last executing test programs:

5.553482581s ago: executing program 1 (id=1322):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
socket(0x1f, 0x800, 0xffffff01)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0)
socket(0x28, 0x1, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1400fe00e4e819d1eba5df4b92b50cc7c1119b183cb8c20711833e16fef33721c375387424ae26cfad96b2ad946a", @ANYRES16, @ANYBLOB="01002dbd7000f9dbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="b3ac3fb4a05156f5206c000000", @ANYRES16, @ANYBLOB="000225bd7000fedbdf250400000014001f00fc01000000000000000000000000000114002000fc000000000000000000000000000000060003001e0b000006001a004e2100000500140000000000050014000800000006001a004e20000008000a00a6000000"], 0x6c}, 0x1, 0x0, 0x0, 0x4000000}, 0x5)
r0 = open$auto(&(0x7f0000000200)='./file0\x00', 0x49193, 0xff90)
ioctl$auto_PPPIOCGFLAGS(r0, 0x8004745a, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
syz_genetlink_get_family_id$auto_ila(0x0, 0xffffffffffffffff)

5.226881408s ago: executing program 1 (id=1324):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f0000000040)={0x0, 0x1, 0x5})
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/032/001\x00', 0x28402, 0x0)
r2 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
r3 = socket(0xa, 0x3, 0x3a)
bind$auto(r3, &(0x7f0000000180)=@vsock={0x28, 0x0, 0x2711}, 0x18)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty1\x00', 0x2400, 0x0)
ioctl$auto(r4, 0x4b66, 0xd2b6)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000000)=ANY=[@ANYRESDEC=r4, @ANYRES16=r2, @ANYBLOB="010025bd7000fddbdf2501000000080007800400000000200000"], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x8080)

4.624513181s ago: executing program 1 (id=1326):
socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x1, 0xa12a, 0xeb1, 0x400, 0x8000)
capset$auto(0x0, 0x0)
read$auto(0x3, 0x0, 0x7ffffffff000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x7, 0x3)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xfffffffffffffffb, 0x9b72, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x1, 0x200006, 0x2, 0x40eb1, 0xffffffffffffffff, 0x300000000000)
get_mempolicy$auto(0x0, 0x0, 0x7f, 0x41ff, 0x3)
write$auto(0x3, 0x0, 0x7fffffff)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x700a, 0x0)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/v4l-touch13\x00', 0x280, 0x0)
ioctl$auto(r0, 0x4020565b, 0x38)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r1, &(0x7f0000000140)="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", 0x15b)
writev$auto(0x1, 0x0, 0x1)

4.475867918s ago: executing program 3 (id=1327):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
socket(0x1f, 0x800, 0xffffff01)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0)
socket(0x28, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="2f212abd7800fddbdf2521000000"], 0x14}}, 0x4000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
madvise$auto(0x108000, 0x800034, 0xa)
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[], 0x6c}, 0x1, 0x0, 0x0, 0x44810}, 0x40045)
r2 = open$auto(&(0x7f0000000200)='./file0\x00', 0x49193, 0xff90)
ioctl$auto_PPPIOCGFLAGS(r2, 0x8004745a, 0x0)
r3 = openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$auto_COMEDI_LOCK(r3, 0x6405, 0x0)
write$auto_tomoyo_operations_securityfs_if(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r4, &(0x7f0000000c80)="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", 0x300)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
clone$auto(0xffffffff00000000, 0xf, 0x0, 0x0, 0xfffffffffffffffd)
mincore$auto(0x1000, 0x8001, 0x0)

4.306674248s ago: executing program 0 (id=1328):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlock$auto(0xfbe8, 0x4)
syz_clone(0x8124400, 0x0, 0x0, 0x0, 0x0, 0x0)
write$auto(0x3, 0x0, 0x100082)

4.217341707s ago: executing program 2 (id=1329):
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0) (async)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
mbind$auto(0xfffffffffffffffd, 0x0, 0x2, &(0x7f0000002100)=0x4, 0x7, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socket(0xa, 0x2, 0x3a)
syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff)
rt_sigprocmask$auto(0x0, 0x0, 0x0, 0x8) (async)
rt_sigprocmask$auto(0x0, 0x0, 0x0, 0x8)
r2 = socket(0xb, 0x3, 0x2)
getpeername$auto(0x3, 0x0, 0x0)
sendmsg$auto_NET_SHAPER_CMD_GET(r0, &(0x7f00000002c0)={&(0x7f0000000140), 0xc, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB="8d400000", @ANYRES16=0x0, @ANYRESOCT=r1, @ANYBLOB="dff92631c909e8237fefe94913aa589dc0df60acc1826bad2a4be2bb059616b06a930bc215de1dc30c17828fc19711a28b9ffd83e587f431d5e78ee5679e0f3961cef2b299f537ea7db310b55fe13e66d0114f4947a9cf54e5cdac99f73dea3a4fa227aae0c65db0178e17c351cd776b4f23658b633d99ebf14a0d6d4acc0020c9993c96f115a2bcd141774831df66f30d9347d79b77ebe29f521c3d01e8fdefea1894412808a849662df2fe61d46ab6", @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x10}, 0x24000800) (async)
sendmsg$auto_NET_SHAPER_CMD_GET(r0, &(0x7f00000002c0)={&(0x7f0000000140), 0xc, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB="8d400000", @ANYRES16=0x0, @ANYRESOCT=r1, @ANYBLOB="dff92631c909e8237fefe94913aa589dc0df60acc1826bad2a4be2bb059616b06a930bc215de1dc30c17828fc19711a28b9ffd83e587f431d5e78ee5679e0f3961cef2b299f537ea7db310b55fe13e66d0114f4947a9cf54e5cdac99f73dea3a4fa227aae0c65db0178e17c351cd776b4f23658b633d99ebf14a0d6d4acc0020c9993c96f115a2bcd141774831df66f30d9347d79b77ebe29f521c3d01e8fdefea1894412808a849662df2fe61d46ab6", @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x10}, 0x24000800)
mmap$auto(0xf, 0x2020009, 0x3, 0x16, 0xfffffffffffffffa, 0x8001)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @hyper}, 0x55) (async)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @hyper}, 0x55)
setsockopt$auto(0x400000000000003, 0x28, 0x0, 0x0, 0x56b) (async)
setsockopt$auto(0x400000000000003, 0x28, 0x0, 0x0, 0x56b)
read$auto_ep0_operations_inode(r3, &(0x7f0000000300)=""/106, 0x6a)
r4 = inotify_init1$auto(0x6)
mmap$auto(0x0, 0x20009, 0xfffffffffffffffa, 0xeb1, r4, 0x8000)
mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000)
mmap$auto(0x100006, 0x7ff, 0xdf, 0x9b74, r2, 0x8000)
mmap$auto(0x0, 0x100000001, 0xe2, 0xffffffffffffffff, 0x2, 0x7ffc)
set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0)
acct$auto(&(0x7f0000000380)='/dev/bus/usb/037/001\x00') (async)
acct$auto(&(0x7f0000000380)='/dev/bus/usb/037/001\x00')
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
r5 = open(&(0x7f00000001c0)='./file0\x00', 0x5b1100, 0xd4)
rename$auto(&(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='./file0\x00')
execveat$auto(r5, &(0x7f0000000200)='\x00', 0x0, 0x0, 0x1000)

3.61480061s ago: executing program 2 (id=1330):
r0 = socketcall$auto_SYS_GETPEERNAME(0x7, &(0x7f0000000040)=0x8001)
syz_genetlink_get_family_id$auto_psample(&(0x7f0000000000), r0)
r1 = socket(0x22, 0x6, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'nr0\x00', <r2=>0x0})
sendto$auto(r0, &(0x7f0000000080)="5ce6481b2dfe5efa", 0x1, 0x80, &(0x7f0000000100)=@xdp={0x2c, 0x5, <r3=>r2, 0x2b}, 0x7)
mmap$auto(0xfffffffffffffffa, 0x0, 0x43146435, 0xffffffffffffffff, r1, 0xfffffffffffffff4)
r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000180), r1)
sendmsg$auto_MACSEC_CMD_UPD_TXSA(r0, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xd4, r4, 0x1, 0x70bd29, 0x25dfdbff, {}, [@MACSEC_ATTR_RXSC_CONFIG={0xc0, 0x2, 0x0, 0x1, [@nested={0xb4, 0x145, 0x0, 0x1, [@nested={0x4, 0x4}, @nested={0x4, 0x11}, @nested={0x4, 0x28}, @generic="ad59146ea0e591d3d77ed1823ea145c3f38d8cc86f9f821075c5cd290d6500047a25bb5acc0ada1ab183bdfe80dbace3e316c5985e09bb50c88b899d0b137ca2217e5c6bad6af6a1ac2e2abee4c78bffb27bb192d6366126a297832e58d9ac8e3829614b3644398c1ac20714cde5988310f05479637ba87ffc6d055baeee892d70bc9404b830cf008fe60693875f6d9a40f956b4ac194dfdb6de518ec4cd6fab50dd43bf"]}, @typed={0x8, 0x17, 0x0, 0x0, @u32}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x20000050}, 0x4004000)
r5 = socketcall$auto_SYS_GETPEERNAME(0x7, &(0x7f0000000340)=0x7)
r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000003c0), r5)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000400)={'nicvf0\x00', <r7=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000440)={'\x00', <r8=>0x0})
sendmsg$auto_ETHTOOL_MSG_EEE_SET(r5, &(0x7f00000005c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000580)={&(0x7f0000000480)={0x100, r6, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_EEE_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_EEE_HEADER={0x80, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}]}]}, 0x100}, 0x1, 0x0, 0x0, 0x4040010}, 0x4004045)
r9 = fcntl$auto_F_DUPFD_QUERY(r1, 0x403, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r9, 0x40345410, &(0x7f0000000600)={{0x8001, 0xfffffff9, 0x6, 0x8}, "ca3983fef534d757d394c99fd54459b32c512d4c200021747a8209150eac516b"})
ioctl$auto_FIOQSIZE(r0, 0x5460, r0)
r10 = fcntl$auto_F_OFD_SETLKW(r5, 0x26, 0x0)
read$auto_set_tracer_fops_trace(r10, &(0x7f0000000640)=""/4096, 0x1000)
splice$auto(r0, &(0x7f0000001640)=0x4, r9, &(0x7f0000001680)=0x6, 0xe0c, 0x1)
r11 = syz_genetlink_get_family_id$auto_handshake(&(0x7f0000001700), r1)
sendmsg$auto_HANDSHAKE_CMD_DONE(r10, &(0x7f0000001800)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000017c0)={&(0x7f0000001740)={0x44, r11, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@HANDSHAKE_A_DONE_REMOTE_AUTH={0x8, 0x3, 0x5}, @HANDSHAKE_A_DONE_REMOTE_AUTH={0x8, 0x3, 0x10}, @HANDSHAKE_A_DONE_STATUS={0x8}, @HANDSHAKE_A_DONE_REMOTE_AUTH={0x8, 0x3, 0x7ff}, @HANDSHAKE_A_DONE_REMOTE_AUTH={0x8, 0x3, 0x8000}, @HANDSHAKE_A_DONE_REMOTE_AUTH={0x8, 0x3, 0x1}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x40000800)
r12 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001880), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_BEACON(r5, &(0x7f0000001940)={&(0x7f0000001840)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001900)={&(0x7f00000018c0)={0x2c, r12, 0x20, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0xfff8}, @NL80211_ATTR_WIPHY_ANTENNA_RX={0x8, 0x6a, 0xfffffff7}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x200000c5}, 0x4000)
semctl$auto(0x1, 0x10, 0x3, 0x401)
setsockopt$auto_SO_DETACH_FILTER(r5, 0x2, 0x1b, &(0x7f0000001980)='ethtool\x00', 0x2)
ioctl$auto_XFS_IOC_ERROR_CLEARALL(r5, 0x40085875, &(0x7f00000019c0)={r9, 0xde})
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000001a00)='/proc/self/mountinfo\x00', 0x600800, 0x0)
openat$auto_fops_x64_ro_(0xffffffffffffff9c, &(0x7f0000001a40)='/sys/kernel/debug/ieee80211/phy7/netdev:wlan0/stations/08:02:11:00:00:01/driver_buffered_tids\x00', 0xa0000, 0x0)

