last executing test programs:

18m24.01471409s ago: executing program 0 (id=507):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x1)
madvise$auto(0x0, 0x20499d, 0x9)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
pidfd_open$auto(0x0, 0x0)
r1 = socket(0x2000000000000021, 0x2, 0x10000000000002)
socket(0x2a, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000080)=@qipcrtr={0x2a, 0x1, 0x1}, 0x6b)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x4cae, &(0x7f00000000c0)={[0x100000000, 0x0, 0x6, 0xde5c, 0x7, 0x3, 0x40, 0x9, 0x80, 0x32, 0x6, 0x5, 0x7, 0x1, 0x0, 0xff]}, &(0x7f0000000140)={[0x81, 0x3, 0x6, 0xc9d7, 0xb59, 0x3, 0x5b3bce6c, 0xbc3, 0x7ff, 0x8, 0x7ff, 0x8e, 0x1ff, 0x8, 0x9, 0x4000000080]}, &(0x7f00000001c0)={[0x81, 0x6, 0x8, 0x7, 0x8001, 0x6, 0x5, 0x462, 0x100, 0x0, 0x3, 0x40, 0x0, 0x7, 0x0, 0x1000]}, &(0x7f0000000240)={0x1, 0x8})
ioctl$auto_DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000080)={0x0, <r3=>r2, r0, 0x401})
ioctl$auto_IOCTL_VMCI_QUEUEPAIR_SETVA(r3, 0x7a4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
futex_waitv$auto(&(0x7f0000000000)={0x8, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd)
r4 = socket(0x10, 0x2, 0x0)
r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES16=r5], 0x1ac}}, 0x40000)
sendmsg$auto_NL802154_CMD_NEW_SEC_DEVKEY(r1, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="7e85733bfe8047ce747644d9b7435192c76cae069b50238a82fb93c9d6908eb26130185c106e7f5075f1edaf446f401dcba17b87b7f35655401d9596c3aa54315d12f11cbeb6848ca3ab63d23fe1d192dac3c2361e6c1029317d903355c5bc106eefdd24b237e6af9f25124b52a1d4", @ANYRES16=r5, @ANYBLOB="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"/298], 0x130}, 0x1, 0x0, 0x0, 0x20008000}, 0x4000000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r6 = io_uring_setup$auto(0x40005, &(0x7f0000000000)={0x6, 0x1, 0x400, 0x7, 0x1005, 0x6, 0x7, [0x4, 0x2e9, 0x8], {0x0, 0x1, 0x8, 0x7, 0x5, 0x100005, 0x1, 0xfffffffc, 0x7}, {0x4, 0xfff, 0xffff7fff, 0x2, 0x8, 0x200, 0x3, 0x0, 0x3}})
madvise$auto(0x108000, 0x800034, 0x9)
ioctl$auto_TCSBRKP(r6, 0x5425, 0x0)
bpf$auto(0xffffffff, 0x0, 0x3)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)

18m22.487729715s ago: executing program 0 (id=509):
r0 = open(&(0x7f0000000080)='./file0\x00', 0x800, 0x1ea)
fcntl$auto(r0, 0x400, 0x1)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, 0x0, 0x40090)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000000), 0x140, 0x0)
ioctl$auto_IOCTL_GET_NUM_DEVICES(r1, 0x40046104, &(0x7f0000000040)=0xffff07d4)
socketpair$auto(0x21, 0x5, 0x8000000000000000, 0x0)
r2 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000000214"], 0x14}}, 0x24000044)
close_range$auto(0x2, r2, 0xdc)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x0)
sysfs$auto(0x2, 0x4, 0x0)
fsopen$auto(0x0, 0x1)
fsmount$auto(0x4, 0x0, 0x200003)

18m22.081527406s ago: executing program 0 (id=513):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
r0 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
read$auto_dev_fops_plock(r0, &(0x7f00000000c0)=""/209, 0xd1) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) (async, rerun: 64)
sysfs$auto(0x2, 0x10000000000002a, 0x0) (async, rerun: 32)
sysfs$auto(0x49fa, 0x7fff, 0x8) (async, rerun: 32)
fsopen$auto(0x0, 0x1) (async, rerun: 64)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x70000, 0x0) (async, rerun: 64)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000140)=""/12, 0xc) (async, rerun: 32)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyr1\x00', 0x201, 0x0) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000002c4d696c4f2d0879492b887358a51bb13cc99653e02354d3fb1222f9b4d8e74b9ab35a438d4915bfa6f42010037f57aa581c55e0d4df5c2948"], 0x14}}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x2, 0x1, 0x106) (async, rerun: 64)
adjtimex$auto(0x0) (async, rerun: 64)
readv$auto(0x3, 0x0, 0x6) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0x3, 0x67) (async)
pidfd_open$auto(0x1, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x2001, 0x0)
mmap$auto(0x0, 0x8, 0xde, 0x9b72, 0x2, 0x8000) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
setresuid$auto(0x2, 0x7, 0x8080)

18m20.927530612s ago: executing program 0 (id=516):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0xa, 0x5, 0x0)
syz_genetlink_get_family_id$auto_tipcv2(0x0, r0)
r1 = openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/ns/cgroup\x00', 0x100, 0x0)
ioctl$auto_NS_GET_TGID_FROM_PIDNS(r1, 0x8004b707, 0x0)
syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), r0)
getrandom$auto(0x0, 0x6000000, 0x3)
madvise$auto(0x0, 0x3, 0x15)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000000), r0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
shutdown$auto(0x200000003, 0x2)
r2 = setfsuid$auto(0xee00)
ioprio_get$auto(0x8, r2)
ioprio_set$auto(0x5, r2, 0x5)
r3 = socket(0x2a, 0x2, 0xb)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
pipe$auto(0x0)
fcntl$auto(r3, 0x5, 0x6)
r4 = socket(0x2, 0x6, 0x0)
setsockopt$auto(r4, 0x0, 0x10, 0x0, 0x17)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
madvise$auto(0x3, 0xffffff7fffff0005, 0x0)

18m20.203882618s ago: executing program 0 (id=519):
sendmsg$auto_IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x408000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\b', @ANYRES16=0x0, @ANYBLOB="080026bd7000fcdbdf252500000008002c000010000005003700a5000000"], 0x24}, 0x1, 0x0, 0x0, 0x5}, 0x4040)
mount_setattr$auto(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000100)={0x40, 0x0, 0x6, @raw=0x5}, 0xf09)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
openat$auto_rfcomm_sock_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x660802, 0x0)
r0 = open(&(0x7f0000000800)='./file0\x00', 0x26240, 0xd4)
execveat$auto(r0, 0x0, 0x0, 0x0, 0x1000)
getcwd$auto(0x0, 0xffffffffffffffff)
renameat$auto(0x6, 0x0, 0x5, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity_list\x00', 0x129542, 0x0)
mprotect$auto(0x10001, 0x8000000000000001, 0x4)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x146)
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$auto(0x1, &(0x7f00000000c0)=@raw_tracepoint={0x80000000, r1, 0x0, 0x2}, 0x80)
syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), 0xffffffffffffffff)
sendmsg$auto_NET_SHAPER_CMD_GROUP(0xffffffffffffffff, 0x0, 0x14)
statmount$auto(0x0, &(0x7f0000000180)={0x7, 0x4, 0x9, 0x3, 0x30, 0x940, 0x1ffde, 0x1, 0x6, 0x2, 0x9, 0x5, 0x4, 0x3, 0xb0, 0x9, 0x2, 0x7fff, 0x5, 0x7fffffff, 0x1, 0x3, 0x2000002, 0x0, 0x2, 0x3ff, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x5, 0x0, 0x0, 0x7ff, 0xffffffff00000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x468, 0x0, 0x20000000000000]}, 0x1fe, 0x81)
r3 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x2, 0xffffffffffff0005, 0x1d)
tkill$auto(0x80000000000001, 0x7)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
getsockname$auto(r2, 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0xa240, 0x15e)

18m19.120132228s ago: executing program 0 (id=523):
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
mmap$auto(0x0, 0x9, 0x800000000df, 0x9b72, 0xea8a, 0x8000)
socket(0x23, 0x2, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x10000000000048, 0x0)
r0 = fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x311001, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
select$auto(0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0x4188aec6, r0)

18m18.778483672s ago: executing program 32 (id=523):
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
mmap$auto(0x0, 0x9, 0x800000000df, 0x9b72, 0xea8a, 0x8000)
socket(0x23, 0x2, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x10000000000048, 0x0)
r0 = fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x311001, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
select$auto(0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0x4188aec6, r0)

13m16.879516959s ago: executing program 2 (id=1673):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xb, 0x3, 0xfffffffb, 0x940, 0x1ffde, 0x3, 0x2000000000000006, 0x8, 0x4, 0x5, 0x2, 0x5, 0xb0, 0x5, 0x2, 0xffff7fcc, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, [0x0, 0x0, 0x8, 0x0, 0x8000000000000, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x3, 0x0, 0x3, 0x0, 0x4]}, 0x200, 0x81)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0xc0040, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'veth1_to_bridge\x00'})
r1 = openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/trap_flow_action_cookie\x00', 0x341482, 0x0)
read$auto_nsim_dev_trap_fa_cookie_fops_dev(r1, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG(r0, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x540a3080}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="000879870719df"], 0x18}, 0x1, 0x0, 0x0, 0x20000880}, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[], 0x58}, 0x1, 0x0, 0x0, 0x40080}, 0x40091)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030009000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a000100aaaaaaaaaabb00000a000500aaaaaaaaaa370000080004001000000008", @ANYRES32=0x0, @ANYBLOB="08001b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000380), r0)
r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = getpgid(0x0)
kcmp$auto(r5, r4, 0x1, 0xffffffffffffffff, 0xffffffffffffffff)
shmctl$auto(0x7, 0x80000000, &(0x7f0000000580)={{0x3, <r6=>0xee00, 0x0, 0x7, 0xd201, 0xc, 0x2}, 0x5, 0x8, 0x1, 0x236c, @raw=0x7, @raw=0x7, 0x2, 0x0, &(0x7f0000000480)="e04eec945daa8f80d256928dce4f9f8da9ec5c468ecc41aa61c7dbfe09669d6a1cc5e9c29ed7593f7f12e9e810c7f5092ee90b56f338d7bb26f0f742bf269702750818a943959163e9d42f326ead76b5acd586213202585c71225efd25a8ae6acbc88f6e093ba671", &(0x7f0000000500)="11a64161e40733d32761cd1cf6f2a8bb1685f996d31c56e6e616e356f9f6318387c37297b15c99fd3c12fc0674fd9dcb853d"})
r7 = gettid()
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001f40), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r8, &(0x7f0000002000)={0x0, 0x0, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x20, r9, 0x201, 0x70bd27, 0x25dfdbfe, {}, [@NL80211_ATTR_WDEV={0xc}]}, 0x20}, 0x1, 0x0, 0x0, 0x20040040}, 0x4008040)
rt_sigqueueinfo$auto(r7, 0x3, &(0x7f0000000900)={@siginfo_0_0={0xfffffeff, 0x6, 0x1, @_sigchld={0xffffffffffffffff, 0x0, 0x3, 0x7fff, 0xef}}})
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f00000007c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000780)={&(0x7f0000000600)=ANY=[@ANYBLOB="5c010000", @ANYRES16=r3, @ANYBLOB="00012bbd7000fddbdf251f00000005008900200000001e009400546c0cbebe868c2705df2e71b452a921553428a0a56eb26439fe0000040034010400cf0010015a8008009c00", @ANYRES32=r5, @ANYBLOB="08005400000000000800e200e000000108000100", @ANYRES32=0x0, @ANYBLOB="e1003c800400458068bc13fe16f3bce6834222dd21a7e452578394a897ec6fa1cefb2b17bd10e3a823b930b788551f499ac89eb804eb9c83cc3579ad1ba3d91cc9639a107b5d1f6c15d34ebc033636582f56b25f2109835c3a932f83fd4ffc86f324bb5d91216b9414cefc1855335bf5d90a29a9d9afaf28a29ed7396ed753045d6de90a7caba5a4dd2c212a2484bc7cced5a35d7bdcc2e407691a6709ddec293aec6836b96481e366f42858ff1f9b83ceec2384f013d964e6cc32c9b703d53e84e7150df2a5cece1472e7b5dd7888938743609e360b321a0808004f00", @ANYRES32=r6, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=r7, @ANYBLOB="0800a00001040000"], 0x15c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8805)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4880}, 0x4004)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000540)='/proc/sys/kernel/kexec_load_limit_panic\x00', 0x40141, 0x0)
ioctl$auto_VHOST_SET_FEATURES2(0xffffffffffffffff, 0x4008af00, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x40090}, 0x8000)
socket(0x10, 0x2, 0x0)

13m16.282018529s ago: executing program 2 (id=1674):
statmount$auto(0x0, 0x0, 0x1fe, 0xd)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
pwrite64$auto(0xc8, 0x0, 0xfdef, 0x3)
ioctl$auto(0x3, 0x227d, 0x3b)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
socket(0x2, 0x1, 0x106)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x10000, 0x0)
socket(0x2, 0x3, 0xfffffff1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6b, 0x0, 0x7d, 0xfffffffffffffffd, 0xd4, 0x4, 0x4, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0x0, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0)
mmap$auto(0x2000, 0x9, 0x2, 0x8000000008011, 0x4, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb9, 0xfffffffffffffffa, 0x8000)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000001140), 0xa0100, 0x0)
setresgid$auto(0x0, 0x0, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0xfffffffffffffff7, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x800000002, 0xfffffffffffffffd]}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

13m15.047639863s ago: executing program 2 (id=1678):
r0 = socket(0x10, 0x2, 0x0)
r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000004d40), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_ADD_RXSC(r0, &(0x7f0000001ec0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x190, r1, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@MACSEC_ATTR_OFFLOAD={0x17a, 0x9, 0x0, 0x1, [@nested={0x18, 0x83, 0x0, 0x1, [@typed={0x8, 0xbf, 0x0, 0x0, @fd=r0}, @typed={0x8, 0xd6, 0x0, 0x0, @fd=r0}, @nested={0x4, 0x87}]}, @generic="021be6f0237479854dc64c1c1824c3d34e5aabd2c7760f5a5a387a1b68f191230e74e8d3f4e6b7bc9d6fa4344d482af0e736eaf2aa690a7e4234cbc9d856c1491ca9c64d1020a5c4c39162aea0d03537df37b0e5c7b8ffb48502b89eec9448ad8af1e4ee8d7eeb645643209a42a3c15f2cade4d4d540", @nested={0x4, 0x46}, @nested={0xd3, 0x43, 0x0, 0x1, [@nested={0x4, 0x6d}, @typed={0x8, 0x61, 0x0, 0x0, @ipv4=@loopback}, @generic="eb27a089141a83bb755b36f0234458", @typed={0xb3, 0xd3, 0x0, 0x0, @binary="c50d5064c7e546fee18e21e663767ab91f595e58d499c48ee6702d3e4b79428a8e1ef74aaffa5f54df089329e07b3924ff853646dfbf165878572d6da9fe879059a129777883834c216744ce0b060a76d650c9e718dc28a35a1a0e4a6cc1291b4a57077c913573bb951686155e91c23a0b3689bc8644a33ddb4065414b297d105b61d40e1b2ae2bb641dd14af5ef1aa4aeb8254e327cdf4e1a5cc760402c7bc902ee3818bdef65cc3ba4e9003e7d39"}]}, @typed={0x8, 0x6d, 0x0, 0x0, @ipv4=@broadcast}, @nested={0x8, 0x89, 0x0, 0x1, [@nested={0x4, 0x40}]}]}]}, 0x190}, 0x1, 0x0, 0x0, 0x10}, 0x4004000)

13m14.632113587s ago: executing program 2 (id=1679):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop6/queue/nr_requests\x00', 0x1a3a42, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0x5c8)

13m14.333406565s ago: executing program 2 (id=1683):
r0 = openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000b80)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x2, 0x0)
write$auto(r0, 0x0, 0x0)
r1 = socket(0x2, 0x801, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000003940)={0x0, 0x0, &(0x7f0000003900)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010f28bd7000fedbdf25070000000c00028007000200402b0000"], 0x20}, 0x1, 0x0, 0x0, 0x40800}, 0x840)
sendmsg$auto_SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010025bd7000f9dbdf25020000000b0001"], 0x20}, 0x1, 0x0, 0x0, 0x4008014}, 0x10)
socket(0x2, 0x6, 0x201)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
splice$auto(0x4, 0x0, r2, 0x0, 0x1000, 0xf)
fcntl$auto(r2, 0x408, 0xffffffff80000000)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_seg6(0x0, 0xffffffffffffffff)
mkdir$auto(&(0x7f0000004440)='./file0\x00', 0x11)
mkdir$auto(&(0x7f0000000080)='./file1\x00', 0x9)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x688c0, 0x27)
openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0)
ioctl$auto(0xffffffffffffffff, 0x4, r1)
rename$auto(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./file1\x00')
r3 = openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/mounts\x00', 0x80, 0x0)
pread64$auto(r3, &(0x7f0000000100)='\x80\x00\x06\x00\x00', 0x3c00, 0x6)
writev$auto(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000140), 0x9}, 0x1)
r4 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0)
ioctl$auto_LOOP_CTL_REMOVE(r4, 0x4c81, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
write$auto_random_fops_random(r2, &(0x7f00000000c0), 0x0)
openat$auto_minstrel_ht_stat_fops_rc80211_minstrel_ht_debugfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy18/netdev:wlan1/stations/08:02:11:00:00:00/rc_stats\x00', 0x10200, 0x0)

13m13.396108637s ago: executing program 2 (id=1688):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0x3, 0x8000000000000001, 0x0, 0x0, 0x2486) (async)
r0 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0x101500, 0x0)
readv$auto(r0, &(0x7f00000005c0)={0x0, 0x8010000200}, 0x6) (async)
mmap$auto(0x0, 0x2020009, 0xfffffffffffffff3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) (async)
mmap$auto(0xb, 0x8, 0xdf, 0x9b72, r0, 0x3) (async)
r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x183800, 0x0)
ioctl$auto(r1, 0x4008556c, 0x81) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
mq_open$auto(&(0x7f00000001c0)='.\xf16\x9a\xb3lf\xf7\x1c\xdec\x8d\x1a\xfe\x10\xf6\xa7\xea\xd8\xa3\x14}\xb4\n!\xda6\xe5\xf1\xbc\xeb', 0x56a, 0xedbf, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x1e, 0x1, 0x80000400) (async)
memfd_secret$auto(0x0) (async)
socket(0x2b, 0x1, 0x1) (async)
set_tid_address$auto(&(0x7f0000000000)=0x2) (async)
socket$nl_generic(0x10, 0x3, 0x10)
fanotify_init$auto(0xc00, 0x2000000000002) (async)
openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000040), 0x2200, 0x0) (async)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6b, 0x0, 0x7d, 0xfffffffffffffffd, 0xd4, 0x4, 0x4, 0x0, 0x1, 0x368e, 0x2, {0x10100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0x0, 0x804}) (async)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x200, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x0, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
write$auto_seq_oss_f_ops_seq_oss(r2, &(0x7f0000000100)="5707cd08542422ed6ecc2c113070de72b92719378b32b290158331ed606998789ba7cb8fe2548b8ec197acffda8e35ce3f27b7d64761801ecbdbffb7499e9ac2938e5af899c491d231fff43db8e2df1307072cd11d990e85f238e815732ab7a5c493b7607c02b92843d8e89a59dbb949fe1223fa0f4dda44f53300b447d676710c76381b5b2011888ec7909ed4fc4821cb11d66911af7db78f02e2f1ff368b16161e77052abd44a07a378caabb6154bcf5f2313fb75b67a76c29b53feeb51d", 0xbf) (async)
r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x64842, 0x0)
ioctl$auto(r3, 0x400c620e, 0x9) (async)
r4 = socket(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000100), r4)

12m58.300432297s ago: executing program 33 (id=1688):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0x3, 0x8000000000000001, 0x0, 0x0, 0x2486) (async)
r0 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0x101500, 0x0)
readv$auto(r0, &(0x7f00000005c0)={0x0, 0x8010000200}, 0x6) (async)
mmap$auto(0x0, 0x2020009, 0xfffffffffffffff3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) (async)
mmap$auto(0xb, 0x8, 0xdf, 0x9b72, r0, 0x3) (async)
r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x183800, 0x0)
ioctl$auto(r1, 0x4008556c, 0x81) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
mq_open$auto(&(0x7f00000001c0)='.\xf16\x9a\xb3lf\xf7\x1c\xdec\x8d\x1a\xfe\x10\xf6\xa7\xea\xd8\xa3\x14}\xb4\n!\xda6\xe5\xf1\xbc\xeb', 0x56a, 0xedbf, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x1e, 0x1, 0x80000400) (async)
memfd_secret$auto(0x0) (async)
socket(0x2b, 0x1, 0x1) (async)
set_tid_address$auto(&(0x7f0000000000)=0x2) (async)
socket$nl_generic(0x10, 0x3, 0x10)
fanotify_init$auto(0xc00, 0x2000000000002) (async)
openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000040), 0x2200, 0x0) (async)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6b, 0x0, 0x7d, 0xfffffffffffffffd, 0xd4, 0x4, 0x4, 0x0, 0x1, 0x368e, 0x2, {0x10100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0x0, 0x804}) (async)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x200, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x0, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
write$auto_seq_oss_f_ops_seq_oss(r2, &(0x7f0000000100)="5707cd08542422ed6ecc2c113070de72b92719378b32b290158331ed606998789ba7cb8fe2548b8ec197acffda8e35ce3f27b7d64761801ecbdbffb7499e9ac2938e5af899c491d231fff43db8e2df1307072cd11d990e85f238e815732ab7a5c493b7607c02b92843d8e89a59dbb949fe1223fa0f4dda44f53300b447d676710c76381b5b2011888ec7909ed4fc4821cb11d66911af7db78f02e2f1ff368b16161e77052abd44a07a378caabb6154bcf5f2313fb75b67a76c29b53feeb51d", 0xbf) (async)
r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x64842, 0x0)
ioctl$auto(r3, 0x400c620e, 0x9) (async)
r4 = socket(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000100), r4)

6m45.297842472s ago: executing program 3 (id=3132):
msgget$auto(0x0, 0x800e)
r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
pread64$auto(0xffffffffffffffff, 0x0, 0x1ff, 0x8800000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
mmap$auto(0x4, 0x6, 0x5, 0x12, r1, 0xa)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa102, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f00000005c0)="235055aeaba2139e1c58db32f97a7975bbfc6d3ed11b8d8ba5d8", 0x1a)
socketpair$auto(0xfff, 0x5, 0x10, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
pipe2$auto(0x0, 0x80)
splice$auto(0x3, 0x0, 0x3, 0x0, 0x8, 0x2)
ioprio_set$auto(0x3, 0x0, 0x4b34)
socket(0x15, 0x5, 0x0)
madvise$auto(0x1ffff000, 0x9, 0x100000000)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
writev$auto(r3, &(0x7f00000000c0)={&(0x7f0000000040)="3e5e8ae7bc684c51a97ff2e3a72a87bc11462a602b12ad52d51a7459cdf867f5611b3e4c771b8b93bbdb2fdc247619dfdadefb20f1ce584772415c226848565be7334e2b77982a783480d8", 0x2}, 0x7)
pselect6$auto(0xffffffff, 0x0, &(0x7f0000000180)={[0x182, 0x9bbb, 0x0, 0x3, 0x58, 0xb5, 0x6, 0x400, 0x3, 0x4, 0x7ff, 0xa5, 0xffffffffffffffc9, 0x7dde, 0xed1b, 0x8c5]}, 0x0, 0x0, 0x0)
rt_sigtimedwait$auto(0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x8)
flock$auto(0x6, 0x1)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2)
fsmount$auto(0xffffffffffffffff, 0x1, 0xf9)
shmget$auto(0xa, 0x10563, 0x568d1af2)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv6/conf/hsr0/mtu\x00', 0x8a043, 0x0)
sendfile$auto(r4, r4, 0x0, 0x48)
read$auto_proc_pid_maps_operations_internal(r0, &(0x7f00000010c0)=""/4096, 0x1000)

6m44.487757439s ago: executing program 3 (id=3135):
socket(0x2, 0x801, 0x100)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, 0x0, 0x0)
recvmmsg$auto(r0, &(0x7f0000000180)={{0x0, 0x4, 0x0, 0x5, 0x0, 0x0, 0xb}, 0x800}, 0x10a, 0x8, 0x0)
sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0xfebf0c436aa031f1)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="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"], 0x530}, 0x1, 0x0, 0x0, 0x4000000}, 0x90)
mmap$auto(0x3, 0x401, 0x7, 0x16, 0x2, 0x5)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vkms/graphics/fb0/state\x00', 0xc2481, 0x0)
write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
openat$auto_tracing_readme_fops_trace(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/tracing/README\x00', 0x20400, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r4 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/apparmor/current\x00', 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000bc0), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r8=>0x0})
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_LOCAL(r5, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=ANY=[@ANYBLOB="2889002ef9d8eb966722ad17ec9dfba79c196c2e4c9f65f0ae290a3098a91af36a194199eee3001f648e73f8d73568cf6cc374e5f3c39cc5afe605e1eb0839f0734a3a90ed07234abbe8907a", @ANYRES16=r6, @ANYBLOB="050323bd7000fbdbdf250600000008000300", @ANYRES32=r8, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x8008}, 0x4000040)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r2, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x3c, r6, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@BATADV_ATTR_ACTIVE={0x4}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_TPMETER_BYTES={0xc, 0xc, 0x2}, @BATADV_ATTR_TPMETER_RESULT={0x5, 0xa, 0xb6}, @BATADV_ATTR_LAST_SEEN_MSECS={0x8, 0x17, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x90}, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
writev$auto(r4, &(0x7f00000001c0)={0x0, 0x5}, 0xf)
io_uring_setup$auto(0x8e3e, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptys1\x00', 0x20400, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)

6m43.35417102s ago: executing program 3 (id=3138):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x2, 0x2, 0x88)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f663dd78fde85ac1b9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="17000000", @ANYBLOB='U'], 0x1ac}, 0x1, 0x0, 0x0, 0x663e94553c5db1d5}, 0x40000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(r0, 0x1, 0x3e, 0x0, 0x6)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x3, 0x1c)
sysinfo$auto(0x0)
mmap$auto(0x4000, 0x2020009, 0x3, 0x18, 0xfffffffffffffffa, 0x9001)
r2 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x800009}, 0x5, 0x20000000)
clone$auto(0x10051c, 0x6, 0x0, 0xffffffffffffffff, 0x80000001)
setsockopt$auto(0x3, 0x0, 0x8, 0x0, 0x7)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r3 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x40, 0x0)
readv$auto(r3, &(0x7f0000001c00)={&(0x7f0000001b80), 0x9873}, 0x6)
read$auto(0x3, 0x0, 0x40080)
r4 = socket(0x2b, 0x1, 0x1)
setsockopt$auto(r4, 0x29, 0x6, 0x0, 0x50)
r5 = socket(0x2, 0x6, 0x0)
getsockopt$auto(r5, 0x10d, 0x1, 0x0, 0x0)

6m42.407768711s ago: executing program 3 (id=3143):
r0 = socket(0xa, 0x2, 0x0)
unshare$auto(0x40000080)
r1 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
mmap$auto(0x0, 0x2020409, 0xa, 0xeb1, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x6, 0x0)
move_pages$auto(0x0, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xcc, 0x0, 0x3)
ioctl$auto_DMA_HEAP_IOCTL_ALLOC(r2, 0xc0145401, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0xe0000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x10, 0x2, 0x0)
r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="55372cbd7000fbdbdf259e420000"], 0x14}, 0x1, 0x0, 0x0, 0x4000080}, 0x44000)
sendmsg$auto_NL802154_CMD_NEW_SEC_LEVEL(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x24, r5, 0x8, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x4}, @NL802154_ATTR_SCAN_CHANNELS={0x8, 0x21, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x4008040)
r6 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer2\x00', 0xa2051, 0x0)
r7 = openat$auto_clk_summary_fops_(0xffffffffffffff9c, &(0x7f0000000440)='/sys/kernel/debug/clk/clk_summary\x00', 0x80, 0x0)
pread64$auto(r7, 0x0, 0x201, 0x569)
write$auto_seq_oss_f_ops_seq_oss(r6, &(0x7f0000000840)="fda203ba", 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x9, 0x40000000000eb1, 0x0, 0x8000)
pread64$auto(r0, 0x0, 0x8f, 0x3ff)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
close_range$auto(0x2, 0x8, 0x0)

6m40.777734364s ago: executing program 3 (id=3151):
mmap$auto(0x0, 0x4, 0xdf, 0x10, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.6/usb7/ltm_capable\x00', 0xc0000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mkdir$auto(&(0x7f0000000080)='./file0\x00', 0xfffe)
mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9)
rename$auto(&(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000040)='./file0/file0\x00')
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0xf, 0x9, 0x63, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x400000000010, 0x8, 0x40000402, 0x7ffffffb, 0x9, 0xffffffff80000000, 0x9, 0x7, 0x200000100103})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
ioperm$auto(0x7, 0x71, 0x863)
iopl$auto(0x3)
ioperm$auto(0x5, 0x3432, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x1a9382, 0x0)
write$auto(r3, 0x0, 0x5)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/vivid/parameters/vid_cap_nr\x00', 0x48040, 0x0)
msgrcv$auto(0x0, 0x0, 0x1000, 0x8000000000000000, 0xb5)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x12, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x8)
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
tkill$auto(0x80000000000001, 0x7)
ioctl$sock_SIOCGIFINDEX(r2, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000040), r4)
sendmsg$auto_NETDEV_CMD_QSTATS_GET(r4, &(0x7f0000000000)={0x0, 0x50, &(0x7f0000000140)={&(0x7f00000001c0)={0x20, r5, 0x301, 0x70bd29, 0x25dfdbfe, {}, [@NETDEV_A_QSTATS_SCOPE={0xc, 0x4, 0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'veth1_virt_wifi\x00', <r6=>0x0})
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x14980202}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x2c, r5, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x401}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x1c}, @NETDEV_A_QUEUE_IFINDEX={0x8, 0x2, r6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040011}, 0x85)
readv$auto(r0, &(0x7f0000000180)={0x0, 0xffff}, 0x4)

