x80
[  951.681653][    C1]  ? __pfx_kthread+0x10/0x10
[  951.681684][    C1]  ret_from_fork_asm+0x1a/0x30
[  951.681729][    C1]  </TASK>
[  951.682214][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  952.029290][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  952.039468][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  952.049542][   T30] Call Trace:
[  952.052834][   T30]  <TASK>
[  952.055781][   T30]  dump_stack_lvl+0x3d/0x1f0
[  952.060449][   T30]  panic+0x71d/0x800
[  952.064382][   T30]  ? __pfx_panic+0x10/0x10
[  952.068825][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  952.074227][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  952.080244][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  952.085656][   T30]  ? watchdog+0xd76/0x1240
[  952.090118][   T30]  ? watchdog+0xd69/0x1240
[  952.094569][   T30]  watchdog+0xd87/0x1240
[  952.098848][   T30]  ? __pfx_watchdog+0x10/0x10
[  952.103571][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  952.108818][   T30]  ? __kthread_parkme+0x148/0x220
[  952.113870][   T30]  ? __pfx_watchdog+0x10/0x10
[  952.118577][   T30]  kthread+0x2c1/0x3a0
[  952.122667][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  952.127907][   T30]  ? __pfx_kthread+0x10/0x10
[  952.132530][   T30]  ret_from_fork+0x45/0x80
[  952.136980][   T30]  ? __pfx_kthread+0x10/0x10
[  952.141604][   T30]  ret_from_fork_asm+0x1a/0x30
[  952.146408][   T30]  </TASK>
[  952.149726][   T30] Kernel Offset: disabled
[  952.154059][   T30] Rebooting in 86400 seconds..