last executing test programs:

4m27.899027074s ago: executing program 0 (id=28):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x30000000, 0x4, 0x0, 0x6)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
gettid()
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r0 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
bpf$auto(0x5, 0x0, 0x2000007)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_fops_u64_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim2/psample/out_tc_occ_max\x00', 0x0, 0x0)
setreuid$auto(0x42f, 0x200000000000002)
r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
fcntl$auto(r2, 0x2, 0x0)
prlimit64$auto(0x0, 0xf67a, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x1)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)

4m27.460112991s ago: executing program 0 (id=33):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x800, 0xe1, 0x16, 0x401, 0x101)
bpf$auto(0x0, 0x0, 0x6f3)
socket(0x10, 0x2, 0x0)
memfd_create$auto(&(0x7f00000000c0)='\xc4--:\xdd:,./-${\x00', 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket(0x2a, 0x2, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x1000003, 0x40000000000eb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0x3)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x81, 0x0)
ioctl$auto(0x1, 0x890c, 0x8)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty58\x00', 0x800, 0x0)
mmap$auto(0x0, 0x402000b, 0x6, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x4)
symlink$auto(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000040)='./file0\x00')
link$auto(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file1\x00')
ioctl$auto(r0, 0x4b69, 0x7)
openat$auto_fops_u32_(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim4/ports/2/ethtool/get_err\x00', 0x40, 0x0)
socket(0x11, 0x80003, 0xfffffff9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
pipe2$auto(0x0, 0x80)
setsockopt$auto(0x3, 0x1, 0x3d, 0x0, 0x8)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_open_procfs$namespace(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

4m24.029708508s ago: executing program 0 (id=50):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_SMC_NETLINK_ADD_UEID(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0xb4, r1, 0x800, 0x70bd27, 0x25dfdbfe, {}, [@SMC_NLA_EID_TABLE_ENTRY={0x5, 0x1, ']'}, @SMC_NLA_EID_TABLE_UNSPEC={0x5a, 0x0, "45e473043778246b5cf69d6496aed4747f80b9563d33b107fd78419262014abbbd051b17ab906ab408fe0d7d1ea741c92cd79de4ed6cd8841d26910afb40cb925513d067010df4be24ee551282fa742c2d6f75250239"}, @SMC_NLA_EID_TABLE_UNSPEC={0x3c, 0x0, "0133e85673368eb697b90bde5947484b8b558926adc7758a5a63ba178ff4822cfb7290c1d2ecb4adaeab94febfa9569102ecd73c0984a913"}]}, 0xb4}, 0x1, 0x0, 0x0, 0x4040}, 0x10)
mmap$auto(0x0, 0x4, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(r2, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x9}, 0x3)
r3 = socket(0x11, 0x3, 0x9)
sendmmsg$auto(r3, &(0x7f0000000400)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000440)="661b0c", 0x49}, 0x1, &(0x7f0000000200), 0x5, 0x3}, 0x5}, 0x2, 0x100)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000841)
recvmmsg$auto(0x4, 0x0, 0x6, 0x2, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)

4m23.212286357s ago: executing program 0 (id=54):
mmap$auto(0x0, 0xffff, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r0 = socket(0x6, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000100), r0)
r1 = gettid()
rt_sigqueueinfo$auto(r1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'erspan0\x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000003b00), r2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(r2, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000003bc0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c401700", @ANYRES16=r3, @ANYRES16=0x0, @ANYRES32=r4], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x180c0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'bond0\x00'})
r5 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
fsconfig$auto(0x0, 0x2, 0x0, 0xffffffffffffffff, 0x4)
mmap$auto(0x0, 0x4020009, 0xdf, 0x16, 0x401, 0x8000)
r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/auth_enable\x00', 0x100, 0x0)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x88)
socket(0x2, 0x6, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0)
ioctl$auto(0xffffffffffffffff, 0x6, r5)
r7 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1c\x00', 0x8000, 0x0)
read$auto_proc_sys_file_operations_proc_sysctl(r6, 0x0, 0x0)
getuid()
r8 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x161802, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x2, 0x8, &(0x7f000000c400)='-]^{%}{\x00', 0x81)
ioctl$auto(r8, 0xc00c620f, r7)

4m22.990912701s ago: executing program 0 (id=56):
r0 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x4100, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000280)='/dev/usbmon29\x00', 0x5f9000, 0x0)
sendmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x12, 0x0, 0x9, 0x0, 0x1f, 0x7}}, 0x5, 0x1ffffffc)
readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x7}, 0x10)
r1 = socket(0x11, 0x800, 0xfb11)
mount$auto(&(0x7f0000000180)='xfrm0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='\x00', 0x6, &(0x7f0000000240)="e496433eeb34df08522bc6754c216c084e58d9ad5ebea1b0ec74fee049eb2494f7c7cbc32ce409a26374e4549474ea2edb417c4c501cef41fb17b0c3")
memfd_create$auto(0x0, 0x4)
seccomp$auto(0x2, 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
mmap$auto(0x0, 0x0, 0xdf, 0xeb1, r1, 0x1)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6)
tkill$auto(0x1, 0x7)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x3, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
unshare$auto(0x2)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
setns(r2, 0x0)
syz_clone(0x80000000, &(0x7f0000000000)="085a1056b6aa2f10d8ddee0633aea682a5ff", 0x12, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r3 = socket(0x10, 0x2, 0xa)
setsockopt$auto(r3, 0x104000000000010e, 0x1, 0x0, 0x16)
r4 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c72da808bf8d5feacf8510"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c001)
write$auto(r4, &(0x7f0000000000)='-\x00', 0x2fb)
clone$auto(0xfffffffe20001, 0x2, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x80100000005)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_NEW(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2035740058f60c22969296a49f8a78ce2fac56405bc8461c2b0496d28f72e4f7bd74e85bfed14bc9524b55f2c095919b84f7be2a59b46b0a9642df68803d1048f94be81a32d2b864c6a94a99a34ae9a0c0dcc4dd4a304438bb70d252cf48580129200521c8da040b07d9172ec228c163a54c8c1316a5c5d8aac730", @ANYRES16=r6, @ANYBLOB="01002cbd7000fcdbdf2401000000040008000400018004000280"], 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x40)

4m22.26413296s ago: executing program 0 (id=61):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000002940)={0x20, r1, 0x1, 0x70bd2c, 0x24dfdbfc, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x4}, @OVS_FLOW_ATTR_ACTIONS={0x4}]}, 0x20}, 0x1, 0x700, 0x0, 0x800}, 0x40)

4m21.886327793s ago: executing program 32 (id=61):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000002940)={0x20, r1, 0x1, 0x70bd2c, 0x24dfdbfc, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x4}, @OVS_FLOW_ATTR_ACTIONS={0x4}]}, 0x20}, 0x1, 0x700, 0x0, 0x800}, 0x40)

1m59.796851631s ago: executing program 4 (id=808):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000040), 0x10000, 0x0)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x23, 0x0, 0x8)
close_range$auto(r0, 0xffffffffffffffff, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xcc, 0x0, 0x567)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="1a00", @ANYRES16=r2, @ANYBLOB="100028bd7000ffdbdf25050000003900fe00a784d546e14c441aef7aa4dc7b30ba4ab9172355ed37c7d5c2ec316c2fd2e375b625ac4d5ea5a5df57cf1606eb826d7b92378c03940000000400bf00"], 0x54}, 0x1, 0x0, 0x0, 0x8000}, 0x8043b8c17d0304f5)
socket(0x2c, 0x4, 0x40020001)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
setsockopt$auto(0x400000000000003, 0x29, 0x4e, 0xffffffffffffffff, 0x3)

1m58.735871179s ago: executing program 4 (id=804):
r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/ext4/sda1/options\x00', 0x0, 0x0)
exit$auto(0x5)
timer_gettime$auto(0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
sendmsg$auto_NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x12dc}, 0x1, 0x0, 0x0, 0x20000000}, 0x4008004)
sendmsg$auto_NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2000c080}, 0x1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/cpuidle/current_governor\x00', 0xa42, 0x0)
write$auto(0x3, 0x0, 0x3f00)
read$auto_proc_single_file_operations_base(r0, &(0x7f0000000040)=""/56, 0x38)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, 0x0, 0x1)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0)
write$auto(r1, 0x0, 0x100082)
ioctl$auto_SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000040)=0x2c5c)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_BIND_RX(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x22004814)
socket(0x1d, 0x3, 0x16)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x3c, r3, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0xc, 0x0, 0x1, [@nested={0x4, 0x1}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x50}, 0xc800)

1m54.521195375s ago: executing program 4 (id=825):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000040), 0x10000, 0x0)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x23, 0x0, 0x8)
close_range$auto(r0, 0xffffffffffffffff, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xcc, 0x0, 0x567)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="1a00", @ANYRES16=r2, @ANYBLOB="100028bd7000ffdbdf25050000003900fe00a784d546e14c441aef7aa4dc7b30ba4ab9172355ed37c7d5c2ec316c2fd2e375b625ac4d5ea5a5df57cf1606eb826d7b92378c03940000000400bf00"], 0x54}, 0x1, 0x0, 0x0, 0x8000}, 0x8043b8c17d0304f5)
socket(0x2c, 0x4, 0x40020001)
setsockopt$auto(0x400000000000003, 0x29, 0x4e, 0xffffffffffffffff, 0x3)

1m50.052167951s ago: executing program 4 (id=842):
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0x4070aea0, 0x38)
mlockall$auto(0x7)
set_mempolicy$auto(0x2005, &(0x7f0000000080)=0x87e, 0x4)
mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000)

1m47.881932917s ago: executing program 4 (id=854):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
clone$auto(0xd2d2, 0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x1)
r0 = gettid()
r1 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
open_by_handle_at$auto(r1, &(0x7f00000001c0)={0x98, 0x9, "da6300000000000098e10f5a387d089267a73b9d49c7d44a466106aed2e6b81149e6d3900c2fcf2ab2b3c1992c34a08b3889e51597fca30d7a4732cbc59a856107004495f08cb2b6bc3e81ede05e703b81497fff4879717efae53a76d4a5d6943a3f05437a03a15d9a2486fe13b55ce007d07eb5ee0519387f129135ea4fbef3b697c3f7df2af9a1c69305ee42c8a46f192a04e75d8fefb1"}, 0x500005)
process_vm_readv$auto(r0, &(0x7f0000000040)={0x0, 0x2}, 0x4, &(0x7f00000000c0)={0x0, 0x100000000000002}, 0x3, 0x0)

1m44.298549442s ago: executing program 4 (id=868):
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x30000000, 0x4, 0x0, 0x6)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r0 = socket(0xf, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
bpf$auto(0x5, 0x0, 0x2000007)
r1 = socket(0x1e, 0x4, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
msgsnd$auto(0x5, 0x0, 0x3, 0x8)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlock$auto(0xfbe8, 0x4)
futex$auto(0x0, 0x85, 0x2, 0x0, 0x0, 0x1)
mlockall$auto(0x7)
setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x0, 0x0)
ioctl$auto(r2, 0x900064b5, 0xc14)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
write$auto(r0, 0x0, 0x9)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_fops_u64_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim2/psample/out_tc_occ_max\x00', 0x0, 0x0)
setreuid$auto(0x42f, 0x200000000000002)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x82802, 0x0)
fcntl$auto(r3, 0x2, 0x0)
prlimit64$auto(0x0, 0xf67a, 0x0, 0x0)

1m29.241584393s ago: executing program 33 (id=868):
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x30000000, 0x4, 0x0, 0x6)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r0 = socket(0xf, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
bpf$auto(0x5, 0x0, 0x2000007)
r1 = socket(0x1e, 0x4, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
msgsnd$auto(0x5, 0x0, 0x3, 0x8)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlock$auto(0xfbe8, 0x4)
futex$auto(0x0, 0x85, 0x2, 0x0, 0x0, 0x1)
mlockall$auto(0x7)
setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x0, 0x0)
ioctl$auto(r2, 0x900064b5, 0xc14)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
write$auto(r0, 0x0, 0x9)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_fops_u64_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim2/psample/out_tc_occ_max\x00', 0x0, 0x0)
setreuid$auto(0x42f, 0x200000000000002)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x82802, 0x0)
fcntl$auto(r3, 0x2, 0x0)
prlimit64$auto(0x0, 0xf67a, 0x0, 0x0)

10.892502548s ago: executing program 3 (id=1250):
setitimer$auto(0x0, &(0x7f0000000000)={{0x4000000000002, 0x52}, {0x800000006, 0x7}}, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
io_uring_setup$auto(0xa, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
close_range$auto(0x2, 0xa, 0x0)
r0 = getpgid(0x0)
pidfd_open$auto(r0, 0x0)
open(0x0, 0xa240, 0x15e)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0xa, 0x801, 0x100)
r3 = syz_genetlink_get_family_id$auto_net_dm(&(0x7f0000000080), r2)
sendmsg$auto_NET_DM_CMD_START(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, r3, 0x1, 0x70bd27, 0x25dfdbff, {}, [@NET_DM_ATTR_SW_DROPS={0x4}, @NET_DM_ATTR_QUEUE_LEN={0x8, 0xb, 0x10}, @NET_DM_ATTR_QUEUE_LEN={0x8, 0xb, 0x6}, @NET_DM_ATTR_UNSPEC={0x15, 0x0, "9b385e481982ff4c48bb76d29ccadf25d9"}]}, 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
sendto$auto(0xffffffffffffffff, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/dummy_hcd.5/usb6/power/wakeup\x00', 0x181c82, 0x0)
read$auto_stat_fops_per_vm_kvm_main(r4, &(0x7f0000000000)=""/14, 0xe)
connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x4e21, @multicast1}, 0x55)
close_range$auto(0x2, 0x8, 0x0)

10.133709485s ago: executing program 3 (id=1254):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x100000000004, 0xdb, 0x15, 0x401, 0x8003)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xe4a9f03f5a49ba4f, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/rose2/statistics/rx_packets\x00', 0x0, 0x0)
read$auto(r0, &(0x7f0000000080)='%{\\-@+.\x00', 0x10)
socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0x20009, 0x6, 0xeb1, 0x401, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/dummy_pcm\x00', 0x121040, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0xd97f760c479e8c8e, 0x0)
write$auto(r1, &(0x7f0000000000)=';!+^', 0xc9c8)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
read$auto(0x3, 0x0, 0x80)
r2 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_marker_raw\x00', 0xc04, 0x0)
mmap$auto(0x2, 0x100, 0x1004, 0x13, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
ioperm$auto(0xaf, 0xe, 0x991b)
r3 = socket(0x10, 0x2, 0x6)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x2404c810)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x400, 0x0)
clone$auto(0x7, 0x7, 0xffffffffffffffff, 0x0, 0x1)
madvise$auto(0x0, 0x200007, 0x19)
write$auto_tracing_mark_raw_fops_trace(r2, 0x0, 0x10)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
fanotify_init$auto(0x5, 0x800)
pipe2$auto(0x0, 0x80)
close_range$auto(0x2, 0x8, 0x0)

9.840152471s ago: executing program 2 (id=1255):
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/mice\x00', 0x8006, 0x0)
r0 = openat$auto_proc_pid_set_timerslack_ns_operations_base(0xffffffffffffff9c, &(0x7f0000000080), 0x4a900, 0x0)
read$auto_proc_pid_set_timerslack_ns_operations_base(r0, &(0x7f00000000c0)=""/33, 0x21)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002)
socket(0x10, 0x2, 0x4)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/tty18\x00', 0x800, 0x0)
ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0)
read$auto(0x3, 0x0, 0x80)

9.666190525s ago: executing program 1 (id=1256):
madvise$auto(0x800000, 0x8000000000000000, 0xa)
mmap$auto(0x0, 0x4, 0x3, 0x13, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
mmap$auto(0xffffffffffffffff, 0x9, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x11, 0x2, 0x88)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
sysfs$auto(0x2, 0x4, 0x4)
mincore$auto(0x1000, 0x8001, 0x0)
r0 = io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x5)
statmount$auto(0x0, &(0x7f0000000380)={0x8, 0x1, 0x401bf, 0x7352, 0x34, 0x65f, 0x8001ffe2, 0x7, 0x4, 0x20000002, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x5, 0x10003, 0x80, 0x4, 0xfffffffd, 0x7, 0x2000, 0x203, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x420000002000, 0x0, 0x36000000000, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xfffffffffffffff9, 0x0, 0x5, 0x40003, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x200000000001, 0x0, 0xffffffffefffffff, 0x200000000000004, 0x4, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x4, 0x6, 0xffffffffffffffff, 0x88c, 0x93, 0xfffffffffffffffc, 0x1000, 0xa36, 0x0, 0x5, 0x0, 0x2, 0x4000000000, 0x8000000000000001], "1fc57c6b636942"}, 0xfe, 0xd)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r2=>0x0})
mmap$auto(0x4, 0x20009, 0xdf, 0x800000000eb1, r0, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x806, 0x0)
r3 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0x7, 0x80000003, 0x4000, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/mempolicy/weighted_interleave/node0\x00', 0xc2082, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000001600)=""/4098, 0x1002)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r3, 0x0, 0x4000000)
sendmsg$auto_NL80211_CMD_REMOVE_LINK_STA(r1, &(0x7f00000005c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00012abd7000fbdbff259800000004000501060065000900000004004401"], 0x24}, 0x1, 0x0, 0x0, 0xdd623fe401b93232}, 0x40004)
open(0x0, 0x22240, 0x155)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r2, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r2, @ANYBLOB="060006ff"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)

9.582111748s ago: executing program 2 (id=1257):
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0)
socket(0x28, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="2f212abd7800fddbdf2521000000"], 0x14}}, 0x4000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket(0x2, 0x1, 0x106)
fanotify_mark$auto(0xffffffffffffffff, 0x57c, 0xa, 0xffffffffffffffff, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
statx$auto(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x7d, 0x3, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents$auto(0x0, 0x0, 0x700)
socket(0xa, 0x5, 0x0)
ioctl$auto(0x1, 0x8941, 0x8)
read$auto_snd_pcm_f_ops_pcm1(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x2, 0x1, 0x506, 0x3, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
madvise$auto(0x108000, 0x800034, 0xa)
unshare$auto(0x40000080)
r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="01002dbd6600f9dbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000225bd7000fedbdf250400000014001f00fc0100000000000000000000000000000000000000000600031c240b000006001a004e2100000500140000000000050014000800000006001a004e20000008000a00a600"/102], 0x6c}, 0x1, 0x0, 0x0, 0x4000000}, 0x5)
r3 = open$auto(&(0x7f0000000200)='./file0\x00', 0x49193, 0xff90)
ioctl$auto_PPPIOCGFLAGS(r3, 0x8004745a, 0x0)

8.95667703s ago: executing program 1 (id=1259):
mmap$auto(0x3, 0x2020009, 0xa947, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
pselect6$auto(0xb9d, &(0x7f0000000280)={[0x8, 0x8, 0x3ff, 0xbe0b, 0x3, 0x9, 0x1, 0x3a6e, 0xf6f, 0x6, 0x1, 0x8, 0x6, 0x5, 0x52a]}, &(0x7f0000000380)={[0xffffffffffff6b71, 0xe2a, 0x6, 0x10000, 0x1000, 0xffffffffffffff81, 0x0, 0xa0, 0x5, 0xff, 0xb086, 0x1, 0x5, 0x2, 0x1, 0x63]}, &(0x7f0000000400)={[0x0, 0x1, 0xb, 0x3da, 0x1, 0x800, 0x40, 0x6, 0x4, 0x2a, 0x100000001, 0x100000001, 0x7fffffff, 0x1, 0x7ff, 0x4]}, &(0x7f0000000040)={0x401, 0x581611ef}, &(0x7f0000000540)="4afb3529f6cabdd264d46927fd89453b1e2a3873451597e272338382f02c634dfbc81b738db95a2c45420e34a021b80637c0ad86df0a2827ed63abebd979813b1c21e2ed0759a0743e91db8c3b5026403901897d7ff8a0abf2fb47038762d12c0f4c103a968e3a829416eec1ed0bf41764b756faa063f223b7b506a416cb84a2140b0b1269e9d5ff1f5419aed9d535b6c30e11ed25ea8f11b3cb93c4010794b5ecb3c1af560500176a843a3b9cc576ebd3c769ae78195c13da6eaf22d922171a775330b812210c38c926212d79efce7341efb1aa79d7ba335d13bb49f8f55f8f32da6cc176")
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0x3, 0x5460, 0x5)
mmap$auto(0x0, 0xe983, 0x9, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x40181, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x1)

8.040127677s ago: executing program 1 (id=1260):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20082, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_KVM_CREATE_VM(r0, 0xc080aebe, 0x0) (fail_nth: 6)