6m37.414225419s ago: executing program 3 (id=3160):
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0) (async, rerun: 32)
lsm_list_modules$auto(0x0, 0x0, 0x0) (async, rerun: 32)
fcntl$auto(0x3, 0xf, 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
socket(0x23, 0x2, 0x0) (async, rerun: 64)
pipe2$auto(0x0, 0x80)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async, rerun: 32)
socket(0x2b, 0x1, 0x5) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x28, 0x5, 0x0) (async, rerun: 64)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
socket(0x2b, 0x1, 0x1) (async)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0) (async, rerun: 32)
io_uring_setup$auto(0x6, 0x0) (rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, 0x0, 0x200, 0x0) (async)
socket(0x2, 0x1, 0x0)
getsockopt$auto(r1, 0x0, 0x43, 0x0, &(0x7f0000000100)=0x1e)
pipe2$auto(0x0, 0x80) (async)
pipe2$auto(0x0, 0x80) (async)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x8, 0x5, 0x8)
mkdir$auto(&(0x7f0000000000)='}[,&*}\x00', 0x8001) (async)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) (async)
rename$auto(&(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='./file0\x00') (async)
ioctl$auto_CEC_S_MODE(0xffffffffffffffff, 0x40046109, 0x0) (async)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)

6m36.874657896s ago: executing program 34 (id=3160):
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0) (async, rerun: 32)
lsm_list_modules$auto(0x0, 0x0, 0x0) (async, rerun: 32)
fcntl$auto(0x3, 0xf, 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
socket(0x23, 0x2, 0x0) (async, rerun: 64)
pipe2$auto(0x0, 0x80)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async, rerun: 32)
socket(0x2b, 0x1, 0x5) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x28, 0x5, 0x0) (async, rerun: 64)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
socket(0x2b, 0x1, 0x1) (async)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0) (async, rerun: 32)
io_uring_setup$auto(0x6, 0x0) (rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, 0x0, 0x200, 0x0) (async)
socket(0x2, 0x1, 0x0)
getsockopt$auto(r1, 0x0, 0x43, 0x0, &(0x7f0000000100)=0x1e)
pipe2$auto(0x0, 0x80) (async)
pipe2$auto(0x0, 0x80) (async)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x8, 0x5, 0x8)
mkdir$auto(&(0x7f0000000000)='}[,&*}\x00', 0x8001) (async)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) (async)
rename$auto(&(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='./file0\x00') (async)
ioctl$auto_CEC_S_MODE(0xffffffffffffffff, 0x40046109, 0x0) (async)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)

3m19.944209368s ago: executing program 6 (id=3857):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
r0 = socket(0x29, 0x5, 0x0)
r1 = syz_clone(0x40100100, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x8, 0x1, r1, 0x1, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.2/usb3/bNumConfigurations\x00', 0x101000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000040)=""/72, 0x48)
sendmsg$auto_NL80211_CMD_SET_MULTICAST_TO_UNICAST(0xffffffffffffffff, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_STATION(r0, 0x0, 0x40)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0)
pwrite64$auto(r3, 0x0, 0x1, 0x2)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f00000000c0), 0x4b2a01, 0x0)
ioctl$auto_SW_SYNC_GET_DEADLINE(r4, 0xc0105702, &(0x7f0000000140)={0x6de, 0x0, r0})
fcntl$auto(0x3, 0x4, 0xa553)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x15, 0x5, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/loop9/queue/rotational\x00', 0x0, 0x0)
r5 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x161802, 0x0)
ioctl$auto(r5, 0xc00c620f, 0x9)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
io_uring_setup$auto(0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)

3m17.957219788s ago: executing program 6 (id=3861):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x807, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x8, 0x9, 0x80003, 0x4, 0x200000000001, 0x384, 0x9, 0x8, 0x10006, 0x400007f, 0x0, 0x0, 0xe, 0x22000, 0x200, 0x0, 0x84, [0x3, 0x2, 0xffffffffffffffff, 0x2, 0x0, 0x402000, 0x0, 0xe, 0x1, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x8, 0x0, 0x6, 0x0, 0x8, 0x20000, 0x8, 0x10000000000, 0xfbffffffffffffff, 0x400000000004, 0x2f, 0x0, 0x0, 0x1006, 0x400000000005b5, 0xffff, 0x0, 0x100, 0x0, 0x6, 0x2, 0x88e, 0x40, 0xfffffffffffffffc, 0x8, 0xa38, 0x4, 0x4000003, 0xfffffffffffffffc, 0x2, 0x8, 0x10000000007, 0xc567]}, 0x1fa, 0xd)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x2802, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0x2, &(0x7f0000000380)="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")
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd05, &(0x7f00000001c0))
socket(0x11, 0x80003, 0x300)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100)
pipe2$auto(0x0, 0x74ae)
r1 = bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x2, 0x4, 0x3, 0x2, 0x8, 0xc, 0xe3, 0x400000000a, 0x3}, 0x6f4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00')
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8})
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000040), r1)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x30, 0x80000006, 0x4)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x408, 0x7, 0x1ff, 0x7, 0x42, 0x4909b6f8, 0x1ffdf, 0x7, 0x200003, 0x2, 0xa121, 0x3, 0x6, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x1080, 0x100000000, 0x0, 0x7, 0x2100, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x6, 0x2000, 0x0, 0x6, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x0, 0x0, 0x5, 0xfffffffffffffffe, 0xffffffffffffbfff, 0xfffffffffffffffd, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0xfffffffffffffffe, 0x2000000000000000, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x0, 0x6, 0x0, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffffffffa, 0x8, 0x4000000000, 0x7]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)

3m14.887174484s ago: executing program 6 (id=3871):
unshare$auto(0x40000080) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0) (async)
bind$auto(0xffffffffffffffff, 0x0, 0x6a) (async)
socket(0xa, 0x2, 0x0) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000002c80)='/proc/thread-self/net/rpc/nfsd.fh/channel\x00', 0x80, 0x0)
socket(0x2, 0x3, 0xfffffff1)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r0, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="0100b2070000ffdbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8800) (async)
madvise$auto(0xfffffffffffffeb7, 0x1, 0x7) (async)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6b, 0x0, 0x7d, 0xfffffffffffffffd, 0xd4, 0x4, 0x4, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0x0, 0x804}) (async)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
socket(0x2, 0x1, 0x0) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0)

3m13.799132303s ago: executing program 6 (id=3877):
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0)
socket(0x28, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYBLOB="2f212abd7800fddbdf2521000000"], 0x14}}, 0x4000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x100001, 0x948b, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
madvise$auto(0x108000, 0x800034, 0xa)
unshare$auto(0x23d)
r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x14, r2, 0x1, 0x70bd2d, 0x25dfdbf9}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x5)
r3 = open$auto(&(0x7f0000000200)='./file0\x00', 0x49193, 0xff90)
ioctl$auto_PPPIOCGFLAGS(r3, 0x8004745a, 0x0)
ioctl$auto_COMEDI_LOCK(0xffffffffffffffff, 0x6405, 0x0)
write$auto_tomoyo_operations_securityfs_if(0xffffffffffffffff, 0x0, 0x0)
setsockopt$auto(0x3, 0x0, 0x30, 0x0, 0x90)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x9)
readv$auto(0x3, &(0x7f0000000140)={0x0, 0x9}, 0x100000007)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r4, &(0x7f0000000c80)="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", 0x294)
pidfd_open$auto(0x1, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/mouse0\x00', 0x2000, 0x0)

3m12.577874563s ago: executing program 6 (id=3887):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
r0 = socket(0x29, 0x5, 0x0)
syz_clone(0x40100100, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_MULTICAST_TO_UNICAST(0xffffffffffffffff, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_STATION(r0, 0x0, 0x40)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0)
pwrite64$auto(r1, 0x0, 0x1, 0x2)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/class/devcoredump/disabled\x00', 0xe3102, 0x0)
sendfile$auto(r2, r2, 0x0, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2181, 0x0)
ioctl$auto_VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000100)=0x3d2)
fcntl$auto(0x3, 0x4, 0xa553)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
tkill$auto(0x1, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x15, 0x5, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/loop9/queue/rotational\x00', 0x0, 0x0)
r4 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x161802, 0x0)
ioctl$auto(r4, 0xc00c620f, 0x9)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
io_uring_setup$auto(0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)

3m10.221235966s ago: executing program 6 (id=3898):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0xfd)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kallsyms\x00', 0x101000, 0x0)
pread64$auto(r1, 0x0, 0x100000000008, 0x8)
ioctl$auto(0x3, 0xc0105512, 0x1)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x240680, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x4601, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$auto_RTC_PARAM_GET(r2, 0x40187013, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_thermal(&(0x7f00000000c0), r3)
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_ADD(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f0000000400)={0x13c, r4, 0x20, 0x70bd2a, 0x25dfdbfd, {}, [@THERMAL_GENL_ATTR_CDEV_ID={0x8, 0x10, 0x200}, @THERMAL_GENL_ATTR_TZ={0xc6, 0x1, 0x0, 0x1, [@generic="50e4505927b5253b9b2de7da8a42e3c19450ec22cd673dfe486249c2799d11809c6543f59752446f39312160e812712772b351059e901170e93ef818f05843cccd2fa81ffca8b7ed07217c75bcd979e981871e5bafb3a3222581fb78bd4e8aff1322a2826fac8abe060d409b9bafc864eb8f1b5ced03ee014b4e4e42eeaf7903969109fd69a9f276be8f9ddc22c85f13cef01a605f0dd0937ded540c236673a0af32231d91cf41413c8df3a088e9aa6f539dc179881023f7c044df361e06c0a3b1f3"]}, @THERMAL_GENL_ATTR_TZ_TEMP={0x8, 0x3, 0x9}, @THERMAL_GENL_ATTR_THRESHOLD_TEMP={0x8, 0x1a, 0x18000000}, @THERMAL_GENL_ATTR_CDEV_ID={0x8, 0x10, 0x4}, @THERMAL_GENL_ATTR_CPU_CAPABILITY={0x4}, @THERMAL_GENL_ATTR_THRESHOLD_DIRECTION={0x8, 0x1b, 0x800}, @THERMAL_GENL_ATTR_TZ_TRIP_HYST={0x8, 0x9, 0xf22}, @THERMAL_GENL_ATTR_CPU_CAPABILITY={0x2c, 0x15, 0x0, 0x1, [@nested={0x26, 0x1b, 0x0, 0x1, [@generic="c7b29534d20d16cdf2323e68fdf5897354f7f5cab7ca78929f817a77313db8dbfe9c"]}]}]}, 0x13c}, 0x1, 0x0, 0x0, 0x24000005}, 0xc1)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r3)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r3, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f00000003c0)={0x34, r5, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}]}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x2404c804}, 0x0)

3m9.925685782s ago: executing program 35 (id=3898):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0xfd)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kallsyms\x00', 0x101000, 0x0)
pread64$auto(r1, 0x0, 0x100000000008, 0x8)
ioctl$auto(0x3, 0xc0105512, 0x1)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x240680, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x4601, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$auto_RTC_PARAM_GET(r2, 0x40187013, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_thermal(&(0x7f00000000c0), r3)
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_ADD(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f0000000400)={0x13c, r4, 0x20, 0x70bd2a, 0x25dfdbfd, {}, [@THERMAL_GENL_ATTR_CDEV_ID={0x8, 0x10, 0x200}, @THERMAL_GENL_ATTR_TZ={0xc6, 0x1, 0x0, 0x1, [@generic="50e4505927b5253b9b2de7da8a42e3c19450ec22cd673dfe486249c2799d11809c6543f59752446f39312160e812712772b351059e901170e93ef818f05843cccd2fa81ffca8b7ed07217c75bcd979e981871e5bafb3a3222581fb78bd4e8aff1322a2826fac8abe060d409b9bafc864eb8f1b5ced03ee014b4e4e42eeaf7903969109fd69a9f276be8f9ddc22c85f13cef01a605f0dd0937ded540c236673a0af32231d91cf41413c8df3a088e9aa6f539dc179881023f7c044df361e06c0a3b1f3"]}, @THERMAL_GENL_ATTR_TZ_TEMP={0x8, 0x3, 0x9}, @THERMAL_GENL_ATTR_THRESHOLD_TEMP={0x8, 0x1a, 0x18000000}, @THERMAL_GENL_ATTR_CDEV_ID={0x8, 0x10, 0x4}, @THERMAL_GENL_ATTR_CPU_CAPABILITY={0x4}, @THERMAL_GENL_ATTR_THRESHOLD_DIRECTION={0x8, 0x1b, 0x800}, @THERMAL_GENL_ATTR_TZ_TRIP_HYST={0x8, 0x9, 0xf22}, @THERMAL_GENL_ATTR_CPU_CAPABILITY={0x2c, 0x15, 0x0, 0x1, [@nested={0x26, 0x1b, 0x0, 0x1, [@generic="c7b29534d20d16cdf2323e68fdf5897354f7f5cab7ca78929f817a77313db8dbfe9c"]}]}]}, 0x13c}, 0x1, 0x0, 0x0, 0x24000005}, 0xc1)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r3)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r3, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f00000003c0)={0x34, r5, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}]}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x2404c804}, 0x0)

16.655309273s ago: executing program 5 (id=4565):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
msgsnd$auto(0x5, 0x0, 0x3, 0x8)
r0 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0x2082, 0x0)
write$auto_drm_edid_fops_drm_debugfs(r0, &(0x7f00000003c0)="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", 0x100)
close_range$auto(0x0, 0xfffffffffffff000, 0x10006)
socket(0xa, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_clone(0x40040000, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages$auto(r2, 0x1002, 0x0, 0x0, 0x0, 0x2)
pidfd_open$auto(r2, 0xa)
socket(0x10, 0x3, 0x6)
eventfd$auto(0x5)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x15, &(0x7f0000000040)=@bpf_attr_1={0xffffffffffffffff, 0x7, @value, 0x9}, 0x80)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vivid.0/video4linux/radio30/power/control\x00', 0x200240, 0x0)
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20440, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
mount$auto(&(0x7f0000000000)='pimreg\x00', &(0x7f0000000040)='\x00', 0x0, 0x10dfd057, 0x0)
mount$auto(0x0, &(0x7f0000000040)='802_15_4_MAC\x00', 0x0, 0xaa9, &(0x7f0000000080))
r3 = open(&(0x7f00000020c0)='./cgroup\x00', 0x30b001, 0x410)
getdents$auto(r3, 0x0, 0x400018)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x3, 0xffffffff)
bind$auto(0x7, &(0x7f0000000000)=@in={0x1d, 0x4e21}, 0x3e)
bind$auto(r1, &(0x7f0000000000)=@in={0x1d, 0x4e21, @rand_addr=0x64010102}, 0x3e)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlock$auto(0xfbe8, 0x4)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/mm/hugepages/hugepages-2048kB/nr_hugepages_mempolicy\x00', 0xa001, 0x0)
write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)

14.823130529s ago: executing program 5 (id=4572):
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x7ff, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
fstatfs$auto(0x0, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xd0, 0x0, 0x4)
r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000080)='/dev/usbmon37\x00', 0x48402, 0x0)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x28, r0, 0x1, 0x70bd25, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x10, 0x1, 0x0, 0x1, [@nested={0xc, 0x10, 0x0, 0x1, [@typed={0x8, 0xb, 0x0, 0x0, @fd=r1}]}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)

14.406322524s ago: executing program 5 (id=4575):
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0)
sendfile$auto(r0, r0, 0x0, 0x3)
r1 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs1\x00', 0x2, 0x0)
r2 = socket(0x2, 0x80002, 0x73)
bind$auto(r2, &(0x7f0000000000)=@in={0x2, 0xfffd, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x6b)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r1, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
mbind$auto(0xffffffffffffffff, 0x2, 0x2, 0x0, 0x7, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x4002, 0x5, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/bonding/ad_partner_mac\x00', 0x181800, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r4 = socket(0x23, 0x80805, 0x0)
io_uring_setup$auto(0x0, &(0x7f0000000100)={0x3b7, 0x1b4, 0x1, 0x6, 0x9, 0x6, r1, [0xb, 0x1, 0xb], {0x2, 0x4, 0x2, 0xb, 0x6, 0x0, 0x0, 0x4, 0x18ed}, {0x80, 0x6, 0x0, 0x6, 0x0, 0xeed, 0xffff8000, 0x1fd80fa5, 0xffffffffffffffd7}})
poll$auto(&(0x7f0000000040)={<r5=>r4, 0x7, 0x8}, 0x80, 0x400400)
setsockopt$auto(r5, 0x113, 0xffffffff, 0x0, 0x81)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D0p\x00', 0x40000, 0x0)
pread64$auto(r3, 0x0, 0xedd, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x2, 0xa, 0xa)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x80900, 0x0)
setresuid$auto(0x2, 0x7, 0x8080)
ioctl$auto(r6, 0x5607, 0xffffffffffffffff)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x41c040, 0x88, 0x11}, 0x18)

13.878537429s ago: executing program 5 (id=4577):
socket(0x1a, 0x1, 0x8)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/btrfs/features/supported_sectorsizes\x00', 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x3, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
futex$auto(&(0x7f0000000080)=0x1, 0xb, 0x1, 0x0, 0x0, 0xfffffffa)
futex$auto(&(0x7f0000000000)=0x2, 0xa, 0x0, 0x0, 0x0, 0x440a48d2)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfffffdef)
fcntl$auto(0x3, 0x4, 0xa553)
mmap$auto(0x0, 0xc04, 0xfffffffffffffffe, 0x9b72, 0x2, 0xc7f6)
bind$auto(0x3, 0x0, 0x6b)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x121041, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x8140, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
ioperm$auto(0x7, 0x6, 0x2)
madvise$auto(0x0, 0x200007, 0x8)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
bpf$auto(0x0, &(0x7f0000000100)=@query={@target_ifindex, 0x100, 0xb20, 0xc, 0xffffffffffffffff, @prog_cnt=0x1, 0x0, 0xffffffffeae75901, 0x7fffffffffffffff, 0xffffffffffff7fff, 0x1}, 0xa5)
mlockall$auto(0x7)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
timer_create$auto(0x9, 0x0, 0x0)

12.109011577s ago: executing program 5 (id=4583):
mmap$auto(0x0, 0x5, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x29, 0x2, 0x0)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
r0 = socket(0xa, 0x3, 0xff)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
sendto$auto(r0, 0x0, 0x10f, 0xffc, &(0x7f0000000180)=@l2={0x1f, 0x5, @none, 0x1}, 0x19)

11.978601234s ago: executing program 5 (id=4584):
mmap$auto(0xfffffffffffffffe, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/profile\x00', 0xa02, 0x0)
read$auto_tomoyo_operations_securityfs_if(r0, 0x0, 0x0)
read$auto(r0, &(0x7f0000001080)='\xefI5\x1d\xc4~\xd0>\xd2;\xbcj\xce\x18+\x9blE\x18\xa1>V\n\xa4\x90cgy\x98O\xf4\x7f\xe0\xbf\xbb\x9f\xfc\xfb\x870l0\xcf\xb4\rx\xcb\bpg<ez\x87\xe6\xd9\x8dq5 \xf4J\xe8\xd6I\xaf\x04\xb8\xf1\x8a\xa8(\x1e\xc8\x8a\x05\x9b0\xa4\x06\xf9\x8f\xde\x16!\x9b\xd2\xb1\x81\x97\\\x8a,@\x02.p\xf6\xbe\xeaG1C\xd1~\xee\v\x19\x1c\xdd\n\xdc\x83\xb5\xb1\x8b\xc5U\xee\x92\x9e8.\x05R\x90\xab\x8c\x18.*YnZ\xb1\xe2\xec\xe6\xf2\x8d\x03A~\xa8_uk$\xce\xbe?\xd5\x11\r\xadQ\xdb\xc3w\x04r\x84\x92\x1b\xb4\x81*}\xc6\x1ev+\xb7\xb3X\x034\xcf\xce\x06Y\xef\x1a,\xc9\x88\x1d\xcd\x9b\xba\xf7\xca\x99\xe8\t\xbf_\xf2{\x9f\xb8\xe9\xf9\x05\xc8\xd1\x8e\"\xaa\xc0\x9d$\xfaE/\xf75\xfb\xe6\xbb\xe7\xdc', 0x20000074c)
getrandom$auto(0x0, 0x1f, 0x2)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
write$auto(0xffffffffffffffff, 0x0, 0xca)
write$auto(0x3, 0x0, 0xfffffdef)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0x20499d, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
madvise$auto(0x108000, 0x800034, 0x200000b)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000003c0)=""/4096, 0x1000)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x204180, 0x0)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
ioctl$auto_SNDCTL_DSP_RESET(r1, 0x5000, 0x0)
madvise$auto(0x5, 0x2, 0x0)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f00000016c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
madvise$auto(0x9, 0xffffffffffff0000, 0x15)
mbind$auto(0x9, 0x100000005, 0x4, 0x0, 0x20000000000006, 0x2)

8.513306586s ago: executing program 1 (id=4596):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
futex$auto(&(0x7f0000000180)=0xd, 0x400, 0x1, &(0x7f00000001c0)={0x46, 0x5a}, &(0x7f0000000200)=0x400, 0x6) (async)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000080), 0xffffffffffffffff)
openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/oom_score_adj\x00', 0x0, 0x0) (async)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) (async)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) (async)
r2 = openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/ubifs/tst_recovery\x00', 0x101000, 0x0)
read$auto_dfs_global_fops_debug(r2, 0x0, 0x0)
socket(0x10, 0x2, 0x0) (async)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) (async)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a00000808000300000000000800010000000000080002"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty49\x00', 0x800, 0x0)
ioctl$auto(r3, 0x4b48, 0x9) (async)
msgctl$auto(0x7, 0x0, &(0x7f0000000380)={{0x4, 0xffffffffffffffff, 0xee00, 0x0, 0x10000, 0x7fffffff, 0x8}, &(0x7f0000000040)=0x4, &(0x7f00000000c0)=0x3, 0x10001, 0x6, 0x8, 0xb, 0x6, 0x4, 0x1e00, 0x8, @raw=0xfffff001})
sendmsg$auto_L2TP_CMD_NOOP(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000600)={0x284, r1, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x3}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e23}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x7ff}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x2}, @L2TP_ATTR_SEND_SEQ={0x5, 0x13, 0x4}, @L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_STATS={0x22e, 0x1e, 0x0, 0x1, [@typed={0xc, 0x11f, 0x0, 0x0, @u64=0xbcfb}, @generic="a1c094adc27aee7763ae1f7ef2c22810aebefc6dcd7c10a2a1f632dad9d4f525a105394cbe12bf1572d527bcfdc782399f85477d09c0b34908789ad5d180afe3d5627f11e8526f2b68c5d891325386642cf25d35428db8ba66b6d0eb0f75ce2f84822ada770cbc07297519ad5e64e34a284be5851b927f33868476497a6cb4999995215d79367062e1220d34ece63bf624d1a46ecc89e5d287819b3503cb6ad806d08f653453a0b6322aaedf6ed4dfb97f260617a3a06f68a4a38cb034", @typed={0xa5, 0x127, 0x0, 0x0, @binary="f212aabcd3f2ff5e0b40fea31c6bf4757a951b3ad9162fbe4b04815b462ecf5c80bb87b24bdc99c74810447807780b44db7db74a01008d591053d1c6d0eae2269fc4e8ecf96c9c069d2a8887bb32b658d8677b04b5e6e2d86078e05d70a9a9b2d0319dd49f65ae7aefa63eeb51842f2ff0d954e6b0041f0dd8e23c41e828cd4f30ac2c42c7f1588a66c6d1db1ccf3b9aee538e9ab391bdedb72548cc74d15c724c"}, @generic="f7", @generic="7e368dab543d1fb6e5788b769416fa82eb3bcee6c0f0abe411ca9b1eb771d0225734ac73d3f48229db0989e961fdf2271bb92b9f77095989faebca005ebc53c87e95e598c9ca7621b699f1e1fe144201dbb16eca279925e3552d75b70e646d4ab41f7caf8f7b0a463e3efe311f1675794ced62bf325b7209cc322e3686c380f300854f92f70c01974b76850b64d68cc1866dd9abb8d1371dadafb476cb0c23b793f4d03b35dcae71ed18b0358f791e63077963b26a6f8d3b"]}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x101}, @L2TP_ATTR_DEBUG={0x8, 0x11, 0x2}]}, 0x284}, 0x1, 0x0, 0x0, 0x8010}, 0x40010)

8.200583135s ago: executing program 1 (id=4598):
r0 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1)
sendmsg$auto_NL80211_CMD_ABORT_SCAN(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r2, 0x4, 0x70bd2c, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x40008c0}, 0x24008000)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000004200)={&(0x7f00000041c0)={0x18, r0, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@HWSIM_ATTR_REG_STRICT_REG={0x4}]}, 0x18}}, 0x4048000)

7.668871907s ago: executing program 1 (id=4601):
socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x11, 0x80003, 0x0)
setsockopt$auto(r0, 0x107, 0x12, 0x0, 0x4)
io_setup$auto(0x10000, &(0x7f0000000040))
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x2, 0x8, 0x9, 0x12, r0, 0x8001)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80805, 0x0)
socket(0x2, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
setsockopt$auto(0x3, 0x10000000084, 0x82, 0x0, 0x8)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
ioctl$auto(0x3, 0x541b, 0x38)

5.638001283s ago: executing program 1 (id=4606):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x807, 0x5, 0x7182, 0x1ffde, 0x7, 0x3, 0x8, 0xd, 0x80003, 0x4, 0x200000000001, 0x384, 0x9, 0x8, 0x10006, 0x3, 0x0, 0x0, 0xe, 0x22000, 0x200, 0x0, 0x84, [0x3, 0x2, 0xffffffffffffffff, 0x2, 0x0, 0x402000, 0x0, 0xe, 0x1, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x8, 0x0, 0x6, 0x5, 0x8, 0x20000, 0x8, 0x10000000000, 0xfbffffffffffffff, 0x400000000004, 0x2f, 0x0, 0x0, 0x1006, 0x400000000005b5, 0xffff, 0x0, 0x100, 0x0, 0x6, 0x2, 0x88e, 0x40, 0xfffffffffffffffc, 0x8, 0xa38, 0x4, 0x4000003, 0xfffffffffffffffc, 0x2, 0x8, 0x10000000007, 0xc567]}, 0xfffffffffffffff7, 0xd)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x2802, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0x2, &(0x7f0000000380)="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")
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd05, &(0x7f00000001c0))
socket(0x11, 0x80003, 0x300)
pipe2$auto(0x0, 0x74ae)
r1 = bpf$auto(0x4, &(0x7f00000001c0)=@task_fd_query={0x0, 0x4, 0x3, 0xc53a, 0x8, 0x1ff, 0xe3, 0x400000000a, 0x3}, 0x6f4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00')
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0xc})
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000040), r1)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x30, 0x80000006, 0x4)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x408, 0x7, 0x1ff, 0x7, 0x42, 0x4909b6f8, 0x1ffdf, 0x7, 0x200003, 0x2, 0xa121, 0x3, 0x6, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x1084, 0x100000000, 0x0, 0x7, 0x2100, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x6, 0x2000, 0x0, 0x6, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0xb0, 0x0, 0x5, 0xfffffffffffffffe, 0xffffffffffffbfff, 0xfffffffffffffffd, 0x1, 0x0, 0xc, 0x4, 0xfffffffffffffffe, 0x2000000000000000, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x0, 0x6, 0x0, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0x2, 0x0, 0x3, 0xfffffffffffffffa, 0x8, 0x4000000000, 0x7]}, 0x9, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)

4.1546965s ago: executing program 1 (id=4608):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xc18, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x23, 0x2, 0x0)
sendto$auto(0x4, 0x0, 0x8000, 0x0, &(0x7f0000000100), 0x80)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000003200)={&(0x7f0000000000)=ANY=[@ANYBLOB="410006", @ANYRES16, @ANYBLOB="5da9"], 0x28}, 0x1, 0x0, 0x0, 0xc0}, 0x40)
io_uring_setup$auto(0x59, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="1c00"], 0x1ac}, 0x1, 0x0, 0x0, 0x4044000}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', &(0x7f0000000140)='nfsd\x00', 0xfffc, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/mem/full/uevent\x00', 0x40000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)=""/58, 0x3a)
r2 = socket(0x2a, 0x1, 0xfffffffc)
ioctl$sock_SIOCGIFINDEX(r2, 0x40047452, 0x0)