3.262474908s ago: executing program 3 (id=1331):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x6}, 0x5)
unshare$auto(0x40000080)
r0 = socket(0x22, 0x6, 0x8)
mmap$auto(0x401, 0xfa1, 0x100000000, 0x1e, r0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (fail_nth: 2)
r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x161802, 0x0)
openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kfence/stats\x00', 0x20000, 0x0)
r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), r0)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
socket(0x18, 0x4, 0x1)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r0, &(0x7f00000009c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000980)={&(0x7f0000000140)={0x824, r3, 0x200, 0x70bd25, 0x25dfdbfd, {}, [@HWSIM_ATTR_TX_INFO={0xc, 0x7, [{0x2, 0x22}, {0x0, 0xbe}, {0x6, 0x4}, {0x6, 0x51}]}, @HWSIM_ATTR_SIGNAL={0x8, 0x6, 0x5}, @HWSIM_ATTR_FRAME={0x2c4, 0x3, "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"}, @HWSIM_ATTR_TX_INFO={0x8, 0x7, [{0x5, 0x2}, {0xa4, 0x7}]}, @HWSIM_ATTR_PMSR_SUPPORT={0x6c, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x80000}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x60, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0xb9}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0xa}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x1f}]}]}]}, @HWSIM_ATTR_FRAME={0x4c0, 0x3, "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"}, @HWSIM_ATTR_PMSR_RESULT={0x4}]}, 0x824}, 0x1, 0x0, 0x0, 0x80}, 0x800)
ioctl$auto_IMADDTIMER(r2, 0x80044940, &(0x7f0000000040)=0x200801)
ioctl$auto(r1, 0x40046210, 0x9)
unshare$auto(0x40000080)
socket(0x1d, 0x2, 0x2)
connect$auto(0x3, 0x0, 0x55)
socket(0x10, 0x3, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

3.217730532s ago: executing program 2 (id=1332):
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
getsockopt$auto(r0, 0x84, 0x84, 0x0, &(0x7f0000000000)=0x9b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000cc0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_MPATH(r1, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000000)={0x18, r2, 0x301, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_BEACON_HEAD={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$auto_NL80211_CMD_FRAME(r0, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x104, r2, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@NL80211_ATTR_TIMED_OUT={0x4}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x2f, 0xcd, "dcdb1cb82f147bcb1a9a2a6dbf05dd446f132d15eda813f98e8b4666120c40c14da3dff10dbbbc3170bc53"}, @NL80211_ATTR_BSS_SHORT_SLOT_TIME={0x5, 0x1e, 0xa8}, @NL80211_ATTR_SCAN_FLAGS={0x8}, @NL80211_ATTR_FILS_ERP_REALM={0x5a, 0xfa, "e15642ce5313b595e0595c9caabac3bb00f5c06465f2a0abd04ed44d9bc922c803a369a66f1f47f49db421bd123f59318ad6c38a05d64a11aa6f9577fa9d6b255be73a1e1e62e020d2bf2599b431bc0d457b0a44e52e"}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0xb}, @NL80211_ATTR_MLO_TTLM_DLINK={0x44, 0x148, "61632730a362ec044f83fd8c596a839231e64a5a4dd2e3a1590e5708054c4867ce9e4e2a128becbd3cc15d614685331ca4151d1d933f21bbd81abfa002b5f903"}]}, 0x104}}, 0x11)

2.725569336s ago: executing program 2 (id=1333):
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000007480)='/dev/cec12\x00', 0x400, 0x0)
ioctl$auto_CEC_S_MODE(r0, 0x40046109, &(0x7f0000000000)=0x22) (async, rerun: 64)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (rerun: 64)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x4003, 0xb8, 0x13fd4, 0x4, 0x7ffffffff000) (async)
r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
io_uring_setup$auto(0xc, 0x0) (async)
ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x403c6f2b, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8) (async)
close_range$auto(0x2, 0x8, 0x0)

2.611975612s ago: executing program 1 (id=1334):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x6}, 0x5)
unshare$auto(0x40000080)
r0 = socket(0x22, 0x6, 0x8)
mmap$auto(0x401, 0xfa1, 0x100000000, 0x1e, r0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x161802, 0x0)
openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kfence/stats\x00', 0x20000, 0x0)
r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), r0)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
socket(0x18, 0x4, 0x1)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r0, &(0x7f00000009c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000980)={&(0x7f0000000140)={0x824, r3, 0x200, 0x70bd25, 0x25dfdbfd, {}, [@HWSIM_ATTR_TX_INFO={0xc, 0x7, [{0x2, 0x22}, {0x2, 0xbe}, {0x6, 0x4}, {0x6, 0x51}]}, @HWSIM_ATTR_SIGNAL={0x8, 0x6, 0x5}, @HWSIM_ATTR_FRAME={0x2c4, 0x3, "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"}, @HWSIM_ATTR_TX_INFO={0x8, 0x7, [{0x5, 0x2}, {0xa4, 0x7}]}, @HWSIM_ATTR_PMSR_SUPPORT={0x6c, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x80000}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x60, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0xb9}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0xa}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x1f}]}]}]}, @HWSIM_ATTR_FRAME={0x4c0, 0x3, "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"}, @HWSIM_ATTR_PMSR_RESULT={0x4}]}, 0x824}, 0x1, 0x0, 0x0, 0x80}, 0x800)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0x40047452, &(0x7f0000000a00)=0xfffffff9)
ioctl$auto_IMADDTIMER(r2, 0x80044940, &(0x7f0000000040)=0x200801)
ioctl$auto(r1, 0x40046210, 0x9)
unshare$auto(0x40000080)
socket(0x1d, 0x2, 0x2)
connect$auto(0x3, 0x0, 0x55)
socket(0x10, 0x3, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

2.519604699s ago: executing program 0 (id=1336):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
socket(0x1f, 0x800, 0xffffff01)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1400fe00e4e819d1eba5df4b92b50cc7c1119b183cb8c20711833e16fef33721c375387424ae26cfad96b2ad946a", @ANYRES16, @ANYBLOB="01002dbd7000f9dbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="b3ac3fb4a05156f5206c000000", @ANYRES16, @ANYBLOB="000225bd7000fedbdf250400000014001f00fc01000000000000000000000000000114002000fc000000000000000000000000000000060003001e0b000006001a004e2100000500140000000000050014000800000006001a004e20000008000a00a6000000"], 0x6c}, 0x1, 0x0, 0x0, 0x4000000}, 0x5)
r0 = open$auto(&(0x7f0000000200)='./file0\x00', 0x49193, 0xff90)
ioctl$auto_PPPIOCGFLAGS(r0, 0x8004745a, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
syz_genetlink_get_family_id$auto_ila(0x0, 0xffffffffffffffff)

2.146930436s ago: executing program 3 (id=1337):
r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x180800, 0x0)
read$auto(r0, 0x0, 0x39b8)

2.074156795s ago: executing program 0 (id=1338):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
socket(0xa, 0x5, 0x0)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
getpid()
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
write$auto(0x3, 0x0, 0x100082)

2.062260218s ago: executing program 3 (id=1339):
mmap$auto(0x0, 0x400008, 0x9b, 0x19, 0xffffffffffffffff, 0x4000000000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="2f212abd7800fddbdf2521000000"], 0x14}}, 0x4000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mprotect$auto(0x8000000000000001, 0x0, 0xe)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x18, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f00000000c0), 0x642, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa101, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2, 0x300]}, 0x0)
epoll_pwait$auto(0x3, 0x0, 0x3, 0x0, 0x0, 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x80000009b72, 0x2, 0x7)
madvise$auto(0x0, 0x2003f0, 0x15)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x40, 0x20, 0x7}, 0x18)
munmap$auto(0x8000, 0xe26)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
r3 = socket(0x10, 0x2, 0x4)
sendmmsg$auto(r3, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)