7.168264542s ago: executing program 2 (id=1262):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4040804)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0xf, 0x9, 0x76402f57, 0x0, 0x0, 0x0, 0x4, 0x40000000000f, 0x400, 0x40000402, 0x4, 0x9, 0xffffffff7fffffff, 0x9, 0x7, 0x20000010010b})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
futex_waitv$auto(&(0x7f0000000000)={0x8, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x101, 0xe3, 0x4000000100000eb1, 0x40000000000a1, 0x7ffe)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x80, 0x0)
read$auto_configfs_file_operations_configfs_internal(r1, &(0x7f0000000140)=""/39, 0x27)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x7, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
madvise$auto(0x6, 0x1, 0xb)

7.166349611s ago: executing program 3 (id=1263):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
timerfd_create$auto(0x0, 0x0)
timerfd_settime$auto(0xffffffffffffffff, 0x3, 0x0, 0x0)
adjtimex$auto(&(0x7f0000000000)={0x1ff, 0x0, 0xff, 0x6, 0x8, 0x0, 0x10, 0x0, 0x2, 0xbf, 0x1f6a, {0x0, 0x3}, 0x9, 0x1, 0x2, 0x6, 0x0, 0x8, 0x545, 0x1, 0x0, 0x8})
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
lsm_get_self_attr$auto(0xfc9, 0x0, &(0x7f0000000080)=0x8, 0x9)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
getgroups$auto(0xeda, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x42401, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000100), 0xffffffffffffffff)
pwritev$auto(0x5, &(0x7f0000000000)={&(0x7f0000000080), 0x19}, 0xb, 0x9, 0x1fdc)

7.082926292s ago: executing program 1 (id=1264):
socket(0xa, 0x2, 0x73)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
connect$auto(0x3, &(0x7f0000000140), 0x55)
socket(0xa, 0x801, 0x84)
setsockopt$auto(0x400000000000003, 0x29, 0x4e, 0xffffffffffffffff, 0x3)
r0 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x800, 0x0)
ioctl$auto_snd_mixer_oss_f_ops_mixer_oss(r0, 0xfffffffffffffffb, &(0x7f0000000040)="e4df6416a826bea0d60581d91e695a40888be146668d5cfe1dc5dbbc15b29821571c435f36d465b7d73300a92b38ed59a7d4f2722633b03bd8b627b01dcef9bcc6e04759df01cd294709c4fa8e5b1711ed043c53558ee1f751a0f23dc37e8a4d4c3f44a22bdb972d9d94fa7e11228663a6a28782699fd74399d8e2bbfb26207be91c98c5c4f5e4a592223b006abab9608e181cfb700c75c171ea07175bd203e1b4e1f6df20b0884194fa0e44358dcc0cd5329a2cb06fa930005f189d7422a267437509396dfab786580acbfc0db663ef42a888a837")

6.748096128s ago: executing program 1 (id=1265):
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/mice\x00', 0x8006, 0x0)
r0 = openat$auto_proc_pid_set_timerslack_ns_operations_base(0xffffffffffffff9c, &(0x7f0000000080), 0x4a900, 0x0)
read$auto_proc_pid_set_timerslack_ns_operations_base(r0, &(0x7f00000000c0)=""/33, 0x21)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002)
socket(0x10, 0x2, 0x4)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/tty18\x00', 0x800, 0x0)
ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0)
read$auto(0x3, 0x0, 0x80)

6.283001489s ago: executing program 1 (id=1267):
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/security/tomoyo/profile\x00', 0x2, 0x0)
mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) (async)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
sendmsg$auto_NL80211_CMD_DISASSOCIATE(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\b\x00\x00', @ANYRES16=r1, @ANYBLOB="00012bbd7000fddbdf252800000005003e000800000031004801a289c1c1f3026f75a4d3a66a76f9f65578159c8a96f55e156e69b5114d651d9ec494a3d7791ee432bb9c"], 0x60}, 0x1, 0x0, 0x0, 0x54}, 0x1)
socket(0xa, 0x1, 0x84) (async)
r2 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) (async)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
io_uring_setup$auto(0x81c5, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
getsockopt$auto(r2, 0x84, 0x1b, 0x0, 0x0) (async)
getsockopt$auto(r2, 0x84, 0x1b, 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0) (async)
r3 = socket(0x2, 0x1, 0x0)
sendmmsg$auto(r3, 0x0, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfffffdef) (async)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0)
mmap$auto(0xffffffffffffffff, 0x2020009, 0x7f, 0xeb2, 0xfffefffffffffffa, 0x8000) (async)
mmap$auto(0xffffffffffffffff, 0x2020009, 0x7f, 0xeb2, 0xfffefffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082) (async)
write$auto(0x3, 0x0, 0x100082)
ioctl$auto_SNDCTL_DSP_SETFMT(r4, 0xc0045005, &(0x7f0000000040)=0x2c5c)
r5 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r5, 0x10f, 0x87, 0x0, 0x14)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/net/pppoe\x00', 0x313201, 0x0) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/net/pppoe\x00', 0x313201, 0x0)
mknod$auto(&(0x7f0000000000)='*-\x00', 0x5, 0x8)

5.621339974s ago: executing program 5 (id=1270):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x11, 0x2, 0x88)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
sysfs$auto(0x2, 0x4, 0x4)
mincore$auto(0x1000, 0x8001, 0x0)
r0 = io_uring_setup$auto(0x1, 0x0)
io_uring_enter$auto(r0, 0x1, 0x400065bd, 0x0, 0x0, 0xffffffffffffffff) (fail_nth: 2)

5.517058244s ago: executing program 2 (id=1271):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
ioctl$auto(0xffffffffffffffff, 0x80044dfe, 0x9)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, 0x0, 0x40600, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1f, 0xad, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x200, 0x7000000)
r0 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
read$auto(r0, &(0x7f0000000000)='\x00', 0x6)
socket(0x2, 0x3, 0x100)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003ec, 0x14)

5.477880585s ago: executing program 3 (id=1272):
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0)
socket(0x28, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="2f212abd7800fddbdf2521000000"], 0x14}}, 0x4000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket(0x2, 0x1, 0x106)
fanotify_mark$auto(0xffffffffffffffff, 0x57c, 0xa, 0xffffffffffffffff, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
statx$auto(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x7d, 0x3, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents$auto(0x0, 0x0, 0x700)
socket(0xa, 0x5, 0x0)
ioctl$auto(0x1, 0x8941, 0x8)
read$auto_snd_pcm_f_ops_pcm1(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x2, 0x1, 0x506, 0x3, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
madvise$auto(0x108000, 0x800034, 0xa)
unshare$auto(0x40000080)
r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="01002dbd6600f9dbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000225bd7000fedbdf250400000014001f00fc0100000000000000000000000000000000000000000600031c240b000006001a004e2100000500140000000000050014000800000006001a004e20000008000a00a600"/102], 0x6c}, 0x1, 0x0, 0x0, 0x4000000}, 0x5)
r3 = open$auto(&(0x7f0000000200)='./file0\x00', 0x49193, 0xff90)
ioctl$auto_PPPIOCGFLAGS(r3, 0x8004745a, 0x0)

4.515982604s ago: executing program 2 (id=1273):
r0 = socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001f00), r1)
sendmsg$auto_SMC_PNETID_ADD(r1, &(0x7f0000002000)={0x0, 0x0, &(0x7f0000001fc0)={&(0x7f0000001f40)={0x14, r2, 0x1, 0x70bd2a, 0x25dfd3fb}, 0x14}}, 0x8000)
ioperm$auto(0x7, 0x6, 0x2)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sched_get_priority_max$auto(0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = socket(0x10, 0x2, 0x0)
r4 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000140), r3)
sethostname$auto(&(0x7f0000000000)='/dev/bus/usb/015/001\x00', 0x8)
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20540, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
mount$auto(&(0x7f0000000000)='pimreg\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd057, 0x0)
mount$auto(0x0, &(0x7f0000000040)='802_15_4_MAC\x00', 0x0, 0xaac, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_GOV(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r4, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@THERMAL_GENL_ATTR_TZ_NAME={0xe, 0xb, 'ovs_vport\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x440c4}, 0x80)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16=<r5=>0xffffffffffffffff, @ANYBLOB="010025bd7000fcdbdf25020000002c00018028003c8008001b"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x806, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
read$auto(0x3, 0x0, 0x7)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYRES32=r4, @ANYRES64=r3, @ANYRESOCT=r5, @ANYBLOB="8d7ff4290efccf2e3832468d7beceaadd0468bc13cf39ae4690d779c1e227d603db1df1aa851c49f2385ee54a8d67965caac90bc8486390a9ea9908820402052394831327ae2054ada8a0e189cf1c3fde91f93519c7d3e6dd1cc372d16767877e9c1b60741779eabe4711133295cc7a05e69d6bbfd9b1e6e02838ad89736147b19e868d9937eab21cdc36f3f57f495f24eb20df0260da3b4c94256d24c39613374b3ae115b8551cd979337850ec70981b6147a3d93ed2677cefbc9f089c7c1c0570844deac605e843bdba0702e8d89f37fd639aa8fe0b1d4d5ba527ab112d027e66a85328cda60d30f04718f2aa036de1f3a31d58ba8", @ANYRESDEC=r5], 0x1ac}, 0x1, 0x0, 0x0, 0x4004811}, 0x4004081)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0x4e, 0xffffffffffffffff, 0x3)

4.515552993s ago: executing program 5 (id=1274):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/net/bond0/bonding/num_unsol_na\x00', 0x141c00, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(r0, r0, 0x2)
socket(0x10, 0x2, 0x0)
r1 = waitid$auto(0x2, 0xffffffffffffffff, &(0x7f0000000040)={@siginfo_0_0={0xb, 0x7, 0x8, @_sigchld={0x0, 0x0, 0x8c, 0x1, 0x7903}}}, 0xfffffff9, &(0x7f00000000c0)={{0x5, 0x7}, {0x6, 0x710}, 0x4, 0x3, 0x7, 0x6, 0x80000000, 0x200, 0x2, 0x7ff, 0xfffffffffffffffc, 0x8000000000000001, 0x1, 0x7ff, 0x8, 0x4})
getpgid(r1)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
statmount$auto(&(0x7f0000000000)={0x207e, @inferred, 0x800000e, 0xe868, 0x2}, 0x0, 0x2, 0xfffffffc)
socket(0x2, 0x1, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r3 = openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000040), 0x121000, 0x0)
poll$auto(&(0x7f0000000000)={r3, 0x2, 0x4}, 0x2, 0x5)
r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r4, 0xfffffffffffffd0e, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r2, 0x4048aecb, 0x0)
openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/bluetooth/hci1/force_devcoredump\x00', 0x0, 0x0)
io_uring_setup$auto(0x6, 0x0)
ioperm$auto(0x7, 0x6, 0x2)
mmap$auto(0x0, 0xf75, 0x0, 0x8000000008012, 0x1000000004, 0x83000000)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x6, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/neigh/netdevsim2/base_reachable_time\x00', 0x202, 0x0)
socketpair$auto(0xed0f, 0xa1, 0x0, 0x0)

3.274663654s ago: executing program 5 (id=1275):
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/mice\x00', 0x8006, 0x0)
r0 = openat$auto_proc_pid_set_timerslack_ns_operations_base(0xffffffffffffff9c, &(0x7f0000000080), 0x4a900, 0x0)
read$auto_proc_pid_set_timerslack_ns_operations_base(r0, &(0x7f00000000c0)=""/33, 0x21)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002)
socket(0x10, 0x2, 0x4)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/tty18\x00', 0x800, 0x0)
ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0)
read$auto(0x3, 0x0, 0x80)

2.827654784s ago: executing program 2 (id=1276):
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0)
socket(0x28, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="cde1897bbc447769f5c8926801936254ceee2f5f1dcf3b40b2150fa5d4b47acbd9de8b8291567d4ca5629b3f6ba7dc2344852a74ad661ccd44fc0bd8564efc1dbe99c2f3ff5e756e11fc2a61c264a06e6fa76e2cd39d59155ca2b5a683eda0", @ANYRESHEX=r0, @ANYBLOB="df2521000000160000000000000000"], 0x14}}, 0x44)
close_range$auto(0x0, 0xfffffffffffff000, 0xe00)
fanotify_init$auto(0x5, 0x2000000000002)
r1 = socket(0x2, 0x1, 0x102)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r1, &(0x7f0000000500)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="60000081", @ANYRES16=0x0, @ANYBLOB="080027bd7000fddbdf25030000000a0005000180c2000003000008000200", @ANYRES32=0x0, @ANYBLOB="0600060003000000080003000100000008000300002001000800030001000000060006001ef8000008000300400000000600060000000000"], 0x60}, 0x1, 0x0, 0x0, 0x20044050}, 0x0)
fanotify_mark$auto(0xffffffffffffffff, 0x57c, 0xa, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
sysfs$auto(0x2, 0x4, 0x0)
r2 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r2, 0x84, 0x6f, 0x0, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x40001, 0x400008, 0x100000000000008, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r3 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents$auto(0x0, 0x0, 0x700)
socket(0xa, 0x5, 0x0)
ioctl$auto(0x1, 0x8941, 0x8)
read$auto_snd_pcm_f_ops_pcm1(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto_evdev_fops_evdev(r3, 0xffffffff80284504, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/0000:00:01.0/driver_override\x00', 0xa001, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x2, 0x1, 0x506, 0x3, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
unshare$auto(0x40000080)

2.51611508s ago: executing program 5 (id=1277):
mmap$auto(0x3, 0x2020009, 0xa947, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
pselect6$auto(0xb9d, &(0x7f0000000280)={[0x8, 0x8, 0x3ff, 0xbe0b, 0x3, 0x9, 0x1, 0x3a6e, 0xf6f, 0x6, 0x1, 0x8, 0x6, 0x5, 0x52a]}, &(0x7f0000000380)={[0xffffffffffff6b71, 0xe2a, 0x6, 0x10000, 0x1000, 0xffffffffffffff81, 0x0, 0xa0, 0x5, 0xff, 0xb086, 0x1, 0x5, 0x2, 0x1, 0x63]}, &(0x7f0000000400)={[0x0, 0x1, 0xb, 0x3da, 0x1, 0x800, 0x40, 0x6, 0x4, 0x2a, 0x100000001, 0x100000001, 0x7fffffff, 0x1, 0x7ff, 0x4]}, &(0x7f0000000040)={0x401, 0x581611ef}, &(0x7f0000000540)="4afb3529f6cabdd264d46927fd89453b1e2a3873451597e272338382f02c634dfbc81b738db95a2c45420e34a021b80637c0ad86df0a2827ed63abebd979813b1c21e2ed0759a0743e91db8c3b5026403901897d7ff8a0abf2fb47038762d12c0f4c103a968e3a829416eec1ed0bf41764b756faa063f223b7b506a416cb84a2140b0b1269e9d5ff1f5419aed9d535b6c30e11ed25ea8f11b3cb93c4010794b5ecb3c1af560500176a843a3b9cc576ebd3c769ae78195c13da6eaf22d922171a775330b812210c38c926212d79efce7341efb1aa79d7ba335d13bb49f8f55f8f32da6cc176")
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0x3, 0x5460, 0x5)
mmap$auto(0x0, 0xe983, 0x9, 0xeb1, 0x401, 0x8000)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x40181, 0x0)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x1)

2.289550686s ago: executing program 3 (id=1278):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/pcm0c/sub2/status\x00', 0x30c42, 0x0)
pread64$auto(r0, 0x0, 0xa0, 0xf86)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x400, 0x0)
modify_ldt$auto(0x1, 0x0, 0x10)
modify_ldt$auto(0x1, 0x0, 0x10)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/extfrag/unusable_index\x00', 0x0, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/udp\x00', 0x20000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r3 = fanotify_init$auto(0x6a1, 0x2000000000002)
fanotify_mark$auto(0x0, 0x1, 0x5, r3, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000380)={0x8, 0x1, 0x1ff, 0x7, 0x3f, 0x1000004909b6f8, 0x1ffe0, 0x7, 0x3, 0x2, 0xd, 0x3, 0x6, 0x4, 0x8b4, 0x9, 0x6, 0x10003, 0x7, 0x4, 0x0, 0x7, 0x2000, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x2, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x0, 0x400, 0x0, 0x3, 0x5, 0xfffffefffffdfffd, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x3d0, 0x0, 0x0, 0x2b19, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x7fd, 0x3, 0xfffffffffffffffc, 0x2, 0x6, 0x6, 0x4, 0x4]}, 0x8, 0xd)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="0c001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
read$auto_lsm_ops_inode(r3, &(0x7f00000000c0)=""/243, 0xf3)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000100)=""/140, 0x8c)
r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000340), r4)
sendmsg$auto_L2TP_CMD_TUNNEL_DELETE(r4, &(0x7f0000000600)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x3c, r5, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x7}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x6}, @L2TP_ATTR_SEND_SEQ={0x5, 0x13, 0x6}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0xfb}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x7f}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10008010}, 0x41c0)
read$auto_proc_pid_maps_operations_internal(r1, &(0x7f00000010c0)=""/4096, 0x1000)
read$auto_proc_pid_maps_operations_internal(r1, &(0x7f0000002e40)=""/4096, 0x1000)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0xa8100, 0x0)

1.932932003s ago: executing program 5 (id=1279):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4040804)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0xf, 0x9, 0x76402f57, 0x0, 0x0, 0x0, 0x4, 0x40000000000f, 0x400, 0x40000402, 0x4, 0x9, 0xffffffff7fffffff, 0x9, 0x7, 0x20000010010b})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
futex_waitv$auto(&(0x7f0000000000)={0x8, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x101, 0xe3, 0x4000000100000eb1, 0x40000000000a1, 0x7ffe)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x80, 0x0)
read$auto_configfs_file_operations_configfs_internal(r1, &(0x7f0000000140)=""/39, 0x27)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x7, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
madvise$auto(0x6, 0x1, 0xb)

459.96µs ago: executing program 3 (id=1280):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
timerfd_create$auto(0x0, 0x0)
timerfd_settime$auto(0xffffffffffffffff, 0x3, 0x0, 0x0)
adjtimex$auto(&(0x7f0000000000)={0x1ff, 0x0, 0xff, 0x6, 0x8, 0x0, 0x10, 0x0, 0x2, 0xbf, 0x1f6a, {0x0, 0x3}, 0x9, 0x1, 0x2, 0x6, 0x0, 0x8, 0x545, 0x1, 0x0, 0x8})
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
lsm_get_self_attr$auto(0xfc9, 0x0, &(0x7f0000000080)=0x8, 0x9)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
getgroups$auto(0xeda, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x42401, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000100), 0xffffffffffffffff)
pwritev$auto(0x5, &(0x7f0000000000)={&(0x7f0000000080), 0x19}, 0xb, 0x9, 0x1fdc)