3.768947091s ago: executing program 7 (id=4610):
mmap$auto(0x0, 0x20009, 0x20000000000000e2, 0xeb1, 0x405, 0x8000)
process_vm_readv$auto(0x0, 0x0, 0x5, &(0x7f0000000280)={0x0, 0x6}, 0x206, 0xfffffffffffffffc)
modify_ldt$auto(0x0, &(0x7f00000003c0)="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", 0x2)
fcntl$auto(0xffffffffffffffff, 0x430f8c12, 0x0)
unshare$auto(0x40000080)
mprotect$auto(0x1ffff000, 0x7fff, 0x0)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
setsockopt$auto(0x3, 0x0, 0x24, 0x0, 0x28)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mprotect$auto(0xde, 0x10000, 0x3)
socket(0x23, 0x80805, 0x0)
socket(0x25, 0x800, 0x3)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00)
unshare$auto(0x40000080)
r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/pagemap\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x39b8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
read$auto(0x3, 0x0, 0x1f40)
write$auto(0x3, 0x0, 0xfdef)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x80282, 0x0)
ioctl$auto_v4l2_fops_v4l2_dev(r1, 0x80085617, 0x0)
sysfs$auto(0x2, 0x10000000000048, 0x0)
r2 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_RTC_SET_TIME(r2, 0x4024700a, 0x0)
fsopen$auto(0x0, 0x9)
close_range$auto(0x2, 0x8, 0x0)
msgctl$auto(0x7, 0x0, &(0x7f00000000c0)={{0x5, 0x0, 0xffffffffffffffff, 0x10, 0x8001, 0x8, 0x40}, &(0x7f0000000040)=0x3, &(0x7f0000000080)=0x2d, 0x4, 0xe, 0xffffffffffff48c3, 0x9, 0x2, 0x6, 0x6, 0x400, @raw=0x8, @inferred=0xffffffffffffffff})

3.669162701s ago: executing program 4 (id=4611):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r2=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYRES16=r1, @ANYRES64=r2], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4000000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000)
munlock$auto(0x9, 0x29b9)
r4 = socket(0xa, 0x801, 0x106)
connect$auto(0x3, &(0x7f0000000140), 0x55)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001f00), r3)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000600), r5)
stat$auto(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x9, 0xc8c, 0x3, 0xb24, 0x0, 0x0, 0x0, 0x1, 0x9, 0x5, 0x5939fb18, 0x7, 0x5, 0x7, 0x4, 0x10, 0x8000000000000001})
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r0, &(0x7f0000000400)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000003c0)={&(0x7f0000003980)={0x1668, r1, 0x400, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_HE_OBSS_PD={0x10f0, 0x117, 0x0, 0x1, [@NL80211_HE_OBSS_PD_ATTR_NON_SRG_MAX_OFFSET={0x5, 0x3, 0x4}, @NL80211_HE_OBSS_PD_ATTR_BSS_COLOR_BITMAP={0x1004, 0x4, "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"}, @NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0x4}, @NL80211_HE_OBSS_PD_ATTR_NON_SRG_MAX_OFFSET={0x5, 0x3, 0x5}, @NL80211_HE_OBSS_PD_ATTR_SR_CTRL={0x5, 0x6, 0x4}, @NL80211_HE_OBSS_PD_ATTR_PARTIAL_BSSID_BITMAP={0xb6, 0x5, "73195cc50a930c357b70c863c8c022d76cb1abb4f5670590f66600e70e5c1fb8174b1654aabaa9a9bd32e9a3bdd0da2b2cc9d5f43164299b2df8209a5429b58060c7056431cd3e9dfe9bdaa8434ecdc3ea75031a8cf0d0960d46a96a8b422e6c504820540f5261ec19331bdf52b93899032b6301e1eb7d96632adb7c1b6b0f41f79259a1e8ef819de9665731e8378d29f716a1bfc4edb8dcfddb114f43400f06d40b0eea473488d7c55d8a15b1ca718d4c84"}, @NL80211_HE_OBSS_PD_ATTR_NON_SRG_MAX_OFFSET={0x5, 0x3, 0xff}, @NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0xd1}]}, @NL80211_ATTR_MLD_ADDR={0xb7, 0x13a, "be515c479b62fdfb35f58fabf62c14d8c30a5bc0e705e16b8ef60fcbf33178c65096a940bd676ba4eb184d2f25aed286d24cf8e39453e3d1562de311c27a63494231d667636f32a5c989ff4631dba434aef94e4f045ccb4990d2089c8c7e0f4218d52a867f1c7d2aa99f332de11efaa2b4bed3d11a726a2dc95cb100c553cdcf88954a18a2f621cc562ea7eb84b50d018dfead3cb30b5896256a6cccbacfa9a68304604ee1272eab67ec18cec2355eacc20b5b"}, @NL80211_ATTR_RECEIVE_MULTICAST={0x4}, @NL80211_ATTR_REG_RULES={0x49c, 0x22, 0x0, 0x1, [@typed={0x8, 0x9b, 0x0, 0x0, @fd=r0}, @nested={0x270, 0xcf, 0x0, 0x1, [@generic="7a04ac8c3bc5963d2a80fb8157175de1cf9947403601b90d3d192ca9dda3c9d291c03d8e23921bddd085087ff68c3a49a0e6154147d9eb1cc0c1c329433dc8e035237cd9c1852068ab1603cb18d7d520cdf1e013a2f94f8488057cf476bab807fe6b47023f389bb3512c6e30e8376a85927c7c224812c7bc8b803938cd8f142c4fc9c478725d668709f3d90aa850ba2e01f1c034d330baf9a1c9f6b32ac06a797eb95c77e306e1b67ebca80663fd5ca5076f73a0c115", @generic="0067d6c692c573a5da1632a08ddbcd2fd2c6615b2e8bbc3aecc5b9c20909852e3209f83f8b7d51b04ae142c8d3a396c3958b3cdd1d806ecf23c8d05c01ccb7e3033ff8c3606bb988b9e66f1cb0cb9b4c893559af5e889fa0d9b11b50c2df0a1dac54dc1912b52c8915b525803c4b548b46e6695c3d76c57a5006541c5c9e022cff58", @nested={0x133, 0xd9, 0x0, 0x1, [@generic="93de233c1b3f9f71913f909b1ef0a5a1a3120aa25e8452ccc4261bc2e8bcdc701afd8a56d61e2d35052c8dd79f6a67698c832ce58f87cd158bae6351319966ec87e530b5a209bfcded6a6a5bc5c185d47abd250188fb9bf46d4f84c8f9b1a8665bf3a5ddedb178a4d5da01a7ce8f764ff7b38ea451ef1f63348e2d39d0374f5a7471c7d3a70acb1af6191e5b53571fd907134e", @generic="86326708498495b4d7547ab936d1e845ccfc75ddd5d1ccad6f6efe514bd685fc7268248abe2c59272108c0ef5baa205bdf75a3ad03a446f407cf321c9dc2bc0fa500b218d4220a2c280c66b0d11f326e261ac0c34cd077eb4ba99325ee3084d590fc5cb047bb54579d079def982daa9215d7f47e24b970401523b2cb989f35b4cd56ec95eb1cd6e387e3cc24", @nested={0x4, 0x22}, @nested={0x4, 0xbb}, @nested={0x4, 0x114}, @nested={0x4, 0xfb}]}]}, @typed={0x8, 0xca, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x8}}, @typed={0x8, 0x4, 0x0, 0x0, @ipv4=@remote}, @nested={0x109, 0xdf, 0x0, 0x1, [@generic, @nested={0x4, 0xc8}, @nested={0x4, 0x78}, @typed={0x8, 0x99, 0x0, 0x0, @fd=r5}, @generic="257d0030f2b78bd8ecc895d98a42fb206d7ecc509445f8c00c7ec90509af11ea5b78c6e72b4da0de24d7719294b9f7670e5b22bfad42f415424401be960c78", @typed={0x8, 0xc3, 0x0, 0x0, @uid}, @generic="ae081ef01656acaa5f48e961e48dfbb4e9196ceb6b8e2756f0359f85bc9d55e8e5ed86df857d584ae082b5eb0d180ce5e9bd6c96f60026058659931c3b914e3ed95f15d77a65e013ea3d70aa685ee6103ac29f4a5e36f7ffbd7509ba24020085b5c66820d452fd5dce026fef9036a8a37acf717b302fcc67d9a215df30ab8835366bf7c75e460f780f9849e27a0a2ec357ead585da2e46bd7c42c50ed302a4eb5cadb6000f5065d1d3b1ec32deb5"]}, @nested={0xf4, 0xe3, 0x0, 0x1, [@generic="74cfa3507fbb97c17ab1aee88c73fd847552a11830cb593cb50fbcc80f4510e6093e0c9ed82310865ef322f5edffbb03dac072a9e7e15387ec84d84b411dd79844fe3a3c6f8151f91cd17e05ffc086a4db9678615f598373e44e6fc396977ec052fa2f081215e16a87092708bafeb0736589db464c9f40fb3b43f1137edf0631bfaac4f7decc7b956d7980bbec4069a23ccd44d12c372cebf760059dc58b35e4368950a9fd9331d73531cfdd6028204c1d150ba05e546b4214d9614754a41bf194b2dad1173a853400779085d5c893d1d5a7dfa8f811cc339ec45722337fb284985bf967d60670db9d38bab189fa0f1c"]}, @typed={0xc, 0x70, 0x0, 0x0, @u64=0x3}, @nested={0x4, 0x145}]}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x7fff}]}, 0x1668}, 0x1, 0x0, 0x0, 0x1}, 0x4040000)
r6 = socket(0x10, 0x2, 0x9)
setsockopt$auto(r6, 0x104000000000010e, 0x1, 0x0, 0x16)
sendmsg$auto_NET_DM_CMD_CONFIG(r6, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0xe903, 0x8000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, 0x0, 0x100, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
sendmsg$auto_NL80211_CMD_SET_PMK(r4, &(0x7f00000004c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000480)={&(0x7f0000003480)={0x4e0, r1, 0x4, 0x70bd2a, 0x25dfdbfb, {}, [@NL80211_ATTR_WIPHY_NAME={0x5, 0x2, '\x00'}, @NL80211_ATTR_ASSOC_SPP_AMSDU={0x4}, @NL80211_ATTR_MLD_ADDR={0x79, 0x13a, "340202927fe3d1c38df55c163261bc27d77e7046680e3aac3a86d124a11059e210af06f57f7376ac478901c8cd9cde9995d31d98b2353d67da5badc46caefd10a2875459566376caa3ebc9306fdb1f4e36c05841f9044d6687cbaeac5db500fe104fd82df25260cd531e6b4e387f4ba9a42cda4667"}, @NL80211_ATTR_REG_RULES={0x326, 0x22, 0x0, 0x1, [@generic="fa264bafcf3202f7da4e40495f85f16ee4f60c2a1001add5abd11dd8ed71638e4a5afcbc9d07eead64ab20975a473c7f4c43bd44e476e006226153ae830f291c1e3ebe1a9a987ea105b3b36e50efdc13bc7d8f42391b8729b5cab49dfe8f", @generic="b8fde080dcbbf2a6424693572f84d21e731188c84c35bc45b57228051a40867c6a6b2bc827b4d176d4a962552d226d13902cfe10494f31c0df0d077f09dbf639937cd29c754e13e3a4a826ba42be640ab296af5480332cac5e6e0d4c26c6", @typed={0x14, 0xfe, 0x0, 0x0, @ipv6=@private2}, @nested={0x122, 0xfb, 0x0, 0x1, [@nested={0x4, 0x25}, @typed={0x4, 0x3e}, @generic="ab419fcdeb04e3059d94b04dd8180f7168d2a07c6e17f8d9a006c127c3206c070bdfd0da14763b95fa8ed5cb6ecac3296e6bf6b804257369f3c8fa096c3fbaf29cb14d7dfb2c18adb5c6d823f81205276cd3374dc2e2b1436691637c7c7d3f87738cf51d8956fd7ee85c6ca3d391ba63d10ca28aab4cb2b44f72aaa4978ceea442637e431b10b66e3802145a59e47cb941", @typed={0x8, 0xb2, 0x0, 0x0, @u32=0x8}, @nested={0x4, 0x40}, @generic="90faae1bd81c1d0ccb973ea57dd2abccda8d9afd028085b74275b986f4c5b73b25706c331934c4a212844d3d399700189c2cb3022f1c2840a8977f853480001c657f91b2a4317157fa7fb52b72d4af3cf294cfd39786ace57744b56ccc8893730e3bac8499b7223546e58a40f26a1f2c3e4e7a7eb9", @nested={0x4, 0xed}]}, @nested={0xf3, 0x97, 0x0, 0x1, [@typed={0x6, 0x28, 0x0, 0x0, @str='*\x00'}, @typed={0x14, 0x3c, 0x0, 0x0, @ipv6=@empty}, @generic="b2625790a322b7b52d55e2116c451022a6d5c598c14d8479aff7ade4ab63", @generic="eb45a73e4b800d11ddcb574ebad9f37e153a103ddd03f1b2c9373704528c950ee23e4af12af5ae0356230e69fd9f3265ef11e95ead6fc3861a73e081d3e098ba9ecfa8451bde3f06499b7e08cd3db35fd3fba7bf45178d390be64f2ed2011aa29f8860aadcb75b9db9a8c1627a58155c34c95e5a77a117e41c82aa5e8c5ab93af5ef064dd107a93976ca7801515a2ab77a4d258f6b57672830f1cfdab82157e4de2029d0d4b4771edac029a434", @typed={0x8, 0xcc, 0x0, 0x0, @pid}]}, @generic="8e035599213f2f70daa33bd059d18365986cf63ff05085f511ade7b9af2aedde46a9de44c6114c6f958f5addaec8f6dcea3299086d036da618e6"]}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_MNTR_FLAGS={0xd9, 0x17, "8f76eee12b006b719e4ca14f8baa417e8a0bd2895b8ca8d3ff8e81d1339a8e3ec8756435a5fce816cbea2a9433c27c79be8f4c60d370632c6458b497aa552a898c0a2fcc0bd9239348196db6f7c9afebd73955b6946c756b71e7d7696eb0d2a1b037e44f9f60a42f207a9f2590fb5d3f23def7eff61753f9e2492156d12e5e461b061d10231e85c1c55698d5e016adbc3452c4014d75742da0c5372d9eed2c87ba6b99633bd969fe06e6d5c0fa3dc8c411d4e6d5ce4ee7dd196cca1ed7630d667819085d068676d682769b9b798622f47b08c1c20c"}, @NL80211_ATTR_HE_CAPABILITY={0x39, 0x10d, "7eef30f23fe6a1cc8ee1decbb353d453290040a38dd6860654b631f934903c1b0f5d42cf8a16c43c3b674aebaca214c26b33d3f10a"}]}, 0x4e0}, 0x1, 0x0, 0x0, 0x80}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_NEW_INTERFACE(r7, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000540)=ANY=[@ANYBLOB="400000003a4d31c3237f590efe51e127c7981efff1204207bd22cbbca3a7daaa40f365fa0fd3c74eb3a78c499f1b167218ffb73ab3b4a09338a43d6ae264c2c5eb71026e89bfe6019a850fd4f6eef74b3dbe2f84d7543402cdae0a28e32d293ebe90ccc0d3af526582f061c3b9b81affe68051c7831f0817711f008e81c92ca493fc7e", @ANYRES16=r8, @ANYBLOB="010027bd7000fbdbdf25070000002c000e007b34e50000cf292537d6b4603867dc3cf2272e8f46002279ee256be397bdb168d3d4d338b136e92b"], 0x40}, 0x1, 0x0, 0x0, 0x804}, 0x2)
geteuid()
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000000c0), 0xffffffffffffffff)
r11 = geteuid()
sendmsg$auto_MACSEC_CMD_UPD_RXSC(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="01022abd50b4fedbce25030000000c0010", @ANYRES32=r11, @ANYBLOB="08000100", @ANYRES16=r3, @ANYBLOB], 0x28}}, 0x48010)
clone3$auto(&(0x7f0000000040)={0x46b, 0x3, 0x3, 0x8000000000000000, 0x7, 0xce, 0x22c, 0x6, 0x3, 0x800, 0xe}, 0x100000000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/thread-self/net/netstat\x00', 0x828c2, 0x0)
sendmsg$auto_NL80211_CMD_START_P2P_DEVICE(r6, &(0x7f0000000740)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000001f40)=ANY=[@ANYBLOB="54120000e2ee8090c1f11a5fd0bbc25e30976bf3002def60709953a86980a2402203e7072a2aa02321be8d8859a4f5b10b5081e2fe0be6f5abffa0361ff769bfde96cdb0bda7e2fbec584dd446b43359c87d58c56fd0f543b0e9fba9af467a2f394cb4d38f26ecbafa513a8359177093fd5eed6e109e8ac0563271b220521b7ec43644d3d0d4fe05e2fe1deb9b623a9fde8de51335ad3b98baca5fbeeb78ca0ba58f984a8fe26d29b02b0da256ffcc7f791817562454eba02f91f10afecf60ae6493d6200cb0703b00f24f933c6cf6c647066c98c391007879eaa50c2a0fbeb21393db3635ca75f41a939071f1ad7917ccbe3957d0887039", @ANYRES16=r8, @ANYBLOB="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"], 0x1254}, 0x1, 0x0, 0x0, 0x40040}, 0x20000890)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)

3.652507988s ago: executing program 1 (id=4612):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(r1, 0x8, r0)
close_range$auto(0x2, 0x8, 0x0)
r2 = open(0x0, 0x22240, 0x155) (async)
r3 = socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async)
mmap$auto(0x0, 0x8, 0x1, 0x9b74, r0, 0x8000) (async)
prctl$auto(0xf, 0x1, 0x0, 0x3, 0x4)
ioctl$auto_RNDADDTOENTCNT(r0, 0x40045201, &(0x7f0000000040)=0x7) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/packets_per_slave\x00', 0x182b02, 0x0)
pwrite64$auto(r4, &(0x7f00000005c0)='\vX\xb5n\x91p\xe6\x15\x00p\x01\x99\x88c\x14\r>\x14\x1a\xd3\xd3\x1d\xf8?\xdb\xdb\xc1\xf5\xe3o\x8e\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1Q;_L\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2\x10\x00\x00\x00\x00\x00/TX:\xfe\xe8\xe0\x96\xb1x\xc5\x1f\xd2\xd11^\xfdo\x00\x8b>T\xd5\x1e\xe3\xeb\x89q\a\xd6h\xc9\xbc\x8f\x1dBk\x95\x174\xdc\x03\x05> -\xb6\x9d[\xe42(\xe4\n\x98u\xc9\xa1\xc4Zb\x04\xc2\xf1\x01\x00\x00\x80\xde\xfd\xb8u\xb4\xde\xb3\xa1T/\xdfx\x14Y\xfe\x1e\x1f\x91\x19\xf2\\\xed\x1al\xb3\xa8#\xa0\xb9P\x8d\x04C\x87\xebR\x93\x12\x18H&N\x8b\'i)\xab@\xaf\xcb\xda\x00\x067\xce\xd6V4\xc2\xc7|\xbe\x80\x129.\xeeX\xb4\xe9\f\xee\xe8\xd8\x91\x1b\xcd\x00j\x14H\xcc-\x14\xde\xaaN\x87\x8d\x9b\xa05\xacHX\xc1\xce\x91\xee\xad\r\xbe\xb2&f@\x00\x00\x00\x00\x00\x00\x00\xfc\xa13\xfe\xe0JG\xe1v\x82s}v~`X%pJ\xbf\xc3`\xa9\x8f\"l\xc7XX\xa4\xb6\x0e\xbe\xa0wy\xfe\x03n\xb5\r\xf149*(\x15\xaa\xc2\x8aB\xf1\xbb$M\xfe%\xc7\x84\xf0\xa4}bd\xac\xa8T\xda\xffm\x86\xca\x80\xde3\xa7\xba\xc7Y]\xd7\xa2\xec)\xd6\xad\xbcI\x10\xa3#\xd4/J\xa8\x14\x1b<\x04\xbd\x89\xefQf\xc0Q\x92\x92\xa7\x99\x83\xbf\xc7e\xe7\xc2\xd6\x10\x0fk\xee)\x92\bO\xa1\x1a\x9e\xef:5\x1e\x1c\"9\xd8\xdf\xa9C\xe2SHG6\xf2\xd5.\x12]\x17J\x8b\xc52\xe9\x9e\xbc\xdc\xae\xef\xed\xf9\xa6\x9e-\x92pZ\x12j/\x1dD{\xac\x17\\O\xee\x11\x10$\x12\xfc \xb0\xc7cA;\xa1,\x040\xa7\xd9\xb2\x19@1\x92\x10\xc4\xc0\x1f\x1d\xe1\xf6\x80lW\v,\xa2\x134no\xa0\x00l\xd8\xe4\xd3\x16\xd3%\x8b\xf5\x1e\x12{\xe6\xdb\xde\a\xdedH\x90\xf7\x19\xff\xcb\xacC\xeadOf\xb8\x15\xc39\xefLt\t\x11\xa1\x0e\x85\xac\xcc+\xc0\xb4.\xaa3>\xc0\x96\x84\xd5\x02\xc1\x94=\xb0\xfe\xda\x1d\xe9\xa7\xe1\xcf\x80|k\xdd\x95\xc9\xb0y\xb4\xbd\xc2W\x9c\xa4\x80\x13\xbc\x7fb=y\xdb]U\xd1HC\xe1\xa7\x94q\xb0C\xb8\x86\xd0\x9d\xe0\x8aD\x91x\'\xd6\x17\xd1\x9d\x16\xa7oZ\x8a\xce:\x9e@\x04\x00\x05f+\xee\xd8\xe6D\x9e\xb18Aw\x92\xe8\xb8>\x81{\xdc\x0f\\n\x0e\x1e\xbf~\xb76<h\xb0\xb4~\xd3\xaf\xbf\xde\x02\xfc)\x80\x86&8;\xd8\xba\x81\xa9\x91\xfb\xfb)\xc0*v\xb5\x0e\xf4\x99\xd4\xd0K\x02mW\xa9\t\x9dN@.\x14&\x10^;\x9c\x04i\x89D', 0x9, 0x1)
fsetxattr$auto(r3, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/packets_per_slave\x00', &(0x7f00000000c0)="69facbae38c9d968545754bc524f3f89ce2a", 0x0, 0x6) (async)
ioctl$auto_RNDADDENTROPY(r2, 0x40085203, &(0x7f0000000100)=[0x3, 0x4])
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
pidfd_send_signal$auto(0x101, 0x6, 0x0, 0xfff) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async)
unshare$auto(0x1) (async)
mmap$auto(0x8, 0xf3, 0x8, 0x1f, r3, 0xfe)
mmap$auto(0x0, 0x8, 0xdf, 0x209b72, 0x4e477f5a, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x7) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2a, 0x2, 0x0)
ioctl$auto(0x3, 0x2, r5) (async)
shmget$auto(0x26982d7c, 0x8, 0xffffffff)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000400)='/proc/asound/card1/pcm0c/sub0/xrun_injection\x00', 0x20000, 0x0)

3.378199162s ago: executing program 4 (id=4613):
socket(0x2, 0x80002, 0x73)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x0)
shutdown$auto(0x200000003, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)={0x20, r1, 0xd0d58b333228212f, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_SCAN_SSIDS={0x4}]}, 0x20}}, 0x4000000)
getrandom$auto(0x0, 0x6000000, 0x3)
ioctl$auto(0x3, 0xc1485544, 0xb551)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfffffdef)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
madvise$auto(0x108000, 0x800034, 0x200000b)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)

2.871226791s ago: executing program 7 (id=4614):
socket(0x2, 0x3, 0x10e57a) (async)
socket(0x15, 0x4, 0x6) (async)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
pwrite64$auto(r0, &(0x7f0000000080)='\vX\xb5\x85\x91p\xe6\x1eRN8\x90\x86\xd9e\x1cJ\x99\x00\x11:\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\x01\x0e\xa4\xd7\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xc0\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6c\xc6\xb2Jg\x01JZ\xbb\xff\xff\xff\xff0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1e;8\xed\xf6L\x05\xe8X\xaf\xe2\xe3\xdc\xc5:\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]\xff\xff\v\xff\xff\xff\xff\xff\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1', 0x7, 0x0) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8801, 0x0) (async)
mmap$auto(0xc, 0xd, 0x3, 0xfff, 0xfffffffffffffffe, 0x8000) (async)
r1 = open(&(0x7f0000000100)='.\x00', 0x100, 0x0)
getdents64$auto(r1, 0x0, 0x400) (async)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x1)
landlock_add_rule$auto(r2, 0x1, 0x0, 0x0)
r3 = socket(0x1e, 0x805, 0x0) (async, rerun: 64)
swapon$auto(0x0, 0x80000001) (rerun: 64)
openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000000340), 0x82900, 0x0)
rename$auto(&(0x7f0000000040)='./cgroup\x00', 0x0) (async, rerun: 64)
sysfs$auto(0x2, 0x19, 0x0) (async, rerun: 64)
close_range$auto(r3, 0xffffffffffffffff, 0xfffffffe) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYRESDEC=r2, @ANYRES32=r1, @ANYBLOB="2f212dbd7000fcdbdf252100000008000300", @ANYRES32=r5, @ANYBLOB="14002c8008"], 0x30}}, 0x4000000)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x80502, 0x0)
ioctl$auto_TIOCGPTPEER2(r6, 0x5441, 0x0) (async)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x4000010}, 0x804) (async)
lstat$auto(0x0, &(0x7f0000000180)={0x7, 0x9, 0x4, 0xfffffffb, 0x0, 0x0, 0x0, 0x1002, 0xb, 0x2004, 0x40000402, 0x400b, 0x9, 0xbf27, 0x9, 0x3, 0x2000001000ff})

2.747772091s ago: executing program 4 (id=4615):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffa, 0x9b71, 0x2, 0x1000008000) (async)
r0 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x0, 0x0)
read$auto_vcs_fops_vc_screen(r0, &(0x7f0000000040)=""/31, 0x1f) (async)
ppoll$auto(&(0x7f0000000080)={<r1=>r0, 0x2, 0x7}, 0x36, 0x0, 0x0, 0x8)
read$auto_proc_tid_children_operations_internal(r1, &(0x7f0000000140)=""/92, 0x5c)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) (async)
ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) (async)
ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f00000001c0)={0xba, &(0x7f0000000000)={0x20, 0xf1, 0xb0, @raw=0x4}})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000) (async)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async)
move_pages$auto(0x0, 0x91, 0x0, 0x0, 0x0, 0x0) (async)
rt_tgsigqueueinfo$auto(0x0, 0x0, 0x40, &(0x7f0000000400)={@siginfo_0_0={0x3, 0x1c51, 0x7, @_sigchld={0x0, 0xffffffffffffffff, 0x4d, 0x8, 0x9}}}) (async)
munmap$auto(0x0, 0xffffffff)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000100), 0xffffffffffffffff) (async)
r3 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f0000000480)=ANY=[@ANYBLOB="3c85bbbe625dfd15f9f8992cdc27f9bc1a68e6e56504003be23366296b2e23a344a20b1e169151c78dac9d1d196f0e96718df9281ce2df034836d4ce1ff3296e8971dce96ab785432deba263fbf00185371e287c1a0fd1c831527e3ab74699a8253ee3f6a09dd4b65ae01d607903a834e705b23c7ca1912481112a45dd2512bb54ac8eb1deda97e502a55a0601ca0e644fd41bfb7cd07e", @ANYRES16=r3, @ANYBLOB="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"], 0x140}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa) (async)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) (async)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @loopback, 0xfffffffd}, 0x55)

2.498607129s ago: executing program 7 (id=4616):
mmap$auto(0x0, 0x2020009, 0x6, 0x8000000eb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x6, 0x8000000eb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x80805, 0x0) (async)
socket(0x23, 0x80805, 0x0)
bpf$auto(0x0, &(0x7f0000000000)=@task_fd_query={0x0, 0xffffffffffffffff, 0x8003, 0x3, 0x9, 0x7, r0, 0x5, 0x1}, 0x6f5)
memfd_secret$auto(0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video27\x00', 0x400000, 0x0) (async)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video27\x00', 0x400000, 0x0)
poll$auto(&(0x7f0000000480)={r1, 0x6, 0xdc67}, 0x7, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2b, 0x1, 0x1) (async)
socket(0x2b, 0x1, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
getsockopt$auto(0x6, 0x5e, 0x4, 0x0, &(0x7f0000000080)=0x9cc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd8\x00', 0x220a21, 0x0)
socket(0x21, 0x5, 0x101) (async)
socket(0x21, 0x5, 0x101)
mmap$auto(0x7f, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x7f, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
sendmmsg$auto(r5, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000002) (async)
sendmmsg$auto(r5, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000002)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
splice$auto(0xffffffffffffffff, 0x0, r6, 0xfffffffffffffffe, 0x6f1, 0x1) (async)
splice$auto(0xffffffffffffffff, 0x0, r6, 0xfffffffffffffffe, 0x6f1, 0x1)
setsockopt$auto(0x3, 0x1, 0x9, 0x0, 0x46)
ioctl$auto_def_blk_fops_fs(r4, 0xab02, 0x0) (async)
ioctl$auto_def_blk_fops_fs(r4, 0xab02, 0x0)
syz_genetlink_get_family_id$auto_cifs(&(0x7f0000000000), r3)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/admmidi2\x00', 0x400, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000900), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000100), r2)
sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x20040040}, 0x4008000)

2.045809596s ago: executing program 4 (id=4618):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = epoll_create$auto(0x3e)
epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x0, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x28100, 0x0)
r1 = getpgid(0x0)
pidfd_open$auto(r1, 0x0)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x29, 0x2, 0x0)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2a, 0x2, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3)
eventfd$auto(0x0)
pipe$auto(0x0)
socket(0xa, 0x2, 0x88)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
socketpair$auto(0x1e, 0x1, 0x4, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)