1.936168871s ago: executing program 1 (id=1340):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/block/loop11/removable\x00', 0x20000, 0x0) (async)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/block/loop11/removable\x00', 0x20000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000005c0)=""/4096, 0x1000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/igmp\x00', 0x0, 0x0)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
pidfd_send_signal$auto(0xfffffffffffffff3, 0x7fffffff, 0xfffffffffffffffd, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x1)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
keyctl$auto(0x2000000000000017, 0x3ff, 0x2a, 0x0, 0x4)
keyctl$auto(0x2000000000000017, 0x3ff, 0x0, 0x0, 0x3) (async)
keyctl$auto(0x2000000000000017, 0x3ff, 0x0, 0x0, 0x3)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80302, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/midi2\x00', 0x2841, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r4, 0xc0305710, &(0x7f0000000040)={0x0, 0x73d, 0xfffffffffffffffd, 0x0, 0x400, "50b82e6c92b172b4cfaaca8e"}) (async)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r4, 0xc0305710, &(0x7f0000000040)={0x0, 0x73d, 0xfffffffffffffffd, 0x0, 0x400, "50b82e6c92b172b4cfaaca8e"})
sendfile$auto(0xffffffffffffffff, r3, 0x0, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x18000)
r5 = socket(0x10, 0x2, 0xf)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
shmctl$auto_IPC_RMID(0xb8, 0x0, &(0x7f00000003c0)={{0x2, <r7=>0x0, 0xee01, 0x5, 0x81, 0xd63, 0x9}, 0x2, 0x80, 0xffffffff, 0xb6, @inferred, @raw=0x8, 0x5, 0x0, &(0x7f0000000280)="a7d0fdeea2939c57738acd4edd8abbbcb932d4f172a0269dc6e220b76960c6bd397743a91d795cda1a073f04a6fd7a67ec16b9c293f029eed8b0e0b6290965a9adc4a1682ca5b3028deab36dd47c8709c3551c33", &(0x7f0000000300)="913720abc43b134a763e154106b59029ac8962d9f958e93564b5ffbe177a6f539bf5ac877e877609de5f"})
sendmsg$auto_NL80211_CMD_NEW_INTERFACE(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001780)={0x380, r6, 0x785202f68de70351, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_CQM={0x84, 0x5e, 0x0, 0x1, [@generic="f500cac8835056e782ed471dd511c3055d3bc05721e2aa76881c90127a71a098817e612599c5d5e4f223e4c70163a0b1344996107196ab4b6e3e3426c56b98777a183c0e697602181c4a1b394cc57f3dd1a2936a0a42df9a7717a642d3aa46db", @typed={0x8, 0x89, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x18, 0x101, 0x0, 0x1, [@nested={0x4, 0xe3}, @typed={0x8, 0xc, 0x0, 0x0, @u32=0x6}, @typed={0x8, 0xf1, 0x0, 0x0, @uid=r7}]}]}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x7}, @NL80211_ATTR_SMPS_MODE={0x5, 0xd5, 0x5}, @NL80211_ATTR_CNTDWN_OFFS_BEACON={0xf5, 0xba, "509b15adc70c6689b38c58b49068807ab6929df0f107cbd746f9b800783b9e2e8c91ec324b6c5b2eff37d77e6c43c6952a3e02dc2164c22404b7ea0132281cbaae9e3d6934ebe15d276bba0e5633a8855a60fe6680b08cf7277cfffaf8edd88a1393d9ddc5c6a63a18860ca09f1bf162d4e30c9c0cdc19adafa700d12320f2e6e565c249ef6bece6028f488fe89c044e80f0294d600a63ae3ab142ce7972777bfd2af5aa8aa1753428a6f9fdedf90725c859311195207ec60f987ce18f7fa0b07bd00a2d9b3bc43d19bece8e0541ef3b4a76a12463ccf7449db58682554e4139cfc0fe362e14a41887e47336d40183b77c"}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, 0x101000}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x4e24}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x1cd, 0x6e, 0x0, 0x1, [@generic="a01e8f174d8ca8f553e815c0d17faa8bfd856a1fa2c113c0c2f255ee3e5953b41c8a5b33b47a1ea3e776f736bb203b2dc110a8e7b66ae6bd95a699e241a8db0e7fc22cb6c628f0f2fd1d1941cd7f53766d71792305023f20604f36fe8e1df53f3beef744dcc7340ce394e0ef745a19fbeda59bb54530e419f258265a00c7c795e2b2f0e5c52421af44ceb07e80bb5e086d91e0b166cb4b3b0f0709cd294dd04f6e0301df6901ecf335eca10e4bec0f2035e1317aa717539b0e6815936e425cedb67900fa3c8d31e854f45b4b84e0218a837f3bdb559545", @generic="366652ab67ce1c0933b4bc191a327e2a11f2804cbdfafe815023218165f4fd127c5a08001c581677f6468c362d5403dd4a482384180785426f162ae01d0523fd8f903315493ecf4842f1825e51972550acfa819573137199522890c7a45d47c0ef08258591315cd08ab97046a448b65fba3d6e2605107568f6abc19fa39a00324eb1c6d383c5f886e458bbb65fe4b1c4510358d958c0189cc04b34b8ab7ec774d3d3528cb5f0549b5ab5c4f3e3dd95ac673da86cab1e49e8b292e91baf8892ee304b281238538b5c483e807b98021c473bd35ee7cc78b2453cc51c4d83a1814bb4ca889f94e01d2383c517fe8add695c45a0"]}]}, 0x380}, 0x1, 0x0, 0x0, 0x40000}, 0x20000800) (async)
sendmsg$auto_NL80211_CMD_NEW_INTERFACE(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001780)={0x380, r6, 0x785202f68de70351, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_CQM={0x84, 0x5e, 0x0, 0x1, [@generic="f500cac8835056e782ed471dd511c3055d3bc05721e2aa76881c90127a71a098817e612599c5d5e4f223e4c70163a0b1344996107196ab4b6e3e3426c56b98777a183c0e697602181c4a1b394cc57f3dd1a2936a0a42df9a7717a642d3aa46db", @typed={0x8, 0x89, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x18, 0x101, 0x0, 0x1, [@nested={0x4, 0xe3}, @typed={0x8, 0xc, 0x0, 0x0, @u32=0x6}, @typed={0x8, 0xf1, 0x0, 0x0, @uid=r7}]}]}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x7}, @NL80211_ATTR_SMPS_MODE={0x5, 0xd5, 0x5}, @NL80211_ATTR_CNTDWN_OFFS_BEACON={0xf5, 0xba, "509b15adc70c6689b38c58b49068807ab6929df0f107cbd746f9b800783b9e2e8c91ec324b6c5b2eff37d77e6c43c6952a3e02dc2164c22404b7ea0132281cbaae9e3d6934ebe15d276bba0e5633a8855a60fe6680b08cf7277cfffaf8edd88a1393d9ddc5c6a63a18860ca09f1bf162d4e30c9c0cdc19adafa700d12320f2e6e565c249ef6bece6028f488fe89c044e80f0294d600a63ae3ab142ce7972777bfd2af5aa8aa1753428a6f9fdedf90725c859311195207ec60f987ce18f7fa0b07bd00a2d9b3bc43d19bece8e0541ef3b4a76a12463ccf7449db58682554e4139cfc0fe362e14a41887e47336d40183b77c"}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, 0x101000}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x4e24}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x1cd, 0x6e, 0x0, 0x1, [@generic="a01e8f174d8ca8f553e815c0d17faa8bfd856a1fa2c113c0c2f255ee3e5953b41c8a5b33b47a1ea3e776f736bb203b2dc110a8e7b66ae6bd95a699e241a8db0e7fc22cb6c628f0f2fd1d1941cd7f53766d71792305023f20604f36fe8e1df53f3beef744dcc7340ce394e0ef745a19fbeda59bb54530e419f258265a00c7c795e2b2f0e5c52421af44ceb07e80bb5e086d91e0b166cb4b3b0f0709cd294dd04f6e0301df6901ecf335eca10e4bec0f2035e1317aa717539b0e6815936e425cedb67900fa3c8d31e854f45b4b84e0218a837f3bdb559545", @generic="366652ab67ce1c0933b4bc191a327e2a11f2804cbdfafe815023218165f4fd127c5a08001c581677f6468c362d5403dd4a482384180785426f162ae01d0523fd8f903315493ecf4842f1825e51972550acfa819573137199522890c7a45d47c0ef08258591315cd08ab97046a448b65fba3d6e2605107568f6abc19fa39a00324eb1c6d383c5f886e458bbb65fe4b1c4510358d958c0189cc04b34b8ab7ec774d3d3528cb5f0549b5ab5c4f3e3dd95ac673da86cab1e49e8b292e91baf8892ee304b281238538b5c483e807b98021c473bd35ee7cc78b2453cc51c4d83a1814bb4ca889f94e01d2383c517fe8add695c45a0"]}]}, 0x380}, 0x1, 0x0, 0x0, 0x40000}, 0x20000800)
sendmsg$auto_NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)={0x118, r6, 0x800, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_HE_CAPABILITY={0x10, 0x10d, "215c37ba9cc1c6ca7bc68042"}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0xfffffffd}, @NL80211_ATTR_HE_OBSS_PD={0xec, 0x117, 0x0, 0x1, [@NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x4}, @NL80211_HE_OBSS_PD_ATTR_PARTIAL_BSSID_BITMAP={0x8a, 0x5, "038adc01ea35cd5e289522f35cefff4ebb5f9c63426f8220c9b54ba2ccf83ade443515ae6ec88a8dc06bfe7513a1a549d5efa11231a3e58676fa9f6ae506f014fe702fe2a4d876808ba6cd377145c79b2adcad154a595d257ada0ad2664307eed82575cf499d2a3f8ee943bbf5833625961492f1f7fa23e84f38cc304fe924d00e52bbf2944c"}, @NL80211_HE_OBSS_PD_ATTR_SR_CTRL={0x5, 0x6, 0x8}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x1f}, @NL80211_HE_OBSS_PD_ATTR_BSS_COLOR_BITMAP={0x32, 0x4, "180d9d1bd83d078ba0e82685fa13e80630e17b10654dc38a3c8cf969e0bf81d2e2272dc7022c3ca47b2dd8156638"}, @NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0xf5}, @NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x20044014}, 0x4814)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) (async)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x4c2880, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/0000:00:01.0/driver_override\x00', 0xa001, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/0000:00:01.0/driver_override\x00', 0xa001, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket(0x2, 0x1, 0x84)
setsockopt$auto(r8, 0x84, 0x24, &(0x7f0000000180)='#+l\x00', 0x3)
socket(0x25, 0x801, 0x100) (async)
socket(0x25, 0x801, 0x100)
r9 = getpgid(0x0)
prctl$auto_PR_SET_MM_START_DATA(0x9, 0x3, r9, 0x20020000d, 0x8)

1.754476871s ago: executing program 3 (id=1341):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x6}, 0x5)
unshare$auto(0x40000080)
r0 = socket(0x22, 0x6, 0x8)
mmap$auto(0x401, 0xfa1, 0x100000000, 0x1e, r0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x161802, 0x0)
openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kfence/stats\x00', 0x20000, 0x0)
r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), r0)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
r4 = socket(0x18, 0x4, 0x1)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r0, &(0x7f00000009c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000980)={&(0x7f0000000140)={0x824, r3, 0x200, 0x70bd25, 0x25dfdbfd, {}, [@HWSIM_ATTR_TX_INFO={0xc, 0x7, [{0x2, 0x22}, {0x0, 0xbe}, {0x6, 0x4}, {0x6, 0x51}]}, @HWSIM_ATTR_SIGNAL={0x8, 0x6, 0x5}, @HWSIM_ATTR_FRAME={0x2c4, 0x3, "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"}, @HWSIM_ATTR_TX_INFO={0x8, 0x7, [{0x5, 0x2}, {0xa4, 0x7}]}, @HWSIM_ATTR_PMSR_SUPPORT={0x6c, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x80000}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x60, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0xb9}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0xa}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x1f}]}]}]}, @HWSIM_ATTR_FRAME={0x4c0, 0x3, "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"}, @HWSIM_ATTR_PMSR_RESULT={0x4}]}, 0x824}, 0x1, 0x0, 0x0, 0x80}, 0x800)
ioctl$auto_IMADDTIMER(r2, 0x80044940, &(0x7f0000000040)=0x200801)
ioctl$auto(r1, 0x40046210, 0x9)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000a40), r4)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000b00)={&(0x7f0000000a00), 0xc, &(0x7f0000000ac0)={&(0x7f0000000b40)=ANY=[@ANYBLOB="240000000371303cfb109eca09cfe3b5aef84c9d2b246e477fa0cd1b21e790f8de487c9dc755b3118581351f28357557221715b84ccb94825c51107ca400e96e83f0dbb6f7b1411219ff4d23338d23a0024a8af48f78ee66d461cb0b348fa4703c91afc9de2e55f650fe2f970e1fa6f163cada094f602256da879c970d8c955aa13f1ce257374b10c6d72c6ed859d73f7036f2e732ebc3ac4f6de1c50f73a45a7601c354b7ae53714a9c5423118a3f8b6dce7a6b627819057c6a07889e52bddd41716f96e12942268c99c34ec51b2807000000183c4e035548c8bdedca7aaa1b7498069ca569a3204ba6582af180444e010e85119046854453b16fe3de8cc8e588f56d705aa1f301515ef5264915e9433d189c5e2968ccbce7b0459d6d9186ab008c92a8bceaf10026c112aea779325727c120d21f463436cdc645917101449620506eeee779b032af3a48cf486ef96a54d608813ff6e1ec0a180804b6637c746e0af4bfa21e7a9c8859abe38e5690a1ac173dffe3ad4687ec08aa6b6dc16542df8e9542dddea18509285ac113b56eb9e5137868a36795a2a2c200000000", @ANYRES16=r6, @ANYBLOB="040025bd7000ffdbdf251f00000006001a010200000008001f0100000000"], 0x24}}, 0x4040)
unshare$auto(0x40000080)
socket(0x1d, 0x2, 0x2)
connect$auto(0x3, 0x0, 0x55)
socket(0x10, 0x3, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

1.63694475s ago: executing program 0 (id=1342):
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/usb/usbmon/32u\x00', 0x82000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2c, 0x80000, 0x6)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xf, 0x3, 0x1)
socket(0x1d, 0x2, 0x2)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x11, 0x940, 0x1ffde, 0x3, 0x4, 0x2, 0x9, 0x5, 0x7, 0x4, 0xb0, 0x9, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x4, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x750f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x3, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
memfd_secret$auto(0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000240), 0x141, 0x0)
socket(0x2, 0x80002, 0x73)
truncate$auto(&(0x7f0000000000)='./file0\x00', 0x4)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/sda\x00', 0x2ea43, 0x0)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000080)=@generic={0x3, "68194373648c8cf4466903937bcc"}, 0x6b)
r1 = gettid()
r2 = prctl$auto_PR_LOCK_SHADOW_STACK_STATUS(0x4c, 0x4, r1, 0x92eb, 0xee)
sendmsg$auto_NLBL_CIPSOV4_C_LISTALL(r2, 0x0, 0x4000)
rt_sigqueueinfo$auto(r1, 0x1, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x0, 0x0)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/kvm/pf_emulate\x00', 0x80, 0x0)