0s ago: executing program 5 (id=1281):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), 0xffffffffffffffff) (async)
r2 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cpu/0/msr\x00', 0x141103, 0x0)
write$auto_msr_fops_msr(r2, &(0x7f0000000180)="212ebb0546424dc0d0a41d37270192f175da0c4215b49822d50d00180239692ba9bade4c2c39dbd3ceeef0af70eb0c463a0eeb83102b2c522e1480c52390bd11df65184ef1eb9f71ddd8b5fa7201b1d0363b23579b4887262a4f19a3c213e5e7f892366962e4", 0x66) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'netdevsim0\x00'}) (async)
sendmsg$auto_BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r1, 0x2f7c91435f7e8bbf, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40801}, 0x800)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.55' (ED25519) to the list of known hosts.
[   65.590517][ T5816] cgroup: Unknown subsys name 'net'
[   65.717415][ T5816] cgroup: Unknown subsys name 'cpuset'
[   65.725374][ T5816] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   67.032722][ T5816] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   68.946340][ T5837] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   68.954778][ T5837] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   68.963420][ T5837] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   68.971184][ T5837] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   68.979113][ T5838] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   68.979348][ T5837] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   68.994187][ T5837] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   68.997955][ T5839] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   69.001619][ T5837] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   69.010501][ T5841] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   69.016219][ T5839] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   69.023111][ T5841] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   69.029765][ T5837] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   69.045348][ T5837] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   69.053002][ T5837] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   69.054984][ T5841] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   69.067382][ T5837] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   69.078207][ T5837] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   69.080463][ T5838] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   69.088832][ T5837] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   69.101493][ T5837] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   69.116307][ T5837] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   69.127950][ T5836] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   69.135516][ T5836] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   69.439706][ T5825] chnl_net:caif_netlink_parms(): no params data found
[   69.451971][ T5829] chnl_net:caif_netlink_parms(): no params data found
[   69.545076][ T5827] chnl_net:caif_netlink_parms(): no params data found
[   69.628889][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.636726][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.645240][ T5829] bridge_slave_0: entered allmulticast mode
[   69.651849][ T5829] bridge_slave_0: entered promiscuous mode
[   69.662247][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.669422][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.676856][ T5829] bridge_slave_1: entered allmulticast mode
[   69.683360][ T5829] bridge_slave_1: entered promiscuous mode
[   69.700642][ T5826] chnl_net:caif_netlink_parms(): no params data found
[   69.737588][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.745386][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.752492][ T5825] bridge_slave_0: entered allmulticast mode
[   69.759357][ T5825] bridge_slave_0: entered promiscuous mode
[   69.767421][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.774910][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.782155][ T5825] bridge_slave_1: entered allmulticast mode
[   69.788901][ T5825] bridge_slave_1: entered promiscuous mode
[   69.813705][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.821005][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.828307][ T5827] bridge_slave_0: entered allmulticast mode
[   69.835442][ T5827] bridge_slave_0: entered promiscuous mode
[   69.851695][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.869988][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.877905][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.887681][ T5827] bridge_slave_1: entered allmulticast mode
[   69.894198][ T5827] bridge_slave_1: entered promiscuous mode
[   69.911177][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.953642][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.974087][ T5829] team0: Port device team_slave_0 added
[   70.000258][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.013300][ T5829] team0: Port device team_slave_1 added
[   70.029311][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   70.064132][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.097181][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.106890][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.113978][ T5826] bridge_slave_0: entered allmulticast mode
[   70.120853][ T5826] bridge_slave_0: entered promiscuous mode
[   70.139053][ T5825] team0: Port device team_slave_0 added
[   70.148340][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.155314][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.181717][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.193844][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.201187][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.208622][ T5826] bridge_slave_1: entered allmulticast mode
[   70.215323][ T5826] bridge_slave_1: entered promiscuous mode
[   70.224168][ T5827] team0: Port device team_slave_0 added
[   70.231538][ T5825] team0: Port device team_slave_1 added
[   70.240068][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.247233][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.273712][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.295035][ T5827] team0: Port device team_slave_1 added
[   70.340274][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   70.353091][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.375944][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.382900][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.409508][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.429668][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.436821][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.463047][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.492479][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.499906][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.526056][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.547667][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.556665][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.588900][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.602737][ T5829] hsr_slave_0: entered promiscuous mode
[   70.609378][ T5829] hsr_slave_1: entered promiscuous mode
[   70.620115][ T5826] team0: Port device team_slave_0 added
[   70.627786][ T5826] team0: Port device team_slave_1 added
[   70.667912][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.675362][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.701717][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.733187][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.740345][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.767091][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.785713][ T5825] hsr_slave_0: entered promiscuous mode
[   70.791980][ T5825] hsr_slave_1: entered promiscuous mode
[   70.798864][ T5825] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.806729][ T5825] Cannot create hsr debugfs directory
[   70.831362][ T5827] hsr_slave_0: entered promiscuous mode
[   70.837894][ T5827] hsr_slave_1: entered promiscuous mode
[   70.844209][ T5827] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.851877][ T5827] Cannot create hsr debugfs directory
[   70.936761][ T5826] hsr_slave_0: entered promiscuous mode
[   70.942907][ T5826] hsr_slave_1: entered promiscuous mode
[   70.949453][ T5826] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.957095][ T5826] Cannot create hsr debugfs directory
[   71.125397][ T5143] Bluetooth: hci2: command tx timeout
[   71.130377][ T5829] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   71.137919][ T5143] Bluetooth: hci3: command tx timeout
[   71.168417][ T5829] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   71.187142][ T5829] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   71.204786][ T5836] Bluetooth: hci0: command tx timeout
[   71.210487][ T5143] Bluetooth: hci1: command tx timeout
[   71.217206][ T5829] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   71.274903][ T5825] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   71.294342][ T5825] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   71.312810][ T5825] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   71.321710][ T5825] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   71.346932][ T5827] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   71.358669][ T5827] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   71.377247][ T5827] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   71.386637][ T5827] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   71.458399][ T5826] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   71.469434][ T5826] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   71.478662][ T5826] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   71.493228][ T5826] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   71.511144][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.557033][ T5829] 8021q: adding VLAN 0 to HW filter on device team0
[   71.580448][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.587655][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.615277][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[   71.621720][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[   71.639750][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.646872][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.680989][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.720561][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.736161][ T5827] 8021q: adding VLAN 0 to HW filter on device team0
[   71.761623][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.768720][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.796105][ T2988] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.803184][ T2988] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.816270][ T5825] 8021q: adding VLAN 0 to HW filter on device team0
[   71.842486][ T2988] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.849619][ T2988] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.860186][ T2988] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.867327][ T2988] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.957870][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.018865][ T5826] 8021q: adding VLAN 0 to HW filter on device team0
[   72.058939][ T2988] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.066097][ T2988] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.110244][ T2988] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.117399][ T2988] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.142174][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.238974][ T5829] veth0_vlan: entered promiscuous mode
[   72.268761][ T5829] veth1_vlan: entered promiscuous mode
[   72.312251][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.336900][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.377867][ T5829] veth0_macvtap: entered promiscuous mode
[   72.405785][ T5829] veth1_macvtap: entered promiscuous mode
[   72.435899][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.455791][ T5825] veth0_vlan: entered promiscuous mode
[   72.470256][ T5827] veth0_vlan: entered promiscuous mode
[   72.487553][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.501668][ T5829] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.510694][ T5829] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.522392][ T5829] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.531698][ T5829] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.546898][ T5825] veth1_vlan: entered promiscuous mode
[   72.553800][ T5827] veth1_vlan: entered promiscuous mode
[   72.602570][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.675076][ T5827] veth0_macvtap: entered promiscuous mode
[   72.684728][ T5827] veth1_macvtap: entered promiscuous mode
[   72.708549][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.720432][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.732007][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.753291][ T5826] veth0_vlan: entered promiscuous mode
[   72.761052][ T5825] veth0_macvtap: entered promiscuous mode
[   72.776787][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.788018][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.800880][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.810599][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.826187][ T5825] veth1_macvtap: entered promiscuous mode
[   72.835782][ T5826] veth1_vlan: entered promiscuous mode
[   72.842814][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.864177][ T5827] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.874753][ T5827] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.883463][ T5827] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.892804][ T5827] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.928379][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.939059][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.949126][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.959853][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.972153][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.985191][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.995743][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.006082][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.016967][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.027999][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.042040][ T5825] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.052101][ T5825] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.052110][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.069347][ T5825] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.070302][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.078739][ T5825] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.152786][ T5826] veth0_macvtap: entered promiscuous mode
[   73.185798][ T5826] veth1_macvtap: entered promiscuous mode
[   73.201745][ T5829] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   73.205117][ T5836] Bluetooth: hci2: command tx timeout
[   73.221944][ T5143] Bluetooth: hci3: command tx timeout
[   73.282242][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.297110][ T5836] Bluetooth: hci1: command tx timeout
[   73.297131][ T5143] Bluetooth: hci0: command tx timeout
[   73.303435][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.318516][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.332848][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.344014][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.357088][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.368467][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.388826][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.399678][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.404955][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.419072][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.438244][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.449535][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.460906][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.471470][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.482300][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.494096][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.510571][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.561422][ T5826] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.570810][ T5826] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.586325][ T5826] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.597979][ T5826] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.631151][ T2988] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.634924][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.639826][ T2988] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.660674][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.799727][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.839185][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.946109][ T5897] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   73.969606][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.981125][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.297392][ T5901] Zero length message leads to an empty skb
[   74.353657][ T5906] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   75.108585][ T5922] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   75.284848][ T5143] Bluetooth: hci3: command tx timeout
[   75.294974][ T5143] Bluetooth: hci2: command tx timeout
[   75.364372][ T5143] Bluetooth: hci0: command tx timeout
[   75.364490][ T5836] Bluetooth: hci1: command tx timeout
[   75.436917][ T5927] binder: 5926:5927 ioctl c0046209 9 returned -22
[   75.494788][ T5927] netlink: 'syz.0.12': attribute type 1 has an invalid length.
[   75.509177][ T5927] nbd: error processing sock list
[   75.734815][ T5920] syz.3.9 (5920): attempted to duplicate a private mapping with mremap.  This is not supported.
[   76.035563][ T5940] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   76.108963][   T29] audit: type=1326 audit(1737239506.393:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5937 comm="syz.1.15" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5c52585d29 code=0x0
[   77.364732][ T5143] Bluetooth: hci3: command tx timeout
[   77.371549][ T5836] Bluetooth: hci2: command tx timeout
[   77.445059][ T5836] Bluetooth: hci1: command tx timeout
[   77.450515][ T5143] Bluetooth: hci0: command tx timeout
[   77.539127][ T5963] FAULT_INJECTION: forcing a failure.
[   77.539127][ T5963] name failslab, interval 1, probability 0, space 0, times 1
[   77.616897][ T5963] CPU: 0 UID: 0 PID: 5963 Comm: syz.0.22 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   77.627456][ T5963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   77.637548][ T5963] Call Trace:
[   77.640846][ T5963]  <TASK>
[   77.643798][ T5963]  dump_stack_lvl+0x16c/0x1f0
[   77.648516][ T5963]  should_fail_ex+0x497/0x5b0
[   77.653240][ T5963]  ? fs_reclaim_acquire+0xae/0x150
[   77.658395][ T5963]  should_failslab+0xc2/0x120
[   77.663117][ T5963]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[   77.668881][ T5963]  ? sock_alloc_inode+0x25/0x1c0
[   77.673868][ T5963]  ? __pfx_sock_alloc_inode+0x10/0x10
[   77.679273][ T5963]  sock_alloc_inode+0x25/0x1c0
[   77.684072][ T5963]  alloc_inode+0x5d/0x230
[   77.688445][ T5963]  sock_alloc+0x40/0x280
[   77.692727][ T5963]  __sock_create+0xc1/0x8d0
[   77.697275][ T5963]  __sys_socket+0x14f/0x260
[   77.701817][ T5963]  ? __pfx___sys_socket+0x10/0x10
[   77.706879][ T5963]  ? rcu_is_watching+0x12/0xc0
[   77.711685][ T5963]  __x64_sys_socket+0x72/0xb0
[   77.716393][ T5963]  ? lockdep_hardirqs_on+0x7c/0x110
[   77.721631][ T5963]  do_syscall_64+0xcd/0x250
[   77.726178][ T5963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.732114][ T5963] RIP: 0033:0x7f97abd85d29
[   77.736559][ T5963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.756205][ T5963] RSP: 002b:00007f97acba7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[   77.764657][ T5963] RAX: ffffffffffffffda RBX: 00007f97abf75fa0 RCX: 00007f97abd85d29
[   77.772652][ T5963] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000025
[   77.780642][ T5963] RBP: 00007f97abe01b08 R08: 0000000000000000 R09: 0000000000000000
[   77.788621][ T5963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   77.796601][ T5963] R13: 0000000000000000 R14: 00007f97abf75fa0 R15: 00007ffcf03bb1b8
[   77.804681][ T5963]  </TASK>
[   77.807713][    C0] vkms_vblank_simulate: vblank timer overrun
[   77.861087][ T5963] socket: no more sockets
[   78.355415][ T5978] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   79.155543][ T5999] tty tty58: ldisc open failed (-12), clearing slot 57
[   79.613573][ T6019] sd 0:0:1:0: PR command failed: 1026
[   79.654407][ T6019] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[   79.661164][ T6019] sd 0:0:1:0: Add. Sense: Invalid command operation code
[   79.891236][ T6025] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   81.401924][ T6053] syz.2.47 uses obsolete (PF_INET,SOCK_PACKET)
[   81.868697][  T973] cfg80211: failed to load regulatory.db
[   82.022720][ T6044] ima: policy update failed
[   82.064412][   T29] audit: type=1802 audit(1737239512.333:3): pid=6044 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.46" res=0 errno=0
[   82.939247][ T6079] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   83.412759][ T6078] netlink: zone id is out of range
[   83.497899][ T6078] netlink: zone id is out of range
[   83.552436][ T6078] netlink: zone id is out of range
[   83.598970][ T6078] netlink: zone id is out of range
[   83.612937][ T6078] netlink: zone id is out of range
[   83.628516][ T6078] netlink: zone id is out of range
[   83.644349][ T6078] netlink: zone id is out of range
[   83.681456][ T6078] netlink: zone id is out of range
[   83.693823][ T6078] netlink: zone id is out of range
[   84.150297][ T1328] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.306156][ T1328] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.460029][ T1328] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.631802][ T1328] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.948668][ T1328] bridge_slave_1: left allmulticast mode
[   84.954605][ T1328] bridge_slave_1: left promiscuous mode
[   84.961530][ T1328] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.039261][ T5143] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   85.106634][ T5143] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   85.119692][ T1328] bridge_slave_0: left allmulticast mode
[   85.127863][ T1328] bridge_slave_0: left promiscuous mode
[   85.134115][ T1328] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.173073][ T5143] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   85.223984][ T5143] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   85.265747][ T5143] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   85.273537][ T5143] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   85.989420][ T1328] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   86.014424][ T1328] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   86.040290][ T1328] bond0 (unregistering): Released all slaves
[   86.373639][ T6152] net_ratelimit: 391 callbacks suppressed
[   86.373660][ T6152] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   86.531528][ T1328] hsr_slave_0: left promiscuous mode
[   86.551309][ T1328] hsr_slave_1: left promiscuous mode
[   86.564839][ T1328] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   86.586772][ T1328] batman_adv: batadv0: Removing interface: batadv_slave_0
[   86.616009][ T1328] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   86.632916][ T1328] batman_adv: batadv0: Removing interface: batadv_slave_1
[   86.689928][ T1328] veth1_macvtap: left promiscuous mode
[   86.701702][ T1328] veth0_macvtap: left promiscuous mode
[   86.715322][ T1328] veth1_vlan: left promiscuous mode
[   86.726628][ T1328] veth0_vlan: left promiscuous mode
[   87.364918][ T5143] Bluetooth: hci2: command tx timeout
[   87.637806][ T1328] team0 (unregistering): Port device team_slave_1 removed
[   87.693182][ T1328] team0 (unregistering): Port device team_slave_0 removed
[   88.515396][ T6118] chnl_net:caif_netlink_parms(): no params data found
[   88.819529][ T6203] ovs_: entered promiscuous mode
[   89.335706][ T6118] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.342843][ T6118] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.356898][ T6118] bridge_slave_0: entered allmulticast mode
[   89.363949][ T6118] bridge_slave_0: entered promiscuous mode
[   89.384794][ T6118] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.391927][ T6118] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.399481][ T6118] bridge_slave_1: entered allmulticast mode
[   89.407445][ T6118] bridge_slave_1: entered promiscuous mode
[   89.446488][ T5143] Bluetooth: hci2: command tx timeout
[   89.542736][ T6118] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.577549][ T6118] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.865108][ T6118] team0: Port device team_slave_0 added
[   89.897840][ T6118] team0: Port device team_slave_1 added
[   90.288347][ T6118] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.295726][ T6118] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.364382][ T6118] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.413703][ T6118] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.447960][ T6118] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.473864][    C1] vkms_vblank_simulate: vblank timer overrun
[   90.521013][ T6118] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.779341][ T6118] hsr_slave_0: entered promiscuous mode
[   90.795503][ T6118] hsr_slave_1: entered promiscuous mode
[   90.819286][ T6118] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   90.834358][ T6118] Cannot create hsr debugfs directory
[   91.525137][ T5143] Bluetooth: hci2: command tx timeout
[   91.741149][ T6118] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   91.812574][ T6118] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   91.926956][ T6118] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   91.957204][ T6118] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   92.302099][ T6118] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.368235][ T6118] 8021q: adding VLAN 0 to HW filter on device team0
[   92.402173][ T1328] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.409350][ T1328] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.450746][ T1328] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.457893][ T1328] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.022555][ T6292] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   93.383196][ T6118] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.605581][ T5143] Bluetooth: hci2: command tx timeout
[   93.726489][ T6311] HfR: entered promiscuous mode
[   93.773511][ T6313] binder: 6307:6313 ioctl 2284 ffffffffffffffff returned -22
[   94.038877][ T6118] veth0_vlan: entered promiscuous mode
[   94.125482][ T6118] veth1_vlan: entered promiscuous mode
[   94.281078][ T6118] veth0_macvtap: entered promiscuous mode
[   94.333037][ T6118] veth1_macvtap: entered promiscuous mode
[   94.408927][ T6118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.454400][ T6118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.488848][ T6118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.534308][ T6118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.554300][ T6118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.584265][ T6118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.628297][ T6118] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.674351][ T6118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.702174][ T6118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.737225][ T6118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.754564][ T6118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.784343][ T6118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.814285][ T6118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.833163][ T6118] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.871549][ T6118] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.902790][ T6118] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.922875][ T6118] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.939868][ T6118] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.524937][ T5891] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.543143][ T5891] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.602542][ T6378] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   95.636268][ T2988] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.645807][ T2988] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.615503][ T6402] netlink: 6 bytes leftover after parsing attributes in process `syz.1.101'.
[   97.373134][ T6399] kexec: Could not allocate control_code_buffer
[   97.534156][ T6425] capability: warning: `syz.4.104' uses 32-bit capabilities (legacy support in use)