1.995560078s ago: executing program 7 (id=4619):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) (async, rerun: 32)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (rerun: 32)
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) (async)
lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) (async)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
mknodat$auto(r0, &(0x7f0000000180)='./file0\x00', 0x7, 0x44a05e2e) (async)
setrlimit$auto(0x1, 0x0) (async)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) (async)
socket(0x10, 0x2, 0x0) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000fbdbdf25020000000800030000000000080016"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async, rerun: 64)
r1 = socket(0x2, 0x2, 0x88) (rerun: 64)
ioctl$auto(0xffffffffffffffff, 0x0, r1) (async, rerun: 32)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000002440), r2)
sendmsg$auto_NL80211_CMD_GET_SURVEY(r2, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000002740)={&(0x7f0000000040)={0x14, r3, 0x73d, 0x70bd25, 0x25dfdbfe}, 0x14}}, 0x8010) (async)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x108000, 0x800034, 0x9)

1.63154213s ago: executing program 4 (id=4620):
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0)
sendfile$auto(r0, r0, 0x0, 0x3)
r1 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs1\x00', 0x2, 0x0)
mmap$auto(0x0, 0x3ff, 0xe3, 0x14, r1, 0x8000)
mbind$auto(0xffffffffffffffff, 0x2, 0x2, 0x0, 0x7, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
ioprio_set$auto(0x2, 0x800000000, 0x8)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
madvise$auto(0x0, 0x3, 0x15)
r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cuse\x00', 0x1c1041, 0x0)
write$auto_fuse_dev_operations_fuse_i(r2, &(0x7f0000000440)="110000001265846e5f8e0795464b7c463a", 0x11)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/bonding/ad_partner_mac\x00', 0x181800, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r4 = socket(0x23, 0x80805, 0x0)
io_uring_setup$auto(0x0, &(0x7f0000000100)={0x3b7, 0x1b4, 0x1, 0x6, 0x9, 0x4, r1, [0xb, 0x1, 0xb], {0xff, 0x6, 0x2, 0x8, 0x6, 0x0, 0x0, 0x4, 0x6d}, {0x80, 0x6, 0x0, 0x6, 0x0, 0xeed, 0xffff8000, 0x1fd90fa5, 0xfffffffffffffff7}})
poll$auto(&(0x7f0000000040)={<r5=>r4, 0x7, 0x8}, 0x80, 0x400400)
setsockopt$auto(r5, 0x113, 0xffffffff, 0x0, 0x81)
pread64$auto(r3, 0x0, 0xedd, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x2, 0xa, 0xa)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x41c040, 0x88, 0x11}, 0x18)

496.021383ms ago: executing program 7 (id=4621):
r0 = socket(0x2, 0x1, 0x0)
setsockopt$auto(r0, 0x6, 0x1f, 0x0, 0x3d) (async)
mmap$auto(0x3, 0x2020009, 0x9, 0xeb1, r0, 0xfb)
getcwd$auto(0x0, 0xffffffffffffffff) (async, rerun: 32)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(0x4, 0x0, 0xe6e) (async, rerun: 32)
open(&(0x7f0000000040)='X))\x00', 0x201c0, 0xaa927683c905542f) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0)

207.51194ms ago: executing program 7 (id=4622):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x202000a, 0x1, 0xab1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(r0, 0x0, 0xffffbdf1)
write$auto(0x3, 0x0, 0xfffffdef)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0x20499d, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
madvise$auto(0x108000, 0x800034, 0x200000b)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000080)=""/4119, 0xfffffd06)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x204180, 0x0)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
ioctl$auto_SNDCTL_DSP_RESET(r2, 0x5000, 0x0)
madvise$auto(0x5, 0x2, 0x0)
mmap$auto(0x7, 0x400005, 0xfffffbfffffffffe, 0x9b72, 0x2, 0x9)
socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), r1)
mmap$auto(0x0, 0x8, 0xdf, 0x17, 0x2, 0x8000)
io_uring_setup$auto(0x1, 0x0)
socket(0x11, 0x80003, 0x300)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x0, 0x0, 0x8004)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)

0s ago: executing program 4 (id=4623):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x807, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x8, 0x9, 0x1, 0xc, 0x2, 0x384, 0x9, 0x8, 0x10006, 0x9, 0x0, 0x0, 0xe, 0x22000, 0x200, 0x3, 0x84, [0x3, 0x6, 0xffffffffffffffff, 0x2, 0x0, 0x260, 0x8703, 0xe, 0x3, 0x0, 0xffffffffffbffffd, 0xffffffffffffffff, 0x8, 0x2000000000, 0x2, 0x0, 0x8, 0x20000, 0x8, 0xfffffffffd, 0xfbffffffffffffff, 0x400000000004, 0x2f, 0x0, 0x0, 0x1006, 0x400000000005b5, 0xffff, 0x0, 0x100, 0x0, 0x6, 0x2, 0x88e, 0x40, 0x100000001, 0x0, 0xa38, 0x7, 0x4000003, 0xfffffffffffffffc, 0x2, 0x2, 0x10000000007, 0xc567]}, 0xf, 0xd)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x2802, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0x6, &(0x7f0000000380)="dcbb5fd7154bed139fb7f9fb1dca8fe1d88f65ee057c0e6faac40d106e4f0d52edf6e31c48e8d983ae3431fa707225c2c387e1a200b38759ba8e9187200e6d044ef46a534de751b1436f20ed7071b254509700aa726ea003a1b7b9ce2313756dc84bc4556ddac694c4553d72ed13a885176712c9cff968f74bd1d14ff734ad08e60cf7e7a7dd07d2b6ca9cb21ddaae68d2969afcf6c734f6ee1c63b1c93abf32264f9ec022b64c903276298739ee8ae7ac1fe14534ad54004f39ea1b99964702554c1494e1742baeae527cf3007d50fc92e924f73b6288e5d9fd071d2fba76b2fabd3faf5229f4c3168226346e3087026d3d2c8aed398d4988971e05ff0ab9f5f2328e7f51d5061584b44581a4c83e413718d3a82f87daf87d1d5a2c32fbaa58f095fbf34ccc603b632155c27289cb5598049a7c9160dfe8a01d5a1983408082941eb39db2a09c5a34dc876dfa58a589687aa0cf6be7b5b084a8f753758332896ec3adad7a79b751908ee2b3d25131f44185a0ed8d20e9b6b8a1ed11402b02e544b67caf3177eda039e64aaf295eca7953c165fa73afca96d7750663711101c6e14e44817c6ad4b1474132dd441ca5c9d7776c871ffacbd96910496cad7010b9b526135e84")
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd05, &(0x7f00000001c0))
socket(0x11, 0x80003, 0x300)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100)
pipe2$auto(0x0, 0x74ae)
r1 = bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x2, 0x4, 0x3, 0x2, 0x8, 0xc, <r2=>0xe3, 0x400000000a, 0x3}, 0x6f4)
mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
mmap$auto(0x0, 0x2020009, 0x704384eb, 0xeb1, 0xfffffffffffffffa, 0x20000000008000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8})
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000040), r1)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x30, 0x80000006, 0x4)
recvfrom$auto(0xffffffffffffffff, &(0x7f0000000080)="847405136406260d6dba527903094ba089534f3d82cdeddc04e4ad71f8aea7ddf01ea6f9b48949f5ffcebefad6de105da0ccd9bb3b1ee0357803e4e507", 0x2, 0xf, &(0x7f0000000100)=@qipcrtr={0x2a, 0xffffffffffffffff, 0xfffffffe}, &(0x7f0000000140)=0x3)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x408, 0x7, 0x1ff, 0x7, 0x42, 0x4909b6f8, 0x1ffdf, 0x7, 0xffffffffffffffff, 0x2, 0x7fe, 0x3, 0x6, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x1080, 0x100000000, 0x0, 0x7, 0x2100, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x6, 0x2000, 0x0, 0x6, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x4, 0x33, 0x8, 0xfffffffffffffffe, 0xffffffffffffbfff, 0xfffffffffffffffd, 0x1, 0x0, 0xffffffffffffffff, 0x6, 0xfffffffffffffffe, 0x2000000000000000, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x0, 0x6, 0x0, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffffffffa, 0x8, 0x4000000000, 0x3]}, 0x1fe, 0xd)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r2, 0xffffffffffffffff, 0x401)

kernel console output (not intermixed with test programs):

070][T22272] R13: 0000000000000000 R14: 00007f6d19d75fa0 R15: 00007fff0210cd18
[ 1009.523103][T22272]  </TASK>
[ 1011.038280][T22308] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3568'.
[ 1011.905392][T22323] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3573'.
[ 1012.298284][T22329] bridge0: port 3(team0) entered blocking state
[ 1012.358425][T22329] bridge0: port 3(team0) entered disabled state
[ 1012.458811][T22329] team0: entered allmulticast mode
[ 1012.505633][T22329] team_slave_0: entered allmulticast mode
[ 1012.575936][T22329] team_slave_1: entered allmulticast mode
[ 1012.624054][T22329] team0: entered promiscuous mode
[ 1012.629139][T22329] team_slave_0: entered promiscuous mode
[ 1012.749862][T22329] team_slave_1: entered promiscuous mode
[ 1012.776998][T22329] bridge0: port 3(team0) entered blocking state
[ 1012.783408][T22329] bridge0: port 3(team0) entered forwarding state
[ 1012.817354][T22340] FAULT_INJECTION: forcing a failure.
[ 1012.817354][T22340] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1012.915465][T22340] CPU: 1 UID: 0 PID: 22340 Comm: syz.6.3577 Not tainted 6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1012.915498][T22340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1012.915512][T22340] Call Trace:
[ 1012.915527][T22340]  <TASK>
[ 1012.915536][T22340]  dump_stack_lvl+0x16c/0x1f0
[ 1012.915574][T22340]  should_fail_ex+0x497/0x5b0
[ 1012.915607][T22340]  ? fs_reclaim_acquire+0xae/0x150
[ 1012.915637][T22340]  should_fail_alloc_page+0xe7/0x130
[ 1012.915662][T22340]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1012.915697][T22340]  __alloc_pages_noprof+0x18e/0x2470
[ 1012.915733][T22340]  ? hlock_class+0x4e/0x130
[ 1012.915764][T22340]  ? mark_lock+0xb5/0xc60
[ 1012.915791][T22340]  ? __pfx_mark_lock+0x10/0x10
[ 1012.915814][T22340]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1012.915850][T22340]  ? hlock_class+0x4e/0x130
[ 1012.915877][T22340]  ? mark_lock+0xb5/0xc60
[ 1012.915896][T22340]  ? rcu_is_watching+0x12/0xc0
[ 1012.915928][T22340]  ? __pfx_mark_lock+0x10/0x10
[ 1012.915948][T22340]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1012.915975][T22340]  ? find_held_lock+0x2d/0x110
[ 1012.916005][T22340]  ? hlock_class+0x4e/0x130
[ 1012.916032][T22340]  ? __lock_acquire+0xcc5/0x3c40
[ 1012.916051][T22340]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1012.916079][T22340]  ? policy_nodemask+0xea/0x4e0
[ 1012.916104][T22340]  alloc_pages_mpol_noprof+0x2c8/0x620
[ 1012.916130][T22340]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1012.916152][T22340]  ? __lock_acquire+0xcc5/0x3c40
[ 1012.916190][T22340]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1012.916219][T22340]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1012.916245][T22340]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1012.916270][T22340]  ? find_held_lock+0x2d/0x110
[ 1012.916308][T22340]  do_pte_missing+0x2017/0x3e00
[ 1012.916354][T22340]  __handle_mm_fault+0x103c/0x2a40
[ 1012.916398][T22340]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1012.916429][T22340]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1012.916475][T22340]  ? find_vma+0xc0/0x140
[ 1012.916502][T22340]  ? __pfx_find_vma+0x10/0x10
[ 1012.916540][T22340]  handle_mm_fault+0x3fa/0xaa0
[ 1012.916581][T22340]  do_user_addr_fault+0x7a3/0x13f0
[ 1012.916615][T22340]  exc_page_fault+0x5c/0xc0
[ 1012.916647][T22340]  asm_exc_page_fault+0x26/0x30
[ 1012.916680][T22340] RIP: 0010:rep_movs_alternative+0x4a/0x70
[ 1012.916708][T22340] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[ 1012.916728][T22340] RSP: 0018:ffffc9000fc87a08 EFLAGS: 00050202
[ 1012.916747][T22340] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00000000000002ba
[ 1012.916761][T22340] RDX: 0000000000000000 RSI: ffff8880940c8000 RDI: 00000000200010c0
[ 1012.916774][T22340] RBP: ffffc9000fc87c18 R08: 0000000000000000 R09: ffffed1012819057
[ 1012.916788][T22340] R10: ffff8880940c82b9 R11: 0000000000000000 R12: 00000000000002ba
[ 1012.916802][T22340] R13: ffff8880940c8000 R14: 00000000200010c0 R15: 00000000000002ba
[ 1012.916835][T22340]  _copy_to_iter+0x52f/0x1400
[ 1012.916869][T22340]  ? __pfx__copy_to_iter+0x10/0x10
[ 1012.916890][T22340]  ? __virt_addr_valid+0x1a4/0x590
[ 1012.916925][T22340]  ? __virt_addr_valid+0x5e/0x590
[ 1012.916954][T22340]  ? __phys_addr_symbol+0x30/0x80
[ 1012.916981][T22340]  ? __check_object_size+0x488/0x710
[ 1012.917019][T22340]  seq_read_iter+0xd00/0x12b0
[ 1012.917061][T22340]  seq_read+0x39f/0x4e0
[ 1012.917087][T22340]  ? __pfx_seq_read+0x10/0x10
[ 1012.917136][T22340]  ? __pfx_seq_read+0x10/0x10
[ 1012.917164][T22340]  vfs_read+0x1df/0xbe0
[ 1012.917193][T22340]  ? __fget_files+0x1fc/0x3a0
[ 1012.917222][T22340]  ? __pfx___mutex_lock+0x10/0x10
[ 1012.917254][T22340]  ? __pfx_vfs_read+0x10/0x10
[ 1012.917293][T22340]  ? __fget_files+0x206/0x3a0
[ 1012.917334][T22340]  ksys_read+0x12b/0x250
[ 1012.917361][T22340]  ? __pfx_ksys_read+0x10/0x10
[ 1012.917400][T22340]  do_syscall_64+0xcd/0x250
[ 1012.917435][T22340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1012.917467][T22340] RIP: 0033:0x7f2075385d29
[ 1012.917485][T22340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1012.917505][T22340] RSP: 002b:00007f2076273038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1012.917531][T22340] RAX: ffffffffffffffda RBX: 00007f2075575fa0 RCX: 00007f2075385d29
[ 1012.917546][T22340] RDX: 0000000000001000 RSI: 00000000200010c0 RDI: 0000000000000003
[ 1012.917559][T22340] RBP: 00007f2076273090 R08: 0000000000000000 R09: 0000000000000000
[ 1012.917572][T22340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1012.917585][T22340] R13: 0000000000000000 R14: 00007f2075575fa0 R15: 00007ffd454f9ac8
[ 1012.917617][T22340]  </TASK>
[ 1013.369728][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1013.837356][T22346] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3579'.
[ 1014.193072][T22352] bridge0: port 4(veth1_virt_wifi) entered blocking state
[ 1014.235606][T22352] bridge0: port 4(veth1_virt_wifi) entered disabled state
[ 1014.264164][T22352] veth1_virt_wifi: entered allmulticast mode
[ 1014.292052][T22352] veth1_virt_wifi: left allmulticast mode
[ 1014.314156][T22356] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3583'.
[ 1014.349654][T22356] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1014.419441][T22356] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1014.499088][T22356] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1014.530854][T22356] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1015.547972][T22371] FAULT_INJECTION: forcing a failure.
[ 1015.547972][T22371] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1015.593977][T22371] CPU: 0 UID: 0 PID: 22371 Comm: syz.5.3588 Not tainted 6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1015.594009][T22371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1015.594022][T22371] Call Trace:
[ 1015.594028][T22371]  <TASK>
[ 1015.594037][T22371]  dump_stack_lvl+0x16c/0x1f0
[ 1015.594072][T22371]  should_fail_ex+0x497/0x5b0
[ 1015.594108][T22371]  _copy_to_user+0x32/0xd0
[ 1015.594134][T22371]  simple_read_from_buffer+0xd0/0x160
[ 1015.594162][T22371]  proc_fail_nth_read+0x198/0x270
[ 1015.594186][T22371]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1015.594213][T22371]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1015.594236][T22371]  vfs_read+0x1df/0xbe0
[ 1015.594262][T22371]  ? __fget_files+0x1fc/0x3a0
[ 1015.594288][T22371]  ? __pfx___mutex_lock+0x10/0x10
[ 1015.594318][T22371]  ? __pfx_vfs_read+0x10/0x10
[ 1015.594350][T22371]  ? __fget_files+0x206/0x3a0
[ 1015.594386][T22371]  ksys_read+0x12b/0x250
[ 1015.594411][T22371]  ? __pfx_ksys_read+0x10/0x10
[ 1015.594447][T22371]  do_syscall_64+0xcd/0x250
[ 1015.594481][T22371]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1015.594513][T22371] RIP: 0033:0x7f6d19b8473c
[ 1015.594531][T22371] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1015.594558][T22371] RSP: 002b:00007f6d1a9d3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1015.594580][T22371] RAX: ffffffffffffffda RBX: 00007f6d19d75fa0 RCX: 00007f6d19b8473c
[ 1015.594596][T22371] RDX: 000000000000000f RSI: 00007f6d1a9d30a0 RDI: 0000000000000006
[ 1015.594608][T22371] RBP: 00007f6d1a9d3090 R08: 0000000000000000 R09: 0000000000000000
[ 1015.594621][T22371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1015.594632][T22371] R13: 0000000000000000 R14: 00007f6d19d75fa0 R15: 00007fff0210cd18
[ 1015.594660][T22371]  </TASK>
[ 1017.146793][T22399] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3593'.
[ 1017.428869][T22397] binder: 22394:22397 ioctl c00c620f 9 returned -22
[ 1017.560542][T22412] kmem.limit_in_bytes is deprecated and will be removed. Writing any value to this file has no effect. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 1022.250033][T22492] netlink: 334 bytes leftover after parsing attributes in process `syz.5.3617'.