1.047834976s ago: executing program 3 (id=1343):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
socket(0x1f, 0x800, 0xffffff01)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0)
socket(0x28, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="2f212abd7800fddbdf2521000000"], 0x14}}, 0x4000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
madvise$auto(0x108000, 0x800034, 0xa)
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[], 0x6c}, 0x1, 0x0, 0x0, 0x44810}, 0x40045)
r1 = open$auto(&(0x7f0000000200)='./file0\x00', 0x49193, 0xff90)
ioctl$auto_PPPIOCGFLAGS(r1, 0x8004745a, 0x0)
r2 = openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$auto_COMEDI_LOCK(r2, 0x6405, 0x0)
write$auto_tomoyo_operations_securityfs_if(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r3, &(0x7f0000000c80)="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", 0x300)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
clone$auto(0xffffffff00000000, 0xf, 0x0, 0x0, 0xfffffffffffffffd)
mincore$auto(0x1000, 0x8001, 0x0)

1.047117547s ago: executing program 2 (id=1351):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x84)
connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r3=>0x0})
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000080)={0x28, r2, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_COALESCE_PKT_RATE_HIGH={0x8, 0x12, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x40448c1}, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event2\x00', 0x80000, 0x0)
getsockopt$auto_SO_ERROR(r1, 0x7, 0x4, &(0x7f00000000c0)='ethtool\x00', &(0x7f0000000280)=0x80000000)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_3={0xa2b, 0x2, 0x7fffffffffffffff, 0x4, 0x10000000, 0x1400000, 0x5, 0x5, 0x9, "d4d8c9d87596b2a8cef9bd6ba1088e14", r3, 0x0, r0, 0x0, 0x4, 0x200, 0x7, 0x741, 0x5, 0x3, @attach_btf_obj_fd=r0, 0x8a1, 0x3ff, 0x404, 0x7fffffff, 0x101, r0}, 0x6f3)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000)
r4 = socket(0x10, 0x2, 0x4)
ioctl$auto_FIGETBSZ(r0, 0x2, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x20000804)
close_range$auto(0x2, 0xa, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
r5 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r5, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
read$auto(0x4, 0x0, 0xfdef)

988.987913ms ago: executing program 0 (id=1344):
socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x1, 0xa12a, 0xeb1, 0x400, 0x8000)
capset$auto(0x0, 0x0)
read$auto(0x3, 0x0, 0x7ffffffff000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x7, 0x3)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xfffffffffffffffb, 0x9b72, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x1, 0x200006, 0x2, 0x40eb1, 0xffffffffffffffff, 0x300000000000)
get_mempolicy$auto(0x0, 0x0, 0x7f, 0x41ff, 0x3)
write$auto(0x3, 0x0, 0x7fffffff)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x700a, 0x0)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/v4l-touch13\x00', 0x280, 0x0)
ioctl$auto(r0, 0x4020565b, 0x38)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r1, &(0x7f0000000140)="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", 0x15b)
writev$auto(0x1, 0x0, 0x1)

798.695594ms ago: executing program 1 (id=1345):
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
sendto$auto(0xffffffffffffffff, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
mprotect$auto(0x8, 0x8000000000000003, 0xd)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
r0 = socket(0xa, 0x801, 0x84)
connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @rand_addr=0xfffffffc}, 0x55)
listen$auto(0x3, 0x83)
accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd)
mmap$auto(0xfffffffffffffffe, 0x800, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
pread64$auto(0xffffffffffffffff, 0x0, 0x3f, 0x7fff)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x101202, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0)
close_range$auto(0x2, 0x8, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x14, 0x0, 0x4)
sendto$auto(0x3, 0x0, 0x13, 0xfffffff8, &(0x7f0000000440)=@tipc=@name={0x1e, 0x2, 0x0, {{0x1, 0x3}}}, 0x22)
sendmmsg$auto(0x3, 0x0, 0x200, 0x0)
read$auto(0xc8, 0x0, 0x200)
setreuid$auto(0x0, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x108202, 0x0, 0x1, 0x0, 0x2, 0x9}, 0x9}, 0x6, 0x0)
r1 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/set_event\x00', 0x200, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs1\x00', 0x2, 0x0)
preadv$auto(r1, &(0x7f0000000080)={0x0, 0x8}, 0x4, 0x8, 0x5)

74.19328ms ago: executing program 2 (id=1346):
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
sendto$auto(0xffffffffffffffff, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
mprotect$auto(0x8, 0x8000000000000003, 0xd)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
r0 = socket(0xa, 0x801, 0x84)
connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @rand_addr=0xfffffffc}, 0x55)
listen$auto(0x3, 0x83)
accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd)
mmap$auto(0xfffffffffffffffe, 0x800, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
pread64$auto(0xffffffffffffffff, 0x0, 0x3f, 0x7fff)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x101202, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0)
close_range$auto(0x2, 0x8, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x14, 0x0, 0x4)
sendto$auto(0x3, 0x0, 0x13, 0xfffffff8, &(0x7f0000000440)=@tipc=@name={0x1e, 0x2, 0x0, {{0x1, 0x3}}}, 0x22)
sendmmsg$auto(0x3, 0x0, 0x200, 0x0)
read$auto(0xc8, 0x0, 0x200)
setreuid$auto(0x0, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x108202, 0x0, 0x1, 0x0, 0x2, 0x9}, 0x9}, 0x6, 0x0)
r1 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/set_event\x00', 0x200, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs1\x00', 0x2, 0x0)
preadv$auto(r1, &(0x7f0000000080)={0x0, 0x8}, 0x4, 0x8, 0x5) (fail_nth: 2)