syzkaller
syzkaller login: [   99.000402][ T6473] netlink: 146 bytes leftover after parsing attributes in process `syz.2.115'.
[   99.235891][ T6476] process 'syz.4.114' launched ':,' with NULL argv: empty string added
[  101.196941][ T6505] could not allocate digest TFM handle 
[  101.202191][ T6521] netlink: 4 bytes leftover after parsing attributes in process `syz.4.124'.
[  101.221629][ T6521] openvswitch: netlink: Flow actions attr not present in new flow.
[  101.536216][ T6511] could not allocate digest TFM handle 
[  101.573046][ T6505] could not allocate digest TFM handle 
[  102.538041][ T6552] Invalid ELF header magic: != ELF
[  102.834793][ T6566] netlink: 4 bytes leftover after parsing attributes in process `syz.2.133'.
[  102.861628][ T6566] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8)
[  103.668678][ T6579] bridge0: port 3(hsr_slave_1) entered blocking state
[  103.693051][ T6579] bridge0: port 3(hsr_slave_1) entered disabled state
[  103.719182][ T6579] hsr_slave_1: entered allmulticast mode
[  103.727592][ T6579] hsr_slave_1: left allmulticast mode
[  105.059151][ T5143] Bluetooth: hci2: SCO packet too small
[  105.719213][   T29] audit: type=1107 audit(41850.292:4): pid=6632 uid=21 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  106.374876][ T6645] mmap: syz.2.152 (6645) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  107.833389][ T6688] could not allocate digest TFM handle 
[  108.041109][ T6702] netlink: 4 bytes leftover after parsing attributes in process `syz.1.159'.
[  108.273481][ T6688] could not allocate digest TFM handle 
[  114.489673][ T6918] binder: 6914:6918 ioctl c00c620f 9 returned -22
[  116.145203][ T6958] netlink: 'syz.1.195': attribute type 2 has an invalid length.
[  116.152886][ T6958] netlink: 4 bytes leftover after parsing attributes in process `syz.1.195'.
[  117.459951][ T6988] netlink: 334 bytes leftover after parsing attributes in process `syz.1.202'.
[  117.463362][ T6989] syz.4.196 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  118.195696][ T7016] netlink: 108 bytes leftover after parsing attributes in process `syz.4.208'.
[  118.700337][ T7027] openvswitch: netlink: Key 22 has unexpected len 8 expected 4
[  118.723729][ T7027] openvswitch: netlink: Key 22 has unexpected len 8 expected 4
[  118.739773][ T7027] openvswitch: netlink: Key 22 has unexpected len 8 expected 4
[  118.749204][ T7027] openvswitch: netlink: Key 22 has unexpected len 8 expected 4
[  118.761486][ T7027] openvswitch: netlink: Key 22 has unexpected len 8 expected 4
[  118.771987][ T7027] openvswitch: netlink: Key 22 has unexpected len 8 expected 4
[  118.792142][ T7027] openvswitch: netlink: Key 22 has unexpected len 8 expected 4
[  118.813856][ T7027] openvswitch: netlink: Key 22 has unexpected len 8 expected 4
[  118.844474][ T7027] openvswitch: netlink: Key 22 has unexpected len 8 expected 4
[  118.861248][ T7027] openvswitch: netlink: Key 22 has unexpected len 8 expected 4
[  119.079237][ T7041] netlink: 342 bytes leftover after parsing attributes in process `syz.3.217'.
[  119.993982][ T7057] nbd: couldn't find device at index 33904
[  120.006222][ T7057] nbd: couldn't find device at index 33904
[  120.758595][ T7076] Invalid ELF header magic: != ELF
[  121.934853][ T7128] FAULT_INJECTION: forcing a failure.
[  121.934853][ T7128] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  121.978696][ T7128] CPU: 0 UID: 0 PID: 7128 Comm: syz.2.235 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  121.989333][ T7128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  121.999408][ T7128] Call Trace:
[  122.002710][ T7128]  <TASK>
[  122.005673][ T7128]  dump_stack_lvl+0x16c/0x1f0
[  122.010385][ T7128]  should_fail_ex+0x497/0x5b0
[  122.015108][ T7128]  _copy_from_user+0x2e/0xd0
[  122.019754][ T7128]  core_sys_select+0x306/0xa10
[  122.024556][ T7128]  ? __pfx_core_sys_select+0x10/0x10
[  122.029875][ T7128]  ? find_held_lock+0x2d/0x110
[  122.034707][ T7128]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  122.040723][ T7128]  kern_select+0x15e/0x1e0
[  122.045189][ T7128]  ? __pfx_kern_select+0x10/0x10
[  122.050156][ T7128]  ? __pfx_ksys_write+0x10/0x10
[  122.055036][ T7128]  __x64_sys_select+0xbd/0x160
[  122.059827][ T7128]  ? do_syscall_64+0x91/0x250
[  122.064531][ T7128]  ? lockdep_hardirqs_on+0x7c/0x110
[  122.069760][ T7128]  do_syscall_64+0xcd/0x250
[  122.074305][ T7128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.080237][ T7128] RIP: 0033:0x7f59bb585d29
[  122.084676][ T7128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.104304][ T7128] RSP: 002b:00007f59bc364038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  122.112747][ T7128] RAX: ffffffffffffffda RBX: 00007f59bb775fa0 RCX: 00007f59bb585d29
[  122.120746][ T7128] RDX: 0000000020002e40 RSI: 0000000000000000 RDI: 0000000000000008
[  122.128748][ T7128] RBP: 00007f59bc364090 R08: 0000000000000000 R09: 0000000000000000
[  122.136743][ T7128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.144739][ T7128] R13: 0000000000000000 R14: 00007f59bb775fa0 R15: 00007ffee30f9368
[  122.152747][ T7128]  </TASK>
[  122.706890][ T7140] netlink: 186 bytes leftover after parsing attributes in process `syz.4.239'.
[  123.802563][ T7172] FAULT_INJECTION: forcing a failure.
[  123.802563][ T7172] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  123.838980][ T7172] CPU: 1 UID: 0 PID: 7172 Comm: syz.3.248 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  123.849624][ T7172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  123.859702][ T7172] Call Trace:
[  123.862999][ T7172]  <TASK>
[  123.865950][ T7172]  dump_stack_lvl+0x16c/0x1f0
[  123.870665][ T7172]  should_fail_ex+0x497/0x5b0
[  123.875388][ T7172]  core_sys_select+0x886/0xa10
[  123.880192][ T7172]  ? __pfx_core_sys_select+0x10/0x10
[  123.885511][ T7172]  ? find_held_lock+0x2d/0x110
[  123.890333][ T7172]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  123.896388][ T7172]  kern_select+0x15e/0x1e0
[  123.900864][ T7172]  ? __pfx_kern_select+0x10/0x10
[  123.905834][ T7172]  ? __pfx_ksys_write+0x10/0x10
[  123.910715][ T7172]  __x64_sys_select+0xbd/0x160
[  123.915507][ T7172]  ? do_syscall_64+0x91/0x250
[  123.920216][ T7172]  ? lockdep_hardirqs_on+0x7c/0x110
[  123.925444][ T7172]  do_syscall_64+0xcd/0x250
[  123.929979][ T7172]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.935904][ T7172] RIP: 0033:0x7f5091f85d29
[  123.940339][ T7172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.959971][ T7172] RSP: 002b:00007f5092d89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  123.968413][ T7172] RAX: ffffffffffffffda RBX: 00007f5092175fa0 RCX: 00007f5091f85d29
[  123.976406][ T7172] RDX: 0000000020002e40 RSI: 0000000000000000 RDI: 0000000000000008
[  123.984409][ T7172] RBP: 00007f5092d89090 R08: 0000000000000000 R09: 0000000000000000
[  123.992402][ T7172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.000396][ T7172] R13: 0000000000000000 R14: 00007f5092175fa0 R15: 00007ffddf5ff1a8
[  124.008409][ T7172]  </TASK>
[  124.973377][ T7193] netlink: 5 bytes leftover after parsing attributes in process `syz.2.254'.
[  125.367281][ T7203] FAULT_INJECTION: forcing a failure.
[  125.367281][ T7203] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.611756][ T7203] CPU: 1 UID: 0 PID: 7203 Comm: syz.4.258 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  125.622400][ T7203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  125.632478][ T7203] Call Trace:
[  125.635778][ T7203]  <TASK>
[  125.638726][ T7203]  dump_stack_lvl+0x16c/0x1f0
[  125.643435][ T7203]  should_fail_ex+0x497/0x5b0
[  125.648151][ T7203]  _copy_to_user+0x32/0xd0
[  125.652605][ T7203]  simple_read_from_buffer+0xd0/0x160
[  125.658003][ T7203]  proc_fail_nth_read+0x198/0x270
[  125.663063][ T7203]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  125.668659][ T7203]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  125.674244][ T7203]  vfs_read+0x1df/0xbe0
[  125.678430][ T7203]  ? __fget_files+0x1fc/0x3a0
[  125.683136][ T7203]  ? __pfx___mutex_lock+0x10/0x10
[  125.688193][ T7203]  ? __pfx_vfs_read+0x10/0x10
[  125.692918][ T7203]  ? __fget_files+0x206/0x3a0
[  125.697635][ T7203]  ksys_read+0x12b/0x250
[  125.701905][ T7203]  ? __pfx_ksys_read+0x10/0x10
[  125.706707][ T7203]  do_syscall_64+0xcd/0x250
[  125.711250][ T7203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.717174][ T7203] RIP: 0033:0x7f96cbf8473c
[  125.721614][ T7203] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  125.741246][ T7203] RSP: 002b:00007f96ccea3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  125.749681][ T7203] RAX: ffffffffffffffda RBX: 00007f96cc175fa0 RCX: 00007f96cbf8473c
[  125.757663][ T7203] RDX: 000000000000000f RSI: 00007f96ccea30a0 RDI: 0000000000000008
[  125.765639][ T7203] RBP: 00007f96ccea3090 R08: 0000000000000000 R09: 0000000000000000
[  125.773614][ T7203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.781584][ T7203] R13: 0000000000000000 R14: 00007f96cc175fa0 R15: 00007fffbbc3ac08
[  125.789566][ T7203]  </TASK>
[  127.250055][   T29] audit: type=1800 audit(41871.832:5): pid=7258 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.270" name="members" dev="configfs" ino=12936 res=0 errno=0
[  128.189025][ T7284] netlink: 28 bytes leftover after parsing attributes in process `syz.2.276'.
[  130.225719][ T7328] workqueue: Failed to create a rescuer kthread for wq "nfc16_nci_rx_wq": -EINTR
[  131.226429][ T7412] netlink: 330 bytes leftover after parsing attributes in process `syz.2.295'.
[  131.697397][ T7423] bridge0: port 3(team0) entered blocking state
[  131.710261][ T7423] bridge0: port 3(team0) entered disabled state
[  131.734395][ T7423] team0: entered allmulticast mode
[  131.771032][ T7423] team_slave_0: entered allmulticast mode
[  131.808045][ T7423] team_slave_1: entered allmulticast mode
[  131.840314][ T7423] team0: entered promiscuous mode
  132.051580 7423 4%!-3,!6%0: %.4%2%$ 02/-)3#5/53 -/$%
  132.094689 7423 4%!-3,!6%1: %.4%2%$ 02/-)3#5/53 -/$%
  132.151525 7423 "2)$'%0: 0/24 3(4%!-0) %.4%2%$ ",/#+).' 34!4%
  132.157562 7423 "2)$'%0: 0/24 3(4%!-0) %.4%2%$ &/27!2$).' 34!4%
  133.054826 1295 )%%%802154 0(90 70!.0: %.#2904)/. &!),%$: -22
  133.060544 1295 )%%%802154 0(91 70!.1: %.#2904)/. &!),%$: -22
  133.708119 7472 .%4,).+: 28 "94%3 ,%&4/6%2 !&4%2 0!23).' !442)"54%3 ). 02/#%33  39:.1.300'.
  133.813494 7472 '%.%6%1: %.4%2%$ !,,-5,4)#!34 -/$%
  134.073359 7474 3$ 0:0:1:0: )/#4,).4%2.!,#/--!.$: 	
  !3#=0820 !3#1=080
  138.386418 7549 #)&3: .+./7. 0!2!-%4%2 ' '
  142.185943    0  4)#+-34/0 %22/2: ,/#!, 3/&4)21 7/2+ )3 0%.$).', (!.$,%2 #40!!!
  142.235567    0  4)#+-34/0 %22/2: ,/#!, 3/&4)21 7/2+ )3 0%.$).', (!.$,%2 #200!!!
  142.354509    0  4)#+-34/0 %22/2: ,/#!, 3/&4)21 7/2+ )3 0%.$).', (!.$,%2 #200!!!
  142.454945    0  4)#+-34/0 %22/2: ,/#!, 3/&4)21 7/2+ )3 0%.$).', (!.$,%2 #200!!!
  142.706455    0  4)#+-34/0 %22/2: ,/#!, 3/&4)21 7/2+ )3 0%.$).', (!.$,%2 #200!!!
  142.804623    0  4)#+-34/0 %22/2: ,/#!, 3/&4)21 7/2+ )3 0%.$).', (!.$,%2 #200!!!
  142.816701    0  4)#+-34/0 %22/2: ,/#!, 3/&4)21 7/2+ )3 0%.$).', (!.$,%2 #200!!!
  142.824181    0  4)#+-34/0 %22/2: ,/#!, 3/&4)21 7/2+ )3 0%.$).', (!.$,%2 #200!!!
  142.832058    0  4)#+-34/0 %22/2: ,/#!, 3/&4)21 7/2+ )3 0%.$).', (!.$,%2 #200!!!
  142.839900    0  4)#+-34/0 %22/2: ,/#!, 3/&4)21 7/2+ )3 0%.$).', (!.$,%2 #200!!!
  143.044370 7680 .%4,).+: 4 "94%3 ,%&4/6%2 !&4%2 0!23).' !442)"54%3 ). 02/#%33  39:.2.350'.
  145.498463 7739 .%4,).+: 338 "94%3 ,%&4/6%2 !&4%2 0!23).' !442)"54%3 ). 02/#%33  39:.3.362'.
  145.767757 5143 ,5%4//4(: (#)4: 0#/$% 080#03 &!),%$: -110
  146.158797 7749 .%4,).+: '39:.4.366': !442)"54% 490% 14 (!3 !. ).6!,)$ ,%.'4(.
  146.199125 7749 .%4,).+: 330 "94%3 ,%&4/6%2 !&4%2 0!23).' !442)"54%3 ). 02/#%33  39:.4.366'.
  146.487065 7773 5")0: !44!#().' -4$0
  146.499728 7773 5")0: 3#!..).' )3 &).)3(%$
  146.503957 7773 5")0 %22/2: 5")2%!$6/,5-%4!",%: 4(% ,!9/54 6/,5-% 7!3 ./4 &/5.$
  146.666606 7773 5")0 %22/2: 5")!44!#(-4$$%6: &!),%$ 4/ !44!#( -4$0, %22/2 -22
  150.128826 7822 .%4,).+: '39:.2.380': !442)"54% 490% 1 (!3 !. ).6!,)$ ,%.'4(.
  151.565992 7848 .%4,).+: 28 "94%3 ,%&4/6%2 !&4%2 0!23).' !442)"54%3 ). 02/#%33  39:.2.387'.
  154.474909 7870 <
  154.475342 7870 .%4,).+: 28 "94%3 ,%&4/6%2 !&4%2 0!23).' !442)"54%3 ). 02/#%33  39:.3.394'.
  156.766773 7936 .%4,).+: 346 "94%3 ,%&4/6%2 !&4%2 0!23).' !442)"54%3 ). 02/#%33  39:.2.411'.
  157.340531 7956 .%4,).+: 16 "94%3 ,%&4/6%2 !&4%2 0!23).' !442)"54%3 ). 02/#%33  39:.4.416'.
  157.723614 7966 .%4,).+: '39:.1.419': !442)"54% 490% 2 (!3 !. ).6!,)$ ,%.'4(.
  157.730666 7966 .%4,).+: 4 "94%3 ,%&4/6%2 !&4%2 0!23).' !442)"54%3 ). 02/#%33  39:.1.419'.
  158.778924 7996 2/#%33 !##/5.4).' 2%35-%$
  159.812384 8037 3'72)4%: $!4! ).//54 2059/169 "94%3 &/2 	 #/--!.$ 0857-- '5%33).' $!4! ).;
  159.812384 8037    02/'2!- 39:.1.435 ./4 3%44).' #/5.4 !.$//2 2%0,9,%. 02/0%2,9
  160.040880 8048 .%4,).+: 28 "94%3 ,%&4/6%2 !&4%2 0!23).' !442)"54%3 ). 02/#%33  39:.2.436'.
  160.385210 8058 .%4,).+: 4 "94%3 ,%&4/6%2 !&4%2 0!23).' !442)"54%3 ). 02/#%33  39:.1.439'.