syzkaller
syzkaller login: [ 1025.865685][T22556] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3629'.
[ 1026.570661][T22568] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3632'.
[ 1026.594913][T22568] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1026.605035][T22568] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1026.663390][T22568] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1026.697416][T22568] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1027.086986][T22573] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 1027.097411][T22581] Invalid ELF header magic: != ELF
[ 1027.135859][T22573] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1032.159431][T22613] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3642'.
[ 1034.026812][T22613] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1034.086632][T22642] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1034.155790][T22613] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1034.246983][T22613] bond0 (unregistering): Released all slaves
[ 1034.294359][T22642] Invalid ELF header magic: != ELF
[ 1036.742402][T22671] Process accounting paused
[ 1037.311650][T22695] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3659'.
[ 1038.745317][T22710] netlink: 334 bytes leftover after parsing attributes in process `syz.6.3662'.
[ 1040.147191][T22737] netlink: 'syz.5.3670': attribute type 11 has an invalid length.
[ 1040.661900][T22747] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1040.678398][T22733] binder: 22732:22733 ioctl c00c620f 9 returned -22
[ 1040.809112][T22747] Invalid ELF header magic: != ELF
[ 1042.418263][T22786] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1042.554650][T22786] Invalid ELF header magic: != ELF
[ 1044.215944][T22775] binder: 22774:22775 ioctl c00c620f 9 returned -22
[ 1045.298523][T22845] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3690'.
[ 1045.411940][T22845] macvlan1: entered promiscuous mode
[ 1045.800504][T22851] netlink: 85 bytes leftover after parsing attributes in process `syz.4.3691'.
[ 1047.301636][T22878] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3698'.
[ 1047.403704][T22878] hsr_slave_0: left promiscuous mode
[ 1047.499932][T22878] hsr_slave_1: left promiscuous mode
[ 1047.624219][T22890] FAULT_INJECTION: forcing a failure.
[ 1047.624219][T22890] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1047.685998][T22890] CPU: 1 UID: 0 PID: 22890 Comm: syz.1.3703 Not tainted 6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1047.686046][T22890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1047.686061][T22890] Call Trace:
[ 1047.686068][T22890]  <TASK>
[ 1047.686078][T22890]  dump_stack_lvl+0x16c/0x1f0
[ 1047.686119][T22890]  should_fail_ex+0x497/0x5b0
[ 1047.686159][T22890]  strncpy_from_user+0x3b/0x2d0
[ 1047.686195][T22890]  getname_flags.part.0+0x8f/0x550
[ 1047.686225][T22890]  getname+0x8d/0xe0
[ 1047.686252][T22890]  do_sys_openat2+0x104/0x1e0
[ 1047.686277][T22890]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1047.686299][T22890]  ? __sock_release+0x20b/0x270
[ 1047.686336][T22890]  __x64_sys_openat+0x175/0x210
[ 1047.686360][T22890]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1047.686397][T22890]  do_syscall_64+0xcd/0x250
[ 1047.686432][T22890]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1047.686467][T22890] RIP: 0033:0x7f3959385d29
[ 1047.686486][T22890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1047.686508][T22890] RSP: 002b:00007f395a251038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1047.686531][T22890] RAX: ffffffffffffffda RBX: 00007f3959575fa0 RCX: 00007f3959385d29
[ 1047.686548][T22890] RDX: 0000000000082c02 RSI: 00000000200001c0 RDI: ffffffffffffff9c
[ 1047.686563][T22890] RBP: 00007f3959401b08 R08: 0000000000000000 R09: 0000000000000000
[ 1047.686577][T22890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1047.686591][T22890] R13: 0000000000000000 R14: 00007f3959575fa0 R15: 00007fffbfa4a978
[ 1047.686622][T22890]  </TASK>
[ 1048.215530][T22893] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1048.251113][T22895] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1048.434704][T22895] Invalid ELF header magic: != ELF
[ 1048.446358][T22898] Invalid ELF header magic: != ELF
[ 1048.499755][T22897] Invalid ELF header magic: != ELF
[ 1048.844035][T22900] program syz.4.3706 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1050.098358][T22925] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3711'.
[ 1050.120787][T22925] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3711'.
[ 1050.734937][T22936] Scaler: =================  START STATUS  =================
[ 1050.759681][T22936] Scaler: ==================  END STATUS  ==================
[ 1052.105188][T22951] binder: 22950:22951 ioctl c00c620f 9 returned -22
[ 1052.781426][T22980] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1052.792463][T22980] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1052.798570][T22980] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1052.818029][T22985] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3727'.
[ 1052.866104][T22980] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1053.076457][T22992] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3728'.
[ 1053.097263][T22992] ipvlan0: entered promiscuous mode
[ 1053.119751][T22992] vivid-013: =================  START STATUS  =================
[ 1053.135558][T22992] vivid-013: Generate PTS: true
[ 1053.140978][T22992] vivid-013: Generate SCR: true
[ 1053.164493][T22992] tpg source WxH: 640x360 (Y'CbCr)
[ 1053.180094][T22992] tpg field: 1
[ 1053.191013][T22992] tpg crop: 640x360@0x0
[ 1053.195215][T22992] tpg compose: 640x360@0x0
[ 1053.231259][T22992] tpg colorspace: 8
[ 1053.247729][T22992] tpg transfer function: 0/0
[ 1053.280237][T22992] tpg Y'CbCr encoding: 0/0
[ 1053.289652][T22992] tpg quantization: 0/0
[ 1053.316702][T22992] tpg RGB range: 0/2
[ 1053.320995][T22992] vivid-013: ==================  END STATUS  ==================
[ 1053.451944][T23003] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3731'.
[ 1053.566388][T23003] vxcan1: entered promiscuous mode
[ 1054.219555][ T5841] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1054.702176][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.708507][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[ 1054.859882][T20932] Bluetooth: hci0: command 0x0406 tx timeout
[ 1054.866097][ T5841] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1054.939581][ T5841] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1055.751123][T23042] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1055.904181][T23042] Invalid ELF header magic: != ELF
[ 1057.449086][T23035] binder: 23031:23035 ioctl c00c620f 9 returned -22
[ 1058.419659][T23064] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1058.449719][T23064] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1058.468724][T23064] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1058.490209][T23064] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1058.883965][T23074] sp0: Synchronizing with TNC
[ 1059.990629][T23086] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3747'.
[ 1060.459917][ T5841] Bluetooth: hci0: command 0x0406 tx timeout
[ 1060.465996][ T5841] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1060.539718][T20932] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1060.545867][ T5841] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1061.446345][T23107] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1061.559461][T23107] Invalid ELF header magic: != ELF
[ 1062.337546][T23095] binder: 23094:23095 ioctl c00c620f 9 returned -22
[ 1062.348034][T23095] FAULT_INJECTION: forcing a failure.
[ 1062.348034][T23095] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1062.418495][T23095] CPU: 1 UID: 0 PID: 23095 Comm: syz.6.3749 Not tainted 6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1062.418527][T23095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1062.418540][T23095] Call Trace:
[ 1062.418546][T23095]  <TASK>
[ 1062.418555][T23095]  dump_stack_lvl+0x16c/0x1f0
[ 1062.418588][T23095]  should_fail_ex+0x497/0x5b0
[ 1062.418612][T23095]  core_sys_select+0x420/0xa10
[ 1062.418634][T23095]  ? __pfx_core_sys_select+0x10/0x10
[ 1062.418654][T23095]  ? find_held_lock+0x2d/0x110
[ 1062.418687][T23095]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1062.418712][T23095]  kern_select+0x15e/0x1e0
[ 1062.418729][T23095]  ? __pfx_kern_select+0x10/0x10
[ 1062.418748][T23095]  ? __pfx_ksys_write+0x10/0x10
[ 1062.418768][T23095]  __x64_sys_select+0xbd/0x160
[ 1062.418785][T23095]  ? do_syscall_64+0x91/0x250
[ 1062.418804][T23095]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1062.418823][T23095]  do_syscall_64+0xcd/0x250
[ 1062.418843][T23095]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1062.418864][T23095] RIP: 0033:0x7f2075385d29
[ 1062.418875][T23095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1062.418888][T23095] RSP: 002b:00007f2076273038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[ 1062.418901][T23095] RAX: ffffffffffffffda RBX: 00007f2075575fa0 RCX: 00007f2075385d29
[ 1062.418910][T23095] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[ 1062.418918][T23095] RBP: 00007f2076273090 R08: 0000000000000000 R09: 0000000000000000
[ 1062.418926][T23095] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000000001
[ 1062.418933][T23095] R13: 0000000000000000 R14: 00007f2075575fa0 R15: 00007ffd454f9ac8
[ 1062.418950][T23095]  </TASK>
[ 1066.106706][T23140] binder: 23131:23140 ioctl c00c620f 9 returned -22
[ 1067.754855][T23111] Process accounting resumed
[ 1067.770021][T23185] program syz.1.3770 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1068.938104][T23196] FAULT_INJECTION: forcing a failure.
[ 1068.938104][T23196] name failslab, interval 1, probability 0, space 0, times 0
[ 1069.065125][T23196] CPU: 1 UID: 0 PID: 23196 Comm: syz.6.3772 Not tainted 6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1069.065159][T23196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1069.065173][T23196] Call Trace:
[ 1069.065180][T23196]  <TASK>
[ 1069.065190][T23196]  dump_stack_lvl+0x16c/0x1f0
[ 1069.065231][T23196]  should_fail_ex+0x497/0x5b0
[ 1069.065267][T23196]  ? fs_reclaim_acquire+0xae/0x150
[ 1069.065300][T23196]  should_failslab+0xc2/0x120
[ 1069.065325][T23196]  kmem_cache_alloc_noprof+0x6e/0x3b0
[ 1069.065361][T23196]  ? find_held_lock+0x2d/0x110
[ 1069.065390][T23196]  ? ptlock_alloc+0x1f/0x70
[ 1069.065429][T23196]  ptlock_alloc+0x1f/0x70
[ 1069.065461][T23196]  pte_alloc_one+0x74/0x390
[ 1069.065491][T23196]  __pte_alloc+0x6e/0x3b0
[ 1069.065520][T23196]  ? __pfx___pte_alloc+0x10/0x10
[ 1069.065548][T23196]  ? __pfx___might_resched+0x10/0x10
[ 1069.065583][T23196]  copy_page_range+0x3649/0x55c0
[ 1069.065654][T23196]  ? __pfx_copy_page_range+0x10/0x10
[ 1069.065686][T23196]  ? find_held_lock+0x2d/0x110
[ 1069.065733][T23196]  ? __pfx_lock_release+0x10/0x10
[ 1069.065758][T23196]  ? lock_acquire+0x2f/0xb0
[ 1069.065782][T23196]  ? copy_mm+0x1213/0x2640
[ 1069.065817][T23196]  ? down_write+0x14e/0x200
[ 1069.065844][T23196]  ? up_write+0x1b2/0x520
[ 1069.065876][T23196]  copy_mm+0x12bb/0x2640
[ 1069.065920][T23196]  ? __pfx_copy_mm+0x10/0x10
[ 1069.065951][T23196]  ? copy_process+0x3ca7/0x6f20
[ 1069.065991][T23196]  ? __raw_spin_lock_init+0x3a/0x110
[ 1069.066026][T23196]  copy_process+0x3e6d/0x6f20
[ 1069.066073][T23196]  ? __pfx_copy_process+0x10/0x10
[ 1069.066107][T23196]  ? futex_wake+0x18e/0x4e0
[ 1069.066140][T23196]  kernel_clone+0xfd/0x960
[ 1069.066173][T23196]  ? __pfx_kernel_clone+0x10/0x10
[ 1069.066212][T23196]  ? do_futex+0x123/0x350
[ 1069.066247][T23196]  ? __pfx_do_futex+0x10/0x10
[ 1069.066287][T23196]  __do_sys_clone+0xba/0x100
[ 1069.066316][T23196]  ? __pfx___do_sys_clone+0x10/0x10
[ 1069.066372][T23196]  do_syscall_64+0xcd/0x250
[ 1069.066409][T23196]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1069.066442][T23196] RIP: 0033:0x7f2075385d29
[ 1069.066459][T23196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1069.066482][T23196] RSP: 002b:00007f2076272fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1069.066505][T23196] RAX: ffffffffffffffda RBX: 00007f2075575fa0 RCX: 00007f2075385d29
[ 1069.066520][T23196] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
[ 1069.066533][T23196] RBP: 00007f2075401b08 R08: 0000000000000000 R09: 0000000000000000
[ 1069.066546][T23196] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1069.066558][T23196] R13: 0000000000000000 R14: 00007f2075575fa0 R15: 00007ffd454f9ac8
[ 1069.066590][T23196]  </TASK>
[ 1072.464509][T23231] binder: 23227:23231 ioctl c00c620f 9 returned -22
[ 1073.253687][T23256] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3788'.
[ 1074.814174][   T29] audit: type=1800 audit(4294967350.872:22): pid=23275 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3792" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1074.971800][T23276] can: request_module (can-proto-5) failed.
[ 1074.979658][T23281] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3793'.
[ 1075.332246][T23286] [U] 
[ 1075.335003][T23286] [U] 
[ 1075.337728][T23286] [U] 
[ 1075.340483][T23286] [U] 
[ 1075.441400][T23286] [U] 
[ 1075.444133][T23286] [U] 
[ 1075.446829][T23286] [U] 
[ 1075.449527][T23286] [U] 
[ 1075.515652][T23286] [U] 
[ 1075.518361][T23286] [U] 
[ 1075.521042][T23286] [U] 
[ 1075.523747][T23286] [U] 
[ 1075.645930][T23286] [U] 
[ 1075.648700][T23286] [U] 
[ 1075.651414][T23286] [U] 
[ 1075.654125][T23286] [U] 
[ 1075.723394][T23286] [U] 
[ 1075.726136][T23286] [U] 
[ 1075.728831][T23286] [U] 
[ 1075.731526][T23286] [U] 
[ 1075.842509][T23286] [U] 
[ 1075.845243][T23286] [U] 
[ 1075.847962][T23286] [U] 
[ 1075.850691][T23286] [U] 
[ 1075.979625][T23286] [U] 
[ 1075.982352][T23286] [U] ���"��J�W� 1<�M�
[ 1075.986698][T23286] [U] ��L:B�-���AOU�4��l)
8Yu�*ȣl�a+`�B����6J�
����6&�C���[S���ͻʎ����`2F��t�o0��
��y\�"n�>��o�ǿ��O�aL�
[ 1076.000780][T23286] [U] �������^��dA����^rvcʢoL�'�@K�p��	)@dAW@a�_���RNV=�����i���-��H.���N���u�����T�$�F<6M�����E�8+��Y�Z怿��X�R ³X�H8B�欲
[ 1076.015463][T23286] [U] }���<���g��}
[ 1076.019284][T23286] [U] ?Λ@��NQΤ
[ 1076.022845][T23286] [U] �sz��N #"���;\��G2y"T
[ 1076.027529][T23286] [U] �nIk
[ 1076.030565][T23286] [U] ����2kL�����[&%^��ft�銥|�ɾv����>V7��u�#��Ǿ�R"-�߮�j��BVzB}�;�M=sI)�ׅ�8�F$<=G�81Y�,y��-��}%e��9�Qα��7T�*��1�@\
[ 1076.044106][T23286] [U] ��ҩy�� ��K�]`J}ܝUO�`���U���@?m��n
[ 1076.050215][T23286] [U] ��~h��A��ç(1*�ܜfD�:B�ֱ݂�v�%2�]ŏA���D�~Cy��-T�VG.mۆ7$�b�e3
[ 1076.059597][T23286] [U] �*X�+�cPe��q�Z
��ee��_�1oa�uA�i��?a%�z��6֞�ʑ[ ��0�Js��+�m�0оL�X�ZȖH�3�.iP����&Ӧ��
[ 1076.071058][T23286] [U] w��}w�ܙ�ۨ��[���b�¶k�9���I^��+\���S'<I�u��k��#�Y@�g2K1�lr;��)Qf\(5�s-Fuݿ�Ty����>�n*6�k�dN�9S8#�b�/�D�IO�Z��p�l�0����Z��Cbi�#��)�xw��|~�y�kK�>z���y
��"��n@�
[ 1076.089888][T23286] [U] �1��W���H��
[ 1076.093726][T23286] [U] �Ef��IO7Ru3Ĥ�f�;ʶ^RJ���	����d�1*g��
�d��:ZNC_��J�S���d�Ҫ@*:�	-�/\�P-L����X��Y�����C![��n"��"�'�7�ʤu%���c/���LEw��7V�B1�ʕ�ח/�84�s~���B3�p��قY2{r��g~'�#,�*c�PQR��6���G˃_*�@�W��j�[`b*��x��^�gZ���3�y�_}�',g�]��M�^T(��W
�9��� V�r&�~�L�WP�<DGo�o�(�)6>�;��Ŧ��d="��Io=��C$c]Ն�
[ 1076.124370][T23286] [U] u��B��ۥH�k��wz��W�H2P����gv*�u=Ϝ�$--�ۋ~���58ak��d�	�a���i2�Ҩfu�sT������m�7�ט�)|��h�
[ 1076.135652][T23286] [U] 2�qz �
s���'y���.���.��C����5����|�I��Qn�9�l��B^��a	��g�Q��J�8#���-x��T?�E�T4��*�P���|'�N�;>2�3�k����8�u��V�M��'�M��,SI�I�q�e4ϧvpx;����%��<��{�i{�>��sZ����8j��؊�҅B�H�T��lq��ߊa�[��n4eo���$�a�ިtK�����;b��H��/�-�m!��
[ 1076.159535][T23286] [U] �2�`=��ci� ]������q$mo~)��0{h�r��2V����;��TE�o�����>O��@�.hA�/|D�`��F��}v
[ 1076.284035][T23286] [U] 5����(��NQv�CF������%Y_����c���ۣ�vha�̥�J;��
[ 1076.498121][T23303] vivid-013: =================  START STATUS  =================
[ 1076.519802][T23303] vivid-013: Generate PTS: true
[ 1076.524738][T23303] vivid-013: Generate SCR: true
[ 1076.556757][T23303] tpg source WxH: 640x360 (Y'CbCr)
[ 1076.566286][T23303] tpg field: 1
[ 1076.572643][T23303] tpg crop: 640x360@0x0
[ 1076.589664][T23303] tpg compose: 640x360@0x0
[ 1076.609637][T23303] tpg colorspace: 8
[ 1076.613484][T23303] tpg transfer function: 0/0
[ 1076.618096][T23303] tpg Y'CbCr encoding: 0/0
[ 1076.673106][T23303] tpg quantization: 0/0
[ 1076.673128][T23303] tpg RGB range: 0/2
[ 1076.673143][T23303] vivid-013: ==================  END STATUS  ==================
[ 1077.342956][T23311] could not allocate digest TFM handle 
[ 1081.455417][T23369] delete_channel: no stack
[ 1082.420300][T23390] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1082.500481][T23390] Invalid ELF header magic: != ELF
[ 1082.872091][T23346] kexec: Could not allocate control_code_buffer
[ 1083.279706][T23404] RDS: rds_bind could not find a transport for 86a4:131b:e300:1000:801c:20::, load rds_tcp or rds_rdma?
[ 1083.590001][T23411] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1083.892929][T23411] Invalid ELF header magic: != ELF
[ 1084.291416][T23422] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1084.468679][T23422] Invalid ELF header magic: != ELF
[ 1084.678336][T23410] binder: 23409:23410 ioctl c00c620f 9 returned -22
[ 1085.897380][T23426] binder: 23423:23426 ioctl c00c620f 9 returned -22
[ 1087.423498][T23462] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3833'.
[ 1091.227577][T23524] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3845'.
[ 1091.824757][T23536] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3849'.
[ 1091.879975][T23536] ipvlan0: entered promiscuous mode
[ 1091.885240][T23536] ipvlan0: entered allmulticast mode
[ 1091.910105][T23536] veth0_vlan: entered allmulticast mode
[ 1091.916340][T23537] vivid-013: =================  START STATUS  =================
[ 1091.942061][T23537] vivid-013: Generate PTS: true
[ 1091.947750][T23537] vivid-013: Generate SCR: true
[ 1091.953730][T23537] tpg source WxH: 640x360 (Y'CbCr)
[ 1091.959003][T23537] tpg field: 1
[ 1092.024175][T23537] tpg crop: 640x360@0x0
[ 1092.054178][T23537] tpg compose: 640x360@0x0
[ 1092.065137][T23537] tpg colorspace: 8
[ 1092.068991][T23537] tpg transfer function: 0/0
[ 1092.084841][T23537] tpg Y'CbCr encoding: 0/0
[ 1092.093112][T23537] tpg quantization: 0/0
[ 1092.115475][T23537] tpg RGB range: 0/2
[ 1092.129100][T23537] vivid-013: ==================  END STATUS  ==================
[ 1093.082747][T23562] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3854'.
[ 1094.288135][T23567] binder: 23566:23567 ioctl c00c620f 9 returned -22
[ 1095.418733][T23577] binder: 23576:23577 ioctl c00c620f 9 returned -22
[ 1095.783939][T23599] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3862'.
[ 1095.806733][T23599] ipvlan0: entered promiscuous mode
[ 1095.822227][T23599] ipvlan0: entered allmulticast mode
[ 1095.833269][T23599] veth0_vlan: entered allmulticast mode
[ 1095.862117][T23601] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1095.872341][T23599] vivid-013: =================  START STATUS  =================
[ 1095.905344][T23599] vivid-013: Generate PTS: true
[ 1095.936170][T23599] vivid-013: Generate SCR: true
[ 1095.953854][T23599] tpg source WxH: 640x360 (Y'CbCr)
[ 1095.965813][T23599] tpg field: 1
[ 1095.973726][T23599] tpg crop: 640x360@0x0
[ 1096.002699][T23599] tpg compose: 640x360@0x0
[ 1096.007604][T23599] tpg colorspace: 8
[ 1096.022712][T23599] tpg transfer function: 0/0
[ 1096.036863][T23599] tpg Y'CbCr encoding: 0/0
[ 1096.041933][T23599] tpg quantization: 0/0
[ 1096.049868][T23599] tpg RGB range: 0/2
[ 1096.063798][T23599] vivid-013: ==================  END STATUS  ==================
[ 1096.088620][T23601] Invalid ELF header magic: != ELF
[ 1096.280874][T23610] netlink: 334 bytes leftover after parsing attributes in process `syz.5.3863'.
[ 1096.295547][T23616] Invalid ELF header magic: != ELF
[ 1096.330672][T23616] Invalid ELF header magic: != ELF
[ 1096.336008][T23616] Invalid ELF header magic: != ELF
[ 1096.354942][T23616] Invalid ELF header magic: != ELF
[ 1096.364601][T23616] Invalid ELF header magic: != ELF
[ 1096.373822][T23616] Invalid ELF header magic: != ELF
[ 1096.379194][T23616] Invalid ELF header magic: != ELF
[ 1096.387179][T23616] Invalid ELF header magic: != ELF
[ 1096.396782][T23616] Invalid ELF header magic: != ELF
[ 1096.433455][T23616] Invalid ELF header magic: != ELF
[ 1096.450976][T23616] Invalid ELF header magic: != ELF
[ 1096.498843][T23616] Invalid ELF header magic: != ELF
[ 1096.545383][T23616] Invalid ELF header magic: != ELF
[ 1096.580639][T23616] Invalid ELF header magic: != ELF
[ 1096.586123][T23616] Invalid ELF header magic: != ELF
[ 1096.592398][T23616] Invalid ELF header magic: != ELF
[ 1096.598246][T23616] Invalid ELF header magic: != ELF
[ 1096.610357][T23616] Invalid ELF header magic: != ELF
[ 1096.638116][T23616] Invalid ELF header magic: != ELF
[ 1096.666558][T23616] Invalid ELF header magic: != ELF
[ 1096.691817][T23616] Invalid ELF header magic: != ELF
[ 1096.726215][T23616] Invalid ELF header magic: != ELF
[ 1096.753278][T23616] Invalid ELF header magic: != ELF
[ 1096.780294][T23616] Invalid ELF header magic: != ELF
[ 1096.785759][T23616] Invalid ELF header magic: != ELF
[ 1096.832735][T23616] Invalid ELF header magic: != ELF
[ 1096.838067][T23616] Invalid ELF header magic: != ELF
[ 1096.886957][T23616] Invalid ELF header magic: != ELF
[ 1096.912544][T23616] Invalid ELF header magic: != ELF
[ 1096.917873][T23616] Invalid ELF header magic: != ELF
[ 1096.939727][T23616] Invalid ELF header magic: != ELF
[ 1096.966579][T23616] Invalid ELF header magic: != ELF
[ 1096.980781][T23628] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3866'.
[ 1098.303162][T23604] Process accounting paused
[ 1098.431596][T23644] FAULT_INJECTION: forcing a failure.
[ 1098.431596][T23644] name failslab, interval 1, probability 0, space 0, times 0
[ 1098.451104][T23644] CPU: 0 UID: 0 PID: 23644 Comm: syz.4.3870 Not tainted 6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1098.451139][T23644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1098.451156][T23644] Call Trace:
[ 1098.451164][T23644]  <TASK>
[ 1098.451175][T23644]  dump_stack_lvl+0x16c/0x1f0
[ 1098.451217][T23644]  should_fail_ex+0x497/0x5b0
[ 1098.451259][T23644]  should_failslab+0xc2/0x120
[ 1098.451286][T23644]  kmem_cache_alloc_noprof+0x6e/0x3b0
[ 1098.451323][T23644]  ? skb_clone+0x190/0x3f0
[ 1098.451354][T23644]  skb_clone+0x190/0x3f0
[ 1098.451380][T23644]  netlink_deliver_tap+0xafd/0xca0
[ 1098.451418][T23644]  netlink_unicast+0x6b4/0x7f0
[ 1098.451453][T23644]  ? __pfx_netlink_unicast+0x10/0x10
[ 1098.451481][T23644]  ? genl_rcv_msg+0x4bd/0x800
[ 1098.451524][T23644]  netlink_ack+0x6a5/0xb20
[ 1098.451565][T23644]  netlink_rcv_skb+0x327/0x410
[ 1098.451595][T23644]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1098.451632][T23644]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1098.451686][T23644]  ? down_read+0xc9/0x330
[ 1098.451710][T23644]  ? __pfx_down_read+0x10/0x10
[ 1098.451736][T23644]  ? netlink_deliver_tap+0x1ae/0xca0
[ 1098.451772][T23644]  genl_rcv+0x28/0x40
[ 1098.451802][T23644]  netlink_unicast+0x53c/0x7f0
[ 1098.451836][T23644]  ? __pfx_netlink_unicast+0x10/0x10
[ 1098.451868][T23644]  ? __phys_addr_symbol+0x30/0x80
[ 1098.451899][T23644]  ? __check_object_size+0x488/0x710
[ 1098.451940][T23644]  netlink_sendmsg+0x8b8/0xd70
[ 1098.451975][T23644]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1098.452017][T23644]  __sys_sendto+0x488/0x4f0
[ 1098.452049][T23644]  ? __pfx___sys_sendto+0x10/0x10
[ 1098.452078][T23644]  ? reacquire_held_locks+0x20b/0x4c0
[ 1098.452103][T23644]  ? do_user_addr_fault+0xdc7/0x13f0
[ 1098.452161][T23644]  ? xfd_validate_state+0x5d/0x180
[ 1098.452192][T23644]  __x64_sys_sendto+0xe0/0x1c0
[ 1098.452225][T23644]  ? do_syscall_64+0x91/0x250
[ 1098.452260][T23644]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1098.452294][T23644]  do_syscall_64+0xcd/0x250
[ 1098.452334][T23644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1098.452369][T23644] RIP: 0033:0x7fba6df87bbc
[ 1098.452389][T23644] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[ 1098.452413][T23644] RSP: 002b:00007fba6ee07ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 1098.452438][T23644] RAX: ffffffffffffffda RBX: 00007fba6ee07fc0 RCX: 00007fba6df87bbc
[ 1098.452456][T23644] RDX: 000000000000001c RSI: 00007fba6ee08010 RDI: 0000000000000005
[ 1098.452471][T23644] RBP: 0000000000000000 R08: 00007fba6ee07f14 R09: 000000000000000c
[ 1098.452486][T23644] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005
[ 1098.452501][T23644] R13: 00007fba6ee07f68 R14: 00007fba6ee08010 R15: 0000000000000000
[ 1098.452534][T23644]  </TASK>
[ 1099.446243][T23657] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3873'.
[ 1099.732448][T23668] binder: 23665:23668 ioctl c00c620f 9 returned -14
[ 1102.020690][T23729] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1102.059070][T23729] Invalid ELF header magic: != ELF
[ 1102.187704][T23711] binder: 23705:23711 ioctl c00c620f 9 returned -14
[ 1104.147579][T18476] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1104.325322][T18476] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1104.374822][T20932] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1104.386197][T20932] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1104.400332][T20932] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1104.495010][T18476] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1104.505892][T20932] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1104.521998][T20932] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1104.530661][T20932] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1104.630596][T18476] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1105.168428][T18476] bridge_slave_1: left allmulticast mode
[ 1105.198808][T18476] bridge_slave_1: left promiscuous mode
[ 1105.205420][T18476] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1105.238648][T18476] bridge_slave_0: left allmulticast mode
[ 1105.244539][T18476] bridge_slave_0: left promiscuous mode
[ 1105.259986][T18476] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1105.974413][T23797] binder: 23794:23797 ioctl c00c620f 9 returned -22
[ 1106.471858][T18476] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1106.510622][T18476] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1106.541126][T18476] bond0 (unregistering): Released all slaves
[ 1106.568537][T23777] chnl_net:caif_netlink_parms(): no params data found
[ 1106.625286][ T5841] Bluetooth: hci1: command tx timeout
[ 1106.642294][T18476] HfR: left promiscuous mode
[ 1107.160708][T23777] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1107.188424][T23777] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1107.197328][T23777] bridge_slave_0: entered allmulticast mode
[ 1107.210787][T23777] bridge_slave_0: entered promiscuous mode
[ 1107.249013][T23777] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1107.267914][T23777] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1107.280092][T23777] bridge_slave_1: entered allmulticast mode
[ 1107.301070][T23777] bridge_slave_1: entered promiscuous mode
[ 1107.443530][T23777] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1107.603742][T23777] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1107.711133][T23777] team0: Port device team_slave_0 added
[ 1107.837859][T23777] team0: Port device team_slave_1 added
[ 1108.018965][T23777] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1108.039574][T23777] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1108.119666][T23777] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1108.186217][T23777] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1108.195086][T23830] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3908'.
[ 1108.205576][T23777] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1108.234615][T23777] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1108.248055][T23830] vivid-013: =================  START STATUS  =================
[ 1108.256097][T23830] vivid-013: Generate PTS: true
[ 1108.263542][T23830] vivid-013: Generate SCR: true
[ 1108.278731][T23830] tpg source WxH: 640x360 (Y'CbCr)
[ 1108.288859][T23830] tpg field: 1
[ 1108.298100][T23830] tpg crop: 640x360@0x0
[ 1108.310315][T23830] tpg compose: 640x360@0x0
[ 1108.319614][T23830] tpg colorspace: 8
[ 1108.335109][T23830] tpg transfer function: 0/0
[ 1108.341821][T18476] hsr_slave_0: left promiscuous mode
[ 1108.379648][T23830] tpg Y'CbCr encoding: 0/0
[ 1108.384108][T23830] tpg quantization: 0/0
[ 1108.388304][T23830] tpg RGB range: 0/2
[ 1108.407941][T18476] hsr_slave_1: left promiscuous mode
[ 1108.414492][T18476] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1108.429763][T18476] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1108.447705][T23830] vivid-013: ==================  END STATUS  ==================
[ 1108.456240][T18476] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1108.468144][T18476] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1108.561497][T18476] veth1_macvtap: left promiscuous mode
[ 1108.580722][T18476] veth0_macvtap: left promiscuous mode
[ 1108.586347][T18476] veth1_vlan: left promiscuous mode
[ 1108.644262][T18476] veth0_vlan: left promiscuous mode
[ 1108.651833][T23839] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3912'.
[ 1108.699742][ T5841] Bluetooth: hci1: command tx timeout
[ 1108.715001][T23841] vivid-013: =================  START STATUS  =================
[ 1108.765239][T23841] vivid-013: Generate PTS: true
[ 1108.778096][T23841] vivid-013: Generate SCR: true
[ 1108.783124][T23841] tpg source WxH: 640x360 (Y'CbCr)
[ 1108.791421][T23841] tpg field: 1
[ 1108.797819][T23841] tpg crop: 640x360@0x0
[ 1108.802596][T23841] tpg compose: 640x360@0x0
[ 1108.807056][T23841] tpg colorspace: 8
[ 1108.835134][T23841] tpg transfer function: 0/0
[ 1108.869702][T23841] tpg Y'CbCr encoding: 0/0
[ 1108.874234][T23841] tpg quantization: 0/0
[ 1108.878412][T23841] tpg RGB range: 0/2
[ 1108.949748][T23841] vivid-013: ==================  END STATUS  ==================
[ 1110.317051][T18476] team0 (unregistering): Port device team_slave_1 removed
[ 1110.383818][T18476] team0 (unregistering): Port device team_slave_0 removed
[ 1110.510195][T23862] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[ 1110.532941][T23862] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[ 1110.785091][ T5841] Bluetooth: hci1: command tx timeout
[ 1111.249071][T23777] hsr_slave_0: entered promiscuous mode
[ 1111.256652][T23777] hsr_slave_1: entered promiscuous mode
[ 1111.737387][T23777] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1111.822874][T23777] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1111.867455][T23777] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1111.943133][T23777] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1112.218940][T23777] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1112.237135][T23904] Invalid ELF header magic: != ELF
[ 1112.256532][T23906] FAULT_INJECTION: forcing a failure.
[ 1112.256532][T23906] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1112.276800][T23777] 8021q: adding VLAN 0 to HW filter on device team0
[ 1112.308456][T23906] CPU: 0 UID: 0 PID: 23906 Comm: syz.1.3922 Not tainted 6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1112.308489][T23906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1112.308505][T23906] Call Trace:
[ 1112.308513][T23906]  <TASK>
[ 1112.308522][T23906]  dump_stack_lvl+0x16c/0x1f0
[ 1112.308563][T23906]  should_fail_ex+0x497/0x5b0
[ 1112.308600][T23906]  ? fs_reclaim_acquire+0xae/0x150
[ 1112.308635][T23906]  should_fail_alloc_page+0xe7/0x130
[ 1112.308660][T23906]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1112.308690][T23906]  ? register_lock_class+0xb1/0x1240
[ 1112.308715][T23906]  ? __memcg_kmem_charge_page+0x1b0/0x2b0
[ 1112.308755][T23906]  __alloc_pages_noprof+0x18e/0x2470
[ 1112.308808][T23906]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1112.308845][T23906]  ? hlock_class+0x4e/0x130
[ 1112.308875][T23906]  ? __lock_acquire+0x15a9/0x3c40
[ 1112.308911][T23906]  ? hlock_class+0x4e/0x130
[ 1112.308940][T23906]  ? mark_lock+0xb5/0xc60
[ 1112.308963][T23906]  ? __pfx___lock_acquire+0x10/0x10
[ 1112.308985][T23906]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1112.309016][T23906]  ? policy_nodemask+0xea/0x4e0
[ 1112.309042][T23906]  alloc_pages_mpol_noprof+0x2c8/0x620
[ 1112.309072][T23906]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1112.309103][T23906]  ? find_held_lock+0x2d/0x110
[ 1112.309133][T23906]  ? find_held_lock+0x2d/0x110
[ 1112.309171][T23906]  pte_alloc_one+0x20/0x390
[ 1112.309198][T23906]  __pte_alloc+0x6e/0x3b0
[ 1112.309227][T23906]  ? __pfx___pte_alloc+0x10/0x10
[ 1112.309253][T23906]  ? __pfx___might_resched+0x10/0x10
[ 1112.309287][T23906]  copy_page_range+0x3649/0x55c0
[ 1112.309366][T23906]  ? __pfx_copy_page_range+0x10/0x10
[ 1112.309400][T23906]  ? find_held_lock+0x2d/0x110
[ 1112.309438][T23906]  ? __pfx_lock_release+0x10/0x10
[ 1112.309460][T23906]  ? lock_acquire+0x2f/0xb0
[ 1112.309486][T23906]  ? copy_mm+0x1213/0x2640
[ 1112.309519][T23906]  ? down_write+0x14e/0x200
[ 1112.309546][T23906]  ? up_write+0x1b2/0x520
[ 1112.309578][T23906]  copy_mm+0x12bb/0x2640
[ 1112.309620][T23906]  ? __pfx_copy_mm+0x10/0x10
[ 1112.309651][T23906]  ? copy_process+0x3ca7/0x6f20
[ 1112.309689][T23906]  ? __raw_spin_lock_init+0x3a/0x110
[ 1112.309722][T23906]  copy_process+0x3e6d/0x6f20
[ 1112.309767][T23906]  ? __pfx_copy_process+0x10/0x10
[ 1112.309802][T23906]  ? futex_wait+0x121/0x380
[ 1112.309835][T23906]  kernel_clone+0xfd/0x960
[ 1112.309867][T23906]  ? __pfx_kernel_clone+0x10/0x10
[ 1112.309906][T23906]  ? do_futex+0x123/0x350
[ 1112.309941][T23906]  ? __pfx_do_futex+0x10/0x10
[ 1112.309981][T23906]  __do_sys_clone+0xba/0x100
[ 1112.310012][T23906]  ? __pfx___do_sys_clone+0x10/0x10
[ 1112.310069][T23906]  do_syscall_64+0xcd/0x250
[ 1112.310106][T23906]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1112.310141][T23906] RIP: 0033:0x7f3959385d29
[ 1112.310163][T23906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1112.310189][T23906] RSP: 002b:00007f395a250fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1112.310213][T23906] RAX: ffffffffffffffda RBX: 00007f3959575fa0 RCX: 00007f3959385d29
[ 1112.310231][T23906] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
[ 1112.310247][T23906] RBP: 00007f3959401b08 R08: 0000000000000000 R09: 0000000000000000
[ 1112.310263][T23906] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1112.310278][T23906] R13: 0000000000000000 R14: 00007f3959575fa0 R15: 00007fffbfa4a978
[ 1112.310313][T23906]  </TASK>
[ 1112.384280][T23777] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1112.779917][T23777] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1112.797751][T22918] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1112.804925][T22918] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1112.836650][T22918] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1112.843801][T22918] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1112.863525][ T5841] Bluetooth: hci1: command tx timeout
[ 1113.184485][T23777] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1113.943538][T23777] veth0_vlan: entered promiscuous mode
[ 1113.968196][T23777] veth1_vlan: entered promiscuous mode
[ 1114.085821][T23777] veth0_macvtap: entered promiscuous mode
[ 1114.102321][T23777] veth1_macvtap: entered promiscuous mode
[ 1114.162171][T23777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1114.196860][T23777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.237310][T23777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1114.268793][T23777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.299106][T23777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1114.316355][T23957] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3928'.
[ 1114.325525][T23777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.337470][T23777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1114.375944][T23777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.402571][T23960] vivid-013: =================  START STATUS  =================
[ 1114.404671][T23777] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1114.424798][T23960] vivid-013: Generate PTS: true
[ 1114.449543][T23960] vivid-013: Generate SCR: true
[ 1114.456841][T23777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1114.466384][T23960] tpg source WxH: 640x360 (Y'CbCr)
[ 1114.477150][T23960] tpg field: 1
[ 1114.482789][T23777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.503489][T23960] tpg crop: 640x360@0x0
[ 1114.527986][T23960] tpg compose: 640x360@0x0
[ 1114.549944][T23960] tpg colorspace: 8
[ 1114.569621][T23960] tpg transfer function: 0/0
[ 1114.574317][T23960] tpg Y'CbCr encoding: 0/0
[ 1114.579425][T23960] tpg quantization: 0/0
[ 1114.583849][T23777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1114.604605][T23960] tpg RGB range: 0/2
[ 1114.608613][T23777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.634697][T23960] vivid-013: ==================  END STATUS  ==================