0s ago: executing program 0 (id=1347):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
socket(0x1f, 0x800, 0xffffff01)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1400fe00e4e819d1eba5df4b92b50cc7c1119b183cb8c20711833e16fef33721c375387424ae26cfad96b2ad946a", @ANYRES16, @ANYBLOB="01002dbd7000f9dbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="b3ac3fb4a05156f5206c000000", @ANYRES16, @ANYBLOB="000225bd7000fedbdf250400000014001f00fc01000000000000000000000000000114002000fc000000000000000000000000000000060003001e0b000006001a004e2100000500140000000000050014000800000006001a004e20000008000a00a6000000"], 0x6c}, 0x1, 0x0, 0x0, 0x4000000}, 0x5)
r0 = open$auto(&(0x7f0000000200)='./file0\x00', 0x49193, 0xff90)
ioctl$auto_PPPIOCGFLAGS(r0, 0x8004745a, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
syz_genetlink_get_family_id$auto_ila(0x0, 0xffffffffffffffff)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.17' (ED25519) to the list of known hosts.
[   65.435289][ T5822] cgroup: Unknown subsys name 'net'
[   65.577961][ T5822] cgroup: Unknown subsys name 'cpuset'
[   65.586299][ T5822] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   66.900977][ T5822] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   68.672109][ T5834] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   68.699992][ T5837] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   68.705837][ T5844] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   68.708284][ T5837] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   68.721675][ T5844] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   68.722196][ T5837] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   68.730580][ T5844] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   68.744515][ T5844] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   68.745692][ T5837] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   68.753173][ T5844] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   68.767159][ T5844] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   68.775443][ T5837] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   68.776336][ T5844] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   68.786522][ T5846] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   68.789442][ T5845] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   68.805187][ T5846] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   68.806441][ T5844] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   68.813252][ T5846] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   68.821665][ T5844] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   68.828943][ T5143] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   68.833524][ T5844] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   68.840940][ T5143] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   68.848346][ T5844] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   68.855672][ T5143] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   69.238147][ T5838] chnl_net:caif_netlink_parms(): no params data found
[   69.299556][ T5840] chnl_net:caif_netlink_parms(): no params data found
[   69.311166][ T5831] chnl_net:caif_netlink_parms(): no params data found
[   69.400892][ T5832] chnl_net:caif_netlink_parms(): no params data found
[   69.425427][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.433059][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.440687][ T5838] bridge_slave_0: entered allmulticast mode
[   69.447521][ T5838] bridge_slave_0: entered promiscuous mode
[   69.456779][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.463952][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.471232][ T5838] bridge_slave_1: entered allmulticast mode
[   69.477861][ T5838] bridge_slave_1: entered promiscuous mode
[   69.520840][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.529018][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.538417][ T5831] bridge_slave_0: entered allmulticast mode
[   69.545803][ T5831] bridge_slave_0: entered promiscuous mode
[   69.569714][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.576976][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.584169][ T5831] bridge_slave_1: entered allmulticast mode
[   69.591091][ T5831] bridge_slave_1: entered promiscuous mode
[   69.599702][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.633237][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.688041][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.701525][ T5838] team0: Port device team_slave_0 added
[   69.711389][ T5838] team0: Port device team_slave_1 added
[   69.720304][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.727511][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.734715][ T5840] bridge_slave_0: entered allmulticast mode
[   69.742167][ T5840] bridge_slave_0: entered promiscuous mode
[   69.750442][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.757611][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.765371][ T5840] bridge_slave_1: entered allmulticast mode
[   69.772281][ T5840] bridge_slave_1: entered promiscuous mode
[   69.780100][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.840841][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0
[   69.848247][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.876436][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   69.889136][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1
[   69.896194][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.922241][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   69.933465][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.940924][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.948167][ T5832] bridge_slave_0: entered allmulticast mode
[   69.954773][ T5832] bridge_slave_0: entered promiscuous mode
[   69.971265][ T5831] team0: Port device team_slave_0 added
[   69.983039][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.990422][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.997774][ T5832] bridge_slave_1: entered allmulticast mode
[   70.004396][ T5832] bridge_slave_1: entered promiscuous mode
[   70.012825][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   70.025464][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.036133][ T5831] team0: Port device team_slave_1 added
[   70.077776][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.084789][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.111504][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.124610][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.132781][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.158980][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.203896][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   70.217414][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.229202][ T5840] team0: Port device team_slave_0 added
[   70.238063][ T5840] team0: Port device team_slave_1 added
[   70.259670][ T5838] hsr_slave_0: entered promiscuous mode
[   70.266184][ T5838] hsr_slave_1: entered promiscuous mode
[   70.288073][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.295173][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.321561][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.359641][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.372415][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.398410][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.415078][ T5832] team0: Port device team_slave_0 added
[   70.443885][ T5831] hsr_slave_0: entered promiscuous mode
[   70.450089][ T5831] hsr_slave_1: entered promiscuous mode
[   70.456830][ T5831] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.464622][ T5831] Cannot create hsr debugfs directory
[   70.472286][ T5832] team0: Port device team_slave_1 added
[   70.519492][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.526742][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.552904][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.579895][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.589572][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.615854][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.656372][ T5840] hsr_slave_0: entered promiscuous mode
[   70.663245][ T5840] hsr_slave_1: entered promiscuous mode
[   70.669299][ T5840] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.677022][ T5840] Cannot create hsr debugfs directory
[   70.741929][ T5832] hsr_slave_0: entered promiscuous mode
[   70.749090][ T5832] hsr_slave_1: entered promiscuous mode
[   70.757252][ T5832] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.764819][ T5832] Cannot create hsr debugfs directory
[   70.920356][ T5838] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   70.926354][   T54] Bluetooth: hci3: command tx timeout
[   70.932587][ T5841] Bluetooth: hci0: command tx timeout
[   70.932648][ T5834] Bluetooth: hci2: command tx timeout
[   70.938551][ T5143] Bluetooth: hci1: command tx timeout
[   70.957361][ T5838] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   70.982664][ T5838] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   70.992058][ T5838] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   71.029123][ T5831] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   71.055057][ T5831] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   71.071534][ T5831] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   71.090297][ T5831] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   71.119663][ T5840] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   71.137015][ T5840] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   71.148421][ T5840] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   71.158583][ T5840] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   71.250432][ T5832] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   71.281589][ T5832] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   71.302846][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.315242][ T5832] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   71.342073][ T5832] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   71.378910][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.389556][ T5838] 8021q: adding VLAN 0 to HW filter on device team0
[   71.410232][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.432015][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.439327][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.468906][ T5831] 8021q: adding VLAN 0 to HW filter on device team0
[   71.493795][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.500942][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.529974][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.537090][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.548225][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.555324][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.586650][ T5840] 8021q: adding VLAN 0 to HW filter on device team0
[   71.628536][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.643686][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.650788][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.659192][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[   71.665991][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[   71.683732][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.690842][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.749696][ T5832] 8021q: adding VLAN 0 to HW filter on device team0
[   71.775897][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.783018][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.830468][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.837599][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.968926][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.032477][ T5838] veth0_vlan: entered promiscuous mode
[   72.081534][ T5838] veth1_vlan: entered promiscuous mode
[   72.156170][ T5838] veth0_macvtap: entered promiscuous mode
[   72.181990][ T5838] veth1_macvtap: entered promiscuous mode
[   72.232384][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.250127][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.266958][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.289700][ T5838] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.301253][ T5838] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.311217][ T5838] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.321970][ T5838] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.342472][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.399964][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.409806][ T5831] veth0_vlan: entered promiscuous mode
[   72.477511][ T5831] veth1_vlan: entered promiscuous mode
[   72.525372][ T5832] veth0_vlan: entered promiscuous mode
[   72.526213][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.539927][ T5832] veth1_vlan: entered promiscuous mode
[   72.560898][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.585614][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.590377][ T5840] veth0_vlan: entered promiscuous mode
[   72.593445][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.602688][ T5831] veth0_macvtap: entered promiscuous mode
[   72.639886][ T5832] veth0_macvtap: entered promiscuous mode
[   72.654721][ T5831] veth1_macvtap: entered promiscuous mode
[   72.673627][ T5840] veth1_vlan: entered promiscuous mode
[   72.687735][ T5832] veth1_macvtap: entered promiscuous mode
[   72.693845][ T5838] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   72.723097][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.738715][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.750270][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.758774][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.771179][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.781329][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.794935][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.806935][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.831610][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.850774][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.875986][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.890982][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.907222][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.918644][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.931231][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.944538][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.960814][ T5832] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.971277][ T5832] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.980439][ T5832] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.989679][ T5832] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.005480][ T5143] Bluetooth: hci1: command tx timeout