syzkaller
syzkaller login: [  161.420836][ T8087] netlink: 4 bytes leftover after parsing attributes in process `syz.1.447'.
[  161.799680][ T8095] netlink: 8 bytes leftover after parsing attributes in process `syz.2.449'.
[  162.622190][ T8110] netlink: 28 bytes leftover after parsing attributes in process `syz.2.454'.
[  162.653651][ T8110] veth0_macvtap: left promiscuous mode
[  162.683788][ T8110] macvtap0: entered allmulticast mode
[  164.846878][ T8149] netlink: 326 bytes leftover after parsing attributes in process `syz.2.463'.
[  165.226794][ T8161] netlink: 326 bytes leftover after parsing attributes in process `syz.1.466'.
[  165.285212][ T8163] netlink: 28 bytes leftover after parsing attributes in process `syz.2.467'.
[  165.328292][ T8163] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  165.346485][ T8163] batman_adv: batadv0: Removing interface: batadv_slave_0
[  165.375891][ T8163] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  165.422535][ T8163] batman_adv: batadv0: Removing interface: batadv_slave_1
[  165.649006][ T8167] netlink: 330 bytes leftover after parsing attributes in process `syz.3.468'.
[  166.267754][ T8197] FAULT_INJECTION: forcing a failure.
[  166.267754][ T8197] name failslab, interval 1, probability 0, space 0, times 0
[  166.304420][ T8197] CPU: 1 UID: 0 PID: 8197 Comm: syz.3.473 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  166.316112][ T8197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  166.327194][ T8197] Call Trace:
[  166.330823][ T8197]  <TASK>
[  166.334067][ T8197]  dump_stack_lvl+0x16c/0x1f0
[  166.339249][ T8197]  should_fail_ex+0x497/0x5b0
[  166.344426][ T8197]  ? fs_reclaim_acquire+0xae/0x150
[  166.350079][ T8197]  should_failslab+0xc2/0x120
[  166.355261][ T8197]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[  166.361586][ T8197]  ? __d_alloc+0x35/0x8c0
[  166.366387][ T8197]  __d_alloc+0x35/0x8c0
[  166.371005][ T8197]  d_alloc_pseudo+0x1c/0xc0
[  166.375985][ T8197]  alloc_file_pseudo+0xd2/0x200
[  166.381361][ T8197]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  166.387418][ T8197]  ? hugetlbfs_get_inode+0x323/0x740
[  166.393269][ T8197]  hugetlb_file_setup+0x4cd/0x620
[  166.398835][ T8197]  ksys_mmap_pgoff+0x189/0x5c0
[  166.404110][ T8197]  __x64_sys_mmap+0x125/0x190
[  166.409288][ T8197]  do_syscall_64+0xcd/0x250
[  166.414278][ T8197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.414406][ T8193] net_ratelimit: 23 callbacks suppressed
[  166.414421][ T8193] Dead loop on virtual device ip6_vti0, fix it urgently!
[  166.420771][ T8197] RIP: 0033:0x7f5091f85d29
[  166.420795][ T8197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.420817][ T8197] RSP: 002b:00007f5092d89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  166.420842][ T8197] RAX: ffffffffffffffda RBX: 00007f5092175fa0 RCX: 00007f5091f85d29
[  166.479529][ T8197] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000
[  166.488315][ T8197] RBP: 00007f5092001b08 R08: 0000000000000401 R09: 0000300000000000
[  166.497100][ T8197] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  166.505889][ T8197] R13: 0000000000000000 R14: 00007f5092175fa0 R15: 00007ffddf5ff1a8
[  166.514690][ T8197]  </TASK>
[  168.677999][ T8253] mkiss: ax0: crc mode is auto.
[  170.078250][ T8285] netlink: 504 bytes leftover after parsing attributes in process `syz.3.498'.
[  170.479147][ T8296] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  171.410191][ T8339] Process accounting resumed
[  171.502320][ T8314] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  171.509593][ T8314] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  171.525122][ T8314] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  171.540718][ T8314] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  171.549393][ T8314] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  171.560291][ T8314] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  171.581822][ T8314] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  171.592289][ T8314] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  171.603116][ T8314] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  171.618064][ T8314] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  171.625242][ T8314] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  171.633052][ T8314] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  172.025464][ T8355] netlink: 28 bytes leftover after parsing attributes in process `syz.2.520'.
[  172.431683][ T8372] netlink: 32 bytes leftover after parsing attributes in process `syz.2.523'.
[  172.538124][ T8383] Invalid ELF header magic: != ELF
[  172.804318][ T5143] Bluetooth: hci0: command 0x0c1a tx timeout
[  173.606811][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  173.614769][ T5143] Bluetooth: hci3: command 0x0c1a tx timeout
[  173.684359][ T5143] Bluetooth: hci2: command 0x0c1a tx timeout
[  173.704646][ T8419] device-mapper: ioctl: Unable to rename non-existent device,  to uuid „
[  173.976850][ T8426] openvswitch: netlink: nsh attribute has 14 unknown bytes.
[  174.169649][ T8426] netlink: 342 bytes leftover after parsing attributes in process `syz.3.538'.
[  174.381583][ T8442] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  174.896566][ T5143] Bluetooth: hci0: command 0x0c1a tx timeout
[  175.414340][ T8477] netlink: 'syz.1.546': attribute type 1 has an invalid length.
[  175.462118][ T8477] nbd: error processing sock list
[  175.671596][ T8484] raw_sendmsg: syz.2.550 forgot to set AF_INET. Fix it!
[  175.694545][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  175.701394][ T5143] Bluetooth: hci3: command 0x0c1a tx timeout
[  175.764582][ T5143] Bluetooth: hci2: command 0x0c1a tx timeout
[  176.807278][ T8497] [U] 
[  176.810465][ T8497] [U] 
[  176.813438][ T8497] [U] 
[  176.816423][ T8497] [U] 
[  176.880245][ T8497] [U] 
[  176.880314][ T8497] [U] 
[  176.880350][ T8497] [U] 
[  176.880386][ T8497] [U] 
[  176.880564][ T8497] [U] 
[  176.880602][ T8497] [U] 
[  176.880639][ T8497] [U] 
[  176.880684][ T8497] [U] 
[  176.880848][ T8497] [U] 
[  176.880885][ T8497] [U] 
[  176.880922][ T8497] [U] 
[  176.880959][ T8497] [U] 
[  176.881145][ T8497] [U] 
[  176.881183][ T8497] [U] 
[  176.881218][ T8497] [U] 
[  176.881255][ T8497] [U] 
[  176.881416][ T8497] [U] 
[  176.881451][ T8497] [U] 
[  176.881489][ T8497] [U] 
[  176.881526][ T8497] [U] 
[  176.881701][ T8497] [U] 
[  176.881739][ T8497] [U] 
[  176.881775][ T8497] [U] 
[  176.881812][ T8497] [U] 
[  176.881970][ T8497] [U] 
[  176.882008][ T8497] [U] 
[  176.882045][ T8497] [U] 
[  176.882082][ T8497] [U] 
[  176.882263][ T8497] [U] 
[  176.882301][ T8497] [U] 
[  176.882340][ T8497] [U] 
[  176.882376][ T8497] [U] 
[  176.882545][ T8497] [U] 
[  176.882584][ T8497] [U] 
[  176.882623][ T8497] [U] 
[  176.882664][ T8497] [U] 
[  176.882848][ T8497] [U] 
[  176.882886][ T8497] [U] 
[  176.882924][ T8497] [U] 
[  176.882960][ T8497] [U] 
[  176.883137][ T8497] [U] 
[  176.883174][ T8497] [U] 
[  176.883210][ T8497] [U] 
[  176.883245][ T8497] [U] 
[  176.883414][ T8497] [U] 
[  176.883449][ T8497] [U] 
[  176.883484][ T8497] [U] 
[  176.883517][ T8497] [U] 
[  176.883673][ T8497] [U] 
[  176.883709][ T8497] [U] 
[  176.883744][ T8497] [U] 
[  176.883777][ T8497] [U] 
[  176.883976][ T8497] [U] 
[  176.884013][ T8497] [U] 
[  176.884051][ T8497] [U] 
[  176.884089][ T8497] [U] 
[  176.945310][ T8497] [U] 
[  176.945361][ T8497] [U] 
[  176.945401][ T8497] [U] 
[  176.945442][ T8497] [U] 
[  176.945635][ T8497] [U] 
[  176.945676][ T8497] [U] 
[  176.945716][ T8497] [U] 
[  176.945755][ T8497] [U] 
[  176.945924][ T8497] [U] 
[  176.945964][ T8497] [U] 
[  176.946004][ T8497] [U] 
[  176.946045][ T8497] [U] 
[  176.946224][ T8497] [U] 
[  176.946282][ T8497] [U] 
[  176.946321][ T8497] [U] 
[  176.946366][ T8497] [U] 
[  176.951357][ T8497] [U] 
[  176.951400][ T8497] [U] 
[  176.951436][ T8497] [U] 
[  176.951472][ T8497] [U] 
[  176.951648][ T8497] [U] 
[  176.951687][ T8497] [U] 
[  176.951722][ T8497] [U] 
[  176.951759][ T8497] [U] 
[  176.951928][ T8497] [U] 
[  176.951966][ T8497] [U] 
[  176.952005][ T8497] [U] 
[  176.952040][ T8497] [U] 
[  176.952208][ T8497] [U] 
[  176.952248][ T8497] [U] 
[  176.952283][ T8497] [U] 
[  176.952319][ T8497] [U] 
[  176.952560][ T8497] [U] 
[  176.952598][ T8497] [U] 
[  176.952635][ T8497] [U] 
[  176.952672][ T8497] [U] 
[  176.952843][ T8497] [U] 
[  176.952878][ T8497] [U] 
[  176.952913][ T8497] [U] 
[  176.952947][ T8497] [U] 
[  176.964355][ T5143] Bluetooth: hci0: command 0x0c1a tx timeout
[  176.972891][ T8497] [U] 
[  176.972934][ T8497] [U] 
[  176.972972][ T8497] [U] 
[  176.973010][ T8497] [U] 
[  176.973186][ T8497] [U] 
[  176.973223][ T8497] [U] 
[  176.973256][ T8497] [U] 
[  176.973293][ T8497] [U] 
[  176.973462][ T8497] [U] 
[  176.973497][ T8497] [U] 
[  176.973533][ T8497] [U] 
[  176.973569][ T8497] [U] 
[  176.973746][ T8497] [U] 
[  176.973782][ T8497] [U] 
[  176.973822][ T8497] [U] 
[  176.973857][ T8497] [U] 
[  176.974075][ T8497] [U] 
[  176.974112][ T8497] [U] 
[  176.974147][ T8497] [U] 
[  176.974189][ T8497] [U] 
[  177.230654][ T8529] ptrace attach of "./syz-executor exec"[5829] was attempted by "./syz-executor exec"[8529]
[  177.411913][ T8534] netlink: 28 bytes leftover after parsing attributes in process `syz.3.560'.
[  177.667608][ T8496] [U] 
[  177.764377][ T5143] Bluetooth: hci3: command 0x0c1a tx timeout
[  177.771039][ T5143] Bluetooth: hci1: command 0x0c1a tx timeout
[  177.844365][ T5143] Bluetooth: hci2: command 0x0c1a tx timeout
[  178.986313][ T8563] netlink: 32 bytes leftover after parsing attributes in process `syz.2.566'.
[  179.065050][ T8567] netlink: 8 bytes leftover after parsing attributes in process `syz.1.568'.
[  180.091680][ T8596] GUP no longer grows the stack in syz.3.573 (8596): 1000-402000 (0)
[  180.170765][ T8588] sg_write: data in/out 32568/2147479510 bytes for SCSI command 0x0-- guessing data in;
[  180.170765][ T8588]    program syz.1.572 not setting count and/or reply_len properly
[  180.200255][ T8596] CPU: 0 UID: 0 PID: 8596 Comm: syz.3.573 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  180.211946][ T8596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  180.223027][ T8596] Call Trace:
[  180.226648][ T8596]  <TASK>
[  180.229884][ T8596]  dump_stack_lvl+0x16c/0x1f0
[  180.235062][ T8596]  gup_vma_lookup+0x1d2/0x220
[  180.240238][ T8596]  __get_user_pages+0x236/0x3b50
[  180.245712][ T8596]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  180.251851][ T8596]  ? __gup_longterm_locked+0x123/0x1870
[  180.257992][ T8596]  ? __gup_longterm_locked+0x123/0x1870
[  180.264135][ T8596]  ? __pfx___get_user_pages+0x10/0x10
[  180.270073][ T8596]  ? down_read_killable+0xcc/0x380
[  180.275722][ T8596]  ? __pfx_down_read_killable+0x10/0x10
[  180.281841][ T8596]  ? __pfx___lock_acquire+0x10/0x10
[  180.287565][ T8596]  __gup_longterm_locked+0x211/0x1870
[  180.293496][ T8596]  ? __pfx___gup_longterm_locked+0x10/0x10
[  180.299890][ T8596]  ? gup_fast_fallback+0x84c/0x2690
[  180.305614][ T8596]  ? __pfx_lock_release+0x10/0x10
[  180.311135][ T8596]  ? lock_acquire+0x2f/0xb0
[  180.316082][ T8596]  ? ___pte_offset_map+0x42/0x540
[  180.321613][ T8596]  gup_fast_fallback+0x1802/0x2690
[  180.327262][ T8596]  ? __pfx_gup_fast_fallback+0x10/0x10
[  180.333274][ T8596]  ? do_syscall_64+0xcd/0x250
[  180.338427][ T8596]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.345126][ T8596]  get_user_pages_fast+0xa8/0x100
[  180.350663][ T8596]  ? __pfx_get_user_pages_fast+0x10/0x10
[  180.356870][ T8596]  get_futex_key+0x1f5/0x1000
[  180.362027][ T8596]  ? __pfx_get_futex_key+0x10/0x10
[  180.367661][ T8596]  ? kasan_save_track+0x14/0x30
[  180.373001][ T8596]  ? __kasan_kmalloc+0xaa/0xb0
[  180.378246][ T8596]  futex_lock_pi+0x282/0x7a0
[  180.383295][ T8596]  ? preempt_schedule_common+0x44/0xc0
[  180.389308][ T8596]  ? __pfx_futex_lock_pi+0x10/0x10
[  180.394937][ T8596]  ? try_to_wake_up+0x953/0x1490
[  180.400371][ T8596]  ? plist_check_head+0xa3/0x150
[  180.405818][ T8596]  ? futex_wake+0x18e/0x4e0
[  180.410773][ T8596]  ? __pfx_futex_wake_mark+0x10/0x10
[  180.416593][ T8596]  ? do_user_addr_fault+0xdc7/0x13f0
[  180.422399][ T8596]  ? reacquire_held_locks+0x20b/0x4c0
[  180.428305][ T8596]  do_futex+0x11b/0x350
[  180.432878][ T8596]  ? __pfx_do_futex+0x10/0x10
[  180.438030][ T8596]  __x64_sys_futex+0x1e1/0x4c0
[  180.443280][ T8596]  ? __pfx___x64_sys_futex+0x10/0x10
[  180.449096][ T8596]  ? rcu_is_watching+0x12/0xc0
[  180.454343][ T8596]  do_syscall_64+0xcd/0x250
[  180.459299][ T8596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.465786][ T8596] RIP: 0033:0x7f5091f85d29
[  180.470637][ T8596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.492202][ T8596] RSP: 002b:00007f5092d68038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  180.501458][ T8596] RAX: ffffffffffffffda RBX: 00007f5092176080 RCX: 00007f5091f85d29
[  180.510221][ T8596] RDX: 0000000000000047 RSI: 0000000000000006 RDI: 0000000000000000
[  180.518979][ T8596] RBP: 00007f5092001b08 R08: 0000000000000000 R09: 0000000000000000
[  180.527740][ T8596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  180.536503][ T8596] R13: 0000000000000000 R14: 00007f5092176080 R15: 00007ffddf5ff1a8
[  180.545280][ T8596]  </TASK>
[  181.050161][ T8606] netlink: 342 bytes leftover after parsing attributes in process `syz.2.578'.
[  183.126955][ T8663] netlink: 28 bytes leftover after parsing attributes in process `syz.1.586'.
[  188.005933][ T5143] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  189.148552][ T8816] netlink: 4 bytes leftover after parsing attributes in process `syz.2.620'.
[  189.177296][ T8816] netlink: zone id is out of range
[  189.183016][ T8816] netlink: zone id is out of range
[  189.189302][ T8816] netlink: zone id is out of range
[  189.195573][ T8816] netlink: zone id is out of range
[  189.201220][ T8816] netlink: zone id is out of range
[  189.207046][ T8816] netlink: zone id is out of range
[  189.212679][ T8816] netlink: zone id is out of range
[  189.218461][ T8816] netlink: zone id is out of range
[  189.224098][ T8816] netlink: zone id is out of range
[  189.229974][ T8816] netlink: zone id is out of range
[  189.282876][ T8794] Process accounting paused
[  192.519481][ T8915] lo: entered allmulticast mode
[  192.812441][ T8914] lo: left allmulticast mode
[  193.814944][ T8945] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000000006
[  194.474426][ T8979] netlink: 334 bytes leftover after parsing attributes in process `syz.2.649'.
[  194.490703][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  194.498084][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  194.590445][ T8982] netlink: 334 bytes leftover after parsing attributes in process `syz.2.649'.
[  194.751092][ T8990] netlink: 28 bytes leftover after parsing attributes in process `syz.3.650'.
[  195.620050][ T9015] Invalid ELF header magic: != ELF
[  195.837553][ T9024] net_ratelimit: 11 callbacks suppressed
[  195.837573][ T9024] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  197.993869][ T9063] netlink: 28 bytes leftover after parsing attributes in process `syz.2.664'.
[  198.031882][ T9063] hsr_slave_1 (unregistering): left promiscuous mode
[  198.542345][ T9071] netlink: 28 bytes leftover after parsing attributes in process `syz.2.667'.
[  198.703442][ T9071] team0: Port device team_slave_0 removed
[  198.984684][ T9072] binder: 9068:9072 unknown command 0
[  198.990641][ T9072] binder: 9068:9072 ioctl c0306201 9 returned -22
[  199.035936][ T9077] binder: 9068:9077 unknown command 0
[  199.041890][ T9077] binder: 9068:9077 ioctl c0306201 9 returned -22
[  199.249236][ T9083] random: crng reseeded on system resumption
[  201.019944][ T9111] kAFS: unparsable volume name
[  201.177900][ T9107] size and base must be multiples of 4 kiB
[  201.204228][ T9107] CPU: 0 UID: 0 PID: 9107 Comm: syz.2.673 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  201.215914][ T9107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  201.227012][ T9107] Call Trace:
[  201.230646][ T9107]  <TASK>
[  201.233883][ T9107]  dump_stack_lvl+0x16c/0x1f0
[  201.239068][ T9107]  mtrr_add+0xdf/0x110
[  201.243580][ T9107]  mtrr_ioctl+0x7cd/0xcd0
[  201.248380][ T9107]  ? __pfx_mtrr_ioctl+0x10/0x10
[  201.253778][ T9107]  ? __pfx_mtrr_ioctl+0x10/0x10
[  201.259157][ T9107]  proc_reg_unlocked_ioctl+0x226/0x320
[  201.265192][ T9107]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  201.271804][ T9107]  __x64_sys_ioctl+0x190/0x200
[  201.277073][ T9107]  do_syscall_64+0xcd/0x250
[  201.282066][ T9107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.288580][ T9107] RIP: 0033:0x7f59bb585d29
[  201.293454][ T9107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.315050][ T9107] RSP: 002b:00007f59bc364038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  201.324332][ T9107] RAX: ffffffffffffffda RBX: 00007f59bb775fa0 RCX: 00007f59bb585d29
[  201.333123][ T9107] RDX: 0000000000000003 RSI: 00000000400c4d01 RDI: 0000000000000003
[  201.341913][ T9107] RBP: 00007f59bb601b08 R08: 0000000000000000 R09: 0000000000000000
[  201.350708][ T9107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  201.359499][ T9107] R13: 0000000000000000 R14: 00007f59bb775fa0 R15: 00007ffee30f9368
[  201.368306][ T9107]  </TASK>
[  201.423531][ T9116] netlink: 330 bytes leftover after parsing attributes in process `syz.1.676'.
[  201.659481][ T9125] netlink: 'syz.2.677': attribute type 10 has an invalid length.
[  201.668394][ T9125] netlink: 330 bytes leftover after parsing attributes in process `syz.2.677'.
[  201.955848][ T9128] block mtdblock0: the capability attribute has been deprecated.
[  201.974710][ T9132] misc userio: No port type given on /dev/userio
[  202.874975][ T9161] dyndbg: expected <4096 bytes into control
[  203.070292][ T9166] netlink: 12 bytes leftover after parsing attributes in process `syz.3.689'.
[  203.200655][ T9177] FAULT_INJECTION: forcing a failure.
[  203.200655][ T9177] name fail_futex, interval 1, probability 0, space 0, times 1
[  203.237197][ T9177] CPU: 0 UID: 0 PID: 9177 Comm: syz.4.692 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  203.248890][ T9177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  203.259972][ T9177] Call Trace:
[  203.263598][ T9177]  <TASK>
[  203.266844][ T9177]  dump_stack_lvl+0x16c/0x1f0
[  203.272028][ T9177]  should_fail_ex+0x497/0x5b0
[  203.277214][ T9177]  ? hlock_class+0x4e/0x130
[  203.282208][ T9177]  get_futex_key+0x4a3/0x1000
[  203.287395][ T9177]  ? __pfx_get_futex_key+0x10/0x10
[  203.293054][ T9177]  ? hlock_class+0x4e/0x130
[  203.298049][ T9177]  ? __lock_acquire+0x15a9/0x3c40
[  203.303611][ T9177]  futex_wake+0xe8/0x4e0
[  203.308314][ T9177]  ? __pfx_futex_wake+0x10/0x10
[  203.313688][ T9177]  ? lock_acquire.part.0+0x11b/0x380
[  203.319539][ T9177]  ? find_held_lock+0x2d/0x110
[  203.324820][ T9177]  do_futex+0x1e5/0x350
[  203.329432][ T9177]  ? __pfx_do_futex+0x10/0x10
[  203.334611][ T9177]  ? put_files_struct+0x3b/0x370
[  203.340054][ T9177]  __x64_sys_futex+0x1e1/0x4c0
[  203.345307][ T9177]  ? __do_sys_close_range+0x25c/0x700
[  203.351223][ T9177]  ? __pfx___x64_sys_futex+0x10/0x10
[  203.357045][ T9177]  ? __pfx___do_sys_close_range+0x10/0x10
[  203.363344][ T9177]  do_syscall_64+0xcd/0x250
[  203.368309][ T9177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.374800][ T9177] RIP: 0033:0x7f96cbf85d29
[  203.379655][ T9177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.401234][ T9177] RSP: 002b:00007f96ccea30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  203.410489][ T9177] RAX: ffffffffffffffda RBX: 00007f96cc175fa8 RCX: 00007f96cbf85d29
[  203.419259][ T9177] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f96cc175fac
[  203.428031][ T9177] RBP: 00007f96cc175fa0 R08: 00007f96ccea4000 R09: 0000000000000000
[  203.436801][ T9177] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f96cc175fac
[  203.445567][ T9177] R13: 0000000000000000 R14: 00007fffbbc3ab20 R15: 00007fffbbc3ac08
[  203.454348][ T9177]  </TASK>
[  203.477088][ T9180] [U] D
[  203.477130][ T9180] [U] 
[  203.477169][ T9180] [U] 
[  203.477206][ T9180] [U] 
[  203.477363][ T9180] [U] 
[  203.477400][ T9180] [U] 
[  203.477444][ T9180] [U] 
[  203.477483][ T9180] [U] 
[  203.477649][ T9180] [U] 
[  203.477686][ T9180] [U] 
[  203.477723][ T9180] [U] 
[  203.477761][ T9180] [U] 
[  203.485752][ T9180] [U] 
[  203.485794][ T9180] [U] 
[  203.485830][ T9180] [U] 
[  203.485867][ T9180] [U] 
[  203.486028][ T9180] [U] 
[  203.486066][ T9180] [U] 
[  203.486105][ T9180] [U] 
[  203.486141][ T9180] [U] 
[  203.486301][ T9180] [U] 
[  203.486338][ T9180] [U] 
[  203.486374][ T9180] [U] 
[  203.486410][ T9180] [U] 
[  203.486576][ T9180] [U] 
[  203.486613][ T9180] [U] 
[  203.486650][ T9180] [U] 
[  203.486686][ T9180] [U] 
[  203.486843][ T9180] [U] 
[  203.486881][ T9180] [U] 
[  203.486919][ T9180] [U] 
[  203.486955][ T9180] [U] 
[  203.487118][ T9180] [U] 
[  203.487155][ T9180] [U] 
[  203.487190][ T9180] [U] 
[  203.487227][ T9180] [U] 
[  203.487386][ T9180] [U] 
[  203.487422][ T9180] [U] 
[  203.487466][ T9180] [U] 
[  203.487506][ T9180] [U] 
[  203.487663][ T9180] [U] 
[  203.487699][ T9180] [U] 
[  203.487738][ T9180] [U] 
[  203.487775][ T9180] [U] 
[  203.487932][ T9180] [U] 
[  203.487968][ T9180] [U] 
[  203.488005][ T9180] [U] 
[  203.488044][ T9180] [U] 
[  203.517848][ T9180] [U] 
[  203.517889][ T9180] [U] 
[  203.517926][ T9180] [U] 
[  203.517962][ T9180] [U] 
[  203.518121][ T9180] [U] 
[  203.518158][ T9180] [U] 
[  203.518193][ T9180] [U] 
[  203.518228][ T9180] [U] 
[  203.518385][ T9180] [U] 
[  203.518421][ T9180] [U] 
[  203.518467][ T9180] [U] 
[  203.518504][ T9180] [U] 
[  203.518671][ T9180] [U] 
[  203.518708][ T9180] [U] 
[  203.518743][ T9180] [U] 
[  203.518780][ T9180] [U] 
[  203.518938][ T9180] [U] 
[  203.518975][ T9180] [U] 
[  203.519012][ T9180] [U] 
[  203.519048][ T9180] [U] 
[  203.530037][ T9180] [U] 
[  203.530077][ T9180] [U] 
[  203.530114][ T9180] [U] 
[  203.530151][ T9180] [U] 
[  203.530319][ T9180] [U] 
[  203.530355][ T9180] [U] 
[  203.530391][ T9180] [U] 
[  203.530439][ T9180] [U] 
[  203.530597][ T9180] [U] 
[  203.530634][ T9180] [U] 
[  203.530671][ T9180] [U] 
[  203.530706][ T9180] [U] 
[  203.530863][ T9180] [U] 
[  203.530901][ T9180] [U] 
[  203.530937][ T9180] [U] 
[  203.530974][ T9180] [U] 
[  203.531132][ T9180] [U] 
[  203.531170][ T9180] [U] 
[  203.531207][ T9180] [U] 
[  203.531245][ T9180] [U] 
[  203.531403][ T9180] [U] 
[  203.531446][ T9180] [U] 
[  203.531485][ T9180] [U] 
[  203.531522][ T9180] [U] 
[  203.531679][ T9180] [U] 
[  203.531716][ T9180] [U] 
[  203.531752][ T9180] [U] 
[  203.531789][ T9180] [U] 
[  203.531947][ T9180] [U] 
[  203.531984][ T9180] [U] 
[  203.532021][ T9180] [U] 
[  203.532059][ T9180] [U] 