[ 1114.643825][T23777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1114.677174][T23777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.699708][T23777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1114.732736][T23777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1114.777516][T23777] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1114.824075][T23777] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1114.840523][T23777] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1114.879622][T23777] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1114.888888][T23777] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1115.178006][T18846] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1115.219912][T18846] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1115.277736][T22918] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1115.308204][T22918] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1115.981733][T23998] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3899'.
[ 1116.019186][T23998] ipvlan0: entered promiscuous mode
[ 1116.034806][T23998] ipvlan0: entered allmulticast mode
[ 1116.068379][T23998] veth0_vlan: entered allmulticast mode
[ 1116.142857][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.149287][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.319150][T24015] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3936'.
[ 1117.096802][T24023] erspan0: entered allmulticast mode
[ 1117.374762][T24011] netlink: 326 bytes leftover after parsing attributes in process `syz.1.3935'.
[ 1117.740064][T24042] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3940'.
[ 1117.760484][T24042] vivid-013: =================  START STATUS  =================
[ 1117.768159][T24042] vivid-013: Generate PTS: true
[ 1117.839580][T24042] vivid-013: Generate SCR: true
[ 1117.844512][T24042] tpg source WxH: 640x360 (Y'CbCr)
[ 1117.913041][T24042] tpg field: 1
[ 1117.926873][T24042] tpg crop: 640x360@0x0
[ 1117.966781][T24042] tpg compose: 640x360@0x0
[ 1118.004057][T24042] tpg colorspace: 8
[ 1118.024453][T24042] tpg transfer function: 0/0
[ 1118.044540][T24042] tpg Y'CbCr encoding: 0/0
[ 1118.079777][T24042] tpg quantization: 0/0
[ 1118.084069][T24042] tpg RGB range: 0/2
[ 1118.087985][T24042] vivid-013: ==================  END STATUS  ==================
[ 1121.398354][T24128] Invalid ELF header magic: != ELF
[ 1122.835597][T24160] netlink: 206 bytes leftover after parsing attributes in process `syz.4.3959'.
[ 1123.303592][T24185] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3965'.
[ 1123.374627][T24189] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3965'.
[ 1123.431508][T24189] veth1_macvtap: left promiscuous mode
[ 1123.431518][T24191] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3966'.
[ 1123.610934][T24191] hsr_slave_1 (unregistering): left promiscuous mode
[ 1123.949665][T24202] can: request_module (can-proto-5) failed.
[ 1124.701266][T24215] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3969'.
[ 1124.830962][T24211] kexec: Could not allocate control_code_buffer
[ 1126.645694][T24259] Invalid ELF header magic: != ELF
[ 1127.424471][T24269] binder: 24250:24269 ioctl c00c620f 9 returned -22
[ 1130.015458][T24305] can: request_module (can-proto-0) failed.
[ 1130.823468][T24337] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3990'.
[ 1131.076055][T24318] Invalid ELF header magic: != ELF
[ 1131.190224][T24317] Invalid ELF header magic: != ELF
[ 1131.815553][T24362] HfR: entered promiscuous mode
[ 1131.863504][T24362] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3995'.
[ 1132.129897][T24362] HfR: left promiscuous mode
[ 1132.929793][T24388] i2c i2c-0: delete_device: Can't parse I2C address
[ 1133.618226][T24414] Process accounting resumed
[ 1133.735769][T24412] Process accounting resumed
[ 1137.281885][T24508] netlink: 130 bytes leftover after parsing attributes in process `syz.4.4017'.
[ 1137.352078][T24508] netlink: 130 bytes leftover after parsing attributes in process `syz.4.4017'.
[ 1137.580278][T24518] netlink: 342 bytes leftover after parsing attributes in process `syz.7.4018'.
[ 1137.998673][T24530] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1138.342127][T24530] Invalid ELF header magic: != ELF
[ 1140.385357][T24547] binder: 24545:24547 ioctl c00c620f 9 returned -22
[ 1141.215116][T24609] Invalid ELF header magic: != ELF
[ 1142.793201][T24637] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4039'.
[ 1143.539757][T24620] binder: 24618:24620 ioctl c00c620f 9 returned -22
[ 1144.603593][T24665] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4044'.
[ 1144.625876][T24665] vivid-013: =================  START STATUS  =================
[ 1144.649599][T24665] vivid-013: Generate PTS: true
[ 1144.710617][T24665] vivid-013: Generate SCR: true
[ 1144.749724][T24665] tpg source WxH: 640x360 (Y'CbCr)
[ 1144.754888][T24665] tpg field: 1
[ 1144.796487][T24665] tpg crop: 640x360@0x0
[ 1144.814867][T24665] tpg compose: 640x360@0x0
[ 1144.838232][T24665] tpg colorspace: 8
[ 1144.855992][T24665] tpg transfer function: 0/0
[ 1144.866176][T24665] tpg Y'CbCr encoding: 0/0
[ 1144.943063][T24665] tpg quantization: 0/0
[ 1144.959353][T24671] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4046'.
[ 1145.014263][T24665] tpg RGB range: 0/2
[ 1145.018206][T24665] vivid-013: ==================  END STATUS  ==================
[ 1145.900798][T24677] ptrace attach of "./syz-executor exec"[16087] was attempted by "./syz-executor exec"[24677]
[ 1150.341567][T24750] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4066'.
[ 1150.359128][T24750] vivid-013: =================  START STATUS  =================
[ 1150.367552][T24750] vivid-013: Generate PTS: true
[ 1150.386326][T24750] vivid-013: Generate SCR: true
[ 1150.388136][T24752] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4065'.
[ 1150.403080][T24750] tpg source WxH: 640x360 (Y'CbCr)
[ 1150.415495][T24750] tpg field: 1
[ 1150.439698][T24750] tpg crop: 640x360@0x0
[ 1150.443910][T24750] tpg compose: 640x360@0x0
[ 1150.448344][T24750] tpg colorspace: 8
[ 1150.471991][T24750] tpg transfer function: 0/0
[ 1150.476636][T24750] tpg Y'CbCr encoding: 0/0
[ 1150.492139][T24750] tpg quantization: 0/0
[ 1150.518498][T24750] tpg RGB range: 0/2
[ 1150.528396][T24750] vivid-013: ==================  END STATUS  ==================
[ 1150.543636][T24752] vivid-013: =================  START STATUS  =================
[ 1150.568109][T24752] vivid-013: Generate PTS: true
[ 1150.605911][T24752] vivid-013: Generate SCR: true
[ 1150.627721][T24752] tpg source WxH: 640x360 (Y'CbCr)
[ 1150.655283][T24752] tpg field: 1
[ 1150.665403][T24752] tpg crop: 640x360@0x0
[ 1150.673642][T24752] tpg compose: 640x360@0x0
[ 1150.679658][T24752] tpg colorspace: 8
[ 1150.688306][T24752] tpg transfer function: 0/0
[ 1150.699592][T24752] tpg Y'CbCr encoding: 0/0
[ 1150.709069][T24752] tpg quantization: 0/0
[ 1150.714101][T24752] tpg RGB range: 0/2
[ 1150.718653][T24752] vivid-013: ==================  END STATUS  ==================
[ 1150.808948][T24758] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4067'.
[ 1151.219960][T24778] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4071'.
[ 1151.613282][T24786] vivid-013: =================  START STATUS  =================
[ 1151.621602][T24786] vivid-013: Generate PTS: true
[ 1151.626765][T24786] vivid-013: Generate SCR: true
[ 1151.667204][T24786] tpg source WxH: 640x360 (Y'CbCr)
[ 1151.716133][T24786] tpg field: 1
[ 1151.721908][T24786] tpg crop: 640x360@0x0
[ 1151.729562][T24786] tpg compose: 640x360@0x0
[ 1151.740704][T24786] tpg colorspace: 8
[ 1151.759635][T24786] tpg transfer function: 0/0
[ 1151.769570][T24786] tpg Y'CbCr encoding: 0/0
[ 1151.786101][T24786] tpg quantization: 0/0
[ 1151.801047][T24786] tpg RGB range: 0/2
[ 1151.809652][T24786] vivid-013: ==================  END STATUS  ==================
[ 1152.383815][T24810] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4077'.
[ 1152.436112][T24813] vivid-013: =================  START STATUS  =================
[ 1152.486190][T24813] vivid-013: Generate PTS: true
[ 1152.514056][T24813] vivid-013: Generate SCR: true
[ 1152.518987][T24813] tpg source WxH: 640x360 (Y'CbCr)
[ 1152.610686][T24813] tpg field: 1
[ 1152.614185][T24813] tpg crop: 640x360@0x0
[ 1152.647976][T24813] tpg compose: 640x360@0x0
[ 1152.710561][T24813] tpg colorspace: 8
[ 1152.769765][T24813] tpg transfer function: 0/0
[ 1152.823436][T24813] tpg Y'CbCr encoding: 0/0
[ 1152.839682][T24813] tpg quantization: 0/0
[ 1152.855478][T24813] tpg RGB range: 0/2
[ 1152.866882][T24813] vivid-013: ==================  END STATUS  ==================
[ 1153.047232][T24830] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4081'.
[ 1153.349828][T24834] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4082'.
[ 1153.412800][T24837] openvswitch: netlink: Flow key attr not present in new flow.
[ 1153.682179][   T29] audit: type=1800 audit(4294967429.742:23): pid=24842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.4085" name="dbroot" dev="configfs" ino=100022 res=0 errno=0
[ 1153.683977][T24842] db_root: cannot open: �
[ 1153.770664][T24833] netlink: 206 bytes leftover after parsing attributes in process `syz.5.4083'.
[ 1154.888550][T24851] nvme_fabrics: unknown parameter or missing value '7' in ctrl creation request
[ 1155.780453][T24862] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4090'.
[ 1155.812213][T24862] vivid-013: =================  START STATUS  =================
[ 1155.862412][T24862] vivid-013: Generate PTS: true
[ 1155.868708][T24862] vivid-013: Generate SCR: true
[ 1155.911167][T24862] tpg source WxH: 640x360 (Y'CbCr)
[ 1155.930516][T24862] tpg field: 1
[ 1155.950095][T24862] tpg crop: 640x360@0x0
[ 1155.980872][T24862] tpg compose: 640x360@0x0
[ 1156.012068][T24862] tpg colorspace: 8
[ 1156.029664][T24862] tpg transfer function: 0/0
[ 1156.038596][T24862] tpg Y'CbCr encoding: 0/0
[ 1156.049866][T24862] tpg quantization: 0/0
[ 1156.059848][T24862] tpg RGB range: 0/2
[ 1156.079864][T24862] vivid-013: ==================  END STATUS  ==================
[ 1158.277821][T24912] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4103'.
[ 1158.318674][T24912] vivid-013: =================  START STATUS  =================
[ 1158.347961][T24912] vivid-013: Generate PTS: true
[ 1158.361143][T24912] vivid-013: Generate SCR: true
[ 1158.377129][T24912] tpg source WxH: 640x360 (Y'CbCr)
[ 1158.399134][T24912] tpg field: 1
[ 1158.409250][T24912] tpg crop: 640x360@0x0
[ 1158.438987][T24912] tpg compose: 640x360@0x0
[ 1158.449620][T24912] tpg colorspace: 8
[ 1158.470374][T24912] tpg transfer function: 0/0
[ 1158.497736][T24912] tpg Y'CbCr encoding: 0/0
[ 1158.513221][T24912] tpg quantization: 0/0
[ 1158.523001][T24912] tpg RGB range: 0/2
[ 1158.533460][T24912] vivid-013: ==================  END STATUS  ==================
[ 1158.739539][T24925] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[ 1159.388123][T24953] FAULT_INJECTION: forcing a failure.
[ 1159.388123][T24953] name failslab, interval 1, probability 0, space 0, times 0
[ 1159.510158][T24953] CPU: 0 UID: 0 PID: 24953 Comm: syz.5.4113 Not tainted 6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1159.510189][T24953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1159.510203][T24953] Call Trace:
[ 1159.510210][T24953]  <TASK>
[ 1159.510219][T24953]  dump_stack_lvl+0x16c/0x1f0
[ 1159.510256][T24953]  should_fail_ex+0x497/0x5b0
[ 1159.510288][T24953]  ? fs_reclaim_acquire+0xae/0x150
[ 1159.510320][T24953]  should_failslab+0xc2/0x120
[ 1159.510344][T24953]  __kmalloc_noprof+0xce/0x4f0
[ 1159.510376][T24953]  ? rcu_is_watching+0x12/0xc0
[ 1159.510404][T24953]  ? vhost_dev_set_owner+0x21b/0xa70
[ 1159.510439][T24953]  vhost_dev_set_owner+0x21b/0xa70
[ 1159.510478][T24953]  vhost_dev_ioctl+0x937/0xe20
[ 1159.510513][T24953]  ? __pfx_vhost_dev_ioctl+0x10/0x10
[ 1159.510556][T24953]  vhost_vsock_dev_ioctl+0x3aa/0xb50
[ 1159.510588][T24953]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[ 1159.510622][T24953]  ? __fget_files+0x206/0x3a0
[ 1159.510656][T24953]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[ 1159.510688][T24953]  __x64_sys_ioctl+0x190/0x200
[ 1159.510718][T24953]  do_syscall_64+0xcd/0x250
[ 1159.510752][T24953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1159.510786][T24953] RIP: 0033:0x7f6d19b85d29
[ 1159.510805][T24953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1159.510827][T24953] RSP: 002b:00007f6d1a9d3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1159.510849][T24953] RAX: ffffffffffffffda RBX: 00007f6d19d75fa0 RCX: 00007f6d19b85d29
[ 1159.510864][T24953] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000003
[ 1159.510878][T24953] RBP: 00007f6d1a9d3090 R08: 0000000000000000 R09: 0000000000000000
[ 1159.510891][T24953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1159.510903][T24953] R13: 0000000000000000 R14: 00007f6d19d75fa0 R15: 00007fff0210cd18
[ 1159.510934][T24953]  </TASK>
[ 1160.303381][T24970] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4115'.
[ 1160.313856][T24970] vivid-013: =================  START STATUS  =================
[ 1160.350713][T24970] vivid-013: Generate PTS: true
[ 1160.355632][T24970] vivid-013: Generate SCR: true
[ 1160.387378][T24970] tpg source WxH: 640x360 (Y'CbCr)
[ 1160.416741][T24970] tpg field: 1
[ 1160.429594][T24970] tpg crop: 640x360@0x0
[ 1160.434038][T24970] tpg compose: 640x360@0x0
[ 1160.494559][T24970] tpg colorspace: 8
[ 1160.507723][T24970] tpg transfer function: 0/0
[ 1160.528827][T24970] tpg Y'CbCr encoding: 0/0
[ 1160.543399][T24970] tpg quantization: 0/0
[ 1160.547814][T24970] tpg RGB range: 0/2
[ 1160.646831][T24970] vivid-013: ==================  END STATUS  ==================
[ 1161.223551][T24968] Malformed UNC in devname
[ 1161.223551][T24968] 
[ 1161.289707][T24968] CIFS: VFS: Malformed UNC in devname
[ 1162.001455][T24999] FAULT_INJECTION: forcing a failure.
[ 1162.001455][T24999] name failslab, interval 1, probability 0, space 0, times 0
[ 1162.104982][T24999] CPU: 1 UID: 0 PID: 24999 Comm: syz.1.4122 Not tainted 6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1162.105013][T24999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1162.105026][T24999] Call Trace:
[ 1162.105040][T24999]  <TASK>
[ 1162.105050][T24999]  dump_stack_lvl+0x16c/0x1f0
[ 1162.105087][T24999]  should_fail_ex+0x497/0x5b0
[ 1162.105121][T24999]  ? fs_reclaim_acquire+0xae/0x150
[ 1162.105153][T24999]  should_failslab+0xc2/0x120
[ 1162.105176][T24999]  __kmalloc_cache_noprof+0x68/0x420
[ 1162.105208][T24999]  ? __pfx_vsnprintf+0x10/0x10
[ 1162.105238][T24999]  ? __pfx_vhost_worker_killed+0x10/0x10
[ 1162.105263][T24999]  ? __pfx_vhost_run_work_list+0x10/0x10
[ 1162.105289][T24999]  vhost_task_create+0xd0/0x2b0
[ 1162.105324][T24999]  ? __pfx_vhost_task_create+0x10/0x10
[ 1162.105365][T24999]  ? __pfx_vhost_task_fn+0x10/0x10
[ 1162.105409][T24999]  vhost_worker_create+0x152/0x370
[ 1162.105437][T24999]  ? __pfx_vhost_worker_create+0x10/0x10
[ 1162.105460][T24999]  ? rcu_is_watching+0x12/0xc0
[ 1162.105493][T24999]  ? rcu_is_watching+0x12/0xc0
[ 1162.105521][T24999]  ? vhost_dev_set_owner+0x21b/0xa70
[ 1162.105555][T24999]  vhost_dev_set_owner+0x5c8/0xa70
[ 1162.105594][T24999]  vhost_dev_ioctl+0x937/0xe20
[ 1162.105628][T24999]  ? __pfx_vhost_dev_ioctl+0x10/0x10
[ 1162.105670][T24999]  vhost_vsock_dev_ioctl+0x3aa/0xb50
[ 1162.105700][T24999]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[ 1162.105735][T24999]  ? __fget_files+0x206/0x3a0
[ 1162.105769][T24999]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[ 1162.105799][T24999]  __x64_sys_ioctl+0x190/0x200
[ 1162.105828][T24999]  do_syscall_64+0xcd/0x250
[ 1162.105863][T24999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1162.105896][T24999] RIP: 0033:0x7f3959385d29
[ 1162.105914][T24999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1162.105935][T24999] RSP: 002b:00007f395a251038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1162.105956][T24999] RAX: ffffffffffffffda RBX: 00007f3959575fa0 RCX: 00007f3959385d29
[ 1162.105970][T24999] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000003
[ 1162.105984][T24999] RBP: 00007f395a251090 R08: 0000000000000000 R09: 0000000000000000
[ 1162.105998][T24999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1162.106012][T24999] R13: 0000000000000000 R14: 00007f3959575fa0 R15: 00007fffbfa4a978
[ 1162.106050][T24999]  </TASK>
[ 1162.538413][T25004] Invalid ELF header magic: != ELF
[ 1162.782936][T25013] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4125'.
[ 1163.246413][T25018] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4127'.
[ 1163.298028][T25020] vivid-013: =================  START STATUS  =================
[ 1163.342063][T25021] can: request_module (can-proto-0) failed.
[ 1163.367892][T25020] vivid-013: Generate PTS: true
[ 1163.414323][T25020] vivid-013: Generate SCR: true
[ 1163.479642][T25020] tpg source WxH: 640x360 (Y'CbCr)
[ 1163.484843][T25020] tpg field: 1
[ 1163.488263][T25020] tpg crop: 640x360@0x0
[ 1163.610427][T25020] tpg compose: 640x360@0x0
[ 1163.629605][T25020] tpg colorspace: 8
[ 1163.650425][T25020] tpg transfer function: 0/0
[ 1163.659966][T25020] tpg Y'CbCr encoding: 0/0
[ 1163.684834][T25020] tpg quantization: 0/0
[ 1163.704846][T25020] tpg RGB range: 0/2
[ 1163.722233][T25020] vivid-013: ==================  END STATUS  ==================
[ 1163.989686][T25017] Process accounting paused
[ 1164.180288][T25040] FAULT_INJECTION: forcing a failure.
[ 1164.180288][T25040] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1164.229560][T25040] CPU: 1 UID: 0 PID: 25040 Comm: syz.1.4133 Not tainted 6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1164.229591][T25040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1164.229604][T25040] Call Trace:
[ 1164.229611][T25040]  <TASK>
[ 1164.229620][T25040]  dump_stack_lvl+0x16c/0x1f0
[ 1164.229655][T25040]  should_fail_ex+0x497/0x5b0
[ 1164.229680][T25040]  _copy_to_user+0x32/0xd0
[ 1164.229696][T25040]  simple_read_from_buffer+0xd0/0x160
[ 1164.229715][T25040]  proc_fail_nth_read+0x198/0x270
[ 1164.229731][T25040]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1164.229748][T25040]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1164.229763][T25040]  vfs_read+0x1df/0xbe0
[ 1164.229781][T25040]  ? __fget_files+0x1fc/0x3a0
[ 1164.229800][T25040]  ? __pfx___mutex_lock+0x10/0x10
[ 1164.229821][T25040]  ? __pfx_vfs_read+0x10/0x10
[ 1164.229843][T25040]  ? __fget_files+0x206/0x3a0
[ 1164.229866][T25040]  ksys_read+0x12b/0x250
[ 1164.229883][T25040]  ? __pfx_ksys_read+0x10/0x10
[ 1164.229905][T25040]  do_syscall_64+0xcd/0x250
[ 1164.229927][T25040]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1164.229949][T25040] RIP: 0033:0x7f395938473c
[ 1164.229961][T25040] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1164.229974][T25040] RSP: 002b:00007f395a251030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1164.229988][T25040] RAX: ffffffffffffffda RBX: 00007f3959575fa0 RCX: 00007f395938473c
[ 1164.229997][T25040] RDX: 000000000000000f RSI: 00007f395a2510a0 RDI: 0000000000000004
[ 1164.230005][T25040] RBP: 00007f395a251090 R08: 0000000000000000 R09: 0000000000000000
[ 1164.230014][T25040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1164.230021][T25040] R13: 0000000000000000 R14: 00007f3959575fa0 R15: 00007fffbfa4a978
[ 1164.230038][T25040]  </TASK>
[ 1164.418914][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1166.292259][T25063] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4141'.
[ 1166.778868][T25078] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4145'.
[ 1167.018997][T25086] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4144'.
[ 1167.228872][T25068] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1167.238570][T25068] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1167.244847][T25068] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1167.251232][T25068] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1167.263046][T25068] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1167.305519][T20932] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1167.331782][T20932] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1167.347263][T20932] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1167.357183][T20932] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1167.366146][T20932] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1167.379737][T20932] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1167.696400][T22920] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1167.898830][T22920] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1167.937766][T25073] chnl_net:caif_netlink_parms(): no params data found
[ 1167.991268][T22920] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1168.191625][T22920] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1168.338561][T25073] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1168.349684][T25073] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1168.359008][T25073] bridge_slave_0: entered allmulticast mode
[ 1168.373249][T25073] bridge_slave_0: entered promiscuous mode
[ 1168.414642][T25073] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1168.443044][T25073] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1168.456165][T25073] bridge_slave_1: entered allmulticast mode
[ 1168.465247][T25073] bridge_slave_1: entered promiscuous mode
[ 1168.595564][T25073] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1168.607041][T25073] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1168.616758][T22920] bridge_slave_1: left allmulticast mode
[ 1168.625681][T22920] bridge_slave_1: left promiscuous mode
[ 1168.630256][T20932] Bluetooth: hci0: command 0x0406 tx timeout
[ 1168.641061][T22920] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1168.653407][T22920] bridge_slave_0: left allmulticast mode
[ 1168.659082][T22920] bridge_slave_0: left promiscuous mode
[ 1168.666416][T22920] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1169.108930][T25073] team0: Port device team_slave_0 added
[ 1169.177596][T25073] team0: Port device team_slave_1 added
[ 1169.260086][T20932] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1169.266171][T20932] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1169.419653][T20932] Bluetooth: hci2: command tx timeout
[ 1169.470816][T25073] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1169.477796][T25073] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1169.508275][T25073] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1169.646499][T25073] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1169.679847][T25073] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1169.739939][T25159] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4164'.
[ 1169.789635][T25073] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1169.815393][T25162] vivid-013: =================  START STATUS  =================
[ 1169.868121][T25162] vivid-013: Generate PTS: true
[ 1169.900256][T25162] vivid-013: Generate SCR: true
[ 1169.905183][T25162] tpg source WxH: 640x360 (Y'CbCr)
[ 1169.919818][T25073] hsr_slave_0: entered promiscuous mode
[ 1169.932515][T25162] tpg field: 1
[ 1169.936531][T25073] hsr_slave_1: entered promiscuous mode
[ 1169.949273][T25162] tpg crop: 640x360@0x0
[ 1169.959541][T25073] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1169.967125][T25073] Cannot create hsr debugfs directory
[ 1169.975902][T25162] tpg compose: 640x360@0x0
[ 1169.995663][T25162] tpg colorspace: 8
[ 1170.019572][T25162] tpg transfer function: 0/0
[ 1170.027378][T25162] tpg Y'CbCr encoding: 0/0
[ 1170.032013][T25162] tpg quantization: 0/0
[ 1170.036999][T25162] tpg RGB range: 0/2
[ 1170.045876][T25162] vivid-013: ==================  END STATUS  ==================
[ 1170.692542][T25187] vcan0: tx drop: invalid da for name 0x000000000000003f
[ 1170.941672][T22920] veth0_macvtap: left promiscuous mode
[ 1170.950063][T22920] veth1_vlan: left promiscuous mode
[ 1170.955459][T22920] veth0_vlan: left promiscuous mode
[ 1171.323759][T25196] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1171.344361][T20932] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1171.485256][T22920] team0 (unregistering): Port device team_slave_1 removed
[ 1171.502801][T20932] Bluetooth: hci2: command tx timeout
[ 1171.532973][T22920] team0 (unregistering): Port device team_slave_0 removed
[ 1172.405573][T25073] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1172.425258][T25073] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1172.444677][T25073] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1172.479999][T25073] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1172.876909][T25073] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1172.933935][T25073] 8021q: adding VLAN 0 to HW filter on device team0
[ 1173.027965][T18476] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1173.035130][T18476] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1173.094174][T18476] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1173.101375][T18476] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1173.335561][T25073] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1173.384839][T25073] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1173.419770][T20932] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1173.590266][T20932] Bluetooth: hci2: command tx timeout
[ 1174.007965][T25073] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1174.567451][T25073] veth0_vlan: entered promiscuous mode
[ 1174.646510][T25073] veth1_vlan: entered promiscuous mode
[ 1174.845794][T25073] veth0_macvtap: entered promiscuous mode
[ 1174.867489][T25073] veth1_macvtap: entered promiscuous mode
[ 1174.914341][T25073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1174.963730][T25073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1174.982864][T25073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1174.994209][T25073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1175.004488][T25073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1175.020586][T25073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1175.030769][T25073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1175.042831][T25073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1175.053703][T25073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1175.064965][T25073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1175.101442][T25073] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1175.212582][T25073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1175.235125][T25073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1175.260046][T25073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1175.294564][T25073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1175.315190][T25073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1175.335964][T25073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1175.355704][T25073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1175.389523][T25073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1175.417132][T25073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1175.438283][T25073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1175.459515][T25073] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1175.519217][T25073] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1175.546239][T25073] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1175.558756][T25073] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1175.571078][T25073] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1175.670214][T20932] Bluetooth: hci2: command tx timeout
[ 1175.721949][T25286] netlink: 342 bytes leftover after parsing attributes in process `syz.7.4181'.
[ 1175.761548][T25287] bridge0: port 4(veth1_to_hsr) entered blocking state
[ 1175.768596][T25287] bridge0: port 4(veth1_to_hsr) entered disabled state
[ 1175.785568][T25287] veth1_to_hsr: entered allmulticast mode
[ 1175.830685][T25287] veth1_to_hsr: entered promiscuous mode
[ 1175.868777][T25287] bridge0: port 4(veth1_to_hsr) entered blocking state
[ 1175.875781][T25287] bridge0: port 4(veth1_to_hsr) entered forwarding state
[ 1176.169099][T18476] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1176.169866][T22918] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1176.199647][T18476] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1176.227744][T22918] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1176.519985][T25296] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4183'.
[ 1177.582604][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.600676][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.425433][T25359] ecryptfs_parse_packet_length: Error parsing packet length
[ 1178.468906][T25359] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[ 1179.573609][T25372] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4194'.
[ 1179.624274][T25372] vivid-013: =================  START STATUS  =================
[ 1179.637252][T25372] vivid-013: Generate PTS: true
[ 1179.647027][T25372] vivid-013: Generate SCR: true
[ 1179.657286][T25372] tpg source WxH: 640x360 (Y'CbCr)
[ 1179.668183][T25372] tpg field: 1
[ 1179.676641][T25372] tpg crop: 640x360@0x0
[ 1179.696244][T25372] tpg compose: 640x360@0x0
[ 1179.729158][T25372] tpg colorspace: 8
[ 1179.740651][T25372] tpg transfer function: 0/0
[ 1179.759392][T25372] tpg Y'CbCr encoding: 0/0
[ 1179.789742][T25372] tpg quantization: 0/0
[ 1179.812927][T25372] tpg RGB range: 0/2
[ 1179.854096][T25372] vivid-013: ==================  END STATUS  ==================
[ 1180.224920][T25387] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1180.338769][T25387] Invalid ELF header magic: != ELF
[ 1181.708439][T25402] could not allocate digest TFM handle 
[ 1182.498745][T25430] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4207'.
[ 1184.662410][T25475] Invalid ELF header magic: != ELF
[ 1184.977575][T25446] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1184.997115][T25446] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1185.005826][T25446] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1185.029535][T25446] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1185.038684][T25446] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1185.064141][T25446] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1185.579569][T20932] Bluetooth: hci0: command 0x0406 tx timeout
[ 1185.687015][T25494] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1186.115432][T25516] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1186.226556][T25516] Invalid ELF header magic: != ELF
[ 1186.818965][T25535] Invalid ELF header magic: != ELF
[ 1187.029752][T20932] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1187.035997][T20932] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1187.039528][ T5841] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1187.721473][T25550] erspan0: entered allmulticast mode
[ 1187.865226][T25536] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4233'.
[ 1187.940965][T25558] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4237'.
[ 1188.075400][T25557] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4237'.
[ 1189.100343][ T5841] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1189.422770][T25580] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4242'.
[ 1189.485167][T25582] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1189.617915][T25582] Invalid ELF header magic: != ELF
[ 1190.185453][T25579] erspan0: left allmulticast mode
[ 1191.179957][ T5841] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1191.434914][   T29] audit: type=1800 audit(4294967323.900:24): pid=25616 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.4250" name="lu_gp_id" dev="configfs" ino=105666 res=0 errno=0
[ 1191.995910][T25638] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1192.032492][T25638] Invalid ELF header magic: != ELF
[ 1192.179521][T25643] sp0: Synchronizing with TNC
[ 1194.469970][T25617] Process accounting resumed
[ 1196.183309][T25691] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4266'.
[ 1196.261577][T25693] vivid-013: =================  START STATUS  =================
[ 1196.299841][T25691] ipvlan0: entered promiscuous mode
[ 1196.305104][T25691] ipvlan0: entered allmulticast mode
[ 1196.362726][T25691] veth0_vlan: entered allmulticast mode
[ 1196.366212][T25693] vivid-013: Generate PTS: true
[ 1196.450710][T25693] vivid-013: Generate SCR: true
[ 1196.484962][T25693] tpg source WxH: 640x360 (Y'CbCr)
[ 1196.512820][T25693] tpg field: 1
[ 1196.516235][T25693] tpg crop: 640x360@0x0
[ 1196.555650][T25693] tpg compose: 640x360@0x0
[ 1196.591906][T25693] tpg colorspace: 8
[ 1196.600851][T25693] tpg transfer function: 0/0
[ 1196.629222][T25693] tpg Y'CbCr encoding: 0/0
[ 1196.645699][T25693] tpg quantization: 0/0
[ 1196.676159][T25693] tpg RGB range: 0/2
[ 1196.698548][T25693] vivid-013: ==================  END STATUS  ==================
[ 1197.017194][T25701] vivid-013: =================  START STATUS  =================
[ 1197.027739][T25701] vivid-013: Generate PTS: true
[ 1197.049573][T25701] vivid-013: Generate SCR: true
[ 1197.058118][T25701] tpg source WxH: 640x360 (Y'CbCr)
[ 1197.110908][T25701] tpg field: 1
[ 1197.114333][T25701] tpg crop: 640x360@0x0
[ 1197.118546][T25701] tpg compose: 640x360@0x0
[ 1197.149562][T25701] tpg colorspace: 8
[ 1197.169396][T25701] tpg transfer function: 0/0
[ 1197.184333][T25701] tpg Y'CbCr encoding: 0/0
[ 1197.236291][T25701] tpg quantization: 0/0
[ 1197.246691][T25701] tpg RGB range: 0/2
[ 1197.251923][T25701] vivid-013: ==================  END STATUS  ==================
[ 1199.352622][T25730] netlink: 342 bytes leftover after parsing attributes in process `syz.7.4275'.
[ 1199.353141][T25730] netlink: 342 bytes leftover after parsing attributes in process `syz.7.4275'.
[ 1199.634508][T25743] netlink: 350 bytes leftover after parsing attributes in process `syz.7.4278'.
[ 1200.587131][T25750] netlink: 93 bytes leftover after parsing attributes in process `syz.7.4280'.
[ 1200.918907][T25755] [U] 
[ 1200.921667][T25755] [U] 
[ 1200.924397][T25755] [U] 
[ 1200.927130][T25755] [U] 
[ 1200.934605][T25753] vivid-013: =================  START STATUS  =================
[ 1200.981790][T25753] vivid-013: Generate PTS: true
[ 1201.003136][T25753] vivid-013: Generate SCR: true
[ 1201.019727][T25755] [U] 
[ 1201.022482][T25755] [U] 
[ 1201.025210][T25755] [U] 
[ 1201.027937][T25755] [U] 
[ 1201.099732][T25755] [U] 
[ 1201.102474][T25755] [U] 
[ 1201.105181][T25755] [U] 
[ 1201.107881][T25755] [U] 
[ 1201.110635][T25753] tpg source WxH: 640x360 (Y'CbCr)
[ 1201.115776][T25753] tpg field: 1
[ 1201.119166][T25753] tpg crop: 640x360@0x0
[ 1201.123796][T25755] [U] 
[ 1201.126534][T25755] [U] 
[ 1201.129268][T25755] [U] 
[ 1201.131988][T25755] [U] 
[ 1201.164448][T25753] tpg compose: 640x360@0x0
[ 1201.169079][T25753] tpg colorspace: 8
[ 1201.169555][T25755] [U] 
[ 1201.175626][T25755] [U] 
[ 1201.177440][T25753] tpg transfer function: 0/0
[ 1201.178325][T25755] [U] 
[ 1201.185612][T25755] [U] 
[ 1201.186637][T25753] tpg Y'CbCr encoding: 0/0
[ 1201.196536][T25753] tpg quantization: 0/0
[ 1201.204299][T25753] tpg RGB range: 0/2
[ 1201.264111][T25755] [U] 
[ 1201.266873][T25755] [U] 
[ 1201.267861][T25753] vivid-013: ==================  END STATUS  ==================
[ 1201.269578][T25755] [U] 
[ 1201.269621][T25755] [U] 
[ 1201.294528][T25755] [U] 
[ 1201.297288][T25755] [U] 
[ 1201.300012][T25755] [U] 
[ 1201.302733][T25755] [U] 
[ 1201.373100][T25755] [U] 
[ 1201.375904][T25755] [U] 
[ 1201.378632][T25755] [U] 
[ 1201.381360][T25755] [U] 
[ 1201.421953][T25755] [U] 
[ 1201.424706][T25755] [U] 
[ 1201.427428][T25755] [U] 
[ 1201.430147][T25755] [U] 
[ 1201.498567][T25755] [U] 
[ 1201.501320][T25755] [U] 
[ 1201.504049][T25755] [U] 
[ 1201.506764][T25755] [U] 
[ 1201.728751][T25755] [U] 
[ 1201.731510][T25755] [U] 
[ 1201.734235][T25755] [U] 
[ 1201.736949][T25755] [U] 
[ 1201.779118][T25755] [U] 
[ 1201.781876][T25755] [U] 
[ 1201.784593][T25755] [U] 
[ 1201.787305][T25755] [U] 
[ 1201.860004][T25755] [U] 
[ 1201.862756][T25755] [U] 
[ 1201.865459][T25755] [U] 
[ 1201.868150][T25755] [U] 
[ 1201.956223][T25764] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4284'.
[ 1201.965285][T25755] [U] 
[ 1201.967988][T25755] [U] C�E�
[ 1201.971301][T25755] [U] 
,�մ�h,�z��&���%�˛i:
[ 1201.976001][T25755] [U] ~��#�n�_
[ 1201.979576][T25755] [U] Ә\��@�D���H��Vm�����HG{��U{�.�I��\+���/�R_��0�Mxq��W@�A��M,��>�Sw�;���D6�"t��X7:�un7J��b�����m �<d�n�T�LҫQ#��.��}��?&�a�^ݍw̭�����Y��!$�Q��mW�/C�䄘#DY F8����)@��!�B�Ӥ�����nƸ��V�����&�1P�xB�����LQ+�a
[ 1202.002351][T25755] [U] :���¼dP�GO�C&�����{X�r͹q�e�/rë�|0W
[ 1202.008346][T25755] [U] ���+\0���A�Y�cÆL5�<f'_)^��vY����?K(A.aK��߀��f+��
[ 1202.016164][T25755] [U] �#v��[�}.6�D�BL�[F����%Cu�ddq6��'�ܗ�!
[ 1202.022771][T25755] [U] �AÍ{'`|)���_+�����!-k�(�y<��|H��;�+O's�+a�M,�NR�]�lX�����n��p���2F�O+�DYK�jd�
[ 1202.033028][T25755] [U] �>�e�nɍx�k�4���C`�ƙ%Ĩ��b�(��8��9�60d�"
[ 1202.040163][T25755] [U] ��oP+�~Z��f��+#�}����<y����X?<��.[�UR�A2�g�]��&$���dž��r�v·b��$B�(�cP�*q}���7�Zе_����]���
{\��C�R��|�5u#���7��K:���s49��ٯ��2h�IR�j�
[ 1202.056421][T25755] [U] �(�4����N�@