[   73.010908][ T5143] Bluetooth: hci0: command tx timeout
[   73.016423][ T5841] Bluetooth: hci3: command tx timeout
[   73.018833][ T5834] Bluetooth: hci2: command tx timeout
[   73.034312][ T5831] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.043435][ T5831] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.052748][ T5831] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.062017][ T5831] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.073780][ T5840] veth0_macvtap: entered promiscuous mode
[   73.115536][ T5840] veth1_macvtap: entered promiscuous mode
[   73.231438][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.255927][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.272984][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.289760][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.304977][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.326264][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.342948][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.394627][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.419249][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.435059][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.450666][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.461572][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.478322][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.499545][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.534624][ T5840] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.543727][ T5840] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.553436][ T5840] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.562540][ T5840] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.586238][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.607067][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.682162][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.702630][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.715121][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.722970][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.888579][ T3549] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.896732][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.911687][ T3549] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.918183][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.986685][ T5904] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   74.014807][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.055200][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.395468][ T5918] Zero length message leads to an empty skb
[   74.699857][ T5923] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6'.
[   74.910226][ T5927] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8'.
[   74.955880][ T5927] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8'.
[   75.085257][ T5834] Bluetooth: hci2: command tx timeout
[   75.085371][ T5143] Bluetooth: hci0: command tx timeout
[   75.091312][ T5834] Bluetooth: hci3: command tx timeout
[   75.096711][   T54] Bluetooth: hci1: command tx timeout
[   77.165473][ T5143] Bluetooth: hci0: command tx timeout
[   77.170958][ T5143] Bluetooth: hci1: command tx timeout
[   77.176662][   T54] Bluetooth: hci3: command tx timeout
[   77.182075][   T54] Bluetooth: hci2: command tx timeout
[   78.956808][ T5982] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   78.992089][ T5982] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   79.054655][ T5982] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   79.146337][ T5982] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   79.152326][ T5982] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   79.278719][ T5982] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   79.300805][ T5982] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   79.315045][ T5982] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   79.361468][ T5982] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   79.385863][ T5982] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   79.404280][ T5982] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   79.464584][ T5982] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   80.764984][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout
[   81.164927][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[   81.324982][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout
[   81.404948][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[   81.901007][   T25] cfg80211: failed to load regulatory.db
[   82.845100][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout
[   83.256879][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[   83.405049][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout
[   83.484925][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[   83.535126][ T6062] netlink: 334 bytes leftover after parsing attributes in process `syz.3.35'.
[   84.926294][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout
[   85.325029][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[   85.485362][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout
[   85.564990][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[   86.284080][ T6097] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   86.308076][ T6097] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   86.314386][ T6097] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   86.337843][ T6097] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   87.647259][ T5143] Bluetooth: hci0: command 0x0c1a tx timeout
[   88.364996][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[   88.371159][ T5143] Bluetooth: hci2: command 0x0c1a tx timeout
[   88.444977][ T5143] Bluetooth: hci3: command 0x0c1a tx timeout
[   91.428551][ T6212] netlink: 8 bytes leftover after parsing attributes in process `syz.2.70'.
[   93.115364][ T6237] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   93.191066][ T6230] netlink: 28 bytes leftover after parsing attributes in process `syz.1.74'.
[   93.196323][ T6237] netlink: 330 bytes leftover after parsing attributes in process `syz.3.75'.
[   93.265556][ T6237] : renamed from bond_slave_1 (while UP)
[  102.671193][ T6369] netlink: 8 bytes leftover after parsing attributes in process `syz.1.106'.
[  112.677016][ T6553] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  112.684413][ T6553] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  112.691329][ T6553] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  112.705672][ T6553] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  114.125123][ T5143] Bluetooth: hci0: command 0x0c1a tx timeout
[  114.764994][ T5143] Bluetooth: hci3: command 0x0c1a tx timeout
[  114.771057][ T5143] Bluetooth: hci2: command 0x0c1a tx timeout
[  114.771311][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[  127.626322][ T6815] netlink: 8 bytes leftover after parsing attributes in process `syz.0.198'.
[  132.366835][ T6906] netlink: 4 bytes leftover after parsing attributes in process `syz.0.221'.
[  132.404080][ T6906] netlink: 4 bytes leftover after parsing attributes in process `syz.0.221'.
[  132.487689][ T6911] Invalid ELF header magic: != ELF
[  132.995409][ T6915] syz.1.223 uses obsolete (PF_INET,SOCK_PACKET)
[  133.101530][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  133.108248][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  136.697455][ T7005] netlink: 1204 bytes leftover after parsing attributes in process `syz.1.241'.
[  136.800462][ T7001] netlink: 8 bytes leftover after parsing attributes in process `syz.1.241'.
[  194.553609][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  194.574848][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  202.992164][ T8104] netlink: 8 bytes leftover after parsing attributes in process `syz.0.454'.
[  206.304195][ T8165] netlink: 8 bytes leftover after parsing attributes in process `syz.2.467'.
[  214.473832][ T8324] netlink: 8 bytes leftover after parsing attributes in process `syz.2.498'.
[  217.684288][ T8378] netlink: 8 bytes leftover after parsing attributes in process `syz.3.508'.
[  223.526011][ T8523] netlink: 8 bytes leftover after parsing attributes in process `syz.2.535'.
[  226.407970][ T8595] netlink: 4 bytes leftover after parsing attributes in process `syz.2.558'.
[  226.760809][ T8595] netlink: 4 bytes leftover after parsing attributes in process `syz.2.558'.
[  226.867253][ T8600] Invalid ELF header magic: != ELF
[  227.128760][ T8607] netlink: 4 bytes leftover after parsing attributes in process `syz.3.563'.
[  227.143417][ T8604] netlink: 330 bytes leftover after parsing attributes in process `syz.2.561'.
[  227.144135][ T8607] netlink: 4 bytes leftover after parsing attributes in process `syz.3.563'.
[  227.157266][ T8609] netlink: 4 bytes leftover after parsing attributes in process `syz.1.571'.
[  227.174249][ T8604] : renamed from bond_slave_1 (while UP)
[  227.195394][ T8605] netlink: 28 bytes leftover after parsing attributes in process `syz.0.559'.
[  227.216081][ T8609] netlink: 4 bytes leftover after parsing attributes in process `syz.1.571'.
[  227.289594][ T8612] Invalid ELF header magic: != ELF
[  228.934234][ T8654] netlink: 8 bytes leftover after parsing attributes in process `syz.3.574'.
[  229.710827][ T8663] netlink: 330 bytes leftover after parsing attributes in process `syz.0.575'.
[  229.720185][ T8663] : renamed from bond_slave_1 (while UP)
[  229.889333][ T8670] netlink: 8 bytes leftover after parsing attributes in process `syz.2.581'.
[  231.190489][ T8712] netlink: 8 bytes leftover after parsing attributes in process `syz.1.591'.
[  234.977364][ T8792] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  234.990213][ T8792] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  235.005446][ T8792] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  235.034943][ T8792] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  236.235532][ T8810] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  236.243080][ T8810] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  236.275166][ T8810] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  236.307213][ T8810] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  237.804923][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout
[  238.284949][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout
[  238.285000][ T5143] Bluetooth: hci1: command 0x0c1a tx timeout
[  238.367696][ T5143] Bluetooth: hci3: command 0x0c1a tx timeout
[  238.515576][ T8858] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  238.555058][ T8858] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  238.561143][ T8858] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  238.593152][ T8858] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  240.055116][ T5143] Bluetooth: hci0: command 0x0c1a tx timeout
[  240.604983][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[  240.613470][ T5143] Bluetooth: hci2: command 0x0c1a tx timeout
[  240.619559][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[  241.192543][ T8929] netlink: 334 bytes leftover after parsing attributes in process `syz.0.645'.
[  241.203346][ T8923] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  241.209856][ T8923] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  241.216115][ T8923] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  241.222323][ T8923] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  242.604902][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout
[  243.244956][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[  243.251020][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout
[  243.257109][ T5143] Bluetooth: hci1: command 0x0c1a tx timeout
[  243.362393][ T8965] netlink: 334 bytes leftover after parsing attributes in process `syz.2.658'.
[  246.050864][ T9033] netlink: 1204 bytes leftover after parsing attributes in process `syz.2.670'.
[  246.092940][ T9033] netlink: 8 bytes leftover after parsing attributes in process `syz.2.670'.
[  249.638230][ T9136] netlink: 1204 bytes leftover after parsing attributes in process `syz.0.690'.
[  249.652739][ T9136] netlink: 8 bytes leftover after parsing attributes in process `syz.0.690'.
[  255.975202][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  255.984888][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  256.335409][ T9292] raw_sendmsg: syz.3.717 forgot to set AF_INET. Fix it!
[  262.624325][ T9376] FAULT_INJECTION: forcing a failure.
[  262.624325][ T9376] name failslab, interval 1, probability 0, space 0, times 1
[  262.662672][ T9376] CPU: 0 UID: 0 PID: 9376 Comm: syz.1.735 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0
[  262.662702][ T9376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  262.662718][ T9376] Call Trace:
[  262.662724][ T9376]  <TASK>
[  262.662736][ T9376]  dump_stack_lvl+0x16c/0x1f0
[  262.662768][ T9376]  should_fail_ex+0x497/0x5b0
[  262.662790][ T9376]  ? fs_reclaim_acquire+0xae/0x150
[  262.662823][ T9376]  should_failslab+0xc2/0x120
[  262.662848][ T9376]  __kmalloc_noprof+0xce/0x4f0
[  262.662869][ T9376]  ? d_absolute_path+0x137/0x1b0
[  262.662894][ T9376]  ? tomoyo_encode2+0x100/0x3e0
[  262.662921][ T9376]  tomoyo_encode2+0x100/0x3e0
[  262.662946][ T9376]  tomoyo_realpath_from_path+0x1a7/0x710
[  262.662975][ T9376]  tomoyo_path_number_perm+0x248/0x5b0
[  262.663004][ T9376]  ? tomoyo_path_number_perm+0x235/0x5b0
[  262.663036][ T9376]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  262.663095][ T9376]  ? __pfx_lock_release+0x10/0x10
[  262.663119][ T9376]  ? trace_lock_acquire+0x14e/0x1f0
[  262.663143][ T9376]  ? lock_acquire+0x2f/0xb0
[  262.663165][ T9376]  ? __fget_files+0x40/0x3a0
[  262.663189][ T9376]  ? __fget_files+0x206/0x3a0