[  203.532217][ T9180] [U] 
[  203.532254][ T9180] [U] 
[  203.532290][ T9180] [U] 
[  203.532328][ T9180] [U] 
[  203.532494][ T9180] [U] 
[  203.532531][ T9180] [U] 
[  203.532568][ T9180] [U] 
[  203.532604][ T9180] [U] 
[  203.532763][ T9180] [U] 
[  203.532800][ T9180] [U] 
[  203.532836][ T9180] [U] 
[  203.532874][ T9180] [U] 
[  203.533031][ T9180] [U] 
[  203.533070][ T9180] [U] 
[  203.533113][ T9180] [U] 
[  203.533151][ T9180] [U] 
[  203.533310][ T9180] [U] 
[  203.533349][ T9180] [U] 
[  203.533385][ T9180] [U] 
[  203.533430][ T9180] [U] 
[  205.743323][ T9181] tty tty11: ldisc open failed (-12), clearing slot 10
[  205.938783][ T9181] [U] 
[  205.960211][ T9224] netlink: 8 bytes leftover after parsing attributes in process `syz.3.700'.
[  206.051932][ T9226] netlink: 4 bytes leftover after parsing attributes in process `syz.3.700'.
[  207.097805][ T9244] FAULT_INJECTION: forcing a failure.
[  207.097805][ T9244] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  207.144300][ T9244] CPU: 1 UID: 0 PID: 9244 Comm: syz.4.704 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  207.156008][ T9244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  207.167093][ T9244] Call Trace:
[  207.170716][ T9244]  <TASK>
[  207.173961][ T9244]  dump_stack_lvl+0x16c/0x1f0
[  207.179140][ T9244]  should_fail_ex+0x497/0x5b0
[  207.184327][ T9244]  _copy_from_user+0x2e/0xd0
[  207.189413][ T9244]  copy_msghdr_from_user+0x99/0x160
[  207.195169][ T9244]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  207.201591][ T9244]  ? __lock_acquire+0xcc5/0x3c40
[  207.207058][ T9244]  ___sys_sendmsg+0xff/0x1e0
[  207.212142][ T9244]  ? __pfx____sys_sendmsg+0x10/0x10
[  207.217907][ T9244]  ? trace_lock_acquire+0x14e/0x1f0
[  207.223673][ T9244]  __sys_sendmmsg+0x201/0x420
[  207.228855][ T9244]  ? __pfx___sys_sendmmsg+0x10/0x10
[  207.234614][ T9244]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  207.241232][ T9244]  ? fput+0x67/0x440
[  207.245548][ T9244]  ? ksys_write+0x1ba/0x250
[  207.250531][ T9244]  ? __pfx_ksys_write+0x10/0x10
[  207.255899][ T9244]  __x64_sys_sendmmsg+0x9c/0x100
[  207.261364][ T9244]  ? lockdep_hardirqs_on+0x7c/0x110
[  207.267109][ T9244]  do_syscall_64+0xcd/0x250
[  207.272094][ T9244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.278604][ T9244] RIP: 0033:0x7f96cbf85d29
[  207.283473][ T9244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.305065][ T9244] RSP: 002b:00007f96ccea3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  207.314350][ T9244] RAX: ffffffffffffffda RBX: 00007f96cc175fa0 RCX: 00007f96cbf85d29
[  207.323135][ T9244] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  207.331917][ T9244] RBP: 00007f96ccea3090 R08: 0000000000000000 R09: 0000000000000000
[  207.340701][ T9244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.349482][ T9244] R13: 0000000000000000 R14: 00007f96cc175fa0 R15: 00007fffbbc3ac08
[  207.358286][ T9244]  </TASK>
[  208.591644][ T9262] netlink: 4 bytes leftover after parsing attributes in process `syz.3.711'.
[  209.123963][ T9281] FAULT_INJECTION: forcing a failure.
[  209.123963][ T9281] name failslab, interval 1, probability 0, space 0, times 0
[  209.168079][ T9281] CPU: 0 UID: 0 PID: 9281 Comm: syz.4.715 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  209.179769][ T9281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  209.190848][ T9281] Call Trace:
[  209.194468][ T9281]  <TASK>
[  209.197705][ T9281]  dump_stack_lvl+0x16c/0x1f0
[  209.202876][ T9281]  should_fail_ex+0x497/0x5b0
[  209.208045][ T9281]  ? fs_reclaim_acquire+0xae/0x150
[  209.213695][ T9281]  should_failslab+0xc2/0x120
[  209.218871][ T9281]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  209.225288][ T9281]  ? __alloc_skb+0x2b3/0x380
[  209.230370][ T9281]  __alloc_skb+0x2b3/0x380
[  209.235262][ T9281]  ? __pfx___alloc_skb+0x10/0x10
[  209.240724][ T9281]  ? lockdep_hardirqs_on_prepare+0x410/0x420
[  209.247338][ T9281]  tipc_buf_acquire+0x26/0xe0
[  209.252482][ T9281]  tipc_msg_build+0x114/0x10d0
[  209.257722][ T9281]  ? net_generic+0xea/0x2a0
[  209.262681][ T9281]  ? __pfx_lock_release+0x10/0x10
[  209.268202][ T9281]  ? __pfx_tipc_msg_build+0x10/0x10
[  209.273935][ T9281]  tipc_send_group_bcast+0x7ce/0xa60
[  209.279761][ T9281]  ? __pfx_tipc_send_group_bcast+0x10/0x10
[  209.286152][ T9281]  ? __pfx_mark_lock+0x10/0x10
[  209.291395][ T9281]  ? __pfx_mark_lock+0x10/0x10
[  209.296651][ T9281]  ? __pfx_woken_wake_function+0x10/0x10
[  209.302852][ T9281]  ? mark_lock+0xb5/0xc60
[  209.307634][ T9281]  ? hlock_class+0x4e/0x130
[  209.312586][ T9281]  ? __lock_acquire+0x15a9/0x3c40
[  209.318110][ T9281]  __tipc_sendmsg+0x4a5/0x1990
[  209.323358][ T9281]  ? __pfx___tipc_sendmsg+0x10/0x10
[  209.329072][ T9281]  ? __pfx_mark_lock+0x10/0x10
[  209.334412][ T9281]  ? lock_acquire.part.0+0x11b/0x380
[  209.340222][ T9281]  ? find_held_lock+0x2d/0x110
[  209.345472][ T9281]  ? mark_held_locks+0x9f/0xe0
[  209.350715][ T9281]  ? __local_bh_enable_ip+0xa4/0x120
[  209.356530][ T9281]  tipc_sendmsg+0x4f/0x70
[  209.361289][ T9281]  ____sys_sendmsg+0x9ae/0xb40
[  209.366533][ T9281]  ? copy_msghdr_from_user+0x10b/0x160
[  209.372547][ T9281]  ? __pfx_____sys_sendmsg+0x10/0x10
[  209.378354][ T9281]  ? __lock_acquire+0xcc5/0x3c40
[  209.383790][ T9281]  ___sys_sendmsg+0x135/0x1e0
[  209.388938][ T9281]  ? __pfx____sys_sendmsg+0x10/0x10
[  209.394669][ T9281]  ? trace_lock_acquire+0x14e/0x1f0
[  209.400404][ T9281]  __sys_sendmmsg+0x201/0x420
[  209.405556][ T9281]  ? __pfx___sys_sendmmsg+0x10/0x10
[  209.411285][ T9281]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  209.417877][ T9281]  ? fput+0x67/0x440
[  209.422163][ T9281]  ? ksys_write+0x1ba/0x250
[  209.427115][ T9281]  ? __pfx_ksys_write+0x10/0x10
[  209.432454][ T9281]  __x64_sys_sendmmsg+0x9c/0x100
[  209.437885][ T9281]  ? lockdep_hardirqs_on+0x7c/0x110
[  209.443602][ T9281]  do_syscall_64+0xcd/0x250
[  209.448560][ T9281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.455045][ T9281] RIP: 0033:0x7f96cbf85d29
[  209.459894][ T9281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.481460][ T9281] RSP: 002b:00007f96ccea3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  209.490709][ T9281] RAX: ffffffffffffffda RBX: 00007f96cc175fa0 RCX: 00007f96cbf85d29
[  209.499467][ T9281] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  209.508225][ T9281] RBP: 00007f96ccea3090 R08: 0000000000000000 R09: 0000000000000000
[  209.516985][ T9281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  209.525742][ T9281] R13: 0000000000000000 R14: 00007f96cc175fa0 R15: 00007fffbbc3ac08
[  209.534517][ T9281]  </TASK>
[  210.342949][   T29] audit: type=1800 audit(8277292056.900:6): pid=9303 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.723" name="features" dev="configfs" ino=22693 res=0 errno=0
[  210.365178][    C1] vkms_vblank_simulate: vblank timer overrun
[  210.478094][ T9307] lo: entered allmulticast mode
[  210.550594][ T9305] lo: left allmulticast mode
[  213.689082][ T9321] lo: entered allmulticast mode
[  213.959860][ T9320] lo: left allmulticast mode
[  216.554863][ T9443] netlink: 12 bytes leftover after parsing attributes in process `syz.3.751'.
[  218.356250][ T9480] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  219.446319][ T9489] sg_write: data in/out 32565/2147479510 bytes for SCSI command 0x0-- guessing data in;
[  219.446319][ T9489]    program syz.2.763 not setting count and/or reply_len properly
[  219.704065][ T9245] Process accounting resumed
[  220.378562][ T9510] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  222.089011][ T9546] netlink: 4 bytes leftover after parsing attributes in process `syz.3.781'.
[  224.281542][ T9597] netlink: 334 bytes leftover after parsing attributes in process `syz.4.793'.
[  227.378654][ T9611] lo: entered allmulticast mode
[  227.664358][ T9609] lo: left allmulticast mode
[  230.515463][ T9717] QAT: Stopping all acceleration devices.
[  234.442887][ T9784] Invalid ELF header magic: != ELF
[  234.529386][ T9784] Invalid ELF header magic: != ELF
[  234.587930][ T9784] Invalid ELF header magic: != ELF
[  234.623499][ T9784] Invalid ELF header magic: != ELF
[  234.687853][ T9784] Invalid ELF header magic: != ELF
[  234.744556][ T9784] Invalid ELF header magic: != ELF
[  234.810602][ T9784] Invalid ELF header magic: != ELF
[  234.861981][ T9784] Invalid ELF header magic: != ELF
[  234.924560][ T9784] Invalid ELF header magic: != ELF
[  234.981316][ T9784] Invalid ELF header magic: != ELF
[  235.027967][ T9784] Invalid ELF header magic: != ELF
[  235.093733][ T9784] Invalid ELF header magic: != ELF
[  237.290053][ T9817] netlink: 4 bytes leftover after parsing attributes in process `syz.2.845'.
[  238.203498][ T9838] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  240.976964][ T9900] Process accounting resumed
[  245.375273][ T9987] Process accounting resumed
[  248.418715][T10018] netlink: 28 bytes leftover after parsing attributes in process `syz.1.900'.
[  249.846440][T10042] netlink: 32 bytes leftover after parsing attributes in process `syz.3.898'.
[  250.004786][T10046] Process accounting resumed
[  250.179538][   T29] audit: type=1800 audit(8277292096.740:7): pid=10050 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.899" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0
[  251.777986][T10063] netlink: 463 bytes leftover after parsing attributes in process `syz.2.904'.
[  254.068062][T10089] bridge0: port 3(bond0) entered blocking state
[  254.114382][T10089] bridge0: port 3(bond0) entered disabled state
[  254.140638][T10089] bond0: entered allmulticast mode
[  254.164853][T10089] bond_slave_0: entered allmulticast mode
[  254.204399][T10089] bond_slave_1: entered allmulticast mode
[  254.268199][T10089] bond0: entered promiscuous mode
[  254.273777][T10089] bond_slave_0: entered promiscuous mode
[  254.304518][T10089] bond_slave_1: entered promiscuous mode
[  254.330674][T10089] bridge0: port 3(bond0) entered blocking state
[  254.337697][T10089] bridge0: port 3(bond0) entered forwarding state
[  254.795836][   T29] audit: type=1800 audit(8277292101.360:8): pid=10099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.912" name="lu_gp_id" dev="configfs" ino=26686 res=0 errno=0
[  255.927913][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  255.935191][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  256.501204][T10049] syz.3.901 (10049) used greatest stack depth: 20688 bytes left
[  256.588127][T10107] netlink: 85 bytes leftover after parsing attributes in process `syz.1.915'.
[  257.252513][ T5836] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  257.261959][ T5836] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  257.271855][ T5836] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  257.281712][ T5836] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  257.303149][ T5836] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  257.314242][ T5836] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  257.933456][T10149] bridge0: port 4(bond0) entered blocking state
[  257.976319][T10149] bridge0: port 4(bond0) entered disabled state
[  258.050808][T10149] bond0: entered allmulticast mode
[  258.064587][T10149] bond_slave_0: entered allmulticast mode
[  258.070924][T10149] bond_slave_1: entered allmulticast mode
[  258.106636][T10149] bond0: entered promiscuous mode
[  258.118173][T10149] bond_slave_0: entered promiscuous mode
[  258.133641][T10149] bond_slave_1: entered promiscuous mode
[  258.152303][T10149] bridge0: port 4(bond0) entered blocking state
[  258.159322][T10149] bridge0: port 4(bond0) entered forwarding state
[  258.228327][T10126] chnl_net:caif_netlink_parms(): no params data found
[  258.519414][T10126] bridge0: port 1(bridge_slave_0) entered blocking state
[  258.534586][T10126] bridge0: port 1(bridge_slave_0) entered disabled state
[  258.548093][T10126] bridge_slave_0: entered allmulticast mode
[  258.562236][T10126] bridge_slave_0: entered promiscuous mode
[  258.576225][T10126] bridge0: port 2(bridge_slave_1) entered blocking state
[  258.604261][T10126] bridge0: port 2(bridge_slave_1) entered disabled state
[  258.614420][T10126] bridge_slave_1: entered allmulticast mode
[  258.622021][T10126] bridge_slave_1: entered promiscuous mode
[  258.783523][T10126] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  258.816592][T10126] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  258.936121][   T29] audit: type=1800 audit(8277292105.500:9): pid=10149 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.925" name="lu_gp_id" dev="configfs" ino=26792 res=0 errno=0
[  259.048611][T10126] team0: Port device team_slave_0 added
[  259.068028][T10126] team0: Port device team_slave_1 added
[  259.189150][T10126] batman_adv: batadv0: Adding interface: batadv_slave_0
[  259.211686][T10126] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.258615][T10165] FAULT_INJECTION: forcing a failure.
[  259.258615][T10165] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  259.303600][T10126] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  259.315597][T10165] CPU: 1 UID: 0 PID: 10165 Comm: syz.2.930 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  259.327362][T10165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  259.338437][T10165] Call Trace:
[  259.342064][T10165]  <TASK>
[  259.345302][T10165]  dump_stack_lvl+0x16c/0x1f0
[  259.350479][T10165]  should_fail_ex+0x497/0x5b0
[  259.355659][T10165]  _copy_to_user+0x32/0xd0
[  259.360548][T10165]  simple_read_from_buffer+0xd0/0x160
[  259.366483][T10165]  proc_fail_nth_read+0x198/0x270
[  259.372041][T10165]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  259.378175][T10165]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  259.384303][T10165]  vfs_read+0x1df/0xbe0
[  259.388899][T10165]  ? __fget_files+0x1fc/0x3a0
[  259.394063][T10165]  ? __pfx___mutex_lock+0x10/0x10
[  259.399617][T10165]  ? __pfx_vfs_read+0x10/0x10
[  259.404795][T10165]  ? __fget_files+0x206/0x3a0
[  259.409971][T10165]  ksys_read+0x12b/0x250
[  259.414655][T10165]  ? __pfx_ksys_read+0x10/0x10
[  259.420306][T10165]  do_syscall_64+0xcd/0x250
[  259.425282][T10165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.431791][T10165] RIP: 0033:0x7f59bb58473c
[  259.436658][T10165] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  259.458221][T10165] RSP: 002b:00007f59bc364030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  259.467473][T10165] RAX: ffffffffffffffda RBX: 00007f59bb775fa0 RCX: 00007f59bb58473c
[  259.476236][T10165] RDX: 000000000000000f RSI: 00007f59bc3640a0 RDI: 0000000000000004
[  259.484997][T10165] RBP: 00007f59bc364090 R08: 0000000000000000 R09: 0000000000000000
[  259.493755][T10165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  259.502513][T10165] R13: 0000000000000000 R14: 00007f59bb775fa0 R15: 00007ffee30f9368
[  259.511285][T10165]  </TASK>
[  259.514727][    C1] vkms_vblank_simulate: vblank timer overrun
[  259.525707][T10126] batman_adv: batadv0: Adding interface: batadv_slave_1
[  259.533384][T10126] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.561862][    C1] vkms_vblank_simulate: vblank timer overrun
[  259.584582][ T5836] Bluetooth: hci4: command tx timeout
[  259.594219][T10126] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  259.972146][T10126] hsr_slave_0: entered promiscuous mode
[  260.020195][T10126] hsr_slave_1: entered promiscuous mode
[  260.051639][T10126] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  260.089357][T10126] Cannot create hsr debugfs directory
[  260.458807][ T9104] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  260.812407][ T9104] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.081318][ T9451] syz.4.750 (9451) used greatest stack depth: 19312 bytes left
[  261.146619][ T9104] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.499369][ T9104] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.604342][ T5836] Bluetooth: hci4: command tx timeout
[  261.827222][T10126] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  261.835591][ T9438] syz.4.750 (9438) used greatest stack depth: 18160 bytes left
[  261.970764][T10126] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  262.032569][T10126] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  262.068505][T10126] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  262.121774][ T9104] bridge_slave_1: left allmulticast mode
[  262.135495][ T9104] bridge_slave_1: left promiscuous mode
[  262.141904][ T9104] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.184450][ T9104] bridge_slave_0: left allmulticast mode
[  262.201208][ T9104] bridge_slave_0: left promiscuous mode
[  262.211453][ T9104] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.744436][ T9104] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  262.766964][ T9104] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  262.787085][ T9104] bond0 (unregistering): Released all slaves
[  263.076442][T10126] 8021q: adding VLAN 0 to HW filter on device bond0
[  263.117200][T10126] 8021q: adding VLAN 0 to HW filter on device team0
[  263.154236][T10126] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  263.165756][T10126] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  263.181057][ T7437] bridge0: port 1(bridge_slave_0) entered blocking state
[  263.188906][ T7437] bridge0: port 1(bridge_slave_0) entered forwarding state
[  263.215180][ T7437] bridge0: port 2(bridge_slave_1) entered blocking state
[  263.223047][ T7437] bridge0: port 2(bridge_slave_1) entered forwarding state
[  263.684352][ T5836] Bluetooth: hci4: command tx timeout
[  263.723792][T10126] 8021q: adding VLAN 0 to HW filter on device batadv0
[  263.942869][ T9104] hsr_slave_0: left promiscuous mode
[  263.959890][ T9104] hsr_slave_1: left promiscuous mode
[  263.973033][ T9104] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  263.981465][ T9104] batman_adv: batadv0: Removing interface: batadv_slave_0
[  263.990263][ T9104] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  263.999859][ T9104] batman_adv: batadv0: Removing interface: batadv_slave_1
[  264.020492][ T9104] veth1_macvtap: left promiscuous mode
[  264.028353][ T9104] veth0_macvtap: left promiscuous mode
[  264.044449][ T9104] veth1_vlan: left promiscuous mode
[  264.050246][ T9104] veth0_vlan: left promiscuous mode
[  264.735456][ T9104] team0 (unregistering): Port device team_slave_1 removed
[  264.818329][ T9104] team0 (unregistering): Port device team_slave_0 removed
[  265.764286][ T5836] Bluetooth: hci4: command tx timeout
[  266.502972][T10126] veth0_vlan: entered promiscuous mode
[  266.601040][T10126] veth1_vlan: entered promiscuous mode
[  266.710839][T10126] veth0_macvtap: entered promiscuous mode
[  266.771223][T10126] veth1_macvtap: entered promiscuous mode
[  266.852828][T10126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  266.917358][T10126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.963415][T10126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  267.004571][T10126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  267.044074][T10126] batman_adv: batadv0: Interface activated: batadv_slave_0
[  267.116744][T10126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  267.128497][T10126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  267.139472][T10126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  267.151030][T10126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  267.162936][T10126] batman_adv: batadv0: Interface activated: batadv_slave_1
[  267.173693][T10126] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  267.183459][T10126] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  267.193266][T10126] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  267.202951][T10126] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  267.472846][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  267.509953][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  267.615989][ T7446] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  267.652242][ T7446] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  272.699623][T10407] misc userio: Invalid payload size
[  274.894122][T10452] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  274.924928][T10452] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  274.931785][T10452] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  274.942990][T10452] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  274.953172][T10452] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  274.960106][T10452] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  275.002698][T10452] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  276.964426][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout
[  276.964448][ T5143] Bluetooth: hci3: command 0x0c1a tx timeout
[  276.971066][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  276.971106][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout
[  279.044315][ T5143] Bluetooth: hci0: command 0x0c1a tx timeout
[  279.051005][ T5841] Bluetooth: hci4: command 0x0c1a tx timeout
[  279.763226][   T29] audit: type=1800 audit(8277292126.320:10): pid=10607 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1010" name="lu_gp_id" dev="configfs" ino=27969 res=0 errno=0
[  281.124396][ T5143] Bluetooth: hci4: command 0x0c1a tx timeout
[  292.309136][T10845] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1051'.
[  297.529248][T10930] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1057'.
[  298.415056][T10938] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1059'.
[  298.571036][T10938] bridge0: port 3(team0) entered disabled state
[  301.106603][T10973] FAULT_INJECTION: forcing a failure.
[  301.106603][T10973] name failslab, interval 1, probability 0, space 0, times 0
[  301.144364][T10973] CPU: 1 UID: 0 PID: 10973 Comm: syz.5.1070 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  301.155186][T10973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  301.165270][T10973] Call Trace:
[  301.168570][T10973]  <TASK>
[  301.171525][T10973]  dump_stack_lvl+0x16c/0x1f0
[  301.176256][T10973]  should_fail_ex+0x497/0x5b0
[  301.180976][T10973]  ? fs_reclaim_acquire+0xae/0x150
[  301.186118][T10973]  should_failslab+0xc2/0x120
[  301.190829][T10973]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  301.196226][T10973]  ? security_inode_alloc+0x3b/0x2b0
[  301.201534][T10973]  security_inode_alloc+0x3b/0x2b0
[  301.206670][T10973]  inode_init_always_gfp+0xce4/0x1030
[  301.212065][T10973]  alloc_inode+0x82/0x230
[  301.216416][T10973]  new_inode+0x22/0x210
[  301.220586][T10973]  hugetlbfs_get_inode+0x358/0x740
[  301.225714][T10973]  hugetlb_file_setup+0x15b/0x620
[  301.230755][T10973]  ksys_mmap_pgoff+0x189/0x5c0
[  301.235534][T10973]  __x64_sys_mmap+0x125/0x190
[  301.240219][T10973]  do_syscall_64+0xcd/0x250