[ 1202.060256][T25755] [U] ��
[ 1202.063211][T25755] [U] ��z� e@Ag�!wz��aN�����l���
[ 1202.068588][T25755] [U] `	c���/��&�ތ��d���4
[ 1202.073109][T25755] [U] �`�L�[��f��@hs�]D*�)�|�\��?�UD�K�bz�a{p�@~��ᕗU����	F�ՃW虞�����B>}�~w�lhR�K�&ܣ�}d�3�O�@�8.�d��{΀�JHgR[1�ϣ���C�'�[:B	��K�JV
[ 1202.088149][T25755] [U] g��C���_��&��F��Lj��öqWQ%�%3�/m��Kxv�N}�u�t|_�c�&C\mWc�RV��9�S24p����W���wC��d)�������,��
[ 1202.100319][T25755] [U] �/�Ӝ�+��w&��5�^���������P�3�I����~�+?�2�?k�N�k���<�LH�)�+�����������ww���g嶿t������c�SZD����띸����7�C�"��d��E��}{>U.mV3E�z�U'ldT�ӈ�9�VbJSm�Þ'��Kw��sS�Q����
[ 1202.239700][T25755] [U] p~Ҏ5�9UW5��`m��r�٧T*" #So�5oŢu��?ԫ�I&���j��C���rg,�L�R��`9�>!�_nƠ��uQ�qg&ܽ�y��P�^�,�Q���?��ʮ�����bo�At�bFM���?G����^�c	,�[;����ّk������^`⾲��BNKc�Ln��2I?8�����䩒�l1��̃jƯzJ���瘍R��m]�)��Zݝ|��@���R�yxס� �!
[ 1202.264239][T25755] [U] �tUU�ļX��;i�����V'�y C��)�b��<qʥ�͉�Wc������Z��r�����?�-
[ 1202.272587][T25755] [U] sr1�4
[ 1202.275726][T25755] [U] 0t��~c��%ߒ{
[ 1202.279553][T25755] [U] ��Z�Y�-aT�3��S�G��Pf2����I����wdkse��Hb�̵�w��˜O�P�
[ 1202.286936][T25755] [U] ���e
[ 1202.289972][T25755] [U] ;=�
�k���Z��mɇ=wo&r��Ȱ�i(8�s���YU�g��>�0����o�
[ 1202.297187][T25755] [U] aJ
[ 1202.300050][T25755] [U] +	�_)���"{MDW��z�����k�T��*���cr���2�.��aiNO�ق�,s��u:.�Q28���6,j<�%�ر�Vizm�w�b|$y�E_�0f����>�x�����i�e�*,
陼�oR3�7�k��9o�����m�&�b��ٵ\��|�K/o�c��a��$G�C�lyЈ K�J�W��f~��(�erS��$�i��?�����r�)�^���-c��t��Y���W����va��K�-4��ƒ5:`"�;���y�"�8�Ņʖ��t��\Tc��ɛ�v��\����_�e�bC�lu�^�
[ 1202.329917][T25755] [U] ����Cz����\_
[ 1202.333736][T25755] [U] φ=�q��om���.G	Ց�*�M����`"w̖��7Ywqq�Ġ��?4=L�:�]�ۚGV��rE���#��iOr�
[ 1202.343561][T25755] [U] �˹_�9Jů�Ŭ۰9�''V�:�6?u�V��{:�ƴ����4(�y�Ix�����_�UV��C�o8���?�x����B���پ�*&c�dzPd�:T@�Jl#�Mt61^?�4�E��H��Upՙ�?5�I�2eE���c8vVF��@˥��#���	�;�_��l7ｬ�t�
������Y10@��@&+ӻ�O��D�-�8o��&�_�
[ 1202.364749][T25755] [U] ������]}>VW	�'Pռ)g�Z��@Mf�e]�E9��\�k&L��0lc��p�'-�VE���"vv��O�b]{X{ܹ��/��^����=������R3�[�n�gF�*��)s�ᢑJ��{��fN,{	��ӭk
�����2~�'�
[ 1202.380202][T25755] [U] ��"��5m�R{[��D�U���w����-4�fM�����A�	}��k
c�+J���ۤ�9,�����N8Q6��.hZ�~�;�6��8(j�F	����e�i{k
_w�Z�
W��>�o{hHa��R�F��`�V�,��\�l�
[ 1202.395574][T25755] [U] !偏�f��;+��u�͉�_���
[ 1202.560199][T25755] [U] $���mO��s�H-�1�q�~ߌ�T\�n%g�׈��p�A���1�	,���Q&?�L���K	Q��>�zy�!7*G�Q��8]_���<��Iga�Z�d4���Е�G�lB���Cyl9;��(��j�2�D�JI6@)1@GNVs
��+��;~yI:i����Xs-���'����J�{���ђN�ʯ�����hվ�
[ 1202.580565][T25755] [U] Y�4�|+Y���$
[ 1202.584308][T25755] [U] ���{�-�����k��+﷋㽄lԍ꼷��L���i_2wƨ�o��vh�wg,�S��m����bYYS#R�ɀ2#]��Y��O�P4�O�*U���m=s��SI#W�!r=|
[ 1202.596754][T25755] [U] �(1:ݭ���2�)b�ק�M�  ���[��1�W�Hť�Z+����wK5��՝CZB�&c�֌�
[ 1202.605173][T25755] [U] �<�f��>��t}S&��sT���G
[ 1202.609680][T25755] [U] ���3(���Drx&V|�� �"y��#h&��r� �e���!w�%{b`�lU?/z3m�ρ�W��Ƕ8Ѱ��m�jO�U(��]�aH_�7P1p�_hy�t���TkTq۷D������is.��݃�,3`�7!�oGƭB���&D�_2��E�x�
ϭblb+F���r��L8戇���F��x�5
[ 1202.628696][T25755] [U] *-c�m��h��K<�p�677��c���|�zEz-a����e�c�:��ǻ�^$�9�_:ō�E4{��I��n�'�`�^f����ƨ.j���~6S.	�Ul��)�
[ 1202.640779][T25755] [U] �n�vN�_�`j����|��\N+ͷ�Dⓓ����TL�s��ŻK��{�3���<6hP�s�(������*t+��`��KZٛ��uOk�����" �P���U�a�l�I���C��&�z��@%��~�c�.����i��E���<�u�w�x՗����	��P6��"G[J�d�)�@4s��C4�ǎ�p��#�ݐ�"�}Q��%@�ú+&��%ш܄���-,3ơ�/�7��DA*��2*^��K����纍��0�Ά��0�' @��k��S��.J�zKBu�^�����_���Q�o���e�ˮq�Ϗ�V�b�M�}�;ke�h���<d��O"xH��������-��1��/j��6�b�ާ��W8f��T)����"��E��M�U��Nj;1�or�x��/���:gCXЬ���(��Fr����E�P�s��i�@�Ih	���Z6|1@CjG"�	t0�y������u�.�cd͸sI\
[ 1202.687687][T25755] [U] 5�:�dTq3O�+�<��ؠ=6.E@�w�ȡ
[ 1202.692892][T25755] [U] {/My�:�mM����@䌺V!���$��C%���Xq?=�TPBq:
[ 1202.699828][T25755] [U] U�s>3�]
[ 1202.703200][T25755] [U] �O#��L3g���~�8W����cl�)j�M�
elx�B�W�
[ 1202.709783][T25755] [U] S�g��:�fL�f�t��)��a�$G���EQ�L;�y$V/wm���k�@\
[ 1202.829665][T25755] [U]  �1�ۏtS���뉫�s�S��MW��x)�U���%'�0~�������U���uNq	jG't���Jђ�ץRz��Ɖ�RаN�g�̭���M�����\����*<��N��l(��p�.f!j���h�8�A�"��W��uX�[�������aNT,��X����8��J��ъ��[������3l�y�8�{�6����oލ�Z�N���O*�MV��}K*�$`�dH��e٢�����1n���A��X���-�k�+&��i�*�k.�z43�����R6��]��	�Ș`���m���8�ƍu�����d�3��OB,١��M�í"�Y�Z1�^D�$|45*}5-ϑ��by�(�Kq4��]	
[ 1202.864821][T25755] [U] �,n��B�m����#�H+k!��q �O��eK�i���h��7���c�a!��ʢ�z���V�y0@���@��VM$6\]�ށ�y��P�ȥpRM��(��ǚ�B�ӵC�y�
����`���
[ 1202.878475][T25755] [U] ɕ�J�F�X�
[ 1202.882311][T25755] [U] >����鿴%	F����h�����;oΞ<^�W����՟�6FRc����N��9f�������y>�5�[_8	Z��`i9o��!�K�>Ix�m��V�^B9�$|�� ��!�X���S'?Z+p�`���5ބ��"N��2���G���Ɩ;=A(!2��
[ 1202.898742][T25755] [U] F֧�jӤ�Mw��w�8������A%�^�&%�X���l�	:���Q̓Y��d��B�[�ҁ�Lj ����[���b�f���4�գ���'Ž,&�j�#��IÀ��e�<,�9<�
[ 1202.911896][T25755] [U] eI�֝�PBr�R����)O�yi���}?�Yv}�M��T��%���/a�:�N�t�v~��7JqNG���z����o����vA�b�/!^;�A|��0�G�¹'�ׅ=q��14�R�7d\�GC��X���R�{���4v������
��l��FB���}C*�{�y�5�d�/���Pce�����y��E(\E;	��Y�b���أ
J)�3�"
[ 1202.933106][T25755] [U] �z��3���h�N�cs}��P��IS��%C�,�2�+��A���
[ 1202.939623][T25755] [U] <�?M��Α9�
[ 1202.943545][T25755] [U] �������_[����h��R`V%щ^�.#�G�2�.�y
[ 1202.949640][T25755] [U] �Tb��-UO���I M?��7JZ�ֹ��r�}}��XA|*�O@Y�b�mb�+���r,#��#E�5�Q�6Hd��t�M�q��y�k������PR?�l&-I�
[ 1202.961379][T25755] [U] jd�3?'���&㬘�����ԉ3�=)vV�]@�e.U�'`$�N'
[ 1202.968239][T25755] [U] ���9�
[ 1202.971629][T25755] [U] I���yϠ�;LJ���QF���i��r��Zv�,������yy%xM�ӎy�LUa��}X�O]{ZL��M�8>:/���Ӹ�XDi䣝���z��@膾(8�H�?��U�
[ 1202.983624][T25755] [U] ��h�nʼn���q�G��1�:r���1^��	\�ϗ��1�O�Y�E�n�MȆo�����٨0�N��
Z�ռ�O�u��`BH:{
[ 1203.039793][T25755] [U] F�Oq�{���8
x���zi�yv�|�P�@M	(�<�^�U5S��Tl��ˊ��fX�[��Ń�#o�G���ҁ�IAj��^p��XR�
[ 1203.808570][T25790] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4289'.
[ 1204.456086][T25799] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4291'.
[ 1204.598995][T25801] Invalid ELF header magic: != ELF
[ 1205.097771][T25815] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1205.388348][T25815] Invalid ELF header magic: != ELF
[ 1205.799745][T25830] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4298'.
[ 1207.184096][T25860] vivid-013: =================  START STATUS  =================
[ 1207.191853][T25860] vivid-013: Generate PTS: true
[ 1207.196759][T25860] vivid-013: Generate SCR: true
[ 1207.201873][T25860] tpg source WxH: 640x360 (Y'CbCr)
[ 1207.207008][T25860] tpg field: 1
[ 1207.239658][T25860] tpg crop: 640x360@0x0
[ 1207.249541][T25860] tpg compose: 640x360@0x0
[ 1207.254002][T25860] tpg colorspace: 8
[ 1207.288275][T25860] tpg transfer function: 0/0
[ 1207.293293][T25860] tpg Y'CbCr encoding: 0/0
[ 1207.310771][T25860] tpg quantization: 0/0
[ 1207.338535][T25860] tpg RGB range: 0/2
[ 1207.349967][T25860] vivid-013: ==================  END STATUS  ==================
[ 1208.119028][T25873] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4308'.
[ 1208.689813][T25881] netlink: 330 bytes leftover after parsing attributes in process `syz.4.4309'.
[ 1209.220718][T25891] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 1209.242119][T25891] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1209.929286][T25894] device-mapper: ioctl: Unable to rename non-existent device,  to uuid �
[ 1209.959227][T25904] vivid-013: =================  START STATUS  =================
[ 1209.995635][T25904] vivid-013: Generate PTS: true
[ 1210.000721][T25904] vivid-013: Generate SCR: true
[ 1210.005626][T25904] tpg source WxH: 640x360 (Y'CbCr)
[ 1210.020776][T25904] tpg field: 1
[ 1210.029752][T25904] tpg crop: 640x360@0x0
[ 1210.033963][T25904] tpg compose: 640x360@0x0
[ 1210.039088][T25904] tpg colorspace: 8
[ 1210.048718][T25904] tpg transfer function: 0/0
[ 1210.058420][T25904] tpg Y'CbCr encoding: 0/0
[ 1210.064091][T25904] tpg quantization: 0/0
[ 1210.068274][T25904] tpg RGB range: 0/2
[ 1210.099363][T25904] vivid-013: ==================  END STATUS  ==================
[ 1211.513433][T25931] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4319'.
[ 1212.378401][T25943] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4322'.
[ 1213.017639][T25943] bond0: (slave bond_slave_1): Releasing backup interface
[ 1213.252530][T25948] mtrr: base(0x400000) is not aligned on a size(0x0000) boundary
[ 1213.727346][T25958] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4326'.
[ 1213.860982][T25960] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1214.048022][T25960] Invalid ELF header magic: != ELF
[ 1215.949853][T25993] vivid-013: =================  START STATUS  =================
[ 1215.988061][T25993] vivid-013: Generate PTS: true
[ 1216.014718][T25993] vivid-013: Generate SCR: true
[ 1216.079545][T25993] tpg source WxH: 640x360 (Y'CbCr)
[ 1216.087967][T25993] tpg field: 1
[ 1216.119012][T25993] tpg crop: 640x360@0x0
[ 1216.130339][T25993] tpg compose: 640x360@0x0
[ 1216.139819][T25993] tpg colorspace: 8
[ 1216.148167][T25993] tpg transfer function: 0/0
[ 1216.158520][T25993] tpg Y'CbCr encoding: 0/0
[ 1216.167440][T25993] tpg quantization: 0/0
[ 1216.176143][T25993] tpg RGB range: 0/2
[ 1216.183564][T25993] vivid-013: ==================  END STATUS  ==================
[ 1216.994791][T26011] FAULT_INJECTION: forcing a failure.
[ 1216.994791][T26011] name failslab, interval 1, probability 0, space 0, times 0
[ 1217.053100][T26011] CPU: 0 UID: 0 PID: 26011 Comm: syz.5.4340 Not tainted 6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1217.053131][T26011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1217.053145][T26011] Call Trace:
[ 1217.053152][T26011]  <TASK>
[ 1217.053161][T26011]  dump_stack_lvl+0x16c/0x1f0
[ 1217.053201][T26011]  should_fail_ex+0x497/0x5b0
[ 1217.053232][T26011]  ? fs_reclaim_acquire+0xae/0x150
[ 1217.053263][T26011]  should_failslab+0xc2/0x120
[ 1217.053285][T26011]  __kmalloc_node_noprof+0xd1/0x520
[ 1217.053321][T26011]  ? __kvmalloc_node_noprof+0xad/0x1a0
[ 1217.053359][T26011]  __kvmalloc_node_noprof+0xad/0x1a0
[ 1217.053393][T26011]  seq_read_iter+0x82a/0x12b0
[ 1217.053430][T26011]  ? __pfx_aa_file_perm+0x10/0x10
[ 1217.053464][T26011]  seq_read+0x39f/0x4e0
[ 1217.053492][T26011]  ? __pfx_seq_read+0x10/0x10
[ 1217.053542][T26011]  ? __pfx_seq_read+0x10/0x10
[ 1217.053570][T26011]  vfs_read+0x1df/0xbe0
[ 1217.053599][T26011]  ? __fget_files+0x1fc/0x3a0
[ 1217.053630][T26011]  ? __pfx___mutex_lock+0x10/0x10
[ 1217.053663][T26011]  ? __pfx_vfs_read+0x10/0x10
[ 1217.053702][T26011]  ? __fget_files+0x206/0x3a0
[ 1217.053742][T26011]  ksys_read+0x12b/0x250
[ 1217.053771][T26011]  ? __pfx_ksys_read+0x10/0x10
[ 1217.053811][T26011]  do_syscall_64+0xcd/0x250
[ 1217.053854][T26011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1217.053888][T26011] RIP: 0033:0x7fab89b85d29
[ 1217.053908][T26011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1217.053930][T26011] RSP: 002b:00007fab8aa98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1217.053952][T26011] RAX: ffffffffffffffda RBX: 00007fab89d75fa0 RCX: 00007fab89b85d29
[ 1217.053968][T26011] RDX: 0000000000001002 RSI: 0000000020000980 RDI: 0000000000000003
[ 1217.053982][T26011] RBP: 00007fab8aa98090 R08: 0000000000000000 R09: 0000000000000000
[ 1217.053997][T26011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1217.054010][T26011] R13: 0000000000000000 R14: 00007fab89d75fa0 R15: 00007ffd6c77c8c8
[ 1217.054043][T26011]  </TASK>
[ 1217.639153][T26007] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4339'.
[ 1217.748075][T26007] ip_vti0: entered promiscuous mode
[ 1219.803236][T26054] netlink: 20 bytes leftover after parsing attributes in process `syz.7.4348'.
[ 1220.246911][T26077] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4353'.
[ 1220.670027][T26087] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1220.869922][T26090] Invalid ELF header magic: != ELF
[ 1221.190849][T26096] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4358'.
[ 1223.136797][T26149] vivid-013: =================  START STATUS  =================
[ 1223.159751][T26149] vivid-013: Generate PTS: true
[ 1223.164714][T26149] vivid-013: Generate SCR: true
[ 1223.201482][T26149] tpg source WxH: 640x360 (Y'CbCr)
[ 1223.271893][T26151] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4368'.
[ 1223.279587][T26149] tpg field: 1
[ 1223.284220][T26149] tpg crop: 640x360@0x0
[ 1223.288403][T26149] tpg compose: 640x360@0x0
[ 1223.293000][T26149] tpg colorspace: 8
[ 1223.297558][T26149] tpg transfer function: 0/0
[ 1223.302877][T26149] tpg Y'CbCr encoding: 0/0
[ 1223.322017][T26149] tpg quantization: 0/0
[ 1223.332163][T26149] tpg RGB range: 0/2
[ 1223.419917][T26149] vivid-013: ==================  END STATUS  ==================
[ 1224.423493][T26173] vivid-013: =================  START STATUS  =================
[ 1224.431577][T26173] vivid-013: Generate PTS: true
[ 1224.436557][T26173] vivid-013: Generate SCR: true
[ 1224.489619][T26173] tpg source WxH: 640x360 (Y'CbCr)
[ 1224.494913][T26173] tpg field: 1
[ 1224.498315][T26173] tpg crop: 640x360@0x0
[ 1224.618241][T26173] tpg compose: 640x360@0x0
[ 1224.633067][T26173] tpg colorspace: 8
[ 1224.636916][T26173] tpg transfer function: 0/0
[ 1224.767522][T26173] tpg Y'CbCr encoding: 0/0
[ 1224.805720][T26173] tpg quantization: 0/0
[ 1224.836233][T26178] Process accounting paused
[ 1224.846329][T26173] tpg RGB range: 0/2
[ 1224.876639][T26173] vivid-013: ==================  END STATUS  ==================
[ 1225.031681][T26170] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4372'.
[ 1225.367123][T26184] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1225.515137][T26184] Invalid ELF header magic: != ELF
[ 1226.867522][T26215] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4383'.
[ 1227.857002][T26238] netlink: 304 bytes leftover after parsing attributes in process `syz.7.4389'.
[ 1232.303889][T26281] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4398'.
[ 1232.497050][T26275] Setting dangerous option i915.request_timeout_ms - tainting kernel
[ 1232.919083][T26297] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4404'.
[ 1233.455958][T26293] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1233.463006][T26293] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1233.471002][T26293] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1233.479533][T26293] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1233.791383][T26315] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4409'.
[ 1234.194350][T26324] Invalid ELF header magic: != ELF
[ 1234.237319][T26326] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(5)
[ 1234.348822][T26326] Invalid ELF header magic: != ELF
[ 1234.468537][T26329] ptrace attach of "./syz-executor exec"[16087] was attempted by ""[26329]
[ 1234.584321][T26329] ovs_: entered promiscuous mode
[ 1234.869768][ T5841] Bluetooth: hci0: command 0x0406 tx timeout
[ 1235.445979][T26338] netlink: 'syz.5.4416': attribute type 11 has an invalid length.
[ 1235.500170][ T5841] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1235.506405][ T5841] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1235.509855][T20932] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1238.503199][T26399] Invalid ELF header magic: != ELF
[ 1238.808799][T26409] Invalid ELF header magic: != ELF
[ 1238.881495][T26411] ubi0: attaching mtd0
[ 1238.914766][T26411] ubi0: scanning is finished
[ 1238.919424][T26411] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1239.024876][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[ 1239.032318][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.059806][T26411] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1239.354519][T26423] netlink: 330 bytes leftover after parsing attributes in process `syz.4.4433'.
[ 1239.378474][T26423] �: renamed from hsr0 (while UP)
[ 1239.872419][T26429] Process accounting resumed
[ 1240.399775][T26424] ubi0: attaching mtd0
[ 1240.408646][T26424] ubi0 error: ubi_attach_mtd_dev: bad VID header (586752) or data offsets (586816)
[ 1240.519881][T26424] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4430'.
[ 1240.618057][T26424] bond0: entered allmulticast mode
[ 1240.622222][T26445] vivid-013: =================  START STATUS  =================
[ 1240.629980][T26424] bond_slave_0: entered allmulticast mode
[ 1240.636802][T26424] bond_slave_1: entered allmulticast mode
[ 1240.649688][T26445] vivid-013: Generate PTS: true
[ 1240.664814][T26445] vivid-013: Generate SCR: true
[ 1240.679513][T26445] tpg source WxH: 640x360 (Y'CbCr)
[ 1240.684668][T26445] tpg field: 1
[ 1240.690342][T26445] tpg crop: 640x360@0x0
[ 1240.695312][T26445] tpg compose: 640x360@0x0
[ 1240.701686][T26445] tpg colorspace: 8
[ 1240.705527][T26445] tpg transfer function: 0/0
[ 1240.710970][T26445] tpg Y'CbCr encoding: 0/0
[ 1240.715658][T26445] tpg quantization: 0/0
[ 1240.762500][T26445] tpg RGB range: 0/2
[ 1240.795365][T26445] vivid-013: ==================  END STATUS  ==================
[ 1241.499146][T26452] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1241.506215][T26452] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1241.519612][T26452] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1241.553655][T26452] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1242.060095][T26471] netlink: 130 bytes leftover after parsing attributes in process `syz.7.4443'.
[ 1242.458413][T26478] Invalid ELF header magic: != ELF
[ 1242.559658][T26476] netlink: 334 bytes leftover after parsing attributes in process `syz.5.4445'.
[ 1242.941784][ T5841] Bluetooth: hci0: command 0x0406 tx timeout
[ 1243.579703][ T5841] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1243.586158][T15574] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1243.592427][T15574] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1244.326940][T26515] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[ 1245.184117][T26545] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[ 1245.253335][T26545] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[ 1245.924388][T26559] FAULT_INJECTION: forcing a failure.
[ 1245.924388][T26559] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1245.959686][T26559] CPU: 0 UID: 0 PID: 26559 Comm: syz.7.4462 Tainted: G     U             6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1245.959722][T26559] Tainted: [U]=USER
[ 1245.959729][T26559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1245.959742][T26559] Call Trace:
[ 1245.959749][T26559]  <TASK>
[ 1245.959766][T26559]  dump_stack_lvl+0x16c/0x1f0
[ 1245.959803][T26559]  should_fail_ex+0x497/0x5b0
[ 1245.959840][T26559]  _copy_to_user+0x32/0xd0
[ 1245.959866][T26559]  simple_read_from_buffer+0xd0/0x160
[ 1245.959897][T26559]  proc_fail_nth_read+0x198/0x270
[ 1245.959923][T26559]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1245.959953][T26559]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1245.959978][T26559]  vfs_read+0x1df/0xbe0
[ 1245.960006][T26559]  ? __fget_files+0x1fc/0x3a0
[ 1245.960063][T26559]  ? __pfx___mutex_lock+0x10/0x10
[ 1245.960095][T26559]  ? __pfx_vfs_read+0x10/0x10
[ 1245.960131][T26559]  ? __fget_files+0x206/0x3a0
[ 1245.960169][T26559]  ksys_read+0x12b/0x250
[ 1245.960196][T26559]  ? __pfx_ksys_read+0x10/0x10
[ 1245.960232][T26559]  do_syscall_64+0xcd/0x250
[ 1245.960267][T26559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1245.960300][T26559] RIP: 0033:0x7f782b98473c
[ 1245.960319][T26559] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1245.960342][T26559] RSP: 002b:00007f782c7d4030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1245.960364][T26559] RAX: ffffffffffffffda RBX: 00007f782bb76160 RCX: 00007f782b98473c
[ 1245.960379][T26559] RDX: 000000000000000f RSI: 00007f782c7d40a0 RDI: 0000000000000004
[ 1245.960392][T26559] RBP: 00007f782c7d4090 R08: 0000000000000000 R09: 0000000000000000
[ 1245.960407][T26559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1245.960420][T26559] R13: 0000000000000001 R14: 00007f782bb76160 R15: 00007ffe914cf3a8
[ 1245.960451][T26559]  </TASK>
[ 1247.027823][T26584] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4469'.
[ 1247.073105][T26586] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4470'.
[ 1249.522025][T26651] netlink: 74 bytes leftover after parsing attributes in process `syz.7.4483'.
[ 1249.878757][T26658] random: crng reseeded on system resumption
[ 1250.416852][T26669] Invalid ELF header magic: != ELF
[ 1253.903064][T26706] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4494'.
[ 1256.435848][T26744] Process accounting resumed
[ 1258.802621][T26783] ceph: Failed to parse sending metrics switch value 'P^'
[ 1258.991145][T26786] vivid-013: =================  START STATUS  =================
[ 1258.998826][T26786] vivid-013: Generate PTS: true
[ 1259.069744][T26786] vivid-013: Generate SCR: true
[ 1259.074677][T26786] tpg source WxH: 640x360 (Y'CbCr)
[ 1259.139634][T26786] tpg field: 1
[ 1259.143053][T26786] tpg crop: 640x360@0x0
[ 1259.181490][T26786] tpg compose: 640x360@0x0
[ 1259.185950][T26786] tpg colorspace: 8
[ 1259.201224][T26786] tpg transfer function: 0/0
[ 1259.217128][T26786] tpg Y'CbCr encoding: 0/0
[ 1259.269862][T26786] tpg quantization: 0/0
[ 1259.274051][T26786] tpg RGB range: 0/2
[ 1259.277963][T26786] vivid-013: ==================  END STATUS  ==================
[ 1259.372763][T26795] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4513'.
[ 1260.946960][T26825] netlink: 342 bytes leftover after parsing attributes in process `syz.7.4518'.
[ 1261.898545][T26844] netlink: 'syz.7.4523': attribute type 27 has an invalid length.
[ 1261.940134][T26844] netlink: 334 bytes leftover after parsing attributes in process `syz.7.4523'.
[ 1263.309687][T26859] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4528'.
[ 1263.318694][T26859] ksmbd: Unknown IPC event: 0, ignore.
[ 1266.459802][T26890] syz.4.4534: vmalloc error: size 4503599627371522, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1266.460021][T26890] CPU: 1 UID: 0 PID: 26890 Comm: syz.4.4534 Tainted: G     U             6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1266.460053][T26890] Tainted: [U]=USER
[ 1266.460061][T26890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1266.460075][T26890] Call Trace:
[ 1266.460083][T26890]  <TASK>
[ 1266.460092][T26890]  dump_stack_lvl+0x16c/0x1f0
[ 1266.460129][T26890]  warn_alloc+0x24d/0x3a0
[ 1266.460167][T26890]  ? __pfx_warn_alloc+0x10/0x10
[ 1266.460198][T26890]  ? __pfx_mark_lock+0x10/0x10
[ 1266.460227][T26890]  ? lock_acquire.part.0+0x11b/0x380
[ 1266.460266][T26890]  __vmalloc_node_range_noprof+0x10df/0x1530
[ 1266.460299][T26890]  ? rcu_is_watching+0x12/0xc0
[ 1266.460327][T26890]  ? trace_contention_end+0xee/0x140
[ 1266.460357][T26890]  ? dvb_demux_do_ioctl+0x54d/0x1340
[ 1266.460387][T26890]  ? dvb_demux_do_ioctl+0x496/0x1340
[ 1266.460420][T26890]  ? __pfx___mutex_lock+0x10/0x10
[ 1266.460452][T26890]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1266.460486][T26890]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1266.460514][T26890]  ? dvb_demux_do_ioctl+0x54d/0x1340
[ 1266.460546][T26890]  vmalloc_noprof+0x6b/0x90
[ 1266.460580][T26890]  ? dvb_demux_do_ioctl+0x54d/0x1340
[ 1266.460610][T26890]  dvb_demux_do_ioctl+0x54d/0x1340
[ 1266.460650][T26890]  dvb_usercopy+0x165/0x320
[ 1266.460676][T26890]  ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[ 1266.460709][T26890]  ? __pfx_dvb_usercopy+0x10/0x10
[ 1266.460734][T26890]  ? __pfx_lock_release+0x10/0x10
[ 1266.460769][T26890]  ? __fget_files+0x206/0x3a0
[ 1266.460804][T26890]  dvb_demux_ioctl+0x29/0x40
[ 1266.460830][T26890]  ? __pfx_dvb_demux_ioctl+0x10/0x10
[ 1266.460857][T26890]  __x64_sys_ioctl+0x190/0x200
[ 1266.460884][T26890]  do_syscall_64+0xcd/0x250
[ 1266.460916][T26890]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1266.460947][T26890] RIP: 0033:0x7fba6df85d29
[ 1266.460964][T26890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1266.460983][T26890] RSP: 002b:00007fba6ee09038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1266.461002][T26890] RAX: ffffffffffffffda RBX: 00007fba6e175fa0 RCX: 00007fba6df85d29
[ 1266.461017][T26890] RDX: 0010000000000402 RSI: 0000000000006f2d RDI: 0000000000000003
[ 1266.461030][T26890] RBP: 00007fba6e001b08 R08: 0000000000000000 R09: 0000000000000000
[ 1266.461044][T26890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1266.461056][T26890] R13: 0000000000000000 R14: 00007fba6e175fa0 R15: 00007fff65b32878
[ 1266.461086][T26890]  </TASK>
[ 1266.461094][T26890] Mem-Info:
[ 1266.461105][T26890] active_anon:115256 inactive_anon:41 isolated_anon:0
[ 1266.461105][T26890]  active_file:5350 inactive_file:48165 isolated_file:0
[ 1266.461105][T26890]  unevictable:768 dirty:599 writeback:0
[ 1266.461105][T26890]  slab_reclaimable:12258 slab_unreclaimable:111867
[ 1266.461105][T26890]  mapped:31065 shmem:79422 pagetables:1207
[ 1266.461105][T26890]  sec_pagetables:0 bounce:0
[ 1266.461105][T26890]  kernel_misc_reclaimable:0
[ 1266.461105][T26890]  free:1204664 free_pcp:5785 free_cma:0
[ 1266.461166][T26890] Node 0 active_anon:461024kB inactive_anon:164kB active_file:21400kB inactive_file:192652kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:124260kB dirty:2392kB writeback:0kB shmem:316152kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13400kB pagetables:4828kB sec_pagetables:0kB all_unreclaimable? no
[ 1266.461223][T26890] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 1266.461274][T26890] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1266.461332][T26890] lowmem_reserve[]: 0 2489 2489 0 0
[ 1266.461382][T26890] Node 0 DMA32 free:895856kB boost:0kB min:34408kB low:43008kB high:51608kB reserved_highatomic:0KB active_anon:460972kB inactive_anon:164kB active_file:21400kB inactive_file:192356kB unevictable:1536kB writepending:2392kB present:3129332kB managed:2549248kB mlocked:0kB bounce:0kB free_pcp:19324kB local_pcp:7692kB free_cma:0kB
[ 1266.461443][T26890] lowmem_reserve[]: 0 0 0 0 0
[ 1266.461498][T26890] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:296kB unevictable:0kB writepending:0kB present:1048580kB managed:364kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[ 1266.461560][T26890] lowmem_reserve[]: 0 0 0 0 0
[ 1266.461609][T26890] Node 1 Normal free:3907440kB boost:0kB min:55488kB low:69360kB high:83232kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:3800kB local_pcp:0kB free_cma:0kB
[ 1266.461668][T26890] lowmem_reserve[]: 0 0 0 0 0
[ 1266.461717][T26890] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1266.461870][T26890] Node 0 DMA32: 14114*4kB (UME) 2110*8kB (UME) 1030*16kB (UME) 409*32kB (UME) 221*64kB (UME) 132*128kB (UME) 286*256kB (UME) 243*512kB (UM) 181*1024kB (UME) 17*2048kB (UME) 84*4096kB (UME) = 895800kB
[ 1266.462087][T26890] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 1266.462217][T26890] Node 1 Normal: 234*4kB (UME) 109*8kB (UME) 58*16kB (UME) 168*32kB (UME) 99*64kB (UME) 52*128kB (UME) 39*256kB (UM) 27*512kB (UME) 10*1024kB (UM) 13*2048kB (UM) 934*4096kB (M) = 3907440kB
[ 1266.462433][T26890] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1266.462459][T26890] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1266.462478][T26890] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1266.462497][T26890] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1266.462515][T26890] 132997 total pagecache pages
[ 1266.462525][T26890] 60 pages in swap cache
[ 1266.462535][T26890] Free swap  = 122308kB
[ 1266.462544][T26890] Total swap = 124996kB
[ 1266.462559][T26890] 2097051 pages RAM
[ 1266.462568][T26890] 0 pages HighMem/MovableOnly
[ 1266.462578][T26890] 428017 pages reserved
[ 1266.462587][T26890] 0 pages cma reserved
[ 1267.323510][T26911] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1267.346091][T26911] Invalid ELF header magic: != ELF
[ 1268.979687][T26919] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4541'.
[ 1269.850193][T26933] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4544'.
[ 1269.851020][T26933] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4544'.
[ 1270.097714][T26931] Process accounting paused
[ 1270.663714][T26946] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4548'.
[ 1270.880107][T26948] FAULT_INJECTION: forcing a failure.
[ 1270.880107][T26948] name failslab, interval 1, probability 0, space 0, times 0
[ 1270.880149][T26948] CPU: 1 UID: 0 PID: 26948 Comm: syz.1.4549 Tainted: G     U             6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1270.880184][T26948] Tainted: [U]=USER
[ 1270.880193][T26948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1270.880207][T26948] Call Trace:
[ 1270.880215][T26948]  <TASK>
[ 1270.880231][T26948]  dump_stack_lvl+0x16c/0x1f0
[ 1270.880269][T26948]  should_fail_ex+0x497/0x5b0
[ 1270.880304][T26948]  ? fs_reclaim_acquire+0xae/0x150
[ 1270.880337][T26948]  should_failslab+0xc2/0x120
[ 1270.880363][T26948]  kmem_cache_alloc_noprof+0x6e/0x3b0
[ 1270.880398][T26948]  ? alloc_empty_file+0x73/0x1e0
[ 1270.880427][T26948]  alloc_empty_file+0x73/0x1e0
[ 1270.880452][T26948]  path_openat+0xe1/0x2d70
[ 1270.880482][T26948]  ? hlock_class+0x4e/0x130
[ 1270.880512][T26948]  ? __lock_acquire+0x15a9/0x3c40
[ 1270.880548][T26948]  ? __pfx_path_openat+0x10/0x10
[ 1270.880579][T26948]  ? __pfx___lock_acquire+0x10/0x10
[ 1270.880603][T26948]  ? lock_acquire.part.0+0x11b/0x380
[ 1270.880629][T26948]  ? find_held_lock+0x2d/0x110
[ 1270.880664][T26948]  do_filp_open+0x20c/0x470
[ 1270.880696][T26948]  ? __pfx_do_filp_open+0x10/0x10
[ 1270.880725][T26948]  ? find_held_lock+0x2d/0x110
[ 1270.880778][T26948]  ? alloc_fd+0x41f/0x760
[ 1270.880818][T26948]  do_sys_openat2+0x17a/0x1e0
[ 1270.880842][T26948]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1270.880880][T26948]  __x64_sys_openat+0x175/0x210
[ 1270.880904][T26948]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1270.880942][T26948]  do_syscall_64+0xcd/0x250
[ 1270.880977][T26948]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1270.881012][T26948] RIP: 0033:0x7f3959385d29
[ 1270.881031][T26948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1270.881055][T26948] RSP: 002b:00007f395a251038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1270.881078][T26948] RAX: ffffffffffffffda RBX: 00007f3959575fa0 RCX: 00007f3959385d29
[ 1270.881095][T26948] RDX: 0000000000000002 RSI: 0000000020000040 RDI: ffffffffffffff9c
[ 1270.881111][T26948] RBP: 00007f3959401b08 R08: 0000000000000000 R09: 0000000000000000
[ 1270.881125][T26948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1270.881140][T26948] R13: 0000000000000000 R14: 00007f3959575fa0 R15: 00007fffbfa4a978
[ 1270.881172][T26948]  </TASK>
[ 1270.914754][T26953] sg_write: data in/out 2059/169 bytes for SCSI command 0x57-- guessing data in;
[ 1270.914754][T26953]    program syz.4.4550 not setting count and/or reply_len properly
[ 1273.145219][T26969] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1275.158732][T26984] vivid-013: =================  START STATUS  =================
[ 1275.199507][T26984] vivid-013: Generate PTS: true
[ 1275.233307][T26984] vivid-013: Generate SCR: true
[ 1275.268687][T26984] tpg source WxH: 640x360 (Y'CbCr)
[ 1275.299013][T26984] tpg field: 1
[ 1275.329536][T26984] tpg crop: 640x360@0x0
[ 1275.345241][T26984] tpg compose: 640x360@0x0
[ 1275.379846][T26984] tpg colorspace: 8
[ 1275.385534][T26984] tpg transfer function: 0/0
[ 1275.397165][T26984] tpg Y'CbCr encoding: 0/0
[ 1275.404022][T26984] tpg quantization: 0/0
[ 1275.408732][T26984] tpg RGB range: 0/2
[ 1275.425904][T26984] vivid-013: ==================  END STATUS  ==================
[ 1276.794438][T27024] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4564'.
[ 1276.912329][T27026] delete_channel: no stack
[ 1277.237476][T27030] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4566'.
[ 1277.280219][T27030] openvswitch: HSR: Dropping previously announced user features
[ 1278.519208][T27051] devpts: called with bogus options
[ 1278.696346][T27059] 
: entered promiscuous mode
[ 1278.757755][T27060] openvswitch: 
: Dropping previously announced user features
[ 1279.047051][T27070] openvswitch: netlink: Unknown VXLAN extension attribute 0
[ 1279.541076][T27079] bond0: option all_slaves_active: invalid value ()
[ 1280.180981][T27100] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1280.253507][T27100] Invalid ELF header magic: != ELF