[  262.663214][ T9376]  security_file_ioctl+0x9b/0x240
[  262.663246][ T9376]  __x64_sys_ioctl+0xb7/0x200
[  262.663277][ T9376]  do_syscall_64+0xcd/0x250
[  262.663307][ T9376]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.663335][ T9376] RIP: 0033:0x7f63c198cd29
[  262.663360][ T9376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.663379][ T9376] RSP: 002b:00007f63c28bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  262.663400][ T9376] RAX: ffffffffffffffda RBX: 00007f63c1ba5fa0 RCX: 00007f63c198cd29
[  262.663414][ T9376] RDX: 00000000200000c0 RSI: 00000000400445a0 RDI: 0000000000000003
[  262.663427][ T9376] RBP: 00007f63c28bd090 R08: 0000000000000000 R09: 0000000000000000
[  262.663450][ T9376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.663462][ T9376] R13: 0000000000000000 R14: 00007f63c1ba5fa0 R15: 00007fffb285a9d8
[  262.663492][ T9376]  </TASK>
[  262.663511][ T9376] ERROR: Out of memory at tomoyo_realpath_from_path.
[  262.953593][ T9374] netlink: 28 bytes leftover after parsing attributes in process `syz.3.734'.
[  263.008839][ T9374] bond0: entered promiscuous mode
[  263.013944][ T9374] bond_slave_0: entered promiscuous mode
[  263.019858][ T9374] : entered promiscuous mode
[  263.024719][ T9374] bond0: entered allmulticast mode
[  263.030981][ T9374] bond_slave_0: entered allmulticast mode
[  263.036777][ T9374] : entered allmulticast mode
[  275.936080][ T9616] netlink: 28 bytes leftover after parsing attributes in process `syz.0.778'.
[  275.984008][ T9616] bond0: entered promiscuous mode
[  275.994124][ T9616] bond_slave_0: entered promiscuous mode
[  276.024612][ T9616] : entered promiscuous mode
[  276.044949][ T9616] bond0: entered allmulticast mode
[  276.050117][ T9616] bond_slave_0: entered allmulticast mode
[  276.099670][ T9616] : entered allmulticast mode
[  306.733341][T10210] mkiss: ax0: crc mode is auto.
[  306.880163][T10208] mkiss: ax0: crc mode is auto.
[  311.790836][T10306] mkiss: ax0: crc mode is auto.
[  312.542372][T10328] mkiss: ax0: crc mode is auto.
[  312.693297][T10323] mkiss: ax0: crc mode is auto.
[  317.164602][T10393] mkiss: ax0: crc mode is auto.
[  317.409389][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  317.417082][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  317.966413][T10411] mkiss: ax0: crc mode is auto.
[  319.083862][T10434] mkiss: ax0: crc mode is auto.
[  320.921029][T10477] sp0: Synchronizing with TNC
[  326.266182][T10548] sp0: Synchronizing with TNC
[  331.774571][T10626] sp0: Synchronizing with TNC
[  332.016254][T10625] nbd: socks must be embedded in a SOCK_ITEM attr
[  332.026061][T10625] block nbd0: shutting down sockets
[  337.007488][T10683] mkiss: ax0: crc mode is auto.
[  337.400869][T10689] mkiss: ax0: crc mode is auto.
[  341.483522][T10734] mkiss: ax0: crc mode is auto.
[  346.967263][T10790] mkiss: ax0: crc mode is auto.
[  347.801831][T10804] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  347.815170][T10804] File: /dev/mtdblock0 PID: 10804 Comm: syz.1.965
[  351.067024][T10845] mkiss: ax0: crc mode is auto.
[  351.244078][T10849] mkiss: ax0: crc mode is auto.
[  352.786741][T10878] mkiss: ax0: crc mode is auto.
[  360.447674][T10930] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  360.508384][T10930] File: /dev/mtdblock0 PID: 10930 Comm: syz.2.994
[  361.818989][T10949] mkiss: ax0: crc mode is auto.
[  362.337359][T10955] mkiss: ax0: crc mode is auto.
[  362.982252][T10962] mkiss: ax0: crc mode is auto.
[  369.389606][T11046] sp0: Synchronizing with TNC
[  376.297579][T11123] mkiss: ax0: crc mode is auto.
[  378.847226][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  378.853564][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  381.077290][T11181] mkiss: ax0: crc mode is auto.
[  385.523026][T11255] mkiss: ax0: crc mode is auto.
[  385.926286][T11259] mkiss: ax0: crc mode is auto.
[  394.321720][T11334] sp0: Synchronizing with TNC
[  396.624804][T11351] mkiss: ax0: crc mode is auto.
[  401.783359][T11424] mkiss: ax0: crc mode is auto.
[  403.761587][T11455] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  403.825228][T11455] File: /dev/mtdblock0 PID: 11455 Comm: syz.3.1095
[  409.916348][T11533] sp0: Synchronizing with TNC
[  416.665680][T11624] mkiss: ax0: crc mode is auto.
[  419.774335][T11679] mkiss: ax0: crc mode is auto.
[  423.334331][T11744] mkiss: ax0: crc mode is auto.
[  427.914102][T11825] mkiss: ax0: crc mode is auto.
[  431.351541][T11879] mkiss: ax0: crc mode is auto.
[  433.036895][T11906] sp0: Synchronizing with TNC
[  433.799648][T11925] mkiss: ax0: crc mode is auto.
[  437.855532][T11977] FAULT_INJECTION: forcing a failure.
[  437.855532][T11977] name failslab, interval 1, probability 0, space 0, times 0
[  437.905180][T11977] CPU: 1 UID: 0 PID: 11977 Comm: syz.1.1214 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0
[  437.905212][T11977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  437.905225][T11977] Call Trace:
[  437.905231][T11977]  <TASK>
[  437.905240][T11977]  dump_stack_lvl+0x16c/0x1f0
[  437.905273][T11977]  should_fail_ex+0x497/0x5b0
[  437.905296][T11977]  ? fs_reclaim_acquire+0xae/0x150
[  437.905331][T11977]  should_failslab+0xc2/0x120
[  437.905358][T11977]  __kmalloc_noprof+0xce/0x4f0
[  437.905380][T11977]  ? d_absolute_path+0x137/0x1b0
[  437.905405][T11977]  ? tomoyo_encode2+0x100/0x3e0
[  437.905429][T11977]  tomoyo_encode2+0x100/0x3e0
[  437.905454][T11977]  tomoyo_realpath_from_path+0x1a7/0x710
[  437.905485][T11977]  tomoyo_path_number_perm+0x248/0x5b0
[  437.905514][T11977]  ? tomoyo_path_number_perm+0x235/0x5b0
[  437.905547][T11977]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  437.905607][T11977]  ? __pfx_lock_release+0x10/0x10
[  437.905633][T11977]  ? trace_lock_acquire+0x14e/0x1f0
[  437.905659][T11977]  ? lock_acquire+0x2f/0xb0
[  437.905681][T11977]  ? __fget_files+0x40/0x3a0
[  437.905716][T11977]  ? __fget_files+0x206/0x3a0
[  437.905741][T11977]  security_file_ioctl+0x9b/0x240
[  437.905776][T11977]  __x64_sys_ioctl+0xb7/0x200
[  437.905808][T11977]  do_syscall_64+0xcd/0x250
[  437.905840][T11977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.905870][T11977] RIP: 0033:0x7f63c198cd29
[  437.905889][T11977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  437.905909][T11977] RSP: 002b:00007f63c28bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  437.905931][T11977] RAX: ffffffffffffffda RBX: 00007f63c1ba5fa0 RCX: 00007f63c198cd29
[  437.905945][T11977] RDX: 0000000000000000 RSI: 00000000400454d0 RDI: 0000000000000003
[  437.905956][T11977] RBP: 00007f63c28bd090 R08: 0000000000000000 R09: 0000000000000000
[  437.905969][T11977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  437.905981][T11977] R13: 0000000000000000 R14: 00007f63c1ba5fa0 R15: 00007fffb285a9d8
[  437.906012][T11977]  </TASK>
[  437.906040][T11977] ERROR: Out of memory at tomoyo_realpath_from_path.
[  439.601361][T12004] FAULT_INJECTION: forcing a failure.
[  439.601361][T12004] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  439.727909][T12004] CPU: 0 UID: 0 PID: 12004 Comm: syz.1.1223 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0
[  439.727943][T12004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  439.727956][T12004] Call Trace:
[  439.727962][T12004]  <TASK>
[  439.727971][T12004]  dump_stack_lvl+0x16c/0x1f0
[  439.728004][T12004]  should_fail_ex+0x497/0x5b0
[  439.728032][T12004]  strncpy_from_user+0x3b/0x2d0
[  439.728069][T12004]  getname_flags.part.0+0x8f/0x550
[  439.728101][T12004]  getname+0x8d/0xe0
[  439.728131][T12004]  do_sys_openat2+0x104/0x1e0
[  439.728159][T12004]  ? __pfx_do_sys_openat2+0x10/0x10
[  439.728190][T12004]  ? __fget_files+0x206/0x3a0
[  439.728218][T12004]  __x64_sys_openat+0x175/0x210
[  439.728245][T12004]  ? __pfx___x64_sys_openat+0x10/0x10
[  439.728271][T12004]  ? ksys_write+0x1ba/0x250
[  439.728315][T12004]  do_syscall_64+0xcd/0x250
[  439.728347][T12004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  439.728377][T12004] RIP: 0033:0x7f63c198cd29
[  439.728395][T12004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  439.728415][T12004] RSP: 002b:00007f63c28bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  439.728436][T12004] RAX: ffffffffffffffda RBX: 00007f63c1ba5fa0 RCX: 00007f63c198cd29
[  439.728450][T12004] RDX: 0000000000000000 RSI: 00000000200005c0 RDI: ffffffffffffff9c
[  439.728463][T12004] RBP: 00007f63c28bd090 R08: 0000000000000000 R09: 0000000000000000
[  439.728475][T12004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  439.728488][T12004] R13: 0000000000000001 R14: 00007f63c1ba5fa0 R15: 00007fffb285a9d8
[  439.728517][T12004]  </TASK>
[  440.288767][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  440.300980][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  448.467177][T12158] FAULT_INJECTION: forcing a failure.
[  448.467177][T12158] name failslab, interval 1, probability 0, space 0, times 0
[  448.479995][T12158] CPU: 0 UID: 0 PID: 12158 Comm: syz.1.1264 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0
[  448.480024][T12158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  448.480036][T12158] Call Trace:
[  448.480043][T12158]  <TASK>
[  448.480052][T12158]  dump_stack_lvl+0x16c/0x1f0
[  448.480085][T12158]  should_fail_ex+0x497/0x5b0
[  448.480108][T12158]  ? fs_reclaim_acquire+0xae/0x150
[  448.480143][T12158]  should_failslab+0xc2/0x120
[  448.480170][T12158]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  448.480195][T12158]  ? __alloc_skb+0x2b3/0x380
[  448.480229][T12158]  __alloc_skb+0x2b3/0x380
[  448.480256][T12158]  ? __pfx___alloc_skb+0x10/0x10
[  448.480284][T12158]  ? lock_acquire+0x2f/0xb0
[  448.480318][T12158]  netlink_alloc_large_skb+0x69/0x130
[  448.480346][T12158]  netlink_sendmsg+0x689/0xd70
[  448.480375][T12158]  ? __pfx_netlink_sendmsg+0x10/0x10
[  448.480419][T12158]  ____sys_sendmsg+0x9ae/0xb40
[  448.480443][T12158]  ? copy_msghdr_from_user+0x10b/0x160
[  448.480472][T12158]  ? __pfx_____sys_sendmsg+0x10/0x10
[  448.480510][T12158]  ___sys_sendmsg+0x135/0x1e0
[  448.480542][T12158]  ? __pfx____sys_sendmsg+0x10/0x10
[  448.480584][T12158]  ? __pfx_lock_release+0x10/0x10
[  448.480609][T12158]  ? trace_lock_acquire+0x14e/0x1f0
[  448.480641][T12158]  ? __fget_files+0x206/0x3a0
[  448.480670][T12158]  __sys_sendmsg+0x16e/0x220
[  448.480700][T12158]  ? __pfx___sys_sendmsg+0x10/0x10
[  448.480747][T12158]  do_syscall_64+0xcd/0x250
[  448.480776][T12158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  448.480803][T12158] RIP: 0033:0x7f63c198cd29
[  448.480820][T12158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  448.480841][T12158] RSP: 002b:00007f63c28bd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  448.480859][T12158] RAX: ffffffffffffffda RBX: 00007f63c1ba5fa0 RCX: 00007f63c198cd29
[  448.480873][T12158] RDX: 0000000000008044 RSI: 0000000020000000 RDI: 0000000000000003
[  448.480885][T12158] RBP: 00007f63c28bd090 R08: 0000000000000000 R09: 0000000000000000
[  448.480902][T12158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  448.480914][T12158] R13: 0000000000000000 R14: 00007f63c1ba5fa0 R15: 00007fffb285a9d8
[  448.480941][T12158]  </TASK>
[  452.566383][T12204] FAULT_INJECTION: forcing a failure.
[  452.566383][T12204] name failslab, interval 1, probability 0, space 0, times 0
[  452.656988][T12204] CPU: 0 UID: 0 PID: 12204 Comm: syz.1.1277 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0
[  452.657021][T12204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  452.657033][T12204] Call Trace:
[  452.657040][T12204]  <TASK>
[  452.657048][T12204]  dump_stack_lvl+0x16c/0x1f0
[  452.657082][T12204]  should_fail_ex+0x497/0x5b0
[  452.657105][T12204]  ? fs_reclaim_acquire+0xae/0x150
[  452.657140][T12204]  should_failslab+0xc2/0x120
[  452.657167][T12204]  __kmalloc_noprof+0xce/0x4f0
[  452.657188][T12204]  ? d_absolute_path+0x137/0x1b0
[  452.657214][T12204]  ? tomoyo_encode2+0x100/0x3e0
[  452.657254][T12204]  tomoyo_encode2+0x100/0x3e0
[  452.657280][T12204]  tomoyo_realpath_from_path+0x1a7/0x710
[  452.657313][T12204]  tomoyo_path_number_perm+0x248/0x5b0
[  452.657343][T12204]  ? tomoyo_path_number_perm+0x235/0x5b0
[  452.657377][T12204]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  452.657441][T12204]  ? __pfx_lock_release+0x10/0x10
[  452.657467][T12204]  ? trace_lock_acquire+0x14e/0x1f0
[  452.657493][T12204]  ? lock_acquire+0x2f/0xb0
[  452.657517][T12204]  ? __fget_files+0x40/0x3a0
[  452.657543][T12204]  ? __fget_files+0x206/0x3a0
[  452.657569][T12204]  security_file_ioctl+0x9b/0x240
[  452.657604][T12204]  __x64_sys_ioctl+0xb7/0x200
[  452.657637][T12204]  do_syscall_64+0xcd/0x250
[  452.657668][T12204]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.657698][T12204] RIP: 0033:0x7f63c198cd29
[  452.657716][T12204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  452.657736][T12204] RSP: 002b:00007f63c28bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  452.657758][T12204] RAX: ffffffffffffffda RBX: 00007f63c1ba5fa0 RCX: 00007f63c198cd29
[  452.657772][T12204] RDX: 0000000000000000 RSI: 00000000c1086201 RDI: 0000000000000003
[  452.657785][T12204] RBP: 00007f63c28bd090 R08: 0000000000000000 R09: 0000000000000000
[  452.657798][T12204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  452.657811][T12204] R13: 0000000000000000 R14: 00007f63c1ba5fa0 R15: 00007fffb285a9d8
[  452.657842][T12204]  </TASK>
[  452.657860][T12204] ERROR: Out of memory at tomoyo_realpath_from_path.
[  453.724289][T12210] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1287'.
[  454.575898][T12225] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1283'.
[  454.596831][T12225] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1283'.
[  455.161961][T12237] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1288'.
[  455.198808][T12237] FAULT_INJECTION: forcing a failure.
[  455.198808][T12237] name failslab, interval 1, probability 0, space 0, times 0
[  455.329164][T12237] CPU: 0 UID: 0 PID: 12237 Comm: syz.2.1288 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0
[  455.329198][T12237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  455.329210][T12237] Call Trace:
[  455.329216][T12237]  <TASK>
[  455.329225][T12237]  dump_stack_lvl+0x16c/0x1f0
[  455.329257][T12237]  should_fail_ex+0x497/0x5b0