[  301.244738][T10973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  301.250647][T10973] RIP: 0033:0x7f7b8e585d29
[  301.255072][T10973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  301.274691][T10973] RSP: 002b:00007f7b8f405038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  301.283124][T10973] RAX: ffffffffffffffda RBX: 00007f7b8e775fa0 RCX: 00007f7b8e585d29
[  301.291098][T10973] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000
[  301.299068][T10973] RBP: 00007f7b8e601b08 R08: 0000000000000401 R09: 0000300000000000
[  301.307043][T10973] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  301.315021][T10973] R13: 0000000000000000 R14: 00007f7b8e775fa0 R15: 00007ffcf27e6338
[  301.323025][T10973]  </TASK>
[  301.895714][T10983] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1072'.
[  301.939795][T10983] veth0_macvtap: left promiscuous mode
[  301.965735][T10983] macvtap0: entered allmulticast mode
[  304.289457][T11009] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1080'.
[  304.650757][T11018] FAULT_INJECTION: forcing a failure.
[  304.650757][T11018] name failslab, interval 1, probability 0, space 0, times 0
[  304.688522][T11018] CPU: 0 UID: 0 PID: 11018 Comm: syz.1.1082 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  304.699341][T11018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  304.709415][T11018] Call Trace:
[  304.712684][T11018]  <TASK>
[  304.715605][T11018]  dump_stack_lvl+0x16c/0x1f0
[  304.720277][T11018]  should_fail_ex+0x497/0x5b0
[  304.724955][T11018]  ? fs_reclaim_acquire+0xae/0x150
[  304.730063][T11018]  should_failslab+0xc2/0x120
[  304.734736][T11018]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  304.740099][T11018]  ? security_inode_alloc+0x3b/0x2b0
[  304.745386][T11018]  security_inode_alloc+0x3b/0x2b0
[  304.750496][T11018]  inode_init_always_gfp+0xce4/0x1030
[  304.755862][T11018]  alloc_inode+0x82/0x230
[  304.760184][T11018]  new_inode+0x22/0x210
[  304.764338][T11018]  hugetlbfs_get_inode+0x358/0x740
[  304.769450][T11018]  hugetlb_file_setup+0x15b/0x620
[  304.774470][T11018]  ksys_mmap_pgoff+0x189/0x5c0
[  304.779231][T11018]  __x64_sys_mmap+0x125/0x190
[  304.783897][T11018]  do_syscall_64+0xcd/0x250
[  304.788396][T11018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.794289][T11018] RIP: 0033:0x7f5c52585d29
[  304.798715][T11018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.818317][T11018] RSP: 002b:00007f5c533cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  304.826728][T11018] RAX: ffffffffffffffda RBX: 00007f5c52775fa0 RCX: 00007f5c52585d29
[  304.834694][T11018] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000
[  304.842654][T11018] RBP: 00007f5c52601b08 R08: 0000000000000401 R09: 0000300000000000
[  304.850626][T11018] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  304.858587][T11018] R13: 0000000000000000 R14: 00007f5c52775fa0 R15: 00007ffef03ce508
[  304.866558][T11018]  </TASK>
[  314.739789][T11187] QAT: Device 2 not found
[  317.367891][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  317.376628][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  317.847057][T11233] MTRR 2 not used
[  319.683471][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  319.690476][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  319.811631][T11273] FAULT_INJECTION: forcing a failure.
[  319.811631][T11273] name failslab, interval 1, probability 0, space 0, times 0
[  319.884466][T11273] CPU: 0 UID: 0 PID: 11273 Comm: syz.2.1155 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  319.895284][T11273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  319.905367][T11273] Call Trace:
[  319.908669][T11273]  <TASK>
[  319.911618][T11273]  dump_stack_lvl+0x16c/0x1f0
[  319.916333][T11273]  should_fail_ex+0x497/0x5b0
[  319.921040][T11273]  ? fs_reclaim_acquire+0xae/0x150
[  319.926181][T11273]  should_failslab+0xc2/0x120
[  319.930900][T11273]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  319.936308][T11273]  ? create_new_namespaces+0x30/0xad0
[  319.941718][T11273]  create_new_namespaces+0x30/0xad0
[  319.946948][T11273]  ? bpf_lsm_capable+0x9/0x10
[  319.951660][T11273]  ? security_capable+0x7e/0x260
[  319.956726][T11273]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  319.962397][T11273]  ksys_unshare+0x45d/0xa40
[  319.966933][T11273]  ? __pfx_ksys_unshare+0x10/0x10
[  319.971990][T11273]  ? ksys_write+0x1ba/0x250
[  319.976534][T11273]  __x64_sys_unshare+0x31/0x40
[  319.981335][T11273]  do_syscall_64+0xcd/0x250
[  319.985885][T11273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.991813][T11273] RIP: 0033:0x7f59bb585d29
[  319.996259][T11273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.015886][T11273] RSP: 002b:00007f59bc364038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  320.024304][T11273] RAX: ffffffffffffffda RBX: 00007f59bb775fa0 RCX: 00007f59bb585d29
[  320.032275][T11273] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  320.040244][T11273] RBP: 00007f59bc364090 R08: 0000000000000000 R09: 0000000000000000
[  320.048218][T11273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  320.056190][T11273] R13: 0000000000000000 R14: 00007f59bb775fa0 R15: 00007ffee30f9368
[  320.064177][T11273]  </TASK>
[  323.692073][T11387] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1186'.
[  323.808089][T11389] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1186'.
[  324.146026][T11395] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1188'.
[  326.135656][T11431] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1200'.
[  326.860153][   T29] audit: type=1800 audit(8277292173.420:11): pid=11447 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1201" name="lu_gp_id" dev="configfs" ino=32478 res=0 errno=0
[  327.211189][T11453] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1213'.
[  327.250428][T11453] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1213'.
[  327.274631][T11453] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1213'.
[  328.492513][T11479] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1210'.
[  329.224193][   T29] audit: type=1800 audit(8277292175.780:12): pid=11487 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1215" name="lu_gp_id" dev="configfs" ino=33122 res=0 errno=0
[  329.320675][T11492] FAULT_INJECTION: forcing a failure.
[  329.320675][T11492] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  329.379127][T11492] CPU: 0 UID: 0 PID: 11492 Comm: syz.1.1216 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  329.389955][T11492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  329.400036][T11492] Call Trace:
[  329.403336][T11492]  <TASK>
[  329.406288][T11492]  dump_stack_lvl+0x16c/0x1f0
[  329.411004][T11492]  should_fail_ex+0x497/0x5b0
[  329.415720][T11492]  ? fs_reclaim_acquire+0xae/0x150
[  329.420864][T11492]  should_fail_alloc_page+0xe7/0x130
[  329.426192][T11492]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  329.432383][T11492]  __alloc_pages_noprof+0x190/0x25b0
[  329.437703][T11492]  ? hlock_class+0x4e/0x130
[  329.442239][T11492]  ? hlock_class+0x4e/0x130
[  329.446768][T11492]  ? mark_lock+0xb5/0xc60
[  329.451130][T11492]  ? __pfx_mark_lock+0x10/0x10
[  329.455935][T11492]  ? __pfx_mark_lock+0x10/0x10
[  329.460737][T11492]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  329.466500][T11492]  ? is_bpf_text_address+0x8a/0x1a0
[  329.471741][T11492]  ? hlock_class+0x4e/0x130
[  329.476279][T11492]  ? hlock_class+0x4e/0x130
[  329.480812][T11492]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  329.486734][T11492]  ? policy_nodemask+0xea/0x4e0
[  329.491626][T11492]  alloc_pages_mpol_noprof+0x2c8/0x620
[  329.497117][T11492]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  329.503129][T11492]  ? __pfx___lock_acquire+0x10/0x10
[  329.508360][T11492]  ? mark_lock+0xb5/0xc60
[  329.512741][T11492]  pte_alloc_one+0x20/0x390
[  329.517277][T11492]  do_pte_missing+0x1ae7/0x3e00
[  329.522185][T11492]  __handle_mm_fault+0x103c/0x2a40
[  329.527341][T11492]  ? __pfx___handle_mm_fault+0x10/0x10
[  329.532917][T11492]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  329.538598][T11492]  ? find_vma+0xc0/0x140
[  329.542871][T11492]  ? __pfx_find_vma+0x10/0x10
[  329.547580][T11492]  handle_mm_fault+0x3fa/0xaa0
[  329.552386][T11492]  do_user_addr_fault+0x7a3/0x13f0
[  329.557535][T11492]  exc_page_fault+0x5c/0xc0
[  329.562070][T11492]  asm_exc_page_fault+0x26/0x30
[  329.566955][T11492] RIP: 0010:__get_user_4+0x1a/0x30
[  329.572095][T11492] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 ba 00 f0 ff ff ff 7f 00 00 48 39 c2 48 19 d2 48 09 d0 0f 01 cb <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00
[  329.591732][T11492] RSP: 0018:ffffc9000c72f8b8 EFLAGS: 00050202
[  329.597826][T11492] RAX: 0000000000000004 RBX: ffffffff8db701a0 RCX: ffffc9000c72f820
[  329.605823][T11492] RDX: 0000000000000000 RSI: ffffffff811ed72e RDI: ffffffff8bb17380
[  329.613822][T11492] RBP: ffffc9000c72fc90 R08: 0000000000000000 R09: fffffbfff2039f9a
[  329.621815][T11492] R10: ffffffff901cfcd7 R11: 0000000000000001 R12: ffff88804fbdd100
[  329.629806][T11492] R13: 00000000c080aebe R14: 0000000000000000 R15: 0000000000000004
[  329.637810][T11492]  ? kvm_arch_vcpu_ioctl+0x2fe/0x5070
[  329.643228][T11492]  kvm_arch_vcpu_ioctl+0x306/0x5070
[  329.648468][T11492]  ? hlock_class+0x4e/0x130
[  329.653020][T11492]  ? __lock_acquire+0x15a9/0x3c40
[  329.658073][T11492]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  329.663752][T11492]  ? kasan_save_track+0x14/0x30
[  329.668638][T11492]  ? __kasan_slab_free+0x51/0x70
[  329.673614][T11492]  ? __pfx___lock_acquire+0x10/0x10
[  329.678926][T11492]  ? __x64_sys_ioctl+0xb7/0x200
[  329.683806][T11492]  ? do_syscall_64+0xcd/0x250
[  329.688516][T11492]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.694618][T11492]  ? hlock_class+0x4e/0x130
[  329.699142][T11492]  ? lock_acquire.part.0+0x11b/0x380
[  329.704436][T11492]  ? __mutex_trylock_common+0xea/0x250
[  329.710251][T11492]  ? __pfx___mutex_trylock_common+0x10/0x10
[  329.716152][T11492]  ? kvm_vcpu_ioctl+0x1de/0x1520
[  329.721096][T11492]  ? rcu_is_watching+0x12/0xc0
[  329.725876][T11492]  ? trace_contention_end+0xee/0x140
[  329.731167][T11492]  ? __mutex_lock+0x1cc/0xa60
[  329.735854][T11492]  ? kvm_vcpu_ioctl+0x1de/0x1520
[  329.740797][T11492]  ? tomoyo_path_number_perm+0x298/0x5b0
[  329.746445][T11492]  ? __pfx___mutex_lock+0x10/0x10
[  329.751489][T11492]  ? tomoyo_path_number_perm+0x190/0x5b0
[  329.757144][T11492]  ? kvm_vcpu_ioctl+0x9e6/0x1520
[  329.762081][T11492]  kvm_vcpu_ioctl+0x9e6/0x1520
[  329.766849][T11492]  ? do_vfs_ioctl+0x513/0x1950
[  329.771620][T11492]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  329.776837][T11492]  ? __pfx_lock_release+0x10/0x10
[  329.781863][T11492]  ? trace_lock_acquire+0x14e/0x1f0
[  329.787084][T11492]  ? __fget_files+0x206/0x3a0
[  329.791778][T11492]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  329.796980][T11492]  __x64_sys_ioctl+0x190/0x200
[  329.801750][T11492]  do_syscall_64+0xcd/0x250
[  329.806264][T11492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.812165][T11492] RIP: 0033:0x7f5c52585d29
[  329.816583][T11492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  329.836195][T11492] RSP: 002b:00007f5c533cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  329.844615][T11492] RAX: ffffffffffffffda RBX: 00007f5c52775fa0 RCX: 00007f5c52585d29
[  329.852586][T11492] RDX: 0000000000000000 RSI: 00000000c080aebe RDI: 0000000000000004
[  329.860555][T11492] RBP: 00007f5c533cb090 R08: 0000000000000000 R09: 0000000000000000
[  329.868524][T11492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  329.876494][T11492] R13: 0000000000000000 R14: 00007f5c52775fa0 R15: 00007ffef03ce508
[  329.884487][T11492]  </TASK>
[  331.025098][T11520] zero sized request
[  331.752219][T11547] FAULT_INJECTION: forcing a failure.
[  331.752219][T11547] name failslab, interval 1, probability 0, space 0, times 0
[  331.786209][   T29] audit: type=1800 audit(8277292178.350:13): pid=11546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1230" name="lu_gp_id" dev="configfs" ino=33185 res=0 errno=0
[  331.807333][T11547] CPU: 1 UID: 0 PID: 11547 Comm: syz.3.1231 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  331.818139][T11547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  331.828218][T11547] Call Trace:
[  331.831522][T11547]  <TASK>
[  331.834478][T11547]  dump_stack_lvl+0x16c/0x1f0
[  331.839197][T11547]  should_fail_ex+0x497/0x5b0
[  331.843914][T11547]  ? fs_reclaim_acquire+0xae/0x150
[  331.849065][T11547]  should_failslab+0xc2/0x120
[  331.853780][T11547]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  331.859187][T11547]  ? ptlock_alloc+0x1f/0x70
[  331.863730][T11547]  ptlock_alloc+0x1f/0x70
[  331.868094][T11547]  pte_alloc_one+0x74/0x390
[  331.872632][T11547]  do_pte_missing+0x1ae7/0x3e00
[  331.877542][T11547]  __handle_mm_fault+0x103c/0x2a40
[  331.882701][T11547]  ? __pfx___handle_mm_fault+0x10/0x10
[  331.888193][T11547]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  331.893874][T11547]  ? find_vma+0xc0/0x140
[  331.898154][T11547]  ? __pfx_find_vma+0x10/0x10
[  331.902863][T11547]  handle_mm_fault+0x3fa/0xaa0
[  331.907680][T11547]  do_user_addr_fault+0x7a3/0x13f0
[  331.912829][T11547]  exc_page_fault+0x5c/0xc0
[  331.917371][T11547]  asm_exc_page_fault+0x26/0x30
[  331.922253][T11547] RIP: 0010:__get_user_4+0x1a/0x30
[  331.927388][T11547] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 ba 00 f0 ff ff ff 7f 00 00 48 39 c2 48 19 d2 48 09 d0 0f 01 cb <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00
[  331.947019][T11547] RSP: 0018:ffffc9000cba78b8 EFLAGS: 00050202
[  331.953115][T11547] RAX: 0000000000000004 RBX: ffffffff8db701a0 RCX: ffffc9000cba7820
[  331.961115][T11547] RDX: 0000000000000000 RSI: ffffffff811ed72e RDI: ffffffff8bb17380
[  331.969108][T11547] RBP: ffffc9000cba7c90 R08: 0000000000000000 R09: fffffbfff2039f9a
[  331.977105][T11547] R10: ffffffff901cfcd7 R11: 0000000000000001 R12: ffff88804fbda880
[  331.985102][T11547] R13: 00000000c080aebe R14: 0000000000000000 R15: 0000000000000004
[  331.993110][T11547]  ? kvm_arch_vcpu_ioctl+0x2fe/0x5070
[  331.998525][T11547]  kvm_arch_vcpu_ioctl+0x306/0x5070
[  332.003767][T11547]  ? hlock_class+0x4e/0x130
[  332.008304][T11547]  ? __lock_acquire+0x15a9/0x3c40
[  332.013351][T11547]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  332.019027][T11547]  ? kasan_save_track+0x14/0x30
[  332.023917][T11547]  ? __kasan_slab_free+0x51/0x70
[  332.028899][T11547]  ? __pfx___lock_acquire+0x10/0x10
[  332.034122][T11547]  ? __x64_sys_ioctl+0xb7/0x200
[  332.038998][T11547]  ? do_syscall_64+0xcd/0x250
[  332.043710][T11547]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.049813][T11547]  ? hlock_class+0x4e/0x130
[  332.054350][T11547]  ? lock_acquire.part.0+0x11b/0x380
[  332.059673][T11547]  ? __mutex_trylock_common+0xea/0x250
[  332.065169][T11547]  ? __pfx___mutex_trylock_common+0x10/0x10
[  332.071089][T11547]  ? kvm_vcpu_ioctl+0x1de/0x1520
[  332.076055][T11547]  ? rcu_is_watching+0x12/0xc0
[  332.080851][T11547]  ? trace_contention_end+0xee/0x140
[  332.086175][T11547]  ? __mutex_lock+0x1cc/0xa60
[  332.090895][T11547]  ? kvm_vcpu_ioctl+0x1de/0x1520
[  332.095858][T11547]  ? tomoyo_path_number_perm+0x298/0x5b0
[  332.101533][T11547]  ? __pfx___mutex_lock+0x10/0x10
[  332.106602][T11547]  ? tomoyo_path_number_perm+0x190/0x5b0
[  332.112281][T11547]  ? kvm_vcpu_ioctl+0x9e6/0x1520
[  332.117245][T11547]  kvm_vcpu_ioctl+0x9e6/0x1520
[  332.122038][T11547]  ? do_vfs_ioctl+0x513/0x1950
[  332.126834][T11547]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  332.132081][T11547]  ? __pfx_lock_release+0x10/0x10
[  332.137129][T11547]  ? trace_lock_acquire+0x14e/0x1f0
[  332.142374][T11547]  ? __fget_files+0x206/0x3a0
[  332.147091][T11547]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  332.152313][T11547]  __x64_sys_ioctl+0x190/0x200
[  332.157111][T11547]  do_syscall_64+0xcd/0x250
[  332.161652][T11547]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.167582][T11547] RIP: 0033:0x7f5091f85d29
[  332.172022][T11547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  332.191657][T11547] RSP: 002b:00007f5092d89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  332.200105][T11547] RAX: ffffffffffffffda RBX: 00007f5092175fa0 RCX: 00007f5091f85d29
[  332.208102][T11547] RDX: 0000000000000000 RSI: 00000000c080aebe RDI: 0000000000000004
[  332.216097][T11547] RBP: 00007f5092d89090 R08: 0000000000000000 R09: 0000000000000000
[  332.224089][T11547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  332.232084][T11547] R13: 0000000000000000 R14: 00007f5092175fa0 R15: 00007ffddf5ff1a8
[  332.240096][T11547]  </TASK>
[  333.853221][T11592] FAULT_INJECTION: forcing a failure.
[  333.853221][T11592] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  333.902821][T11592] CPU: 0 UID: 0 PID: 11592 Comm: syz.2.1243 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  333.913638][T11592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  333.923715][T11592] Call Trace:
[  333.927011][T11592]  <TASK>
[  333.929960][T11592]  dump_stack_lvl+0x16c/0x1f0
[  333.934675][T11592]  should_fail_ex+0x497/0x5b0
[  333.939382][T11592]  ? fs_reclaim_acquire+0xae/0x150
[  333.944523][T11592]  should_fail_alloc_page+0xe7/0x130
[  333.949847][T11592]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  333.956049][T11592]  __alloc_pages_noprof+0x190/0x25b0
[  333.961372][T11592]  ? __pfx_mark_lock+0x10/0x10
[  333.966183][T11592]  ? __pfx___lock_acquire+0x10/0x10
[  333.971407][T11592]  ? mark_lock+0xb5/0xc60
[  333.975780][T11592]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  333.981544][T11592]  ? hlock_class+0x4e/0x130
[  333.986081][T11592]  ? __lock_acquire+0xcc5/0x3c40
[  333.991055][T11592]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  333.996975][T11592]  ? policy_nodemask+0xea/0x4e0
[  334.001840][T11592]  alloc_pages_mpol_noprof+0x2c8/0x620
[  334.007304][T11592]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  334.013291][T11592]  ? find_held_lock+0x2d/0x110
[  334.018072][T11592]  folio_alloc_mpol_noprof+0x36/0xd0
[  334.023368][T11592]  shmem_alloc_folio+0x135/0x160
[  334.028330][T11592]  shmem_alloc_and_add_folio+0x48b/0xc00
[  334.033975][T11592]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  334.040138][T11592]  ? shmem_allowable_huge_orders+0xd0/0x410
[  334.046042][T11592]  shmem_get_folio_gfp+0x689/0x1530
[  334.051250][T11592]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  334.056888][T11592]  ? filemap_map_pages+0xf92/0x16b0
[  334.062114][T11592]  shmem_fault+0x200/0xae0
[  334.066541][T11592]  ? __pfx_shmem_fault+0x10/0x10
[  334.071489][T11592]  ? do_pte_missing+0xdd7/0x3e00
[  334.076436][T11592]  ? __pfx_lock_release+0x10/0x10
[  334.081474][T11592]  __do_fault+0x10a/0x490
[  334.085811][T11592]  do_pte_missing+0xebd/0x3e00
[  334.090595][T11592]  __handle_mm_fault+0x103c/0x2a40
[  334.095725][T11592]  ? __pfx___handle_mm_fault+0x10/0x10
[  334.101192][T11592]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  334.106840][T11592]  ? find_vma+0xc0/0x140
[  334.111085][T11592]  ? __pfx_find_vma+0x10/0x10
[  334.115768][T11592]  handle_mm_fault+0x3fa/0xaa0
[  334.120545][T11592]  do_user_addr_fault+0x7a3/0x13f0
[  334.125663][T11592]  exc_page_fault+0x5c/0xc0
[  334.130176][T11592]  asm_exc_page_fault+0x26/0x30
[  334.135035][T11592] RIP: 0010:__get_user_4+0x1a/0x30
[  334.140148][T11592] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 ba 00 f0 ff ff ff 7f 00 00 48 39 c2 48 19 d2 48 09 d0 0f 01 cb <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00
[  334.159754][T11592] RSP: 0018:ffffc9000bbef8b8 EFLAGS: 00050202
[  334.165825][T11592] RAX: 0000000000000004 RBX: ffffffff8db701a0 RCX: ffffc9000bbef820
[  334.173799][T11592] RDX: 0000000000000000 RSI: ffffffff811ed72e RDI: ffffffff8bb17380
[  334.181770][T11592] RBP: ffffc9000bbefc90 R08: 0000000000000000 R09: fffffbfff2039f9a
[  334.189742][T11592] R10: ffffffff901cfcd7 R11: 0000000000000001 R12: ffff88805f74d100
[  334.197715][T11592] R13: 00000000c080aebe R14: 0000000000000000 R15: 0000000000000004
[  334.205696][T11592]  ? kvm_arch_vcpu_ioctl+0x2fe/0x5070
[  334.211103][T11592]  kvm_arch_vcpu_ioctl+0x306/0x5070
[  334.216327][T11592]  ? hlock_class+0x4e/0x130
[  334.220847][T11592]  ? __lock_acquire+0x15a9/0x3c40
[  334.225879][T11592]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  334.231529][T11592]  ? kasan_save_track+0x14/0x30
[  334.236389][T11592]  ? __kasan_slab_free+0x51/0x70
[  334.241349][T11592]  ? __pfx___lock_acquire+0x10/0x10
[  334.246553][T11592]  ? __x64_sys_ioctl+0xb7/0x200
[  334.251414][T11592]  ? do_syscall_64+0xcd/0x250
[  334.256102][T11592]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.262184][T11592]  ? hlock_class+0x4e/0x130
[  334.266699][T11592]  ? lock_acquire.part.0+0x11b/0x380
[  334.271992][T11592]  ? __mutex_trylock_common+0xea/0x250
[  334.277463][T11592]  ? __pfx___mutex_trylock_common+0x10/0x10
[  334.283359][T11592]  ? kvm_vcpu_ioctl+0x1de/0x1520
[  334.288314][T11592]  ? rcu_is_watching+0x12/0xc0
[  334.293088][T11592]  ? trace_contention_end+0xee/0x140
[  334.298384][T11592]  ? __mutex_lock+0x1cc/0xa60
[  334.303081][T11592]  ? kvm_vcpu_ioctl+0x1de/0x1520
[  334.308024][T11592]  ? tomoyo_path_number_perm+0x298/0x5b0
[  334.313677][T11592]  ? __pfx___mutex_lock+0x10/0x10
[  334.318721][T11592]  ? tomoyo_path_number_perm+0x190/0x5b0
[  334.324380][T11592]  ? kvm_vcpu_ioctl+0x9e6/0x1520
[  334.329338][T11592]  kvm_vcpu_ioctl+0x9e6/0x1520
[  334.334107][T11592]  ? do_vfs_ioctl+0x513/0x1950
[  334.338883][T11592]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  334.344116][T11592]  ? __pfx_lock_release+0x10/0x10
[  334.349156][T11592]  ? trace_lock_acquire+0x14e/0x1f0
[  334.354373][T11592]  ? __fget_files+0x206/0x3a0
[  334.359065][T11592]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  334.364268][T11592]  __x64_sys_ioctl+0x190/0x200
[  334.369039][T11592]  do_syscall_64+0xcd/0x250
[  334.373555][T11592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.379474][T11592] RIP: 0033:0x7f59bb585d29
[  334.383895][T11592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.403514][T11592] RSP: 002b:00007f59bc364038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  334.411935][T11592] RAX: ffffffffffffffda RBX: 00007f59bb775fa0 RCX: 00007f59bb585d29
[  334.419912][T11592] RDX: 0000000000000000 RSI: 00000000c080aebe RDI: 0000000000000004
[  334.427885][T11592] RBP: 00007f59bc364090 R08: 0000000000000000 R09: 0000000000000000
[  334.435859][T11592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.443831][T11592] R13: 0000000000000000 R14: 00007f59bb775fa0 R15: 00007ffee30f9368
[  334.451826][T11592]  </TASK>
[  334.703510][T11600] bridge0: port 3(bond0) entered blocking state