syzkaller
syzkaller login: [ 1281.765930][T27125] netlink: 32 bytes leftover after parsing attributes in process `syz.7.4581'.
[ 1281.784399][T27123] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4581'.
[ 1282.461129][T27142] Process accounting resumed
[ 1283.149563][   T29] audit: type=1800 audit(4294967415.610:25): pid=27157 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4587" name="SYSVfffffeff" dev="tmpfs" ino=0 res=0 errno=0
[ 1283.811651][T27164] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4590'.
[ 1285.397425][T27193] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(5)
[ 1285.879742][T27199] Invalid ELF header magic: != ELF
[ 1287.300277][T27211] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4603'.
[ 1288.164694][T27224] device-mapper: ioctl: Unable to rename non-existent device,  to �
[ 1288.297055][T27224] Invalid ELF header magic: != ELF
[ 1288.886466][T27199] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1289.155624][T27226] lo: entered allmulticast mode
[ 1289.347812][T27220] lo: left allmulticast mode
[ 1290.184401][T27246] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4611'.
[ 1290.311446][T27244] bond0: option packets_per_slave: invalid value (X�n�p�)
[ 1290.318778][T27244] bond0: option packets_per_slave: allowed values 0 - 65535
[ 1292.180993][ T5841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1292.218802][ T5841] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1292.229093][ T5841] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1292.237156][ T5841] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1292.249758][ T5841] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1292.258948][ T5841] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1292.843362][T27282] chnl_net:caif_netlink_parms(): no params data found
[ 1293.050920][T27282] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1293.069622][T27282] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1293.079671][T27282] bridge_slave_0: entered allmulticast mode
[ 1293.086620][T27282] bridge_slave_0: entered promiscuous mode
[ 1293.095138][T27282] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1293.102453][T27282] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1293.110158][T27282] bridge_slave_1: entered allmulticast mode
[ 1293.117379][T27282] bridge_slave_1: entered promiscuous mode
[ 1293.213008][T27282] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1293.244600][T27282] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1293.460031][T27282] team0: Port device team_slave_0 added
[ 1293.480004][T27282] team0: Port device team_slave_1 added
[ 1293.542001][T27282] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1293.554920][T27282] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1293.653710][T27282] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1293.701415][T27282] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1293.717006][T27282] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1293.761130][T27304] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(12.0.2), cmd(5)
[ 1293.770869][T27282] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1293.965357][T27282] hsr_slave_0: entered promiscuous mode
[ 1293.992323][T27282] hsr_slave_1: entered promiscuous mode
[ 1294.021028][T27282] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1294.029340][T27282] Cannot create hsr debugfs directory
[ 1294.459777][ T5841] Bluetooth: hci0: command tx timeout
[ 1294.583259][T27282] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1294.679024][T27122] ------------[ cut here ]------------
[ 1294.685006][T27122] WARNING: CPU: 1 PID: 27122 at mm/page_alloc.c:4729 __alloc_pages_noprof+0x1f66/0x2470
[ 1294.695016][T27122] Modules linked in:
[ 1294.699371][T27122] CPU: 1 UID: 0 PID: 27122 Comm: syz.5.4584 Tainted: G     U             6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1294.711854][T27122] Tainted: [U]=USER
[ 1294.715692][T27122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1294.726153][T27122] RIP: 0010:__alloc_pages_noprof+0x1f66/0x2470
[ 1294.732751][T27122] Code: 24 38 41 89 c6 0f b6 c0 44 8b ac 24 84 00 00 00 89 44 24 18 e9 a8 f7 ff ff 90 0f 0b 90 e9 b6 f7 ff ff c6 05 3c 03 58 0e 01 90 <0f> 0b 90 e9 d9 e4 ff ff 90 0f 0b 90 e9 4e fb ff ff 83 bc 24 80 00
[ 1294.752782][T27122] RSP: 0018:ffffc90003167918 EFLAGS: 00010246
[ 1294.758888][T27122] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 1294.767081][T27122] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000040d40
[ 1294.775319][T27122] RBP: 0000000000800000 R08: 0000000000000006 R09: 00000000003fffff
[ 1294.783564][T27122] R10: 00000000003fffff R11: 0000000000000004 R12: 000000000000000b
[ 1294.791622][T27122] R13: 1ffff9200062cf37 R14: 0000000000800000 R15: 00000000003fffff
[ 1294.799969][T27122] FS:  00007fab8aa986c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[ 1294.808934][T27122] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1294.815987][T27122] CR2: 0000001b309f9ff8 CR3: 000000002bb98000 CR4: 00000000003526f0
[ 1294.824275][T27122] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1294.832377][T27122] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1294.840450][T27122] Call Trace:
[ 1294.843781][T27122]  <TASK>
[ 1294.846743][T27122]  ? __warn+0xea/0x3c0
[ 1294.850918][T27122]  ? __alloc_pages_noprof+0x1f66/0x2470
[ 1294.856516][T27122]  ? report_bug+0x3c0/0x580
[ 1294.861294][T27122]  ? handle_bug+0x54/0xa0
[ 1294.865662][T27122]  ? exc_invalid_op+0x17/0x50
[ 1294.870465][T27122]  ? asm_exc_invalid_op+0x1a/0x20
[ 1294.875575][T27122]  ? __alloc_pages_noprof+0x1f66/0x2470
[ 1294.881377][T27122]  ? __pfx_mark_lock+0x10/0x10
[ 1294.886182][T27122]  ? __pfx___schedule+0x10/0x10
[ 1294.891377][T27122]  ? hlock_class+0x4e/0x130
[ 1294.895955][T27122]  ? __lock_acquire+0x15a9/0x3c40
[ 1294.901101][T27122]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1294.907286][T27122]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1294.912983][T27122]  ? find_held_lock+0x2d/0x110
[ 1294.917801][T27122]  ___kmalloc_large_node+0x84/0x1b0
[ 1294.923129][T27122]  __kmalloc_large_node_noprof+0x1c/0x70
[ 1294.928925][T27122]  __kmalloc_noprof.cold+0xc/0x63
[ 1294.934084][T27122]  ? __might_fault+0xe3/0x190
[ 1294.938798][T27122]  ? tomoyo_write_control+0x267/0x13d0
[ 1294.944495][T27122]  tomoyo_write_control+0x267/0x13d0
[ 1294.949956][T27122]  ? rcu_is_watching+0x12/0xc0
[ 1294.954764][T27122]  ? __pfx_tomoyo_write_control+0x10/0x10
[ 1294.960614][T27122]  ? ksys_write+0x12b/0x250
[ 1294.965167][T27122]  ? __pfx_tomoyo_write+0x10/0x10
[ 1294.970361][T27122]  vfs_write+0x24c/0x1150
[ 1294.974733][T27122]  ? __fget_files+0x1fc/0x3a0
[ 1294.979644][T27122]  ? __pfx___mutex_lock+0x10/0x10
[ 1294.984714][T27122]  ? __pfx_vfs_write+0x10/0x10
[ 1294.989757][T27122]  ? __fget_files+0x206/0x3a0
[ 1294.994525][T27122]  ksys_write+0x12b/0x250
[ 1294.998888][T27122]  ? __pfx_ksys_write+0x10/0x10
[ 1295.003885][T27122]  do_syscall_64+0xcd/0x250
[ 1295.008434][T27122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1295.014863][T27122] RIP: 0033:0x7fab89b85d29
[ 1295.019316][T27122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1295.039409][T27122] RSP: 002b:00007fab8aa98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1295.048116][T27122] RAX: ffffffffffffffda RBX: 00007fab89d75fa0 RCX: 00007fab89b85d29
[ 1295.056278][T27122] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[ 1295.064358][T27122] RBP: 00007fab89c01b08 R08: 0000000000000000 R09: 0000000000000000
[ 1295.072406][T27122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1295.080493][T27122] R13: 0000000000000000 R14: 00007fab89d75fa0 R15: 00007ffd6c77c8c8
[ 1295.088644][T27122]  </TASK>
[ 1295.091893][T27122] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1295.099207][T27122] CPU: 1 UID: 0 PID: 27122 Comm: syz.5.4584 Tainted: G     U             6.13.0-syzkaller-02526-gc4b9570cfb63 #0
[ 1295.111129][T27122] Tainted: [U]=USER
[ 1295.114945][T27122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1295.125023][T27122] Call Trace:
[ 1295.128320][T27122]  <TASK>
[ 1295.131269][T27122]  dump_stack_lvl+0x3d/0x1f0
[ 1295.135897][T27122]  panic+0x71d/0x800
[ 1295.139821][T27122]  ? __pfx_panic+0x10/0x10
[ 1295.144255][T27122]  ? show_trace_log_lvl+0x29d/0x3d0
[ 1295.149484][T27122]  ? __alloc_pages_noprof+0x1f66/0x2470
[ 1295.155056][T27122]  check_panic_on_warn+0xab/0xb0
[ 1295.160010][T27122]  __warn+0xf6/0x3c0
[ 1295.163914][T27122]  ? __alloc_pages_noprof+0x1f66/0x2470
[ 1295.169491][T27122]  report_bug+0x3c0/0x580
[ 1295.173852][T27122]  handle_bug+0x54/0xa0
[ 1295.178011][T27122]  exc_invalid_op+0x17/0x50
[ 1295.182519][T27122]  asm_exc_invalid_op+0x1a/0x20
[ 1295.187385][T27122] RIP: 0010:__alloc_pages_noprof+0x1f66/0x2470
[ 1295.193560][T27122] Code: 24 38 41 89 c6 0f b6 c0 44 8b ac 24 84 00 00 00 89 44 24 18 e9 a8 f7 ff ff 90 0f 0b 90 e9 b6 f7 ff ff c6 05 3c 03 58 0e 01 90 <0f> 0b 90 e9 d9 e4 ff ff 90 0f 0b 90 e9 4e fb ff ff 83 bc 24 80 00
[ 1295.213177][T27122] RSP: 0018:ffffc90003167918 EFLAGS: 00010246
[ 1295.219256][T27122] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 1295.227237][T27122] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000040d40
[ 1295.235218][T27122] RBP: 0000000000800000 R08: 0000000000000006 R09: 00000000003fffff
[ 1295.243191][T27122] R10: 00000000003fffff R11: 0000000000000004 R12: 000000000000000b
[ 1295.251216][T27122] R13: 1ffff9200062cf37 R14: 0000000000800000 R15: 00000000003fffff
[ 1295.259213][T27122]  ? __pfx_mark_lock+0x10/0x10
[ 1295.263989][T27122]  ? __pfx___schedule+0x10/0x10
[ 1295.268852][T27122]  ? hlock_class+0x4e/0x130
[ 1295.273395][T27122]  ? __lock_acquire+0x15a9/0x3c40
[ 1295.278426][T27122]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1295.284221][T27122]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1295.289444][T27122]  ? find_held_lock+0x2d/0x110
[ 1295.294233][T27122]  ___kmalloc_large_node+0x84/0x1b0
[ 1295.299449][T27122]  __kmalloc_large_node_noprof+0x1c/0x70
[ 1295.305103][T27122]  __kmalloc_noprof.cold+0xc/0x63
[ 1295.310160][T27122]  ? __might_fault+0xe3/0x190
[ 1295.314847][T27122]  ? tomoyo_write_control+0x267/0x13d0
[ 1295.320317][T27122]  tomoyo_write_control+0x267/0x13d0
[ 1295.325630][T27122]  ? rcu_is_watching+0x12/0xc0
[ 1295.330436][T27122]  ? __pfx_tomoyo_write_control+0x10/0x10
[ 1295.336158][T27122]  ? ksys_write+0x12b/0x250
[ 1295.340682][T27122]  ? __pfx_tomoyo_write+0x10/0x10
[ 1295.345720][T27122]  vfs_write+0x24c/0x1150
[ 1295.350068][T27122]  ? __fget_files+0x1fc/0x3a0
[ 1295.354773][T27122]  ? __pfx___mutex_lock+0x10/0x10
[ 1295.359820][T27122]  ? __pfx_vfs_write+0x10/0x10
[ 1295.364613][T27122]  ? __fget_files+0x206/0x3a0
[ 1295.369311][T27122]  ksys_write+0x12b/0x250
[ 1295.373651][T27122]  ? __pfx_ksys_write+0x10/0x10
[ 1295.378531][T27122]  do_syscall_64+0xcd/0x250
[ 1295.383063][T27122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1295.388977][T27122] RIP: 0033:0x7fab89b85d29
[ 1295.393397][T27122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1295.413012][T27122] RSP: 002b:00007fab8aa98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1295.421439][T27122] RAX: ffffffffffffffda RBX: 00007fab89d75fa0 RCX: 00007fab89b85d29
[ 1295.429419][T27122] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[ 1295.437397][T27122] RBP: 00007fab89c01b08 R08: 0000000000000000 R09: 0000000000000000
[ 1295.445368][T27122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1295.453354][T27122] R13: 0000000000000000 R14: 00007fab89d75fa0 R15: 00007ffd6c77c8c8
[ 1295.461349][T27122]  </TASK>
[ 1295.464606][T27122] Kernel Offset: disabled
[ 1295.468972][T27122] Rebooting in 86400 seconds..