[  455.329281][T12237]  ? fs_reclaim_acquire+0xae/0x150
[  455.329317][T12237]  should_failslab+0xc2/0x120
[  455.329344][T12237]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  455.329369][T12237]  ? __alloc_skb+0x2b3/0x380
[  455.329404][T12237]  __alloc_skb+0x2b3/0x380
[  455.329432][T12237]  ? __pfx___alloc_skb+0x10/0x10
[  455.329472][T12237]  netlink_alloc_large_skb+0x69/0x130
[  455.329501][T12237]  netlink_sendmsg+0x689/0xd70
[  455.329531][T12237]  ? __pfx_netlink_sendmsg+0x10/0x10
[  455.329568][T12237]  ____sys_sendmsg+0x9ae/0xb40
[  455.329592][T12237]  ? copy_msghdr_from_user+0x10b/0x160
[  455.329622][T12237]  ? __pfx_____sys_sendmsg+0x10/0x10
[  455.329653][T12237]  ? get_pid_task+0xfc/0x250
[  455.329678][T12237]  ___sys_sendmsg+0x135/0x1e0
[  455.329710][T12237]  ? __pfx____sys_sendmsg+0x10/0x10
[  455.329768][T12237]  ? __pfx_vfs_write+0x10/0x10
[  455.329801][T12237]  ? do_sys_openat2+0xb1/0x1e0
[  455.329832][T12237]  __sys_sendmsg+0x16e/0x220
[  455.329863][T12237]  ? __pfx___sys_sendmsg+0x10/0x10
[  455.329919][T12237]  do_syscall_64+0xcd/0x250
[  455.329951][T12237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  455.329990][T12237] RIP: 0033:0x7f9818f8cd29
[  455.330009][T12237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  455.330030][T12237] RSP: 002b:00007f9819d0f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  455.330051][T12237] RAX: ffffffffffffffda RBX: 00007f98191a5fa0 RCX: 00007f9818f8cd29
[  455.330066][T12237] RDX: 0000000004000000 RSI: 0000000020000180 RDI: 0000000000000000
[  455.330080][T12237] RBP: 00007f9819d0f090 R08: 0000000000000000 R09: 0000000000000000
[  455.330093][T12237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  455.330106][T12237] R13: 0000000000000000 R14: 00007f98191a5fa0 R15: 00007fff6e8a3fd8
[  455.330135][T12237]  </TASK>
[  459.333405][T12292] FAULT_INJECTION: forcing a failure.
[  459.333405][T12292] name failslab, interval 1, probability 0, space 0, times 0
[  459.364854][T12292] CPU: 0 UID: 0 PID: 12292 Comm: syz.1.1303 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0
[  459.364886][T12292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  459.364898][T12292] Call Trace:
[  459.364905][T12292]  <TASK>
[  459.364914][T12292]  dump_stack_lvl+0x16c/0x1f0
[  459.364946][T12292]  should_fail_ex+0x497/0x5b0
[  459.364969][T12292]  ? fs_reclaim_acquire+0xae/0x150
[  459.365003][T12292]  should_failslab+0xc2/0x120
[  459.365030][T12292]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  459.365053][T12292]  ? lockdep_init_map_type+0x16d/0x7d0
[  459.365081][T12292]  ? security_inode_alloc+0x3b/0x2b0
[  459.365116][T12292]  security_inode_alloc+0x3b/0x2b0
[  459.365166][T12292]  inode_init_always_gfp+0xce4/0x1030
[  459.365194][T12292]  alloc_inode+0x82/0x230
[  459.365218][T12292]  sock_alloc+0x40/0x280
[  459.365250][T12292]  __sock_create+0xc1/0x8d0
[  459.365278][T12292]  __sys_socket+0x14f/0x260
[  459.365301][T12292]  ? __pfx___sys_socket+0x10/0x10
[  459.365323][T12292]  ? ksys_write+0x1ba/0x250
[  459.365355][T12292]  ? __pfx_ksys_write+0x10/0x10
[  459.365402][T12292]  __x64_sys_socket+0x72/0xb0
[  459.365425][T12292]  ? lockdep_hardirqs_on+0x7c/0x110
[  459.365452][T12292]  do_syscall_64+0xcd/0x250
[  459.365483][T12292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.365513][T12292] RIP: 0033:0x7f63c198cd29
[  459.365532][T12292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  459.365553][T12292] RSP: 002b:00007f63c28bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  459.365574][T12292] RAX: ffffffffffffffda RBX: 00007f63c1ba5fa0 RCX: 00007f63c198cd29
[  459.365589][T12292] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000010
[  459.365602][T12292] RBP: 00007f63c28bd090 R08: 0000000000000000 R09: 0000000000000000
[  459.365615][T12292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  459.365628][T12292] R13: 0000000000000000 R14: 00007f63c1ba5fa0 R15: 00007fffb285a9d8
[  459.365659][T12292]  </TASK>
[  459.365966][T12292] socket: no more sockets
[  461.492822][T12347] openvswitch: netlink: Multiple metadata blocks provided
[  464.155116][T12395] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  464.163387][T12395] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  464.225292][T12395] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  464.233600][T12395] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  464.242019][T12395] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  464.250400][T12395] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  464.293150][T12395] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  464.303567][T12395] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  466.443383][T12439] FAULT_INJECTION: forcing a failure.
[  466.443383][T12439] name failslab, interval 1, probability 0, space 0, times 0
[  466.488305][T12439] CPU: 1 UID: 0 PID: 12439 Comm: syz.3.1331 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0
[  466.488334][T12439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  466.488345][T12439] Call Trace:
[  466.488351][T12439]  <TASK>
[  466.488359][T12439]  dump_stack_lvl+0x16c/0x1f0
[  466.488388][T12439]  should_fail_ex+0x497/0x5b0
[  466.488408][T12439]  ? fs_reclaim_acquire+0xae/0x150
[  466.488439][T12439]  should_failslab+0xc2/0x120
[  466.488463][T12439]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  466.488485][T12439]  ? vm_area_dup+0x53/0x300
[  466.488514][T12439]  vm_area_dup+0x53/0x300
[  466.488539][T12439]  __split_vma+0x181/0x1210
[  466.488565][T12439]  ? __pfx___split_vma+0x10/0x10
[  466.488602][T12439]  vms_gather_munmap_vmas+0x38b/0x1730
[  466.488633][T12439]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  466.488659][T12439]  ? mas_walk+0x6a6/0x910
[  466.488694][T12439]  __mmap_region+0x32c/0x2760
[  466.488720][T12439]  ? __pfx___mmap_region+0x10/0x10
[  466.488742][T12439]  ? hlock_class+0x4e/0x130
[  466.488769][T12439]  ? mark_lock+0xb5/0xc60
[  466.488802][T12439]  ? hlock_class+0x4e/0x130
[  466.488828][T12439]  ? __lock_acquire+0xcc5/0x3c40
[  466.488899][T12439]  ? cap_capable+0xb3/0x250
[  466.488938][T12439]  mmap_region+0x127/0x320
[  466.488962][T12439]  do_mmap+0xa09/0x1050
[  466.488988][T12439]  vm_mmap_pgoff+0x203/0x3a0
[  466.489015][T12439]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  466.489035][T12439]  ? __fget_files+0x206/0x3a0
[  466.489063][T12439]  ksys_mmap_pgoff+0x7d/0x5c0
[  466.489092][T12439]  ? __pfx_ksys_write+0x10/0x10
[  466.489125][T12439]  __x64_sys_mmap+0x125/0x190
[  466.489156][T12439]  do_syscall_64+0xcd/0x250
[  466.489184][T12439]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  466.489211][T12439] RIP: 0033:0x7f95fc78cd29
[  466.489228][T12439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  466.489246][T12439] RSP: 002b:00007f95fa5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  466.489264][T12439] RAX: ffffffffffffffda RBX: 00007f95fc9a6080 RCX: 00007f95fc78cd29
[  466.489276][T12439] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000
[  466.489288][T12439] RBP: 00007f95fa5f6090 R08: 0000000000000401 R09: 0000000000008000
[  466.489314][T12439] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001
[  466.489329][T12439] R13: 0000000000000000 R14: 00007f95fc9a6080 R15: 00007ffc12991988
[  466.489357][T12439]  </TASK>
[  468.094781][T12467] could not allocate digest TFM handle 
[  468.317920][T12466] could not allocate digest TFM handle 
[  468.526133][T12471] could not allocate digest TFM handle 
[  469.607622][T12511] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  469.616971][T12511] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  469.623152][T12511] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  469.640750][T12511] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  469.675412][T12521] FAULT_INJECTION: forcing a failure.
[  469.675412][T12521] name failslab, interval 1, probability 0, space 0, times 0
[  469.688590][T12521] CPU: 0 UID: 0 PID: 12521 Comm: syz.2.1346 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0
[  469.688619][T12521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  469.688631][T12521] Call Trace:
[  469.688637][T12521]  <TASK>
[  469.688646][T12521]  dump_stack_lvl+0x16c/0x1f0
[  469.688679][T12521]  should_fail_ex+0x497/0x5b0
[  469.688701][T12521]  ? fs_reclaim_acquire+0xae/0x150
[  469.688734][T12521]  should_failslab+0xc2/0x120
[  469.688761][T12521]  __kmalloc_cache_noprof+0x68/0x420
[  469.688783][T12521]  ? trace_kmalloc+0x2d/0xd0
[  469.688811][T12521]  ? __kmalloc_node_noprof+0x23d/0x520
[  469.688841][T12521]  s_start+0x7b/0x310
[  469.688870][T12521]  traverse.part.0.constprop.0+0xac/0x640
[  469.688911][T12521]  seq_read_iter+0x934/0x12b0
[  469.688953][T12521]  seq_read+0x39f/0x4e0
[  469.688984][T12521]  ? __pfx_seq_read+0x10/0x10
[  469.689014][T12521]  ? iovec_from_user.part.0+0x7e/0x130
[  469.689058][T12521]  ? rw_verify_area+0xcf/0x680
[  469.689088][T12521]  ? __pfx_seq_read+0x10/0x10
[  469.689118][T12521]  vfs_readv+0x6c2/0x8a0
[  469.689146][T12521]  ? __pfx___lock_acquire+0x10/0x10
[  469.689173][T12521]  ? find_held_lock+0x2d/0x110
[  469.689220][T12521]  ? __pfx_vfs_readv+0x10/0x10
[  469.689258][T12521]  ? __fget_files+0x1fc/0x3a0
[  469.689279][T12521]  ? __pfx_lock_release+0x10/0x10
[  469.689319][T12521]  ? __fget_files+0x206/0x3a0
[  469.689348][T12521]  ? do_preadv+0x1b1/0x270
[  469.689377][T12521]  do_preadv+0x1b1/0x270
[  469.689409][T12521]  ? __pfx_do_preadv+0x10/0x10
[  469.689450][T12521]  do_syscall_64+0xcd/0x250
[  469.689481][T12521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.689511][T12521] RIP: 0033:0x7f9818f8cd29
[  469.689529][T12521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  469.689550][T12521] RSP: 002b:00007f9816df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  469.689570][T12521] RAX: ffffffffffffffda RBX: 00007f98191a6080 RCX: 00007f9818f8cd29
[  469.689585][T12521] RDX: 0000000000000004 RSI: 0000000020000080 RDI: 0000000000000002
[  469.689597][T12521] RBP: 00007f9816df6090 R08: 0000000000000005 R09: 0000000000000000
[  469.689610][T12521] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  469.689623][T12521] R13: 0000000000000000 R14: 00007f98191a6080 R15: 00007fff6e8a3fd8
[  469.689654][T12521]  </TASK>
[  469.689674][T12521] 
[  469.923500][T12521] =====================================
[  469.929027][T12521] WARNING: bad unlock balance detected!
[  469.934555][T12521] 6.13.0-syzkaller-07048-gae8b53aac327 #0 Not tainted
[  469.941302][T12521] -------------------------------------
[  469.946825][T12521] syz.2.1346/12521 is trying to release lock (event_mutex) at:
[  469.954368][T12521] [<ffffffff82390f7d>] traverse.part.0.constprop.0+0x2bd/0x640
[  469.961920][T12521] but there are no more locks to release!
[  469.967626][T12521] 
[  469.967626][T12521] other info that might help us debug this:
[  469.975669][T12521] 1 lock held by syz.2.1346/12521:
[  469.980768][T12521]  #0: ffff8880296388b8 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xd8/0x12b0
[  469.989655][T12521] 
[  469.989655][T12521] stack backtrace:
[  469.995540][T12521] CPU: 0 UID: 0 PID: 12521 Comm: syz.2.1346 Not tainted 6.13.0-syzkaller-07048-gae8b53aac327 #0
[  469.995562][T12521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  469.995573][T12521] Call Trace:
[  469.995578][T12521]  <TASK>
[  469.995586][T12521]  dump_stack_lvl+0x116/0x1f0
[  469.995611][T12521]  ? traverse.part.0.constprop.0+0x2bd/0x640
[  469.995637][T12521]  print_unlock_imbalance_bug+0x1aa/0x1f0
[  469.995658][T12521]  lock_release+0x525/0x6f0
[  469.995678][T12521]  ? traverse.part.0.constprop.0+0x2bd/0x640
[  469.995704][T12521]  ? __pfx_lock_release+0x10/0x10
[  469.995724][T12521]  ? s_start+0x7b/0x310
[  469.995745][T12521]  ? dump_stack_lvl+0x185/0x1f0
[  469.995765][T12521]  ? lockdep_hardirqs_on+0x7c/0x110
[  469.995788][T12521]  __mutex_unlock_slowpath+0xa3/0x6a0
[  469.995811][T12521]  ? rcu_is_watching+0x12/0xc0
[  469.995837][T12521]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  469.995860][T12521]  ? __kmalloc_cache_noprof+0x261/0x420
[  469.995878][T12521]  ? rcu_is_watching+0x12/0xc0
[  469.995908][T12521]  ? kfree+0x274/0x4b0
[  469.995923][T12521]  ? s_start+0x27d/0x310
[  469.995944][T12521]  traverse.part.0.constprop.0+0x2bd/0x640
[  469.995972][T12521]  seq_read_iter+0x934/0x12b0
[  469.996000][T12521]  seq_read+0x39f/0x4e0
[  469.996023][T12521]  ? __pfx_seq_read+0x10/0x10
[  469.996046][T12521]  ? iovec_from_user.part.0+0x7e/0x130
[  469.996073][T12521]  ? rw_verify_area+0xcf/0x680
[  469.996096][T12521]  ? __pfx_seq_read+0x10/0x10
[  469.996119][T12521]  vfs_readv+0x6c2/0x8a0
[  469.996143][T12521]  ? __pfx___lock_acquire+0x10/0x10
[  469.996163][T12521]  ? find_held_lock+0x2d/0x110
[  469.996191][T12521]  ? __pfx_vfs_readv+0x10/0x10
[  469.996216][T12521]  ? __fget_files+0x1fc/0x3a0
[  469.996232][T12521]  ? __pfx_lock_release+0x10/0x10
[  469.996257][T12521]  ? __fget_files+0x206/0x3a0
[  469.996275][T12521]  ? do_preadv+0x1b1/0x270
[  469.996298][T12521]  do_preadv+0x1b1/0x270
[  469.996321][T12521]  ? __pfx_do_preadv+0x10/0x10
[  469.996348][T12521]  do_syscall_64+0xcd/0x250
[  469.996372][T12521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.996397][T12521] RIP: 0033:0x7f9818f8cd29
[  469.996412][T12521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  469.996429][T12521] RSP: 002b:00007f9816df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  469.996445][T12521] RAX: ffffffffffffffda RBX: 00007f98191a6080 RCX: 00007f9818f8cd29
[  469.996457][T12521] RDX: 0000000000000004 RSI: 0000000020000080 RDI: 0000000000000002
[  469.996468][T12521] RBP: 00007f9816df6090 R08: 0000000000000005 R09: 0000000000000000
[  469.996478][T12521] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  469.996489][T12521] R13: 0000000000000000 R14: 00007f98191a6080 R15: 00007fff6e8a3fd8
[  469.996505][T12521]  </TASK>
[  469.996524][    C0] vkms_vblank_simulate: vblank timer overrun
[  470.275758][    C0] vkms_vblank_simulate: vblank timer overrun
[  471.004843][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout
[  471.644850][   T54] Bluetooth: hci2: command 0x0c1a tx timeout
[  471.648820][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[  471.653234][   T54] Bluetooth: hci1: command 0x0c1a tx timeout