[  334.753603][T11600] bridge0: port 3(bond0) entered disabled state
syzkaller
syzkaller login: [  334.806824][T11600] bond0: entered allmulticast mode
[  334.812491][T11600] bond_slave_0: entered allmulticast mode
[  334.835989][T11600] bond_slave_1: entered allmulticast mode
[  334.855733][T11600] bond0: entered promiscuous mode
[  334.871534][T11600] bond_slave_0: entered promiscuous mode
[  334.915153][T11600] bond_slave_1: entered promiscuous mode
[  334.921927][T11600] bridge0: port 3(bond0) entered blocking state
[  334.928955][T11600] bridge0: port 3(bond0) entered forwarding state
[  335.125392][   T29] audit: type=1800 audit(8277292181.690:14): pid=11600 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1245" name="lu_gp_id" dev="configfs" ino=33433 res=0 errno=0
[  338.355112][T11666] FAULT_INJECTION: forcing a failure.
[  338.355112][T11666] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  338.424489][T11666] CPU: 0 UID: 0 PID: 11666 Comm: syz.1.1260 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  338.436382][T11666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  338.447437][T11666] Call Trace:
[  338.451036][T11666]  <TASK>
[  338.454635][T11666]  dump_stack_lvl+0x16c/0x1f0
[  338.459789][T11666]  should_fail_ex+0x497/0x5b0
[  338.464937][T11666]  _copy_to_user+0x32/0xd0
[  338.469802][T11666]  simple_read_from_buffer+0xd0/0x160
[  338.475711][T11666]  proc_fail_nth_read+0x198/0x270
[  338.481241][T11666]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  338.487348][T11666]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  338.493462][T11666]  vfs_read+0x1df/0xbe0
[  338.498037][T11666]  ? __fget_files+0x1fc/0x3a0
[  338.503183][T11666]  ? __pfx___mutex_lock+0x10/0x10
[  338.508713][T11666]  ? __pfx_vfs_read+0x10/0x10
[  338.513862][T11666]  ? __fget_files+0x206/0x3a0
[  338.519015][T11666]  ksys_read+0x12b/0x250
[  338.523681][T11666]  ? __pfx_ksys_read+0x10/0x10
[  338.528930][T11666]  do_syscall_64+0xcd/0x250
[  338.533885][T11666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.540374][T11666] RIP: 0033:0x7f5c5258473c
[  338.545224][T11666] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  338.566784][T11666] RSP: 002b:00007f5c533cb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  338.576034][T11666] RAX: ffffffffffffffda RBX: 00007f5c52775fa0 RCX: 00007f5c5258473c
[  338.584793][T11666] RDX: 000000000000000f RSI: 00007f5c533cb0a0 RDI: 0000000000000005
[  338.593556][T11666] RBP: 00007f5c533cb090 R08: 0000000000000000 R09: 0000000000000000
[  338.602320][T11666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  338.611088][T11666] R13: 0000000000000000 R14: 00007f5c52775fa0 R15: 00007ffef03ce508
[  338.619864][T11666]  </TASK>
[  338.723917][T11671] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1261'.
[  339.340330][T11671] hsr_slave_0 (unregistering): left promiscuous mode
[  340.004160][   T29] audit: type=1800 audit(8277292186.550:15): pid=11683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1262" name="lu_gp_id" dev="configfs" ino=34280 res=0 errno=0
[  341.015546][T11709] FAULT_INJECTION: forcing a failure.
[  341.015546][T11709] name failslab, interval 1, probability 0, space 0, times 0
[  341.085299][T11709] CPU: 0 UID: 0 PID: 11709 Comm: syz.5.1270 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  341.097175][T11709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  341.108228][T11709] Call Trace:
[  341.111825][T11709]  <TASK>
[  341.115050][T11709]  dump_stack_lvl+0x16c/0x1f0
[  341.120200][T11709]  should_fail_ex+0x497/0x5b0
[  341.125345][T11709]  ? fs_reclaim_acquire+0xae/0x150
[  341.130966][T11709]  should_failslab+0xc2/0x120
[  341.136117][T11709]  __kmalloc_noprof+0xce/0x4f0
[  341.141361][T11709]  ? io_alloc_async_data+0x9d/0x150
[  341.147079][T11709]  ? __io_alloc_req_refill+0xeb/0x5b0
[  341.152993][T11709]  io_alloc_async_data+0x9d/0x150
[  341.158527][T11709]  io_prep_rw+0x30d/0xb70
[  341.163289][T11709]  io_prep_rwv+0xa8/0x360
[  341.168052][T11709]  ? __pfx_io_prep_rwv+0x10/0x10
[  341.173488][T11709]  io_submit_sqes+0x850/0x25f0
[  341.178749][T11709]  __do_sys_io_uring_enter+0xd43/0x1620
[  341.184857][T11709]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  341.191456][T11709]  ? ksys_write+0x1ba/0x250
[  341.196416][T11709]  ? __pfx_ksys_write+0x10/0x10
[  341.201763][T11709]  do_syscall_64+0xcd/0x250
[  341.206720][T11709]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.213206][T11709] RIP: 0033:0x7f7b8e585d29
[  341.218058][T11709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.239622][T11709] RSP: 002b:00007f7b8f3e4038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  341.248873][T11709] RAX: ffffffffffffffda RBX: 00007f7b8e776080 RCX: 00007f7b8e585d29
[  341.257640][T11709] RDX: 00000000400065bd RSI: 0000000000000001 RDI: 0000000000000002
[  341.266407][T11709] RBP: 00007f7b8f3e4090 R08: 0000000000000000 R09: ffffffffffffffff
[  341.275172][T11709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  341.283934][T11709] R13: 0000000000000000 R14: 00007f7b8e776080 R15: 00007ffcf27e6338
[  341.292714][T11709]  </TASK>
[  342.204691][T11721] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(3.4.0), cmd(14)
[  342.302740][T11722] =======================================================
[  342.302740][T11722] WARNING: The mand mount option has been deprecated and
[  342.302740][T11722]          and is ignored by this kernel. Remove the mand
[  342.302740][T11722]          option from the mount to silence this warning.
[  342.302740][T11722] =======================================================
[  344.797086][   T29] audit: type=1800 audit(8277292191.360:16): pid=11742 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1279" name="lu_gp_id" dev="configfs" ino=34887 res=0 errno=0
[  346.376816][T11693] ------------[ cut here ]------------
[  346.383236][T11693] WARNING: CPU: 1 PID: 11693 at mm/page_alloc.c:4729 __alloc_pages_noprof+0xeff/0x25b0
[  346.393944][T11693] Modules linked in:
[  346.398531][T11693] CPU: 1 UID: 0 PID: 11693 Comm: syz.1.1267 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  346.410750][T11693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  346.421889][T11693] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0
[  346.428801][T11693] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 74 80 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 df 9f 0c 00 8b 14 24 e9
[  346.450462][T11693] RSP: 0018:ffffc9000bb67918 EFLAGS: 00010246
[  346.457206][T11693] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  346.466076][T11693] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000040d40
[  346.475507][T11693] RBP: 0000000000000000 R08: 0000000000000006 R09: 00000000003fffff
[  346.484892][T11693] R10: 00000000003fffff R11: 0000000000000004 R12: 000000000000000b
[  346.493685][T11693] R13: 0000000000040d40 R14: 1ffff9200176cf37 R15: 00000000003fffff
[  346.502827][T11693] FS:  00007f5c533aa6c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  346.512978][T11693] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  346.520333][T11693] CR2: 000055558edd75c8 CR3: 000000007902a000 CR4: 00000000003526f0
[  346.529178][T11693] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  346.539559][T11693] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  346.548391][T11693] Call Trace:
[  346.552015][T11693]  <TASK>
[  346.555295][T11693]  ? __warn+0xea/0x3c0
[  346.559806][T11693]  ? __alloc_pages_noprof+0xeff/0x25b0
[  346.565894][T11693]  ? report_bug+0x3c0/0x580
[  346.570888][T11693]  ? handle_bug+0x54/0xa0
[  346.576150][T11693]  ? exc_invalid_op+0x17/0x50
[  346.581376][T11693]  ? asm_exc_invalid_op+0x1a/0x20
[  346.587498][T11693]  ? __alloc_pages_noprof+0xeff/0x25b0
[  346.593550][T11693]  ? hlock_class+0x4e/0x130
[  346.598609][T11693]  ? mark_lock+0xb5/0xc60
[  346.603651][T11693]  ? __pfx___schedule+0x10/0x10
[  346.609335][T11693]  ? __pfx_mark_lock+0x10/0x10
[  346.614659][T11693]  ? hlock_class+0x4e/0x130
[  346.619639][T11693]  ? __lock_acquire+0x15a9/0x3c40
[  346.625247][T11693]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  346.631592][T11693]  ? mark_held_locks+0x9f/0xe0
[  346.636961][T11693]  ? find_held_lock+0x2d/0x110
[  346.642247][T11693]  ___kmalloc_large_node+0x84/0x1b0
[  346.648061][T11693]  __kmalloc_large_node_noprof+0x1c/0x70
[  346.654322][T11693]  __kmalloc_noprof.cold+0xc/0x63
[  346.659883][T11693]  ? __might_fault+0xe3/0x190
[  346.665113][T11693]  ? tomoyo_write_control+0x267/0x13d0
[  346.671158][T11693]  tomoyo_write_control+0x267/0x13d0
[  346.677393][T11693]  ? rcu_is_watching+0x12/0xc0
[  346.682668][T11693]  ? __pfx_tomoyo_write_control+0x10/0x10
[  346.689540][T11693]  ? ksys_write+0x12b/0x250
[  346.694713][T11693]  ? __pfx_tomoyo_write+0x10/0x10
[  346.700273][T11693]  vfs_write+0x24c/0x1150
[  346.705359][T11693]  ? __fget_files+0x1fc/0x3a0
[  346.710543][T11693]  ? __pfx___mutex_lock+0x10/0x10
[  346.716426][T11693]  ? __pfx_vfs_write+0x10/0x10
[  346.721713][T11693]  ? __fget_files+0x206/0x3a0
[  346.726944][T11693]  ksys_write+0x12b/0x250
[  346.731734][T11693]  ? __pfx_ksys_write+0x10/0x10
[  346.737170][T11693]  do_syscall_64+0xcd/0x250
[  346.742170][T11693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.748771][T11693] RIP: 0033:0x7f5c52585d29
[  346.753650][T11693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  346.775327][T11693] RSP: 002b:00007f5c533aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  346.785070][T11693] RAX: ffffffffffffffda RBX: 00007f5c52776080 RCX: 00007f5c52585d29
[  346.793862][T11693] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  346.803166][T11693] RBP: 00007f5c52601b08 R08: 0000000000000000 R09: 0000000000000000
[  346.812496][T11693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  346.821585][T11693] R13: 0000000000000000 R14: 00007f5c52776080 R15: 00007ffef03ce508
[  346.830470][T11693]  </TASK>
[  346.833813][T11693] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  346.841830][T11693] CPU: 1 UID: 0 PID: 11693 Comm: syz.1.1267 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  346.853680][T11693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  346.864750][T11693] Call Trace:
[  346.868370][T11693]  <TASK>
[  346.871609][T11693]  dump_stack_lvl+0x3d/0x1f0
[  346.876691][T11693]  panic+0x71d/0x800
[  346.881003][T11693]  ? __pfx_panic+0x10/0x10
[  346.885892][T11693]  ? show_trace_log_lvl+0x29d/0x3d0
[  346.891645][T11693]  ? check_panic_on_warn+0x1f/0xb0
[  346.897301][T11693]  ? __alloc_pages_noprof+0xeff/0x25b0
[  346.903334][T11693]  check_panic_on_warn+0xab/0xb0
[  346.908795][T11693]  __warn+0xf6/0x3c0
[  346.913105][T11693]  ? __alloc_pages_noprof+0xeff/0x25b0
[  346.919151][T11693]  report_bug+0x3c0/0x580
[  346.923955][T11693]  handle_bug+0x54/0xa0
[  346.928555][T11693]  exc_invalid_op+0x17/0x50
[  346.933540][T11693]  asm_exc_invalid_op+0x1a/0x20
[  346.938895][T11693] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0
[  346.945573][T11693] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 74 80 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 df 9f 0c 00 8b 14 24 e9
[  346.967132][T11693] RSP: 0018:ffffc9000bb67918 EFLAGS: 00010246
[  346.973809][T11693] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  346.982570][T11693] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000040d40
[  346.991329][T11693] RBP: 0000000000000000 R08: 0000000000000006 R09: 00000000003fffff
[  347.000090][T11693] R10: 00000000003fffff R11: 0000000000000004 R12: 000000000000000b
[  347.008850][T11693] R13: 0000000000040d40 R14: 1ffff9200176cf37 R15: 00000000003fffff
[  347.017626][T11693]  ? hlock_class+0x4e/0x130
[  347.022577][T11693]  ? mark_lock+0xb5/0xc60
[  347.027342][T11693]  ? __pfx___schedule+0x10/0x10
[  347.032677][T11693]  ? __pfx_mark_lock+0x10/0x10
[  347.037920][T11693]  ? hlock_class+0x4e/0x130
[  347.042870][T11693]  ? __lock_acquire+0x15a9/0x3c40
[  347.048390][T11693]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  347.054696][T11693]  ? mark_held_locks+0x9f/0xe0
[  347.059944][T11693]  ? find_held_lock+0x2d/0x110
[  347.065189][T11693]  ___kmalloc_large_node+0x84/0x1b0
[  347.070903][T11693]  __kmalloc_large_node_noprof+0x1c/0x70
[  347.077095][T11693]  __kmalloc_noprof.cold+0xc/0x63
[  347.082622][T11693]  ? __might_fault+0xe3/0x190
[  347.087782][T11693]  ? tomoyo_write_control+0x267/0x13d0
[  347.093793][T11693]  tomoyo_write_control+0x267/0x13d0
[  347.099614][T11693]  ? rcu_is_watching+0x12/0xc0
[  347.104854][T11693]  ? __pfx_tomoyo_write_control+0x10/0x10
[  347.111145][T11693]  ? ksys_write+0x12b/0x250
[  347.116106][T11693]  ? __pfx_tomoyo_write+0x10/0x10
[  347.121630][T11693]  vfs_write+0x24c/0x1150
[  347.126389][T11693]  ? __fget_files+0x1fc/0x3a0
[  347.131531][T11693]  ? __pfx___mutex_lock+0x10/0x10
[  347.137060][T11693]  ? __pfx_vfs_write+0x10/0x10
[  347.142302][T11693]  ? __fget_files+0x206/0x3a0
[  347.147454][T11693]  ksys_write+0x12b/0x250
[  347.152213][T11693]  ? __pfx_ksys_write+0x10/0x10
[  347.157552][T11693]  do_syscall_64+0xcd/0x250
[  347.162509][T11693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.168988][T11693] RIP: 0033:0x7f5c52585d29
[  347.173834][T11693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  347.195400][T11693] RSP: 002b:00007f5c533aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  347.204661][T11693] RAX: ffffffffffffffda RBX: 00007f5c52776080 RCX: 00007f5c52585d29
[  347.213426][T11693] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  347.222189][T11693] RBP: 00007f5c52601b08 R08: 0000000000000000 R09: 0000000000000000
[  347.230953][T11693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  347.239713][T11693] R13: 0000000000000000 R14: 00007f5c52776080 R15: 00007ffef03ce508
[  347.248497][T11693]  </TASK>
[  347.252041][T11693] Kernel Offset: disabled
[  347.256826][T11693] Rebooting in 86400 seconds..